last executing test programs: 12m53.663574809s ago: executing program 3 (id=80): mlockall$auto(0x7) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) mlock$auto(0xcecc, 0xd325) 12m53.413339512s ago: executing program 3 (id=82): keyctl$auto_KEYCTL_MOVE(0x1e, 0xfffffffffffffffe, 0x580000000000, 0xd, 0x1) 12m53.332019418s ago: executing program 3 (id=83): mlockall$auto(0x7) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) mlock$auto(0xfbe8, 0x4) mlock$auto(0xcecc, 0xd325) 12m53.155970886s ago: executing program 3 (id=84): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, &(0x7f0000000000)={0x4}) mmap$auto(0x1, 0x2020009, 0x7f, 0x8000000000000010, r0, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xc208ae62, 0x38) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8f3b7a51b8162d21, 0x0) r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(r3, 0x0, 0x80000000006) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/bridge/bridge-nf-call-ip6tables\x00', 0xd97f760c479e8c8e, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) r6 = ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) readahead$auto(r6, 0xeca9, 0x6) fcntl$auto_F_GETPIPE_SZ(r4, 0x408, 0x2) signalfd$auto(r2, 0x0, 0x20007) 12m51.363094744s ago: executing program 3 (id=91): mlockall$auto(0x7) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) mlock$auto(0xcecc, 0xd325) 12m51.172609959s ago: executing program 3 (id=93): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x18, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x240088d4}, 0x2000c880) (async) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x18, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x240088d4}, 0x2000c880) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lo/netdev_group\x00', 0xe3102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0xfdef) (async) write$auto(0x3, 0x0, 0xfdef) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop11\x00', 0x80, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) get_mempolicy$auto(0x0, 0x0, 0x56f6, 0x1, 0x2) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r2, 0x0, 0x0) (async) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r2, 0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x545c, 0xffffffffffffffff) (async) ioctl$auto(0xffffffffffffffff, 0x545c, 0xffffffffffffffff) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0xb, 0x40009, 0x2, 0x9b72, 0xffffffffffffffff, 0x28000) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x7911}, 0xa) connect$auto(0x3, 0x0, 0x55) (async) connect$auto(0x3, 0x0, 0x55) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) (async) r3 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) writev$auto(r3, &(0x7f0000000300)={0x0, 0x10001}, 0xc) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) clock_gettime$auto(0x1, 0x0) 12m35.983727735s ago: executing program 32 (id=93): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x18, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x240088d4}, 0x2000c880) (async) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x18, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x240088d4}, 0x2000c880) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lo/netdev_group\x00', 0xe3102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0xfdef) (async) write$auto(0x3, 0x0, 0xfdef) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop11\x00', 0x80, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) get_mempolicy$auto(0x0, 0x0, 0x56f6, 0x1, 0x2) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r2, 0x0, 0x0) (async) sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r2, 0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x545c, 0xffffffffffffffff) (async) ioctl$auto(0xffffffffffffffff, 0x545c, 0xffffffffffffffff) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0xb, 0x40009, 0x2, 0x9b72, 0xffffffffffffffff, 0x28000) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x7911}, 0xa) connect$auto(0x3, 0x0, 0x55) (async) connect$auto(0x3, 0x0, 0x55) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) (async) r3 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) writev$auto(r3, &(0x7f0000000300)={0x0, 0x10001}, 0xc) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) clock_gettime$auto(0x1, 0x0) 8.407312468s ago: executing program 2 (id=3093): mmap$auto(0x0, 0x4, 0x4962b239, 0xeb1, 0x401, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000040), 0x440c0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0) socket(0x23, 0x1, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8) socket(0x15, 0x800, 0x7) setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x5402, r0) ioctl$auto(0x3, 0x541b, 0x38) 8.319635508s ago: executing program 4 (id=3094): r0 = pidfd_open$auto(0x1, 0x0) mmap$auto(0x0, 0x2, 0x3, 0x20eb3, r0, 0xa) mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x840, 0xc) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x5, 0x3, 0x0, 0x0, 0x1) r1 = socket(0x1d, 0x2, 0x6) r2 = socket(0x2c, 0x3, 0x0) fsconfig$auto_JFFS2_COMPR_MODE_NONE(r2, 0x5, &(0x7f0000000200)='\x00', &(0x7f0000000400), 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) lsm_set_self_attr$auto(0x9, 0x0, 0x80, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000180)=@prog_bind_map={r1, r1, 0x4551959d}, 0xffffffff) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x800, 0x0) socket(0xa, 0x1, 0x100) socket(0x1e, 0x1, 0x0) getsockopt$auto(0xffffffffffffffff, 0x114, 0x2713, 0xfffffffffffffffc, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x2d, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40, 0x3, 0x1, 0x9, 0x1, 0xffffffdffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x8000001f, 0x7, 0x6, 0x9, 0x2, 0x6]}, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT64(r4, 0xc0984124, &(0x7f0000000340)={0x2, "aefc2f74", 0xb, 0x1, 0x10000, 0x6, 0xed8d, 0x2, 0xff, 0x100000000, 0x1d, 0x1, 0x3, 0xff, 0x4, 0xfffffffffffffffa, 0x1, 0x6, 0xffffffff, "19c7e5553bed3e6eb5d24e9376382816a4f74e60"}) 7.133551556s ago: executing program 2 (id=3097): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram6\x00', 0x46202, 0x0) mmap$auto(0x0, 0x3, 0x1000df, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mlockall$auto(0x7) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/irq/4/effective_affinity\x00', 0x88000, 0x0) mmap$auto(0x0, 0x88f, 0xffff, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1f, 0x6, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xa8200, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r0}, 0x18) socket(0x10, 0x2, 0x4) r1 = socket(0x1d, 0x2, 0x7) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'veth1\x00', 0x0}) semget$auto(0xff, 0x200, 0x9) bind$auto(r1, &(0x7f0000000000)=@can={0x1d, r3}, 0x6a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r4}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x3, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x95a}, 0x6, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x4, 0x8, 0x3, 0x2, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0xb3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x383, 0xb97, 0x9]}, 0x1fe, 0x2) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x6000, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xffffff9e}, 0x40000) 6.235583372s ago: executing program 1 (id=3099): lsetxattr$auto(0x0, &(0x7f0000005500)='[!*)\x00', &(0x7f0000005540), 0xd843, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x8002, 0x0) ioctl$auto_SNDCTL_TMR_TIMEBASE(r0, 0xc0045401, &(0x7f00000000c0)="58f9fb") socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) fsconfig$auto_FSCONFIG_CMD_CREATE(r1, 0x6, &(0x7f0000000180)='+\x00', &(0x7f00000001c0)="cced9e851f6a0723c06d7fa747493069fdc2b2c88c72167dcfbce2de01", 0x9de1) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) timer_create$auto(0xfffffff8, &(0x7f0000000240)={@sival_int=0x8, @inferred, 0x80000001}, &(0x7f0000000280)=0x482) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mtd0\x00', 0x42801, 0x0) read$auto(r3, 0x0, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_CREATE_VM(r2, 0xae80, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto(0x3, 0xae41, r5) openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000140), 0x20002, 0x0) mmap$auto(0x11, 0xc, 0x3, 0xffffffffffffffff, r1, 0x40b) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000) 6.204591205s ago: executing program 2 (id=3102): mmap$auto(0x0, 0x4, 0x4962b239, 0xeb1, 0x401, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000040), 0x440c0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0) socket(0x23, 0x1, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8) setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ef, 0x400) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x5402, r0) ioctl$auto(0x3, 0x541b, 0x38) 5.80793022s ago: executing program 1 (id=3105): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x303101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(0xffffffffffffffff, 0x4018bc13, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_TO(0x6, 0x2, 0x0, 0x5, 0x80000001) getsockopt$auto_SO_PEEK_OFF(r0, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x3000000, 0x0, 0x20000000}, 0xc004) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"}) newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0x4, 0x0, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) ioctl$auto_SW_SYNC_IOC_INC(r4, 0x40045701, &(0x7f0000000040)=0x8) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) 5.764444339s ago: executing program 4 (id=3106): mmap$auto(0x0, 0x4, 0x4962b239, 0xeb1, 0x401, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f0000000040), 0x440c0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000005c0), 0x2000, 0x0) socket(0x23, 0x1, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8) socket(0x15, 0x800, 0x7) setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x5402, r0) ioctl$auto(0x3, 0x541b, 0x38) 5.235482768s ago: executing program 2 (id=3109): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0x27, 0x4, 0xd96b) io_uring_setup$auto(0x2, 0x0) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) getsockopt$auto(r1, 0x1000, 0xffffffff, &(0x7f00000000c0)='*$-(%\x00', &(0x7f0000000100)=0x6a6) (async) getsockopt$auto(r1, 0x1000, 0xffffffff, &(0x7f00000000c0)='*$-(%\x00', &(0x7f0000000100)=0x6a6) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) (async) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000580)={0x3cc, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x55}, @NL80211_ATTR_HE_CAPABILITY={0x25, 0x10d, "4225e6035180c6a9a0b2e60c92a4d3e666111d5fa3222d7238e389b7812f4d2e7c"}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x6e}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x6}, @NL80211_ATTR_KEY={0x378, 0x50, 0x0, 0x1, [@typed={0x8, 0x3a, 0x0, 0x0, @u32=0x30000000}, @generic="94853b1ccf7e0fc9bd35880f9b4c73fb48acb52d1d4f0580d88eb6af673a1c8e3e2037f8c8189e171fc009f48d2d8c0ab96e6dd94f5248ad43d40d453cc6addd78638c1925ba1c46013d73aae7d4c597919260bff3c8d949cdaf9890c02c4d2a6716b144ce8749759a140a2c69d0ab555900e33786e2e846a1fc07391f98beac862466a4fb5bb294bf0394645735989f519af4c929dfa24f33c67b877bf013a12fb5459777638caf31084284b41a6eff99558f68d74c25ce", @nested={0x2a5, 0x6c, 0x0, 0x1, [@generic="769fbff53f8dd114eabaaca5abf08d343e9f5b847048e4bd5d52fdc459595147638daa4cac4b65322fef1b26602f3ea7a1e89990404480b61975e22c8841594e9aa8e59a1a09db4f079b620f2d93b2aa7d8ea8de299fde53807bd40b7db96f96c554dbb97c98344fe9e68e30febd553914d80576bce2ccd9eac6568ff3e352ec93466ceb91ca7a1785da2d75bdccdb7925ce2c4a35718e43505eb3f60efcfcf4a0fa870b575e", @typed={0x8, 0xc9, 0x0, 0x0, @ipv4=@empty}, @generic="22e0d841b2326320cb9222ad69f3b1001275963a0d48274798cf0c9b3b83078a0f5dacdd16f5f346ebf3c8046aca18cbe4ca9f8e20fdc64c0e1cb55a1a374e79ce4fe549398f51fca3ba5033a343547141de1b4ba92c8ba637d52442060488b7870f8cb6ace52a976a3d327a679dbd6087579b0b87dd8210aa9d4205ed2a4160bd0344ca937d60bc8d1f65de0b47810d24663937520153837e349df96561c4aa8d36142d07e214f9c3c8dc32ca0c9bd7c1dd38fc0358ac36ba50500778b723451afda4722104dd55643364b628adbadb6ace345db686568da743ad3167c04dad53d2eedde50a42", @nested={0x4, 0xd2}, @nested={0x4, 0x111}, @typed={0xe8, 0x4c, 0x0, 0x0, @binary="0e6f7c79dbb00d654c6ba0d0fa1be46a5aadc8be464f3c441886acb461be8929e13dc07b34f7317275a8875306dfbca14e3879b05ca4f6edb987147890dca3fecfb44b58a53720909e92903534299c397945405caa6176daf72f51f24a3330d7d7c5071c1cde442556fe7f1e60941dd4ca9b6438e70348aeadb792c8a72201cfb51e3283e5711eb2ca2cd2f025656c8aad2145711aaa0ca47d61c3f9f91df49339f333d89448e2bad8f7704938632360a312f0583414dafc555daaf39a48fb9db3c41c56750a19cad3504285f64dccf4f76d2d70f5e0b061e6f7dfa5284f28484c709b9c"}, @typed={0x8, 0x12a, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x14, 0x11f, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}, @typed={0x8, 0xd3, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0xce}]}]}, 0x3cc}, 0x1, 0x0, 0x0, 0x40}, 0x800) (async) sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000580)={0x3cc, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x55}, @NL80211_ATTR_HE_CAPABILITY={0x25, 0x10d, "4225e6035180c6a9a0b2e60c92a4d3e666111d5fa3222d7238e389b7812f4d2e7c"}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x6e}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x6}, @NL80211_ATTR_KEY={0x378, 0x50, 0x0, 0x1, [@typed={0x8, 0x3a, 0x0, 0x0, @u32=0x30000000}, @generic="94853b1ccf7e0fc9bd35880f9b4c73fb48acb52d1d4f0580d88eb6af673a1c8e3e2037f8c8189e171fc009f48d2d8c0ab96e6dd94f5248ad43d40d453cc6addd78638c1925ba1c46013d73aae7d4c597919260bff3c8d949cdaf9890c02c4d2a6716b144ce8749759a140a2c69d0ab555900e33786e2e846a1fc07391f98beac862466a4fb5bb294bf0394645735989f519af4c929dfa24f33c67b877bf013a12fb5459777638caf31084284b41a6eff99558f68d74c25ce", @nested={0x2a5, 0x6c, 0x0, 0x1, [@generic="769fbff53f8dd114eabaaca5abf08d343e9f5b847048e4bd5d52fdc459595147638daa4cac4b65322fef1b26602f3ea7a1e89990404480b61975e22c8841594e9aa8e59a1a09db4f079b620f2d93b2aa7d8ea8de299fde53807bd40b7db96f96c554dbb97c98344fe9e68e30febd553914d80576bce2ccd9eac6568ff3e352ec93466ceb91ca7a1785da2d75bdccdb7925ce2c4a35718e43505eb3f60efcfcf4a0fa870b575e", @typed={0x8, 0xc9, 0x0, 0x0, @ipv4=@empty}, @generic="22e0d841b2326320cb9222ad69f3b1001275963a0d48274798cf0c9b3b83078a0f5dacdd16f5f346ebf3c8046aca18cbe4ca9f8e20fdc64c0e1cb55a1a374e79ce4fe549398f51fca3ba5033a343547141de1b4ba92c8ba637d52442060488b7870f8cb6ace52a976a3d327a679dbd6087579b0b87dd8210aa9d4205ed2a4160bd0344ca937d60bc8d1f65de0b47810d24663937520153837e349df96561c4aa8d36142d07e214f9c3c8dc32ca0c9bd7c1dd38fc0358ac36ba50500778b723451afda4722104dd55643364b628adbadb6ace345db686568da743ad3167c04dad53d2eedde50a42", @nested={0x4, 0xd2}, @nested={0x4, 0x111}, @typed={0xe8, 0x4c, 0x0, 0x0, @binary="0e6f7c79dbb00d654c6ba0d0fa1be46a5aadc8be464f3c441886acb461be8929e13dc07b34f7317275a8875306dfbca14e3879b05ca4f6edb987147890dca3fecfb44b58a53720909e92903534299c397945405caa6176daf72f51f24a3330d7d7c5071c1cde442556fe7f1e60941dd4ca9b6438e70348aeadb792c8a72201cfb51e3283e5711eb2ca2cd2f025656c8aad2145711aaa0ca47d61c3f9f91df49339f333d89448e2bad8f7704938632360a312f0583414dafc555daaf39a48fb9db3c41c56750a19cad3504285f64dccf4f76d2d70f5e0b061e6f7dfa5284f28484c709b9c"}, @typed={0x8, 0x12a, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x14, 0x11f, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}]}, @typed={0x8, 0xd3, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0xce}]}]}, 0x3cc}, 0x1, 0x0, 0x0, 0x40}, 0x800) r2 = gettid() mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) (async) mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) setresuid$auto(0x8, 0x0, 0x4) (async) setresuid$auto(0x8, 0x0, 0x4) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x2, 0x73) (async) socket(0xa, 0x2, 0x73) setpriority$auto(0x2, 0x8, 0x8) lseek$auto(0x3, 0x8, 0x3) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4) kill$auto(r2, 0x11) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x1, 0x1ff, 0x100, 0x83, 0x101, 0x6, 0x6}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x876c5, 0x8, 0x100000000}}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram6\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)={0x2c, r3, 0x221, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r4}]}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 4.80479555s ago: executing program 1 (id=3110): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/video44\x00', 0x8a240, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x13, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x2, 0xb0, 0x9, 0x8, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x81) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3fc, 0x4}, 0xf3, 0x0, 0x0, 0x8) ioctl$auto(r0, 0x5646, 0x7) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) setfsgid$auto(0x9) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x80000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r5 = socket(0x11, 0x3, 0x2) getsockopt$auto(r5, 0x107, 0x7, 0x0, 0x0) sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001280)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010025bd7000fddbdf2503000000040007800c00020005000000000000000800010007"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8880) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_BTRFS_IOC_SEND_32(r1, 0x40449426, &(0x7f0000000440)={@inferred=r2, 0x4, 0x9, 0x8, 0x9, 0x400, "b8dab04e45b1ac676f94e1b57368ca2a18c73708eb999b54069ea9d3"}) socketpair$auto(0xffffff6c, 0x4, 0x8000000, 0x0) openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0) r6 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r6, 0x8955, 0x0) r7 = socket(0xa, 0x5, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_fd=r7, 0x9}, 0xa3) sendto$auto(r7, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c) 4.413140827s ago: executing program 4 (id=3112): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x28, 0x5, 0x0) socket(0xa, 0x801, 0x106) setsockopt$auto(0x1, 0x1, 0x25, &(0x7f0000000000)='\x00', 0x4) unshare$auto(0x20000080) io_uring_setup$auto(0x58, &(0x7f0000000080)={0x7fffffff, 0x2000d, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x23d8, 0x6, 0xf, 0x4000029f, 0x100, 0x7f, 0x80000, 0x6, 0x2}, {0x203, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x7, 0x100000000}}) 4.101613524s ago: executing program 0 (id=3113): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x6) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8502, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/stable_node_dups\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000280)=""/222, 0xde) write$auto(r1, 0x0, 0x80001) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(0xffffffffffffffff, 0x0, 0x4000000) move_pages$auto(0x1, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x8000000000000000) open(0x0, 0x2a4c0, 0x40) execve$auto(0x0, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x10001, 0x7fffffffffffffff, 0xe817) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) r4 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r4, 0x10008000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'veth0_to_batadv\x00', 0x0}) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYRES16=r6, @ANYRES16=0x0, @ANYBLOB="00012bbd7000fcdbdf250200000008000100", @ANYRES32=0x0, @ANYBLOB="efffffffe2c2720bb1d7bee4bff7a356d55710118b790c085d1a9f49cdf7968a4ee1a157bb4a6bbcaccc505ee006bef82f72518016e87d83bdb3a28645f7f29886b05551ff930a25f8d17fbee7a4424988b1ff24ab7a03752d601c5bfdb2f87c08ff28130c8b550fea40b861fcd40ec84e7e65020ed344a40800000088defafdf0a2de7208b84f1a9350ee5e1910af91bf82ee4e5cb590a83ee527340ae7c08203a50e520ee6b07d14afd48e70c27112fd074fce76649ead502089a574619abac9e934e7ae08cbc0239b3b586509d18101a5f9c67fe9a2bc30d4e612e6f628c5475927adb3823253", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00.