last executing test programs: 18.834412158s ago: executing program 1 (id=1483): socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) pwrite64$auto(0xc8, 0x0, 0x10, 0x6) close_range$auto(0x0, 0x5, 0x0) socket(0x23, 0x80805, 0x0) r0 = epoll_create$auto(0x3e) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) socket(0x2, 0x80002, 0x73) r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x189002, 0x0) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(r1, 0x0, 0x24) write$auto(0x3, 0x0, 0x81) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r2, &(0x7f0000000080)="3731bf5b0001240000a6c7581afff6578d2f5f520f687f316ba709037c0ae2c7000000000000000000000000000000000000341fd403b8c94fc7487e48c9a5fbcd7f08781c0075685a8dcd402d83354afc6e4620da34c7740485d30a3d6676d9974475f0a114370225123540c46fcc67", 0x70) ioctl$auto_SG_GET_REQUEST_TABLE(r2, 0x2286, 0x0) 18.055905348s ago: executing program 1 (id=1488): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x8000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB="21020cbd70c031cd0ce401"], 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080) r1 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r1, 0x3a, 0x1, 0x0, 0x10000110) r2 = socket(0x10, 0x2, 0x4) bind$auto(r2, &(0x7f0000000040)=@llc={0x1a, 0x101, 0xc, 0x8, 0x5, 0x0, @broadcast}, 0x1f0f) r3 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/current_tracer\x00', 0x4a0882, 0x0) write$auto(r3, &(0x7f00000001c0)='-\x00', 0x3ff) pread64$auto(r0, 0x0, 0x100000000, 0x2000002) 17.653569535s ago: executing program 1 (id=1489): socket(0x11, 0x80003, 0x300) r0 = openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0) pread64$auto(r0, &(0x7f00000000c0)='/dev/nvme-fabrics\x00', 0x10, 0x9) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) (async) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) keyctl$auto(0x5, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async) mmap$auto(0x0, 0x400005, 0xdb, 0x16, 0x2, 0x8000) (async) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) madvise$auto(0xfff, 0x8, 0xab8) (async) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) (async) newfstatat$auto(r3, &(0x7f0000000240)='./file0\x00', &(0x7f0000000500)={0x5, 0xd4e, 0x4, 0xfb, 0x0, 0xee00, 0x0, 0x9, 0x8, 0x4, 0x0, 0xffffffff80000000, 0xfffffffffffffff4, 0x4, 0xfff, 0x7, 0x4}, 0x2) mmap$auto(0x8, 0x5, 0x3, 0xd95, r2, 0x8001) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), 0xffffffffffffffff) read$auto_check_wx_fops_(r4, &(0x7f0000000080)=""/228, 0xe4) mlockall$auto(0x5) (async) mmap$auto(0x2, 0x40000a, 0x2bb, 0x14, 0x2, 0x3) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv6/conf/sit0/ioam6_id\x00', 0x88800, 0x0) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r5) (async) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x40000, 0x0) (async) sendmsg$auto_NETDEV_CMD_DEV_GET(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000440), 0xc8643, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) setgroups$auto(0xe32, 0x0) 17.102341301s ago: executing program 1 (id=1491): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @multicast2}, 0x54) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x100800, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x8, 0x3, 0xeb1, r1, 0x100000000008000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/tty12\x00', 0x40000, 0x0) ioctl$auto(r4, 0x4b4b, r4) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x6fffffe) setresuid$auto(0x0, 0x8, 0x0) mmap$auto(0x2, 0x1400008, 0x5, 0x9b72, 0x2, 0x8000) r5 = socket(0x11, 0x3, 0x2) getsockopt$auto(r5, 0x107, 0x1, 0x0, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x0, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@NETDEV_A_DEV_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000010) setuid$auto(0x0) r6 = getegid() setregid$auto(r6, 0x0) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/wireless\x00', 0x1238c0, 0x0) pread64$auto(r7, 0x0, 0x1ff, 0xf4) write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x8090) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x1000000) prctl$auto(0x59616d61, 0x1, 0x0, 0x1, 0x0) 16.183007762s ago: executing program 1 (id=1493): mbind$auto(0x5, 0x8, 0x0, 0x0, 0x5, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x7, 0x0) mmap$auto(0x0, 0x104, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) fcntl$auto(0x8000000000000001, 0x26, 0x8) io_uring_setup$auto(0x1, 0x0) fcntl$auto(0x8000000000000001, 0x24, 0x4) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0x29, 0x2, 0x0) getsockopt$auto(r0, 0x119, 0x1, 0x0, 0x0) epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) r1 = socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r3 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r3, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$auto_VHOST_GET_BACKEND_FEATURES(r2, 0x8008af26, &(0x7f00000000c0)=0x5) setsockopt$auto_SO_TIMESTAMPING_NEW(r4, 0xfffffeff, 0x41, &(0x7f0000000080)='}\x00', 0x654000) swapon$auto(&(0x7f00000028c0)='/proc/bus/pci/00/01.3\x00\xd99\xf0q\xb8\xd7]\xa8\xac\x1f\r\x04\x00\x00\x00\x00\x00\x00\x00\xb8\x8a\x8a\x9f\xd9\x9f\x9e\xe3\xfc\\\x18\x9d\xa3x\x97U(\x99\xa8u\x96\xd0\xe6F\xcb\x1eH\xca\x8e)\xf4\xc0z\xbfo\xc4a`\x8fs\xf6\xb9\xe17\x89\x1b^} \xf1\x83\x12\xb5\xa7\xfef\xa6#{15\x89\xfa\xab9\xa3\xb1\x95\x8a\xc9:O\xb5\x89B3\x9aZ{@\xd3<\xe2VC\xe3\xce%\xde=\xd4R\x927\xd9l\x01\x8f2U', 0x3) 15.634951999s ago: executing program 1 (id=1496): mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) (async) read$auto(r0, 0x0, 0x1000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) io_uring_setup$auto(0x1, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bdi/43:416/min_bytes\x00', 0x28180, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0xa, 0x3, 0x2) (async) open(0x0, 0x161342, 0x100) (async) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) (async) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$auto(0x3, 0x8, r1) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) write$auto(0x3, 0x0, 0x100082) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) close_range$auto(0x2, 0x8, 0x0) symlink$auto(0x0, 0x0) (async) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) (async) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) 12.682324316s ago: executing program 2 (id=1501): openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0) mmap$auto(0x0, 0x4000002, 0x23, 0x20000008051, 0x3, 0x0) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0x22, 0x1, 0x100) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2008000) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r1, 0x7a4, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(0x0, 0x261c2, 0x84) gettimeofday$auto(&(0x7f0000000180)={0x100000000, 0x53}, &(0x7f00000001c0)={0xfff, 0x5}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(0xffffffffffffffff, 0x4b41, 0x7) 8.234147172s ago: executing program 2 (id=1511): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) pipe2$auto(0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x4) socket(0x10, 0x2, 0x14) socket(0x11, 0x80003, 0x300) socket(0x1d, 0x2, 0x7) socket(0x2, 0x1, 0x0) socket(0x2, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x50, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x7}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x40}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x4}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x2000000}]}, 0x50}, 0x1, 0x0, 0x0, 0x4048081}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/pressure/memory\x00', 0x48041, 0x0) socket(0x2, 0x1, 0x0) epoll_create$auto(0x4) 6.009173282s ago: executing program 2 (id=1516): unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xcf9, 0x9b72, 0xffffffffffffffff, 0x0) madvise$auto(0x0, 0x200007, 0x8) waitid$auto_P_PID(0x1, 0xffffffffffffffff, 0x0, 0x7, 0x0) ptrace$auto(0x10, 0x0, 0x4, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/veth1_vlan/stable_secret\x00', 0x20200, 0x0) preadv$auto(r0, &(0x7f0000000240)={0x0, 0x6}, 0xc, 0x9, 0x400) 5.212337661s ago: executing program 3 (id=1519): arch_prctl$auto_ARCH_SHSTK_LOCK(0x5003, 0x4) (async) mmap$auto(0x81, 0x2020007, 0x10, 0x19, 0xfffffffffffffffa, 0x7) (async) socket(0x10, 0x2, 0x0) socket(0xa, 0x5, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff) (async) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/jfs/loglevel\x00', 0x40080, 0x0) pread64$auto(r2, 0x0, 0x10001, 0x5) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40801}, 0x80) (async) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) (async) socket(0xa, 0x800, 0x73) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0xa, 0x3, 0x2f) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/fail_make_request/verbose\x00', 0x400800, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027b4839f3015398d3b61", @ANYRES32, @ANYRES32=r4, @ANYRES64], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r5 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 4.65436788s ago: executing program 3 (id=1523): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0xfffffffffffffffe) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3b, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/usb/usbmon/25t\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) ioctl$auto_SNDCTL_DSP_GETTRIGGER(r3, 0x80045010, &(0x7f0000004440)) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x6, 0xffff, 0xdf, 0x12, r0, 0x4) open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x12, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r2, 0xc, 0x1021, 0x0, 0x7) mmap$auto(0x2, 0x400008, 0xdf, 0xfffffffffffffff7, 0x2, 0x8040) r4 = geteuid() keyctl$auto(0x1e, r4, r4, 0x5, 0x8) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000001ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001a80)={0x0, 0x12c0}, 0x1, 0x0, 0x0, 0x40}, 0x200000c0) mmap$auto(0xfffffffd, 0x8, 0xdf, 0x9b7e, 0x2, 0x8003) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)=ANY=[@ANYBLOB="a4080000", @ANYRES16=r6, @ANYBLOB="01002dbd7000fedbdf257e00000078005c1ad8570b3ccab61efec8b5287da5740b3f69513508f66478fa0a946f3a3d7266145466ac77c9ad2c8c402858f8ff080284b3fc289fccf971e084e9b8aec596b715aec67311f3932a1379544aff4f5b730bb2779cc29c75729120f7b386758524dc5054da3799910165bc7a3a84c608006200fcffffff08000b0105000000060043010500000096cdf0793ddb41b576a649ee8878ef3b42b0b6c9fa38477a1e051fcaf2881f696e67b95570ba51c3dd2fe4db696194ee6937905469cb164c41cc83c132153d4eadc05d720b428dd26b817b361b51dfe87ce05a3e4ae8476950a5ab3cdfdfe327c203d16b66d40268652bc1c29fe9361e5f8dd3132cb248b00de02c281511b3894d285187ab"], 0xa4}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="d68c0bc1cacc6d3dc9da2319a972595b1c000000", @ANYRES16=r6, @ANYBLOB="00012bbd7000fedbdf25090000000400670004004a01"], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51) read$auto(r5, 0x0, 0xb4d3) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r8, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x34, r9, 0x789, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_OFFSET={0x8, 0x2, 0x5}, @ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x7c}, @ETHTOOL_A_MODULE_EEPROM_LENGTH={0x0, 0x3, 0x800}, @ETHTOOL_A_MODULE_EEPROM_I2C_ADDRESS={0x5, 0x6, 0x9}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x4004840) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x20000) unshare$auto(0x20000) 3.086339952s ago: executing program 0 (id=1524): mmap$auto(0x0, 0x20009, 0xfffffffffffffffd, 0xeb2, 0x8, 0x1008000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x3, 0xa) socket(0x11, 0x80003, 0x300) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/wakeup/wakeup8/active_count\x00', 0x8080, 0x0) io_uring_setup$auto(0x1, 0x0) r0 = inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(r0, 0x0, 0x1000e6e) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x1, 0x8fd6, 0x948b, 0x3, 0x3392, 0x4, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xffffffdffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x1000, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x9, 0x6, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) r4 = waitid$auto_P_PIDFD(0x3, r0, &(0x7f0000000340)={@_si_pad}, 0xd, &(0x7f00000003c0)={{0x1000, 0x7ce}, {0x10001}, 0x80000001, 0x9, 0x800, 0x0, 0x99e1, 0x9, 0x3ff, 0x9, 0xbb, 0x8205, 0x3, 0xe, 0x0, 0xe}) msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0x2, 0xffffffff, 0xfffffffffffffffe, 0x7fff, 0xfc2, 0x27f, @inferred=0xffffffffffffffff, @inferred=r4}) setresgid$auto(r5, 0xffffffffffffffff, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r3, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r3, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) 2.57242589s ago: executing program 2 (id=1525): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001480)='/proc/self/net/rxrpc/locals\x00', 0x40, 0x0) mmap$auto(0x200000000000, 0x2020009, 0x0, 0xeb1, r0, 0x40000008004) 2.379445738s ago: executing program 0 (id=1526): mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/raw\x00', 0x60080, 0x0) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)=':,\x00', &(0x7f0000000080)={0x400, 0x44, 0x10}, 0x18) fanotify_mark$auto(r0, 0x101, 0x918, r1, &(0x7f00000000c0)=':,\x00') 2.211042006s ago: executing program 0 (id=1527): symlink$auto(&(0x7f0000001500)='./file0/file0\x00', 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0x100000eb1, 0x40000000000a1, 0x7ffe) io_uring_setup$auto(0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = prctl$auto_PR_SET_MM_BRK(0xfffffff7, 0x7, 0x0, 0x2, 0x2) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), r0) socket(0x11, 0x3, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x7ffe) getrandom$auto(0x0, 0x6000000, 0x3) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x1, 0x9) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x29, 0x30, 0x0, 0x56b) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0xb4d3) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) madvise$auto(0x0, 0x2003f0, 0x18) mlock$auto(0x5, 0xffff) openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0xb01, 0x0) write$auto(r3, 0x0, 0x1) 2.1528375s ago: executing program 3 (id=1528): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x5, 0x7fc, 0x7fb, &(0x7f00000002c0)}) fadvise64$auto_POSIX_FADV_DONTNEED(r0, 0x7, 0x7f, 0x4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto_sg_fops_sg(0xffffffffffffffff, &(0x7f0000000080)="3731bf5b0001240000a6c7581afff6578d2f5f520f687f316ba709037c0ae2c7000000000000000000000000000000000000341fd403b8c94fc7487e48c9a5fbcd7f08781c0075685a8dcd402d83354afc6e4620da34c7740485d30a3d6676d9974475f0a114370225123540c46fcc67", 0x70) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c00000063ec", @ANYRES16=r2, @ANYRES8=r1, @ANYRES16=r2], 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x4044820) r3 = socket(0x25, 0x1, 0x0) connect$auto(r3, 0x0, 0x0) r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x48042, 0x0) ioctl$auto_SG_GET_REQUEST_TABLE(r4, 0x2286, 0x0) 2.08101225s ago: executing program 2 (id=1529): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x8000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB="21020cbd70c031cd0ce401"], 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080) r1 = socket(0xa, 0x3, 0x3a) setsockopt$auto(r1, 0x3a, 0x1, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\x87\x02\x1c\xfd\xac\xc7\xaa\n\xf9\x19\xc4#<^\x91\x1d\xda\xc4m\xef\xff(i\xc6@\x91_\vBj\x0eQ\xceV\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110) r2 = socket(0x10, 0x2, 0x4) bind$auto(r2, 0x0, 0x1f0f) r3 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, 0x0, 0x4a0882, 0x0) write$auto(r3, &(0x7f00000001c0)='-\x00', 0x3ff) pread64$auto(r0, 0x0, 0x100000000, 0x2000002) 1.38945922s ago: executing program 0 (id=1530): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x902, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x0) ioctl$auto_RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x3, 0x3, {0x5, 0x4, 0x9, 0x7, 0x5, 0x3a50, 0xfffffffd, 0xffff, 0xfd}}) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x2, 0x0) r1 = openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/nfcsim/nfc1/dropframe\x00', 0xc02, 0x0) bind$auto(r1, &(0x7f0000000100)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r2 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) newfstatat$auto(r2, 0x0, 0x0, 0xfffffffe) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r3, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 1.197274303s ago: executing program 0 (id=1531): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0xe43, 0xd, 0x10400, 0xe, 0x4, 0xc, r0, [0x0, 0x0, 0x20000000], {0x5, 0x5, 0x8c48, 0x2a3, 0x104, 0x7ffffffb, 0x100101, 0x6, 0x9340}, {0xf8, 0x1, 0x1001, 0x1, 0x9, 0x40, 0x76c5, 0x8000008, 0x9}}) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) setsockopt$auto(r0, 0x0, 0x3, 0x0, 0x1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x4063c2, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r3, 0x0, 0xc801) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000800)='./file0\x00', 0x26c1, 0x154) execve$auto(0x0, 0x0, &(0x7f0000000100)=0x0) semctl$auto_GETNCNT(0x80000000, 0xe, 0xe, 0x6) r4 = socket(0x10, 0x3, 0xa) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x24, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x5, 0xb}}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x81}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x10) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) prctl$auto(0x1d, 0xfffffffffffffffb, 0x8, 0x10000005, 0xfffffffffffffff9) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x74, 0x2000000000002) write$auto(0x0, &(0x7f00000000c0)='vlan1\x00', 0x10001) clock_nanosleep$auto(0x7, 0x7fff, &(0x7f0000000000)={0x5, 0x5}, 0x0) write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/mounts\x00', 0xaa080, 0x0) pread64$auto(r2, 0x0, 0x3c02, 0x100007) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) 1.020719013s ago: executing program 3 (id=1532): openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/driver/serial\x00', 0x43102, 0x0) r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, r0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x7, 0x0, 0x5, 0xffffffff, 0x2000000000210004, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x6, 0x8, 0x3, 0xa, 0x7, 0x0, 0x0, 0x10000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, [0x3, 0x0, 0x0, 0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x200000000000000, 0x0, 0x200]}, 0x1fe, 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000680), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(r1, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x24008040}, 0x4040) writev$auto(r1, &(0x7f0000000040)={0x0, 0x3}, 0x8) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) r3 = epoll_create$auto(0x3e) epoll_ctl$auto(r3, 0x1, r2, 0x0) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r4, &(0x7f0000000640)="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", 0x226) close_range$auto(0x2, 0x8, 0x0) socket(0x28, 0x3, 0x100) socket(0x27, 0x6, 0x8000000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = setfsuid$auto(0xee01) setresuid$auto(0x0, r5, 0x0) sendmsg$auto_MACSEC_CMD_DEL_TXSA(r3, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000900)=ANY=[@ANYRES16=0x0, @ANYRES32=r5], 0x5d4}, 0x1, 0x0, 0x0, 0x8080}, 0x4000) r6 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x204282, 0x0) setsockopt$auto_SO_DEVMEM_DONTNEED(r6, 0xdb, 0x50, 0x0, 0x9) clock_nanosleep$auto(0x400000, 0x1, 0x0, 0x0) r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r7, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r7, 0x1261, 0x0) 963.464948ms ago: executing program 2 (id=1533): unshare$auto(0x40000082) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC0D0c\x00', 0x204040, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/tty/ptyu6/power/runtime_status\x00', 0x371a40, 0x0) mmap$auto(0x2, 0x400007, 0xe895, 0x16, r0, 0x401) r1 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0) r2 = socket(0xa, 0x5, 0x84) getsockopt$auto(r2, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x49b) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x2, 0x7ffe) r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r5 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/dri/vkms/clients\x00', 0x60202, 0x0) getsockopt$auto_SO_PEERCRED(r1, 0x0, 0x11, &(0x7f00000000c0)='(k\')%!