last executing test programs: 7.765463845s ago: executing program 1 (id=616): r0 = openat$auto_ht40allow_map_ops_debugfs(0xffffffffffffff9c, 0x0, 0xc9400, 0x0) read$auto(r0, &(0x7f0000000040)='^{-!S\x84\x00', 0x9) 7.263311153s ago: executing program 1 (id=617): socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x3c, r1, 0x1, 0x70bd39, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/pids.max\x00', 0x281, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x400, 0x0) write$auto(r2, &(0x7f0000000000)='.&\x00', 0x9) (async) write$auto(r2, &(0x7f0000000000)='.&\x00', 0x9) 6.784874161s ago: executing program 1 (id=620): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f00000000c0)=@link_update={r1, @new_prog_fd=0x4, 0x91e, @old_map_fd=r0}, 0xa3) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000880)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="130026bd70e6c6f131250200000008000000", @ANYRES32=r5, @ANYBLOB="08006900ff030000"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) sendmsg$auto_NL80211_CMD_ADD_NAN_FUNCTION(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)={0x1f4, r2, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_REASON_CODE={0x6}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x27}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x8}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x7f}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x4}, @NL80211_ATTR_REG_RULES={0x1b0, 0x22, 0x0, 0x1, [@nested={0x1a9, 0x114, 0x0, 0x1, [@typed={0xf, 0xe1, 0x0, 0x0, @str='\xf3\\!]\'\'+$-/\x00'}, @generic="46e17d3f921b879e02409e22cbb97b3a37076e79120763687c1bcb0be265b07fae0e9e27a3b8a92a429914043208281bd1176f843e0b025bac6c3ca8fdc38c5da58f4775960911bb1bcd9b4acc6b01ec105da40fa7e9c997135724b790c532387bd821ff610b607bff0391b34b5218db4146b64a9255", @typed={0x8, 0x151, 0x0, 0x0, @str=',^#\x00'}, @nested={0x4, 0xc7}, @generic="b595fe3814547e7f4080ccf3a31c03b1fbfcb5d5912ec98f893171cc25f363a8b705eb7bb63f6c54321a5027e3c5bac6ed0a2d54f7388dcc73a04204f17850197ab2a4b5576897dcbc60482292723a0716d56fd0af139d73745eda7adca601d5d3a64b3944a995009ce469939780078d6f40b32c0c1415695d852306de30745c1911dbb20e20b0c6d88437c89dee9894", @generic="02496b439ba15faf3c7e635025910d769e0290e1d780355fc83218672b857094a0b6aca7fb20fdc3145609927a3d1961e6ec9518c732e514bbc34b89021176fbb96aa1aae9", @generic="31df28c2e03b12ca3ede4503bf9b555b6ef5e60b5b16eb12cd1fd410d392ca700cb37586b17af27fe02c3e03f4f834cb85056a59903e14ccc51aa7c284a8"]}]}]}, 0x1f4}, 0x1, 0x0, 0x0, 0x4080}, 0x4000001) mlockall$auto(0x1) 5.243903722s ago: executing program 1 (id=630): unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x7, 0x12, 0xffffffffffffffff, 0xf4e) mmap$auto(0x0, 0x4, 0x7, 0xeb1, 0x404, 0x10008000) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000001bc0)="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", 0xd4f) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) shmctl$auto(0x0, 0x9, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xb9442, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty58\x00', 0x800, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto(0x3, 0x40104d06, 0x5) fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x201, 0x2, 0x13, 0x1) r2 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) read$auto_l2cap_debugfs_fops_(r2, &(0x7f0000000240)=""/177, 0xb1) mmap$auto(0x100000, 0xffffffffffffffff, 0x4000000000df, 0x19, r2, 0x5) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mprotect$auto(0x1ffff000, 0x8000000000000004, 0xd) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 5.005008663s ago: executing program 3 (id=632): ioctl$auto_XFS_IOC_FREESP64(0xffffffffffffffff, 0x40305825, &(0x7f00000003c0)={0xed2, 0x3, 0x3145, 0x5, 0xa8, 0x0}) get_robust_list$auto(r0, &(0x7f0000000300)=&(0x7f0000000340)={{&(0x7f0000000440)={&(0x7f0000000080)}}, 0xfffffffffffff4c5, &(0x7f0000000480)={&(0x7f0000000200)}}, &(0x7f0000000240)=0xfffffffffffffe01) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) shmctl$auto_SHM_LOCK(0x0, 0xb, &(0x7f0000000280)={{0x8, 0x0, 0xee00, 0xf27d, 0xf, 0x35d, 0x8}, 0x81, 0x80000000000000, 0x3, 0x1a2, @raw=0x7, @inferred=r0, 0x7, 0x0, &(0x7f00000004c0)="5629616968c888b256caf1ba2f34190d9fbf937e17fd2d9340d22f975500bbed89da2d2999baedb9a4bda46e358e0d51481e45e7482aeedafcaaad86c47ca9a56c257d2c589f5a629e873d43ff21538931cb43b8d185d2722a9b773c95737043371409b07130d033188bfae0368663b22b9a8db03cfbe292b7c25d254b97403411bdbc570a3aacc76c621984d102c8f2c9e7efa569cadfc1af38e1", &(0x7f0000000180)="0ba22e0cdf8c9d7da71c46b73ff73f75009ef5bc98d38dca"}) ioprio_get$auto(0x5, r1) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyzf\x00', 0x125800, 0x0) write$auto(r3, &(0x7f0000000380)=',{5,\x00', 0x4000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80008000) prctl$auto(0x2, 0x1000001, r0, 0x5, 0x7) madvise$auto(0x3, 0xffffffffffff0005, 0x8000) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop6\x00', 0x1, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x80002, 0x0) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r5, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram7/queue/iostats\x00', 0x48542, 0x0) prctl$auto(0x7, 0x1, r0, 0xe, 0x8) write$auto(r3, &(0x7f00000005c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0xc626) ioprio_set$auto(0x3, 0x0, 0x4b34) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd9/queue/iosched/read_expire\x00', 0x206a1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)="2d37b8", 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) ioctl$auto_SG_GET_RESERVED_SIZE(r4, 0x4c07, 0x0) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/auth.unix.ip/channel\x00', 0x8f3b7a51b8162d21, 0x0) write$auto_proc_reg_file_ops_compat_inode(r7, &(0x7f0000000040)="5cedd98d0f0000000000000e9bfa4e0000000053ca9aee370a", 0x19) madvise$auto(0x0, 0x2003f2, 0x15) 4.148902421s ago: executing program 0 (id=636): r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6b) mmap$auto(0x0, 0x20009, 0x10000000000df, 0x14, r0, 0x8000) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000100)="6df5ca030785230aeb0b256a", 0x4010, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000340), 0x149000, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_DETACH(r1, 0x7aa, 0x0) munmap$auto(0x20001000, 0x7fb3) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x400800, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_DETACH(r2, 0x7aa, 0x0) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x0, 0xe9e, 0x48, 0x15, 0x1003, 0x100000001, 0xc, 0xf, 0x0, 0x0, 0xe, 0x200, 0x101, 0xff, 0x6, 0x1]}, 0x0, 0x0) 3.656593518s ago: executing program 3 (id=638): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/raw\x00', 0x60080, 0x0) pread64$auto(r1, 0x0, 0x8, 0xffff) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f00000002c0)="65507307ff6587a725ca87720ef9769f20592e77a8977acfd064c712782b89f145862d9956b07a7c40f8a41e4c4cd45ac0bdf9b7d5cf78f6b7b354a69aaecc3922f2e2df504d01273dd7e6e3c25f55a98d1f81d52f", 0x55) 3.507451439s ago: executing program 3 (id=639): openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x200d, 0xffffffffffffff00, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x8001, 0xfffffffffffffffe, 0x4]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r1, 0x4018620d, 0x9) r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r2, 0x4018620d, 0x9) mmap$auto(0x9, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@xdp={0x2c, 0xb, 0x0, 0x38}, 0x55) r3 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x40400, 0x0) read$auto_dfs_global_fops_debug(r3, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) mmap$auto(0x0, 0x2a, 0x1, 0x9b72, 0x1000, 0x28000) setrlimit$auto(0xb, 0x0) r4 = getpid() r5 = gettid() rt_tgsigqueueinfo$auto(r4, r5, 0x21, 0x0) 3.164237004s ago: executing program 0 (id=640): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) r1 = signalfd$auto(r0, &(0x7f0000000180)={0x4}, 0x8000000000000001) r2 = signalfd4$auto(r0, &(0x7f0000000240)={0x9}, 0x1, 0x4) ioctl$auto_UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f00000002c0)={0x4b, 0xe81, [{r2, 0x0, 0x1, 0x5}]}) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(r3, 0x1, 0x1, 0x0, &(0x7f0000000300)=0xfff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) select$auto(0x57b, 0x0, 0x0, &(0x7f0000000440)={[0x1ff, 0x7, 0xd, 0x8000000000001, 0x948b, 0x3, 0x15f4da07, 0x3, 0x7, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x1009, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0xffffffff, 0x9, 0x7, 0x200, 0x6, 0x3, 0x2, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0xffff]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0x6}) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x1, 0x8000, 0x1ffe0, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x4004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) write$auto(0x3, 0x0, 0xfffffdef) 2.843236066s ago: executing program 2 (id=641): openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x200d, 0xffffffffffffff00, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x8001, 0xfffffffffffffffe, 0x4]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r1, 0x4018620d, 0x9) r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r2, 0x4018620d, 0x9) mmap$auto(0x9, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@xdp={0x2c, 0xb, 0x0, 0x38}, 0x55) r3 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x40400, 0x0) read$auto_dfs_global_fops_debug(r3, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) mmap$auto(0x0, 0x2a, 0x1, 0x9b72, 0x1000, 0x28000) setrlimit$auto(0xb, 0x0) r4 = getpid() r5 = gettid() rt_tgsigqueueinfo$auto(r4, r5, 0x21, 0x0) 2.428495001s ago: executing program 3 (id=642): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f00000002c0)="65507307ff6587a725ca87720ef9769f20592e77a8977acfd064c712782b89f145862d9956b07a7c40f8a41e4c4cd45ac0bdf9b7d5cf78f6b7b354a69aaecc3922f2e2df504d01273dd7e6e3c25f55a98d1f81d52f", 0x55) 2.202874308s ago: executing program 0 (id=643): r0 = epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) socket(0x2, 0x1, 0x106) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x800000000000, 0xe983, 0xdc, 0xeb5, 0x401, 0x2b9e) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="110b27bd7000ffdbdf2509000008", @ANYRES32=0x0, @ANYBLOB="080006"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x5, &(0x7f0000000800)=@bpf_attr_0={0x8001, 0xfffffffd, 0x8, 0x7, 0x5, 0xffffffffffffffff, 0x7, "787d66da4a620eab7f736e854ef61529", 0x0, 0xffffffffffffffff, 0x7, 0xffff4e8b, 0x2, 0x1, 0xffffffffffffffff, r0}, 0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="720100004d061d1bf54b990951ec2a0fc27f195d224e6427365bdc2ed3470aca0ea72b3c91eea1083a292ca099ea04f75de1e7e20ef6cd35956a0cc36d59d73a63e3113fb7c002a3cd99cf995d794933b2cc9b30b73e8a8018654d799d89444e9451bba455bdf92a240942f40de19e08a85f1eecc54e1f85769c7cfde02f49dd7ffba60faa44aa60ff015263e3dba2f1810b149ee1a74587eeeb974a0147ed8bd8277becaf2c1e47adc867f92c9103b0f06ae79c08594508991c3a1d854f4c195e27a0b5fd548d9c7aa2143f6cdc976c24a855eb6fbd2b102fc9315ed3995f31e83a5bb50dc20e520f00"/244, @ANYRES16=r4], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) r5 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r5, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x6, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x80000c}, 0x5, 0x2000fdff) ioctl$auto_vmwgfx_driver_fops_vmwgfx_drv(r3, 