\x00', @ANYRES32=0x0, @ANYBLOB="000008000100", @ANYRES32=r6, @ANYBLOB], 0x530}}, 0x800) pwritev$auto(r5, &(0x7f0000000100)={&(0x7f0000000080), 0xe001}, 0x3, 0xe, 0x3) r7 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r7, 0x40085112, 0x0) mmap$auto(0x7fffffe, 0x6, 0x40005, 0x13, 0x3fd, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) 3.287847998s ago: executing program 4 (id=3114): close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) madvise$auto(0x0, 0x2000040080000003, 0xe) (async) write$auto(0xffffffffffffffff, &(0x7f0000000040)='//\xf2\x00', 0x80000000) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x11, 0x20, 0x0, 0x4) (async) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) (async) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) mmap$auto(0x0, 0x8, 0x62a6, 0x9b72, 0x2, 0x8000) (async) r1 = socket(0x2, 0x2, 0x1) sendto$auto(r1, 0x0, 0xb, 0xf1a, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0x64010102}, 0x2) (async) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) select$auto(0x5, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) (async) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0x2, 0x8000) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x1ff, 0x20000000) semtimedop$auto(0x0, 0x0, 0x1f4, 0x0) (async) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xffffffff, 0xfffff7fffffffffd, 0xffffffff, 0x45, 0x9, 0x4, 0xc8bffe, 0x8, 0x100000000009, 0x6, 0x0, 0x4, 0x1ffffffffffd, 0x8, 0x1006, 0x7, 0x9, 0x80, 0x7ffffffffffffffc, 0x0, 0xc, 0x2, 0x101, 0x4, 0x84, 0x7ff, 0x0, 0x0, 0x0, 0x0, [0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x1fe, 0x5) (async) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, 0x0, 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd02, &(0x7f00000001c0)) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x0) (async) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x13, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r3, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) (async) socket(0x11, 0x3, 0x9) (async) socket(0xa, 0x2, 0x3a) (async) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0) 2.794776063s ago: executing program 0 (id=3115): mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x2, 0x1, 0x100000000, 0x8, 0x4, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x5, 0x5, 0x6, 0x8, 0xae, 0xa, 0x2, 0x7, 0x8, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x80) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x121000, 0x0) socket(0x18, 0x3, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020011, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r1 = open(0x0, 0xcd1e23e41b02d660, 0x154) execveat$auto(r1, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x11000) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1b, 0x0, 0x20001) ioctl$auto(0x3, 0x89ed, 0x74) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.784955747s ago: executing program 1 (id=3116): mmap$auto(0x0, 0x2020009, 0x3, 0x80000eb1, 0xffffffffffffffff, 0x8004) (async) writev$auto(0x3, 0x0, 0x8009) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000000c0), r0) (async) sendmsg$auto_OVS_FLOW_CMD_DEL(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, r1, 0x8000) (async) mmap$auto(0x0, 0x4, 0x2004000000000df, 0x12, 0x4, 0x300000000000) (async) mmap$auto(0x6, 0x406000c, 0x0, 0xeb1, 0x401, 0x3) (async) mmap$auto(0x0, 0x9, 0x2000000000009, 0xeb1, 0x401, 0x0) r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/lru_gen_full\x00', 0x0, 0x0) r3 = prctl$auto(0x80000006, 0xfffffffffffffffe, 0x0, 0x7, 0x80000000) select$auto(0x81, 0x0, 0x0, 0x0, 0x0) (async) write$auto(r3, &(0x7f0000000280)='/\x06\x00v/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee\xd8\x9c\xc4\xe9d\x03+\xcf\a\xfb\\n\x89C:\x84D\x1d\xf5\xb4\x9aj\xce\xa7\x00\x00\x00\x00\x00\x00\x00\x00\x83\x1e@\xae\xbf\xb5U\x9d\x8b\xa4U\x953/O\xab\"4\xf0\x10>\x8a\xbbY8@Z5`\xa4m\xffb\x97\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x95)}\xfaK\xdf>f\xb8&\x959\x06\x00\x00\x00\x00\x00\x00\x00\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5\x00'/171, 0x24000000) (async) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0xfffffffffffffffc, 0x400008, 0xd8, 0x9b72, r2, 0x3) (async) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r0, 0xb95, r3) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card1/pcm0c/sub4/sw_params\x00', 0x20000, 0x0) pread64$auto(r4, 0x0, 0x8, 0xe63) (async) close_range$auto(0x2, 0x8, 0x0) (async) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x400c058) (async) io_uring_setup$auto(0x1, 0x0) (async) mmap$auto(0x13, 0xa020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8) (async) init_module$auto(0x0, 0xffff9, 0x0) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r5, @new_prog_fd=0x4, 0x4, @old_map_fd=r6}, 0xa3) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 2.581711102s ago: executing program 0 (id=3117): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48a22, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) (async) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) unlink$auto(&(0x7f0000000380)='./file0\x00') r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001200)='/sys/kernel/security/tomoyo/profile\x00', 0x0, 0x0) read$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000040)=""/4099, 0xfd98) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) open(0x0, 0x163340, 0x6a) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x801, 0x106) (async) r1 = socket(0x2, 0x801, 0x106) getsockopt$auto(r1, 0x11c, 0x3, 0x0, 0x0) connect$auto(0x3, 0x0, 0x51) 2.367922742s ago: executing program 0 (id=3118): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000f40)='./file0\x00', &(0x7f0000000f80)={0x430801, 0x3, 0xb}, 0x18) setsockopt$auto_SO_CNX_ADVICE(r0, 0x7, 0x35, &(0x7f0000000fc0)='*+\x00', 0xab7) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL802154_CMD_SEND_BEACONS(r1, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000000040)={0xe5c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x21}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0xfffffffeffffffff}, @NL802154_ATTR_SUPPORTED_COMMANDS={0xe31, 0x19, 0x0, 0x1, [@generic="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"]}]}, 0xe5c}, 0x1, 0x0, 0x0, 0x20000880}, 0x54) r2 = socket(0x2, 0x1, 0x106) getpeername$auto(r2, &(0x7f0000000000)=@generic={0x21, "c71ddcac0d5e348da69f8c445e9e"}, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0xc0000, 0x0) write$auto_tty_fops_tty_io(r3, &(0x7f0000000580)="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", 0x418) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(r4, 0x4, &(0x7f0000000000)='bridge_slave_0\x00', &(0x7f0000000100), 0x4) write$auto_dev_fops_plock(r4, &(0x7f0000001000)="727ba9eb674f7cb2bfde003881a97b37d47579d33c2f0fd5522851ac3b43546630d569ec2ab0c8dbf9a43fb3043d5cf2bd04c1b43015178cccd64f3419234b6a781b5965e69bba5c9962ae98ab9e28b6e6d841a127b51a925fc2c759cdb431cdccbaad62bab0084f7a26ffb2b3f6a9bb6ca332b8efe536abb1e9a6b9291576d82e998e1bcfdacea91075674eac1c9c235e10d43b713437f9ff9d2e5b87cba0e821be96374f5d5340fd", 0xa9) bind$auto(0x3, 0x0, 0x6b) 2.367639637s ago: executing program 4 (id=3119): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x303101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(0xffffffffffffffff, 0x4018bc13, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_TO(0x6, 0x2, 0x0, 0x5, 0x80000001) getsockopt$auto_SO_PEEK_OFF(r0, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x1000000, 0x0, 0x20000000}, 0xc004) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"}) newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0x4, 0x0, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) ioctl$auto_SW_SYNC_IOC_INC(r4, 0x40045701, &(0x7f0000000040)=0x8) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) 1.698658362s ago: executing program 1 (id=3120): syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x5, 0x5]}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon5\x00', 0x101040, 0x0) ioctl$auto_MON_IOCH_MFLUSH(r1, 0x9208, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x6af82, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) ioperm$auto(0x7, 0x5ad2, 0x8) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) ioctl$auto_LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x20000003, 0x3, 0x62, 0x8000001d, 0x7, 0x6d3e, 0x9, 0x2, 0x4]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r4, 0x0, 0x20) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0xffffffffffffbffd, 0x8, 0xfffffffffefffffd, 0xeb2, r2, 0x200000101) close_range$auto(r0, r5, 0x7) socket(0x11, 0x3, 0x9) eventfd$auto(0x8c) 1.697945938s ago: executing program 0 (id=3128): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) futex$auto(0x0, 0x85, 0x8, 0x0, 0x0, 0x80800002) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001800), 0xffffffffffffffff) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), r0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007", @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a0001000000", @ANYRES32=r2, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) r3 = socket(0x2, 0x1, 0x0) setsockopt$auto(r3, 0x6, 0x0, 0x0, 0x44) r4 = syz_genetlink_get_family_id$auto_l2tp(0x0, r0) sendmsg$auto_L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, r4, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0xffffffffffffff7f}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80c1}, 0xc0) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r1, 0x200, 0x70bd2d, 0x25dfdbff, {}, [@NETDEV_A_QSTATS_IFINDEX={0x8}, @NETDEV_A_QSTATS_IFINDEX={0x8, 0x1, r2}]}, 0x24}, 0x1, 0x0, 0x0, 0x20001800}, 0x4004) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) connect$auto(0x3, 0x0, 0x55) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 1.534238888s ago: executing program 2 (id=3121): r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x303101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(0xffffffffffffffff, 0x4018bc13, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_TO(0x6, 0x2, 0x0, 0x5, 0x80000001) getsockopt$auto_SO_PEEK_OFF(r0, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf250100"], 0x18}, 0x1, 0x4000000, 0x0, 0x20000000}, 0xc004) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"}) newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0x4, 0x0, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) ioctl$auto_SW_SYNC_IOC_INC(r4, 0x40045701, &(0x7f0000000040)=0x8) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) 569.444681ms ago: executing program 1 (id=3122): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/wireless\x00', 0x400, 0x0) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x46, 0x9}, 0x283) pread64$auto(r0, &(0x7f0000000080)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfey\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xdd\xa1\xa3E\x03\xd4\xc67U\x93\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\xfaHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8\x00\x00\x00', 0x202, 0x7) mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000) mmap$auto(0x1, 0x4, 0x7ff, 0x8000012, 0xffffffffffffffff, 0x4006) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0) bpf$auto(0x9, &(0x7f00000000c0)=@link_update={r1, @new_prog_fd, 0x6}, 0x800003) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r1, 0x1, &(0x7f00000000c0)) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x0, 0x1, 0x0, 0x1e) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0xb, 0xc45d, 0xb, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff) r4 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/discover\x00', 0x80101, 0x0) writev$auto(r4, &(0x7f0000000140)={0x0, 0xe4}, 0x4) r5 = open_tree$auto(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r5, &(0x7f0000000540)={&(0x7f0000000040), 0xc, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYBLOB="10020000", @ANYRES16=r6, @ANYBLOB="000427d37000fedbdf25590000000500f60002000000e4017580d70166800400f3800800f100550800007e08001d00", @ANYRES32, @ANYBLOB="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"], 0x210}, 0x1, 0x0, 0x0, 0x800}, 0x20040004) 568.474184ms ago: executing program 0 (id=3131): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x3, 0xff) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) socket(0x1b, 0x3, 0x76) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20005, 0xdf, 0x12, r0, 0x4) r2 = open_by_handle_at$auto(r1, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d) setsockopt$auto(r2, 0x1, 0x1021, 0x0, 0xd) mmap$auto(0x2, 0x400008, 0xdf, 0xfffffffffffffff7, 0x2, 0x8040) r3 = geteuid() keyctl$auto(0x1e, r3, r3, 0x5, 0x8) mmap$auto(0xfffffffd, 0x8, 0xdf, 0x9b7e, 0x2, 0x8003) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB="e93c0e1c", @ANYRES16=r5, @ANYBLOB="00012bbd7000fedbdf25090000000400670004004a01"], 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51) read$auto(r4, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) 493.926093ms ago: executing program 2 (id=3123): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x6) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8502, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/stable_node_dups\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000280)=""/222, 0xde) write$auto(r1, 0x0, 0x80001) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(0xffffffffffffffff, 0x0, 0x4000000) move_pages$auto(0x1, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x8000000000000000) open(0x0, 0x2a4c0, 0x40) execve$auto(0x0, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x10001, 0x7fffffffffffffff, 0xe817) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) r4 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r4, 0x10008000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'veth0_to_batadv\x00', 0x0}) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYRES16=r6, @ANYRES16=0x0, @ANYBLOB="00012bbd7000fcdbdf250200000008000100", @ANYRES32=0x0, @ANYBLOB="efffffffe2c2720bb1d7bee4bff7a356d55710118b790c085d1a9f49cdf7968a4ee1a157bb4a6bbcaccc505ee006bef82f72518016e87d83bdb3a28645f7f29886b05551ff930a25f8d17fbee7a4424988b1ff24ab7a03752d601c5bfdb2f87c08ff28130c8b550fea40b861fcd40ec84e7e65020ed344a40800000088defafdf0a2de7208b84f1a9350ee5e1910af91bf82ee4e5cb590a83ee527340ae7c08203a50e520ee6b07d14afd48e70c27112fd074fce76649ead502089a574619abac9e934e7ae08cbc0239b3b586509d18101a5f9c67fe9a2bc30d4e612e6f628c5475927adb3823253", @ANYRES32=0x0, @ANYBLOB="ca00038014003800ff02000000000000000000000000000118000d800800a4000a0101000a0018008d722d237d000000dcc2999f973568114b51ae4f9a27ecee43a036900c0294cb63b28dcea84b414320fbe86481b51a94adcc6820c8ab0664748b6e97a3aba891d3ac01cc43a16f3cbd116072b83c6f1a86d42796976e17c1cb1330e9dfea4e1ef01b93cf1f569e4250bb617f150914bce64086bfb407fec26fd65b96a5a8c0f11e73bbb3dcb02fb1f197edd4fe0814009000000000000000000000000000000000000000720002800800290007000000d589a589850587365a716f9a456dc0f8b69cc521b63d4237e716f9db628beb2c3747a256a1df89063dbdee491c3fe43d10fccc44c97f7a07d0d0ce8ccb0156d9c2ab962b93693df74f5fb2990084490ca9123d122b47c5ed2f6101a7fa2fc94768b1b6ba9d5b000008000100", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00.\x00', @ANYRES32=0x0, @ANYBLOB="000008000100", @ANYRES32=r6, @ANYBLOB], 0x530}}, 0x800) pwritev$auto(r5, &(0x7f0000000100)={&(0x7f0000000080), 0xe001}, 0x3, 0xe, 0x3) r7 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r7, 0x40085112, 0x0) mmap$auto(0x7fffffe, 0x6, 0x40005, 0x13, 0x3fd, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0) 0s ago: executing program 4 (id=3124): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) fcntl$auto(0x8000000000000001, 0x5, 0x8) clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x3) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, 0x0, 0x2404c084) r0 = socket(0xa, 0x3, 0xff) connect$auto(r0, 0x0, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001f00), 0xffffffffffffffff) sendmsg$auto_SMC_PNETID_ADD(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x2c, r4, 0x1, 0x70bd2c, 0x25dfdc01, {}, [@SMC_PNETID_ETHNAME={0xc, 0x2, '+o*#\x90\x80\x8b\x00'}, @SMC_PNETID_NAME={0xb, 0x1, 'netdev\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40d0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) kernel console output (not intermixed with test programs): 000 R09: 0000000000000000 [ 764.707467][T27299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 764.707481][T27299] R13: 00007f17873b6038 R14: 00007f17873b5fa0 R15: 00007ffd5a813c88 [ 764.707502][T27299] [ 765.307018][T27339] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2690'. [ 765.402344][T27334] [U] [ 765.405308][T27334] [U] [ 765.408042][T27334] [U] [ 765.410751][T27334] [U] [ 765.413905][T27334] [U] [ 765.416661][T27334] [U] [ 765.419385][T27334] [U] [ 765.422138][T27334] [U] [ 765.435300][T27334] [U] [ 765.438082][T27334] [U] [ 765.440819][T27334] [U] [ 765.443558][T27334] [U] [ 765.505701][T27334] [U] [ 765.508483][T27334] [U] [ 765.511317][T27334] [U] [ 765.514049][T27334] [U] [ 765.536358][T27334] [U] [ 765.539135][T27334] [U] [ 765.541878][T27334] [U] [ 765.544612][T27334] [U] [ 765.548445][T27334] [U] [ 765.551277][T27334] [U] [ 765.554008][T27334] [U] [ 765.556739][T27334] [U] [ 765.596041][T27334] [U] [ 765.598809][T27334] [U] [ 765.601499][T27334] [U] [ 765.604184][T27334] [U] [ 765.657872][T27334] [U] [ 765.660643][T27334] [U] [ 765.663489][T27334] [U] [ 765.666218][T27334] [U] [ 765.714187][T27334] [U] [ 765.716961][T27334] [U] [ 765.719703][T27334] [U] [ 765.722450][T27334] [U] [ 765.820986][T27334] [U] [ 765.823848][T27334] [U] [ 765.826688][T27334] [U] [ 765.829391][T27334] [U] [ 765.881065][T27334] [U] [ 765.883838][T27334] [U] [ 765.886558][T27334] [U] [ 765.889276][T27334] [U] [ 765.959440][T27334] [U] [ 765.962184][T27334] [U] [ 765.964876][T27334] [U] [ 765.967561][T27334] [U] [ 766.175512][T27334] [U] [ 766.544873][T27393] sd 0:0:1:0: PR command failed: 1026 [ 766.553573][T27393] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 766.568774][T27393] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 767.666496][T27432] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2702'. [ 768.680284][T27491] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2710'. [ 769.279881][T27496] zswap: compressor not available [ 769.862557][T27584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2713'. [ 770.262002][T16992] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 770.270381][T16992] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 770.278201][T16992] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 770.318958][T16992] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 770.330085][T16992] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 770.545823][T27632] ptrace attach of "./syz-executor exec"[21865] was attempted by "./syz-executor exec"[27632] [ 770.992269][T27598] chnl_net:caif_netlink_parms(): no params data found [ 771.130395][T27598] bridge0: port 1(bridge_slave_0) entered blocking state [ 771.138745][T27598] bridge0: port 1(bridge_slave_0) entered disabled state [ 771.146627][T27598] bridge_slave_0: entered allmulticast mode [ 771.155886][T27598] bridge_slave_0: entered promiscuous mode [ 771.173680][T27598] bridge0: port 2(bridge_slave_1) entered blocking state [ 771.204986][T27598] bridge0: port 2(bridge_slave_1) entered disabled state [ 771.214233][T27598] bridge_slave_1: entered allmulticast mode [ 771.224617][T27598] bridge_slave_1: entered promiscuous mode [ 771.259543][T27598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 771.375983][T27598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 771.517893][T27598] team0: Port device team_slave_0 added [ 771.547122][T27598] team0: Port device team_slave_1 added [ 772.127765][T27598] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 772.168139][T27598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 772.194161][ C1] vkms_vblank_simulate: vblank timer overrun [ 772.275301][T27598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 772.337457][T27598] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 772.364687][T27598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 772.425568][T16992] Bluetooth: hci2: command tx timeout [ 772.595244][T27598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 772.758701][T27598] hsr_slave_0: entered promiscuous mode [ 772.771089][T27598] hsr_slave_1: entered promiscuous mode [ 772.786945][T27598] debugfs: 'hsr0' already exists in 'hsr' [ 772.795674][T27598] Cannot create hsr debugfs directory [ 773.524514][T27598] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.596520][T28016] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2731'. [ 773.641107][T27598] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.659484][T28017] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2731'. [ 773.688348][T28016] mac80211_hwsim hwsim41 wlan1: entered allmulticast mode [ 773.789200][T27598] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 773.881381][T27598] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 774.044496][T28039] [U] [ 774.047370][T28039] [U] [ 774.050120][T28039] [U] [ 774.052951][T28039] [U] [ 774.056356][T28039] [U] [ 774.059101][T28039] [U] [ 774.061831][T28039] [U] [ 774.064648][T28039] [U] [ 774.075871][T28039] [U] [ 774.078648][T28039] [U] [ 774.081449][T28039] [U] [ 774.084184][T28039] [U] [ 774.095711][T28039] [U] [ 774.098482][T28039] [U] [ 774.101225][T28039] [U] [ 774.103961][T28039] [U] [ 774.109273][T28039] [U] [ 774.112030][T28039] [U] [ 774.114774][T28039] [U] [ 774.117496][T28039] [U] [ 774.122442][T27598] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 774.129375][T28039] [U] [ 774.132114][T28039] [U] [ 774.134851][T28039] [U] [ 774.137571][T28039] [U] [ 774.140675][T28039] [U] [ 774.143417][T28039] [U] [ 774.146162][T28039] [U] [ 774.148915][T28039] [U] [ 774.155183][T28039] [U] [ 774.158020][T28039] [U] [ 774.160745][T28039] [U] [ 774.163461][T28039] [U] [ 774.178217][T28039] [U] [ 774.180979][T28039] [U] [ 774.183718][T28039] [U] [ 774.186455][T28039] [U] [ 774.195027][T27598] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 774.205598][T28039] [U] [ 774.208394][T28039] [U] [ 774.211138][T28039] [U] [ 774.213868][T28039] [U] [ 774.217352][T28039] [U] [ 774.220092][T28039] [U] [ 774.222842][T28039] [U] [ 774.225588][T28039] [U] [ 774.228745][T28039] [U] [ 774.231481][T28039] [U] [ 774.234310][T28039] [U] [ 774.237028][T28039] [U] [ 774.245677][T28039] [U] [ 774.248438][T28039] [U] [ 774.251192][T28039] [U] [ 774.253928][T28039] [U] [ 774.256953][T28039] [U] [ 774.259690][T28039] [U] [ 774.262423][T28039] [U] [ 774.265153][T28039] [U] [ 774.268179][T28039] [U] [ 774.270966][T28039] [U] [ 774.273701][T28039] [U] [ 774.276428][T28039] [U] [ 774.279360][T28039] [U] [ 774.282108][T28039] [U] [ 774.284818][T28039] [U] [ 774.287521][T28039] [U] [ 774.290512][T28039] [U] [ 774.293270][T28039] [U] [ 774.296006][T28039] [U] [ 774.298764][T28039] [U] [ 774.301811][T28039] [U] [ 774.304544][T28039] [U] [ 774.307325][T28039] [U] [ 774.310135][T28039] [U] [ 774.313935][T28039] [U] [ 774.316763][T28039] [U] [ 774.319482][T28039] [U] [ 774.322295][T28039] [U] [ 774.329109][T27598] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 774.335605][T28039] [U] [ 774.338993][T28039] [U] [ 774.341715][T28039] [U] [ 774.344454][T28039] [U] [ 774.347449][T28039] [U] [ 774.350191][T28039] [U] [ 774.352916][T28039] [U] [ 774.355652][T28039] [U] [ 774.358681][T28039] [U] [ 774.361426][T28039] [U] [ 774.364163][T28039] [U] [ 774.366893][T28039] [U] [ 774.369913][T28039] [U] [ 774.372673][T28039] [U] [ 774.375393][T28039] [U] [ 774.378110][T28039] [U] [ 774.381038][T28039] [U] [ 774.383772][T28039] [U] [ 774.386505][T28039] [U] [ 774.389245][T28039] [U] [ 774.394023][T28039] [U] [ 774.396784][T28039] [U] [ 774.398866][T27598] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 774.399511][T28039] [U] [ 774.409055][T28039] [U] [ 774.413288][T28039] [U] [ 774.416031][T28039] [U] [ 774.418769][T28039] [U] [ 774.421670][T28039] [U] [ 774.424730][T28039] [U] [ 774.427474][T28039] [U] [ 774.430208][T28039] [U] [ 774.432946][T28039] [U] [ 774.435963][T28039] [U] [ 774.438696][T28039] [U] [ 774.441425][T28039] [U] [ 774.444244][T28039] [U] [ 774.447351][T28039] [U] [ 774.450084][T28039] [U] [ 774.452825][T28039] [U] [ 774.455544][T28039] [U] [ 774.458638][T28039] [U] [ 774.461376][T28039] [U] [ 774.464114][T28039] [U] [ 774.466932][T28039] [U] [ 774.469971][T28039] [U] [ 774.472707][T28039] [U] [ 774.475479][T28039] [U] [ 774.475905][T16992] Bluetooth: hci2: command tx timeout [ 774.478282][T28039] [U] [ 774.479688][T28039] [U] [ 774.489331][T28039] [U] [ 774.492063][T28039] [U] [ 774.563814][T28039] [U] [ 774.623613][T27598] 8021q: adding VLAN 0 to HW filter on device bond0 [ 774.667148][T27598] 8021q: adding VLAN 0 to HW filter on device team0 [ 774.686511][T14005] bridge0: port 1(bridge_slave_0) entered blocking state [ 774.693657][T14005] bridge0: port 1(bridge_slave_0) entered forwarding state [ 774.712251][T28074] syz.0.2738(28074): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 774.810631][T14005] bridge0: port 2(bridge_slave_1) entered blocking state [ 774.817886][T14005] bridge0: port 2(bridge_slave_1) entered forwarding state [ 774.996922][T27598] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 776.067441][T28120] sp0: Synchronizing with TNC [ 776.070979][T28119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2743'. [ 776.397568][T28119] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2743'. [ 776.631920][T16992] Bluetooth: hci2: command tx timeout [ 777.021988][T27598] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 777.084622][T28143] random: crng reseeded on system resumption [ 778.118620][T27598] veth0_vlan: entered promiscuous mode [ 778.139874][T27598] veth1_vlan: entered promiscuous mode [ 778.272804][T27598] veth0_macvtap: entered promiscuous mode [ 778.328158][T27598] veth1_macvtap: entered promiscuous mode [ 778.384065][T27598] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 778.407889][T27598] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 778.442839][T22755] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.467245][T22755] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.488397][T22755] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.535777][T22755] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 778.717598][T16992] Bluetooth: hci2: command tx timeout [ 779.433790][T28205] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2751'. [ 779.644917][T14449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 779.660971][T14449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 779.722897][T22755] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 779.731348][T22755] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 779.818495][T28243] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2760'. [ 779.867282][T28243] geneve1: entered promiscuous mode [ 779.872555][T28243] geneve1: entered allmulticast mode [ 779.884304][T28243] Invalid ELF header magic: != ELF [ 780.020127][T28259] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 780.412723][T28317] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2763'. [ 780.610189][T28317] mac80211_hwsim hwsim37 : renamed from wlan0 (while UP) [ 781.830252][T28365] usb usb16: usbfs: process 28365 (syz.4.2767) did not claim interface 0 before use [ 782.138208][T28371] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2768'. [ 783.351146][T28449] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2775'. [ 783.463000][T28449] bridge_slave_1: left allmulticast mode [ 783.486718][T28449] bridge_slave_1: left promiscuous mode [ 783.500344][T28449] bridge0: port 2(bridge_slave_1) entered disabled state [ 783.558273][T28449] bridge_slave_0: left allmulticast mode [ 783.580661][T28449] bridge_slave_0: left promiscuous mode [ 783.622375][T28449] bridge0: port 1(bridge_slave_0) entered disabled state [ 784.048937][T28474] mkiss: ax0: crc mode is auto. [ 785.138325][T28506] [U] [ 785.141150][T28506] [U] [ 785.143847][T28506] [U] [ 785.146535][T28506] [U] [ 785.156887][T28508] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2783'. [ 785.178530][T28506] [U] [ 785.181373][T28506] [U] [ 785.184071][T28506] [U] [ 785.186789][T28506] [U] [ 785.287137][T28506] [U] [ 785.289916][T28506] [U] [ 785.292769][T28506] [U] [ 785.295538][T28506] [U] [ 785.311730][T28506] [U] [ 785.314453][T28506] [U] [ 785.317181][T28506] [U] [ 785.319924][T28506] [U] [ 785.349095][T28506] [U] [ 785.351830][T28506] [U] [ 785.354530][T28506] [U] [ 785.357266][T28506] [U] [ 785.496629][T28506] [U] [ 785.499387][T28506] [U] [ 785.502113][T28506] [U] [ 785.504849][T28506] [U] [ 785.536406][T28506] [U] [ 785.539234][T28506] [U] [ 785.542013][T28506] [U] [ 785.544735][T28506] [U] [ 785.548794][T28506] [U] [ 785.551502][T28506] [U] [ 785.554289][T28506] [U] [ 785.557021][T28506] [U] [ 785.610123][T28506] [U] [ 785.612854][T28506] [U] [ 785.615557][T28506] [U] [ 785.618348][T28506] [U] [ 785.685702][T28506] [U] [ 785.688480][T28506] [U] [ 785.691229][T28506] [U] [ 785.693967][T28506] [U] [ 785.697685][T28506] [U] [ 785.700431][T28506] [U] [ 785.703166][T28506] [U] [ 785.705893][T28506] [U] [ 785.709128][T28506] [U] [ 785.847380][T28520] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2794'. [ 786.772916][T28587] netlink: 4960 bytes leftover after parsing attributes in process `syz.1.2789'. [ 787.068031][T28605] FAULT_INJECTION: forcing a failure. [ 787.068031][T28605] name failslab, interval 1, probability 0, space 0, times 0 [ 787.094163][T28605] CPU: 0 UID: 0 PID: 28605 Comm: syz.4.2792 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 787.094206][T28605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 787.094222][T28605] Call Trace: [ 787.094233][T28605] [ 787.094244][T28605] dump_stack_lvl+0x16c/0x1f0 [ 787.094285][T28605] should_fail_ex+0x512/0x640 [ 787.094328][T28605] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 787.094372][T28605] should_failslab+0xc2/0x120 [ 787.094413][T28605] __kmalloc_noprof+0xd2/0x510 [ 787.094462][T28605] tomoyo_realpath_from_path+0xc2/0x6e0 [ 787.094511][T28605] tomoyo_check_open_permission+0x2ab/0x3c0 [ 787.094550][T28605] ? init_file+0x93/0x4c0 [ 787.094592][T28605] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 787.094630][T28605] ? do_sys_openat2+0x11b/0x1d0 [ 787.094675][T28605] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 787.094710][T28605] ? rcu_is_watching+0x12/0xc0 [ 787.094751][T28605] ? do_raw_spin_lock+0x12c/0x2b0 [ 787.094802][T28605] ? path_get+0x61/0x80 [ 787.094843][T28605] ? rcu_is_watching+0x12/0xc0 [ 787.094876][T28605] tomoyo_file_open+0x6b/0x90 [ 787.094906][T28605] security_file_open+0x84/0x1e0 [ 787.094949][T28605] do_dentry_open+0x596/0x1530 [ 787.094992][T28605] vfs_open+0x82/0x3f0 [ 787.095037][T28605] path_openat+0x1de4/0x2cb0 [ 787.095079][T28605] ? __pfx_path_openat+0x10/0x10 [ 787.095119][T28605] do_filp_open+0x20b/0x470 [ 787.095156][T28605] ? __pfx_do_filp_open+0x10/0x10 [ 787.095195][T28605] ? alloc_fd+0x471/0x7d0 [ 787.095226][T28605] do_sys_openat2+0x11b/0x1d0 [ 787.095264][T28605] ? __pfx_do_sys_openat2+0x10/0x10 [ 787.095332][T28605] __x64_sys_openat+0x174/0x210 [ 787.095379][T28605] ? __pfx___x64_sys_openat+0x10/0x10 [ 787.095443][T28605] do_syscall_64+0xcd/0x490 [ 787.095484][T28605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 787.095516][T28605] RIP: 0033:0x7fec8a38ebe9 [ 787.095541][T28605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 787.095573][T28605] RSP: 002b:00007fec8b27f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 787.095606][T28605] RAX: ffffffffffffffda RBX: 00007fec8a5b6090 RCX: 00007fec8a38ebe9 [ 787.095628][T28605] RDX: 0000000000181881 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 787.095649][T28605] RBP: 00007fec8a411e19 R08: 0000000000000000 R09: 0000000000000000 [ 787.095668][T28605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 787.095687][T28605] R13: 00007fec8a5b6128 R14: 00007fec8a5b6090 R15: 00007ffd0158d5f8 [ 787.095716][T28605] [ 787.432947][T28605] ERROR: Out of memory at tomoyo_realpath_from_path. [ 788.832794][T28658] [U] [ 788.835648][T28658] [U] [ 788.838389][T28658] [U] [ 788.841130][T28658] [U] [ 788.842430][T28659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2799'. [ 788.903358][T28658] [U] [ 788.906283][T28658] [U] [ 788.909020][T28658] [U] [ 788.911758][T28658] [U] [ 788.919463][T28658] [U] [ 788.922217][T28658] [U] [ 788.925039][T28658] [U] [ 788.927860][T28658] [U] [ 788.951622][T28658] [U] [ 788.954390][T28658] [U] [ 788.957124][T28658] [U] [ 788.959865][T28658] [U] [ 789.025080][T28658] [U] [ 789.027813][T28658] [U] [ 789.030513][T28658] [U] [ 789.033289][T28658] [U] [ 789.085892][T28658] [U] [ 789.088636][T28658] [U] [ 789.091335][T28658] [U] [ 789.094045][T28658] [U] [ 789.103634][T28658] [U] [ 789.106536][T28658] [U] [ 789.109248][T28658] [U] [ 789.111935][T28658] [U] [ 789.116352][T28658] [U] [ 789.119080][T28658] [U] [ 789.121769][T28658] [U] [ 789.124550][T28658] [U] [ 789.131203][T28658] [U] [ 789.133975][T28658] [U] [ 789.136712][T28658] [U] [ 789.139449][T28658] [U] [ 789.156083][T28658] [U] [ 789.158813][T28658] [U] [ 789.161505][T28658] [U] [ 789.164405][T28658] [U] [ 789.228353][T28658] [U] [ 789.231086][T28658] [U] [ 789.233781][T28658] [U] [ 789.236500][T28658] [U] [ 789.465238][T28658] [U] [ 790.115493][T28683] futex_wake_op: syz.1.2803 tries to shift op by -2048; fix this program [ 790.124165][T28683] futex_wake_op: syz.1.2803 tries to shift op by -2048; fix this program [ 790.160499][T28686] FAULT_INJECTION: forcing a failure. [ 790.160499][T28686] name failslab, interval 1, probability 0, space 0, times 0 [ 790.183509][T28686] CPU: 0 UID: 0 PID: 28686 Comm: syz.1.2803 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 790.183559][T28686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 790.183578][T28686] Call Trace: [ 790.183588][T28686] [ 790.183600][T28686] dump_stack_lvl+0x16c/0x1f0 [ 790.183643][T28686] should_fail_ex+0x512/0x640 [ 790.183684][T28686] should_failslab+0xc2/0x120 [ 790.183719][T28686] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 790.183753][T28686] ? security_file_alloc+0x34/0x2b0 [ 790.183794][T28686] security_file_alloc+0x34/0x2b0 [ 790.183831][T28686] init_file+0x93/0x4c0 [ 790.183868][T28686] alloc_empty_file+0x73/0x1e0 [ 790.183910][T28686] alloc_file_pseudo+0x13a/0x230 [ 790.183952][T28686] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 790.183994][T28686] ? do_raw_spin_unlock+0x172/0x230 [ 790.184039][T28686] __anon_inode_getfile+0xe8/0x280 [ 790.184075][T28686] anon_inode_getfile_fmode+0x37/0xa0 [ 790.184113][T28686] do_signalfd4+0x206/0x430 [ 790.184162][T28686] __x64_sys_signalfd4+0x14b/0x1d0 [ 790.184201][T28686] ? __pfx___x64_sys_signalfd4+0x10/0x10 [ 790.184245][T28686] do_syscall_64+0xcd/0x490 [ 790.184284][T28686] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 790.184315][T28686] RIP: 0033:0x7f4b8058ebe9 [ 790.184339][T28686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 790.184370][T28686] RSP: 002b:00007f4b81426038 EFLAGS: 00000246 ORIG_RAX: 0000000000000121 [ 790.184400][T28686] RAX: ffffffffffffffda RBX: 00007f4b807b6090 RCX: 00007f4b8058ebe9 [ 790.184420][T28686] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 00000000ffffffff [ 790.184439][T28686] RBP: 00007f4b80611e19 R08: 0000000000000000 R09: 0000000000000000 [ 790.184458][T28686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 790.184476][T28686] R13: 00007f4b807b6128 R14: 00007f4b807b6090 R15: 00007fff72b2a488 [ 790.184503][T28686] [ 790.688257][T28693] __vm_enough_memory: pid: 28693, comm: syz.2.2805, bytes: 4398046511104 not enough memory for the allocation [ 792.084429][T28731] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2809'. [ 792.637453][T28731] bridge_slave_1: left allmulticast mode [ 792.714957][T28731] bridge_slave_1: left promiscuous mode [ 792.725001][T28731] bridge0: port 2(bridge_slave_1) entered disabled state [ 792.750774][T28731] bridge_slave_0: left allmulticast mode [ 792.764362][T28731] bridge_slave_0: left promiscuous mode [ 792.780959][T28731] bridge0: port 1(bridge_slave_0) entered disabled state [ 792.811911][T28744] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 792.818458][T28744] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 792.825309][T28744] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 792.833928][T28744] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 792.841312][T28744] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 792.852160][T28744] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 792.859646][T28744] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 792.866405][T28744] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 792.873670][T28744] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 792.880528][T28744] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 792.889134][T28744] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 793.109722][T28765] random: crng reseeded on system resumption [ 793.462522][T28763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2811'. [ 793.624454][T28788] FAULT_INJECTION: forcing a failure. [ 793.624454][T28788] name fail_futex, interval 1, probability 0, space 0, times 0 [ 793.641346][T28788] CPU: 0 UID: 60928 PID: 28788 Comm: syz.0.2816 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 793.641384][T28788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 793.641396][T28788] Call Trace: [ 793.641402][T28788] [ 793.641409][T28788] dump_stack_lvl+0x16c/0x1f0 [ 793.641436][T28788] should_fail_ex+0x512/0x640 [ 793.641463][T28788] get_futex_key+0x1d0/0x1560 [ 793.641484][T28788] ? __pfx_get_futex_key+0x10/0x10 [ 793.641504][T28788] ? __set_oom_adj.isra.0+0x4f4/0x10e0 [ 793.641529][T28788] futex_wake+0xea/0x530 [ 793.641553][T28788] ? rcu_is_watching+0x12/0xc0 [ 793.641571][T28788] ? ksys_write+0x12a/0x250 [ 793.641592][T28788] ? __pfx_futex_wake+0x10/0x10 [ 793.641616][T28788] ? lock_release+0x201/0x2f0 [ 793.641639][T28788] ? ksys_write+0x190/0x250 [ 793.641657][T28788] ? rcu_is_watching+0x12/0xc0 [ 793.641674][T28788] ? lock_release+0x201/0x2f0 [ 793.641697][T28788] do_futex+0x1e3/0x350 [ 793.641718][T28788] ? __pfx_do_futex+0x10/0x10 [ 793.641742][T28788] __x64_sys_futex+0x1e0/0x4c0 [ 793.641764][T28788] ? fput+0x9b/0xd0 [ 793.641786][T28788] ? __pfx___x64_sys_futex+0x10/0x10 [ 793.641807][T28788] ? ksys_write+0x1ac/0x250 [ 793.641826][T28788] ? __pfx_ksys_write+0x10/0x10 [ 793.641848][T28788] do_syscall_64+0xcd/0x490 [ 793.641871][T28788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 793.641890][T28788] RIP: 0033:0x7fa97598ebe9 [ 793.641904][T28788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 793.641922][T28788] RSP: 002b:00007fa9768290e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 793.641940][T28788] RAX: ffffffffffffffda RBX: 00007fa975bb5fa8 RCX: 00007fa97598ebe9 [ 793.641952][T28788] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa975bb5fac [ 793.641962][T28788] RBP: 00007fa975bb5fa0 R08: 00007fa97682a000 R09: 0000000000000000 [ 793.641973][T28788] R10: 000000000000000c R11: 0000000000000246 R12: 0000000000000000 [ 793.641984][T28788] R13: 00007fa975bb6038 R14: 00007ffec6354090 R15: 00007ffec6354178 [ 793.641999][T28788] [ 794.726045][T16992] Bluetooth: hci0: command 0x0406 tx timeout [ 794.876770][T16992] Bluetooth: hci2: command 0x0c1a tx timeout [ 794.884303][T25880] Bluetooth: hci3: command 0x0c1a tx timeout [ 794.891007][T25880] Bluetooth: hci1: command 0x0c1a tx timeout [ 796.259695][T28910] tipc: Started in network mode [ 796.265890][T28910] tipc: Node identity ee00, cluster identity 4711 [ 796.273109][T28910] tipc: Node number set to 60928 [ 796.490448][T28914] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 796.796116][T28840] Bluetooth: hci0: command 0x0406 tx timeout [ 796.955659][T28840] Bluetooth: hci2: command 0x0c1a tx timeout [ 796.957736][T16992] Bluetooth: hci1: command 0x0c1a tx timeout [ 796.957913][T13854] Bluetooth: hci3: command 0x0c1a tx timeout [ 799.040046][T28840] Bluetooth: hci2: command 0x0c1a tx timeout [ 799.046336][T16992] Bluetooth: hci1: command 0x0c1a tx timeout [ 799.053941][T13854] Bluetooth: hci3: command 0x0c1a tx timeout [ 799.061873][T29085] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2836'. [ 