%)*]\\\x00', &(0x7f00000001c0)=0x6) read$auto_drm_debugfs_entry_fops_drm_debugfs(r5, &(0x7f0000000100)=""/153, 0x99) write$auto(r4, &(0x7f0000000400)='/dev/io1\x00', 0xffdd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="000326bd7000ff88000000"], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(0xffffffffffffffff, 0x107, 0x5, 0x0, 0xce24) connect$auto(0x3, 0x0, 0x55) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) openat$auto_mgts_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0xa001, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 507.778898ms ago: executing program 32 (id=1496): mmap$auto(0x0, 0x0, 0x7, 0xeb1, 0xffffffffffffffff, 0x100) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) (async) read$auto(r0, 0x0, 0x1000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) io_uring_setup$auto(0x1, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bdi/43:416/min_bytes\x00', 0x28180, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0xa, 0x3, 0x2) (async) open(0x0, 0x161342, 0x100) (async) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) (async) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$auto(0x3, 0x8, r1) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) write$auto(0x3, 0x0, 0x100082) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) close_range$auto(0x2, 0x8, 0x0) symlink$auto(0x0, 0x0) (async) socket(0x11, 0x3, 0x4007) socket(0x2, 0x1, 0x0) (async) getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) 492.087908ms ago: executing program 3 (id=1535): sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0xfffffffffffffdcd, &(0x7f0000001d80)={&(0x7f00000000c0)={0x14, 0x0, 0x1, 0x70bd37, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24008800}, 0x88800) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040004}, 0x800) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x309c02, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/9/smp_affinity\x00', 0x129542, 0x0) read$auto(0x3, 0x0, 0x7) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xc) socket(0x11, 0x3, 0x9) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0xc) write$auto(0xca, &(0x7f0000000040)='\x04>\x00\f\x00'/14, 0x7a) close_range$auto(0xffffffffffffffff, 0x8, 0x1) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008044}, 0x20008000) 152.714043ms ago: executing program 0 (id=1536): unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x60342, 0x0) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/msr/parameters/allow_writes\x00', 0x80302, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(r0, r0, 0x0, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x3) r1 = socket(0xa, 0x3, 0xff) connect$auto(r1, 0x0, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000040), 0x4100, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x2000, 0x0) ioctl$auto_MEMISLOCKED(r3, 0x80084d17, &(0x7f0000000080)={0xfffffffc, 0x4f90}) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_ADD(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x2c, r6, 0x1, 0x70bd2c, 0x25dfdc01, {}, [@SMC_PNETID_ETHNAME={0xc, 0x2, '+o*#\x90\x80\x8b\x00'}, @SMC_PNETID_NAME={0xb, 0x1, 'netdev\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40d0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) 0s ago: executing program 3 (id=1537): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101000, 0x0) (async) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101000, 0x0) prctl$auto(0x59616d61, 0x7, 0x1, 0x8, 0xfffffffffffffffb) (async) prctl$auto(0x59616d61, 0x7, 0x1, 0x8, 0xfffffffffffffffb) msgctl$auto_IPC_STAT(0x291, 0x2, &(0x7f0000000300)={{0x7, 0x0, 0x0, 0x7ffffffa, 0x7fff, 0x1}, &(0x7f0000000000)=0x6, 0x0, 0x7, 0xfe, 0x502, 0x3abb3b97, 0x10000, 0x200, 0x7, 0x2, @raw=0x3, @raw=0xc}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x3fd) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x3, 0x21) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) writev$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x1000}, 0x3) (async) writev$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x1000}, 0x3) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) (async) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f00000001c0)) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(0x3, 0x89e2, 0x91) ioctl$auto(0x3, 0x89e2, 0x91) (async) ioctl$auto(0x3, 0x89e2, 0x91) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0x0) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0xc0842, 0x95) (async) r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0xc0842, 0x95) sendfile$auto(r3, r3, 0x0, 0x1) madvise$auto(0x0, 0x2003f0, 0x15) (async) madvise$auto(0x0, 0x2003f0, 0x15) write$auto(0x3, 0x0, 0x100082) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram3\x00', 0x250102, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram3\x00', 0x250102, 0x0) cachestat$auto(r0, &(0x7f00000000c0)={0x401, 0x428a}, 0x0, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df"], 0x1ac}}, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300), 0xfc2}, 0x2, &(0x7f0000000040)="ee1a1c5b5453a1ed2a4c8b2083143f1090c9e5df75a49ba30211d5ff4e712758440bb83126bc32deed", 0x7, 0xa505}, 0xd1b2}, 0x7, 0x8) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0x3, 0x0, 0x80) (async) read$auto(0x3, 0x0, 0x80) capset$auto(0x0, 0x0) kernel console output (not intermixed with test programs): lsm_blob_alloc+0x68/0x90 [ 560.867550][T10592] security_prepare_creds+0x30/0x270 [ 560.867585][T10592] prepare_creds+0x56f/0x7d0 [ 560.867620][T10592] prepare_exec_creds+0x10/0x240 [ 560.867655][T10592] bprm_execve+0xc1/0x1640 [ 560.867678][T10592] ? insert_vm_struct+0x10c/0x2d0 [ 560.867709][T10592] ? __pfx_bprm_execve+0x10/0x10 [ 560.867732][T10592] ? copy_string_kernel+0x460/0x520 [ 560.867759][T10592] do_execveat_common.isra.0+0x4a5/0x610 [ 560.867788][T10592] __x64_sys_execve+0x8e/0xb0 [ 560.867814][T10592] do_syscall_64+0xcd/0x490 [ 560.867845][T10592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.867868][T10592] RIP: 0033:0x7fe79fb8ebe9 [ 560.867885][T10592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.867909][T10592] RSP: 002b:00007fe79ddd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 560.867932][T10592] RAX: ffffffffffffffda RBX: 00007fe79fdb6090 RCX: 00007fe79fb8ebe9 [ 560.867948][T10592] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 560.867962][T10592] RBP: 00007fe79fc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 560.867977][T10592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.867991][T10592] R13: 00007fe79fdb6128 R14: 00007fe79fdb6090 R15: 00007fffd0e89b18 [ 560.868014][T10592] [ 563.366090][T10627] __vm_enough_memory: pid: 10627, comm: syz.3.903, bytes: 4398046511104 not enough memory for the allocation [ 563.644904][T10633] [U] [ 563.647757][T10633] [U] [ 563.650473][T10633] [U] [ 563.653182][T10633] [U] [ 563.807195][T10633] [U] [ 563.809954][T10633] [U] [ 563.812664][T10633] [U] [ 563.815395][T10633] [U] [ 563.845419][T10641] ICMPv6: process `syz.3.906' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 563.910196][T10633] [U] [ 563.912960][T10633] [U] [ 563.915671][T10633] [U] [ 563.918379][T10633] [U] [ 564.022946][T10633] [U] [ 564.025712][T10633] [U] [ 564.028423][T10633] [U] [ 564.031139][T10633] [U] [ 564.143434][T10633] [U] [ 564.146195][T10633] [U] [ 564.148922][T10633] [U] [ 564.151628][T10633] [U] [ 564.233886][T10649] FAULT_INJECTION: forcing a failure. [ 564.233886][T10649] name failslab, interval 1, probability 0, space 0, times 0 [ 564.294063][T10633] [U] [ 564.296865][T10633] [U] [ 564.299585][T10633] [U] [ 564.302320][T10633] [U] [ 564.463180][T10633] [U] [ 564.493320][T10649] CPU: 1 UID: 0 PID: 10649 Comm: syz.2.909 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 564.493360][T10649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 564.493375][T10649] Call Trace: [ 564.493383][T10649] [ 564.493392][T10649] dump_stack_lvl+0x16c/0x1f0 [ 564.493425][T10649] should_fail_ex+0x512/0x640 [ 564.493459][T10649] should_failslab+0xc2/0x120 [ 564.493489][T10649] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 564.493515][T10649] ? rcu_is_watching+0x12/0xc0 [ 564.493538][T10649] ? seq_open+0x55/0x170 [ 564.493568][T10649] ? rcu_is_watching+0x12/0xc0 [ 564.493591][T10649] seq_open+0x55/0x170 [ 564.493622][T10649] proc_id_map_open+0x291/0x6b0 [ 564.493648][T10649] do_dentry_open+0x982/0x1530 [ 564.493675][T10649] ? __pfx_proc_projid_map_open+0x10/0x10 [ 564.493703][T10649] vfs_open+0x82/0x3f0 [ 564.493737][T10649] path_openat+0x1de4/0x2cb0 [ 564.493767][T10649] ? __pfx_path_openat+0x10/0x10 [ 564.493796][T10649] do_filp_open+0x20b/0x470 [ 564.493821][T10649] ? __pfx_do_filp_open+0x10/0x10 [ 564.493852][T10649] ? __pfx_kfree_link+0x10/0x10 [ 564.493899][T10649] ? alloc_fd+0x471/0x7d0 [ 564.493927][T10649] do_sys_openat2+0x11b/0x1d0 [ 564.493962][T10649] ? __pfx_do_sys_openat2+0x10/0x10 [ 564.494002][T10649] __x64_sys_openat+0x174/0x210 [ 564.494039][T10649] ? __pfx___x64_sys_openat+0x10/0x10 [ 564.494084][T10649] do_syscall_64+0xcd/0x490 [ 564.494115][T10649] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.494139][T10649] RIP: 0033:0x7fca7698ebe9 [ 564.494156][T10649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.494179][T10649] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 564.494201][T10649] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 564.494217][T10649] RDX: 0000000000000400 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 564.494231][T10649] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 564.494245][T10649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 564.494259][T10649] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 564.494280][T10649] [ 568.537861][T10695] FAULT_INJECTION: forcing a failure. [ 568.537861][T10695] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 568.776053][T10695] CPU: 1 UID: 0 PID: 10695 Comm: syz.2.917 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 568.776088][T10695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 568.776103][T10695] Call Trace: [ 568.776111][T10695] [ 568.776118][T10695] dump_stack_lvl+0x16c/0x1f0 [ 568.776152][T10695] should_fail_ex+0x512/0x640 [ 568.776188][T10695] _copy_from_user+0x2e/0xd0 [ 568.776226][T10695] do_pages_stat+0x24c/0x820 [ 568.776263][T10695] ? __pfx_do_pages_stat+0x10/0x10 [ 568.776308][T10695] ? do_raw_spin_unlock+0x172/0x230 [ 568.776347][T10695] kernel_move_pages+0xfa8/0x1380 [ 568.776384][T10695] ? do_futex+0x122/0x350 [ 568.776413][T10695] ? __pfx_do_futex+0x10/0x10 [ 568.776442][T10695] ? __pfx_kernel_move_pages+0x10/0x10 [ 568.776482][T10695] ? __pfx___might_resched+0x10/0x10 [ 568.776507][T10695] ? __x64_sys_futex+0x1e0/0x4c0 [ 568.776535][T10695] ? __x64_sys_futex+0x1e9/0x4c0 [ 568.776564][T10695] ? __x64_sys_openat+0x174/0x210 [ 568.776601][T10695] ? xfd_validate_state+0x61/0x180 [ 568.776638][T10695] __x64_sys_move_pages+0xe0/0x1c0 [ 568.776672][T10695] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 568.776709][T10695] do_syscall_64+0xcd/0x490 [ 568.776740][T10695] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.776764][T10695] RIP: 0033:0x7fca7698ebe9 [ 568.776780][T10695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 568.776803][T10695] RSP: 002b:00007fca777de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 568.776824][T10695] RAX: ffffffffffffffda RBX: 00007fca76bb6180 RCX: 00007fca7698ebe9 [ 568.776839][T10695] RDX: 0000000000000000 RSI: 0000000000000f54 RDI: 0000000000000001 [ 568.776852][T10695] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 8000000000000000 [ 568.776866][T10695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.776879][T10695] R13: 00007fca76bb6218 R14: 00007fca76bb6180 R15: 00007fff6b06dc98 [ 568.776900][T10695] [ 569.400658][T10722] netlink: 338 bytes leftover after parsing attributes in process `syz.0.920'. [ 569.445792][T10722] netlink: 338 bytes leftover after parsing attributes in process `syz.0.920'. [ 570.377829][T10737] FAULT_INJECTION: forcing a failure. [ 570.377829][T10737] name fail_futex, interval 1, probability 0, space 0, times 0 [ 570.506910][T10737] CPU: 1 UID: 0 PID: 10737 Comm: syz.0.922 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 570.506945][T10737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 570.506960][T10737] Call Trace: [ 570.506967][T10737] [ 570.506975][T10737] dump_stack_lvl+0x16c/0x1f0 [ 570.507008][T10737] should_fail_ex+0x512/0x640 [ 570.507043][T10737] get_futex_key+0x1d0/0x1560 [ 570.507073][T10737] ? __pfx_get_futex_key+0x10/0x10 [ 570.507099][T10737] ? percpu_ref_put_many.constprop.0+0xc4/0x2a0 [ 570.507131][T10737] ? rcu_is_watching+0x12/0xc0 [ 570.507155][T10737] ? lock_release+0x201/0x2f0 [ 570.507187][T10737] futex_wait_setup+0x9d/0x550 [ 570.507226][T10737] __futex_wait+0x194/0x2f0 [ 570.507260][T10737] ? __pfx___futex_wait+0x10/0x10 [ 570.507296][T10737] ? __pfx_futex_wake_mark+0x10/0x10 [ 570.507333][T10737] ? lock_release+0x201/0x2f0 [ 570.507363][T10737] ? futex_private_hash_put+0x11c/0x300 [ 570.507407][T10737] futex_wait+0xe8/0x380 [ 570.507440][T10737] ? __pfx_futex_wait+0x10/0x10 [ 570.507478][T10737] ? css_rstat_updated+0x1c2/0x510 [ 570.507503][T10737] do_futex+0x229/0x350 [ 570.507531][T10737] ? __pfx_do_futex+0x10/0x10 [ 570.507559][T10737] ? handle_mm_fault+0x2ab/0xd10 [ 570.507581][T10737] ? rcu_is_watching+0x12/0xc0 [ 570.507605][T10737] __x64_sys_futex+0x1e0/0x4c0 [ 570.507635][T10737] ? lock_release+0x201/0x2f0 [ 570.507663][T10737] ? __pfx___x64_sys_futex+0x10/0x10 [ 570.507698][T10737] do_syscall_64+0xcd/0x490 [ 570.507728][T10737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.507752][T10737] RIP: 0033:0x7fd0f8f8ebe9 [ 570.507769][T10737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.507792][T10737] RSP: 002b:00007fd0f9d8a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 570.507814][T10737] RAX: ffffffffffffffda RBX: 00007fd0f91b6458 RCX: 00007fd0f8f8ebe9 [ 570.507829][T10737] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd0f91b6458 [ 570.507843][T10737] RBP: 00007fd0f91b6450 R08: 0000000000000000 R09: 0000000000000000 [ 570.507857][T10737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 570.507870][T10737] R13: 00007fd0f91b64e8 R14: 00007ffe9dabb880 R15: 00007ffe9dabb968 [ 570.507892][T10737] [ 572.510844][T10723] ima: policy update failed [ 572.519781][ T30] audit: type=1802 audit(1755502817.324:12): pid=10723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.921" res=0 errno=0 [ 573.086869][T10780] netlink: 338 bytes leftover after parsing attributes in process `syz.3.931'. [ 573.117993][T10793] random: crng reseeded on system resumption [ 573.178802][T10780] bridge0: port 3(hsr0) entered disabled state [ 573.185182][T10780] bridge0: port 2(bridge_slave_1) entered disabled state [ 573.192547][T10780] bridge0: port 1(bridge_slave_0) entered disabled state [ 573.337800][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.344926][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 573.918402][T10814] netlink: 8 bytes leftover after parsing attributes in process `syz.3.939'. [ 574.599414][T10834] netlink: 28 bytes leftover after parsing attributes in process `syz.1.943'. [ 574.762545][T10836] zswap: compressor not available [ 574.803719][T10845] FAULT_INJECTION: forcing a failure. [ 574.803719][T10845] name failslab, interval 1, probability 0, space 0, times 0 [ 574.984169][T10845] CPU: 1 UID: 0 PID: 10845 Comm: syz.2.946 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 574.984206][T10845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 574.984221][T10845] Call Trace: [ 574.984229][T10845] [ 574.984237][T10845] dump_stack_lvl+0x16c/0x1f0 [ 574.984271][T10845] should_fail_ex+0x512/0x640 [ 574.984307][T10845] should_failslab+0xc2/0x120 [ 574.984340][T10845] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 574.984368][T10845] ? security_file_alloc+0x34/0x2b0 [ 574.984402][T10845] security_file_alloc+0x34/0x2b0 [ 574.984433][T10845] init_file+0x93/0x4c0 [ 574.984466][T10845] alloc_empty_file+0x73/0x1e0 [ 574.984501][T10845] alloc_file_pseudo+0x13a/0x230 [ 574.984537][T10845] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 574.984574][T10845] ? do_raw_spin_unlock+0x172/0x230 [ 574.984612][T10845] __anon_inode_getfile+0xe8/0x280 [ 574.984642][T10845] anon_inode_getfile_fmode+0x37/0xa0 [ 574.984672][T10845] do_signalfd4+0x206/0x430 [ 574.984701][T10845] __x64_sys_signalfd4+0x14b/0x1d0 [ 574.984731][T10845] ? __pfx___x64_sys_signalfd4+0x10/0x10 [ 574.984765][T10845] do_syscall_64+0xcd/0x490 [ 574.984796][T10845] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.984820][T10845] RIP: 0033:0x7fca7698ebe9 [ 574.984839][T10845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.984863][T10845] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000121 [ 574.984886][T10845] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 574.984902][T10845] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 00000000ffffffff [ 574.984917][T10845] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 574.984931][T10845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 574.984953][T10845] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 574.984976][T10845] [ 575.188062][ C1] vkms_vblank_simulate: vblank timer overrun [ 575.199178][T10852] netlink: 28 bytes leftover after parsing attributes in process `syz.1.948'. [ 575.226541][T10847] Process accounting paused [ 575.513806][T10852] team_slave_1 (unregistering): left promiscuous mode [ 575.550791][T10852] team_slave_1 (unregistering): left allmulticast mode [ 575.656883][T10852] team0: Port device team_slave_1 removed [ 575.674131][T10857] db_root: not a directory: /dev/audio1 [ 575.682876][ T30] audit: type=1800 audit(1755502820.474:13): pid=10857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.947" name="dbroot" dev="configfs" ino=35865 res=0 errno=0 [ 578.127041][T10902] netlink: 16 bytes leftover after parsing attributes in process `syz.1.958'. [ 578.205441][T10907] random: crng reseeded on system resumption [ 578.316238][T10901] FAULT_INJECTION: forcing a failure. [ 578.316238][T10901] name failslab, interval 1, probability 0, space 0, times 0 [ 578.494885][T10901] CPU: 1 UID: 0 PID: 10901 Comm: syz.1.958 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 578.494922][T10901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 578.494936][T10901] Call Trace: [ 578.494943][T10901] [ 578.494951][T10901] dump_stack_lvl+0x16c/0x1f0 [ 578.494985][T10901] should_fail_ex+0x512/0x640 [ 578.495019][T10901] should_failslab+0xc2/0x120 [ 578.495050][T10901] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 578.495077][T10901] ? __kernfs_new_node+0xd2/0x8e0 [ 578.495108][T10901] __kernfs_new_node+0xd2/0x8e0 [ 578.495136][T10901] ? __kernfs_new_node+0x2fd/0x8e0 [ 578.495164][T10901] ? rcu_is_watching+0x12/0xc0 [ 578.495188][T10901] ? __pfx___kernfs_new_node+0x10/0x10 [ 578.495216][T10901] ? __pfx___might_resched+0x10/0x10 [ 578.495238][T10901] ? __kernfs_new_node+0x5b2/0x8e0 [ 578.495267][T10901] ? rcu_is_watching+0x12/0xc0 [ 578.495290][T10901] ? kernfs_root+0xee/0x2a0 [ 578.495317][T10901] ? rcu_is_watching+0x12/0xc0 [ 578.495338][T10901] ? lock_release+0x201/0x2f0 [ 578.495370][T10901] kernfs_new_node+0x13c/0x1e0 [ 578.495405][T10901] __kernfs_create_file+0x53/0x350 [ 578.495429][T10901] sysfs_add_file_mode_ns+0x207/0x3c0 [ 578.495459][T10901] internal_create_group+0x578/0xf30 [ 578.495492][T10901] ? __pfx_internal_create_group+0x10/0x10 [ 578.495524][T10901] ? kernfs_create_link+0x1bd/0x240 [ 578.495548][T10901] internal_create_groups+0x9d/0x150 [ 578.495586][T10901] device_add+0xf30/0x1aa0 [ 578.495609][T10901] ? __pfx_device_add+0x10/0x10 [ 578.495628][T10901] ? lockdep_init_map_type+0x5c/0x280 [ 578.495660][T10901] ? __init_waitqueue_head+0xca/0x150 [ 578.495699][T10901] netdev_register_kobject+0x1a9/0x3d0 [ 578.495737][T10901] register_netdevice+0x13dc/0x2270 [ 578.495772][T10901] ? __pfx_register_netdevice+0x10/0x10 [ 578.495807][T10901] ? __pfx_loopback_net_init+0x10/0x10 [ 578.495834][T10901] register_netdev+0x34/0x50 [ 578.495865][T10901] loopback_net_init+0x7a/0x170 [ 578.495889][T10901] ? __pfx_loopback_net_init+0x10/0x10 [ 578.495913][T10901] ops_init+0x1df/0x5f0 [ 578.495944][T10901] setup_net+0x10f/0x380 [ 578.495973][T10901] ? lockdep_init_map_type+0x5c/0x280 [ 578.496004][T10901] ? __pfx_setup_net+0x10/0x10 [ 578.496035][T10901] ? debug_mutex_init+0x37/0x70 [ 578.496057][T10901] copy_net_ns+0x2a6/0x5f0 [ 578.496092][T10901] create_new_namespaces+0x3ea/0xa90 [ 578.496121][T10901] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 578.496148][T10901] ksys_unshare+0x45b/0xa40 [ 578.496180][T10901] ? __pfx_ksys_unshare+0x10/0x10 [ 578.496211][T10901] ? xfd_validate_state+0x61/0x180 [ 578.496249][T10901] __x64_sys_unshare+0x31/0x40 [ 578.496279][T10901] do_syscall_64+0xcd/0x490 [ 578.496310][T10901] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.496333][T10901] RIP: 0033:0x7fe79fb8ebe9 [ 578.496350][T10901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 578.496373][T10901] RSP: 002b:00007fe79ddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 578.496394][T10901] RAX: ffffffffffffffda RBX: 00007fe79fdb5fa0 RCX: 00007fe79fb8ebe9 [ 578.496409][T10901] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 578.496422][T10901] RBP: 00007fe79fc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 578.496436][T10901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 578.496448][T10901] R13: 00007fe79fdb6038 R14: 00007fe79fdb5fa0 R15: 00007fffd0e89b18 [ 578.496469][T10901] [ 578.843721][ C1] vkms_vblank_simulate: vblank timer overrun [ 580.896604][T10935] random: crng reseeded on system resumption [ 581.424313][T10942] [U] [ 581.427251][T10942] [U] [ 581.429976][T10942] [U] [ 581.432685][T10942] [U] [ 581.509937][T10942] [U] [ 581.512691][T10942] [U] [ 581.515401][T10942] [U] [ 581.518110][T10942] [U] [ 581.554412][T10942] [U] [ 581.557165][T10942] [U] [ 581.559871][T10942] [U] [ 581.562577][T10942] [U] [ 581.604990][T10942] [U] [ 581.607861][T10942] [U] [ 581.610570][T10942] [U] [ 581.613275][T10942] [U] [ 581.645401][T10942] [U] [ 581.648166][T10942] [U] [ 581.650879][T10942] [U] [ 581.653602][T10942] [U] [ 581.704986][T10942] [U] [ 581.707826][T10942] [U] [ 581.710538][T10942] [U] [ 581.713258][T10942] [U] [ 581.754271][T10942] [U] [ 581.757035][T10942] [U] [ 581.759748][T10942] [U] [ 581.762473][T10942] [U] [ 581.826699][T10942] [U] [ 581.829456][T10942] [U] [ 581.832166][T10942] [U] [ 581.834873][T10942] [U] [ 581.840497][T10936] Invalid ELF header magic: != ELF [ 581.878004][T10942] [U] [ 581.880771][T10942] [U] [ 581.883499][T10942] [U] [ 581.886242][T10942] [U] [ 581.926174][T10942] [U] [ 581.928954][T10942] [U] [ 581.931671][T10942] [U] [ 581.934381][T10942] [U] [ 581.977564][T10942] [U] [ 581.980328][T10942] [U] [ 581.983051][T10942] [U] [ 581.985778][T10942] [U] [ 582.034536][T10942] [U] [ 582.037298][T10942] [U] [ 582.040010][T10942] [U] [ 582.042716][T10942] [U] [ 582.073460][T10942] [U] [ 582.076212][T10942] [U] [ 582.078937][T10942] [U] [ 582.081651][T10942] [U] [ 582.127656][T10942] [U] [ 582.130412][T10942] [U] [ 582.133140][T10942] [U] [ 582.135945][T10942] [U] [ 582.171422][T10942] [U] [ 582.174174][T10942] [U] [ 582.176908][T10942] [U] [ 582.179618][T10942] [U] [ 582.256315][T10942] [U] [ 582.899732][T10966] FAULT_INJECTION: forcing a failure. [ 582.899732][T10966] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 583.025298][T10966] CPU: 1 UID: 0 PID: 10966 Comm: syz.1.970 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 583.025334][T10966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 583.025348][T10966] Call Trace: [ 583.025355][T10966] [ 583.025363][T10966] dump_stack_lvl+0x16c/0x1f0 [ 583.025397][T10966] should_fail_ex+0x512/0x640 [ 583.025431][T10966] _copy_from_user+0x2e/0xd0 [ 583.025469][T10966] move_addr_to_kernel+0x65/0x170 [ 583.025493][T10966] __sys_sendto+0x1be/0x520 [ 583.025519][T10966] ? __pfx___sys_sendto+0x10/0x10 [ 583.025556][T10966] ? ksys_write+0x1ac/0x250 [ 583.025583][T10966] ? __pfx_ksys_write+0x10/0x10 [ 583.025611][T10966] __x64_sys_sendto+0xe0/0x1c0 [ 583.025637][T10966] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 583.025675][T10966] do_syscall_64+0xcd/0x490 [ 583.025706][T10966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.025729][T10966] RIP: 0033:0x7fe79fb8ebe9 [ 583.025745][T10966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 583.025767][T10966] RSP: 002b:00007fe79ddf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 583.025788][T10966] RAX: ffffffffffffffda RBX: 00007fe79fdb5fa0 RCX: 00007fe79fb8ebe9 [ 583.025803][T10966] RDX: 000000000000000b RSI: 0000000000000000 RDI: 0000000000000003 [ 583.025816][T10966] RBP: 00007fe79ddf6090 R08: 0000200000000000 R09: 000000000000001c [ 583.025830][T10966] R10: 0000000000000f1a R11: 0000000000000246 R12: 0000000000000001 [ 583.025844][T10966] R13: 00007fe79fdb6038 R14: 00007fe79fdb5fa0 R15: 00007fffd0e89b18 [ 583.025864][T10966] [ 583.196492][ C1] vkms_vblank_simulate: vblank timer overrun [ 584.051003][T10990] netlink: 28 bytes leftover after parsing attributes in process `syz.0.975'. [ 584.960388][T11004] delete_channel: no stack [ 585.369163][T11012] FAULT_INJECTION: forcing a failure. [ 585.369163][T11012] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 585.559157][T11012] CPU: 1 UID: 0 PID: 11012 Comm: syz.1.980 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 585.559192][T11012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 585.559206][T11012] Call Trace: [ 585.559214][T11012] [ 585.559225][T11012] dump_stack_lvl+0x16c/0x1f0 [ 585.559257][T11012] should_fail_ex+0x512/0x640 [ 585.559292][T11012] _copy_from_iter+0x29f/0x16f0 [ 585.559329][T11012] ? is_bpf_text_address+0x94/0x1a0 [ 585.559359][T11012] ? kernel_text_address+0x8d/0x100 [ 585.559380][T11012] ? __pfx__copy_from_iter+0x10/0x10 [ 585.559419][T11012] ? tomoyo_audit_inet_log+0x285/0x3a0 [ 585.559456][T11012] ? __pfx_tomoyo_audit_inet_log+0x10/0x10 [ 585.559490][T11012] ping_common_sendmsg+0xc4/0x2e0 [ 585.559527][T11012] ping_v4_sendmsg+0x19a/0x1a40 [ 585.559549][T11012] ? lock_release+0x201/0x2f0 [ 585.559579][T11012] ? __pfx_ping_v4_sendmsg+0x10/0x10 [ 585.559616][T11012] ? rcu_is_watching+0x12/0xc0 [ 585.559646][T11012] ? __pfx_ip4_datagram_release_cb+0x10/0x10 [ 585.559686][T11012] ? inet_autobind+0x145/0x1a0 [ 585.559720][T11012] ? inet_autobind+0x145/0x1a0 [ 585.559756][T11012] ? inet_autobind+0x145/0x1a0 [ 585.559788][T11012] ? __local_bh_enable_ip+0xa4/0x120 [ 585.559815][T11012] ? inet_autobind+0x14a/0x1a0 [ 585.559848][T11012] ? __pfx_ping_v4_sendmsg+0x10/0x10 [ 585.559886][T11012] inet_sendmsg+0x11c/0x140 [ 585.559907][T11012] __sys_sendto+0x43c/0x520 [ 585.559940][T11012] ? __pfx___sys_sendto+0x10/0x10 [ 585.559978][T11012] ? ksys_write+0x1ac/0x250 [ 585.560004][T11012] ? __pfx_ksys_write+0x10/0x10 [ 585.560032][T11012] __x64_sys_sendto+0xe0/0x1c0 [ 585.560057][T11012] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 585.560093][T11012] do_syscall_64+0xcd/0x490 [ 585.560124][T11012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.560148][T11012] RIP: 0033:0x7fe79fb8ebe9 [ 585.560165][T11012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.560188][T11012] RSP: 002b:00007fe79ddf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 585.560210][T11012] RAX: ffffffffffffffda RBX: 00007fe79fdb5fa0 RCX: 00007fe79fb8ebe9 [ 585.560226][T11012] RDX: 000000000000000b RSI: 0000000000000000 RDI: 0000000000000003 [ 585.560239][T11012] RBP: 00007fe79ddf6090 R08: 0000200000000000 R09: 000000000000001c [ 585.560253][T11012] R10: 0000000000000f1a R11: 0000000000000246 R12: 0000000000000001 [ 585.560267][T11012] R13: 00007fe79fdb6038 R14: 00007fe79fdb5fa0 R15: 00007fffd0e89b18 [ 585.560288][T11012] [ 585.813109][ C1] vkms_vblank_simulate: vblank timer overrun [ 588.020283][T11052] FAULT_INJECTION: forcing a failure. [ 588.020283][T11052] name failslab, interval 1, probability 0, space 0, times 0 [ 588.086555][T11052] CPU: 1 UID: 0 PID: 11052 Comm: syz.2.991 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 588.086590][T11052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 588.086630][T11052] Call Trace: [ 588.086637][T11052] [ 588.086646][T11052] dump_stack_lvl+0x16c/0x1f0 [ 588.086678][T11052] should_fail_ex+0x512/0x640 [ 588.086713][T11052] should_failslab+0xc2/0x120 [ 588.086744][T11052] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 588.086771][T11052] ? vsnprintf+0x318/0x1160 [ 588.086797][T11052] ? dst_alloc+0x99/0x1a0 [ 588.086824][T11052] dst_alloc+0x99/0x1a0 [ 588.086847][T11052] ? rcu_is_watching+0x12/0xc0 [ 588.086872][T11052] rt_dst_alloc+0x35/0x3a0 [ 588.086905][T11052] ip_route_output_key_hash_rcu+0x880/0x28c0 [ 588.086933][T11052] ip_route_output_key_hash+0x137/0x2e0 [ 588.086957][T11052] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 588.086985][T11052] ? rcu_is_watching+0x12/0xc0 [ 588.087010][T11052] ip_route_output_flow+0x27/0x150 [ 588.087034][T11052] ping_v4_sendmsg+0xa70/0x1a40 [ 588.087059][T11052] ? __pfx_ping_v4_sendmsg+0x10/0x10 [ 588.087096][T11052] ? rcu_is_watching+0x12/0xc0 [ 588.087125][T11052] ? __pfx_ip4_datagram_release_cb+0x10/0x10 [ 588.087166][T11052] ? inet_autobind+0x145/0x1a0 [ 588.087200][T11052] ? inet_autobind+0x145/0x1a0 [ 588.087236][T11052] ? inet_autobind+0x145/0x1a0 [ 588.087268][T11052] ? __local_bh_enable_ip+0xa4/0x120 [ 588.087296][T11052] ? inet_autobind+0x14a/0x1a0 [ 588.087329][T11052] ? __pfx_ping_v4_sendmsg+0x10/0x10 [ 588.087366][T11052] inet_sendmsg+0x11c/0x140 [ 588.087388][T11052] __sys_sendto+0x43c/0x520 [ 588.087415][T11052] ? __pfx___sys_sendto+0x10/0x10 [ 588.087452][T11052] ? ksys_write+0x1ac/0x250 [ 588.087478][T11052] ? __pfx_ksys_write+0x10/0x10 [ 588.087506][T11052] __x64_sys_sendto+0xe0/0x1c0 [ 588.087532][T11052] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 588.087569][T11052] do_syscall_64+0xcd/0x490 [ 588.087605][T11052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.087629][T11052] RIP: 0033:0x7fca7698ebe9 [ 588.087646][T11052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 588.087668][T11052] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 588.087690][T11052] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 588.087705][T11052] RDX: 000000000000000b RSI: 0000000000000000 RDI: 0000000000000003 [ 588.087718][T11052] RBP: 00007fca77820090 R08: 0000200000000000 R09: 000000000000001c [ 588.087732][T11052] R10: 0000000000000f1a R11: 0000000000000246 R12: 0000000000000001 [ 588.087745][T11052] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 588.087766][T11052] [ 588.361438][ C1] vkms_vblank_simulate: vblank timer overrun [ 588.674427][T11050] netlink: 4 bytes leftover after parsing attributes in process `syz.0.990'. [ 591.214997][T11099] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 591.280897][T11099] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 591.421989][T11099] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 591.525548][T11099] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 591.619771][T11099] CPU0 is offline. [ 592.894314][T11132] [U]  [ 592.897155][T11132] [U] [ 592.899869][T11132] [U] [ 592.902576][T11132] [U] [ 593.004949][T11132] [U] [ 593.007709][T11132] [U] [ 593.010420][T11132] [U] [ 593.013129][T11132] [U] [ 593.092962][T11132] [U] [ 593.095737][T11132] [U] [ 593.098452][T11132] [U] [ 593.101165][T11132] [U] [ 593.159728][T11132] [U] [ 593.162496][T11132] [U] [ 593.165225][T11132] [U] [ 593.167931][T11132] [U] [ 593.215593][T11132] [U] [ 593.257721][ T5184] Bluetooth: hci1: command 0x0c1a tx timeout [ 593.263840][ T5910] Bluetooth: hci0: command 0x0c1a tx timeout [ 593.494256][ T5910] Bluetooth: hci2: command 0x0c1a tx timeout [ 593.574210][ T5910] Bluetooth: hci3: command 0x0c1a tx timeout [ 593.821904][T11141] [U] [ 593.824773][T11141] [U] [ 593.827504][T11141] [U] [ 593.830339][T11141] [U] [ 593.868849][T11141] [U] [ 593.871603][T11141] [U] [ 593.874314][T11141] [U] [ 593.877039][T11141] [U] [ 593.926794][T11141] [U] [ 593.929552][T11141] [U] [ 593.932267][T11141] [U] [ 593.934978][T11141] [U] [ 593.986895][T11141] [U] [ 593.989690][T11141] [U] [ 593.992397][T11141] [U] [ 593.995106][T11141] [U] [ 594.034306][T11141] [U] [ 594.037055][T11141] [U] [ 594.039762][T11141] [U] [ 594.042468][T11141] [U] [ 594.096394][T11141] [U] [ 594.099158][T11141] [U] [ 594.101868][T11141] [U] [ 594.104576][T11141] [U] [ 594.139375][T11141] [U] [ 594.142140][T11141] [U] [ 594.144848][T11141] [U] [ 594.147556][T11141] [U] [ 594.194394][T11141] [U] [ 594.197149][T11141] [U] [ 594.199859][T11141] [U] [ 594.202564][T11141] [U] [ 594.236505][T11141] [U] [ 594.239261][T11141] [U] [ 594.241972][T11141] [U] [ 594.244676][T11141] [U] [ 594.307883][T11141] [U] [ 594.310630][T11141] [U] [ 594.313338][T11141] [U] [ 594.316045][T11141] [U] [ 594.355998][T11141] [U] [ 594.358751][T11141] [U] [ 594.361457][T11141] [U] [ 594.364163][T11141] [U] [ 594.398885][T11141] [U] [ 594.401641][T11141] [U] [ 594.404350][T11141] [U] [ 594.407059][T11141] [U] [ 594.455979][T11141] [U] [ 594.458748][T11141] [U] [ 594.461459][T11141] [U] [ 594.464167][T11141] [U] [ 594.502041][T11141] [U] [ 594.504799][T11141] [U] [ 594.507508][T11141] [U] [ 594.510219][T11141] [U] [ 594.586067][T11141] [U] [ 596.361415][T11183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1019'. [ 597.998039][T11189] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1018'. [ 599.078682][T11211] bond0: option fail_over_mac: invalid value () [ 600.665462][T11227] sd 0:0:1:0: PR command failed: 1026 [ 600.691827][T11227] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 600.748057][T11227] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 600.850912][T11227] sg_write: process 1131 (syz.0.1026) changed security contexts after opening file descriptor, this is not allowed. [ 600.920329][T11239] sd 0:0:1:0: PR command failed: 1026 [ 600.948122][ T30] audit: type=1800 audit(1755502845.754:14): pid=11243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1027" name="version" dev="configfs" ino=37832 res=0 errno=0 [ 600.969703][T11239] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 600.994937][T11239] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 601.442071][T11247] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1028'. [ 601.661329][T11247] ipvlan0: entered allmulticast mode [ 601.706926][T11247] veth0_vlan: entered allmulticast mode [ 602.073914][T11252] sg_write: data in/out 2359516/158 bytes for SCSI command 0x0-- guessing data in; [ 602.073914][T11252] program syz.0.1030 not setting count and/or reply_len properly [ 604.736973][T11270] sd 0:0:1:0: PR command failed: 1026 [ 604.742429][T11270] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 605.904377][T11270] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 