0x9, &(0x7f0000000340)="ff7037470573034efa1fb855a15c00758a09343fcae4e5e40dd7266ca67bf577d3ec8fbaa9af629e41157ba27c87171624fe4d153483145c1c0bc46e7f18db590d3e23779f8b3dc23a69efab7a05f35e2a69265a1bd8852cfb27e4ad14edc60b29a7a9ea5dd906fa0a1d212f18cec28cb694e8f342c574eb7394da4f7d720c0abbd628b416d5e9c7cb5d62f866ccab8bf7") openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0) writev$auto(r4, &(0x7f00000005c0)={0x0, 0x7111}, 0x8) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r3, 0x1, &(0x7f0000000440)="3ecab2cd608d25456a4ec07f377f4aaf2baa3fa8212644d3d7bcbf6dd462b6dae39e42fc04be22bf920adeb1b964fa3715767b5af1204c59f9a0aed704b18eacec86689a040db74608ee0199bfe28edf56d54a8a3aa685d5925e3bc0ac30b21da8ec7f6d22052632583755559167039f6e81f9781b71c0968a3f6eb3e5de1714c7dab4049b66228ff69b809787b5a95621f0b972bfe2") read$auto_kernfs_file_fops_kernfs_internal(r2, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0xd3e, 0x7fffffffffffffff, 0x948b, 0x3, 0x95f4da0a, 0x401, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0) execve$auto(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000500)=&(0x7f0000000280)='{k&\\\x00', &(0x7f0000000580)=&(0x7f0000000540)='/dev/audio1\x00') write$auto(r1, &(0x7f0000000700)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x10000e, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000001ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x5b, 0x10, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x1]}, 0x0) getpid() r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0) read$auto_v4l2_fops_v4l2_dev(r6, &(0x7f0000000000)=""/194, 0xc2) close_range$auto(0x2, 0xa, 0x0) 2.06638256s ago: executing program 3 (id=644): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f00000002c0)="65507307ff6587a725ca87720ef9769f20592e77a8977acfd064c712782b89f145862d9956b07a7c40f8a41e4c4cd45ac0bdf9b7d5cf78f6b7b354a69aaecc3922f2e2df504d01273dd7e6e3c25f55a98d1f81d52f", 0x55) (fail_nth: 2) 1.733256193s ago: executing program 3 (id=645): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async, rerun: 32) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (rerun: 32) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x1000009, 0x2020009, 0x203, 0xebe, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x5, 0x0) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x20001, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) socket(0x15, 0x5, 0x0) (async) kexec_load$auto(0x800, 0x2, 0x0, 0xf5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/nfc/nfc1/rfkill1/persistent\x00', 0x80000, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/loop14\x00', 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000100)={0x8, 0xfffffffd, 0xa, 0xa, 0x42, 0xfffffffffffffffa, 0x1ffde, 0x7, 0x8, 0x80000001, 0x6, 0x7, 0x2, 0xfffffffffffffffc, 0x80000000, 0xc, 0x2, 0x20fff, 0xa0, 0x7, 0x1, 0x17, 0x1, 0x5, 0x0, 0xffdffff7, 0x40, 0x400, 0x6, 0x6d4c, 0xfffffffe, [0x0, 0x0, 0x0, 0x0, 0x20000000000, 0xb, 0x9, 0xfffffffffffffffe, 0x8000000000000000, 0x7fffffff, 0x40000000, 0x0, 0x0, 0xfffffffffffffffe, 0x8001, 0x4, 0x0, 0x6, 0x3, 0xfffffffffffffffd, 0xf, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x4000000000000800, 0x10000, 0x6, 0x4, 0x1, 0x40004, 0x100000000001, 0x1, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, 0x8000000000, 0x0, 0x12480]}, 0x7fff, 0x200d) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000340), 0xffffffffffffffff) (async) sendmsg$auto_HWSIM_CMD_REGISTER(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYRES8=r2, @ANYRESDEC=r1, @ANYBLOB="00022cbd7000ffdbdf250100000008000a000008000004000f0004001200080013000300000004000e0008000a000900000004000d00"], 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) mmap$auto(0xfffffffffffffffe, 0x20009, 0x4000000000df, 0x1d, r3, 0x8000) socketpair$auto(0xd, 0x2, 0x1000000, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x5, 0x0) (async) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event2\x00', 0x20881, 0x0) write$auto(r4, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) (async) mmap$auto(0xff, 0x0, 0x3fe, 0x11, 0xffffffffffffffff, 0x8004) r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0) ioctl$auto_PROCMAP_QUERY(r5, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000007, 0xffffffff808b52ff, 0x80000001, 0xff, 0x5, 0x40007, 0xfbfffffe, 0x5, 0x7fb, 0x7, 0x400}) socket(0xa, 0x1, 0x84) (async, rerun: 64) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async, rerun: 64) write$auto(0x6, 0x0, 0x100000001) (async, rerun: 32) timerfd_settime$auto(0xffffffffffffffff, 0x3, 0x0, 0x0) (rerun: 32) 1.579052975s ago: executing program 2 (id=646): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (fail_nth: 3) 1.389283726s ago: executing program 2 (id=647): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 1.248987423s ago: executing program 2 (id=648): r0 = open(&(0x7f0000000000)='./file0\x00', 0x200000, 0x2a) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r0, 0x7cb, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0xffff8000, 0x280009, 0xb, 0x8000000008011, r1, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x200000, 0x2a) (async) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r0, 0x7cb, 0x0) (async) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) (async) mmap$auto(0xffff8000, 0x280009, 0xb, 0x8000000008011, r1, 0x0) (async) 925.611498ms ago: executing program 2 (id=649): r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000009000), 0x101181, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/rose7/power/runtime_status\x00', 0x2022, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/hid/drivers/mcp2200/new_id\x00', 0x45cc02, 0x0) mmap$auto_kernfs_file_fops_kernfs_internal(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x13, r2, 0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_ADD_RXSC(0xffffffffffffffff, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000000)={0x14, 0x0, 0x1, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40b4ff741f26f506}, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0xa, 0x8}) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000003c0), 0x49}, 0x4, &(0x7f00000000c0), 0x5, 0x1000}, 0x5}, 0x2, 0x100fe) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000010c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYRESHEX=r0, @ANYRES16=r3, @ANYRESOCT=r2], 0x28}, 0x1, 0x0, 0x0, 0x20000800}, 0xc044810) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6_vti0/queues/tx-0/xps_cpus\x00', 0x2000, 0x0) readv$auto(r4, &(0x7f0000001000)={0x0, 0x4}, 0x8) read$auto(r1, &(0x7f0000000000)='!\x00', 0x3) 870.225687ms ago: executing program 0 (id=650): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x1d, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) memfd_secret$auto(0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) ftruncate$auto(0x3, 0x700) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000c00), 0xffffffffffffffff) socket(0x2, 0x1, 0x106) setsockopt$auto(0x3, 0x1, 0x7, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_GET_VLAN(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7080fcdbdf251100000008000300438124d05a067b402b455ee7253cbf5135293bcb0956270e15d609bbce4429a8df6b272c5ac1b6bf4176dc61ab703a5ab836e9e8600f6e79616b3fdd63373736fac38d0c62c94db8e98c25a5b5c1a2bd58e667d1b50a003a00398f1b05baf2f49ba5a0279e49deada40ea95c8507463b0500000039acd40fcb7bb3fdb20ab4cc653408481e877da1", @ANYRES32=r4, @ANYBLOB="06002800d5190000"], 0x24}, 0x1, 0x0, 0x0, 0x40801}, 0x4008090) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) seccomp$auto(0x0, 0x100000000, 0xfffffffffffffffc) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f00000002c0)="65107307ff6587a725ca87720ef9769f20592e77a8977acfd064c712782b89f145862d9956b07a7c40f8a41e4c4cd45ac0bdf9b7d5cf78f6b7b354a69aaecc3922f2e2df504d01273dd7e6e3c25f55a98d1f81d52f", 0x55) 671.036767ms ago: executing program 2 (id=651): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) r1 = signalfd$auto(r0, &(0x7f0000000180)={0x4}, 0x8000000000000001) r2 = signalfd4$auto(r0, &(0x7f0000000240)={0x9}, 0x1, 0x4) ioctl$auto_UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f00000002c0)={0x4b, 0xe81, [{r2, 0x0, 0x1, 0x5}]}) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(r3, 0x1, 0x1, 0x0, &(0x7f0000000300)=0xfff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) select$auto(0x57b, 0x0, 0x0, &(0x7f0000000440)={[0x1ff, 0x7, 0xd, 0x8000000000001, 0x948b, 0x3, 0x15f4da07, 0x3, 0x7, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x1009, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0xffffffff, 0x9, 0x7, 0x200, 0x6, 0x3, 0x2, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0xffff]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0x6}) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x1, 0x8000, 0x1ffe0, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x4004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r4 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) write$auto(0x3, 0x0, 0xfffffdef) 485.867834ms ago: executing program 0 (id=652): close_range$auto(0x2, 0x8, 0x0) r0 = userfaultfd$auto(0x1) socket(0x10, 0x2, 0xc) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) setsockopt$auto(r0, 0x68, 0xb, &(0x7f00000000c0)='-\x00', 0xe7) ioctl$auto(0x3, 0xae41, r2) connect$auto(0xffffffffffffffff, &(0x7f0000000040)=@llc={0x1a, 0x305, 0x5, 0x0, 0x7, 0x3, @multicast}, 0x5) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae90, &(0x7f0000000080)={0xfc}) close_range$auto(0x2, 0x8, 0x0) 275.133934ms ago: executing program 0 (id=653): r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000002f80), 0x40000, 0x0) ioctl$auto_I2C_RETRIES(r0, 0x701, 0x0) mmap$auto(0x5, 0x810004, 0xffffffffffffff06, 0x8000000008011, 0x3, 0x8000) ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) socket(0x1e, 0xa, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0) ioctl$auto(r2, 0xc0905664, r2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) fsconfig$auto_FSCONFIG_SET_FLAG(r2, 0x0, 0x0, &(0x7f00000000c0)="268515", 0x3) write$auto(r1, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x10000009, 0x69ce, 0x0, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio11\x00', 0x80002, 0x0) mmap$auto(0x1000000, 0x9, 0xffb, 0x8000000008011, 0x3, 0x80000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop1/queue/scheduler\x00', 0xa001, 0x0) r3 = socket(0x22, 0x2, 0x24) getsockopt$auto(r3, 0x3, 0x1, 0x0, 0x0) r4 = socket(0x1e, 0x1, 0x0) bind$auto(r4, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x0, 0x2}}, 0x66) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r5) sendmsg$auto_TIPC_NL_NET_SET(r5, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002cbd7000ffdbdf250f0000000c0007800800020012545e047cbf7caee591ff7b3caf77776860d1492ea0a50f5ab32ed2d578be98e47c9cd26d50b79ff6bfe6129305ad86c9db00245d5353e35b30399c2fc46da54396b36ea766cc27fc57ff893ce48714af7c009c89d0255833c9024daaa4468d9d3847d044d0fcfa67b5b7ca9b6b8ff8e95e4d16ed0eae084e00000000000db8cd306d50b6f199bbb1b27d1ea8688af4316d0340111d6e9862", @ANYRES32=0xee00, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) setsockopt$auto(0xffffffffffffffff, 0x29, 0x4d, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xffff) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x80802, 0x5) socket(0x2b, 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) 186.502397ms ago: executing program 1 (id=654): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x201, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f00000002c0)="65507307ff6587a725ca87720ef9769f20592e77a8977acfd064c712782b89f145862d9956b07a7c40f8a41e4c4cd45ac0bdf9b7d5cf78f6b7b354a69aaecc3922f2e2df504d01273dd7e6e3c25f55a98d1f81d52f", 0x55) 0s ago: executing program 1 (id=655): close_range$auto(0x2, 0x8, 0x0) timerfd_settime$auto(0xffffffffffffffff, 0x5, &(0x7f0000000000)={{0xa, 0x22ee}, {0x6, 0x1}}, &(0x7f0000000080)={{0x482871c6, 0x7}, {0x0, 0x80}}) (async) socket(0x2, 0x3, 0x100) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/scsi_mod/parameters/scan\x00', 0x102, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80402, 0x0) (async) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@ethernet={0x1, @random="0cdb38c37e20"}, 0x6a) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x13e, 0x0, 0xfffffffffffffffd) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, 0xfffffffffffff000, 0x2) (async) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400000000000400, 0x9}, 0x9, 0x0) (async) landlock_restrict_self$auto(r1, 0x0) symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') (async) rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') write$auto(0x3, 0x0, 0xfffffdef) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0xf, 0x3, 0x2) (async) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xa00001, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x4c37e, 0x33b) socket(0x2, 0x2, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000001c0)={[0x5, 0x2, 0xfff, 0x1, 0x948b, 0x83, 0x95f4da2d, 0xc, 0x6, 0x0, 0x1, 0x7, 0x6d3f, 0xa, 0x5, 0x6]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x60a41, 0x0) mmap$auto(0x3, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.62' (ED25519) to the list of known hosts. [ 99.813193][ T5818] cgroup: Unknown subsys name 'net' [ 99.959886][ T5818] cgroup: Unknown subsys name 'cpuset' [ 99.969564][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 101.847585][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 102.297470][ T24] cfg80211: failed to load regulatory.db [ 104.241969][ T5835] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 104.256175][ T5835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 104.265677][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 104.275674][ T5835] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 104.297259][ T5839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 104.326680][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 104.341065][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 104.348642][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 104.372765][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 104.377538][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 104.387587][ T5842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 104.391281][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 104.406082][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 104.421539][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 104.436418][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 104.447567][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 104.456104][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 104.464808][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 104.479837][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 104.488847][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 105.044924][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 105.206069][ T5845] chnl_net:caif_netlink_parms(): no params data found [ 105.268760][ T5834] chnl_net:caif_netlink_parms(): no params data found [ 105.281046][ T5838] chnl_net:caif_netlink_parms(): no params data found [ 105.335721][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.343421][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.351160][ T5837] bridge_slave_0: entered allmulticast mode [ 105.358832][ T5837] bridge_slave_0: entered promiscuous mode [ 105.406077][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.413307][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.420923][ T5837] bridge_slave_1: entered allmulticast mode [ 105.428452][ T5837] bridge_slave_1: entered promiscuous mode [ 105.549358][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.601353][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.611420][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.618946][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.626633][ T5845] bridge_slave_0: entered allmulticast mode [ 105.634003][ T5845] bridge_slave_0: entered promiscuous mode [ 105.695676][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.702904][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.710555][ T5845] bridge_slave_1: entered allmulticast mode [ 105.717965][ T5845] bridge_slave_1: entered promiscuous mode [ 105.724689][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.732303][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.739790][ T5834] bridge_slave_0: entered allmulticast mode [ 105.747369][ T5834] bridge_slave_0: entered promiscuous mode [ 105.754792][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.762135][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.769498][ T5838] bridge_slave_0: entered allmulticast mode [ 105.777127][ T5838] bridge_slave_0: entered promiscuous mode [ 105.786905][ T5837] team0: Port device team_slave_0 added [ 105.793828][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.801196][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.808541][ T5838] bridge_slave_1: entered allmulticast mode [ 105.816309][ T5838] bridge_slave_1: entered promiscuous mode [ 105.850775][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.858147][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.865787][ T5834] bridge_slave_1: entered allmulticast mode [ 105.873235][ T5834] bridge_slave_1: entered promiscuous mode [ 105.881988][ T5837] team0: Port device team_slave_1 added [ 105.964119][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.977180][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.001013][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.008356][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.035096][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.050042][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.062448][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.074531][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.087644][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.097548][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.104533][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.130517][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.235705][ T5838] team0: Port device team_slave_0 added [ 106.243874][ T5845] team0: Port device team_slave_0 added [ 106.252642][ T5845] team0: Port device team_slave_1 added [ 106.260302][ T5834] team0: Port device team_slave_0 added [ 106.268848][ T5838] team0: Port device team_slave_1 added [ 106.276809][ T5834] team0: Port device team_slave_1 added [ 106.356626][ T5837] hsr_slave_0: entered promiscuous mode [ 106.363187][ T5837] hsr_slave_1: entered promiscuous mode [ 106.413217][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.420937][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.447020][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.458710][ T5150] Bluetooth: hci1: command tx timeout [ 106.465821][ T5150] Bluetooth: hci0: command tx timeout [ 106.468246][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.478375][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.504809][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.516716][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.523698][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.549869][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.561046][ T5842] Bluetooth: hci3: command tx timeout [ 106.563704][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.573732][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.575312][ T5150] Bluetooth: hci2: command tx timeout [ 106.600288][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.617855][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.624830][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.651475][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.663415][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.670703][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 106.696917][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.856558][ T5838] hsr_slave_0: entered promiscuous mode [ 106.863177][ T5838] hsr_slave_1: entered promiscuous mode [ 106.869733][ T5838] debugfs: 'hsr0' already exists in 'hsr' [ 106.875616][ T5838] Cannot create hsr debugfs directory [ 106.906741][ T5834] hsr_slave_0: entered promiscuous mode [ 106.913681][ T5834] hsr_slave_1: entered promiscuous mode [ 106.920193][ T5834] debugfs: 'hsr0' already exists in 'hsr' [ 106.926003][ T5834] Cannot create hsr debugfs directory [ 106.958142][ T5845] hsr_slave_0: entered promiscuous mode [ 106.964646][ T5845] hsr_slave_1: entered promiscuous mode [ 106.971173][ T5845] debugfs: 'hsr0' already exists in 'hsr' [ 106.977484][ T5845] Cannot create hsr debugfs directory [ 107.408655][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 107.424464][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 107.436535][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 107.459162][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 107.534866][ T5838] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 107.547486][ T5838] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 107.560350][ T5838] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 107.571081][ T5838] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 107.675640][ T5834] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 107.688977][ T5834] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 107.701208][ T5834] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 107.713533][ T5834] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 107.828315][ T5845] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 107.841014][ T5845] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 107.853263][ T5845] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 107.876115][ T5845] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 107.951318][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.999771][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.057822][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.078939][ T5838] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.090083][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.097540][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.120485][ T1133] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.127667][ T1133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.142398][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.165872][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.173056][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.204446][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.211827][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.232840][ T5834] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.289038][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.296379][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.309550][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.316785][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.339138][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.416262][ T5845] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.467563][ T1133] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.474774][ T1133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.533127][ T3570] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.540382][ T3570] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.552552][ T5150] Bluetooth: hci0: command tx timeout [ 108.555222][ T5842] Bluetooth: hci1: command tx timeout [ 108.615330][ T5842] Bluetooth: hci2: command tx timeout [ 108.616573][ T5150] Bluetooth: hci3: command tx timeout [ 108.909451][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.091561][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.127826][ T5837] veth0_vlan: entered promiscuous mode [ 109.154485][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.171312][ T5837] veth1_vlan: entered promiscuous mode [ 109.186967][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.253348][ T5838] veth0_vlan: entered promiscuous mode [ 109.300569][ T5838] veth1_vlan: entered promiscuous mode [ 109.336640][ T5837] veth0_macvtap: entered promiscuous mode [ 109.346971][ T5834] veth0_vlan: entered promiscuous mode [ 109.363219][ T5837] veth1_macvtap: entered promiscuous mode [ 109.374516][ T5845] veth0_vlan: entered promiscuous mode [ 109.392542][ T5834] veth1_vlan: entered promiscuous mode [ 109.412655][ T5845] veth1_vlan: entered promiscuous mode [ 109.441341][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.458924][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.474429][ T5838] veth0_macvtap: entered promiscuous mode [ 109.494495][ T3570] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.514584][ T5838] veth1_macvtap: entered promiscuous mode [ 109.527606][ T3570] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.536805][ T3570] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.563509][ T3570] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.582332][ T5845] veth0_macvtap: entered promiscuous mode [ 109.603809][ T5845] veth1_macvtap: entered promiscuous mode [ 109.615650][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.635194][ T5834] veth0_macvtap: entered promiscuous mode [ 109.656894][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.697152][ T5834] veth1_macvtap: entered promiscuous mode [ 109.731262][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.744385][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.755670][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.785566][ T1133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.796005][ T1133] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.808230][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.820976][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.830612][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.871041][ T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.880240][ T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.898384][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.909894][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.918551][ T36] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.928660][ T36] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.947508][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.961594][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 110.019401][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.061061][ T5837] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 110.061858][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.086040][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.104053][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.173439][ T3570] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.198472][ T3570] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.261553][ T5920] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 110.309278][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.318720][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.326430][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.335798][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.343557][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 110.487111][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.496043][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.615866][ T5150] Bluetooth: hci0: command tx timeout [ 110.617318][ T5842] Bluetooth: hci1: command tx timeout [ 110.687245][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.696183][ T5842] Bluetooth: hci3: command tx timeout [ 110.698796][ T5150] Bluetooth: hci2: command tx timeout [ 110.735493][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.895947][ T3570] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.904230][ T3570] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.135672][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.144403][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.395574][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 111.625756][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.073717][ T5941] Zero length message leads to an empty skb [ 112.126107][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.248907][ T5943] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 112.283685][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 112.375865][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.416180][ T5939] futex_wake_op: syz.0.1 tries to shift op by -2048; fix this program [ 112.630329][ T5954] Invalid ELF header magic: != ELF [ 112.698145][ T5150] Bluetooth: hci0: command tx timeout [ 112.698184][ T5842] Bluetooth: hci1: command tx timeout [ 112.775865][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.776101][ T5842] Bluetooth: hci3: command tx timeout [ 112.789891][ T5842] Bluetooth: hci2: command tx timeout [ 112.795892][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 114.138048][ T5970] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 115.442495][ T5989] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 119.358756][ T6027] zram: Removed device: zram0 [ 120.003349][ T6036] FAULT_INJECTION: forcing a failure. [ 120.003349][ T6036] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 120.037737][ T6036] CPU: 1 UID: 0 PID: 6036 Comm: syz.0.24 Not tainted syzkaller #0 PREEMPT(full) [ 120.037908][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 120.037924][ T6036] Call Trace: [ 120.037935][ T6036] [ 120.037944][ T6036] dump_stack_lvl+0x16c/0x1f0 [ 120.037983][ T6036] should_fail_ex+0x512/0x640 [ 120.038026][ T6036] _copy_from_user+0x2e/0xd0 [ 120.038066][ T6036] snd_seq_write+0x3ed/0x6d0 [ 120.038105][ T6036] ? __pfx_snd_seq_write+0x10/0x10 [ 120.038133][ T6036] ? common_file_perm+0x1a9/0x340 [ 120.038159][ T6036] ? bpf_lsm_file_permission+0x9/0x10 [ 120.038188][ T6036] ? security_file_permission+0x71/0x210 [ 120.038215][ T6036] ? rw_verify_area+0xcf/0x6c0 [ 120.038238][ T6036] ? __pfx_snd_seq_write+0x10/0x10 [ 120.038268][ T6036] vfs_write+0x2a0/0x11d0 [ 120.038300][ T6036] ? __pfx_vfs_write+0x10/0x10 [ 120.038330][ T6036] ? find_held_lock+0x2b/0x80 [ 120.038360][ T6036] ? __fget_files+0x204/0x3c0 [ 120.038388][ T6036] ? __fget_files+0x20e/0x3c0 [ 120.038420][ T6036] ksys_write+0x1f8/0x250 [ 120.038446][ T6036] ? __pfx_ksys_write+0x10/0x10 [ 120.038482][ T6036] do_syscall_64+0xcd/0xfa0 [ 120.038512][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.038536][ T6036] RIP: 0033:0x7fcb1678efc9 [ 120.038556][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.038578][ T6036] RSP: 002b:00007fcb17639038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 120.038604][ T6036] RAX: ffffffffffffffda RBX: 00007fcb169e6090 RCX: 00007fcb1678efc9 [ 120.038620][ T6036] RDX: 000000000000001c RSI: 00002000000000c0 RDI: 0000000000000007 [ 120.038635][ T6036] RBP: 00007fcb16811f91 R08: 0000000000000000 R09: 0000000000000000 [ 120.038649][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.038663][ T6036] R13: 00007fcb169e6128 R14: 00007fcb169e6090 R15: 00007ffd575eacd8 [ 120.038695][ T6036] [ 122.654220][ T6066] Invalid ELF header magic: != ELF [ 122.874409][ T6073] netlink: 28 bytes leftover after parsing attributes in process `syz.2.29'. [ 128.196030][ T6134] netlink: 28 bytes leftover after parsing attributes in process `syz.3.42'. [ 130.170368][ T6141] sd 0:0:1:0: PR command failed: 1026 [ 130.175907][ T6141] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 130.182641][ T6141] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 137.828229][ T6234] netlink: 'syz.0.60': attribute type 1 has an invalid length. [ 137.846590][ T6234] netlink: 13 bytes leftover after parsing attributes in process `syz.0.60'. [ 138.406786][ T6242] netlink: 28 bytes leftover after parsing attributes in process `syz.0.62'. [ 138.586287][ T6242] veth0_macvtap: left promiscuous mode [ 139.617390][ T6265] netlink: 20 bytes leftover after parsing attributes in process `syz.2.65'. [ 140.268757][ T6279] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 143.268884][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.275997][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 144.104630][ T6346] netlink: 28 bytes leftover after parsing attributes in process `syz.3.75'. [ 146.957588][ T6392] random: crng reseeded on system resumption [ 147.019448][ T6392] Restarting kernel threads ... [ 147.025930][ T6392] Done restarting kernel threads. [ 147.059222][ T6387] process 'syz.1.82' launched ':,' with NULL argv: empty string added [ 147.188923][ T6392] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 147.349877][ T6392] netlink: 338 bytes leftover after parsing attributes in process `syz.0.83'. [ 147.401737][ T6392] netlink: 338 bytes leftover after parsing attributes in process `syz.0.83'. [ 148.460343][ T6399] syz.2.85 (6399) used greatest stack depth: 19528 bytes left [ 149.052709][ T6420] netlink: 224 bytes leftover after parsing attributes in process `syz.1.87'. [ 150.739173][ T6457] binder: BINDER_SET_CONTEXT_MGR already set [ 150.749337][ T6457] binder: 6448:6457 ioctl 4018620d 9 returned -16 [ 151.548753][ T6471] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 151.973331][ T6476] netlink: 28 bytes leftover after parsing attributes in process `syz.2.97'. [ 152.011621][ T6476] veth0_macvtap: left promiscuous mode [ 152.905284][ T6492] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 153.829698][ T6502] random: crng reseeded on system resumption [ 153.866340][ T6503] netlink: 28 bytes leftover after parsing attributes in process `syz.1.104'. [ 155.193459][ T6522] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 156.187059][ T6524] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 156.215292][ T6524] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 156.264134][ T6524] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 156.407376][ T6524] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 156.420744][ T6524] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 156.467257][ T6524] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 156.511086][ T6524] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 156.525727][ T6524] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 