last executing test programs: 4m34.611655072s ago: executing program 2 (id=881): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd7c, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\b\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf2502000000040001800c00018008000500", @ANYRES32=r0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) 4m34.052816559s ago: executing program 2 (id=882): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0xa44) r0 = socket(0x3, 0x3, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) r3 = open(0x0, 0x0, 0x408) close_range$auto(0x2, 0x8, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x630001, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x100242, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_setup$auto(0xffff, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/misc/vmci/power/runtime_active_time\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xc2082, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x60800, 0x0) r5 = socket(0x2, 0x3, 0x2) setsockopt$auto(0x3, 0x0, 0xcf, 0xfffffffffffffffc, 0x4) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r9, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) msgctl$auto_MSG_INFO(0x90000000, 0xc, &(0x7f0000000440)={{0x1, 0xee01, 0xffffffffffffffff, 0x8, 0x7, 0x8149, 0x8}, &(0x7f00000003c0)=0x5, &(0x7f0000000400)=0x4, 0x8, 0x6, 0x0, 0x4, 0xe, 0xd, 0x5, 0x2, @inferred, @inferred=0xffffffffffffffff}) sendmsg$auto_ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000c40)={0x4f0, 0x0, 0x10, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0x4}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x200}, @ETHTOOL_A_EEE_HEADER={0x88, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_MODES_OURS={0x228, 0x2, 0x0, 0x1, [@typed={0x8, 0xb5, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0xbc, 0x0, 0x0, @fd=r2}, @typed={0x37, 0x145, 0x0, 0x0, @binary="b0930eae7c53524b586064f19de6b3e1e38565fe7ed9a3f6a12c07a0053508f9ecbeea5b54b8f05579072eb032b35c88df932a"}, @nested={0x28, 0x50, 0x0, 0x1, [@nested={0x1c, 0x9a, 0x0, 0x1, [@typed={0x16, 0x80, 0x0, 0x0, @str='/dev/snd/midiC2D0\x00'}]}, @typed={0x4, 0x92}, @nested={0x4, 0xbe}, @generic]}, @nested={0x1b1, 0x3b, 0x0, 0x1, [@typed={0x4, 0xe}, @typed={0x8, 0xf0, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0xb5, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="e3b896d2ea60a4334478b96e5f48cf88c31ad7527ae31189fe182fc4c04847236448ea8baf4c08fbea9f5afca99a27a2941278825625a0a53ba033fbefefb17a20ffc0d78e1574bf0904aef67cb0dbd1334ff8677dfeee5ec68c9a28c082fa7e409fbcd271c91c4c86afbb17bcfd3fdf84fd3c90447d328ae79beda30fe4bd23c435a985ce6438248cd02b22156318f45b10026233eca11ea914cce1b06b3d8742f90140f81fd7d5e696a4fbf133b11d0ea38ea0", @typed={0x14, 0xef, 0x0, 0x0, @ipv6=@remote}, @generic="b216a879fa98f184802a1014c82b656cf507e130f149d39a9be2a617139b067539fca8825bd3cc28eb81b03749a39ad90a82a0371f708c64376f4fd0a6da5333678935576b0ad593f7dac46ce4a78408a4d99039a4cc92b7994614f197dc1979f3c5addcac39b99b1bcf", @typed={0x8, 0xf7, 0x0, 0x0, @fd=r3}, @generic="7af2ef6f0aac8f4665f778dbb096a72fd9232f04e5d200db7adf8bab010c413486421f0af759286da0b2bf4beea954aa99fd40021f4ea7171f43df6f55786cd227789b5ebcdfea07cba251", @typed={0x8, 0xc9, 0x0, 0x0, @ipv4=@multicast1}, @typed={0xc, 0x24, 0x0, 0x0, @u64=0x8}]}]}, @ETHTOOL_A_EEE_MODES_OURS={0x20d, 0x2, 0x0, 0x1, [@typed={0x8, 0xcd, 0x0, 0x0, @fd}, @nested={0x68, 0xd6, 0x0, 0x1, [@nested={0x4, 0x2a}, @generic="2337dcb2efa7f3f6f3452b68dcc9feb4ac6a20c5bbbc14bc86f786e6a988257cdc0904a4b33675377e5b263fbc67fe720d40fa926cd2242912acb333361a9638a1406aaaf0d59e73", @typed={0xc, 0x9, 0x0, 0x0, @u64=0x8}, @nested={0x4, 0xda}, @typed={0x8, 0x2a, 0x0, 0x0, @u32=0x9}]}, @generic="15814d7364e279158f934e3e02c383d4372a4bb949da285a33c426198601253093f672573260fa066e53f23e36484a48fe0aee0214c9dd0611e98ae4557d9d3b04f87f1e03ba9202aab96093a0f9d245969d7d331134e070e32adf0256e81560f9fa9ff75e82b5bdb9e08dd7231947b197f1e0f162453e21849a93df04e58aac1d51274a1ccf7597fc55b0c03a121c5cc7f9f2ad4c5d8650d10e00aa552adfe74912f195e06517a7a8", @typed={0x8, 0x20, 0x0, 0x0, @uid=r10}, @generic="943ee5157b96429851e93ab6d0fdb8189679f8139ddfe27d245e664475f20dba226840aa1dcda3660d8a26d5641c66ff3f09ff3541b4949af06cbb57a044478b0859f3ed6eff0ef8cf1f1b7d0be9b0d54d14aadde16f7de0dbfd6ac1c7c514faa648b2c8a29fb695c3595c3beaff11ff9217c76e02112651c526f8d090bb5ad2b42a9b837d1b364a6a1199ecb37f9578af57162e53957e402666112d5194dccef53a277b298244fc57e4b544e75ceead15cfc9d567fcde696c129019c923dbbcd008cb07940b00e7740f78fb30c4a8a41b17c4c546c6672e5813af3f57a2e73c0900bd7a0b66dd99"]}]}, 0x4f0}, 0x1, 0x0, 0x0, 0x10001}, 0x40000) r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r3) sendmsg$auto_NL80211_CMD_DEL_PMKSA(r5, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)={0x1b4, r11, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_TID_CONFIG={0x150, 0x11d, 0x0, 0x1, [{0x140, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x9}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x8f}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x11c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x7}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8}, @NL80211_TXRATE_HE={0xd6, 0x5, "27b4ecc2407cf9a86978aa2490dec7b8e995ad35611caf2f2a267f3bfe10bbb674b57431353995ef76f9ac6c3fd5639a5de70196054e82275d276f80ec0d425a6a22eeabdaa3aa4f46e02a670050cfa471b89e328affbef99ec016138ab9f612c31481a0308c0373fb0658a69a1bb4d0da43b64ab61f84453a1def48ab3a3871a250029aabf3756eed7cc9bb93ec9d3f65fe5fa846d1f340545d9993bc0de3d6b00c0c22822e479a1c5b24aaa737474675ad7e135232e13a61a8590f17d59db54473ab13fb52a3c94ab8e4409d0d054b173b"}, @NL80211_TXRATE_LEGACY={0x17, 0x1, "82164cc7cb5b0d26f4930197ae8e4b1027aeef"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x23}, @NL80211_TXRATE_GI={0x5, 0x4, 0x4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0xb}]}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0xbe}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0xa9}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x8}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x4}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_EHT_CAPABILITY={0x32, 0x136, "529004ed0c3e818f06b366aa6dd9b1bb06498d9192da1197df2abd3000f69eb9adb76a98f25435c08793a152f5fc"}, @NL80211_ATTR_ADMITTED_TIME={0x6}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x10}, 0x20000881) sendfile$auto(r7, r6, 0x0, 0x1000202) 4m32.105358224s ago: executing program 2 (id=888): r0 = memfd_create$auto(0x0, 0x4) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001) keyctl$auto(0xe, 0x2, 0x76f, 0x9, 0xf13) read$auto_component_list_fops_(0xffffffffffffffff, 0x0, 0x0) socket(0x15, 0x5, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x0, 0x0) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000)="e58177b04e45273a1f9bc1b3fb914486547572a0523fb0e7c8f42f5b5acbdd6f22c8ec2450d5483dd3f26bb5626260af840b5903f0b52d46253d69d401054bde5a266728a4e70fc19c3db9da602f863858ecdb8e1fe0679b714d4ffc033791bc6ddb8bcebc8f6cefccb56e8aaa628903", 0xcd4e, &(0x7f0000000140)={&(0x7f0000000100)="ef5cd3fb49de4f6ce501933cd3", 0x8000}, 