last executing test programs: 3m44.392718996s ago: executing program 1 (id=2032): mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x29, 0x2, 0x0) socket(0x2, 0x3, 0x4) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0xa, 0x3, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) socket(0x2, 0x5, 0x3) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) mincore$auto(0x1000, 0x8003, 0x0) setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x28) 3m43.967745703s ago: executing program 1 (id=2035): mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000) setrlimit$auto(0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setresuid$auto(0x909b, 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x3c, 0x0, 0x7) sendmsg$auto_MACSEC_CMD_ADD_TXSA(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x2a8}, 0x1, 0x0, 0x0, 0x4008000}, 0x4040811) 3m43.563843488s ago: executing program 1 (id=2039): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) sysfs$auto(0x2, 0x11, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x80004, 0xe2, 0xeb1, 0x405, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0x15, 0x5, 0x0) syz_clone3(&(0x7f0000000640)={0x108000, 0x0, 0x0, 0x0, {0x15}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) writev$auto(r0, &(0x7f0000000340)={&(0x7f00000002c0), 0xda7e}, 0x9) 3m42.325371157s ago: executing program 1 (id=2042): close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x204880, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101200, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0x100000a, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) statx$auto(0xffffffffffffffff, 0x0, 0x4, 0x7fffffff, &(0x7f0000000140)={0x9, 0xf, 0xb476, 0x0, 0x0, 0x0, 0xffff, 0xb9, 0x3, 0x7, 0x3, 0x80, {0x7, 0x10000}, {0x2, 0x9}, {0x7378, 0x7}, {0x5, 0x1}, 0x8, 0xfffffffc, 0x1, 0x401, 0x400000000006, 0x7, 0x6, 0x2, 0x40, 0x6, 0x0, 0x9, [0x3, 0x10, 0x7fffffffffffffff, 0x81, 0xd, 0x8001, 0x5, 0x3, 0x9]}) statx$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x2, &(0x7f0000000200)={0x5, 0x9, 0x80, 0x5, 0xee00, 0x0, 0xa267, 0xf801, 0x3, 0x4, 0x401, 0x0, {0x4, 0x400}, {0x5, 0xefd7}, {0x5, 0x8}, {0x1, 0x49}, 0x30000, 0xff, 0x80000000, 0x8000, 0x1, 0x8, 0xffff, 0x7, 0x2, 0x2, 0x1, 0x6, [0x6, 0x1, 0x9, 0xffffffff, 0x8, 0x10000, 0x100, 0x10, 0x2]}) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000000)={0x75}) 3m41.681090704s ago: executing program 1 (id=2047): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) sendmsg$auto_NL80211_CMD_SET_BSS(0xffffffffffffffff, 0x0, 0x40084) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$auto(r0, 0x4b62, 0xffffffffffffffff) ioctl$auto(0x3, 0xc00caee0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xfffffffffffffffe, 0x400008, 0xdd, 0x9b72, 0x2, 0x20000000008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) request_key$auto(0x0, 0x0, 0x0, 0x61) 3m40.655013774s ago: executing program 1 (id=2053): mmap$auto(0xffffffffffffffff, 0x2020006, 0x2, 0x800000000000eb1, 0xfffffffffffffffa, 0x8001) r0 = io_uring_setup$auto(0x82, 0x0) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) brk$auto(0x7fffffffefff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x200}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1) msgctl$auto_MSG_INFO(0x454d, 0xc, &(0x7f0000000240)={{0x3f, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x7f, 0x4}, &(0x7f0000000080)=0x71, &(0x7f00000000c0)=0xc1, 0xb2ae, 0x7ff, 0x7, 0x6, 0x508, 0xfff, 0x3, 0xb, @raw=0x8, @raw=0x80000000}) setitimer$auto(0x9, &(0x7f00000001c0)={{0x0, 0x6}, {0x81, 0xd00}}, &(0x7f0000000200)={{0x8, 0xd9}, {0xf63}}) sendmsg$auto_NL802154_CMD_ABORT_SCAN(r0, &(0x7f0000001780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001740)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9b0e0000", @ANYRES16=r3, @ANYBLOB="920629bd7000fedbdf252400000005000800030000000c001700070000000000000018122f806800478008000600", @ANYRES32=r4, @ANYBLOB="04004980fd7da365a721b5d9c67aeed495cec22b4b50f3319cec2ff76f42261a12b85e3d1e7f53334b48d0260019b89ba7bfa949783d9ef89892b7b875ec2d8967d7baf5343121be8903c0d591f8bd0d95ba38865eb95781771c683d0800d48004003a801d05ee547f58147fae8e9625697ceeae848408d54819b588db8b0808512e2291cccd8b7cb121522f4c58f9e803a0cb2676b9e9d0799f72eef25c18d9933a47c15706fa350f5b654fbe3458e26b7c2189387414b6154599b6c12196e0618bd059c062b8890371c0228a5508fbea75bf3c152e082f70af0fc0c239cb7b82b354dcf1aed9519771bf42ab016b8aa9b3ccebf765869c9391f4b2fee058985ae0bce47b1b812c6d8715c07ffb7a0ec0e03e9c0b2dcb161ed8d2aab0276e1dfb2ea479143eaa45cc1616402439b0ccd44948a7eab44cc703caaa0f7a989e324812da74a495924bc5d716f9294f4cef58ce2d81db148d82ae4a76cee263a2f3fb8460907a4988004beec77edb21933b6354f736a385d76e071ae6a90a56439a2af81b8ce32b74a90e59b24e1dd68b07218c0f2e49fcf70ad65a54cced6fe7353260e6e7aa4f55e98c2e89caaeeb09e5935bccf03278d316e58d7c716e2576aaa46f868596a7cf9c6275c947f8b0b94a3f7dba3e791b15e6e0445a92cc464f21a932e7cdd35013013a903cdca1b1fea5ebf5044141497d3f23464f36990fe071770308694ec1aac98bbd76b1ca6cd57da8781791b79aa48a05bd5d825fb9b4a1225a8307b355826d802e071dc211954a5c3ec8895d77d9c57fca4f83a7344c93af1ec15434c72a53a90233030df83c03da69c8b43b1f8467e0939a414479427e8c44fd24f01e3aa79466a8b3ed61b7d63e44558690930223a80a9811f718bf8cd4f60bb0ab90b261d6ded4dbde3c7801242db8f11ddce8813ec89138acd72d0d7f3df54cedeeb9130753831f7bdafc9526c25adffa115fce84f98b83218b23d13dcf2aeaf521cc536ef90d2b00044bdf27921e0a099e7d17b518fda5d200b90b78620e870b0597c6083274a6ebc52f52c175585e87bc208da1ad7e2f39ba8a92df32b65b483b7f8d9b89950e6bf2f24bee998c41dd6277bf0f257437d2604d370878d2d7f46f23a8fcc5e0e8d768b59f17e1969936bb85f21c8fefc9578d8c18fdb01aba3836c871373f0dfa8412bff5477b0ab8baba63bde59eb531e3659096e3974d44cfbc4bf2eef553193dbf88035ecbe10852bb34597f671059db5b7eb205e3bd6ac43bd9ce3abe4abc4ba7e594d51c9df664f757b62b81ed4f747c6ec014ffa25d86b028ad5954c2ba87f8c786dbadbed1617a71675d7d2165831dcdf71a8652d5288211aabd4b7867a4b5c787253405cd70cd90d46e55a31882439f76d7431f02357d488b7167661a7c5e08db988891578403106e215dfe6216d3fb61b3a75c03addca5adbb2a772d1b429f1dedac23e8d41b52651a18fb0334e19d96bb741e22e9acffda34d86c6ce88bab8db5c3b74cf30a5603ed5758ac2f26895ed1ffaf69e949bdc083596c907a5533780d02f25b04b676ebb78775a70a648436f94fe458796484ef7b5b4f7f9eb9e3380ffb2904de744750af4c78b3d3f160aa5de1d2945ed529b5878684d36a71a6dbf0ce6d1be19e0158998941f2f1973b94b29771d1bd8f4b01b95e85fb47b17f4929dcb3dd7c0b180940f3960734ca7753cbd8d2afef9c2205ce06310fc73af30c3c700de3692aa6b9b4555d6f7f64419b7e31e5b15d232f67b242308154fb44c3a390343dde1dff8654039f12f2a96b87188dd57e453d1617c1a47d7a3c126921230d8656140dab29a646ae98b83e13dcec1896190aa16fc15f2743fb0880c1c429da7f28c166c4b4f2317e3f6da29623efc34bc2518ad15e3661fd44715e784bd42a5d372509d65e6d0289a54a05e812abc35e3a97834311754d95e099fcb073d08591c1bbf1239314f09321e0ecf0ecb1e2d31d74011c43168f344f1b8891788cf47b0850e4c845447650db61f789a48c0b88a552a90f3897a683c605b08d8210bd4f2b8c214d309f6e906860d84763e077208399c7fd06ff940dd3c6bccdd51eace0246b24f5a26ddf5f0d6b45edf9effadad21e42f9e078ff12a91665f817b71c274aa9b5d95be8a092a5fdc3bb58c246edbbed07cb59db17be270bb9304634d75f36f9b6a57495e30a00970a0a84a876e2afd926b868751ead524e80c63811f2e507e79a75dd160240c53fa7f6980848dcb5a509f2361c584cfa9d757d2eac801bcfc561f9f2bb35c313176dc02bf2302d0a13cbb79189e42fa4e7ea23d6bfceac3356e9e85e297051cac236936ce8eea87a6ebbcb586c805c7cad8b79a6af682ec628ca05099b6e3b6476a5e762773c5d64510da44c9fb107cb31956f96a67e678c5bc895c7bf0d4d8e2b89e786d2f416c98f1010c98ceeee2e214311575e097bfef7e018ac537747e1c527672bb7f1403ffa94d97d28f1b3ca7e1121dec75d15bb70209b9269baf1034052faabae29ede4d9f4b692b96e9bd9567d0ce535762369c605100b4d711ff2f1820dfb1e06874fd21bbc737bc7f2d13b8b1646f4b5594bda7fe06dbed38d2db78f1b4569f7a4432a16012720478394c0836b99283d85bbd3a58f4639bb6a3fa408fd96bc81ff610ddc79ba9738af0026818ee43979874218bff55dd8377de8e3fac610ee56e8b6d4c6aa47866c6b594a83fbbc46671669e1336fbd8aebc0c91e44af6869fa2b8051f9283c6b98b3adc2eef0bb8dd573836d286c114e285652d019a71a5a05b9fe109ed90a1455ede78adcfdb70c63b6d2bbb3a424b9200fcf1a122fc2393127f00014242e3b88c6636a569ff41f32f99123c2da1ef479cd14c108b6ade94f02676480583239ed80f6b3cdd40a68fe557a05262455014ad6fbb29de0ec5c55f9bd31c30c0fa05a45e5afbf572ca7ff2bf273c8bd2953dbd45e1728840640ce87788dd35f596cd17ca492afa7d36190414df90471eac7b2ec81577cdc2ee016f873c29efe6a5ef7e375f8d44f326e1bb8f817b2510f9ea139470a3005375a1b286069d0286a7c858acb68a933d802d35dcf5149a3c14ac632aa01401c0305231cbc72d3698b16d7e65d3f9b735ce984caf1e14aebe4712eacca1a831ae3ecbae0864f24baf5f67ecc3d3cf3ef67e8063810e7f9fc037b651fb01d1e48e5a5b4de258d860b10a5169cbc5b94b9df2a68f74fba061ebf9d77ec3d0952b917307c964b9ec70e79cffb44ffa9309e5d2c50dc5d30fa48183f867bac809a54a7fe7fc8e48a16f0b143f079f83fc3f53ff5d854f19e49705f86e73c0a0d17ea0f1de83f26864c45e61b06a5536f38064c635689f8982865c8135ed4bcf78c5a55fc4f751a42af972b58628c42ff636212a5037fbf79d2aa4bdc7de9d5f806cf6e39f56b8a14d426cdd6917374d32176f9ecb46702df493de63e0ab3415b83ee9ccfa71787e65271c408ce5af32e6dda45418bdef062021aa24780168a663c322fdde9e5d7cd5b05821d212fd34ca967535c73fdf8464482922d7366af380204ddbdd0bd0cd692408270e7bf6a3319da8f4dbc1dc058fd4495fb66dfbb010bfd22da55e84848e3428a585025ae2bf90d46eca30004740bd95da1254d1418514af962e64eedfc0a055d6d2d6e06887d52600ab55183982e3ba9d153c0940b6f852f701cc85406c277ace74d4ba761ac0b0a41177963e8606a3960e91a665b25e6f09b66beee79f15b9eb69455888acb97c35451c97b41670499762f5e3ee0e050bf689ec1b08285e14aa6216399944f32776e65e7de52d2fe79a8abef8b9d5827b7c8742df5d53fa3a9b7baaf45f002574f2d10f4108c583d3976f450b2700b9cba5b39fea18e606d799a2af60f5fb66ea04b95e1fd891f6aa4245669390352e0c26f85d466c86eaffe18b73fcf596bdb07b11aa00e567a548b49a292c1aa501de0b26a799094c2885a6ce1c31f577467e6a7a447ca9334c7b4b9051b403246dcfa01cd2a4f292e00cfdb6e63890808b833ff9bf636e6f90d80c28ddd8b24d163f814e9dadf0aa43fe0bf6e101b28c44eb098686c835b25821423d38a54f91bc43b86d863182bf7da3934a4e8c496fa83124078c3eee8c1099b253140d523de7396431c36539231184889ef289d01d51f4697bc905ff9f3e56832e32c70b07f5f505fad8b6e2a98b9197f4dff5fc4a4a48b0d516dc61e3b08b6088c77a6d24b58549fa32b36c02384959c02364f16d21d41bedaf9787338ab4af68300ef152f24a895b620f6d2afec413598ca3c5a7a4bcd77d788b4b00554ed08cbf89a524808aaaec9a28660c83e5c59a396c12e85955e6b915adb93af64d0db836c2a5b89a445cf8d7c152599b7e5d6e8d867ea999a396efec57093abc12d43421e9b8c0ce67604bca8ccc9267c7d6782f711a4ff60b0b532a933dc4f393b479f29112725e7290680b1b4669dafda644982b64e0762b1df87dcd72304557b5f82b90116e1f3e5f88f65c0f8ed1e77c89338c953753e7e4b95a0cf82cddbe99b4a83330c8605906360119621719fcdb57d8a8e1cbc89a068d81073ce95d119029ab45a85aa9440f1cb40e7b779dabe4b5d150172690faca6681f6d9dc4bcfac5fa40162f669185df7f8b7bfd5582526b591d953f48a6930d7c9573c8d02995ec2523689482311442a4cc5ef353af0ca7b711e99daa9836bba2da2edf9d01b451a95506ccca40f0986a32e83c0128fefbd292cce1ca29efdbb18b0534903ddb3b3f21dcb9cb5c0abe42658ede43aadae58211770767149890a4cbfe471db2c520fa43a261c1df131a2ec33ef565aaa61d0abe80858e0c8fce4d4b44e82e5268e07f89b4fc2b01637e09d6060624d430eac20bc109ce14f380eec64bba066ee104a61f5c9ab76e53672674aa73c1ae9a57ac66acf85b369df8cfe36cbca486c2a040d283a9e1f71079cbf03b6ba8cf06bdeb5f4a5508bcd5b8b5b929a9c115fff08c3339dfe5ff53c9dcbbb19fb50d46e9ed9741ec4fac294270de856fe3bdb43598cace159e99064098ebc00b82eaa9e3eb84e70c380d3f65af6aea99fc0ab8991e5ee335f5fe37d9e7d99a5263339db787f86bd8ea0cfecb91e2a621e84b1f82fbc1a8fc0572bea6fba75db521d17274067b7c560598d3e146f715933330b3a5dd1d64c00f12c261332b2bc7857a0b69b6bb7227f7204ba4740a56ed5a3686298a351a0a29d4dc1c4a6271dda0132850b8e7734e9764706244796ab1c8521773085e98cef04418b028bb90723683d564fbb8c45cfb672385115951f9adfdf53a81bd8dd1df853d1eaa844a0a6b7eeb0b23f6208b0b92d79855a31340c0242f8876ec752c49eeb5651e76b217c738de93285587af1e634be869ac3e7e7a9fa8906d20a4c8f1df1089530700f60eb07332bf27e78a9e3f01de510cb955dc9bed4397460992a078ff0aa696226474ba5515ae1fd04d45a2a49ff854775e0e5ef898f79e28d26a70eb7e560de0fba33ab779a09101f1a2987f3b3b6f702edfb6be97986e10fe8819da78ada5eb69433fd76bb7c7ba0e5846ce653b620ac9c93acbb4bebd883d67e7b8b6d75d465815593158bc5616e43319af8da85097021a7b4f687294a03eaaa123b3c8d258ad5ca2379a858065ffe288d5bc7b2702ae24fba4d0a79d1a863c0e8251494f4fb6a3531a00f802421cde6e538a69ef6d795cd35f6b95d8f34b8d6f11e06e5baa3814f10ff19438f644403c6fa42b6a30b985a93d84b284f03e1d71ca715d141fff2c15f754f6191800ff8fd8df6dc0c3a47dd051b40443d0c882afb8cdcf8d776225e359d8a3e29c124e7631b5c4cf3fe37a74aae249e7ffb54c986b815ba9f32d6c5447e630398b777f93b35c5ddb7cc3b958704f436ea69f8aa8d91827fb7aa301f5807f8ae2983ee774fbd8f6c99afcaf0c8f1fb53fd6b46efd67f153ad2a96734966b349997d7e2fa335dc2d1a64521c57f2c0ab350606b8d48df055e4eeeba6d77e826aaade668bdd104814b8e9417512a5ea08e8a7ef882830655a8b1ac511a687b3f65ca03da9ec2a7da435120c6cf0ba8b9eecdbcc0d8c8524185209268ab0fdd2555ad90d728a2c6418502c07e68858ed9760bbdd663d5b0d393d77e0eca640f7dccaae0eccfc214f781283ebf8853cad8264b8ca2e2368dc74aa25cedc5b59470d71e3cd3887c4180ee50004db502b77e7071c5807d238d0961d189781d52d99276ecc15e4b506d4017d578f1d06635dd28a732d8b2f772af844de8c872b24e151578e06cc30f126111bc20cd2252105fdb3a2ca1187169ae84252b12f1809b635c2ccf6ffe9f1d6fc00e435e409567a7822695aae7cbe1b55f5b5d72efb1aa634e66e922588c4f4ed73bfb2f6300f9547a9cbb57bffdc72f899bbe00a266af271b8c2f3e5231713572cf95e3e8a54a3f852021e8239fa4cf74085a04833ef83dde789dced96adf348d12cd3b09a27b2876a15c1c7e905003b00000000000005000f0002000000140004007665746830000000000000000000000008000e000e0000000c001700ff0f00000000000006000200280000000500290001000000"], 0x1280}, 0x1, 0x0, 0x0, 0x4880}, 0x800) close_range$auto(0x2, 0x8, 0x0) 3m25.541531139s ago: executing program 32 (id=2053): mmap$auto(0xffffffffffffffff, 0x2020006, 0x2, 0x800000000000eb1, 0xfffffffffffffffa, 0x8001) r0 = io_uring_setup$auto(0x82, 0x0) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) brk$auto(0x7fffffffefff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x200}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1) msgctl$auto_MSG_INFO(0x454d, 0xc, &(0x7f0000000240)={{0x3f, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x7f, 0x4}, &(0x7f0000000080)=0x71, &(0x7f00000000c0)=0xc1, 0xb2ae, 0x7ff, 0x7, 0x6, 0x508, 0xfff, 0x3, 0xb, @raw=0x8, @raw=0x80000000}) setitimer$auto(0x9, &(0x7f00000001c0)={{0x0, 0x6}, {0x81, 0xd00}}, &(0x7f0000000200)={{0x8, 0xd9}, {0xf63}}) sendmsg$auto_NL802154_CMD_ABORT_SCAN(r0, &(0x7f0000001780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001740)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9b0e0000", @ANYRES16=r3, @ANYBLOB="920629bd7000fedbdf252400000005000800030000000c001700070000000000000018122f806800478008000600", @ANYRES32=r4, @ANYBLOB="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"], 0x1280}, 0x1, 0x0, 0x0, 0x4880}, 0x800) close_range$auto(0x2, 0x8, 0x0) 2m38.632939648s ago: executing program 2 (id=2355): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x400000000000401, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x0) r2 = socket(0x2, 0x1, 0x0) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a) 2m38.344967899s ago: executing program 2 (id=2357): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r3, 0x1, 0x0, 0x5) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MM_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_MM_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040010) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.kmem.tcp.limit_in_bytes\x00', 0xc2481, 0x0) sendmsg$auto_NFC_CMD_GET_SE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYRESHEX=r5, @ANYRESDEC], 0x3c}}, 0x0) writev$auto(r5, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000084) 2m37.592898106s ago: executing program 2 (id=2360): mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x10000, 0x87ab) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x28, 0x5, 0x0) socket(0xa, 0x801, 0x106) socket(0x10, 0x2, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, 0xffffffffffffffff, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0) ioctl$auto(r1, 0xc058560f, r1) socket$nl_generic(0x10, 0x3, 0x10) 2m37.316370022s ago: executing program 2 (id=2362): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) write$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) epoll_create$auto(0x4) shutdown$auto(0x200000003, 0x2) socket(0x25, 0x80000, 0x4) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 2m36.462171807s ago: executing program 2 (id=2365): socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000380), 0x20000, 0x0) socket(0x28, 0x5, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xf, 0x3, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) 2m35.226795712s ago: executing program 2 (id=2369): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) mremap$auto(0x0, 0x1, 0x3fd6, 0x0, 0x28) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x80000001, 0x2, 0x800) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000140)=@bpf_attr_7={@prog_id=0x1a, 0x92f1, 0x4}, 0xa) 2m20.029982976s ago: executing program 33 (id=2369): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) mremap$auto(0x0, 0x1, 0x3fd6, 0x0, 0x28) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x80000001, 0x2, 0x800) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000140)=@bpf_attr_7={@prog_id=0x1a, 0x92f1, 0x4}, 0xa) 2m2.015041121s ago: executing program 0 (id=2513): openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000040), 0x48080, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x60d02, 0x0) write$auto(0x3, 0x0, 0xfdef) mknod$auto(&(0x7f0000000900)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x4, 0x407) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r1 = socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x84, 0x81, 0x0, &(0x7f0000000000)=0x9b) lstat$auto(&(0x7f0000000540)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto(0x3, 0x5420, 0x38) read$auto(r0, 0x0, 0x73) 2m1.280372701s ago: executing program 0 (id=2515): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/key-users\x00', 0x18b800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)={0x20, 0x0, 0x1, 0x70bd37, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000) close_range$auto(0x2, r0, 0x0) r2 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r3 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x0) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 2m0.795695551s ago: executing program 0 (id=2518): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) mmap$auto(0x2, 0x400008, 0xdf, 0x9b7e, 0x2, 0x800008000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x4, 0x8000000000001, 0xffff}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(r2, 0x8, 0x1) 2m0.00909461s ago: executing program 0 (id=2520): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r1 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) r2 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 1m59.809881168s ago: executing program 0 (id=2523): close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/quirks\x00', 0x9c0302, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) r1 = socketcall$auto(0xa, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) 1m59.568078643s ago: executing program 0 (id=2526): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x42082, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(0x0, 0x0, 0x0) mount$auto(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95\a\x00\x00\x00\x00\x00\x00\x00\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x00'/184, 0x1, 0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), 0xffffffffffffffff) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 1m44.380019193s ago: executing program 34 (id=2526): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x42082, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(0x0, 0x0, 