last executing test programs: 8m10.742621705s ago: executing program 1 (id=127): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xffffffffffff7fff, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x400000006, 0x3, 0x300000000000000, 0x9, 0x5, 0x6d3c, 0x5, 0x80000000002]}, 0x0) r1 = socket(0x2c, 0x3, 0x0) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x24004050}, 0x4000005) r2 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)={0x94, r2, 0x2, 0x70bd27, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @broadcast}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_SECCTX={0x31, 0x7, "fdbb0640b31ea59f9c779f3aec4ab2371c4163ef35d383543b344f67e55fd341295339cdf2b2a5f3a725f07d7d"}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'geneve1\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0xfd}}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x5) sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) open$auto(0x0, 0xffffdff8, 0xff90) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000c80)="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", 0x300) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x28, 0x1, 0x1) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xffffffffffff7fff, 0x1, 0x948b, 0x2, 0x15f4da0a, 0x400000006, 0x3, 0x300000000000000, 0x9, 0x5, 0x6d3c, 0x5, 0x80000000002]}, 0x0) (async) socket(0x2c, 0x3, 0x0) (async) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x24004050}, 0x4000005) (async) syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000180), 0xffffffffffffffff) (async) sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)={0x94, r2, 0x2, 0x70bd27, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @broadcast}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_SECCTX={0x31, 0x7, "fdbb0640b31ea59f9c779f3aec4ab2371c4163ef35d383543b344f67e55fd341295339cdf2b2a5f3a725f07d7d"}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'geneve1\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0xfd}}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x5) (async) sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) (async) open$auto(0x0, 0xffffdff8, 0xff90) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) (async) write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f0000000c80)="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", 0x300) (async) close_range$auto(0x2, 0x8, 0x0) (async) 8m10.112801653s ago: executing program 1 (id=130): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) io_uring_setup$auto(0x6, 0x0) semctl$auto(0x63f0, 0x806, 0x13, 0xb) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0xa, 0x801, 0x100) r2 = getsockopt$auto(r1, 0x40000000029, 0x13, 0xfffffffffffffffe, 0x0) ioctl$auto_TUNSETGROUP(r2, 0x400454ce, &(0x7f0000000000)=0x39ee5fa1) 8m9.817774132s ago: executing program 1 (id=135): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) io_uring_setup$auto(0x7, 0x0) clone$auto(0x1ff00, 0x0, 0x0, 0x0, 0x9) exit$auto(0x7f) socket(0x2, 0x2, 0x0) socket(0x28, 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) socket(0x2, 0x80002, 0x73) open(0x0, 0x161342, 0x100) r1 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x20100, 0x0) r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r2, r1, 0x0) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0) ioctl$auto(r3, 0xc0585611, r3) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x8e00, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r0) 8m9.257976s ago: executing program 1 (id=138): pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5\x85\x91p\xe6\x1eRN8\x90\x86\xdde\x1cJ\x99\x00\x11\x89\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000000)=@link_update={0x2, @new_prog_fd=0x4, 0x7, @old_prog_fd=0x8000}, 0xa3) (async) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), r0) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x2c, r2, 0x39, 0x70bd26, 0x25dfdbfc, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '\x01\x00R\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x80) 8m8.992108529s ago: executing program 1 (id=139): r0 = socket$nl_generic(0x10, 0x3, 0x10) connect$auto(r0, &(0x7f0000004680)=@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x100000}, 0x8) mmap$auto(0xffffffffffffffff, 0x2020009, 0x10, 0x19, r0, 0x2) r1 = prctl$auto_PR_PAC_GET_ENABLED_KEYS(0x3d, 0xff, 0xffffffffffffffff, 0x0, 0x8) symlinkat$auto(&(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000080)='./file0\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x4dd8, 0x5) r3 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_BIND_RX(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd7000fcdbdf250d00000008000300", @ANYRES32, @ANYBLOB="0400028008000100"], 0x28}, 0x1, 0x0, 0x0, 0x4800}, 0x4) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dri/card1\x00', 0x129800, 0x0) ioctl$auto(r4, 0x900064b9, 0xfffffffffffffffb) socket(0x2, 0x1, 0x84) mmap$auto(0x1, 0xe983, 0x200000df, 0xeb1, 0x402, 0x8000) timer_create$auto(0x400005, 0x0, 0x0) timer_settime$auto(0x0, 0x1, &(0x7f00000000c0)={{0x400f, 0x10007}, {0x89, 0x80000000000001}}, 0x0) rt_sigaction$auto(0xe, &(0x7f0000000580)={&(0x7f00000004c0)=0x0, 0x100000001, 0x0, {0x6}}, 0x0, 0x8) socketpair$auto(0x7, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x6, 0x40000000029, 0x38, 0xfffffffffffffffe, 0x0) connect$auto(0x3, &(0x7f0000000040)=@vsock={0x28, 0x0, 0x2710}, 0x53) shutdown$auto(0x200000003, 0x2) 8m8.611827938s ago: executing program 1 (id=141): shmctl$auto(0x4, 0x3d1, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x40, 0x7ff, 0x0, 0x3}, 0x8, 0x4, 0x6, 0x8, @inferred, @inferred, 0x58f, 0x0, 0x0, 0x0}) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async, rerun: 32) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x203c2, 0x0) (rerun: 32) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) (async) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x1819, 0xffffffffffffffff, 0x40eb1, 0x602, 0x823) (async) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) sendfile$auto(r0, r1, 0x0, 0x0) (async) mmap$auto(0x0, 0x4020007, 0xdf, 0xeb1, 0x401, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ttyt4/power/runtime_suspended_time\x00', 0x408440, 0x0) ioctl$auto_SNDCTL_DSP_RESET(r0, 0x5000, 0x0) (async) modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x800000000006, 0x20009, 0x6e96, 0xfffffffffffffffe, r0, 0x8000) (async, rerun: 64) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 64) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x78280, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) recvmmsg$auto(0xffffffffffffffff, 0x0, 0xc1f, 0x9, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) (async, rerun: 32) prctl$auto_PR_GET_DUMPABLE(0x3, 0x8, 0x0, 0x6, 0x4063) (async, rerun: 32) mmap$auto(0x0, 0x400005, 0xfffffffffffffffc, 0x1f, 0xffffffffffffffff, 0x62) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0xa, 0x1, 0x6) (async, rerun: 32) setsockopt$auto(0x3, 0x0, 0xb, 0xffffffffffffffff, 0x0) (rerun: 32) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="19000003d30000", 0x7) socket(0x2, 0x1, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) 7m53.357450419s ago: executing program 32 (id=141): shmctl$auto(0x4, 0x3d1, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x40, 0x7ff, 0x0, 0x3}, 0x8, 0x4, 0x6, 0x8, @inferred, @inferred, 0x58f, 0x0, 0x0, 0x0}) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async, rerun: 32) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x203c2, 0x0) (rerun: 32) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) (async) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x1819, 0xffffffffffffffff, 0x40eb1, 0x602, 0x823) (async) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0) sendfile$auto(r0, r1, 0x0, 0x0) (async) mmap$auto(0x0, 0x4020007, 0xdf, 0xeb1, 0x401, 0x8000) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ttyt4/power/runtime_suspended_time\x00', 0x408440, 0x0) ioctl$auto_SNDCTL_DSP_RESET(r0, 0x5000, 0x0) (async) modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10) (async) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x800000000006, 0x20009, 0x6e96, 0xfffffffffffffffe, r0, 0x8000) (async, rerun: 64) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async, rerun: 64) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x78280, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) recvmmsg$auto(0xffffffffffffffff, 0x0, 0xc1f, 0x9, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) (async, rerun: 32) prctl$auto_PR_GET_DUMPABLE(0x3, 0x8, 0x0, 0x6, 0x4063) (async, rerun: 32) mmap$auto(0x0, 0x400005, 0xfffffffffffffffc, 0x1f, 0xffffffffffffffff, 0x62) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0xa, 0x1, 0x6) (async, rerun: 32) setsockopt$auto(0x3, 0x0, 0xb, 0xffffffffffffffff, 0x0) (rerun: 32) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="19000003d30000", 0x7) socket(0x2, 0x1, 0x0) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) 3m53.796338021s ago: executing program 2 (id=1315): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x14, 0x2, 0x7ffe) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) fstatfs$auto(0x3, 0x0) ioctl$auto(r0, 0x4b67, 0x1) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptyz6\x00', 0x800, 0x0) quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb3, 0x401, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffbfffffffffd, 0xd4, 0x1, 0x10000006, 0x0, 0x1, 0x368e, 0x40000000002, {0x2100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x2, 0x84, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x800}) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fadbdf250600000008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x815}, 0x20000084) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8001}, 0x40080) socket(0x3e, 0xa, 0x4) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) unshare$auto(0x40000080) modify_ldt$auto(0x1, 0x0, 0x10) modify_ldt$auto(0x0, 0x0, 0x5749) bpf$auto(0x1442, &(0x7f0000000000)=@prog_bind_map={0xffffffffffffffff, 0xffffffffffffffff, 0x2}, 0xa1) ioperm$auto(0x7, 0x6, 0x1) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) socket(0xa, 0x3, 0xff) socket(0x15, 0x3, 0xff) setsockopt$auto(0xffffffffffffffff, 0x29, 0x3, 0x0, 0x20056b) 3m52.448379124s ago: executing program 2 (id=1320): r0 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000080)="26597bdc08008545e26dcec6508a", 0x12, 0x0, 0x9, 0x0, 0x1c, 0xb}, 0x800009}, 0x5, 0x20000000) r1 = fcntl$auto(0x3, 0x4, 0xa553) tee$auto(r0, r1, 0x0, 0xef8) ioctl$auto_XFS_IOC_GET_RESBLKS(r1, 0x80105873, &(0x7f0000000040)={0xffffffffffffa9dd}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x20000000000, 0x3, 0x2) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) socket(0x2, 0x6, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0x700}, 0x55) write$auto_console_fops_tty_io(r2, 0x0, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) process_madvise$auto(r1, &(0x7f0000000580)={&(0x7f00000004c0)="2b7ff0afc3daf06e457709d86751e87241b307228ecdd2091cdccc3765fcd7b4f8a5bf4310583dcdf59f9a18a0bf143c32a8f607b1e825e14c06b6b6542ec6637df9b61cae641539ffca1265ff7efe9d804e3fc4bb552e18edb374d9c7bde8db0afc4af5489dab88439315ffc0081d3cbde5a86b3b9e5a6ebbf3874e995bf04b167692f9d2c918b13605c3ca", 0x1}, 0x1, 0x0, 0x1) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) mprotect$auto(0x0, 0x8000000000000001, 0x6) r4 = syz_clone(0x8000, &(0x7f0000000180)="e56201fee70be286a0f5f126f37c5f957399402aab829e74a6fca9584b05c84c41186c56a79d65fed81d2ef60daa89fedc63d224b6b7003155a8d2a9630243f01036001d25ad72d36e7b7813a660d82ccc3c8a2031b830d5a87832d8d454ba6af561bd30827056a0b318deb8ac5c7c6e7ccb7922fc6648bfd74ea515d461cd0b81215013eef497d349fa41b67dd424c1ee8214dc3053c6546cf6c27e9eac728252529776af595a70c9ac6ff3ddc613f75ea0bf3673b5735efbf3f82c", 0xbc, &(0x7f0000000100), &(0x7f0000000240), &(0x7f0000000280)="371282399ae45bae2da3ada51b3077e084caef110b2111185fb20517082f17c1a5dfbe6156640b1117eefc9893ccef39a167a5f0bfae384e828842bb8492369d45383e73e3879b2717e5f0a536b97d2449e52571089ebcda4f0d105fd521275083fd13d14c45f123c8cc86f26a445cc909086f804cd04bb8955a555fd0df7f34206e9e0b8d0dafd2508cab05c73a6966666d77b3191e42611d724be275af976613381ae879100b7ff45e33acf9d208f15c861d3583e18ab0ebbcc17838cd80d98bee164d8afb06f13925ff60b9d9884755c6d696d2f74d6fa1dcc5b94e3fc1ecd482891c01efc532096ff30977b1fb4b5e") r5 = semctl$auto_GETZCNT(0x68, 0x0, 0xf, 0x8) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000380)={{@raw=0x5, 0x6, 0xff, 0x101, "6d1fdf6752179fea4dd5743e182cd73ba434f51c84c72b375d583883e2d8b2dc5d665214927c99c762f1a9c0", @inferred=r4}, 0x3, 0x1, 0xfffffff8, @inferred=r5, @enumerated={0x2, 0x4, "16cfa797ef1c4615cb460958d4671c3889081da9bd583eafd3b1a3f5c986eaa01c0c72e9ab6eb68ee4bec119465f24727ee321cd89b831b82224b70404d95ab5", 0x7, 0x1}, "edd10d1d5a2525be754c1d0ea6676ec195de4ce580f84cff20dca251fdfaa9961b8ff26cf29b82892e3ec679234bd078b2002924e7be673c09682bf7fb87d25b"}) 3m52.073643964s ago: executing program 2 (id=1321): sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a010000000000000000000a1201000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="04001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) lsm_list_modules$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x29, 0x6, 0x0, 0x50) socket(0x10, 0x2, 0x0) r1 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(r1, 0x84, 0x1a, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x4b4d, r3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) 3m51.123425467s ago: executing program 2 (id=1327): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendmsg$auto_CGROUPSTATS_CMD_GET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x0, 0x70bd29, 0x25dfdbfd, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r1}]}, 0x54}, 0x1, 0x0, 0x0, 0x5}, 0x2000880) socket(0x26, 0x80805, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) mmap$auto(0x0, 0x2, 0xdb, 0x9b72, 0x6, 0x100000000) ioctl$auto(0x3, 0x40045613, 0x38) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) sendmsg$auto_CGROUPSTATS_CMD_GET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x0, 0x70bd29, 0x25dfdbfd, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r0}, @CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r1}]}, 0x54}, 0x1, 0x0, 0x0, 0x5}, 0x2000880) (async) socket(0x26, 0x80805, 0x0) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0) (async) mmap$auto(0x0, 0x2, 0xdb, 0x9b72, 0x6, 0x100000000) (async) ioctl$auto(0x3, 0x40045613, 0x38) (async) 3m50.696692956s ago: executing program 2 (id=1331): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8) bpf$auto(0x2, 0x0, 0xb) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x80) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) close_range$auto(0x2, 0x8, 0x0) 3m49.902339274s ago: executing program 2 (id=1334): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x20201, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_normal\x00', 0x10b142, 0x0) sendfile$auto(r1, r1, 0x0, 0x200) mmap$auto(0x0, 0x100000000000006, 0xc8ef, 0x40eb2, r1, 0x14000000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x5) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) socket(0x11, 0x2, 0x88) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x20008000) r3 = socket(0x2, 0x801, 0x106) r4 = io_uring_setup$auto(0x7, &(0x7f0000000000)={0x10000, 0x80, 0xe, 0x8, 0x1fd, 0x4, r3, [0x7fffffff, 0x8, 0x6], {0x5, 0x800000a, 0x200, 0xffffffff, 0x81, 0x1ff, 0x7, 0x8, 0x200}, {0x1136400, 0x72, 0x1800000, 0x4, 0x8, 0x4, 0x3b72, 0x80, 0xffffffffffffffff}}) write$auto(0x3, 0x0, 0x3f00) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'bond_slave_0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x40, r5, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_COALESCE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffffffff}]}, @ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) 3m34.685319537s ago: executing program 33 (id=1334): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, 0x0, 0x20201, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_normal\x00', 0x10b142, 0x0) sendfile$auto(r1, r1, 0x0, 0x200) mmap$auto(0x0, 0x100000000000006, 0xc8ef, 0x40eb2, r1, 0x14000000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x5) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) socket(0x11, 0x2, 0x88) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x20008000) r3 = socket(0x2, 0x801, 0x106) r4 = io_uring_setup$auto(0x7, &(0x7f0000000000)={0x10000, 0x80, 0xe, 0x8, 0x1fd, 0x4, r3, [0x7fffffff, 0x8, 0x6], {0x5, 0x800000a, 0x200, 0xffffffff, 0x81, 0x1ff, 0x7, 0x8, 0x200}, {0x1136400, 0x72, 0x1800000, 0x4, 0x8, 0x4, 0x3b72, 0x80, 0xffffffffffffffff}}) write$auto(0x3, 0x0, 0x3f00) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'bond_slave_0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x40, r5, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_COALESCE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffffffff}]}, @ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) 20.540554704s ago: executing program 3 (id=2215): mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) (async) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/admmidi2\x00', 0x6a241, 0x0) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88G\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) (async) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(r0, 0x40045731, 0x0) socket(0x2, 0x80002, 0x73) (async) socket(0xa, 0x5, 0x0) (async, rerun: 32) mmap$auto(0x10000, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) (rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x5) (async, rerun: 32) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mknod$auto(&(0x7f0000000000)='./file0\x00', 0x2, 0xaec) (async) open$dir(0x0, 0x42, 0x20) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64) socket(0x10, 0x2, 0x0) (async, rerun: 64) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x4) (async) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0x21, 0x2, 0x2) socket(0x22, 0x80805, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x28641, 0x0) (async) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r1, @ANYRES32], 0x18}}, 0x4000080) 19.464510653s ago: executing program 3 (id=2218): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000004", @ANYRES16, @ANYBLOB="93ab2dbd7000fcdbdf2508"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x8000) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x8, 0x9, 0x0) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r2, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) rmdir$auto(&(0x7f0000000000)='./file0\x00') close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x3, 0x2) setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x55) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) close_range$auto(0x2, 0x8, 0x0) 19.154137785s ago: executing program 3 (id=2221): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x80202, 0x0) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/32t\x00', 0x82000, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000004c0)={0x0, 0x7, 0x8, 0x8c53, 0x1, 0x4, &(0x7f0000000440)}) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x48100, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/kvm/mmu_cache_miss\x00', 0x80000, 0x0) read$auto_stat_fops_per_vm_kvm_main(r2, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) rmdir$auto(0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa081, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/unix\x00', 0x0, 0x0) pread64$auto(r4, 0x0, 0x8, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) sysfs$auto(0x2, 0x1e, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r5 = socket$nl_generic(0x10, 0x3, 0x10) sched_setaffinity$auto(0x0, 0x6, &(0x7f0000000000)=0x6) r6 = syz_genetlink_get_family_id$auto_seg6(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r5, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000040)={0x28, r6, 0x11, 0x70bd26, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast1}]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x44892) 17.336633126s ago: executing program 3 (id=2227): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r0, 0x104000000000010e, 0xd, 0x0, 0x400) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) madvise$auto(0x0, 0x20200, 0x15) 16.810946873s ago: executing program 3 (id=2228): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001bc0)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) r2 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r2, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d13afae66b1d900a4958396aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89edac932b8859c767780d65e849700", "e600d778751f5f9e03e1f2b96e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184b8d300c13be6e57970685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08fb733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) unshare$auto(0x40000080) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x20140, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r3 = socket(0x29, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) rseq$auto(&(0x7f0000000100)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x8) adjtimex$auto(0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) mkdir$auto(&(0x7f0000000180)='}[,&*}\x00', 0x6) openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0) write$auto(0x3, 0x0, 0x81) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000440)={'netdevsim0\x00'}) shmctl$auto_IPC_INFO(0x8, 0x3, &(0x7f0000000400)={{0x80000000, 0x0, 0xffffffffffffffff, 0x6, 0x2, 0x2, 0x4}, 0x3, 0x2, 0x7, 0x9, @inferred=0xffffffffffffffff, @raw=0x5, 0x9, 0x0, &(0x7f0000000280)="1a53b5c86c99fcf1c0fb3b03b844028712f7fd115732d46f1933c2aab4786dff820dcfcc3aed69c54e83132bad31fb43d6780cd5a4087260576ad144858ba5f336", &(0x7f0000000300)="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"}) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000880)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000840)={&(0x7f00000008c0)=ANY=[@ANYRES16, @ANYBLOB="08002abd7000ffdbdf251f00000004002d0104002101eb00fa00b11920dd2ae818bf015f44877f4be96ccc783bf798be7bcf2b954a702529022cdc8345e726022fea60b6dce5a13ba70f408f4e342ff1520a95bb6a692cb6a71f2ab5abacf4fd504a8bd756c2d6da9ac80122a47fe3c59f8774323410c939dca1154bb8422f80cdfc59ce24f541ef7651f49da6cdc5acf5fee568efb8fed69296b725f170427d7653fbdb2b91670c5640051932821e29258231a1685283914ed1d0d79e0e128d337e9f48af65daab1f3072c364b9ef4af38799032c113822c818c6f4aef2747566f2ddc9c0333480afeac475c09eb6029d01fe1897b06f1c0fec5ab0f725aca3c6009300c5003b03872096d8bc62108e95de2468543a0a586b1ec5cea25656086eec0fb1aa73ae6c196c6a90c92d4cf606be022f8c9757d0a1ff441a10065fb8e0c42356d21749e74af42cb49a92e08a747d5631a3640fac697b0edc61d8aefa75ad0210ada1290dcf0155f78787dcc2da03fd1d34905abae01ad1fc97b8f2b92fb21585247c481e58bf2ebd15b830576bb446dd050009025a803439282f23f863808b66934acadd8672aa22903e375782e3f21cafee9394646e9a8bc4cbba9e9cdac5e2926f3eda433039aeb8bea6c48dd0469b8671aa1238668a955c718bf151da0f786559f9c0658844695dcd7cf05ee5b54ed0e4aada59e37cdf3057247ab298ec9a03ce9abfa7cb0e692323b3ced046fb0be0ea03ce33830343d7ea6421914d62423f56820c0396e0d7e26182ebaa974f5933414b8096b9c3ee87a38831707ce8e31041c0ec000380040018800400408008004a00", @ANYRES32=r3, @ANYBLOB="bfe92133216fa09cc43947859d7f79c7875955c9955633c1e5c5fc86ab4d7f74fbdc0516e418e81bb722912b7f4131c60c7654efbd9f8743bdea8d618f363285bdff76897b6ffa6c1c158d1959be8ce4b11037144733391338feefae6513a284a7baf71d73b106ab118ccbb9cec0bded7b0f50e0fe137f9342da7ba950b0a10f1d7fea30a805bbbc59a9a782c6f20b8fd5fedd5c780ca16261f8293b6bd4a539ceba5841e8c36c6334aaf11b3b53ae678723cdf7cb70ed9032c96f2a5b064b30ff780b47c9c02a431fde17ff43f7b60b08008600080000000800f100", @ANYRES32=r5, @ANYBLOB="0000000000000000000000001dfa209ae50da8872c0d5b2e6494a587d4594ebd778cbac6923e43cc3abb1c96351482db4b91732396748b54", @ANYRES32, @ANYBLOB="0b5a7eaa7f3017096b0caffa7a349d6365a1cb5c1b0e14228b5b41c8f33934f49b3645e5e1924b6c43d20b8f1be350f2033ff759bffe9ec2beed334f1be0bcbde2cb2e88fc3d8f4fb1a1cda6e10ae5706da3000000000014000400697036746e6c30000000000000000000"], 