156.598752][ T6524] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 156.797093][ T6524] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 156.803078][ T6524] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 156.817632][ T6524] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 157.424604][ T6540] FAULT_INJECTION: forcing a failure. [ 157.424604][ T6540] name failslab, interval 1, probability 0, space 0, times 1 [ 157.480263][ T6540] CPU: 1 UID: 0 PID: 6540 Comm: syz.1.110 Not tainted syzkaller #0 PREEMPT(full) [ 157.480305][ T6540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 157.480323][ T6540] Call Trace: [ 157.480333][ T6540] [ 157.480345][ T6540] dump_stack_lvl+0x16c/0x1f0 [ 157.480387][ T6540] should_fail_ex+0x512/0x640 [ 157.480434][ T6540] ? fs_reclaim_acquire+0xae/0x150 [ 157.480481][ T6540] should_failslab+0xc2/0x120 [ 157.480575][ T6540] __kmalloc_noprof+0xdd/0x880 [ 157.480629][ T6540] ? ima_alloc_init_template+0x19d/0x720 [ 157.480687][ T6540] ? ima_alloc_init_template+0x19d/0x720 [ 157.480738][ T6540] ima_alloc_init_template+0x19d/0x720 [ 157.480795][ T6540] ? take_dentry_name_snapshot+0x319/0x7d0 [ 157.480848][ T6540] ima_store_measurement+0x1eb/0x5c0 [ 157.480904][ T6540] ? __pfx_ima_store_measurement+0x10/0x10 [ 157.480959][ T6540] ? vfs_getxattr_alloc+0xec/0x350 [ 157.481002][ T6540] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 157.481065][ T6540] process_measurement+0x1ddb/0x23e0 [ 157.481123][ T6540] ? __lock_acquire+0x622/0x1c90 [ 157.481167][ T6540] ? __pfx_process_measurement+0x10/0x10 [ 157.481213][ T6540] ? __kasan_slab_alloc+0x89/0x90 [ 157.481254][ T6540] ? security_file_alloc+0x34/0x2b0 [ 157.481287][ T6540] ? alloc_empty_file+0x73/0x1e0 [ 157.481328][ T6540] ? alloc_file_pseudo+0x13a/0x230 [ 157.481385][ T6540] ? find_held_lock+0x2b/0x80 [ 157.481468][ T6540] ima_file_mmap+0x1b1/0x1d0 [ 157.481512][ T6540] ? __pfx_ima_file_mmap+0x10/0x10 [ 157.481571][ T6540] security_mmap_file+0x88c/0x990 [ 157.481607][ T6540] vm_mmap_pgoff+0xec/0x470 [ 157.481653][ T6540] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 157.481691][ T6540] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 157.481740][ T6540] ? hugetlbfs_get_inode+0x31f/0x730 [ 157.481788][ T6540] ksys_mmap_pgoff+0x1c8/0x5c0 [ 157.481838][ T6540] __x64_sys_mmap+0x125/0x190 [ 157.481892][ T6540] do_syscall_64+0xcd/0xfa0 [ 157.481933][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.481965][ T6540] RIP: 0033:0x7f327798efc9 [ 157.481992][ T6540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.482023][ T6540] RSP: 002b:00007f32788c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 157.482063][ T6540] RAX: ffffffffffffffda RBX: 00007f3277be6090 RCX: 00007f327798efc9 [ 157.482083][ T6540] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 157.482102][ T6540] RBP: 00007f3277a11f91 R08: ffffffffffffffff R09: 0000300000000000 [ 157.482123][ T6540] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 157.482142][ T6540] R13: 00007f3277be6128 R14: 00007f3277be6090 R15: 00007ffff8594ce8 [ 157.482187][ T6540] [ 157.753117][ T30] audit: type=1804 audit(1762065985.670:2): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.110" name="anon_hugepage" dev="hugetlbfs" ino=9725 res=0 errno=0 [ 157.794135][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 157.960570][ T6548] mmap: syz.2.113 (6548) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 158.455613][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout [ 158.535250][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout [ 158.865456][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout [ 159.817447][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 160.569948][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout [ 160.615161][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout [ 160.906137][ T6594] binder: 6593:6594 ioctl 40046210 0 returned -14 [ 160.939716][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout [ 161.895198][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 162.191708][ T6614] ptp ptp0: only physical clock in use now [ 162.252020][ T6614] hub 1-0:1.0: USB hub found [ 162.263278][ T6614] hub 1-0:1.0: 1 port detected [ 162.625158][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout [ 162.695147][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout [ 163.017813][ T5150] Bluetooth: hci3: command 0x0c1a tx timeout [ 163.629962][ T6637] netlink: 20 bytes leftover after parsing attributes in process `syz.3.125'. [ 166.060856][ T6674] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 166.910792][ T6662] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek [ 180.793688][ T6904] dump_stack_lvl+0x16c/0x1f0 [ 180.793729][ T6904] should_fail_ex+0x512/0x640 [ 180.793786][ T6904] get_futex_key+0x1d0/0x1560 [ 180.793834][ T6904] ? __pfx_get_futex_key+0x10/0x10 [ 180.793889][ T6904] futex_wait_setup+0x9d/0x550 [ 180.793954][ T6904] __futex_wait+0x193/0x2f0 [ 180.794008][ T6904] ? __pfx___futex_wait+0x10/0x10 [ 180.794087][ T6904] ? __pfx_futex_wake_mark+0x10/0x10 [ 180.794147][ T6904] ? futex_private_hash_put+0x176/0x300 [ 180.794196][ T6904] ? futex_private_hash_put+0x18a/0x300 [ 180.794241][ T6904] futex_wait+0xe8/0x380 [ 180.794270][ T6904] ? __pfx_futex_wait+0x10/0x10 [ 180.794334][ T6904] ? ksys_read+0x190/0x250 [ 180.794377][ T6904] do_futex+0x229/0x350 [ 180.794422][ T6904] ? __pfx_do_futex+0x10/0x10 [ 180.794486][ T6904] __x64_sys_futex+0x1e0/0x4c0 [ 180.794536][ T6904] ? fput+0x9b/0xd0 [ 180.794579][ T6904] ? __pfx___x64_sys_futex+0x10/0x10 [ 180.794621][ T6904] ? ksys_read+0x1ac/0x250 [ 180.794654][ T6904] ? __pfx_ksys_read+0x10/0x10 [ 180.794712][ T6904] do_syscall_64+0xcd/0xfa0 [ 180.794752][ T6904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.794785][ T6904] RIP: 0033:0x7f326758efc9 [ 180.794809][ T6904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.794841][ T6904] RSP: 002b:00007f32657f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 180.794872][ T6904] RAX: ffffffffffffffda RBX: 00007f32677e5fa8 RCX: 00007f326758efc9 [ 180.794892][ T6904] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f32677e5fa8 [ 180.794912][ T6904] RBP: 00007f32677e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 180.794932][ T6904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.794951][ T6904] R13: 00007f32677e6038 R14: 00007fff44d88350 R15: 00007fff44d88438 [ 180.794998][ T6904] [ 181.449038][ T6915] netlink: 330 bytes leftover after parsing attributes in process `syz.3.169'. [ 181.509755][ T6918] netlink: 342 bytes leftover after parsing attributes in process `syz.3.169'. [ 181.723622][ T6918] netlink: 342 bytes leftover after parsing attributes in process `syz.3.169'. [ 181.774789][ T6915] netlink: 342 bytes leftover after parsing attributes in process `syz.3.169'. [ 181.850668][ T6928] futex_wake_op: syz.1.171 tries to shift op by -2048; fix this program [ 181.874084][ T6928] futex_wake_op: syz.1.171 tries to shift op by -2048; fix this program [ 181.936347][ T6928] 0x000000000001-0x000000020000 : "" [ 182.054926][ T6928] ftl_cs: FTL header corrupt! [ 182.725731][ T6941] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 185.709536][ T6986] netlink: 330 bytes leftover after parsing attributes in process `syz.0.180'. [ 185.720995][ T6986] netlink: 342 bytes leftover after parsing attributes in process `syz.0.180'. [ 185.772637][ T6986] netlink: 342 bytes leftover after parsing attributes in process `syz.0.180'. [ 185.847345][ T6991] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 188.938341][ T7033] netlink: 330 bytes leftover after parsing attributes in process `syz.2.193'. [ 189.056408][ T7033] netlink: 342 bytes leftover after parsing attributes in process `syz.2.193'. [ 189.143772][ T7033] netlink: 342 bytes leftover after parsing attributes in process `syz.2.193'. [ 191.462003][ T7061] binder: BINDER_SET_CONTEXT_MGR already set [ 191.470669][ T7061] binder: 7055:7061 ioctl 4018620d 9 returned -16 [ 196.178874][ T7112] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 196.345271][ T7102] netlink: 28 bytes leftover after parsing attributes in process `syz.0.207'. [ 197.279672][ T7124] random: crng reseeded on system resumption [ 199.676137][ T7140] syz.0.222 uses obsolete (PF_INET,SOCK_PACKET) [ 199.934415][ T7142] can: request_module (can-proto-3) failed. [ 199.949345][ T7147] netlink: 28 bytes leftover after parsing attributes in process `syz.1.215'. [ 200.866607][ T7159] netlink: 28 bytes leftover after parsing attributes in process `syz.0.226'. [ 201.992647][ T7174] netlink: 28 bytes leftover after parsing attributes in process `syz.0.230'. [ 203.279144][ T7188] netlink: 28 bytes leftover after parsing attributes in process `syz.0.234'. [ 203.365089][ T7189] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 204.714758][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.724140][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.639685][ T7225] random: crng reseeded on system resumption [ 208.133999][ T7254] netlink: 28 bytes leftover after parsing attributes in process `syz.3.238'. [ 208.639498][ T7257] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 210.581603][ T7276] netlink: 28 bytes leftover after parsing attributes in process `syz.1.244'. [ 210.599317][ T7276] veth0_macvtap: left promiscuous mode [ 214.397277][ T7331] netlink: 28 bytes leftover after parsing attributes in process `syz.3.253'. [ 215.674842][ T7354] netlink: 28 bytes leftover after parsing attributes in process `syz.0.271'. [ 215.885230][ T7351] binder: BINDER_SET_CONTEXT_MGR already set [ 215.909332][ T7351] binder: 7340:7351 ioctl 4018620d 9 returned -16 [ 216.903113][ T7368] netlink: 28 bytes leftover after parsing attributes in process `syz.0.274'. [ 220.002549][ T7412] netlink: 28 bytes leftover after parsing attributes in process `syz.3.277'. [ 220.094092][ T7417] netlink: 28 bytes leftover after parsing attributes in process `syz.2.278'. [ 220.172440][ T7421] netlink: 28 bytes leftover after parsing attributes in process `syz.0.281'. [ 222.340020][ T7448] netlink: 28 bytes leftover after parsing attributes in process `syz.3.287'. [ 222.784478][ T7457] netlink: 28 bytes leftover after parsing attributes in process `syz.2.291'. [ 225.732514][ T7509] netlink: 28 bytes leftover after parsing attributes in process `syz.3.304'. [ 227.244349][ T7529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.317'. [ 227.924005][ T7542] netlink: 28 bytes leftover after parsing attributes in process `syz.1.310'. [ 228.249587][ T7544] FAULT_INJECTION: forcing a failure. [ 228.249587][ T7544] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 228.273803][ T7544] CPU: 0 UID: 0 PID: 7544 Comm: syz.3.312 Not tainted syzkaller #0 PREEMPT(full) [ 228.273851][ T7544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 228.273865][ T7544] Call Trace: [ 228.273872][ T7544] [ 228.273881][ T7544] dump_stack_lvl+0x16c/0x1f0 [ 228.273912][ T7544] should_fail_ex+0x512/0x640 [ 228.273954][ T7544] should_fail_alloc_page+0xe7/0x130 [ 228.273988][ T7544] prepare_alloc_pages+0x3c2/0x610 [ 228.274025][ T7544] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 228.274051][ T7544] ? stack_trace_save+0x8e/0xc0 [ 228.274077][ T7544] ? __pfx_stack_trace_save+0x10/0x10 [ 228.274104][ T7544] ? stack_depot_save_flags+0x29/0x9c0 [ 228.274138][ T7544] ? trace_mm_page_alloc+0x11f/0x1a0 [ 228.274172][ T7544] ? kasan_save_stack+0x42/0x60 [ 228.274198][ T7544] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 228.274220][ T7544] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 228.274242][ T7544] ? __handle_mm_fault+0xada/0x2aa0 [ 228.274277][ T7544] ? do_user_addr_fault+0x7a6/0x1370 [ 228.274297][ T7544] ? exc_page_fault+0x64/0xc0 [ 228.274319][ T7544] ? asm_exc_page_fault+0x26/0x30 [ 228.274340][ T7544] ? rep_movs_alternative+0xf/0x90 [ 228.274371][ T7544] ? _copy_from_user+0x98/0xd0 [ 228.274404][ T7544] ? generic_map_update_batch+0x38a/0x610 [ 228.274425][ T7544] ? bpf_map_do_batch+0x5be/0x680 [ 228.274466][ T7544] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 228.274506][ T7544] ? policy_nodemask+0xea/0x4e0 [ 228.274538][ T7544] alloc_pages_mpol+0x1fb/0x550 [ 228.274570][ T7544] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 228.274611][ T7544] alloc_pages_noprof+0x131/0x390 [ 228.274645][ T7544] pte_alloc_one+0x1e/0x350 [ 228.274672][ T7544] do_pte_missing+0x1acf/0x3ba0 [ 228.274710][ T7544] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 228.274748][ T7544] ? __pmd_alloc+0x64f/0x8b0 [ 228.274782][ T7544] __handle_mm_fault+0x1556/0x2aa0 [ 228.274830][ T7544] ? mt_find+0x3e2/0xa20 [ 228.274860][ T7544] ? __pfx___handle_mm_fault+0x10/0x10 [ 228.274895][ T7544] ? __pfx_mt_find+0x10/0x10 [ 228.274940][ T7544] ? find_vma+0xbf/0x140 [ 228.274967][ T7544] ? __pfx_find_vma+0x10/0x10 [ 228.275010][ T7544] handle_mm_fault+0x589/0xd10 [ 228.275058][ T7544] ? __pkru_allows_pkey+0x11/0xb0 [ 228.275105][ T7544] do_user_addr_fault+0x7a6/0x1370 [ 228.275139][ T7544] ? rcu_is_watching+0x12/0xc0 [ 228.275178][ T7544] exc_page_fault+0x64/0xc0 [ 228.275211][ T7544] asm_exc_page_fault+0x26/0x30 [ 228.275238][ T7544] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 228.275283][ T7544] Code: c4 10 e9 84 3c 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 3c 04 00 66 66 [ 228.275312][ T7544] RSP: 0018:ffffc90004a37ac0 EFLAGS: 00050206 [ 228.275337][ T7544] RAX: 0000000000000001 RBX: 0000000000000081 RCX: 0000000000000006 [ 228.275356][ T7544] RDX: ffffed1028af6400 RSI: 0000000000000081 RDI: ffff8881457b2000 [ 228.275375][ T7544] RBP: 0000000000000006 R08: 0000000000000001 R09: ffffed1028af6400 [ 228.275394][ T7544] R10: 0000000000000005 R11: 0000000000000001 R12: 0000000000000000 [ 228.275411][ T7544] R13: ffff8881457b2000 R14: 0000000000003d7e R15: 0000000000000010 [ 228.275453][ T7544] _copy_from_user+0x98/0xd0 [ 228.275502][ T7544] generic_map_update_batch+0x38a/0x610 [ 228.275546][ T7544] ? __pfx_generic_map_update_batch+0x10/0x10 [ 228.275585][ T7544] ? __pfx_generic_map_update_batch+0x10/0x10 [ 228.275614][ T7544] bpf_map_do_batch+0x5be/0x680 [ 228.275655][ T7544] __sys_bpf+0x482c/0x4980 [ 228.275687][ T7544] ? __pfx___sys_bpf+0x10/0x10 [ 228.275713][ T7544] ? find_held_lock+0x2b/0x80 [ 228.275747][ T7544] ? find_held_lock+0x2b/0x80 [ 228.275783][ T7544] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 228.275843][ T7544] ? fput+0x9b/0xd0 [ 228.275878][ T7544] ? ksys_write+0x1ac/0x250 [ 228.275906][ T7544] ? __pfx_ksys_write+0x10/0x10 [ 228.275941][ T7544] __x64_sys_bpf+0x78/0xc0 [ 228.275968][ T7544] ? lockdep_hardirqs_on+0x7c/0x110 [ 228.275998][ T7544] do_syscall_64+0xcd/0xfa0 [ 228.276030][ T7544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.276056][ T7544] RIP: 0033:0x7f326758efc9 [ 228.276077][ T7544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.276101][ T7544] RSP: 002b:00007f32657f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 228.276125][ T7544] RAX: ffffffffffffffda RBX: 00007f32677e5fa0 RCX: 00007f326758efc9 [ 228.276142][ T7544] RDX: 0000000000000092 RSI: 0000200000000380 RDI: 000000000000001a [ 228.276158][ T7544] RBP: 00007f32657f6090 R08: 0000000000000000 R09: 0000000000000000 [ 228.276174][ T7544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.276190][ T7544] R13: 00007f32677e6038 R14: 00007f32677e5fa0 R15: 00007fff44d88438 [ 228.276225][ T7544] [ 230.801034][ T7572] netlink: 28 bytes leftover after parsing attributes in process `syz.3.319'. [ 231.544947][ T7582] netlink: 28 bytes leftover after parsing attributes in process `syz.2.323'. [ 233.071113][ T7608] netlink: 28 bytes leftover after parsing attributes in process `syz.0.327'. [ 235.352411][ T7634] netlink: 28 bytes leftover after parsing attributes in process `syz.0.330'. [ 236.211093][ T7646] netlink: 28 bytes leftover after parsing attributes in process `syz.3.334'. [ 236.577703][ T7650] netlink: 28 bytes leftover after parsing attributes in process `syz.2.335'. [ 240.236957][ T7699] netlink: 28 bytes leftover after parsing attributes in process `syz.2.347'. [ 241.223826][ T7706] Invalid ELF header magic: != ELF [ 242.426402][ T7726] netlink: 28 bytes leftover after parsing attributes in process `syz.1.352'. [ 242.985815][ T7737] binder: BINDER_SET_CONTEXT_MGR already set [ 242.992291][ T7737] binder: 7732:7737 ioctl 4018620d 9 returned -16 [ 245.426613][ T7776] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 246.949125][ T7797] binder: BINDER_SET_CONTEXT_MGR already set [ 246.957636][ T7797] binder: 7796:7797 ioctl 4018620d 9 returned -16 [ 249.431296][ T7839] MTRR 1 not used [ 250.621688][ T7850] netlink: 342 bytes leftover after parsing attributes in process `syz.3.392'. [ 250.638211][ T7850] random: crng reseeded on system resumption [ 252.067183][ T7865] binder: BINDER_SET_CONTEXT_MGR already set [ 252.073337][ T7865] binder: 7861:7865 ioctl 4018620d 9 returned -16 [ 254.397723][ T7902] netlink: 28 bytes leftover after parsing attributes in process `syz.1.395'. [ 254.741620][ T7912] netlink: 342 bytes leftover after parsing attributes in process `syz.0.398'. [ 254.878467][ T7912] random: crng reseeded on system resumption [ 264.967202][ T8052] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 266.026480][ T8054] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 266.032712][ T8054] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 266.049611][ T8054] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 266.066044][ T8054] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 266.155774][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.162247][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 267.095936][ T8076] binder: BINDER_SET_CONTEXT_MGR already set [ 267.154142][ T8076] binder: 8070:8076 ioctl 4018620d 9 returned -16 [ 268.065537][ T5150] Bluetooth: hci2: command 0x0c1a tx timeout [ 268.065547][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout [ 268.065597][ T5842] Bluetooth: hci0: command 0x0c1a tx timeout [ 268.139355][ T5842] Bluetooth: hci3: command 0x0c1a tx timeout [ 268.371689][ T8103] binder: 8102:8103 ioctl 40046210 0 returned -14 [ 270.613990][ T8137] binder: BINDER_SET_CONTEXT_MGR already set [ 270.635080][ T8137] binder: 8132:8137 ioctl 4018620d 9 returned -16 [ 270.993401][ T8144] netlink: 28 bytes leftover after parsing attributes in process `syz.2.453'. [ 272.091045][ T8165] binder: 8164:8165 ioctl 40046210 0 returned -14 [ 274.077975][ T8192] binder: BINDER_SET_CONTEXT_MGR already set [ 274.086878][ T8192] binder: 8186:8192 ioctl 4018620d 9 returned -16 [ 275.187977][ T8206] ptp ptp0: only physical clock in use now [ 275.247251][ T8206] hub 1-0:1.0: USB hub found [ 275.269702][ T8206] hub 1-0:1.0: 1 port detected [ 277.582532][ T8236] binder: BINDER_SET_CONTEXT_MGR already set [ 277.679652][ T8236] binder: 8230:8236 ioctl 4018620d 9 returned -16 [ 280.520821][ T8289] binder: BINDER_SET_CONTEXT_MGR already set [ 280.532397][ T8289] binder: 8282:8289 ioctl 4018620d 9 returned -16 [ 281.766256][ T8306] netlink: 28 bytes leftover after parsing attributes in process `syz.1.496'. [ 283.999762][ T8339] netlink: 20 bytes leftover after parsing attributes in process `syz.1.506'. [ 284.290834][ T8344] binder: BINDER_SET_CONTEXT_MGR already set [ 284.297401][ T8344] binder: 8336:8344 ioctl 4018620d 9 returned -16 [ 288.113177][ T8398] binder: BINDER_SET_CONTEXT_MGR already set [ 288.134590][ T8398] binder: 8392:8398 ioctl 4018620d 9 returned -16 [ 289.357591][ T8420] binder: BINDER_SET_CONTEXT_MGR already set [ 289.363741][ T8420] binder: 8413:8420 ioctl 4018620d 9 returned -16 [ 290.180531][ T8436] netlink: 20 bytes leftover after parsing attributes in process `syz.2.526'. [ 293.649553][ T8483] random: crng reseeded on system resumption [ 293.833718][ T8483] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 293.893612][ T8483] netlink: 338 bytes leftover after parsing attributes in process `syz.2.540'. [ 293.918405][ T8483] netlink: 338 bytes leftover after parsing attributes in process `syz.2.540'. [ 302.729910][ T8605] ptp ptp0: only physical clock in use now [ 302.793358][ T8605] hub 1-0:1.0: USB hub found [ 302.840355][ T8605] hub 1-0:1.0: 1 port detected [ 306.643801][ T8648] binder: BINDER_SET_CONTEXT_MGR already set [ 306.650184][ T8648] binder: 8641:8648 ioctl 4018620d 9 returned -16 [ 311.275701][ T8697] futex_wake_op: syz.1.581 tries to shift op by -2048; fix this program [ 311.323414][ T8697] Invalid ELF header magic: != ELF [ 312.306895][ T8703] binder: BINDER_SET_CONTEXT_MGR already set [ 312.313460][ T8703] binder: 8702:8703 ioctl 4018620d 9 returned -16 [ 314.101806][ T8746] binder: BINDER_SET_CONTEXT_MGR already set [ 314.109545][ T8746] binder: 8740:8746 ioctl 4018620d 9 returned -16 [ 317.398176][ T8789] binder: BINDER_SET_CONTEXT_MGR already set [ 317.404772][ T8789] binder: 8788:8789 ioctl 4018620d 9 returned -16 [ 319.620617][ T8835] FAULT_INJECTION: forcing a failure. [ 319.620617][ T8835] name failslab, interval 1, probability 0, space 0, times 0 [ 319.663616][ T8835] CPU: 1 UID: 0 PID: 8835 Comm: syz.2.614 Not tainted syzkaller #0 PREEMPT(full) [ 319.663654][ T8835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 319.663673][ T8835] Call Trace: [ 319.663687][ T8835] [ 319.663696][ T8835] dump_stack_lvl+0x16c/0x1f0 [ 319.663728][ T8835] should_fail_ex+0x512/0x640 [ 319.663765][ T8835] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 319.663792][ T8835] should_failslab+0xc2/0x120 [ 319.663825][ T8835] kmem_cache_alloc_noprof+0x75/0x6e0 [ 319.663849][ T8835] ? ptlock_alloc+0x1f/0x70 [ 319.663891][ T8835] ? ptlock_alloc+0x1f/0x70 [ 319.663925][ T8835] ptlock_alloc+0x1f/0x70 [ 319.663961][ T8835] pte_alloc_one+0x84/0x350 [ 319.663989][ T8835] do_pte_missing+0x1acf/0x3ba0 [ 319.664027][ T8835] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 319.664067][ T8835] ? __pmd_alloc+0x64f/0x8b0 [ 319.664102][ T8835] __handle_mm_fault+0x1556/0x2aa0 [ 319.664143][ T8835] ? mt_find+0x3e2/0xa20 [ 319.664175][ T8835] ? __pfx___handle_mm_fault+0x10/0x10 [ 319.664210][ T8835] ? __pfx_mt_find+0x10/0x10 [ 319.664264][ T8835] ? find_vma+0xbf/0x140 [ 319.664291][ T8835] ? __pfx_find_vma+0x10/0x10 [ 319.664322][ T8835] handle_mm_fault+0x589/0xd10 [ 319.664360][ T8835] ? __pkru_allows_pkey+0x11/0xb0 [ 319.664400][ T8835] do_user_addr_fault+0x7a6/0x1370 [ 319.664425][ T8835] ? rcu_is_watching+0x12/0xc0 [ 319.664454][ T8835] exc_page_fault+0x64/0xc0 [ 319.664480][ T8835] asm_exc_page_fault+0x26/0x30 [ 319.664502][ T8835] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 319.664537][ T8835] Code: c4 10 e9 84 3c 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 3c 04 00 66 66 [ 319.664557][ T8835] RSP: 0018:ffffc90017de7ac0 EFLAGS: 00050206 [ 319.664574][ T8835] RAX: 0000000000000001 