799.145261][T29088] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 799.699824][T29150] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 800.621718][T29199] FAULT_INJECTION: forcing a failure. [ 800.621718][T29199] name failslab, interval 1, probability 0, space 0, times 0 [ 800.635797][T29199] CPU: 1 UID: 0 PID: 29199 Comm: syz.4.2847 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 800.635841][T29199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 800.635856][T29199] Call Trace: [ 800.635866][T29199] [ 800.635878][T29199] dump_stack_lvl+0x16c/0x1f0 [ 800.635921][T29199] should_fail_ex+0x512/0x640 [ 800.635966][T29199] should_failslab+0xc2/0x120 [ 800.636006][T29199] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 800.636058][T29199] ? __kernfs_new_node+0x2fd/0x8e0 [ 800.636096][T29199] ? __kernfs_new_node+0xd2/0x8e0 [ 800.636136][T29199] __kernfs_new_node+0xd2/0x8e0 [ 800.636175][T29199] ? rcu_is_watching+0x12/0xc0 [ 800.636206][T29199] ? __pfx___kernfs_new_node+0x10/0x10 [ 800.636241][T29199] ? __pfx___might_resched+0x10/0x10 [ 800.636274][T29199] ? rcu_is_watching+0x12/0xc0 [ 800.636305][T29199] ? kernfs_root+0xee/0x2a0 [ 800.636342][T29199] ? rcu_is_watching+0x12/0xc0 [ 800.636373][T29199] ? lock_release+0x201/0x2f0 [ 800.636414][T29199] kernfs_new_node+0x13c/0x1e0 [ 800.636460][T29199] __kernfs_create_file+0x53/0x350 [ 800.636492][T29199] sysfs_add_file_mode_ns+0x207/0x3c0 [ 800.636534][T29199] internal_create_group+0x578/0xf30 [ 800.636579][T29199] ? __pfx_internal_create_group+0x10/0x10 [ 800.636626][T29199] ? kernfs_create_link+0x1bd/0x240 [ 800.636660][T29199] internal_create_groups+0x9d/0x150 [ 800.636700][T29199] device_add+0xf30/0x1aa0 [ 800.636731][T29199] ? __pfx_device_add+0x10/0x10 [ 800.636758][T29199] ? lockdep_init_map_type+0x5c/0x280 [ 800.636801][T29199] ? __init_waitqueue_head+0xca/0x150 [ 800.636853][T29199] netdev_register_kobject+0x1a9/0x3d0 [ 800.636904][T29199] register_netdevice+0x13dc/0x2270 [ 800.636953][T29199] ? __pfx_register_netdevice+0x10/0x10 [ 800.637002][T29199] __tun_chr_ioctl+0x1ed9/0x48b0 [ 800.637038][T29199] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 800.637088][T29199] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 800.637138][T29199] ? rcu_is_watching+0x12/0xc0 [ 800.637171][T29199] ? hook_file_ioctl_common+0x145/0x410 [ 800.637216][T29199] ? __fget_files+0x20e/0x3c0 [ 800.637253][T29199] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 800.637280][T29199] __x64_sys_ioctl+0x18e/0x210 [ 800.637328][T29199] do_syscall_64+0xcd/0x490 [ 800.637369][T29199] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 800.637401][T29199] RIP: 0033:0x7fec8a38ebe9 [ 800.637426][T29199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 800.637457][T29199] RSP: 002b:00007fec8b2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 800.637488][T29199] RAX: ffffffffffffffda RBX: 00007fec8a5b5fa0 RCX: 00007fec8a38ebe9 [ 800.637509][T29199] RDX: 0000000000000038 RSI: 00000000400454ca RDI: 0000000000000003 [ 800.637528][T29199] RBP: 00007fec8a411e19 R08: 0000000000000000 R09: 0000000000000000 [ 800.637547][T29199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 800.637566][T29199] R13: 00007fec8a5b6038 R14: 00007fec8a5b5fa0 R15: 00007ffd0158d5f8 [ 800.637605][T29199] [ 800.942313][ C1] vkms_vblank_simulate: vblank timer overrun [ 801.113497][T29224] __vm_enough_memory: pid: 29224, comm: syz.0.2848, bytes: 4398046511104 not enough memory for the allocation [ 801.499152][T29231] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2850'. [ 801.676180][T28840] Bluetooth: hci4: command 0xfc11 tx timeout [ 801.682596][T13854] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 801.959210][T29247] FAULT_INJECTION: forcing a failure. [ 801.959210][T29247] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 801.998163][T29247] CPU: 0 UID: 0 PID: 29247 Comm: syz.1.2854 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 801.998194][T29247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 801.998205][T29247] Call Trace: [ 801.998211][T29247] [ 801.998217][T29247] dump_stack_lvl+0x16c/0x1f0 [ 801.998243][T29247] should_fail_ex+0x512/0x640 [ 801.998269][T29247] _copy_from_user+0x2e/0xd0 [ 801.998296][T29247] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 801.998317][T29247] snd_rawmidi_write+0x26e/0xc10 [ 801.998337][T29247] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 801.998361][T29247] ? __pfx_default_wake_function+0x10/0x10 [ 801.998380][T29247] ? bpf_lsm_file_permission+0x9/0x10 [ 801.998406][T29247] ? security_file_permission+0x71/0x210 [ 801.998430][T29247] ? rw_verify_area+0xcf/0x6c0 [ 801.998448][T29247] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 801.998465][T29247] vfs_write+0x29d/0x11d0 [ 801.998486][T29247] ? __pfx_vfs_write+0x10/0x10 [ 801.998505][T29247] ? __fget_files+0x204/0x3c0 [ 801.998523][T29247] ? rcu_is_watching+0x12/0xc0 [ 801.998541][T29247] ? lock_release+0x201/0x2f0 [ 801.998563][T29247] ? __fget_files+0x20e/0x3c0 [ 801.998583][T29247] ksys_write+0x1f8/0x250 [ 801.998602][T29247] ? __pfx_ksys_write+0x10/0x10 [ 801.998633][T29247] do_syscall_64+0xcd/0x490 [ 801.998671][T29247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.998701][T29247] RIP: 0033:0x7f4b8058ebe9 [ 801.998724][T29247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 801.998745][T29247] RSP: 002b:00007f4b81447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 801.998762][T29247] RAX: ffffffffffffffda RBX: 00007f4b807b5fa0 RCX: 00007f4b8058ebe9 [ 801.998774][T29247] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 801.998785][T29247] RBP: 00007f4b81447090 R08: 0000000000000000 R09: 0000000000000000 [ 801.998795][T29247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 801.998806][T29247] R13: 00007f4b807b6038 R14: 00007f4b807b5fa0 R15: 00007fff72b2a488 [ 801.998821][T29247] [ 802.249509][T29248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2853'. [ 803.055162][T29258] vivid-003: ================= START STATUS ================= [ 803.156979][T29258] vivid-003: Radio HW Seek Mode: Bounded [ 803.174322][T29258] vivid-003: Radio Programmable HW Seek: false [ 803.228223][T29258] vivid-003: RDS Rx I/O Mode: Block I/O [ 803.238329][T29258] vivid-003: Generate RBDS Instead of RDS: false [ 803.246663][T29258] vivid-003: RDS Reception: true [ 803.252101][T29258] vivid-003: RDS Program Type: 0 inactive [ 803.258563][T29258] vivid-003: RDS PS Name: inactive [ 803.281654][T29258] vivid-003: RDS Radio Text: inactive [ 803.373787][T29258] vivid-003: RDS Traffic Announcement: false inactive [ 803.381224][T29258] vivid-003: RDS Traffic Program: false inactive [ 803.389636][T29258] vivid-003: RDS Music: false inactive [ 803.430202][T29258] vivid-003: ================== END STATUS ================== [ 803.748334][T29340] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2859'. [ 804.871582][T29395] zswap: compressor not available [ 805.402475][T29409] FAULT_INJECTION: forcing a failure. [ 805.402475][T29409] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 805.416500][T29409] CPU: 0 UID: 0 PID: 29409 Comm: syz.0.2866 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 805.416537][T29409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 805.416548][T29409] Call Trace: [ 805.416554][T29409] [ 805.416561][T29409] dump_stack_lvl+0x16c/0x1f0 [ 805.416587][T29409] should_fail_ex+0x512/0x640 [ 805.416613][T29409] should_fail_alloc_page+0xe7/0x130 [ 805.416638][T29409] prepare_alloc_pages+0x3c2/0x610 [ 805.416663][T29409] ? rcu_is_watching+0x12/0xc0 [ 805.416683][T29409] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 805.416705][T29409] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 805.416725][T29409] ? is_bpf_text_address+0x94/0x1a0 [ 805.416748][T29409] ? kernel_text_address+0x8d/0x100 [ 805.416764][T29409] ? __kernel_text_address+0xd/0x40 [ 805.416779][T29409] ? unwind_get_return_address+0x59/0xa0 [ 805.416803][T29409] ? arch_stack_walk+0xa6/0x100 [ 805.416822][T29409] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 805.416847][T29409] ? stack_depot_save_flags+0x29/0x9c0 [ 805.416871][T29409] ? stack_trace_save+0x8e/0xc0 [ 805.416889][T29409] ? __pfx_stack_trace_save+0x10/0x10 [ 805.416909][T29409] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 805.416936][T29409] ? policy_nodemask+0xea/0x4e0 [ 805.416958][T29409] alloc_pages_mpol+0x1fb/0x550 [ 805.416980][T29409] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 805.417005][T29409] alloc_pages_noprof+0x131/0x390 [ 805.417042][T29409] kimage_alloc_pages+0x75/0x350 [ 805.417076][T29409] kimage_alloc_control_pages+0x153/0xa00 [ 805.417102][T29409] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 805.417133][T29409] do_kexec_load+0x478/0x8a0 [ 805.417151][T29409] ? __pfx_do_kexec_load+0x10/0x10 [ 805.417169][T29409] ? _copy_from_user+0x59/0xd0 [ 805.417197][T29409] __x64_sys_kexec_load+0x1bf/0x230 [ 805.417216][T29409] do_syscall_64+0xcd/0x490 [ 805.417239][T29409] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 805.417257][T29409] RIP: 0033:0x7fa97598ebe9 [ 805.417272][T29409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.417290][T29409] RSP: 002b:00007fa976808038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 805.417314][T29409] RAX: ffffffffffffffda RBX: 00007fa975bb6090 RCX: 00007fa97598ebe9 [ 805.417326][T29409] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000005 [ 805.417337][T29409] RBP: 00007fa975a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 805.417348][T29409] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 805.417359][T29409] R13: 00007fa975bb6128 R14: 00007fa975bb6090 R15: 00007ffec6354178 [ 805.417374][T29409] [ 805.746682][T29409] kexec: Could not allocate control_code_buffer [ 805.887220][T29469] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2867'. [ 806.000675][T29438] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 806.231601][T29478] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2871'. [ 806.325976][T29476] netlink: 13 bytes leftover after parsing attributes in process `syz.2.2867'. [ 806.357863][T29438] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 806.415853][T29438] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 806.445538][T29438] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 806.796981][T29493] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2874'. [ 806.925274][T29395] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 806.988706][T29498] hub 8-0:1.0: USB hub found [ 807.003619][T29498] hub 8-0:1.0: 1 port detected [ 807.615861][T29513] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 807.622086][T29513] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 807.632199][T29513] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 807.645697][T29513] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 809.675480][T28840] Bluetooth: hci2: command 0x0c1a tx timeout [ 809.681656][T13854] Bluetooth: hci3: command 0x0c1a tx timeout [ 809.689555][T16992] Bluetooth: hci1: command 0x0c1a tx timeout [ 809.695873][T13854] Bluetooth: hci0: command 0x0406 tx timeout [ 809.803048][T29648] FAULT_INJECTION: forcing a failure. [ 809.803048][T29648] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 809.846112][T29648] CPU: 0 UID: 0 PID: 29648 Comm: syz.4.2889 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 809.846145][T29648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 809.846156][T29648] Call Trace: [ 809.846162][T29648] [ 809.846168][T29648] dump_stack_lvl+0x16c/0x1f0 [ 809.846195][T29648] should_fail_ex+0x512/0x640 [ 809.846220][T29648] _copy_from_user+0x2e/0xd0 [ 809.846246][T29648] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 809.846271][T29648] snd_rawmidi_write+0x26e/0xc10 [ 809.846290][T29648] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 809.846309][T29648] ? __pfx_default_wake_function+0x10/0x10 [ 809.846328][T29648] ? bpf_lsm_file_permission+0x9/0x10 [ 809.846352][T29648] ? security_file_permission+0x71/0x210 [ 809.846377][T29648] ? rw_verify_area+0xcf/0x6c0 [ 809.846395][T29648] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 809.846412][T29648] vfs_write+0x29d/0x11d0 [ 809.846432][T29648] ? __pfx_vfs_write+0x10/0x10 [ 809.846451][T29648] ? __fget_files+0x204/0x3c0 [ 809.846473][T29648] ? rcu_is_watching+0x12/0xc0 [ 809.846491][T29648] ? lock_release+0x201/0x2f0 [ 809.846514][T29648] ? __fget_files+0x20e/0x3c0 [ 809.846533][T29648] ksys_write+0x1f8/0x250 [ 809.846552][T29648] ? __pfx_ksys_write+0x10/0x10 [ 809.846574][T29648] do_syscall_64+0xcd/0x490 [ 809.846598][T29648] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 809.846616][T29648] RIP: 0033:0x7fec8a38ebe9 [ 809.846630][T29648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 809.846648][T29648] RSP: 002b:00007fec8b2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 809.846666][T29648] RAX: ffffffffffffffda RBX: 00007fec8a5b5fa0 RCX: 00007fec8a38ebe9 [ 809.846678][T29648] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 809.846689][T29648] RBP: 00007fec8b2a0090 R08: 0000000000000000 R09: 0000000000000000 [ 809.846699][T29648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 809.846710][T29648] R13: 00007fec8a5b6038 R14: 00007fec8a5b5fa0 R15: 00007ffd0158d5f8 [ 809.846733][T29648] [ 810.064232][ C0] vkms_vblank_simulate: vblank timer overrun [ 810.212861][T29677] nvme_fcloop: unknown parameter or missing value '7' [ 810.405895][T29703] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 810.412020][T29703] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 810.419439][T29703] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 810.425767][T29703] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 810.464877][T29680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2891'. [ 810.475191][T29680] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2891'. [ 810.675799][T29711] FAULT_INJECTION: forcing a failure. [ 810.675799][T29711] name failslab, interval 1, probability 0, space 0, times 0 [ 810.702713][T29711] CPU: 1 UID: 0 PID: 29711 Comm: syz.0.2893 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 810.702756][T29711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 810.702771][T29711] Call Trace: [ 810.702780][T29711] [ 810.702789][T29711] dump_stack_lvl+0x16c/0x1f0 [ 810.702825][T29711] should_fail_ex+0x512/0x640 [ 810.702861][T29711] should_failslab+0xc2/0x120 [ 810.702895][T29711] kmem_cache_alloc_bulk_noprof+0x85/0xbc0 [ 810.702926][T29711] ? trace_kmem_cache_alloc+0x28/0xc0 [ 810.702960][T29711] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 810.702986][T29711] ? unwind_get_return_address+0x59/0xa0 [ 810.703011][T29711] ? mas_alloc_nodes+0x18b/0x8b0 [ 810.703037][T29711] ? mas_alloc_nodes+0x2f1/0x8b0 [ 810.703060][T29711] mas_alloc_nodes+0x2f1/0x8b0 [ 810.703087][T29711] mas_node_count_gfp+0x105/0x130 [ 810.703114][T29711] mas_preallocate+0x7e0/0xde0 [ 810.703149][T29711] ? __pfx_mas_preallocate+0x10/0x10 [ 810.703185][T29711] ? rcu_is_watching+0x12/0xc0 [ 810.703210][T29711] ? lock_release+0x201/0x2f0 [ 810.703251][T29711] vma_link+0x135/0x6a0 [ 810.703279][T29711] ? __pfx_vma_link+0x10/0x10 [ 810.703305][T29711] ? rcu_is_watching+0x12/0xc0 [ 810.703330][T29711] ? anon_vma_clone+0x405/0x5c0 [ 810.703354][T29711] ? anon_vma_name+0x81/0x2f0 [ 810.703390][T29711] copy_vma+0x6c2/0xaa0 [ 810.703419][T29711] ? __pfx_copy_vma+0x10/0x10 [ 810.703445][T29711] ? update_load_avg+0x23f/0x1fc0 [ 810.703477][T29711] ? trace_pid_list_is_set+0xfb/0x150 [ 810.703506][T29711] ? rcu_is_watching+0x12/0xc0 [ 810.703534][T29711] ? rcu_is_watching+0x12/0xc0 [ 810.703557][T29711] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 810.703594][T29711] copy_vma_and_data+0x1cf/0x790 [ 810.703622][T29711] ? __pfx_copy_vma_and_data+0x10/0x10 [ 810.703647][T29711] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 810.703677][T29711] ? __vma_enter_locked+0x163/0x3f0 [ 810.703700][T29711] ? __pfx___vma_enter_locked+0x10/0x10 [ 810.703722][T29711] ? move_vma+0x536/0x1780 [ 810.703746][T29711] ? rcu_is_watching+0x12/0xc0 [ 810.703769][T29711] ? lock_release+0x201/0x2f0 [ 810.703801][T29711] move_vma+0x548/0x1780 [ 810.703828][T29711] ? __pfx_move_vma+0x10/0x10 [ 810.703852][T29711] ? mm_get_unmapped_area+0x95/0xe0 [ 810.703886][T29711] ? shmem_get_unmapped_area+0x170/0xa00 [ 810.703909][T29711] ? cap_mmap_addr+0x4b/0x120 [ 810.703932][T29711] ? bpf_lsm_mmap_addr+0x9/0x10 [ 810.703965][T29711] ? security_mmap_addr+0x6c/0x1e0 [ 810.703996][T29711] ? __get_unmapped_area+0x267/0x440 [ 810.704030][T29711] ? vrm_set_new_addr+0x208/0x290 [ 810.704056][T29711] mremap_to+0x1b7/0x450 [ 810.704081][T29711] do_mremap+0x1004/0x1f80 [ 810.704112][T29711] ? __pfx_do_mremap+0x10/0x10 [ 810.704140][T29711] ? up_write+0x1b2/0x520 [ 810.704175][T29711] __do_sys_mremap+0x119/0x170 [ 810.704200][T29711] ? __pfx___do_sys_mremap+0x10/0x10 [ 810.704236][T29711] ? __x64_sys_futex+0x1e0/0x4c0 [ 810.704273][T29711] do_syscall_64+0xcd/0x490 [ 810.704303][T29711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 810.704327][T29711] RIP: 0033:0x7fa97598ebe9 [ 810.704345][T29711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 810.704369][T29711] RSP: 002b:00007fa976829038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 810.704393][T29711] RAX: ffffffffffffffda RBX: 00007fa975bb5fa0 RCX: 00007fa97598ebe9 [ 810.704409][T29711] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 810.704423][T29711] RBP: 00007fa975a11e19 R08: 00007effffffb000 R09: 0000000000000000 [ 810.704437][T29711] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 810.704451][T29711] R13: 00007fa975bb6038 R14: 00007fa975bb5fa0 R15: 00007ffec6354178 [ 810.704473][T29711] [ 811.584763][T29777] [U] [ 811.587582][T29777] [U] [ 811.590273][T29777] [U] [ 811.593029][T29777] [U] [ 811.596083][T29777] [U] [ 811.598843][T29777] [U] [ 811.601597][T29777] [U] [ 811.604304][T29777] [U] [ 811.607279][T29777] [U] [ 811.609985][T29777] [U] [ 811.612679][T29777] [U] [ 811.615399][T29777] [U] [ 811.619347][T29777] [U] [ 811.622079][T29777] [U] [ 811.624785][T29777] [U] [ 811.627487][T29777] [U] [ 811.630497][T29777] [U] [ 811.633188][T29777] [U] [ 811.635907][T29777] [U] [ 811.638644][T29777] [U] [ 811.643089][T29777] [U] [ 811.645837][T29777] [U] [ 811.648574][T29777] [U] [ 811.651308][T29777] [U] [ 811.654816][T29777] [U] [ 811.657539][T29777] [U] [ 811.660247][T29777] [U] [ 811.662959][T29777] [U] [ 811.671058][T29777] [U] [ 811.673823][T29777] [U] [ 811.676557][T29777] [U] [ 811.679279][T29777] [U] [ 811.687303][T29777] [U] [ 811.690209][T29777] [U] [ 811.692974][T29777] [U] [ 811.695721][T29777] [U] [ 811.703233][T29777] [U] [ 811.705975][T29777] [U] [ 811.708710][T29777] [U] [ 811.711447][T29777] [U] [ 811.716156][T29777] [U] [ 811.718917][T29777] [U] [ 811.721634][T29777] [U] [ 811.724329][T29777] [U] [ 811.747111][T29777] [U] [ 811.749896][T29777] [U] [ 811.752635][T29777] [U] [ 811.755362][T29777] [U] [ 811.771637][T29777] [U] [ 811.774494][T29777] [U] [ 811.777237][T29777] [U] [ 811.779983][T29777] [U] [ 811.783429][T29777] [U] [ 811.786264][T29777] [U] [ 811.788991][T29777] [U] [ 811.791702][T29777] [U] [ 811.809037][T29777] [U] [ 811.811792][T29777] [U] [ 811.814509][T29777] [U] [ 811.817219][T29777] [U] [ 811.836181][T29777] [U] [ 811.838951][T29777] [U] [ 811.841671][T29777] [U] [ 811.844372][T29777] [U] [ 811.847795][T29777] [U] [ 811.850527][T29777] [U] [ 811.853279][T29777] [U] [ 811.856058][T29777] [U] [ 811.859511][T29777] [U] [ 811.862280][T29777] [U] [ 811.865130][T29777] [U] [ 811.867980][T29777] [U] [ 811.871711][T29777] [U] [ 811.874454][T29777] [U] [ 811.877177][T29777] [U] [ 811.880013][T29777] [U] [ 811.886002][T29777] [U] [ 811.888762][T29777] [U] [ 811.891494][T29777] [U] [ 811.894226][T29777] [U] [ 811.898068][T29777] [U] [ 811.900815][T29777] [U] [ 811.903550][T29777] [U] [ 811.906288][T29777] [U] [ 811.909683][T29777] [U] [ 811.912424][T29777] [U] [ 811.915161][T29777] [U] [ 811.917940][T29777] [U] [ 811.922456][T29777] [U] [ 811.925197][T29777] [U] [ 811.927910][T29777] [U] [ 