0xffff, &(0x7f00000002c0)="344a556200756e669914443c5983f58ef2cef3fb522be99c31c4b81b1378f54ddb1fc3e79cc9dcf9f4179e5799e7a8522261757a46a0b344a4f292abfa4ce0f6122addefbb443eba781102adfc3961adbdca503f3abe1b4dd161e4fbe775d54843bc9ac57d118e69b57c6b684a162ec99b77cdd2ba175cfc257bc8b05477b65d06954c31848a7b7a1cbe7e485b75e92d74868de48fb355369e617183f742830a23ffc3adad7de679ef5f60eb07cc10", 0x7, 0x8}, 0x1}, 0xf78d, 0x5) unshare$auto(0x40000080) socket(0x11, 0x2, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x7f, 0x800008000) getcwd$auto(0x0, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_transaction_log_fops_(0xffffffffffffff9c, 0x0, 0x100, 0x0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x181) r1 = creat$auto(&(0x7f0000000040)='./file0\x00', 0x81) r2 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$auto(0x4, 0x4, 0xa553) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="aebe347245b4f5f0919cb4051d58c3d612254de810a1c75397f2c4c824815255b37d8430717c43647e7cf07eb1259f27cf06c06ffd2f9b072900c0d921fa85117b6729b34f7506002d353c7baeaf7585746790241981d84aff8390920709263add2996abbe46d0ca", @ANYBLOB="010b2d"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x4000) splice$auto(r2, 0x0, r1, 0x0, 0xb, 0xf) mmap$auto(0x0, 0x20009, 0x7, 0x40000000000eb1, r1, 0x8000) ioctl$auto_UI_SET_EVBIT(r0, 0x40045564, &(0x7f0000000200)=0x10000) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/ext4/sda1/mb_groups\x00', 0x109180, 0x0) pread64$auto(r3, 0x0, 0x682c3390, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) 4m31.110638088s ago: executing program 2 (id=891): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0xffffffff) socket(0x2, 0xa, 0x7) socket(0xa, 0x1, 0x84) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) socket(0x2, 0x1, 0x106) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001080)='/proc/asound/card1/pcm0p/sub1/status\x00', 0x40080, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000040)=""/4096, 0x1000) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x8000e, 0x0, 0x0, &(0x7f0000001100)={[0xcb97, 0x4, 0xf, 0x1, 0x958b, 0x203, 0x8, 0x5, 0x3, 0x22, 0x400080000020, 0x7, 0x6d3e, 0x9, 0x4, 0x10000]}, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/modalias\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001c00)=""/4111, 0x100f) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r4, 0x0, 0x4) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sysfs$auto(0x2, 0x16, 0x0) r5 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000001040), 0x880, 0x0) close_range$auto(r0, r5, 0x80000001) rseq$auto(&(0x7f0000000840)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80401, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) 4m29.877210664s ago: executing program 2 (id=898): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) setreuid$auto(0x4, 0x8) (async) tkill$auto(0x80000000000001, 0x7) (async) sendmsg$auto_MACSEC_CMD_DEL_TXSA(r1, &(0x7f00000056c0)={0x0, 0x0, &(0x7f0000005680)={&(0x7f0000000200)={0x34, r2, 0xbb484b3ccf0b22b, 0x70bd2b, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x18, 0x3, 0x0, 0x1, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@empty}]}, @MACSEC_ATTR_IFINDEX={0x8, 0x1, r3}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000050}, 0x40094) r4 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000080), r0) sendmsg$auto_IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x54, r4, 0x300, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_ED_LIST={0x1f, 0x16, "ed7a2f25faeebf0e7e83366d9baf69a08c68c06464c2e37a4f086e"}, @IEEE802154_ATTR_BAT_EXT={0x5, 0x1a, 0x4}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x4}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x8e}, @IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x5}]}, 0x54}}, 0x8000) r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), 0xffffffffffffffff) r6 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0) write$auto(r6, 0x0, 0x200002d00) sendmsg$auto_ETHTOOL_MSG_PSE_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x2c, r5, 0x1, 0x703d27, 0x25dfdbfc, {}, [@ETHTOOL_A_PSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000050}, 0x40d8) 4m29.052170568s ago: executing program 2 (id=901): r0 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66) connect$auto(r0, &(0x7f0000000080)=@hci={0x1f, 0x0, 0x4}, 0x57) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c000000a97d9fbbf8e20254a9fd36f4bc38bc637fa54745442968cbbf1122c28bd7c27750c0d1997d88899f8aaa6b775016e1fddbfe183931f79392021c535c", @ANYRES16=r2, @ANYBLOB="01002bbd7000f9dbdf250100000006000200010000000500070057000000080009000800000008000a000800000014001f000000000000000000000000000000000014002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) getsockopt$auto(r0, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x7ffe) 4m28.582020457s ago: executing program 32 (id=901): r0 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66) connect$auto(r0, &(0x7f0000000080)=@hci={0x1f, 0x0, 0x4}, 0x57) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c000000a97d9fbbf8e20254a9fd36f4bc38bc637fa54745442968cbbf1122c28bd7c27750c0d1997d88899f8aaa6b775016e1fddbfe183931f79392021c535c", @ANYRES16=r2, @ANYBLOB="01002bbd7000f9dbdf250100000006000200010000000500070057000000080009000800000008000a000800000014001f000000000000000000000000000000000014002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) getsockopt$auto(r0, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x7ffe) 6.626374131s ago: executing program 4 (id=2020): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) (async) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/032/001\x00', 0x80202, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000040)={0x20, 0xc, 0x4, 0x0, 0x2, 0x8000004, &(0x7f00000000c0)}) (async) writev$auto(r1, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) socket(0x1e, 0x4, 0x0) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0xd365, &(0x7f0000000000)={0x0, 0x10002, 0x7d, 0xf3f1, 0x6, 0x5, r3, [], {0x2, 0x4, 0x6, 0x2, 0x400, 0x0, 0x7, 0x5, 0x10}, {0x7, 0xd, 0x6e68, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) (async) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0xa5, 0x3, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0006, 0x17) (async) r4 = ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000040)=0x81) setsockopt$auto_SO_CNX_ADVICE(r4, 0x2, 0x35, 0x0, 0x81) write$auto(0x3, 0x0, 0xfdef) (async) madvise$auto(0x8, 0xffffffffffff0005, 0x19) madvise$auto(0x1000, 0x400050, 0x9) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/driver/nvram\x00', 0x40000, 0x0) (async) munmap$auto(0x8000, 0xffffffff) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async) r5 = socket(0x2b, 0x1, 0x1) ioctl$auto(r5, 0x8983, 0x4) r6 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) write$auto(r6, &(0x7f0000000040), 0x1) 6.306234765s ago: executing program 4 (id=2022): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) io_uring_setup$auto(0x8000, &(0x7f0000000140)={0x2, 0x8, 0x3, 0x0, 0x7, 0x101, 0xffffffffffffffff, [0x95, 0x9], {0xffffff80, 0x9, 0x10, 0xb831, 0x3, 0xdbb, 0x3, 0xee9, 0x2}, {0x8001, 0x6, 0x8, 0x1, 0x8, 0x0, 0x4, 0x6, 0xf}}) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) r1 = open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) getsockopt$auto_SO_PREFER_BUSY_POLL(r1, 0x0, 