0x0) mount$auto(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95\a\x00\x00\x00\x00\x00\x00\x00\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x00'/184, 0x1, 0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000140), 0xffffffffffffffff) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 14.348129988s ago: executing program 4 (id=2757): mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) epoll_create$auto(0x3e) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xc0000, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000d00), 0x1, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp1\x00', 0x20000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/erspan0/queues/tx-0/xps_cpus\x00', 0x0, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0xb, 0xd, 0x2007d49, 0x9487, 0x4, 0x0, 0xffffffff, 0x3, 0x0, 0x3, 0x7, 0xfffffffffffffff7, 0x5, 0x2, 0x3]}, 0x0) 13.87167653s ago: executing program 5 (id=2758): socket(0xa, 0x2, 0x0) mmap$auto(0x10000000000002, 0x4000000000001004, 0xaa4, 0x400000eb2, 0xffffffffffffffff, 0xfffffffffffffff9) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb2, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) io_uring_setup$auto(0x1, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r0, 0x5408, 0x0) 13.801648234s ago: executing program 3 (id=2759): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) write$auto(r0, 0x0, 0xfffffdf1) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) sysfs$auto(0x2, 0x23, 0x0) open(0x0, 0x22040, 0x75) fallocate$auto(r0, 0x9, 0x2, 0xd) utimes$auto(0x0, 0x0) clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2) mprotect$auto(0x0, 0x8000000000000001, 0x8) 13.454166706s ago: executing program 4 (id=2760): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1d, 0x2, 0x6) bind$auto(r1, &(0x7f0000000080)=@generic={0x1d, 'my\b\x00\x00\x00\x00\x00\x00\x00\f\x00'}, 0x13) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(r0, 0x0, 0x48080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop1/integrity/device_is_integrity_capable\x00', 0x109080, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400c000) prctl$auto(0x23, 0x20000000000000c, 0x7fffffffefff, 0xfffffffffffffffe, 0x0) r2 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r2) mkdir$auto(&(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xff) 12.740002311s ago: executing program 4 (id=2761): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000280), r1) msgctl$auto_IPC_SET(0xe7e, 0x1, &(0x7f0000000380)={{0xd, 0x0, 0x0, 0x422, 0x3c0122a8, 0x9, 0xf}, &(0x7f0000000300)=0x7, 0x0, 0x7a8, 0x8, 0x8000000000000000, 0x9, 0x9, 0x7, 0x3a, 0x0, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff}) setfsuid$auto(0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) pread64$auto(r2, 0x0, 0x400100000001, 0x1ff) 12.678875145s ago: executing program 5 (id=2763): mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x69) sendmsg$auto_NET_DM_CMD_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008}, 0x24004080) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) r1 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x7, 0x1}, 0x3}, 0x4, 0x20000000) 12.213756113s ago: executing program 3 (id=2764): r0 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) readv$auto(r0, &(0x7f0000000200)={&(0x7f0000000080), 0x9}, 0x5) statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x2, 0x5ae, 0x5, 0x7, 0x6, 0x10000, 0x1, 0xa, 0x8, 0x6, 0x9, 0x5, 0x4, 0x1ff, 0x2, 0x8, 0x10000, 0x0, 0x6}, 0x6, 0x1000000) bpf$auto(0x12, &(0x7f0000000040)=@link_detach, 0x26) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x201, 0x0) r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mlockall$auto(0x7) read$auto_rng_chrdev_ops_core(r1, &(0x7f0000000040)=""/4096, 0xfffffe82) write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) 10.973755398s ago: executing program 5 (id=2765): mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x595082, 0x0) mmap$auto(0x0, 0x2020209, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000004c0), 0x2202, 0x0) ioctl$auto_USB_RAW_IOCTL_EP0_WRITE(r1, 0x40085503, 0x0) write$auto(r0, 0x0, 0xfffffdf1) ioctl$auto_BLKPG(r0, 0x1269, 0x0) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fsetxattr$auto(r0, 0x0, 0x0, 0x7bd, 0x1) mprotect$auto(0x0, 0x8000000000000001, 0x8) 10.462995551s ago: executing program 4 (id=2774): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram15\x00', 0x4ea02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) socketpair$auto(0x5, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) getsockopt$auto(r0, 0x84, 0x1b, 0x0, &(0x7f0000000040)=0x400) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) ioctl$auto(r1, 0x4008af03, 0x0) 10.098599838s ago: executing program 3 (id=2767): unshare$auto(0x40000080) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) socket(0x29, 0x2, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="200000003e01b878eb479b027ac21f194e192ea38307da7f54a5f331933ec3ccb5a2cc337706aea3d20b54ceac7dea5abae711fa550df2485d5ef6ec49e1c486a4cad56808fafcd75d9aae6a30d1b639deb1b4e71206bcbf6500efdf", @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='.\x00', 0x100, 0x161) socket(0xa, 0x3, 0x3a) shmctl$auto(0x691, 0x3, 0x0) ioctl$auto(0x1, 0x8941, 0x8) 9.420856337s ago: executing program 4 (id=2768): unshare$auto(0x40000080) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mlockall$auto(0x800000000000005) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5) io_setup$auto(0xffff, 0x0) 9.225123208s ago: executing program 5 (id=2769): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/ieee80211/phy1/hwsim/ps\x00', 0x240, 0x0) lseek$auto(0x3, 0xffffffffff800002, 0x10) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) unshare$auto(0x40000080) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900), 0x0) 7.78155014s ago: executing program 6 (id=2770): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) socket(0x2, 0x80002, 0x73) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x20461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) read$auto(r0, 0x0, 0x10001) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000240)={0x0, 0x7}, 0x2) sysfs$auto(0x2, 0x24, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r3, 0x0, 0xaf0) 6.057931595s ago: executing program 6 (id=2771): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0xa, 0x300) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x28, 0x0, 0x808) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) select$auto(0xd, 0x0, &(0x7f0000000400)={[0x8, 0x200000000005, 0x7, 0x7, 0x0, 0x80000004, 0xc, 0x6, 0x8fc, 0xb80, 0xe34c, 0x9, 0x3, 0xfffffffffffff954, 0xfffffffffffffff8, 0xfff]}, 0x0, &(0x7f0000000080)={0x800000000001ff, 0x401}) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) 3.917946201s ago: executing program 6 (id=2772): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0xa, 0x2, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x240202, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r1, 0x4080aebf, 0x0) 3.917494487s ago: executing program 3 (id=2773): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x4004550c, r0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) mlock$auto(0xfbea, 0x7fffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) madvise$auto(0x0, 0x22, 0xa) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) madvise$auto(0x0, 0x2003f0, 0x11) madvise$auto(0x1, 0x1000, 0x10000) personality$auto(0xfffffffc) 3.639241268s ago: executing program 4 (id=2775): mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x800, 0xe) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000040)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/018/001\x00', 0x16d080, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x5, @broadcast}, 0x50) 2.966106925s ago: executing program 5 (id=2776): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) write$auto(r0, 0x0, 0xfffffdf1) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) sysfs$auto(0x2, 0x23, 0x0) open(0x0, 0x22040, 0x75) fallocate$auto(r0, 0x9, 0x2, 0xd) utimes$auto(0x0, 0x0) clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2) mprotect$auto(0x0, 0x8000000000000001, 0x8) 2.791139985s ago: executing program 6 (id=2777): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000240), 0xffffffffffffffff) r2 = getpgid(0x0) process_vm_writev$auto(r2, &(0x7f0000000180)={&(0x7f0000000000), 0x20000007}, 0x200000000017, &(0x7f0000000040)={&(0x7f0000000080), 0x1}, 0x7, 0x0) sendmsg$auto_NL802154_CMD_GET_SEC_KEY(r0, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000780)={&(0x7f0000000400)={0x36c, r1, 0x4, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x1}, @NL802154_ATTR_SEC_ENABLED={0x5, 0x29, 0x1}, @NL802154_ATTR_WPAN_PHY_CAPS={0x33d, 0x18, 0x0, 0x1, [@typed={0x8, 0xec, 0x0, 0x0, @ipv4=@loopback}, @generic="a0028235a4913bc584b7a1b443cfb761bd25f644dfe9da6fca5d59a214b875269cdd97e92c11e3951ed0ece09c39030a81792b1ad14733770b9669ebb9fc3d7fab56a368dc858d06848492138602e04eec43372a16be13807d2c223b9a89f733ec9b1970823ce9919dac1f43920beaae644aff2f9fc94e793bbb917c33d67465dea624945c3248b17f8e0880a6b7a2a12fdd65b41e22e6b3b6ba3271c2d825a1b46f5944051f509cb8da627bd2869fe46e7675", @nested={0x68, 0x13c, 0x0, 0x1, [@typed={0xc, 0x8a, 0x0, 0x0, @u64=0x2}, @typed={0x14, 0x140, 0x0, 0x0, @ipv6=@local}, @nested={0x4, 0xdf}, @nested={0x4, 0x8e}, @typed={0x14, 0x107, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @typed={0x14, 0x3d, 0x0, 0x0, @ipv6=@empty}, @nested={0x4, 0xef}, @nested={0x4, 0xdb}, @typed={0xc, 0xe3, 0x0, 0x0, @u64=0x1ff}]}, @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@multicast1}, @nested={0x1c1, 0x18, 0x0, 0x1, [@generic="aa9b1d6d2a1432b9d0b123ec96185d044cd6bd66cb2e44b514f6320044c53778b8fe5820b359cbeaeb9bd7c28df28562855172f54c00573c933e2d1b37da6b511d69b9073308e57d218e61ae921c8fb4cbff8381b645bb1f7f89d3f868e89a8c4425944b66add1bfbe517f6316997c8e2eff7a76d981056a33812435d460beebcc6509ad69fa6997401a330d94ee7c2600d4fbd88e31332d08dbc6d3e0f192a37d66ad1b372b8316f026b564af1b32c77b80b8f53436cec44368fdde", @nested={0x4, 0x131}, @typed={0x8, 0x55, 0x0, 0x0, @fd=r0}, @generic="1700b0b29b8a8590aa5366c02b4ee38422c6ffac7a68bf3fe9bd4ff01861573f56062e0bff35bfac0e208f96a5a6a7b79ff81c6771bf2dd0c2fe66d9b670716567bc4d7a1b29421b9c4fa59d0f126d9946b9baecd3", @nested={0x4, 0xfc}, @typed={0x7c, 0x79, 0x0, 0x0, @binary="62d2fc2ae718745917a7c0d2968dc10f6901b3a1e8b1736b7cf703299a40cac6384ca2c46e82601c86285d961788503e6e6bde94126f0147e1d82d2e1a3f27fb4025c5fe580c49c59c91f0f966dfb2abe926499bd9c43790ab0365891afb75e5eae83a4d88ab05924613d7abb23b88c83cf152a288ea4fff"}, @typed={0x14, 0x24, 0x0, 0x0, @ipv6=@mcast2}, @typed={0x8, 0x2b, 0x0, 0x0, @pid=r2}, @nested={0x4, 0x101}]}, @generic="17c6ba0dbe5ade593d6f5ba4574fbdd49dd5d557c15aebf9d8c6c6e943b7d8089e5daf1b89f8d3858e1206f4ec550476d568b0101414a6f4386a353f3fe1408d252d544d68ca9322c5c6"]}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0xc0}]}, 0x36c}, 0x1, 0x0, 0x0, 0x40000}, 0xc004) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000003c0)='4', 0x1) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty14\x00', 0x101000, 0x0) ioctl$auto_TCSBRKP2(r4, 0x5425, 0x0) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NLBL_MGMT_C_REMOVE(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYRES64=r3, @ANYRES32=r5, @ANYRES8=r0], 0x1c}, 0x1, 0x0, 0x0, 0x48840}, 0x2000c091) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB, @ANYRES16=r5], 0x2c}, 0x1, 0x0, 0x0, 0x400c0}, 0x40015) 2.243835255s ago: executing program 6 (id=2778): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000140)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto_SO_BSDCOMPAT(r1, 0x6, 0xe, &(0x7f0000000000), 0x80001) 1.518622409s ago: executing program 6 (id=2779): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) sendmsg$auto_NL80211_CMD_SET_BSS(0xffffffffffffffff, 0x0, 0x40084) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$auto(r0, 0x4b62, 0xffffffffffffffff) ioctl$auto(0x3, 0xc00caee0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xfffffffffffffffe, 0x400008, 0xdd, 0x9b72, 0x2, 0x20000000008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) request_key$auto(0x0, 0x0, 0x0, 0x61) 1.346248522s ago: executing program 3 (id=2780): mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x69) sendmsg$auto_NET_DM_CMD_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008}, 0x24004080) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) r1 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x7, 0x1}, 0x3}, 0x4, 0x20000000) 826.449843ms ago: executing program 5 (id=2781): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x1cb602, 0x0) mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r0) fcntl$auto(0x3, 0x4, 0xa553) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) munmap$auto(0x8000, 0xffffffff) 0s ago: executing program 3 (id=2782): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) set_mempolicy$auto(0x1, 0x0, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0) semctl$auto(0x7, 0x2, 0x13, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) eventfd$auto(0x4) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x7, 0x8, 0xffffffbf, 0x0) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567) kernel console output (not intermixed with test programs): f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 500.165501][T12005] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 500.165524][T12005] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 500.165540][T12005] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000003 [ 500.165555][T12005] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 500.165570][T12005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 500.165584][T12005] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 500.165615][T12005] [ 501.515841][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.523971][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.078620][T12038] ubi: mtd0 is already attached to ubi0 [ 503.332889][T12051] FAULT_INJECTION: forcing a failure. [ 503.332889][T12051] name failslab, interval 1, probability 0, space 0, times 0 [ 503.347630][T12051] CPU: 1 UID: 0 PID: 12051 Comm: syz.0.1941 Tainted: G L syzkaller #0 PREEMPT(full) [ 503.347710][T12051] Tainted: [L]=SOFTLOCKUP [ 503.347722][T12051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 503.347742][T12051] Call Trace: [ 503.347752][T12051] [ 503.347765][T12051] dump_stack_lvl+0x100/0x190 [ 503.347808][T12051] should_fail_ex.cold+0x5/0xa [ 503.347852][T12051] should_failslab+0xc2/0x120 [ 503.347893][T12051] __kmalloc_cache_noprof+0x7a/0x6f0 [ 503.347940][T12051] ? single_open+0x4d/0x1d0 [ 503.347961][T12051] ? __pfx___debugfs_file_get+0x10/0x10 [ 503.348032][T12051] ? __pfx_edid_show+0x10/0x10 [ 503.348074][T12051] ? __pfx_edid_open+0x10/0x10 [ 503.348104][T12051] single_open+0x4d/0x1d0 [ 503.348126][T12051] full_proxy_open_regular+0x1b6/0x370 [ 503.348166][T12051] do_dentry_open+0x6d8/0x1660 [ 503.348195][T12051] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 503.348236][T12051] vfs_open+0x82/0x3f0 [ 503.348275][T12051] path_openat+0x208c/0x31a0 [ 503.348315][T12051] ? __pfx_path_openat+0x10/0x10 [ 503.348355][T12051] do_file_open+0x20e/0x430 [ 503.348388][T12051] ? __pfx_do_file_open+0x10/0x10 [ 503.348438][T12051] ? alloc_fd+0x476/0x790 [ 503.348470][T12051] ? do_getname+0x191/0x390 [ 503.348509][T12051] do_sys_openat2+0x10d/0x1e0 [ 503.348546][T12051] ? __pfx_do_sys_openat2+0x10/0x10 [ 503.348586][T12051] ? __fget_files+0x21f/0x3d0 [ 503.348620][T12051] __x64_sys_openat+0x12d/0x210 [ 503.348665][T12051] ? __pfx___x64_sys_openat+0x10/0x10 [ 503.348708][T12051] ? rcu_is_watching+0x12/0xc0 [ 503.348742][T12051] do_syscall_64+0x10b/0xf80 [ 503.348780][T12051] ? clear_bhb_loop+0x40/0x90 [ 503.348810][T12051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.348835][T12051] RIP: 0033:0x7f8b0e39ce59 [ 503.348854][T12051] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 503.348878][T12051] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 503.348901][T12051] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 503.348917][T12051] RDX: 0000000000000400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 503.348932][T12051] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 503.348947][T12051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 503.348961][T12051] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 503.348996][T12051] [ 503.922611][ T5645] Bluetooth: hci2: unexpected subevent 0x18 length: 123 > 19 [ 503.932569][ T5645] Bluetooth: hci2: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 503.949436][T12060] binder: 12059:12060 ioctl c0306201 200000000000 returned -11 [ 504.251265][T12058] FAULT_INJECTION: forcing a failure. [ 504.251265][T12058] name failslab, interval 1, probability 0, space 0, times 0 [ 504.270706][T12058] CPU: 0 UID: 0 PID: 12058 Comm: syz.2.1942 Tainted: G L syzkaller #0 PREEMPT(full) [ 504.270756][T12058] Tainted: [L]=SOFTLOCKUP [ 504.270767][T12058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 504.270787][T12058] Call Trace: [ 504.270796][T12058] [ 504.270808][T12058] dump_stack_lvl+0x100/0x190 [ 504.270850][T12058] should_fail_ex.cold+0x5/0xa [ 504.270903][T12058] should_failslab+0xc2/0x120 [ 504.270939][T12058] __kmalloc_cache_noprof+0x7a/0x6f0 [ 504.270983][T12058] ? snd_pcm_oss_change_params_locked+0x211/0x39f0 [ 504.271042][T12058] snd_pcm_oss_change_params_locked+0x211/0x39f0 [ 504.271120][T12058] ? trace_contention_end+0x125/0x170 [ 504.271162][T12058] ? snd_pcm_oss_get_active_substream+0x153/0x1d0 [ 504.271219][T12058] ? kasan_quarantine_put+0x104/0x240 [ 504.271254][T12058] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 504.271306][T12058] ? __pfx___mutex_lock+0x10/0x10 [ 504.271327][T12058] ? find_held_lock+0x2b/0x80 [ 504.271358][T12058] ? tomoyo_path_number_perm+0x28f/0x580 [ 504.271384][T12058] ? tomoyo_path_number_perm+0x28f/0x580 [ 504.271419][T12058] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 504.271444][T12058] ? futex_wake+0x1ad/0x530 [ 504.271478][T12058] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 504.271521][T12058] snd_pcm_oss_get_formats+0x7d/0x350 [ 504.271558][T12058] ? do_vfs_ioctl+0x226/0x13e0 [ 504.271608][T12058] ? __pfx_snd_pcm_oss_get_formats+0x10/0x10 [ 504.271673][T12058] snd_pcm_oss_ioctl+0x1795/0x37c0 [ 504.271704][T12058] ? find_held_lock+0x2b/0x80 [ 504.271744][T12058] ? __fget_files+0x215/0x3d0 [ 504.271784][T12058] ? hook_file_ioctl_common+0x149/0x410 [ 504.271812][T12058] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 504.271854][T12058] ? __fget_files+0x21f/0x3d0 [ 504.271885][T12058] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 504.271925][T12058] __x64_sys_ioctl+0x18e/0x210 [ 504.271951][T12058] do_syscall_64+0x10b/0xf80 [ 504.271987][T12058] ? clear_bhb_loop+0x40/0x90 [ 504.272015][T12058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.272039][T12058] RIP: 0033:0x7f3936f9ce59 [ 504.272057][T12058] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 504.272080][T12058] RSP: 002b:00007f3937d97028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 504.272101][T12058] RAX: ffffffffffffffda RBX: 00007f3937216090 RCX: 00007f3936f9ce59 [ 504.272147][T12058] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000003 [ 504.272162][T12058] RBP: 00007f3937032d6f R08: 0000000000000000 R09: 0000000000000000 [ 504.272177][T12058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 504.272195][T12058] R13: 00007f3937216128 R14: 00007f3937216090 R15: 