811.930633][T29777] [U] [ 811.933988][T29777] [U] [ 811.936721][T29777] [U] [ 811.939431][T29777] [U] [ 811.942140][T29777] [U] [ 811.947109][T29777] [U] [ 811.949817][T29777] [U] [ 811.952507][T29777] [U] [ 811.955204][T29777] [U] [ 811.958537][T29777] [U] [ 811.961245][T29777] [U] [ 811.963981][T29777] [U] [ 811.966701][T29777] [U] [ 811.976072][T29777] [U] [ 811.978902][T29777] [U] [ 811.981757][T29777] [U] [ 811.984462][T29777] [U] [ 811.987586][T29777] [U] [ 811.990280][T29777] [U] [ 811.992965][T29777] [U] [ 811.995683][T29777] [U] [ 811.999583][T29777] [U] [ 812.002336][T29777] [U] [ 812.005066][T29777] [U] [ 812.007791][T29777] [U] [ 812.012197][T29777] [U] [ 812.014937][T29777] [U] [ 812.017657][T29777] [U] [ 812.020370][T29777] [U] [ 812.023935][T29777] [U] [ 812.026775][T29777] [U] [ 812.029599][T29777] [U] [ 812.032324][T29777] [U] [ 812.035668][T29777] [U] [ 812.038409][T29777] [U] [ 812.041143][T29777] [U] [ 812.064613][T29777] [U] [ 812.476710][T25880] Bluetooth: hci2: command 0x0c1a tx timeout [ 812.482795][T29643] Bluetooth: hci3: command 0x0c1a tx timeout [ 812.488998][T28840] Bluetooth: hci1: command 0x0c1a tx timeout [ 812.495135][T28840] Bluetooth: hci0: command 0x0406 tx timeout [ 812.599905][T29809] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2900'. [ 812.806550][T29821] FAULT_INJECTION: forcing a failure. [ 812.806550][T29821] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 812.822404][T29821] CPU: 1 UID: 0 PID: 29821 Comm: syz.2.2901 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 812.822432][T29821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 812.822442][T29821] Call Trace: [ 812.822448][T29821] [ 812.822455][T29821] dump_stack_lvl+0x16c/0x1f0 [ 812.822482][T29821] should_fail_ex+0x512/0x640 [ 812.822507][T29821] _copy_from_user+0x2e/0xd0 [ 812.822534][T29821] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 812.822556][T29821] snd_rawmidi_write+0x26e/0xc10 [ 812.822576][T29821] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 812.822594][T29821] ? __pfx_default_wake_function+0x10/0x10 [ 812.822613][T29821] ? bpf_lsm_file_permission+0x9/0x10 [ 812.822640][T29821] ? security_file_permission+0x71/0x210 [ 812.822663][T29821] ? rw_verify_area+0xcf/0x6c0 [ 812.822681][T29821] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 812.822699][T29821] vfs_write+0x29d/0x11d0 [ 812.822719][T29821] ? __pfx_vfs_write+0x10/0x10 [ 812.822738][T29821] ? __fget_files+0x204/0x3c0 [ 812.822756][T29821] ? rcu_is_watching+0x12/0xc0 [ 812.822773][T29821] ? lock_release+0x201/0x2f0 [ 812.822797][T29821] ? __fget_files+0x20e/0x3c0 [ 812.822816][T29821] ksys_write+0x1f8/0x250 [ 812.822835][T29821] ? __pfx_ksys_write+0x10/0x10 [ 812.822857][T29821] do_syscall_64+0xcd/0x490 [ 812.822880][T29821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 812.822898][T29821] RIP: 0033:0x7f178718ebe9 [ 812.822912][T29821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 812.822930][T29821] RSP: 002b:00007f178804a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 812.822948][T29821] RAX: ffffffffffffffda RBX: 00007f17873b5fa0 RCX: 00007f178718ebe9 [ 812.822959][T29821] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 812.822970][T29821] RBP: 00007f178804a090 R08: 0000000000000000 R09: 0000000000000000 [ 812.822981][T29821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 812.822991][T29821] R13: 00007f17873b6038 R14: 00007f17873b5fa0 R15: 00007ffd5a813c88 [ 812.823007][T29821] [ 814.043999][T29875] [U] [ 814.046870][T29875] [U] [ 814.049610][T29875] [U] [ 814.052345][T29875] [U] [ 814.058730][T29875] [U] [ 814.061585][T29875] [U] [ 814.064330][T29875] [U] [ 814.067163][T29875] [U] [ 814.079375][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 814.118930][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 814.119630][T29875] [U] [ 814.127971][T29875] [U] [ 814.130717][T29875] [U] [ 814.133455][T29875] [U] [ 814.138516][T29875] [U] [ 814.141365][T29875] [U] [ 814.144106][T29875] [U] [ 814.146844][T29875] [U] [ 814.165739][T29875] [U] [ 814.168487][T29875] [U] [ 814.171186][T29875] [U] [ 814.173873][T29875] [U] [ 814.177550][T29875] [U] [ 814.180262][T29875] [U] [ 814.182947][T29875] [U] [ 814.185632][T29875] [U] [ 814.195995][T29875] [U] [ 814.198764][T29875] [U] [ 814.201455][T29875] [U] [ 814.204225][T29875] [U] [ 814.226877][T29875] [U] [ 814.229771][T29875] [U] [ 814.232459][T29875] [U] [ 814.235159][T29875] [U] [ 814.267781][T29875] [U] [ 814.270645][T29875] [U] [ 814.273387][T29875] [U] [ 814.276116][T29875] [U] [ 814.285003][T29875] [U] [ 814.287862][T29875] [U] [ 814.290691][T29875] [U] [ 814.293429][T29875] [U] [ 814.325061][T29875] [U] [ 814.327836][T29875] [U] [ 814.330572][T29875] [U] [ 814.333392][T29875] [U] [ 814.338220][T29875] [U] [ 814.341005][T29875] [U] [ 814.343730][T29875] [U] [ 814.346556][T29875] [U] [ 814.365018][T29875] [U] [ 814.367786][T29875] [U] [ 814.370526][T29875] [U] [ 814.373256][T29875] [U] [ 814.380945][T29875] [U] [ 814.383700][T29875] [U] [ 814.386438][T29875] [U] [ 814.389165][T29875] [U] [ 814.392205][T29875] [U] [ 814.394958][T29875] [U] [ 814.397778][T29875] [U] [ 814.400513][T29875] [U] [ 814.410588][T29875] [U] [ 814.413354][T29875] [U] [ 814.416091][T29875] [U] [ 814.418830][T29875] [U] [ 814.429593][T29875] [U] [ 814.432346][T29875] [U] [ 814.435079][T29875] [U] [ 814.437802][T29875] [U] [ 814.441494][T29875] [U] [ 814.444316][T29875] [U] [ 814.447054][T29875] [U] [ 814.449790][T29875] [U] [ 814.454874][T29875] [U] [ 814.457660][T29875] [U] [ 814.460504][T29875] [U] [ 814.463305][T29875] [U] [ 814.467846][T29875] [U] [ 814.470593][T29875] [U] [ 814.473333][T29875] [U] [ 814.476070][T29875] [U] [ 814.485003][T29875] [U] [ 814.487770][T29875] [U] [ 814.490512][T29875] [U] [ 814.493247][T29875] [U] [ 814.502100][T29875] [U] [ 814.504884][T29875] [U] [ 814.507611][T29875] [U] [ 814.510340][T29875] [U] [ 814.514807][T29875] [U] [ 814.517553][T29875] [U] [ 814.520292][T29875] [U] [ 814.523031][T29875] [U] [ 814.538857][T29875] [U] [ 814.541627][T29875] [U] [ 814.544356][T29875] [U] [ 814.547169][T29875] [U] [ 814.551464][T29875] [U] [ 814.554206][T29875] [U] [ 814.556941][T29875] [U] [ 814.559667][T29875] [U] [ 814.563053][T29875] [U] [ 814.565794][T29875] [U] [ 814.568524][T29875] [U] [ 814.571433][T29875] [U] [ 814.579736][T29875] [U] [ 814.582507][T29875] [U] [ 814.585320][T29875] [U] [ 814.588044][T29875] [U] [ 814.591273][T29875] [U] [ 814.594014][T29875] [U] [ 814.596755][T29875] [U] [ 814.599489][T29875] [U] [ 814.605310][T29875] [U] [ 814.608071][T29875] [U] [ 814.610803][T29875] [U] [ 814.613529][T29875] [U] [ 814.620236][T29875] [U] [ 814.622989][T29875] [U] [ 814.625892][T29875] [U] [ 814.628631][T29875] [U] [ 814.632189][T29875] [U] [ 814.635012][T29875] [U] [ 814.637743][T29875] [U] [ 814.640473][T29875] [U] [ 814.647975][T29875] [U] [ 814.650815][T29875] [U] [ 814.653543][T29875] [U] [ 814.689296][T29875] [U] [ 814.827658][T29903] FAULT_INJECTION: forcing a failure. [ 814.827658][T29903] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 814.849480][T29905] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2911'. [ 814.859659][T29903] CPU: 0 UID: 0 PID: 29903 Comm: syz.1.2912 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 814.859702][T29903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 814.859720][T29903] Call Trace: [ 814.859729][T29903] [ 814.859739][T29903] dump_stack_lvl+0x16c/0x1f0 [ 814.859766][T29903] should_fail_ex+0x512/0x640 [ 814.859810][T29903] _copy_from_user+0x2e/0xd0 [ 814.859836][T29903] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 814.859858][T29903] snd_rawmidi_write+0x26e/0xc10 [ 814.859878][T29903] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 814.859896][T29903] ? __pfx_default_wake_function+0x10/0x10 [ 814.859916][T29903] ? bpf_lsm_file_permission+0x9/0x10 [ 814.859941][T29903] ? security_file_permission+0x71/0x210 [ 814.859965][T29903] ? rw_verify_area+0xcf/0x6c0 [ 814.859988][T29903] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 814.860014][T29903] vfs_write+0x29d/0x11d0 [ 814.860047][T29903] ? __pfx_vfs_write+0x10/0x10 [ 814.860077][T29903] ? __fget_files+0x204/0x3c0 [ 814.860104][T29903] ? rcu_is_watching+0x12/0xc0 [ 814.860131][T29903] ? lock_release+0x201/0x2f0 [ 814.860170][T29903] ? __fget_files+0x20e/0x3c0 [ 814.860205][T29903] ksys_write+0x1f8/0x250 [ 814.860244][T29903] ? __pfx_ksys_write+0x10/0x10 [ 814.860289][T29903] do_syscall_64+0xcd/0x490 [ 814.860333][T29903] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 814.860362][T29903] RIP: 0033:0x7f4b8058ebe9 [ 814.860386][T29903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 814.860414][T29903] RSP: 002b:00007f4b81447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 814.860450][T29903] RAX: ffffffffffffffda RBX: 00007f4b807b5fa0 RCX: 00007f4b8058ebe9 [ 814.860462][T29903] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 814.860473][T29903] RBP: 00007f4b81447090 R08: 0000000000000000 R09: 0000000000000000 [ 814.860484][T29903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 814.860501][T29903] R13: 00007f4b807b6038 R14: 00007f4b807b5fa0 R15: 00007fff72b2a488 [ 814.860517][T29903] [ 815.075336][ C0] vkms_vblank_simulate: vblank timer overrun [ 816.033057][T29933] zswap: compressor not available [ 816.038672][T29934] zswap: compressor not available [ 816.384163][T29952] FAULT_INJECTION: forcing a failure. [ 816.384163][T29952] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 816.397806][T29952] CPU: 1 UID: 0 PID: 29952 Comm: syz.2.2921 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 816.397847][T29952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 816.397862][T29952] Call Trace: [ 816.397871][T29952] [ 816.397881][T29952] dump_stack_lvl+0x16c/0x1f0 [ 816.397917][T29952] should_fail_ex+0x512/0x640 [ 816.397953][T29952] _copy_from_user+0x2e/0xd0 [ 816.398002][T29952] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 816.398032][T29952] snd_rawmidi_write+0x26e/0xc10 [ 816.398062][T29952] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 816.398089][T29952] ? __pfx_default_wake_function+0x10/0x10 [ 816.398118][T29952] ? bpf_lsm_file_permission+0x9/0x10 [ 816.398154][T29952] ? security_file_permission+0x71/0x210 [ 816.398188][T29952] ? rw_verify_area+0xcf/0x6c0 [ 816.398213][T29952] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 816.398237][T29952] vfs_write+0x29d/0x11d0 [ 816.398270][T29952] ? __pfx_vfs_write+0x10/0x10 [ 816.398299][T29952] ? __fget_files+0x204/0x3c0 [ 816.398327][T29952] ? rcu_is_watching+0x12/0xc0 [ 816.398355][T29952] ? lock_release+0x201/0x2f0 [ 816.398392][T29952] ? __fget_files+0x20e/0x3c0 [ 816.398423][T29952] ksys_write+0x1f8/0x250 [ 816.398449][T29952] ? __pfx_ksys_write+0x10/0x10 [ 816.398479][T29952] do_syscall_64+0xcd/0x490 [ 816.398512][T29952] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 816.398537][T29952] RIP: 0033:0x7f178718ebe9 [ 816.398556][T29952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 816.398580][T29952] RSP: 002b:00007f178804a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 816.398604][T29952] RAX: ffffffffffffffda RBX: 00007f17873b5fa0 RCX: 00007f178718ebe9 [ 816.398621][T29952] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 816.398637][T29952] RBP: 00007f178804a090 R08: 0000000000000000 R09: 0000000000000000 [ 816.398652][T29952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 816.398667][T29952] R13: 00007f17873b6038 R14: 00007f17873b5fa0 R15: 00007ffd5a813c88 [ 816.398692][T29952] [ 816.771181][T26619] Bluetooth: hci4: Frame reassembly failed (-84) [ 817.017257][T30024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2926'. [ 818.315178][T30087] can: request_module (can-proto-0) failed. [ 818.428869][T30091] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input44 [ 818.795508][T25880] Bluetooth: hci4: command 0xfc11 tx timeout [ 818.801859][T28840] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 818.844633][T30128] [U] [ 818.847490][T30128] [U] [ 818.850212][T30128] [U] [ 818.852943][T30128] [U] [ 818.871355][T30128] [U] [ 818.874140][T30128] [U] [ 818.876868][T30128] [U] [ 818.879562][T30128] [U] [ 818.896907][T30128] [U] [ 818.899678][T30128] [U] [ 818.902417][T30128] [U] [ 818.905160][T30128] [U] [ 818.909540][T30128] [U] [ 818.912355][T30128] [U] [ 818.915112][T30128] [U] [ 818.917860][T30128] [U] [ 818.925012][T30128] [U] [ 818.927776][T30128] [U] [ 818.930513][T30128] [U] [ 818.933237][T30128] [U] [ 818.939382][T30128] [U] [ 818.942147][T30128] [U] [ 818.944864][T30128] [U] [ 818.947612][T30128] [U] [ 818.951262][T30128] [U] [ 818.953987][T30128] [U] [ 818.956674][T30128] [U] [ 818.959382][T30128] [U] [ 818.963427][T30128] [U] [ 818.966175][T30128] [U] [ 818.968918][T30128] [U] [ 818.971653][T30128] [U] [ 818.978015][T30128] [U] [ 818.980775][T30128] [U] [ 818.983513][T30128] [U] [ 818.986249][T30128] [U] [ 818.991856][T30128] [U] [ 818.994603][T30128] [U] [ 818.997333][T30128] [U] [ 819.000057][T30128] [U] [ 819.005752][T30128] [U] [ 819.008350][T30132] FAULT_INJECTION: forcing a failure. [ 819.008350][T30132] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 819.008491][T30128] [U] [ 819.024575][T30128] [U] [ 819.027318][T30128] [U] [ 819.032741][T30132] CPU: 0 UID: 0 PID: 30132 Comm: syz.2.2933 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 819.032778][T30132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 819.032794][T30132] Call Trace: [ 819.032803][T30132] [ 819.032810][T30132] dump_stack_lvl+0x16c/0x1f0 [ 819.032836][T30132] should_fail_ex+0x512/0x640 [ 819.032862][T30132] _copy_from_user+0x2e/0xd0 [ 819.032888][T30132] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 819.032911][T30132] snd_rawmidi_write+0x26e/0xc10 [ 819.032930][T30132] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 819.032949][T30132] ? __pfx_default_wake_function+0x10/0x10 [ 819.032970][T30132] ? bpf_lsm_file_permission+0x9/0x10 [ 819.032995][T30132] ? security_file_permission+0x71/0x210 [ 819.033019][T30132] ? rw_verify_area+0xcf/0x6c0 [ 819.033036][T30132] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 819.033054][T30132] vfs_write+0x29d/0x11d0 [ 819.033074][T30132] ? __pfx_vfs_write+0x10/0x10 [ 819.033093][T30132] ? __fget_files+0x204/0x3c0 [ 819.033111][T30132] ? rcu_is_watching+0x12/0xc0 [ 819.033128][T30132] ? lock_release+0x201/0x2f0 [ 819.033151][T30132] ? __fget_files+0x20e/0x3c0 [ 819.033178][T30132] ksys_write+0x1f8/0x250 [ 819.033206][T30132] ? __pfx_ksys_write+0x10/0x10 [ 819.033251][T30132] do_syscall_64+0xcd/0x490 [ 819.033287][T30132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 819.033312][T30132] RIP: 0033:0x7f178718ebe9 [ 819.033332][T30132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 819.033357][T30132] RSP: 002b:00007f178804a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 819.033381][T30132] RAX: ffffffffffffffda RBX: 00007f17873b5fa0 RCX: 00007f178718ebe9 [ 819.033397][T30132] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 819.033413][T30132] RBP: 00007f178804a090 R08: 0000000000000000 R09: 0000000000000000 [ 819.033429][T30132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 819.033445][T30132] R13: 00007f17873b6038 R14: 00007f17873b5fa0 R15: 00007ffd5a813c88 [ 819.033471][T30132] [ 819.033942][T30128] [U] [ 819.245928][T30128] [U] [ 819.248622][T30128] [U] [ 819.251322][T30128] [U] [ 819.291625][T30128] [U] [ 819.294393][T30128] [U] [ 819.297138][T30128] [U] [ 819.299898][T30128] [U] [ 819.331830][T30128] [U] [ 819.334613][T30128] [U] [ 819.337354][T30128] [U] [ 819.340092][T30128] [U] [ 819.363509][T30128] [U] [ 819.366313][T30128] [U] [ 819.369088][T30128] [U] [ 819.371023][T30138] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2935'. [ 819.371813][T30128] [U] [ 819.396076][T30128] [U] [ 819.398842][T30128] [U] [ 819.401583][T30128] [U] [ 819.404317][T30128] [U] [ 819.414758][T30128] [U] [ 819.417527][T30128] [U] [ 819.420267][T30128] [U] [ 819.422988][T30128] [U] [ 819.431865][T22755] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 819.445999][T30128] [U] [ 819.448718][T30128] [U] [ 819.451411][T30128] [U] [ 819.454097][T30128] [U] [ 819.461209][T30128] [U] [ 819.463940][T30128] [U] [ 819.466672][T30128] [U] [ 819.469414][T30128] [U] [ 819.484377][T30128] [U] [ 819.487147][T30128] [U] [ 819.489887][T30128] [U] [ 819.492622][T30128] [U] [ 819.510792][T30128] [U] [ 819.513570][T30128] [U] [ 819.516350][T30128] [U] [ 819.519087][T30128] [U] [ 819.536392][T30128] [U] [ 819.539155][T30128] [U] [ 819.541865][T30128] [U] [ 819.544578][T30128] [U] [ 819.563378][T30128] [U] [ 819.566137][T30128] [U] [ 819.568870][T30128] [U] [ 819.571586][T30128] [U] [ 819.580381][T30128] [U] [ 819.583141][T30128] [U] [ 819.585963][T30128] [U] [ 819.588697][T30128] [U] [ 819.597782][T30128] [U] [ 819.600532][T30128] [U] [ 819.603273][T30128] [U] [ 819.606007][T30128] [U] [ 819.614928][T30128] [U] [ 819.617678][T30128] [U] [ 819.620413][T30128] [U] [ 819.623136][T30128] [U] [ 819.629011][T30128] [U] [ 819.631783][T30128] [U] [ 819.634528][T30128] [U] [ 819.637268][T30128] [U] [ 819.640590][T30128] [U] [ 819.700020][T30157] FAULT_INJECTION: forcing a failure. [ 819.700020][T30157] name failslab, interval 1, probability 0, space 0, times 0 [ 819.768349][T30157] CPU: 1 UID: 0 PID: 30157 Comm: syz.1.2940 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 819.768398][T30157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 819.768417][T30157] Call Trace: [ 819.768427][T30157] [ 819.768439][T30157] dump_stack_lvl+0x16c/0x1f0 [ 819.768485][T30157] should_fail_ex+0x512/0x640 [ 819.768531][T30157] should_failslab+0xc2/0x120 [ 819.768573][T30157] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 819.768611][T30157] ? security_file_alloc+0x34/0x2b0 [ 819.768654][T30157] security_file_alloc+0x34/0x2b0 [ 819.768696][T30157] init_file+0x93/0x4c0 [ 819.768738][T30157] alloc_empty_file+0x73/0x1e0 [ 819.768783][T30157] alloc_file_pseudo+0x13a/0x230 [ 819.768829][T30157] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 819.768875][T30157] __shmem_file_setup+0x1a3/0x330 [ 819.768907][T30157] shmem_zero_setup+0x93/0x1a0 [ 819.768945][T30157] __mmap_region+0x2081/0x27b0 [ 819.768983][T30157] ? rcu_is_watching+0x12/0xc0 [ 819.769015][T30157] ? __pfx___mmap_region+0x10/0x10 [ 819.769056][T30157] ? lock_release+0x201/0x2f0 [ 819.769095][T30157] ? rcu_is_watching+0x12/0xc0 [ 819.769135][T30157] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 819.769182][T30157] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 819.769216][T30157] ? rcu_is_watching+0x12/0xc0 [ 819.769254][T30157] ? __pfx___schedule+0x10/0x10 [ 819.769308][T30157] ? trace_cap_capable+0x18d/0x200 [ 819.769341][T30157] ? cap_capable+0xb3/0x250 [ 819.769374][T30157] mmap_region+0x1ab/0x3f0 [ 819.769410][T30157] ? __get_unmapped_area+0x267/0x440 [ 819.769452][T30157] do_mmap+0xa3e/0x1210 [ 819.769498][T30157] ? __pfx_do_mmap+0x10/0x10 [ 819.769541][T30157] ? __pfx_down_write_killable+0x10/0x10 [ 819.769584][T30157] ? rcu_is_watching+0x12/0xc0 [ 819.769617][T30157] vm_mmap_pgoff+0x29e/0x470 [ 819.769668][T30157] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 819.769714][T30157] ? __x64_sys_futex+0x1e0/0x4c0 [ 819.769753][T30157] ? __x64_sys_futex+0x1e9/0x4c0 [ 819.769794][T30157] ksys_mmap_pgoff+0x7d/0x5c0 [ 819.769837][T30157] ? xfd_validate_state+0x61/0x180 [ 819.769879][T30157] ? __pfx_do_writev+0x10/0x10 [ 819.769914][T30157] __x64_sys_mmap+0x125/0x190 [ 819.769963][T30157] do_syscall_64+0xcd/0x490 [ 819.770006][T30157] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 819.770038][T30157] RIP: 0033:0x7f4b8058ebe9 [ 819.770063][T30157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 819.770093][T30157] RSP: 002b:00007f4b81447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 819.770219][T30157] RAX: ffffffffffffffda RBX: 00007f4b807b5fa0 RCX: 00007f4b8058ebe9 [ 819.770242][T30157] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 819.770266][T30157] RBP: 00007f4b80611e19 R08: fffffffffffffffa R09: 0000000000008000 [ 