0x45, &(0x7f00000000c0)=',\x00', &(0x7f0000000100)=0x296) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf2503000000080003178102"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0xc4494) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x82b01, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8) write$auto(r3, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x42440, 0x0) ioctl$auto_EVIOCGMASK(r4, 0x541b, 0x0) socket(0x2, 0x1, 0x0) mq_notify$auto(0x3, 0x0) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000020c0)=""/4093, 0xffd) ioctl$auto_SNAPSHOT_UNFREEZE(r2, 0x3302, 0x0) 4.98768632s ago: executing program 4 (id=2031): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC1D1c\x00', 0x620100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0) pread64$auto(r0, 0x0, 0x7fb, 0x400) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/midiC2D1\x00', 0x8a041, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xa, 0x8e6, 0x400000000000948d, 0x3, 0x15f4da0a, 0x6, 0x3, 0x5f, 0x5, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x50000, 0xb, 0xd, 0x1, 0x3, 0x84, 0x4, 0x3, 0x3, 0x1fd, 0x8000001f, 0x8, 0x6d3a, 0x9, 0x5, 0x6]}, 0x0) mmap$auto(0x0, 0x4, 0xe, 0x40000000000313e, 0x4008df3, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) futex$auto(0x0, 0x85, 0x8, 0x0, 0x0, 0x80800002) r2 = inotify_init1$auto(0x403) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x54) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x34000}, 0x1, 0x0, 0x8001, 0x9}, 0x7}, 0x3, 0x3f3) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000) r3 = creat$auto(&(0x7f00000001c0)='./file0\x00', 0x105) pwritev2$auto(r3, &(0x7f00000000c0)={0x0, 0x1000008}, 0x100, 0x2, 0x9, 0x7) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_SNDCTL_TMR_CONTINUE(r2, 0x5404, &(0x7f0000000100)="171c7e255ecd5d5e67b78cd10fdb363e7ebb4576ece291005200ca7e962f80fbc18b4b3fbf44c10ea700000000d991cd99") io_uring_setup$auto(0x8, 0x0) 4.283451541s ago: executing program 1 (id=2033): unshare$auto(0x40000080) ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x62c00, 0x0) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x17f680, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x880c2, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/tty34\x00', 0x2200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/nullb/features\x00', 0x400, 0x0) socket(0x2, 0x3, 0xa) prctl$auto(0x4, 0x2, 0x0, 0x7, 0x0) r3 = socket(0x2, 0x801, 0x106) mmap$auto(0x0, 0x8000800000000000, 0x5e266cce, 0x9b72, 0x2, 0x8000) setsockopt$auto(r3, 0x6, 0x23, 0x0, 0x1e) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r4 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x804, 0x0) ioctl$auto_RTC_ALM_SET(r4, 0x40247007, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff) semtimedop$auto(0x4000, &(0x7f00000000c0)={0xb, 0x81, 0x70}, 0x1f8, 0x0) semtimedop$auto(0x3, 0x0, 0x41, 0x0) mmap$auto(0x0, 0xe983, 0x2000df, 0x15, 0x401, 0x4) ptrace$auto(0x10, 0x0, 0x4, 0x7ff) ptrace$auto(0x4, 0x0, 0x3, 0x1) sendmmsg$auto(r0, &(0x7f0000000380)={{&(0x7f0000000540)="9a380a90319abce52f0011bce2d4f98c6db6d69c591dd31d12fe0a6831960700000000f36600c722686a40f933155bea20fa06d88cb3e4ffcd599e046d5b6294cb3fb676cbbe083767a0707ecfd806008c06436be4b79d3f0d873c334b487e8a35e05f884162e4509a4c011e9aa6a730810099060c315b38e0376663735531ea5fa12a35d56c8ea4caedb83dbce3a63509bc6f1bc55e44a3201f684a6f1e9598e46b5de59003c2945bbd344d1395", 0x8, &(0x7f0000000100)={&(0x7f0000001640)="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", 0x1010000007}, 0x6, &(0x7f00000017c0)="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", 0x1, 0xb}, 0x7}, 0x77d, 0x20000002) read$auto_configfs_file_operations_configfs_internal(r2, &(0x7f0000000140)=""/68, 0x44) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x948b, 0x3, 0x15f4da07, 0x3, 0x2, 0x62, 0x8000001e, 0x7, 0x6d3c, 0x9, 0x2, 0x951000]}, 0x0) 4.116051655s ago: executing program 3 (id=2034): mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000) mmap$auto(0x1, 0x4, 0x7ff, 0x8000012, 0xffffffffffffffff, 0x4006) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0) bpf$auto(0x9, &(0x7f00000000c0)=@link_update={r0, @new_prog_fd, 0x6}, 0x800003) r1 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) getsockopt$auto(r1, 0x84, 0x7b, 0x0, 0x0) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f00000000c0)) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x0, 0x1, 0x0, 0x1e) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0xb, 0xc45d, 0xb, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) ioctl$auto(r4, 0x5523, r4) r5 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/discover\x00', 0x80101, 0x0) writev$auto(r5, &(0x7f0000000140)={0x0, 0xe4}, 0x4) 3.995157961s ago: executing program 4 (id=2035): bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x5, 0x0, 0x1, 0xfffffffffffffffe) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x64, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) ioctl$auto(r1, 0x900064b5, 0xc14) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x20002, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) socket(0xa, 0x3, 0x3b) 3.253253897s ago: executing program 1 (id=2036): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\b', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf2502000000040001800c00018008000500", @ANYRES32=r0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) 2.841031366s ago: executing program 3 (id=2038): mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r0, 0x0, 0x7) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x4, 0x311) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xfffffffd, 0x5, 0x9, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x7, 0x0, 0x8) ioctl$auto(0x3, 0x8906, 0xd) 2.658598748s ago: executing program 1 (id=2039): sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, &(0x7f0000000000), 0x7, 0xa502}, 0x803}, 0x4, 0x8) writev$auto(0x1, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) getsockopt$auto(r0, 0x84, 0x66, 0x0, &(0x7f0000000000)=0x7ffe) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x0, 0x30, 0x0, 0x568) ioctl$auto(0x3, 0x4008af03, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x15) shmat$auto(0x200, 0x0, 0x4) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8080}, 0x24004805) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x31, 0x7f, 0xffffffff, 0x0, 0x0, 0x0, 0x1000000006, 0x6, 0x7, 0x0, 0x800000007ffffffb, 0x5, 0xffffffff80000003, 0x2, 0x60, 0x401}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r3, 0x0, 0x20) writev$auto(r3, &(0x7f0000000200)={0x0, 0x4}, 0x3) ioctl$auto_FIOQSIZE(r3, 0x5460, 0x8) r4 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci4/hci4:201\x00', 0x214000, 0x0) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) prctl$auto(0x3e, 0x1, r5, 0x1, 0x0) ioctl$auto_XFS_IOC_FREESP(r4, 0x4030580b, &(0x7f0000000100)={0x6, 0x0, 0x4, 0xfff, 0x2, r5}) 2.557625027s ago: executing program 0 (id=2040): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) capset$auto(0x0, &(0x7f0000000180)={0x1, 0x7, 0x6}) r2 = socket(0x5, 0x801, 0x106) setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x4) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) readv$auto(0xffffffffffffffff, 0x0, 0x8) capset$auto(&(0x7f0000000280)={0x7}, &(0x7f0000000340)={0xdd17, 