00007ffd24825708 [ 504.272226][T12058] [ 505.245638][T12083] ubi3: attaching mtd1 [ 506.585117][T12111] netlink: 306 bytes leftover after parsing attributes in process `syz.2.1958'. [ 507.986005][T12130] FAULT_INJECTION: forcing a failure. [ 507.986005][T12130] name failslab, interval 1, probability 0, space 0, times 0 [ 508.038944][T12130] CPU: 1 UID: 0 PID: 12130 Comm: syz.1.1965 Tainted: G L syzkaller #0 PREEMPT(full) [ 508.038997][T12130] Tainted: [L]=SOFTLOCKUP [ 508.039009][T12130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 508.039029][T12130] Call Trace: [ 508.039040][T12130] [ 508.039052][T12130] dump_stack_lvl+0x100/0x190 [ 508.039095][T12130] should_fail_ex.cold+0x5/0xa [ 508.039147][T12130] should_failslab+0xc2/0x120 [ 508.039190][T12130] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 508.039228][T12130] ? kstrdup_const+0x63/0x80 [ 508.039263][T12130] ? __pfx_string+0x10/0x10 [ 508.039317][T12130] kstrdup+0x51/0xe0 [ 508.039353][T12130] kstrdup_const+0x63/0x80 [ 508.039389][T12130] __kernfs_new_node+0x9b/0x9f0 [ 508.039433][T12130] ? __pfx___kernfs_new_node+0x10/0x10 [ 508.039482][T12130] ? find_held_lock+0x2b/0x80 [ 508.039526][T12130] ? kernfs_root+0xee/0x2a0 [ 508.039561][T12130] ? kernfs_root+0xee/0x2a0 [ 508.039607][T12130] kernfs_new_node+0x11b/0x1a0 [ 508.039657][T12130] __kernfs_create_file+0x53/0x350 [ 508.039714][T12130] cgroup_addrm_files+0x4ef/0xdb0 [ 508.039789][T12130] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 508.039844][T12130] ? find_held_lock+0x2b/0x80 [ 508.039903][T12130] ? _raw_spin_unlock+0x28/0x50 [ 508.039949][T12130] ? xa_store+0x3f/0x50 [ 508.039983][T12130] ? mem_cgroup_css_online+0x39b/0xbf0 [ 508.040042][T12130] css_populate_dir+0x161/0x590 [ 508.040081][T12130] cgroup_apply_control_enable+0x441/0xdd0 [ 508.040153][T12130] cgroup_mkdir+0x59c/0x1310 [ 508.040209][T12130] ? __pfx_cgroup_mkdir+0x10/0x10 [ 508.040263][T12130] kernfs_iop_mkdir+0x111/0x190 [ 508.040305][T12130] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 508.040359][T12130] vfs_mkdir+0x361/0x850 [ 508.040398][T12130] filename_mkdirat+0x48b/0x5e0 [ 508.040448][T12130] ? __pfx_filename_mkdirat+0x10/0x10 [ 508.040495][T12130] ? strncpy_from_user+0x19d/0x2d0 [ 508.040549][T12130] ? do_getname+0x191/0x390 [ 508.040604][T12130] __x64_sys_mkdir+0x6b/0x90 [ 508.040652][T12130] do_syscall_64+0x10b/0xf80 [ 508.040703][T12130] ? clear_bhb_loop+0x40/0x90 [ 508.040744][T12130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.040778][T12130] RIP: 0033:0x7f74e0b9ce59 [ 508.040806][T12130] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 508.040839][T12130] RSP: 002b:00007f74e1ad8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 508.040870][T12130] RAX: ffffffffffffffda RBX: 00007f74e0e15fa0 RCX: 00007f74e0b9ce59 [ 508.040893][T12130] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 508.040915][T12130] RBP: 00007f74e0c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 508.040935][T12130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.040955][T12130] R13: 00007f74e0e16038 R14: 00007f74e0e15fa0 R15: 00007fff6e07d738 [ 508.041000][T12130] [ 508.324860][T12130] cgroup: cgroup_addrm_files: failed to add max_usage_in_bytes, err=-12 [ 509.361375][T12154] netlink: 'syz.3.1973': attribute type 1 has an invalid length. [ 509.398064][T12151] FAULT_INJECTION: forcing a failure. [ 509.398064][T12151] name failslab, interval 1, probability 0, space 0, times 0 [ 509.405298][T12154] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1973'. [ 509.435980][T12151] CPU: 0 UID: 0 PID: 12151 Comm: syz.0.1971 Tainted: G L syzkaller #0 PREEMPT(full) [ 509.436035][T12151] Tainted: [L]=SOFTLOCKUP [ 509.436048][T12151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 509.436069][T12151] Call Trace: [ 509.436080][T12151] [ 509.436093][T12151] dump_stack_lvl+0x100/0x190 [ 509.436138][T12151] should_fail_ex.cold+0x5/0xa [ 509.436182][T12151] ? tracepoint_add_func+0x3a8/0x1150 [ 509.436232][T12151] should_failslab+0xc2/0x120 [ 509.436272][T12151] __kmalloc_noprof+0xe0/0x850 [ 509.436310][T12151] ? __pfx_trace_event_raw_event_nfsd_file_insert_err+0x10/0x10 [ 509.436394][T12151] tracepoint_add_func+0x3a8/0x1150 [ 509.436444][T12151] ? __pfx_trace_event_raw_event_nfsd_file_insert_err+0x10/0x10 [ 509.436498][T12151] ? __pfx_trace_event_raw_event_nfsd_file_insert_err+0x10/0x10 [ 509.436543][T12151] tracepoint_probe_register+0xc4/0x110 [ 509.436596][T12151] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 509.436647][T12151] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 509.436680][T12151] ? __pfx_trace_event_raw_event_nfsd_file_insert_err+0x10/0x10 [ 509.436726][T12151] ? __pfx_probe_sched_switch+0x10/0x10 [ 509.436791][T12151] ? __lock_acquire+0x4a5/0x2630 [ 509.436830][T12151] trace_event_reg+0x209/0x350 [ 509.436878][T12151] __ftrace_event_enable_disable+0x211/0x6f0 [ 509.436939][T12151] __ftrace_set_clr_event_nolock+0x390/0xc30 [ 509.437000][T12151] ftrace_set_clr_event+0x1b7/0x3f0 [ 509.437051][T12151] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 509.437091][T12151] ? trace_get_user+0x3ae/0xa70 [ 509.437156][T12151] ftrace_event_write+0x259/0x2c0 [ 509.437198][T12151] ? __pfx_ftrace_event_write+0x10/0x10 [ 509.437256][T12151] vfs_write+0x2aa/0x1070 [ 509.437297][T12151] ? __pfx_ftrace_event_write+0x10/0x10 [ 509.437343][T12151] ? __pfx_vfs_write+0x10/0x10 [ 509.437382][T12151] ? __fget_files+0x215/0x3d0 [ 509.437432][T12151] ? __fget_files+0x21f/0x3d0 [ 509.437487][T12151] ksys_write+0x12a/0x250 [ 509.437527][T12151] ? __pfx_ksys_write+0x10/0x10 [ 509.437572][T12151] ? rcu_is_watching+0x12/0xc0 [ 509.437620][T12151] do_syscall_64+0x10b/0xf80 [ 509.437673][T12151] ? clear_bhb_loop+0x40/0x90 [ 509.437716][T12151] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.437752][T12151] RIP: 0033:0x7f8b0e39ce59 [ 509.437780][T12151] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 509.437815][T12151] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 509.437848][T12151] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 509.437871][T12151] RDX: 0000000000000af0 RSI: 0000000000000000 RDI: 0000000000000007 [ 509.437892][T12151] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 509.437913][T12151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 509.437933][T12151] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 509.437986][T12151] [ 509.440920][T12151] event trace: Could not enable event nfsd_file_insert_err [ 509.749460][T12154] netlink: 'syz.3.1973': attribute type 1 has an invalid length. [ 515.517252][T12251] FAULT_INJECTION: forcing a failure. [ 515.517252][T12251] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 515.531680][T12251] CPU: 0 UID: 0 PID: 12251 Comm: syz.0.2000 Tainted: G L syzkaller #0 PREEMPT(full) [ 515.531730][T12251] Tainted: [L]=SOFTLOCKUP [ 515.531741][T12251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 515.531760][T12251] Call Trace: [ 515.531770][T12251] [ 515.531781][T12251] dump_stack_lvl+0x100/0x190 [ 515.531823][T12251] should_fail_ex.cold+0x5/0xa [ 515.531860][T12251] ? prepare_alloc_pages+0x16d/0x5f0 [ 515.531909][T12251] should_fail_alloc_page+0xeb/0x140 [ 515.531950][T12251] prepare_alloc_pages+0x1f0/0x5f0 [ 515.531998][T12251] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 515.532057][T12251] ? pte_offset_map_lock+0x174/0x320 [ 515.532095][T12251] ? find_held_lock+0x2b/0x80 [ 515.532137][T12251] ? rcu_read_unlock+0x2d/0xb0 [ 515.532188][T12251] ? rcu_read_unlock+0x2d/0xb0 [ 515.532248][T12251] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 515.532324][T12251] ? do_fault+0x644/0x1750 [ 515.532381][T12251] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 515.532435][T12251] ? policy_nodemask+0xed/0x4f0 [ 515.532477][T12251] alloc_pages_mpol+0x1fb/0x540 [ 515.532518][T12251] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 515.532554][T12251] ? __pfx_css_rstat_updated+0x10/0x10 [ 515.532619][T12251] folio_alloc_mpol_noprof+0x36/0x260 [ 515.532670][T12251] shmem_alloc_folio+0x135/0x160 [ 515.532719][T12251] shmem_alloc_and_add_folio+0x371/0xd40 [ 515.532785][T12251] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 515.532844][T12251] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 515.532893][T12251] ? __bpf_trace_sched_exit_tp+0x20/0xc0 [ 515.532954][T12251] shmem_get_folio_gfp+0x6ab/0x1900 [ 515.532995][T12251] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 515.533039][T12251] shmem_write_begin+0x1a4/0x420 [ 515.533073][T12251] ? __pfx_shmem_write_begin+0x10/0x10 [ 515.533102][T12251] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 515.533164][T12251] generic_perform_write+0x292/0xa40 [ 515.533217][T12251] ? __pfx_generic_perform_write+0x10/0x10 [ 515.533265][T12251] ? file_update_time_flags+0x373/0x500 [ 515.533313][T12251] shmem_file_write_iter+0x10e/0x140 [ 515.533357][T12251] vfs_write+0x6ac/0x1070 [ 515.533392][T12251] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 515.533431][T12251] ? __pfx_vfs_write+0x10/0x10 [ 515.533486][T12251] ksys_write+0x12a/0x250 [ 515.533519][T12251] ? __pfx_ksys_write+0x10/0x10 [ 515.533559][T12251] ? rcu_is_watching+0x12/0xc0 [ 515.533598][T12251] do_syscall_64+0x10b/0xf80 [ 515.533642][T12251] ? clear_bhb_loop+0x40/0x90 [ 515.533678][T12251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.533707][T12251] RIP: 0033:0x7f8b0e39ce59 [ 515.533732][T12251] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 515.533761][T12251] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 515.533799][T12251] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 515.533818][T12251] RDX: 00000000fffffdf1 RSI: 0000000000000000 RDI: 0000000000000006 [ 515.533835][T12251] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 515.533852][T12251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 515.533868][T12251] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 515.533902][T12251] [ 516.400594][ T5645] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 516.400638][ T5645] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 516.415828][ T5645] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 516.415882][ T5645] Bluetooth: hci0: Unknown advertising packet type: 0x7a [ 516.425397][ T5645] Bluetooth: hci0: adv larger than maximum supported [ 516.434944][ T5645] Bluetooth: hci0: adv larger than maximum supported [ 516.441997][ T5645] Bluetooth: hci0: Malformed LE Event: 0x0d [ 517.114415][T12266] FAULT_INJECTION: forcing a failure. [ 517.114415][T12266] name fail_futex, interval 1, probability 0, space 0, times 0 [ 517.152484][T12266] CPU: 0 UID: 0 PID: 12266 Comm: syz.0.2004 Tainted: G L syzkaller #0 PREEMPT(full) [ 517.152532][T12266] Tainted: [L]=SOFTLOCKUP [ 517.152543][T12266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 517.152561][T12266] Call Trace: [ 517.152571][T12266] [ 517.152582][T12266] dump_stack_lvl+0x100/0x190 [ 517.152623][T12266] should_fail_ex.cold+0x5/0xa [ 517.152662][T12266] get_futex_key+0xf78/0x1510 [ 517.152700][T12266] ? __pfx_get_futex_key+0x10/0x10 [ 517.152731][T12266] ? lock_acquire+0x1b1/0x370 [ 517.152773][T12266] futex_wake+0xea/0x530 [ 517.152817][T12266] ? __pfx_futex_wake+0x10/0x10 [ 517.152859][T12266] ? exit_mm_release+0x19/0x30 [ 517.152917][T12266] do_futex+0x32b/0x350 [ 517.152953][T12266] ? __pfx_do_futex+0x10/0x10 [ 517.152985][T12266] ? __might_fault+0xc5/0x140 [ 517.153044][T12266] mm_release+0x24a/0x2f0 [ 517.153102][T12266] do_exit+0x707/0x2af0 [ 517.153164][T12266] ? __pfx_do_exit+0x10/0x10 [ 517.153215][T12266] ? do_raw_spin_lock+0x128/0x260 [ 517.153252][T12266] ? find_held_lock+0x2b/0x80 [ 517.153293][T12266] ? get_signal+0x7e5/0x2210 [ 517.153346][T12266] do_group_exit+0xd5/0x2a0 [ 517.153402][T12266] get_signal+0x20ff/0x2210 [ 517.153457][T12266] ? __pfx_get_signal+0x10/0x10 [ 517.153502][T12266] ? do_futex+0x192/0x350 [ 517.153540][T12266] arch_do_signal_or_restart+0x91/0x7a0 [ 517.153626][T12266] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 517.153691][T12266] ? rcu_is_watching+0x12/0xc0 [ 517.153735][T12266] exit_to_user_mode_loop+0x8b/0x4f0 [ 517.153767][T12266] ? rcu_is_watching+0x12/0xc0 [ 517.153810][T12266] do_syscall_64+0x6f2/0xf80 [ 517.153861][T12266] ? clear_bhb_loop+0x40/0x90 [ 517.153902][T12266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 517.153948][T12266] RIP: 0033:0x7f8b0e39ce59 [ 517.153972][T12266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 517.154002][T12266] RSP: 002b:00007f8b0f23d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 517.154032][T12266] RAX: fffffffffffffe00 RBX: 00007f8b0e616098 RCX: 00007f8b0e39ce59 [ 517.154053][T12266] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8b0e616098 [ 517.154071][T12266] RBP: 00007f8b0e616090 R08: 0000000000000000 R09: 0000000000000000 [ 517.154089][T12266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 517.154108][T12266] R13: 00007f8b0e616128 R14: 00007fff2588dd00 R15: 00007fff2588dde8 [ 517.154149][T12266] [ 517.541034][T12279] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2005'. [ 518.647307][T12289] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 518.729093][ T5645] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 519.296002][T12305] netlink: 334 bytes leftover after parsing attributes in process `syz.2.2016'. [ 519.510568][T12309] netlink: 'syz.0.2018': attribute type 28 has an invalid length. [ 519.542611][T12309] netlink: 'syz.0.2018': attribute type 3 has an invalid length. [ 519.558796][T12309] netlink: 306 bytes leftover after parsing attributes in process `syz.0.2018'. [ 519.580640][T12312] netlink: 'syz.2.2020': attribute type 19 has an invalid length. [ 519.622044][T12312] netlink: 226 bytes leftover after parsing attributes in process `syz.2.2020'. [ 519.645305][T12313] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 519.711477][T12318] device-mapper: ioctl: only supply one of name or uuid, cmd(5) [ 519.895462][T12324] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2023'. [ 520.448987][T12342] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2027'. [ 520.483413][T12342] netlink: 252 bytes leftover after parsing attributes in process `syz.0.2027'. syzkaller syzkaller login: [ 521.630372][ T5645] Bluetooth: hci3: unexpected subevent 0x01 length: 3 < 18 [ 522.557930][T12383] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input11 [ 523.673533][T12402] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2045'. [ 523.733419][T12402] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2045'. [ 525.033019][T12411] Process accounting resumed [ 525.308040][T12434] FAULT_INJECTION: forcing a failure. [ 525.308040][T12434] name failslab, interval 1, probability 0, space 0, times 0 [ 525.362409][T12434] CPU: 0 UID: 0 PID: 12434 Comm: syz.2.2055 Tainted: G L syzkaller #0 PREEMPT(full) [ 525.362465][T12434] Tainted: [L]=SOFTLOCKUP [ 525.362478][T12434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 525.362498][T12434] Call Trace: [ 525.362509][T12434] [ 525.362522][T12434] dump_stack_lvl+0x100/0x190 [ 525.362567][T12434] should_fail_ex.cold+0x5/0xa [ 525.362611][T12434] should_failslab+0xc2/0x120 [ 525.362651][T12434] __kmalloc_cache_noprof+0x7a/0x6f0 [ 525.362702][T12434] ? trace_pid_list_alloc+0x232/0x480 [ 525.362760][T12434] trace_pid_list_alloc+0x232/0x480 [ 525.362814][T12434] trace_pid_write+0x110/0x460 [ 525.362870][T12434] ? __pfx_trace_pid_write+0x10/0x10 [ 525.362954][T12434] event_pid_write.isra.0+0x1e4/0x7d0 [ 525.363007][T12434] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 525.363087][T12434] vfs_write+0x2aa/0x1070 [ 525.363129][T12434] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 525.363185][T12434] ? __pfx_vfs_write+0x10/0x10 [ 525.363222][T12434] ? __fget_files+0x215/0x3d0 [ 525.363271][T12434] ? __fget_files+0x21f/0x3d0 [ 525.363321][T12434] ksys_write+0x12a/0x250 [ 525.363360][T12434] ? __pfx_ksys_write+0x10/0x10 [ 525.363408][T12434] ? rcu_is_watching+0x12/0xc0 [ 525.363455][T12434] do_syscall_64+0x10b/0xf80 [ 525.363508][T12434] ? clear_bhb_loop+0x40/0x90 [ 525.363550][T12434] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.363584][T12434] RIP: 0033:0x7f3936f9ce59 [ 525.363610][T12434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 525.363643][T12434] RSP: 002b:00007f3937db8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 525.363675][T12434] RAX: ffffffffffffffda RBX: 00007f3937215fa0 RCX: 00007f3936f9ce59 [ 525.363696][T12434] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 525.363716][T12434] RBP: 00007f3937032d6f R08: 0000000000000000 R09: 0000000000000000 [ 525.363734][T12434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 525.363753][T12434] R13: 00007f3937216038 R14: 00007f3937215fa0 R15: 00007ffd24825708 [ 525.363796][T12434] [ 525.937114][T12439] FAULT_INJECTION: forcing a failure. [ 525.937114][T12439] name failslab, interval 1, probability 0, space 0, times 0 [ 525.994548][T12439] CPU: 1 UID: 0 PID: 12439 Comm: syz.0.2056 Tainted: G L syzkaller #0 PREEMPT(full) [ 525.994597][T12439] Tainted: [L]=SOFTLOCKUP [ 525.994608][T12439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 525.994627][T12439] Call Trace: [ 525.994636][T12439] [ 525.994648][T12439] dump_stack_lvl+0x100/0x190 [ 525.994689][T12439] should_fail_ex.cold+0x5/0xa [ 525.994729][T12439] should_failslab+0xc2/0x120 [ 525.994768][T12439] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 525.994816][T12439] ? __mpol_dup+0x74/0x390 [ 525.994857][T12439] __mpol_dup+0x74/0x390 [ 525.994917][T12439] ? __pfx___mpol_dup+0x10/0x10 [ 525.994969][T12439] mbind_range+0x2ad/0x550 [ 525.995018][T12439] do_mbind+0x7dc/0xfd0 [ 525.995072][T12439] ? __pfx_do_mbind+0x10/0x10 [ 525.995118][T12439] ? ksys_write+0x190/0x250 [ 525.995174][T12439] ? __pfx_get_nodes+0x10/0x10 [ 525.995217][T12439] kernel_mbind+0x1b7/0x200 [ 525.995272][T12439] ? __pfx_kernel_mbind+0x10/0x10 [ 525.995323][T12439] ? rcu_is_watching+0x12/0xc0 [ 525.995369][T12439] do_syscall_64+0x10b/0xf80 [ 525.995422][T12439] ? clear_bhb_loop+0x40/0x90 [ 525.995468][T12439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.995520][T12439] RIP: 0033:0x7f8b0e39ce59 [ 525.995547][T12439] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 525.995580][T12439] RSP: 002b:00007f8b0f21c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 525.995612][T12439] RAX: ffffffffffffffda RBX: 00007f8b0e616180 RCX: 00007f8b0e39ce59 [ 525.995635][T12439] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 525.995655][T12439] RBP: 00007f8b0e432d6f R08: 0000000000000006 R09: 0000000000000002 [ 525.995675][T12439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 525.995695][T12439] R13: 00007f8b0e616218 R14: 00007f8b0e616180 R15: 00007fff2588dde8 [ 525.995738][T12439] [ 526.956708][T12450] vhci_hcd vhci_hcd.2: invalid port number 111 [ 526.983267][T12450] vhci_hcd vhci_hcd.2: default hub control req: a356 va1b7 i006f l230 [ 527.360719][T12456] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2062'. [ 528.957297][T12481] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2070'. [ 529.987846][T12492] zswap: compressor not available [ 530.035266][T12500] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2076'. [ 530.080691][T12500] netlink: 13 bytes leftover after parsing attributes in process `syz.2.2076'. [ 530.905345][T12515] smpboot: CPU 1 is now offline [ 534.039406][T12537] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2089'. [ 534.099479][T12537] virt_wifi0: entered allmulticast mode [ 534.799365][T12546] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 