last executing test programs: 3m4.773778805s ago: executing program 2 (id=184): r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_ADAP_G_LOG_ADDRS(r0, 0x805c6103, &(0x7f00000001c0)={"8911bd3a", 0x1, 0x0, 0x6, 0x4, 0x6, "feaf587cdf4d2f534a1c88d3e40a00", "e6cf6512", "f34cae3a", "10a991b3", ["3ae887a128f1d8c79420d880", "b11feafce4d296d8c985d069", "0149f0a7102c3fffab592db0", "0059c09dca7de9bdbbc6be07"]}) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/snd/controlC0\x00', 0x1a3700, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1r\x19J\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xb9\xd4\x98H\xe2.C$\xa2\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x4) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x9, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x25, 0x1, 0x0) setsockopt$auto_SO_PRIORITY(r2, 0x1, 0xc, &(0x7f00000000c0)='///\x00', 0x4) connect$auto(r2, &(0x7f0000000040)=@generic={0x25, "835aabaf5dc454e38226799f73aa"}, 0x18) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0x4018aee1, 0x0) rename$auto(0x0, &(0x7f0000000240)='./file0/file0\x00') 3m3.01122794s ago: executing program 2 (id=189): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) (async) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mmap$auto(0x2000000000050, 0x8, 0x2, 0x9b72, 0x5, 0x0) socket(0x11, 0x2, 0x800007) listen$auto(0x3, 0x83) setsockopt$auto(0x3, 0x1, 0x1, 0x0, 0x9) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x100, 0x0) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x100, 0x0) r1 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) writev$auto(r1, &(0x7f0000000300)={0x0, 0x10001}, 0xc) (async) writev$auto(r1, &(0x7f0000000300)={0x0, 0x10001}, 0xc) rmdir$auto(&(0x7f0000000380)='./file0\x00') openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/midiC2D3\x00', 0x488281, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/midiC2D3\x00', 0x488281, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000240)='/dev/audio1\x00', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x81c00, 0x0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x81c00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000000c0)=""/255, 0xff) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC1D1p\x00', 0xa00, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x0, 0x3, 0x800, 0x0) (async) socketpair$auto(0x0, 0x3, 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) futex$auto(0x0, 0x8, 0x8243, 0x0, 0x0, 0x4) getsockopt$auto(0x3, 0x200000000001, 0x35, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/nbd15/power/control\x00', 0x88282, 0x0) sendfile$auto(r3, r3, 0x0, 0x1) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) (async) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) ioctl$auto_BLKRRPART(r4, 0x125f, 0x700000000000000) (async) ioctl$auto_BLKRRPART(r4, 0x125f, 0x700000000000000) msync$auto(0x1ff7f001, 0x9, 0x400000004) (async) msync$auto(0x1ff7f001, 0x9, 0x400000004) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) 3m2.361187921s ago: executing program 2 (id=192): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0) mknod$auto(&(0x7f0000000180)=':,\x00', 0x0, 0xffffbffe) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r0, 0x7, &(0x7f00000001c0)='batadv\x00', &(0x7f0000000200)="31e7293839271adf1a3306204fcce35a73a28fd304cb060c4af0cf261c306911d5b5dbaac63ca88bb91e976e24c19881e1956f5299333e662f40566a80eaeb9f0de9d651982d8e81f37e673f7f1149c40807ad1e27d52ea113a4438d93cac4fb8f5c97cb3bb07f8d4cd514257285103c94af73c7fb52b095f3bea6eafb5d26e87b851155301cd7f51ad287d1427d", 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7040f98900f384e61e89b0f21b9c", @ANYRES32=r4, @ANYBLOB="0800310001000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20044000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000003c0)=@link_update={r1, @new_prog_fd, 0x2}, 0x3) socket(0xa, 0x0, 0x70) r5 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) read$auto_output_bpc_fops_(r5, &(0x7f00000002c0)=""/148, 0x94) r6 = socket(0x1, 0x1, 0x0) r7 = setfsuid$auto(0xee00) setreuid$auto(r7, 0x0) setpriority$auto_PRIO_USER(0x2, r7, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r8 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r9 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r8, 0x0) r10 = socket(0x1e, 0x1, 0x0) bind$auto(r10, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x3, {{0x42, 0x4}, 0x3}}, 0x66) bind$auto(r6, 0x0, 0x6b) listen$auto(0x3, 0x81) getsockopt$auto_SO_TIMESTAMP_NEW(r9, 0x5, 0x3f, &(0x7f00000000c0)='batadv\x00', &(0x7f0000000140)=0xffffffff) listen$auto(0x3, 0x83) 3m1.627510673s ago: executing program 2 (id=193): openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x8000, 0x0) mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x8) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x1a0000000000000, 0xe3, 0x100000eb1, r0, 0x8002) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x302, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC0D0c\x00', 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000100), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000280)={0xc, 0x200, "970bde1fcf44aca36348351c"}, 0x0, 0x1001) sendmsg$auto_L2TP_CMD_SESSION_GET(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="01002abd7000fddbdf25080000000800b4ddf952c50e87bbe7fa26640b0007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20004094}, 0x800) ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r3, 0x40084149, 0x0) r6 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject\x00', 0x1, 0x0) writev$auto(r6, &(0x7f0000000000)={&(0x7f0000000000), 0x4}, 0x2) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0ed26f37a54afa8532b3687cd9ff0aeddba4764765e542fe462b3ce8316855", @ANYRES16=r2, @ANYBLOB="01002dbd7000fcdbdf257e000000"], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x254, 0x9}, 0x20000007}, 0x3, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r8 = socket(0x2, 0x2, 0x1) socket(0xa, 0x801, 0x84) bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x1b, r8, 0x10000}, 0x10) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0xf7f, 0x81}, 0x10, 0x0, 0x0, 0x8) 3m0.843597865s ago: executing program 2 (id=195): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYRES16=r1, @ANYBLOB="01002dbd7000f9dbdf25010000000500070058000000080009009c781e01060002000100000008001800030000000800190006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x24, r1, 0x20, 0x70bd2a, 0x25dfdbfe, {}, [@L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x3}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x810) r2 = setfsuid$auto(0x0) setuid$auto(r2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bond_slave_1\x00', 0x0}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010b27bd7000fda5c5a62073660008000300", @ANYRES32=r8], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040080) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="0100cda4429629bd7100f9db5f250200000000", @ANYRESOCT=r9], 0x24}, 0x1, 0x0, 0x0, 0x2c0080c0}, 0x80) shmctl$auto_IPC_SET(0x80, 0x1, &(0x7f00000003c0)={{0x3ff, 0x0, 0xee00, 0x5, 0x4, 0x5, 0x6}, 0x6, 0x401, 0x0, 0x602, @raw=0x8, @inferred, 0x0, 0x0, &(0x7f0000000300)="d2d51683be49c7ac82e7afe28399a4956f844e75d677575c3baa0f6b0562dde39a18775dd531bd34912cfccfd2863e1ac6e64449d2991b6e", &(0x7f0000000340)="fc58442c6b53dbb0000935202f13ed992786ce70c8f9ce29a12ea24d5455d0d2787750e46b7f36f4985c0e9628271afa1e769fa13bd918c8a4c04e78d0ad85b27ea2e4364a83cd8b671f0586dc8650a983f183d7680a0ac3e882166631d4c1c0be2a69c735f76b9d"}) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001740)={&(0x7f00000017c0)={0x2814, 0x0, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_MODES={0x117c, 0x2, 0x0, 0x1, [@typed={0x7, 0x98, 0x0, 0x0, @str='/,\x00'}, @typed={0x8, 0x140, 0x0, 0x0, @uid}, @generic, @nested={0x1004, 0x1b, 0x0, 0x1, [@generic="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"]}, @generic="efdf33821445fe0c12b05f3f3ed024cdebfe40f6ca", @generic="19f43b452b182cea9fc4ba61a2c416ba85705f7a878ff1c899bf7a240542953f0cfef2b68804091469b353c0232ff0ed4a8ac41da43fc9b178ea8feff15b049b74d9c829012cef2a1d473af75191f9711a691152b91520c2131d64015e65f765ae220018bbc46b20b659a7284ecbece023676fe618c031e65772053e8aec87f05e732f33163665771e3d6287dc41317769b9e924c0045bc380115456039eb6922076022e6101b87785ca70d36a448781298890a4dd0b1b318ed906f33c8d946f", @generic="0925c48ffcbc32b46a630b3158d3727cd0be8711ae9a8060f9307a13a5f906e85942134a71edb2c704cf7d0b98222641c7ce8e5f0a99fbd36fc12a20762a7b1266eb24c7d3a7ddc6b36a4133ea1aad726a368801d28111b2566ccbb6c85393eb3feeade4961796db53b5595ca1c80b1e76b526", @typed={0x8, 0x7b, 0x0, 0x0, @uid=r2}, @typed={0x14, 0x46, 0x0, 0x0, @ipv6=@loopback}]}, @ETHTOOL_A_WOL_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @ETHTOOL_A_WOL_MODES={0x1604, 0x2, 0x0, 0x1, [@generic="b2e52d14797e360e1ae743d01b7ac1bab7ac2e98e9d0f1d52c467d82801b76f94ff82e4b30eaea47e1cafe8448612cdf9f6b4bb650216226dc8e22549eb864ac44d34fed562a55d800cc543736a238e5ea353347bdba569b72c2ed1dba19ebf56787623c05847cafd69c6837724249a167a3cf3a0c7b0a18498ce2600777162f00d03d877a519db8e7504b6d6a0036f62ef4bc097a227f32fd19846e7d0e3198b4152e947c2636133bb834cfa1f8d6cfd4218aaed029f218a8e425eb8db4447163", @typed={0xc, 0x12d, 0x0, 0x0, @u64=0xffffffffffffffff}, @nested={0x170, 0x7b, 0x0, 0x1, [@nested={0x4, 0x4c}, @generic="fd62fc8419bbd841ce6f5e7c04795fc52f12f09615a723efe844ce5bc59f67d1b3750ca9492049c3f0c321bdd290cdad93e70695ef1b2e2911c3b9ef0e335e37783c9774bc5cfed33e3e478c7fe0d29be78bd99c98b125775e3a07d1977db54c2ad97d9ee326315c6b84cc07adf367de13d711d04d56685308240cb186943706c7d48bdb895ba2784b5d99605d46daa9ddf3702bca00b2ef6940e476f769e4eecc13a8", @typed={0x8, 0x77, 0x0, 0x0, @fd=r9}, @nested={0x4, 0xb1}, @generic="aefef2b0bcb1e9256137ea90a206299791d0341992266c392472dfc0e72cc15d8e334156985804d2796a3775a8551b91e4d28965f5fadcf80b3f4f88809a541b64cb4a16f19ed1957418962a7896ffd7dd8b7c000be8722851fce435bd23fdb186de2fba6904db4d3478879b81e8c996c84a741985da9691a7995f3494f6fdf26066f6bc9a0bbbfb537166795496c839adea2c55cebf35f7a3bdf311ad75c44c210b4de23a785f7198caa7414e1cfae6fe3df30f51b1e0802b"]}, @generic="ebc718220ab553a59b56850c330e520d5ba5d19bc8448be5914831218aa8f2f5732b2d928fd58c9bc618cc0acb5b35fd7a6df4a5e1739d08d8b1a33a23e27653881ea0fe0c48ad07ac177f7128a205efa6d399f359381feeefaadee6c12d0a3e9cdada719bbc626179b52f8b284cc98cc8d4a5634227d6df7f2316221fc5f3c286911bc8b75ab103561a8b714da20508d2299664ff2c1f324ebbaa2bd1e2ad65a1d0b35b51219696435244158c1ae20f8a66cb4f93af6eda6aaaa8860d0132f466c33ad69487b926f32b0ecca87255fd544e738c231b6c011dddf76fc875d8b08312", @generic="b44ac4ae5669ec0602438a6b6f10f392b1953dfed8697d1d4ef8661a30c12db6300e84704dd8be5dfe8f09fe19f12ae6c4a461d8f98efd49cb820f695a7810da0fd00ac664e318ac64458aa699a38ccd97a624187c65f7e448f91923abca6029ae7b4afc408fb71235b2c4aaf171a92318fa339be41e4746b37e8f4b484ce551f3997d35c953bcda3258d43e4fc944b2803359cb5da4fc9fd1287e1c", @generic="b15da95c2ee1462c453a186e2b9fb32d4277480f2c2cd06b891f8ebeb7d01c4620b116459485a63bcdd80c45f77104cced778ed0bbb53204fcb8db409ebda721e8ebb44053", @nested={0x11ff, 0x42, 0x0, 0x1, [@nested={0x4, 0xe1}, @generic="6120998a7ec1ec0176367321e75f75b08d0f8eefc584277315ab3a9eaa2afff511499fca5d978ce372776005fe05178e2e65a4dbb291c7a02b0aad0c5253fc82696410aec4f27f9fb5495f0851e093bcbc5487cedf9a45c7ae8357f5c5222891acb1e686c645f618bde324a6460043e018", @generic="b1db8efb7526b688b22c179e8bc2147c5e76be958a21f0525598c1da341de41429dcd92ac566ebde64cd27cc006ce159193f1bf97297686f58d5cea3ec116654b94e66820ed21c6a0fbb8da18ccb9ebf76ef7ef426ac9ef80d8f0e359150c3767f40a005f0726c6869d717a81fd1e29f884fd90785ea415b51c645a4144321e948becb33646af701e32325a456f40103fa7d93bbcbbda4c83a524c999af88499b79df43bbd2061450495c41680406ae0105b1a6ac659c1c7b98c3a8a5bdc99327acc71f78e1bfe6d0731fa7e51683c39636bb7bacb3ad6567f", @typed={0x8, 0xcd, 0x0, 0x0, @ipv4=@remote}, @generic="16ceab0e23832a5ef41e176f5ef809ad9401bda579375c83f4f1276041f43e665e10d98d5509c05fff484de41387413515b77decfa4002d8968e191e3a1dd7a72b34ad2dbe24f9e79f8ea97f9843a957ce65a4f8aff0bf633475d78e4cb852eef24fb6719002349862c39e892e9fc27f3792fe75c2d870231ad845f3e4ac8b1e5a7ede35146a18bdd5cf442e479ac1ac56", @typed={0x14, 0x38, 0x0, 0x0, @ipv6=@private0}, @generic="15aa963c3cfb9150440a21437b438dbfe89c282ee7c8100369b73fa54bcde388c0635c2e1d11dabb88840c57589f2bd620f95ebd7f94cdd84802fe811e2e0dc5cb71382dd024f5d3b79e0908c9c81de9ed46d224994719b2706a686ef5b6336ad3f0cea087f3db1e265d9ad3a8aa9e73a059b61989f8ffbedda0870210c43ff56c512c5e470ccd95c3b5b540e6d0608b0af65a376683c49f7ac82bb1edc0a28de0ee21701bb093647fbc7b0c5869c19522e69e44bb6b3b04804c2abef4e6d72117997dd54dfb320653ee8f226b91300e8979263b5ab7600bfaa67ad3389605ad3bc997487c6d65527762f35ff14343833bbb229314c28eacc2d9422fd43ab51b3bce993fb5fb1d3073cddb4220ac7529cc3114a6f8ca9d1e1ce3ca9833f937b46c869536bdf6fea2542d2dbee5ebd3d3fb2dcbc50635bafa8d6a2495a731a7b1c16154af83c539e21b69ec4740ea62712fc3731c50f6c94cc7b9a203865c83e9a6920e0c76e5e0b4abf5041f0ce9f1f18b3435d2364c0a5b5e903dab2ec21564cd61206fa6c3825a9b77d302cf82bbcd106abe3490428b1efdffef19ab9e8b2cc5e04cd9dfb7d4957c6afcf4e3e15d203999169f9bacc7620f8edffe37b75ee0ad9245964e68ff3cc125c6621a78dbc84877db7213b45942e0e04499e2cb90785b6e8cae7d90cd1888e7a1bbd6102d93c75a04b52024989affa5211759d9e3d12cba54653d6c90f350ba8832ef386f2bf2ca1b5291a4ed6ce6e45ddd76b80f39c7565fb46877022f1d92a5a208561410f95f6a41c2db507c81894297d6a3c0a21729746587b28bb1e3a400435150d50cdba8428029c8279f69a43b333a5be4771bc6ffaf18e2470d56e9fd1d46131c6b85cec0f6d587e94a6bea9b4fecf072b254e76353e4100892e06be8964a5a99355e2c1ea004739bca5d9af8f231dc48873e49988f59861543bd0608b8e1c98779739704e620f96a4500e5d9f1aa174b3110073a9e9376caedbfa96188a9d52bfe3a63acce8f4d27dddc4928d7265a6d471974d6237fe0491df796202a6943569a6fb6a5f332413047e1b3988e7b799d0d82e8ca1f65b48818567bb27a811a6e05b8cbff0fd1787010407b787d18c75986c570a0684ec3aa405b7606c96ea6c798b2ee92ba6bc983fcd69765dd390d044fda91a8e6af282ec8df74e834db1926fc5e3abd8828155e4d8b25d3d47e076c11da75e8f77c47f99a6c44e65cdfb084b1a9306cf779b50163f0208130177ec788f11a057dedd32a3d7899a8813abfc46ddf1fad69889e0a96fd04018fc7f10b5a97b2dca2653d55b73449e138dc934d774ab166e98522d2dcfc5f0a8e1564b22d0b81a47bcc01ad153b0404e5da9b08d76646da70ea9ed2297dfd558f4abe3af95f5bd2529211a8c254b04bf759e1277eb2d8a967650aff471de6b0ccc8f56f1b7bbb8f85ab07d7adb1dda77c70d999d7a6998866cb2c1698a6367ae931dffb1c98fe624e77d1b4323606dd93f5f48fa1fea1e2b31da7068b219f0fe994ff1f22073f9c104b38e10ce378533cee66a1cba9de46c80b47c22e6d008b410dbeeb52b6b2a0faf5b809af071357c20cee325edcf6c77a9b69b4e07eca225d15efe94c0808e4d56f7be41ef596c389872b8fc1e85b5cc7593d50abc7bb317e24fa62dc975385341b1350ed3afd4852e09dfee602d933066a8ddcbe5c6f7c1c94c10b693e49617ecccc3029c6fa7c51a131d038fccb787902b54c18ffd653f0d64c4d5cbfc999bf80f330b2956693a0e9e4f498257dfbd7c62ddc055c4da27dd4a16866c84b6702ed7b4dbc4e259e9195506ee2b380a1b07e164cd7928ace5294bc0aaadfe0371bdc961ad64208be23be5cde357f45ccf19c9eae917b5fdd04ed633ba916d5c4619467c5fd2242ca792cea9a8ed8ac33ce527b7fc2c07c07ceb68c7423b374fdac7c936019a91f7a0d5c7cc4a31db6c2717265c9492b809170896674f7cf7c5f153e46aa0f5685939104dc889c3a9ac3509ef378bbb65b74fd978b7a695290420bf087062f1faff00c984af6c01654dcad4a7a61db130ed2c7594dafd95bebd1af4d6327490342cb5ccc1872b499ab41db33ce302149472b93d068bac1530249654d2cf2c5b1a8578db09ab92c7c6c33225d8b892eb796f55b91f53e8b4b012061141ce5104f3e867f112219b3182e35ec25bf584a1b59b3b3f6487e796457fc6db12b2c88db9670a8ee9c9370f0b95022b9afbf98d4979809e1f9553d9052975e0244610341c75637e515e2ee82bf3c2a6c93afe2e4d20e936e9c06164a6832dfd5292831a067f877a750641bbc3cdac8d9932c07502308abed58985da1800539422698ff500914866419077398b2307cbd44d2cbaf666e279023fe8fdcd7aa0e887fff5b34099862643957234799594e53b3b5732fabf1fdca839dad73b64ed166532a69ef6ad0dfb58bab8ccf23656d190244a61325a0e04cb6657abd7e80b15718ed25b70dd1b2be5f29a21dafc9a2a39dd8b980e2267b871276518002a14f36ae79c42c00e8d6f990dc41657f088aeef1da4180cc5a1a411c8b58fd7aac01b955e81e4498aa55e5c6807a45ddd1fe23fd442c5e2e8746f53bf9523a8a78d115ea6154fe683782edd5917bbb8c295e8cde4abe51e4442bd94e7caa3ae9c129a5b950fd088363a4e3dd7fba96ec18b0f52200babc6eba8d34b2fa43fcf457b75ff36a6e0f0e46c708cb8e18a26e71a1d8f1b7135e2e0d02e9a0c31d485d13c4e48242f40d79e09b122bb2d73c10a6fc8a0842bfd73bd84eefd85c0a984545d5e2b4cc5f92a9b84e7a8f27bb643528c0372f9d56ea80db5a452a837b092e38a4b3c3129a2ba6b6a4bcd453a01580ce1ea5cfd3a3812b0a693e39c87c3360bbb92aa9ccf76971efbfc67ed38da55cafebc998898cd2fec74223a869372c362e56ee163ade844c292733b4d125033f55dfd0e9763266702b7abea088d37c8f421e2b16c2f6d4b6bc37e1af6876bf6dadd65d9f1919eaf4c3c9772b61dd7ddbee3e7a72ef9afcd864554df20195d96fd6e6e9fd036b56bb375aec6157e412925acadc21aadc512d17a829c723eafc4d1711661e8b3e05a71828c05d081e6b3acd73e539f5f9dbb565f217cb8f45dd85878058936527c61c0c4e371841fd406eef7c26b339e227d0b3809e53f41947720e1e690ebc1d829b55a6a612ecc93b696f6ae7cf2fed5ffe073f744c9d1b2d39abf6e8858fc1019acd47c8bb642f77c08f579ea42a08ad1a8e6ea2955d10158cae0e6ce01cfba35b6eba42632c4744f42e153ff40179f7a3de7dcdcf34385a92a3485832bc4d03242c75de982e8ea384f0acf8bd0f2e3f3822eadae842a5824632e6bb04cf43d9fb3244495700e97860bde384d6634519d3cbbc59536cc65c8566dd2f55b36f6657f2a572d84bff0f85718f3cd21c480401111c206cdc9dc1e3917dc7204e090ad8740ce4231a5d75751f2dfbc8738aa63d2905fe52d8c4ab9598595230f846de1fe13f419476c92f9faf2d39a8906daa2ac0f02cb7d2d8e9581ee59e266ef651e25de7329996f00e9e296d11d37ccc2bc9635e71342b8e37ac0a475c9fe38e1b6c00f0e0386ae67941fe8f792b7a9c3ae136e0727a93a03f1ebc1a5fe164024385697d47ffa0f5555b6290c3393fafa55ca9e849691e907c6cb56545dc4aebf9d2fd23a8514a3e669336570b6bcde8f4bac9e94a3138440f72a3957bcc6091594aa16124a26476053d005c8f87fc39b4c8baf8c21de4a645284c867c0e623544e115ef65c38b99fd8bdb55f36a3338bb907f255943fe4e3e64654179b30583b82f7ccfbca83f592c0401bd938a1622bfc60f55bb4c9ad9cb224c7ccc15e15e7e6a06a1315f2f56a099d313cb42caf51e42752e3143294f390686982b3d14e729e184ad52839be46b4422fb074902bf23688a87af5583933d25af908b9d12817444f224bb7a5396c80520f0815198be44815f18bc6f7d486b01c15722de5240b947306ef8b377d30e2f9ae2cd99c48cd3f70608d03b19e7686379cb9e7f56c24bfb0250fb363359faecd79c3475caa9ea00127270466d787712891fdd9a2ccf83c20191a5ae60b0049ec9413aa6d40eabe8b844f781b37a02b34c6d3cac839f942382fc5cee64289a743e8b7b7d8759d8225ee3be9afbe52ba1d33488afb8375de8065dbe88d1a1d22e105dfe88e145bbdb1a56b7ff4ec2a05eeabdc163ceef1df10b59acbc36123a8806d052305afb314a2760f49e268cdb067603687fb1314c11e8e8077d4238d5aa96c26b488518e93afea5192e205cc8fcc1ea1b55530d9797756eabc9b3f9085d52ab58ff28b9bf9e4af076943fff2c615f73217a9876de25c0a1ac3339ade71a2efaffb34cfc6b79375c25cb8b612c2d1439093b8f156e31df38a1662b278692d08b9f1a4b828caf59748527c46a060534333c1703e516eaf1f2aadb2ce6b976a1024a573767b0b9a2740b384fa0cec1b829239fa917941465ff43977708d564430fa77c5c28fb3e0ccc667a7fe1954fd98368c569812cd645073409d8627961f8df9f5698acf226d2508ef7cde11476c48c295f193b8f5d3c3ef91c755300a0bb7944be9c83b8d8eacd7791627c3a870f82deb5669fdc46398c237f372317b75c6a6d9cb76dc1cc37422c05cb819c3bec0f7570cb3d48650abb4e59884d60c9ba5575327712d4a7ec31bb45a37e1b55d91fc13a5da724c63f7b50a6eadf99ff742ab5eb6fb7b95453f2e4d58272b36db35a37149b75deef2689e0c0b0f6a54e281c820cfab37ef8b98e8e25f9694d36225c29b29cbfc67ed315efd8bd8d7026f5b685d4d647677502ae62282398e77acdc4e19d98f0aee0279b27830c5ed068a486c3e82c7d0f9a1d353a5c7fdf6b4f30e18efd3fa724fe8f080299d479cd6cec0ef8326f53823e49b64da1824f750381d67acc251b6ff4b777ffefa7d280ddb8ff33fe6ec52347a133c0ac9778064c0ef826c85d31a63ad446bcdbbafdf078138a00660e3ec13b29f8261f6563c4ebebe41a25d41555c729f5cafea79eafad98eb9857b5861862bbc2ba9c1b28ac4b877cb843229504df0199edf158dd0721252b501b358ef14b26341a7632c6e61002ddaa671cbcc8a23c5a6f270d581d49301ea2bd2c84b0dc9540b8001d78f367394471d61a924bf3676457411e02c6a0e27b5b516b5b5d106f4aa92ed8eaeecf9a17301d4bb46c2716afe19cd50ab21675cd772d9a036ae63d4d66b3e5388be4a1aec153fe9aaeeed2be9b668405713cdbd0fcd980cb567d72142fc704da7e019f2825fc18853d7431f49179873bc61606cc2db133d5d41168c3b04e9076933907db9fdc1602da8847e5cb37b46ddc4a5bb57482f15970b3073bc13cbd4f4dc9fc7b5069e73a1507425d02ff82dfc5bdca8b3bb2d1c73b2818b8ed98dfbb14743ac24bb29245e355a1b4df30ef1bc967c4cc3a55c7da6defad782b506e936517a404e0b6ba12d52ad84ab4529a4a7d427a707a62d4de8800e468603ba8aa930a58a68f6dfa75e9ba97e399404e7e42adbcae77e8e9ee39382423aafbc03a57a0bfa3b5b9f88f219c8cbff0940d71e963fa4f029fd40508bf19fb84640f88786670ade113a279f391701d0e17aa8b87b40024babc067c93677c61e495d0d13b94980482989947492a9262eded54740174b724fdfb437ffb4022941cb4116eb693dae769c5a2e2b6fcac9047bdad60de38bfcac3cb5a259cf7be81414a1720bd0d2ceab3b3291558ffbc0ad496b58b"]}]}, @ETHTOOL_A_WOL_MODES={0x3f, 0x2, 0x0, 0x1, [@typed={0x8, 0x89, 0x0, 0x0, @uid=r11}, @generic="bfafe2abf7b7a73b6b1bdb160b2da3eaeca0aa556d9cdf65529ebc7abb17bfa17ea60299bde06261093dc06f311c20dd3f8af5"]}]}, 0x2814}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000) sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000001640)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001600)={&(0x7f0000001300)={0x2d0, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_REG_RULES={0x2ac, 0x22, 0x0, 0x1, [@nested={0x4, 0x1b}, @typed={0x8, 0x130, 0x0, 0x0, @fd=r0}, @typed={0x8, 0xdd, 0x0, 0x0, @u32=0x8}, @typed={0x32, 0x8, 0x0, 0x0, @binary="1d8acf2bd6388254200e171b789d3d734147463a5a4e96427f6f95f89dada7c4b0611b489fa5efca713e39b3f5b2"}, @nested={0x77, 0x79, 0x0, 0x1, [@nested={0x4, 0x105}, @typed={0x8, 0x26, 0x0, 0x0, @uid=r2}, @generic="f9007ec1bef94ef05035a0968cd9fe231a30abff37c295aab261a2314340aa27919630c420e86140e53827396067a1c825f23fec9de4488b5b70fc66681afb3f551cff08e557248bfbf08d229b5f996515f161ef0ea979cf53df27", @typed={0xc, 0x2b, 0x0, 0x0, @u64=0x7ff}]}, @generic="65f3a3aa72e79159f967efa567788529adbb1507fb2e8c3e58a2350aafc5feb5e3383effc964a293da55f2c598b1b4afcbc73bf6d7d34780c6c9a6f1def02d4c54a9e2ef3ab4858cc95c90dc3859452f0edd548c451f2ffc662844be1880a28806dbf0756d7da55be0d5436966803812f098c61957efe072bc69baebbafe649ff24bac397df9344e69cc27f54ee634ba1d4930d2a3e18df1", @nested={0x14f, 0x101, 0x0, 0x1, [@generic="3fde610749e8e4ab7482083f40318caff41241d96c01de87722b600ce9c1cc947693be14db2a3e738974be15926b84fadc0c4fb09fb420", @generic="00522e0b5ebf4f47f8371c66b3d323c51262220863b85d8731b99a9da512fe30624d35bc7da695237497da8099d23a572a8317806a0434669be399e040f361f4179f34e7c5932ab6b7c0f75ffea2db63ca49ae61d45fbf5abaa8bf8a12504041dceb848bf4a153f17ad02abd73658e1c637f8747c6d16683178505a301a8d9016ed8a57c542e5dd9ecadab4b12af50090243e09b746786676a2d3fd97eb7c845f7935194a1b0fc43f8d1992cdc16315b67654bc7652bc7b3a00fc1d192a407d887335e0611b3befe1103f91e32b0d03e227b", @typed={0x8, 0x3a, 0x0, 0x0, @ipv4=@multicast1}, @generic="d9fa09d4246144998e62c840ad1f9f7dd2272ed873c2fb5f4fd22ff126891e1ab249c7e7d27869330230faae21dc8391faa1", @nested={0x4, 0x12e}, @nested={0x4, 0xab}]}]}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x7, 0xa}}, @NL80211_ATTR_CENTER_FREQ1_OFFSET={0x8, 0x123, 0x3}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x41}, 0x4048001) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008) r12 = socket(0x23, 0x80805, 0x0) r13 = socket(0x10, 0x2, 0x0) r14 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0) ioctl$auto_USB_RAW_IOCTL_RUN(r14, 0x5501, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r13, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1", @ANYRESDEC=0x0, @ANYRES8=r12, @ANYBLOB="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", @ANYRESOCT=r14], 0x1ac}}, 0x0) recvmmsg$auto(r13, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) r15 = socket(0x2, 0x1, 0x0) setsockopt$auto(r15, 0x6, 0x9, 0x0, 0x7fffffff) getsockopt$auto(r15, 0x6, 0x9, 0x0, 0x0) 3m0.25648509s ago: executing program 2 (id=198): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0xffffffffffffffff, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) getsockopt$auto_SO_BINDTOIFINDEX(r0, 0x40, 0x3e, &(0x7f0000002440)='\x00', &(0x7f0000002480)=0x5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000002400)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/msr/events/tsc\x00', 0x129000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/213, 0xd5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000024c0)={&(0x7f0000002580)=ANY=[@ANYRESOCT=r1, @ANYRES16=0x0, @ANYRESHEX=0x0, @ANYRESHEX=r1, @ANYRESHEX=r1, @ANYRES8=r1, @ANYRESOCT=r0, @ANYRES32=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r3 = socket(0x2, 0x801, 0x100) r4 