0x7}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x0) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe4643, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/reboot/mode\x00', 0x501, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x1ff) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000140), r2) sendmsg$auto_NFC_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRESOCT, @ANYBLOB="00082bbd7000fddbdf251d000000b615f94626907c03d0c16ea91f86153209f7d53797f8871ee8bc91253ac004490b90f2d831f80870cc97b98b3cf0bc311d7c2b907a690ea3fc05ede446eb56e6e870068d77d0f4ac82bddf14cf07a80b2fc37aa3c11361ff5057be3f6db8c3ae89f2b46004a09c994d85221996f4600b86dfecc0f2835542f5e25e64e9"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) writev$auto(r1, &(0x7f00000001c0)={0x0, 0x45}, 0x1) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x500, 0x0) ioctl$auto(r0, 0x40045565, 0x1f) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0\x00', 0x0, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/misc\x00', 0x20a40, 0x0) 2.443399121s ago: executing program 4 (id=2041): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001540), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_KEY_SET(r0, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)={&(0x7f0000000240)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@typed={0x4, 0x8c}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x42000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0xfffffd2b) write$auto(0x3, 0x0, 0xfdef) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x5, 0x21, 0x0, 0x1, 0x4000000000) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) prctl$auto(0x38, 0x3, 0x4, 0x8, 0xf) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x241000, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) prctl$auto(0x1, 0x8400006, 0x0, 0x0, 0xffffffff82597ec5) wait4$auto(0x0, 0x0, 0x2, 0xfffffffffffffffc) poll$auto(&(0x7f0000000180)={r3, 0xfff8, 0x9816}, 0x80000000, 0xfffffffb) ioctl$auto(r5, 0x4008af24, r3) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0) socket(0x25, 0x5, 0x6) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x3112c0, 0x0) 2.261195447s ago: executing program 0 (id=2042): close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x23, 0x80000, 0x7) socket(0x18, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4) mmap$auto(0x0, 0x10000000008, 0x5, 0x13, 0x3, 0x400180000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) prctl$auto(0x6, 0x1, 0x0, 0x7, 0x24789975) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) mount$auto(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='nfs\x00\"p\x17\x9b\xdd\xb4\xed\xb9\xc8\xa3\f!_\xf9\xa1\x17tP\x86\xb1,\x93\x87\xae\x03\x8a\xc4\xb5q\xd4\x8c\xc3\xa2?\xe7\xf4\xb2\xd4\xe1\x93A\x02\xe9\x8d\xc9\xac9|\xc7\t\xff\'\xaa\xac|\xaa\x85\xa9\xd4j\x12\xca\xfe&\x13\xc0\xf6D\x97\x93[\x9b3NBz\v\x1cO\x138\xb4\"\x10[X\xc8\x83?\xb8\x9c\xcd\xe3!\x8f\x15\xbf%j\x8cO\x80h4\x13\xd0p\x9f\x18A/d\xcaL\x8b\x00\xc0Q\xfc\x91\xc9\xdc\xb3\xce\xa4\xd3\xe3\x9dP\xa4 +\xc0\xa5\xfb\xc4\xe4J\xdfO\xbf\xd1\x99 \xe3', 0x6, &(0x7f00000002c0)="77bec3605f85e082fbcf491e2b3b12fde18109d1f64859f820ba86bbb7abcf4c75f53e3ecb7fd57568812ae0e9433c2b0bb0f0c0db3d") ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520") write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0xfdef) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xc, 0x3, 0x0, 0x0, 0x2) r1 = socket(0x9, 0xa, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x522c1, 0x0) prctl$auto(0x3e, 0x5, 0x0, 0xd, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r1, &(0x7f0000000080)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x100000000000004) mmap$auto(0x0, 0x400008, 0xdf, 0x190, r2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) r3 = socket(0x3, 0x5, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r3) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x200c8090) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0) 1.874418494s ago: executing program 3 (id=2043): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/ieee80211/phy2/address_mask\x00', 0x88100, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000034c0), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000003500)={0x14, r1, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000000), r0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_DEL_KEY(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x108, r2, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_FILS_KEK={0x19, 0xf2, "a9da92099f1918bcde61ed19d6aec89997d422ec47"}, @NL80211_ATTR_MAC_MASK={0xb8, 0xd7, "8c59c5c9a5a1dcf56a7f22f70da68d216ffd3c3e1d1ceb654552389bfe53c9ee9b4c60dc64e43be549f813bc88f4c5ee8c2bec4c4168298ee99766e1e83345cc30e2e7c340098bb99a299d42f59980a658c60319228a9a1875b08e609b5cf42707555ffc8ecd81957971d70c175a5163167fd1d4f0cd5c73cd61f30c927c2511ead9e1eb386fa39f7a4cf6e68bd19375c743a96bf6a833bfd2ab1046275abd063bb2d2fa65e3ce1a001fe8d9c5dd8f95e858e99f"}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x4}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x7fff}, @NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xf7}]}, 0x108}, 0x1, 0x0, 0x0, 0x4000081}, 0x4000) 1.646518086s ago: executing program 3 (id=2044): mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7ffffffffffffffb, 0x0, {0x5}}, 0x0, 0x8) bind$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x32}}, 0x6b) r0 = gettid() rt_sigqueueinfo$auto(r0, 0x1, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x802, 0x0) socket(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/irq.pressure\x00', 0x101102, 0x0) socket(0xa, 0x801, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x161342, 0x100) socket$nl_generic(0x10, 0x3, 0x10) getrandom$auto(0x0, 0x6000000, 0x3) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) 1.401632263s ago: executing program 0 (id=2045): futex$auto(0x0, 0x0, 0x2948, 0x0, 0x0, 0x5) futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x1f, 0x0, &(0x7f0000000100)=0x4, 0x440a48d3) r0 = epoll_create$auto(0x3e) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001c80), 0x1, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_GSTATUS(r1, 0xc0505405, &(0x7f0000001cc0)={{0x801, 0x10000, 0x5, 0x591, 0x6}, 0x6, 0x2, 0x6, "58e5218f9678796f35bf2803b1e21a54bddb4e340bb83340b899e51485a51568"}) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f00000005c0)=""/4096, 0x1000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa9aa275a152366fb, 0x0) ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, &(0x7f0000000300)={0x67, 0x0, 0x7fff, 0x1, 0x80000000003, 0xfffbffffffffff80, 0x80000003, 0xff, 0x400006, 0x7, 0xfbfffffe, 0x5, 0x0, 0x7, 0x80000005}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x125441, 0x0) r2 = prctl$auto_PR_SCHED_CORE_GET(0x6, 0x0, 0xffffffffffffffff, 0x3, 0x8) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, 0x0, 0x4000, 0x0) write$auto(0xca, &(0x7f00000001c0)='\x04\x13\xac\x04\x00\x00\x00\x00\x00\x00\x00\x01\n\xdc\x10\x00\x00\xef\xab\xe1ME:\xab \x87|\xe0Z\x1b\x9eZ\xa8\xff\x92+\xc9\x9fs\xbf\xd8\f\x00\x00\x00\xa5V\b\xf1Ne\xc6l\xd0\xdd7\x96gf\xb2\xa0\xf2cN\x8b\x95\xeb\xf3(\x9eM-\xdc\x84N\xc3\tts%\xe9\xbf<\xf1\xdav\xe0n\x04\xb33\x97\xd5\xb4\x02\x94B\xbb\x995\x1e\xf7@\xd8\xca\x8d\a0 \xfa\x87V\xeb1\xe4M%\xdd\xfd\xf6\x8d\xb4\xc7\x9b\x9d\xf5\xd9^\xcdL@\x0f\xd4\x15F,\xc1\xd1i\xa4f/{\xfa\xd5\n\xe1\x95l[\x91\xbfX\xea2\x1b\x8a\x85\t\x00\x05m\x1e\x9b\xca\xfb\x81\x9d{\x19S\xff\xe4\xd2k\x1b/wJ&\x03+{\x84R\xa8\x92\xad\xec\x1b\xb1\xe9\xa7XUo\x93\xd5\xfb\x94\xc4\xdf\x8e\xdd\x97\xfc\x00\x13\xd6\x80g\x7fR;\x88\xf7bm\x8f\xb5\x89\x1a\xb63\x98\xaa\xcc\xbf\x94\xbf#u\xb9', 0x2b) io_submit$auto(0x705, 0xca, &(0x7f0000000180)=&(0x7f0000000000)={0x3ff, 0x9, 0x1, 0x4, 0x80, 0xffffffffffffffff, 0x9, 0x34, 0x3, 0x0, 0xfffffffc, 0xffffffffffffffff}) r4 = socket(0xa, 0x801, 0x84) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(r4, 0x0, 0x4040) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dri/renderD128\x00', 0x561800, 0x0) kcmp$auto_KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r3, 0x9) read$auto(r5, 0x0, 0x178ab487) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/writeback/max_active\x00', 0x1a2b02, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) mmap$auto(0x0, 0x2020005, 0x3, 0xfff, 0xfffffffffffffffa, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x200000, 0x0) openat$auto_userio_fops_userio(0xffffffffffffff9c, 0x0, 0x2, 0x0) read$auto(r2, &(0x7f0000000000)='/dev/loop2\x00', 0x1) 1.309848422s ago: executing program 1 (id=2046): unshare$auto(0x40000080) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x0, 0x0) ioctl$auto(r0, 0x921064a1, 0x8) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) unshare$auto(0x5) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty0\x00', 0x102, 0x0) write$auto(0x3, 0x0, 0xfffffdef) r2 = syz_genetlink_get_family_id$auto_nl80211(0x0, r1) r3 = socket(0x2, 0x1, 0x106) sendmsg$auto_OVS_VPORT_CMD_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4100}, 0x20000000) sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f00000014c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001480)={&(0x7f0000000300)={0x116c, r2, 0x4, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_BSS_SELECT={0x1128, 0xe3, 0x0, 0x1, [@typed={0xa7, 0xa4, 0x0, 0x0, @str='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc'}, @typed={0x8, 0xbf, 0x0, 0x0, @uid=0xee01}, @nested={0x106b, 0x95, 0x0, 0x1, [@generic="49d9378fe59c4ddf031d202122ffc25006dabd35e1787aaf8a7c735ce400eedd89c7646d11c7fa85647f54be724973c28e8bfbc8418050dc384ce8c72c3fdd6d4fba9a79d4b5b9cd5e56c64ddf7ac7bcff30b93c50c9d52eb992883d888a111707993cefd132b3", @generic="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"]}, @typed={0x7, 0x31, 0x0, 0x0, @str=':%\x00'}]}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x5}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x7}, @NL80211_ATTR_MESH_ID={0x7, 0x18, "fb250b"}, @NL80211_ATTR_AUTH_DATA={0x17, 0x9c, "ee9003fba7b18847ca93ea6a963ede8ea4ffe9"}]}, 0x116c}, 0x1, 0x0, 0x0, 0x80}, 0x48000) setsockopt$auto(r3, 0x6, 0x6, &(0x7f00000001c0)='\xe9\x98:*\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/192, 0xc0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/hw_params\x00', 0x1c1282, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000280)=""/65, 0x41) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000) sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x2) mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 1.123171003s ago: executing program 0 (id=2047): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) (async, rerun: 64) connect$auto(0x3, &(0x7f0000000080)=@generic={0xa, "0000e100"}, 0x58) (async, rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) membarrier$auto(0x2, 0x0, 0x9) (async, rerun: 32) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (rerun: 64) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae90, &(0x7f0000000140)={0x2, 0x0, [{0x3, 0x7ff, 0x8}, {0x10002, 0xe2ab, 0x5}, {0x5, 0x4, 0x4}, {0x1, 0x7, 0xffffffff8000001a}, {0x7fffffff, 0x200, 0x2}]}) (async) migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1) (async) connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) (async) socket(0x22, 0x3, 0x1) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (async, rerun: 64) mmap$auto(0x8000, 0x400008, 0x200, 0x9b72, r0, 0x4) (async, rerun: 64) r2 = openat$auto_generic(0xffffffffffffff9c, &(0x7f00000032c0)='/proc/kmsg\x00', 0x80002, 0x0) poll$auto(&(0x7f0000000040)={r2, 0x1000, 0x1c9}, 0x2, 0x7) (async) openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) (async, rerun: 64) writev$auto(0xffffffffffffffff, 0x0, 0x1) (async, rerun: 64) madvise$auto(0x0, 0x20499d, 0x9) (async) r3 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0) ioctl$auto_RNDGETENTCNT(r3, 0x80045200, 0x0) 797.074547ms ago: executing program 3 (id=2048): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000040)='./file0\x00', 0x5074c1, 0x155) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) write$auto(r1, &(0x7f00000002c0)='T\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7) mmap$auto(0x0, 0x400005, 0x200, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x66) madvise$auto(0x0, 0x0, 0x6) mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socketpair$auto(0x1, 0x3, 0x9, 0x0) ptrace$auto_PTRACE_SECCOMP_GET_METADATA(0x420d, r0, 0x100000001, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181702, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0) r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r4, 0x4004556a, r4) read$auto(r3, 0x0, 0x20) close_range$auto(0x0, r3, 0x4000000000002) r5 = socket(0x2, 0x801, 0x106) socketpair$auto(0x1a, 0x9, 0x8000000000000000, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), r2) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000440)={'team_slave_1\x00'}) r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0ro\x00', 0x0, 0x0) ioctl$auto_BLKPG2(r6, 0x1269, 0x0) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) 708.108194ms ago: executing program 0 (id=2049): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd7c, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\b\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf2502000000040001800c00018008000500", @ANYRES32=r0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) 583.403944ms ago: executing program 4 (id=2050): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x2, 0x400007, 0xe895, 0x16, r0, 0x401) r1 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0) fadvise64$auto_POSIX_FADV_NORMAL(r1, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0xa, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x2000c080) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) setsockopt$auto(0xffffffffffffffff, 0x107, 0x5, 0x0, 0xce24) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x218, 0x1001, 0x24, 0x1, 0xffffffffffffffff, 0x0, 0x5}, 0x4f4) connect$auto(0x3, 0x0, 0x55) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) openat$auto_mgts_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0xa001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getresgid$auto(&(0x7f00000000c0)=0xc7e5, 0x0, 0x0) bpf$auto(0x0, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) ioctl$auto_BLKRRPART(r3, 0x125f, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) 328.058238ms ago: executing program 1 (id=2051): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (fail_nth: 