RBX: 0000000000000081 RCX: 0000000000000006 [ 319.664587][ T8835] RDX: ffffed100680d3a4 RSI: 0000000000000081 RDI: ffff888034069d20 [ 319.664600][ T8835] RBP: 0000000000000006 R08: 0000000000000001 R09: ffffed100680d3a4 [ 319.664613][ T8835] R10: 0000000000000005 R11: 0000000000000001 R12: 0000000000000000 [ 319.664625][ T8835] R13: ffff888034069d20 R14: 0000000000003d7e R15: 0000000000000010 [ 319.664653][ T8835] _copy_from_user+0x98/0xd0 [ 319.664695][ T8835] generic_map_update_batch+0x38a/0x610 [ 319.664728][ T8835] ? __pfx_generic_map_update_batch+0x10/0x10 [ 319.664757][ T8835] ? __pfx_generic_map_update_batch+0x10/0x10 [ 319.664782][ T8835] bpf_map_do_batch+0x5be/0x680 [ 319.664818][ T8835] __sys_bpf+0x482c/0x4980 [ 319.664847][ T8835] ? __pfx___sys_bpf+0x10/0x10 [ 319.664871][ T8835] ? find_held_lock+0x2b/0x80 [ 319.664902][ T8835] ? find_held_lock+0x2b/0x80 [ 319.664937][ T8835] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 319.664997][ T8835] ? fput+0x9b/0xd0 [ 319.665038][ T8835] ? ksys_write+0x1ac/0x250 [ 319.665069][ T8835] ? __pfx_ksys_write+0x10/0x10 [ 319.665110][ T8835] __x64_sys_bpf+0x78/0xc0 [ 319.665141][ T8835] ? lockdep_hardirqs_on+0x7c/0x110 [ 319.665176][ T8835] do_syscall_64+0xcd/0xfa0 [ 319.665213][ T8835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.665243][ T8835] RIP: 0033:0x7fc83858efc9 [ 319.665267][ T8835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.665296][ T8835] RSP: 002b:00007fc83950d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 319.665323][ T8835] RAX: ffffffffffffffda RBX: 00007fc8387e5fa0 RCX: 00007fc83858efc9 [ 319.665343][ T8835] RDX: 0000000000000092 RSI: 0000200000000380 RDI: 000000000000001a [ 319.665362][ T8835] RBP: 00007fc83950d090 R08: 0000000000000000 R09: 0000000000000000 [ 319.665381][ T8835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 319.665399][ T8835] R13: 00007fc8387e6038 R14: 00007fc8387e5fa0 R15: 00007ffc069672d8 [ 319.665443][ T8835] [ 320.647479][ T8849] FAULT_INJECTION: forcing a failure. [ 320.647479][ T8849] name failslab, interval 1, probability 0, space 0, times 0 [ 320.686272][ T8849] CPU: 1 UID: 0 PID: 8849 Comm: syz.2.619 Not tainted syzkaller #0 PREEMPT(full) [ 320.686311][ T8849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 320.686328][ T8849] Call Trace: [ 320.686337][ T8849] [ 320.686348][ T8849] dump_stack_lvl+0x16c/0x1f0 [ 320.686387][ T8849] should_fail_ex+0x512/0x640 [ 320.686434][ T8849] ? __kmalloc_noprof+0xca/0x880 [ 320.686487][ T8849] should_failslab+0xc2/0x120 [ 320.686529][ T8849] __kmalloc_noprof+0xdd/0x880 [ 320.686579][ T8849] ? kernfs_fop_write_iter+0x237/0x570 [ 320.686634][ T8849] ? kernfs_fop_write_iter+0x237/0x570 [ 320.686691][ T8849] kernfs_fop_write_iter+0x237/0x570 [ 320.686747][ T8849] vfs_write+0x7d3/0x11d0 [ 320.686780][ T8849] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 320.686832][ T8849] ? __pfx___mutex_lock+0x10/0x10 [ 320.686868][ T8849] ? __pfx_vfs_write+0x10/0x10 [ 320.686928][ T8849] ksys_write+0x12a/0x250 [ 320.686962][ T8849] ? __pfx_ksys_write+0x10/0x10 [ 320.687011][ T8849] do_syscall_64+0xcd/0xfa0 [ 320.687052][ T8849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.687084][ T8849] RIP: 0033:0x7fc83858efc9 [ 320.687108][ T8849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 320.687138][ T8849] RSP: 002b:00007fc83950d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 320.687168][ T8849] RAX: ffffffffffffffda RBX: 00007fc8387e5fa0 RCX: 00007fc83858efc9 [ 320.687188][ T8849] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000003 [ 320.687207][ T8849] RBP: 00007fc83950d090 R08: 0000000000000000 R09: 0000000000000000 [ 320.687225][ T8849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 320.687244][ T8849] R13: 00007fc8387e6038 R14: 00007fc8387e5fa0 R15: 00007ffc069672d8 [ 320.687288][ T8849] [ 321.696365][ T8874] FAULT_INJECTION: forcing a failure. [ 321.696365][ T8874] name fail_futex, interval 1, probability 0, space 0, times 0 [ 321.714642][ T8874] CPU: 1 UID: 0 PID: 8874 Comm: syz.2.628 Not tainted syzkaller #0 PREEMPT(full) [ 321.714682][ T8874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 321.714694][ T8874] Call Trace: [ 321.714702][ T8874] [ 321.714711][ T8874] dump_stack_lvl+0x16c/0x1f0 [ 321.714741][ T8874] should_fail_ex+0x512/0x640 [ 321.714782][ T8874] get_futex_key+0x1d0/0x1560 [ 321.714817][ T8874] ? __pfx_get_futex_key+0x10/0x10 [ 321.714847][ T8874] ? __mutex_trylock_common+0xe9/0x250 [ 321.714889][ T8874] futex_wake+0xea/0x530 [ 321.714929][ T8874] ? __pfx_futex_wake+0x10/0x10 [ 321.714980][ T8874] ? __lock_acquire+0xb8a/0x1c90 [ 321.715036][ T8874] do_futex+0x1e3/0x350 [ 321.715068][ T8874] ? __pfx_do_futex+0x10/0x10 [ 321.715099][ T8874] ? __might_fault+0xe3/0x190 [ 321.715130][ T8874] mm_release+0x24e/0x300 [ 321.715157][ T8874] do_exit+0x68e/0x2bf0 [ 321.715196][ T8874] ? __pfx_do_exit+0x10/0x10 [ 321.715229][ T8874] ? do_raw_spin_lock+0x12c/0x2b0 [ 321.715266][ T8874] ? find_held_lock+0x2b/0x80 [ 321.715294][ T8874] do_group_exit+0xd3/0x2a0 [ 321.715330][ T8874] get_signal+0x2671/0x26d0 [ 321.715370][ T8874] ? __pfx_anon_pipe_write+0x10/0x10 [ 321.715399][ T8874] ? __pfx_get_signal+0x10/0x10 [ 321.715426][ T8874] ? do_futex+0x122/0x350 [ 321.715458][ T8874] ? __pfx_do_futex+0x10/0x10 [ 321.715493][ T8874] arch_do_signal_or_restart+0x8f/0x790 [ 321.715525][ T8874] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 321.715562][ T8874] ? xfd_validate_state+0x61/0x180 [ 321.715596][ T8874] ? __pfx_ksys_write+0x10/0x10 [ 321.715628][ T8874] exit_to_user_mode_loop+0x85/0x130 [ 321.715681][ T8874] do_syscall_64+0x426/0xfa0 [ 321.715719][ T8874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.715749][ T8874] RIP: 0033:0x7fc83858efc9 [ 321.715773][ T8874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.715801][ T8874] RSP: 002b:00007fc83950d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 321.715830][ T8874] RAX: fffffffffffffe00 RBX: 00007fc8387e5fa8 RCX: 00007fc83858efc9 [ 321.715849][ T8874] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc8387e5fa8 [ 321.715865][ T8874] RBP: 00007fc8387e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 321.715882][ T8874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.715899][ T8874] R13: 00007fc8387e6038 R14: 00007ffc069671f0 R15: 00007ffc069672d8 [ 321.715940][ T8874] [ 322.071738][ T8876] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 322.712499][ T8884] FAULT_INJECTION: forcing a failure. [ 322.712499][ T8884] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 322.712578][ T8884] CPU: 1 UID: 0 PID: 8884 Comm: syz.0.631 Not tainted syzkaller #0 PREEMPT(full) [ 322.712605][ T8884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 322.712619][ T8884] Call Trace: [ 322.712626][ T8884] [ 322.712634][ T8884] dump_stack_lvl+0x16c/0x1f0 [ 322.712664][ T8884] should_fail_ex+0x512/0x640 [ 322.712704][ T8884] should_fail_alloc_page+0xe7/0x130 [ 322.712739][ T8884] prepare_alloc_pages+0x3c2/0x610 [ 322.712775][ T8884] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 322.712805][ T8884] ? __lock_acquire+0x622/0x1c90 [ 322.712844][ T8884] ? __lock_acquire+0x622/0x1c90 [ 322.712875][ T8884] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 322.712913][ T8884] ? find_held_lock+0x2b/0x80 [ 322.712937][ T8884] ? is_bpf_text_address+0x8a/0x1a0 [ 322.712970][ T8884] ? bpf_ksym_find+0x124/0x1c0 [ 322.712993][ T8884] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.713036][ T8884] ? policy_nodemask+0xea/0x4e0 [ 322.713070][ T8884] alloc_pages_mpol+0x1fb/0x550 [ 322.713103][ T8884] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 322.713143][ T8884] folio_alloc_mpol_noprof+0x36/0x2f0 [ 322.713182][ T8884] shmem_alloc_folio+0x135/0x160 [ 322.713220][ T8884] shmem_alloc_and_add_folio+0x499/0xc20 [ 322.713277][ T8884] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 322.713319][ T8884] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 322.713350][ T8884] shmem_get_folio_gfp+0x67f/0x1610 [ 322.713380][ T8884] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 322.713405][ T8884] ? filemap_map_pages+0xe01/0x1b70 [ 322.713432][ T8884] shmem_fault+0x1fe/0xa30 [ 322.713456][ T8884] ? __pfx_shmem_fault+0x10/0x10 [ 322.713480][ T8884] ? rcu_is_watching+0x12/0xc0 [ 322.713505][ T8884] ? __pfx_filemap_map_pages+0x10/0x10 [ 322.713535][ T8884] ? __pfx_filemap_map_pages+0x10/0x10 [ 322.713554][ T8884] __do_fault+0x10d/0x490 [ 322.713580][ T8884] ? __pfx_filemap_map_pages+0x10/0x10 [ 322.713600][ T8884] do_pte_missing+0xf4a/0x3ba0 [ 322.713635][ T8884] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 322.713670][ T8884] ? __pmd_alloc+0x64f/0x8b0 [ 322.713703][ T8884] __handle_mm_fault+0x1556/0x2aa0 [ 322.713741][ T8884] ? mt_find+0x3e2/0xa20 [ 322.713770][ T8884] ? __pfx___handle_mm_fault+0x10/0x10 [ 322.713803][ T8884] ? __pfx_mt_find+0x10/0x10 [ 322.713846][ T8884] ? find_vma+0xbf/0x140 [ 322.713871][ T8884] ? __pfx_find_vma+0x10/0x10 [ 322.713900][ T8884] handle_mm_fault+0x589/0xd10 [ 322.713936][ T8884] ? __pkru_allows_pkey+0x11/0xb0 [ 322.713974][ T8884] do_user_addr_fault+0x7a6/0x1370 [ 322.713997][ T8884] ? rcu_is_watching+0x12/0xc0 [ 322.714024][ T8884] exc_page_fault+0x64/0xc0 [ 322.714049][ T8884] asm_exc_page_fault+0x26/0x30 [ 322.714070][ T8884] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 322.714103][ T8884] Code: c4 10 e9 84 3c 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 3c 04 00 66 66 [ 322.714126][ T8884] RSP: 0018:ffffc90018357ac0 EFLAGS: 00050206 [ 322.714144][ T8884] RAX: 0000000000000001 RBX: 0000000000000081 RCX: 0000000000000006 [ 322.714158][ T8884] RDX: ffffed1006289e9c RSI: 0000000000000081 RDI: ffff88803144f4e0 [ 322.714173][ T8884] RBP: 0000000000000006 R08: 0000000000000001 R09: ffffed1006289e9c [ 322.714187][ T8884] R10: 0000000000000005 R11: 0000000000000001 R12: 0000000000000000 [ 322.714201][ T8884] R13: ffff88803144f4e0 R14: 0000000000003d7e R15: 0000000000000010 [ 322.714234][ T8884] _copy_from_user+0x98/0xd0 [ 322.714273][ T8884] generic_map_update_batch+0x38a/0x610 [ 322.714304][ T8884] ? __pfx_generic_map_update_batch+0x10/0x10 [ 322.714334][ T8884] ? __pfx_generic_map_update_batch+0x10/0x10 [ 322.714359][ T8884] bpf_map_do_batch+0x5be/0x680 [ 322.714395][ T8884] __sys_bpf+0x482c/0x4980 [ 322.714423][ T8884] ? __pfx___sys_bpf+0x10/0x10 [ 322.714446][ T8884] ? find_held_lock+0x2b/0x80 [ 322.714475][ T8884] ? find_held_lock+0x2b/0x80 [ 322.714507][ T8884] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 322.714553][ T8884] ? fput+0x9b/0xd0 [ 322.714585][ T8884] ? ksys_write+0x1ac/0x250 [ 322.714611][ T8884] ? __pfx_ksys_write+0x10/0x10 [ 322.714642][ T8884] __x64_sys_bpf+0x78/0xc0 [ 322.714665][ T8884] ? lockdep_hardirqs_on+0x7c/0x110 [ 322.714691][ T8884] do_syscall_64+0xcd/0xfa0 [ 322.714720][ T8884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.714743][ T8884] RIP: 0033:0x7fcb1678efc9 [ 322.714760][ T8884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.714781][ T8884] RSP: 002b:00007fcb1765a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 322.714812][ T8884] RAX: ffffffffffffffda RBX: 00007fcb169e5fa0 RCX: 00007fcb1678efc9 [ 322.714831][ T8884] RDX: 0000000000000092 RSI: 0000200000000380 RDI: 000000000000001a [ 322.714849][ T8884] RBP: 00007fcb1765a090 R08: 0000000000000000 R09: 0000000000000000 [ 322.714867][ T8884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 322.714884][ T8884] R13: 00007fcb169e6038 R14: 00007fcb169e5fa0 R15: 00007ffd575eacd8 [ 322.714927][ T8884] [ 322.971830][ T8893] FAULT_INJECTION: forcing a failure. [ 322.971830][ T8893] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 322.972026][ T8893] CPU: 0 UID: 0 PID: 8893 Comm: syz.2.633 Not tainted syzkaller #0 PREEMPT(full) [ 322.972064][ T8893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 322.972081][ T8893] Call Trace: [ 322.972091][ T8893] [ 322.972103][ T8893] dump_stack_lvl+0x16c/0x1f0 [ 322.972150][ T8893] should_fail_ex+0x512/0x640 [ 322.972205][ T8893] _copy_from_iter+0x29f/0x1720 [ 322.972268][ T8893] ? __pfx__copy_from_iter+0x10/0x10 [ 322.972317][ T8893] ? rcu_is_watching+0x12/0xc0 [ 322.972353][ T8893] ? trace_kmalloc+0x2b/0xd0 [ 322.972390][ T8893] ? __kmalloc_noprof+0x34f/0x880 [ 322.972452][ T8893] ? kernfs_fop_write_iter+0x237/0x570 [ 322.972517][ T8893] kernfs_fop_write_iter+0x19a/0x570 [ 322.972575][ T8893] vfs_write+0x7d3/0x11d0 [ 322.972612][ T8893] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 322.972666][ T8893] ? __pfx___mutex_lock+0x10/0x10 [ 322.972705][ T8893] ? __pfx_vfs_write+0x10/0x10 [ 322.972768][ T8893] ksys_write+0x12a/0x250 [ 322.972803][ T8893] ? __pfx_ksys_write+0x10/0x10 [ 322.972849][ T8893] do_syscall_64+0xcd/0xfa0 [ 322.972887][ T8893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.972917][ T8893] RIP: 0033:0x7fc83858efc9 [ 322.972941][ T8893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.972969][ T8893] RSP: 002b:00007fc83950d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 322.973006][ T8893] RAX: ffffffffffffffda RBX: 00007fc8387e5fa0 RCX: 00007fc83858efc9 [ 322.973027][ T8893] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000003 [ 322.973046][ T8893] RBP: 00007fc83950d090 R08: 0000000000000000 R09: 0000000000000000 [ 322.973064][ T8893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 322.973082][ T8893] R13: 00007fc8387e6038 R14: 00007fc8387e5fa0 R15: 00007ffc069672d8 [ 322.973126][ T8893] [ 323.772874][ T8904] capability: warning: `syz.2.637' uses 32-bit capabilities (legacy support in use) [ 324.026594][ T8904] netlink: 4 bytes leftover after parsing attributes in process `syz.2.637'. [ 324.282839][ T8913] binder: BINDER_SET_CONTEXT_MGR already set [ 324.282994][ T8913] binder: 8907:8913 ioctl 4018620d 9 returned -16 [ 325.080152][ T8927] binder: BINDER_SET_CONTEXT_MGR already set [ 325.080175][ T8927] binder: 8919:8927 ioctl 4018620d 9 returned -16 [ 325.441784][ T8936] FAULT_INJECTION: forcing a failure. [ 325.441784][ T8936] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 325.441845][ T8936] CPU: 0 UID: 0 PID: 8936 Comm: syz.3.644 Not tainted syzkaller #0 PREEMPT(full) [ 325.441872][ T8936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 325.441885][ T8936] Call Trace: [ 325.441892][ T8936] [ 325.441900][ T8936] dump_stack_lvl+0x16c/0x1f0 [ 325.441930][ T8936] should_fail_ex+0x512/0x640 [ 325.441970][ T8936] _copy_from_user+0x2e/0xd0 [ 325.442009][ T8936] trace_parse_run_command+0xbe/0x400 [ 325.442055][ T8936] ? __pfx_create_dyn_event+0x10/0x10 [ 325.442085][ T8936] ? __pfx_dyn_event_write+0x10/0x10 [ 325.442110][ T8936] vfs_write+0x2a0/0x11d0 [ 325.442140][ T8936] ? __pfx___mutex_lock+0x10/0x10 [ 325.442169][ T8936] ? __pfx_vfs_write+0x10/0x10 [ 325.442203][ T8936] ? __fget_files+0x20e/0x3c0 [ 325.442234][ T8936] ksys_write+0x12a/0x250 [ 325.442260][ T8936] ? __pfx_ksys_write+0x10/0x10 [ 325.442295][ T8936] do_syscall_64+0xcd/0xfa0 [ 325.442325][ T8936] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.442348][ T8936] RIP: 0033:0x7f326758efc9 [ 325.442366][ T8936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.442388][ T8936] RSP: 002b:00007f32657f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 325.442409][ T8936] RAX: ffffffffffffffda RBX: 00007f32677e5fa0 RCX: 00007f326758efc9 [ 325.442424][ T8936] RDX: 0000000000000055 RSI: 00002000000002c0 RDI: 0000000000000003 [ 325.442439][ T8936] RBP: 00007f32657f6090 R08: 0000000000000000 R09: 0000000000000000 [ 325.442453][ T8936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 325.442466][ T8936] R13: 00007f32677e6038 R14: 00007f32677e5fa0 R15: 00007fff44d88438 [ 325.442497][ T8936] [ 325.897990][ T8943] FAULT_INJECTION: forcing a failure. [ 325.897990][ T8943] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 325.898051][ T8943] CPU: 0 UID: 0 PID: 8943 Comm: syz.2.646 Not tainted syzkaller #0 PREEMPT(full) [ 325.898078][ T8943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 325.898092][ T8943] Call Trace: [ 325.898099][ T8943] [ 325.898107][ T8943] dump_stack_lvl+0x16c/0x1f0 [ 325.898136][ T8943] should_fail_ex+0x512/0x640 [ 325.898178][ T8943] _copy_to_user+0x32/0xd0 [ 325.898221][ T8943] simple_read_from_buffer+0xcb/0x170 [ 325.898268][ T8943] proc_fail_nth_read+0x197/0x240 [ 325.898294][ T8943] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 325.898327][ T8943] ? rw_verify_area+0xcf/0x6c0 [ 325.898348][ T8943] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 325.898374][ T8943] vfs_read+0x1e4/0xcf0 [ 325.898402][ T8943] ? __pfx___mutex_lock+0x10/0x10 [ 325.898431][ T8943] ? __pfx_vfs_read+0x10/0x10 [ 325.898464][ T8943] ? __fget_files+0x20e/0x3c0 [ 325.898496][ T8943] ksys_read+0x12a/0x250 [ 325.898521][ T8943] ? __pfx_ksys_read+0x10/0x10 [ 325.898555][ T8943] do_syscall_64+0xcd/0xfa0 [ 325.898583][ T8943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.898607][ T8943] RIP: 0033:0x7fc83858d9dc [ 325.898625][ T8943] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 325.898647][ T8943] RSP: 002b:00007fc83950d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 325.898673][ T8943] RAX: ffffffffffffffda RBX: 00007fc8387e5fa0 RCX: 00007fc83858d9dc [ 325.898698][ T8943] RDX: 000000000000000f RSI: 00007fc83950d0a0 RDI: 0000000000000004 [ 325.898717][ T8943] RBP: 00007fc83950d090 R08: 0000000000000000 R09: 0000000000000000 [ 325.898735][ T8943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 325.898754][ T8943] R13: 00007fc8387e6038 R14: 00007fc8387e5fa0 R15: 00007ffc069672d8 [ 325.898796][ T8943] [ 326.400510][ T8932] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 326.402699][ T8933] ttyS ttyS2: ldisc open failed (-12), clearing slot 2 [ 326.726669][ T8956] netlink: 8 bytes leftover after parsing attributes in process `syz.0.650'. [ 327.519437][ T8973] tipc: Started in network mode [ 327.525484][ T8973] tipc: Node identity 45e5412, cluster identity 4711 [ 327.538017][ T8973] tipc: Node number set to 73290770 [ 327.594570][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.604054][ T8978] delete_channel: no stack [ 327.605767][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 327.670482][ T8940] Oops: general protection fault, probably for non-canonical address 0xdffffc00000009c0: 0000 [#1] SMP KASAN PTI [ 327.682430][ T8940] KASAN: probably user-memory-access in range [0x0000000000004e00-0x0000000000004e07] [ 327.691991][ T8940] CPU: 0 UID: 0 PID: 8940 Comm: syz.3.645 Not tainted syzkaller #0 PREEMPT(full) [ 327.701207][ T8940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 327.711568][ T8940] RIP: 0010:lru_gen_test_recent+0xee/0x320 [ 327.717417][ T8940] Code: 78 2f b7 ff 48 85 db 0f 84 79 01 00 00 e8 6a 2f b7 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00 [ 327.737765][ T8940] RSP: 0018:ffffc90018ee7840 EFLAGS: 00010206 [ 327.743883][ T8940] RAX: dffffc0000000000 RBX: ffff88801c2c8000 RCX: ffffc90018ee7744 [ 327.751966][ T8940] RDX: 00000000000009c0 RSI: ffffffff82053de6 RDI: 0000000000004e00 [ 327.760043][ T8940] RBP: ffffc90018ee78d8 R08: 0000000000000001 R09: 0000000000000000 [ 327.768057][ T8940] R10: 0000000000000001 R11: 0000000000000001 R12: ffffc90018ee78f8 [ 327.776045][ T8940] R13: 0000000000000000 R14: ffffc90018ee78c8 R15: 0000000000000059 [ 327.784035][ T8940] FS: 00007f32657f66c0(0000) GS:ffff888124a10000(0000) knlGS:0000000000000000 [ 327.793159][ T8940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 327.799851][ T8940] CR2: 00007f32657f5f98 CR3: 0000000012064000 CR4: 00000000003526f0 [ 327.807938][ T8940] Call Trace: [ 327.811401][ T8940] [ 327.814348][ T8940] workingset_refault+0x24c/0x1060 [ 327.819486][ T8940] ? __pfx_workingset_refault+0x10/0x10 [ 327.825230][ T8940] ? filemap_write_and_wait_range+0xd1/0x130 [ 327.831242][ T8940] filemap_add_folio+0x23d/0x610 [ 327.836201][ T8940] ? __pfx_filemap_add_folio+0x10/0x10 [ 327.841940][ T8940] ? __filemap_get_folio+0x32b/0xc30 [ 327.847690][ T8940] ? down_read+0x13d/0x480 [ 327.852150][ T8940] do_read_cache_folio+0x239/0x5c0 [ 327.857304][ T8940] freader_get_folio+0x337/0x930 [ 327.862301][ T8940] freader_fetch+0xc2/0x5e0 [ 327.866836][ T8940] ? query_matching_vma+0x345/0x7d0 [ 327.872065][ T8940] __build_id_parse.isra.0+0xec/0x7a0 [ 327.877469][ T8940] ? query_matching_vma+0x48e/0x7d0 [ 327.882701][ T8940] ? __pfx___build_id_parse.isra.0+0x10/0x10 [ 327.888810][ T8940] do_procmap_query+0xb0e/0x1080 [ 327.893779][ T8940] ? __pfx_do_procmap_query+0x10/0x10 [ 327.899176][ T8940] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 327.905117][ T8940] ? do_vfs_ioctl+0x128/0x14f0 [ 327.910020][ T8940] ? __fget_files+0x20e/0x3c0 [ 327.914718][ T8940] procfs_procmap_ioctl+0x9d/0xe0 [ 327.919772][ T8940] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 327.925712][ T8940] __x64_sys_ioctl+0x18e/0x210 [ 327.930519][ T8940] do_syscall_64+0xcd/0xfa0 [ 327.935053][ T8940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.940979][ T8940] RIP: 0033:0x7f326758efc9 [ 327.945673][ T8940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.965303][ T8940] RSP: 002b:00007f32657f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 327.973739][ T8940] RAX: ffffffffffffffda RBX: 00007f32677e5fa0 RCX: 00007f326758efc9 [ 327.981732][ T8940] RDX: 0000200000000080 RSI: 00000000c0686611 RDI: 0000000000000003 [ 327.989723][ T8940] RBP: 00007f3267611f91 R08: 0000000000000000 R09: 0000000000000000 [ 327.997713][ T8940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.005706][ T8940] R13: 00007f32677e6038 R14: 00007f32677e5fa0 R15: 00007fff44d88438 [ 328.013792][ T8940] [ 328.016827][ T8940] Modules linked in: [ 328.021783][ T8940] ---[ end trace 0000000000000000 ]--- [ 328.063003][ T8940] RIP: 0010:lru_gen_test_recent+0xee/0x320 [ 328.071822][ T8940] Code: 78 2f b7 ff 48 85 db 0f 84 79 01 00 00 e8 6a 2f b7 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00 [ 328.213005][ T8940] RSP: 0018:ffffc90018ee7840 EFLAGS: 00010206 [ 328.248073][ T8940] RAX: dffffc0000000000 RBX: ffff88801c2c8000 RCX: ffffc90018ee7744 [ 328.311717][ T8940] RDX: 00000000000009c0 RSI: ffffffff82053de6 RDI: 0000000000004e00 [ 328.321039][ T8940] RBP: ffffc90018ee78d8 R08: 0000000000000001 R09: 0000000000000000 [ 328.329110][ T8940] R10: 0000000000000001 R11: 0000000000000001 R12: ffffc90018ee78f8 [ 328.337277][ T8940] R13: 0000000000000000 R14: ffffc90018ee78c8 R15: 0000000000000059 [ 328.345365][ T8940] FS: 00007f32657f66c0(0000) GS:ffff888124a10000(0000) knlGS:0000000000000000 [ 328.354896][ T8940] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 328.361610][ T8940] CR2: 00007f32657d4f98 CR3: 0000000012064000 CR4: 00000000003526f0 [ 328.369737][ T8940] Kernel panic - not syncing: Fatal exception [ 328.376099][ T8940] Kernel Offset: disabled [ 328.380432][ T8940] Rebooting in 86400 seconds..