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0xa0400, 0x8) r5 = open_by_handle_at$auto(r4, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2) sendfile$auto(r3, r5, 0x0, 0xffff) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd965020000"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r6, 0x4, 0x8000) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) openat$dir(0xffffffffffffff9c, 0x0, 0x840, 0xc) io_uring_setup$auto(0x6, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x60c40, 0x0) ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r6, 0x4, 0x8) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) 2m44.865246518s ago: executing program 32 (id=198): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0xffffffffffffffff, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) getsockopt$auto_SO_BINDTOIFINDEX(r0, 0x40, 0x3e, &(0x7f0000002440)='\x00', &(0x7f0000002480)=0x5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000002400)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/msr/events/tsc\x00', 0x129000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/213, 0xd5) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000024c0)={&(0x7f0000002580)=ANY=[@ANYRESOCT=r1, @ANYRES16=0x0, @ANYRESHEX=0x0, @ANYRESHEX=r1, @ANYRESHEX=r1, @ANYRES8=r1, @ANYRESOCT=r0, @ANYRES32=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r3 = socket(0x2, 0x801, 0x100) r4 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0xa0400, 0x8) r5 = open_by_handle_at$auto(r4, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2) sendfile$auto(r3, r5, 0x0, 0xffff) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd965020000"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r6, 0x4, 0x8000) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) openat$dir(0xffffffffffffff9c, 0x0, 0x840, 0xc) io_uring_setup$auto(0x6, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x60c40, 0x0) ptrace$auto_PTRACE_SET_THREAD_AREA(0x1a, r6, 0x4, 0x8) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) 2m33.97166584s ago: executing program 3 (id=264): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram6\x00', 0x4040, 0x0) preadv2$auto(0x3, 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x2e) write$auto_tty_fops_tty_io(r0, &(0x7f0000000280)="352c8efa618c0bcf83", 0x9) ioctl$auto(0xffffffffffffffff, 0x8912, 0x38) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) (async, rerun: 64) ustat$auto(0x801, 0x0) (rerun: 64) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953,O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0xfffffffffffffffe, 0xfffffffffffffff7, 0x10000000000df, 0x20eb1, 0xff1, 0x8000) (async) io_uring_setup$auto(0x8000001, 0x0) (async) bpf$auto(0xfffffffb, 0x0, 0xfffffff2) (async, rerun: 32) getpid() (async, rerun: 32) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/version\x00', 0x10000, 0x0) (async, rerun: 32) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsu\x00', 0x48080, 0x0) (async, rerun: 32) fcntl$auto(0x3, 0x4, 0xa553) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_SCAN(r3, 0x0, 0x0) (async, rerun: 64) read$auto(r2, 0x0, 0xb4d3) (async, rerun: 64) write$auto(0x3, 0x0, 0xffd8) (async) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0) (async) setgroups$auto(0xe32, 0x0) (async) madvise$auto(0x9, 0x200007, 0x19) (async) mmap$auto(0x0, 0x1ff, 0x3, 0xfffffffffffffffc, r1, 0x8000) (async) socket(0x10, 0x2, 0x14) 2m30.96107603s ago: executing program 3 (id=270): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x54) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0xffd8) setsockopt$auto_SO_CNX_ADVICE(0xffffffffffffffff, 0xd, 0x35, &(0x7f0000000040)='nfsd\x00', 0x4) ioperm$auto(0x3, 0x5, 0x149) ioperm$auto(0x7fffffffffffffff, 0x401, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x6f0082, 0x0) socket(0x2, 0x3, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) bpf$auto_BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x98) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4000) socket(0x2, 0x1, 0x106) unshare$auto(0x40000080) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) prctl$auto_PR_SET_MM_START_STACK(0x4, 0x5, 0xffffffffffffffff, 0x4, 0x4) mmap$auto(0x0, 0x2020009, 0x5, 0x15, 0xfffffffffffffffa, 0x2b5) close_range$auto(r1, r0, 0x80000001) 2m30.157277358s ago: executing program 3 (id=274): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) capset$auto(0x0, 0x0) select$auto(0x0, &(0x7f0000000040)={[0x9, 0x4, 0x34, 0x9, 0x1, 0x1, 0xa, 0x6, 0x5, 0x1, 0x0, 0xcf, 0x5, 0x213, 0x5, 0xb98]}, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c80"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b67, 0x1) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r2, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) unshare$auto(0x40000080) write$auto(0xca, &(0x7f0000000400)='\x04>\x00\x1d\xa4\xd2\xc3\xec&9\v\xbc\xdein\xe1G8\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1GH\xb5\x8f\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x97}Z\x7f\x0f\x90\xce\x85-e\xb6n\xbc\xc6=\xf8\xce\xe7\x1e]\x85|\xce\xd7L\x9b\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\xd9\xd3\xf8 \xe9e\xe5\x80\x1c7B+]\\!\xcej}H\x03x\x83Z\x98\xb8\t\xde\xd4\xf5\xf32\xccR\xaa\xdd\x16\xab\xd8\x1d\"\xc7\xa5\xe1k\x1d\xd9k\xc6\xb2\xa7\x97\x9a\xf6\xfe\xef\x1a\xbd\xcb\xb8*\x8b9\x00R\xe9)?Em\xb2\xac\xd1\xf6\xff\xc1\xc7\xbdl\xa2+tI\xa3\xa8\xabVe\x87\xa9\xae9\x82\xd2.SCt\xcc\x8c7\x7f\xdc\xc3\xfb\x94\xfc\xdfc+\x04\xfb\xf5$\xecO1@\x99l;\xd3X\xd5\"\xec\x17hR\xc5\x99\x8b\x9f\xf3\xf48%\xfa\xf2\x1d\xc5\x10T\x83p0\xd7]\x83{\x81\xdei\xd2\xfc\xfd=3K\xc3\xfe\x12\x98\x8b\xbe\xd1+\xc4r\x7f\x8f5\xcc\xa6\xd8>k\xcc\xee\xe0\x9bW\x0e\xc63\x84^\xde`\xd2\xe8\xfc\x02\xef\xa4\xdc\xd0A\xd5`?9D\x1c\x1b\x1b\xd5\xcb\xfb\x03I\xc9\x97\xac#\x0ee\xc8ltL\x88\x17m~aA%\xd3\xaf\xaa6hf\x9b\x83\x02A\xb0\xf6\x14\xb3\x18B\xfd\x9ai\xf8j \a\x1es\xa3U\x98sqq,\xd2A4?l\xa2\x9c\xc9\x9fa\xe8\x99qw\xf3\x18\x12R+(%x\xb6\xf8\x92\xa5\xe4\xdd\xe9\xf2\x0e\xc8', 0x100) r3 = socket(0x0, 0x5, 0x87) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000100), r3) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r6 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000180)="285ecf7e037b55e1ab7a4f76992f65c6415bf83a1dbdf2c6c5e006b2e5e027c00f96dad6274a64b2878a42144a92217419d1586fc6d20bdf574fae2b958d59a2518677c559eba44de9112cf6c1fa7f9f93f6fd92bc4e4c39199566e6357935fffc05c8b7523b36cd1db40563ab0d5ef018172ca9860267e22834fb3e01c71b86121c9b09f81877d895ba10c871673dc023c9a133074d031b377b9b1c638b2450d6e4") prctl$auto_SIGCONT(0xb, 0x12, 0x0, 0x1, 0x10000) sendmsg$auto_NFC_CMD_ENABLE_SE(r3, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000840)=ANY=[@ANYBLOB="44020000", @ANYRES16=r4, @ANYBLOB="040126bd7000fcdbdf25110000000800040003000000e1011380f74f6457291e806894afc92463eda69c8ab78b8418f93f828d1dc1b543dea59a6c79d379defaf313c92cc2ba5f8592dca46d5caad2f0cd2c5b0104e40a31ff929996f10c0fc43b2e7fdeb013bf2144b6c81d83303dee607548a63e2a7df8eaddece92a6b0c004d800400258004006d0018002a801e00df00", @ANYRES32, @ANYBLOB="0826ddb67f2bbd681c47a69ab2ce82dcefb554bb8df7d4c9da7f7d30622f363ec8a83e4b773cd0460bc57a2753d55e9978c965c3f5fc5497efa2dfaadfd1dc193042ce2c98ecbe062127d7bf8d2aa73cf04fa13856d4cee0c814a695ff1f2a89033b0000000000", @ANYRES32=0x0, @ANYRES32=r0], 0x244}, 0x1, 0x0, 0x0, 0x4048000}, 0x48800) ioctl$auto(r5, 0x541c, r6) setsockopt$auto_SO_TIMESTAMPNS_OLD(0xffffffffffffffff, 0x8, 0x23, &(0x7f0000000140)='/dev/tty12\x00', 0x7) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) mmap$auto(0x0, 0x2020089, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x5, 0x2, 0x40ebe, 0x401, 0x300000000002) mprotect$auto(0x0, 0x806121, 0x6) timer_create$auto(0x9, 0x0, 0x0) 2m26.173629286s ago: executing program 3 (id=281): mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x80801, 0x0) ioctl$auto_EVIOCSMASK(r0, 0x40104593, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x147602, 0x0) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0xe504, 0x0, 0x5) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x1000, 0x5, 0x1, 0x3ff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x801, 0x106) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) setsockopt$auto(r1, 0x6, 0x1e, 0x0, 0xa1) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0x8000) (async) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x80801, 0x0) (async) ioctl$auto_EVIOCSMASK(r0, 0x40104593, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x147602, 0x0) (async) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0xe504, 0x0, 0x5) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x1000, 0x5, 0x1, 0x3ff) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) socket(0x2, 0x801, 0x106) (async) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) (async) setsockopt$auto(r1, 0x6, 0x1e, 0x0, 0xa1) (async) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) (async) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) (async) 2m25.041172287s ago: executing program 3 (id=284): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x40000, 0x0) ioctl$auto_FBIOGETCMAP(r0, 0x4604, &(0x7f0000000040)="9cfc") openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x4, 0x948d, 0x7, 0x15f4da0a, 0xfffffffffffffffd, 0x5, 0x62, 0x80000004, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r2 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xd, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x7, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x8000000000000001, 0x7, 0x100000000000007, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r3 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/config/nullb/features\x00', 0x80280, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) read$auto(r3, 0x0, 0x10) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8000000000000000, 0x8000) capset$auto(0x0, &(0x7f00000000c0)={0x1, 0x2, 0x8}) socket(0x28, 0x2, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getsockopt$auto(0x4, 0x6, 0x6, 0xfffffffffffffffc, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) 2m18.916610288s ago: executing program 3 (id=290): prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xffffffffffff066e, 0x9, 0x8, 0x1) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xcfb1, 0x100000000, 0x6, 0x10001) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xcfb1, 0x100000000, 0x6, 0x10001) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7ff, 0x4, 0x8, 0x3) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x0, 0x5, 0x1, 0x6) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0xffffffff, 0xd6f6, 0x9) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x401, 0x0, 0x7, 0x2) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x8, 0x9, 0x5, 0x5) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x400, 0x401, 0x1, 0x2) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xb, 0x3, 0x9, 0xee) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xb, 0x3, 0x9, 0xee) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x4, 0x6, 0x0, 0x0) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x101, 0xffffffffffffffff, 0x3) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x101, 0xffffffffffffffff, 0x3) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x4, 0x2b72, 0x3, 0x7fffffffffffffff) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x4, 0x2b72, 0x3, 0x7fffffffffffffff) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x80000000, 0x0, 0x2, 0x86) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0x1, 0xe, 0x5) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0x1, 0xe, 0x5) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x3a1a, 0x4, 0x20000000, 0x0) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x3a1a, 0x4, 0x20000000, 0x0) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xef, 0x6, 0x1, 0x6) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x100000001, 0x7fffffffffffffff, 0x10, 0x397c) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x100000001, 0x7fffffffffffffff, 0x10, 0x397c) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0x100, 0x0, 0x4) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x3, 0x0, 0x8, 0x8) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xfffffffffffffffd, 0x100, 0x5, 0x8) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xfffffffffffffffd, 0x100, 0x5, 0x8) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x0, 0x4, 0x38c, 0x3) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x6, 0x400, 0x0, 0x800) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x1, 0x9, 0xfffffffffffffffa, 0x81) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x9, 0x8, 0x2b, 0x5a383f5d) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x2, 0x8001, 0x8) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x2, 0x8001, 0x8) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0xf2, 0xa2, 0x5) r0 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) read$auto_ptdump_fops_(r0, &(0x7f0000000040)=""/185, 0xb9) r1 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000100)=0x7) ptrace$auto_PTRACE_SET_SYSCALL_USER_DISPATCH_CONFIG(0x4210, r1, 0xd, 0x6) (async) ptrace$auto_PTRACE_SET_SYSCALL_USER_DISPATCH_CONFIG(0x4210, r1, 0xd, 0x6) 2m3.784476165s ago: executing program 33 (id=290): prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xffffffffffff066e, 0x9, 0x8, 0x1) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xcfb1, 0x100000000, 0x6, 0x10001) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xcfb1, 0x100000000, 0x6, 0x10001) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7ff, 0x4, 0x8, 0x3) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x0, 0x5, 0x1, 0x6) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0xffffffff, 0xd6f6, 0x9) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x401, 0x0, 0x7, 0x2) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x8, 0x9, 0x5, 0x5) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x400, 0x401, 0x1, 0x2) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xb, 0x3, 0x9, 0xee) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xb, 0x3, 0x9, 0xee) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x4, 0x6, 0x0, 0x0) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x101, 0xffffffffffffffff, 0x3) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x101, 0xffffffffffffffff, 0x3) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x4, 0x2b72, 0x3, 0x7fffffffffffffff) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x4, 0x2b72, 0x3, 0x7fffffffffffffff) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x80000000, 0x0, 0x2, 0x86) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0x1, 0xe, 0x5) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0x1, 0xe, 0x5) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x3a1a, 0x4, 0x20000000, 0x0) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x3a1a, 0x4, 0x20000000, 0x0) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xef, 0x6, 0x1, 0x6) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x100000001, 0x7fffffffffffffff, 0x10, 0x397c) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x100000001, 0x7fffffffffffffff, 0x10, 0x397c) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0x100, 0x0, 0x4) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x3, 0x0, 0x8, 0x8) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xfffffffffffffffd, 0x100, 0x5, 0x8) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0xfffffffffffffffd, 0x100, 0x5, 0x8) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x0, 0x4, 0x38c, 0x3) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x6, 0x400, 0x0, 0x800) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x1, 0x9, 0xfffffffffffffffa, 0x81) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x9, 0x8, 0x2b, 0x5a383f5d) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x2, 0x8001, 0x8) (async) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x7, 0x2, 0x8001, 0x8) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS(0x4d, 0x5, 0xf2, 0xa2, 0x5) r0 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) read$auto_ptdump_fops_(r0, &(0x7f0000000040)=""/185, 0xb9) r1 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000100)=0x7) ptrace$auto_PTRACE_SET_SYSCALL_USER_DISPATCH_CONFIG(0x4210, r1, 0xd, 0x6) (async) ptrace$auto_PTRACE_SET_SYSCALL_USER_DISPATCH_CONFIG(0x4210, r1, 0xd, 0x6) 9.597085302s ago: executing program 1 (id=645): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) socket(0x2c, 0x3, 0x0) socket(0x2b, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x5, 0x0) semctl$auto(0x7, 0x2, 0x13, 0x1) r1 = socket(0xa, 0x801, 0x84) ioprio_set$auto(0x81b, 0xff, 0xffffffff) getsockopt$auto(r1, 0x84, 0x10, 0x0, 0x0) getsockopt$auto(r0, 0x84, 0x85, 0x0, &(0x7f00000000c0)=0x1000c) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2, 0x1, 0x106) bind$auto(r3, &(0x7f0000000000)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(r3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x23}}, 0x54) ioctl$auto(0x3, 0x80000541b, 0x38) ioctl$auto(0x3, 0xaea2, 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) r5 = socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000000)={0x10, 0x0, 0x2000000, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x20008000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy0/net/wpan0/uevent\x00', 0x4aaa2, 0x0) pwrite64$auto(r6, &(0x7f0000000140)='-h\xd2i>\xcef1\xdeF\t\x85^!D\n\xf4~\xc8\xdc\xa5\x94\xc5K=\xaa!\xd9-evO+\xdd\xce!\x8cE\x04\t\xf8\x00\f\xe6\xba\n\xfe\xc5?\a\xa7\x1b\x0e\x13\xa8\xba\x10\xd9\x9b\f\xc9\xc8~\xfb\xd8\x92\x10\x8d\x93f\x836/\xee\xf5\x10\xf3rk\xc1^$\x91\x84\xe3\xa8{+ui\xa7O*\xdd=\xfdr\xb9\t\x005\x00\x00\xbf\x1feX*J\xeb\xf6\xc4\n\xce\xf0\xf4\xc4\xce\xc2=I\\8,\xf4\x9a\x17\xc3t;E\x146\xc3!\x9e\x05\x05\x84\x1f\xe4\x06', 0x80080005, 0x1000000007) fchdir$auto(r5) sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) read$auto(r5, 0x0, 0x7) 8.840750093s ago: executing program 1 (id=649): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) bind$auto(0x3, 0x0, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) ioctl$auto(0x3, 0x80108907, 0x38) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYRESOCT=r1, @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x0) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x0, 0x0, 0x40) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r3, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000004540)={0x50, r4, 0x1, 0x70bd27, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x38, 0x1, 0x0, 0x1, [@nested={0x34, 0x11c, 0x0, 0x1, [@nested={0x30, 0x90, 0x0, 0x1, [@nested={0x28, 0x9, 0x0, 0x1, [@nested={0x24, 0xa4, 0x0, 0x1, [@nested={0x4, 0x64}, @typed={0x8, 0x136, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0x14, 0x87, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @broadcast}}]}]}, @nested={0x4, 0x14d}]}]}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x0) setsockopt$auto(0x3, 0x6, 0x3, 0x0, 0xd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x80000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) write$auto(0x3, 0x0, 0xfffffdef) sendmsg$auto_NL80211_CMD_PEER_MEASUREMENT_START(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, 0x0, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SCAN_FREQ_KHZ={0x8, 0x124, 0x0, 0x1, [@nested={0x4, 0xfe}]}, @NL80211_ATTR_SSID={0xe, 0x34, "6bdb88bc40fb3fadc6c8"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x480c0}, 0x20) 7.922924383s ago: executing program 0 (id=650): sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0xc040810) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0xc0000082, 0x400, 0x5}]}) 7.578327759s ago: executing program 0 (id=652): r0 = io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0xb01, 0x0) write$auto_bm_register_operations_binfmt_misc(r0, &(0x7f0000000340)="71ed348039966aaae012c3d8c08e050ab3d88b9d64a3ae31f57682ba4774c9b5dd094060ecf79d18672a36ca314a6d74d7f932170e6071b4897621875ab3358af4e969724f94c9111f9210c289d36f8da68e1d1de2d16c1b63a001344928f77c879f3d2086c2023bc1f07fd5512b010f8f4c6386c96e24e3eab1eb35916a9100bc2d5ce549d221205a1766e7ff92a889bbfa6cb937649b2c125cd5c44ab213d3e6b28732e544b0028df0d9272839082c3e982db8a923438210522d54", 0xbc) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20382, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000080)='/dev/binderfs/binder1\x00', 0x101000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x0, 0x1, 0x0, 0x1e) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x8, 0x100005, 0xeb1, r2, 0x8000) ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r4, 0x5522, 0xf15) ioctl$auto(r4, 0x5523, r4) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) socket(0xa, 0x5, 0x94) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) 6.065366255s ago: executing program 0 (id=655): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) ioctl$auto_KVM_CHECK_EXTENSION(r0, 0xae03, 0xd4) socket$nl_generic(0x10, 0x3, 0x10) 5.861671627s ago: executing program 0 (id=657): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) flock$auto(r0, 0x5) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) flock$auto(r1, 0x2) close_range$auto(0x2, 0x8000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nullb0/queue/fua\x00', 0x0, 0x0) preadv$auto(0x3, &(0x7f00000004c0)={0x0, 0x8000001}, 0x3, 0x10000, 0x10) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) socket(0x2, 0x5, 0x0) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) socket(0x2, 0x801, 0x100) socket(0x25, 0x1, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x4000, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pidfd_open$auto(0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x277) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x4, 0xffffffffffffff3f, 0x100, 0x8000001f, 0x29, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8422) 4.990323252s ago: executing program 5 (id=658): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/nfc/nfc1/rfkill1/soft\x00', 0xa3182, 0x0) sendfile$auto(r0, r0, 0x0, 0xffffffff) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x3c, r3, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_ACTIONS={0x20, 0x3, 0x0, 0x1, [@nested={0x1c, 0x1, 0x0, 0x1, [@nested={0x18, 0x106, 0x0, 0x1, [@nested={0x11, 0x74, 0x0, 0x1, [@nested={0x4, 0x4d}, @typed={0x4, 0x3}, @generic="2a9d272f66"]}]}]}]}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) 4.988145635s ago: executing program 0 (id=659): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x6, 0x0) sendto$auto(r0, 0x0, 0xb, 0xc, &(0x7f0000000000), 0x1c) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x8) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) socket(0x2, 0x1, 0x0) getsockopt$auto(0x4, 0x200000000, 0x15, 0xfffffffffffffffc, 0x0) syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) madvise$auto(0x0, 0x200007, 0x8) 4.783473527s ago: executing program 5 (id=660): sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0xc040810) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0xc0000083, 0x400, 0x5}]}) 4.574495344s ago: executing program 1 (id=661): bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9) unshare$auto(0x40000080) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) r2 = socket(0x12, 0x4, 0x440a) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000040)) sendfile$auto(0x6, 0x3, 0x0, 0xfdef) mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, r1, 0x5d63) io_setup$auto(0x80002, 0x0) r4 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0) io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(0xffffffffffffffff, 0x1f, &(0x7f00000030c0), 0x7) ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r4, 0x40084149, &(0x7f0000001080)=0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) socket(0x11, 0x80003, 0x300) setresgid$auto(0x0, 0x0, 0x8) sendmsg$auto_NFC_CMD_STOP_POLL(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20008050}, 0x4048041) socket(0x10, 0x2, 0xc) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$auto(r0, 0x4b46, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) 4.464906926s ago: executing program 4 (id=662): mmap$auto(0x0, 0x8, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r0 = semctl$auto(0x7, 0x3, 0x0, 0x800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x1d, 