819.770288][T30157] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 819.770308][T30157] R13: 00007f4b807b6038 R14: 00007f4b807b5fa0 R15: 00007fff72b2a488 [ 819.770337][T30157] [ 820.737592][T30229] writes to the poll attribute are ignored. [ 820.743805][T30229] please use driver specific parameters instead. [ 822.235571][T28840] Bluetooth: hci0: command 0x0406 tx timeout [ 822.238389][T30152] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 822.659406][T30152] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 822.680604][T30152] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 822.688326][T30152] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 823.187566][T30335] program syz.4.2946 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 823.597666][T30346] FAULT_INJECTION: forcing a failure. [ 823.597666][T30346] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 823.645524][T30346] CPU: 1 UID: 0 PID: 30346 Comm: syz.0.2945 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 823.645567][T30346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 823.645583][T30346] Call Trace: [ 823.645592][T30346] [ 823.645602][T30346] dump_stack_lvl+0x16c/0x1f0 [ 823.645646][T30346] should_fail_ex+0x512/0x640 [ 823.645688][T30346] _copy_from_user+0x2e/0xd0 [ 823.645732][T30346] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 823.645766][T30346] snd_rawmidi_write+0x26e/0xc10 [ 823.645799][T30346] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 823.645828][T30346] ? __pfx_default_wake_function+0x10/0x10 [ 823.645858][T30346] ? bpf_lsm_file_permission+0x9/0x10 [ 823.645899][T30346] ? security_file_permission+0x71/0x210 [ 823.645938][T30346] ? rw_verify_area+0xcf/0x6c0 [ 823.645967][T30346] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 823.645995][T30346] vfs_write+0x29d/0x11d0 [ 823.646030][T30346] ? __pfx_vfs_write+0x10/0x10 [ 823.646061][T30346] ? __fget_files+0x204/0x3c0 [ 823.646097][T30346] ? rcu_is_watching+0x12/0xc0 [ 823.646124][T30346] ? lock_release+0x201/0x2f0 [ 823.646161][T30346] ? __fget_files+0x20e/0x3c0 [ 823.646194][T30346] ksys_write+0x1f8/0x250 [ 823.646226][T30346] ? __pfx_ksys_write+0x10/0x10 [ 823.646261][T30346] do_syscall_64+0xcd/0x490 [ 823.646300][T30346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 823.646329][T30346] RIP: 0033:0x7fa97598ebe9 [ 823.646351][T30346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 823.646379][T30346] RSP: 002b:00007fa976808038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 823.646407][T30346] RAX: ffffffffffffffda RBX: 00007fa975bb6090 RCX: 00007fa97598ebe9 [ 823.646427][T30346] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005 [ 823.646445][T30346] RBP: 00007fa976808090 R08: 0000000000000000 R09: 0000000000000000 [ 823.646462][T30346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 823.646479][T30346] R13: 00007fa975bb6128 R14: 00007fa975bb6090 R15: 00007ffec6354178 [ 823.646505][T30346] [ 824.405538][T28840] Bluetooth: hci1: command 0x0c1a tx timeout [ 824.715520][T28840] Bluetooth: hci2: command 0x0c1a tx timeout [ 824.721598][T28840] Bluetooth: hci3: command 0x0c1a tx timeout [ 825.682903][T30261] syz.0.2944 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 825.735470][T30261] CPU: 1 UID: 0 PID: 30261 Comm: syz.0.2944 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 825.735512][T30261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 825.735528][T30261] Call Trace: [ 825.735537][T30261] [ 825.735547][T30261] dump_stack_lvl+0x16c/0x1f0 [ 825.735587][T30261] dump_header+0x101/0x930 [ 825.735622][T30261] oom_kill_process+0x272/0xa40 [ 825.735658][T30261] out_of_memory+0x350/0x1700 [ 825.735695][T30261] ? __pfx_out_of_memory+0x10/0x10 [ 825.735727][T30261] ? lock_acquire+0x2cd/0x350 [ 825.735765][T30261] mem_cgroup_out_of_memory+0x118/0x130 [ 825.735805][T30261] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 825.735852][T30261] ? do_raw_spin_unlock+0x172/0x230 [ 825.735907][T30261] try_charge_memcg+0x72b/0xd50 [ 825.735943][T30261] ? __pfx_try_charge_memcg+0x10/0x10 [ 825.735976][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.736005][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.736038][T30261] charge_memcg+0x8a/0x230 [ 825.736073][T30261] __mem_cgroup_charge+0x2b/0x1e0 [ 825.736111][T30261] shmem_alloc_and_add_folio+0x514/0xc20 [ 825.736144][T30261] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 825.736176][T30261] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 825.736211][T30261] shmem_get_folio_gfp+0x67f/0x1600 [ 825.736246][T30261] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 825.736276][T30261] ? inode_set_ctime_current+0xa3/0x8f0 [ 825.736313][T30261] ? timestamp_truncate+0x21e/0x2d0 [ 825.736348][T30261] shmem_write_begin+0x160/0x300 [ 825.736382][T30261] ? __pfx_shmem_write_begin+0x10/0x10 [ 825.736412][T30261] ? inode_set_ctime_current+0x2a1/0x8f0 [ 825.736450][T30261] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 825.736498][T30261] generic_perform_write+0x3c2/0x900 [ 825.736533][T30261] ? __pfx_generic_perform_write+0x10/0x10 [ 825.736564][T30261] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 825.736601][T30261] ? generic_update_time+0xcf/0xf0 [ 825.736636][T30261] ? mnt_put_write_access_file+0x45/0xf0 [ 825.736667][T30261] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 825.736705][T30261] shmem_file_write_iter+0x10e/0x140 [ 825.736744][T30261] __kernel_write_iter+0x317/0xb10 [ 825.736778][T30261] ? __pfx___kernel_write_iter+0x10/0x10 [ 825.736816][T30261] ? __up_read+0x1f8/0x750 [ 825.736858][T30261] ? lock_release+0x201/0x2f0 [ 825.736904][T30261] dump_user_range+0x413/0xb70 [ 825.736937][T30261] ? __pfx_dump_user_range+0x10/0x10 [ 825.736967][T30261] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 825.737017][T30261] ? __pfx_writenote+0x10/0x10 [ 825.737052][T30261] elf_core_dump+0x2929/0x3b60 [ 825.737092][T30261] ? __pfx_elf_core_dump+0x10/0x10 [ 825.737126][T30261] ? __pfx_event_filter_pid_sched_wakeup_probe_post+0x10/0x10 [ 825.737171][T30261] ? 0xffffffffff600000 [ 825.737194][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.737223][T30261] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 825.737283][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.737311][T30261] ? lock_acquire+0x2cd/0x350 [ 825.737348][T30261] ? __pfx___might_resched+0x10/0x10 [ 825.737380][T30261] ? vfs_coredump+0x2ba2/0x56d0 [ 825.737406][T30261] vfs_coredump+0x2ba2/0x56d0 [ 825.737440][T30261] ? __pfx_vfs_coredump+0x10/0x10 [ 825.737478][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.737508][T30261] ? unwind_next_frame+0x3f4/0x20a0 [ 825.737537][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.737572][T30261] ? lock_release+0x201/0x2f0 [ 825.737607][T30261] ? bpf_ksym_find+0x124/0x1c0 [ 825.737637][T30261] ? __kernel_text_address+0xd/0x40 [ 825.737664][T30261] ? unwind_get_return_address+0x59/0xa0 [ 825.737694][T30261] ? arch_stack_walk+0xa6/0x100 [ 825.737731][T30261] ? stack_trace_save+0x8e/0xc0 [ 825.737763][T30261] ? __pfx_stack_trace_save+0x10/0x10 [ 825.737796][T30261] ? stack_depot_save_flags+0x29/0x9c0 [ 825.737836][T30261] ? __pfx_stack_trace_save+0x10/0x10 [ 825.737904][T30261] ? proc_coredump_connector+0x2d1/0x4f0 [ 825.737937][T30261] ? __pfx_proc_coredump_connector+0x10/0x10 [ 825.737972][T30261] ? rcu_is_watching+0x12/0xc0 [ 825.738003][T30261] get_signal+0x22e3/0x26d0 [ 825.738040][T30261] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 825.738074][T30261] ? __pfx_get_signal+0x10/0x10 [ 825.738111][T30261] arch_do_signal_or_restart+0x8f/0x790 [ 825.738149][T30261] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 825.738190][T30261] ? exc_general_protection+0x1ba/0x230 [ 825.738238][T30261] irqentry_exit_to_user_mode+0x12a/0x270 [ 825.738276][T30261] asm_exc_general_protection+0x26/0x30 [ 825.738305][T30261] RIP: 0033:0x0 [ 825.738324][T30261] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 825.738338][T30261] RSP: 002b:000000000000000a EFLAGS: 00010217 [ 825.738362][T30261] RAX: 0000000000000000 RBX: 00007fa975bb6270 RCX: 00007fa97598ebe9 [ 825.738381][T30261] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 825.738399][T30261] RBP: 00007fa975a11e19 R08: 0000000000000002 R09: 0000000000000000 [ 825.738417][T30261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 825.738435][T30261] R13: 00007fa975bb6308 R14: 00007fa975bb6270 R15: 00007ffec6354178 [ 825.738463][T30261] [ 825.738474][T30261] memory: usage 307200kB, limit 307200kB, failcnt 27161 [ 826.325245][T30261] memory+swap: usage 432192kB, limit 9007199254740988kB, failcnt 0 [ 826.343078][T30261] kmem: usage 4100kB, limit 9007199254740988kB, failcnt 0 [ 826.375739][T30261] Memory cgroup stats for /syz0: [ 826.375965][T30261] cache 302317568 [ 826.384673][T30261] rss 7880704 [ 826.391114][T30261] rss_huge 4194304 [ 826.394868][T30261] shmem 302309376 [ 826.403346][T30261] mapped_file 135168 [ 826.413253][T30261] dirty 0 [ 826.418498][T30261] writeback 0 [ 826.421832][T30261] workingset_refault_anon 7720 [ 826.426749][T30261] workingset_refault_file 13843 [ 826.432266][T30261] swap 127991808 [ 826.435913][T30261] swapcached 4096 [ 826.439652][T30261] pgpgin 1382568 [ 826.443222][T30261] pgpgout 1328548 [ 826.446970][T30261] pgfault 1579208 [ 826.450703][T30261] pgmajfault 1269 [ 826.454357][T30261] inactive_anon 309059584 [ 826.459214][T30261] active_anon 1134592 [ 826.463428][T30261] inactive_file 8192 [ 826.467416][T30261] active_file 0 [ 826.470912][T30261] unevictable 0 [ 826.474461][T30261] hierarchical_memory_limit 314572800 [ 826.481284][T30261] hierarchical_memsw_limit 9223372036854771712 [ 826.487579][T30261] total_cache 302317568 [ 826.491753][T30261] total_rss 7880704 [ 826.497653][T30261] total_rss_huge 4194304 [ 826.501925][T30261] total_shmem 302309376 [ 826.509757][T30261] total_mapped_file 135168 [ 826.514217][T30261] total_dirty 0 [ 826.517813][T30261] total_writeback 0 [ 826.521634][T30261] total_workingset_refault_anon 7720 [ 826.533768][T30261] total_workingset_refault_file 13843 [ 826.539620][T30261] total_swap 127991808 [ 826.543717][T30261] total_swapcached 4096 [ 826.549193][T30261] total_pgpgin 1382568 [ 826.553358][T30261] total_pgpgout 1328548 [ 826.559199][T30261] total_pgfault 1579208 [ 826.563465][T30261] total_pgmajfault 1269 [ 826.570121][T30261] total_inactive_anon 309059584 [ 826.575227][T30261] total_active_anon 1134592 [ 826.579871][T30261] total_inactive_file 8192 [ 826.588912][T30261] total_active_file 0 [ 826.592939][T30261] total_unevictable 0 [ 826.601751][T30261] anon_cost 6698 [ 826.608296][T30261] file_cost 5296 [ 826.612019][T30261] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2944,pid=30270,uid=0 [ 826.635926][T30261] Memory cgroup out of memory: Killed process 30270 (syz.0.2944) total-vm:98780kB, anon-rss:3088kB, file-rss:55124kB, shmem-rss:0kB, UID:0 pgtables:204kB oom_score_adj:1000 [ 827.065566][T30376] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1774474093.2036550350.1974166379), cmd(4) [ 828.313170][T30269] syz.0.2944 (30269) used greatest stack depth: 19312 bytes left [ 828.516688][T30436] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2959'. [ 828.847624][T30439] netlink: 2468 bytes leftover after parsing attributes in process `syz.0.2960'. [ 828.887574][T30432] ptrace attach of ""[30435] was attempted by "./syz-executor exec"[30432] [ 829.915691][T30422] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 829.925577][T28840] Bluetooth: hci0: command 0x0406 tx timeout [ 830.034665][T30422] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 830.044938][T30422] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 830.051745][T30422] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 830.071862][T30451] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2963'. [ 831.995596][T28840] Bluetooth: hci1: command 0x0c1a tx timeout [ 832.076959][T28840] Bluetooth: hci2: command 0x0c1a tx timeout [ 832.083017][T25880] Bluetooth: hci3: command 0x0c1a tx timeout [ 833.484461][T30618] hub 1-0:1.0: USB hub found [ 833.490184][T30618] hub 1-0:1.0: 1 port detected [ 833.564475][T30618] hub 1-0:1.0: USB hub found [ 833.575514][T30618] hub 1-0:1.0: 1 port detected [ 833.856256][T30660] bond0: option all_slaves_active: invalid value () [ 834.808963][T30745] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2987'. [ 835.616736][T30763] [U] [ 835.616771][T30763] [U] [ 835.616801][T30763] [U] [ 835.616835][T30763] [U] [ 835.616950][T30763] [U] [ 835.616977][T30763] [U] [ 835.617003][T30763] [U] [ 835.617036][T30763] [U] [ 835.617266][T30763] [U] [ 835.617296][T30763] [U] [ 835.617324][T30763] [U] [ 835.617352][T30763] [U] [ 835.617464][T30763] [U] [ 835.617491][T30763] [U] [ 835.617518][T30763] [U] [ 835.617544][T30763] [U] [ 835.617691][T30763] [U] [ 835.617721][T30763] [U] [ 835.617748][T30763] [U] [ 835.617775][T30763] [U] [ 835.617888][T30763] [U] [ 835.617916][T30763] [U] [ 835.617944][T30763] [U] [ 835.617970][T30763] [U] [ 835.618115][T30763] [U] [ 835.618144][T30763] [U] [ 835.618171][T30763] [U] [ 835.618203][T30763] [U] [ 835.618377][T30763] [U] [ 835.618407][T30763] [U] [ 835.618435][T30763] [U] [ 835.618462][T30763] [U] [ 835.618628][T30763] [U] [ 835.618657][T30763] [U] [ 835.618683][T30763] [U] [ 835.618715][T30763] [U] [ 835.618876][T30763] [U] [ 835.618905][T30763] [U] [ 835.618933][T30763] [U] [ 835.618960][T30763] [U] [ 835.619126][T30763] [U] [ 835.619156][T30763] [U] [ 835.619183][T30763] [U] [ 835.619211][T30763] [U] [ 835.619428][T30763] [U] [ 835.619458][T30763] [U] [ 835.619487][T30763] [U] [ 835.619514][T30763] [U] [ 835.619661][T30763] [U] [ 835.619689][T30763] [U] [ 835.619716][T30763] [U] [ 835.619745][T30763] [U] [ 835.619858][T30763] [U] [ 835.619885][T30763] [U] [ 835.619911][T30763] [U] [ 835.619938][T30763] [U] [ 835.620085][T30763] [U] [ 835.620113][T30763] [U] [ 835.620139][T30763] [U] [ 835.620166][T30763] [U] [ 835.620277][T30763] [U] [ 835.620304][T30763] [U] [ 835.620332][T30763] [U] [ 835.620359][T30763] [U] [ 835.620571][T30763] [U] [ 835.620605][T30763] [U] [ 835.620631][T30763] [U] [ 835.620658][T30763] [U] [ 835.620768][T30763] [U] [ 835.620795][T30763] [U] [ 835.620822][T30763] [U] [ 835.620849][T30763] [U] [ 835.620992][T30763] [U] [ 835.621027][T30763] [U] [ 835.621054][T30763] [U] [ 835.621080][T30763] [U] [ 835.621189][T30763] [U] [ 835.621217][T30763] [U] [ 835.621244][T30763] [U] [ 835.621272][T30763] [U] [ 835.621439][T30763] [U] [ 835.621469][T30763] [U] [ 835.621501][T30763] [U] [ 835.621529][T30763] [U] [ 835.621727][T30763] [U] [ 835.621757][T30763] [U] [ 835.621786][T30763] [U] [ 835.621813][T30763] [U] [ 835.621962][T30763] [U] [ 835.621990][T30763] [U] [ 835.622018][T30763] [U] [ 835.622052][T30763] [U] [ 835.622161][T30763] [U] [ 835.622188][T30763] [U] [ 835.622214][T30763] [U] [ 835.622241][T30763] [U] [ 835.622386][T30763] [U] [ 835.622414][T30763] [U] [ 835.622440][T30763] [U] [ 835.622466][T30763] [U] [ 835.622573][T30763] [U] [ 835.622600][T30763] [U] [ 835.622627][T30763] [U] [ 835.622657][T30763] [U] [ 835.622898][T30763] [U] [ 835.622928][T30763] [U] [ 835.622956][T30763] [U] [ 835.622983][T30763] [U] [ 835.623100][T30763] [U] [ 835.623127][T30763] [U] [ 835.623153][T30763] [U] [ 835.623180][T30763] [U] [ 835.623327][T30763] [U] [ 835.623357][T30763] [U] [ 835.623383][T30763] [U] [ 835.623410][T30763] [U] [ 835.623518][T30763] [U] [ 835.623545][T30763] [U] [ 835.623572][T30763] [U] [ 835.623598][T30763] [U] [ 835.623741][T30763] [U] [ 835.623775][T30763] [U] [ 835.623801][T30763] [U] [ 835.623827][T30763] [U] [ 835.625084][T30763] [U] [ 835.625116][T30763] [U] [ 835.625142][T30763] [U] [ 835.990996][T30760] [U] [ 836.002632][T30769] FAULT_INJECTION: forcing a failure. [ 836.002632][T30769] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 836.002679][T30769] CPU: 1 UID: 0 PID: 30769 Comm: syz.0.2993 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 836.002719][T30769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 836.002738][T30769] Call Trace: [ 836.002748][T30769] [ 836.002759][T30769] dump_stack_lvl+0x16c/0x1f0 [ 836.002810][T30769] should_fail_ex+0x512/0x640 [ 836.002856][T30769] should_fail_alloc_page+0xe7/0x130 [ 836.002899][T30769] prepare_alloc_pages+0x3c2/0x610 [ 836.002945][T30769] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 836.002982][T30769] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 836.003021][T30769] ? __pfx_css_rstat_updated+0x10/0x10 [ 836.003052][T30769] ? rcu_is_watching+0x12/0xc0 [ 836.003082][T30769] ? __pfx_try_charge_memcg+0x10/0x10 [ 836.003119][T30769] ? rcu_read_unlock+0x17/0x60 [ 836.003156][T30769] ? rcu_is_watching+0x12/0xc0 [ 836.003188][T30769] ? rcu_is_watching+0x12/0xc0 [ 836.003219][T30769] ? rcu_is_watching+0x12/0xc0 [ 836.003250][T30769] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 836.003287][T30769] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 836.003332][T30769] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 836.003370][T30769] ? stack_trace_save+0x8e/0xc0 [ 836.003403][T30769] ? __pfx_stack_trace_save+0x10/0x10 [ 836.003436][T30769] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 836.003483][T30769] ? policy_nodemask+0xea/0x4e0 [ 836.003523][T30769] alloc_pages_mpol+0x1fb/0x550 [ 836.003562][T30769] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 836.003601][T30769] ? do_raw_spin_lock+0x12c/0x2b0 [ 836.003647][T30769] ? __pud_alloc+0x521/0x750 [ 836.003692][T30769] ? rcu_is_watching+0x12/0xc0 [ 836.003724][T30769] alloc_pages_noprof+0x131/0x390 [ 836.003765][T30769] __pmd_alloc+0x3b/0x930 [ 836.003817][T30769] ? __pud_alloc+0x526/0x750 [ 836.003861][T30769] walk_to_pmd+0x3a6/0x4c0 [ 836.003908][T30769] __get_locked_pte+0x25/0xc0 [ 836.003955][T30769] map_ldt_struct+0x3b0/0xa60 [ 836.003992][T30769] ? __pfx_map_ldt_struct+0x10/0x10 [ 836.004025][T30769] ? alloc_pages_noprof+0x23c/0x390 [ 836.004067][T30769] write_ldt+0x8fa/0xd20 [ 836.004100][T30769] ? __pfx_write_ldt+0x10/0x10 [ 836.004132][T30769] ? fput+0x9b/0xd0 [ 836.004174][T30769] ? __pfx_ksys_write+0x10/0x10 [ 836.004213][T30769] __x64_sys_modify_ldt+0xb1/0x170 [ 836.004247][T30769] do_syscall_64+0xcd/0x490 [ 836.004289][T30769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.004321][T30769] RIP: 0033:0x7fa97598ebe9 [ 836.004347][T30769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 836.004378][T30769] RSP: 002b:00007fa976829038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 836.004410][T30769] RAX: ffffffffffffffda RBX: 00007fa975bb5fa0 RCX: 00007fa97598ebe9 [ 836.004431][T30769] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 836.004452][T30769] RBP: 00007fa975a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 836.004470][T30769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 836.004489][T30769] R13: 00007fa975bb6038 R14: 00007fa975bb5fa0 R15: 00007ffec6354178 [ 836.004518][T30769] [ 836.096536][T30771] FAULT_INJECTION: forcing a failure. [ 836.096536][T30771] name failslab, interval 1, probability 0, space 0, times 0 [ 836.096580][T30771] CPU: 1 UID: 0 PID: 30771 Comm: syz.0.3002 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 836.096620][T30771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 836.096638][T30771] Call Trace: [ 836.096649][T30771] [ 836.096660][T30771] dump_stack_lvl+0x16c/0x1f0 [ 836.096702][T30771] should_fail_ex+0x512/0x640 [ 836.096747][T30771] should_failslab+0xc2/0x120 [ 836.096788][T30771] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 836.096834][T30771] ? security_inode_alloc+0x3b/0x2b0 [ 836.096872][T30771] security_inode_alloc+0x3b/0x2b0 [ 836.096906][T30771] inode_init_always_gfp+0xce4/0x1030 [ 836.096946][T30771] alloc_inode+0x86/0x240 [ 836.096990][T30771] path_from_stashed+0x25b/0x750 [ 836.097025][T30771] ? do_raw_spin_unlock+0x172/0x230 [ 836.097075][T30771] ns_get_path+0x5f/0x80 [ 836.097106][T30771] proc_ns_get_link+0x121/0x230 [ 836.097144][T30771] ? __pfx_proc_ns_get_link+0x10/0x10 [ 836.097183][T30771] ? atime_needs_update+0x8b/0x710 [ 