536.174818][T12564] vcan0: tx drop: invalid da for name 0x000000000000003f [ 537.023928][T12577] netlink: 146 bytes leftover after parsing attributes in process `syz.3.2101'. [ 537.576947][T12589] FAULT_INJECTION: forcing a failure. [ 537.576947][T12589] name failslab, interval 1, probability 0, space 0, times 0 [ 537.621627][T12589] CPU: 1 UID: 0 PID: 12589 Comm: syz.2.2103 Tainted: G L syzkaller #0 PREEMPT(full) [ 537.621678][T12589] Tainted: [L]=SOFTLOCKUP [ 537.621690][T12589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 537.621710][T12589] Call Trace: [ 537.621720][T12589] [ 537.621733][T12589] dump_stack_lvl+0x100/0x190 [ 537.621776][T12589] should_fail_ex.cold+0x5/0xa [ 537.621836][T12589] ? drm_atomic_state_init+0xf4/0x490 [ 537.621935][T12589] should_failslab+0xc2/0x120 [ 537.621975][T12589] __kmalloc_noprof+0xe0/0x850 [ 537.622016][T12589] drm_atomic_state_init+0xf4/0x490 [ 537.622064][T12589] ? kasan_save_track+0x14/0x30 [ 537.622118][T12589] drm_atomic_state_alloc+0xd3/0x120 [ 537.622173][T12589] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 537.622210][T12589] ? rcu_is_watching+0x12/0xc0 [ 537.622251][T12589] ? trace_contention_end+0x122/0x170 [ 537.622291][T12589] ? __mutex_lock+0x26d/0x1b10 [ 537.622326][T12589] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 537.622363][T12589] ? drm_master_internal_acquire+0x21/0x80 [ 537.622474][T12589] drm_client_modeset_commit_locked+0x14d/0x580 [ 537.622521][T12589] drm_client_modeset_commit+0x4f/0x80 [ 537.622559][T12589] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 537.622647][T12589] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 537.622709][T12589] drm_fbdev_client_restore+0x1b/0x30 [ 537.622757][T12589] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 537.622804][T12589] drm_client_dev_restore+0x205/0x2a0 [ 537.622850][T12589] drm_release+0x2c6/0x360 [ 537.622913][T12589] ? __pfx_drm_release+0x10/0x10 [ 537.622968][T12589] __fput+0x3ff/0xb50 [ 537.623029][T12589] task_work_run+0x150/0x240 [ 537.623081][T12589] ? __pfx_task_work_run+0x10/0x10 [ 537.623127][T12589] ? rcu_is_watching+0x12/0xc0 [ 537.623173][T12589] exit_to_user_mode_loop+0x107/0x4f0 [ 537.623206][T12589] ? rcu_is_watching+0x12/0xc0 [ 537.623249][T12589] do_syscall_64+0x6f2/0xf80 [ 537.623299][T12589] ? clear_bhb_loop+0x40/0x90 [ 537.623343][T12589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.623375][T12589] RIP: 0033:0x7f3936f9ce59 [ 537.623402][T12589] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 537.623434][T12589] RSP: 002b:00007f3937db8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 537.623465][T12589] RAX: 0000000000000000 RBX: 00007f3937215fa0 RCX: 00007f3936f9ce59 [ 537.623486][T12589] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 537.623506][T12589] RBP: 00007f3937032d6f R08: 0000000000000000 R09: 0000000000000000 [ 537.623525][T12589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 537.623545][T12589] R13: 00007f3937216038 R14: 00007f3937215fa0 R15: 00007ffd24825708 [ 537.623607][T12589] [ 539.005319][T12610] random: crng reseeded on system resumption [ 539.555881][T12621] netlink: 110 bytes leftover after parsing attributes in process `syz.2.2113'. [ 539.613426][T12623] netlink: 50 bytes leftover after parsing attributes in process `syz.2.2113'. [ 539.879338][T12624] Process accounting resumed [ 540.434729][ T4948] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 540.450287][ T4948] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 540.464409][ T4948] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 540.473934][ T4948] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 540.481835][ T4948] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 541.885587][T12662] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2124'. [ 541.997570][T12664] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2125'. [ 542.552947][ T5645] Bluetooth: hci4: command tx timeout [ 543.639938][T12640] bridge0: port 1(bridge_slave_0) entered blocking state [ 543.660454][T12640] bridge0: port 1(bridge_slave_0) entered disabled state [ 543.684545][T12640] bridge_slave_0: entered allmulticast mode [ 543.708826][T12640] bridge_slave_0: entered promiscuous mode [ 543.739761][T12640] bridge0: port 2(bridge_slave_1) entered blocking state [ 543.758929][T12640] bridge0: port 2(bridge_slave_1) entered disabled state [ 543.782719][T12640] bridge_slave_1: entered allmulticast mode [ 543.817511][T12640] bridge_slave_1: entered promiscuous mode [ 543.996163][T12640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 544.041802][T12640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 544.202840][T12640] team0: Port device team_slave_0 added [ 544.251445][T12640] team0: Port device team_slave_1 added [ 544.426224][T12640] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 544.441802][T12640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 544.477976][T12640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 544.493381][T12640] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 544.500415][T12640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 544.526948][T12640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 544.619743][T12640] hsr_slave_0: entered promiscuous mode [ 544.632832][T12640] hsr_slave_1: entered promiscuous mode [ 544.642162][ T5645] Bluetooth: hci4: command tx timeout [ 544.652723][T12640] debugfs: 'hsr0' already exists in 'hsr' [ 544.666275][T12640] Cannot create hsr debugfs directory [ 545.120009][T12706] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 545.864565][T12640] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 545.969887][T12640] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 545.998690][T12640] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 546.040491][T12640] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 546.075891][T12640] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 546.117434][T12640] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 546.143355][T12640] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 546.180124][T12640] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 546.246336][T12724] netlink: 62 bytes leftover after parsing attributes in process `syz.3.2141'. [ 546.548466][T12640] 8021q: adding VLAN 0 to HW filter on device bond0 [ 546.588823][T12739] netlink: 202 bytes leftover after parsing attributes in process `syz.3.2144'. [ 546.631224][T12640] 8021q: adding VLAN 0 to HW filter on device team0 [ 546.680327][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 546.687570][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 546.711848][ T5645] Bluetooth: hci4: command tx timeout [ 546.770607][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 546.777891][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 546.794939][T12744] random: crng reseeded on system resumption [ 548.791711][ T5645] Bluetooth: hci4: command tx timeout [ 548.860842][T12640] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 549.544581][T12640] veth0_vlan: entered promiscuous mode [ 549.581059][T12640] veth1_vlan: entered promiscuous mode [ 549.685208][T12809] __vm_enough_memory: pid: 12809, comm: syz.3.2159, bytes: 4398046457856 not enough memory for the allocation [ 549.917063][T12640] veth0_macvtap: entered promiscuous mode [ 549.964004][T12640] veth1_macvtap: entered promiscuous mode [ 550.095245][T12640] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 550.134563][T12640] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 550.187634][ T3279] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.222283][ T3279] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.258084][ T3279] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.425039][ T3279] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 550.784246][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 550.808965][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 550.916203][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 550.943109][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 552.280663][T12850] WARNING! power/level is deprecated; use power/control instead [ 552.575140][ T5645] Bluetooth: Frame is too long (len 122, expected len 4) [ 552.959604][T12865] FAULT_INJECTION: forcing a failure. [ 552.959604][T12865] name failslab, interval 1, probability 0, space 0, times 0 [ 553.004208][T12865] CPU: 0 UID: 8 PID: 12865 Comm: syz.3.2175 Tainted: G L syzkaller #0 PREEMPT(full) [ 553.004261][T12865] Tainted: [L]=SOFTLOCKUP [ 553.004274][T12865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 553.004294][T12865] Call Trace: [ 553.004305][T12865] [ 553.004317][T12865] dump_stack_lvl+0x100/0x190 [ 553.004361][T12865] should_fail_ex.cold+0x5/0xa [ 553.004402][T12865] should_failslab+0xc2/0x120 [ 553.004445][T12865] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 553.004507][T12865] ? key_alloc+0x3c5/0x1310 [ 553.004554][T12865] key_alloc+0x3c5/0x1310 [ 553.004624][T12865] ? __pfx_key_alloc+0x10/0x10 [ 553.004677][T12865] keyring_alloc+0x44/0xc0 [ 553.004726][T12865] lookup_user_key+0x9b8/0x1300 [ 553.004768][T12865] ? __pfx_lookup_user_key+0x10/0x10 [ 553.004819][T12865] ? __pfx_futex_wait+0x10/0x10 [ 553.004868][T12865] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 553.004923][T12865] keyctl_get_persistent+0x197/0x8b0 [ 553.004970][T12865] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 553.005020][T12865] ? __x64_sys_futex+0x34f/0x4d0 [ 553.005055][T12865] ? __x64_sys_futex+0x358/0x4d0 [ 553.005093][T12865] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 553.005131][T12865] ? fput+0x79/0x100 [ 553.005174][T12865] ? __pfx___x64_sys_futex+0x10/0x10 [ 553.005211][T12865] ? ksys_write+0x1ac/0x250 [ 553.005247][T12865] ? __pfx_ksys_write+0x10/0x10 [ 553.005291][T12865] __do_sys_keyctl+0x3b2/0x5a0 [ 553.005325][T12865] do_syscall_64+0x10b/0xf80 [ 553.005376][T12865] ? clear_bhb_loop+0x40/0x90 [ 553.005417][T12865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 553.005457][T12865] RIP: 0033:0x7f03e3f9ce59 [ 553.005510][T12865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 553.005545][T12865] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 553.005578][T12865] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 553.005601][T12865] RDX: 7fffffffffffffff RSI: 0000000000000000 RDI: 0000000000000016 [ 553.005622][T12865] RBP: 00007f03e4032d6f R08: 0000000000000002 R09: 0000000000000000 [ 553.005643][T12865] R10: ffffffffffffe6d6 R11: 0000000000000246 R12: 0000000000000000 [ 553.005663][T12865] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 553.005707][T12865] [ 554.869539][T12886] FAULT_INJECTION: forcing a failure. [ 554.869539][T12886] name failslab, interval 1, probability 0, space 0, times 0 [ 554.919093][T12886] CPU: 0 UID: 0 PID: 12886 Comm: syz.3.2178 Tainted: G L syzkaller #0 PREEMPT(full) [ 554.919147][T12886] Tainted: [L]=SOFTLOCKUP [ 554.919160][T12886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 554.919180][T12886] Call Trace: [ 554.919191][T12886] [ 554.919204][T12886] dump_stack_lvl+0x100/0x190 [ 554.919248][T12886] should_fail_ex.cold+0x5/0xa [ 554.919293][T12886] should_failslab+0xc2/0x120 [ 554.919336][T12886] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 554.919393][T12886] ? sock_alloc_inode+0x26/0x290 [ 554.919449][T12886] ? __pfx_sock_alloc_inode+0x10/0x10 [ 554.919500][T12886] sock_alloc_inode+0x26/0x290 [ 554.919545][T12886] ? __pfx_sock_alloc_inode+0x10/0x10 [ 554.919590][T12886] alloc_inode+0x68/0x250 [ 554.919645][T12886] sock_alloc+0x44/0x280 [ 554.919685][T12886] ? security_socket_create+0x7f/0x250 [ 554.919742][T12886] sock_create_lite+0x82/0x120 [ 554.919790][T12886] __netlink_kernel_create+0xbd/0x750 [ 554.919959][T12886] ? __pfx___netlink_kernel_create+0x10/0x10 [ 554.920040][T12886] uevent_net_init+0xf8/0x330 [ 554.920085][T12886] ? __pfx_uevent_net_init+0x10/0x10 [ 554.920132][T12886] ? __pfx_uevent_net_rcv+0x10/0x10 [ 554.920187][T12886] ? __kmalloc_noprof+0x320/0x850 [ 554.920225][T12886] ? __pfx_uevent_net_init+0x10/0x10 [ 554.920264][T12886] ops_init+0x1e2/0x5f0 [ 554.920310][T12886] setup_net+0x118/0x3a0 [ 554.920352][T12886] ? __pfx_setup_net+0x10/0x10 [ 554.920393][T12886] ? mutex_init_lockdep+0xf1/0x120 [ 554.920436][T12886] copy_net_ns+0x46f/0x7c0 [ 554.920485][T12886] create_new_namespaces+0x3ea/0xac0 [ 554.920538][T12886] unshare_nsproxy_namespaces+0xf2/0x220 [ 554.920587][T12886] ksys_unshare+0x438/0xab0 [ 554.920638][T12886] ? __pfx_ksys_unshare+0x10/0x10 [ 554.920683][T12886] ? xfd_validate_state+0x129/0x190 [ 554.920716][T12886] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 554.920762][T12886] __x64_sys_unshare+0x31/0x40 [ 554.920817][T12886] do_syscall_64+0x10b/0xf80 [ 554.920869][T12886] ? clear_bhb_loop+0x40/0x90 [ 554.920912][T12886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.920945][T12886] RIP: 0033:0x7f03e3f9ce59 [ 554.920991][T12886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 554.921026][T12886] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 554.921059][T12886] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 554.921082][T12886] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 554.921103][T12886] RBP: 00007f03e4032d6f R08: 0000000000000000 R09: 0000000000000000 [ 554.921124][T12886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.921145][T12886] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 554.921191][T12886] [ 555.201436][T12886] kobject_uevent: unable to create netlink socket! [ 555.806355][T12875] Process accounting paused [ 556.764623][T12917] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2188'. [ 556.827338][T12918] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2188'. [ 557.892082][T12932] random: crng reseeded on system resumption [ 559.516768][T12960] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2203'. [ 559.554964][T12960] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 559.649008][T12960] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 560.914178][T12980] netlink: 13 bytes leftover after parsing attributes in process `syz.3.2208'. [ 561.580236][ T5645] block nbd0: Receive control failed (result -32) [ 562.780265][T13020] FAULT_INJECTION: forcing a failure. [ 562.780265][T13020] name failslab, interval 1, probability 0, space 0, times 0 [ 562.803530][T13021] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2223'. [ 562.860374][T13020] CPU: 1 UID: 0 PID: 13020 Comm: syz.2.2222 Tainted: G L syzkaller #0 PREEMPT(full) [ 562.860427][T13020] Tainted: [L]=SOFTLOCKUP [ 562.860440][T13020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 562.860459][T13020] Call Trace: [ 562.860470][T13020] [ 562.860483][T13020] dump_stack_lvl+0x100/0x190 [ 562.860527][T13020] should_fail_ex.cold+0x5/0xa [ 562.860570][T13020] should_failslab+0xc2/0x120 [ 562.860610][T13020] __kmalloc_cache_noprof+0x7a/0x6f0 [ 562.860658][T13020] ? drm_atomic_state_alloc+0xb8/0x120 [ 562.860721][T13020] drm_atomic_state_alloc+0xb8/0x120 [ 562.860774][T13020] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 562.860809][T13020] ? rcu_is_watching+0x12/0xc0 [ 562.860850][T13020] ? trace_contention_end+0x122/0x170 [ 562.860890][T13020] ? __mutex_lock+0x26d/0x1b10 [ 562.860923][T13020] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 562.860960][T13020] ? drm_master_internal_acquire+0x21/0x80 [ 562.861062][T13020] drm_client_modeset_commit_locked+0x14d/0x580 [ 562.861117][T13020] drm_client_modeset_commit+0x4f/0x80 [ 562.861153][T13020] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 562.861213][T13020] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 562.861270][T13020] drm_fbdev_client_restore+0x1b/0x30 [ 562.861314][T13020] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 562.861357][T13020] drm_client_dev_restore+0x205/0x2a0 [ 562.861401][T13020] drm_release+0x2c6/0x360 [ 562.861472][T13020] ? __pfx_drm_release+0x10/0x10 [ 562.861525][T13020] __fput+0x3ff/0xb50 [ 562.861584][T13020] task_work_run+0x150/0x240 [ 562.861620][T13020] ? __pfx_task_work_run+0x10/0x10 [ 562.861674][T13020] ? rcu_is_watching+0x12/0xc0 [ 562.861736][T13020] exit_to_user_mode_loop+0x107/0x4f0 [ 562.861768][T13020] ? rcu_is_watching+0x12/0xc0 [ 562.861813][T13020] do_syscall_64+0x6f2/0xf80 [ 562.861864][T13020] ? clear_bhb_loop+0x40/0x90 [ 562.861905][T13020] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.861939][T13020] RIP: 0033:0x7f3936f9ce59 [ 562.861965][T13020] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 562.861998][T13020] RSP: 002b:00007f3937db8028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 562.862037][T13020] RAX: 0000000000000000 RBX: 00007f3937215fa0 RCX: 00007f3936f9ce59 [ 562.862059][T13020] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 562.862078][T13020] RBP: 00007f3937032d6f R08: 0000000000000000 R09: 0000000000000000 [ 562.862098][T13020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 562.862118][T13020] R13: 00007f3937216038 R14: 00007f3937215fa0 R15: 00007ffd24825708 [ 562.862163][T13020] [ 563.003364][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.184963][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.820229][T13046] zswap: compressor not available [ 568.501972][T13147] block nbd0: Cannot use ioctl interface on a netlink controlled device. [ 569.089623][T13157] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2266'. [ 569.154689][T13165] FAULT_INJECTION: forcing a failure. [ 569.154689][T13165] name failslab, interval 1, probability 0, space 0, times 0 [ 569.283959][T13165] CPU: 0 UID: 0 PID: 13165 Comm: syz.0.2267 Tainted: G L syzkaller #0 PREEMPT(full) [ 569.284019][T13165] Tainted: [L]=SOFTLOCKUP [ 569.284031][T13165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 569.284052][T13165] Call Trace: [ 569.284063][T13165] [ 569.284075][T13165] dump_stack_lvl+0x100/0x190 [ 569.284117][T13165] should_fail_ex.cold+0x5/0xa [ 569.284161][T13165] should_failslab+0xc2/0x120 [ 569.284206][T13165] __kmalloc_cache_noprof+0x7a/0x6f0 [ 569.284258][T13165] ? trace_pid_list_alloc+0x2fe/0x480 [ 569.284315][T13165] trace_pid_list_alloc+0x2fe/0x480 [ 569.284372][T13165] trace_pid_write+0x110/0x460 [ 569.284424][T13165] ? __pfx_trace_pid_write+0x10/0x10 [ 569.284500][T13165] event_pid_write.isra.0+0x1e4/0x7d0 [ 569.284566][T13165] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 569.284633][T13165] vfs_write+0x2aa/0x1070 [ 569.284676][T13165] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 569.284734][T13165] ? __pfx_vfs_write+0x10/0x10 [ 569.284773][T13165] ? __fget_files+0x215/0x3d0 [ 569.284824][T13165] ? __fget_files+0x21f/0x3d0 [ 569.284878][T13165] ksys_write+0x12a/0x250 [ 569.284919][T13165] ? __pfx_ksys_write+0x10/0x10 [ 569.284963][T13165] ? rcu_is_watching+0x12/0xc0 [ 569.285011][T13165] do_syscall_64+0x10b/0xf80 [ 569.285064][T13165] ? clear_bhb_loop+0x40/0x90 [ 569.285108][T13165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.285143][T13165] RIP: 0033:0x7f8b0e39ce59 [ 569.285169][T13165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 569.285205][T13165] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 569.285238][T13165] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 569.285262][T13165] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 569.285283][T13165] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 569.285303][T13165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.285323][T13165] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 569.285368][T13165] [ 