0x3bc}, 0x1, 0x0, 0x0, 0x4008000}, 0x20000090) bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68) ioperm$auto(0xaf, 0xe, 0x991b) memfd_create$auto(&(0x7f00000002c0)='IPVS\x00', 0x7) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmmsg$auto(r3, 0x0, 0x9a6, 0x3ec0) fcntl$auto(0x3, 0x4, 0xa553) semctl$auto(0x1ff, 0x2, 0x13, 0x1) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x34000}, 0x3ff, 0x0, 0x1}, 0xed71388}, 0x2, 0x9) 15.262905589s ago: executing program 3 (id=2232): r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x101801, 0x0) setsockopt$auto_SO_DETACH_FILTER(r0, 0x6, 0x1b, &(0x7f0000000140)='/dev/audio1\x00', 0xf) (async) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0) socket(0x28, 0x1, 0x0) (async, rerun: 64) r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="2f212abd7800fddbdf25"], 0x14}}, 0x4000000) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/pipe-max-size\x00', 0x382, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) (async, rerun: 32) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0xa00, 0x948b, 0x2, 0xfffffffffffffffc, 0x6, 0x3, 0x300000000000000, 0x80000001, 0x5, 0x6d3c, 0x5, 0x2]}, 0x0) (async, rerun: 32) madvise$auto(0x108000, 0x800034, 0xa) unshare$auto(0x40000080) (async, rerun: 32) syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff) (async, rerun: 32) socket(0x28, 0x5, 0x0) (async, rerun: 64) ioctl$auto_PPPIOCGFLAGS(0xffffffffffffffff, 0x8004745a, 0x0) (async, rerun: 64) r4 = socket$nl_generic(0x10, 0x3, 0x10) connect$auto(r2, 0x0, 0x6) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async) close_range$auto(0x0, r4, 0x7) mmap$auto(0x2, 0x5, 0x3, 0xeb1, 0xffffffffffffffff, 0x7ffe) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r5) (async) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) sendfile$auto(r8, r8, 0x0, 0x1) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYRESOCT=r7, @ANYRES32=r7, @ANYBLOB="14002c8008003400", @ANYRES32=0x0, @ANYRES16=r0, @ANYRES32=0x0, @ANYBLOB="a8ff11b1e412d59f422c40d30b911b50a894ba6e375814ab332515f72c5957aee2aacb6798d2f9f04284b2104eb795f00aa8fac1aac4161317b86d05e4b0772feabed3c28e20d8e649ecdf43c83fb2030333d408255782f4f246f77c8953a02150a40e88b831550ab110a016e02a9af0751831491ef6033243844cc6c417a49445e3ec1f215c8c660f095ded3ecd424ee746f11d4502ce520a4e466ab2efef263109cd625f503173e355433ae5aa98"], 0x30}}, 0x4000040) socket(0x11, 0x3, 0x9) (async) r9 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r9, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) 10.021949597s ago: executing program 4 (id=2244): r0 = getsockopt$auto_SO_DOMAIN(0xffffffffffffffff, 0x4, 0x27, &(0x7f0000000000)='!.,\x00', &(0x7f0000000040)=0x859) r1 = waitid$auto_P_PGID(0x2, r0, &(0x7f0000000080)={@_si_pad}, 0x5, &(0x7f0000000100)={{0x4, 0x81}, {0x2, 0x2}, 0x2, 0x8, 0x8000, 0x0, 0x5, 0x19, 0x6, 0x4, 0x8, 0x1000, 0xfffffffffffffffe, 0xee38, 0xfffffffffffffff1, 0x6}) r2 = socketcall$auto_SYS_SENDMSG(0x10, &(0x7f00000001c0)=0x2) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r0) sendmsg$auto_NL80211_CMD_DEL_INTERFACE(r2, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000280)={0x1dc, r3, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_FLAGS={0x172, 0x11, 0x0, 0x1, [@generic="9bfd32e504b32bbf08eb20880ccc459dfdd765aa413b99124509d6e94d1fc9532ccadfb5a8646392efc2cfbb90821ca0d214924669e55e5ff48137dfacb096f000ae23b0cfb1e42818a166067beddc57c7910f1ceeb09a3a6c7d90b8c3bcb134315eac180aa46bbc4a5abbd43f9d1cb0478209e42bf0ff60d3374ee67174293070c966738694d43504e904eeefd3e8297fa17678de93bfd1c2b208b27f29ad9681b13f5eea61468b3034db03a1a4d78c9cb4153f3483065910990359df96c4efd14cb6c0c69d1fd11757b2844eb80e8d68fb8d69e19e3dc2eef7260e7eaf03c5b2844b865f89eb68", @generic="e0ea90d9e35b69061a4d2ad841ce6d67acd489786bb31d96aa93ae15414e4e8b44b6950847ef6cc81114f613300321cf1fff309c4466c194abfd1761d805f0c85db948f04b03756e15f5415e7394fb72dc726e23dba8235a1280d6f4ffabfc156922aefbbafe4666a667d22fec5731b4df420892de77bfb7a782ddae00d2c1e1ef8465f1783a"]}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_WIPHY_TXQ_PARAMS={0x4c, 0x25, 0x0, 0x1, [@generic="a0f41342dc4bd25d5c2ef580ff0035cf79d169a727325d86b054b86d5fcdd9688edd80bd7a05c33e8511e350ea68261a7883433311f602ba602adcfc3ab503c1150a57792c1d8c77"]}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x40}, 0xc0) r4 = getsockopt$auto_SO_NOFCS(r0, 0x6, 0x2b, &(0x7f0000000500)='!.,\x00', &(0x7f0000000540)=0x4) ioctl$auto_VHOST_SET_VRING_ERR2(r4, 0x4008af22, &(0x7f0000000580)={0x4, r2}) write$auto(r5, &(0x7f00000005c0)='#:]\'+%\'\xf4--&\x00', 0x7) r6 = prctl$auto_PR_SET_FP_MODE(0x2d, 0x37f8, r1, 0x7, 0x2a54) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000600), r6) setsockopt$auto(r4, 0x5, 0x8, &(0x7f0000000640)='\x00', 0x80000000) write$auto_ima_measure_policy_ops_ima_fs(r0, &(0x7f0000000680)="c4af4f15273c5c323a7c283babc7de930da13096f0367e9d8238580b5b7628175a345a3c24a1f99d", 0x28) mmap$auto(0x5, 0x6f1, 0x81, 0x10010, r5, 0x7f) ioctl$auto_RTC_IRQP_READ(r6, 0x8008700b, &(0x7f00000006c0)=0x7) r7 = getsockopt$auto_SO_LINGER(r6, 0x7fff, 0xd, &(0x7f0000000700)='nbd\x00', &(0x7f0000000740)=0x7) statmount$auto(&(0x7f0000000780)={0x2, @raw=0x3, 0xfffffffffffffff9, 0x0, 0x7}, &(0x7f00000007c0)={0x1, 0x200, 0x5, 0x0, 0x6, 0x5, 0x9, 0xffffff53, 0x8, 0xffffffffffffffbc, 0xff, 0x5, 0x8, 0x5, 0x3, 0x400, 0x44, 0x101, 0x3, 0xc, 0x9, 0x7, 0x8, 0x2, 0x3, 0x1, [0xd251, 0x0, 0x9, 0x163e, 0xc, 0x1ff, 0x4, 0x3, 0x5, 0x8000000000000000, 0x100, 0x2c, 0x5, 0x3, 0x8, 0x9, 0x10, 0x6000000000000, 0x3, 0x79d3, 0x7f, 0x0, 0x6, 0x10, 0x2, 0x0, 0x4, 0x8, 0x9ff, 0x89a, 0x1, 0x5, 0x100000001, 0x9, 0x3, 0x9, 0x6, 0xfffffffffffffffc, 0x0, 0x2, 0x8, 0x2, 0x100000001, 0x6, 0x0, 0x1000], "f94c149c3cc551177b11e237ab7677db6a4d421f1c50e6e104d93448462ffb43fae82bf277ad3979f84474786d98018fad8957e45ae0e7c2091fa9509e7d9ebfcf29619ea225e37dd078caa928973b0f1fba9ccc139dc71b57f10c51b053af5a0c331be2370eca40fc3879d48b067a04686e9c454a9c2a7fcdc5fc426ef34d1a0d9e0de59f65f6df9b659b0b89d4346a9b420c26ad85cd21578672d19096f6d87a069adcb1bc35f6be6d3cb3aa4b33eaccc2962f4f3b8ae353a40bb37e92687a3b149352ee6d84335e542a"}, 0x8, 0x5) r8 = prctl$auto_PR_PAC_RESET_KEYS(0x36, 0xffff, r1, 0x7f, 0x4) io_uring_setup$auto(0x80000000, &(0x7f0000000ac0)={0x7, 0xfff, 0x5, 0x6, 0x8001, 0x8, r0, [0x7, 0x24, 0x1], {0x8, 0x80000001, 0x2, 0x5d9f6bb4, 0x1ff, 0x3, 0x7, 0xb}, {0x9, 0x7, 0xdd, 0x0, 0x2, 0x2, 0x3, 0x0, 0x600}}) r9 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000b80), r8) sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, &(0x7f0000001c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001c00)={&(0x7f0000000bc0)={0x1028, r9, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_CCA_OPT={0x8}, @NL802154_ATTR_SEC_DEVKEY={0x1004, 0x2f, 0x0, 0x1, [@generic="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"]}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0x2}]}, 0x1028}, 0x1, 0x0, 0x0, 0x1}, 0x1) sendmsg$auto_NL80211_CMD_SET_MCAST_RATE(r7, &(0x7f0000002880)={&(0x7f0000001c80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002840)={&(0x7f0000001cc0)={0xb48, r3, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_CNTDWN_OFFS_PRESP={0x5b, 0xbb, "cb5e76d33a0d625de2d3d96704123c4ba02424c01ce9a306a22d570e89c4e57d2652b75609679af36215b6e76b9f65b807ceac3d6fbda8fa362323ea5294386be68b74e645748dc1e363fdb756cdabd2ecc9c775b782f7"}, @NL80211_ATTR_SAR_SPEC={0x12c, 0x12c, 0x0, 0x1, [@NL80211_SAR_ATTR_TYPE={0x8, 0x1, 0x8001}, @NL80211_SAR_ATTR_SPECS={0x38, 0x2, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xc}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x81}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xe46}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x5f45}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xf}]}]}, @NL80211_SAR_ATTR_SPECS={0x28, 0x2, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x4}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x3}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x101}]}]}, @NL80211_SAR_ATTR_SPECS={0xc0, 0x2, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x3}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x41b}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x40}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x10000}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x2d}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2b0a91e4}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xe}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfffffff8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x101}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x5}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9d73}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_POWER={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7fff}, @NL80211_SAR_ATTR_SPECS_POWER={0x8}]}]}]}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "6fa3c2ec57f99551be072745"}, @NL80211_ATTR_PID={0x8, 0x52, r1}, @NL80211_ATTR_IE_RIC={0x523, 0xb2, "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"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x401}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_IE_PROBE_RESP={0x460, 0x7f, "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"}]}, 0xb48}}, 0x4040800) r10 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f00000028c0), 0x88200, 0x0) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r10, 0x7cb, 0x0) r11 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000002900), 0x406002, 0x0) ioctl$auto_snd_seq_f_ops_seq_clientmgr(r11, 0x5, &(0x7f0000002940)="57b4718edf5338d4095a16d5577b16c4846f24e40847698a035ec639792ff7b7b49fc6b0086ed3b682ab") write$auto_proc_pid_attr_operations_base(r4, &(0x7f0000002980)="c8075d2e60ba30d57c552a6186bc49ae8fca402f2dabf2d78f177969f6427e44dea41b9b8fe55a6fb8d689af91db98069b845a86cf151020431b3b58470511752c8e606cc188d6097f0d0afd9b1f0f7d68ef3ddae160693cab35efa883e9eadef73fab5398b9d1a9946b3b", 0x6b) r12 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000002a40), r6) sendmsg$auto_WG_CMD_SET_DEVICE(r7, &(0x7f0000002b00)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a80)={0x38, r12, 0x400, 0x70bd25, 0x25dfdbff, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'pim6reg\x00'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x9}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004884}, 0x9000) mmap$auto(0x400, 0x5f, 0xe9, 0x29b, r8, 0xadb) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000002b40)='/proc/asound/card0/pcm0c/sub4/hw_params\x00', 0x8000, 0x0) 9.276314279s ago: executing program 4 (id=2246): set_mempolicy$auto(0x2, &(0x7f0000000000)=0x7e, 0x6) set_mempolicy$auto(0x4, &(0x7f00000000c0)=0x8, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x11, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = socket(0x11, 0x80003, 0x300) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r0, 0x0, 0x80) r1 = semctl$auto_IPC_SET(0x7, 0xa3, 0x1, 0x8000000000000001) msgctl$auto(0x8, 0x2, &(0x7f00000001c0)={{0x4, 0xffffffffffffffff, 0x0, 0x400, 0x5, 0x6, 0xf000}, 0x0, 0x0, 0x3, 0x5, 0x5, 0x0, 0x10, 0x1ff, 0xfffb, 0x1, @raw=0x2d85656c, @inferred=r1}) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/block/nbd15/sched/starved\x00', 0x0, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) readv$auto(0x3, &(0x7f0000000100)={0x0, 0x3}, 0x7) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio1\x00', 0x101000, 0x0) ioctl$auto(0x3, 0x80044df9, 0x38) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-touch2\x00', 0x208001, 0x0) ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, 0x0) setfsuid$auto(0xee00) uname$auto(0x0) clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000001140), 0x0, 0x2) 8.735496508s ago: executing program 4 (id=2247): mmap$auto(0x6, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000001) r0 = socket(0x2, 0x3, 0xfffffff1) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r1, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x1c, r2, 0x1, 0x1, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc810}, 0x40) mmap$auto(0x0, 0x20008, 0x4000000000df, 0x12, r1, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x2100000000, 0x10000}, 0x5, 0x4006, 0xfffffffffffffffd, 0x1008000, 0x0, 0x5, 0x84, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x800}) r3 = socket(0x2b, 0x1, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) unshare$auto(0x40000080) mmap$auto(0x100000009, 0x4, 0x4000000000df, 0x100000010, 0x401, 0xd82) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/stat\x00', 0x80c00, 0x0) mmap$auto(0xfffffffffffffffd, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8a802, 0x0) ioctl$auto(0xffffffffffffffff, 0x8007, r0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b32, 0x9) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/tls_stat\x00', 0x500, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101800, 0x0) acct$auto(0x0) ioctl$auto_FS_IOC_ZERO_RANGE(r3, 0x40305839, r0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) 7.754949358s ago: executing program 0 (id=2250): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) read$auto(r0, &(0x7f0000000000)='/proc/scsi/sg/devices\x00', 0xc9e3) (async) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) r2 = socket(0xa, 0x2, 0x3a) r3 = socketcall$auto_SYS_SEND(0x9, &(0x7f00000000c0)) ioctl$auto_FIOASYNC(r2, 0x5452, r3) (async) ioctl$auto_CDROMCLOSETRAY(r1, 0x5319, &(0x7f0000000080)="db461642") (async) r4 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000000114"], 0x14}}, 0x24000044) 7.468415232s ago: executing program 0 (id=2251): mmap$auto(0x0, 0x8, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r0 = socket(0x2b, 0x1, 0x1) sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x1000, 0x7, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001480)={'vcan0\x00'}) sendmsg$auto_NL80211_CMD_GET_MPP(r0, 0x0, 0x880) munmap$auto(0x0, 0xffffffff) getrandom$auto(0x0, 0x6000000, 0x3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x101001, 0x0) ioctl$auto_SNDCTL_DSP_NONBLOCK(r1, 0x500e, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) 6.505307464s ago: executing program 0 (id=2252): r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x1, 0x0) socket(0x2, 0x1, 0x84) unshare$auto(0x40000080) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x3, 0x2) (async) setsockopt$auto(0x3, 0x0, 0xd1, 0xfffffffffffffffc, 0xfd72) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) sigaltstack$auto(&(0x7f0000000040)={0x0, 0x1, 0x10401}, 0x0) r1 = gettid() rt_tgsigqueueinfo$auto(0x0, r1, 0x21, 0x0) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_VENDOR(r2, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000001500)={0x14, r3, 0x303, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x40040) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, r0, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@HWSIM_ATTR_RADIO_NAME={0x7, 0x11, '..\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40c8}, 0x4048000) 6.250165253s ago: executing program 4 (id=2254): close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv6/conf/ip6gretap0/keep_addr_on_down\x00', 0x60800, 0x0) r2 = io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xaece, 0xffffffffffffffff) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000000)=""/24, 0x18) sendmsg$auto_NL80211_CMD_SET_QOS_MAP(r0, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000200)={0x1b4, r1, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_S1G_CAPABILITY={0xf5, 0x128, "3e687e46ba8a8261b2fbad21315669a3a28c4709ee67427fdbb645e76f5cdd04c126aa4b45e5e973138a22c9c6e9a5286237d21db0dd7e94f6c3a657173f2c7dca22b236af24dc10f865b3d1b177423e62356d0590ef9af1018b116c198f40ef35580af7075891b13540b3a715107ea1cbb143d97c093f8d6aa194ac14841841835362b20ea5d8dad78dcb43e8a5bcf4d9ff9869d509a1c832f0fc05984b693e47242f11db2ceb6c4064ef9fb8fafcccee9630227cc0d187a56723233321dec1ed891268b91ec04fff9f151b858df389acc6b73c8c888502fb9b8ff9433e6dca43c18f2633cdba940ea89a4fd7b8a84897"}, @NL80211_ATTR_ROAM_SUPPORT={0x4}, @NL80211_ATTR_SAE_PASSWORD={0x5c, 0x115, "798dd17423d4b3069f3bf1f17a3293413364ca37dd72ea49ac0befb25a11912dedea9a298458178c3ed1a3d69340a40e6a8b069c4c2743e5925c91039dd0294c24780a7066859ddd72cfd3b9586b092c0029c9f8e01705eb"}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "ada834cf1be8da73f406758c090a8899c0618068d30743695540"}, @NL80211_ATTR_FILS_KEK={0x27, 0xf2, "5fec49b93006d22507bdb83b25cbd13014f198f692183f3ced420582b95595b238d178"}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000004) r4 = socket(0xa, 0x3, 0x3a) setresuid$auto(0x0, 0x0, 0x200) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x5) mmap$auto(0xfffffffffffffffd, 0x7c, 0xdf, 0xebf, r4, 0x8000) mmap$auto(0x400000000000, 0x2000b, 0x0, 0xeb2, 0x401, 0x8000) get_mempolicy$auto(&(0x7f0000000180)=0x6, 0x0, 0xa6, 0xfff, 0x3) kill$auto(0x0, 0x3f) get_robust_list$auto(0x0, 0x0, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0) r5 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/13t\x00', 0x200002, 0x0) vmsplice$auto(r5, &(0x7f0000000140)={&(0x7f00000000c0)="dd9fba4de40af6c38adb203bb5a0e6dd17d63d06e015a62d0e0bf9a4faab7d01382bf2cf2ddab17c4b16582c14a397867d9fec2ca2ae12b456a0a0208d23bdcfb000bee08b0b9da7692fe2091e05a74ad3c38bd6c34b2e87c7531fe0147a168fd4b77a2b56138e21a674828de30037175acbd54d4de4204928ae9948", 0xb4}, 0x7, 0x7a) pwritev2$auto(0x4, &(0x7f0000001fc0)={0x0, 0x7}, 0x1, 0xffffffffffffffff, 0x81, 0x8) 5.734634983s ago: executing program 4 (id=2255): mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) socket(0x28, 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/asound/card0/pcm0c/sub4/xrun_injection\x00', 0x400, 0x0) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x4000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) statx$auto(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x4, 0x2, 0x0) msgctl$auto_IPC_SET(0x9, 0x1, &(0x7f0000000180)={{0xf, 0xee01, 0xee00, 0x40ae, 0x7, 0x1, 0xfff}, &(0x7f0000000100)=0x8, &(0x7f0000000140)=0x40, 0x1, 0x8, 0xdb2, 0x0, 0x100000000, 0x67c0, 0x7, 0x6, @inferred=0xffffffffffffffff, @raw=0x9}) ioprio_set$auto(0x7ff, 0x0, 0x1) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) mprotect$auto(0x0, 0x8000000000000001, 0x6) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000002480)) r1 = fanotify_init$auto(0x8, 0x1) write$auto_ucma_fops_ucma(r1, &(0x7f00000000c0)="38491f580d4d9641ef", 0x9) unshare$auto(0x40000080) 5.727609911s ago: executing program 5 (id=2256): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x4a801, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000100)="97544df2", 0x4) mmap$auto(0x0, 0x802020009, 0x3, 0xeb1, 0xffff7ffffffffffa, 0x8000) setpriority$auto(0x8, 0x0, 0x4) mmap$auto(0x2000004, 0x400008, 0xdb, 0x9b7f, 0x100000000002, 0x8000) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/pcm0p/oss\x00', 0x480, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080)=""/101, 0x65) mmap$auto(0x7, 0xfffffffeffffffff, 0xdc, 0x9b72, r1, 0x9504) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0xb, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20400, 0x0) fanotify_mark$auto(0x0, 0x1, 0x5, 0x4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020004, 0x6, 0x11, r0, 0x8001) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x200602, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = clone$auto(0x8000000000000001, 0xfffffffffffffffb, 0x0, 0x0, 0x2008000002) mlock$auto(0x7fffffffffffffff, 0x1000000000000004) ioctl$auto_FS_IOC_FIEMAP(r0, 0xc020660b, r3) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x40400, 0x0) io_uring_setup$auto(0x4bf15e08, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = getpgid(r4) process_vm_readv$auto(r5, &(0x7f0000000000)={&(0x7f0000000140)="d2a30ce188b432d0f14364041082e534db1f9a7f66f8a5eb1dc98458f7f954f30e25ce95dffd844dd041635003f701c29e35d0a32a38c8f65c8d56e58bb50df58615b160f93d56a52dc7e25065a78dbfda6cc3bda7cc78c8305fd5036809b24889d12e859380f4beb1e4cb2eabd280ea7083dda907a24679a5f670cb9c929567d84ac45fa6121c12b55d9ce79351be18bec82e6a28c5bcc7e97eb369d1bb476c3bb56e8049fcaa99fe7bee8eabf149a8de8bd238884c764578df2d6d4d7ebe2446265e8ac2a9a2d550416a12c373430c19434c1d3037e1e72a89db13f0c8a4000f030d0be697f41747d641a6009355610f885f", 0x8}, 0x5, &(0x7f00000000c0)={&(0x7f0000000080)="1ed26a44d22f540bdc2201d731060204cb9d", 0x2}, 0x6, 0x6) mmap$auto(0xffffffffffffffff, 0x2020009, 0x8000000000000004, 0xeb1, r2, 0x8000000000000000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 5.340518242s ago: executing program 0 (id=2257): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x53564d41, 0x3, 0x0, 0x80d, 0xfffffffffffffffd) r1 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x101000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb5, 0xffffffffffffffff, 0x7ffc) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x6, 0xdf, 0xeb1, 0x401, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) madvise$auto(0x0, 0xf663, 0x15) mmap$auto(0x0, 0x1008000000e983, 0x9, 0xeb1, r2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vidtv.0/i2c-0/i2c-dev/i2c-0/power/control\x00', 0xc0902, 0x0) mmap$auto(0x8000, 0x8, 0x80008362, 0x6cf80010, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x4c0191, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x448101, 0x0) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r2) sendmsg$auto_NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f000000a5c0)={0x0, 0x0, &(0x7f000000a580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002abd7000fddbdf251b00000008009a000000000039a617423fe02725d7b79c39f74cfc5c1369705a267a8e0677154c95cfc69276318cbea815f6b9c288f6f4d54914fa6261b334cfb804b8477ac2662fabe8cc1231779c4718db280c6103622b06236738460cce9c89176163830447cfc05abceca2aa3f08f738901ab8a04b4bdc87105013e3ad14544e52f191889924dd6465a2ce0a7f82aa5a4f839dec3d4598194063a882340cb49e57f8ed8223fce0e7357b1d4aa56cb888f03e30b1b66187bdf90d5568167dedbf11e15526844185dd555b6fd7a0ac34c7bfd96d0e630884da5ff49c9be9808a81e4bf680ba026d7ee3352a325a1d03cecb5c4e0"], 0x1c}, 0x1, 0x0, 0x0, 0x48040}, 0x4010) sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000180)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="00042bbd7000fddbdf25360000000600ed00070000000400f40008000900040000000400d0000400410005005300030000000f001800c09bf35f88c700"], 0x48}, 0x1, 0x0, 0x0, 0x4010}, 0x0) socketpair$auto(0x2, 0x2, 0x80000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) lsm_list_modules$auto(0x0, &(0x7f0000000100)=0xbefc, 0x0) ioctl$auto(r4, 0x89a0, 0x8) read$auto_proc_pid_smaps_operations_internal(r1, &(0x7f0000000040)=""/93, 0x5d) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) timer_create$auto(0x3, 0x0, 0x0) timer_settime$auto(0x8000, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0) timer_gettime$auto(0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x7ff, 0x0) 4.311604733s ago: executing program 5 (id=2258): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = getsockopt$auto_SO_TIMESTAMP_OLD(0xffffffffffffffff, 0x7, 0x1d, &(0x7f0000000040)='^\xae){\x00', &(0x7f0000000080)=0x1) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100483}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x14, 0x0, 0x4, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40050}, 0x55) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.5/usb6/6-0:1.0/ep_81/interval\x00', 0x42800, 0x0) read$auto(r1, 0x0, 0x20) 3.833165844s ago: executing program 5 (id=2259): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event1\x00', 0x125182, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x112b730c2c00220b, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) move_pages$auto(0x0, 0xd0, 0x0, &(0x7f0000000000), 0x0, 0x2) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) r1 = semctl$auto_GETVAL(0x1, 0x10, 0xc, 0xb0) prctl$auto_PR_SET_MDWE(0x41, 0x4, r1, 0xf, 0x1) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) migrate_pages$auto(0x0, 0x74, 0x0, &(0x7f00000007c0)=0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r2 = socket(0x2a, 0x1, 0x83) mmap$auto(0x0, 0x5, 0x5, 0x1e, r2, 0x8403) r3 = socket(0x2, 0x3, 0xa) connect$auto(r3, &(0x7f00000000c0)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xde}, 0x55) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x5, 0x2000000000002) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r4, 0x2, 0x9) ioctl$auto(0x3, 0x400c4d06, r4) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x24004141) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x6, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x68200, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0) 1.575046129s ago: executing program 5 (id=2260): mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8) acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e') acct$auto(&(0x7f0000000040)='/dev/sequencer2\x00') open(&(0x7f0000000840)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x22240, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001180)='/proc/pressure/irq\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000000c0)="22edd9", 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) readlink$auto(0x0, 0x0, 0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000c40)=ANY=[@ANYBLOB="98100000", @ANYRES16, @ANYBLOB="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"], 0x1098}, 0x1, 0x0, 0x0, 0x800}, 0x20040054) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYBLOB="040026bd7000fcdbdf2504000000b1000180f5c53c7461b64f8c60fb90f69a1d13d52d6da3527ec741c595abf933faa4d782a42b4c249ab5be48e686e7364c12793198cdcb6a78253c3bdd7916ced602b5b19762a916baa53c0411bfbf1477407c42963b5791e719e91567d82c697af89370f6f7872979c6713c9b4265a481e529d40b485bc24dac0ed112", @ANYRES32, @ANYBLOB="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"], 0x680}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) write$auto_bm_entry_operations_binfmt_misc(0xffffffffffffffff, &(0x7f0000000500)="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", 0x4bf) pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:+\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\xadCl\x9e\xeb\xcd\vp\x99\x00\xc8\x06\xa5\xdc3\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0A\x94\xa3\xaef\x87\xd8\x95I\xfd\xa8\t\xac\x87\xb7\x1d\xd5\x83\xdcyu]\xde\xbe\xbf$<.