0x80003, 0x304) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) pwrite64$auto(r1, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x00\x00', 0x7, 0x3) listen$auto(0x3, 0x83) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x7, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) close_range$auto(r1, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sched_getattr$auto(0x0, &(0x7f0000000000)={0x5, 0x80000001, 0x2, 0xc19, 0x1, 0x0, 0xfffffffffffffff8, 0x4, 0xfff, 0x1}, 0xfff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x1) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) r2 = socket(0x11, 0x800, 0x300) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0xffffffffffffffff, 0xfffffffffffffffe, 0x3ff, 0xffffffffffffffff, 0x8001) mmap$auto(0x0, 0x801004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) getpgid(r0) socket(0xa, 0x801, 0x106) socket(0x11, 0x3, 0x9) eventfd$auto(0x8c) madvise$auto(0x5, 0x3ff, 0x5) 4.46320453s ago: executing program 5 (id=663): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x10000002020009, 0x3, 0xeb1, r0, 0x6) capset$auto(0x0, &(0x7f0000000080)={0x5, 0xffff3155, 0x3}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0) ioctl$auto_BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000000c0)="503d4b8cea13df008dd500") ioctl$auto_TUNSETDEBUG(0xffffffffffffffff, 0x400454c9, &(0x7f0000000180)=0x3) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x280303, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x1}, 0x8) connect$auto(0x4, 0x0, 0x10) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x602, 0x1) r3 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r3, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45) fanotify_mark$auto(r2, 0x9, 0xa, r3, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, 0x0, &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) mount$auto(0x0, 0x0, 0x0, 0x339, 0x0) socket(0x6, 0x1, 0x106) pipe$auto(0x0) flock$auto(0xffffffffffffffff, 0x9) 4.120154542s ago: executing program 4 (id=664): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0) mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0) clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8}) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0x22, 0x1, 0x100) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080), 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff) sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r3, 0x0, 0x801) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCATT(r4, 0x40186f40, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b41, 0x7) 3.03227825s ago: executing program 5 (id=665): mmap$auto(0x0, 0x4020009, 0xb, 0x3ff, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x1f, 0x6, 0x30000084) io_uring_setup$auto(0x3ff, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) socket(0x10, 0x4, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0d, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) socket(0x22, 0x2, 0x4) setsockopt$auto(0x3, 0x1000000110, 0x2, 0x0, 0xdf) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="204000001ed057158aff7f3d302d3eaa56e04270a2f3c85bcb2b7092f38fd90ac4bba74d8cbf55ce8edd7805a64d68322a881f39550b4b7a1ccc2b3591b246f10398ed14325df277443b885f6841de7dd5686a6dcd86b4a9272d361c532169c6e0b4137b1ccc58bedf9d236184fc92777bdd7f50d8ea581c3c9e70b72f78c44251d30bde03c6fe9e3f25238167bc457d41fef6be8379ffb6f254c440953efaa9e7dcdb9930653d4d352bd766cd1e5a9b3c9304a259fb85e2bfd4699ff742e73aabec022f93f7f10f2b5f48773e8b764f528281c70af96887198b7f5d6766cdd225ba85470bdc78dd441b1b8486d9036151e699fa52", @ANYRESHEX=r2, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) 2.620977343s ago: executing program 4 (id=666): sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0xc040810) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x20f, 0x400, 0x5}]}) 2.308326599s ago: executing program 4 (id=667): r0 = gettid() r1 = open(&(0x7f00000004c0)='./cgroup\x00', 0x181080, 0x118) open_by_handle_at$auto(r1, &(0x7f0000000140)={0x8, 0x1, "0400000000000000"}, 0x42) (async) open_by_handle_at$auto(r1, &(0x7f0000000140)={0x8, 0x1, "0400000000000000"}, 0x42) splice$auto(0x4, 0x0, 0x2, 0x0, 0x14000000000, 0xf) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xd) (async) setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xd) socket(0xa, 0x1, 0x84) (async) r2 = socket(0xa, 0x1, 0x84) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) r3 = ioctl$auto_TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000000)=0x6) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(r4, 0x8004510b, 0x3) ioctl$auto_BTRFS_IOC_QUOTA_RESCAN(r3, 0x4040942c, &(0x7f0000000040)={0x7, 0x6, [0x200, 0xffffffff, 0x9, 0x7ff, 0x1, 0x5]}) kill$auto(r0, 0x11) socket$nl_generic(0x10, 0x3, 0x10) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000080), r5) r7 = gettid() sendmsg$auto_TASKSTATS_CMD_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010a2bbd7000fbdbdf250100000008000200", @ANYRES32=r7], 0x1c}, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20048090) ptrace$auto_PTRACE_SET_SYSCALL_USER_DISPATCH_CONFIG(0x4210, r7, 0x5, 0x8) (async) ptrace$auto_PTRACE_SET_SYSCALL_USER_DISPATCH_CONFIG(0x4210, r7, 0x5, 0x8) prctl$auto(0x16, 0x1, 0x6, 0xfffffffffffffffe, 0x4) 2.216280585s ago: executing program 1 (id=668): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = socket(0x10, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r3 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(r2, 0xc02054a5, &(0x7f00000000c0)={0x62aca30a, r0, 0x6, "1686146a7afb24e03bf812147aec546c"}) read$auto_objects_fops_(r4, &(0x7f00000001c0)=""/124, 0x7c) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) lseek$auto(0x3, 0x8, 0x1) ioctl$auto(0x3, 0x400454ca, 0x38) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948d, 0x3, 0x15f4da8a, 0x3, 0x3, 0x62, 0x7, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r5 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) read$auto(r5, 0x0, 0x10) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8000000000000000, 0x8000) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x29, 0xa, 0x4f1) 1.037857332s ago: executing program 5 (id=669): r0 = prctl$auto_PR_SYS_DISPATCH_OFF(0x1, 0x0, 0x0, 0x9, 0x9) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x6}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x9}, @NETDEV_A_QUEUE_IFINDEX={0x8}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000080}, 0x40) capget$auto(&(0x7f0000000180)={0xfaae1d11, 0x0}, &(0x7f00000001c0)={0x8, 0x4, 0x9}) timer_create$auto_CLOCK_MONOTONIC(0x1, &(0x7f0000000200)={@sival_ptr=&(0x7f0000000100)="8f150256cac662ad3ba6130c2b02bf0ab9be63e2c531a3f819fb914d0e9d7d71e27764f3450128ae99cae5117ccc2700296c3edc5ca407a7468e091c1f4345ea75df44a3d9551f25f41ce2c1b5595d272df6501bd259b0bdcb25dfdf0492230da99e111e0a75362d98f77cf9a70f823146c5", @raw=0x3, 0x6, @_tid=r1}, &(0x7f0000000240)=0x40) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280)="d7a13479f0e53da8c6c362b0a95a233ad9e266882913d5439ac0891271d50017d9e7a3feb38ce53e0e44a8c92559aeb74c858f12c03833b6c9efa17b497b4f1879caed93d40e4c45de2369409a6cafa5ea58012ca349e9a0bb9018aff326f761fee15994325c50f43ee34edd709eaae21e7b21fded197621829be3a1252a970099dfe8018139cd0e02272c7d8e21c81f1373943a26a78116d38b105bd97d91e0301c005cd667167c3324c6fc1ed2b9280a65859905e3538a7fc857207fc1928a03", 0x8) ioctl$auto_BTRFS_IOC_DEVICES_READY(r0, 0x90009427, &(0x7f0000000380)={@inferred=r0, "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"}) r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f00000013c0), r0) sendmsg$auto_OVS_METER_CMD_DEL(r0, &(0x7f0000001540)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x200002}, 0xc, &(0x7f0000001500)={&(0x7f0000001400)={0xf0, r2, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [@OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x7f}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x1ff}, @OVS_METER_ATTR_BANDS={0xa8, 0x4, 0x0, 0x1, [@typed={0xa3, 0x10, 0x0, 0x0, @binary="539c05112d3271f5828ff8a09251f2537862e47ea25a8684e592d1c9b17f70f6069dd1f2eed457c5e9e15771620255fe6c7f1e6d400dde44c08014eb6c40c73c39cc5bc16aac8640d45cb69c677a579eb35be3db52cfae95a73ee636dac67b527fb81e397c18cea74f04d396bdacb80d89ded0839528a7a73d903ef51296a0ac041b7aea6a6e460b52e2c4b60fe961cdba14fd20802a7e63be2bddcd3c60b3"}]}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x6, 0x91}}, @OVS_METER_ATTR_KBPS={0x4}]}, 0xf0}, 0x1, 0x0, 0x0, 0x90}, 0x404c090) r3 = syz_open_procfs$namespace(r1, &(0x7f0000001580)='ns/pid\x00') fallocate$auto(r3, 0x2, 0x5, 0x7) readv$auto(r3, &(0x7f0000001640)={&(0x7f00000015c0)="985ef04a91a75daac85b74fe351b3e51def84cfe1a47ac4b3eeb34d4d7c6cdaf62bae22f7277a9efdd581b37fff5a21c3ff2c5ba0c1caae72836423fbf46d8c394f514a51adf995559427c1bc0ae078f668f2c429a4d17e330defccc7854ce1fe372cd84ded64340f240", 0xc11}, 0x401) openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000001680), 0x0, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000016c0)='/proc/irq/9/node\x00', 0x101200, 0x0) clone3$auto(&(0x7f0000001700)={0x4, 0x81, 0x7b8, 0x5, 0x1, 0x4, 0x7, 0x82d, 0x5c, 0xd5e, 0x7}, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001780)='/proc/thread-self/net/bonding/bond0\x00', 0x340, 0x0) timer_create$auto(0x2, &(0x7f00000017c0)={@sival_int=0x1f17, @inferred=r4, 0x4}, &(0x7f0000001800)=0x8000) ioctl$auto_BINDER_THREAD_EXIT(r5, 0x40046208, &(0x7f0000001840)="a9dba145156ee172bc19f96712980771ca7acbe2a076e2d84d524e75cafd3389a47b1245e4bc928fcbcb394e1cdcaac63bdf5198cb160c58f923bc3a20d93ed44ee5722d77866c2dfe3488226fa819c0533edb57241e4ff1ecf11fe42185b3c054fadedd8162ae31854b12d406f3dbb95041b182c69330ff4bad58a4f1c3df0f19a692b520aa1d3daa71dc3469c52e05910bd71b35a52acfe94f8884867fe69e3657b73f89703a51ea078780bd979485bf") openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001900)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x109000, 0x0) ioctl$auto_CDROM_SEND_PACKET(r0, 0x5393, &(0x7f0000001940)="fb2acb2eb2ce4c1061ef684dee8b019180a9731262f52347d66de456ce34fb283fcd050e2627a3099149af94cdd439ff379a3c8cbc138e8aefec654903c7a8e6e77500cacf6334bd08330f1d5a47557143bb0ad216fc3562f52bfd3bddbdb174") r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001a00), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r7, &(0x7f0000001b00)={&(0x7f00000019c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001ac0)={&(0x7f0000001a40)={0x4c, r8, 0x10, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x4}, @NL80211_ATTR_VENDOR_DATA={0x20, 0xc5, "7428683ea1f5fafd3d361a7897197517bba8d51a2b47adfd3440fbd0"}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x3}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x1, 0xfc}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000001b80)={'netpci0\x00', 0x0}) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r6, &(0x7f0000001c80)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001bc0)={0x64, 0x0, 0x800, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x1}, @NL80211_ATTR_MBSSID_CONFIG={0x40, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x8}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5}, @NL80211_MBSSID_CONFIG_ATTR_TX_IFINDEX={0x8, 0x4, r9}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x7}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x40}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_MAX_INTERFACES={0x5, 0x1, 0x8}, @NL80211_MBSSID_CONFIG_ATTR_MAX_EMA_PROFILE_PERIODICITY={0x5, 0x2, 0x7}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4040}, 0x800) ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000001cc0)={0x4, 0x7fff, [0x7]}) lsm_list_modules$auto(&(0x7f0000001d00)=0x9, &(0x7f0000001d40)=0x4, 0x2) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001d80), r0) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(r0, &(0x7f0000001ec0)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e00)={0x5c, r8, 0x300, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x2}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0x36, 0xe8, "96a0cc7ea7b6d1cac55fa1654babbdb9650b19d1640be42d52e4923db063d0fcd52a94cf309288e90257d151fbbee19fbe7a"}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20004000}, 0x800) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000001f00), 0xa00, 0x0) 929.107085ms ago: executing program 4 (id=670): openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mountinfo\x00', 0xe0000, 0x0) syz_clone(0x80000000, &(0x7f0000000000)="085a1056b6aa2f10d8ddee0633aea682a5ff", 0x12, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x10, 0x2, 0xa) setsockopt$auto(r0, 0x104000000000010e, 0x1, 0x0, 0x16) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) ioperm$auto(0x7, 0x71, 0x863) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x1c, r3, 0x301, 0x70b52c, 0x25dfdbfb, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x17}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r2) r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_MON_PEER_GET(r6, &(0x7f0000006140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r5, 0x711, 0x70b52c, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@typed={0x7, 0x2, 0x0, 0x0, @str='[@\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4405}, 0x4c848) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd7000fbdbdf250600000008000100", @ANYRES32=0x0, @ANYBLOB="2e453b2b86eb6609ac6b21859c95ef1c4960514a70c8613b16ee0a1d9d07d2fe7286fdd02c7145b82ccedbe325c98b019cf0fe4866fabde884a9e94061d34e65ee55d80c6cb3dc6493676626e1014705804fa60887b6f97ef95b7f74d7f7fb5cd2"], 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x400c8d4) iopl$auto(0x3) ioperm$auto(0x5, 0x3432, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/msr/events/tsc\x00', 0x305501, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000140)=""/213, 0xd5) 924.415094ms ago: executing program 5 (id=671): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) socketcall$auto(0x8000, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/driver/serial\x00', 0x43102, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = syz_clone(0x20a08200, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x600002, 0x0) ptrace$auto(0xe, r1, 0x9, 0x8000040006) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/rose14/statistics/rx_length_errors\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001100)=""/4105, 0x1009) ptrace$auto(0xf, r1, 0xfffffffffffffffe, 0x8000000000000000) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/rose8/address\x00', 0x752502, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0xc0c00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000002640)='/dev/mtd0\x00', 0x8000, 0x0) ioctl$auto_OTPSELECT(r4, 0x80044d0d, &(0x7f00000000c0)=0x10009) socket(0x2, 0x1, 0x106) socket(0x1d, 0x1, 0xfffffffd) 816.110316ms ago: executing program 1 (id=672): socket(0x11, 0x3, 0x9) socket(0x18, 0x800, 0x0) openat$auto_null_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x246040, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptye9\x00', 0x101482, 0x0) socket(0xf, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) settimeofday$auto(&(0x7f0000000180)={0x100000001, 0x1}, 0x0) r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) writev$auto(r1, &(0x7f0000000140)={&(0x7f0000000040), 0x5}, 0x5) write$auto(0xffffffffffffffff, 0x0, 0x7d) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x8000, 0x0) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0) r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r4, 0x40095505, 0x0) sendfile$auto(r3, r2, 0x0, 0x10000) epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) ioctl$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x2, &(0x7f0000000280)) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf250300000052c4030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001"], 0x58}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_VHOST_GET_VRING_BASE2(0xffffffffffffffff, 0xc008af12, &(0x7f0000000280)={0x80000001}) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='%'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, r0, 0x100) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) 213.07277ms ago: executing program 1 (id=673): mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x20000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/tracing/uprobe_events\x00', 0x2, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x2584, 0x0) ioctl$auto(0x3, 0x40045542, 0xb551) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x400000, 0x0) close_range$auto(0x2, 0x8000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7) kexec_load$auto(0x5, 0x6, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4) socket(0x11, 0x80003, 0x300) 11.572761ms ago: executing program 0 (id=674): fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) (async) rt_sigqueueinfo$auto(0x1, 0x7, &(0x7f0000000040)={@siginfo_0_0={0x0, 0x5, 0xfffffffb, @_sigpoll={0x52, 0x7}}}) (async) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) (async) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) (async) close_range$auto(0x2, 0x8, 0x0) (async) r0 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000240)={@_si_pad}, 0x80000001, 0x0) (async, rerun: 32) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 32) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000) (async) io_uring_setup$auto(0x7, 0x0) (async) prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0) socket(0xa, 0x2, 0x3a) (async) close_range$auto(0x2, 0x8, 0x0) (async) r1 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/cmdline\x00', 0x60502, 0x0) read$auto_proc_pid_cmdline_ops_base(r1, &(0x7f0000000040)=""/159, 0x9f) capset$auto(&(0x7f00000001c0)={0x9, r0}, &(0x7f0000000380)={0x7, 0x0, 0x7}) (async, rerun: 32) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 32) read$auto(0xffffffffffffffff, 0x0, 0x20) (async, rerun: 64) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) (rerun: 64) ioctl$auto(r2, 0x40081271, 0xffffffffffffffff) (async) socket(0xa, 0x801, 0x84) 0s ago: executing program 4 (id=675): shmctl$auto_IPC_SET(0x22, 0x1, &(0x7f0000000100)={{0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x80, 0x8, 0xbdc}, 0x8, 0x10000, 0x4, 0x0, @raw=0x7ff, @inferred=0x0, 0x7, 0x0, &(0x7f0000000000)="8645", &(0x7f0000000040)="151532e7b7ccc5df6afcbb3bfa78484fba460d88d9529e4e0e2946f8ed3bb3801f2af9cb5fc71db6756034906a1035a9056c5bdc1740388a1648811249cb8712fd3aa5661f1cb716fe928fdfef22254f8706bcf4afa983ef860559e8f6e240ddd7dd05e438327228618231146d639b9a124a0340d3dfb27b7b876fa0ead39128c34b4dd74c1340e06b88e0880686d710c750c1b9bcc41ba3ef5af5664eebcc745bba5b1ebd48c846d6b96d7541bec74c541b285eb1d9425bfe58eb"}) msgctl$auto_IPC_INFO(0x1, 0x3, &(0x7f0000000200)={{0x1f230761, r0, r1, 0x5, 0x8, 0xf, 0xfff2}, &(0x7f0000000180)=0x9, &(0x7f00000001c0)=0x2, 0x69, 0x5, 0xfffffffffffffffc, 0x2000000000008, 0x8001, 0xe, 0x1, 0x0, @inferred=r2, @inferred=r2}) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r3, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x6, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x8d, 0x20009, 0x4000000000df, 0x11, 0x401, 0x7ff) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) mmap$auto(0x7fff, 0x400008, 0xda, 0x9b72, 0x2, 0x480000000008001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/mmu_pde_zapped\x00', 0x2100, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) write$auto(0x3, 0x0, 0xfffffdef) close_range$auto(0x2, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) kernel console output (not intermixed with test programs): Interface activated: batadv_slave_0 [ 109.105495][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.121524][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.150667][ T5850] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.159741][ T5850] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.172135][ T5850] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.181800][ T5851] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 109.182788][ T5850] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.212626][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.249193][ T5857] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.266521][ T5857] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.287706][ T5857] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.317232][ T5857] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.448209][ T5856] Bluetooth: hci1: command tx timeout [ 109.454340][ T5855] Bluetooth: hci0: command tx timeout [ 109.483802][ T1335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.522314][ T1335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.530491][ T5856] Bluetooth: hci2: command tx timeout [ 109.536726][ T5855] Bluetooth: hci3: command tx timeout [ 109.559931][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.581652][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.623646][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.649061][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.885444][ T1335] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.943648][ T1335] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.092407][ T1335] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.120061][ T1335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.455037][ T1162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.497489][ T1162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.640792][ T5946] sg_write: data in/out 476/16086 bytes for SCSI command 0x0-- guessing data in; [ 110.640792][ T5946] program syz.1.2 not setting count and/or reply_len properly [ 111.175265][ T5960] ubi0: attaching mtd0 [ 111.196466][ T5960] ubi0: scanning is finished [ 111.222071][ T5960] ubi0: empty MTD device detected [ 111.427528][ T5964] FAULT_INJECTION: forcing a failure. [ 111.427528][ T5964] name failslab, interval 1, probability 0, space 0, times 1 [ 111.527699][ T5855] Bluetooth: hci0: command tx timeout [ 111.533327][ T5856] Bluetooth: hci1: command tx timeout [ 111.678909][ T5856] Bluetooth: hci3: command tx timeout [ 111.684415][ T5856] Bluetooth: hci2: command tx timeout [ 111.700393][ T5964] CPU: 1 UID: 0 PID: 5964 Comm: syz.2.3 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 111.700437][ T5964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 111.700461][ T5964] Call Trace: [ 111.700473][ T5964] [ 111.700489][ T5964] dump_stack_lvl+0x16c/0x1f0 [ 111.700550][ T5964] should_fail_ex+0x512/0x640 [ 111.700598][ T5964] ? __kmalloc_noprof+0xbf/0x510 [ 111.700657][ T5964] ? constrain_params_by_rules+0x175/0xca0 [ 111.700695][ T5964] should_failslab+0xc2/0x120 [ 111.700728][ T5964] __kmalloc_noprof+0xd2/0x510 [ 111.700775][ T5964] ? kasan_quarantine_put+0x10a/0x240 [ 111.700823][ T5964] ? lockdep_hardirqs_on+0x7c/0x110 [ 111.700878][ T5964] constrain_params_by_rules+0x175/0xca0 [ 111.700913][ T5964] ? constrain_params_by_rules+0xa09/0xca0 [ 111.700957][ T5964] ? constrain_params_by_rules+0xa0e/0xca0 [ 111.700998][ T5964] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 111.701045][ T5964] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 111.701079][ T5964] ? snd_pcm_hw_param_near.constprop.0+0x72f/0x8e0 [ 111.701114][ T5964] ? snd_pcm_oss_change_params_locked+0x9cd/0x3a30 [ 111.701161][ T5964] ? snd_pcm_oss_change_params_locked+0x1398/0x3a30 [ 111.701196][ T5964] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 111.701242][ T5964] ? snd_interval_refine+0x2fa/0x580 [ 111.701292][ T5964] snd_pcm_hw_refine+0x7de/0xad0 [ 111.701336][ T5964] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 111.701381][ T5964] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 111.701418][ T5964] ? irqentry_exit+0x3b/0x90 [ 111.701478][ T5964] snd_pcm_hw_param_first+0x334/0x6f0 [ 111.701522][ T5964] snd_pcm_hw_param_near.constprop.0+0x702/0x8e0 [ 111.701565][ T5964] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 111.701603][ T5964] ? __asan_memset+0x23/0x50 [ 111.701643][ T5964] ? calc_src_frames.isra.0+0x187/0x1d0 [ 111.701679][ T5964] ? calc_dst_frames.constprop.0.isra.0+0x103/0x130 [ 111.701728][ T5964] snd_pcm_oss_change_params_locked+0x1398/0x3a30 [ 111.701787][ T5964] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 111.701825][ T5964] ? futex_unqueue+0x133/0x2c0 [ 111.701894][ T5964] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 111.701929][ T5964] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 111.701968][ T5964] snd_pcm_oss_write+0x4c3/0xa10 [ 111.702007][ T5964] ? bpf_lsm_file_permission+0x9/0x10 [ 111.702040][ T5964] ? security_file_permission+0x71/0x210 [ 111.702092][ T5964] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 111.702124][ T5964] vfs_writev+0x5df/0xde0 [ 111.702179][ T5964] ? __pfx_vfs_writev+0x10/0x10 [ 111.702262][ T5964] ? __fget_files+0x20e/0x3c0 [ 111.702318][ T5964] ? do_writev+0x132/0x340 [ 111.702359][ T5964] do_writev+0x132/0x340 [ 111.702403][ T5964] ? __pfx_do_writev+0x10/0x10 [ 111.702460][ T5964] do_syscall_64+0xcd/0x490 [ 111.702513][ T5964] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 111.702547][ T5964] RIP: 0033:0x7f3693f8e929 [ 111.702573][ T5964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 111.702605][ T5964] RSP: 002b:00007f3691df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 111.702635][ T5964] RAX: ffffffffffffffda RBX: 00007f36941b6160 RCX: 00007f3693f8e929 [ 111.702657][ T5964] RDX: 0000000000000005 RSI: 0000200000000100 RDI: 0000000000000003 [ 111.702676][ T5964] RBP: 00007f3694010b39 R08: 0000000000000000 R09: 0000000000000000 [ 111.702694][ T5964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 111.702712][ T5964] R13: 0000000000000000 R14: 00007f36941b6160 R15: 00007fff00bd96f8 [ 111.702752][ T5964] [ 112.056791][ C1] vkms_vblank_simulate: vblank timer overrun [ 112.198268][ T0] NOHZ tick-stop error: local softirq work is pending, handler #340!!! [ 112.207756][ T5960] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 112.237514][ T5960] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 112.275162][ T5960] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 112.282778][ T5960] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 112.290594][ T5960] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 112.297501][ T5960] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 112.307672][ T5960] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4089201533 [ 112.317759][ T5960] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 112.330664][ T5963] ubi0: detaching mtd0 [ 112.553912][ T5963] ubi0: mtd0 is detached [ 112.628089][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.821230][ T5958] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. syzkaller syzkaller login: [ 113.687697][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 113.830280][ T5985] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 113.921915][ T5985] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 113.938291][ T0] NOHZ tick-stop error: local softirq work is pending, handler #308!!! [ 113.979151][ T5985] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 113.990249][ T5985] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 114.007849][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 114.096270][ T5985] page dumped because: unmovable page [ 114.107399][ T5985] page_owner tracks the page as allocated [ 114.143452][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 114.167872][ T5985] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5512, tgid 5512 (dhcpcd), ts 102387009605, free_ts 88307640596 [ 114.251575][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 114.337661][ T5985] post_alloc_hook+0x1c0/0x230 [ 114.342577][ T5985] get_page_from_freelist+0x1321/0x3890 [ 114.349819][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 114.377605][ T5993] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 114.398067][ T5985] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 114.406500][ T5985] alloc_pages_mpol+0x1fb/0x550 [ 114.528241][ T5985] alloc_pages_noprof+0x131/0x390 [ 114.533364][ T5985] __vmalloc_node_range_noprof+0x72f/0x14b0 [ 114.617373][ T5985] __vmalloc_node_noprof+0xad/0xf0 [ 114.653390][ T5985] copy_process+0x2c70/0x7650 [ 114.680498][ T5985] kernel_clone+0xfc/0x960 [ 114.697446][ T5985] __do_sys_clone+0xce/0x120 [ 114.712448][ T5985] do_syscall_64+0xcd/0x490 [ 114.717052][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.746419][ T5985] page last free pid 15 tgid 15 stack trace: [ 114.760160][ T5985] __free_frozen_pages+0x7fe/0x1180 [ 114.776690][ T5985] tlb_remove_table_rcu+0x116/0x1a0 [ 114.794855][ T5985] rcu_core+0x799/0x14e0 [ 114.817777][ T5985] handle_softirqs+0x216/0x8e0 [ 114.862931][ T5985] run_ksoftirqd+0x3a/0x60 [ 114.893275][ T5985] smpboot_thread_fn+0x3f4/0xae0 [ 114.931540][ T5985] kthread+0x3c5/0x780 [ 114.943270][ T5985] ret_from_fork+0x5d4/0x6f0 [ 114.953416][ T5985] ret_from_fork_asm+0x1a/0x30 [ 114.978659][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 114.997901][ T5997] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 115.068415][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 115.613418][ T5995] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 116.274026][ T6016] process 'syz.2.14' launched '/dev/fd/9' with NULL argv: empty string added [ 116.547589][ T6006] Zero length message leads to an empty skb [ 116.815843][ T6016] FAULT_INJECTION: forcing a failure. [ 116.815843][ T6016] name failslab, interval 1, probability 0, space 0, times 0 [ 116.867583][ T6016] CPU: 0 UID: 0 PID: 6016 Comm: syz.2.14 Not tainted 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 116.867628][ T6016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.867646][ T6016] Call Trace: [ 116.867658][ T6016] [ 116.867670][ T6016] dump_stack_lvl+0x16c/0x1f0 [ 116.867724][ T6016] should_fail_ex+0x512/0x640 [ 116.867773][ T6016] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 116.867830][ T6016] should_failslab+0xc2/0x120 [ 116.867858][ T6016] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 116.867906][ T6016] ? ksys_unshare+0x45b/0xa40 [ 116.867952][ T6016] ? sock_alloc_inode+0x25/0x1c0 [ 116.868003][ T6016] ? __pfx_sock_alloc_inode+0x10/0x10 [ 116.868036][ T6016] sock_alloc_inode+0x25/0x1c0 [ 116.868069][ T6016] alloc_inode+0x61/0x240 [ 116.868106][ T6016] sock_alloc+0x40/0x280 [ 116.868137][ T6016] sock_create_lite+0x82/0x120 [ 116.868173][ T6016] __netlink_kernel_create+0xbd/0x750 [ 116.868208][ T6016] ? find_held_lock+0x2b/0x80 [ 116.868243][ T6016] ? __pfx___netlink_kernel_create+0x10/0x10 [ 116.868290][ T6016] nfnetlink_net_init+0xda/0x160 [ 116.868333][ T6016] ? __pfx_nfnetlink_net_init+0x10/0x10 [ 116.868377][ T6016] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 116.868414][ T6016] ? __pfx_nfnetlink_bind+0x10/0x10 [ 116.868452][ T6016] ? __pfx_nfnetlink_unbind+0x10/0x10 [ 116.868505][ T6016] ? __pfx_nfnetlink_net_init+0x10/0x10 [ 116.868544][ T6016] ops_init+0x1df/0x5f0 [ 116.868604][ T6016] setup_net+0x1ff/0x510 [ 116.868655][ T6016] ? lockdep_init_map_type+0x5c/0x280 [ 116.868704][ T6016] ? __pfx_setup_net+0x10/0x10 [ 116.868760][ T6016] ? debug_mutex_init+0x37/0x70 [ 116.868799][ T6016] copy_net_ns+0x2a6/0x5f0 [ 116.868836][ T6016] create_new_namespaces+0x3ea/0xa90 [ 116.868884][ T6016] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 116.868927][ T6016] ksys_unshare+0x45b/0xa40 [ 116.868971][ T6016] ? __pfx_ksys_unshare+0x10/0x10 [ 116.869025][ T6016] ? xfd_validate_state+0x61/0x180 [ 116.869080][ T6016] __x64_sys_unshare+0x31/0x40 [ 116.869122][ T6016] do_syscall_64+0xcd/0x490 [ 116.869172][ T6016] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.869204][ T6016] RIP: 0033:0x7f3693f8e929 [ 116.869229][ T6016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.869259][ T6016] RSP: 002b:00007f3694d0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 116.869288][ T6016] RAX: ffffffffffffffda RBX: 00007f36941b6080 RCX: 00007f3693f8e929 [ 116.869309][ T6016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 116.869328][ T6016] RBP: 00007f3694010b39 R08: 0000000000000000 R09: 0000000000000000 [ 116.869347][ T6016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.869365][ T6016] R13: 0000000000000000 R14: 00007f36941b6080 R15: 00007fff00bd96f8 [ 116.869408][ T6016] [ 119.983993][ T6047] netlink: 28 bytes leftover after parsing attributes in process `syz.1.19'. [ 120.057890][ T6048] netlink: 28 bytes leftover after parsing attributes in process `syz.1.19'. [ 120.266173][ T5856] Bluetooth: hci0: unexpected event 0x23 length: 127 > 13 [ 120.442226][ T6045] could not allocate digest TFM handle [ 121.680120][ T6056] syz.3.21 (6056) used greatest stack depth: 19800 bytes left [ 122.444754][ T5856] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 122.444786][ T5856] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260 [ 122.463466][ T5856] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 122.463533][ T5856] Bluetooth: hci1: adv larger than maximum supported [ 122.472502][ T5856] Bluetooth: hci1: Malformed LE Event: 0x0d [ 122.549194][ T9] Process accounting resumed [ 123.193285][ T6094] ubi0: attaching mtd0 [ 123.230294][ T6094] ubi0: scanning is finished [ 123.647586][ T6094] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 123.656092][ T6094] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 123.663695][ T6094] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 123.672158][ T6094] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 123.757620][ T6094] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 123.764487][ T6094] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 123.869361][ T6094] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 4089201533 [ 123.925298][ T6094] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 123.936440][ T6104] ubi0: background thread "ubi_bgt0d" started, PID 6104 [ 124.260114][ T6108] vivid-003: ================= START STATUS ================= [ 124.280578][ T6108] vivid-003: Radio HW Seek Mode: Bounded [ 124.286491][ T6108] vivid-003: Radio Programmable HW Seek: false [ 124.321334][ T6108] vivid-003: RDS Rx I/O Mode: Block I/O [ 124.368144][ T6109] mmap: syz.1.29 (6109) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 124.475213][ T6108] vivid-003: Generate RBDS Instead of RDS: false [ 124.538309][ T6108] vivid-003: RDS Reception: true [ 124.595776][ T6108] vivid-003: RDS Program Type: 0 inactive [ 124.685864][ T6108] vivid-003: RDS PS Name: inactive [ 124.693383][ T6108] vivid-003: RDS Radio Text: inactive [ 124.699433][ T6108] vivid-003: RDS Traffic Announcement: false inactive [ 124.706250][ T6108] vivid-003: RDS Traffic Program: false inactive [ 124.717428][ T6108] vivid-003: RDS Music: false inactive [ 124.723136][ T6108] vivid-003: ================== END STATUS ================== [ 125.938632][ T5856] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 126.156947][ T6127] svc: failed to register nfsdv3 RPC service (errno 111). [ 126.175672][ T6127] svc: failed to register nfsaclv3 RPC service (errno 111). [ 127.094425][ T6153] netlink: 338 bytes leftover after parsing attributes in process `syz.3.38'. [ 127.134521][ T6145] Setting dangerous option i915.mitigations - tainting kernel [ 127.219314][ T6145] Bad "i915.mitigations=!h@Sf", 'h@Sf' is unknown [ 134.889732][ T6248] nbd: socks must be embedded in a SOCK_ITEM attr [ 134.898356][ T6248] block nbd0: shutting down sockets [ 135.917794][ T30] audit: type=1804 audit(1751956513.846:2): pid=6264 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.60" name="/newroot/15/file0" dev="tmpfs" ino=94 res=1 errno=0 [ 135.998354][ T30] audit: type=1800 audit(1751956513.896:3): pid=6264 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.60" name="file0" dev="tmpfs" ino=94 res=0 errno=0 [ 137.677817][ T6296] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 139.788425][ T30] audit: type=1804 audit(1751956517.726:4): pid=6328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.74" name="/newroot/17/file0" dev="tmpfs" ino=110 res=1 errno=0 [ 139.861892][ T30] audit: type=1800 audit(1751956517.726:5): pid=6328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.74" name="file0" dev="tmpfs" ino=110 res=0 errno=0 [ 140.635524][ T6342] hub 1-0:1.0: USB hub found [ 140.668645][ T6342] hub 1-0:1.0: 1 port detected [ 141.138891][ T6352] ======================================================= [ 141.138891][ T6352] WARNING: The mand mount option has been deprecated and [ 141.138891][ T6352] and is ignored by this kernel. Remove the mand [ 141.138891][ T6352] option from the mount to silence this warning. [ 141.138891][ T6352] ======================================================= [ 143.293542][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.302387][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 144.005729][ T6383] random: crng reseeded on system resumption [ 149.641311][ T6471] netlink: 28 bytes leftover after parsing attributes in process `syz.1.96'. [ 149.679680][ T6471] hub 8-0:1.0: USB hub found [ 149.762037][ T6471] hub 8-0:1.0: 1 port detected [ 151.706964][ T6508] netlink: 8 bytes leftover after parsing attributes in process `syz.1.101'. [ 152.136782][ T6513] synth uevent: /bus/usb/drivers/gspca_gl860: unknown uevent action string [ 155.356635][ T6556] netlink: 206 bytes leftover after parsing attributes in process `syz.1.112'. [ 155.941712][ T6564] netlink: 338 bytes leftover after parsing attributes in process `syz.3.115'. [ 157.906736][ T6601] netlink: 338 bytes leftover after parsing attributes in process `syz.2.121'. [ 157.919324][ T6605] netlink: 338 bytes leftover after parsing attributes in process `syz.2.121'. [ 158.673100][ T6616] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 158.721511][ T6616] netlink: 338 bytes leftover after parsing attributes in process `syz.2.126'. [ 158.779581][ T6617] netlink: 338 bytes leftover after parsing attributes in process `syz.2.126'. [ 158.901315][ T6616] netlink: 210 bytes leftover after parsing attributes in process `syz.2.126'. [ 158.917143][ T6616] veth0_macvtap: left promiscuous mode [ 158.937104][ T6622] syz.3.127 uses obsolete (PF_INET,SOCK_PACKET) [ 158.946990][ T6616] netlink: 290 bytes leftover after parsing attributes in process `syz.2.126'. [ 160.887704][ T6651] netlink: 'syz.2.131': attribute type 1 has an invalid length. [ 160.933760][ T6647] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 160.940868][ T6647] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 161.018645][ T6647] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 161.157795][ T6647] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 161.207605][ T6647] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 161.518119][ T6647] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 161.532703][ T6647] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 161.540611][ T6647] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 161.549055][ T6647] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 161.589527][ T6647] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 161.657578][ T6647] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 161.710799][ T6647] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 161.938400][ T6657] random: crng reseeded on system resumption [ 162.887937][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 163.129495][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 163.569003][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.2.139'. [ 163.607678][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 163.613860][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 164.347111][ T6698] netlink: 186 bytes leftover after parsing attributes in process `syz.3.143'. [ 164.612651][ T6705] netlink: 342 bytes leftover after parsing attributes in process `syz.2.145'. [ 164.978531][ T5855] Bluetooth: hci1: command 0x0c1a tx timeout [ 165.232887][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 165.695314][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 165.695375][ T5855] Bluetooth: hci3: command 0x0c1a tx timeout [ 165.967626][ T6721] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 166.369242][ C0] vcan0: j1939_tp_rxtimer: 0xffff888033f47000: rx timeout, send abort [ 166.878653][ C0] vcan0: j1939_tp_rxtimer: 0xffff888033f47000: abort rx timeout. Force session deactivation [ 167.057757][ T5856] Bluetooth: hci1: command 0x0c1a tx timeout [ 167.297458][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 167.773193][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 167.780272][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 168.647254][ T6742] can: request_module (can-proto-4) failed. [ 168.665840][ T6743] netlink: 28 bytes leftover after parsing attributes in process `syz.2.152'. [ 168.708456][ T6743] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 168.803496][ T6743] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 172.278914][ T6827] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 172.752850][ T6844] FAULT_INJECTION: forcing a failure. [ 172.752850][ T6844] name failslab, interval 1, probability 0, space 0, times 0 [ 172.766131][ T6844] CPU: 0 UID: 0 PID: 6844 Comm: syz.0.171 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 172.766182][ T6844] Tainted: [U]=USER [ 172.766193][ T6844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 172.766213][ T6844] Call Trace: [ 172.766223][ T6844] [ 172.766235][ T6844] dump_stack_lvl+0x16c/0x1f0 [ 172.766294][ T6844] should_fail_ex+0x512/0x640 [ 172.766343][ T6844] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 172.766397][ T6844] should_failslab+0xc2/0x120 [ 172.766429][ T6844] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 172.766477][ T6844] ? __asan_memcpy+0x3c/0x60 [ 172.766520][ T6844] ? __kernfs_new_node+0xd2/0x8e0 [ 172.766572][ T6844] __kernfs_new_node+0xd2/0x8e0 [ 172.766625][ T6844] ? __pfx___kernfs_new_node+0x10/0x10 [ 172.766682][ T6844] ? find_held_lock+0x2b/0x80 [ 172.766718][ T6844] ? kernfs_root+0xee/0x2a0 [ 172.766772][ T6844] kernfs_new_node+0x13c/0x1e0 [ 172.766827][ T6844] kernfs_create_link+0xcc/0x240 [ 172.766865][ T6844] sysfs_do_create_link_sd+0x90/0x140 [ 172.766934][ T6844] sysfs_create_link+0x61/0xc0 [ 172.766980][ T6844] device_add+0x62c/0x1a70 [ 172.767028][ T6844] ? __pfx_device_add+0x10/0x10 [ 172.767062][ T6844] ? lockdep_init_map_type+0x5c/0x280 [ 172.767110][ T6844] ? __init_waitqueue_head+0xca/0x150 [ 172.767147][ T6844] rfkill_register+0x1ad/0xb40 [ 172.767183][ T6844] nfc_register_device+0x11f/0x3c0 [ 172.767226][ T6844] nci_register_device+0x7f1/0xb80 [ 172.767263][ T6844] ? __pfx_nci_register_device+0x10/0x10 [ 172.767313][ T6844] ? lockdep_init_map_type+0x5c/0x280 [ 172.767367][ T6844] virtual_ncidev_open+0x141/0x220 [ 172.767410][ T6844] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 172.767450][ T6844] misc_open+0x35d/0x420 [ 172.767491][ T6844] ? __pfx_misc_open+0x10/0x10 [ 172.767532][ T6844] chrdev_open+0x234/0x6a0 [ 172.767583][ T6844] ? __pfx_apparmor_file_open+0x10/0x10 [ 172.767626][ T6844] ? __pfx_chrdev_open+0x10/0x10 [ 172.767680][ T6844] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 172.767732][ T6844] do_dentry_open+0x741/0x1c10 [ 172.767784][ T6844] ? __pfx_chrdev_open+0x10/0x10 [ 172.767845][ T6844] vfs_open+0x82/0x3f0 [ 172.767880][ T6844] path_openat+0x1de4/0x2cb0 [ 172.767924][ T6844] ? __pfx_path_openat+0x10/0x10 [ 172.767960][ T6844] ? __lock_acquire+0xb8a/0x1c90 [ 172.767996][ T6844] do_filp_open+0x20b/0x470 [ 172.768041][ T6844] ? __pfx_do_filp_open+0x10/0x10 [ 172.768098][ T6844] ? alloc_fd+0x471/0x7d0 [ 172.768138][ T6844] do_sys_openat2+0x11b/0x1d0 [ 172.768165][ T6844] ? __pfx_do_sys_openat2+0x10/0x10 [ 172.768203][ T6844] __x64_sys_openat+0x174/0x210 [ 172.768231][ T6844] ? __pfx___x64_sys_openat+0x10/0x10 [ 172.768272][ T6844] do_syscall_64+0xcd/0x490 [ 172.768311][ T6844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.768334][ T6844] RIP: 0033:0x7f885eb8e929 [ 172.768354][ T6844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.768383][ T6844] RSP: 002b:00007f885f93d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 172.768405][ T6844] RAX: ffffffffffffffda RBX: 00007f885edb5fa0 RCX: 00007f885eb8e929 [ 172.768421][ T6844] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 172.768436][ T6844] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 172.768450][ T6844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 172.768464][ T6844] R13: 0000000000000000 R14: 00007f885edb5fa0 R15: 00007ffdb0c87138 [ 172.768494][ T6844] [ 173.708064][ T6855] netlink: 12 bytes leftover after parsing attributes in process `syz.0.174'. [ 175.028975][ T6900] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 177.272476][ T6934] misc userio: Invalid payload size [ 177.283840][ T6933] misc userio: Invalid payload size [ 178.686922][ T6962] FAULT_INJECTION: forcing a failure. [ 178.686922][ T6962] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 178.717458][ T6962] CPU: 0 UID: 0 PID: 6962 Comm: syz.2.193 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 178.717510][ T6962] Tainted: [U]=USER [ 178.717521][ T6962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 178.717540][ T6962] Call Trace: [ 178.717551][ T6962] [ 178.717564][ T6962] dump_stack_lvl+0x16c/0x1f0 [ 178.717619][ T6962] should_fail_ex+0x512/0x640 [ 178.717683][ T6962] should_fail_alloc_page+0xe7/0x130 [ 178.717718][ T6962] prepare_alloc_pages+0x3c2/0x610 [ 178.717766][ T6962] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 178.717828][ T6962] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 178.717885][ T6962] ? kasan_save_stack+0x42/0x60 [ 178.717932][ T6962] ? kasan_save_stack+0x33/0x60 [ 178.717977][ T6962] ? kasan_save_track+0x14/0x30 [ 178.718022][ T6962] ? __kasan_slab_alloc+0x89/0x90 [ 178.718071][ T6962] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 178.718119][ T6962] ? __pmd_alloc+0xbf/0x930 [ 178.718153][ T6962] ? __handle_mm_fault+0xaac/0x5490 [ 178.718194][ T6962] ? handle_mm_fault+0x589/0xd10 [ 178.718234][ T6962] ? do_user_addr_fault+0x7a6/0x1370 [ 178.718278][ T6962] ? exc_page_fault+0x5c/0xb0 [ 178.718320][ T6962] ? asm_exc_page_fault+0x26/0x30 [ 178.718353][ T6962] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 178.718404][ T6962] ? do_syscall_64+0xcd/0x490 [ 178.718490][ T6962] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 178.718545][ T6962] ? policy_nodemask+0xea/0x4e0 [ 178.718581][ T6962] alloc_pages_mpol+0x1fb/0x550 [ 178.718616][ T6962] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 178.718651][ T6962] ? do_raw_spin_lock+0x12c/0x2b0 [ 178.718705][ T6962] ? find_held_lock+0x2b/0x80 [ 178.718744][ T6962] alloc_pages_noprof+0x131/0x390 [ 178.718785][ T6962] pte_alloc_one+0x1c/0x3a0 [ 178.718816][ T6962] __do_fault+0x320/0x490 [ 178.718868][ T6962] ? __pfx_filemap_map_pages+0x10/0x10 [ 178.718920][ T6962] __handle_mm_fault+0x374c/0x5490 [ 178.718977][ T6962] ? __pfx___handle_mm_fault+0x10/0x10 [ 178.719020][ T6962] ? __pfx_mt_find+0x10/0x10 [ 178.719098][ T6962] ? find_vma+0xbf/0x140 [ 178.719131][ T6962] ? __pfx_find_vma+0x10/0x10 [ 178.719169][ T6962] handle_mm_fault+0x589/0xd10 [ 178.719216][ T6962] ? __pkru_allows_pkey+0x41/0xb0 [ 178.719265][ T6962] do_user_addr_fault+0x7a6/0x1370 [ 178.719319][ T6962] ? rcu_is_watching+0x12/0xc0 [ 178.719359][ T6962] exc_page_fault+0x5c/0xb0 [ 178.719407][ T6962] asm_exc_page_fault+0x26/0x30 [ 178.719440][ T6962] RIP: 0010:__put_user_8+0xd/0x20 [ 178.719489][ T6962] Code: 89 01 31 c9 0f 01 ca e9 81 5a 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <48> 89 01 31 c9 0f 01 ca e9 56 5a 03 00 66 0f 1f 44 00 00 90 90 90 [ 178.719520][ T6962] RSP: 0000:ffffc90019177d88 EFLAGS: 00050246 [ 178.719547][ T6962] RAX: 00000000800000cd RBX: 0000000000000000 RCX: 0000000000000000 [ 178.719567][ T6962] RDX: 1ffff1100f76cf3a RSI: ffffffff8255193e RDI: ffff88807bb679d0 [ 178.719589][ T6962] RBP: 000000000000000c R08: 192076e9d3864c5e R09: 0000000000000000 [ 178.719610][ T6962] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888033fdc000 [ 178.719630][ T6962] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 178.719663][ T6962] ? do_sys_name_to_handle+0x49e/0x780 [ 178.719710][ T6962] do_sys_name_to_handle+0x4ef/0x780 [ 178.719757][ T6962] ? __pfx_do_sys_name_to_handle+0x10/0x10 [ 178.719812][ T6962] ? putname+0x154/0x1a0 [ 178.719850][ T6962] __x64_sys_name_to_handle_at+0x2af/0x310 [ 178.719896][ T6962] ? __pfx___x64_sys_name_to_handle_at+0x10/0x10 [ 178.719952][ T6962] do_syscall_64+0xcd/0x490 [ 178.720005][ T6962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.720038][ T6962] RIP: 0033:0x7f3693f8e929 [ 178.720065][ T6962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.720095][ T6962] RSP: 002b:00007f3694d2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012f [ 178.720125][ T6962] RAX: ffffffffffffffda RBX: 00007f36941b5fa0 RCX: 00007f3693f8e929 [ 178.720147][ T6962] RDX: 0000200000000280 RSI: 00002000000001c0 RDI: ffffffffffffffff [ 178.720168][ T6962] RBP: 00007f3694010b39 R08: 0000000000001001 R09: 0000000000000000 [ 178.720189][ T6962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.720208][ T6962] R13: 0000000000000000 R14: 00007f36941b5fa0 R15: 00007fff00bd96f8 [ 178.720252][ T6962] [ 181.044828][ T6992] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 181.070017][ T6992] Unable to find swap-space signature [ 181.467628][ T5855] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 182.214899][ T7009] tc_dump_action: action bad kind [ 182.299385][ T7010] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 182.317955][ T7010] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 182.335455][ T7010] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 182.376538][ T7010] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 183.651866][ T7034] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.327875][ T5855] Bluetooth: hci2: command 0x0c1a tx timeout [ 184.327900][ T5860] Bluetooth: hci1: command 0x0c1a tx timeout [ 184.327964][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 184.407628][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 188.067691][ T7102] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2) [ 189.921075][ T7121] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 190.594812][ T7150] block nbd0: not configured, cannot reconfigure [ 195.568597][ T7212] FAULT_INJECTION: forcing a failure. [ 195.568597][ T7212] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 195.587756][ T7212] CPU: 0 UID: 0 PID: 7212 Comm: syz.3.239 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 195.587807][ T7212] Tainted: [U]=USER [ 195.587817][ T7212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 195.587836][ T7212] Call Trace: [ 195.587846][ T7212] [ 195.587862][ T7212] dump_stack_lvl+0x16c/0x1f0 [ 195.587917][ T7212] should_fail_ex+0x512/0x640 [ 195.587971][ T7212] _copy_from_user+0x2e/0xd0 [ 195.588022][ T7212] get_timespec64+0x8b/0x1b0 [ 195.588070][ T7212] ? __pfx_get_timespec64+0x10/0x10 [ 195.588116][ T7212] ? common_nsleep+0xa1/0xd0 [ 195.588160][ T7212] __x64_sys_clock_nanosleep+0x1ce/0x4a0 [ 195.588196][ T7212] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 195.588242][ T7212] do_syscall_64+0xcd/0x490 [ 195.588294][ T7212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.588335][ T7212] RIP: 0033:0x7f8d6b7c11e5 [ 195.588360][ T7212] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 195.588391][ T7212] RSP: 002b:00007ffe35f57650 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 195.588426][ T7212] RAX: ffffffffffffffda RBX: 00007f8d6b9b5fa0 RCX: 00007f8d6b7c11e5 [ 195.588447][ T7212] RDX: 00007ffe35f57690 RSI: 0000000000000000 RDI: 0000000000000000 [ 195.588466][ T7212] RBP: 00007f8d6b9b7ba0 R08: 0000000000000000 R09: 00007f8d6c63d000 [ 195.588487][ T7212] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000002fe4c [ 195.588506][ T7212] R13: 00007ffe35f577b0 R14: ffffffffffffffff R15: 00007ffe35f577d0 [ 195.588549][ T7212] [ 195.756006][ C0] vkms_vblank_simulate: vblank timer overrun [ 196.382808][ T7216] zswap: compressor not available [ 196.389149][ T5855] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 196.403112][ T5855] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 196.415309][ T5855] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 196.432925][ T5855] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 196.442627][ T5855] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 196.971190][ T7229] FAULT_INJECTION: forcing a failure. [ 196.971190][ T7229] name failslab, interval 1, probability 0, space 0, times 0 [ 196.987465][ T7229] CPU: 1 UID: 0 PID: 7229 Comm: syz.0.242 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 196.987518][ T7229] Tainted: [U]=USER [ 196.987529][ T7229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 196.987549][ T7229] Call Trace: [ 196.987560][ T7229] [ 196.987572][ T7229] dump_stack_lvl+0x16c/0x1f0 [ 196.987629][ T7229] should_fail_ex+0x512/0x640 [ 196.987678][ T7229] ? __kmalloc_noprof+0xbf/0x510 [ 196.987731][ T7229] ? asymmetric_key_generate_id+0x36/0x160 [ 196.987767][ T7229] should_failslab+0xc2/0x120 [ 196.987797][ T7229] __kmalloc_noprof+0xd2/0x510 [ 196.987845][ T7229] ? x509_note_OID+0xc6/0x1b0 [ 196.987895][ T7229] asymmetric_key_generate_id+0x36/0x160 [ 196.987930][ T7229] ? __kasan_kmalloc+0xaa/0xb0 [ 196.987982][ T7229] x509_note_issuer+0x11c/0x210 [ 196.988028][ T7229] asn1_ber_decoder+0xfb7/0x1df0 [ 196.988117][ T7229] ? __pfx_asn1_ber_decoder+0x10/0x10 [ 196.988203][ T7229] x509_cert_parse+0x1c9/0x900 [ 196.988241][ T7229] ? kasan_save_stack+0x42/0x60 [ 196.988287][ T7229] ? kasan_save_stack+0x33/0x60 [ 196.988333][ T7229] ? kasan_save_track+0x14/0x30 [ 196.988386][ T7229] pkcs7_extract_cert+0xa4/0x320 [ 196.988440][ T7229] asn1_ber_decoder+0xc5f/0x1df0 [ 196.988513][ T7229] ? __pfx_asn1_ber_decoder+0x10/0x10 [ 196.988597][ T7229] pkcs7_parse_message+0x288/0x720 [ 196.988652][ T7229] verify_pkcs7_signature+0x30/0xa0 [ 196.988693][ T7229] valid_regdb+0x215/0x590 [ 196.988727][ T7229] ? __pfx___mutex_lock+0x10/0x10 [ 196.988780][ T7229] ? __pfx_valid_regdb+0x10/0x10 [ 196.988823][ T7229] reg_reload_regdb+0x11e/0x460 [ 196.988863][ T7229] ? __pfx_reg_reload_regdb+0x10/0x10 [ 196.988904][ T7229] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 196.988951][ T7229] ? nl80211_pre_doit+0x1b0/0xb10 [ 196.989004][ T7229] genl_family_rcv_msg_doit+0x206/0x2f0 [ 196.989047][ T7229] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 196.989093][ T7229] ? rcu_is_watching+0x12/0xc0 [ 196.989146][ T7229] ? bpf_lsm_capable+0x9/0x10 [ 196.989182][ T7229] ? security_capable+0x7e/0x260 [ 196.989218][ T7229] genl_rcv_msg+0x55c/0x800 [ 196.989260][ T7229] ? __pfx_genl_rcv_msg+0x10/0x10 [ 196.989299][ T7229] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 196.989352][ T7229] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 196.989392][ T7229] ? __pfx_nl80211_post_doit+0x10/0x10 [ 196.989465][ T7229] netlink_rcv_skb+0x155/0x420 [ 196.989501][ T7229] ? __pfx_genl_rcv_msg+0x10/0x10 [ 196.989548][ T7229] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 196.989605][ T7229] ? netlink_deliver_tap+0x1ae/0xd30 [ 196.989674][ T7229] genl_rcv+0x28/0x40 [ 196.989711][ T7229] netlink_unicast+0x53a/0x7f0 [ 196.989756][ T7229] ? __pfx_netlink_unicast+0x10/0x10 [ 196.989806][ T7229] netlink_sendmsg+0x8d1/0xdd0 [ 196.989850][ T7229] ? __pfx_netlink_sendmsg+0x10/0x10 [ 196.989906][ T7229] ____sys_sendmsg+0xa98/0xc70 [ 196.989948][ T7229] ? copy_msghdr_from_user+0x10a/0x160 [ 196.990001][ T7229] ? __pfx_____sys_sendmsg+0x10/0x10 [ 196.990053][ T7229] ? __pfx_futex_wake_mark+0x10/0x10 [ 196.990122][ T7229] ___sys_sendmsg+0x134/0x1d0 [ 196.990179][ T7229] ? __pfx____sys_sendmsg+0x10/0x10 [ 196.990231][ T7229] ? __lock_acquire+0x622/0x1c90 [ 196.990346][ T7229] __sys_sendmsg+0x16d/0x220 [ 196.990402][ T7229] ? __pfx___sys_sendmsg+0x10/0x10 [ 196.990455][ T7229] ? __x64_sys_futex+0x1e0/0x4c0 [ 196.990529][ T7229] do_syscall_64+0xcd/0x490 [ 196.990588][ T7229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.990626][ T7229] RIP: 0033:0x7f885eb8e929 [ 196.990656][ T7229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.990690][ T7229] RSP: 002b:00007f885f93d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 196.990725][ T7229] RAX: ffffffffffffffda RBX: 00007f885edb5fa0 RCX: 00007f885eb8e929 [ 196.990751][ T7229] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006 [ 196.990775][ T7229] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 196.990797][ T7229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.990820][ T7229] R13: 0000000000000000 R14: 00007f885edb5fa0 R15: 00007ffdb0c87138 [ 196.990867][ T7229] [ 197.304123][ T7234] FAULT_INJECTION: forcing a failure. [ 197.304123][ T7234] name failslab, interval 1, probability 0, space 0, times 0 [ 197.304180][ T7234] CPU: 0 UID: 0 PID: 7234 Comm: syz.0.244 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 197.304229][ T7234] Tainted: [U]=USER [ 197.304240][ T7234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 197.304259][ T7234] Call Trace: [ 197.304269][ T7234] [ 197.304281][ T7234] dump_stack_lvl+0x16c/0x1f0 [ 197.304341][ T7234] should_fail_ex+0x512/0x640 [ 197.304389][ T7234] ? __kmalloc_noprof+0xbf/0x510 [ 197.304441][ T7234] ? memcg_list_lru_alloc+0x4e9/0x740 [ 197.304490][ T7234] should_failslab+0xc2/0x120 [ 197.304521][ T7234] __kmalloc_noprof+0xd2/0x510 [ 197.304570][ T7234] ? __lock_acquire+0x622/0x1c90 [ 197.304623][ T7234] memcg_list_lru_alloc+0x4e9/0x740 [ 197.304685][ T7234] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 197.304748][ T7234] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 197.304800][ T7234] __memcg_slab_post_alloc_hook+0x133/0x960 [ 197.304858][ T7234] ? kasan_save_track+0x14/0x30 [ 197.304913][ T7234] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 197.304966][ T7234] ? alloc_inode+0xc3/0x240 [ 197.305005][ T7234] alloc_inode+0xc3/0x240 [ 197.305039][ T7234] path_from_stashed+0x2be/0xb00 [ 197.305089][ T7234] ? do_raw_spin_lock+0x12c/0x2b0 [ 197.305153][ T7234] ? __pfx_path_from_stashed+0x10/0x10 [ 197.305205][ T7234] ? do_raw_spin_unlock+0x172/0x230 [ 197.305267][ T7234] ns_get_path+0x5f/0x80 [ 197.305310][ T7234] proc_ns_get_link+0x121/0x260 [ 197.305354][ T7234] ? __pfx_proc_ns_get_link+0x10/0x10 [ 197.305404][ T7234] ? atime_needs_update+0x8b/0x710 [ 197.305443][ T7234] ? __pfx_proc_ns_get_link+0x10/0x10 [ 197.305488][ T7234] step_into+0x1a29/0x2270 [ 197.305539][ T7234] ? __pfx_step_into+0x10/0x10 [ 197.305581][ T7234] ? find_held_lock+0x2b/0x80 [ 197.305629][ T7234] path_openat+0x6db/0x2cb0 [ 197.305690][ T7234] ? __pfx_path_openat+0x10/0x10 [ 197.305740][ T7234] ? __lock_acquire+0xb8a/0x1c90 [ 197.305790][ T7234] do_filp_open+0x20b/0x470 [ 197.305838][ T7234] ? __pfx_do_filp_open+0x10/0x10 [ 197.305918][ T7234] ? alloc_fd+0x471/0x7d0 [ 197.305975][ T7234] do_sys_openat2+0x11b/0x1d0 [ 197.306013][ T7234] ? __pfx_do_sys_openat2+0x10/0x10 [ 197.306067][ T7234] __x64_sys_openat+0x174/0x210 [ 197.306111][ T7234] ? __pfx___x64_sys_openat+0x10/0x10 [ 197.306168][ T7234] do_syscall_64+0xcd/0x490 [ 197.306221][ T7234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.306255][ T7234] RIP: 0033:0x7f885eb8d290 [ 197.306281][ T7234] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 197.306314][ T7234] RSP: 002b:00007f885f93cf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 197.306345][ T7234] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f885eb8d290 [ 197.306366][ T7234] RDX: 0000000000000002 RSI: 00007f885f93cfa0 RDI: 00000000ffffff9c [ 197.306387][ T7234] RBP: 00007f885f93cfa0 R08: 0000000000000000 R09: 0000000000000000 [ 197.306408][ T7234] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 197.306427][ T7234] R13: 0000000000000000 R14: 00007f885edb5fa0 R15: 00007ffdb0c87138 [ 197.306469][ T7234] [ 198.487538][ T5856] Bluetooth: hci4: command tx timeout [ 198.683264][ T7224] chnl_net:caif_netlink_parms(): no params data found [ 199.615281][ T7224] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.615372][ T7224] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.615618][ T7224] bridge_slave_0: entered allmulticast mode [ 199.623363][ T7224] bridge_slave_0: entered promiscuous mode [ 199.632741][ T7224] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.632908][ T7224] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.633101][ T7224] bridge_slave_1: entered allmulticast mode [ 199.635180][ T7224] bridge_slave_1: entered promiscuous mode [ 199.925642][ T7224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 200.137210][ T7245] tty tty17: ldisc open failed (-12), clearing slot 16 [ 200.159381][ T7224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 200.511921][ T7224] team0: Port device team_slave_0 added [ 200.553877][ T7273] FAULT_INJECTION: forcing a failure. [ 200.553877][ T7273] name fail_futex, interval 1, probability 0, space 0, times 1 [ 200.567410][ T5856] Bluetooth: hci4: command tx timeout [ 200.613095][ T7224] team0: Port device team_slave_1 added [ 200.630953][ T7273] CPU: 0 UID: 0 PID: 7273 Comm: syz.3.250 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 200.631003][ T7273] Tainted: [U]=USER [ 200.631014][ T7273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 200.631032][ T7273] Call Trace: [ 200.631043][ T7273] [ 200.631055][ T7273] dump_stack_lvl+0x16c/0x1f0 [ 200.631109][ T7273] should_fail_ex+0x512/0x640 [ 200.631162][ T7273] get_futex_key+0x293/0x1540 [ 200.631207][ T7273] ? __pfx_get_futex_key+0x10/0x10 [ 200.631246][ T7273] ? __mutex_trylock_common+0xe9/0x250 [ 200.631304][ T7273] futex_wake+0xe7/0x4e0 [ 200.631355][ T7273] ? __pfx_futex_wake+0x10/0x10 [ 200.631399][ T7273] ? __lock_acquire+0xb8a/0x1c90 [ 200.631462][ T7273] do_futex+0x1e3/0x350 [ 200.631504][ T7273] ? __pfx_do_futex+0x10/0x10 [ 200.631541][ T7273] ? __might_fault+0xe3/0x190 [ 200.631600][ T7273] mm_release+0x24e/0x300 [ 200.631647][ T7273] do_exit+0x68b/0x2bd0 [ 200.631702][ T7273] ? __pfx_do_exit+0x10/0x10 [ 200.631747][ T7273] ? do_raw_spin_lock+0x12c/0x2b0 [ 200.631798][ T7273] ? find_held_lock+0x2b/0x80 [ 200.631838][ T7273] do_group_exit+0xd3/0x2a0 [ 200.631887][ T7273] get_signal+0x2673/0x26d0 [ 200.631941][ T7273] ? __pfx_get_signal+0x10/0x10 [ 200.631979][ T7273] ? do_futex+0x122/0x350 [ 200.632019][ T7273] ? __pfx_do_futex+0x10/0x10 [ 200.632063][ T7273] arch_do_signal_or_restart+0x8f/0x790 [ 200.632106][ T7273] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 200.632154][ T7273] ? ksys_write+0x1ac/0x250 [ 200.632200][ T7273] ? __pfx_ksys_write+0x10/0x10 [ 200.632255][ T7273] exit_to_user_mode_loop+0x84/0x110 [ 200.632311][ T7273] do_syscall_64+0x3f6/0x490 [ 200.632363][ T7273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.632396][ T7273] RIP: 0033:0x7f8d6b78e929 [ 200.632421][ T7273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.632451][ T7273] RSP: 002b:00007f8d6c63c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 200.632482][ T7273] RAX: fffffffffffffe00 RBX: 00007f8d6b9b5fa8 RCX: 00007f8d6b78e929 [ 200.632503][ T7273] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8d6b9b5fa8 [ 200.632523][ T7273] RBP: 00007f8d6b9b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 200.632542][ T7273] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8d6b9b5fac [ 200.632562][ T7273] R13: 0000000000000000 R14: 00007ffe35f57470 R15: 00007ffe35f57558 [ 200.632604][ T7273] [ 201.319560][ T7224] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 201.347397][ T7224] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 201.442522][ T7224] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 201.499003][ T7224] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 201.516779][ T7224] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 201.553375][ T7224] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 201.775877][ T7224] hsr_slave_0: entered promiscuous mode [ 201.808595][ T7224] hsr_slave_1: entered promiscuous mode [ 201.821543][ T7224] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 201.840690][ T7224] Cannot create hsr debugfs directory [ 202.657350][ T5856] Bluetooth: hci4: command tx timeout [ 203.247638][ T7224] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 203.298036][ T7317] FAULT_INJECTION: forcing a failure. [ 203.298036][ T7317] name failslab, interval 1, probability 0, space 0, times 0 [ 203.347622][ T7224] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 203.363080][ T7317] CPU: 0 UID: 0 PID: 7317 Comm: syz.3.255 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 203.363134][ T7317] Tainted: [U]=USER [ 203.363145][ T7317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 203.363165][ T7317] Call Trace: [ 203.363176][ T7317] [ 203.363189][ T7317] dump_stack_lvl+0x16c/0x1f0 [ 203.363246][ T7317] should_fail_ex+0x512/0x640 [ 203.363293][ T7317] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 203.363350][ T7317] should_failslab+0xc2/0x120 [ 203.363382][ T7317] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 203.363434][ T7317] ? __d_alloc+0x31/0xaa0 [ 203.363491][ T7317] __d_alloc+0x31/0xaa0 [ 203.363549][ T7317] d_alloc_pseudo+0x1c/0xc0 [ 203.363598][ T7317] alloc_file_pseudo+0xcf/0x230 [ 203.363637][ T7317] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 203.363674][ T7317] ? alloc_fd+0x471/0x7d0 [ 203.363726][ T7317] sock_alloc_file+0x50/0x210 [ 203.363781][ T7317] __sys_socket+0x1c0/0x260 [ 203.363817][ T7317] ? fput+0x70/0xf0 [ 203.363846][ T7317] ? __pfx___sys_socket+0x10/0x10 [ 203.363883][ T7317] ? xfd_validate_state+0x61/0x180 [ 203.363927][ T7317] ? __pfx_ksys_write+0x10/0x10 [ 203.363983][ T7317] __x64_sys_socket+0x72/0xb0 [ 203.364019][ T7317] ? lockdep_hardirqs_on+0x7c/0x110 [ 203.364066][ T7317] do_syscall_64+0xcd/0x490 [ 203.364118][ T7317] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.364151][ T7317] RIP: 0033:0x7f8d6b78e929 [ 203.364176][ T7317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.364208][ T7317] RSP: 002b:00007f8d6c61b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 203.364240][ T7317] RAX: ffffffffffffffda RBX: 00007f8d6b9b6080 RCX: 00007f8d6b78e929 [ 203.364262][ T7317] RDX: 000000000000003a RSI: 0000000000000002 RDI: 000000000000000a [ 203.364282][ T7317] RBP: 00007f8d6b810b39 R08: 0000000000000000 R09: 0000000000000000 [ 203.364320][ T7317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.364339][ T7317] R13: 0000000000000000 R14: 00007f8d6b9b6080 R15: 00007ffe35f57558 [ 203.364382][ T7317] [ 203.673917][ T7224] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 203.685752][ T7224] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 204.083746][ T7224] 8021q: adding VLAN 0 to HW filter on device bond0 [ 204.173053][ T7224] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.196507][ T7291] bridge0: port 1(bridge_slave_0) entered blocking state [ 204.203786][ T7291] bridge0: port 1(bridge_slave_0) entered forwarding state [ 204.417701][ T7293] bridge0: port 2(bridge_slave_1) entered blocking state [ 204.424858][ T7293] bridge0: port 2(bridge_slave_1) entered forwarding state [ 204.731665][ T5856] Bluetooth: hci4: command tx timeout [ 204.739802][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.746160][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.693265][ T7360] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 205.752823][ T7224] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 205.778792][ T7360] CIFS mount error: No usable UNC path provided in device string! [ 205.778792][ T7360] [ 205.852185][ T7360] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 207.071626][ T7224] veth0_vlan: entered promiscuous mode [ 207.152452][ T7224] veth1_vlan: entered promiscuous mode [ 207.255058][ T7224] veth0_macvtap: entered promiscuous mode [ 207.281242][ T7224] veth1_macvtap: entered promiscuous mode [ 207.293691][ T7383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.265'. [ 207.363703][ T7224] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 207.416639][ T7224] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 207.458687][ T7224] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 207.491590][ T7224] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 207.522983][ T7224] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 207.557398][ T7224] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 207.826531][ T1162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 207.856462][ T1162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 207.997954][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.024795][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 209.324200][ T7414] FAULT_INJECTION: forcing a failure. [ 209.324200][ T7414] name failslab, interval 1, probability 0, space 0, times 0 [ 209.364175][ T7414] CPU: 1 UID: 0 PID: 7414 Comm: syz.3.270 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 209.364233][ T7414] Tainted: [U]=USER [ 209.364244][ T7414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 209.364264][ T7414] Call Trace: [ 209.364275][ T7414] [ 209.364287][ T7414] dump_stack_lvl+0x16c/0x1f0 [ 209.364344][ T7414] should_fail_ex+0x512/0x640 [ 209.364392][ T7414] ? __kmalloc_noprof+0xbf/0x510 [ 209.364445][ T7414] ? __netlink_kernel_create+0x17f/0x750 [ 209.364478][ T7414] should_failslab+0xc2/0x120 [ 209.364518][ T7414] __kmalloc_noprof+0xd2/0x510 [ 209.364572][ T7414] ? __netlink_create+0x208/0x2c0 [ 209.364625][ T7414] __netlink_kernel_create+0x17f/0x750 [ 209.364669][ T7414] ? __pfx___netlink_kernel_create+0x10/0x10 [ 209.364701][ T7414] ? fib4_semantics_init+0x25/0x100 [ 209.364764][ T7414] fib_net_init+0x26d/0x3f0 [ 209.364797][ T7414] ? __pfx___register_sysctl_table+0x10/0x10 [ 209.364853][ T7414] ? __pfx_fib_net_init+0x10/0x10 [ 209.364888][ T7414] ? lockdep_init_map_type+0x5c/0x280 [ 209.364937][ T7414] ? __pfx_nl_fib_input+0x10/0x10 [ 209.364979][ T7414] ? devinet_init_net+0x5c2/0x910 [ 209.365029][ T7414] ? __pfx_fib_net_init+0x10/0x10 [ 209.365063][ T7414] ops_init+0x1df/0x5f0 [ 209.365130][ T7414] setup_net+0x1ff/0x510 [ 209.365182][ T7414] ? lockdep_init_map_type+0x5c/0x280 [ 209.365230][ T7414] ? __pfx_setup_net+0x10/0x10 [ 209.365287][ T7414] ? debug_mutex_init+0x37/0x70 [ 209.365326][ T7414] copy_net_ns+0x2a6/0x5f0 [ 209.365364][ T7414] create_new_namespaces+0x3ea/0xa90 [ 209.365413][ T7414] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 209.365466][ T7414] ksys_unshare+0x45b/0xa40 [ 209.365511][ T7414] ? native_tss_update_io_bitmap+0x3e1/0x770 [ 209.365562][ T7414] ? __pfx_ksys_unshare+0x10/0x10 [ 209.365610][ T7414] ? xfd_validate_state+0x61/0x180 [ 209.365667][ T7414] __x64_sys_unshare+0x31/0x40 [ 209.365713][ T7414] do_syscall_64+0xcd/0x490 [ 209.365773][ T7414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.365808][ T7414] RIP: 0033:0x7f8d6b78e929 [ 209.365834][ T7414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.365874][ T7414] RSP: 002b:00007f8d6c63c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 209.365906][ T7414] RAX: ffffffffffffffda RBX: 00007f8d6b9b5fa0 RCX: 00007f8d6b78e929 [ 209.365929][ T7414] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 209.365949][ T7414] RBP: 00007f8d6b810b39 R08: 0000000000000000 R09: 0000000000000000 [ 209.365969][ T7414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 209.365988][ T7414] R13: 0000000000000000 R14: 00007f8d6b9b5fa0 R15: 00007ffe35f57558 [ 209.366028][ T7414] [ 210.382640][ T7294] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.666432][ T5856] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 210.899219][ T7294] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.063864][ T7294] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.336806][ T7294] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.392136][ T7442] netlink: 'syz.4.275': attribute type 5 has an invalid length. [ 211.430195][ T7442] netlink: 'syz.4.275': attribute type 1 has an invalid length. [ 211.439077][ T7442] netlink: 12 bytes leftover after parsing attributes in process `syz.4.275'. [ 211.481403][ T7443] netlink: 'syz.4.275': attribute type 5 has an invalid length. [ 211.499018][ T7443] netlink: 'syz.4.275': attribute type 1 has an invalid length. [ 211.516961][ T7443] netlink: 12 bytes leftover after parsing attributes in process `syz.4.275'. [ 211.977951][ T7294] bridge_slave_1: left allmulticast mode [ 211.997367][ T7294] bridge_slave_1: left promiscuous mode [ 212.004335][ T7294] bridge0: port 2(bridge_slave_1) entered disabled state [ 212.058502][ T7294] bridge_slave_0: left allmulticast mode [ 212.064226][ T7294] bridge_slave_0: left promiscuous mode [ 212.085547][ T7294] bridge0: port 1(bridge_slave_0) entered disabled state [ 212.393454][ T7448] nbd: socks must be embedded in a SOCK_ITEM attr [ 212.413458][ T7448] block nbd0: shutting down sockets [ 213.597418][ T7294] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 213.690926][ T7294] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 213.707844][ T7294] bond0 (unregistering): Released all slaves [ 216.358314][ T7294] hsr_slave_0: left promiscuous mode [ 216.367507][ T7294] hsr_slave_1: left promiscuous mode [ 216.373752][ T7294] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 216.381775][ T7294] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 216.495401][ T30] audit: type=1800 audit(6046923890.421:6): pid=7511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.284" name="features" dev="configfs" ino=15620 res=0 errno=0 [ 216.540133][ T7294] veth1_macvtap: left promiscuous mode [ 216.590353][ T7294] veth1_vlan: left promiscuous mode [ 216.595802][ T7294] veth0_vlan: left promiscuous mode [ 219.006141][ T7294] team0 (unregistering): Port device team_slave_1 removed [ 219.224450][ T7294] team0 (unregistering): Port device team_slave_0 removed [ 223.435632][ T7571] ubi: mtd0 is already attached to ubi0 [ 226.647771][ T7624] netlink: 'syz.4.304': attribute type 1 has an invalid length. [ 226.655507][ T7624] nbd: error processing sock list [ 227.132832][ T7621] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 227.160074][ T7621] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 227.189525][ T7621] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 227.252175][ T7621] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 227.264083][ T7621] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 227.437564][ T7621] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 227.602566][ T7642] nbd: illegal input index 2147483647 [ 229.127595][ T5856] Bluetooth: hci1: command 0x0c1a tx timeout [ 229.220628][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 229.220851][ T5855] Bluetooth: hci0: command 0x0c1a tx timeout [ 229.298381][ T5855] Bluetooth: hci4: command 0x0c1a tx timeout [ 229.437742][ T7666] Invalid ELF header magic: != ELF [ 230.930695][ T7703] ubi: mtd0 is already attached to ubi0 [ 231.367497][ T5855] Bluetooth: hci4: command 0x0c1a tx timeout [ 233.457457][ T5855] Bluetooth: hci4: command 0x0c1a tx timeout [ 233.564105][ T7755] ptp ptp0: only physical clock in use now [ 233.998406][ T7759] ubi: mtd0 is already attached to ubi0 [ 235.154490][ T7773] can: request_module (can-proto-5) failed. [ 235.270363][ T7771] can: request_module (can-proto-0) failed. [ 235.617710][ T7787] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input14 [ 235.633289][ T7790] vhci_hcd: invalid port number 16 [ 235.638566][ T7790] vhci_hcd: invalid port number 16 [ 237.878151][ T5856] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 237.895992][ T5856] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 237.905204][ T5856] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 237.915296][ T5856] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 237.930224][ T5856] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 239.837745][ T7823] chnl_net:caif_netlink_parms(): no params data found [ 240.007543][ T5856] Bluetooth: hci2: command tx timeout [ 240.745160][ T7823] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.755010][ T7823] bridge0: port 1(bridge_slave_0) entered disabled state [ 240.766428][ T7823] bridge_slave_0: entered allmulticast mode [ 240.783954][ T7823] bridge_slave_0: entered promiscuous mode [ 240.833886][ T7823] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.841920][ T7823] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.857965][ T7823] bridge_slave_1: entered allmulticast mode [ 240.867606][ T7891] FAULT_INJECTION: forcing a failure. [ 240.867606][ T7891] name failslab, interval 1, probability 0, space 0, times 0 [ 240.893207][ T7823] bridge_slave_1: entered promiscuous mode [ 240.923992][ T7891] CPU: 0 UID: 0 PID: 7891 Comm: syz.4.340 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 240.924041][ T7891] Tainted: [U]=USER [ 240.924051][ T7891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 240.924070][ T7891] Call Trace: [ 240.924079][ T7891] [ 240.924091][ T7891] dump_stack_lvl+0x16c/0x1f0 [ 240.924145][ T7891] should_fail_ex+0x512/0x640 [ 240.924202][ T7891] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 240.924250][ T7891] should_failslab+0xc2/0x120 [ 240.924281][ T7891] __kmalloc_cache_noprof+0x6a/0x3e0 [ 240.924325][ T7891] ? cuse_channel_open+0x1de/0x7f0 [ 240.924374][ T7891] cuse_channel_open+0x1de/0x7f0 [ 240.924416][ T7891] ? __pfx_cuse_channel_open+0x10/0x10 [ 240.924461][ T7891] misc_open+0x35d/0x420 [ 240.924502][ T7891] ? __pfx_misc_open+0x10/0x10 [ 240.924540][ T7891] chrdev_open+0x234/0x6a0 [ 240.924589][ T7891] ? __pfx_apparmor_file_open+0x10/0x10 [ 240.924631][ T7891] ? __pfx_chrdev_open+0x10/0x10 [ 240.924684][ T7891] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 240.924735][ T7891] do_dentry_open+0x741/0x1c10 [ 240.924785][ T7891] ? __pfx_chrdev_open+0x10/0x10 [ 240.924841][ T7891] vfs_open+0x82/0x3f0 [ 240.924880][ T7891] path_openat+0x1de4/0x2cb0 [ 240.924936][ T7891] ? __pfx_path_openat+0x10/0x10 [ 240.924983][ T7891] ? __lock_acquire+0xb8a/0x1c90 [ 240.925032][ T7891] do_filp_open+0x20b/0x470 [ 240.925079][ T7891] ? __pfx_do_filp_open+0x10/0x10 [ 240.925141][ T7891] ? alloc_fd+0x471/0x7d0 [ 240.925187][ T7891] do_sys_openat2+0x11b/0x1d0 [ 240.925212][ T7891] ? __pfx_do_sys_openat2+0x10/0x10 [ 240.925250][ T7891] __x64_sys_openat+0x174/0x210 [ 240.925276][ T7891] ? __pfx___x64_sys_openat+0x10/0x10 [ 240.925315][ T7891] do_syscall_64+0xcd/0x490 [ 240.925352][ T7891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.925376][ T7891] RIP: 0033:0x7fe15678e929 [ 240.925395][ T7891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.925417][ T7891] RSP: 002b:00007fe157607038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 240.925439][ T7891] RAX: ffffffffffffffda RBX: 00007fe1569b6160 RCX: 00007fe15678e929 [ 240.925454][ T7891] RDX: 00000000001c5041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 240.925468][ T7891] RBP: 00007fe156810b39 R08: 0000000000000000 R09: 0000000000000000 [ 240.925482][ T7891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.925495][ T7891] R13: 0000000000000000 R14: 00007fe1569b6160 R15: 00007ffe39c2d858 [ 240.925524][ T7891] [ 241.273850][ T1162] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.585517][ T7823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 241.638297][ T1162] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.749457][ T7823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 241.823359][ T1162] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.149590][ T1162] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.157505][ T5856] Bluetooth: hci2: command tx timeout [ 242.182228][ T7823] team0: Port device team_slave_0 added [ 242.725553][ T7823] team0: Port device team_slave_1 added [ 242.955398][ T7823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 243.060387][ T7823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 243.183381][ T7909] FAULT_INJECTION: forcing a failure. [ 243.183381][ T7909] name fail_futex, interval 1, probability 0, space 0, times 0 [ 243.196800][ T7909] CPU: 1 UID: 0 PID: 7909 Comm: syz.0.343 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 243.196845][ T7909] Tainted: [U]=USER [ 243.196853][ T7909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 243.196874][ T7909] Call Trace: [ 243.196882][ T7909] [ 243.196890][ T7909] dump_stack_lvl+0x16c/0x1f0 [ 243.196935][ T7909] should_fail_ex+0x512/0x640 [ 243.196972][ T7909] get_futex_key+0x1d0/0x1540 [ 243.197002][ T7909] ? __pfx_get_futex_key+0x10/0x10 [ 243.197038][ T7909] futex_wake+0xe7/0x4e0 [ 243.197071][ T7909] ? __pfx_futex_wake+0x10/0x10 [ 243.197106][ T7909] ? kmem_cache_free+0x2d1/0x4d0 [ 243.197137][ T7909] ? fd_install+0x225/0x750 [ 243.197167][ T7909] ? putname+0x154/0x1a0 [ 243.197193][ T7909] do_futex+0x1e3/0x350 [ 243.197220][ T7909] ? __pfx_do_futex+0x10/0x10 [ 243.197273][ T7909] __x64_sys_futex+0x1e0/0x4c0 [ 243.197316][ T7909] ? __x64_sys_openat+0x174/0x210 [ 243.197353][ T7909] ? __pfx___x64_sys_futex+0x10/0x10 [ 243.197410][ T7909] do_syscall_64+0xcd/0x490 [ 243.197460][ T7909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.197492][ T7909] RIP: 0033:0x7f885eb8e929 [ 243.197517][ T7909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.197547][ T7909] RSP: 002b:00007f885f93d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 243.197576][ T7909] RAX: ffffffffffffffda RBX: 00007f885edb5fa8 RCX: 00007f885eb8e929 [ 243.197597][ T7909] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f885edb5fac [ 243.197616][ T7909] RBP: 00007f885edb5fa0 R08: 00007f885f93e000 R09: 0000000000000000 [ 243.197630][ T7909] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f885edb5fac [ 243.197644][ T7909] R13: 0000000000000000 R14: 00007ffdb0c87050 R15: 00007ffdb0c87138 [ 243.197673][ T7909] [ 243.383524][ T7823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 243.397937][ T7823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 243.404958][ T7823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 243.430996][ T7823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 243.712773][ T7823] hsr_slave_0: entered promiscuous mode [ 243.742686][ T7823] hsr_slave_1: entered promiscuous mode [ 243.759425][ T7823] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 243.767078][ T7823] Cannot create hsr debugfs directory [ 244.123921][ T1162] bridge_slave_1: left allmulticast mode [ 244.143211][ T1162] bridge_slave_1: left promiscuous mode [ 244.165197][ T7917] random: crng reseeded on system resumption [ 244.195516][ T1162] bridge0: port 2(bridge_slave_1) entered disabled state [ 244.247509][ T5856] Bluetooth: hci2: command tx timeout [ 244.260110][ T1162] bridge_slave_0: left allmulticast mode [ 244.283914][ T1162] bridge_slave_0: left promiscuous mode [ 244.473664][ T1162] bridge0: port 1(bridge_slave_0) entered disabled state [ 245.841535][ T7936] random: crng reseeded on system resumption [ 246.235611][ T1162] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 246.247799][ T1162] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 246.263162][ T1162] bond0 (unregistering): Released all slaves [ 246.331096][ T5856] Bluetooth: hci2: command tx timeout [ 247.097365][ T1162] hsr_slave_0: left promiscuous mode [ 247.113988][ T1162] hsr_slave_1: left promiscuous mode [ 247.124791][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 247.147352][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 247.166060][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 247.199878][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 247.270964][ T1162] veth1_macvtap: left promiscuous mode [ 247.276730][ T1162] veth0_macvtap: left promiscuous mode [ 247.283677][ T1162] veth1_vlan: left promiscuous mode [ 247.289223][ T1162] veth0_vlan: left promiscuous mode [ 248.251376][ T1162] team0 (unregistering): Port device team_slave_1 removed [ 248.299301][ T1162] team0 (unregistering): Port device team_slave_0 removed [ 249.020833][ T7823] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 249.046123][ T7823] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 249.265086][ T7823] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 249.316908][ T7823] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 249.734138][ T7823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 249.785047][ T7823] 8021q: adding VLAN 0 to HW filter on device team0 [ 249.856258][ T7293] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.864468][ T7293] bridge0: port 1(bridge_slave_0) entered forwarding state [ 249.940272][ T7293] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.947595][ T7293] bridge0: port 2(bridge_slave_1) entered forwarding state [ 250.668791][ T8004] raw_sendmsg: syz.0.354 forgot to set AF_INET. Fix it! [ 250.679515][ T8012] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 251.151367][ T8028] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 251.170159][ T7823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 251.222075][ T8031] phram: parameter too long [ 251.747771][ T8034] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 252.846415][ T30] audit: type=1400 audit(6046923926.761:7): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=8024 comm="syz.4.356" [ 252.869474][ T7823] veth0_vlan: entered promiscuous mode [ 252.954396][ T7823] veth1_vlan: entered promiscuous mode [ 253.314494][ T7823] veth0_macvtap: entered promiscuous mode [ 253.396624][ T7823] veth1_macvtap: entered promiscuous mode [ 253.435092][ T8071] random: crng reseeded on system resumption [ 253.532750][ T7823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 253.738166][ T7823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 253.765089][ T7823] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.774633][ T7823] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.796708][ T7823] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.805876][ T7823] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.872622][ T8083] netlink: 'syz.0.363': attribute type 11 has an invalid length. [ 254.282339][ T1162] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 254.352993][ T1162] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 254.836145][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 254.881471][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 258.249146][ T8180] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 261.319713][ T8237] netlink: 334 bytes leftover after parsing attributes in process `syz.5.380'. [ 261.423143][ T8245] netlink: 334 bytes leftover after parsing attributes in process `syz.5.380'. [ 262.348809][ T5856] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 262.686945][ T8258] kexec: Could not allocate control_code_buffer [ 262.904661][ T8286] random: crng reseeded on system resumption [ 263.938609][ T8268] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 263.976267][ T8268] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 266.184879][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.191942][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 267.894545][ T8363] netlink: 4 bytes leftover after parsing attributes in process `syz.0.396'. [ 268.178825][ T8368] sctp: [Deprecated]: syz.4.397 (pid 8368) Use of int in max_burst socket option deprecated. [ 268.178825][ T8368] Use struct sctp_assoc_value instead [ 270.648669][ T8421] FAULT_INJECTION: forcing a failure. [ 270.648669][ T8421] name failslab, interval 1, probability 0, space 0, times 0 [ 270.661762][ T8421] CPU: 1 UID: 0 PID: 8421 Comm: syz.1.404 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 270.661805][ T8421] Tainted: [U]=USER [ 270.661814][ T8421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 270.661831][ T8421] Call Trace: [ 270.661840][ T8421] [ 270.661851][ T8421] dump_stack_lvl+0x116/0x1f0 [ 270.661901][ T8421] should_fail_ex+0x512/0x640 [ 270.661948][ T8421] should_failslab+0xc2/0x120 [ 270.661975][ T8421] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 270.662019][ T8421] ? __send_signal_locked+0x159/0x12c0 [ 270.662070][ T8421] __send_signal_locked+0x159/0x12c0 [ 270.662123][ T8421] do_send_specific+0x1e8/0x370 [ 270.662158][ T8421] ? __pfx_do_send_specific+0x10/0x10 [ 270.662196][ T8421] ? __task_pid_nr_ns+0x186/0x500 [ 270.662242][ T8421] __x64_sys_tkill+0xf2/0x160 [ 270.662280][ T8421] ? __pfx___x64_sys_tkill+0x10/0x10 [ 270.662328][ T8421] ? rcu_is_watching+0x12/0xc0 [ 270.662361][ T8421] do_syscall_64+0xcd/0x490 [ 270.662405][ T8421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.662434][ T8421] RIP: 0033:0x7f4bb578e929 [ 270.662456][ T8421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.662483][ T8421] RSP: 002b:00007f4bb6585038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8 [ 270.662510][ T8421] RAX: ffffffffffffffda RBX: 00007f4bb59b5fa0 RCX: 00007f4bb578e929 [ 270.662528][ T8421] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000206 [ 270.662545][ T8421] RBP: 00007f4bb5810b39 R08: 0000000000000000 R09: 0000000000000000 [ 270.662562][ T8421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.662578][ T8421] R13: 0000000000000000 R14: 00007f4bb59b5fa0 R15: 00007ffc59694a58 [ 270.662623][ T8421] [ 272.078508][ T8460] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 274.017319][ T8509] netlink: 'syz.4.421': attribute type 1 has an invalid length. [ 274.175208][ T8509] netlink: zone id is out of range [ 274.206555][ T8469] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 274.228809][ T8509] netlink: zone id is out of range [ 274.237482][ T8509] netlink: zone id is out of range [ 274.265350][ T8509] netlink: zone id is out of range [ 274.297570][ T8509] netlink: zone id is out of range [ 274.302775][ T8509] netlink: zone id is out of range [ 274.308018][ T8509] netlink: zone id is out of range [ 274.313185][ T8509] netlink: zone id is out of range [ 274.318435][ T8509] netlink: zone id is out of range [ 274.323602][ T8509] netlink: zone id is out of range [ 275.440462][ T8555] ptrace attach of "./syz-executor exec"[7823] was attempted by ""[8555] [ 276.801509][ T8584] netlink: 28 bytes leftover after parsing attributes in process `syz.4.431'. [ 279.342225][ T8644] ubi: mtd0 is already attached to ubi0 [ 280.317504][ T8667] kexec: Could not allocate control_code_buffer [ 280.926029][ T8692] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 281.151923][ T8650] kexec: Could not allocate control_code_buffer [ 282.101476][ T8707] ptrace attach of "./syz-executor exec"[5863] was attempted by ""[8707] [ 285.659733][ T8775] ubi: mtd0 is already attached to ubi0 [ 287.217634][ T8805] kAFS: No cell specified [ 288.304489][ T8823] Invalid ELF header magic: != ELF [ 290.007849][ T8847] net_ratelimit: 96 callbacks suppressed [ 290.007875][ T8847] openvswitch: netlink: IP tunnel dst address not specified [ 291.914283][ T8865] syz.0.470: vmalloc error: size 268435456, failed to allocated page array size 524288, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 291.993273][ T8865] CPU: 1 UID: 0 PID: 8865 Comm: syz.0.470 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 291.993331][ T8865] Tainted: [U]=USER [ 291.993343][ T8865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 291.993362][ T8865] Call Trace: [ 291.993373][ T8865] [ 291.993385][ T8865] dump_stack_lvl+0x16c/0x1f0 [ 291.993444][ T8865] warn_alloc+0x248/0x3a0 [ 291.993502][ T8865] ? __pfx_warn_alloc+0x10/0x10 [ 291.993567][ T8865] ? packet_set_ring+0xb07/0x18d0 [ 291.993605][ T8865] ? __vmalloc_node_noprof+0xad/0xf0 [ 291.993655][ T8865] __vmalloc_node_range_noprof+0x101b/0x14b0 [ 291.993712][ T8865] ? packet_set_ring+0xb07/0x18d0 [ 291.993762][ T8865] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 291.993812][ T8865] ? alloc_pages_mpol+0x25a/0x550 [ 291.993846][ T8865] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 291.993884][ T8865] ? packet_set_ring+0xb07/0x18d0 [ 291.993921][ T8865] __vmalloc_node_noprof+0xad/0xf0 [ 291.993963][ T8865] ? packet_set_ring+0xb07/0x18d0 [ 291.994006][ T8865] packet_set_ring+0xb07/0x18d0 [ 291.994064][ T8865] packet_setsockopt+0x121b/0x33c0 [ 291.994120][ T8865] ? __pfx_packet_setsockopt+0x10/0x10 [ 291.994175][ T8865] ? aa_sk_perm+0x2f4/0xb10 [ 291.994217][ T8865] ? __pfx_aa_sk_perm+0x10/0x10 [ 291.994257][ T8865] ? errseq_sample+0x53/0x70 [ 291.994316][ T8865] ? __pfx_packet_setsockopt+0x10/0x10 [ 291.994362][ T8865] do_sock_setsockopt+0x221/0x470 [ 291.994396][ T8865] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 291.994456][ T8865] __sys_setsockopt+0x120/0x1a0 [ 291.994510][ T8865] __x64_sys_setsockopt+0xbd/0x160 [ 291.994555][ T8865] ? do_syscall_64+0x91/0x490 [ 291.994602][ T8865] ? lockdep_hardirqs_on+0x7c/0x110 [ 291.994649][ T8865] do_syscall_64+0xcd/0x490 [ 291.994702][ T8865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.994735][ T8865] RIP: 0033:0x7f885eb8e929 [ 291.994761][ T8865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.994800][ T8865] RSP: 002b:00007f885c9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 291.994832][ T8865] RAX: ffffffffffffffda RBX: 00007f885edb6160 RCX: 00007f885eb8e929 [ 291.994854][ T8865] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000007 [ 291.994874][ T8865] RBP: 00007f885ec10b39 R08: 000000000000ce24 R09: 0000000000000000 [ 291.994894][ T8865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.994914][ T8865] R13: 0000000000000000 R14: 00007f885edb6160 R15: 00007ffdb0c87138 [ 291.994958][ T8865] [ 292.284418][ T8865] Mem-Info: [ 292.294603][ T8865] active_anon:6317 inactive_anon:32421 isolated_anon:0 [ 292.294603][ T8865] active_file:14975 inactive_file:44043 isolated_file:0 [ 292.294603][ T8865] unevictable:768 dirty:591 writeback:0 [ 292.294603][ T8865] slab_reclaimable:10972 slab_unreclaimable:96348 [ 292.294603][ T8865] mapped:41970 shmem:24729 pagetables:1501 [ 292.294603][ T8865] sec_pagetables:0 bounce:0 [ 292.294603][ T8865] kernel_misc_reclaimable:0 [ 292.294603][ T8865] free:1256281 free_pcp:19874 free_cma:0 [ 292.340842][ T8865] Node 0 active_anon:25268kB inactive_anon:128684kB active_file:59872kB inactive_file:175996kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:167876kB dirty:2356kB writeback:0kB shmem:96480kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12980kB pagetables:5864kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 292.375125][ T8865] Node 1 active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 292.406855][ T8865] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 292.436285][ T8865] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 292.442374][ T8865] Node 0 DMA32 free:1136544kB boost:0kB min:34328kB low:42908kB high:51488kB reserved_highatomic:0KB free_highatomic:0KB active_anon:25220kB inactive_anon:128684kB active_file:58644kB inactive_file:175920kB unevictable:1536kB writepending:2356kB present:3129332kB managed:2540356kB mlocked:0kB bounce:0kB free_pcp:36844kB local_pcp:19384kB free_cma:0kB [ 292.475739][ T8865] lowmem_reserve[]: 0 0 1 1 1 [ 292.480558][ T8865] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:1228kB inactive_file:76kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 292.510194][ T8865] lowmem_reserve[]: 0 0 0 0 0 [ 292.514967][ T8865] Node 1 Normal free:3873200kB boost:0kB min:55556kB low:69444kB high:83332kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:176kB unevictable:1536kB writepending:8kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:43628kB local_pcp:21584kB free_cma:0kB [ 292.553201][ T8865] lowmem_reserve[]: 0 0 0 0 0 [ 292.563394][ T8865] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 292.597068][ T8865] Node 0 DMA32: 1*4kB (U) 1*8kB (E) 1*16kB (U) 1*32kB (U) 1*64kB (U) 158*128kB (ME) 211*256kB (UM) 101*512kB (UM) 19*1024kB (UME) 3*2048kB (UME) 240*4096kB (M) = 1134716kB [ 292.772810][ T8865] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 292.851873][ T8865] Node 1 Normal: 2*4kB (E) 6*8kB (UE) 12*16kB (UME) 5*32kB (E) 4*64kB (UE) 3*128kB (UE) 2*256kB (UM) 2*512kB (UE) 2*1024kB (UE) 3*2048kB (UME) 943*4096kB (M) = 3873304kB [ 292.947382][ T8865] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 293.007116][ T8865] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 293.047782][ T8865] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 293.086156][ T8865] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 293.116093][ T8865] 80723 total pagecache pages [ 293.133813][ T8865] 0 pages in swap cache [ 293.145273][ T8865] Free swap = 124996kB [ 293.168703][ T8865] Total swap = 124996kB [ 293.192155][ T8865] 2097051 pages RAM [ 293.205176][ T8865] 0 pages HighMem/MovableOnly [ 293.216220][ T8865] 429984 pages reserved [ 293.226243][ T8865] 0 pages cma reserved [ 294.433305][ T8905] program syz.5.474 