607.748219][T11287] syz_tun: tun_chr_ioctl cmd 1074812117 [ 607.877509][T11300] random: crng reseeded on system resumption [ 610.434620][T11183] Process accounting resumed [ 610.703901][T11318] queue_state_write: operation too long [ 610.745324][T11318] queue_state_write: use 'run', 'start' or 'kick' [ 610.829125][T11321] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 611.085279][T11330] cifs: Unknown parameter '1{}"{;' [ 611.641005][ T5910] Bluetooth: hci0: unexpected event 0x01 length: 5 > 1 [ 612.815219][T11352] sg_write: data in/out 2359516/158 bytes for SCSI command 0x0-- guessing data in; [ 612.815219][T11352] program syz.0.1047 not setting count and/or reply_len properly [ 613.413256][T11362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1050'. [ 613.450068][T11365] random: crng reseeded on system resumption [ 613.483972][T11366] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1050'. [ 613.889601][T11372] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 613.947895][T11372] CPU: 1 UID: 0 PID: 11372 Comm: syz.2.1054 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 613.947932][T11372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 613.947947][T11372] Call Trace: [ 613.947954][T11372] [ 613.947963][T11372] dump_stack_lvl+0x16c/0x1f0 [ 613.947996][T11372] sysfs_warn_dup+0x7f/0xa0 [ 613.948025][T11372] sysfs_do_create_link_sd+0x124/0x140 [ 613.948055][T11372] sysfs_create_link+0x61/0xc0 [ 613.948083][T11372] device_add+0x62c/0x1aa0 [ 613.948105][T11372] ? __pfx_device_add+0x10/0x10 [ 613.948125][T11372] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 613.948161][T11372] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 613.948190][T11372] wiphy_register+0x1df4/0x29f0 [ 613.948228][T11372] ? netdev_run_todo+0x864/0x1320 [ 613.948261][T11372] ? __dev_printk+0x210/0x270 [ 613.948291][T11372] ? __pfx_wiphy_register+0x10/0x10 [ 613.948326][T11372] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 613.948359][T11372] ieee80211_register_hw+0x24a9/0x4060 [ 613.948396][T11372] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 613.948430][T11372] ? net_generic+0xea/0x2a0 [ 613.948462][T11372] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 613.948497][T11372] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 613.948527][T11372] ? __hrtimer_setup+0x176/0x280 [ 613.948564][T11372] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 613.948594][T11372] ? trace_kmalloc+0x2b/0xd0 [ 613.948626][T11372] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 613.948656][T11372] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 613.948679][T11372] ? hwsim_new_radio_nl+0xa0e/0x12c0 [ 613.948702][T11372] ? __asan_memcpy+0x3c/0x60 [ 613.948726][T11372] hwsim_new_radio_nl+0xb51/0x12c0 [ 613.948750][T11372] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 613.948776][T11372] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 613.948816][T11372] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 613.948857][T11372] genl_family_rcv_msg_doit+0x206/0x2f0 [ 613.948894][T11372] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 613.948940][T11372] ? bpf_lsm_capable+0x9/0x10 [ 613.948962][T11372] ? security_capable+0x7e/0x260 [ 613.948985][T11372] ? ns_capable+0xd7/0x110 [ 613.949010][T11372] genl_rcv_msg+0x55c/0x800 [ 613.949047][T11372] ? __pfx_genl_rcv_msg+0x10/0x10 [ 613.949082][T11372] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 613.949109][T11372] netlink_rcv_skb+0x155/0x420 [ 613.949140][T11372] ? __pfx_genl_rcv_msg+0x10/0x10 [ 613.949176][T11372] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 613.949219][T11372] ? netlink_deliver_tap+0x1ae/0xd30 [ 613.949250][T11372] genl_rcv+0x28/0x40 [ 613.949282][T11372] netlink_unicast+0x5aa/0x870 [ 613.949314][T11372] ? __pfx_netlink_unicast+0x10/0x10 [ 613.949345][T11372] ? __pfx___might_resched+0x10/0x10 [ 613.949374][T11372] netlink_sendmsg+0x8d1/0xdd0 [ 613.949407][T11372] ? __pfx_netlink_sendmsg+0x10/0x10 [ 613.949439][T11372] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 613.949469][T11372] ____sys_sendmsg+0xa95/0xc70 [ 613.949506][T11372] ? copy_msghdr_from_user+0x10a/0x160 [ 613.949535][T11372] ? __pfx_____sys_sendmsg+0x10/0x10 [ 613.949575][T11372] ? __pfx_futex_wake_mark+0x10/0x10 [ 613.949611][T11372] ___sys_sendmsg+0x134/0x1d0 [ 613.949641][T11372] ? __pfx____sys_sendmsg+0x10/0x10 [ 613.949670][T11372] ? futex_private_hash_put+0x11c/0x300 [ 613.949702][T11372] ? rcu_is_watching+0x12/0xc0 [ 613.949735][T11372] __sys_sendmsg+0x16d/0x220 [ 613.949764][T11372] ? __pfx___sys_sendmsg+0x10/0x10 [ 613.949793][T11372] ? __x64_sys_futex+0x1e0/0x4c0 [ 613.949831][T11372] do_syscall_64+0xcd/0x490 [ 613.949862][T11372] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 613.949886][T11372] RIP: 0033:0x7fca7698ebe9 [ 613.949904][T11372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 613.949928][T11372] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 613.949950][T11372] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 613.949966][T11372] RDX: 0000000004000800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 613.949980][T11372] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 613.949994][T11372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 613.950008][T11372] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 613.950031][T11372] [ 614.497892][ T30] audit: type=1800 audit(1755502859.304:15): pid=11380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1055" name="members" dev="configfs" ino=39147 res=0 errno=0 [ 615.124558][T11393] sg_write: data in/out 2359516/158 bytes for SCSI command 0x0-- guessing data in; [ 615.124558][T11393] program syz.0.1058 not setting count and/or reply_len properly [ 615.499041][ T30] audit: type=1804 audit(1755502860.304:16): pid=11398 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1060" name="/newroot/240/file0" dev="tmpfs" ino=1270 res=1 errno=0 [ 615.619525][ T30] audit: type=1800 audit(1755502860.354:17): pid=11398 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1060" name="file0" dev="tmpfs" ino=1270 res=0 errno=0 [ 618.388889][T11448] [U] [ 618.391739][T11448] [U] [ 618.394452][T11448] [U] [ 618.397160][T11448] [U] [ 618.446588][T11448] [U] [ 618.449350][T11448] [U] [ 618.452065][T11448] [U] [ 618.454795][T11448] [U] [ 618.506757][T11448] [U] [ 618.509571][T11448] [U] [ 618.512281][T11448] [U] [ 618.514990][T11448] [U] [ 618.553945][T11448] [U] [ 618.556710][T11448] [U] [ 618.559427][T11448] [U] [ 618.562145][T11448] [U] [ 618.613396][T11448] [U] [ 618.616149][T11448] [U] [ 618.618858][T11448] [U] [ 618.621610][T11448] [U] [ 618.666964][T11448] [U] [ 618.669721][T11448] [U] [ 618.672440][T11448] [U] [ 618.675171][T11448] [U] [ 618.727251][T11448] [U] [ 618.730019][T11448] [U] [ 618.732734][T11448] [U] [ 618.735450][T11448] [U] [ 618.792775][T11448] [U] [ 618.795529][T11448] [U] [ 618.798243][T11448] [U] [ 618.801056][T11448] [U] [ 618.849172][T11448] [U] [ 618.851936][T11448] [U] [ 618.854649][T11448] [U] [ 618.857358][T11448] [U] [ 618.908047][T11448] [U] [ 618.910862][T11448] [U] [ 618.913573][T11448] [U] [ 618.916279][T11448] [U] [ 618.976992][T11448] [U] [ 618.979752][T11448] [U] [ 618.982486][T11448] [U] [ 618.985203][T11448] [U] [ 619.034945][T11448] [U] [ 619.037704][T11448] [U] [ 619.040414][T11448] [U] [ 619.043127][T11448] [U] [ 619.077268][T11448] [U] [ 619.080020][T11448] [U] [ 619.082738][T11448] [U] [ 619.085473][T11448] [U] [ 619.153567][T11448] [U] [ 619.156331][T11448] [U] [ 619.159046][T11448] [U] [ 619.161762][T11448] [U] [ 619.235044][T11448] [U] [ 619.743055][T11481] sctp: [Deprecated]: syz.0.1083 (pid 11481) Use of struct sctp_assoc_value in delayed_ack socket option. [ 619.743055][T11481] Use struct sctp_sack_info instead [ 620.078001][T11489] netlink: 'syz.0.1084': attribute type 4 has an invalid length. [ 620.427990][ C1] vcan0: j1939_tp_rxtimer: 0xffff888022fef400: rx timeout, send abort [ 620.936271][ C1] vcan0: j1939_tp_rxtimer: 0xffff888022fef400: abort rx timeout. Force session deactivation [ 621.000989][T11513] zswap: compressor not available [ 621.075820][T11533] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1090'. [ 621.137475][T11536] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1090'. [ 621.407627][T11513] zswap: compressor not available [ 621.493503][T11541] FAULT_INJECTION: forcing a failure. [ 621.493503][T11541] name failslab, interval 1, probability 0, space 0, times 0 [ 621.667928][T11541] CPU: 1 UID: 0 PID: 11541 Comm: syz.2.1091 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 621.667964][T11541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 621.667978][T11541] Call Trace: [ 621.667985][T11541] [ 621.667993][T11541] dump_stack_lvl+0x16c/0x1f0 [ 621.668027][T11541] should_fail_ex+0x512/0x640 [ 621.668063][T11541] ? cache_create_net+0x9d/0x220 [ 621.668087][T11541] should_failslab+0xc2/0x120 [ 621.668118][T11541] __kmalloc_noprof+0xd2/0x510 [ 621.668147][T11541] cache_create_net+0x9d/0x220 [ 621.668172][T11541] ? __pfx_nfsd_net_init+0x10/0x10 [ 621.668199][T11541] nfsd_export_init+0x62/0x250 [ 621.668225][T11541] ? __pfx_nfsd_net_init+0x10/0x10 [ 621.668250][T11541] nfsd_net_init+0x33/0x3d0 [ 621.668275][T11541] ? __pfx_nfsd_net_init+0x10/0x10 [ 621.668301][T11541] ops_init+0x1df/0x5f0 [ 621.668333][T11541] setup_net+0x10f/0x380 [ 621.668363][T11541] ? lockdep_init_map_type+0x5c/0x280 [ 621.668395][T11541] ? __pfx_setup_net+0x10/0x10 [ 621.668427][T11541] ? debug_mutex_init+0x37/0x70 [ 621.668450][T11541] copy_net_ns+0x2a6/0x5f0 [ 621.668492][T11541] create_new_namespaces+0x3ea/0xa90 [ 621.668522][T11541] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 621.668551][T11541] ksys_unshare+0x45b/0xa40 [ 621.668583][T11541] ? __pfx_ksys_unshare+0x10/0x10 [ 621.668615][T11541] ? xfd_validate_state+0x61/0x180 [ 621.668653][T11541] __x64_sys_unshare+0x31/0x40 [ 621.668684][T11541] do_syscall_64+0xcd/0x490 [ 621.668715][T11541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.668739][T11541] RIP: 0033:0x7fca7698ebe9 [ 621.668756][T11541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 621.668779][T11541] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 621.668801][T11541] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 621.668816][T11541] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 621.668831][T11541] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 621.668845][T11541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 621.668859][T11541] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 621.668880][T11541] [ 623.262224][T11586] program syz.2.1097 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 624.781246][T11615] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1103'. [ 627.453949][T11680] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1115'. [ 629.186466][T11713] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1122'. [ 629.485275][T11712] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1122'. [ 630.342511][T11717] ALSA: mixer_oss: invalid OSS volume '' [ 630.426468][ T30] audit: type=1804 audit(1755502875.234:18): pid=11731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1125" name="/newroot/sys/kernel/debug/tracing/set_event" dev="tracefs" ino=29 res=1 errno=0 [ 630.703257][T11736] bridge0: port 5(macvlan0) entered blocking state [ 630.743720][T11736] bridge0: port 5(macvlan0) entered disabled state [ 630.764236][T11736] macvlan0: entered allmulticast mode [ 630.791039][T11736] veth1_vlan: entered allmulticast mode [ 630.820419][T11739] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1126'. [ 630.865328][T11736] macvlan0: entered promiscuous mode [ 630.914341][T11736] bridge0: port 5(macvlan0) entered blocking state [ 630.920988][T11736] bridge0: port 5(macvlan0) entered forwarding state [ 631.059926][T11715] random: crng reseeded on system resumption [ 631.722043][T11763] FAULT_INJECTION: forcing a failure. [ 631.722043][T11763] name failslab, interval 1, probability 0, space 0, times 0 [ 631.954232][T11773] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1132'. [ 632.019812][T11763] CPU: 1 UID: 0 PID: 11763 Comm: syz.3.1130 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 632.019847][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 632.019862][T11763] Call Trace: [ 632.019869][T11763] [ 632.019878][T11763] dump_stack_lvl+0x16c/0x1f0 [ 632.019911][T11763] should_fail_ex+0x512/0x640 [ 632.019947][T11763] should_failslab+0xc2/0x120 [ 632.019979][T11763] __kmalloc_cache_noprof+0x6a/0x3e0 [ 632.020003][T11763] ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xa4/0x580 [ 632.020046][T11763] snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xa4/0x580 [ 632.020088][T11763] snd_mixer_oss_get_recsrc1_sw+0x104/0x1d0 [ 632.020124][T11763] ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10 [ 632.020160][T11763] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 632.020194][T11763] snd_mixer_oss_ioctl1+0x18f4/0x1e40 [ 632.020226][T11763] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 632.020263][T11763] ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10 [ 632.020300][T11763] ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10 [ 632.020332][T11763] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 632.020371][T11763] ? rcu_is_watching+0x12/0xc0 [ 632.020404][T11763] ? __fget_files+0x204/0x3c0 [ 632.020427][T11763] ? hook_file_ioctl_common+0x145/0x410 [ 632.020462][T11763] ? __fget_files+0x20e/0x3c0 [ 632.020490][T11763] snd_mixer_oss_ioctl+0x3e/0x50 [ 632.020521][T11763] ? __pfx_snd_mixer_oss_ioctl+0x10/0x10 [ 632.020554][T11763] __x64_sys_ioctl+0x18b/0x210 [ 632.020591][T11763] do_syscall_64+0xcd/0x490 [ 632.020622][T11763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.020646][T11763] RIP: 0033:0x7fe1ec78ebe9 [ 632.020663][T11763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.020687][T11763] RSP: 002b:00007fe1ea9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 632.020710][T11763] RAX: ffffffffffffffda RBX: 00007fe1ec9b6090 RCX: 00007fe1ec78ebe9 [ 632.020726][T11763] RDX: 00002000000012c0 RSI: 0000000080044dff RDI: 0000000000000009 [ 632.020740][T11763] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 632.020754][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 632.020768][T11763] R13: 00007fe1ec9b6128 R14: 00007fe1ec9b6090 R15: 00007ffc0950d708 [ 632.020790][T11763] [ 632.254035][ C1] vkms_vblank_simulate: vblank timer overrun [ 632.262660][T11763] FAULT_INJECTION: forcing a failure. [ 632.262660][T11763] name failslab, interval 1, probability 0, space 0, times 0 [ 632.275846][T11763] CPU: 1 UID: 0 PID: 11763 Comm: syz.3.1130 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 632.275882][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 632.275896][T11763] Call Trace: [ 632.275903][T11763] [ 632.275911][T11763] dump_stack_lvl+0x16c/0x1f0 [ 632.275944][T11763] should_fail_ex+0x512/0x640 [ 632.275980][T11763] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 632.276015][T11763] should_failslab+0xc2/0x120 [ 632.276047][T11763] __kmalloc_noprof+0xd2/0x510 [ 632.276078][T11763] tomoyo_realpath_from_path+0xc2/0x6e0 [ 632.276116][T11763] tomoyo_check_open_permission+0x2ab/0x3c0 [ 632.276145][T11763] ? init_file+0x93/0x4c0 [ 632.276177][T11763] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 632.276207][T11763] ? do_sys_openat2+0x11b/0x1d0 [ 632.276242][T11763] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.276269][T11763] ? rcu_is_watching+0x12/0xc0 [ 632.276301][T11763] ? do_raw_spin_lock+0x12c/0x2b0 [ 632.276338][T11763] ? path_get+0x61/0x80 [ 632.276376][T11763] ? rcu_is_watching+0x12/0xc0 [ 632.276401][T11763] tomoyo_file_open+0x6b/0x90 [ 632.276422][T11763] security_file_open+0x84/0x1e0 [ 632.276456][T11763] do_dentry_open+0x596/0x1530 [ 632.276487][T11763] vfs_open+0x82/0x3f0 [ 632.276523][T11763] path_openat+0x1de4/0x2cb0 [ 632.276554][T11763] ? __pfx_path_openat+0x10/0x10 [ 632.276585][T11763] do_filp_open+0x20b/0x470 [ 632.276612][T11763] ? __pfx_do_filp_open+0x10/0x10 [ 632.276649][T11763] ? alloc_fd+0x471/0x7d0 [ 632.276677][T11763] do_sys_openat2+0x11b/0x1d0 [ 632.276712][T11763] ? __pfx_do_sys_openat2+0x10/0x10 [ 632.276754][T11763] __x64_sys_openat+0x174/0x210 [ 632.276790][T11763] ? __pfx___x64_sys_openat+0x10/0x10 [ 632.276833][T11763] do_syscall_64+0xcd/0x490 [ 632.276865][T11763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 632.276888][T11763] RIP: 0033:0x7fe1ec78ebe9 [ 632.276907][T11763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 632.276931][T11763] RSP: 002b:00007fe1ea9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 632.276954][T11763] RAX: ffffffffffffffda RBX: 00007fe1ec9b6090 RCX: 00007fe1ec78ebe9 [ 632.276970][T11763] RDX: 0000000000100e42 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 632.276985][T11763] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 632.277000][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 632.277015][T11763] R13: 00007fe1ec9b6128 R14: 00007fe1ec9b6090 R15: 00007ffc0950d708 [ 632.277037][T11763] [ 632.277047][T11763] ERROR: Out of memory at tomoyo_realpath_from_path. [ 632.691036][T11778] Invalid ELF header magic: != ELF [ 632.825334][T11773] geneve1: entered promiscuous mode [ 632.830724][T11773] geneve1: entered allmulticast mode [ 633.002615][T11784] program syz.2.1134 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 633.054265][T11784] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 633.862567][T11800] vhci_hcd: invalid port number 23 [ 633.951157][T11800] FAULT_INJECTION: forcing a failure. [ 633.951157][T11800] name failslab, interval 1, probability 0, space 0, times 0 [ 634.063567][T11800] CPU: 1 UID: 0 PID: 11800 Comm: syz.3.1138 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 634.063604][T11800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 634.063619][T11800] Call Trace: [ 634.063626][T11800] [ 634.063635][T11800] dump_stack_lvl+0x16c/0x1f0 [ 634.063668][T11800] should_fail_ex+0x512/0x640 [ 634.063704][T11800] should_failslab+0xc2/0x120 [ 634.063737][T11800] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 634.063765][T11800] ? __kernfs_new_node+0xd2/0x8e0 [ 634.063797][T11800] __kernfs_new_node+0xd2/0x8e0 [ 634.063827][T11800] ? kernfs_add_one+0x37d/0x840 [ 634.063859][T11800] ? rcu_is_watching+0x12/0xc0 [ 634.063883][T11800] ? __pfx___kernfs_new_node+0x10/0x10 [ 