}\x8b`\x04\xfc\xa2\xab\xb5]\x80\x00\xb9D\xc5\xbc\xf2a\xd66\xa5\xd3\xc1r\x96\x1e\x8db\x05=`\x01\x11\x04Tz\x87A$\x115\x95PUf\xa7\xfe\x19\x00\x82go}@W\xd5\xaej\x01\xbf>5n\x17S\xc0\x8a\xaf%O\xd1W\xa3ua+sUJ\xea\xf9\xb7p-\x128\x9d\xbaM_\xff\x1c\xc3sG\x04\xf2\xd3\xf3{;\xd4\xd7\x1c\x1dZ\xe9\xe9\xc9\x9cu5\xe9\xa2\xb3N\xd2\xc1\xc8\xa5\xadt\xd5BKD\x86\xeb%\a*\x06\xbb\x1e\xfb\x11U\f&\xcbP\xf1\xcf\xccb\xe8Wb\xc5ae\xe3\xf9l\xa9vK\xed\x8cL\xfb%g\x83;\xe1\xe2w\xd6\xaa6\x16\x8fx\x1a\xd7\xc8\xf4[\xbc\b\xe1Z\x92\x14Q\xde0xffffffffffffffff}) (async) r1 = fspick$auto(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x5) io_cancel$auto(0x3, &(0x7f0000000080)={0x401, 0x40, 0x99, 0x5, 0x6, r0, 0x7, 0x8, 0x80, 0x0, 0xf2, r1}, &(0x7f00000000c0)={0x400, 0x100000001, 0xfffffffffffff001, 0x10000}) msync$auto(0x100, 0x4, 0x8001) (async) select$auto(0xd, &(0x7f0000000100)={[0x5, 0x101, 0x8, 0x1, 0x8, 0xe, 0x4, 0x40, 0x2, 0x0, 0xbb88, 0x8, 0xc2b, 0x9, 0x3, 0x7]}, &(0x7f0000000180)={[0x4, 0xc6ee, 0xa655, 0xfffffffffffffffa, 0x5, 0x0, 0x8, 0x2, 0x7, 0xfffffffffffff000, 0x9, 0x80000000, 0x0, 0x80000000, 0x2, 0x6]}, &(0x7f0000000200)={[0x7fffffff, 0x3, 0x1, 0x2, 0x2, 0x3ff, 0x6, 0x4, 0x1, 0x8, 0x8, 0x8, 0x16d, 0xfff, 0xfffffffffffffffd, 0x100]}, &(0x7f0000000280)={0x0, 0xc46}) (async) r4 = semctl$auto_SETALL(0x1, 0x9, 0x11, 0x4) (async) fanotify_mark$auto(r0, 0xf82, 0x0, r3, &(0x7f00000002c0)='./file1\x00') (async, rerun: 32) r5 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000340), 0xffffffffffffffff) (rerun: 32) sendmsg$auto_NFC_CMD_GET_SE(r2, &(0x7f0000000540)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x15c, r5, 0x9, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_VENDOR_DATA={0x102, 0x1f, "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"}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x4}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x101}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x7}, @NFC_ATTR_LLC_SDP={0xc, 0x13, 0x0, 0x1, [@generic="3cd5bcf0e1bba158"]}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x3}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0xf}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x1}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x7}]}, 0x15c}, 0x1, 0x0, 0x0, 0x40001}, 0x810) (async) pidfd_send_signal$auto(r3, 0xfffff350, &(0x7f0000000580)={@_si_pad}, 0x7) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/net/protocols\x00', 0x80000, 0x0) (async) shmctl$auto(0xa, 0x7, &(0x7f0000000800)={{0xf60, 0x0, 0xee00, 0x1, 0xff, 0x6d98ae26, 0x3e}, 0x10000, 0x2, 0xd, 0x140000000000000, @raw=0x6, @raw=0x6, 0x94c5, 0x0, &(0x7f0000000680)="82426af2ec3ce7c598a25f7217b194a317510dbea93a2a7eae1da26c118a2d620b7d838865fe3469bd0bda35f64340486ee457d2180672a389d55b18c3f87251f8edec9b9529f569f4b67c5892c4", &(0x7f0000000700)="10a47a2a304e0ea584e6038c1675447eceb90135b22216d8f8bcf7fca9492b008743f1a27872a86c6249fa7cfa36b3634ec865e42cbe035b823f1abfc44b5df50edfa2fb9e34df7b82e6397e25091d36385876dc29ee6240b8b4efefdb40100f77f5e3609a28f487b8d367607ace308f1b709e6ad3d9fbe2cedb89e53d55f9ee6dd7a97ffff5f32c9789613d822af05e853f9d05eb1b4a4c4141bdb75170b19563c66b8671f7c48db03eebeabf7c99e5b9843f121d2feb397440c6c44bab1ae1e7f5f1a832dd6764ae577688bf95dcbde1a96db0e57cf1a7e2532b94"}) (async, rerun: 64) r7 = openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000880), 0x80080, 0x0) (rerun: 64) sendmsg$auto_NFC_CMD_GET_SE(r2, &(0x7f0000003300)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000032c0)={&(0x7f00000008c0)={0x29d0, r5, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NFC_ATTR_RF_MODE={0x5, 0xb, 0x70}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x6}, @NFC_ATTR_LLC_SDP={0x140f, 0x13, 0x0, 0x1, [@generic="5092a43ca33c60c6c609658dd31135f86367d7d9b38d278412254396de0efe56d8a83d2e81ca6a6e83e6eca927f7283ca8d60ad23bd76bc8a5082681114847575811be4a13ed10d7819531a97a55c34898b92736742bede3ff9c7fa9eb2a6034aa8d9cc3982f11614cb64b5921b25a29b327349414dc4f5d74e7ce604f275c5c7ab2034547aa121fd0b2bba60ac710a478655537b29e079e602e5ed602f599c7e32450944abf42803e6de2013f8df8ece67706d0dd880d0a4ac4dcccf22f8b8020b6f9ea44ace80bc23a78483a2ea225508c3e2cf19966079c0cbe29b8607db2155bb5829511b00441b8ed3c63324a996181c814ad42", @typed={0x8, 0x8e, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}, @typed={0x8, 0x12d, 0x0, 0x0, @pid=r4}, @generic="b5b28d60ea7a8e764be75a2a285c12ed8f6ff1f218e928ddce6519bbf66f79c6cf8e4df75219d35ee98472e69b8e705d0227848a1f8c2c9d024dd2a4aa55c19faf87110776b93b111acdb0051cf578e4a210bf67578b83dd92dda1f10347427438ab521224f2e27e85c865f91c04d1998bea677ed17fca43b15f48d6a65da2e66d0718e4997c4053a05c97dce99b35a8803509821290ade9f5", @nested={0x1f8, 0x149, 0x0, 0x1, [@generic="fcef6cc5cd21fc123c16338b3dabe3d3d69f037692d621612ceda33dd19b04de5b05acc3d6c03ecbf4fc4be1ecaebef25978bcb5a89925a05219a25b605b27ef44d6bc0db8447adf52341fa11a05b5f201d37f56b92fee7e2dc6bea90df5b8d7788eb43fa34456d123e9a0e58c8cae3c74881b65b2b9f10fb0d95a5dba4b05d686a492d5289565f96639d757ea2ee62fe4c98067ec0b39f0db235353ba28c6c3c98d64c95637327e66f69813eee8e02a4663952cf3f39bfb04773b7bb9fd96d956ee4b15c48d9a2a3e6bb0e0825de55fc94e462bd18b7a2e4d19f1e3fb26c8e46cdb1b32f47a7f20b3652e06c0401a0da82e379ff81686d5c596dd", @generic="45abc0bf4b4202096d4b853c24e277269d16d74c4ce1ad9c824c3a9972ae3e40f12b7de8bed4284d7d2b293d921ca327d2b67d63a40df2349640c08ec32f063c4308b29cf9fb238b9a652d4b0688d3662b047851e107d194116c0edeb4405813eff99ee9df4190327729adcfec0e354b22a971df95504c626d0f32a19cb640410f444e258c5c1da0f55542fb72bcde825fb3184e607e7e92fec4ce4a81907403672037259e", @typed={0x31, 0xa2, 0x0, 0x0, @binary="f531c3e9d21e735ae5181ba92573d9636fa1914aef571c4fade893e72d6dd1e6beb7255464d0bafd14f00ef9fe"}, @typed={0x14, 0x6, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0x78}, @typed={0x8, 0xc7, 0x0, 0x0, @uid=r6}]}, @nested={0x1072, 0xda, 0x0, 0x1, [@generic="93746d2a39430aeaf56bdc2cadd565802fad2e45af85239452d4f80c8a0aedbdabfcb3b07553f780851a374fee848576206b6f4277c26764fd8419149c9e9e6efcfa00cf24d726c1bbc2c8780ff9fa82aecf58dae794de3a8120a3f04f749543c72b1a3832cb2a103f6cb857f180", @generic="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"]}]}, @NFC_ATTR_LLC_SDP={0x1594, 0x13, 0x0, 0x1, [@nested={0x1e4, 0x89, 0x0, 0x1, [@generic, @nested={0x4, 0x29}, @nested={0x4, 0x65}, @generic="8d455afed99d298dcba5f4728fb4b9c08f7333b81ea783e589f554f5868bcf854382a5ed6d19a35947ff01d372c3303a29346a0c68979933aca672ab9cd8c63e9d6b1573cd36977701656d250263ec46ffe97c52be0a3f9fd7f9c4801a9276df4781c82c9090caf0c7733c1202d522ce4270892556307cfe779d4e6ff2131b0f929ac71ece9756099fc42d9d5c78bc32520a8966b6011f5673c87a646f665b766eb7645ad26f043a615e68177326c4e04fcdc5bad9af5355a2381646ac7ef3ca23764972e87f59af8142280e5af49d011b9f27adec0eba3beb4526038ee3df2adf89824a22cc845e", @typed={0x4, 0x11}, @generic="e31f499ae347626139280b362720ceef8adc41474e542f2c0336dae8b893ab3841cb46e7b91c9882034b9841b96d8a4de6e7ca6bbb06bb5e14507bd5997e95b8dd34674157290cc05b8541389af4010c03cd90", @generic="4bfcbb16aee2df556e40f8fcc715593aefbffc392e68641dbc207f8c8807c403662ac1eef32489978770cae22ab562a7f2ea75e80844c7b55909de69f9229b8404ba07f25bc8c090c8db64e30a09cb555676074d24b7a62a6b5d3a432ff2c3a501235c694b7cd8ffae53aa06a81e9c6d5915ca228b569985f6981ec5347da89047d885b3ae0a33b94fa8dfe919262bccc7", @typed={0x8, 0xad, 0x0, 0x0, @uid}]}, @nested={0x127d, 0x4d, 0x0, 0x1, [@generic="09e1ae75ebb2205de5ef95fbac3b72fb82eb6a8e84901d296b665c684d70ad7a87728f50e34ea276e7831a0efd7ea01581abe7d22119ef7b28e708958b7d60db88ac7d1b5216756427cbf47556aa3ec950459bc461aff64e7987c2ec4ad558403cae8449e1d0adb587a4cc6da8dea4bd14f15971b2a60b5b0e4a46a95498da924c6b89995be28e1264de9711ff520d823bf06d2805a5b62f37c0069977883d89d2c925fdeedec7cf5108b4d1a934118dc38f9fefeb77cdba0f39456d2db3ec333b434c3cc056802977600df67e6cfb9f8ace37d3668a31e043", @generic="65a71c09b8aaf7e6ed0558a54b7936562e8e0090073e99c9f452900da57ef24dc6ffe3331963adf4b59e676e805ae4583c95368d2eab1ac4bb973113270866de6e95bacbab032d929dde84ba2a860584153a7f68b572b8", @generic="3282a0c70c9c59204a25732f85c54d9b2a231f421cab605844209afc76d1ff726010476e2d55af7fb675f071138b4e3df03e9dceb7efef80b041f9cf59bd8bac16946ea43c4f71f376e576827ba758997076171505a5bea514af2bca0141778f4acf6a8eeb576d8493451d30f2792bd236", @generic="0b03558e362069273866f6eaa6dc298bf874cee3637af1e04bbf6e78ffd47e12a06f2e1ca610bdd3cbbc06a280368b1e53f76c67743f66402741b2cf83537cc715fd5f5802e5c94873d34ad0106170a1d0ac5d7bb2b73632a9f604388183d14a7f15a92f4a5f0c1911019fbc47860beeb4fa225f218c27b4a2b2e281ccafbbb8503f632143c5ff6453d57286f8abe6f74ede8286eb493905029be006a042bd8833381088ff4c73ffcdb006f83b353ab2c4d8319a324e02487161841fd04500dc6ada91217b38605a", @nested={0x4, 0xe8}, @typed={0x8, 0xc2, 0x0, 0x0, @fd=r7}, @generic="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", @nested={0x4, 0xc4}]}, @nested={0x116, 0x54, 0x0, 0x1, [@nested={0x4, 0x10b}, @generic="5ea597ba9b8294d5b4d5086529cbe6f4993c1b247304096ed7361c82f11a5e728dace7b066c57ef996ff12fee531e9f8813a1b2004cd5d36fab4307c8a", @typed={0x8, 0x75, 0x0, 0x0, @str='nfc\x00'}, @typed={0x8, 0x103, 0x0, 0x0, @pid=r4}, @typed={0xc, 0x8, 0x0, 0x0, @u64=0x9}, @generic="f36aa303b6ad7a40efd0a28344ad05bf4e5b8a6e0808aedd493ed9f00c97986abd9eda3eb8d816a463e78f87f8542d4d1b6a6112883a781ea53ef3fb602da1d279c2157a1278c6cab06d3aee769c28a3fe941bd048896b8efa53c647c135893d9a6ebc954f3e8147f3fae08b16fcbf6d33c4f1cbd98b9ce2b29ccdec1ee13a6824fe6024d9cb77868fe7b935c78c1c2c974d8706f74c02fc254f56d13c1f2d53454b39684a70a986e74e8391f0", @typed={0x8, 0x56, 0x0, 0x0, @ipv4=@loopback}]}, @typed={0x14, 0x21, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3c}}]}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x400}]}, 0x29d0}, 0x1, 0x0, 0x0, 0x4890}, 0x20000840) r8 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000003380), r2) (async, rerun: 64) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000033c0)={'veth1_to_bridge\x00', 0x0}) (async, rerun: 64) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000003400)={'bridge_slave_1\x00', 0x0}) sendmsg$auto_NCSI_CMD_SEND_CMD(r3, &(0x7f0000003500)={&(0x7f0000003340)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000034c0)={&(0x7f0000003440)={0x44, r8, 0x2, 0x70bd25, 0x25dfdbfd, {}, [@NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x2}, @NCSI_ATTR_CHANNEL_MASK={0x8}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x1}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x7}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r9}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r10}]}, 0x44}, 0x1, 0x0, 0x0, 0x40080}, 0x801) (async) r11 = prctl$auto(0x8, 0x8, r4, 0x8, 0x2) r12 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000003540)='/dev/fuse\x00', 0x2080, 0x0) write$auto_fuse_dev_operations_fuse_i(r12, &(0x7f0000003580)="6261e65c292e94765d3babbf369cfa5116503f5dae25e6d175fcbaceaa3458b48ef429084fa2706774a19e2a25145d79de9e84e6574812d0e1bf685c8b088af2e27411703ee0769f6f226a", 0x4b) (async) r13 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000003640), r11) sendmsg$auto_NFSD_CMD_POOL_MODE_SET(r2, &(0x7f0000003780)={&(0x7f0000003600)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000003740)={&(0x7f0000003680)={0x84, r13, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NFSD_A_POOL_MODE_MODE={0x9, 0x1, ',/+!\x00'}, @NFSD_A_POOL_MODE_MODE={0xe, 0x1, '/dev/fuse\x00'}, @NFSD_A_POOL_MODE_MODE={0x32, 0x1, '/sys/kernel/debug/dri/vkms/crtc-0/crc/control\x00'}, @NFSD_A_POOL_MODE_MODE={0x1d, 0x1, '/proc/self/net/protocols\x00'}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) capget$auto(&(0x7f00000037c0)={0x6, r4}, &(0x7f0000003800)={0x5, 0x9, 0x80000000}) eventfd2$auto(0x4, 0x1) (async, rerun: 32) futex_waitv$auto(&(0x7f0000003840)={0x100, 0x79, 0x8}, 0x80000001, 0x2, &(0x7f0000003880)={0x6, 0x7}, 0x6) (async, rerun: 32) msync$auto(0x3, 0x3, 0x1) (async) sendmsg$auto_NL80211_CMD_DEL_PMK(r0, &(0x7f0000003ac0)={&(0x7f00000038c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000003a80)={&(0x7f0000003900)={0x164, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_FILS_KEK={0x35, 0xf2, "8cf1514a6b76ede15d7fd72d98d18501a86d56f45beb4bd74ece22deb4f5811f2f781544deb410697e653f392fc5962f5f"}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x4}, @NL80211_ATTR_RECEIVE_MULTICAST={0x4}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x101}, @NL80211_ATTR_FILS_CACHE_ID={0x101, 0xfd, "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"}]}, 0x164}, 0x1, 0x0, 0x0, 0xc0}, 0x4008015) rt_sigtimedwait$auto(&(0x7f0000003b00)={0x100}, &(0x7f0000003b40)={@siginfo_0_0={0x5c6, 0xdea2, 0x99, @_kill={r14, r6}}}, &(0x7f0000003bc0)={0xffffffff, 0xffc0000000}, 0x8) (async, rerun: 64) wait4$auto(r4, &(0x7f0000003c00)=0x80, 0xe, &(0x7f0000003c40)={{0xd, 0x9}, {0x2, 0x5}, 0x72, 0x1, 0x1, 0x4, 0x7b, 0x6, 0x83, 0x2, 0x7, 0xb8c, 0x4, 0x1000, 0xb, 0x3}) (rerun: 64) 964.643785ms ago: executing program 0 (id=2262): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24e802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(r2, 0x9, r0) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) mmap$auto(0x0, 0x7fff, 0x3, 0xeb0, 0xfffffffffffffffa, 0x208000) getsockopt$auto(0xffffffffffffffff, 0x10d, 0x1, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x7, 0x7, 0xeb1, 0x400, 0x8000) r3 = socket(0x2b, 0x1, 0x1) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_last_time_ms\x00', 0x2240, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)=""/104, 0x68) mmap$auto(0x5, 0x0, 0x8, 0x12, r4, 0x38ab) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) move_pages$auto(0x0, 0x1003, 0x0, 0x0, 0x0, 0x2) fcntl$auto(r3, 0xffffffff, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x0, 0x0) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xa, 0xffffffffffffffff, 0x8000000000000001, 0x8) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x102, 0x0) io_uring_setup$auto(0x6, 0x0) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8, 0x0) socket(0x8, 0x80802, 0xfffffffd) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.1/usbmon/usbmon12/uevent\x00', 0x182b03, 0x0) getrandom$auto(&(0x7f0000000040)='\'\x7f\xca,\x00', 0x8, 0x7) 734.202517ms ago: executing program 0 (id=2263): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) (async, rerun: 64) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) (async, rerun: 64) ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(0xffffffffffffffff, 0x4048587b, &(0x7f00000003c0)={{0xffffffffffffffff, &(0x7f0000000000)="16364ec44ee30ec8302d0c0fa75173ed9de5f099ef9767de0f", 0x4, &(0x7f00000000c0)="01e538046efc21a7513479dd389cba08ed502c2409072d16c3659128dc58cdd3b80513ddc26ed591f9a3b4759012ae7d8400323d4b7f", 0x5115, &(0x7f0000000140)="d1c7b0503e944d5a55a52112adab8217c2601103514cd968ce4c1703c5c931afdbb2f41d02d6f33a032ea68cd90cbba57a5c10dcf7b39f2017aa207d112437a0be863c2e6ad9b4ed9feddd3d", &(0x7f00000001c0)=0x1}, 0xfffeffff, &(0x7f0000000380)={0x3, 0x3, &(0x7f0000000200)="b34abd0b0da30f16322691bb277432b1fe2401e8b50e1429be9a98a4c7521ee657c12fcbfc6f2a227b093722996985a7808d194771c35dc0d14aff8c4171183bdbc5740f873ffba427e957", &(0x7f0000000280)="be9e007893a609e346398e302b2dd297e767c402a09ad2c574df930d3e0e99865cc682d7280c5b318f01b67aab6d02543a2f9389e56b124b0726298dfdcc3659291db217892ec0609f84317452c9feca9aec9bbf65c8331f25b0cb161dee65a432b357462a9bda614d938814c6810465b60219f181c3f6bb3e4fc10afdb80c5d489dc30b85043ffc7058d7b3c30ea904c6016477fefbe4a849f8f4a0230cfdd6650cf972d696eb3beaf50082ef6e5803947caee1e92daf17c6ee7830902092bd448f36b215022f99141bb29d08bbccfac0d2b91a0fb3a54264a96f4038318a69ca800fa1b2758a3a6bfb686e2169554595", 0x4, 0x9}}) close_range$auto(r0, 0xfffffffffffff000, 0x4000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 64) socket(0xa, 0x3, 0x88) (async, rerun: 64) socket(0x2, 0x6, 0x0) (async) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) (async) ioctl$auto(0x1, 0x890c, 0x8) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/mnt\x00') (async) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) (async) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) 428.71473ms ago: executing program 5 (id=2264): r0 = getpgid$auto(0x0) prctl$auto_PR_GET_FPEMU(0x9, 0x2, r0, 0x1, 0x9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 0s ago: executing program 4 (id=2265): write$auto(0x800000000000c8, 0x0, 0x1a) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x62743, 0x0) shutdown$auto(0x200000003, 0x2) (async) set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x200000007b, 0x4) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x101, 0x200000000000, 0x19) (async) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0) ioctl$auto_TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000140)=0xbc) (async) r1 = epoll_create$auto(0x10000) (async) r2 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r2, 0x29, 0x2, 0x0, 0x1) (async) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x400000, 0xc0) renameat2$auto(r3, &(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000280)='./file0\x00', 0x4000) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PVERSION(r1, 0x80045700, &(0x7f0000000200)=0x3ff) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) io_uring_setup$auto(0x7, &(0x7f0000000040)={0x5, 0x3ff, 0x5968, 0xfffffffd, 0x1, 0x8, r4, [0xf5, 0x1, 0xf76], {0x3, 0x8, 0x5, 0x8, 0xfffffffa, 0x5, 0x156c, 0x8004, 0x83}, {0x7ff, 0x13, 0x3b, 0x8, 0x2, 0x553, 0x3, 0x9, 0x4}}) syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f00000001c0), r5) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mtd/mtd0/ecc_failures\x00', 0x2600, 0x0) (async) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/233, 0xe9) (async) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (async) keyctl$auto(0x3, 0xee01, 0x5, 0xffffffffffffffff, 0x8) (async) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) (async) mmap$auto(0xffffffffffffffff, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (async) socket(0x2, 0x80002, 0x73) (async) mmap$auto(0x4, 0x4020007, 0xdf, 0x10, 0x401, 0x8000) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) kernel console output (not intermixed with test programs): 00][ T8654] should_failslab+0xc2/0x120 [ 223.391623][ T8654] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 223.391661][ T8654] ? security_inode_alloc+0x3b/0x2b0 [ 223.391691][ T8654] security_inode_alloc+0x3b/0x2b0 [ 223.391715][ T8654] inode_init_always_gfp+0xce4/0x1030 [ 223.391753][ T8654] alloc_inode+0x82/0x230 [ 223.391775][ T8654] iget_locked+0x2ee/0x8a0 [ 223.391797][ T8654] ? __pfx_rwsem_read_trylock+0x10/0x10 [ 223.391836][ T8654] ? __pfx_iget_locked+0x10/0x10 [ 223.391859][ T8654] ? kernfs_iop_lookup+0xa3/0x330 [ 223.391906][ T8654] kernfs_get_inode+0x48/0x460 [ 223.391937][ T8654] kernfs_iop_lookup+0x1ec/0x330 [ 223.391969][ T8654] ? __pfx_kernfs_iop_lookup+0x10/0x10 [ 223.391999][ T8654] lookup_open.isra.0+0x4d9/0x1580 [ 223.392035][ T8654] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 223.392069][ T8654] ? path_openat+0x88a/0x2d80 [ 223.392120][ T8654] ? lookup_fast+0x153/0x5f0 [ 223.392155][ T8654] path_openat+0x904/0x2d80 [ 223.392200][ T8654] ? __pfx_path_openat+0x10/0x10 [ 223.392233][ T8654] ? __pfx___lock_acquire+0x10/0x10 [ 223.392263][ T8654] ? lock_acquire.part.0+0x11b/0x380 [ 223.392295][ T8654] ? find_held_lock+0x2d/0x110 [ 223.392323][ T8654] do_filp_open+0x20c/0x470 [ 223.392355][ T8654] ? __pfx_do_filp_open+0x10/0x10 [ 223.392383][ T8654] ? find_held_lock+0x2d/0x110 [ 223.392431][ T8654] ? alloc_fd+0x41f/0x760 [ 223.392470][ T8654] do_sys_openat2+0x17a/0x1e0 [ 223.392495][ T8654] ? __pfx_do_sys_openat2+0x10/0x10 [ 223.392532][ T8654] __x64_sys_openat+0x175/0x210 [ 223.392556][ T8654] ? __pfx___x64_sys_openat+0x10/0x10 [ 223.392595][ T8654] do_syscall_64+0xcd/0x250 [ 223.392627][ T8654] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.392657][ T8654] RIP: 0033:0x7f211378d169 [ 223.392676][ T8654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.392698][ T8654] RSP: 002b:00007f21145e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 223.392719][ T8654] RAX: ffffffffffffffda RBX: 00007f21139a5fa0 RCX: 00007f211378d169 [ 223.392734][ T8654] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 223.392748][ T8654] RBP: 00007f211380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 223.392762][ T8654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.392776][ T8654] R13: 0000000000000000 R14: 00007f21139a5fa0 R15: 00007fff08d45e98 [ 223.392808][ T8654] [ 223.982860][ T8651] netlink: 4 bytes leftover after parsing attributes in process `syz.3.533'. [ 226.217303][ T8711] FAULT_INJECTION: forcing a failure. [ 226.217303][ T8711] name failslab, interval 1, probability 0, space 0, times 0 [ 226.268378][ T8711] CPU: 1 UID: 0 PID: 8711 Comm: syz.4.547 Not tainted 6.14.0-rc4-syzkaller #0 [ 226.268412][ T8711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 226.268425][ T8711] Call Trace: [ 226.268433][ T8711] [ 226.268442][ T8711] dump_stack_lvl+0x16c/0x1f0 [ 226.268478][ T8711] should_fail_ex+0x50a/0x650 [ 226.268512][ T8711] ? fs_reclaim_acquire+0xae/0x150 [ 226.268543][ T8711] should_failslab+0xc2/0x120 [ 226.268566][ T8711] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 226.268600][ T8711] ? security_inode_alloc+0x3b/0x2b0 [ 226.268630][ T8711] security_inode_alloc+0x3b/0x2b0 [ 226.268656][ T8711] inode_init_always_gfp+0xce4/0x1030 [ 226.268693][ T8711] alloc_inode+0x82/0x230 [ 226.268715][ T8711] new_inode+0x22/0x210 [ 226.268740][ T8711] shmem_get_inode+0x194/0xf00 [ 226.268779][ T8711] shmem_mknod+0x1a8/0x450 [ 226.268817][ T8711] vfs_mknod+0x5d7/0x8e0 [ 226.268849][ T8711] do_mknodat+0x310/0x5d0 [ 226.268883][ T8711] ? __pfx_do_mknodat+0x10/0x10 [ 226.268913][ T8711] ? getname_flags.part.0+0x1c5/0x550 [ 226.268945][ T8711] __x64_sys_mknod+0x87/0xb0 [ 226.268976][ T8711] do_syscall_64+0xcd/0x250 [ 226.269008][ T8711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.269039][ T8711] RIP: 0033:0x7fea3058d169 [ 226.269057][ T8711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.269079][ T8711] RSP: 002b:00007fea31388038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 226.269109][ T8711] RAX: ffffffffffffffda RBX: 00007fea307a5fa0 RCX: 00007fea3058d169 [ 226.269125][ T8711] RDX: 0000000000000004 RSI: 0000000000001001 RDI: 0000000000000000 [ 226.269139][ T8711] RBP: 00007fea3060e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 226.269154][ T8711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.269167][ T8711] R13: 0000000000000000 R14: 00007fea307a5fa0 R15: 00007ffdf4a8a4e8 [ 226.269199][ T8711] [ 228.176198][ T8766] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[8766] [ 231.032954][ T8818] netlink: 4 bytes leftover after parsing attributes in process `syz.4.571'. [ 231.045521][ T8813] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 231.066898][ T8813] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 231.090524][ T8818] tc_dump_action: action bad kind [ 231.094968][ T8813] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 231.118896][ T8813] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 232.609443][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 233.085031][ T5145] Bluetooth: hci3: command 0x0c1a tx timeout [ 233.091171][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 233.165304][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 233.187161][ T8884] Invalid ELF header magic: != ELF [ 237.325373][ T5839] Bluetooth: hci4: unexpected subevent 0x04 length: 122 > 11 [ 237.731797][ T8983] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 237.770206][ T8982] HfR: entered promiscuous mode [ 238.127441][ T8996] netlink: 342 bytes leftover after parsing attributes in process `syz.2.611'. [ 239.721308][ T9025] ima: policy update failed [ 239.726477][ T29] audit: type=1802 audit(6035460219.542:12): pid=9025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.620" res=0 errno=0 [ 240.431342][ T9040] netlink: 4 bytes leftover after parsing attributes in process `syz.4.622'. [ 240.517788][ T9044] netlink: 354 bytes leftover after parsing attributes in process `syz.4.622'. [ 241.859421][ T9075] FAULT_INJECTION: forcing a failure. [ 241.859421][ T9075] name failslab, interval 1, probability 0, space 0, times 0 [ 241.877575][ T9075] CPU: 0 UID: 0 PID: 9075 Comm: syz.0.629 Not tainted 6.14.0-rc4-syzkaller #0 [ 241.877608][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 241.877623][ T9075] Call Trace: [ 241.877630][ T9075] [ 241.877640][ T9075] dump_stack_lvl+0x16c/0x1f0 [ 241.877674][ T9075] should_fail_ex+0x50a/0x650 [ 241.877707][ T9075] ? fs_reclaim_acquire+0xae/0x150 [ 241.877736][ T9075] ? sk_prot_alloc+0x1a8/0x2a0 [ 241.877758][ T9075] should_failslab+0xc2/0x120 [ 241.877782][ T9075] __kmalloc_noprof+0xcb/0x510 [ 241.877815][ T9075] ? trace_cap_capable+0x1a2/0x210 [ 241.877845][ T9075] sk_prot_alloc+0x1a8/0x2a0 [ 241.877872][ T9075] sk_alloc+0x36/0xb90 [ 241.877917][ T9075] xsk_create+0x11b/0x750 [ 241.877955][ T9075] __sock_create+0x335/0x8d0 [ 241.877989][ T9075] __sys_socket+0x14f/0x260 [ 241.878017][ T9075] ? __pfx___sys_socket+0x10/0x10 [ 241.878045][ T9075] ? rcu_is_watching+0x12/0xc0 [ 241.878077][ T9075] __x64_sys_socket+0x72/0xb0 [ 241.878102][ T9075] ? lockdep_hardirqs_on+0x7c/0x110 [ 241.878130][ T9075] do_syscall_64+0xcd/0x250 [ 241.878162][ T9075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.878194][ T9075] RIP: 0033:0x7f211378d169 [ 241.878213][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.878236][ T9075] RSP: 002b:00007f21145e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 241.878255][ T9075] RAX: ffffffffffffffda RBX: 00007f21139a5fa0 RCX: 00007f211378d169 [ 241.878270][ T9075] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000002c [ 241.878289][ T9075] RBP: 00007f211380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 241.878303][ T9075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.878316][ T9075] R13: 0000000000000000 R14: 00007f21139a5fa0 R15: 00007fff08d45e98 [ 241.878343][ T9075] [ 243.676718][ T9129] netlink: 28 bytes leftover after parsing attributes in process `syz.0.643'. [ 243.855664][ T9076] kexec: Could not allocate control_code_buffer [ 244.112866][ T9129] ipvlan0: entered allmulticast mode [ 244.118585][ T9129] veth0_vlan: entered allmulticast mode [ 244.498336][ T9138] FAULT_INJECTION: forcing a failure. [ 244.498336][ T9138] name failslab, interval 1, probability 0, space 0, times 0 [ 244.532150][ T9138] CPU: 1 UID: 0 PID: 9138 Comm: syz.0.645 Not tainted 6.14.0-rc4-syzkaller #0 [ 244.532182][ T9138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 244.532198][ T9138] Call Trace: [ 244.532205][ T9138] [ 244.532215][ T9138] dump_stack_lvl+0x16c/0x1f0 [ 244.532253][ T9138] should_fail_ex+0x50a/0x650 [ 244.532292][ T9138] ? fs_reclaim_acquire+0xae/0x150 [ 244.532326][ T9138] should_failslab+0xc2/0x120 [ 244.532350][ T9138] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 244.532398][ T9138] ? sk_prot_alloc+0x60/0x2a0 [ 244.532428][ T9138] sk_prot_alloc+0x60/0x2a0 [ 244.532455][ T9138] sk_alloc+0x36/0xb90 [ 244.532488][ T9138] unix_create1+0xa6/0x6c0 [ 244.532522][ T9138] unix_create+0x10e/0x1d0 [ 244.532557][ T9138] __sock_create+0x335/0x8d0 [ 244.532591][ T9138] __sys_socketpair+0x25d/0x5a0 [ 244.532621][ T9138] ? __pfx___sys_socketpair+0x10/0x10 [ 244.532651][ T9138] ? xfd_validate_state+0x5d/0x180 [ 244.532683][ T9138] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 244.532715][ T9138] ? syscall_user_dispatch+0x7a/0x130 [ 244.532757][ T9138] __x64_sys_socketpair+0x96/0x100 [ 244.532787][ T9138] do_syscall_64+0xcd/0x250 [ 244.532820][ T9138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.532851][ T9138] RIP: 0033:0x7f211378d169 [ 244.532870][ T9138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.532892][ T9138] RSP: 002b:00007f21145e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 244.532915][ T9138] RAX: ffffffffffffffda RBX: 00007f21139a5fa0 RCX: 00007f211378d169 [ 244.532931][ T9138] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 244.532947][ T9138] RBP: 00007f211380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 244.532962][ T9138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.532976][ T9138] R13: 0000000000000000 R14: 00007f21139a5fa0 R15: 00007fff08d45e98 [ 244.533005][ T9138] [ 245.276463][ T9160] netlink: 'syz.3.651': attribute type 9 has an invalid length. [ 245.566030][ T9176] netlink: 342 bytes leftover after parsing attributes in process `syz.4.652'. syzkaller syzkaller login: [ 245.774193][ T9184] netlink: 4 bytes leftover after parsing attributes in process `syz.2.655'. [ 245.852534][ T9186] FAULT_INJECTION: forcing a failure. [ 245.852534][ T9186] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 245.866856][ T9186] CPU: 1 UID: 0 PID: 9186 Comm: syz.4.656 Not tainted 6.14.0-rc4-syzkaller #0 [ 245.866885][ T9186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 245.866897][ T9186] Call Trace: [ 245.866904][ T9186] [ 245.866913][ T9186] dump_stack_lvl+0x16c/0x1f0 [ 245.866946][ T9186] should_fail_ex+0x50a/0x650 [ 245.866978][ T9186] ? __pfx___might_resched+0x10/0x10 [ 245.867016][ T9186] should_fail_alloc_page+0xe7/0x130 [ 245.867041][ T9186] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 245.867070][ T9186] ? arch_stack_walk+0xa7/0x100 [ 245.867094][ T9186] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 245.867132][ T9186] ? stack_trace_save+0x95/0xd0 [ 245.867158][ T9186] ? __pfx_stack_trace_save+0x10/0x10 [ 245.867190][ T9186] ? stack_depot_save_flags+0x28/0x9c0 [ 245.867225][ T9186] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 245.867261][ T9186] ? kasan_save_stack+0x42/0x60 [ 245.867289][ T9186] ? kasan_save_stack+0x33/0x60 [ 245.867317][ T9186] ? kasan_save_track+0x14/0x30 [ 245.867345][ T9186] ? __kasan_kmalloc+0xaa/0xb0 [ 245.867373][ T9186] ? mon_bin_open+0x1a8/0x4a0 [ 245.867407][ T9186] ? chrdev_open+0x237/0x6a0 [ 245.867441][ T9186] ? __x64_sys_openat+0x175/0x210 [ 245.867465][ T9186] ? do_syscall_64+0xcd/0x250 [ 245.867491][ T9186] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.867529][ T9186] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 245.867565][ T9186] ? policy_nodemask+0xea/0x4e0 [ 245.867603][ T9186] alloc_pages_mpol+0x1fc/0x540 [ 245.867627][ T9186] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 245.867659][ T9186] alloc_pages_noprof+0x131/0x390 [ 245.867682][ T9186] get_zeroed_page_noprof+0x14/0x50 [ 245.867708][ T9186] mon_alloc_buff+0xc0/0x190 [ 245.867738][ T9186] ? kasan_save_track+0x14/0x30 [ 245.867770][ T9186] mon_bin_open+0x207/0x4a0 [ 245.867799][ T9186] ? __pfx_mon_bin_open+0x10/0x10 [ 245.867830][ T9186] chrdev_open+0x237/0x6a0 [ 245.867863][ T9186] ? __pfx_chrdev_open+0x10/0x10 [ 245.867898][ T9186] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 245.867932][ T9186] do_dentry_open+0x735/0x1c40 [ 245.867963][ T9186] ? __pfx_chrdev_open+0x10/0x10 [ 245.867996][ T9186] ? inode_permission+0xdd/0x5f0 [ 245.868024][ T9186] vfs_open+0x82/0x3f0 [ 245.868045][ T9186] ? may_open+0x1f2/0x400 [ 245.868072][ T9186] path_openat+0x1e88/0x2d80 [ 245.868116][ T9186] ? __pfx_path_openat+0x10/0x10 [ 245.868147][ T9186] ? __pfx___lock_acquire+0x10/0x10 [ 245.868182][ T9186] ? lock_acquire.part.0+0x11b/0x380 [ 245.868212][ T9186] ? find_held_lock+0x2d/0x110 [ 245.868240][ T9186] do_filp_open+0x20c/0x470 [ 245.868271][ T9186] ? __pfx_do_filp_open+0x10/0x10 [ 245.868299][ T9186] ? find_held_lock+0x2d/0x110 [ 245.868348][ T9186] ? alloc_fd+0x41f/0x760 [ 245.868388][ T9186] do_sys_openat2+0x17a/0x1e0 [ 245.868411][ T9186] ? __pfx_do_sys_openat2+0x10/0x10 [ 245.868449][ T9186] __x64_sys_openat+0x175/0x210 [ 245.868473][ T9186] ? __pfx___x64_sys_openat+0x10/0x10 [ 245.868511][ T9186] do_syscall_64+0xcd/0x250 [ 245.868541][ T9186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.868570][ T9186] RIP: 0033:0x7fea3058d169 [ 245.868589][ T9186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.868610][ T9186] RSP: 002b:00007fea31388038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 245.868632][ T9186] RAX: ffffffffffffffda RBX: 00007fea307a5fa0 RCX: 00007fea3058d169 [ 245.868648][ T9186] RDX: 0000000000020002 RSI: 0000400000000040 RDI: ffffffffffffff9c [ 245.868662][ T9186] RBP: 00007fea3060e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 245.868676][ T9186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.868689][ T9186] R13: 0000000000000000 R14: 00007fea307a5fa0 R15: 00007ffdf4a8a4e8 [ 245.868721][ T9186] syzkaller syzkaller login: [ 248.150425][ T9226] netlink: 4 bytes leftover after parsing attributes in process `syz.3.663'. [ 249.958589][ T29] audit: type=1800 audit(6035460234.580:13): pid=9258 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.672" name="dbroot" dev="configfs" ino=24065 res=0 errno=0 [ 249.961651][ T9258] db_root: not a directory: /sys/devices/platform/vkms/graphics/fb0/modes [ 250.446454][ T9274] FAULT_INJECTION: forcing a failure. [ 250.446454][ T9274] name failslab, interval 1, probability 0, space 0, times 0 [ 250.476850][ T9274] CPU: 1 UID: 0 PID: 9274 Comm: syz.2.675 Not tainted 6.14.0-rc4-syzkaller #0 [ 250.476885][ T9274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 250.476899][ T9274] Call Trace: [ 250.476906][ T9274] [ 250.476915][ T9274] dump_stack_lvl+0x16c/0x1f0 [ 250.476953][ T9274] should_fail_ex+0x50a/0x650 [ 250.476988][ T9274] ? fs_reclaim_acquire+0xae/0x150 [ 250.477021][ T9274] should_failslab+0xc2/0x120 [ 250.477044][ T9274] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 250.477080][ T9274] ? getname_flags.part.0+0x4c/0x550 [ 250.477112][ T9274] getname_flags.part.0+0x4c/0x550 [ 250.477142][ T9274] getname+0x8d/0xe0 [ 250.477171][ T9274] do_sys_openat2+0x104/0x1e0 [ 250.477196][ T9274] ? __pfx_do_sys_openat2+0x10/0x10 [ 250.477233][ T9274] __x64_sys_openat+0x175/0x210 [ 250.477259][ T9274] ? __pfx___x64_sys_openat+0x10/0x10 [ 250.477296][ T9274] do_syscall_64+0xcd/0x250 [ 250.477329][ T9274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.477361][ T9274] RIP: 0033:0x7fbce838d169 [ 250.477380][ T9274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.477399][ T9274] RSP: 002b:00007fbce9111038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 250.477419][ T9274] RAX: ffffffffffffffda RBX: 00007fbce85a5fa0 RCX: 00007fbce838d169 [ 250.477432][ T9274] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c [ 250.477457][ T9274] RBP: 00007fbce840e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 250.477470][ T9274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 250.477482][ T9274] R13: 0000000000000000 R14: 00007fbce85a5fa0 R15: 00007ffda82264e8 [ 250.477509][ T9274] [ 250.655878][ C1] vkms_vblank_simulate: vblank timer overrun [ 251.625653][ T29] audit: type=1800 audit(6035460236.240:14): pid=9298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.681" name="dbroot" dev="configfs" ino=24103 res=0 errno=0 [ 251.631200][ T25] Process accounting resumed [ 252.054416][ T9309] netlink: 342 bytes leftover after parsing attributes in process `syz.3.684'. [ 253.283848][ T9337] Invalid ELF header magic: != ELF [ 254.643255][ T9365] netlink: 4 bytes leftover after parsing attributes in process `syz.3.696'. [ 255.098935][ T9375] Invalid ELF header magic: != ELF [ 255.885716][ T9382] netlink: 24 bytes leftover after parsing attributes in process `syz.4.698'. [ 255.936919][ T9382] netlink: 23 bytes leftover after parsing attributes in process `syz.4.698'. [ 256.335572][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.341932][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.549298][ T9409] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 257.565845][ T9409] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 257.600241][ T9409] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 257.625915][ T9409] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 258.093138][ T9417] QAT: Invalid ioctl 21531 [ 258.223815][ T9422] Invalid ELF header magic: != ELF [ 258.923741][ T9428] netlink: 28 bytes leftover after parsing attributes in process `syz.4.710'. [ 259.021024][ T9428] geneve1: entered allmulticast mode [ 259.620480][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 259.626712][ T5145] Bluetooth: hci2: command 0x0c1a tx timeout [ 259.632751][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 259.685717][ T5145] Bluetooth: hci4: command 0x0c1a tx timeout [ 260.132303][ T9451] Invalid ELF header magic: != ELF [ 260.134220][ T9454] netlink: 4 bytes leftover after parsing attributes in process `syz.4.717'. [ 260.935968][ T9467] Invalid ELF header magic: != ELF [ 260.956905][ T9471] netlink: 28 bytes leftover after parsing attributes in process `syz.2.722'. [ 261.259850][ T9471] bond0: (slave bond_slave_1): Releasing backup interface [ 263.487789][ T9527] netlink: 28 bytes leftover after parsing attributes in process `syz.3.735'. [ 263.519585][ T9541] HfR: entered promiscuous mode [ 263.543389][ T9541] netlink: 12 bytes leftover after parsing attributes in process `syz.4.736'. [ 263.597300][ T9541] HfR: left promiscuous mode [ 264.069244][ T9550] tipc: Started in network mode [ 264.115022][ T9550] tipc: Node identity ee00, cluster identity 4711 [ 264.151255][ T9550] tipc: Node number set to 60928 [ 264.388919][ T9543] kexec: Could not allocate control_code_buffer [ 264.494651][ T9542] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 264.708655][ T9565] Invalid ELF header magic: != ELF [ 265.554401][ T9585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.743'. [ 265.845305][ T9594] QAT: Device 0 not found [ 266.255657][ T9613] Invalid ELF header magic: != ELF [ 267.434557][ T9643] Setting dangerous option i915.mitigations - tainting kernel [ 267.580458][ T9614] netlink: 28 bytes leftover after parsing attributes in process `syz.2.753'. [ 267.996696][ T9614] geneve1: entered allmulticast mode [ 269.443650][ T5145] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 269.443688][ T5145] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 269.459066][ T5145] Bluetooth: hci0: Dropping invalid advertising data [ 269.468316][ T5145] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 269.468367][ T5145] Bluetooth: hci0: Dropping invalid advertising data [ 269.483542][ T5145] Bluetooth: hci0: unknown advertising packet type: 0xfb [ 269.483589][ T5145] Bluetooth: hci0: unknown advertising packet type: 0x2f [ 269.543615][ T9689] capability: warning: `syz.2.773' uses 32-bit capabilities (legacy support in use) [ 269.551354][ T9692] mmap: syz.0.774 (9692): VmData 37597184 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 270.013537][ T9701] FAULT_INJECTION: forcing a failure. [ 270.013537][ T9701] name failslab, interval 1, probability 0, space 0, times 0 [ 270.060572][ T9701] CPU: 0 UID: 0 PID: 9701 Comm: syz.2.776 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 270.060613][ T9701] Tainted: [U]=USER [ 270.060622][ T9701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 270.060636][ T9701] Call Trace: [ 270.060643][ T9701] [ 270.060653][ T9701] dump_stack_lvl+0x16c/0x1f0 [ 270.060690][ T9701] should_fail_ex+0x50a/0x650 [ 270.060727][ T9701] ? fs_reclaim_acquire+0xae/0x150 [ 270.060762][ T9701] should_failslab+0xc2/0x120 [ 270.060785][ T9701] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 270.060829][ T9701] ? alloc_empty_file+0x73/0x1e0 [ 270.060861][ T9701] alloc_empty_file+0x73/0x1e0 [ 270.060889][ T9701] path_openat+0xe1/0x2d80 [ 270.060930][ T9701] ? rcu_is_watching+0x12/0xc0 [ 270.060956][ T9701] ? trace_kmem_cache_alloc+0x2d/0xd0 [ 270.060984][ T9701] ? kmem_cache_alloc_noprof+0x279/0x3d0 [ 270.061020][ T9701] ? __pfx_path_openat+0x10/0x10 [ 270.061055][ T9701] ? __asan_memcpy+0x3c/0x60 [ 270.061091][ T9701] do_file_open_root+0x323/0x610 [ 270.061127][ T9701] ? __pfx_do_file_open_root+0x10/0x10 [ 270.061159][ T9701] ? __lock_acquire+0x2077/0x3c40 [ 270.061217][ T9701] ? lock_acquire.part.0+0x11b/0x380 [ 270.061250][ T9701] ? find_held_lock+0x2d/0x110 [ 270.061274][ T9701] ? find_held_lock+0x2d/0x110 [ 270.061303][ T9701] file_open_root+0x2a8/0x450 [ 270.061338][ T9701] ? __pfx_file_open_root+0x10/0x10 [ 270.061369][ T9701] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 270.061393][ T9701] ? lockref_get+0x15/0x50 [ 270.061425][ T9701] kernel_read_file_from_path_initns+0x18a/0x260 [ 270.061457][ T9701] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 270.061488][ T9701] ? _request_firmware+0x500/0x1470 [ 270.061531][ T9701] _request_firmware+0x746/0x1470 [ 270.061578][ T9701] ? __pfx__request_firmware+0x10/0x10 [ 270.061615][ T9701] ? __pfx___mutex_lock+0x10/0x10 [ 270.061655][ T9701] request_firmware+0x35/0x50 [ 270.061691][ T9701] reg_reload_regdb+0x8a/0x460 [ 270.061725][ T9701] ? __pfx_reg_reload_regdb+0x10/0x10 [ 270.061760][ T9701] ? nl80211_pre_doit+0x1b0/0xb10 [ 270.061792][ T9701] genl_family_rcv_msg_doit+0x202/0x2f0 [ 270.061838][ T9701] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 270.061876][ T9701] ? trace_cap_capable+0x1a2/0x210 [ 270.061912][ T9701] ? bpf_lsm_capable+0x9/0x10 [ 270.061937][ T9701] ? security_capable+0x7e/0x260 [ 270.061983][ T9701] genl_rcv_msg+0x565/0x800 [ 270.062021][ T9701] ? __pfx_genl_rcv_msg+0x10/0x10 [ 270.062056][ T9701] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 270.062081][ T9701] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 270.062111][ T9701] ? __pfx_nl80211_post_doit+0x10/0x10 [ 270.062157][ T9701] netlink_rcv_skb+0x16b/0x440 [ 270.062187][ T9701] ? __pfx_genl_rcv_msg+0x10/0x10 [ 270.062223][ T9701] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 270.062269][ T9701] ? down_read+0xc9/0x330 [ 270.062300][ T9701] ? __pfx_down_read+0x10/0x10 [ 270.062332][ T9701] ? netlink_deliver_tap+0x1ae/0xd30 [ 270.062367][ T9701] genl_rcv+0x28/0x40 [ 270.062398][ T9701] netlink_unicast+0x53c/0x7f0 [ 270.062433][ T9701] ? __pfx_netlink_unicast+0x10/0x10 [ 270.062465][ T9701] ? __phys_addr_symbol+0x30/0x80 [ 270.062490][ T9701] ? __check_object_size+0x488/0x710 [ 270.062519][ T9701] netlink_sendmsg+0x8b8/0xd70 [ 270.062555][ T9701] ? __pfx_netlink_sendmsg+0x10/0x10 [ 270.062598][ T9701] ____sys_sendmsg+0xaaf/0xc90 [ 270.062625][ T9701] ? copy_msghdr_from_user+0x10b/0x160 [ 270.062658][ T9701] ? __pfx_____sys_sendmsg+0x10/0x10 [ 270.062700][ T9701] ___sys_sendmsg+0x135/0x1e0 [ 270.062733][ T9701] ? __pfx____sys_sendmsg+0x10/0x10 [ 270.062778][ T9701] ? __pfx_lock_release+0x10/0x10 [ 270.062806][ T9701] ? trace_lock_acquire+0x14e/0x1f0 [ 270.062851][ T9701] ? __fget_files+0x206/0x3a0 [ 270.062896][ T9701] __sys_sendmsg+0x16e/0x220 [ 270.062932][ T9701] ? __pfx___sys_sendmsg+0x10/0x10 [ 270.062966][ T9701] ? __x64_sys_futex+0x1e1/0x4c0 [ 270.063019][ T9701] do_syscall_64+0xcd/0x250 [ 270.063051][ T9701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.063083][ T9701] RIP: 0033:0x7fbce838d169 [ 270.063104][ T9701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.063126][ T9701] RSP: 002b:00007fbce9111038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 270.063150][ T9701] RAX: ffffffffffffffda RBX: 00007fbce85a5fa0 RCX: 00007fbce838d169 [ 270.063166][ T9701] RDX: 0000000000000000 RSI: 0000400000000580 RDI: 000000000000000a [ 270.063181][ T9701] RBP: 00007fbce840e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 270.063196][ T9701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.063211][ T9701] R13: 0000000000000000 R14: 00007fbce85a5fa0 R15: 00007ffda82264e8 [ 270.063244][ T9701] [ 270.063331][ T9701] platform regulatory.0: loading /lib/firmware/updates/6.14.0-rc4-syzkaller/regulatory.db failed with error -12 [ 270.287008][ T9704] Invalid ELF header magic: != ELF [ 270.346630][ T9701] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 270.556942][ T9701] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 271.216935][ T9728] nbd: couldn't find device at index 33904 [ 271.394342][ T9710] netlink: 28 bytes leftover after parsing attributes in process `syz.3.777'. [ 271.416446][ T9710] geneve1: entered allmulticast mode [ 271.812358][ T9736] Invalid ELF header magic: != ELF [ 271.838720][ T29] audit: type=1806 audit(4294967303.972:15): xattr="." res=0 [ 272.393227][ T9746] netlink: 28 bytes leftover after parsing attributes in process `syz.0.783'. [ 273.004764][ T9776] Invalid ELF header magic: != ELF [ 273.318595][ T9785] netlink: 342 bytes leftover after parsing attributes in process `syz.4.797'. [ 273.329995][ T9784] netlink: 342 bytes leftover after parsing attributes in process `syz.4.797'. [ 273.353006][ T9785] netlink: 102 bytes leftover after parsing attributes in process `syz.4.797'. [ 274.047708][ T9781] netlink: 28 bytes leftover after parsing attributes in process `syz.0.795'. [ 274.076291][ T9811] sctp: [Deprecated]: syz.3.802 (pid 9811) Use of int in maxseg socket option. [ 274.076291][ T9811] Use struct sctp_assoc_value instead [ 275.442123][ T9821] netlink: 334 bytes leftover after parsing attributes in process `syz.3.805'. [ 275.778687][ T29] audit: type=1400 audit(4294967307.912:16): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=9851 comm="syz.2.810" [ 276.472432][ T9862] netlink: 28 bytes leftover after parsing attributes in process `syz.4.814'. [ 277.304238][ T9862] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 277.317116][ T9862] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 277.327963][ T9862] bond0 (unregistering): Released all slaves [ 278.296798][ T9909] netlink: 32 bytes leftover after parsing attributes in process `syz.4.824'. [ 278.780436][ T9924] netlink: 28 bytes leftover after parsing attributes in process `syz.3.828'. [ 278.866061][ T9929] svc: failed to register nfsdv3 RPC service (errno 101). [ 278.908544][ T9929] svc: failed to register nfsaclv3 RPC service (errno 101). [ 278.933975][ T9934] netlink: 338 bytes leftover after parsing attributes in process `syz.0.832'. [ 279.672236][ T9948] netlink: 306 bytes leftover after parsing attributes in process `syz.3.835'. syzkaller syzkaller login: [ 280.825078][ T9974] nbd: couldn't find device at index 33904 [ 281.685993][ T9986] netlink: 84 bytes leftover after parsing attributes in process `syz.4.844'. [ 282.316335][ T9999] netlink: 'syz.3.848': attribute type 1 has an invalid length. [ 282.416686][T10003] sd 0:0:1:0: PR command failed: 1026 [ 282.422162][T10003] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 282.489966][T10003] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 283.933010][T10035] svc: failed to register nfsdv3 RPC service (errno 111). [ 283.958833][T10035] svc: failed to register nfsaclv3 RPC service (errno 111). [ 284.007009][T10033] Invalid ELF header magic: != ELF [ 284.150682][T10043] nbd: couldn't find device at index 33904 [ 284.713771][T10039] netlink: 28 bytes leftover after parsing attributes in process `syz.4.854'. [ 286.341495][T10083] svc: failed to register nfsdv3 RPC service (errno 111). [ 286.398351][T10083] svc: failed to register nfsaclv3 RPC service (errno 111). [ 287.564642][T10118] Invalid ELF header magic: != ELF [ 288.595297][T10136] netlink: 28 bytes leftover after parsing attributes in process `syz.3.882'. [ 288.707283][T10134] netlink: 28 bytes leftover after parsing attributes in process `syz.2.877'. [ 289.389366][T10136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 289.404900][T10136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 289.417795][T10136] bond0 (unregistering): Released all slaves [ 291.692695][T10218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.898'. [ 293.745983][T10254] netlink: 342 bytes leftover after parsing attributes in process `syz.4.907'. [ 293.776819][T10254] netlink: 342 bytes leftover after parsing attributes in process `syz.4.907'. [ 294.344842][T10271] netlink: 4 bytes leftover after parsing attributes in process `syz.4.911'. [ 294.852032][T10278] lo: entered allmulticast mode [ 294.954246][T10278] lo: left allmulticast mode [ 296.059410][T10303] netlink: 'syz.4.916': attribute type 1 has an invalid length. [ 296.116780][T10298] netlink: 'syz.2.915': attribute type 1 has an invalid length. [ 296.197427][T10297] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 296.288320][T10297] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 296.495413][T10315] cougar: G6 mapped to space [ 297.994233][T10348] netlink: 338 bytes leftover after parsing attributes in process `syz.3.926'. [ 298.012939][T10347] netlink: 338 bytes leftover after parsing attributes in process `syz.3.926'. [ 298.848025][T10364] sysfs_service_op_show: Client not running :-5: [ 299.310051][T10364] sysfs_service_op_show: Client not running :-5: syzkaller syzkaller login: [ 303.071916][T10467] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 303.117516][T10467] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 306.640251][T10551] netlink: 'syz.2.966': attribute type 11 has an invalid length. [ 310.755305][T10678] Invalid ELF header magic: != ELF [ 310.763770][T10681] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1005'. [ 310.773528][T10682] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1005'. [ 310.785769][T10681] netlink: 210 bytes leftover after parsing attributes in process `syz.0.1005'. [ 310.899294][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 310.926298][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 310.972107][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 311.023542][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 311.090126][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 311.251195][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 311.538845][T10675] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1003'. [ 312.413205][ T29] audit: type=1800 audit(4294967310.450:17): pid=10721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1011" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 312.433362][ C0] vkms_vblank_simulate: vblank timer overrun [ 314.199375][T10768] [U] [ 314.202581][T10768] [U] [ 314.205403][T10768] [U] [ 314.208215][T10768] [U] [ 314.214412][T10768] [U] [ 314.217170][T10768] [U] [ 314.219898][T10768] [U] [ 314.222631][T10768] [U] [ 314.300202][T10768] [U] [ 314.302974][T10768] [U] [ 314.305705][T10768] [U] [ 314.308431][T10768] [U] [ 314.313012][T10768] [U] [ 314.315857][T10768] [U] [ 314.318589][T10768] [U] [ 314.321313][T10768] [U] [ 314.422694][T10768] [U] [ 314.425489][T10768] [U] [ 314.428245][T10768] [U] [ 314.431012][T10768] [U] [ 314.478758][T10768] [U] [ 314.481619][T10768] [U] [ 314.484348][T10768] [U] [ 314.487078][T10768] [U] [ 314.610300][T10767] [U] [ 314.910223][ T29] audit: type=1800 audit(4294967312.950:18): pid=10785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1028" name="dbroot" dev="configfs" ino=30669 res=0 errno=0 [ 314.943810][T10785] db_root: cannot open: [ 315.222142][T10792] netlink: 'syz.4.1031': attribute type 11 has an invalid length. [ 316.201824][T10816] Invalid ELF header magic: != ELF [ 316.216370][T10816] Invalid ELF header magic: != ELF [ 316.223375][T10817] Invalid ELF header magic: != ELF [ 316.245855][T10818] Invalid ELF header magic: != ELF [ 316.504619][T10823] nvme_fabrics: missing parameter 'transport=%s' [ 316.529210][T10823] nvme_fabrics: missing parameter 'nqn=%s' [ 317.444991][T10848] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 317.490903][T10849] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 317.772523][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.779077][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.672099][T10873] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 320.388054][ T29] audit: type=1800 audit(4294967318.430:19): pid=10897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1056" name="dbroot" dev="configfs" ino=31942 res=0 errno=0 [ 320.418118][T10897] db_root: cannot open: [ 320.678891][T10902] __nla_validate_parse: 2 callbacks suppressed [ 320.678910][T10902] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1064'. [ 320.700706][T10905] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1058'. [ 321.197099][T10915] ptrace attach of "./syz-executor exec"[5827] was attempted by ""[10915] [ 321.378157][T10919] random: crng reseeded on system resumption [ 321.779933][ T5145] Bluetooth: hci2: Malformed LE Event: 0x1d [ 323.725128][T10966] db_root: cannot open: [ 323.745595][ T29] audit: type=1800 audit(4294967321.760:20): pid=10966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1069" name="dbroot" dev="configfs" ino=32069 res=0 errno=0 [ 324.235076][T10969] Process accounting resumed [ 325.144294][T11005] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 325.720330][T11032] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1085'. [ 325.917787][T11036] zswap: compressor not available [ 326.159875][T11023] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 326.311707][T11023] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 326.418953][T11023] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 326.578581][T11023] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 328.166027][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 328.335622][ T5145] Bluetooth: hci2: command 0x0c1a tx timeout [ 328.504057][ T5145] Bluetooth: hci3: command 0x0c1a tx timeout [ 328.645815][ T5145] Bluetooth: hci4: command 0x0c1a tx timeout [ 329.678046][T11106] netlink: 'syz.4.1101': attribute type 1 has an invalid length. [ 330.045700][T11111] netlink: zone id is out of range [ 330.065701][T11111] netlink: zone id is out of range [ 330.070874][T11111] netlink: zone id is out of range [ 330.100499][T11111] netlink: zone id is out of range [ 330.107348][T11111] netlink: zone id is out of range [ 330.128905][T11111] netlink: zone id is out of range [ 330.158109][T11111] netlink: zone id is out of range [ 330.163365][T11111] netlink: zone id is out of range [ 330.175682][T11111] netlink: zone id is out of range [ 330.209789][T11111] netlink: zone id is out of range [ 330.790869][ T29] audit: type=1800 audit(4294967328.830:21): pid=11121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1092" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 332.653940][T11196] sd 0:0:1:0: PR command failed: 1026 [ 332.660639][T11196] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 332.668840][T11196] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 332.921919][T11198] zswap: compressor not available [ 334.427670][T11233] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1123'. [ 334.920541][T11242] ima: policy update failed [ 334.987406][ T29] audit: type=1802 audit(4294967333.020:22): pid=11242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1126" res=0 errno=0 [ 335.437998][T11243] input: isc as /devices/virtual/input/input12 [ 337.359190][T11292] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 337.402519][T11292] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 337.420145][T11292] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 337.455835][T11292] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 338.645851][T11333] net_ratelimit: 20 callbacks suppressed [ 338.645871][T11333] netlink: zone id is out of range [ 338.690436][T11339] misc userio: No port type given on /dev/userio [ 338.709097][T11333] netlink: zone id is out of range [ 338.714519][T11333] netlink: zone id is out of range [ 338.749843][T11333] netlink: zone id is out of range [ 338.755017][T11333] netlink: zone id is out of range [ 338.806726][T11333] netlink: zone id is out of range [ 338.823002][T11333] netlink: zone id is out of range [ 338.833141][T11333] netlink: zone id is out of range [ 338.839412][T11333] netlink: zone id is out of range [ 338.844649][T11333] netlink: zone id is out of range [ 338.975717][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 339.445803][ T5145] Bluetooth: hci3: command 0x0c1a tx timeout [ 339.451910][ T5145] Bluetooth: hci2: command 0x0c1a tx timeout [ 339.525743][ T5145] Bluetooth: hci4: command 0x0c1a tx timeout [ 339.890012][T11365] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1150'. [ 341.076333][T11388] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1155'. [ 342.289504][T11420] cougar: G6 mapped to space [ 343.354897][T11449] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 347.269156][T11514] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 347.275617][T11514] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 347.281941][T11514] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 347.298594][T11514] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 348.815730][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 349.290591][ T5145] Bluetooth: hci2: command 0x0c1a tx timeout [ 349.365648][ T5145] Bluetooth: hci4: command 0x0c1a tx timeout [ 349.371808][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 349.831484][T11572] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1189'. [ 352.205707][T11624] : Can't lookup blockdev [ 352.323198][T11625] nvme_fabrics: missing parameter 'transport=%s' [ 352.330378][T11625] nvme_fabrics: missing parameter 'nqn=%s' [ 352.346343][T11625] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1200'. [ 354.870955][T11692] Process accounting paused [ 355.319711][T11730] net_ratelimit: 20 callbacks suppressed [ 355.319730][T11730] openvswitch: netlink: Key type 69 is out of range max 32 [ 355.924118][T11751] Invalid ELF header magic: != ELF [ 356.006233][T11751] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1231'. [ 356.135721][T11760] sp0: Synchronizing with TNC [ 357.441982][ T5145] Bluetooth: hci4: Malformed LE Event: 0x1d [ 357.485119][T11771] Invalid ELF header magic: != ELF [ 357.687325][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 358.443983][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802838b400: rx timeout, send abort [ 358.954325][ C1] vcan0: j1939_tp_rxtimer: 0xffff88802838b400: abort rx timeout. Force session deactivation [ 359.892788][T11834] warning: `syz.0.1249' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 361.215818][T11850] Invalid ELF header magic: != ELF [ 362.183211][T11890] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1261'. [ 362.230457][T11890] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1261'. [ 364.351672][ T29] audit: type=1800 audit(4294967362.390:23): pid=11941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1272" name="file0" dev="tmpfs" ino=1608 res=0 errno=0 [ 364.468427][ T29] audit: type=1800 audit(4294967362.410:24): pid=11941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1272" name="file0" dev="tmpfs" ino=1608 res=0 errno=0 [ 365.011320][T11953] openvswitch: netlink: IP tunnel dst address not specified [ 365.029180][T11954] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1275'. [ 365.854740][T11971] FAULT_INJECTION: forcing a failure. [ 365.854740][T11971] name failslab, interval 1, probability 0, space 0, times 0 [ 365.888257][T11971] CPU: 0 UID: 0 PID: 11971 Comm: syz.0.1281 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 365.888297][T11971] Tainted: [U]=USER [ 365.888304][T11971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 365.888317][T11971] Call Trace: [ 365.888331][T11971] [ 365.888342][T11971] dump_stack_lvl+0x16c/0x1f0 [ 365.888379][T11971] should_fail_ex+0x50a/0x650 [ 365.888412][T11971] ? fs_reclaim_acquire+0xae/0x150 [ 365.888442][T11971] ? snd_seq_create_port+0xe8/0x9b0 [ 365.888476][T11971] should_failslab+0xc2/0x120 [ 365.888503][T11971] __kmalloc_cache_noprof+0x68/0x410 [ 365.888541][T11971] snd_seq_create_port+0xe8/0x9b0 [ 365.888575][T11971] ? stack_trace_save+0x95/0xd0 [ 365.888604][T11971] snd_seq_ioctl_create_port+0x254/0x950 [ 365.888636][T11971] ? __pfx_snd_seq_ioctl_create_port+0x10/0x10 [ 365.888670][T11971] ? __lock_acquire+0x15a9/0x3c40 [ 365.888705][T11971] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 365.888740][T11971] create_port+0x198/0x270 [ 365.888761][T11971] ? __pfx_create_port+0x10/0x10 [ 365.888786][T11971] ? __pfx_snd_seq_oss_event_input+0x10/0x10 [ 365.888810][T11971] ? __pfx_free_devinfo+0x10/0x10 [ 365.888851][T11971] ? mark_held_locks+0x9f/0xe0 [ 365.888891][T11971] ? _raw_spin_unlock_irq+0x23/0x50 [ 365.888921][T11971] snd_seq_oss_open+0x36c/0xa20 [ 365.888953][T11971] odev_open+0x6f/0x90 [ 365.888969][T11971] ? __pfx_odev_open+0x10/0x10 [ 365.888988][T11971] soundcore_open+0x409/0x580 [ 365.889022][T11971] ? __pfx_soundcore_open+0x10/0x10 [ 365.889056][T11971] chrdev_open+0x237/0x6a0 [ 365.889087][T11971] ? __pfx_apparmor_file_open+0x10/0x10 [ 365.889117][T11971] ? __pfx_chrdev_open+0x10/0x10 [ 365.889156][T11971] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 365.889194][T11971] do_dentry_open+0x735/0x1c40 [ 365.889228][T11971] ? __pfx_chrdev_open+0x10/0x10 [ 365.889264][T11971] ? inode_permission+0xdd/0x5f0 [ 365.889293][T11971] vfs_open+0x82/0x3f0 [ 365.889316][T11971] ? may_open+0x1f2/0x400 [ 365.889355][T11971] path_openat+0x1e88/0x2d80 [ 365.889404][T11971] ? __pfx_path_openat+0x10/0x10 [ 365.889449][T11971] ? __pfx___lock_acquire+0x10/0x10 [ 365.889481][T11971] ? lock_acquire.part.0+0x11b/0x380 [ 365.889513][T11971] ? find_held_lock+0x2d/0x110 [ 365.889544][T11971] do_filp_open+0x20c/0x470 [ 365.889578][T11971] ? __pfx_do_filp_open+0x10/0x10 [ 365.889608][T11971] ? find_held_lock+0x2d/0x110 [ 365.889657][T11971] ? alloc_fd+0x41f/0x760 [ 365.889699][T11971] do_sys_openat2+0x17a/0x1e0 [ 365.889725][T11971] ? __pfx_do_sys_openat2+0x10/0x10 [ 365.889752][T11971] ? do_raw_spin_unlock+0x172/0x230 [ 365.889785][T11971] __x64_sys_openat+0x175/0x210 [ 365.889810][T11971] ? __pfx___x64_sys_openat+0x10/0x10 [ 365.889850][T11971] do_syscall_64+0xcd/0x250 [ 365.889892][T11971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.889926][T11971] RIP: 0033:0x7f211378d169 [ 365.889947][T11971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.889970][T11971] RSP: 002b:00007f21145e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 365.889992][T11971] RAX: ffffffffffffffda RBX: 00007f21139a5fa0 RCX: 00007f211378d169 [ 365.890006][T11971] RDX: 0000000000000080 RSI: 0000400000000500 RDI: ffffffffffffff9c [ 365.890019][T11971] RBP: 00007f211380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 365.890032][T11971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.890045][T11971] R13: 0000000000000000 R14: 00007f21139a5fa0 R15: 00007fff08d45e98 [ 365.890073][T11971] [ 366.243072][T11971] ALSA: seq_oss: can't create port [ 366.436468][T11980] zswap: compressor not available [ 367.262362][T12017] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1291'. [ 367.858988][T12041] QAT: failed to copy from user. [ 368.205103][T12050] can: request_module (can-proto-0) failed. [ 368.345690][T12057] FAULT_INJECTION: forcing a failure. [ 368.345690][T12057] name failslab, interval 1, probability 0, space 0, times 0 [ 368.360960][T12057] CPU: 0 UID: 0 PID: 12057 Comm: syz.2.1298 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 368.360984][T12057] Tainted: [U]=USER [ 368.360989][T12057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 368.360997][T12057] Call Trace: [ 368.361001][T12057] [ 368.361007][T12057] dump_stack_lvl+0x16c/0x1f0 [ 368.361029][T12057] should_fail_ex+0x50a/0x650 [ 368.361049][T12057] ? fs_reclaim_acquire+0xae/0x150 [ 368.361069][T12057] should_failslab+0xc2/0x120 [ 368.361089][T12057] __kmalloc_node_noprof+0xd1/0x510 [ 368.361110][T12057] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 368.361131][T12057] __kvmalloc_node_noprof+0xad/0x1a0 [ 368.361149][T12057] io_uring_setup+0x2a7/0x2200 [ 368.361165][T12057] ? __pfx_io_uring_setup+0x10/0x10 [ 368.361177][T12057] ? do_futex+0x123/0x350 [ 368.361193][T12057] ? __pfx_do_futex+0x10/0x10 [ 368.361208][T12057] ? __pfx_task_mm_cid_work+0x10/0x10 [ 368.361224][T12057] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 368.361236][T12057] ? __pfx___might_resched+0x10/0x10 [ 368.361262][T12057] ? rcu_is_watching+0x12/0xc0 [ 368.361278][T12057] __x64_sys_io_uring_setup+0x98/0x140 [ 368.361293][T12057] do_syscall_64+0xcd/0x250 [ 368.361310][T12057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.361328][T12057] RIP: 0033:0x7fbce838d169 [ 368.361339][T12057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.361351][T12057] RSP: 002b:00007fbce61f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 368.361364][T12057] RAX: ffffffffffffffda RBX: 00007fbce85a6080 RCX: 00007fbce838d169 [ 368.361372][T12057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 368.361380][T12057] RBP: 00007fbce840e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 368.361387][T12057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 368.361394][T12057] R13: 0000000000000000 R14: 00007fbce85a6080 R15: 00007ffda82264e8 [ 368.361410][T12057] [ 369.751637][T12089] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1310'. [ 369.945910][T12097] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1311'. [ 369.977192][T12103] kafs: addr_prefs: Invalid Command [ 370.047680][T12097] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1311'. [ 370.721935][T12115] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1315'. [ 373.798239][T12172] can: request_module (can-proto-4) failed. [ 375.796976][T12212] Invalid ELF header magic: != ELF [ 378.804223][T12263] FAULT_INJECTION: forcing a failure. [ 378.804223][T12263] name failslab, interval 1, probability 0, space 0, times 0 [ 378.848169][T12263] CPU: 0 UID: 0 PID: 12263 Comm: syz.0.1348 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 378.848210][T12263] Tainted: [U]=USER [ 378.848218][T12263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 378.848233][T12263] Call Trace: [ 378.848240][T12263] [ 378.848250][T12263] dump_stack_lvl+0x16c/0x1f0 [ 378.848286][T12263] should_fail_ex+0x50a/0x650 [ 378.848322][T12263] ? fs_reclaim_acquire+0xae/0x150 [ 378.848356][T12263] ? mon_text_open+0xd6/0x4f0 [ 378.848389][T12263] should_failslab+0xc2/0x120 [ 378.848413][T12263] __kmalloc_cache_noprof+0x68/0x410 [ 378.848452][T12263] ? __pfx_mon_text_open+0x10/0x10 [ 378.848484][T12263] mon_text_open+0xd6/0x4f0 [ 378.848516][T12263] ? __pfx_mon_text_open+0x10/0x10 [ 378.848542][T12263] ? __debugfs_file_get+0x1ff/0x850 [ 378.848572][T12263] ? __pfx___debugfs_file_get+0x10/0x10 [ 378.848613][T12263] ? __pfx_apparmor_file_open+0x10/0x10 [ 378.848644][T12263] ? lockdown_is_locked_down+0x3f/0x130 [ 378.848678][T12263] ? bpf_lsm_locked_down+0x9/0x10 [ 378.848709][T12263] ? __pfx_mon_text_open+0x10/0x10 [ 378.848739][T12263] full_proxy_open_regular+0x1b6/0x360 [ 378.848775][T12263] do_dentry_open+0x735/0x1c40 [ 378.848809][T12263] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 378.848843][T12263] ? inode_permission+0xdd/0x5f0 [ 378.848879][T12263] vfs_open+0x82/0x3f0 [ 378.848903][T12263] ? may_open+0x1f2/0x400 [ 378.848934][T12263] path_openat+0x1e88/0x2d80 [ 378.848983][T12263] ? __pfx_path_openat+0x10/0x10 [ 378.849017][T12263] ? __pfx___lock_acquire+0x10/0x10 [ 378.849049][T12263] ? lock_acquire.part.0+0x11b/0x380 [ 378.849080][T12263] ? find_held_lock+0x2d/0x110 [ 378.849110][T12263] do_filp_open+0x20c/0x470 [ 378.849143][T12263] ? __pfx_do_filp_open+0x10/0x10 [ 378.849179][T12263] ? find_held_lock+0x2d/0x110 [ 378.849229][T12263] ? alloc_fd+0x41f/0x760 [ 378.849270][T12263] do_sys_openat2+0x17a/0x1e0 [ 378.849296][T12263] ? __pfx_do_sys_openat2+0x10/0x10 [ 378.849335][T12263] __x64_sys_openat+0x175/0x210 [ 378.849361][T12263] ? __pfx___x64_sys_openat+0x10/0x10 [ 378.849400][T12263] do_syscall_64+0xcd/0x250 [ 378.849434][T12263] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 378.849467][T12263] RIP: 0033:0x7f211378d169 [ 378.849487][T12263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 378.849511][T12263] RSP: 002b:00007f21145e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 378.849534][T12263] RAX: ffffffffffffffda RBX: 00007f21139a5fa0 RCX: 00007f211378d169 [ 378.849551][T12263] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: ffffffffffffff9c [ 378.849567][T12263] RBP: 00007f211380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 378.849583][T12263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 378.849598][T12263] R13: 0000000000000000 R14: 00007f21139a5fa0 R15: 00007fff08d45e98 [ 378.849632][T12263] [ 379.289363][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.295954][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.225672][T12288] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1353'. [ 380.632994][T12303] sp0: Synchronizing with TNC [ 381.444427][T12312] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1358'. [ 383.277988][T12340] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1365'. [ 386.750877][T12405] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1382'. [ 389.746311][ T5829] Process accounting resumed [ 389.787370][T12453] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 389.906402][T12453] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 390.857883][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 390.868519][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 