570.051452][T13167] Process accounting paused [ 570.618829][T13181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2272'. [ 575.847697][T13279] smpboot: CPU 1 is now offline [ 575.938252][T13283] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 578.140208][T13306] MTRR 1 not used [ 578.982468][T13321] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 579.001278][T13318] HfR: entered promiscuous mode [ 579.045197][T13323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2315'. [ 579.130699][T13323] HfR: left promiscuous mode [ 581.421156][T13361] netlink: 54 bytes leftover after parsing attributes in process `syz.3.2327'. [ 583.842161][T13400] FAULT_INJECTION: forcing a failure. [ 583.842161][T13400] name failslab, interval 1, probability 0, space 0, times 0 [ 583.930233][T13400] CPU: 0 UID: 0 PID: 13400 Comm: syz.3.2341 Tainted: G L syzkaller #0 PREEMPT(full) [ 583.930272][T13400] Tainted: [L]=SOFTLOCKUP [ 583.930280][T13400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 583.930301][T13400] Call Trace: [ 583.930309][T13400] [ 583.930318][T13400] dump_stack_lvl+0x100/0x190 [ 583.930352][T13400] should_fail_ex.cold+0x5/0xa [ 583.930382][T13400] should_failslab+0xc2/0x120 [ 583.930412][T13400] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 583.930451][T13400] ? ima_inode_get+0x11f/0x580 [ 583.930495][T13400] ima_inode_get+0x11f/0x580 [ 583.930535][T13400] process_measurement+0x1213/0x2350 [ 583.930578][T13400] ? stack_depot_save_flags+0x27/0x9d0 [ 583.930609][T13400] ? stack_trace_save+0x8e/0xc0 [ 583.930644][T13400] ? __pfx_process_measurement+0x10/0x10 [ 583.930683][T13400] ? __lock_acquire+0x4a5/0x2630 [ 583.930706][T13400] ? __kasan_slab_alloc+0x89/0x90 [ 583.930731][T13400] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 583.930769][T13400] ? init_file+0x95/0x480 [ 583.930801][T13400] ? alloc_empty_file+0x79/0x1c0 [ 583.930835][T13400] ? alloc_file_pseudo+0x13a/0x230 [ 583.930870][T13400] ? ksys_mmap_pgoff+0x242/0x610 [ 583.930897][T13400] ? __x64_sys_mmap+0x125/0x190 [ 583.930922][T13400] ? do_syscall_64+0x10b/0xf80 [ 583.930990][T13400] ? __pfx_aa_file_perm+0x10/0x10 [ 583.931032][T13400] ima_file_mmap+0x1c4/0x1f0 [ 583.931071][T13400] ? __pfx_ima_file_mmap+0x10/0x10 [ 583.931117][T13400] security_mmap_file+0x278/0x9b0 [ 583.931149][T13400] vm_mmap_pgoff+0xec/0x470 [ 583.931183][T13400] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 583.931211][T13400] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 583.931249][T13400] ? hugetlbfs_get_inode+0x3f5/0x700 [ 583.931299][T13400] ksys_mmap_pgoff+0x285/0x610 [ 583.931339][T13400] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 583.931369][T13400] ? xfd_validate_state+0x129/0x190 [ 583.931406][T13400] __x64_sys_mmap+0x125/0x190 [ 583.931435][T13400] do_syscall_64+0x10b/0xf80 [ 583.931471][T13400] ? clear_bhb_loop+0x40/0x90 [ 583.931506][T13400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.931531][T13400] RIP: 0033:0x7f03e3f9ce59 [ 583.931550][T13400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 583.931574][T13400] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 583.931597][T13400] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 583.931613][T13400] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 583.931628][T13400] RBP: 00007f03e4032d6f R08: 0000000000000401 R09: 0000300000000000 [ 583.931643][T13400] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 583.931657][T13400] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 583.931687][T13400] [ 586.266452][T13418] Process accounting resumed [ 587.568682][T13450] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 588.821160][T13471] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2364'. [ 588.895855][T13471] veth1_macvtap: left promiscuous mode [ 588.926620][T13471] macsec0: entered promiscuous mode [ 588.966219][T13471] macsec0: entered allmulticast mode [ 589.004596][T13474] netlink: 246 bytes leftover after parsing attributes in process `syz.0.2363'. [ 590.785266][T13483] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 590.820100][T13483] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 590.847067][T13483] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 590.904447][T13483] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 590.932934][T13483] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 590.960523][T13483] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 590.996291][T13483] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 591.025873][T13483] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 591.497364][T13494] netlink: 'syz.4.2371': attribute type 11 has an invalid length. [ 592.231927][ T5645] Bluetooth: hci1: command 0x0406 tx timeout [ 592.871841][ T5645] Bluetooth: hci2: command 0x2016 tx timeout [ 592.944037][T13518] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2379'. [ 592.954509][ T5645] Bluetooth: hci3: command 0x2016 tx timeout [ 592.961436][ T4948] Bluetooth: hci0: command 0x2016 tx timeout [ 593.032003][ T5645] Bluetooth: hci4: command 0x0c1a tx timeout [ 593.271027][T13512] FAULT_INJECTION: forcing a failure. [ 593.271027][T13512] name failslab, interval 1, probability 0, space 0, times 0 [ 593.348403][T13512] CPU: 0 UID: 0 PID: 13512 Comm: syz.3.2377 Tainted: G L syzkaller #0 PREEMPT(full) [ 593.348441][T13512] Tainted: [L]=SOFTLOCKUP [ 593.348449][T13512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 593.348464][T13512] Call Trace: [ 593.348471][T13512] [ 593.348482][T13512] dump_stack_lvl+0x100/0x190 [ 593.348513][T13512] should_fail_ex.cold+0x5/0xa [ 593.348542][T13512] should_failslab+0xc2/0x120 [ 593.348569][T13512] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 593.348606][T13512] ? mpol_new+0x11b/0x2d0 [ 593.348627][T13512] ? find_held_lock+0x2b/0x80 [ 593.348657][T13512] ? futex_wake+0x456/0x530 [ 593.348690][T13512] mpol_new+0x11b/0x2d0 [ 593.348714][T13512] do_mbind+0x210/0xfd0 [ 593.348753][T13512] ? __pfx_do_mbind+0x10/0x10 [ 593.348784][T13512] ? __lock_acquire+0x4a5/0x2630 [ 593.348819][T13512] ? __pfx_get_nodes+0x10/0x10 [ 593.348849][T13512] kernel_mbind+0x1b7/0x200 [ 593.348883][T13512] ? __pfx_kernel_mbind+0x10/0x10 [ 593.348917][T13512] ? rcu_is_watching+0x12/0xc0 [ 593.348949][T13512] do_syscall_64+0x10b/0xf80 [ 593.348985][T13512] ? clear_bhb_loop+0x40/0x90 [ 593.349013][T13512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 593.349036][T13512] RIP: 0033:0x7f03e3f9ce59 [ 593.349055][T13512] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 593.349078][T13512] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 593.349100][T13512] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 593.349115][T13512] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 593.349129][T13512] RBP: 00007f03e4032d6f R08: 0000000000000006 R09: 0000000000000002 [ 593.349143][T13512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 593.349156][T13512] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 593.349185][T13512] [ 593.898632][T13526] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=4294967104 (137438947328 ns) > initial count (6624 ns). Using initial count to start timer. [ 594.952732][ T5645] Bluetooth: hci2: command 0x2016 tx timeout [ 595.112280][ T5645] Bluetooth: hci4: command 0x0c1a tx timeout [ 595.238026][T13548] FAULT_INJECTION: forcing a failure. [ 595.238026][T13548] name failslab, interval 1, probability 0, space 0, times 0 [ 595.276630][T13549] FAULT_INJECTION: forcing a failure. [ 595.276630][T13549] name failslab, interval 1, probability 0, space 0, times 0 [ 595.320639][T13548] CPU: 0 UID: 0 PID: 13548 Comm: syz.3.2386 Tainted: G L syzkaller #0 PREEMPT(full) [ 595.320678][T13548] Tainted: [L]=SOFTLOCKUP [ 595.320686][T13548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 595.320700][T13548] Call Trace: [ 595.320707][T13548] [ 595.320716][T13548] dump_stack_lvl+0x100/0x190 [ 595.320746][T13548] should_fail_ex.cold+0x5/0xa [ 595.320776][T13548] should_failslab+0xc2/0x120 [ 595.320803][T13548] __kmalloc_cache_node_noprof+0x7d/0x770 [ 595.320830][T13548] ? __alloc_workqueue+0xf57/0x1980 [ 595.320863][T13548] ? lockdep_init_map_type+0x5c/0x250 [ 595.320891][T13548] __alloc_workqueue+0xf57/0x1980 [ 595.320934][T13548] alloc_workqueue_noprof+0xc7/0x130 [ 595.320972][T13548] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 595.321013][T13548] ? __pfx___debug_object_init+0x10/0x10 [ 595.321059][T13548] nci_register_device+0x394/0xb80 [ 595.321091][T13548] ? __pfx_nci_register_device+0x10/0x10 [ 595.321125][T13548] ? lockdep_init_map_type+0x5c/0x250 [ 595.321160][T13548] virtual_ncidev_open+0x141/0x220 [ 595.321203][T13548] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 595.321241][T13548] misc_open+0x26d/0x450 [ 595.321273][T13548] ? __pfx_misc_open+0x10/0x10 [ 595.321303][T13548] chrdev_open+0x234/0x6a0 [ 595.321331][T13548] ? __pfx_apparmor_file_open+0x10/0x10 [ 595.321354][T13548] ? __pfx_chrdev_open+0x10/0x10 [ 595.321385][T13548] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 595.321423][T13548] do_dentry_open+0x6d8/0x1660 [ 595.321451][T13548] ? __pfx_chrdev_open+0x10/0x10 [ 595.321487][T13548] vfs_open+0x82/0x3f0 [ 595.321524][T13548] path_openat+0x208c/0x31a0 [ 595.321563][T13548] ? __pfx_path_openat+0x10/0x10 [ 595.321603][T13548] do_file_open+0x20e/0x430 [ 595.321635][T13548] ? __pfx_do_file_open+0x10/0x10 [ 595.321684][T13548] ? alloc_fd+0x476/0x790 [ 595.321715][T13548] ? do_getname+0x191/0x390 [ 595.321752][T13548] do_sys_openat2+0x10d/0x1e0 [ 595.321788][T13548] ? __pfx_do_sys_openat2+0x10/0x10 [ 595.321834][T13548] __x64_sys_openat+0x12d/0x210 [ 595.321872][T13548] ? __pfx___x64_sys_openat+0x10/0x10 [ 595.321914][T13548] ? rcu_is_watching+0x12/0xc0 [ 595.321946][T13548] do_syscall_64+0x10b/0xf80 [ 595.321982][T13548] ? clear_bhb_loop+0x40/0x90 [ 595.322011][T13548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.322034][T13548] RIP: 0033:0x7f03e3f9ce59 [ 595.322052][T13548] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.322076][T13548] RSP: 002b:00007f03e4dab028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 595.322098][T13548] RAX: ffffffffffffffda RBX: 00007f03e4216090 RCX: 00007f03e3f9ce59 [ 595.322113][T13548] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 595.322128][T13548] RBP: 00007f03e4032d6f R08: 0000000000000000 R09: 0000000000000000 [ 595.322142][T13548] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000 [ 595.322163][T13548] R13: 00007f03e4216128 R14: 00007f03e4216090 R15: 00007ffc4c2180a8 [ 595.322225][T13548] [ 595.941767][T13549] CPU: 0 UID: 0 PID: 13549 Comm: syz.4.2387 Tainted: G L syzkaller #0 PREEMPT(full) [ 595.941804][T13549] Tainted: [L]=SOFTLOCKUP [ 595.941811][T13549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 595.941825][T13549] Call Trace: [ 595.941832][T13549] [ 595.941841][T13549] dump_stack_lvl+0x100/0x190 [ 595.941868][T13549] should_fail_ex.cold+0x5/0xa [ 595.941896][T13549] should_failslab+0xc2/0x120 [ 595.941921][T13549] __kmalloc_cache_noprof+0x7a/0x6f0 [ 595.941953][T13549] ? snd_seq_port_connect+0x61/0x550 [ 595.942091][T13549] ? snd_seq_port_use_ptr+0x136/0x1a0 [ 595.942123][T13549] ? snd_seq_port_use_ptr+0x136/0x1a0 [ 595.942158][T13549] snd_seq_port_connect+0x61/0x550 [ 595.942191][T13549] ? _raw_read_unlock+0x28/0x50 [ 595.942226][T13549] ? check_subscription_permission.isra.0+0x146/0x240 [ 595.942264][T13549] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 595.942303][T13549] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 595.942363][T13549] call_seq_client_ctl+0xa3/0x130 [ 595.942416][T13549] snd_seq_kernel_client_ctl+0x77/0xd0 [ 595.942451][T13549] snd_seq_oss_midi_open+0x474/0x690 [ 595.942503][T13549] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 595.942545][T13549] snd_seq_oss_synth_setup_midi+0x131/0x590 [ 595.942576][T13549] snd_seq_oss_open+0x82e/0xa10 [ 595.942616][T13549] odev_open+0x6f/0x90 [ 595.942646][T13549] ? __pfx_odev_open+0x10/0x10 [ 595.942677][T13549] soundcore_open+0x2e3/0x5a0 [ 595.942752][T13549] ? __pfx_soundcore_open+0x10/0x10 [ 595.942785][T13549] chrdev_open+0x234/0x6a0 [ 595.942815][T13549] ? __pfx_apparmor_file_open+0x10/0x10 [ 595.942837][T13549] ? __pfx_chrdev_open+0x10/0x10 [ 595.942868][T13549] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 595.942906][T13549] do_dentry_open+0x6d8/0x1660 [ 595.942934][T13549] ? __pfx_chrdev_open+0x10/0x10 [ 595.942970][T13549] vfs_open+0x82/0x3f0 [ 595.943008][T13549] path_openat+0x208c/0x31a0 [ 595.943047][T13549] ? __pfx_path_openat+0x10/0x10 [ 595.943093][T13549] do_file_open+0x20e/0x430 [ 595.943125][T13549] ? __pfx_do_file_open+0x10/0x10 [ 595.943176][T13549] ? alloc_fd+0x476/0x790 [ 595.943224][T13549] ? do_getname+0x191/0x390 [ 595.943261][T13549] do_sys_openat2+0x10d/0x1e0 [ 595.943295][T13549] ? __pfx_do_sys_openat2+0x10/0x10 [ 595.943340][T13549] __x64_sys_openat+0x12d/0x210 [ 595.943376][T13549] ? __pfx___x64_sys_openat+0x10/0x10 [ 595.943415][T13549] ? rcu_is_watching+0x12/0xc0 [ 595.943445][T13549] do_syscall_64+0x10b/0xf80 [ 595.943479][T13549] ? clear_bhb_loop+0x40/0x90 [ 595.943506][T13549] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.943528][T13549] RIP: 0033:0x7f6673f9ce59 [ 595.943547][T13549] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.943569][T13549] RSP: 002b:00007f6674de6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 595.943589][T13549] RAX: ffffffffffffffda RBX: 00007f6674215fa0 RCX: 00007f6673f9ce59 [ 595.943608][T13549] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 595.943622][T13549] RBP: 00007f6674032d6f R08: 0000000000000000 R09: 0000000000000000 [ 595.943635][T13549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.943647][T13549] R13: 00007f6674216038 R14: 00007f6674215fa0 R15: 00007fffff6bc0f8 [ 595.943675][T13549] [ 596.846622][T13564] netlink: 202 bytes leftover after parsing attributes in process `syz.4.2393'. [ 597.194400][ T5645] Bluetooth: hci4: command 0x0c1a tx timeout [ 597.908122][T13578] netlink: 'syz.0.2396': attribute type 10 has an invalid length. [ 597.964449][T13578] netlink: 'syz.0.2396': attribute type 13 has an invalid length. [ 599.846048][T13610] netlink: 202 bytes leftover after parsing attributes in process `syz.4.2406'. [ 599.916572][T13615] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2407'. [ 600.130815][T13619] binder: 13618:13619 ioctl 400c620e 0 returned -22 [ 600.666259][T13607] Process accounting resumed [ 603.797597][T13675] FAULT_INJECTION: forcing a failure. [ 603.797597][T13675] name failslab, interval 1, probability 0, space 0, times 0 [ 603.847665][T13675] CPU: 0 UID: 0 PID: 13675 Comm: syz.3.2425 Tainted: G L syzkaller #0 PREEMPT(full) [ 603.847701][T13675] Tainted: [L]=SOFTLOCKUP [ 603.847709][T13675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 603.847722][T13675] Call Trace: [ 603.847728][T13675] [ 603.847736][T13675] dump_stack_lvl+0x100/0x190 [ 603.847764][T13675] should_fail_ex.cold+0x5/0xa [ 603.847809][T13675] ? ring_buffer_read_start+0x1b9/0x450 [ 603.847840][T13675] should_failslab+0xc2/0x120 [ 603.847868][T13675] __kmalloc_noprof+0xe0/0x850 [ 603.847895][T13675] ring_buffer_read_start+0x1b9/0x450 [ 603.847927][T13675] ? __pfx_ring_buffer_read_start+0x10/0x10 [ 603.847957][T13675] ? lockdep_init_map_type+0x5c/0x250 [ 603.847983][T13675] ? ring_buffer_overruns+0x14e/0x1a0 [ 603.848010][T13675] __tracing_open+0x74e/0xa80 [ 603.848039][T13675] tracing_open+0x26b/0x4d0 [ 603.848066][T13675] do_dentry_open+0x6d8/0x1660 [ 603.848094][T13675] ? __pfx_tracing_open+0x10/0x10 [ 603.848125][T13675] vfs_open+0x82/0x3f0 [ 603.848163][T13675] path_openat+0x208c/0x31a0 [ 603.848202][T13675] ? __pfx_path_openat+0x10/0x10 [ 603.848242][T13675] do_file_open+0x20e/0x430 [ 603.848281][T13675] ? __pfx_do_file_open+0x10/0x10 [ 603.848331][T13675] ? alloc_fd+0x476/0x790 [ 603.848362][T13675] ? do_getname+0x191/0x390 [ 603.848400][T13675] do_sys_openat2+0x10d/0x1e0 [ 603.848437][T13675] ? __pfx_do_sys_openat2+0x10/0x10 [ 603.848487][T13675] ? __fget_files+0x21f/0x3d0 [ 603.848521][T13675] __x64_sys_openat+0x12d/0x210 [ 603.848556][T13675] ? __pfx___x64_sys_openat+0x10/0x10 [ 603.848596][T13675] ? rcu_is_watching+0x12/0xc0 [ 603.848625][T13675] do_syscall_64+0x10b/0xf80 [ 603.848659][T13675] ? clear_bhb_loop+0x40/0x90 [ 603.848686][T13675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.848708][T13675] RIP: 0033:0x7f03e3f9ce59 [ 603.848725][T13675] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 603.848747][T13675] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 603.848767][T13675] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 603.848781][T13675] RDX: 1a6b75d638828712 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 603.848795][T13675] RBP: 00007f03e4032d6f R08: 0000000000000000 R09: 0000000000000000 [ 603.848808][T13675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 603.848821][T13675] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 603.848849][T13675] [ 604.367369][T13683] netlink: 'syz.3.2429': attribute type 10 has an invalid length. [ 604.378684][T13683] netlink: 230 bytes leftover after parsing attributes in process `syz.3.2429'. [ 604.763905][T13693] FAULT_INJECTION: forcing a failure. [ 604.763905][T13693] name failslab, interval 1, probability 0, space 0, times 0 [ 604.822238][T13693] CPU: 0 UID: 0 PID: 13693 Comm: syz.3.2433 Tainted: G L syzkaller #0 PREEMPT(full) [ 604.822276][T13693] Tainted: [L]=SOFTLOCKUP [ 604.822284][T13693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 604.822299][T13693] Call Trace: [ 604.822306][T13693] [ 604.822314][T13693] dump_stack_lvl+0x100/0x190 [ 604.822343][T13693] should_fail_ex.cold+0x5/0xa [ 604.822373][T13693] should_failslab+0xc2/0x120 [ 604.822419][T13693] __kmalloc_cache_noprof+0x7a/0x6f0 [ 604.822455][T13693] ? alloc_pipe_info+0x10e/0x590 [ 604.822486][T13693] ? security_inode_alloc+0xcf/0x2c0 [ 604.822514][T13693] alloc_pipe_info+0x10e/0x590 [ 604.822548][T13693] create_pipe_files+0x8c/0x970 [ 604.822586][T13693] do_pipe2+0xbd/0x1e0 [ 604.822616][T13693] ? __pfx_do_pipe2+0x10/0x10 [ 604.822646][T13693] ? xfd_validate_state+0x129/0x190 [ 604.822675][T13693] ? syscall_user_dispatch+0x76/0x130 [ 604.822705][T13693] __x64_sys_pipe+0x33/0x50 [ 604.822736][T13693] do_syscall_64+0x10b/0xf80 [ 604.822775][T13693] ? clear_bhb_loop+0x40/0x90 [ 604.822803][T13693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.822827][T13693] RIP: 0033:0x7f03e3f9ce59 [ 604.822847][T13693] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 604.822871][T13693] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 604.822893][T13693] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 604.822909][T13693] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 604.822923][T13693] RBP: 00007f03e4032d6f R08: 0000000000000000 R09: 0000000000000000 [ 604.822937][T13693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 604.822952][T13693] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 604.822981][T13693] [ 605.239918][T13691] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2432'. [ 605.654706][T13699] bond0: invalid ARP target specified [ 606.057111][ T4948] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 606.074067][ T4948] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 606.087145][ T4948] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 606.101725][ T4948] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 606.112541][ T4948] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 