634.063912][T11800] ? down_write+0x14d/0x200 [ 634.063946][T11800] ? rcu_is_watching+0x12/0xc0 [ 634.063969][T11800] ? kernfs_root+0xee/0x2a0 [ 634.063996][T11800] ? rcu_is_watching+0x12/0xc0 [ 634.064023][T11800] ? lock_release+0x201/0x2f0 [ 634.064055][T11800] kernfs_new_node+0x13c/0x1e0 [ 634.064089][T11800] ? net_ns_get_ownership+0xf8/0x1b0 [ 634.064122][T11800] kernfs_create_dir_ns+0x4c/0x1a0 [ 634.064158][T11800] internal_create_group+0x34d/0xf30 [ 634.064193][T11800] ? __pfx_internal_create_group+0x10/0x10 [ 634.064232][T11800] ? kernfs_create_link+0x1bd/0x240 [ 634.064257][T11800] internal_create_groups+0x9d/0x150 [ 634.064289][T11800] device_add+0xf30/0x1aa0 [ 634.064311][T11800] ? __pfx_device_add+0x10/0x10 [ 634.064331][T11800] ? lockdep_init_map_type+0x5c/0x280 [ 634.064364][T11800] ? __init_waitqueue_head+0xca/0x150 [ 634.064404][T11800] netdev_register_kobject+0x1a9/0x3d0 [ 634.064443][T11800] register_netdevice+0x13dc/0x2270 [ 634.064479][T11800] ? __pfx_register_netdevice+0x10/0x10 [ 634.064512][T11800] ? rcu_is_watching+0x12/0xc0 [ 634.064535][T11800] ? trace_kmalloc+0x2b/0xd0 [ 634.064567][T11800] ? __kmalloc_noprof+0x242/0x510 [ 634.064596][T11800] register_netdev+0x34/0x50 [ 634.064628][T11800] mkiss_open+0x4cd/0x9a0 [ 634.064651][T11800] ? __pfx_mkiss_open+0x10/0x10 [ 634.064673][T11800] tty_ldisc_open+0x9f/0x120 [ 634.064701][T11800] tty_set_ldisc+0x32b/0x780 [ 634.064731][T11800] tty_ioctl+0xc2e/0x1680 [ 634.064762][T11800] ? __pfx_tty_ioctl+0x10/0x10 [ 634.064795][T11800] ? lock_release+0x201/0x2f0 [ 634.064825][T11800] ? do_raw_spin_unlock+0x172/0x230 [ 634.064861][T11800] ? hook_file_ioctl_common+0x145/0x410 [ 634.064896][T11800] ? __x64_sys_openat+0x174/0x210 [ 634.064935][T11800] ? __pfx_tty_ioctl+0x10/0x10 [ 634.064966][T11800] __x64_sys_ioctl+0x18b/0x210 [ 634.065004][T11800] do_syscall_64+0xcd/0x490 [ 634.065035][T11800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 634.065059][T11800] RIP: 0033:0x7fe1ec78ebe9 [ 634.065076][T11800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 634.065101][T11800] RSP: 002b:00007fe1ea9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 634.065123][T11800] RAX: ffffffffffffffda RBX: 00007fe1ec9b5fa0 RCX: 00007fe1ec78ebe9 [ 634.065139][T11800] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000005 [ 634.065153][T11800] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 634.065168][T11800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 634.065182][T11800] R13: 00007fe1ec9b6038 R14: 00007fe1ec9b5fa0 R15: 00007ffc0950d708 [ 634.065204][T11800] [ 634.395358][ C1] vkms_vblank_simulate: vblank timer overrun [ 634.730834][ T5910] Bluetooth: hci1: unexpected event 0x35 length: 13 > 6 [ 634.818174][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.835113][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 634.921927][T11817] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 635.539393][T11800] Falling back ldisc for ttyS2. [ 635.733371][T11831] Invalid ELF header magic: != ELF [ 635.829160][T11831] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 636.037080][T11840] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1147'. [ 636.097946][T11840] team0: left allmulticast mode [ 636.122841][T11840] team_slave_0: left allmulticast mode [ 636.201099][T11840] team0: left promiscuous mode [ 636.224875][T11840] team_slave_0: left promiscuous mode [ 636.250546][T11840] bridge0: port 3(team0) entered disabled state [ 636.287520][T11840] bridge_slave_1: left allmulticast mode [ 636.308930][T11840] bridge_slave_1: left promiscuous mode [ 636.340665][T11840] bridge0: port 2(bridge_slave_1) entered disabled state [ 636.360180][T11851] [U] [ 636.363019][T11851] [U] [ 636.365732][T11851] [U] [ 636.368479][T11851] [U] [ 636.391972][T11851] [U] [ 636.394728][T11851] [U] [ 636.397440][T11851] [U] [ 636.400146][T11851] [U] [ 636.409813][T11840] bridge_slave_0: left allmulticast mode [ 636.423113][T11840] bridge_slave_0: left promiscuous mode [ 636.435613][T11851] [U] [ 636.438364][T11851] [U] [ 636.441081][T11851] [U] [ 636.443790][T11851] [U] [ 636.459559][T11840] bridge0: port 1(bridge_slave_0) entered disabled state [ 636.488576][T11851] [U] [ 636.491377][T11851] [U] [ 636.494091][T11851] [U] [ 636.496798][T11851] [U] [ 636.512997][T11855] FAULT_INJECTION: forcing a failure. [ 636.512997][T11855] name failslab, interval 1, probability 0, space 0, times 0 [ 636.527739][T11851] [U] [ 636.530482][T11851] [U] [ 636.533210][T11851] [U] [ 636.535915][T11851] [U] [ 636.539461][T11855] CPU: 1 UID: 0 PID: 11855 Comm: syz.1.1151 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 636.539493][T11855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 636.539507][T11855] Call Trace: [ 636.539514][T11855] [ 636.539523][T11855] dump_stack_lvl+0x16c/0x1f0 [ 636.539557][T11855] should_fail_ex+0x512/0x640 [ 636.539593][T11855] should_failslab+0xc2/0x120 [ 636.539624][T11855] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 636.539653][T11855] ? ext4_init_io_end+0x24/0x170 [ 636.539677][T11855] ext4_init_io_end+0x24/0x170 [ 636.539699][T11855] ext4_do_writepages+0xb06/0x3cf0 [ 636.539730][T11855] ? __rb_erase_color+0x581/0xf20 [ 636.539758][T11855] ? sched_clock+0x38/0x60 [ 636.539791][T11855] ? rcu_is_watching+0x12/0xc0 [ 636.539819][T11855] ? __pfx_ext4_do_writepages+0x10/0x10 [ 636.539849][T11855] ? finish_task_switch.isra.0+0x221/0xc10 [ 636.539876][T11855] ? lock_acquire+0x2cd/0x350 [ 636.539905][T11855] ? __pfx___might_resched+0x10/0x10 [ 636.539930][T11855] ? ext4_writepages+0x37a/0x7d0 [ 636.539967][T11855] ext4_writepages+0x37a/0x7d0 [ 636.539998][T11855] ? __pfx_ext4_writepages+0x10/0x10 [ 636.540034][T11855] ? rcu_is_watching+0x12/0xc0 [ 636.540067][T11855] ? lock_release+0x201/0x2f0 [ 636.540098][T11855] ? __pfx_ext4_writepages+0x10/0x10 [ 636.540130][T11855] do_writepages+0x277/0x600 [ 636.540155][T11855] ? __pfx_do_writepages+0x10/0x10 [ 636.540176][T11855] ? do_raw_spin_unlock+0x172/0x230 [ 636.540213][T11855] ? _raw_spin_unlock+0x28/0x50 [ 636.540239][T11855] filemap_fdatawrite_wbc+0x104/0x160 [ 636.540262][T11855] __filemap_fdatawrite_range+0xb9/0x100 [ 636.540292][T11855] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 636.540344][T11855] file_write_and_wait_range+0xca/0x140 [ 636.540375][T11855] ext4_sync_file+0x310/0xf10 [ 636.540403][T11855] ? __pfx___up_read+0x10/0x10 [ 636.540438][T11855] ? __pfx_ext4_sync_file+0x10/0x10 [ 636.540465][T11855] vfs_fsync_range+0x136/0x220 [ 636.540493][T11855] __do_sys_msync+0x3cb/0x5c0 [ 636.540523][T11855] do_syscall_64+0xcd/0x490 [ 636.540555][T11855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 636.540579][T11855] RIP: 0033:0x7fe79fb8ebe9 [ 636.540597][T11855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 636.540621][T11855] RSP: 002b:00007fe79ddf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 636.540643][T11855] RAX: ffffffffffffffda RBX: 00007fe79fdb5fa0 RCX: 00007fe79fb8ebe9 [ 636.540659][T11855] RDX: 0000000400000004 RSI: 0180000000000000 RDI: 000000001ffff000 [ 636.540674][T11855] RBP: 00007fe79fc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 636.540688][T11855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 636.540703][T11855] R13: 00007fe79fdb6038 R14: 00007fe79fdb5fa0 R15: 00007fffd0e89b18 [ 636.540725][T11855] [ 636.540963][T11851] [U] [ 636.823488][T11851] [U] [ 636.826197][T11851] [U] [ 636.828904][T11851] [U] [ 636.831684][ C1] vkms_vblank_simulate: vblank timer overrun [ 636.909553][T11851] [U] [ 636.912307][T11851] [U] [ 636.915015][T11851] [U] [ 636.917720][T11851] [U] [ 636.963663][T11851] [U] [ 636.966414][T11851] [U] [ 636.969125][T11851] [U] [ 636.971835][T11851] [U] [ 637.006641][T11851] [U] [ 637.009390][T11851] [U] [ 637.012097][T11851] [U] [ 637.014806][T11851] [U] [ 637.032965][T11855] FAULT_INJECTION: forcing a failure. [ 637.032965][T11855] name failslab, interval 1, probability 0, space 0, times 0 [ 637.074640][T11851] [U] [ 637.077397][T11851] [U] [ 637.080109][T11851] [U] [ 637.082847][T11851] [U] [ 637.087203][T11855] CPU: 1 UID: 0 PID: 11855 Comm: syz.1.1151 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 637.087238][T11855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 637.087254][T11855] Call Trace: [ 637.087261][T11855] [ 637.087268][T11855] dump_stack_lvl+0x16c/0x1f0 [ 637.087303][T11855] should_fail_ex+0x512/0x640 [ 637.087339][T11855] should_failslab+0xc2/0x120 [ 637.087371][T11855] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 637.087400][T11855] ? __d_alloc+0x32/0xae0 [ 637.087430][T11855] __d_alloc+0x32/0xae0 [ 637.087459][T11855] path_from_stashed+0x427/0x750 [ 637.087490][T11855] open_namespace+0x8d/0x190 [ 637.087515][T11855] ? __pfx_open_namespace+0x10/0x10 [ 637.087541][T11855] ? bpf_lsm_capable+0x9/0x10 [ 637.087565][T11855] open_related_ns+0x41/0x70 [ 637.087589][T11855] __tun_chr_ioctl+0x1fd1/0x48b0 [ 637.087610][T11855] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 637.087649][T11855] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 637.087687][T11855] ? rcu_is_watching+0x12/0xc0 [ 637.087712][T11855] ? hook_file_ioctl_common+0x145/0x410 [ 637.087747][T11855] ? __fget_files+0x20e/0x3c0 [ 637.087774][T11855] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 637.087795][T11855] __x64_sys_ioctl+0x18b/0x210 [ 637.087833][T11855] do_syscall_64+0xcd/0x490 [ 637.087864][T11855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.087888][T11855] RIP: 0033:0x7fe79fb8ebe9 [ 637.087905][T11855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 637.087939][T11855] RSP: 002b:00007fe79ddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 637.087962][T11855] RAX: ffffffffffffffda RBX: 00007fe79fdb5fa0 RCX: 00007fe79fb8ebe9 [ 637.087979][T11855] RDX: 0000000000005c8d RSI: 00000000000054e3 RDI: 00000000000000c8 [ 637.087994][T11855] RBP: 00007fe79fc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 637.088009][T11855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.088023][T11855] R13: 00007fe79fdb6038 R14: 00007fe79fdb5fa0 R15: 00007fffd0e89b18 [ 637.088045][T11855] [ 637.300098][ C1] vkms_vblank_simulate: vblank timer overrun [ 637.330471][T11851] [U] [ 637.396977][T11866] FAULT_INJECTION: forcing a failure. [ 637.396977][T11866] name failslab, interval 1, probability 0, space 0, times 0 [ 637.409731][T11866] CPU: 1 UID: 0 PID: 11866 Comm: syz.3.1154 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 637.409767][T11866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 637.409782][T11866] Call Trace: [ 637.409789][T11866] [ 637.409797][T11866] dump_stack_lvl+0x16c/0x1f0 [ 637.409830][T11866] should_fail_ex+0x512/0x640 [ 637.409865][T11866] ? tomoyo_init_log+0x1385/0x2140 [ 637.409903][T11866] should_failslab+0xc2/0x120 [ 637.409935][T11866] __kmalloc_noprof+0xd2/0x510 [ 637.409961][T11866] ? __pfx_from_kuid+0x10/0x10 [ 637.409997][T11866] ? tomoyo_get_attributes+0x2c3/0x5b0 [ 637.410023][T11866] tomoyo_init_log+0x1385/0x2140 [ 637.410062][T11866] ? __pfx_tomoyo_init_log+0x10/0x10 [ 637.410095][T11866] ? tomoyo_profile+0x47/0x60 [ 637.410114][T11866] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 637.410143][T11866] tomoyo_supervisor+0x302/0x13b0 [ 637.410167][T11866] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 637.410197][T11866] ? rcu_is_watching+0x12/0xc0 [ 637.410220][T11866] ? trace_kmalloc+0x2b/0xd0 [ 637.410254][T11866] ? tomoyo_check_acl+0x1f7/0x410 [ 637.410279][T11866] tomoyo_path_permission+0x270/0x3b0 [ 637.410307][T11866] tomoyo_path_perm+0x3d4/0x460 [ 637.410335][T11866] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 637.410369][T11866] ? do_raw_spin_lock+0x12c/0x2b0 [ 637.410412][T11866] ? __pfx_current_check_access_path+0x10/0x10 [ 637.410448][T11866] ? simple_lookup+0x105/0x1d0 [ 637.410472][T11866] ? lookup_one_qstr_excl+0xb3/0x250 [ 637.410511][T11866] tomoyo_path_symlink+0x97/0xe0 [ 637.410547][T11866] ? __pfx_tomoyo_path_symlink+0x10/0x10 [ 637.410589][T11866] security_path_symlink+0x152/0x2e0 [ 637.410617][T11866] do_symlinkat+0x10d/0x310 [ 637.410647][T11866] ? __pfx_do_symlinkat+0x10/0x10 [ 637.410676][T11866] ? getname_flags.part.0+0x1c5/0x550 [ 637.410712][T11866] ? do_execveat_common.isra.0+0x4c6/0x610 [ 637.410742][T11866] __x64_sys_symlinkat+0x93/0xc0 [ 637.410772][T11866] do_syscall_64+0xcd/0x490 [ 637.410804][T11866] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.410828][T11866] RIP: 0033:0x7fe1ec78ebe9 [ 637.410846][T11866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 637.410870][T11866] RSP: 002b:00007fe1ea9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a [ 637.410893][T11866] RAX: ffffffffffffffda RBX: 00007fe1ec9b5fa0 RCX: 00007fe1ec78ebe9 [ 637.410915][T11866] RDX: 0000200000000040 RSI: ffffffffffffff9c RDI: 0000200000000000 [ 637.410930][T11866] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 637.410944][T11866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.410958][T11866] R13: 00007fe1ec9b6038 R14: 00007fe1ec9b5fa0 R15: 00007ffc0950d708 [ 637.410980][T11866] [ 637.685750][ C1] vkms_vblank_simulate: vblank timer overrun [ 638.959723][T11911] [U] [ 638.962587][T11911] [U] [ 638.965304][T11911] [U] [ 638.968014][T11911] [U] [ 639.033430][T11911] [U] [ 639.036194][T11911] [U] [ 639.038912][T11911] [U] [ 639.041623][T11911] [U] [ 639.096664][T11911] [U] [ 639.099423][T11911] [U] [ 639.102140][T11911] [U] [ 639.104869][T11911] [U] [ 639.132545][T11911] [U] [ 639.135307][T11911] [U] [ 639.138135][T11911] [U] [ 639.140844][T11911] [U] [ 639.174667][T11911] [U] [ 639.177483][T11911] [U] [ 639.180199][T11911] [U] [ 639.182913][T11911] [U] [ 639.216378][T11911] [U] [ 639.219144][T11911] [U] [ 639.221857][T11911] [U] [ 639.224571][T11911] [U] [ 639.261932][T11911] [U] [ 639.264688][T11911] [U] [ 639.267407][T11911] [U] [ 639.270133][T11911] [U] [ 639.306003][T11911] [U] [ 639.308764][T11911] [U] [ 639.311484][T11911] [U] [ 639.314197][T11911] [U] [ 639.358212][T11911] [U] [ 639.360972][T11911] [U] [ 639.363683][T11911] [U] [ 639.366394][T11911] [U] [ 639.408367][T11911] [U] [ 639.411173][T11911] [U] [ 639.413890][T11911] [U] [ 639.416597][T11911] [U] [ 639.450207][T11911] [U] [ 639.453008][T11911] [U] [ 639.455728][T11911] [U] [ 639.458447][T11911] [U] [ 639.490097][T11911] [U] [ 639.492860][T11911] [U] [ 639.495574][T11911] [U] [ 639.498283][T11911] [U] [ 639.527759][T11911] [U] [ 639.530542][T11911] [U] [ 639.533256][T11911] [U] [ 639.535964][T11911] [U] [ 639.567197][T11911] [U] [ 639.569993][T11911] [U] [ 639.572713][T11911] [U] [ 639.575447][T11911] [U] [ 639.621095][T11911] [U] [ 639.623862][T11911] [U] [ 639.626577][T11911] [U] [ 639.629289][T11911] [U] [ 639.667327][T11911] [U] [ 639.670089][T11911] [U] [ 639.672798][T11911] [U] [ 639.675506][T11911] [U] [ 639.713035][T11911] [U] [ 639.715791][T11911] [U] [ 639.718501][T11911] [U] [ 639.721209][T11911] [U] [ 639.758269][T11911] [U] [ 639.761034][T11911] [U] [ 639.763750][T11911] [U] [ 639.766482][T11911] [U] [ 639.842049][T11911] [U] [ 640.691166][T11952] Process accounting paused [ 641.387712][T11978] [U] [ 641.390627][T11978] [U] [ 641.393341][T11978] [U] [ 641.396049][T11978] [U] [ 641.459675][T11978] [U] [ 641.462430][T11978] [U] [ 641.465146][T11978] [U] [ 641.467861][T11978] [U] [ 641.483925][T11974] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1177'. [ 641.501548][T11978] [U] [ 641.504346][T11978] [U] [ 641.507078][T11978] [U] [ 641.509813][T11978] [U] [ 641.550335][T11978] [U] [ 641.553100][T11978] [U] [ 641.555810][T11978] [U] [ 641.558519][T11978] [U] [ 641.629365][T11978] [U] [ 641.632129][T11978] [U] [ 641.634898][T11978] [U] [ 641.637628][T11978] [U] [ 641.705761][T11978] [U] [ 641.708521][T11978] [U] [ 641.711234][T11978] [U] [ 641.713947][T11978] [U] [ 641.754497][T11978] [U] [ 641.757237][T11978] [U] [ 641.759981][T11978] [U] [ 641.762698][T11978] [U] [ 641.799275][T11978] [U] [ 641.802032][T11978] [U] [ 641.804756][T11978] [U] [ 641.807464][T11978] [U] [ 641.842737][T11978] [U] [ 641.845506][T11978] [U] [ 641.848223][T11978] [U] [ 641.850938][T11978] [U] [ 641.898731][T11978] [U] [ 641.901483][T11978] [U] [ 641.904217][T11978] [U] [ 641.906926][T11978] [U] [ 641.967928][T11978] [U] [ 641.970690][T11978] [U] [ 641.973412][T11978] [U] [ 641.976150][T11978] [U] [ 642.009753][T11997] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 642.025574][T11978] [U] [ 642.028323][T11978] [U] [ 642.031036][T11978] [U] [ 642.033751][T11978] [U] [ 642.100596][T11978] [U] [ 642.103354][T11978] [U] [ 642.106068][T11978] [U] [ 642.108780][T11978] [U] [ 642.177843][T11978] [U] [ 642.180620][T11978] [U] [ 642.183337][T11978] [U] [ 642.186070][T11978] [U] [ 642.276821][T11978] [U] [ 643.237342][T12018] binder: 12017:12018 ioctl c018620c 0 returned -1 [ 643.625054][T12038] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 644.048550][T12013] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28 [ 644.441768][T12035] ima: policy update failed [ 644.466990][T12047] [U] [ 644.469833][T12047] [U] [ 644.472563][T12047] [U] [ 644.475284][T12047] [U] [ 644.524397][T12047] [U] [ 644.527161][T12047] [U] [ 644.529873][T12047] [U] [ 644.532607][T12047] [U] [ 644.567233][ T30] audit: type=1802 audit(1755502889.364:19): pid=12035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1192" res=0 errno=0 [ 644.599171][T12047] [U] [ 644.601931][T12047] [U] [ 644.604642][T12047] [U] [ 644.607354][T12047] [U] [ 644.668116][T12047] [U] [ 644.670874][T12047] [U] [ 644.673589][T12047] [U] [ 644.676304][T12047] [U] [ 644.734751][T12047] [U] [ 644.737512][T12047] [U] [ 644.740222][T12047] [U] [ 644.742967][T12047] [U] [ 644.786622][T12047] [U] [ 644.789404][T12047] [U] [ 644.792119][T12047] [U] [ 644.794834][T12047] [U] [ 644.841394][T12047] [U] [ 644.844157][T12047] [U] [ 644.846882][T12047] [U] [ 644.849634][T12047] [U] [ 644.940679][T12047] [U] [ 644.943458][T12047] [U] [ 644.946187][T12047] [U] [ 644.948905][T12047] [U] [ 644.975219][ T5910] Bluetooth: hci2: unexpected event 0x03 length: 725 > 11 [ 644.989878][T12053] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1195'. [ 645.024497][T12047] [U] [ 645.027263][T12047] [U] [ 645.029988][T12047] [U] [ 645.032734][T12047] [U] [ 645.085824][T12047] [U] [ 645.088613][T12047] [U] [ 645.091325][T12047] [U] [ 645.094034][T12047] [U] [ 645.131156][T12047] [U] [ 645.133913][T12047] [U] [ 645.136624][T12047] [U] [ 645.139331][T12047] [U] [ 645.219212][T12047] [U] [ 647.467559][T12116] ksmbd: Unknown IPC event: 14, ignore. [ 648.584106][ T30] audit: type=1800 audit(1755502893.384:20): pid=12143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1213" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 648.604238][ C1] vkms_vblank_simulate: vblank timer overrun [ 649.229607][T12151] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1215'. [ 650.310095][T12180] sd 0:0:1:0: PR command failed: 1026 [ 650.364954][T12180] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 650.373445][T12182] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1222'. [ 650.411299][T12181] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1222'. [ 650.436510][T12180] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 650.487120][T12185] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1222'. [ 650.533389][T12186] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1222'. [ 651.093014][T12198] netlink: 'syz.3.1224': attribute type 27 has an invalid length. [ 651.168939][T12193] net_ratelimit: 99 callbacks suppressed [ 651.168960][T12193] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 651.181131][T12193] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 651.306354][T12198] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1224'. [ 656.432796][T12286] ima: policy update failed [ 656.512218][ T30] audit: type=1802 audit(1755502901.294:21): pid=12286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1241" res=0 errno=0 [ 656.774639][T12309] FAULT_INJECTION: forcing a failure. [ 656.774639][T12309] name failslab, interval 1, probability 0, space 0, times 0 [ 656.957698][T12309] CPU: 1 UID: 0 PID: 12309 Comm: syz.2.1246 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 656.957735][T12309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 656.957750][T12309] Call Trace: [ 656.957757][T12309] [ 656.957765][T12309] dump_stack_lvl+0x16c/0x1f0 [ 656.957800][T12309] should_fail_ex+0x512/0x640 [ 656.957835][T12309] should_failslab+0xc2/0x120 [ 656.957867][T12309] __kmalloc_cache_noprof+0x6a/0x3e0 [ 656.957891][T12309] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 656.957924][T12309] ? rcu_is_watching+0x12/0xc0 [ 656.957947][T12309] ? snd_seq_port_connect+0x61/0x580 [ 656.957981][T12309] snd_seq_port_connect+0x61/0x580 [ 656.958015][T12309] ? _raw_read_unlock+0x28/0x50 [ 656.958048][T12309] ? check_subscription_permission.isra.0+0xf5/0x240 [ 656.958087][T12309] snd_seq_ioctl_subscribe_port+0x211/0x450 [ 656.958126][T12309] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 656.958167][T12309] ? rcu_is_watching+0x12/0xc0 [ 656.958193][T12309] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 656.958230][T12309] snd_seq_oss_midi_open+0x442/0x660 [ 656.958257][T12309] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 656.958283][T12309] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 656.958323][T12309] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 656.958360][T12309] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 656.958389][T12309] snd_seq_oss_synth_setup_midi+0x131/0x580 [ 656.958418][T12309] snd_seq_oss_open+0x893/0xa20 [ 656.958456][T12309] odev_open+0x6f/0x90 [ 656.958487][T12309] ? __pfx_odev_open+0x10/0x10 [ 656.958519][T12309] soundcore_open+0x409/0x580 [ 656.958551][T12309] ? __pfx_soundcore_open+0x10/0x10 [ 656.958583][T12309] chrdev_open+0x234/0x6a0 [ 656.958612][T12309] ? __pfx_apparmor_file_open+0x10/0x10 [ 656.958638][T12309] ? __pfx_chrdev_open+0x10/0x10 [ 656.958669][T12309] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 656.958698][T12309] do_dentry_open+0x982/0x1530 [ 656.958726][T12309] ? __pfx_chrdev_open+0x10/0x10 [ 656.958759][T12309] vfs_open+0x82/0x3f0 [ 656.958795][T12309] path_openat+0x1de4/0x2cb0 [ 656.958827][T12309] ? __pfx_path_openat+0x10/0x10 [ 656.958857][T12309] do_filp_open+0x20b/0x470 [ 656.958884][T12309] ? __pfx_do_filp_open+0x10/0x10 [ 656.958921][T12309] ? alloc_fd+0x471/0x7d0 [ 656.958948][T12309] do_sys_openat2+0x11b/0x1d0 [ 656.958984][T12309] ? __pfx_do_sys_openat2+0x10/0x10 [ 656.959019][T12309] ? fput+0x9b/0xd0 [ 656.959056][T12309] ? __sys_sendmsg+0x18c/0x220 [ 656.959090][T12309] __x64_sys_openat+0x174/0x210 [ 656.959127][T12309] ? __pfx___x64_sys_openat+0x10/0x10 [ 656.959170][T12309] do_syscall_64+0xcd/0x490 [ 656.959201][T12309] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 656.959225][T12309] RIP: 0033:0x7fca7698ebe9 [ 656.959243][T12309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 656.959268][T12309] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 656.959291][T12309] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 656.959307][T12309] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 656.959322][T12309] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 656.959337][T12309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 656.959351][T12309] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 656.959374][T12309] [ 657.296475][ C1] vkms_vblank_simulate: vblank timer overrun [ 659.108735][T12348] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1254'. [ 659.146853][ T6643] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 659.228013][ T6643] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 659.299579][ T6643] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 659.388458][ T6643] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 659.555559][ T6643] macvlan0: left allmulticast mode [ 659.582268][ T6643] veth1_vlan: left allmulticast mode [ 659.612407][ T6643] macvlan0: left promiscuous mode [ 659.638649][ T6643] bridge0: port 5(macvlan0) entered disabled state [ 659.676239][ T6643] team0: left allmulticast mode [ 659.698438][ T6643] team_slave_0: left allmulticast mode [ 659.726076][ T6643] team0: left promiscuous mode [ 659.752501][ T6643] team_slave_0: left promiscuous mode [ 659.803941][ T6643] bridge0: port 4(team0) entered disabled state [ 659.876816][ T6643] hsr0: left allmulticast mode [ 659.911111][ T6643] hsr_slave_0: left allmulticast mode [ 659.945564][ T6643] hsr_slave_1: left allmulticast mode [ 659.982265][ T6643] hsr0: left promiscuous mode [ 660.011996][ T6643] bridge0: port 3(hsr0) entered disabled state [ 660.128961][ T6643] bridge_slave_1: left allmulticast mode [ 660.184219][ T6643] bridge_slave_1: left promiscuous mode [ 660.222663][ T6643] bridge0: port 2(bridge_slave_1) entered disabled state [ 660.252347][ T5184] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 660.260611][ T5184] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 660.268659][ T5184] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 660.276603][ T5184] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 660.285030][ T5184] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 660.336799][ T6643] bridge_slave_0: left allmulticast mode [ 660.342493][ T6643] bridge_slave_0: left promiscuous mode [ 660.423450][ T6643] bridge0: port 1(bridge_slave_0) entered disabled state [ 660.943603][ T6643] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 661.056110][ T6643] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 661.096052][ T6643] bond0 (unregistering): Released all slaves [ 661.427263][T12392] random: crng reseeded on system resumption [ 661.699865][T12398] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1261'. [ 662.074673][ T6643] hsr_slave_0: left promiscuous mode [ 662.102054][ T6643] hsr_slave_1: left promiscuous mode [ 662.123350][ T6643] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 662.168646][ T6643] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 662.251782][ T6643] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 662.280113][ T6643] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 662.374708][ T5184] Bluetooth: hci4: command tx timeout [ 662.423419][ T6643] veth1_macvtap: left promiscuous mode [ 662.450537][ T6643] veth0_macvtap: left promiscuous mode [ 662.482625][ T6643] veth1_vlan: left promiscuous mode [ 662.501922][ T6643] veth0_vlan: left promiscuous mode [ 662.820269][ T6643] team0 (unregistering): Port device team_slave_0 removed [ 663.309823][T12370] chnl_net:caif_netlink_parms(): no params data found [ 663.401752][T12434] binder: 12433:12434 ioctl 400c620e 0 returned -22 [ 663.621856][T12442] sg_write: data in/out 2359516/58 bytes for SCSI command 0x0-- guessing data in; [ 663.621856][T12442] program syz.2.1268 not setting count and/or reply_len properly [ 663.823690][T12370] bridge0: port 1(bridge_slave_0) entered blocking state [ 663.864134][T12370] bridge0: port 1(bridge_slave_0) entered disabled state [ 663.904568][T12370] bridge_slave_0: entered allmulticast mode [ 663.956565][T12370] bridge_slave_0: entered promiscuous mode [ 663.977831][T12370] bridge0: port 2(bridge_slave_1) entered blocking state [ 664.006643][T12370] bridge0: port 2(bridge_slave_1) entered disabled state [ 664.013994][T12370] bridge_slave_1: entered allmulticast mode [ 664.085854][T12370] bridge_slave_1: entered promiscuous mode [ 664.203186][T12461] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1270'. [ 664.454861][ T5184] Bluetooth: hci4: command tx timeout [ 664.505405][T12461] : renamed from hsr0 (while UP) [ 664.612674][T12370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 664.665186][T12370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 664.909766][T12370] team0: Port device team_slave_0 added [ 665.009651][T12370] team0: Port device team_slave_1 added [ 665.171440][T12370] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 665.196387][T12370] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 665.282503][T12370] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 665.376238][T12370] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 665.407146][T12370] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 665.433093][ C1] vkms_vblank_simulate: vblank timer overrun [ 665.517270][T12370] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 665.808889][T12370] hsr_slave_0: entered promiscuous mode [ 665.843149][T12370] hsr_slave_1: entered promiscuous mode [ 666.534148][ T5184] Bluetooth: hci4: command tx timeout [ 666.652885][T12370] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 666.698014][T12370] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 666.757993][T12501] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 666.787647][T12501] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 666.793787][T12501] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 666.801352][T12370] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 666.854412][T12501] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 666.876808][T12370] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 666.905724][T12501] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 666.974790][T12501] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 667.068993][T12501] CPU0 is offline. [ 667.135065][T12370] 8021q: adding VLAN 0 to HW filter on device bond0 [ 667.210458][T12370] 8021q: adding VLAN 0 to HW filter on device team0 [ 667.306148][ T7691] bridge0: port 1(bridge_slave_0) entered blocking state [ 667.313369][ T7691] bridge0: port 1(bridge_slave_0) entered forwarding state [ 667.387808][ T7691] bridge0: port 2(bridge_slave_1) entered blocking state [ 667.395010][ T7691] bridge0: port 2(bridge_slave_1) entered forwarding state [ 667.537044][T12370] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 667.725307][T12530] ima: policy update failed [ 667.756406][ T30] audit: type=1802 audit(1755502912.564:22): pid=12530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1278" res=0 errno=0 [ 668.272205][T12370] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 668.294167][ T5910] Bluetooth: hci1: command 0x0c1a tx timeout [ 668.467953][T12370] veth0_vlan: entered promiscuous mode [ 668.585681][T12370] veth1_vlan: entered promiscuous mode [ 668.767168][T12370] veth0_macvtap: entered promiscuous mode [ 668.854251][ T5910] Bluetooth: hci3: command 0x0c1a tx timeout [ 668.860296][ T5910] Bluetooth: hci2: command 0x0c1a tx timeout [ 668.888673][T12370] veth1_macvtap: entered promiscuous mode [ 668.941031][T12370] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 668.949308][ T5910] Bluetooth: hci4: command 0x0c1a tx timeout [ 669.194943][T12579] FAULT_INJECTION: forcing a failure. [ 669.194943][T12579] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 669.260305][T12370] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 669.283274][T12575] vhci_hcd: invalid port number 23 [ 669.323177][T12575] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 669.355981][T12579] CPU: 1 UID: 0 PID: 12579 Comm: syz.3.1283 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 669.356017][T12579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 669.356032][T12579] Call Trace: [ 669.356040][T12579] [ 669.356048][T12579] dump_stack_lvl+0x16c/0x1f0 [ 669.356082][T12579] should_fail_ex+0x512/0x640 [ 669.356119][T12579] should_fail_alloc_page+0xe7/0x130 [ 669.356153][T12579] prepare_alloc_pages+0x3c2/0x610 [ 669.356188][T12579] ? rcu_is_watching+0x12/0xc0 [ 669.356214][T12579] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 669.356243][T12579] ? kasan_save_stack+0x42/0x60 [ 669.356269][T12579] ? kasan_save_stack+0x33/0x60 [ 669.356294][T12579] ? kasan_save_track+0x14/0x30 [ 669.356320][T12579] ? __kasan_kmalloc+0xaa/0xb0 [ 669.356345][T12579] ? __kvmalloc_node_noprof+0x27b/0x620 [ 669.356371][T12579] ? relay_open_buf.part.0+0x18f/0xc30 [ 669.356400][T12579] ? relay_open+0x653/0xad0 [ 669.356427][T12579] ? do_blk_trace_setup+0x4c5/0xb00 [ 669.356450][T12579] ? blk_trace_setup+0xed/0x1b0 [ 669.356473][T12579] ? blk_trace_ioctl+0x146/0x280 [ 669.356498][T12579] ? blkdev_ioctl+0x108/0x6d0 [ 669.356521][T12579] ? __x64_sys_ioctl+0x18b/0x210 [ 669.356557][T12579] ? do_syscall_64+0xcd/0x490 [ 669.356586][T12579] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 669.356612][T12579] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 669.356650][T12579] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 669.356686][T12579] ? policy_nodemask+0xea/0x4e0 [ 669.356718][T12579] alloc_pages_mpol+0x1fb/0x550 [ 669.356749][T12579] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 669.356779][T12579] ? trace_kmalloc+0x2b/0xd0 [ 669.356812][T12579] ? __kvmalloc_node_noprof+0x298/0x620 [ 669.356837][T12579] ? flush_all_cpus_locked+0x1d0/0x210 [ 669.356874][T12579] alloc_pages_noprof+0x131/0x390 [ 669.356905][T12579] relay_open_buf.part.0+0x25d/0xc30 [ 669.356947][T12579] relay_open+0x653/0xad0 [ 669.356976][T12579] ? debugfs_create_file_full+0x41/0x60 [ 669.357006][T12579] do_blk_trace_setup+0x4c5/0xb00 [ 669.357031][T12579] blk_trace_setup+0xed/0x1b0 [ 669.357056][T12579] ? __pfx_blk_trace_setup+0x10/0x10 [ 669.357080][T12579] ? __pfx_snprintf+0x10/0x10 [ 669.357110][T12579] ? do_vfs_ioctl+0x128/0x14f0 [ 669.357148][T12579] blk_trace_ioctl+0x146/0x280 [ 669.357174][T12579] ? __pfx_blk_trace_ioctl+0x10/0x10 [ 669.357201][T12579] ? rcu_is_watching+0x12/0xc0 [ 669.357225][T12579] ? __fget_files+0x204/0x3c0 [ 669.357249][T12579] ? hook_file_ioctl_common+0x145/0x410 [ 669.357281][T12579] blkdev_ioctl+0x108/0x6d0 [ 669.357306][T12579] ? __pfx_blkdev_ioctl+0x10/0x10 [ 669.357334][T12579] ? __pfx_blkdev_ioctl+0x10/0x10 [ 669.357359][T12579] __x64_sys_ioctl+0x18b/0x210 [ 669.357397][T12579] do_syscall_64+0xcd/0x490 [ 669.357428][T12579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 669.357452][T12579] RIP: 0033:0x7fe1ec78ebe9 [ 669.357469][T12579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 669.357493][T12579] RSP: 002b:00007fe1ea9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 669.357515][T12579] RAX: ffffffffffffffda RBX: 00007fe1ec9b6090 RCX: 00007fe1ec78ebe9 [ 669.357531][T12579] RDX: 0000200000000140 RSI: 00000000c0481273 RDI: 0000000000000006 [ 669.357545][T12579] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 669.357560][T12579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 669.357574][T12579] R13: 00007fe1ec9b6128 R14: 00007fe1ec9b6090 R15: 00007ffc0950d708 [ 669.357597][T12579] [ 669.879249][ T30] audit: type=1804 audit(1755502914.664:23): pid=12579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1283" name="/newroot/289/file0" dev="tmpfs" ino=1524 res=1 errno=0 [ 670.049831][ T7688] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 670.058857][ T7688] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 670.067916][ T7688] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 670.077002][ T7688] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 670.547351][ T7708] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 670.576541][ T7708] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 670.643491][ T7710] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 670.673158][ T7710] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 670.821954][T12552] Process accounting resumed [ 671.000040][T12623] random: crng reseeded on system resumption [ 671.015795][ T5910] Bluetooth: hci4: command 0x0c1a tx timeout [ 671.383124][T12630] sg_write: data in/out 2359516/65 bytes for SCSI command 0x0-- guessing data in; [ 671.383124][T12630] program syz.2.1290 not setting count and/or reply_len properly [ 673.095015][ T5910] Bluetooth: hci4: command 0x0c1a tx timeout [ 673.274337][T12692] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 673.474983][T12696] CIFS: VFS: Invalid SecurityFlags: [ 673.575320][T12702] ptrace attach of "./syz-executor exec"[12703] was attempted by "./syz-executor exec"[12702] [ 674.364397][T12724] sg_write: data in/out 2359516/65 bytes for SCSI command 0x0-- guessing data in; [ 674.364397][T12724] program syz.1.1302 not setting count and/or reply_len properly [ 674.825914][T12745] ubi: mtd0 is already attached to ubi0 [ 676.733163][T12791] sg_write: data in/out 2359516/65 bytes for SCSI command 0x0-- guessing data in; [ 676.733163][T12791] program syz.2.1313 not setting count and/or reply_len properly [ 677.927213][T12808] vhci_hcd: invalid port number 16 [ 677.959239][T12808] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 679.035264][T12835] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 679.389183][T12839] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 680.212648][T12845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1325'. [ 680.716200][T12869] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 681.006381][ T30] audit: type=1800 