836.097228][T30771] ? __pfx_proc_ns_get_link+0x10/0x10 [ 836.097264][T30771] step_into+0x1a2c/0x2270 [ 836.097293][T30771] ? irq_entries_start+0xd0/0xcb0 [ 836.097324][T30771] ? __pfx_step_into+0x10/0x10 [ 836.097353][T30771] ? path_openat+0x173c/0x2cb0 [ 836.097387][T30771] ? lock_release+0x201/0x2f0 [ 836.097424][T30771] ? lock_release+0x201/0x2f0 [ 836.097464][T30771] path_openat+0x6db/0x2cb0 [ 836.097503][T30771] ? __pfx_path_openat+0x10/0x10 [ 836.097541][T30771] do_filp_open+0x20b/0x470 [ 836.097577][T30771] ? __pfx_do_filp_open+0x10/0x10 [ 836.097624][T30771] ? alloc_fd+0x471/0x7d0 [ 836.097660][T30771] do_sys_openat2+0x11b/0x1d0 [ 836.097704][T30771] ? __pfx_do_sys_openat2+0x10/0x10 [ 836.097756][T30771] __x64_sys_openat+0x174/0x210 [ 836.097809][T30771] ? __pfx___x64_sys_openat+0x10/0x10 [ 836.097863][T30771] do_syscall_64+0xcd/0x490 [ 836.097902][T30771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.097933][T30771] RIP: 0033:0x7fa97598d550 [ 836.097956][T30771] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 836.097986][T30771] RSP: 002b:00007fa976828f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 836.098015][T30771] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa97598d550 [ 836.098035][T30771] RDX: 0000000000000002 RSI: 00007fa976828fa0 RDI: 00000000ffffff9c [ 836.098053][T30771] RBP: 00007fa976828fa0 R08: 0000000000000000 R09: 0000000000000000 [ 836.098071][T30771] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 836.098089][T30771] R13: 00007fa975bb6038 R14: 00007fa975bb5fa0 R15: 00007ffec6354178 [ 836.098118][T30771] [ 836.367877][T30781] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2994'. [ 836.760284][T30793] random: crng reseeded on system resumption [ 837.247129][T30819] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2998'. [ 838.553181][T30824] tty tty12: ldisc open failed (-12), clearing slot 11 [ 838.594945][T30831] pty pty233: ldisc open failed (-12), clearing slot 233 [ 838.597021][T30836] pty pty233: ldisc open failed (-12), clearing slot 233 [ 838.657611][T30842] [U] [ 838.657686][T30842] [U] [ 838.657738][T30842] [U] [ 838.657788][T30842] [U] [ 838.658003][T30842] [U] [ 838.658051][T30842] [U] [ 838.658100][T30842] [U] [ 838.658152][T30842] [U] [ 838.658429][T30842] [U] [ 838.658479][T30842] [U] [ 838.658528][T30842] [U] [ 838.658577][T30842] [U] [ 838.658773][T30842] [U] [ 838.658824][T30842] [U] [ 838.658872][T30842] [U] [ 838.658920][T30842] [U] [ 838.659187][T30842] [U] [ 838.659236][T30842] [U] [ 838.659284][T30842] [U] [ 838.659332][T30842] [U] [ 838.659540][T30842] [U] [ 838.659588][T30842] [U] [ 838.659634][T30842] [U] [ 838.659685][T30842] [U] [ 838.659963][T30842] [U] [ 838.660024][T30842] [U] [ 838.660075][T30842] [U] [ 838.660127][T30842] [U] [ 838.660346][T30842] [U] [ 838.660398][T30842] [U] [ 838.660450][T30842] [U] [ 838.660500][T30842] [U] [ 838.660753][T30842] [U] [ 838.660804][T30842] [U] [ 838.660852][T30842] [U] [ 838.660901][T30842] [U] [ 838.661126][T30842] [U] [ 838.661174][T30842] [U] [ 838.661223][T30842] [U] [ 838.661272][T30842] [U] [ 838.661523][T30842] [U] [ 838.661566][T30842] [U] [ 838.661607][T30842] [U] [ 838.661650][T30842] [U] [ 838.661844][T30842] [U] [ 838.661900][T30842] [U] [ 838.661945][T30842] [U] [ 838.662004][T30842] [U] [ 838.662301][T30842] [U] [ 838.662352][T30842] [U] [ 838.662401][T30842] [U] [ 838.662450][T30842] [U] [ 838.662653][T30842] [U] [ 838.662699][T30842] [U] [ 838.662741][T30842] [U] [ 838.662784][T30842] [U] [ 838.663050][T30842] [U] [ 838.663102][T30842] [U] [ 838.663148][T30842] [U] [ 838.663195][T30842] [U] [ 838.663404][T30842] [U] [ 838.663450][T30842] [U] [ 838.663498][T30842] [U] [ 838.663553][T30842] [U] [ 838.663878][T30842] [U] [ 838.663930][T30842] [U] [ 838.663977][T30842] [U] [ 838.664037][T30842] [U] [ 838.664245][T30842] [U] [ 838.664294][T30842] [U] [ 838.664344][T30842] [U] [ 838.664389][T30842] [U] [ 838.664646][T30842] [U] [ 838.664693][T30842] [U] [ 838.664739][T30842] [U] [ 838.664786][T30842] [U] [ 838.664977][T30842] [U] [ 838.665033][T30842] [U] [ 838.665080][T30842] [U] [ 838.665128][T30842] [U] [ 838.665803][T30842] [U] [ 838.665856][T30842] [U] [ 838.665905][T30842] [U] [ 838.665953][T30842] [U] [ 838.666174][T30842] [U] [ 838.666224][T30842] [U] [ 838.666272][T30842] [U] [ 838.666321][T30842] [U] [ 838.666602][T30842] [U] [ 838.666654][T30842] [U] [ 838.666705][T30842] [U] [ 838.666752][T30842] [U] [ 838.666958][T30842] [U] [ 838.667016][T30842] [U] [ 838.667064][T30842] [U] [ 838.667112][T30842] [U] [ 838.667373][T30842] [U] [ 838.667422][T30842] [U] [ 838.667469][T30842] [U] [ 838.667515][T30842] [U] [ 838.667725][T30842] [U] [ 838.667770][T30842] [U] [ 838.667816][T30842] [U] [ 838.667864][T30842] [U] [ 838.668136][T30842] [U] [ 838.957150][T30842] [U] [ 838.959920][T30842] [U] [ 838.962638][T30842] [U] [ 838.969542][T30842] [U] [ 838.972306][T30842] [U] [ 838.975050][T30842] [U] [ 838.978269][T30842] [U] [ 838.981587][T30842] [U] [ 838.984328][T30842] [U] [ 838.987037][T30842] [U] [ 838.989726][T30842] [U] [ 838.992595][T30842] [U] [ 838.995287][T30842] [U] [ 838.997994][T30842] [U] [ 839.000691][T30842] [U] [ 839.003676][T30842] [U] [ 839.006474][T30842] [U] [ 839.009159][T30842] [U] [ 839.011855][T30842] [U] [ 839.014710][T30842] [U] [ 839.017408][T30842] [U] [ 839.020095][T30842] [U] [ 839.051129][T30839] [U] [ 839.129563][T30849] kernel read not supported for file /gMQ_g _N{7vGlq wĉu}OUVW.uw.`O:KdYѮaj7nwKQHg[壣%'ϖX:DktހX [$O8 bŹ9F@eMU;$Q8҇ŝ赵DtS^0YJpu (pid: 30849 comm: syz.1.3005) [ 839.208832][T30847] ptrace attach of "./syz-executor exec"[30850] was attempted by "./syz-executor exec"[30847] [ 839.474364][ T30] audit: type=1800 audit(4294967358.550:35): pid=30849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3005" name=BEF282E71467B5EE4D5113A25F67BF09FAF25F4EB07BF9B53776EE47D96CBF8671207796D9E9A8E1F0C71F1EC4C4897583E87DBD7F4F91C15556572EB6AD047502772EEC604FC10E15E73AC91B4BCD64590395D1AEC19B969F616AD2FCFC1F37AFCA6EF6C0774BCEE751AEC9486701EFDA5BE5A3A325278FCF96583A04446B747FDE8001DD589188A109C3F1FE5B93244F382062B492F4BCC5B99839FC46ECDC40DDDA654DE055C83BF5E7245138D287DDC59DC5E8B5B5B8DF44D0E8748A53AABEAABA9E5E301AF859F54A700875BA98 dev="mqueue" ino=78923 res=0 errno=0 [ 839.478875][T30858] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 840.965943][T30905] netlink: 570 bytes leftover after parsing attributes in process `syz.0.3011'. [ 841.548669][T30921] [U] [ 841.551504][T30921] [U] [ 841.554215][T30921] [U] [ 841.556922][T30921] [U] [ 841.575689][T30921] [U] [ 841.578539][T30921] [U] [ 841.581284][T30921] [U] [ 841.584033][T30921] [U] [ 841.596315][T30921] [U] [ 841.599178][T30921] [U] [ 841.601903][T30921] [U] [ 841.604604][T30921] [U] [ 841.610489][T30921] [U] [ 841.613207][T30921] [U] [ 841.615897][T30921] [U] [ 841.618612][T30921] [U] [ 841.625656][T30921] [U] [ 841.628371][T30921] [U] [ 841.631060][T30921] [U] [ 841.633750][T30921] [U] [ 841.641523][T30921] [U] [ 841.644261][T30921] [U] [ 841.646966][T30921] [U] [ 841.649665][T30921] [U] [ 841.659948][T30921] [U] [ 841.662667][T30921] [U] [ 841.665378][T30921] [U] [ 841.668081][T30921] [U] [ 841.679579][T30921] [U] [ 841.682327][T30921] [U] [ 841.685049][T30921] [U] [ 841.687831][T30921] [U] [ 841.697845][T30921] [U] [ 841.700622][T30921] [U] [ 841.703442][T30921] [U] [ 841.706180][T30921] [U] [ 841.714598][T30921] [U] [ 841.717328][T30921] [U] [ 841.720095][T30921] [U] [ 841.722816][T30921] [U] [ 841.729500][T30921] [U] [ 841.732239][T30921] [U] [ 841.734947][T30921] [U] [ 841.737658][T30921] [U] [ 841.743193][T30921] [U] [ 841.745962][T30921] [U] [ 841.748681][T30921] [U] [ 841.751386][T30921] [U] [ 841.754947][T30921] [U] [ 841.757715][T30921] [U] [ 841.760446][T30921] [U] [ 841.763163][T30921] [U] [ 841.774025][T30921] [U] [ 841.776788][T30921] [U] [ 841.779520][T30921] [U] [ 841.782212][T30921] [U] [ 841.791800][T30921] [U] [ 841.794565][T30921] [U] [ 841.797367][T30921] [U] [ 841.800073][T30921] [U] [ 841.810178][T30921] [U] [ 841.813022][T30921] [U] [ 841.815774][T30921] [U] [ 841.818578][T30921] [U] [ 841.825734][T30921] [U] [ 841.828554][T30921] [U] [ 841.831242][T30921] [U] [ 841.834127][T30921] [U] [ 841.841875][T30921] [U] [ 841.844723][T30921] [U] [ 841.847462][T30921] [U] [ 841.850199][T30921] [U] [ 841.854244][T30921] [U] [ 841.856950][T30921] [U] [ 841.859654][T30921] [U] [ 841.862366][T30921] [U] [ 841.876009][T30921] [U] [ 841.878825][T30921] [U] [ 841.881557][T30921] [U] [ 841.884245][T30921] [U] [ 841.887706][T30921] [U] [ 841.890479][T30921] [U] [ 841.893186][T30921] [U] [ 841.895901][T30921] [U] [ 841.922094][T30921] [U] [ 841.924836][T30921] [U] [ 841.927561][T30921] [U] [ 841.930282][T30921] [U] [ 841.951523][T30921] [U] [ 841.954272][T30921] [U] [ 841.957019][T30921] [U] [ 841.959757][T30921] [U] [ 841.968272][T30921] [U] [ 841.969197][T30929] ptrace attach of "./syz-executor exec"[30931] was attempted by "./syz-executor exec"[30929] [ 841.971027][T30921] [U] [ 841.971073][T30921] [U] [ 841.986697][T30921] [U] [ 841.999327][T30921] [U] [ 842.002049][T30921] [U] [ 842.004752][T30921] [U] [ 842.007472][T30921] [U] [ 842.016432][T30921] [U] [ 842.019181][T30921] [U] [ 842.021913][T30921] [U] [ 842.024645][T30921] [U] [ 842.077210][T30921] [U] [ 842.079955][T30921] [U] [ 842.082647][T30921] [U] [ 842.085359][T30921] [U] [ 842.095843][T30921] [U] [ 842.098588][T30921] [U] [ 842.101295][T30921] [U] [ 842.103983][T30921] [U] [ 842.111229][T30921] [U] [ 842.113940][T30921] [U] [ 842.116630][T30921] [U] [ 842.119323][T30921] [U] [ 842.124675][T30921] [U] [ 842.127387][T30921] [U] [ 842.130081][T30921] [U] [ 842.132804][T30921] [U] [ 842.137822][T30921] [U] [ 842.140522][T30921] [U] [ 842.143216][T30921] [U] [ 842.145902][T30921] [U] [ 842.164335][T30921] [U] [ 842.167240][T30921] [U] [ 842.169937][T30921] [U] [ 842.201559][T30921] [U] [ 843.016753][T31030] bridge0: port 3(team0) entered blocking state [ 843.055047][T31030] bridge0: port 3(team0) entered disabled state [ 843.079271][T31030] team0: entered allmulticast mode [ 843.175484][T31030] team_slave_0: entered allmulticast mode [ 843.204708][T31030] team_slave_1: entered allmulticast mode [ 843.239588][T31044] random: crng reseeded on system resumption [ 843.256059][T31044] random: crng reseeded on system resumption [ 843.317810][T31030] team0: entered promiscuous mode [ 843.361633][T31030] team_slave_0: entered promiscuous mode [ 843.397084][T31050] [U] [ 843.399989][T31050] [U] [ 843.402677][T31050] [U] [ 843.405401][T31050] [U] [ 843.414972][T31030] team_slave_1: entered promiscuous mode [ 843.432612][T31050] [U] [ 843.435366][T31050] [U] [ 843.438110][T31050] [U] [ 843.440934][T31050] [U] [ 843.462748][T31030] bridge0: port 3(team0) entered blocking state [ 843.469262][T31030] bridge0: port 3(team0) entered forwarding state [ 843.482664][T31050] [U] [ 843.485403][T31050] [U] [ 843.488113][T31050] [U] [ 843.490827][T31050] [U] [ 843.561507][T31050] [U] [ 843.564284][T31050] [U] [ 843.567039][T31050] [U] [ 843.569764][T31050] [U] [ 843.663180][T31050] [U] [ 843.666018][T31050] [U] [ 843.668715][T31050] [U] [ 843.671402][T31050] [U] [ 843.709050][T31050] [U] [ 843.711830][T31050] [U] [ 843.714572][T31050] [U] [ 843.717648][T31050] [U] [ 843.805675][T31050] [U] [ 843.808406][T31050] [U] [ 843.811118][T31050] [U] [ 843.813923][T31050] [U] [ 843.848411][T31050] [U] [ 843.851180][T31050] [U] [ 843.853876][T31050] [U] [ 843.856611][T31050] [U] [ 843.929053][T31050] [U] [ 843.931778][T31050] [U] [ 843.934479][T31050] [U] [ 843.937171][T31050] [U] [ 843.994611][T31050] [U] [ 843.997350][T31050] [U] [ 844.000138][T31050] [U] [ 844.002828][T31050] [U] [ 844.052061][T31050] [U] [ 844.054798][T31050] [U] [ 844.057501][T31050] [U] [ 844.060195][T31050] [U] [ 844.148740][T31050] [U] [ 844.375921][T31105] HSR: entered promiscuous mode [ 845.762570][T31177] [U] [ 845.765417][T31177] [U] [ 845.768152][T31177] [U] [ 845.770872][T31177] [U] [ 845.773887][T31177] [U] [ 845.776775][T31177] [U] [ 845.779471][T31177] [U] [ 845.782158][T31177] [U] [ 845.792398][T31177] [U] [ 845.795168][T31177] [U] [ 845.797911][T31177] [U] [ 845.800630][T31177] [U] [ 845.808795][T31177] [U] [ 845.811556][T31177] [U] [ 845.814250][T31177] [U] [ 845.816969][T31177] [U] [ 845.828014][T31177] [U] [ 845.830809][T31177] [U] [ 845.833503][T31177] [U] [ 845.836196][T31177] [U] [ 845.841356][T31177] [U] [ 845.844085][T31177] [U] [ 845.846951][T31177] [U] [ 845.849660][T31177] [U] [ 845.858045][T31177] [U] [ 845.860958][T31177] [U] [ 845.863655][T31177] [U] [ 845.866347][T31177] [U] [ 845.873800][T31177] [U] [ 845.876511][T31177] [U] [ 845.879267][T31177] [U] [ 845.881957][T31177] [U] [ 845.885553][T31177] [U] [ 845.888367][T31177] [U] [ 845.891067][T31177] [U] [ 845.893779][T31177] [U] [ 845.902196][T31177] [U] [ 845.904917][T31177] [U] [ 845.907801][T31177] [U] [ 845.910519][T31177] [U] [ 845.921455][T31177] [U] [ 845.924207][T31177] [U] [ 845.926924][T31177] [U] [ 845.929903][T31177] [U] [ 845.933614][T31177] [U] [ 845.936378][T31177] [U] [ 845.939254][T31177] [U] [ 845.941981][T31177] [U] [ 845.951037][T31177] [U] [ 845.953802][T31177] [U] [ 845.956559][T31177] [U] [ 845.959259][T31177] [U] [ 845.972479][T31177] [U] [ 845.975233][T31177] [U] [ 845.977928][T31177] [U] [ 845.980661][T31177] [U] [ 845.995080][T31177] [U] [ 845.997831][T31177] [U] [ 846.000569][T31177] [U] [ 846.003301][T31177] [U] [ 846.013747][T31177] [U] [ 846.016488][T31177] [U] [ 846.019285][T31177] [U] [ 846.022006][T31177] [U] [ 846.032333][T31177] [U] [ 846.035073][T31177] [U] [ 846.037825][T31177] [U] [ 846.040558][T31177] [U] [ 846.051613][T31177] [U] [ 846.054363][T31177] [U] [ 846.057142][T31177] [U] [ 846.059941][T31177] [U] [ 846.065259][T31177] [U] [ 846.067965][T31177] [U] [ 846.070655][T31177] [U] [ 846.073417][T31177] [U] [ 846.077764][T31177] [U] [ 846.080461][T31177] [U] [ 846.083156][T31177] [U] [ 846.085839][T31177] [U] [ 846.088732][T31177] [U] [ 846.091427][T31177] [U] [ 846.094118][T31177] [U] [ 846.096894][T31177] [U] [ 846.100660][T31177] [U] [ 846.103366][T31177] [U] [ 846.106076][T31177] [U] [ 846.108768][T31177] [U] [ 846.111659][T31177] [U] [ 846.114351][T31177] [U] [ 846.117123][T31177] [U] [ 846.119808][T31177] [U] [ 846.123780][T31177] [U] [ 846.126485][T31177] [U] [ 846.129233][T31177] [U] [ 846.131930][T31177] [U] [ 846.134909][T31177] [U] [ 846.137612][T31177] [U] [ 846.140301][T31177] [U] [ 846.143002][T31177] [U] [ 846.148226][T31177] [U] [ 846.150928][T31177] [U] [ 846.153610][T31177] [U] [ 846.156307][T31177] [U] [ 846.159787][T31177] [U] [ 846.162482][T31177] [U] [ 846.165168][T31177] [U] [ 846.167941][T31177] [U] [ 846.171861][T31177] [U] [ 846.174674][T31177] [U] [ 846.177404][T31177] [U] [ 846.180119][T31177] [U] [ 846.185720][T31177] [U] [ 846.188420][T31177] [U] [ 846.191124][T31177] [U] [ 846.193825][T31177] [U] [ 846.199226][T31177] [U] [ 846.201962][T31177] [U] [ 846.204763][T31177] [U] [ 846.207455][T31177] [U] [ 846.217806][T31177] [U] [ 846.220569][T31177] [U] [ 846.223280][T31177] [U] [ 846.225992][T31177] [U] [ 846.231365][T31177] [U] [ 846.234073][T31177] [U] [ 846.236795][T31177] [U] [ 846.252784][T31174] [U] [ 846.661975][T31185] can: request_module (can-proto-4) failed. [ 846.992415][T31226] FAULT_INJECTION: forcing a failure. [ 846.992415][T31226] name failslab, interval 1, probability 0, space 0, times 0 [ 847.005517][T31226] CPU: 0 UID: 0 PID: 31226 Comm: syz.0.3047 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 847.005546][T31226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 847.005557][T31226] Call Trace: [ 847.005563][T31226] [ 847.005570][T31226] dump_stack_lvl+0x16c/0x1f0 [ 847.005596][T31226] should_fail_ex+0x512/0x640 [ 847.005622][T31226] should_failslab+0xc2/0x120 [ 847.005646][T31226] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 847.005668][T31226] ? apparmor_capable+0x114/0x1d0 [ 847.005687][T31226] ? __alloc_skb+0x2b2/0x380 [ 847.005710][T31226] __alloc_skb+0x2b2/0x380 [ 847.005729][T31226] ? __pfx___alloc_skb+0x10/0x10 [ 847.005756][T31226] ? __pfx_rtnl_newlink+0x10/0x10 [ 847.005783][T31226] netlink_ack+0x15d/0xb80 [ 847.005808][T31226] netlink_rcv_skb+0x332/0x420 [ 847.005831][T31226] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 847.005854][T31226] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 847.005880][T31226] ? netlink_deliver_tap+0x1ae/0xd30 [ 847.005904][T31226] netlink_unicast+0x5aa/0x870 [ 847.005928][T31226] ? __pfx_netlink_unicast+0x10/0x10 [ 847.005951][T31226] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 847.005977][T31226] netlink_sendmsg+0x8d1/0xdd0 [ 847.006004][T31226] ? __pfx_netlink_sendmsg+0x10/0x10 [ 847.006027][T31226] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 847.006047][T31226] __sys_sendto+0x4a3/0x520 [ 847.006066][T31226] ? __pfx___sys_sendto+0x10/0x10 [ 847.006093][T31226] ? xfd_validate_state+0x61/0x180 [ 847.006118][T31226] ? __pfx_do_writev+0x10/0x10 [ 847.006137][T31226] __x64_sys_sendto+0xe0/0x1c0 [ 847.006156][T31226] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 847.006182][T31226] do_syscall_64+0xcd/0x490 [ 847.006205][T31226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 847.006223][T31226] RIP: 0033:0x7fa975990a7c [ 847.006237][T31226] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 847.006255][T31226] RSP: 002b:00007fa976827ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 847.006272][T31226] RAX: ffffffffffffffda RBX: 00007fa976827fc0 RCX: 00007fa975990a7c [ 847.006284][T31226] RDX: 000000000000001c RSI: 00007fa976828010 RDI: 0000000000000006 [ 847.006295][T31226] RBP: 0000000000000000 R08: 00007fa976827f14 R09: 000000000000000c [ 847.006306][T31226] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006 [ 847.006317][T31226] R13: 00007fa976827f68 R14: 00007fa976828010 R15: 0000000000000000 [ 847.006332][T31226] [ 847.007617][T31226] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3047'. [ 847.077377][T31227] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 848.844358][T31284] delete_channel: no stack [ 849.146975][T31285] netlink: 148 bytes leftover after parsing attributes in process `syz.1.3051'. [ 849.540643][T31294] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3054'. [ 851.228482][T31397] [U] [ 851.231353][T31397] [U] [ 851.234094][T31397] [U] [ 851.236842][T31397] [U] [ 851.239991][T31397] [U] [ 851.242711][T31397] [U] [ 851.245427][T31397] [U] [ 851.248148][T31397] [U] [ 851.260656][T31397] [U] [ 851.263386][T31397] [U] [ 851.266094][T31397] [U] [ 851.268787][T31397] [U] [ 851.286324][T31397] [U] [ 851.289185][T31397] [U] [ 851.291936][T31397] [U] [ 851.294686][T31397] [U] [ 851.369344][T31397] [U] [ 851.372129][T31397] [U] [ 851.374857][T31397] [U] [ 851.377564][T31397] [U] [ 851.444279][T31397] [U] [ 851.447020][T31397] [U] [ 851.449718][T31397] [U] [ 851.452430][T31397] [U] [ 851.460875][T31402] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3064'. [ 851.548984][T31397] [U] [ 851.551717][T31397] [U] [ 851.554407][T31397] [U] [ 851.557184][T31397] [U] [ 851.575738][T31397] [U] [ 851.578475][T31397] [U] [ 851.581166][T31397] [U] [ 851.583883][T31397] [U] [ 851.788456][T31410] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3065'. [ 851.811824][T31397] [U] [ 851.814573][T31397] [U] [ 851.817299][T31397] [U] [ 851.820009][T31397] [U] [ 851.899505][T31397] [U] [ 851.902230][T31397] [U] [ 851.904932][T31397] [U] [ 851.907649][T31397] [U] [ 851.966119][T31397] [U] [ 851.968878][T31397] [U] [ 851.971588][T31397] [U] [ 851.974301][T31397] [U] [ 852.026605][T31397] [U] [ 852.029332][T31397] [U] [ 852.032026][T31397] [U] [ 852.034718][T31397] [U] [ 852.115880][T31397] [U] [ 852.118621][T31397] [U] [ 852.121321][T31397] [U] [ 852.124127][T31397] [U] [ 852.127754][T31397] [U] [ 852.130505][T31397] [U] [ 852.133259][T31397] [U] [ 852.135999][T31397] [U] [ 852.144103][T31397] [U] [ 852.146961][T31397] [U] [ 852.149751][T31397] [U] [ 852.152577][T31397] [U] [ 852.157482][T31397] [U] [ 852.160222][T31397] [U] [ 852.163127][T31397] [U] [ 852.165954][T31397] [U] [ 852.169876][T31397] [U] [ 