390.878871][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 390.897498][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 390.905323][ T5839] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 390.916088][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 391.550855][T12473] chnl_net:caif_netlink_parms(): no params data found [ 391.722813][T12490] netlink: 'syz.0.1403': attribute type 11 has an invalid length. [ 392.134069][T12473] bridge0: port 1(bridge_slave_0) entered blocking state [ 392.156455][T12473] bridge0: port 1(bridge_slave_0) entered disabled state [ 392.177981][T12473] bridge_slave_0: entered allmulticast mode [ 392.195870][T12473] bridge_slave_0: entered promiscuous mode [ 392.209119][T12502] can: request_module (can-proto-0) failed. [ 392.235866][T12473] bridge0: port 2(bridge_slave_1) entered blocking state [ 392.257751][T12473] bridge0: port 2(bridge_slave_1) entered disabled state [ 392.275392][T12473] bridge_slave_1: entered allmulticast mode [ 392.286735][T12473] bridge_slave_1: entered promiscuous mode [ 392.457295][T12473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 392.486047][T12473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 392.602067][T12473] team0: Port device team_slave_0 added [ 392.660980][T12473] team0: Port device team_slave_1 added [ 392.825138][T12473] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 392.847315][T12473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 392.917301][T12473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 392.951697][T12473] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 392.967616][ T5839] Bluetooth: hci1: command tx timeout [ 392.987605][T12473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.017358][T12473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 393.091278][T12473] hsr_slave_0: entered promiscuous mode [ 393.098699][T12473] hsr_slave_1: entered promiscuous mode [ 393.108445][T12473] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 393.116039][T12473] Cannot create hsr debugfs directory [ 393.655749][T12473] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 393.682216][T12473] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 393.698778][T12473] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 393.724232][T12473] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 393.980032][T12473] 8021q: adding VLAN 0 to HW filter on device bond0 [ 394.058769][T12473] 8021q: adding VLAN 0 to HW filter on device team0 [ 394.120110][ T7271] bridge0: port 1(bridge_slave_0) entered blocking state [ 394.127327][ T7271] bridge0: port 1(bridge_slave_0) entered forwarding state [ 394.184974][T11314] bridge0: port 2(bridge_slave_1) entered blocking state [ 394.192160][T11314] bridge0: port 2(bridge_slave_1) entered forwarding state [ 394.719970][T12473] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 395.047934][ T5839] Bluetooth: hci1: command tx timeout [ 395.265941][T12473] veth0_vlan: entered promiscuous mode [ 395.311534][T12473] veth1_vlan: entered promiscuous mode [ 395.395182][T12473] veth0_macvtap: entered promiscuous mode [ 395.435958][T12473] veth1_macvtap: entered promiscuous mode [ 395.489779][T12473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 395.520955][T12473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 395.529900][T12570] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1422'. [ 395.551649][T12473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 395.592767][T12473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 395.623759][T12473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 395.657427][T12473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 395.689659][T12473] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 395.733067][T12473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 395.764163][T12473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 395.783571][T12473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 395.807288][T12473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 395.831702][T12473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 395.877414][T12473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 395.900861][T12473] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 395.946941][T12473] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 395.976444][T12473] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 395.997519][T12473] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.004567][T12577] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1424'. [ 396.006511][T12473] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.291019][T11312] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 396.305019][T11316] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 396.357812][T11312] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 396.369936][T11316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 396.939529][T12598] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1393'. [ 397.130932][ T5839] Bluetooth: hci1: command tx timeout [ 397.133760][T12603] bridge0: port 3(syz_tun) entered blocking state [ 397.171216][T12603] bridge0: port 3(syz_tun) entered disabled state [ 397.202796][T12603] syz_tun: entered allmulticast mode [ 397.247510][T12603] syz_tun: entered promiscuous mode [ 397.253447][T12603] bridge0: port 3(syz_tun) entered blocking state [ 397.260605][T12603] bridge0: port 3(syz_tun) entered forwarding state [ 397.433985][T12603] ima: policy update failed [ 397.444494][ T29] audit: type=1802 audit(4294967301.590:25): pid=12603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1427" res=0 errno=0 [ 398.422657][T12627] TCP: TCP_TX_DELAY enabled [ 399.217849][ T5839] Bluetooth: hci1: command tx timeout [ 403.674847][T12715] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[12715] [ 404.679969][T12718] could not allocate digest TFM handle binfmt_misc [ 405.093145][T12719] Process accounting resumed [ 405.353500][T12738] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1453'. [ 405.662376][T12747] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1447'. [ 407.208475][ T5839] Bluetooth: hci3: Malformed LE Event: 0x1d [ 407.333032][T12780] Invalid ELF header magic: != ELF [ 408.715898][T12818] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(8.0.4294967293), cmd(3) [ 412.872870][T12891] FAULT_INJECTION: forcing a failure. [ 412.872870][T12891] name failslab, interval 1, probability 0, space 0, times 0 [ 413.054887][T12894] cougar: G6 mapped to space [ 413.124931][T12891] CPU: 0 UID: 0 PID: 12891 Comm: syz.0.1490 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 413.124972][T12891] Tainted: [U]=USER [ 413.124981][T12891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 413.124996][T12891] Call Trace: [ 413.125004][T12891] [ 413.125015][T12891] dump_stack_lvl+0x16c/0x1f0 [ 413.125053][T12891] should_fail_ex+0x50a/0x650 [ 413.125090][T12891] ? fs_reclaim_acquire+0xae/0x150 [ 413.125126][T12891] should_failslab+0xc2/0x120 [ 413.125150][T12891] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 413.125184][T12891] ? __pfx___might_resched+0x10/0x10 [ 413.125221][T12891] ? __anon_vma_prepare+0x344/0x5e0 [ 413.125261][T12891] __anon_vma_prepare+0x344/0x5e0 [ 413.125299][T12891] ? find_held_lock+0x2d/0x110 [ 413.125328][T12891] __vmf_anon_prepare+0x11c/0x240 [ 413.125361][T12891] do_pte_missing+0x1032/0x3e10 [ 413.125408][T12891] __handle_mm_fault+0x1166/0x2c60 [ 413.125454][T12891] ? __pfx___handle_mm_fault+0x10/0x10 [ 413.125489][T12891] ? follow_page_pte+0x3ac/0x1490 [ 413.125521][T12891] ? __pfx_lock_release+0x10/0x10 [ 413.125580][T12891] handle_mm_fault+0x3fa/0xaa0 [ 413.125622][T12891] __get_user_pages+0x773/0x36f0 [ 413.125665][T12891] ? __pfx_mt_find+0x10/0x10 [ 413.125696][T12891] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 413.125729][T12891] ? __pfx___get_user_pages+0x10/0x10 [ 413.125772][T12891] ? __mm_populate+0x21d/0x380 [ 413.125812][T12891] populate_vma_page_range+0x27f/0x3a0 [ 413.125852][T12891] ? __pfx_populate_vma_page_range+0x10/0x10 [ 413.125888][T12891] ? __pfx_find_vma_intersection+0x10/0x10 [ 413.125923][T12891] ? vm_mmap_pgoff+0x29b/0x3a0 [ 413.125961][T12891] __mm_populate+0x1d6/0x380 [ 413.125997][T12891] ? __pfx___mm_populate+0x10/0x10 [ 413.126034][T12891] ? up_write+0x1b2/0x520 [ 413.126073][T12891] vm_mmap_pgoff+0x2d3/0x3a0 [ 413.126110][T12891] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 413.126148][T12891] ? __x64_sys_futex+0x1e1/0x4c0 [ 413.126176][T12891] ? __x64_sys_futex+0x1ea/0x4c0 [ 413.126209][T12891] ksys_mmap_pgoff+0x7d/0x5c0 [ 413.126240][T12891] ? rcu_is_watching+0x12/0xc0 [ 413.126269][T12891] __x64_sys_mmap+0x125/0x190 [ 413.126308][T12891] do_syscall_64+0xcd/0x250 [ 413.126342][T12891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.126376][T12891] RIP: 0033:0x7f211378d169 [ 413.126397][T12891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.126421][T12891] RSP: 002b:00007f21145e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 413.126444][T12891] RAX: ffffffffffffffda RBX: 00007f21139a5fa0 RCX: 00007f211378d169 [ 413.126461][T12891] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 413.126476][T12891] RBP: 00007f211380e2a0 R08: 0000000000000007 R09: 0000000000028000 [ 413.126492][T12891] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 413.126507][T12891] R13: 0000000000000000 R14: 00007f21139a5fa0 R15: 00007fff08d45e98 [ 413.126540][T12891] [ 413.420649][ C0] vkms_vblank_simulate: vblank timer overrun [ 414.140853][T12907] Invalid ELF header magic: != ELF [ 415.092640][T12909] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1496'. [ 416.262413][T12899] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1492'. [ 418.119392][T12980] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 418.125728][T12980] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 418.176723][T12980] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 418.234295][T12980] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 418.273522][T12980] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 418.302362][T12980] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 418.426579][T12980] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 419.449653][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 419.760579][T13002] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1517'. [ 420.170371][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 420.257375][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 420.258732][ T5145] Bluetooth: hci3: command 0x0c1a tx timeout [ 420.327547][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 420.539069][T13033] tipc: Started in network mode [ 420.544019][T13033] tipc: Node identity ee00, cluster identity 4711 [ 420.625593][T13033] tipc: Node number set to 60928 [ 420.644721][T13036] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1526'. [ 421.688065][T13044] cougar: G6 mapped to space [ 422.407445][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 424.490931][ T5145] Bluetooth: hci1: command 0x0c1a tx timeout [ 424.628687][T13074] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1534'. [ 424.901688][T13100] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 424.917686][T13101] ima: Unable to open file: /suritRy/integrity?iqa/policy (-2) [ 425.062987][T13099] ima: policy update failed [ 425.165371][ T29] audit: type=1802 audit(4328326105.309:26): pid=13099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1544" res=0 errno=0 [ 427.310992][T13149] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1555'. [ 427.419530][T13149] 8021q: adding VLAN 0 to HW filter on device bond0 [ 427.728448][T13159] [U]  [ 427.731310][T13159] [U] [ 427.734044][T13159] [U] [ 427.736772][T13159] [U] [ 427.805358][T13159] [U] [ 427.808151][T13159] [U] [ 427.810892][T13159] [U] [ 427.813610][T13159] [U] [ 427.851117][T13165] [U] [ 428.526784][T13176] tipc: Started in network mode [ 428.537726][T13176] tipc: Node identity ee00, cluster identity 4711 [ 428.575425][T13176] tipc: Node number set to 60928 [ 429.653648][T13152] KVM: debugfs: duplicate directory 13152-3 [ 429.988223][T13219] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1568'. [ 430.176079][T13216] cougar: G6 mapped to space [ 430.980243][T13223] Invalid ELF header magic: != ELF [ 432.643164][T13255] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 432.782051][T13255] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 432.952221][T13255] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 432.986927][T13255] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 433.014311][T13255] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 434.647512][ T5145] Bluetooth: hci0: command 0x0c1a tx timeout [ 434.807380][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 434.977475][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 435.047392][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 435.053474][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 435.232631][T13299] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1588'. [ 440.650584][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.657021][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.872912][T13408] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1614'. [ 441.044685][T13408] program syz.5.1614 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 441.148502][T13408] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 441.399111][T13421] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 441.414237][T13421] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 441.949026][ T5839] Bluetooth: hci1: unexpected event 0x02 length: 726 > 260 [ 441.984237][T13433] FAULT_INJECTION: forcing a failure. [ 441.984237][T13433] name failslab, interval 1, probability 0, space 0, times 0 [ 442.032275][T13433] CPU: 1 UID: 7 PID: 13433 Comm: syz.5.1620 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 442.032317][T13433] Tainted: [U]=USER [ 442.032325][T13433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 442.032339][T13433] Call Trace: [ 442.032347][T13433] [ 442.032357][T13433] dump_stack_lvl+0x16c/0x1f0 [ 442.032394][T13433] should_fail_ex+0x50a/0x650 [ 442.032429][T13433] ? fs_reclaim_acquire+0xae/0x150 [ 442.032464][T13433] should_failslab+0xc2/0x120 [ 442.032488][T13433] kmem_cache_alloc_lru_noprof+0x73/0x3d0 [ 442.032524][T13433] ? do_futex+0x123/0x350 [ 442.032553][T13433] ? alloc_inode+0xbf/0x230 [ 442.032581][T13433] alloc_inode+0xbf/0x230 [ 442.032604][T13433] create_pipe_files+0x4c/0x930 [ 442.032661][T13433] do_pipe2+0xb0/0x1d0 [ 442.032693][T13433] ? __pfx_do_pipe2+0x10/0x10 [ 442.032725][T13433] ? xfd_validate_state+0x5d/0x180 [ 442.032767][T13433] __x64_sys_pipe2+0x54/0x80 [ 442.032803][T13433] do_syscall_64+0xcd/0x250 [ 442.032836][T13433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 442.032869][T13433] RIP: 0033:0x7fca7e18d169 [ 442.032888][T13433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 442.032912][T13433] RSP: 002b:00007fca7ef3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 442.032943][T13433] RAX: ffffffffffffffda RBX: 00007fca7e3a5fa0 RCX: 00007fca7e18d169 [ 442.032961][T13433] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 442.032976][T13433] RBP: 00007fca7e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 442.032991][T13433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 442.033005][T13433] R13: 0000000000000000 R14: 00007fca7e3a5fa0 R15: 00007ffce40e0a88 [ 442.033036][T13433] [ 443.306698][T13442] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1621'. [ 444.579587][ C1] sd 0:0:1:0: [sda] tag#6558 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 444.590076][ C1] sd 0:0:1:0: [sda] tag#6558 CDB: Write(6) 0a 00 00 00 0b 00 00 00 00 00 00 00 [ 445.446570][T13499] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1634'. [ 447.192596][T13535] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 447.226799][T13535] CIFS mount error: No usable UNC path provided in device string! [ 447.226799][T13535] [ 447.261440][T13535] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 447.843948][T13563] netlink: 'syz.3.1653': attribute type 11 has an invalid length. [ 448.244797][T13572] FAULT_INJECTION: forcing a failure. [ 448.244797][T13572] name failslab, interval 1, probability 0, space 0, times 0 [ 448.427122][T13572] CPU: 1 UID: 0 PID: 13572 Comm: syz.5.1655 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 448.427161][T13572] Tainted: [U]=USER [ 448.427169][T13572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 448.427184][T13572] Call Trace: [ 448.427190][T13572] [ 448.427199][T13572] dump_stack_lvl+0x16c/0x1f0 [ 448.427234][T13572] should_fail_ex+0x50a/0x650 [ 448.427270][T13572] ? fs_reclaim_acquire+0xae/0x150 [ 448.427304][T13572] ? n_hdlc_alloc_buf+0x5b/0xd0 [ 448.427328][T13572] should_failslab+0xc2/0x120 [ 448.427353][T13572] __kmalloc_noprof+0xcb/0x510 [ 448.427395][T13572] n_hdlc_alloc_buf+0x5b/0xd0 [ 448.427425][T13572] n_hdlc_tty_open+0x257/0x540 [ 448.427448][T13572] ? __pfx_n_hdlc_tty_open+0x10/0x10 [ 448.427472][T13572] tty_ldisc_open+0x9c/0x120 [ 448.427497][T13572] tty_set_ldisc+0x318/0x720 [ 448.427526][T13572] tty_ioctl+0xbd0/0x15d0 [ 448.427557][T13572] ? __pfx_tty_ioctl+0x10/0x10 [ 448.427592][T13572] ? __pfx_lock_release+0x10/0x10 [ 448.427623][T13572] ? trace_lock_acquire+0x14e/0x1f0 [ 448.427650][T13572] ? do_raw_spin_unlock+0x172/0x230 [ 448.427683][T13572] ? __fget_files+0x206/0x3a0 [ 448.427720][T13572] ? __pfx_tty_ioctl+0x10/0x10 [ 448.427749][T13572] __x64_sys_ioctl+0x190/0x200 [ 448.427781][T13572] do_syscall_64+0xcd/0x250 [ 448.427813][T13572] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.427846][T13572] RIP: 0033:0x7fca7e18d169 [ 448.427866][T13572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.427888][T13572] RSP: 002b:00007fca7ef3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 448.427911][T13572] RAX: ffffffffffffffda RBX: 00007fca7e3a5fa0 RCX: 00007fca7e18d169 [ 448.427927][T13572] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 000000000000000d [ 448.427941][T13572] RBP: 00007fca7e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 448.427956][T13572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 448.427969][T13572] R13: 0000000000000000 R14: 00007fca7e3a5fa0 R15: 00007ffce40e0a88 [ 448.428013][T13572] [ 448.643578][ C1] vkms_vblank_simulate: vblank timer overrun [ 449.238017][T13577] syz.5.1657 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 451.075550][T13598] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 452.645551][ T29] audit: type=1326 audit(4328326132.782:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13611 comm="syz.5.1664" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca7e18d169 code=0x0 [ 455.677446][T13686] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1677'. [ 456.536916][T13701] : Can't lookup blockdev [ 459.908320][T13736] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1690'. [ 460.254116][T13756] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1698'. [ 462.020384][T13781] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input14 [ 464.188568][T13807] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 465.158535][T13820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1715'. [ 465.438232][T13818] FAULT_INJECTION: forcing a failure. [ 465.438232][T13818] name failslab, interval 1, probability 0, space 0, times 0 [ 465.522225][T13818] CPU: 0 UID: 0 PID: 13818 Comm: syz.0.1714 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 465.522269][T13818] Tainted: [U]=USER [ 465.522278][T13818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 465.522292][T13818] Call Trace: [ 465.522300][T13818] [ 465.522310][T13818] dump_stack_lvl+0x16c/0x1f0 [ 465.522361][T13818] should_fail_ex+0x50a/0x650 [ 465.522398][T13818] ? fs_reclaim_acquire+0xae/0x150 [ 465.522426][T13818] ? sk_prot_alloc+0x1a8/0x2a0 [ 465.522448][T13818] should_failslab+0xc2/0x120 [ 465.522468][T13818] __kmalloc_noprof+0xcb/0x510 [ 465.522497][T13818] ? find_held_lock+0x2d/0x110 [ 465.522534][T13818] sk_prot_alloc+0x1a8/0x2a0 [ 465.522558][T13818] sk_alloc+0x36/0xb90 [ 465.522585][T13818] mISDN_sock_create+0x275/0x410 [ 465.522614][T13818] __sock_create+0x335/0x8d0 [ 465.522642][T13818] __sys_socket+0x14f/0x260 [ 465.522665][T13818] ? __pfx___sys_socket+0x10/0x10 [ 465.522689][T13818] ? rcu_is_watching+0x12/0xc0 [ 465.522717][T13818] __x64_sys_socket+0x72/0xb0 [ 465.522739][T13818] ? lockdep_hardirqs_on+0x7c/0x110 [ 465.522766][T13818] do_syscall_64+0xcd/0x250 [ 465.522793][T13818] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.522821][T13818] RIP: 0033:0x7f211378d169 [ 465.522838][T13818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.522860][T13818] RSP: 002b:00007f21145c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 465.522881][T13818] RAX: ffffffffffffffda RBX: 00007f21139a6080 RCX: 00007f211378d169 [ 465.522895][T13818] RDX: 0000000000000022 RSI: 0000000000000002 RDI: 0000000000000022 [ 465.522907][T13818] RBP: 00007f211380e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 465.522920][T13818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 465.522934][T13818] R13: 0000000000000000 R14: 00007f21139a6080 R15: 00007fff08d45e98 [ 465.522960][T13818] [ 467.105306][T13846] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8 [ 467.842105][T13858] Invalid ELF header magic: != ELF [ 473.782326][T13934] syz.0.1741(13934): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 475.896527][T13961] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1748'. [ 476.177910][T13959] zswap: compressor not available [ 477.120000][T13989] bridge0: port 4(team0) entered blocking state [ 477.170303][T13989] bridge0: port 4(team0) entered disabled state [ 477.212099][T13989] team0: entered allmulticast mode [ 477.241894][T13989] team_slave_1: entered allmulticast mode [ 477.279319][T13989] team0: entered promiscuous mode [ 477.327264][T13989] team_slave_0: entered promiscuous mode [ 477.365933][T13989] team_slave_1: entered promiscuous mode [ 477.410119][T13989] bridge0: port 4(team0) entered blocking state [ 477.416625][T13989] bridge0: port 4(team0) entered forwarding state [ 477.715487][T13973] openvswitch: netlink: nsh attr 1 has unexpected len 14 expected 8 [ 477.888529][T14001] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1755'. [ 478.871242][ T29] audit: type=1326 audit(4328326159.025:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.5.1760" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca7e18d169 code=0x0 [ 478.924094][T14032] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1760'. [ 478.933559][T14032] mac80211_hwsim hwsim26 : renamed from wlan0 (while UP) [ 480.239926][T14053] bridge0: port 3(syz_tun) entered blocking state [ 480.246809][T14053] bridge0: port 3(syz_tun) entered disabled state [ 480.281033][T14053] syz_tun: entered allmulticast mode [ 480.307964][T14053] syz_tun: entered promiscuous mode [ 480.359494][T14053] bridge0: port 3(syz_tun) entered blocking state [ 480.366261][T14053] bridge0: port 3(syz_tun) entered forwarding state [ 480.619356][T14048] ima: policy update failed [ 480.639938][ T29] audit: type=1802 audit(4328326160.796:29): pid=14048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.1765" res=0 errno=0 [ 481.852020][T14080] usbip-vudc usbip-vudc.0: gadget not bound [ 482.902777][T14108] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1776'. [ 483.686827][T14111] zswap: compressor not available [ 483.735091][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.757309][ T5839] Bluetooth: hci0: Malformed LE Event: 0x1d [ 