audit(1755502925.814:24): pid=12877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1331" name="features" dev="configfs" ino=47141 res=0 errno=0 [ 681.511509][T12884] Invalid ELF header magic: != ELF [ 681.627970][T12889] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1333'. [ 682.291452][T12913] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 682.420556][T12914] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 682.848783][T12917] ubi: mtd0 is already attached to ubi0 [ 683.306466][T12939] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 684.595159][T12961] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(70.0.0), cmd(4) [ 685.306257][T12984] binder: 12981:12984 ioctl 5380 2000000000c0 returned -22 [ 685.354812][T12984] sd 0:0:1:0: PR command failed: 1026 [ 685.368092][T12984] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 685.429732][T12984] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 686.146515][T13000] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1359'. [ 686.986563][T13021] sg_write: data in/out 2359516/70 bytes for SCSI command 0x0-- guessing data in; [ 686.986563][T13021] program syz.3.1362 not setting count and/or reply_len properly [ 687.690560][T13034] FAULT_INJECTION: forcing a failure. [ 687.690560][T13034] name failslab, interval 1, probability 0, space 0, times 0 [ 687.845467][T13034] CPU: 1 UID: 0 PID: 13034 Comm: syz.2.1366 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 687.845503][T13034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 687.845518][T13034] Call Trace: [ 687.845525][T13034] [ 687.845534][T13034] dump_stack_lvl+0x16c/0x1f0 [ 687.845567][T13034] should_fail_ex+0x512/0x640 [ 687.845604][T13034] should_failslab+0xc2/0x120 [ 687.845635][T13034] __kmalloc_cache_noprof+0x6a/0x3e0 [ 687.845660][T13034] ? trace_pid_list_alloc+0x27c/0x3f0 [ 687.845690][T13034] ? kasan_save_track+0x14/0x30 [ 687.845718][T13034] trace_pid_list_alloc+0x27c/0x3f0 [ 687.845749][T13034] trace_pid_write+0x10e/0x460 [ 687.845786][T13034] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 687.845818][T13034] ? __pfx_trace_pid_write+0x10/0x10 [ 687.845854][T13034] ? __pfx___mutex_lock+0x10/0x10 [ 687.845884][T13034] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 687.845915][T13034] ? update_last_data+0xb3/0x510 [ 687.845947][T13034] event_pid_write.isra.0+0x3f7/0x7f0 [ 687.845980][T13034] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 687.846011][T13034] ? lock_acquire+0x2cd/0x350 [ 687.846040][T13034] ? __pfx___might_resched+0x10/0x10 [ 687.846065][T13034] ? __pfx_ftrace_event_pid_write+0x10/0x10 [ 687.846096][T13034] vfs_writev+0x5dc/0xde0 [ 687.846131][T13034] ? __pfx_vfs_writev+0x10/0x10 [ 687.846154][T13034] ? __mutex_lock+0x1c5/0x1060 [ 687.846185][T13034] ? do_writev+0x218/0x340 [ 687.846208][T13034] ? rcu_is_watching+0x12/0xc0 [ 687.846233][T13034] ? __pfx___mutex_lock+0x10/0x10 [ 687.846269][T13034] ? __fget_files+0x20e/0x3c0 [ 687.846298][T13034] ? do_writev+0x132/0x340 [ 687.846320][T13034] do_writev+0x132/0x340 [ 687.846344][T13034] ? __pfx_do_writev+0x10/0x10 [ 687.846372][T13034] do_syscall_64+0xcd/0x490 [ 687.846404][T13034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.846428][T13034] RIP: 0033:0x7fca7698ebe9 [ 687.846445][T13034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 687.846468][T13034] RSP: 002b:00007fca77820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 687.846490][T13034] RAX: ffffffffffffffda RBX: 00007fca76bb5fa0 RCX: 00007fca7698ebe9 [ 687.846506][T13034] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 687.846520][T13034] RBP: 00007fca76a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 687.846534][T13034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 687.846547][T13034] R13: 00007fca76bb6038 R14: 00007fca76bb5fa0 R15: 00007fff6b06dc98 [ 687.846569][T13034] [ 688.556421][T13042] rtc_cmos 00:00: Alarms can be up to one day in the future [ 689.069257][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 689.105382][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 689.146361][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 689.205202][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 689.212519][ T24] rtc rtc0: __rtc_set_alarm: err=-22 [ 689.265599][T13054] [U] [ 689.268441][T13054] [U] [ 689.271155][T13054] [U] [ 689.273861][T13054] [U] [ 689.299113][T13054] [U] [ 689.301866][T13054] [U] [ 689.304576][T13054] [U] [ 689.307284][T13054] [U] [ 689.340270][T13054] [U] [ 689.343036][T13054] [U] [ 689.345747][T13054] [U] [ 689.348452][T13054] [U] [ 689.402685][T13054] [U] [ 689.405442][T13054] [U] [ 689.408157][T13054] [U] [ 689.410901][T13054] [U] [ 689.466639][T13054] [U] [ 689.469394][T13054] [U] [ 689.472110][T13054] [U] [ 689.474818][T13054] [U] [ 689.566197][T13054] [U] [ 689.569061][T13054] [U] [ 689.571772][T13054] [U] [ 689.574497][T13054] [U] [ 689.584165][T13057] could not allocate digest TFM handle [ 689.602524][T13054] [U] [ 689.605274][T13054] [U] [ 689.607990][T13054] [U] [ 689.610700][T13054] [U] [ 689.664403][T13054] [U] [ 689.667162][T13054] [U] [ 689.669970][T13054] [U] [ 689.672677][T13054] [U] [ 689.738500][T13054] [U] [ 689.741261][T13054] [U] [ 689.743981][T13054] [U] [ 689.746690][T13054] [U] [ 689.767780][T13046] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1369'. [ 689.790207][T13054] [U] [ 689.792964][T13054] [U] [ 689.795671][T13054] [U] [ 689.798375][T13054] [U] [ 689.855260][T13054] [U] [ 689.858019][T13054] [U] [ 689.860726][T13054] [U] [ 689.863435][T13054] [U] [ 689.912917][T13054] [U] [ 689.915679][T13054] [U] [ 689.918392][T13054] [U] [ 689.921097][T13054] [U] [ 689.957821][T13054] [U] [ 689.960590][T13054] [U] [ 689.963301][T13054] [U] [ 689.966033][T13054] [U] [ 690.038797][T13054] [U] [ 690.041560][T13054] [U] [ 690.044270][T13054] [U] [ 690.046974][T13054] [U] [ 690.133971][T13054] [U] [ 690.528334][T13081] FAULT_INJECTION: forcing a failure. [ 690.528334][T13081] name fail_futex, interval 1, probability 0, space 0, times 0 [ 690.677880][T13081] CPU: 1 UID: 0 PID: 13081 Comm: syz.2.1376 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 690.677916][T13081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 690.677931][T13081] Call Trace: [ 690.677938][T13081] [ 690.677946][T13081] dump_stack_lvl+0x16c/0x1f0 [ 690.677980][T13081] should_fail_ex+0x512/0x640 [ 690.678016][T13081] get_futex_key+0x1d0/0x1560 [ 690.678046][T13081] ? __pfx_get_futex_key+0x10/0x10 [ 690.678078][T13081] futex_wake+0xea/0x530 [ 690.678112][T13081] ? __pfx_futex_wake+0x10/0x10 [ 690.678146][T13081] ? rcu_is_watching+0x12/0xc0 [ 690.678176][T13081] do_futex+0x1e3/0x350 [ 690.678205][T13081] ? __pfx_do_futex+0x10/0x10 [ 690.678235][T13081] ? __pfx___might_resched+0x10/0x10 [ 690.678260][T13081] __x64_sys_futex+0x1e0/0x4c0 [ 690.678290][T13081] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 690.678320][T13081] ? __pfx___x64_sys_futex+0x10/0x10 [ 690.678356][T13081] do_syscall_64+0xcd/0x490 [ 690.678387][T13081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 690.678411][T13081] RIP: 0033:0x7fca7698ebe9 [ 690.678429][T13081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 690.678453][T13081] RSP: 002b:00007fca778200e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 690.678475][T13081] RAX: ffffffffffffffda RBX: 00007fca76bb5fa8 RCX: 00007fca7698ebe9 [ 690.678491][T13081] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fca76bb5fac [ 690.678506][T13081] RBP: 00007fca76bb5fa0 R08: 00007fca77821000 R09: 0000000000000000 [ 690.678521][T13081] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 690.678536][T13081] R13: 00007fca76bb6038 R14: 00007fff6b06dbb0 R15: 00007fff6b06dc98 [ 690.678558][T13081] [ 690.871629][T13085] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12 [ 691.339438][T13094] serio: Serial port ttyS0 [ 693.040273][ T30] audit: type=1800 audit(1755502937.834:25): pid=13143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1386" name="lu_gp_id" dev="configfs" ino=48691 res=0 errno=0 [ 693.157601][T13137] ALUA LU Group already has a valid ID, ignoring request [ 694.535113][T13183] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1393'. [ 696.219755][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.228432][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 699.134930][T13286] sg_write: data in/out 2359516/70 bytes for SCSI command 0x0-- guessing data in; [ 699.134930][T13286] program syz.2.1408 not setting count and/or reply_len properly [ 700.985123][T13313] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1411'. [ 701.125115][T13325] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1411'. [ 701.809600][T13329] Process accounting paused [ 702.470070][T13360] .RRo\&p: entered promiscuous mode [ 703.244573][T13371] mtrr: base(0x1000) is not aligned on a size(0x0000) boundary [ 704.229392][T13395] [U] [ 704.232247][T13395] [U] [ 704.234956][T13395] [U] [ 704.237660][T13395] [U] [ 704.268498][T13395] [U] [ 704.271267][T13395] [U] [ 704.273978][T13395] [U] [ 704.276683][T13395] [U] [ 704.310449][T13395] [U] [ 704.313218][T13395] [U] [ 704.315931][T13395] [U] [ 704.318642][T13395] [U] [ 704.354385][T13395] [U] [ 704.357148][T13395] [U] [ 704.359859][T13395] [U] [ 704.362572][T13395] [U] [ 704.391447][T13395] [U] [ 704.394222][T13395] [U] [ 704.396932][T13395] [U] [ 704.399639][T13395] [U] [ 704.456629][T13395] [U] [ 704.459417][T13395] [U] [ 704.462132][T13395] [U] [ 704.464843][T13395] [U] [ 704.542442][T13395] [U] [ 704.545215][T13395] [U] [ 704.547928][T13395] [U] [ 704.550641][T13395] [U] [ 704.588744][T13395] [U] [ 704.591508][T13395] [U] [ 704.594226][T13395] [U] [ 704.596938][T13395] [U] [ 704.647679][T13395] [U] [ 704.650438][T13395] [U] [ 704.653173][T13395] [U] [ 704.655894][T13395] [U] [ 704.703860][T13395] [U] [ 704.706619][T13395] [U] [ 704.709339][T13395] [U] [ 704.712048][T13395] [U] [ 704.761019][T13395] [U] [ 704.763803][T13395] [U] [ 704.766521][T13395] [U] [ 704.769230][T13395] [U] [ 704.821393][T13395] [U] [ 704.824164][T13395] [U] [ 704.826884][T13395] [U] [ 704.829597][T13395] [U] [ 704.880412][T13395] [U] [ 704.883180][T13395] [U] [ 704.885895][T13395] [U] [ 704.888606][T13395] [U] [ 704.939895][T13395] [U] [ 704.942671][T13395] [U] [ 704.945388][T13395] [U] [ 704.948113][T13395] [U] [ 704.998041][T13395] [U] [ 705.000811][T13395] [U] [ 705.003535][T13395] [U] [ 705.006245][T13395] [U] [ 705.071730][T13395] [U] [ 705.074506][T13395] [U] [ 705.077287][T13395] [U] [ 705.080009][T13395] [U] [ 705.131584][T13395] [U] [ 705.672970][T13429] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 707.256965][T13461] rtc_cmos 00:00: Alarms can be up to one day in the future [ 707.515844][T13469] FAULT_INJECTION: forcing a failure. [ 707.515844][T13469] name failslab, interval 1, probability 0, space 0, times 0 [ 707.589301][T13469] CPU: 1 UID: 0 PID: 13469 Comm: syz.1.1443 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 707.589336][T13469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 707.589350][T13469] Call Trace: [ 707.589357][T13469] [ 707.589366][T13469] dump_stack_lvl+0x16c/0x1f0 [ 707.589400][T13469] should_fail_ex+0x512/0x640 [ 707.589435][T13469] should_failslab+0xc2/0x120 [ 707.589466][T13469] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 707.589499][T13469] ? do_futex+0x122/0x350 [ 707.589527][T13469] ? __do_sys_getcwd+0xe0/0x930 [ 707.589562][T13469] __do_sys_getcwd+0xe0/0x930 [ 707.589595][T13469] ? __x64_sys_futex+0x1e0/0x4c0 [ 707.589624][T13469] ? __x64_sys_futex+0x1e9/0x4c0 [ 707.589653][T13469] ? __pfx___do_sys_getcwd+0x10/0x10 [ 707.589687][T13469] ? xfd_validate_state+0x61/0x180 [ 707.589721][T13469] ? __pfx_ksys_write+0x10/0x10 [ 707.589751][T13469] do_syscall_64+0xcd/0x490 [ 707.589783][T13469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.589807][T13469] RIP: 0033:0x7f7ffd58ebe9 [ 707.589823][T13469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 707.589846][T13469] RSP: 002b:00007f7ffe4ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f [ 707.589868][T13469] RAX: ffffffffffffffda RBX: 00007f7ffd7b5fa0 RCX: 00007f7ffd58ebe9 [ 707.589883][T13469] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 707.589896][T13469] RBP: 00007f7ffd611e19 R08: 0000000000000000 R09: 0000000000000000 [ 707.589910][T13469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 707.589924][T13469] R13: 00007f7ffd7b6038 R14: 00007f7ffd7b5fa0 R15: 00007ffe8088d928 [ 707.589945][T13469] [ 707.839629][T13477] FAULT_INJECTION: forcing a failure. [ 707.839629][T13477] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 707.852986][T13477] CPU: 1 UID: 0 PID: 13477 Comm: syz.3.1444 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 707.853021][T13477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 707.853036][T13477] Call Trace: [ 707.853045][T13477] [ 707.853055][T13477] dump_stack_lvl+0x16c/0x1f0 [ 707.853089][T13477] should_fail_ex+0x512/0x640 [ 707.853125][T13477] should_fail_alloc_page+0xe7/0x130 [ 707.853159][T13477] prepare_alloc_pages+0x3c2/0x610 [ 707.853196][T13477] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 707.853227][T13477] ? rcu_is_watching+0x12/0xc0 [ 707.853267][T13477] ? trace_mm_page_alloc+0x11f/0x1a0 [ 707.853303][T13477] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 707.853332][T13477] ? stack_trace_save+0x8e/0xc0 [ 707.853359][T13477] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 707.853390][T13477] ? rcu_is_watching+0x12/0xc0 [ 707.853415][T13477] ? rcu_is_watching+0x12/0xc0 [ 707.853440][T13477] ? get_il_weight+0xea/0x290 [ 707.853467][T13477] ? rcu_is_watching+0x12/0xc0 [ 707.853490][T13477] ? lock_release+0x201/0x2f0 [ 707.853522][T13477] ? get_il_weight+0xf4/0x290 [ 707.853552][T13477] alloc_pages_bulk_noprof+0x71c/0x1410 [ 707.853582][T13477] ? policy_nodemask+0xea/0x4e0 [ 707.853613][T13477] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 707.853643][T13477] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 707.853680][T13477] kasan_populate_vmalloc+0xf1/0x1f0 [ 707.853708][T13477] alloc_vmap_area+0x959/0x29c0 [ 707.853748][T13477] ? __pfx_alloc_vmap_area+0x10/0x10 [ 707.853785][T13477] __get_vm_area_node+0x1ca/0x330 [ 707.853824][T13477] __vmalloc_node_range_noprof+0x271/0x14b0 [ 707.853846][T13477] ? n_tty_open+0x1a/0x170 [ 707.853886][T13477] ? n_tty_open+0x1a/0x170 [ 707.853922][T13477] ? rcu_is_watching+0x12/0xc0 [ 707.853946][T13477] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 707.853972][T13477] ? n_tty_open+0x12b/0x170 [ 707.854012][T13477] ? rcu_is_watching+0x12/0xc0 [ 707.854036][T13477] ? n_tty_open+0x1a/0x170 [ 707.854071][T13477] __vmalloc_node_noprof+0xad/0xf0 [ 707.854092][T13477] ? n_tty_open+0x1a/0x170 [ 707.854127][T13477] ? __pfx_n_tty_open+0x10/0x10 [ 707.854163][T13477] n_tty_open+0x1a/0x170 [ 707.854199][T13477] ? __pfx_n_tty_open+0x10/0x10 [ 707.854240][T13477] tty_ldisc_open+0x9f/0x120 [ 707.854268][T13477] tty_ldisc_setup+0x87/0x100 [ 707.854297][T13477] tty_init_dev.part.0+0x1ec/0x500 [ 707.854332][T13477] tty_open+0xa50/0xf90 [ 707.854368][T13477] ? __pfx_tty_open+0x10/0x10 [ 707.854399][T13477] ? chrdev_open+0x10b/0x6a0 [ 707.854430][T13477] ? lock_release+0x201/0x2f0 [ 707.854461][T13477] ? __pfx_tty_open+0x10/0x10 [ 707.854494][T13477] chrdev_open+0x234/0x6a0 [ 707.854528][T13477] ? __pfx_apparmor_file_open+0x10/0x10 [ 707.854554][T13477] ? __pfx_chrdev_open+0x10/0x10 [ 707.854584][T13477] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 707.854613][T13477] do_dentry_open+0x982/0x1530 [ 707.854642][T13477] ? __pfx_chrdev_open+0x10/0x10 [ 707.854674][T13477] vfs_open+0x82/0x3f0 [ 707.854713][T13477] path_openat+0x1de4/0x2cb0 [ 707.854744][T13477] ? __pfx_path_openat+0x10/0x10 [ 707.854773][T13477] do_filp_open+0x20b/0x470 [ 707.854799][T13477] ? __pfx_do_filp_open+0x10/0x10 [ 707.854835][T13477] ? alloc_fd+0x471/0x7d0 [ 707.854861][T13477] do_sys_openat2+0x11b/0x1d0 [ 707.854896][T13477] ? __pfx_do_sys_openat2+0x10/0x10 [ 707.854936][T13477] __x64_sys_openat+0x174/0x210 [ 707.854971][T13477] ? __pfx___x64_sys_openat+0x10/0x10 [ 707.855012][T13477] do_syscall_64+0xcd/0x490 [ 707.855043][T13477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.855067][T13477] RIP: 0033:0x7fe1ec78ebe9 [ 707.855085][T13477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 707.855108][T13477] RSP: 002b:00007fe1ea9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 707.855129][T13477] RAX: ffffffffffffffda RBX: 00007fe1ec9b5fa0 RCX: 00007fe1ec78ebe9 [ 707.855162][T13477] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 707.855177][T13477] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 707.855191][T13477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 707.855205][T13477] R13: 00007fe1ec9b6038 R14: 00007fe1ec9b5fa0 R15: 00007ffc0950d708 [ 707.855227][T13477] [ 708.568736][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 708.577243][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 708.584903][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 708.592475][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 708.599822][ T43] rtc rtc0: __rtc_set_alarm: err=-22 [ 708.713027][T13481] random: crng reseeded on system resumption [ 708.838085][T13484] nvme_fcloop: unknown parameter or missing value '15' [ 709.132996][T13492] netlink: Conntrack attr has 4 unknown bytes [ 709.177844][T13477] syz.3.1444: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 709.248101][T13477] CPU: 1 UID: 0 PID: 13477 Comm: syz.3.1444 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 709.248146][T13477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 709.248162][T13477] Call Trace: [ 709.248170][T13477] [ 709.248178][T13477] dump_stack_lvl+0x16c/0x1f0 [ 709.248212][T13477] warn_alloc+0x248/0x3a0 [ 709.248240][T13477] ? __pfx_warn_alloc+0x10/0x10 [ 709.248267][T13477] ? kfree+0x2b4/0x4d0 [ 709.248291][T13477] ? __get_vm_area_node+0x208/0x330 [ 709.248330][T13477] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 709.248359][T13477] ? n_tty_open+0x1a/0x170 [ 709.248397][T13477] ? rcu_is_watching+0x12/0xc0 [ 709.248422][T13477] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 709.248447][T13477] ? n_tty_open+0x12b/0x170 [ 709.248481][T13477] ? rcu_is_watching+0x12/0xc0 [ 709.248506][T13477] ? n_tty_open+0x1a/0x170 [ 709.248540][T13477] __vmalloc_node_noprof+0xad/0xf0 [ 709.248564][T13477] ? n_tty_open+0x1a/0x170 [ 