852.172632][T31397] [U] [ 852.175452][T31397] [U] [ 852.178294][T31397] [U] [ 852.181721][T31397] [U] [ 852.184458][T31397] [U] [ 852.187198][T31397] [U] [ 852.189930][T31397] [U] [ 852.193617][T31397] [U] [ 852.196453][T31397] [U] [ 852.199162][T31397] [U] [ 852.201997][T31397] [U] [ 852.214802][T31397] [U] [ 852.217738][T31397] [U] [ 852.220628][T31397] [U] [ 852.223356][T31397] [U] [ 852.265171][T31397] [U] [ 852.267907][T31397] [U] [ 852.270630][T31397] [U] [ 852.273371][T31397] [U] [ 852.291227][T31397] [U] [ 852.293978][T31397] [U] [ 852.296688][T31397] [U] [ 852.299378][T31397] [U] [ 852.308068][T31397] [U] [ 852.310849][T31397] [U] [ 852.313619][T31397] [U] [ 852.316348][T31397] [U] [ 852.323578][T31397] [U] [ 852.326332][T31397] [U] [ 852.329070][T31397] [U] [ 852.329568][T31427] FAULT_INJECTION: forcing a failure. [ 852.329568][T31427] name failslab, interval 1, probability 0, space 0, times 0 [ 852.331800][T31397] [U] [ 852.364637][T31397] [U] [ 852.367454][T31397] [U] [ 852.370149][T31397] [U] [ 852.372864][T31397] [U] [ 852.397808][T31427] CPU: 1 UID: 0 PID: 31427 Comm: syz.1.3068 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 852.397856][T31427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 852.397883][T31427] Call Trace: [ 852.397894][T31427] [ 852.397906][T31427] dump_stack_lvl+0x16c/0x1f0 [ 852.397951][T31427] should_fail_ex+0x512/0x640 [ 852.397996][T31427] should_failslab+0xc2/0x120 [ 852.398037][T31427] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 852.398074][T31427] ? security_inode_alloc+0x3b/0x2b0 [ 852.398111][T31427] security_inode_alloc+0x3b/0x2b0 [ 852.398147][T31427] inode_init_always_gfp+0xce4/0x1030 [ 852.398184][T31427] alloc_inode+0x86/0x240 [ 852.398227][T31427] new_inode+0x22/0x1c0 [ 852.398268][T31427] proc_pid_make_inode+0x22/0x160 [ 852.398308][T31427] proc_ns_dir_lookup+0x25b/0x3a0 [ 852.398348][T31427] ? __pfx_proc_ns_dir_lookup+0x10/0x10 [ 852.398385][T31427] lookup_open.isra.0+0x4d7/0x1580 [ 852.398419][T31427] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 852.398450][T31427] ? irq_entries_start+0xd0/0xcb0 [ 852.398484][T31427] ? irq_entries_start+0xd0/0xcb0 [ 852.398512][T31427] ? mnt_get_write_access+0x20c/0x300 [ 852.398558][T31427] path_openat+0x893/0x2cb0 [ 852.398598][T31427] ? __pfx_path_openat+0x10/0x10 [ 852.398636][T31427] do_filp_open+0x20b/0x470 [ 852.398672][T31427] ? __pfx_do_filp_open+0x10/0x10 [ 852.398714][T31427] ? __pfx_kfree_link+0x10/0x10 [ 852.398763][T31427] ? alloc_fd+0x471/0x7d0 [ 852.398797][T31427] do_sys_openat2+0x11b/0x1d0 [ 852.398850][T31427] ? __pfx_do_sys_openat2+0x10/0x10 [ 852.398911][T31427] __x64_sys_openat+0x174/0x210 [ 852.398957][T31427] ? __pfx___x64_sys_openat+0x10/0x10 [ 852.399005][T31427] do_syscall_64+0xcd/0x490 [ 852.399043][T31427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 852.399073][T31427] RIP: 0033:0x7f4b8058d550 [ 852.399097][T31427] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 852.399127][T31427] RSP: 002b:00007f4b81446f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 852.399157][T31427] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4b8058d550 [ 852.399178][T31427] RDX: 0000000000000002 RSI: 00007f4b81446fa0 RDI: 00000000ffffff9c [ 852.399196][T31427] RBP: 00007f4b81446fa0 R08: 0000000000000000 R09: 0000000000000000 [ 852.399214][T31427] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 852.399232][T31427] R13: 00007f4b807b6038 R14: 00007f4b807b5fa0 R15: 00007fff72b2a488 [ 852.399259][T31427] [ 852.655461][T31397] [U] [ 853.007933][T31442] netlink: 148 bytes leftover after parsing attributes in process `syz.0.3074'. [ 853.269470][T31444] netlink: 'syz.4.3075': attribute type 10 has an invalid length. [ 853.441937][T31447] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3076'. [ 853.525633][T31444] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3075'. [ 854.557471][T31490] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3079'. [ 854.621160][T31490] netlink: 186 bytes leftover after parsing attributes in process `syz.2.3079'. [ 855.183366][T31497] FAULT_INJECTION: forcing a failure. [ 855.183366][T31497] name failslab, interval 1, probability 0, space 0, times 0 [ 855.196419][T31497] CPU: 0 UID: 0 PID: 31497 Comm: syz.0.3089 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 855.196450][T31497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 855.196462][T31497] Call Trace: [ 855.196468][T31497] [ 855.196475][T31497] dump_stack_lvl+0x16c/0x1f0 [ 855.196502][T31497] should_fail_ex+0x512/0x640 [ 855.196528][T31497] should_failslab+0xc2/0x120 [ 855.196552][T31497] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 855.196575][T31497] ? sock_alloc_inode+0x25/0x1c0 [ 855.196602][T31497] ? __pfx_sock_alloc_inode+0x10/0x10 [ 855.196626][T31497] sock_alloc_inode+0x25/0x1c0 [ 855.196651][T31497] alloc_inode+0x61/0x240 [ 855.196695][T31497] sock_alloc+0x40/0x280 [ 855.196718][T31497] __sock_create+0xc1/0x8d0 [ 855.196736][T31497] __sys_socket+0x14d/0x260 [ 855.196753][T31497] ? __pfx___sys_socket+0x10/0x10 [ 855.196771][T31497] ? xfd_validate_state+0x61/0x180 [ 855.196796][T31497] ? __pfx_ksys_read+0x10/0x10 [ 855.196828][T31497] __x64_sys_socket+0x72/0xb0 [ 855.196845][T31497] do_syscall_64+0xcd/0x490 [ 855.196867][T31497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.196885][T31497] RIP: 0033:0x7fa97598ebe9 [ 855.196900][T31497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 855.196917][T31497] RSP: 002b:00007fa976829038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 855.196935][T31497] RAX: ffffffffffffffda RBX: 00007fa975bb5fa0 RCX: 00007fa97598ebe9 [ 855.196947][T31497] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 855.196958][T31497] RBP: 00007fa975a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 855.196969][T31497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 855.196980][T31497] R13: 00007fa975bb6038 R14: 00007fa975bb5fa0 R15: 00007ffec6354178 [ 855.196996][T31497] [ 855.197005][T31497] socket: no more sockets [ 855.673828][T31534] svc: failed to register nfsdv3 RPC service (errno 111). [ 855.681573][T31534] svc: failed to register nfsaclv3 RPC service (errno 111). [ 856.454597][T31580] netlink: 148 bytes leftover after parsing attributes in process `syz.2.3086'. [ 857.814581][T31628] warning: `syz.0.3101' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 857.829006][T31628] program syz.0.3101 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 857.840322][T31625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3088'. [ 858.127464][T31660] [U] [ 858.130316][T31660] [U] [ 858.133145][T31660] [U] [ 858.135857][T31660] [U] [ 858.158437][T31660] [U] [ 858.161298][T31660] [U] [ 858.164025][T31660] [U] [ 858.166767][T31660] [U] [ 858.241325][T31660] [U] [ 858.244159][T31660] [U] [ 858.246861][T31660] [U] [ 858.249569][T31660] [U] [ 858.273055][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 858.285221][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 858.296919][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 858.304561][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 858.314175][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 858.323607][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 858.334945][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 858.416333][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 858.452845][T31660] [U] [ 858.455582][T31660] [U] [ 858.458406][T31660] [U] [ 858.461100][T31660] [U] [ 858.481932][T31660] [U] [ 858.484748][T31660] [U] [ 858.487442][T31660] [U] [ 858.490129][T31660] [U] [ 858.644677][T31660] [U] [ 858.647425][T31660] [U] [ 858.650121][T31660] [U] [ 858.652819][T31660] [U] [ 858.725895][T31660] [U] [ 858.728628][T31660] [U] [ 858.731337][T31660] [U] [ 858.734034][T31660] [U] [ 858.831337][T31660] [U] [ 858.834121][T31660] [U] [ 858.836851][T31660] [U] [ 858.839553][T31660] [U] [ 859.025866][T31660] [U] [ 859.837970][T31686] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3097'. [ 860.137331][T31700] [U] [ 860.140364][T31700] [U] [ 860.143097][T31700] [U] [ 860.145843][T31700] [U] [ 860.182200][T31703] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3104'. [ 860.193452][T31700] [U] [ 860.196184][T31700] [U] [ 860.198997][T31700] [U] [ 860.201729][T31700] [U] [ 860.254366][T31700] [U] [ 860.257116][T31700] [U] [ 860.259810][T31700] [U] [ 860.262530][T31700] [U] [ 860.392676][T31700] [U] [ 860.395430][T31700] [U] [ 860.398141][T31700] [U] [ 860.400849][T31700] [U] [ 860.481007][T31700] [U] [ 860.483758][T31700] [U] [ 860.486477][T31700] [U] [ 860.489169][T31700] [U] [ 860.521646][T31700] [U] [ 860.524387][T31700] [U] [ 860.527087][T31700] [U] [ 860.529785][T31700] [U] [ 860.548785][T31700] [U] [ 860.551547][T31700] [U] [ 860.554260][T31700] [U] [ 860.556953][T31700] [U] [ 860.586968][T31700] [U] [ 860.589739][T31700] [U] [ 860.592479][T31700] [U] [ 860.595219][T31700] [U] [ 860.630299][T31714] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3105'. [ 860.639888][T31700] [U] [ 860.642648][T31700] [U] [ 860.645384][T31700] [U] [ 860.648122][T31700] [U] [ 860.696987][T31700] [U] [ 860.699756][T31700] [U] [ 860.702494][T31700] [U] [ 860.705317][T31700] [U] [ 860.709795][T31700] [U] [ 860.712693][T31700] [U] [ 860.715437][T31700] [U] [ 860.718262][T31700] [U] [ 860.725338][T31700] [U] [ 860.728286][T31700] [U] [ 860.731027][T31700] [U] [ 860.733781][T31700] [U] [ 860.739354][T31700] [U] [ 860.742103][T31700] [U] [ 860.744847][T31700] [U] [ 860.747581][T31700] [U] [ 860.775951][T31700] [U] [ 860.778719][T31700] [U] [ 860.781438][T31700] [U] [ 860.784222][T31700] [U] [ 860.857038][T31700] [U] [ 860.859809][T31700] [U] [ 860.862553][T31700] [U] [ 860.865267][T31700] [U] [ 860.884600][T31700] [U] [ 860.887357][T31700] [U] [ 860.890052][T31700] [U] [ 860.892765][T31700] [U] [ 860.899421][T31700] [U] [ 860.902134][T31700] [U] [ 860.904857][T31700] [U] [ 860.907618][T31700] [U] [ 860.914496][T31700] [U] [ 860.917256][T31700] [U] [ 860.919979][T31700] [U] [ 860.922706][T31700] [U] [ 860.932221][T31713] [U] [ 860.934981][T31713] [U] [ 860.937715][T31713] [U] [ 860.940426][T31713] [U] [ 860.977507][T31713] [U] [ 860.980237][T31713] [U] [ 860.982925][T31713] [U] [ 860.985615][T31713] [U] [ 861.021322][T31713] [U] [ 861.024066][T31713] [U] [ 861.026759][T31713] [U] [ 861.029458][T31713] [U] [ 861.054749][T31713] [U] [ 861.057529][T31713] [U] [ 861.060274][T31713] [U] [ 861.063020][T31713] [U] [ 861.069279][T31713] [U] [ 861.071996][T31713] [U] [ 861.074692][T31713] [U] [ 861.077388][T31713] [U] [ 861.081271][T31713] [U] [ 861.083989][T31713] [U] [ 861.086716][T31713] [U] [ 861.089432][T31713] [U] [ 861.094083][T31713] [U] [ 861.096809][T31713] [U] [ 861.099507][T31713] [U] [ 861.102267][T31713] [U] [ 861.106807][T31713] [U] [ 861.109623][T31713] [U] [ 861.112372][T31713] [U] [ 861.115102][T31713] [U] [ 861.121395][T31713] [U] [ 861.124130][T31713] [U] [ 861.127023][T31713] [U] [ 861.129735][T31713] [U] [ 861.136724][T31713] [U] [ 861.139624][T31713] [U] [ 861.142362][T31713] [U] [ 861.145102][T31713] [U] [ 861.328013][T31713] [U] [ 861.330800][T31713] [U] [ 861.333669][T31713] [U] [ 861.336519][T31713] [U] [ 861.361443][T31713] [U] [ 861.364179][T31713] [U] [ 861.366884][T31713] [U] [ 861.369612][T31713] [U] [ 861.396460][T31713] [U] [ 861.399251][T31713] [U] [ 861.402012][T31713] [U] [ 861.404839][T31713] [U] [ 861.448433][T31713] [U] [ 861.451231][T31713] [U] [ 861.453971][T31713] [U] [ 861.456734][T31713] [U] [ 861.459578][T31713] [U] [ 861.491945][T31755] vivid-009: ================= START STATUS ================= [ 861.515704][T31713] [U] [ 861.518485][T31713] [U] [ 861.521233][T31713] [U] [ 861.523965][T31713] [U] [ 861.537737][T31755] vivid-009: Enable Output Cropping: true grabbed [ 861.545403][T31755] vivid-009: Enable Output Composing: true grabbed [ 861.576123][T31755] vivid-009: Enable Output Scaler: true grabbed [ 861.615120][T31713] [U] [ 861.622765][T31755] vivid-009: Tx RGB Quantization Range: Automatic grabbed [ 861.733848][T31785] block nbd7: not configured, cannot reconfigure [ 861.804574][T31755] vivid-009: Transmit Mode: HDMI grabbed [ 862.060028][T31755] vivid-009: Hotplug Present: 0x00000000 [ 862.196240][T31755] vivid-009: RxSense Present: 0x00000000 [ 862.253084][T31755] vivid-009: EDID Present: 0x00000000 [ 862.277737][T31755] vivid-009: ================== END STATUS ================== [ 864.442415][T31848] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3119'. [ 864.472235][T31752] kexec: Could not allocate control_code_buffer [ 864.578524][T31854] futex_wake_op: syz.0.3128 tries to shift op by -2048; fix this program [ 864.627371][T31854] futex_wake_op: syz.0.3128 tries to shift op by -2048; fix this program [ 865.108058][T31868] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3121'. [ 865.773160][T31890] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 865.780895][T31890] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 865.787591][T31890] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 865.801057][T31890] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 866.101535][T31899] program syz.1.3122 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 866.703670][T31906] FAULT_INJECTION: forcing a failure. [ 866.703670][T31906] name failslab, interval 1, probability 0, space 0, times 0 [ 866.763923][T31906] CPU: 1 UID: 0 PID: 31906 Comm: syz.4.3124 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 866.763971][T31906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 866.763991][T31906] Call Trace: [ 866.764001][T31906] [ 866.764014][T31906] dump_stack_lvl+0x16c/0x1f0 [ 866.764057][T31906] should_fail_ex+0x512/0x640 [ 866.764102][T31906] should_failslab+0xc2/0x120 [ 866.764142][T31906] __kmalloc_cache_noprof+0x6a/0x3e0 [ 866.764175][T31906] ? percpu_ref_init+0xec/0x410 [ 866.764215][T31906] ? __pfx_css_release+0x10/0x10 [ 866.764254][T31906] percpu_ref_init+0xec/0x410 [ 866.764291][T31906] ? init_and_link_css+0x32c/0x700 [ 866.764324][T31906] cgroup_apply_control_enable+0x50b/0xbb0 [ 866.764377][T31906] cgroup_mkdir+0x5e7/0x11f0 [ 866.764427][T31906] ? __pfx_cgroup_mkdir+0x10/0x10 [ 866.764473][T31906] kernfs_iop_mkdir+0x111/0x190 [ 866.764515][T31906] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 866.764556][T31906] vfs_mkdir+0x590/0x8c0 [ 866.764585][T31906] do_mkdirat+0x304/0x3e0 [ 866.764622][T31906] ? __pfx_do_mkdirat+0x10/0x10 [ 866.764659][T31906] ? getname_flags.part.0+0x1c5/0x550 [ 866.764708][T31906] __x64_sys_mkdir+0xef/0x140 [ 866.764753][T31906] do_syscall_64+0xcd/0x490 [ 866.764793][T31906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 866.764825][T31906] RIP: 0033:0x7fec8a38ebe9 [ 866.764849][T31906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 866.764879][T31906] RSP: 002b:00007fec8b2a0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 866.764908][T31906] RAX: ffffffffffffffda RBX: 00007fec8a5b5fa0 RCX: 00007fec8a38ebe9 [ 866.764930][T31906] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 866.764950][T31906] RBP: 00007fec8a411e19 R08: 0000000000000000 R09: 0000000000000000 [ 866.764969][T31906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 866.764988][T31906] R13: 00007fec8a5b6038 R14: 00007fec8a5b5fa0 R15: 00007ffd0158d5f8 [ 866.765017][T31906] [ 867.176597][ T24] ------------[ cut here ]------------ [ 867.182197][ T24] WARNING: CPU: 1 PID: 24 at kernel/cgroup/rstat.c:488 css_rstat_exit+0x368/0x470 [ 867.191896][ T24] Modules linked in: [ 867.196190][ T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 867.208352][ T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 867.218527][ T24] Workqueue: cgroup_destroy css_free_rwork_fn [ 867.224635][ T24] RIP: 0010:css_rstat_exit+0x368/0x470 [ 867.230237][ T24] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 867.250221][ T24] RSP: 0018:ffffc900001e7bc0 EFLAGS: 00010293 [ 867.256582][ T24] RAX: 0000000000000000 RBX: ffff888025172700 RCX: ffff8881246c4000 [ 867.265165][ T24] RDX: ffff88801ea90000 RSI: ffffffff81b407c7 RDI: ffffffff8df57e60 [ 867.273620][ T24] RBP: ffff888025172708 R08: 0000000000000005 R09: 0000000000000007 [ 867.282701][ T24] R10: 0000000000000000 R11: ffffffff9afe64e8 R12: ffff888025172720 [ 867.291241][ T24] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 867.300499][ T24] FS: 0000000000000000(0000) GS:ffff8881247c4000(0000) knlGS:0000000000000000 [ 867.309757][ T24] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 867.317247][ T24] CR2: 0000001b338beff8 CR3: 000000002f4ce000 CR4: 00000000003526f0 [ 867.325591][ T24] Call Trace: [ 867.328910][ T24] [ 867.331953][ T24] css_free_rwork_fn+0x80/0x12e0 [ 867.338263][ T24] ? rcu_is_watching+0x12/0xc0 [ 867.343071][ T24] process_one_work+0x9cc/0x1b70 [ 867.348245][ T24] ? __pfx_vmstat_update+0x10/0x10 [ 867.353402][ T24] ? __pfx_process_one_work+0x10/0x10 [ 867.359341][ T24] ? assign_work+0x1a0/0x250 [ 867.363968][ T24] worker_thread+0x6c8/0xf10 [ 867.369050][ T24] ? __pfx_worker_thread+0x10/0x10 [ 867.374498][ T24] kthread+0x3c2/0x780 [ 867.378815][ T24] ? __pfx_kthread+0x10/0x10 [ 867.383673][ T24] ? rcu_is_watching+0x12/0xc0 [ 867.389258][ T24] ? __pfx_kthread+0x10/0x10 [ 867.394278][ T24] ret_from_fork+0x5d4/0x6f0 [ 867.399178][ T24] ? __pfx_kthread+0x10/0x10 [ 867.403907][ T24] ret_from_fork_asm+0x1a/0x30 [ 867.408806][ T24] [ 867.411833][ T24] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 867.419205][ T24] CPU: 1 UID: 0 PID: 24 Comm: kworker/1:0 Not tainted 6.17.0-rc1-syzkaller-00214-g99bade344cfa #0 PREEMPT(full) [ 867.431103][ T24] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 867.441173][ T24] Workqueue: cgroup_destroy css_free_rwork_fn [ 867.447261][ T24] Call Trace: [ 867.450564][ T24] [ 867.453495][ T24] dump_stack_lvl+0x3d/0x1f0 [ 867.458105][ T24] vpanic+0x6e8/0x7a0 [ 867.462099][ T24] ? __pfx_vpanic+0x10/0x10 [ 867.466621][ T24] ? css_rstat_exit+0x368/0x470 [ 867.471525][ T24] panic+0xca/0xd0 [ 867.475363][ T24] ? __pfx_panic+0x10/0x10 [ 867.479884][ T24] ? check_panic_on_warn+0x1f/0xb0 [ 867.485006][ T24] check_panic_on_warn+0xab/0xb0 [ 867.490415][ T24] __warn+0xf6/0x3c0 [ 867.494351][ T24] ? css_rstat_exit+0x368/0x470 [ 867.499216][ T24] report_bug+0x3c3/0x580 [ 867.503552][ T24] ? css_rstat_exit+0x368/0x470 [ 867.508405][ T24] handle_bug+0x184/0x210 [ 867.512761][ T24] exc_invalid_op+0x17/0x50 [ 867.517369][ T24] asm_exc_invalid_op+0x1a/0x20 [ 867.522246][ T24] RIP: 0010:css_rstat_exit+0x368/0x470 [ 867.527739][ T24] Code: 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 0e 01 00 00 49 c7 85 70 05 00 00 00 00 00 00 e9 00 ff ff ff e8 19 08 07 00 90 <0f> 0b 90 e9 3e ff ff ff e8 0b 08 07 00 90 0f 0b 90 e9 30 ff ff ff [ 867.547708][ T24] RSP: 0018:ffffc900001e7bc0 EFLAGS: 00010293 [ 867.553896][ T24] RAX: 0000000000000000 RBX: ffff888025172700 RCX: ffff8881246c4000 [ 867.561873][ T24] RDX: ffff88801ea90000 RSI: ffffffff81b407c7 RDI: ffffffff8df57e60 [ 867.569859][ T24] RBP: ffff888025172708 R08: 0000000000000005 R09: 0000000000000007 [ 867.577863][ T24] R10: 0000000000000000 R11: ffffffff9afe64e8 R12: ffff888025172720 [ 867.585954][ T24] R13: 0000000000000000 R14: 0000000000000003 R15: dffffc0000000000 [ 867.593991][ T24] ? css_rstat_exit+0x367/0x470 [ 867.598863][ T24] css_free_rwork_fn+0x80/0x12e0 [ 867.603815][ T24] ? rcu_is_watching+0x12/0xc0 [ 867.608587][ T24] process_one_work+0x9cc/0x1b70 [ 867.613627][ T24] ? __pfx_vmstat_update+0x10/0x10 [ 867.618772][ T24] ? __pfx_process_one_work+0x10/0x10 [ 867.624167][ T24] ? assign_work+0x1a0/0x250 [ 867.628801][ T24] worker_thread+0x6c8/0xf10 [ 867.633402][ T24] ? __pfx_worker_thread+0x10/0x10 [ 867.638623][ T24] kthread+0x3c2/0x780 [ 867.642705][ T24] ? __pfx_kthread+0x10/0x10 [ 867.647303][ T24] ? rcu_is_watching+0x12/0xc0 [ 867.652097][ T24] ? __pfx_kthread+0x10/0x10 [ 867.656697][ T24] ret_from_fork+0x5d4/0x6f0 [ 867.661470][ T24] ? __pfx_kthread+0x10/0x10 [ 867.666063][ T24] ret_from_fork_asm+0x1a/0x30 [ 867.670837][ T24] [ 867.674151][ T24] Kernel Offset: disabled [ 867.678475][ T24] Rebooting in 86400 seconds..