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 294.805675][ T8857] kexec: Could not allocate control_code_buffer [ 296.150233][ T8940] ubi: mtd0 is already attached to ubi0 [ 296.948799][ T8952] FAULT_INJECTION: forcing a failure. [ 296.948799][ T8952] name failslab, interval 1, probability 0, space 0, times 0 [ 296.974989][ T8952] CPU: 0 UID: 0 PID: 8952 Comm: syz.1.486 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 296.975028][ T8952] Tainted: [U]=USER [ 296.975036][ T8952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 296.975049][ T8952] Call Trace: [ 296.975057][ T8952] [ 296.975066][ T8952] dump_stack_lvl+0x16c/0x1f0 [ 296.975106][ T8952] should_fail_ex+0x512/0x640 [ 296.975141][ T8952] ? __kmalloc_noprof+0xbf/0x510 [ 296.975178][ T8952] ? __register_sysctl_table+0xea2/0x1900 [ 296.975216][ T8952] should_failslab+0xc2/0x120 [ 296.975238][ T8952] __kmalloc_noprof+0xd2/0x510 [ 296.975292][ T8952] ? __register_sysctl_table+0xe8e/0x1900 [ 296.975337][ T8952] __register_sysctl_table+0xea2/0x1900 [ 296.975383][ T8952] ? __pfx___register_sysctl_table+0x10/0x10 [ 296.975420][ T8952] ? is_module_address+0x69/0xf0 [ 296.975454][ T8952] ? register_net_sysctl_sz+0x228/0x3e0 [ 296.975479][ T8952] ? __asan_memcpy+0x3c/0x60 [ 296.975516][ T8952] ? __pfx_nf_lwtunnel_net_init+0x10/0x10 [ 296.975547][ T8952] nf_lwtunnel_net_init+0x60/0xf0 [ 296.975573][ T8952] ops_init+0x1df/0x5f0 [ 296.975618][ T8952] setup_net+0x1ff/0x510 [ 296.975654][ T8952] ? lockdep_init_map_type+0x5c/0x280 [ 296.975690][ T8952] ? __pfx_setup_net+0x10/0x10 [ 296.975729][ T8952] ? debug_mutex_init+0x37/0x70 [ 296.975756][ T8952] copy_net_ns+0x2a6/0x5f0 [ 296.975782][ T8952] create_new_namespaces+0x3ea/0xa90 [ 296.975817][ T8952] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 296.975847][ T8952] ksys_unshare+0x45b/0xa40 [ 296.975880][ T8952] ? __pfx_ksys_unshare+0x10/0x10 [ 296.975915][ T8952] ? xfd_validate_state+0x61/0x180 [ 296.975956][ T8952] __x64_sys_unshare+0x31/0x40 [ 296.975988][ T8952] do_syscall_64+0xcd/0x490 [ 296.976032][ T8952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.976056][ T8952] RIP: 0033:0x7f4bb578e929 [ 296.976075][ T8952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.976097][ T8952] RSP: 002b:00007f4bb6585038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 296.976119][ T8952] RAX: ffffffffffffffda RBX: 00007f4bb59b5fa0 RCX: 00007f4bb578e929 [ 296.976135][ T8952] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 296.976148][ T8952] RBP: 00007f4bb5810b39 R08: 0000000000000000 R09: 0000000000000000 [ 296.976162][ T8952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.976176][ T8952] R13: 0000000000000000 R14: 00007f4bb59b5fa0 R15: 00007ffc59694a58 [ 296.976205][ T8952] [ 296.976215][ T8952] sysctl could not get directory: /net/netfilter -12 [ 297.796545][ T8965] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20 [ 297.981026][ T8955] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 298.031159][ T8968] FAULT_INJECTION: forcing a failure. [ 298.031159][ T8968] name failslab, interval 1, probability 0, space 0, times 0 [ 298.067803][ T8955] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 298.075818][ T8968] CPU: 1 UID: 0 PID: 8968 Comm: syz.0.487 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 298.075870][ T8968] Tainted: [U]=USER [ 298.075882][ T8968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 298.075901][ T8968] Call Trace: [ 298.075913][ T8968] [ 298.075925][ T8968] dump_stack_lvl+0x16c/0x1f0 [ 298.075983][ T8968] should_fail_ex+0x512/0x640 [ 298.076029][ T8968] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 298.076084][ T8968] should_failslab+0xc2/0x120 [ 298.076115][ T8968] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 298.076167][ T8968] ? __kernfs_new_node+0xd2/0x8e0 [ 298.076241][ T8968] __kernfs_new_node+0xd2/0x8e0 [ 298.076291][ T8968] ? __pfx___kernfs_new_node+0x10/0x10 [ 298.076347][ T8968] ? find_held_lock+0x2b/0x80 [ 298.076382][ T8968] ? kernfs_root+0xee/0x2a0 [ 298.076435][ T8968] kernfs_new_node+0x13c/0x1e0 [ 298.076503][ T8968] __kernfs_create_file+0x53/0x350 [ 298.076546][ T8968] sysfs_add_file_mode_ns+0x207/0x3c0 [ 298.076602][ T8968] internal_create_group+0x578/0xf30 [ 298.076660][ T8968] ? __pfx_internal_create_group+0x10/0x10 [ 298.076727][ T8968] sysfs_slab_add+0x1a3/0x1e0 [ 298.076774][ T8968] do_kmem_cache_create+0x530/0x730 [ 298.076826][ T8968] ? __kmem_cache_create_args+0x205/0x390 [ 298.076880][ T8968] __kmem_cache_create_args+0x225/0x390 [ 298.076930][ T8968] mon_text_open+0x313/0x4f0 [ 298.076983][ T8968] ? __pfx_mon_text_open+0x10/0x10 [ 298.077031][ T8968] ? __debugfs_file_get+0x1fe/0x840 [ 298.077061][ T8968] ? __pfx_mon_text_ctor+0x10/0x10 [ 298.077109][ T8968] ? __pfx_apparmor_file_open+0x10/0x10 [ 298.077149][ T8968] ? lockdown_is_locked_down+0x3f/0x130 [ 298.077195][ T8968] ? bpf_lsm_locked_down+0x9/0x10 [ 298.077250][ T8968] ? __pfx_mon_text_open+0x10/0x10 [ 298.077297][ T8968] full_proxy_open_regular+0x1b9/0x360 [ 298.077337][ T8968] do_dentry_open+0x741/0x1c10 [ 298.077386][ T8968] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 298.077431][ T8968] vfs_open+0x82/0x3f0 [ 298.077480][ T8968] path_openat+0x1de4/0x2cb0 [ 298.077544][ T8968] ? __pfx_path_openat+0x10/0x10 [ 298.077596][ T8968] ? __lock_acquire+0xb8a/0x1c90 [ 298.077648][ T8968] do_filp_open+0x20b/0x470 [ 298.077698][ T8968] ? __pfx_do_filp_open+0x10/0x10 [ 298.077783][ T8968] ? alloc_fd+0x471/0x7d0 [ 298.077838][ T8968] do_sys_openat2+0x11b/0x1d0 [ 298.077875][ T8968] ? __pfx_do_sys_openat2+0x10/0x10 [ 298.077930][ T8968] __x64_sys_openat+0x174/0x210 [ 298.077969][ T8968] ? __pfx___x64_sys_openat+0x10/0x10 [ 298.078025][ T8968] do_syscall_64+0xcd/0x490 [ 298.078079][ T8968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.078111][ T8968] RIP: 0033:0x7f885eb8e929 [ 298.078139][ T8968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 298.078165][ T8968] RSP: 002b:00007f885f93d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 298.078187][ T8968] RAX: ffffffffffffffda RBX: 00007f885edb5fa0 RCX: 00007f885eb8e929 [ 298.078203][ T8968] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 298.078218][ T8968] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 298.078233][ T8968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.078247][ T8968] R13: 0000000000000000 R14: 00007f885edb5fa0 R15: 00007ffdb0c87138 [ 298.078277][ T8968] [ 298.453668][ T8955] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 298.470052][ T8955] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 298.483530][ T8955] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 298.487579][ T8968] SLUB: Unable to add cache mon_text_ffff888033d34000 to sysfs [ 298.588414][ T8977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.488'. [ 298.648419][ T8967] delete_channel: no stack [ 298.740323][ T8955] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 298.753017][ T8970] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 299.579221][ T8988] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.1.492: [ 299.777709][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 300.078436][ T8995] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.1.492: 7 [ 300.087748][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 300.154423][ T9002] netlink: 338 bytes leftover after parsing attributes in process `syz.0.493'. [ 300.175609][ T9004] netlink: 338 bytes leftover after parsing attributes in process `syz.0.493'. [ 300.487691][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 300.493831][ T5855] Bluetooth: hci4: command 0x0c1a tx timeout [ 302.567392][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 302.862839][ T9061] FAULT_INJECTION: forcing a failure. [ 302.862839][ T9061] name failslab, interval 1, probability 0, space 0, times 0 [ 302.947438][ T9061] CPU: 1 UID: 0 PID: 9061 Comm: syz.0.505 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 302.947492][ T9061] Tainted: [U]=USER [ 302.947503][ T9061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 302.947523][ T9061] Call Trace: [ 302.947534][ T9061] [ 302.947547][ T9061] dump_stack_lvl+0x16c/0x1f0 [ 302.947605][ T9061] should_fail_ex+0x512/0x640 [ 302.947653][ T9061] ? __kmalloc_noprof+0xbf/0x510 [ 302.947706][ T9061] ? lsm_blob_alloc+0x68/0x90 [ 302.947756][ T9061] should_failslab+0xc2/0x120 [ 302.947787][ T9061] __kmalloc_noprof+0xd2/0x510 [ 302.947848][ T9061] lsm_blob_alloc+0x68/0x90 [ 302.947911][ T9061] security_sk_alloc+0x30/0x270 [ 302.947950][ T9061] sk_prot_alloc+0x1c7/0x2a0 [ 302.947989][ T9061] sk_alloc+0x36/0xc20 [ 302.948036][ T9061] __netlink_create+0x5e/0x2c0 [ 302.948082][ T9061] ? __wake_up+0x3f/0x60 [ 302.948122][ T9061] netlink_create+0x39e/0x620 [ 302.948173][ T9061] ? __pfx_genl_bind+0x10/0x10 [ 302.948208][ T9061] ? __pfx_genl_unbind+0x10/0x10 [ 302.948241][ T9061] ? __pfx_genl_release+0x10/0x10 [ 302.948283][ T9061] __sock_create+0x338/0x8d0 [ 302.948328][ T9061] __sys_socket+0x14d/0x260 [ 302.948367][ T9061] ? __pfx___sys_socket+0x10/0x10 [ 302.948406][ T9061] ? xfd_validate_state+0x61/0x180 [ 302.948450][ T9061] ? __pfx_do_writev+0x10/0x10 [ 302.948500][ T9061] __x64_sys_socket+0x72/0xb0 [ 302.948536][ T9061] ? lockdep_hardirqs_on+0x7c/0x110 [ 302.948583][ T9061] do_syscall_64+0xcd/0x490 [ 302.948636][ T9061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.948670][ T9061] RIP: 0033:0x7f885eb8e929 [ 302.948696][ T9061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.948728][ T9061] RSP: 002b:00007f885f93d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 302.948760][ T9061] RAX: ffffffffffffffda RBX: 00007f885edb5fa0 RCX: 00007f885eb8e929 [ 302.948782][ T9061] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 302.948802][ T9061] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 302.948823][ T9061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.948842][ T9061] R13: 0000000000000000 R14: 00007f885edb5fa0 R15: 00007ffdb0c87138 [ 302.948893][ T9061] [ 304.656361][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 306.471105][ T9137] serio: Serial port ttyS0 [ 306.522832][ T9134] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 306.564181][ T9134] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 309.913293][ T30] audit: type=1800 audit(6046923983.841:8): pid=9192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.520" name="dbroot" dev="configfs" ino=21173 res=0 errno=0 [ 310.763072][ T9197] ubi: mtd0 is already attached to ubi0 [ 311.111259][ T9206] random: crng reseeded on system resumption [ 311.358685][ T9216] netlink: 334 bytes leftover after parsing attributes in process `syz.5.523'. [ 311.491378][ T9224] kAFS: No cell specified [ 313.946838][ T9249] serio: Serial port ttyS0 [ 314.542562][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 314.549164][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 314.575744][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 314.586064][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 314.603938][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 314.610905][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 314.632896][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 314.639670][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 315.259734][ T9289] FAULT_INJECTION: forcing a failure. [ 315.259734][ T9289] name failslab, interval 1, probability 0, space 0, times 0 [ 315.272656][ T9289] CPU: 0 UID: 0 PID: 9289 Comm: syz.0.531 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 315.272691][ T9289] Tainted: [U]=USER [ 315.272698][ T9289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 315.272711][ T9289] Call Trace: [ 315.272719][ T9289] [ 315.272730][ T9289] dump_stack_lvl+0x16c/0x1f0 [ 315.272769][ T9289] should_fail_ex+0x512/0x640 [ 315.272803][ T9289] ? fs_reclaim_acquire+0xae/0x150 [ 315.272834][ T9289] should_failslab+0xc2/0x120 [ 315.272856][ T9289] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 315.272892][ T9289] ? security_inode_alloc+0x3b/0x2b0 [ 315.272921][ T9289] security_inode_alloc+0x3b/0x2b0 [ 315.272947][ T9289] inode_init_always_gfp+0xce4/0x1030 [ 315.272991][ T9289] alloc_inode+0x86/0x240 [ 315.273016][ T9289] path_from_stashed+0x2be/0xb00 [ 315.273055][ T9289] ? __pfx_path_from_stashed+0x10/0x10 [ 315.273089][ T9289] ? __pfx___might_resched+0x10/0x10 [ 315.273121][ T9289] pidfs_register_pid+0x10b/0x1a0 [ 315.273150][ T9289] ? __pfx_pidfs_register_pid+0x10/0x10 [ 315.273180][ T9289] ? do_raw_spin_unlock+0x172/0x230 [ 315.273220][ T9289] unix_socketpair+0x126/0x860 [ 315.273251][ T9289] ? bpf_lsm_socket_post_create+0x9/0x10 [ 315.273287][ T9289] ? security_socket_post_create+0x21d/0x260 [ 315.273311][ T9289] ? __pfx_unix_socketpair+0x10/0x10 [ 315.273341][ T9289] ? __sock_create+0xa2/0x8d0 [ 315.273373][ T9289] __sys_socketpair+0x2f2/0x5a0 [ 315.273402][ T9289] ? __pfx___sys_socketpair+0x10/0x10 [ 315.273428][ T9289] ? fput+0x70/0xf0 [ 315.273451][ T9289] ? xfd_validate_state+0x61/0x180 [ 315.273482][ T9289] ? __pfx_do_writev+0x10/0x10 [ 315.273517][ T9289] __x64_sys_socketpair+0x96/0x100 [ 315.273544][ T9289] ? lockdep_hardirqs_on+0x7c/0x110 [ 315.273577][ T9289] do_syscall_64+0xcd/0x490 [ 315.273613][ T9289] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.273637][ T9289] RIP: 0033:0x7f885eb8e929 [ 315.273654][ T9289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 315.273676][ T9289] RSP: 002b:00007f885f91c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 315.273697][ T9289] RAX: ffffffffffffffda RBX: 00007f885edb6080 RCX: 00007f885eb8e929 [ 315.273712][ T9289] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 0000000000000001 [ 315.273727][ T9289] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 315.273742][ T9289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 315.273755][ T9289] R13: 0000000000000000 R14: 00007f885edb6080 R15: 00007ffdb0c87138 [ 315.273784][ T9289] [ 319.020918][ T9358] netlink: 'syz.5.542': attribute type 4 has an invalid length. [ 319.028846][ T9358] netlink: 12 bytes leftover after parsing attributes in process `syz.5.542'. [ 319.081960][ T9357] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 319.122389][ T9358] FAULT_INJECTION: forcing a failure. [ 319.122389][ T9358] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 319.203559][ T9358] CPU: 0 UID: 0 PID: 9358 Comm: syz.5.542 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 319.203611][ T9358] Tainted: [U]=USER [ 319.203621][ T9358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 319.203648][ T9358] Call Trace: [ 319.203659][ T9358] [ 319.203672][ T9358] dump_stack_lvl+0x16c/0x1f0 [ 319.203728][ T9358] should_fail_ex+0x512/0x640 [ 319.203784][ T9358] should_fail_alloc_page+0xe7/0x130 [ 319.203820][ T9358] prepare_alloc_pages+0x3c2/0x610 [ 319.203861][ T9358] ? rcu_is_watching+0x12/0xc0 [ 319.203902][ T9358] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 319.203956][ T9358] ? __lock_acquire+0xb8a/0x1c90 [ 319.204020][ T9358] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 319.204071][ T9358] ? do_raw_spin_lock+0x12c/0x2b0 [ 319.204125][ T9358] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 319.204179][ T9358] ? find_held_lock+0x2b/0x80 [ 319.204227][ T9358] ? __lock_acquire+0xb8a/0x1c90 [ 319.204273][ T9358] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 319.204327][ T9358] ? policy_nodemask+0xea/0x4e0 [ 319.204362][ T9358] alloc_pages_mpol+0x1fb/0x550 [ 319.204396][ T9358] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 319.204442][ T9358] folio_alloc_mpol_noprof+0x36/0x2f0 [ 319.204483][ T9358] shmem_alloc_folio+0x135/0x160 [ 319.204527][ T9358] shmem_alloc_and_add_folio+0x499/0xc20 [ 319.204587][ T9358] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 319.204648][ T9358] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 319.204708][ T9358] shmem_get_folio_gfp+0x67f/0x1600 [ 319.204767][ T9358] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 319.204820][ T9358] ? __lock_acquire+0x622/0x1c90 [ 319.204872][ T9358] shmem_fault+0x1fe/0xa30 [ 319.204924][ T9358] ? __pfx_shmem_fault+0x10/0x10 [ 319.204981][ T9358] ? __lock_acquire+0xb8a/0x1c90 [ 319.205036][ T9358] __do_fault+0x10d/0x490 [ 319.205088][ T9358] ? __pfx_filemap_map_pages+0x10/0x10 [ 319.205141][ T9358] __handle_mm_fault+0x374c/0x5490 [ 319.205198][ T9358] ? __pfx___handle_mm_fault+0x10/0x10 [ 319.205245][ T9358] ? __pte_offset_map_lock+0x174/0x310 [ 319.205278][ T9358] ? find_held_lock+0x2b/0x80 [ 319.205308][ T9358] ? find_held_lock+0x2b/0x80 [ 319.205351][ T9358] ? follow_page_pte+0x3af/0x14c0 [ 319.205398][ T9358] handle_mm_fault+0x589/0xd10 [ 319.205452][ T9358] __get_user_pages+0x589/0x3b80 [ 319.205509][ T9358] ? __pfx___get_user_pages+0x10/0x10 [ 319.205549][ T9358] ? __pfx_down_read_killable+0x10/0x10 [ 319.205584][ T9358] ? __lock_acquire+0xb8a/0x1c90 [ 319.205648][ T9358] faultin_page_range+0x249/0x980 [ 319.205702][ T9358] madvise_do_behavior+0x268/0x3f0 [ 319.205745][ T9358] ? __pfx_madvise_do_behavior+0x10/0x10 [ 319.205809][ T9358] do_madvise+0x161/0x230 [ 319.205847][ T9358] ? __pfx_do_madvise+0x10/0x10 [ 319.205903][ T9358] ? xfd_validate_state+0x61/0x180 [ 319.205960][ T9358] __x64_sys_madvise+0xa9/0x110 [ 319.205996][ T9358] ? lockdep_hardirqs_on+0x7c/0x110 [ 319.206044][ T9358] do_syscall_64+0xcd/0x490 [ 319.206099][ T9358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.206133][ T9358] RIP: 0033:0x7f08c0d8e929 [ 319.206160][ T9358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.206192][ T9358] RSP: 002b:00007f08c1cda038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 319.206223][ T9358] RAX: ffffffffffffffda RBX: 00007f08c0fb5fa0 RCX: 00007f08c0d8e929 [ 319.206246][ T9358] RDX: 0000000000000017 RSI: ffffffffffff0006 RDI: 0000000000000000 [ 319.206267][ T9358] RBP: 00007f08c0e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 319.206287][ T9358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.206307][ T9358] R13: 0000000000000000 R14: 00007f08c0fb5fa0 R15: 00007ffd34c5e308 [ 319.206350][ T9358] [ 320.697465][ T9359] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 321.202845][ T9380] FAULT_INJECTION: forcing a failure. [ 321.202845][ T9380] name failslab, interval 1, probability 0, space 0, times 0 [ 321.215586][ T9380] CPU: 1 UID: 0 PID: 9380 Comm: syz.4.544 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 321.215640][ T9380] Tainted: [U]=USER [ 321.215651][ T9380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 321.215670][ T9380] Call Trace: [ 321.215680][ T9380] [ 321.215693][ T9380] dump_stack_lvl+0x116/0x1f0 [ 321.215752][ T9380] should_fail_ex+0x512/0x640 [ 321.215809][ T9380] should_failslab+0xc2/0x120 [ 321.215842][ T9380] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 321.215896][ T9380] ? __send_signal_locked+0x159/0x12c0 [ 321.215964][ T9380] __send_signal_locked+0x159/0x12c0 [ 321.216032][ T9380] do_send_specific+0x1e8/0x370 [ 321.216077][ T9380] ? __pfx_do_send_specific+0x10/0x10 [ 321.216124][ T9380] ? __task_pid_nr_ns+0x186/0x500 [ 321.216178][ T9380] __x64_sys_tkill+0xf2/0x160 [ 321.216225][ T9380] ? __pfx___x64_sys_tkill+0x10/0x10 [ 321.216270][ T9380] ? __pfx___x64_sys_futex+0x10/0x10 [ 321.216324][ T9380] ? rcu_is_watching+0x12/0xc0 [ 321.216365][ T9380] do_syscall_64+0xcd/0x490 [ 321.216423][ T9380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.216458][ T9380] RIP: 0033:0x7fe15678e929 [ 321.216486][ T9380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.216519][ T9380] RSP: 002b:00007fe157649038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c8 [ 321.216559][ T9380] RAX: ffffffffffffffda RBX: 00007fe1569b5fa0 RCX: 00007fe15678e929 [ 321.216582][ T9380] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000160 [ 321.216602][ T9380] RBP: 00007fe156810b39 R08: 0000000000000000 R09: 0000000000000000 [ 321.216621][ T9380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.216641][ T9380] R13: 0000000000000000 R14: 00007fe1569b5fa0 R15: 00007ffe39c2d858 [ 321.216685][ T9380] [ 321.400313][ C1] vkms_vblank_simulate: vblank timer overrun [ 321.486346][ T9384] FAULT_INJECTION: forcing a failure. [ 321.486346][ T9384] name failslab, interval 1, probability 0, space 0, times 0 [ 321.523512][ T9384] CPU: 0 UID: 0 PID: 9384 Comm: syz.0.545 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 321.523570][ T9384] Tainted: [U]=USER [ 321.523581][ T9384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 321.523601][ T9384] Call Trace: [ 321.523612][ T9384] [ 321.523624][ T9384] dump_stack_lvl+0x16c/0x1f0 [ 321.523680][ T9384] should_fail_ex+0x512/0x640 [ 321.523728][ T9384] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 321.523777][ T9384] should_failslab+0xc2/0x120 [ 321.523811][ T9384] __kmalloc_cache_noprof+0x6a/0x3e0 [ 321.523855][ T9384] ? trace_kmalloc+0x2b/0xd0 [ 321.523887][ T9384] ? call_usermodehelper_setup+0xaf/0x360 [ 321.523923][ T9384] ? __pfx_free_modprobe_argv+0x10/0x10 [ 321.523978][ T9384] call_usermodehelper_setup+0xaf/0x360 [ 321.524019][ T9384] __request_module+0x3bd/0x690 [ 321.524073][ T9384] ? __pfx___request_module+0x10/0x10 [ 321.524123][ T9384] ? trace_kmem_cache_alloc+0x28/0xc0 [ 321.524162][ T9384] ? security_inode_alloc+0x3b/0x2b0 [ 321.524210][ T9384] ? inode_init_always_gfp+0xd05/0x1030 [ 321.524281][ T9384] __sock_create+0x5c3/0x8d0 [ 321.524330][ T9384] __sys_socket+0x14d/0x260 [ 321.524366][ T9384] ? fput+0x70/0xf0 [ 321.524396][ T9384] ? __pfx___sys_socket+0x10/0x10 [ 321.524434][ T9384] ? xfd_validate_state+0x61/0x180 [ 321.524483][ T9384] ? __pfx_ksys_write+0x10/0x10 [ 321.524542][ T9384] __x64_sys_socket+0x72/0xb0 [ 321.524579][ T9384] ? lockdep_hardirqs_on+0x7c/0x110 [ 321.524628][ T9384] do_syscall_64+0xcd/0x490 [ 321.524681][ T9384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.524715][ T9384] RIP: 0033:0x7f885eb8e929 [ 321.524741][ T9384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.524773][ T9384] RSP: 002b:00007f885f91c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 321.524805][ T9384] RAX: ffffffffffffffda RBX: 00007f885edb6080 RCX: 00007f885eb8e929 [ 321.524827][ T9384] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 000000000000000c [ 321.524848][ T9384] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 321.524868][ T9384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.524887][ T9384] R13: 0000000000000000 R14: 00007f885edb6080 R15: 00007ffdb0c87138 [ 321.524931][ T9384] [ 323.210291][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout [ 323.218165][ T9375] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 323.921210][ T9375] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 323.927549][ T9375] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 323.944729][ T9375] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 325.057714][ T9435] FAULT_INJECTION: forcing a failure. [ 325.057714][ T9435] name failslab, interval 1, probability 0, space 0, times 0 [ 325.080756][ T9435] CPU: 1 UID: 0 PID: 9435 Comm: syz.5.555 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 325.080810][ T9435] Tainted: [U]=USER [ 325.080821][ T9435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 325.080841][ T9435] Call Trace: [ 325.080852][ T9435] [ 325.080873][ T9435] dump_stack_lvl+0x16c/0x1f0 [ 325.080929][ T9435] should_fail_ex+0x512/0x640 [ 325.080980][ T9435] ? __kvmalloc_node_noprof+0x124/0x620 [ 325.081034][ T9435] should_failslab+0xc2/0x120 [ 325.081067][ T9435] __kvmalloc_node_noprof+0x137/0x620 [ 325.081116][ T9435] ? lockdep_init_map_type+0x5c/0x280 [ 325.081164][ T9435] ? alloc_netdev_mqs+0xb5b/0x1570 [ 325.081225][ T9435] ? alloc_netdev_mqs+0xb5b/0x1570 [ 325.081277][ T9435] alloc_netdev_mqs+0xb5b/0x1570 [ 325.081338][ T9435] ? __pfx_loopback_net_init+0x10/0x10 [ 325.081379][ T9435] loopback_net_init+0x38/0x170 [ 325.081420][ T9435] ? __pfx_loopback_net_init+0x10/0x10 [ 325.081458][ T9435] ops_init+0x1df/0x5f0 [ 325.081515][ T9435] setup_net+0x1ff/0x510 [ 325.081566][ T9435] ? lockdep_init_map_type+0x5c/0x280 [ 325.081614][ T9435] ? __pfx_setup_net+0x10/0x10 [ 325.081671][ T9435] ? debug_mutex_init+0x37/0x70 [ 325.081710][ T9435] copy_net_ns+0x2a6/0x5f0 [ 325.081749][ T9435] create_new_namespaces+0x3ea/0xa90 [ 325.081797][ T9435] copy_namespaces+0x468/0x560 [ 325.081838][ T9435] copy_process+0x2822/0x7650 [ 325.081890][ T9435] ? preempt_schedule_thunk+0x16/0x30 [ 325.081952][ T9435] ? __pfx_copy_process+0x10/0x10 [ 325.081996][ T9435] ? find_held_lock+0x2b/0x80 [ 325.082037][ T9435] ? wake_up_q+0xb0/0x160 [ 325.082067][ T9435] ? do_raw_spin_unlock+0x172/0x230 [ 325.082129][ T9435] kernel_clone+0xfc/0x960 [ 325.082174][ T9435] ? __pfx_futex_wake+0x10/0x10 [ 325.082222][ T9435] ? __pfx_kernel_clone+0x10/0x10 [ 325.082291][ T9435] __do_sys_clone+0xce/0x120 [ 325.082335][ T9435] ? __pfx___do_sys_clone+0x10/0x10 [ 325.082380][ T9435] ? __pfx___might_resched+0x10/0x10 [ 325.082436][ T9435] ? xfd_validate_state+0x61/0x180 [ 325.082499][ T9435] do_syscall_64+0xcd/0x490 [ 325.082554][ T9435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.082589][ T9435] RIP: 0033:0x7f08c0d8e929 [ 325.082616][ T9435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.082649][ T9435] RSP: 002b:00007f08c1c97fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 325.082681][ T9435] RAX: ffffffffffffffda RBX: 00007f08c0fb6160 RCX: 00007f08c0d8e929 [ 325.082704][ T9435] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068000000 [ 325.082725][ T9435] RBP: 00007f08c0e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 325.082746][ T9435] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 325.082766][ T9435] R13: 0000000000000000 R14: 00007f08c0fb6160 R15: 00007ffd34c5e308 [ 325.082810][ T9435] [ 325.392741][ T5856] Bluetooth: hci3: command 0x0c1a tx timeout [ 326.007571][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout [ 326.010416][ T5855] Bluetooth: hci4: command 0x0c1a tx timeout [ 326.324051][ T9457] FAULT_INJECTION: forcing a failure. [ 326.324051][ T9457] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 326.337411][ T9457] CPU: 0 UID: 0 PID: 9457 Comm: syz.0.560 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 326.337447][ T9457] Tainted: [U]=USER [ 326.337455][ T9457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 326.337470][ T9457] Call Trace: [ 326.337477][ T9457] [ 326.337486][ T9457] dump_stack_lvl+0x16c/0x1f0 [ 326.337525][ T9457] should_fail_ex+0x512/0x640 [ 326.337564][ T9457] should_fail_alloc_page+0xe7/0x130 [ 326.337589][ T9457] prepare_alloc_pages+0x3c2/0x610 [ 326.337617][ T9457] ? rcu_is_watching+0x12/0xc0 [ 326.337646][ T9457] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 326.337693][ T9457] ? __lock_acquire+0x622/0x1c90 [ 326.337729][ T9457] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 326.337764][ T9457] ? __lock_acquire+0x622/0x1c90 [ 326.337807][ T9457] ? __lock_acquire+0x622/0x1c90 [ 326.337849][ T9457] ? __lock_acquire+0x622/0x1c90 [ 326.337881][ T9457] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 326.337921][ T9457] ? policy_nodemask+0xea/0x4e0 [ 326.337945][ T9457] alloc_pages_mpol+0x1fb/0x550 [ 326.337969][ T9457] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 326.338000][ T9457] folio_alloc_mpol_noprof+0x36/0x2f0 [ 326.338030][ T9457] vma_alloc_folio_noprof+0xed/0x1e0 [ 326.338057][ T9457] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 326.338087][ T9457] ? find_held_lock+0x2b/0x80 [ 326.338112][ T9457] ? __handle_mm_fault+0x1092/0x5490 [ 326.338148][ T9457] __handle_mm_fault+0x2f21/0x5490 [ 326.338187][ T9457] ? __pfx___handle_mm_fault+0x10/0x10 [ 326.338220][ T9457] ? __pte_offset_map_lock+0x174/0x310 [ 326.338245][ T9457] ? find_held_lock+0x2b/0x80 [ 326.338268][ T9457] ? find_held_lock+0x2b/0x80 [ 326.338307][ T9457] ? follow_page_pte+0x3af/0x14c0 [ 326.338354][ T9457] handle_mm_fault+0x589/0xd10 [ 326.338406][ T9457] __get_user_pages+0x589/0x3b80 [ 326.338457][ T9457] ? __pfx_mt_find+0x10/0x10 [ 326.338508][ T9457] ? __pfx___get_user_pages+0x10/0x10 [ 326.338562][ T9457] populate_vma_page_range+0x278/0x3a0 [ 326.338606][ T9457] ? __pfx_populate_vma_page_range+0x10/0x10 [ 326.338647][ T9457] ? __pfx_find_vma_intersection+0x10/0x10 [ 326.338687][ T9457] ? do_mmap+0x69c/0x1210 [ 326.338729][ T9457] __mm_populate+0x1d8/0x380 [ 326.338773][ T9457] ? __pfx___mm_populate+0x10/0x10 [ 326.338829][ T9457] ? up_write+0x1b2/0x520 [ 326.338887][ T9457] vm_mmap_pgoff+0x362/0x450 [ 326.338929][ T9457] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 326.338975][ T9457] ? __x64_sys_futex+0x1e0/0x4c0 [ 326.339015][ T9457] ? __x64_sys_futex+0x1e9/0x4c0 [ 326.339063][ T9457] ksys_mmap_pgoff+0x7d/0x5c0 [ 326.339099][ T9457] ? xfd_validate_state+0x61/0x180 [ 326.339152][ T9457] __x64_sys_mmap+0x125/0x190 [ 326.339206][ T9457] do_syscall_64+0xcd/0x490 [ 326.339261][ T9457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.339295][ T9457] RIP: 0033:0x7f885eb8e929 [ 326.339322][ T9457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.339356][ T9457] RSP: 002b:00007f885f93d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 326.339387][ T9457] RAX: ffffffffffffffda RBX: 00007f885edb5fa0 RCX: 00007f885eb8e929 [ 326.339409][ T9457] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 326.339430][ T9457] RBP: 00007f885ec10b39 R08: 0000000000000002 R09: 0000000000008000 [ 326.339450][ T9457] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 326.339470][ T9457] R13: 0000000000000000 R14: 00007f885edb5fa0 R15: 00007ffdb0c87138 [ 326.339514][ T9457] [ 327.626620][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.654965][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 327.807958][ T9481] : renamed from gre0 (while UP) [ 333.951192][ T9595] netlink: 'syz.4.585': attribute type 10 has an invalid length. [ 333.959798][ T9595] netlink: 330 bytes leftover after parsing attributes in process `syz.4.585'. [ 334.467629][ T9604] can: request_module (can-proto-0) failed. [ 337.577959][ T5855] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5 [ 337.988265][ T9679] ecryptfs_parse_packet_length: Error parsing packet length [ 338.053228][ T9679] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22] [ 338.446973][ T9694] nbd: must specify an index to disconnect [ 338.673240][ T9694] FAULT_INJECTION: forcing a failure. [ 338.673240][ T9694] name failslab, interval 1, probability 0, space 0, times 0 [ 338.784992][ T9694] CPU: 0 UID: 0 PID: 9694 Comm: syz.5.602 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 338.785048][ T9694] Tainted: [U]=USER [ 338.785060][ T9694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 338.785079][ T9694] Call Trace: [ 338.785090][ T9694] [ 338.785102][ T9694] dump_stack_lvl+0x16c/0x1f0 [ 338.785158][ T9694] should_fail_ex+0x512/0x640 [ 338.785207][ T9694] ? fs_reclaim_acquire+0xae/0x150 [ 338.785250][ T9694] should_failslab+0xc2/0x120 [ 338.785282][ T9694] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 338.785336][ T9694] ? __kernfs_new_node+0xd2/0x8e0 [ 338.785387][ T9694] __kernfs_new_node+0xd2/0x8e0 [ 338.785440][ T9694] ? __pfx___kernfs_new_node+0x10/0x10 [ 338.785497][ T9694] ? find_held_lock+0x2b/0x80 [ 338.785535][ T9694] ? kernfs_root+0xee/0x2a0 [ 338.785588][ T9694] kernfs_new_node+0x13c/0x1e0 [ 338.785649][ T9694] kernfs_create_link+0xcc/0x240 [ 338.785690][ T9694] sysfs_do_create_link_sd+0x90/0x140 [ 338.785750][ T9694] sysfs_create_link+0x61/0xc0 [ 338.785796][ T9694] __add_disk+0x61e/0xf00 [ 338.785850][ T9694] add_disk_fwnode+0x13f/0x5d0 [ 338.785902][ T9694] loop_add+0x911/0xb70 [ 338.785939][ T9694] ? do_vfs_ioctl+0x523/0x1a60 [ 338.785984][ T9694] ? __pfx_loop_add+0x10/0x10 [ 338.786017][ T9694] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 338.786089][ T9694] ? find_held_lock+0x2b/0x80 [ 338.786131][ T9694] loop_control_ioctl+0x13e/0x630 [ 338.786172][ T9694] ? __pfx_loop_control_ioctl+0x10/0x10 [ 338.786220][ T9694] ? __pfx_loop_control_ioctl+0x10/0x10 [ 338.786262][ T9694] __x64_sys_ioctl+0x18e/0x210 [ 338.786306][ T9694] do_syscall_64+0xcd/0x490 [ 338.786360][ T9694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.786394][ T9694] RIP: 0033:0x7f08c0d8e929 [ 338.786421][ T9694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.786454][ T9694] RSP: 002b:00007f08c1cda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 338.786486][ T9694] RAX: ffffffffffffffda RBX: 00007f08c0fb5fa0 RCX: 00007f08c0d8e929 [ 338.786509][ T9694] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 338.786530][ T9694] RBP: 00007f08c0e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 338.786552][ T9694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.786572][ T9694] R13: 0000000000000000 R14: 00007f08c0fb5fa0 R15: 00007ffd34c5e308 [ 338.786616][ T9694] [ 340.389605][ T9725] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 341.360821][ T9735] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 342.147479][ T9755] ubi: mtd0 is already attached to ubi0 [ 343.017893][ T9780] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 343.258672][ T9784] netlink: 16 bytes leftover after parsing attributes in process `syz.4.620'. [ 343.363115][ T9786] netlink: 342 bytes leftover after parsing attributes in process `syz.4.620'. [ 343.414766][ T9787] netlink: 16 bytes leftover after parsing attributes in process `syz.4.620'. [ 343.442349][ T9793] netlink: 342 bytes leftover after parsing attributes in process `syz.4.620'. [ 346.416588][ T9857] FAULT_INJECTION: forcing a failure. [ 346.416588][ T9857] name failslab, interval 1, probability 0, space 0, times 0 [ 346.442136][ T9857] CPU: 1 UID: 0 PID: 9857 Comm: syz.5.633 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 346.442193][ T9857] Tainted: [U]=USER [ 346.442206][ T9857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 346.442226][ T9857] Call Trace: [ 346.442237][ T9857] [ 346.442250][ T9857] dump_stack_lvl+0x16c/0x1f0 [ 346.442307][ T9857] should_fail_ex+0x512/0x640 [ 346.442356][ T9857] ? __kmalloc_noprof+0xbf/0x510 [ 346.442409][ T9857] ? lsm_blob_alloc+0x68/0x90 [ 346.442462][ T9857] should_failslab+0xc2/0x120 [ 346.442493][ T9857] __kmalloc_noprof+0xd2/0x510 [ 346.442553][ T9857] lsm_blob_alloc+0x68/0x90 [ 346.442603][ T9857] security_sk_alloc+0x30/0x270 [ 346.442640][ T9857] sk_prot_alloc+0xfb/0x2a0 [ 346.442677][ T9857] sk_alloc+0x36/0xc20 [ 346.442722][ T9857] inet6_create+0x381/0x1300 [ 346.442777][ T9857] ? inet6_create+0x7f/0x1300 [ 346.442836][ T9857] __sock_create+0x338/0x8d0 [ 346.442882][ T9857] smc_create_clcsk+0x37/0xd0 [ 346.442924][ T9857] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 346.442979][ T9857] inet6_create+0xb30/0x1300 [ 346.443035][ T9857] ? inet6_create+0x7f/0x1300 [ 346.443092][ T9857] __sock_create+0x338/0x8d0 [ 346.443145][ T9857] __sys_socket+0x14d/0x260 [ 346.443185][ T9857] ? __pfx___sys_socket+0x10/0x10 [ 346.443224][ T9857] ? xfd_validate_state+0x61/0x180 [ 346.443268][ T9857] ? __pfx_do_writev+0x10/0x10 [ 346.443322][ T9857] __x64_sys_socket+0x72/0xb0 [ 346.443359][ T9857] ? lockdep_hardirqs_on+0x7c/0x110 [ 346.443407][ T9857] do_syscall_64+0xcd/0x490 [ 346.443460][ T9857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.443494][ T9857] RIP: 0033:0x7f08c0d8e929 [ 346.443520][ T9857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 346.443553][ T9857] RSP: 002b:00007f08c1cda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 346.443585][ T9857] RAX: ffffffffffffffda RBX: 00007f08c0fb5fa0 RCX: 00007f08c0d8e929 [ 346.443608][ T9857] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 346.443629][ T9857] RBP: 00007f08c0e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 346.443649][ T9857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.443669][ T9857] R13: 0000000000000000 R14: 00007f08c0fb5fa0 R15: 00007ffd34c5e308 [ 346.443712][ T9857] [ 348.379287][ T9877] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(170995760.538980913.913336608), cmd(13) [ 350.873881][ T9921] synth uevent: /devices/platform/mac802154_hwsim/ieee802154/phy0/net/wpan0: unknown uevent action string [ 350.909920][ T9921] net wpan0: uevent: failed to send synthetic uevent: -22 [ 351.239564][ T9929] FAULT_INJECTION: forcing a failure. [ 351.239564][ T9929] name fail_futex, interval 1, probability 0, space 0, times 0 [ 351.518316][ T9929] CPU: 1 UID: 0 PID: 9929 Comm: syz.0.648 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 351.518373][ T9929] Tainted: [U]=USER [ 351.518385][ T9929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 351.518406][ T9929] Call Trace: [ 351.518417][ T9929] [ 351.518430][ T9929] dump_stack_lvl+0x16c/0x1f0 [ 351.518486][ T9929] should_fail_ex+0x512/0x640 [ 351.518544][ T9929] get_futex_key+0x1d0/0x1540 [ 351.518591][ T9929] ? __pfx_get_futex_key+0x10/0x10 [ 351.518631][ T9929] ? mremap_userfaultfd_complete+0x106/0x170 [ 351.518676][ T9929] ? __futex_hash.constprop.0+0x1e9/0x440 [ 351.518729][ T9929] futex_wake+0xe7/0x4e0 [ 351.518783][ T9929] ? __pfx_futex_wake+0x10/0x10 [ 351.518838][ T9929] ? __lock_acquire+0x622/0x1c90 [ 351.518897][ T9929] do_futex+0x1e3/0x350 [ 351.518939][ T9929] ? __pfx_do_futex+0x10/0x10 [ 351.518984][ T9929] ? find_held_lock+0x2b/0x80 [ 351.519025][ T9929] __x64_sys_futex+0x1e0/0x4c0 [ 351.519071][ T9929] ? __fget_files+0x20e/0x3c0 [ 351.519115][ T9929] ? __fget_files+0x20e/0x3c0 [ 351.519162][ T9929] ? __pfx___x64_sys_futex+0x10/0x10 [ 351.519216][ T9929] ? fdget_raw+0x14a/0x1d0 [ 351.519272][ T9929] do_syscall_64+0xcd/0x490 [ 351.519328][ T9929] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.519363][ T9929] RIP: 0033:0x7f885eb8e929 [ 351.519391][ T9929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.519424][ T9929] RSP: 002b:00007f885f93d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 351.519456][ T9929] RAX: ffffffffffffffda RBX: 00007f885edb5fa8 RCX: 00007f885eb8e929 [ 351.519479][ T9929] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f885edb5fac [ 351.519501][ T9929] RBP: 00007f885edb5fa0 R08: 00007f885f93e000 R09: 0000000000000000 [ 351.519522][ T9929] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f885edb5fac [ 351.519545][ T9929] R13: 0000000000000000 R14: 00007ffdb0c87050 R15: 00007ffdb0c87138 [ 351.519589][ T9929] [ 351.954161][ T9938] netlink: zone id is out of range [ 351.976093][ T9938] netlink: zone id is out of range [ 352.015307][ T9938] netlink: get zone limit has 4 unknown bytes [ 352.814711][ T9947] ubi: mtd0 is already attached to ubi0 [ 353.553493][ T9961] ubi: mtd0 is already attached to ubi0 [ 354.129188][ T9968] random: crng reseeded on system resumption [ 355.247625][ T9991] netlink: 4 bytes leftover after parsing attributes in process `syz.5.658'. [ 355.782215][T10003] binder: 10002:10003 unknown command 0 [ 355.811437][T10003] binder: 10002:10003 ioctl c0306201 2000000000c0 returned -22 [ 356.469641][T10019] ubi: mtd0 is already attached to ubi0 [ 358.529975][ T30] audit: type=1800 audit(6046924032.476:9): pid=10038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.668" name="dbroot" dev="configfs" ino=25412 res=0 errno=0 [ 359.481351][T10046] netlink: 350 bytes leftover after parsing attributes in process `syz.1.672'. [ 359.912445][T10042] netlink: 'syz.4.670': attribute type 2 has an invalid length. [ 359.973650][T10042] netlink: 8 bytes leftover after parsing attributes in process `syz.4.670'. [ 360.584470][T10061] ------------[ cut here ]------------ [ 360.590006][T10061] ODEBUG: free active (active state 0) object: ffff888079e61318 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 360.686369][T10061] WARNING: CPU: 1 PID: 10061 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0 [ 360.696137][T10061] Modules linked in: [ 360.700082][T10061] CPU: 1 UID: 0 PID: 10061 Comm: syz.0.674 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 360.712453][T10061] Tainted: [U]=USER [ 360.716313][T10061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 360.726767][T10061] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 360.732688][T10061] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 40 81 15 8c 4c 89 e6 48 c7 c7 c0 75 15 8c e8 bf 68 9c fc 90 <0f> 0b 90 90 58 83 05 56 89 cb 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 360.752463][T10061] RSP: 0018:ffffc90003247768 EFLAGS: 00010286 [ 360.758590][T10061] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817aa128 [ 360.766850][T10061] RDX: ffff88801fb65a00 RSI: ffffffff817aa135 RDI: 0000000000000001 [ 360.774935][T10061] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 360.783595][T10061] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8c157c60 [ 360.791683][T10061] R13: ffffffff8bafe840 R14: ffffffff8a8f9f70 R15: ffffc90003247868 [ 360.799717][T10061] FS: 0000000000000000(0000) GS:ffff888124823000(0000) knlGS:0000000000000000 [ 360.809156][T10061] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 360.816260][T10061] CR2: 0000001b2ed0cff8 CR3: 000000003231a000 CR4: 00000000003526f0 [ 360.824536][T10061] Call Trace: [ 360.827841][T10061] [ 360.830817][T10061] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 360.836395][T10061] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 360.842300][T10061] debug_check_no_obj_freed+0x4b7/0x600 [ 360.847892][T10061] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 360.854051][T10061] ? rcu_is_watching+0x12/0xc0 [ 360.858867][T10061] ? kmem_cache_free+0x2d1/0x4d0 [ 360.863901][T10061] kfree+0x28f/0x4d0 [ 360.867845][T10061] ? hci_release_dev+0x4d8/0x600 [ 360.872969][T10061] hci_release_dev+0x4d8/0x600 [ 360.877791][T10061] ? __pfx_hci_release_dev+0x10/0x10 [ 360.883187][T10061] ? rcu_is_watching+0x12/0xc0 [ 360.888001][T10061] ? kfree+0x24f/0x4d0 [ 360.892176][T10061] bt_host_release+0x6a/0xb0 [ 360.896815][T10061] ? __pfx_bt_host_release+0x10/0x10 [ 360.902218][T10061] device_release+0xa4/0x240 [ 360.906856][T10061] kobject_put+0x1e7/0x5a0 [ 360.911782][T10061] ? __pfx_vhci_release+0x10/0x10 [ 360.916881][T10061] put_device+0x1f/0x30 [ 360.921086][T10061] vhci_release+0x81/0xf0 [ 360.925700][T10061] __fput+0x402/0xb70 [ 360.929726][T10061] task_work_run+0x14d/0x240 [ 360.934483][T10061] ? __pfx_task_work_run+0x10/0x10 [ 360.939664][T10061] do_exit+0x86c/0x2bd0 [ 360.943939][T10061] ? __pfx_do_exit+0x10/0x10 [ 360.948565][T10061] ? do_raw_spin_lock+0x12c/0x2b0 [ 360.953701][T10061] ? find_held_lock+0x2b/0x80 [ 360.958408][T10061] do_group_exit+0xd3/0x2a0 [ 360.962977][T10061] get_signal+0x2673/0x26d0 [ 360.967510][T10061] ? lockdep_hardirqs_on+0x7c/0x110 [ 360.972774][T10061] ? __pfx_get_signal+0x10/0x10 [ 360.977738][T10061] ? cap_validate_magic+0x22/0x200 [ 360.982987][T10061] ? __get_user_nocheck_8+0x20/0x20 [ 360.988221][T10061] arch_do_signal_or_restart+0x8f/0x790 [ 360.993819][T10061] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 361.000016][T10061] exit_to_user_mode_loop+0x84/0x110 [ 361.005362][T10061] do_syscall_64+0x3f6/0x490 [ 361.009990][T10061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.016237][T10061] RIP: 0033:0x7f885eb8e929 [ 361.020671][T10061] Code: Unable to access opcode bytes at 0x7f885eb8e8ff. [ 361.027940][T10061] RSP: 002b:00007f885f91c038 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 361.036487][T10061] RAX: fffffffffffffff2 RBX: 00007f885edb6080 RCX: 00007f885eb8e929 [ 361.044529][T10061] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000000 [ 361.052583][T10061] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 361.060612][T10061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 361.068644][T10061] R13: 0000000000000001 R14: 00007f885edb6080 R15: 00007ffdb0c87138 [ 361.076702][T10061] [ 361.079743][T10061] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 361.087133][T10061] CPU: 1 UID: 0 PID: 10061 Comm: syz.0.674 Tainted: G U 6.16.0-rc5-syzkaller #0 PREEMPT(full) [ 361.098964][T10061] Tainted: [U]=USER [ 361.102869][T10061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 361.112951][T10061] Call Trace: [ 361.116255][T10061] [ 361.119222][T10061] dump_stack_lvl+0x3d/0x1f0 [ 361.123855][T10061] panic+0x71c/0x800 [ 361.127790][T10061] ? __pfx_panic+0x10/0x10 [ 361.132250][T10061] ? show_trace_log_lvl+0x29b/0x3e0 [ 361.137526][T10061] ? check_panic_on_warn+0x1f/0xb0 [ 361.142694][T10061] ? debug_print_object+0x1a2/0x2b0 [ 361.147931][T10061] check_panic_on_warn+0xab/0xb0 [ 361.152937][T10061] __warn+0xf6/0x3c0 [ 361.156880][T10061] ? debug_print_object+0x1a2/0x2b0 [ 361.162118][T10061] report_bug+0x3c3/0x580 [ 361.166496][T10061] ? debug_print_object+0x1a2/0x2b0 [ 361.171730][T10061] handle_bug+0x184/0x210 [ 361.176093][T10061] exc_invalid_op+0x17/0x50 [ 361.180632][T10061] asm_exc_invalid_op+0x1a/0x20 [ 361.185518][T10061] RIP: 0010:debug_print_object+0x1a2/0x2b0 [ 361.191360][T10061] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd 40 81 15 8c 4c 89 e6 48 c7 c7 c0 75 15 8c e8 bf 68 9c fc 90 <0f> 0b 90 90 58 83 05 56 89 cb 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d [ 361.211093][T10061] RSP: 0018:ffffc90003247768 EFLAGS: 00010286 [ 361.217205][T10061] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817aa128 [ 361.225209][T10061] RDX: ffff88801fb65a00 RSI: ffffffff817aa135 RDI: 0000000000000001 [ 361.233238][T10061] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 361.241244][T10061] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8c157c60 [ 361.249261][T10061] R13: ffffffff8bafe840 R14: ffffffff8a8f9f70 R15: ffffc90003247868 [ 361.257273][T10061] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 361.262916][T10061] ? __warn_printk+0x198/0x350 [ 361.267725][T10061] ? __warn_printk+0x1a5/0x350 [ 361.272540][T10061] ? debug_print_object+0x1a1/0x2b0 [ 361.277777][T10061] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 361.283284][T10061] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 361.289141][T10061] debug_check_no_obj_freed+0x4b7/0x600 [ 361.294742][T10061] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 361.300847][T10061] ? rcu_is_watching+0x12/0xc0 [ 361.305655][T10061] ? kmem_cache_free+0x2d1/0x4d0 [ 361.310646][T10061] kfree+0x28f/0x4d0 [ 361.314583][T10061] ? hci_release_dev+0x4d8/0x600 [ 361.319570][T10061] hci_release_dev+0x4d8/0x600 [ 361.324399][T10061] ? __pfx_hci_release_dev+0x10/0x10 [ 361.329774][T10061] ? rcu_is_watching+0x12/0xc0 [ 361.334576][T10061] ? kfree+0x24f/0x4d0 [ 361.338782][T10061] bt_host_release+0x6a/0xb0 [ 361.343429][T10061] ? __pfx_bt_host_release+0x10/0x10 [ 361.348768][T10061] device_release+0xa4/0x240 [ 361.353411][T10061] kobject_put+0x1e7/0x5a0 [ 361.357886][T10061] ? __pfx_vhci_release+0x10/0x10 [ 361.362977][T10061] put_device+0x1f/0x30 [ 361.367176][T10061] vhci_release+0x81/0xf0 [ 361.371558][T10061] __fput+0x402/0xb70 [ 361.375580][T10061] task_work_run+0x14d/0x240 [ 361.380221][T10061] ? __pfx_task_work_run+0x10/0x10 [ 361.385391][T10061] do_exit+0x86c/0x2bd0 [ 361.389607][T10061] ? __pfx_do_exit+0x10/0x10 [ 361.394246][T10061] ? do_raw_spin_lock+0x12c/0x2b0 [ 361.399322][T10061] ? find_held_lock+0x2b/0x80 [ 361.404046][T10061] do_group_exit+0xd3/0x2a0 [ 361.408612][T10061] get_signal+0x2673/0x26d0 [ 361.413161][T10061] ? lockdep_hardirqs_on+0x7c/0x110 [ 361.418421][T10061] ? __pfx_get_signal+0x10/0x10 [ 361.423326][T10061] ? cap_validate_magic+0x22/0x200 [ 361.428480][T10061] ? __get_user_nocheck_8+0x20/0x20 [ 361.433728][T10061] arch_do_signal_or_restart+0x8f/0x790 [ 361.439411][T10061] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 361.445623][T10061] exit_to_user_mode_loop+0x84/0x110 [ 361.450966][T10061] do_syscall_64+0x3f6/0x490 [ 361.455611][T10061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.461537][T10061] RIP: 0033:0x7f885eb8e929 [ 361.465981][T10061] Code: Unable to access opcode bytes at 0x7f885eb8e8ff. [ 361.473022][T10061] RSP: 002b:00007f885f91c038 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 361.481471][T10061] RAX: fffffffffffffff2 RBX: 00007f885edb6080 RCX: 00007f885eb8e929 [ 361.489468][T10061] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000000 [ 361.497906][T10061] RBP: 00007f885ec10b39 R08: 0000000000000000 R09: 0000000000000000 [ 361.505912][T10061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 361.513914][T10061] R13: 0000000000000001 R14: 00007f885edb6080 R15: 00007ffdb0c87138 [ 361.521935][T10061] [ 361.525297][T10061] Kernel Offset: disabled [ 361.529650][T10061] Rebooting in 86400 seconds..