709.248599][T13477] ? __pfx_n_tty_open+0x10/0x10 [ 709.248635][T13477] n_tty_open+0x1a/0x170 [ 709.248669][T13477] ? __pfx_n_tty_open+0x10/0x10 [ 709.248704][T13477] tty_ldisc_open+0x9f/0x120 [ 709.248731][T13477] tty_ldisc_setup+0x87/0x100 [ 709.248759][T13477] tty_init_dev.part.0+0x1ec/0x500 [ 709.248794][T13477] tty_open+0xa50/0xf90 [ 709.248828][T13477] ? __pfx_tty_open+0x10/0x10 [ 709.248860][T13477] ? chrdev_open+0x10b/0x6a0 [ 709.248890][T13477] ? lock_release+0x201/0x2f0 [ 709.248921][T13477] ? __pfx_tty_open+0x10/0x10 [ 709.248953][T13477] chrdev_open+0x234/0x6a0 [ 709.248982][T13477] ? __pfx_apparmor_file_open+0x10/0x10 [ 709.249007][T13477] ? __pfx_chrdev_open+0x10/0x10 [ 709.249037][T13477] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 709.249066][T13477] do_dentry_open+0x982/0x1530 [ 709.249094][T13477] ? __pfx_chrdev_open+0x10/0x10 [ 709.249133][T13477] vfs_open+0x82/0x3f0 [ 709.249169][T13477] path_openat+0x1de4/0x2cb0 [ 709.249201][T13477] ? __pfx_path_openat+0x10/0x10 [ 709.249231][T13477] do_filp_open+0x20b/0x470 [ 709.249257][T13477] ? __pfx_do_filp_open+0x10/0x10 [ 709.249294][T13477] ? alloc_fd+0x471/0x7d0 [ 709.249321][T13477] do_sys_openat2+0x11b/0x1d0 [ 709.249356][T13477] ? __pfx_do_sys_openat2+0x10/0x10 [ 709.249396][T13477] __x64_sys_openat+0x174/0x210 [ 709.249433][T13477] ? __pfx___x64_sys_openat+0x10/0x10 [ 709.249475][T13477] do_syscall_64+0xcd/0x490 [ 709.249511][T13477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.249535][T13477] RIP: 0033:0x7fe1ec78ebe9 [ 709.249553][T13477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 709.249577][T13477] RSP: 002b:00007fe1ea9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 709.249598][T13477] RAX: ffffffffffffffda RBX: 00007fe1ec9b5fa0 RCX: 00007fe1ec78ebe9 [ 709.249613][T13477] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 709.249628][T13477] RBP: 00007fe1ec811e19 R08: 0000000000000000 R09: 0000000000000000 [ 709.249643][T13477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 709.249657][T13477] R13: 00007fe1ec9b6038 R14: 00007fe1ec9b5fa0 R15: 00007ffc0950d708 [ 709.249679][T13477] [ 709.570257][T13477] Mem-Info: [ 709.573412][T13477] active_anon:11725 inactive_anon:934 isolated_anon:0 [ 709.573412][T13477] active_file:13093 inactive_file:49955 isolated_file:0 [ 709.573412][T13477] unevictable:768 dirty:200 writeback:1 [ 709.573412][T13477] slab_reclaimable:11865 slab_unreclaimable:94785 [ 709.573412][T13477] mapped:26194 shmem:2436 pagetables:1300 [ 709.573412][T13477] sec_pagetables:0 bounce:0 [ 709.573412][T13477] kernel_misc_reclaimable:0 [ 709.573412][T13477] free:1308244 free_pcp:13957 free_cma:0 [ 709.619372][T13477] Node 0 active_anon:46900kB inactive_anon:3736kB active_file:52372kB inactive_file:195388kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:104776kB dirty:796kB writeback:4kB shmem:7184kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:13168kB pagetables:5084kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 709.651949][T13477] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4432kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:2560kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 709.682725][T13477] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 709.712217][T13477] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 709.718037][T13477] Node 0 DMA32 free:1303804kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46852kB inactive_anon:3736kB active_file:52372kB inactive_file:194072kB unevictable:1536kB writepending:800kB present:3129332kB managed:2539608kB mlocked:0kB bounce:0kB free_pcp:55564kB local_pcp:55564kB free_cma:0kB [ 709.750711][T13477] lowmem_reserve[]: 0 0 1 1 1 [ 709.755492][T13477] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB [ 709.785339][T13477] lowmem_reserve[]: 0 0 0 0 0 [ 709.790662][T13477] Node 1 Normal free:3913804kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4432kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:248kB local_pcp:248kB free_cma:0kB [ 709.822163][T13477] lowmem_reserve[]: 0 0 0 0 0 [ 709.826931][T13477] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 709.839712][T13477] Node 0 DMA32: 2363*4kB (UME) 1406*8kB (UME) 1263*16kB (UME) 969*32kB (UME) 478*64kB (UME) 273*128kB (UM) 246*256kB (UM) 115*512kB (UME) 54*1024kB (UME) 29*2048kB (UME) 227*4096kB (UM) = 1303788kB [ 709.859325][T13477] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 709.871859][T13477] Node 1 Normal: 145*4kB (UME) 65*8kB (UME) 42*16kB (UME) 227*32kB (UME) 114*64kB (UME) 35*128kB (UME) 15*256kB (UME) 2*512kB (U) 1*1024kB (U) 4*2048kB (UME) 947*4096kB (M) = 3913804kB [ 709.901257][T13477] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 709.918377][T13477] Node 0 hugepages_total=7 hugepages_free=7 hugepages_surp=0 hugepages_size=2048kB [ 709.937910][T13477] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 709.957720][T13477] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 709.977259][T13477] 66726 total pagecache pages [ 709.986352][T13477] 98 pages in swap cache [ 709.997555][T13477] Free swap = 108344kB [ 710.001756][T13477] Total swap = 124996kB [ 710.013616][T13477] 2097051 pages RAM [ 710.021862][T13477] 0 pages HighMem/MovableOnly [ 710.030991][T13477] 430187 pages reserved [ 710.041100][T13477] 0 pages cma reserved [ 710.047888][T13477] pty pty228: ldisc open failed (-12), clearing slot 228 [ 710.389583][T13499] FAULT_INJECTION: forcing a failure. [ 710.389583][T13499] name fail_futex, interval 1, probability 0, space 0, times 0 [ 710.417196][T13499] CPU: 1 UID: 5 PID: 13499 Comm: syz.3.1450 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 710.417232][T13499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 710.417247][T13499] Call Trace: [ 710.417254][T13499] [ 710.417263][T13499] dump_stack_lvl+0x16c/0x1f0 [ 710.417296][T13499] should_fail_ex+0x512/0x640 [ 710.417334][T13499] get_futex_key+0x1d0/0x1560 [ 710.417361][T13499] ? do_syscall_64+0xcd/0x490 [ 710.417391][T13499] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.417415][T13499] ? __pfx_get_futex_key+0x10/0x10 [ 710.417447][T13499] futex_wake+0xea/0x530 [ 710.417482][T13499] ? __pfx_futex_wake+0x10/0x10 [ 710.417522][T13499] do_futex+0x1e3/0x350 [ 710.417550][T13499] ? __pfx_do_futex+0x10/0x10 [ 710.417579][T13499] ? setid_policy_lookup+0x10c/0x350 [ 710.417615][T13499] ? rcu_is_watching+0x12/0xc0 [ 710.417640][T13499] __x64_sys_futex+0x1e0/0x4c0 [ 710.417672][T13499] ? __pfx___x64_sys_futex+0x10/0x10 [ 710.417701][T13499] ? set_cred_ucounts+0x10f/0x200 [ 710.417737][T13499] ? __sys_setreuid+0x4cd/0xaf0 [ 710.417764][T13499] do_syscall_64+0xcd/0x490 [ 710.417795][T13499] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.417818][T13499] RIP: 0033:0x7fe1ec78ebe9 [ 710.417836][T13499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.417859][T13499] RSP: 002b:00007fe1ea9d50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 710.417882][T13499] RAX: ffffffffffffffda RBX: 00007fe1ec9b6098 RCX: 00007fe1ec78ebe9 [ 710.417898][T13499] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe1ec9b609c [ 710.417913][T13499] RBP: 00007fe1ec9b6090 R08: 00007fe1ed4f8000 R09: 0000000000000000 [ 710.417928][T13499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 710.417942][T13499] R13: 00007fe1ec9b6128 R14: 00007ffc0950d620 R15: 00007ffc0950d708 [ 710.417973][T13499] [ 712.417224][T13562] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.1461'. [ 712.475527][T13566] random: crng reseeded on system resumption [ 712.995681][T13566] can: request_module (can-proto-3) failed. [ 713.323934][T13584] netlink: 'syz.0.1465': attribute type 1 has an invalid length. [ 713.611629][T13578] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1464'. [ 714.160204][T13594] [U] [ 714.163108][T13594] [U] [ 714.165858][T13594] [U] [ 714.168686][T13594] [U] [ 714.234336][T13594] [U] [ 714.237095][T13594] [U] [ 714.239807][T13594] [U] [ 714.242515][T13594] [U] [ 714.299686][T13594] [U] [ 714.302443][T13594] [U] [ 714.305152][T13594] [U] [ 714.307861][T13594] [U] [ 714.373167][T13594] [U] [ 714.375929][T13594] [U] [ 714.378646][T13594] [U] [ 714.381353][T13594] [U] [ 714.440146][T13594] [U] [ 714.442904][T13594] [U] [ 714.445620][T13594] [U] [ 714.448329][T13594] [U] [ 714.507056][T13594] [U] [ 714.509814][T13594] [U] [ 714.512525][T13594] [U] [ 714.515233][T13594] [U] [ 714.519446][T13604] program syz.0.1468 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 714.535414][T13607] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1471'. [ 714.565089][T13594] [U] [ 714.567842][T13594] [U] [ 714.570590][T13594] [U] [ 714.573298][T13594] [U] [ 714.594788][T13604] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 714.624342][T13594] [U] [ 714.627105][T13594] [U] [ 714.629824][T13594] [U] [ 714.632532][T13594] [U] [ 714.659592][T13594] [U] [ 714.662382][T13594] [U] [ 714.665094][T13594] [U] [ 714.667800][T13594] [U] [ 714.737814][T13594] [U] [ 714.740575][T13594] [U] [ 714.743286][T13594] [U] [ 714.746015][T13594] [U] [ 714.819753][T13594] [U] [ 715.286165][T13632] random: crng reseeded on system resumption [ 717.644219][ T30] audit: type=1800 audit(1755502962.444:26): pid=13678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1483" name="lu_gp_id" dev="configfs" ino=51164 res=0 errno=0 [ 717.769442][T13683] ALUA LU Group already has a valid ID, ignoring request [ 717.913002][T13678] sg_write: data in/out 2359516/70 bytes for SCSI command 0x0-- guessing data in; [ 717.913002][T13678] program syz.1.1483 not setting count and/or reply_len properly [ 721.352777][T13775] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1495'. [ 726.355243][T13829] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 727.715753][T13844] rtc_cmos 00:00: Alarms can be up to one day in the future [ 728.049194][T13853] Invalid ELF header magic: != ELF [ 728.066095][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 728.073711][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 728.166781][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 728.233241][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 728.287175][ T43] rtc rtc0: __rtc_set_alarm: err=-22 [ 729.206627][T13873] syz_tun: tun_chr_ioctl cmd 1074025676 [ 729.530481][T13876] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1514'. [ 731.284832][T13906] nbd: must specify a size in bytes for the device [ 731.464530][T13911] rtc_cmos 00:00: Alarms can be up to one day in the future [ 732.059217][ T5964] rtc_cmos 00:00: Alarms can be up to one day in the future [ 732.094977][ T5964] rtc_cmos 00:00: Alarms can be up to one day in the future [ 732.127984][ T5964] rtc_cmos 00:00: Alarms can be up to one day in the future [ 732.165453][ T5964] rtc_cmos 00:00: Alarms can be up to one day in the future [ 732.203282][ T5964] rtc rtc0: __rtc_set_alarm: err=-22 [ 733.588285][T13892] Process accounting resumed [ 735.079236][T13937] rtc_cmos 00:00: Alarms can be up to one day in the future [ 735.396368][T13942] Invalid ELF header magic: != ELF [ 736.056712][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 736.079437][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 736.128169][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 736.158734][ T43] rtc_cmos 00:00: Alarms can be up to one day in the future [ 736.224481][ T43] rtc rtc0: __rtc_set_alarm: err=-22 [ 736.604737][T13957] FAULT_INJECTION: forcing a failure. [ 736.604737][T13957] name failslab, interval 1, probability 0, space 0, times 0 [ 736.697529][T13957] CPU: 1 UID: 0 PID: 13957 Comm: syz.0.1536 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 736.697565][T13957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 736.697579][T13957] Call Trace: [ 736.697586][T13957] [ 736.697595][T13957] dump_stack_lvl+0x16c/0x1f0 [ 736.697628][T13957] should_fail_ex+0x512/0x640 [ 736.697664][T13957] should_failslab+0xc2/0x120 [ 736.697695][T13957] __kmalloc_cache_noprof+0x6a/0x3e0 [ 736.697719][T13957] ? percpu_ref_init+0xec/0x410 [ 736.697751][T13957] ? __pfx_css_release+0x10/0x10 [ 736.697781][T13957] percpu_ref_init+0xec/0x410 [ 736.697810][T13957] ? init_and_link_css+0x32c/0x700 [ 736.697836][T13957] cgroup_apply_control_enable+0x50b/0xbb0 [ 736.697876][T13957] cgroup_mkdir+0x5e7/0x11f0 [ 736.697913][T13957] ? __pfx_cgroup_mkdir+0x10/0x10 [ 736.697949][T13957] kernfs_iop_mkdir+0x10e/0x190 [ 736.697982][T13957] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 736.698013][T13957] vfs_mkdir+0x593/0x8c0 [ 736.698036][T13957] do_mkdirat+0x304/0x3e0 [ 736.698064][T13957] ? __pfx_do_mkdirat+0x10/0x10 [ 736.698093][T13957] ? getname_flags.part.0+0x1c5/0x550 [ 736.698131][T13957] __x64_sys_mkdir+0xef/0x140 [ 736.698164][T13957] do_syscall_64+0xcd/0x490 [ 736.698198][T13957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 736.698224][T13957] RIP: 0033:0x7fd0f8f8ebe9 [ 736.698241][T13957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 736.698264][T13957] RSP: 002b:00007fd0f9e0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 736.698286][T13957] RAX: ffffffffffffffda RBX: 00007fd0f91b6090 RCX: 00007fd0f8f8ebe9 [ 736.698302][T13957] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 736.698316][T13957] RBP: 00007fd0f9011e19 R08: 0000000000000000 R09: 0000000000000000 [ 736.698330][T13957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 736.698344][T13957] R13: 00007fd0f91b6128 R14: 00007fd0f91b6090 R15: 00007ffe9dabb968 [ 736.698366][T13957] [ 736.944133][ T5184] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 736.951699][ T5184] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 736.959727][ T5184] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 736.967605][ T5184] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 736.975913][ T5184] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 737.065265][ T24] ------------[ cut here ]------------ [ 737.070778][ T24] WARNING: CPU: 1 PID: 24 at kernel/cgroup/rstat.c:488 css_rstat_exit+0x368/0x470 [ 737.080117][ T24] Modules linked in: [ 737.084059][ T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 737.096030][ T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 737.107018][ T24] Workqueue: cgroup_destroy css_free_rwork_fn [ 737.113127][ T24] RIP: 0010:css_rstat_exit+0x368/0x470 [ 737.118874][ T24] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 737.138771][ T24] RSP: 0018:ffffc900001e7bc0 EFLAGS: 00010293 [ 737.145060][ T24] RAX: 0000000000000000 RBX: ffff8880756b9a00 RCX: ffff8881246c4000 [ 737.153045][ T24] RDX: ffff88801ee98000 RSI: ffffffff81b40667 RDI: ffffffff8df57e60 [ 737.161202][ T24] RBP: ffff8880756b9a08 R08: 0000000000000005 R09: 0000000000000007 [ 737.169380][ T24] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880756b9a20 [ 737.177826][ T24] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 737.186038][ T24] FS: 0000000000000000(0000) GS:ffff8881247c4000(0000) knlGS:0000000000000000 [ 737.195027][ T24] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 737.201620][ T24] CR2: 00007fc6590e5000 CR3: 000000004a414000 CR4: 00000000003526f0 [ 737.210099][ T24] Call Trace: [ 737.213384][ T24] [ 737.216763][ T24] css_free_rwork_fn+0x80/0x12e0 [ 737.221741][ T24] ? rcu_is_watching+0x12/0xc0 [ 737.226757][ T24] process_one_work+0x9cc/0x1b70 [ 737.231728][ T24] ? __pfx_nsim_dev_hwstats_traffic_work+0x10/0x10 [ 737.238438][ T24] ? __pfx_process_one_work+0x10/0x10 [ 737.243843][ T24] ? assign_work+0x1a0/0x250 [ 737.248507][ T24] worker_thread+0x6c8/0xf10 [ 737.253113][ T24] ? __pfx_worker_thread+0x10/0x10 [ 737.258595][ T24] kthread+0x3c2/0x780 [ 737.262695][ T24] ? __pfx_kthread+0x10/0x10 [ 737.267496][ T24] ? rcu_is_watching+0x12/0xc0 [ 737.272285][ T24] ? __pfx_kthread+0x10/0x10 [ 737.277034][ T24] ret_from_fork+0x5d4/0x6f0 [ 737.281665][ T24] ? __pfx_kthread+0x10/0x10 [ 737.286485][ T24] ret_from_fork_asm+0x1a/0x30 [ 737.291292][ T24] [ 737.294392][ T24] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 737.301699][ T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.17.0-rc1-syzkaller-00224-g8d561baae505 #0 PREEMPT(full) [ 737.313604][ T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 737.323671][ T24] Workqueue: cgroup_destroy css_free_rwork_fn [ 737.329767][ T24] Call Trace: [ 737.333064][ T24] [ 737.336008][ T24] dump_stack_lvl+0x3d/0x1f0 [ 737.340632][ T24] vpanic+0x6e8/0x7a0 [ 737.344632][ T24] ? __pfx_vpanic+0x10/0x10 [ 737.349161][ T24] ? css_rstat_exit+0x368/0x470 [ 737.354029][ T24] panic+0xca/0xd0 [ 737.357772][ T24] ? __pfx_panic+0x10/0x10 [ 737.362212][ T24] ? check_panic_on_warn+0x1f/0xb0 [ 737.367351][ T24] check_panic_on_warn+0xab/0xb0 [ 737.372317][ T24] __warn+0xf6/0x3c0 [ 737.376252][ T24] ? css_rstat_exit+0x368/0x470 [ 737.381148][ T24] report_bug+0x3c3/0x580 [ 737.385516][ T24] ? css_rstat_exit+0x368/0x470 [ 737.390387][ T24] handle_bug+0x184/0x210 [ 737.394751][ T24] exc_invalid_op+0x17/0x50 [ 737.399277][ T24] asm_exc_invalid_op+0x1a/0x20 [ 737.404137][ T24] RIP: 0010:css_rstat_exit+0x368/0x470 [ 737.409606][ T24] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 737.429226][ T24] RSP: 0018:ffffc900001e7bc0 EFLAGS: 00010293 [ 737.435305][ T24] RAX: 0000000000000000 RBX: ffff8880756b9a00 RCX: ffff8881246c4000 [ 737.443295][ T24] RDX: ffff88801ee98000 RSI: ffffffff81b40667 RDI: ffffffff8df57e60 [ 737.451272][ T24] RBP: ffff8880756b9a08 R08: 0000000000000005 R09: 0000000000000007 [ 737.459252][ T24] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880756b9a20 [ 737.467226][ T24] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 737.475214][ T24] ? css_rstat_exit+0x367/0x470 [ 737.480083][ T24] css_free_rwork_fn+0x80/0x12e0 [ 737.485044][ T24] ? rcu_is_watching+0x12/0xc0 [ 737.489821][ T24] process_one_work+0x9cc/0x1b70 [ 737.494801][ T24] ? __pfx_nsim_dev_hwstats_traffic_work+0x10/0x10 [ 737.501323][ T24] ? __pfx_process_one_work+0x10/0x10 [ 737.506731][ T24] ? assign_work+0x1a0/0x250 [ 737.511344][ T24] worker_thread+0x6c8/0xf10 [ 737.515957][ T24] ? __pfx_worker_thread+0x10/0x10 [ 737.521104][ T24] kthread+0x3c2/0x780 [ 737.525207][ T24] ? __pfx_kthread+0x10/0x10 [ 737.529818][ T24] ? rcu_is_watching+0x12/0xc0 [ 737.534595][ T24] ? __pfx_kthread+0x10/0x10 [ 737.539205][ T24] ret_from_fork+0x5d4/0x6f0 [ 737.543820][ T24] ? __pfx_kthread+0x10/0x10 [ 737.548431][ T24] ret_from_fork_asm+0x1a/0x30 [ 737.553216][ T24] [ 737.556319][ T24] Kernel Offset: disabled [ 737.560652][ T24] Rebooting in 86400 seconds..