606.719240][T13720] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 607.719316][T13744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2448'. [ 607.778335][T13747] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2448'. [ 608.151833][ T4948] Bluetooth: hci5: command tx timeout [ 609.187659][T13704] bridge0: port 1(bridge_slave_0) entered blocking state [ 609.234585][T13704] bridge0: port 1(bridge_slave_0) entered disabled state [ 609.273729][T13704] bridge_slave_0: entered allmulticast mode [ 609.317375][T13704] bridge_slave_0: entered promiscuous mode [ 609.377261][T13704] bridge0: port 2(bridge_slave_1) entered blocking state [ 609.427322][T13704] bridge0: port 2(bridge_slave_1) entered disabled state [ 609.475787][T13704] bridge_slave_1: entered allmulticast mode [ 609.533560][T13704] bridge_slave_1: entered promiscuous mode [ 609.697266][T13704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 609.768476][T13704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 609.803909][T13780] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 609.864289][T13780] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 609.974078][T13704] team0: Port device team_slave_0 added [ 610.024955][T13704] team0: Port device team_slave_1 added [ 610.187818][T13704] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 610.226133][T13704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 610.268073][ T4948] Bluetooth: hci5: command tx timeout [ 610.373982][T13704] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 610.449416][T13704] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 610.491471][T13704] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 610.638455][T13704] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 610.935238][T13704] hsr_slave_0: entered promiscuous mode [ 610.994524][T13704] hsr_slave_1: entered promiscuous mode [ 611.027112][T13704] debugfs: 'hsr0' already exists in 'hsr' [ 611.060908][T13704] Cannot create hsr debugfs directory [ 611.927267][T13814] FAULT_INJECTION: forcing a failure. [ 611.927267][T13814] name failslab, interval 1, probability 0, space 0, times 0 [ 612.013389][T13814] CPU: 0 UID: 0 PID: 13814 Comm: syz.0.2466 Tainted: G L syzkaller #0 PREEMPT(full) [ 612.013433][T13814] Tainted: [L]=SOFTLOCKUP [ 612.013441][T13814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 612.013454][T13814] Call Trace: [ 612.013462][T13814] [ 612.013470][T13814] dump_stack_lvl+0x100/0x190 [ 612.013499][T13814] should_fail_ex.cold+0x5/0xa [ 612.013526][T13814] ? tomoyo_realpath_from_path+0xb6/0x690 [ 612.013556][T13814] should_failslab+0xc2/0x120 [ 612.013582][T13814] __kmalloc_noprof+0xe0/0x850 [ 612.013601][T13814] ? kfree+0x1dd/0x6c0 [ 612.013637][T13814] tomoyo_realpath_from_path+0xb6/0x690 [ 612.013673][T13814] tomoyo_path_number_perm+0x23c/0x580 [ 612.013697][T13814] ? tomoyo_path_number_perm+0x22e/0x580 [ 612.013722][T13814] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 612.013771][T13814] ? current_check_access_path+0x269/0x430 [ 612.013801][T13814] ? __pfx_current_check_access_path+0x10/0x10 [ 612.013832][T13814] ? d_alloc_parallel+0x864/0x14e0 [ 612.013859][T13814] tomoyo_path_mknod+0x164/0x190 [ 612.013892][T13814] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 612.013924][T13814] ? find_held_lock+0x2b/0x80 [ 612.013953][T13814] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 612.013990][T13814] security_path_mknod+0x161/0x300 [ 612.014021][T13814] may_o_create+0x30/0x3a0 [ 612.014058][T13814] lookup_open.isra.0+0xa0d/0x11b0 [ 612.014086][T13814] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 612.014114][T13814] ? __pfx___might_resched+0x10/0x10 [ 612.014138][T13814] ? mnt_get_write_access+0x52/0x2f0 [ 612.014193][T13814] ? __pfx_down_write+0x10/0x10 [ 612.014215][T13814] ? mnt_get_write_access+0x1e9/0x2f0 [ 612.014254][T13814] path_openat+0x2291/0x31a0 [ 612.014287][T13814] ? entry_SYSCALL_64_after_hwframe+0x48/0x7f [ 612.014312][T13814] ? __pfx_path_openat+0x10/0x10 [ 612.014350][T13814] do_file_open+0x20e/0x430 [ 612.014379][T13814] ? __pfx_do_file_open+0x10/0x10 [ 612.014431][T13814] ? _raw_spin_unlock+0x28/0x50 [ 612.014461][T13814] ? alloc_fd+0x476/0x790 [ 612.014494][T13814] do_sys_openat2+0x10d/0x1e0 [ 612.014529][T13814] ? __pfx_do_sys_openat2+0x10/0x10 [ 612.014572][T13814] __x64_sys_open+0xfe/0x1d0 [ 612.014625][T13814] ? __pfx___x64_sys_open+0x10/0x10 [ 612.014660][T13814] ? ksys_write+0x1ac/0x250 [ 612.014690][T13814] ? rcu_is_watching+0x12/0xc0 [ 612.014735][T13814] do_syscall_64+0x10b/0xf80 [ 612.014768][T13814] ? clear_bhb_loop+0x40/0x90 [ 612.014794][T13814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.014834][T13814] RIP: 0033:0x7f8b0e39ce59 [ 612.014853][T13814] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 612.014875][T13814] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 612.014897][T13814] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 612.014913][T13814] RDX: 0000000000000000 RSI: 0000000000149443 RDI: 0000200000000040 [ 612.014927][T13814] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 612.014941][T13814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 612.014955][T13814] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 612.014984][T13814] [ 612.677437][T13814] ERROR: Out of memory at tomoyo_realpath_from_path. [ 612.686621][T13815] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 612.772464][ T4948] Bluetooth: hci5: command tx timeout [ 613.363413][T13824] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2470'. [ 613.530911][T13704] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 613.735903][T13704] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 613.830948][T13704] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 613.958731][T13704] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 613.971184][T13835] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2475'. [ 614.004164][T13704] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 614.056416][T13704] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 614.100336][T13704] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 614.160980][T13704] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 614.204423][T13834] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 614.204423][T13834] M' is too long [ 614.269599][T13834] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 614.269599][T13834] W ' is too long [ 614.791976][ T4948] Bluetooth: hci5: command tx timeout [ 615.163351][T13704] 8021q: adding VLAN 0 to HW filter on device bond0 [ 615.230236][T13859] FAULT_INJECTION: forcing a failure. [ 615.230236][T13859] name failslab, interval 1, probability 0, space 0, times 0 [ 615.288448][T13704] 8021q: adding VLAN 0 to HW filter on device team0 [ 615.357794][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 615.365082][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 615.434029][T13859] CPU: 0 UID: 0 PID: 13859 Comm: syz.0.2480 Tainted: G L syzkaller #0 PREEMPT(full) [ 615.434072][T13859] Tainted: [L]=SOFTLOCKUP [ 615.434081][T13859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 615.434095][T13859] Call Trace: [ 615.434103][T13859] [ 615.434112][T13859] dump_stack_lvl+0x100/0x190 [ 615.434141][T13859] should_fail_ex.cold+0x5/0xa [ 615.434171][T13859] should_failslab+0xc2/0x120 [ 615.434198][T13859] __kvmalloc_node_noprof+0xfa/0xa00 [ 615.434221][T13859] ? io_uring_setup.cold+0x171/0x1c6e [ 615.434259][T13859] ? lockdep_init_map_type+0x5c/0x250 [ 615.434288][T13859] io_uring_setup.cold+0x171/0x1c6e [ 615.434328][T13859] ? __pfx_io_uring_setup+0x10/0x10 [ 615.434360][T13859] ? do_futex+0x192/0x350 [ 615.434386][T13859] ? __pfx_do_futex+0x10/0x10 [ 615.434427][T13859] ? xfd_validate_state+0x129/0x190 [ 615.434450][T13859] ? ksys_write+0x1ac/0x250 [ 615.434484][T13859] __x64_sys_io_uring_setup+0xc2/0x170 [ 615.434515][T13859] do_syscall_64+0x10b/0xf80 [ 615.434551][T13859] ? clear_bhb_loop+0x40/0x90 [ 615.434579][T13859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 615.434603][T13859] RIP: 0033:0x7f8b0e39ce59 [ 615.434621][T13859] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 615.434644][T13859] RSP: 002b:00007f8b0f21c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 615.434666][T13859] RAX: ffffffffffffffda RBX: 00007f8b0e616180 RCX: 00007f8b0e39ce59 [ 615.434681][T13859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 615.434694][T13859] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 615.434707][T13859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 615.434721][T13859] R13: 00007f8b0e616218 R14: 00007f8b0e616180 R15: 00007fff2588dde8 [ 615.434749][T13859] [ 615.983853][T13868] netlink: 62 bytes leftover after parsing attributes in process `syz.3.2484'. [ 616.041192][ T4948] Bluetooth: hci4: Malformed Event: 0x02 [ 616.188260][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 616.195443][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 616.250154][T13873] netlink: 504 bytes leftover after parsing attributes in process `syz.3.2486'. [ 616.661389][T13882] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2489'. [ 616.727497][T13882] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2489'. [ 616.803227][T13884] netlink: 306 bytes leftover after parsing attributes in process `syz.4.2489'. [ 616.857520][T13882] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2489'. [ 616.922812][T13882] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2489'. [ 616.984299][T13882] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2489'. [ 617.053587][T13888] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input12 [ 618.136363][T13911] random: crng reseeded on system resumption [ 618.257329][T13704] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 619.294541][T13939] random: crng reseeded on system resumption [ 619.688948][T13704] veth0_vlan: entered promiscuous mode [ 619.767728][T13704] veth1_vlan: entered promiscuous mode [ 619.944768][T13704] veth0_macvtap: entered promiscuous mode [ 620.002910][T13704] veth1_macvtap: entered promiscuous mode [ 620.110554][T13704] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 620.219005][T13704] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 620.294300][T13954] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[12640] was attempted by "!3wKn\x0a``Rn;/0,`9NdL\x22%&k'@ᬝg3>rzFa^Ǚ:wWg!MԫE\x0c~ghn9MxI$lp[\x5c>7\x0b+?RBP0W+ft3w:\x07}8ū%N\x5cpr\x0c\x0cWLpzi&%]*0&Rw!(jO(,\x07B.[܃\x0aTRW;Qcwd-vA\x0cٯaWfu}\x0c\x09?%w\x09+G<\x09Y>a%SXsWeUVOr6=\x5c]$@/S*Y\x5c\x5cs&CbTakТ]OB\x07-<ꀽfP[wFʭO\x1b$>8\x0a㿬#%xJ;Bє\x0cYN\x0d\x1b5@El?\x0dJw~jRхM2X~\x221'&Sw\x0ajuu[/o6\x0a/D)D^* iqR4k7F|xl$'E,4H@CL\x0a:y׶0\x0a7$Ia5q:Q&O=^J\x1b+9'%?@Uߔp>TȘ9桌2E kL%&ĈY_giUrFQ\x5cVNg\x22<\x09 (]#͆\x09>:m9nmFJrp[_퓓~hE.Ȩwz0bs\x09J`M;=Q& [ 620.300265][ T3279] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 620.597841][T13956] program syz.3.2505 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 620.927317][ T3279] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 620.981016][ T3279] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 621.039854][T13959] FAULT_INJECTION: forcing a failure. [ 621.039854][T13959] name failslab, interval 1, probability 0, space 0, times 0 [ 621.058671][ T3279] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 621.140580][T13959] CPU: 0 UID: 0 PID: 13959 Comm: syz.3.2507 Tainted: G L syzkaller #0 PREEMPT(full) [ 621.140616][T13959] Tainted: [L]=SOFTLOCKUP [ 621.140625][T13959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 621.140639][T13959] Call Trace: [ 621.140647][T13959] [ 621.140656][T13959] dump_stack_lvl+0x100/0x190 [ 621.140685][T13959] should_fail_ex.cold+0x5/0xa [ 621.140716][T13959] should_failslab+0xc2/0x120 [ 621.140749][T13959] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 621.140787][T13959] ? security_inode_alloc+0x3b/0x2c0 [ 621.140811][T13959] ? lockdep_init_map_type+0x5c/0x250 [ 621.140839][T13959] security_inode_alloc+0x3b/0x2c0 [ 621.140863][T13959] inode_init_always_gfp+0xcc0/0x1000 [ 621.140898][T13959] alloc_inode+0x8e/0x250 [ 621.140936][T13959] path_from_stashed+0x25b/0x750 [ 621.140968][T13959] ? do_raw_spin_unlock+0x145/0x1e0 [ 621.141001][T13959] ns_get_path+0x60/0x80 [ 621.141032][T13959] proc_ns_get_link+0x121/0x230 [ 621.141059][T13959] ? __pfx_proc_ns_get_link+0x10/0x10 [ 621.141088][T13959] ? atime_needs_update+0x8b/0x6b0 [ 621.141114][T13959] pick_link+0xd17/0x13c0 [ 621.141137][T13959] ? __pfx_proc_ns_get_link+0x10/0x10 [ 621.141167][T13959] step_into_slowpath+0x9ba/0xf90 [ 621.141198][T13959] ? __pfx_step_into_slowpath+0x10/0x10 [ 621.141223][T13959] ? find_held_lock+0x2b/0x80 [ 621.141263][T13959] path_openat+0xf95/0x31a0 [ 621.141303][T13959] ? __pfx_path_openat+0x10/0x10 [ 621.141344][T13959] do_file_open+0x20e/0x430 [ 621.141388][T13959] ? __pfx_do_file_open+0x10/0x10 [ 621.141436][T13959] ? alloc_fd+0x476/0x790 [ 621.141467][T13959] ? do_getname+0x191/0x390 [ 621.141503][T13959] do_sys_openat2+0x10d/0x1e0 [ 621.141561][T13959] ? __pfx_do_sys_openat2+0x10/0x10 [ 621.141601][T13959] ? __fget_files+0x21f/0x3d0 [ 621.141633][T13959] __x64_sys_openat+0x12d/0x210 [ 621.141671][T13959] ? __pfx___x64_sys_openat+0x10/0x10 [ 621.141714][T13959] ? rcu_is_watching+0x12/0xc0 [ 621.141745][T13959] do_syscall_64+0x10b/0xf80 [ 621.141781][T13959] ? clear_bhb_loop+0x40/0x90 [ 621.141810][T13959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.141834][T13959] RIP: 0033:0x7f03e3f5d68e [ 621.141852][T13959] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 621.141876][T13959] RSP: 002b:00007f03e4dcbec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 621.141898][T13959] RAX: ffffffffffffffda RBX: 00007f03e4dcc6c0 RCX: 00007f03e3f5d68e [ 621.141913][T13959] RDX: 0000000000000002 RSI: 00007f03e4dcbf90 RDI: ffffffffffffff9c [ 621.141928][T13959] RBP: 00007f03e4032d6f R08: 0000000000000000 R09: 0000000000000000 [ 621.141942][T13959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 621.141956][T13959] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 621.141985][T13959] [ 621.901184][ T3279] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 621.937105][ T3279] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 622.024918][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 622.085852][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 623.291728][T13975] __nla_validate_parse: 3 callbacks suppressed [ 623.291747][T13975] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2510'. [ 624.397081][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.408146][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.438376][T13988] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2515'. [ 624.503040][T13991] netlink: 'syz.0.2515': attribute type 1 has an invalid length. [ 624.547856][T13991] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2515'. [ 624.896390][T13990] FAULT_INJECTION: forcing a failure. [ 624.896390][T13990] name failslab, interval 1, probability 0, space 0, times 0 [ 624.967564][T13990] CPU: 0 UID: 0 PID: 13990 Comm: syz.4.2516 Tainted: G L syzkaller #0 PREEMPT(full) [ 624.967601][T13990] Tainted: [L]=SOFTLOCKUP [ 624.967609][T13990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 624.967624][T13990] Call Trace: [ 624.967631][T13990] [ 624.967640][T13990] dump_stack_lvl+0x100/0x190 [ 624.967669][T13990] should_fail_ex.cold+0x5/0xa [ 624.967699][T13990] should_failslab+0xc2/0x120 [ 624.967727][T13990] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 624.967764][T13990] ? __mpol_dup+0x74/0x390 [ 624.967799][T13990] __mpol_dup+0x74/0x390 [ 624.967829][T13990] ? __pfx___mpol_dup+0x10/0x10 [ 624.967859][T13990] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 624.967899][T13990] ? sp_alloc+0x27/0x160 [ 624.967933][T13990] sp_alloc+0x4d/0x160 [ 624.967964][T13990] mpol_set_shared_policy+0xa5/0x890 [ 624.968002][T13990] ? __pfx_shmem_set_policy+0x10/0x10 [ 624.968030][T13990] mbind_range+0x339/0x550 [ 624.968064][T13990] do_mbind+0x7dc/0xfd0 [ 624.968109][T13990] ? __might_fault+0xc5/0x140 [ 624.968164][T13990] ? __pfx_do_mbind+0x10/0x10 [ 624.968204][T13990] ? _copy_from_user+0x59/0xd0 [ 624.968237][T13990] ? __pfx_get_nodes+0x10/0x10 [ 624.968268][T13990] kernel_mbind+0x1b7/0x200 [ 624.968304][T13990] ? __pfx_kernel_mbind+0x10/0x10 [ 624.968340][T13990] ? rcu_is_watching+0x12/0xc0 [ 624.968374][T13990] do_syscall_64+0x10b/0xf80 [ 624.968411][T13990] ? clear_bhb_loop+0x40/0x90 [ 624.968441][T13990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 624.968465][T13990] RIP: 0033:0x7f6673f9ce59 [ 624.968484][T13990] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 624.968507][T13990] RSP: 002b:00007f6674de6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 624.968530][T13990] RAX: ffffffffffffffda RBX: 00007f6674215fa0 RCX: 00007f6673f9ce59 [ 624.968546][T13990] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000 [ 624.968560][T13990] RBP: 00007f6674032d6f R08: 0000000000000003 R09: 0000000000000003 [ 624.968575][T13990] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000 [ 624.968589][T13990] R13: 00007f6674216038 R14: 00007f6674215fa0 R15: 00007fffff6bc0f8 [ 624.968619][T13990] [ 625.207652][T14001] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2519'. [ 625.217904][T14001] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2519'. [ 625.607887][T14006] netlink: 21 bytes leftover after parsing attributes in process `syz.4.2521'. [ 626.096004][T14015] FAULT_INJECTION: forcing a failure. [ 626.096004][T14015] name failslab, interval 1, probability 0, space 0, times 0 [ 626.200772][T14015] CPU: 0 UID: 0 PID: 14015 Comm: syz.0.2526 Tainted: G L syzkaller #0 PREEMPT(full) [ 626.200810][T14015] Tainted: [L]=SOFTLOCKUP [ 626.200818][T14015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 626.200833][T14015] Call Trace: [ 626.200840][T14015] [ 626.200849][T14015] dump_stack_lvl+0x100/0x190 [ 626.200879][T14015] should_fail_ex.cold+0x5/0xa [ 626.200908][T14015] should_failslab+0xc2/0x120 [ 626.200936][T14015] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 626.200982][T14015] ? security_inode_alloc+0x3b/0x2c0 [ 626.201005][T14015] ? lockdep_init_map_type+0x5c/0x250 [ 626.201033][T14015] security_inode_alloc+0x3b/0x2c0 [ 626.201057][T14015] inode_init_always_gfp+0xcc0/0x1000 [ 626.201091][T14015] alloc_inode+0x8e/0x250 [ 626.201127][T14015] new_inode+0x22/0x1c0 [ 626.201161][T14015] ? dput.part.0+0xdd/0x570 [ 626.201200][T14015] simple_fill_super+0x2d9/0x680 [ 626.201233][T14015] ? __pfx_nfsd_fill_super+0x10/0x10 [ 626.201299][T14015] nfsd_fill_super+0x98/0x560 [ 626.201335][T14015] ? __pfx_set_anon_super_fc+0x10/0x10 [ 626.201359][T14015] ? __pfx_nfsd_fill_super+0x10/0x10 [ 626.201397][T14015] get_tree_keyed+0x10e/0x1d0 [ 626.201425][T14015] vfs_get_tree+0x92/0x320 [ 626.201447][T14015] path_mount+0x7d0/0x23d0 [ 626.201484][T14015] ? __pfx_path_mount+0x10/0x10 [ 626.201515][T14015] ? lockdep_hardirqs_on+0x78/0x100 [ 626.201555][T14015] ? putname+0xb1/0x110 [ 626.201584][T14015] ? kmem_cache_free+0x127/0x6c0 [ 626.201628][T14015] ? __x64_sys_mount+0x293/0x310 [ 626.201659][T14015] __x64_sys_mount+0x293/0x310 [ 626.201693][T14015] ? __pfx___x64_sys_mount+0x10/0x10 [ 626.201729][T14015] ? rcu_is_watching+0x12/0xc0 [ 626.201761][T14015] do_syscall_64+0x10b/0xf80 [ 626.201796][T14015] ? clear_bhb_loop+0x40/0x90 [ 626.201824][T14015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 626.201848][T14015] RIP: 0033:0x7f8b0e39ce59 [ 626.201866][T14015] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 