483.788745][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.798627][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.807837][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.817362][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.826597][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.839723][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 483.849707][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 484.028426][T14126] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1777'. [ 484.855585][T14137] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 485.374356][ T3076] Process accounting resumed [ 491.073273][T14224] Invalid ELF header magic: != ELF [ 491.689922][ T5839] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 492.664432][T14269] sd 0:0:1:0: PR command failed: 1026 [ 492.693960][T14269] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 492.701140][T14269] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 495.904849][T14330] openvswitch: netlink: Unknown nsh attribute 0 [ 497.825840][T14381] __nla_validate_parse: 26 callbacks suppressed [ 497.825864][T14381] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1844'. [ 500.861633][T14429] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 500.950357][T14429] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 502.529331][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 502.568095][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 502.600048][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 502.654556][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 502.713654][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 502.768066][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 502.800039][T14455] netlink: 'syz.4.1856': attribute type 11 has an invalid length. [ 503.139754][T14466] device-mapper: ioctl: Unable to rename non-existent device, to [ 503.604567][T14443] delete_channel: no stack [ 503.877790][T14480] program syz.5.1868 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 503.983061][T14484] cougar: G6 mapped to space [ 504.133692][T14479] ima: policy update failed [ 504.181312][ T29] audit: type=1802 audit(4328326184.348:30): pid=14479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.1868" res=0 errno=0 [ 505.138217][T14499] netlink: 'syz.0.1873': attribute type 11 has an invalid length. [ 505.160327][T14499] netlink: 'syz.0.1873': attribute type 22 has an invalid length. [ 505.182486][T14499] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1873'. [ 505.238218][T14496] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 505.774103][T14514] FAULT_INJECTION: forcing a failure. [ 505.774103][T14514] name fail_futex, interval 1, probability 0, space 0, times 1 [ 505.814135][T14514] CPU: 0 UID: 0 PID: 14514 Comm: syz.5.1878 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 505.814175][T14514] Tainted: [U]=USER [ 505.814183][T14514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 505.814203][T14514] Call Trace: [ 505.814212][T14514] [ 505.814221][T14514] dump_stack_lvl+0x16c/0x1f0 [ 505.814259][T14514] should_fail_ex+0x50a/0x650 [ 505.814300][T14514] get_futex_key+0x4a3/0x1000 [ 505.814332][T14514] ? __pfx_get_futex_key+0x10/0x10 [ 505.814360][T14514] ? seq_read_iter+0x6a7/0x12b0 [ 505.814389][T14514] ? __pfx_lock_release+0x10/0x10 [ 505.814419][T14514] ? lock_acquire+0x2f/0xb0 [ 505.814448][T14514] ? __might_fault+0xe3/0x190 [ 505.814476][T14514] futex_wait_setup+0x78/0x290 [ 505.814516][T14514] __futex_wait+0x267/0x3c0 [ 505.814550][T14514] ? __pfx___futex_wait+0x10/0x10 [ 505.814595][T14514] ? __pfx_futex_wake_mark+0x10/0x10 [ 505.814633][T14514] ? seq_read_iter+0x69/0x12b0 [ 505.814670][T14514] futex_wait+0xe9/0x380 [ 505.814703][T14514] ? __pfx_futex_wait+0x10/0x10 [ 505.814749][T14514] ? vfs_read+0x239/0xbf0 [ 505.814785][T14514] do_futex+0x22b/0x350 [ 505.814813][T14514] ? __pfx_do_futex+0x10/0x10 [ 505.814850][T14514] __x64_sys_futex+0x1e1/0x4c0 [ 505.814881][T14514] ? fput+0x67/0x440 [ 505.814904][T14514] ? __pfx___x64_sys_futex+0x10/0x10 [ 505.814931][T14514] ? ksys_read+0x1ba/0x250 [ 505.814961][T14514] ? __pfx_ksys_read+0x10/0x10 [ 505.815000][T14514] do_syscall_64+0xcd/0x250 [ 505.815032][T14514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.815064][T14514] RIP: 0033:0x7fca7e18d169 [ 505.815082][T14514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.815105][T14514] RSP: 002b:00007fca7ef3e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 505.815127][T14514] RAX: ffffffffffffffda RBX: 00007fca7e3a5fa8 RCX: 00007fca7e18d169 [ 505.815144][T14514] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fca7e3a5fa8 [ 505.815158][T14514] RBP: 00007fca7e3a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 505.815173][T14514] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fca7e3a5fac [ 505.815187][T14514] R13: 0000000000000000 R14: 00007ffce40e09a0 R15: 00007ffce40e0a88 [ 505.815217][T14514] [ 506.563997][T14506] FAULT_INJECTION: forcing a failure. [ 506.563997][T14506] name failslab, interval 1, probability 0, space 0, times 0 [ 506.576881][T14506] CPU: 0 UID: 0 PID: 14506 Comm: syz.4.1876 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 506.576916][T14506] Tainted: [U]=USER [ 506.576923][T14506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 506.576937][T14506] Call Trace: [ 506.576946][T14506] [ 506.576958][T14506] dump_stack_lvl+0x16c/0x1f0 [ 506.576996][T14506] should_fail_ex+0x50a/0x650 [ 506.577031][T14506] ? fs_reclaim_acquire+0xae/0x150 [ 506.577065][T14506] ? lsm_blob_alloc+0x68/0x90 [ 506.577097][T14506] should_failslab+0xc2/0x120 [ 506.577121][T14506] __kmalloc_noprof+0xcb/0x510 [ 506.577164][T14506] lsm_blob_alloc+0x68/0x90 [ 506.577198][T14506] security_sk_alloc+0x30/0x270 [ 506.577225][T14506] sk_prot_alloc+0x1c7/0x2a0 [ 506.577252][T14506] sk_alloc+0x36/0xb90 [ 506.577294][T14506] tap_open+0x2e8/0x1150 [ 506.577323][T14506] ? __pfx_tap_open+0x10/0x10 [ 506.577347][T14506] chrdev_open+0x237/0x6a0 [ 506.577383][T14506] ? __pfx_apparmor_file_open+0x10/0x10 [ 506.577415][T14506] ? __pfx_chrdev_open+0x10/0x10 [ 506.577451][T14506] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 506.577488][T14506] do_dentry_open+0x735/0x1c40 [ 506.577520][T14506] ? __pfx_chrdev_open+0x10/0x10 [ 506.577555][T14506] ? inode_permission+0xdd/0x5f0 [ 506.577583][T14506] vfs_open+0x82/0x3f0 [ 506.577606][T14506] ? may_open+0x1f2/0x400 [ 506.577635][T14506] path_openat+0x1e88/0x2d80 [ 506.577680][T14506] ? __pfx_path_openat+0x10/0x10 [ 506.577712][T14506] ? __pfx___lock_acquire+0x10/0x10 [ 506.577742][T14506] ? lock_acquire.part.0+0x11b/0x380 [ 506.577773][T14506] ? find_held_lock+0x2d/0x110 [ 506.577802][T14506] do_filp_open+0x20c/0x470 [ 506.577836][T14506] ? __pfx_do_filp_open+0x10/0x10 [ 506.577866][T14506] ? find_held_lock+0x2d/0x110 [ 506.577915][T14506] ? alloc_fd+0x41f/0x760 [ 506.577955][T14506] do_sys_openat2+0x17a/0x1e0 [ 506.577980][T14506] ? __pfx_do_sys_openat2+0x10/0x10 [ 506.578019][T14506] __x64_sys_openat+0x175/0x210 [ 506.578044][T14506] ? __pfx___x64_sys_openat+0x10/0x10 [ 506.578084][T14506] do_syscall_64+0xcd/0x250 [ 506.578116][T14506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.578147][T14506] RIP: 0033:0x7fea3058d169 [ 506.578167][T14506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.578189][T14506] RSP: 002b:00007fea31388038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 506.578211][T14506] RAX: ffffffffffffffda RBX: 00007fea307a5fa0 RCX: 00007fea3058d169 [ 506.578227][T14506] RDX: 0000000000000080 RSI: 0000400000000040 RDI: ffffffffffffff9c [ 506.578242][T14506] RBP: 00007fea3060e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 506.578257][T14506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 506.578277][T14506] R13: 0000000000000000 R14: 00007fea307a5fa0 R15: 00007ffdf4a8a4e8 [ 506.578309][T14506] [ 507.335304][T14531] FAULT_INJECTION: forcing a failure. [ 507.335304][T14531] name failslab, interval 1, probability 0, space 0, times 0 [ 507.378891][T14531] CPU: 0 UID: 0 PID: 14531 Comm: syz.5.1880 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 507.378933][T14531] Tainted: [U]=USER [ 507.378941][T14531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 507.378955][T14531] Call Trace: [ 507.378963][T14531] [ 507.378973][T14531] dump_stack_lvl+0x16c/0x1f0 [ 507.379012][T14531] should_fail_ex+0x50a/0x650 [ 507.379050][T14531] ? fs_reclaim_acquire+0xae/0x150 [ 507.379085][T14531] ? tomoyo_encode2+0x100/0x3e0 [ 507.379117][T14531] should_failslab+0xc2/0x120 [ 507.379142][T14531] __kmalloc_noprof+0xcb/0x510 [ 507.379193][T14531] tomoyo_encode2+0x100/0x3e0 [ 507.379232][T14531] tomoyo_encode+0x29/0x50 [ 507.379263][T14531] tomoyo_path_perm+0x3a7/0x460 [ 507.379292][T14531] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 507.379321][T14531] ? lock_acquire.part.0+0x11b/0x380 [ 507.379367][T14531] ? do_raw_spin_lock+0x12d/0x2c0 [ 507.379412][T14531] ? simple_lookup+0x12c/0x180 [ 507.379441][T14531] ? get_current_fs_domain+0x184/0x1f0 [ 507.379472][T14531] tomoyo_path_symlink+0x98/0xe0 [ 507.379506][T14531] ? __pfx_tomoyo_path_symlink+0x10/0x10 [ 507.379551][T14531] security_path_symlink+0x152/0x2e0 [ 507.379581][T14531] do_symlinkat+0x10e/0x310 [ 507.379619][T14531] ? __pfx_do_symlinkat+0x10/0x10 [ 507.379653][T14531] ? getname_flags.part.0+0x1c5/0x550 [ 507.379688][T14531] __x64_sys_symlink+0x75/0x90 [ 507.379724][T14531] do_syscall_64+0xcd/0x250 [ 507.379757][T14531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.379789][T14531] RIP: 0033:0x7fca7e18d169 [ 507.379810][T14531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.379832][T14531] RSP: 002b:00007fca7ef3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 507.379856][T14531] RAX: ffffffffffffffda RBX: 00007fca7e3a5fa0 RCX: 00007fca7e18d169 [ 507.379873][T14531] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 0000400000000680 [ 507.379888][T14531] RBP: 00007fca7e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 507.379903][T14531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.379918][T14531] R13: 0000000000000000 R14: 00007fca7e3a5fa0 R15: 00007ffce40e0a88 [ 507.379951][T14531] [ 511.509843][T14600] netlink: 'syz.3.1895': attribute type 1 has an invalid length. [ 511.554934][T14589] FAULT_INJECTION: forcing a failure. [ 511.554934][T14589] name failslab, interval 1, probability 0, space 0, times 0 [ 511.594457][T14589] CPU: 0 UID: 0 PID: 14589 Comm: syz.4.1893 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 511.594499][T14589] Tainted: [U]=USER [ 511.594507][T14589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 511.594522][T14589] Call Trace: [ 511.594530][T14589] [ 511.594540][T14589] dump_stack_lvl+0x16c/0x1f0 [ 511.594578][T14589] should_fail_ex+0x50a/0x650 [ 511.594616][T14589] ? fs_reclaim_acquire+0xae/0x150 [ 511.594650][T14589] ? tomoyo_encode2+0x100/0x3e0 [ 511.594680][T14589] should_failslab+0xc2/0x120 [ 511.594715][T14589] __kmalloc_noprof+0xcb/0x510 [ 511.594751][T14589] ? d_absolute_path+0x137/0x1b0 [ 511.594783][T14589] tomoyo_encode2+0x100/0x3e0 [ 511.594819][T14589] tomoyo_encode+0x29/0x50 [ 511.594849][T14589] tomoyo_realpath_from_path+0x19d/0x720 [ 511.594892][T14589] tomoyo_path_perm+0x276/0x460 [ 511.594918][T14589] ? tomoyo_path_perm+0x262/0x460 [ 511.594948][T14589] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 511.594977][T14589] ? lock_acquire.part.0+0x11b/0x380 [ 511.595023][T14589] ? do_raw_spin_lock+0x12d/0x2c0 [ 511.595077][T14589] ? simple_lookup+0x12c/0x180 [ 511.595107][T14589] ? get_current_fs_domain+0x184/0x1f0 [ 511.595142][T14589] tomoyo_path_symlink+0x98/0xe0 [ 511.595179][T14589] ? __pfx_tomoyo_path_symlink+0x10/0x10 [ 511.595227][T14589] security_path_symlink+0x152/0x2e0 [ 511.595258][T14589] do_symlinkat+0x10e/0x310 [ 511.595296][T14589] ? __pfx_do_symlinkat+0x10/0x10 [ 511.595333][T14589] ? getname_flags.part.0+0x1c5/0x550 [ 511.595369][T14589] __x64_sys_symlink+0x75/0x90 [ 511.595406][T14589] do_syscall_64+0xcd/0x250 [ 511.595440][T14589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 511.595473][T14589] RIP: 0033:0x7fea3058d169 [ 511.595492][T14589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 511.595516][T14589] RSP: 002b:00007fea31388038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 511.595540][T14589] RAX: ffffffffffffffda RBX: 00007fea307a5fa0 RCX: 00007fea3058d169 [ 511.595556][T14589] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 0000400000000680 [ 511.595572][T14589] RBP: 00007fea3060e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 511.595587][T14589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 511.595601][T14589] R13: 0000000000000000 R14: 00007fea307a5fa0 R15: 00007ffdf4a8a4e8 [ 511.595636][T14589] [ 511.596532][T14589] ERROR: Out of memory at tomoyo_realpath_from_path. [ 514.567862][T14649] queue_state_write: unsupported operation '' [ 514.622893][T14649] queue_state_write: use 'run', 'start' or 'kick' [ 515.176819][T14674] .SR: entered promiscuous mode [ 515.218470][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.283828][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.353864][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.408753][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.417418][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.652646][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.666127][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.692744][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.705672][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.744269][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.775673][T14674] openvswitch: .SR: Dropping previously announced user features [ 515.970507][T14674] openvswitch: .SR: Dropping previously announced user features [ 518.281770][T14734] FAULT_INJECTION: forcing a failure. [ 518.281770][T14734] name failslab, interval 1, probability 0, space 0, times 0 [ 518.303843][T14734] CPU: 1 UID: 0 PID: 14734 Comm: syz.4.1925 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 518.303884][T14734] Tainted: [U]=USER [ 518.303892][T14734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 518.303907][T14734] Call Trace: [ 518.303914][T14734] [ 518.303924][T14734] dump_stack_lvl+0x16c/0x1f0 [ 518.303962][T14734] should_fail_ex+0x50a/0x650 [ 518.303999][T14734] ? fs_reclaim_acquire+0xae/0x150 [ 518.304034][T14734] should_failslab+0xc2/0x120 [ 518.304057][T14734] kmem_cache_alloc_node_noprof+0x72/0x3c0 [ 518.304094][T14734] ? __alloc_skb+0x2b1/0x380 [ 518.304129][T14734] __alloc_skb+0x2b1/0x380 [ 518.304162][T14734] ? __pfx___alloc_skb+0x10/0x10 [ 518.304198][T14734] ? __pfx___register_sysctl_table+0x10/0x10 [ 518.304235][T14734] ? is_module_address+0x2a/0x50 [ 518.304272][T14734] inet_netconf_notify_devconf+0x8b/0x1f0 [ 518.304308][T14734] __devinet_sysctl_register+0x223/0x360 [ 518.304344][T14734] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 518.304373][T14734] ? trace_kmalloc+0x2d/0xd0 [ 518.304402][T14734] ? devinet_init_net+0xeb/0x900 [ 518.304443][T14734] ? __asan_memcpy+0x3c/0x60 [ 518.304476][T14734] ? __pfx_devinet_init_net+0x10/0x10 [ 518.304502][T14734] devinet_init_net+0x347/0x900 [ 518.304530][T14734] ? __pfx_devinet_init_net+0x10/0x10 [ 518.304556][T14734] ops_init+0x1df/0x5f0 [ 518.304592][T14734] setup_net+0x21f/0x860 [ 518.304627][T14734] ? __pfx_setup_net+0x10/0x10 [ 518.304659][T14734] ? down_read_killable+0xcc/0x380 [ 518.304692][T14734] ? __pfx_down_read_killable+0x10/0x10 [ 518.304722][T14734] ? __raw_spin_lock_init+0x3a/0x110 [ 518.304760][T14734] ? debug_mutex_init+0x37/0x70 [ 518.304789][T14734] copy_net_ns+0x2a6/0x5f0 [ 518.304816][T14734] create_new_namespaces+0x3ea/0xad0 [ 518.304861][T14734] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 518.304900][T14734] ksys_unshare+0x45d/0xa40 [ 518.304926][T14734] ? __pfx_ksys_unshare+0x10/0x10 [ 518.304948][T14734] ? xfd_validate_state+0x5d/0x180 [ 518.304992][T14734] __x64_sys_unshare+0x31/0x40 [ 518.305016][T14734] do_syscall_64+0xcd/0x250 [ 518.305049][T14734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.305082][T14734] RIP: 0033:0x7fea3058d169 [ 518.305103][T14734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 518.305125][T14734] RSP: 002b:00007fea31388038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 518.305149][T14734] RAX: ffffffffffffffda RBX: 00007fea307a5fa0 RCX: 00007fea3058d169 [ 518.305166][T14734] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 518.305179][T14734] RBP: 00007fea3060e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 518.305194][T14734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.305208][T14734] R13: 0000000000000000 R14: 00007fea307a5fa0 R15: 00007ffdf4a8a4e8 [ 518.305240][T14734] [ 519.044330][T14732] FAULT_INJECTION: forcing a failure. [ 519.044330][T14732] name failslab, interval 1, probability 0, space 0, times 0 [ 519.057260][T14732] CPU: 1 UID: 0 PID: 14732 Comm: syz.5.1922 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 519.057302][T14732] Tainted: [U]=USER [ 519.057309][T14732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 519.057322][T14732] Call Trace: [ 519.057329][T14732] [ 519.057339][T14732] dump_stack_lvl+0x16c/0x1f0 [ 519.057373][T14732] should_fail_ex+0x50a/0x650 [ 519.057405][T14732] ? fs_reclaim_acquire+0xae/0x150 [ 519.057437][T14732] ? lsm_blob_alloc+0x68/0x90 [ 519.057470][T14732] should_failslab+0xc2/0x120 [ 519.057494][T14732] __kmalloc_noprof+0xcb/0x510 [ 519.057535][T14732] lsm_blob_alloc+0x68/0x90 [ 519.057572][T14732] security_sk_alloc+0x30/0x270 [ 519.057596][T14732] sk_prot_alloc+0x1c7/0x2a0 [ 519.057623][T14732] sk_alloc+0x36/0xb90 [ 519.057655][T14732] tap_open+0x2e8/0x1150 [ 519.057683][T14732] ? __pfx_tap_open+0x10/0x10 [ 519.057706][T14732] chrdev_open+0x237/0x6a0 [ 519.057738][T14732] ? __pfx_apparmor_file_open+0x10/0x10 [ 519.057766][T14732] ? __pfx_chrdev_open+0x10/0x10 [ 519.057802][T14732] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 519.057838][T14732] do_dentry_open+0x735/0x1c40 [ 519.057870][T14732] ? __pfx_chrdev_open+0x10/0x10 [ 519.057904][T14732] ? inode_permission+0xdd/0x5f0 [ 519.057933][T14732] vfs_open+0x82/0x3f0 [ 519.057954][T14732] ? may_open+0x1f2/0x400 [ 519.057982][T14732] path_openat+0x1e88/0x2d80 [ 519.058026][T14732] ? __pfx_path_openat+0x10/0x10 [ 519.058054][T14732] ? __pfx___lock_acquire+0x10/0x10 [ 519.058086][T14732] ? lock_acquire.part.0+0x11b/0x380 [ 519.058119][T14732] ? find_held_lock+0x2d/0x110 [ 519.058149][T14732] do_filp_open+0x20c/0x470 [ 519.058183][T14732] ? __pfx_do_filp_open+0x10/0x10 [ 519.058214][T14732] ? find_held_lock+0x2d/0x110 [ 519.058260][T14732] ? alloc_fd+0x41f/0x760 [ 519.058310][T14732] do_sys_openat2+0x17a/0x1e0 [ 519.058336][T14732] ? __pfx_do_sys_openat2+0x10/0x10 [ 519.058375][T14732] __x64_sys_openat+0x175/0x210 [ 519.058401][T14732] ? __pfx___x64_sys_openat+0x10/0x10 [ 519.058438][T14732] do_syscall_64+0xcd/0x250 [ 519.058471][T14732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.058505][T14732] RIP: 0033:0x7fca7e18d169 [ 519.058524][T14732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 519.058546][T14732] RSP: 002b:00007fca7ef3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 519.058570][T14732] RAX: ffffffffffffffda RBX: 00007fca7e3a5fa0 RCX: 00007fca7e18d169 [ 519.058586][T14732] RDX: 0000000000000080 RSI: 0000400000000040 RDI: ffffffffffffff9c [ 519.058602][T14732] RBP: 00007fca7e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 519.058617][T14732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 519.058631][T14732] R13: 0000000000000000 R14: 00007fca7e3a5fa0 R15: 00007ffce40e0a88 [ 519.058662][T14732] [ 522.649778][T14790] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1938'. [ 524.143528][T14810] ptrace attach of "./syz-executor exec"[6760] was attempted by "./syz-executor exec"[14810] [ 524.538893][T14824] capability: warning: `syz.5.1944' uses deprecated v2 capabilities in a way that may be insecure [ 524.805536][ T5839] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 525.882805][ T5839] Bluetooth: hci3: unexpected event 0x35 length: 13 > 6 [ 528.779081][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 529.005992][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 529.113391][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 529.900985][T14940] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(1986356271.1667588911.14130), cmd(6) [ 530.386842][T14956] FAULT_INJECTION: forcing a failure. [ 530.386842][T14956] name failslab, interval 1, probability 0, space 0, times 0 [ 530.435082][T14956] CPU: 0 UID: 0 PID: 14956 Comm: syz.5.1977 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 530.435121][T14956] Tainted: [U]=USER [ 530.435129][T14956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 530.435144][T14956] Call Trace: [ 530.435151][T14956] [ 530.435161][T14956] dump_stack_lvl+0x16c/0x1f0 [ 530.435196][T14956] should_fail_ex+0x50a/0x650 [ 530.435232][T14956] ? fs_reclaim_acquire+0xae/0x150 [ 530.435265][T14956] should_failslab+0xc2/0x120 [ 530.435289][T14956] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 530.435325][T14956] ? vma_merge_new_range+0x40a/0xbb0 [ 530.435357][T14956] ? vm_area_alloc+0x1f/0x230 [ 530.435395][T14956] vm_area_alloc+0x1f/0x230 [ 530.435427][T14956] __mmap_region+0x108d/0x2760 [ 530.435453][T14956] ? __pfx___mmap_region+0x10/0x10 [ 530.435484][T14956] ? hlock_class+0x4e/0x130 [ 530.435507][T14956] ? mark_lock+0xb5/0xc60 [ 530.435547][T14956] ? schedule+0x298/0x350 [ 530.435612][T14956] ? cap_capable+0xb3/0x250 [ 530.435641][T14956] mmap_region+0x1ab/0x3f0 [ 530.435669][T14956] do_mmap+0xd8d/0x11b0 [ 530.435704][T14956] ? __pfx_do_mmap+0x10/0x10 [ 530.435734][T14956] ? __pfx_down_write_killable+0x10/0x10 [ 530.435771][T14956] vm_mmap_pgoff+0x203/0x3a0 [ 530.435809][T14956] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 530.435844][T14956] ? __x64_sys_futex+0x1e1/0x4c0 [ 530.435871][T14956] ? __x64_sys_futex+0x1ea/0x4c0 [ 530.435902][T14956] ksys_mmap_pgoff+0x7d/0x5c0 [ 530.435931][T14956] ? rcu_is_watching+0x12/0xc0 [ 530.435960][T14956] __x64_sys_mmap+0x125/0x190 [ 530.436007][T14956] do_syscall_64+0xcd/0x250 [ 530.436041][T14956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.436074][T14956] RIP: 0033:0x7fca7e18d169 [ 530.436093][T14956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 530.436115][T14956] RSP: 002b:00007fca7ef3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 530.436137][T14956] RAX: ffffffffffffffda RBX: 00007fca7e3a5fa0 RCX: 00007fca7e18d169 [ 530.436154][T14956] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 530.436169][T14956] RBP: 00007fca7e20e2a0 R08: 0000000000000007 R09: 0000000000028000 [ 530.436183][T14956] R10: 0010000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 530.436198][T14956] R13: 0000000000000000 R14: 00007fca7e3a5fa0 R15: 00007ffce40e0a88 [ 530.436229][T14956] [ 531.749725][T14973] FAULT_INJECTION: forcing a failure. [ 531.749725][T14973] name failslab, interval 1, probability 0, space 0, times 0 [ 531.815415][T14973] CPU: 0 UID: 0 PID: 14973 Comm: syz.4.1979 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 531.815457][T14973] Tainted: [U]=USER [ 531.815465][T14973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 531.815479][T14973] Call Trace: [ 531.815486][T14973] [ 531.815495][T14973] dump_stack_lvl+0x16c/0x1f0 [ 531.815531][T14973] should_fail_ex+0x50a/0x650 [ 531.815567][T14973] ? fs_reclaim_acquire+0xae/0x150 [ 531.815599][T14973] should_failslab+0xc2/0x120 [ 531.815623][T14973] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 531.815658][T14973] ? lock_acquire+0x2f/0xb0 [ 531.815689][T14973] ? seq_open+0x55/0x170 [ 531.815716][T14973] seq_open+0x55/0x170 [ 531.815739][T14973] do_dentry_open+0x735/0x1c40 [ 531.815802][T14973] ? __pfx_children_seq_open+0x10/0x10 [ 531.815838][T14973] vfs_open+0x82/0x3f0 [ 531.815859][T14973] ? may_open+0x1f2/0x400 [ 531.815885][T14973] path_openat+0x1e88/0x2d80 [ 531.815927][T14973] ? __pfx_path_openat+0x10/0x10 [ 531.815961][T14973] ? __pfx___lock_acquire+0x10/0x10 [ 531.815991][T14973] ? lock_acquire.part.0+0x11b/0x380 [ 531.816021][T14973] ? find_held_lock+0x2d/0x110 [ 531.816051][T14973] do_filp_open+0x20c/0x470 [ 531.816085][T14973] ? __pfx_do_filp_open+0x10/0x10 [ 531.816116][T14973] ? find_held_lock+0x2d/0x110 [ 531.816152][T14973] ? __pfx_kfree_link+0x10/0x10 [ 531.816188][T14973] ? alloc_fd+0x41f/0x760 [ 531.816227][T14973] do_sys_openat2+0x17a/0x1e0 [ 531.816252][T14973] ? __pfx_do_sys_openat2+0x10/0x10 [ 531.816280][T14973] ? __pfx___might_resched+0x10/0x10 [ 531.816323][T14973] __x64_sys_openat+0x175/0x210 [ 531.816349][T14973] ? __pfx___x64_sys_openat+0x10/0x10 [ 531.816387][T14973] do_syscall_64+0xcd/0x250 [ 531.816420][T14973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.816456][T14973] RIP: 0033:0x7fea3058d169 [ 531.816478][T14973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.816501][T14973] RSP: 002b:00007fea31388038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 531.816524][T14973] RAX: ffffffffffffffda RBX: 00007fea307a5fa0 RCX: 00007fea3058d169 [ 531.816540][T14973] RDX: 0000000000041180 RSI: 0000400000000080 RDI: ffffffffffffff9c [ 531.816556][T14973] RBP: 00007fea3060e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 531.816572][T14973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 531.816586][T14973] R13: 0000000000000000 R14: 00007fea307a5fa0 R15: 00007ffdf4a8a4e8 [ 531.816616][T14973] [ 534.250225][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 534.393143][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 534.912727][ T29] audit: type=1800 audit(4328326215.095:31): pid=15013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1987" name="discovery_nqn" dev="configfs" ino=52716 res=0 errno=0 [ 535.899884][T15039] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1998'. [ 536.639916][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 536.701863][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 536.754294][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 536.822516][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 536.923045][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 536.987114][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 536.989723][T15061] Invalid ELF header magic: != ELF [ 537.048078][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 537.122076][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 537.141023][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 537.217745][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 537.275139][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 537.315700][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 537.381946][T15052] netlink: 'syz.3.1996': attribute type 4 has an invalid length. [ 537.389824][T15052] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1996'. [ 537.427033][T15074] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2002'. [ 537.677426][T15068] could not allocate digest TFM handle [ 537.818808][T15091] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2004'. [ 537.944975][T15071] could not allocate digest TFM handle [ 538.818215][T15114] netlink: 'syz.3.2009': attribute type 16 has an invalid length. [ 538.961229][T15119] netlink: 'syz.4.2010': attribute type 1 has an invalid length. [ 538.988080][T15119] netlink: 'syz.4.2010': attribute type 1 has an invalid length. [ 540.140247][T15116] lo: entered allmulticast mode [ 540.387340][T15111] lo: left allmulticast mode [ 540.891524][T15168] mac80211_hwsim hwsim7 : renamed from wlan0 (while UP) [ 542.969037][T15211] Setting dangerous option i915.mitigations - tainting kernel [ 543.179461][T15204] delete_channel: no stack [ 544.474484][ T29] audit: type=1800 audit(4328326224.670:32): pid=15240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2032" name="dbroot" dev="configfs" ino=53166 res=0 errno=0 [ 544.862858][T15245] validate_nla: 31 callbacks suppressed [ 544.862880][T15245] netlink: 'syz.3.2035': attribute type 1 has an invalid length. [ 545.013585][T15248] tipc: Started in network mode [ 545.042911][T15248] tipc: Node identity ee00, cluster identity 4711 [ 545.099817][T15248] tipc: Node number set to 60928 [ 546.639128][ T29] audit: type=1800 audit(4328326226.841:33): pid=15255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2038" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0 [ 550.568626][T15373] __nla_validate_parse: 5 callbacks suppressed [ 550.568649][T15373] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2065'. [ 550.765606][T15386] netlink: 266 bytes leftover after parsing attributes in process `syz.0.2070'. [ 550.814004][T15386] IPv6: NLM_F_CREATE should be specified when creating new route [ 552.810366][T15449] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 552.873805][T15449] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 553.109479][T15465] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2085'. [ 554.166146][ T5839] Bluetooth: hci1: unexpected event 0x14 length: 18 > 6 [ 554.906082][ T5839] Bluetooth: hci4: unexpected subevent 0x04 length: 122 > 11 [ 556.744949][T15538] netlink: 'syz.0.2099': attribute type 11 has an invalid length. [ 557.145151][T15544] netlink: 'syz.0.2101': attribute type 2 has an invalid length. [ 558.155983][T15565] Invalid ELF header magic: != ELF [ 559.337415][T15582] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2111'. [ 559.478740][T15589] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2111'. [ 565.031263][T15687] netlink: 12544 bytes leftover after parsing attributes in process `syz.3.2131'. [ 565.226001][T15684] HfR: entered promiscuous mode [ 566.114819][T15698] could not allocate digest TFM handle [ 568.638326][T15766] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2145'. [ 569.938353][T15800] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2151'. [ 569.986416][T15800] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2151'. [ 570.344353][T15805] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2152'. [ 572.772981][T15847] nfs: Unknown parameter '' [ 573.084181][T15864] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2164'. [ 575.870259][T15927] Invalid ELF header magic: != ELF [ 576.021573][T15888] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 576.089229][T15888] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 576.119388][T15888] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 576.224961][T15888] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 576.262499][T15888] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 577.225037][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 578.029322][T15974] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2188'. [ 578.101570][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 578.182746][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 578.261404][ T5839] Bluetooth: hci4: command 0x0c1a tx timeout [ 578.341819][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 580.098346][T16026] ima: policy update failed [ 580.121639][ T29] audit: type=1802 audit(4294967299.480:34): pid=16026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.2197" res=0 errno=0 [ 580.492382][T16038] Invalid ELF header magic: != ELF [ 581.822744][T16066] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 582.343859][T16071] mkiss: ax0: crc mode is auto. [ 589.104844][T16193] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 589.291552][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 589.299960][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 590.489025][ T29] audit: type=1800 audit(4294967309.840:35): pid=16212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2234" name="members" dev="configfs" ino=57558 res=0 errno=0 [ 590.543576][T16209] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2234'. [ 590.616422][T16210] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2234'. [ 590.721568][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 591.782593][T16217] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2237'. [ 592.100281][ T5145] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 592.112750][ T5145] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 592.128437][ T5145] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 592.152767][ T5145] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 592.168075][ T5145] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 592.178002][ T5145] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 592.738238][T11315] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 593.182927][T11315] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 593.654960][T11315] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 593.848289][T11315] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 593.905755][T16225] chnl_net:caif_netlink_parms(): no params data found [ 593.913954][T16247] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 594.126445][T16252] random: crng reseeded on system resumption [ 594.271395][ T5839] Bluetooth: hci5: command tx timeout [ 594.507084][T16225] bridge0: port 1(bridge_slave_0) entered blocking state [ 594.529543][T16225] bridge0: port 1(bridge_slave_0) entered disabled state [ 594.537315][T16225] bridge_slave_0: entered allmulticast mode [ 594.552697][T16225] bridge_slave_0: entered promiscuous mode [ 594.574170][T16225] bridge0: port 2(bridge_slave_1) entered blocking state [ 594.595002][T16225] bridge0: port 2(bridge_slave_1) entered disabled state [ 594.610273][T16225] bridge_slave_1: entered allmulticast mode [ 594.675995][T16225] bridge_slave_1: entered promiscuous mode [ 594.873843][T16225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 594.909303][T16225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 595.176033][T11315] bridge_slave_1: left allmulticast mode [ 595.201577][T11315] bridge_slave_1: left promiscuous mode [ 595.221706][T11315] bridge0: port 2(bridge_slave_1) entered disabled state [ 595.312112][T11315] bridge_slave_0: left allmulticast mode [ 595.331894][T11315] bridge_slave_0: left promiscuous mode [ 595.348030][T11315] bridge0: port 1(bridge_slave_0) entered disabled state [ 596.351547][ T5839] Bluetooth: hci5: command tx timeout [ 596.735869][T16294] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2250'. [ 596.882243][T16225] team0: Port device team_slave_0 added [ 596.894517][T16225] team0: Port device team_slave_1 added [ 597.019317][T11315] .SR: left promiscuous mode [ 597.082207][T16225] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 597.093899][T16225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 597.156390][T16225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 597.198691][T11315] HfR: left promiscuous mode [ 597.243835][T16225] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 597.251168][T16225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 597.279167][T16225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 597.314636][T11315] tipc: Left network mode [ 597.455257][T16300] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 597.481211][T16301] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 597.611149][T16225] hsr_slave_0: entered promiscuous mode [ 597.632983][T16225] hsr_slave_1: entered promiscuous mode [ 597.651160][T16225] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 597.665873][T16225] Cannot create hsr debugfs directory [ 597.923044][T16306] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 597.974403][T16308] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 598.293044][T16311] FAULT_INJECTION: forcing a failure. [ 598.293044][T16311] name failslab, interval 1, probability 0, space 0, times 0 [ 598.341766][T16311] CPU: 0 UID: 0 PID: 16311 Comm: syz.5.2253 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 598.341805][T16311] Tainted: [U]=USER [ 598.341813][T16311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 598.341825][T16311] Call Trace: [ 598.341832][T16311] [ 598.341841][T16311] dump_stack_lvl+0x16c/0x1f0 [ 598.341877][T16311] should_fail_ex+0x50a/0x650 [ 598.341910][T16311] ? fs_reclaim_acquire+0xae/0x150 [ 598.341942][T16311] ? lsm_blob_alloc+0x68/0x90 [ 598.341977][T16311] should_failslab+0xc2/0x120 [ 598.342002][T16311] __kmalloc_noprof+0xcb/0x510 [ 598.342044][T16311] lsm_blob_alloc+0x68/0x90 [ 598.342078][T16311] security_sk_alloc+0x30/0x270 [ 598.342107][T16311] sk_prot_alloc+0xfb/0x2a0 [ 598.342135][T16311] sk_alloc+0x36/0xb90 [ 598.342168][T16311] inet6_create+0x380/0x1320 [ 598.342196][T16311] ? inet6_create+0x5d/0x1320 [ 598.342225][T16311] __sock_create+0x335/0x8d0 [ 598.342259][T16311] mptcp_subflow_create_socket+0xf6/0x10a0 [ 598.342290][T16311] ? __pfx_mark_lock+0x10/0x10 [ 598.342323][T16311] ? lock_acquire.part.0+0x11b/0x380 [ 598.342358][T16311] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 598.342391][T16311] ? find_held_lock+0x2d/0x110 [ 598.342425][T16311] __mptcp_nmpc_sk+0x184/0x7d0 [ 598.342460][T16311] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 598.342497][T16311] ? __local_bh_enable_ip+0xa4/0x120 [ 598.342546][T16311] mptcp_listen+0x135/0x4a0 [ 598.342571][T16311] ? __pfx_mptcp_listen+0x10/0x10 [ 598.342604][T16311] __sys_listen_socket+0x114/0x160 [ 598.342635][T16311] __sys_listen+0xa3/0x110 [ 598.342664][T16311] __x64_sys_listen+0x53/0x80 [ 598.342692][T16311] do_syscall_64+0xcd/0x250 [ 598.342722][T16311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.342754][T16311] RIP: 0033:0x7fca7e18d169 [ 598.342775][T16311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 598.342798][T16311] RSP: 002b:00007fca7ef1d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000032 [ 598.342822][T16311] RAX: ffffffffffffffda RBX: 00007fca7e3a6080 RCX: 00007fca7e18d169 [ 598.342839][T16311] RDX: 0000000000000000 RSI: 0000000000000061 RDI: 000000000000000a [ 598.342854][T16311] RBP: 00007fca7e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 598.342869][T16311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 598.342885][T16311] R13: 0000000000000000 R14: 00007fca7e3a6080 R15: 00007ffce40e0a88 [ 598.342919][T16311] [ 598.457151][ T5839] Bluetooth: hci5: command tx timeout [ 598.719097][T16321] kAFS: Invalid Command on /proc/fs/afs/cells file [ 599.546219][T16330] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 599.670258][T11315] hsr_slave_0: left promiscuous mode [ 599.682654][T11315] hsr_slave_1: left promiscuous mode [ 599.688636][T11315] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 599.726936][T11315] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 599.753371][T11315] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 599.802671][T11315] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 599.859043][T11315] veth1_macvtap: left promiscuous mode [ 599.907321][T11315] veth0_macvtap: left promiscuous mode [ 600.664832][ T5839] Bluetooth: hci5: command tx timeout [ 601.346201][T11315] team0 (unregistering): Port device team_slave_1 removed [ 601.582049][T11315] team0 (unregistering): Port device team_slave_0 removed [ 603.648998][T16225] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 603.684214][T16225] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 603.706621][T16225] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 603.743904][T16225] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 603.880951][T16355] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 603.982111][T16364] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 604.071201][T16365] EXT4-fs error (device sda1): ext4_xattr_ibody_get:653: inode #89: comm dhcpcd: corrupted in-inode xattr: bad magic number in in-inode xattr [ 604.406098][T11315] ref_tracker: net notrefcnt@ffff888035e801e0 has 1/2 users at [ 604.406098][T11315] sk_alloc+0xa93/0xb90 [ 604.406098][T11315] inet6_create+0x380/0x1320 [ 604.406098][T11315] __sock_create+0x335/0x8d0 [ 604.406098][T11315] udp_sock_create6+0xc8/0x6a0 [ 604.406098][T11315] sctp_udp_sock_start+0x280/0x4b0 [ 604.406098][T11315] proc_sctp_do_udp_port+0x380/0x450 [ 604.406098][T11315] proc_sys_call_handler+0x3c6/0x5a0 [ 604.406098][T11315] iter_file_splice_write+0x90f/0x10b0 [ 604.406098][T11315] direct_splice_actor+0x18f/0x6c0 [ 604.406098][T11315] splice_direct_to_actor+0x346/0xa40 [ 604.406098][T11315] do_splice_direct+0x178/0x250 [ 604.406098][T11315] do_sendfile+0xafb/0xe40 [ 604.406098][T11315] __x64_sys_sendfile64+0x1da/0x220 [ 604.406098][T11315] do_syscall_64+0xcd/0x250 [ 604.406098][T11315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.406098][T11315] [ 604.414127][T16225] 8021q: adding VLAN 0 to HW filter on device bond0 [ 604.494077][T11315] ref_tracker: net notrefcnt@ffff888035e801e0 has 1/2 users at [ 604.494077][T11315] sk_alloc+0xa93/0xb90 [ 604.494077][T11315] inet_create+0x3a1/0x10a0 [ 604.494077][T11315] __sock_create+0x335/0x8d0 [ 604.494077][T11315] udp_sock_create4+0xa7/0x450 [ 604.494077][T11315] sctp_udp_sock_start+0x10b/0x4b0 [ 604.494077][T11315] proc_sctp_do_udp_port+0x380/0x450 [ 604.494077][T11315] proc_sys_call_handler+0x3c6/0x5a0 [ 604.494077][T11315] iter_file_splice_write+0x90f/0x10b0 [ 604.494077][T11315] direct_splice_actor+0x18f/0x6c0 [ 604.494077][T11315] splice_direct_to_actor+0x346/0xa40 [ 604.494077][T11315] do_splice_direct+0x178/0x250 [ 604.494077][T11315] do_sendfile+0xafb/0xe40 [ 604.494077][T11315] __x64_sys_sendfile64+0x1da/0x220 [ 604.494077][T11315] do_syscall_64+0xcd/0x250 [ 604.494077][T11315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.494077][T11315] [ 604.495956][T11315] ------------[ cut here ]------------ [ 604.595987][T11315] WARNING: CPU: 1 PID: 11315 at lib/ref_tracker.c:179 ref_tracker_dir_exit+0x3e3/0x680 [ 604.605792][T11315] Modules linked in: [ 604.609969][T11315] CPU: 1 UID: 0 PID: 11315 Comm: kworker/u8:45 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 604.620820][T11315] Tainted: [U]=USER [ 604.624719][T11315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 604.634925][T11315] Workqueue: netns cleanup_net [ 604.639731][T11315] RIP: 0010:ref_tracker_dir_exit+0x3e3/0x680 [ 604.645823][T11315] Code: 11 02 00 00 4d 39 f5 49 8b 06 4d 89 f7 0f 85 0e ff ff ff 48 8b 2c 24 e8 ab 12 c8 fc 48 8b 74 24 18 48 89 ef e8 ae d8 65 06 90 <0f> 0b 90 e8 95 12 c8 fc 48 8d 5d 44 be 04 00 00 00 48 89 df e8 64 [ 604.665803][T11315] RSP: 0018:ffffc900055afab0 EFLAGS: 00010246 [ 604.672276][T11315] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 604.680504][T11315] RDX: 0000000000000001 RSI: ffffffff8b6cec80 RDI: 0000000000000001 [ 604.688679][T11315] RBP: ffff888035e801e0 R08: 0000000000000001 R09: fffffbfff2dd7dba [ 604.697019][T11315] R10: ffffffff96ebedd7 R11: 0000000000002ba2 R12: ffff888035e80230 [ 604.705537][T11315] R13: ffff888035e80230 R14: ffff888035e80230 R15: ffff888035e80230 [ 604.713994][T11315] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 604.723340][T11315] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 604.730157][T11315] CR2: 000000000017d000 CR3: 0000000063c3c000 CR4: 00000000003526f0 [ 604.738350][T11315] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 604.746640][T11315] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 604.754725][T11315] Call Trace: [ 604.758031][T11315] [ 604.760994][T11315] ? __warn+0xea/0x3c0 [ 604.765170][T11315] ? ref_tracker_dir_exit+0x3e3/0x680 [ 604.770704][T11315] ? report_bug+0x3c0/0x580 [ 604.775298][T11315] ? handle_bug+0x54/0xa0 [ 604.779690][T11315] ? exc_invalid_op+0x17/0x50 [ 604.784637][T11315] ? asm_exc_invalid_op+0x1a/0x20 [ 604.789736][T11315] ? ref_tracker_dir_exit+0x3e3/0x680 [ 604.795489][T11315] ? __pfx_ref_tracker_dir_exit+0x10/0x10 [ 604.801340][T11315] ? _raw_spin_unlock_irqrestore+0x52/0x80 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 604.807200][T11315] ? net_passive_dec+0x7d/0xd0 [ 604.812047][T11315] net_passive_dec+0x89/0xd0 [ 604.816689][T11315] cleanup_net+0x8ac/0xb30 [ 604.821246][T11315] ? __pfx_cleanup_net+0x10/0x10 [ 604.826301][T11315] ? lock_acquire+0x2f/0xb0 [ 604.829547][T16225] 8021q: adding VLAN 0 to HW filter on device team0 [ 604.830822][T11315] ? process_one_work+0x921/0x1ba0 [ 604.830861][T11315] process_one_work+0x9c5/0x1ba0 [ 604.847891][T11315] ? __pfx_cleanup_net+0x10/0x10 [ 604.853019][T11315] ? __pfx_process_one_work+0x10/0x10 [ 604.858453][T11315] ? assign_work+0x1a0/0x250 [ 604.863170][T11315] worker_thread+0x6c8/0xf00 [ 604.867818][T11315] ? __pfx_worker_thread+0x10/0x10 [ 604.873116][T11315] kthread+0x3af/0x750 [ 604.877319][T11315] ? __pfx_kthread+0x10/0x10 [ 604.882083][T11315] ? lock_acquire+0x2f/0xb0 [ 604.886876][T11315] ? __pfx_kthread+0x10/0x10 [ 604.891542][T11315] ret_from_fork+0x45/0x80 [ 604.896021][T11315] ? __pfx_kthread+0x10/0x10 [ 604.900776][T11315] ret_from_fork_asm+0x1a/0x30 [ 604.905722][T11315] [ 604.908778][T11315] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 604.916096][T11315] CPU: 1 UID: 0 PID: 11315 Comm: kworker/u8:45 Tainted: G U 6.14.0-rc4-syzkaller #0 [ 604.926981][T11315] Tainted: [U]=USER [ 604.930809][T11315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 604.940900][T11315] Workqueue: netns cleanup_net [ 604.945709][T11315] Call Trace: [ 604.949013][T11315] [ 604.951960][T11315] dump_stack_lvl+0x3d/0x1f0 [ 604.956586][T11315] panic+0x71d/0x800 [ 604.960525][T11315] ? __pfx_panic+0x10/0x10 [ 604.964971][T11315] ? show_trace_log_lvl+0x29d/0x3d0 [ 604.970187][T11315] ? check_panic_on_warn+0x1f/0xb0 [ 604.975306][T11315] ? ref_tracker_dir_exit+0x3e3/0x680 [ 604.980702][T11315] check_panic_on_warn+0xab/0xb0 [ 604.985649][T11315] __warn+0xf6/0x3c0 [ 604.989549][T11315] ? ref_tracker_dir_exit+0x3e3/0x680 [ 604.994934][T11315] report_bug+0x3c0/0x580 [ 604.999271][T11315] handle_bug+0x54/0xa0 [ 605.003526][T11315] exc_invalid_op+0x17/0x50 [ 605.008125][T11315] asm_exc_invalid_op+0x1a/0x20 [ 605.012982][T11315] RIP: 0010:ref_tracker_dir_exit+0x3e3/0x680 [ 605.018990][T11315] Code: 11 02 00 00 4d 39 f5 49 8b 06 4d 89 f7 0f 85 0e ff ff ff 48 8b 2c 24 e8 ab 12 c8 fc 48 8b 74 24 18 48 89 ef e8 ae d8 65 06 90 <0f> 0b 90 e8 95 12 c8 fc 48 8d 5d 44 be 04 00 00 00 48 89 df e8 64 [ 605.038643][T11315] RSP: 0018:ffffc900055afab0 EFLAGS: 00010246 [ 605.044711][T11315] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 605.052681][T11315] RDX: 0000000000000001 RSI: ffffffff8b6cec80 RDI: 0000000000000001 [ 605.060652][T11315] RBP: ffff888035e801e0 R08: 0000000000000001 R09: fffffbfff2dd7dba [ 605.068636][T11315] R10: ffffffff96ebedd7 R11: 0000000000002ba2 R12: ffff888035e80230 [ 605.076605][T11315] R13: ffff888035e80230 R14: ffff888035e80230 R15: ffff888035e80230 [ 605.084597][T11315] ? __pfx_ref_tracker_dir_exit+0x10/0x10 [ 605.090331][T11315] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 605.096137][T11315] ? net_passive_dec+0x7d/0xd0 [ 605.100911][T11315] net_passive_dec+0x89/0xd0 [ 605.105590][T11315] cleanup_net+0x8ac/0xb30 [ 605.110039][T11315] ? __pfx_cleanup_net+0x10/0x10 [ 605.114988][T11315] ? lock_acquire+0x2f/0xb0 [ 605.119585][T11315] ? process_one_work+0x921/0x1ba0 [ 605.124797][T11315] process_one_work+0x9c5/0x1ba0 [ 605.129862][T11315] ? __pfx_cleanup_net+0x10/0x10 [ 605.134900][T11315] ? __pfx_process_one_work+0x10/0x10 [ 605.140320][T11315] ? assign_work+0x1a0/0x250 [ 605.145104][T11315] worker_thread+0x6c8/0xf00 [ 605.149797][T11315] ? __pfx_worker_thread+0x10/0x10 [ 605.154925][T11315] kthread+0x3af/0x750 [ 605.159028][T11315] ? __pfx_kthread+0x10/0x10 [ 605.163646][T11315] ? lock_acquire+0x2f/0xb0 [ 605.168182][T11315] ? __pfx_kthread+0x10/0x10 [ 605.172788][T11315] ret_from_fork+0x45/0x80 [ 605.177298][T11315] ? __pfx_kthread+0x10/0x10 [ 605.181919][T11315] ret_from_fork_asm+0x1a/0x30 [ 605.186740][T11315] [ 605.190059][T11315] Kernel Offset: disabled [ 605.194909][T11315] Rebooting in 86400 seconds..