626.201889][T14015] RSP: 002b:00007f8b0f25e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 626.201911][T14015] RAX: ffffffffffffffda RBX: 00007f8b0e615fa0 RCX: 00007f8b0e39ce59 [ 626.201926][T14015] RDX: 0000200000000100 RSI: 0000200000000200 RDI: 0000000000000000 [ 626.201941][T14015] RBP: 00007f8b0e432d6f R08: 0000000000000000 R09: 0000000000000000 [ 626.201955][T14015] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 626.201968][T14015] R13: 00007f8b0e616038 R14: 00007f8b0e615fa0 R15: 00007fff2588dde8 [ 626.202002][T14015] [ 627.123571][T14019] ima: policy update failed [ 627.267936][ T30] audit: type=1802 audit(4294967344.820:14): pid=14019 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.2527" res=0 errno=0 [ 627.958805][T14029] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2530'. [ 628.040207][T14032] netlink: 'syz.3.2530': attribute type 1 has an invalid length. [ 628.135729][T14032] netlink: 13 bytes leftover after parsing attributes in process `syz.3.2530'. [ 628.949792][T14048] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2536'. [ 630.765683][T14059] Process accounting paused [ 633.123702][T14096] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2551'. [ 633.321492][T14101] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2550'. [ 634.027610][T14110] ACPI: button: Initial lid state set to 'ignore' [ 634.129777][T14107] futex_wake_op: syz.4.2553 tries to shift op by -2048; fix this program [ 634.177839][T14107] 0x000000000001-0x000000000003 : "" [ 634.225862][T14107] ftl_cs: FTL header corrupt! [ 635.863449][T14138] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2562'. [ 636.926982][T14136] kexec: Could not allocate control_code_buffer [ 637.466381][T14146] futex_wake_op: syz.5.2566 tries to shift op by -2048; fix this program [ 637.521123][T14153] 0x000000000001-0x000000000003 : "" [ 637.578093][T14153] ftl_cs: FTL header corrupt! [ 638.226010][T14159] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2568'. [ 640.051600][T14177] hub 1-0:1.0: USB hub found [ 640.201757][T14177] hub 1-0:1.0: 1 port detected [ 640.740484][T14178] hub 1-0:1.0: USB hub found [ 640.806464][T14178] hub 1-0:1.0: 1 port detected [ 641.719044][T14191] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 641.735278][T14191] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 641.748284][T14191] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 641.768521][T14191] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 641.780663][T14191] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 642.038214][T14195] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 643.784874][T14221] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2580'. [ 643.832313][T14191] Bluetooth: hci6: command tx timeout [ 643.927034][T14221] veth1_macvtap: entered promiscuous mode [ 643.986049][T14221] veth1_macvtap: entered allmulticast mode [ 644.059756][T14221] macsec0: left promiscuous mode [ 644.119314][T14221] macsec0: left allmulticast mode [ 644.179163][T14221] veth1_macvtap: left allmulticast mode [ 644.712525][T14190] bridge0: port 1(bridge_slave_0) entered blocking state [ 644.754436][T14190] bridge0: port 1(bridge_slave_0) entered disabled state [ 644.786704][T14190] bridge_slave_0: entered allmulticast mode [ 644.825035][T14190] bridge_slave_0: entered promiscuous mode [ 644.868999][T14190] bridge0: port 2(bridge_slave_1) entered blocking state [ 644.910512][T14190] bridge0: port 2(bridge_slave_1) entered disabled state [ 644.942296][T14190] bridge_slave_1: entered allmulticast mode [ 644.982401][T14190] bridge_slave_1: entered promiscuous mode [ 645.127744][T14190] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 645.186618][T14190] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 645.347371][T14190] team0: Port device team_slave_0 added [ 645.390998][T14190] team0: Port device team_slave_1 added [ 645.532883][T14190] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 645.564203][T14190] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 645.689926][T14190] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 645.826402][T14190] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 645.860736][T14190] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 645.924003][T14191] Bluetooth: hci6: command tx timeout [ 645.992657][T14190] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 646.229624][T14190] hsr_slave_0: entered promiscuous mode [ 646.260537][T14190] hsr_slave_1: entered promiscuous mode [ 646.293084][T14190] debugfs: 'hsr0' already exists in 'hsr' [ 646.323539][T14190] Cannot create hsr debugfs directory [ 647.533037][T14190] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 647.634454][T14190] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 647.732037][T14190] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 647.798943][T14190] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 647.855128][T14243] FAULT_INJECTION: forcing a failure. [ 647.855128][T14243] name failslab, interval 1, probability 0, space 0, times 0 [ 647.868441][T14190] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 647.968958][T14190] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 647.992201][T14191] Bluetooth: hci6: command tx timeout [ 648.005992][T14243] CPU: 0 UID: 0 PID: 14243 Comm: syz.4.2585 Tainted: G L syzkaller #0 PREEMPT(full) [ 648.006031][T14243] Tainted: [L]=SOFTLOCKUP [ 648.006040][T14243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 648.006054][T14243] Call Trace: [ 648.006062][T14243] [ 648.006071][T14243] dump_stack_lvl+0x100/0x190 [ 648.006102][T14243] should_fail_ex.cold+0x5/0xa [ 648.006133][T14243] should_failslab+0xc2/0x120 [ 648.006161][T14243] __kmalloc_cache_noprof+0x7a/0x6f0 [ 648.006197][T14243] ? resv_map_alloc+0x7e/0x400 [ 648.006226][T14243] resv_map_alloc+0x7e/0x400 [ 648.006252][T14243] hugetlb_reserve_pages+0x7a3/0x14e0 [ 648.006284][T14243] ? __pfx_current_time+0x10/0x10 [ 648.006322][T14243] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 648.006358][T14243] ? atime_needs_update+0x8b/0x6b0 [ 648.006384][T14243] ? touch_atime+0xa5/0x7a0 [ 648.006411][T14243] hugetlbfs_file_mmap_prepare+0x541/0x830 [ 648.006451][T14243] ? __pfx_hugetlbfs_file_mmap_prepare+0x10/0x10 [ 648.006496][T14243] __mmap_region+0xe98/0x2da0 [ 648.006539][T14243] ? __pfx___mmap_region+0x10/0x10 [ 648.006583][T14243] ? rcu_is_watching+0x12/0xc0 [ 648.006612][T14243] ? trace_pelt_se_tp+0x13b/0x190 [ 648.006645][T14243] ? __lock_acquire+0x4a5/0x2630 [ 648.006675][T14243] ? __lock_acquire+0x4a5/0x2630 [ 648.006712][T14243] ? find_held_lock+0x2b/0x80 [ 648.006742][T14243] ? is_bpf_text_address+0x8a/0x1a0 [ 648.006785][T14243] ? is_bpf_text_address+0x8a/0x1a0 [ 648.006819][T14243] ? bpf_ksym_find+0x124/0x1c0 [ 648.006845][T14243] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 648.006882][T14243] ? is_bpf_text_address+0x94/0x1a0 [ 648.006916][T14243] ? kernel_text_address+0x8d/0x100 [ 648.006953][T14243] ? __kernel_text_address+0xd/0x30 [ 648.006977][T14243] ? unwind_get_return_address+0x59/0xa0 [ 648.007031][T14243] ? arch_stack_walk+0xa6/0xf0 [ 648.007106][T14243] mmap_region+0x35d/0x620 [ 648.007131][T14243] ? __pfx_mmap_region+0x10/0x10 [ 648.007157][T14243] ? cap_mmap_addr+0x4b/0x120 [ 648.007193][T14243] ? bpf_lsm_mmap_addr+0x9/0x30 [ 648.007216][T14243] ? security_mmap_addr+0x71/0x1e0 [ 648.007245][T14243] ? __get_unmapped_area+0x255/0x3e0 [ 648.007278][T14243] do_mmap+0xc63/0x12f0 [ 648.007312][T14243] ? __pfx_do_mmap+0x10/0x10 [ 648.007342][T14243] ? __pfx_down_write_killable+0x10/0x10 [ 648.007386][T14243] vm_mmap_pgoff+0x29e/0x470 [ 648.007421][T14243] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 648.007449][T14243] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 648.007497][T14243] ksys_mmap_pgoff+0x285/0x610 [ 648.007529][T14243] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 648.007556][T14243] ? xfd_validate_state+0x129/0x190 [ 648.007585][T14243] __x64_sys_mmap+0x125/0x190 [ 648.007614][T14243] do_syscall_64+0x10b/0xf80 [ 648.007650][T14243] ? clear_bhb_loop+0x40/0x90 [ 648.007677][T14243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 648.007701][T14243] RIP: 0033:0x7f6673f9ce59 [ 648.007720][T14243] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 648.007743][T14243] RSP: 002b:00007f6674de6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 648.007764][T14243] RAX: ffffffffffffffda RBX: 00007f6674215fa0 RCX: 00007f6673f9ce59 [ 648.007785][T14243] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 648.007800][T14243] RBP: 00007f6674032d6f R08: 000000000000000d R09: 0000300000000000 [ 648.007814][T14243] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 648.007828][T14243] R13: 00007f6674216038 R14: 00007f6674215fa0 R15: 00007fffff6bc0f8 [ 648.007857][T14243] [ 648.732128][T14190] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 649.198823][T14190] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 650.079322][T14191] Bluetooth: hci6: command tx timeout [ 650.186724][T14190] 8021q: adding VLAN 0 to HW filter on device bond0 [ 650.374486][T14190] 8021q: adding VLAN 0 to HW filter on device team0 [ 650.457532][ T3301] bridge0: port 1(bridge_slave_0) entered blocking state [ 650.464710][ T3301] bridge0: port 1(bridge_slave_0) entered forwarding state [ 650.668353][ T3301] bridge0: port 2(bridge_slave_1) entered blocking state [ 650.675578][ T3301] bridge0: port 2(bridge_slave_1) entered forwarding state [ 652.878465][T14280] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2593'. [ 653.659454][T14190] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 654.014992][T14295] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2596'. [ 655.198178][T14190] veth0_vlan: entered promiscuous mode [ 655.267666][T14190] veth1_vlan: entered promiscuous mode [ 655.450846][T14190] veth0_macvtap: entered promiscuous mode [ 655.505208][T14190] veth1_macvtap: entered promiscuous mode [ 655.569534][T14190] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 655.610008][T14190] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 655.655800][ T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.655883][ T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.655922][ T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.655967][ T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 656.132655][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 656.132700][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 656.671370][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 656.740503][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 657.356997][T14331] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2572'. [ 657.545251][T14333] FAULT_INJECTION: forcing a failure. [ 657.545251][T14333] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 657.758043][T14333] CPU: 0 UID: 0 PID: 14333 Comm: syz.3.2613 Tainted: G L syzkaller #0 PREEMPT(full) [ 657.758081][T14333] Tainted: [L]=SOFTLOCKUP [ 657.758089][T14333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 657.758104][T14333] Call Trace: [ 657.758111][T14333] [ 657.758120][T14333] dump_stack_lvl+0x100/0x190 [ 657.758150][T14333] should_fail_ex.cold+0x5/0xa [ 657.758175][T14333] ? prepare_alloc_pages+0x16d/0x5f0 [ 657.758208][T14333] should_fail_alloc_page+0xeb/0x140 [ 657.758238][T14333] prepare_alloc_pages+0x1f0/0x5f0 [ 657.758280][T14333] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 657.758324][T14333] ? pte_offset_map_lock+0x174/0x320 [ 657.758352][T14333] ? find_held_lock+0x2b/0x80 [ 657.758382][T14333] ? rcu_read_unlock+0x2d/0xb0 [ 657.758418][T14333] ? rcu_read_unlock+0x2d/0xb0 [ 657.758461][T14333] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 657.758533][T14333] ? do_fault+0x644/0x1750 [ 657.758567][T14333] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 657.758605][T14333] ? policy_nodemask+0xed/0x4f0 [ 657.758636][T14333] alloc_pages_mpol+0x1fb/0x540 [ 657.758665][T14333] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 657.758691][T14333] ? __pfx_css_rstat_updated+0x10/0x10 [ 657.758738][T14333] folio_alloc_mpol_noprof+0x36/0x260 [ 657.758772][T14333] shmem_alloc_folio+0x135/0x160 [ 657.758808][T14333] shmem_alloc_and_add_folio+0x371/0xd40 [ 657.758861][T14333] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 657.758906][T14333] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 657.758929][T14333] ? __bpf_trace_sched_exit_tp+0x20/0xc0 [ 657.758963][T14333] shmem_get_folio_gfp+0x6ab/0x1900 [ 657.758994][T14333] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 657.759026][T14333] shmem_write_begin+0x1a4/0x420 [ 657.759053][T14333] ? __pfx_shmem_write_begin+0x10/0x10 [ 657.759083][T14333] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 657.759119][T14333] generic_perform_write+0x292/0xa40 [ 657.759164][T14333] ? __pfx_generic_perform_write+0x10/0x10 [ 657.759198][T14333] ? __mark_inode_dirty+0x55c/0x1720 [ 657.759228][T14333] ? mnt_put_write_access_file+0x4e/0x100 [ 657.759265][T14333] ? file_update_time_flags+0x373/0x500 [ 657.759305][T14333] shmem_file_write_iter+0x10e/0x140 [ 657.759337][T14333] vfs_write+0x6ac/0x1070 [ 657.759365][T14333] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 657.759398][T14333] ? __pfx_vfs_write+0x10/0x10 [ 657.759444][T14333] ksys_write+0x12a/0x250 [ 657.759472][T14333] ? __pfx_ksys_write+0x10/0x10 [ 657.759502][T14333] ? rcu_is_watching+0x12/0xc0 [ 657.759535][T14333] do_syscall_64+0x10b/0xf80 [ 657.759573][T14333] ? clear_bhb_loop+0x40/0x90 [ 657.759602][T14333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 657.759627][T14333] RIP: 0033:0x7f03e3f9ce59 [ 657.759646][T14333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 657.759670][T14333] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 657.759692][T14333] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 657.759709][T14333] RDX: 00000000fffffdf1 RSI: 0000000000000000 RDI: 0000000000000006 [ 657.759723][T14333] RBP: 00007f03e4032d6f R08: 0000000000000000 R09: 0000000000000000 [ 657.759737][T14333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 657.759751][T14333] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 657.759782][T14333] [ 659.620303][T14347] Process accounting resumed [ 659.704918][T14354] FAULT_INJECTION: forcing a failure. [ 659.704918][T14354] name failslab, interval 1, probability 0, space 0, times 0 [ 659.932770][T14354] CPU: 0 UID: 0 PID: 14354 Comm: syz.6.2607 Tainted: G L syzkaller #0 PREEMPT(full) [ 659.932808][T14354] Tainted: [L]=SOFTLOCKUP [ 659.932816][T14354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 659.932830][T14354] Call Trace: [ 659.932838][T14354] [ 659.932847][T14354] dump_stack_lvl+0x100/0x190 [ 659.932877][T14354] should_fail_ex.cold+0x5/0xa [ 659.932906][T14354] should_failslab+0xc2/0x120 [ 659.932933][T14354] __kmalloc_cache_noprof+0x7a/0x6f0 [ 659.932968][T14354] ? cec_open+0xdb/0x690 [ 659.933088][T14354] ? __lock_acquire+0x4a5/0x2630 [ 659.933114][T14354] cec_open+0xdb/0x690 [ 659.933152][T14354] ? __pfx_cec_open+0x10/0x10 [ 659.933191][T14354] ? kobject_get_unless_zero+0x156/0x200 [ 659.933218][T14354] ? find_held_lock+0x2b/0x80 [ 659.933248][T14354] ? chrdev_open+0x10b/0x6a0 [ 659.933277][T14354] ? chrdev_open+0x10b/0x6a0 [ 659.933310][T14354] ? __pfx_cec_open+0x10/0x10 [ 659.933346][T14354] chrdev_open+0x234/0x6a0 [ 659.933374][T14354] ? __pfx_apparmor_file_open+0x10/0x10 [ 659.933397][T14354] ? __pfx_chrdev_open+0x10/0x10 [ 659.933428][T14354] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 659.933466][T14354] do_dentry_open+0x6d8/0x1660 [ 659.933495][T14354] ? __pfx_chrdev_open+0x10/0x10 [ 659.933531][T14354] vfs_open+0x82/0x3f0 [ 659.933576][T14354] path_openat+0x208c/0x31a0 [ 659.933615][T14354] ? __pfx_path_openat+0x10/0x10 [ 659.933655][T14354] do_file_open+0x20e/0x430 [ 659.933687][T14354] ? __pfx_do_file_open+0x10/0x10 [ 659.933736][T14354] ? alloc_fd+0x476/0x790 [ 659.933767][T14354] ? do_getname+0x191/0x390 [ 659.933805][T14354] do_sys_openat2+0x10d/0x1e0 [ 659.933841][T14354] ? __pfx_do_sys_openat2+0x10/0x10 [ 659.933879][T14354] ? do_raw_spin_lock+0x128/0x260 [ 659.933912][T14354] __x64_sys_openat+0x12d/0x210 [ 659.933950][T14354] ? __pfx___x64_sys_openat+0x10/0x10 [ 659.933992][T14354] ? rcu_is_watching+0x12/0xc0 [ 659.934023][T14354] do_syscall_64+0x10b/0xf80 [ 659.934059][T14354] ? clear_bhb_loop+0x40/0x90 [ 659.934088][T14354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 659.934111][T14354] RIP: 0033:0x7fdb4319ce59 [ 659.934130][T14354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 659.934152][T14354] RSP: 002b:00007fdb40ff4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 659.934175][T14354] RAX: ffffffffffffffda RBX: 00007fdb43416270 RCX: 00007fdb4319ce59 [ 659.934190][T14354] RDX: 0000000000101901 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 659.934205][T14354] RBP: 00007fdb43232d6f R08: 0000000000000000 R09: 0000000000000000 [ 659.934220][T14354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 659.934233][T14354] R13: 00007fdb43416308 R14: 00007fdb43416270 R15: 00007fff0c9120f8 [ 659.934262][T14354] [ 661.562621][T14191] Bluetooth: hci5: unexpected subevent 0x01 length: 123 > 18 [ 662.415617][T14349] Process accounting resumed [ 662.697470][T14379] netlink: 306 bytes leftover after parsing attributes in process `syz.6.2618'. [ 663.808461][T14394] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2622'. [ 664.186211][T14392] nvme_fabrics: missing parameter 'transport=%s' [ 664.382917][T14392] nvme_fabrics: missing parameter 'nqn=%s' [ 668.452705][T14423] FAULT_INJECTION: forcing a failure. [ 668.452705][T14423] name failslab, interval 1, probability 0, space 0, times 0 [ 668.673825][T14423] CPU: 0 UID: 0 PID: 14423 Comm: syz.3.2630 Tainted: G L syzkaller #0 PREEMPT(full) [ 668.673860][T14423] Tainted: [L]=SOFTLOCKUP [ 668.673868][T14423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 668.673882][T14423] Call Trace: [ 668.673889][T14423] [ 668.673898][T14423] dump_stack_lvl+0x100/0x190 [ 668.673926][T14423] should_fail_ex.cold+0x5/0xa [ 668.673954][T14423] should_failslab+0xc2/0x120 [ 668.673980][T14423] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 668.674015][T14423] ? __mpol_dup+0x74/0x390 [ 668.674048][T14423] __mpol_dup+0x74/0x390 [ 668.674077][T14423] ? __pfx___mpol_dup+0x10/0x10 [ 668.674105][T14423] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 668.674139][T14423] ? sp_alloc+0x27/0x160 [ 668.674172][T14423] sp_alloc+0x4d/0x160 [ 668.674201][T14423] mpol_set_shared_policy+0xa5/0x890 [ 668.674236][T14423] ? __pfx_shmem_set_policy+0x10/0x10 [ 668.674263][T14423] mbind_range+0x339/0x550 [ 668.674296][T14423] do_mbind+0x7dc/0xfd0 [ 668.674331][T14423] ? __might_fault+0xc5/0x140 [ 668.674364][T14423] ? __pfx_do_mbind+0x10/0x10 [ 668.674399][T14423] ? _copy_from_user+0x59/0xd0 [ 668.674428][T14423] ? __pfx_get_nodes+0x10/0x10 [ 668.674457][T14423] kernel_mbind+0x1b7/0x200 [ 668.674489][T14423] ? __pfx_kernel_mbind+0x10/0x10 [ 668.674522][T14423] ? rcu_is_watching+0x12/0xc0 [ 668.674552][T14423] do_syscall_64+0x10b/0xf80 [ 668.674586][T14423] ? clear_bhb_loop+0x40/0x90 [ 668.674613][T14423] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 668.674635][T14423] RIP: 0033:0x7f03e3f9ce59 [ 668.674658][T14423] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 668.674681][T14423] RSP: 002b:00007f03e4dcc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 668.674702][T14423] RAX: ffffffffffffffda RBX: 00007f03e4215fa0 RCX: 00007f03e3f9ce59 [ 668.674716][T14423] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000 [ 668.674730][T14423] RBP: 00007f03e4032d6f R08: 0000000000000003 R09: 0000000000000003 [ 668.674743][T14423] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000 [ 668.674756][T14423] R13: 00007f03e4216038 R14: 00007f03e4215fa0 R15: 00007ffc4c2180a8 [ 668.674783][T14423] [ 669.566861][T14445] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2637'. [ 672.532858][T14455] futex_wake_op: syz.6.2638 tries to shift op by -2048; fix this program [ 672.610279][T14462] 0x000000000001-0x000000000003 : "" [ 672.703685][T14462] ftl_cs: FTL header corrupt! [ 673.645321][T14468] nvme_fabrics: missing parameter 'transport=%s' [ 673.776246][T14468] nvme_fabrics: missing parameter 'nqn=%s' [ 675.033084][T14476] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 675.219933][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 675.406939][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 675.570797][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 675.775510][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 675.877036][ T30] audit: type=1800 audit(4294967393.550:15): pid=14484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2645" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 675.942340][T14486] random: crng reseeded on system resumption [ 676.009124][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 676.227021][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 676.417576][T14478] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2644'. [ 676.818129][T14497] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 677.737716][T14500] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 677.737716][T14500] M' is too long [ 677.839708][T14500] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 677.839708][T14500] W ' is too long [ 678.497016][T14512] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2652'. [ 682.404456][T14529] futex_wake_op: syz.3.2655 tries to shift op by -2048; fix this program [ 682.492686][T14529] 0x000000000001-0x000000000003 : "" [ 682.635979][T14529] ftl_cs: FTL header corrupt! [ 684.017922][T14543] nvme_fabrics: missing parameter 'transport=%s' [ 684.071218][T14543] nvme_fabrics: missing parameter 'nqn=%s' [ 685.522320][T14562] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2663'. [ 685.617375][T14565] netlink: 'syz.5.2663': attribute type 1 has an invalid length. [ 685.724812][T14565] netlink: 13 bytes leftover after parsing attributes in process `syz.5.2663'. [ 685.836521][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.846689][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 687.187966][T14581] futex_wake_op: syz.3.2681 tries to shift op by -2048; fix this program [ 687.252919][T14581] 0x000000000001-0x000000000003 : "" [ 687.312063][T14581] ftl_cs: FTL header corrupt! [ 688.880400][T14604] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2679'. [ 691.508940][ T30] audit: type=1800 audit(4294967409.180:16): pid=14621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2682" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 692.919549][T14616] Process accounting paused [ 693.186724][T14624] futex_wake_op: syz.5.2684 tries to shift op by -2048; fix this program [ 693.251191][T14624] 0x000000000001-0x000000000003 : "" [ 693.297659][T14624] ftl_cs: FTL header corrupt! [ 693.936018][T14635] nvme_fabrics: missing parameter 'transport=%s' [ 694.100111][T14635] nvme_fabrics: missing parameter 'nqn=%s' [ 696.516036][T14662] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2694'. [ 699.329543][ T30] audit: type=1800 audit(4294967417.000:17): pid=14676 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2697" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 700.577382][T14675] futex_wake_op: syz.4.2698 tries to shift op by -2048; fix this program [ 700.715473][T14683] 0x000000000001-0x000000000003 : "" [ 700.908928][T14683] ftl_cs: FTL header corrupt! [ 702.162645][T14696] nvme_fabrics: missing parameter 'transport=%s' [ 702.337692][T14696] nvme_fabrics: missing parameter 'nqn=%s' [ 704.983836][T14719] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2709'. [ 707.985837][ T30] audit: type=1800 audit(4294967425.660:18): pid=14736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2712" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 710.186572][T14746] nvme_fabrics: missing parameter 'transport=%s' [ 710.266213][T14741] futex_wake_op: syz.6.2715 tries to shift op by -2048; fix this program [ 710.327581][T14746] nvme_fabrics: missing parameter 'nqn=%s' [ 710.357905][T14745] 0x000000000001-0x000000000003 : "" [ 710.456595][T14745] ftl_cs: FTL header corrupt! [ 711.438581][T12429] __kmem_cache_create_args(nfsd_file) failed with error -12 [ 711.446428][T12429] CPU: 0 UID: 0 PID: 12429 Comm: syz.1.2053 Tainted: G L syzkaller #0 PREEMPT(full) [ 711.446465][T12429] Tainted: [L]=SOFTLOCKUP [ 711.446473][T12429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 711.446488][T12429] Call Trace: [ 711.446496][T12429] [ 711.446505][T12429] dump_stack_lvl+0x100/0x190 [ 711.446540][T12429] __kmem_cache_create_args.cold+0x33/0x6e [ 711.446577][T12429] nfsd_file_cache_init+0x131/0x3f0 [ 711.446614][T12429] ? net_generic+0xf4/0x2a0 [ 711.446644][T12429] nfsd_svc+0x5fa/0x840 [ 711.446681][T12429] nfsd_nl_threads_set_doit+0x78b/0x12b0 [ 711.446711][T12429] genl_family_rcv_msg_doit+0x214/0x300 [ 711.446791][T12429] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 711.446816][T12429] ? genl_get_cmd+0x3e7/0x760 [ 711.446862][T12429] ? bpf_lsm_capable+0x9/0x10 [ 711.446890][T12429] ? security_capable+0x80/0x260 [ 711.446934][T12429] genl_rcv_msg+0x560/0x800 [ 711.446961][T12429] ? __pfx_genl_rcv_msg+0x10/0x10 [ 711.446986][T12429] ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10 [ 711.447022][T12429] netlink_rcv_skb+0x159/0x420 [ 711.447059][T12429] ? __pfx_genl_rcv_msg+0x10/0x10 [ 711.447084][T12429] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 711.447132][T12429] ? netlink_deliver_tap+0x1ae/0xcc0 [ 711.447171][T12429] genl_rcv+0x28/0x40 [ 711.447190][T12429] netlink_unicast+0x585/0x850 [ 711.447237][T12429] ? __pfx_netlink_unicast+0x10/0x10 [ 711.447283][T12429] netlink_sendmsg+0x8b0/0xda0 [ 711.447326][T12429] ? __pfx_netlink_sendmsg+0x10/0x10 [ 711.447361][T12429] ? __import_iovec+0x1d2/0x640 [ 711.447392][T12429] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 711.447436][T12429] ____sys_sendmsg+0x9e1/0xb70 [ 711.447472][T12429] ? __pfx_netlink_sendmsg+0x10/0x10 [ 711.447511][T12429] ? __pfx_____sys_sendmsg+0x10/0x10 [ 711.447553][T12429] ? __pfx_futex_wake_mark+0x10/0x10 [ 711.447591][T12429] ___sys_sendmsg+0x190/0x1e0 [ 711.447630][T12429] ? __pfx____sys_sendmsg+0x10/0x10 [ 711.447703][T12429] __sys_sendmsg+0x170/0x220 [ 711.447735][T12429] ? __pfx___sys_sendmsg+0x10/0x10 [ 711.447764][T12429] ? __x64_sys_futex+0x34f/0x4d0 [ 711.447801][T12429] ? rcu_is_watching+0x12/0xc0 [ 711.447835][T12429] do_syscall_64+0x10b/0xf80 [ 711.447873][T12429] ? clear_bhb_loop+0x40/0x90 [ 711.447903][T12429] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.447928][T12429] RIP: 0033:0x7f74e0b9ce59 [ 711.447948][T12429] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 711.447972][T12429] RSP: 002b:00007f74e1ad8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 711.447995][T12429] RAX: ffffffffffffffda RBX: 00007f74e0e15fa0 RCX: 00007f74e0b9ce59 [ 711.448016][T12429] RDX: 000000000000c840 RSI: 0000200000000480 RDI: 0000000000000003 [ 711.448031][T12429] RBP: 00007f74e0c32d6f R08: 0000000000000000 R09: 0000000000000000 [ 711.448046][T12429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 711.448060][T12429] R13: 00007f74e0e16038 R14: 00007f74e0e15fa0 R15: 00007fff6e07d738 [ 711.448091][T12429] [ 711.448124][T12429] nfsd: unable to create nfsd_file_slab [ 713.796290][T14780] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2724'. [ 717.617914][T14805] nvme_fabrics: missing parameter 'transport=%s' [ 717.762452][T14805] nvme_fabrics: missing parameter 'nqn=%s' [ 719.921285][T14832] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2737'. [ 723.738987][T14841] Process accounting resumed [ 726.869552][T14886] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2748'. [ 728.883189][ T4948] Bluetooth: hci5: command 0x0406 tx timeout syzkaller syzkaller login: [ 734.416506][T14191] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 734.416544][T14191] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 734.432638][T14191] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 734.432663][T14191] Bluetooth: hci1: Unknown advertising packet type: 0x55 [ 734.439722][T14191] Bluetooth: hci1: Unknown advertising packet type: 0x3d [ 734.447727][T14191] Bluetooth: hci1: adv larger than maximum supported [ 734.458050][T14191] Bluetooth: hci1: adv larger than maximum supported [ 734.465568][T14191] Bluetooth: hci1: Malformed LE Event: 0x0d [ 736.466996][T14973] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2768'. [ 738.250982][T14985] FAULT_INJECTION: forcing a failure. [ 738.250982][T14985] name failslab, interval 1, probability 0, space 0, times 0 [ 738.454215][T14985] CPU: 0 UID: 0 PID: 14985 Comm: syz.6.2770 Tainted: G L syzkaller #0 PREEMPT(full) [ 738.454250][T14985] Tainted: [L]=SOFTLOCKUP [ 738.454257][T14985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 738.454270][T14985] Call Trace: [ 738.454277][T14985] [ 738.454285][T14985] dump_stack_lvl+0x100/0x190 [ 738.454314][T14985] should_fail_ex.cold+0x5/0xa [ 738.454341][T14985] ? tracepoint_add_func+0x3a8/0x1150 [ 738.454373][T14985] should_failslab+0xc2/0x120 [ 738.454399][T14985] __kmalloc_noprof+0xe0/0x850 [ 738.454431][T14985] ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10 [ 738.454459][T14985] tracepoint_add_func+0x3a8/0x1150 [ 738.454494][T14985] ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10 [ 738.454525][T14985] ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10 [ 738.454550][T14985] tracepoint_probe_register+0xc4/0x110 [ 738.454584][T14985] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 738.454617][T14985] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 738.454641][T14985] ? __pfx_trace_event_raw_event_nfsd_file_open_class+0x10/0x10 [ 738.454665][T14985] ? __pfx_probe_sched_switch+0x10/0x10 [ 738.454700][T14985] ? __lock_acquire+0x4a5/0x2630 [ 738.454725][T14985] trace_event_reg+0x209/0x350 [ 738.454756][T14985] __ftrace_event_enable_disable+0x211/0x6f0 [ 738.454795][T14985] __ftrace_set_clr_event_nolock+0x390/0xc30 [ 738.454826][T14985] ftrace_set_clr_event+0x1b7/0x3f0 [ 738.454853][T14985] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 738.454879][T14985] ? trace_get_user+0x3ae/0xa70 [ 738.454919][T14985] ftrace_event_write+0x259/0x2c0 [ 738.454945][T14985] ? __pfx_ftrace_event_write+0x10/0x10 [ 738.454981][T14985] vfs_write+0x2aa/0x1070 [ 738.455008][T14985] ? __pfx_ftrace_event_write+0x10/0x10 [ 738.455036][T14985] ? __pfx_vfs_write+0x10/0x10 [ 738.455060][T14985] ? __fget_files+0x215/0x3d0 [ 738.455092][T14985] ? __fget_files+0x21f/0x3d0 [ 738.455125][T14985] ksys_write+0x12a/0x250 [ 738.455150][T14985] ? __pfx_ksys_write+0x10/0x10 [ 738.455177][T14985] ? rcu_is_watching+0x12/0xc0 [ 738.455207][T14985] do_syscall_64+0x10b/0xf80 [ 738.455240][T14985] ? clear_bhb_loop+0x40/0x90 [ 738.455267][T14985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 738.455289][T14985] RIP: 0033:0x7fdb4319ce59 [ 738.455306][T14985] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 738.455328][T14985] RSP: 002b:00007fdb43fbb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 738.455348][T14985] RAX: ffffffffffffffda RBX: 00007fdb43415fa0 RCX: 00007fdb4319ce59 [ 738.455362][T14985] RDX: 0000000000000af0 RSI: 0000000000000000 RDI: 0000000000000007 [ 738.455375][T14985] RBP: 00007fdb43232d6f R08: 0000000000000000 R09: 0000000000000000 [ 738.455407][T14985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 738.455420][T14985] R13: 00007fdb43416038 R14: 00007fdb43415fa0 R15: 00007fff0c9120f8 [ 738.455457][T14985] [ 739.094791][T14985] event trace: Could not enable event nfsd_file_open [ 747.275855][ T31] INFO: task syz-executor:5640 blocked for more than 143 seconds. [ 747.284696][ T31] Tainted: G L syzkaller #0 [ 747.291212][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 747.301442][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.307929][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 747.381201][ T31] task:syz-executor state:D stack:22200 pid:5640 tgid:5640 ppid:1 task_flags:0x400140 flags:0x00080002 [ 747.462780][ T31] Call Trace: [ 747.488962][ T31] [ 747.507465][ T31] __schedule+0x1295/0x67a0 [ 747.539056][ T31] ? __pfx___schedule+0x10/0x10 [ 747.576094][ T31] ? find_held_lock+0x2b/0x80 [ 747.614539][ T31] ? schedule+0x2bf/0x390 [ 747.641557][ T31] schedule+0xdd/0x390 [ 747.683212][ T31] schedule_preempt_disabled+0x13/0x30 [ 747.723247][ T31] __mutex_lock+0xced/0x1b10 [ 747.778060][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 747.844885][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 747.907175][ T31] ? net_generic+0xea/0x2a0 [ 747.946533][ T31] ? net_generic+0xea/0x2a0 [ 747.973085][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 748.005251][ T31] nfsd_shutdown_threads+0x5b/0xf0 [ 748.031150][ T31] nfsd_umount+0x3b/0x60 [ 748.054657][ T31] deactivate_locked_super+0xc1/0x1b0 [ 748.087082][ T31] deactivate_super+0xe7/0x110 [ 748.133569][ T31] cleanup_mnt+0x21f/0x450 [ 748.148591][ T31] task_work_run+0x150/0x240 [ 748.170146][ T31] ? __pfx_task_work_run+0x10/0x10 [ 748.209726][ T31] ? rcu_is_watching+0x12/0xc0 [ 748.230596][ T31] exit_to_user_mode_loop+0x107/0x4f0 [ 748.257459][ T31] ? rcu_is_watching+0x12/0xc0 [ 748.288080][ T31] do_syscall_64+0x6f2/0xf80 [ 748.314218][ T31] ? clear_bhb_loop+0x40/0x90 [ 748.342151][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 748.374170][ T31] RIP: 0033:0x7f3936f9e097 [ 748.404962][ T31] RSP: 002b:00007ffd24824978 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 748.447257][ T31] RAX: 0000000000000000 RBX: 00007f39370321ca RCX: 00007f3936f9e097 [ 748.491542][ T31] RDX: 0000000000000004 RSI: 0000000000000009 RDI: 00007ffd24825ac0 [ 748.539301][ T31] RBP: 00007ffd24825aac R08: 0000000000000000 R09: 0000000000000000 [ 748.582958][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd24825ac0 [ 748.629583][ T31] R13: 00007f39370321ca R14: 0000000000090135 R15: 00007ffd24825b00 [ 748.679375][ T31] [ 748.697994][ T31] [ 748.697994][ T31] Showing all locks held in the system: [ 748.849058][ T31] 4 locks held by kworker/u8:1/13: [ 748.902893][ T31] 1 lock held by khungtaskd/31: [ 748.958081][ T31] #0: ffffffff8e7e5420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184 [ 749.033811][ T31] 2 locks held by syz-executor/5640: [ 749.070394][ T31] #0: ffff888036d0a0d8 (&type->s_umount_key#51){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110 [ 749.131621][ T31] #1: ffffffff8ec62340 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0 [ 749.191388][ T31] 2 locks held by syz.1.2053/12429: [ 749.225402][ T31] #0: ffffffff906bf148 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 749.283513][ T31] #1: ffffffff8ec62340 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x8ec/0x12b0 [ 749.326580][ T31] 1 lock held by syz.4.2460/13810: [ 749.355430][ T31] 2 locks held by syz.0.2526/14015: [ 749.394213][ T31] #0: ffff888048f2c0d8 (&type->s_umount_key#50/1){+.+.}-{4:4}, at: alloc_super+0x244/0xd20 [ 749.456194][ T31] #1: ffffffff8ec62340 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0 [ 749.533048][ T31] 3 locks held by kworker/0:6/14316: [ 749.550883][ T31] #0: ffff88813fe5b140 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980 [ 749.615288][ T31] #1: ffffc90003f67d08 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x973/0x1980 [ 749.665833][ T31] #2: ffffffff8e7f0f68 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0 [ 749.734648][ T31] 2 locks held by getty/14934: [ 749.761566][ T31] #0: ffff888037e900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 749.813556][ T31] #1: ffffc9000468b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0 [ 749.886188][ T31] 1 lock held by syz.3.2759/14938: [ 749.918589][ T31] 1 lock held by syz.5.2776/15018: [ 749.957843][ T31] 1 lock held by syz.6.2779/15020: [ 749.986189][ T31] #0: ffffffff8e7f0f68 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0 [ 750.047185][ T31] [ 750.065923][ T31] ============================================= [ 750.065923][ T31] [ 750.186218][ T31] NMI backtrace for cpu 0 [ 750.186242][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 750.186281][ T31] Tainted: [L]=SOFTLOCKUP [ 750.186289][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 750.186303][ T31] Call Trace: [ 750.186311][ T31] [ 750.186320][ T31] dump_stack_lvl+0x100/0x190 [ 750.186349][ T31] nmi_cpu_backtrace.cold+0x12d/0x151 [ 750.186377][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 750.186403][ T31] nmi_trigger_cpumask_backtrace+0x1d7/0x230 [ 750.186436][ T31] sys_info+0x141/0x190 [ 750.186460][ T31] watchdog+0xcb1/0x1030 [ 750.186498][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 750.186532][ T31] ? __pfx_watchdog+0x10/0x10 [ 750.186565][ T31] ? __kthread_parkme+0x18c/0x230 [ 750.186600][ T31] ? kthread+0x13a/0x450 [ 750.186618][ T31] ? __pfx_watchdog+0x10/0x10 [ 750.186649][ T31] kthread+0x370/0x450 [ 750.186667][ T31] ? __pfx_kthread+0x10/0x10 [ 750.186689][ T31] ret_from_fork+0x72b/0xd50 [ 750.186715][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 750.186753][ T31] ? __switch_to+0x800/0x1100 [ 750.186794][ T31] ? __switch_to_asm+0x39/0x70 [ 750.186822][ T31] ? __pfx_kthread+0x10/0x10 [ 750.186841][ T31] ret_from_fork_asm+0x1a/0x30 [ 750.186880][ T31] [ 751.512001][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 751.518912][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 751.529596][ T31] Tainted: [L]=SOFTLOCKUP [ 751.533920][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 751.543975][ T31] Call Trace: [ 751.547258][ T31] [ 751.550193][ T31] dump_stack_lvl+0x100/0x190 [ 751.554882][ T31] vpanic+0x552/0x970 [ 751.558868][ T31] ? __pfx_vpanic+0x10/0x10 [ 751.563376][ T31] ? nmi_trigger_cpumask_backtrace+0x182/0x230 [ 751.569542][ T31] ? nmi_trigger_cpumask_backtrace+0x182/0x230 [ 751.575711][ T31] panic+0xd1/0xe0 [ 751.579459][ T31] ? __pfx_panic+0x10/0x10 [ 751.583886][ T31] ? nmi_trigger_cpumask_backtrace+0x1b5/0x230 [ 751.590062][ T31] ? nmi_trigger_cpumask_backtrace+0x1f6/0x230 [ 751.596225][ T31] ? nmi_trigger_cpumask_backtrace+0x200/0x230 [ 751.602389][ T31] ? watchdog.cold+0x1ec/0x234 [ 751.607159][ T31] ? watchdog+0xcc1/0x1030 [ 751.611595][ T31] watchdog.cold+0x1fd/0x234 [ 751.616199][ T31] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 751.622029][ T31] ? __pfx_watchdog+0x10/0x10 [ 751.626733][ T31] ? __kthread_parkme+0x18c/0x230 [ 751.631785][ T31] ? kthread+0x13a/0x450 [ 751.636059][ T31] ? __pfx_watchdog+0x10/0x10 [ 751.640757][ T31] kthread+0x370/0x450 [ 751.644833][ T31] ? __pfx_kthread+0x10/0x10 [ 751.649432][ T31] ret_from_fork+0x72b/0xd50 [ 751.654036][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 751.659169][ T31] ? __switch_to+0x800/0x1100 [ 751.663867][ T31] ? __switch_to_asm+0x39/0x70 [ 751.668650][ T31] ? __pfx_kthread+0x10/0x10 [ 751.673282][ T31] ret_from_fork_asm+0x1a/0x30 [ 751.678078][ T31] [ 751.681171][ T31] Kernel Offset: disabled [ 751.685505][ T31] Rebooting in 86400 seconds..