1) r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd7c, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\b\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf2502000000040001800c00018008000500", @ANYRES32=r0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) 283.270612ms ago: executing program 0 (id=2052): mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r0, 0x0, 0x7) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x4, 0x311) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xfffffffd, 0x5, 0x9, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x7, 0x0, 0x8) ioctl$auto(0x3, 0x8906, 0xd) 135.165461ms ago: executing program 3 (id=2053): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2000d, 0x13e, 0xeb1, 0x404, 0x10008000) r1 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) read$auto(r1, 0x0, 0x5) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/usb-serial/drivers/ir-usb/new_id\x00', 0xc0082, 0x0) write$auto(r2, 0x0, 0x7ff) memfd_create$auto(0x0, 0xe) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000080)='\x0f\x04\x00\x00\x10=x\x03\xb9\a\xb1`F\x15]<8\xc3\x10(I&\v\xb4I\xf9\xf2[\xc4\x13\xf5a\xe1\xb6,(4\xfdazi\x9b\'F3\xbc\xdaZ\x00\xbf\x7f\xef\xc7\xcc|\xce\x7fU\xcb\xaeC\xb8\x0f\xaa\xc3\x8bLpH\xfbO\x14\x01#\x81\xf3{\x7f7\xb5?A', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3) read$auto(r3, &(0x7f0000000100)='nl80211\x00', 0xbe62) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_NEW(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0xa6ff, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r5 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x80000000) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(0x3, 0x0, 0x3, 0x9) close_range$auto(0x2, 0xffffffffffffffff, 0x0) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd7c, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\b\x00', @ANYRES16=r5, @ANYBLOB="01002dbd7000fddbdf2502000000040001800c00018008000500", @ANYRES32=r0, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x800) 0s ago: executing program 1 (id=2054): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0xffffffffffffff07}, 0xf559, 0xfffffffffffffffb, 0x40000009c3, 0x2e) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/ipvlan1/retrans_time\x00', 0x242, 0x0) sendfile$auto(r1, r1, 0x0, 0x200) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000280), 0x40200, 0x0) r2 = socket(0x27, 0xa, 0x1) r3 = open_tree$auto(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x7) r4 = ioctl$auto_SIOCSIFHWADDR2(0xffffffffffffffff, 0x8924, &(0x7f00000001c0)="b5fa78d549785e68e7f2b46aba38892ae55e3577d3f7ff540886d965f01d3945ab86a436569fbfb6d76ca0eeec6a48454a73a715ee21a15d5f1f1fcd3a257ebdc98b8e92e4") r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff) socket(0x1a, 0x2, 0x0) r6 = bpf$auto(0x10000000, &(0x7f0000000000)=@bpf_attr_3={0x9, 0x3, 0x204000000000000, 0x0, 0x10001, 0x2, 0x8009, 0x0, 0x6, "3fd617d71ffaca4c1424c27da197c2ae", 0x0, 0x0, r4, 0x80000000, 0xf, 0x8, 0x47e, 0x63, 0x7fff, 0xfffffffe, @attach_prog_fd, 0x0, 0xffffffffffffff69, 0x200000000006, 0x1, 0xfffff802, r1, r2}, 0x200) r8 = socket(0x6, 0x4, 0x2) mmap$auto(0x0, 0xe983, 0xdc, 0xeb0, r8, 0x800) mmap$auto(0x800, 0x100004020009, 0xe, 0xeb1, 0x401, 0x8000) ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/\xc46\x9e\xe4audio1\x00', 0x0) select$auto(0x2, 0x0, 0x0, &(0x7f00000002c0)={[0x4, 0x7, 0x8, 0x2001, 0x9489, 0x6, 0x15f4da08, 0x3, 0x2803, 0x3, 0x8000001f, 0x2, 0x6d3c, 0x8, 0x401, 0x14]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) futimesat$auto(r7, &(0x7f0000000240)='./file0\x00', &(0x7f0000000340)={0x8, 0xfffffffffffffe01}) sendmsg$auto_NL80211_CMD_DEL_PMK(0xffffffffffffffff, 0x0, 0x8000) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000005c0)={&(0x7f00000003c0)=ANY=[@ANYRES64=r5, @ANYRES8=0x0, @ANYBLOB="00102dbd7000fddbdf2501000000d000018008000700", @ANYRESOCT, @ANYRES16=r6, @ANYRES32=r3, @ANYBLOB="bb", @ANYRES32=r4], 0xe4}, 0x1, 0x0, 0x0, 0x8040}, 0x2000c081) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) madvise$auto(0x110c234000, 0x1, 0x8) unshare$auto(0x4000007d) r9 = socket(0xa, 0x2, 0x3a) bind$auto(r9, 0x0, 0x66) pwrite64$auto(r2, &(0x7f0000000380)=')\x00', 0x0, 0x9) mmap$auto(0x0, 0x9, 0x9cad, 0x19, r1, 0x8001) kernel console output (not intermixed with test programs): luster identity 4711 [ 419.254833][T11725] tipc: Node number set to 73290770 [ 420.072533][ T9] Process accounting resumed [ 420.091667][ T9] Process accounting resumed [ 420.109615][ T9] Process accounting resumed [ 420.126183][ T9] Process accounting resumed [ 420.136475][ T9] Process accounting resumed [ 420.154332][ T9] Process accounting resumed [ 420.167143][ T9] Process accounting resumed [ 420.186011][ T9] Process accounting resumed [ 420.198145][ T9] Process accounting resumed [ 420.205686][ T9] Process accounting resumed [ 420.213002][ T9] Process accounting resumed [ 420.218631][ T9] Process accounting resumed [ 420.226485][ T9] Process accounting resumed [ 420.233075][ T9] Process accounting resumed [ 420.252335][ T9] Process accounting resumed [ 420.258667][T11762] FAULT_INJECTION: forcing a failure. [ 420.258667][T11762] name failslab, interval 1, probability 0, space 0, times 0 [ 420.267711][ T9] Process accounting resumed [ 420.283982][ T9] Process accounting resumed [ 420.293701][ T5949] Process accounting resumed [ 420.300801][ T9] Process accounting resumed [ 420.300824][T11762] CPU: 1 UID: 0 PID: 11762 Comm: syz.0.1200 Tainted: G U syzkaller #0 PREEMPT(full) [ 420.300872][T11762] Tainted: [U]=USER [ 420.300880][T11762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 420.300895][T11762] Call Trace: [ 420.300904][T11762] [ 420.300914][T11762] dump_stack_lvl+0x16c/0x1f0 [ 420.300959][T11762] should_fail_ex+0x512/0x640 [ 420.301002][T11762] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 420.301034][T11762] should_failslab+0xc2/0x120 [ 420.301069][T11762] __kmalloc_cache_noprof+0x6a/0x3e0 [ 420.301097][T11762] ? copy_net_ns+0x135/0x5f0 [ 420.301129][T11762] copy_net_ns+0x135/0x5f0 [ 420.301152][T11762] ? copy_cgroup_ns+0x71/0x700 [ 420.301185][T11762] create_new_namespaces+0x3ea/0xa90 [ 420.301225][T11762] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 420.301257][T11762] ksys_unshare+0x45b/0xa40 [ 420.301292][T11762] ? __pfx_ksys_unshare+0x10/0x10 [ 420.301328][T11762] ? xfd_validate_state+0x61/0x180 [ 420.301376][T11762] __x64_sys_unshare+0x31/0x40 [ 420.301409][T11762] do_syscall_64+0xcd/0x490 [ 420.301449][T11762] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.301474][T11762] RIP: 0033:0x7f3110b8ebe9 [ 420.301495][T11762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 420.301520][T11762] RSP: 002b:00007f31119c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 420.301544][T11762] RAX: ffffffffffffffda RBX: 00007f3110dc6090 RCX: 00007f3110b8ebe9 [ 420.301561][T11762] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 420.301575][T11762] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 420.301590][T11762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.301604][T11762] R13: 00007f3110dc6128 R14: 00007f3110dc6090 R15: 00007ffebf591438 [ 420.301639][T11762] [ 420.501337][ T5867] Process accounting resumed [ 420.506830][ T5867] Process accounting resumed [ 420.512869][ T5867] Process accounting resumed [ 420.517989][ T5867] Process accounting resumed [ 420.523268][ T5867] Process accounting resumed [ 420.528515][ T5867] Process accounting resumed [ 420.534156][ T5867] Process accounting resumed [ 420.540893][ T5867] Process accounting resumed [ 420.546131][ T5867] Process accounting resumed [ 420.551506][ T5867] Process accounting resumed [ 420.558200][ T5867] Process accounting resumed [ 420.563505][ T5867] Process accounting resumed [ 420.568696][ T5867] Process accounting resumed [ 420.738047][T11759] Process accounting resumed [ 424.019499][T11820] nfs4: Unknown parameter 'nfsd' [ 424.191825][T11835] capability: warning: `syz.1.1216' uses deprecated v2 capabilities in a way that may be insecure [ 424.693602][T11843] FAULT_INJECTION: forcing a failure. [ 424.693602][T11843] name failslab, interval 1, probability 0, space 0, times 0 [ 424.751176][T11843] CPU: 0 UID: 0 PID: 11843 Comm: syz.3.1218 Tainted: G U syzkaller #0 PREEMPT(full) [ 424.751225][T11843] Tainted: [U]=USER [ 424.751235][T11843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 424.751253][T11843] Call Trace: [ 424.751263][T11843] [ 424.751275][T11843] dump_stack_lvl+0x16c/0x1f0 [ 424.751322][T11843] should_fail_ex+0x512/0x640 [ 424.751367][T11843] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 424.751404][T11843] should_failslab+0xc2/0x120 [ 424.751444][T11843] __kmalloc_cache_noprof+0x6a/0x3e0 [ 424.751475][T11843] ? lockdep_init_map_type+0x5c/0x280 [ 424.751513][T11843] ? qrtr_endpoint_register+0x85/0x500 [ 424.751565][T11843] qrtr_endpoint_register+0x85/0x500 [ 424.751615][T11843] qrtr_tun_open+0x151/0x220 [ 424.751644][T11843] ? __pfx_qrtr_tun_open+0x10/0x10 [ 424.751688][T11843] misc_open+0x35d/0x420 [ 424.751725][T11843] ? __pfx_misc_open+0x10/0x10 [ 424.751754][T11843] chrdev_open+0x231/0x6a0 [ 424.751790][T11843] ? __pfx_apparmor_file_open+0x10/0x10 [ 424.751822][T11843] ? __pfx_chrdev_open+0x10/0x10 [ 424.751858][T11843] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 424.751897][T11843] do_dentry_open+0x97f/0x1530 [ 424.751930][T11843] ? __pfx_chrdev_open+0x10/0x10 [ 424.751969][T11843] vfs_open+0x82/0x3f0 [ 424.752012][T11843] path_openat+0x1de4/0x2cb0 [ 424.752056][T11843] ? __pfx_path_openat+0x10/0x10 [ 424.752101][T11843] do_filp_open+0x20b/0x470 [ 424.752134][T11843] ? __pfx_do_filp_open+0x10/0x10 [ 424.752199][T11843] ? alloc_fd+0x471/0x7d0 [ 424.752243][T11843] do_sys_openat2+0x11b/0x1d0 [ 424.752286][T11843] ? __pfx_do_sys_openat2+0x10/0x10 [ 424.752345][T11843] __x64_sys_openat+0x174/0x210 [ 424.752388][T11843] ? __pfx___x64_sys_openat+0x10/0x10 [ 424.752446][T11843] do_syscall_64+0xcd/0x490 [ 424.752492][T11843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.752519][T11843] RIP: 0033:0x7f63f2f8ebe9 [ 424.752544][T11843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.752573][T11843] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 424.752602][T11843] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 424.752621][T11843] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 424.752639][T11843] RBP: 00007f63f3011e19 R08: 0000000000000000 R09: 0000000000000000 [ 424.752669][T11843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 424.752687][T11843] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 424.752728][T11843] [ 427.006673][T11886] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 427.171349][T11888] __vm_enough_memory: pid: 11888, comm: syz.4.1229, bytes: 4398046511104 not enough memory for the allocation [ 428.986614][T11918] FAULT_INJECTION: forcing a failure. [ 428.986614][T11918] name failslab, interval 1, probability 0, space 0, times 0 [ 429.046817][T11918] CPU: 1 UID: 0 PID: 11918 Comm: syz.4.1239 Tainted: G U syzkaller #0 PREEMPT(full) [ 429.046869][T11918] Tainted: [U]=USER [ 429.046879][T11918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 429.046898][T11918] Call Trace: [ 429.046908][T11918] [ 429.046920][T11918] dump_stack_lvl+0x16c/0x1f0 [ 429.046971][T11918] should_fail_ex+0x512/0x640 [ 429.047013][T11918] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 429.047049][T11918] should_failslab+0xc2/0x120 [ 429.047089][T11918] __kmalloc_cache_noprof+0x6a/0x3e0 [ 429.047120][T11918] ? lockdep_init_map_type+0x5c/0x280 [ 429.047159][T11918] ? qrtr_endpoint_register+0x85/0x500 [ 429.047213][T11918] qrtr_endpoint_register+0x85/0x500 [ 429.047263][T11918] qrtr_tun_open+0x151/0x220 [ 429.047296][T11918] ? __pfx_qrtr_tun_open+0x10/0x10 [ 429.047330][T11918] misc_open+0x35d/0x420 [ 429.047367][T11918] ? __pfx_misc_open+0x10/0x10 [ 429.047402][T11918] chrdev_open+0x231/0x6a0 [ 429.047440][T11918] ? __pfx_apparmor_file_open+0x10/0x10 [ 429.047470][T11918] ? __pfx_chrdev_open+0x10/0x10 [ 429.047506][T11918] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 429.047560][T11918] do_dentry_open+0x97f/0x1530 [ 429.047611][T11918] ? __pfx_chrdev_open+0x10/0x10 [ 429.047660][T11918] vfs_open+0x82/0x3f0 [ 429.047711][T11918] path_openat+0x1de4/0x2cb0 [ 429.047764][T11918] ? __pfx_path_openat+0x10/0x10 [ 429.047810][T11918] do_filp_open+0x20b/0x470 [ 429.047848][T11918] ? __pfx_do_filp_open+0x10/0x10 [ 429.047914][T11918] ? alloc_fd+0x471/0x7d0 [ 429.047953][T11918] do_sys_openat2+0x11b/0x1d0 [ 429.047997][T11918] ? __pfx_do_sys_openat2+0x10/0x10 [ 429.048053][T11918] __x64_sys_openat+0x174/0x210 [ 429.048098][T11918] ? __pfx___x64_sys_openat+0x10/0x10 [ 429.048163][T11918] do_syscall_64+0xcd/0x490 [ 429.048209][T11918] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.048237][T11918] RIP: 0033:0x7f1b7fd8ebe9 [ 429.048261][T11918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 429.048288][T11918] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 429.048317][T11918] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 429.048336][T11918] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 429.048356][T11918] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 429.048373][T11918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 429.048391][T11918] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 429.048432][T11918] [ 430.916745][T11999] __vm_enough_memory: pid: 11999, comm: syz.1.1253, bytes: 4398046511104 not enough memory for the allocation [ 431.055036][T12006] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 431.969516][T12030] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1259'. [ 431.973191][T12028] bridge0: port 3(vlan1) entered blocking state [ 431.995896][T12028] bridge0: port 3(vlan1) entered disabled state [ 432.005757][T12028] vlan1: entered allmulticast mode [ 432.010952][T12028] veth0_vlan: entered allmulticast mode [ 432.142888][T12028] vlan1: entered promiscuous mode [ 432.166017][T12028] bridge0: port 3(vlan1) entered blocking state [ 432.173645][T12028] bridge0: port 3(vlan1) entered forwarding state [ 432.493794][T12038] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 434.289091][T12071] __vm_enough_memory: pid: 12071, comm: syz.0.1271, bytes: 4398046511104 not enough memory for the allocation [ 434.399692][T12074] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1272'. [ 435.089035][T12094] __vm_enough_memory: pid: 12094, comm: syz.0.1277, bytes: 4398046511104 not enough memory for the allocation [ 435.329992][T12091] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1278'. [ 437.195877][T12145] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 437.939316][T12170] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(2097156.0.4294967291), cmd(3) [ 438.655816][T12180] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1296'. [ 439.965807][T12200] bridge0: port 3(vlan1) entered blocking state [ 439.974988][T12200] bridge0: port 3(vlan1) entered disabled state [ 439.985734][T12200] vlan1: entered allmulticast mode [ 439.991471][T12200] veth0_vlan: entered allmulticast mode [ 440.004228][T12200] vlan1: entered promiscuous mode [ 440.011383][T12200] bridge0: port 3(vlan1) entered blocking state [ 440.017874][T12200] bridge0: port 3(vlan1) entered forwarding state [ 440.644120][ T5184] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 440.644163][ T5184] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 440.660253][ T5184] Bluetooth: hci0: Dropping invalid advertising data [ 440.670438][ T5184] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 440.670484][ T5184] Bluetooth: hci0: Dropping invalid advertising data [ 440.685255][ T5184] Bluetooth: hci0: Malformed LE Event: 0x02 [ 442.093893][T12256] FAULT_INJECTION: forcing a failure. [ 442.093893][T12256] name failslab, interval 1, probability 0, space 0, times 0 [ 442.129596][T12256] CPU: 1 UID: 0 PID: 12256 Comm: syz.0.1316 Tainted: G U syzkaller #0 PREEMPT(full) [ 442.129639][T12256] Tainted: [U]=USER [ 442.129647][T12256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 442.129662][T12256] Call Trace: [ 442.129672][T12256] [ 442.129683][T12256] dump_stack_lvl+0x16c/0x1f0 [ 442.129728][T12256] should_fail_ex+0x512/0x640 [ 442.129767][T12256] ? fs_reclaim_acquire+0xae/0x150 [ 442.129811][T12256] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 442.129856][T12256] should_failslab+0xc2/0x120 [ 442.129892][T12256] __kmalloc_noprof+0xd2/0x510 [ 442.129935][T12256] tomoyo_realpath_from_path+0xc2/0x6e0 [ 442.129978][T12256] ? tomoyo_profile+0x47/0x60 [ 442.130008][T12256] tomoyo_path_number_perm+0x245/0x580 [ 442.130041][T12256] ? tomoyo_path_number_perm+0x237/0x580 [ 442.130078][T12256] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 442.130113][T12256] ? find_held_lock+0x2b/0x80 [ 442.130177][T12256] ? find_held_lock+0x2b/0x80 [ 442.130203][T12256] ? hook_file_ioctl_common+0x145/0x410 [ 442.130248][T12256] ? __fget_files+0x20e/0x3c0 [ 442.130287][T12256] security_file_ioctl+0x9b/0x240 [ 442.130322][T12256] __x64_sys_ioctl+0xb7/0x210 [ 442.130367][T12256] do_syscall_64+0xcd/0x490 [ 442.130410][T12256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 442.130438][T12256] RIP: 0033:0x7f3110b8ebe9 [ 442.130460][T12256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 442.130487][T12256] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 442.130515][T12256] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 442.130534][T12256] RDX: 0000000000000000 RSI: 00000000c0585611 RDI: 0000000000000000 [ 442.130551][T12256] RBP: 00007f31119e9090 R08: 0000000000000000 R09: 0000000000000000 [ 442.130567][T12256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 442.130582][T12256] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 442.130627][T12256] [ 442.131806][T12256] ERROR: Out of memory at tomoyo_realpath_from_path. [ 442.802281][T12282] __vm_enough_memory: pid: 12282, comm: syz.0.1324, bytes: 4398046511104 not enough memory for the allocation [ 442.824266][T12283] ubi0: attaching mtd0 [ 442.844209][T12283] ubi0: scanning is finished [ 442.848978][T12283] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 443.334663][T12283] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 443.755065][T12301] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1327'. [ 444.055545][T12301] misc userio: No port type given on /dev/userio [ 444.712129][T12316] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input62 [ 445.022088][T12325] __vm_enough_memory: pid: 12325, comm: syz.1.1335, bytes: 4398046511104 not enough memory for the allocation [ 445.273471][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.279972][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.389578][T12327] bridge0: port 3(veth1_macvtap) entered blocking state [ 445.479610][T12327] bridge0: port 3(veth1_macvtap) entered disabled state [ 445.509180][T12327] veth1_macvtap: entered allmulticast mode [ 445.570677][T12327] veth1_macvtap: entered promiscuous mode [ 445.614888][T12327] bridge0: port 3(veth1_macvtap) entered blocking state [ 445.622198][T12327] bridge0: port 3(veth1_macvtap) entered forwarding state [ 445.904469][T12333] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input63 [ 450.163377][T12426] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1355'. [ 450.206864][T12403] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 450.234379][T12403] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 450.272317][T12403] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 450.299120][T12403] page_type: f5(slab) [ 450.303237][T12403] raw: 00fff00000000040 ffff88801ce9a640 dead000000000100 dead000000000122 [ 450.321004][T12403] raw: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000 [ 450.347359][T12403] head: 00fff00000000040 ffff88801ce9a640 dead000000000100 dead000000000122 [ 450.372891][T12403] head: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000 [ 450.382504][T12403] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 450.396352][T12403] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 450.405555][T12403] page dumped because: unmovable page [ 450.414634][T12403] page_owner tracks the page as allocated [ 450.421843][T12403] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11211, tgid 11211 (syz-executor), ts 391046038305, free_ts 391010754589 [ 450.451085][T12403] post_alloc_hook+0x1c0/0x230 [ 450.456404][T12403] get_page_from_freelist+0x132b/0x38e0 [ 450.464182][T12403] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 450.484566][T12403] alloc_pages_mpol+0x1fb/0x550 [ 450.492148][T12403] new_slab+0x247/0x330 [ 450.496377][T12403] ___slab_alloc+0xcf2/0x1750 [ 450.502058][T12403] __slab_alloc.constprop.0+0x56/0xb0 [ 450.510703][T12403] kmem_cache_alloc_noprof+0xef/0x3b0 [ 450.516188][T12403] getname_flags.part.0+0x4c/0x550 [ 450.522641][T12403] getname_flags+0x93/0xf0 [ 450.531213][T12403] do_sys_openat2+0xb8/0x1d0 [ 450.535901][T12403] __x64_sys_openat+0x174/0x210 [ 450.541723][T12403] do_syscall_64+0xcd/0x490 [ 450.549545][T12403] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.563878][T12403] page last free pid 11183 tgid 11181 stack trace: [ 450.591703][T12403] __free_frozen_pages+0x7d5/0x10f0 [ 450.611087][T12403] __put_partials+0x165/0x1c0 [ 450.620488][T12403] qlist_free_all+0x4d/0x120 [ 450.633485][T12403] kasan_quarantine_reduce+0x195/0x1e0 [ 450.650705][T12403] __kasan_slab_alloc+0x69/0x90 [ 450.673922][T12403] kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 450.691780][T12403] kmalloc_reserve+0x18b/0x2c0 [ 450.697472][T12403] __alloc_skb+0x166/0x380 [ 450.701956][T12403] mpls_netconf_notify_devconf+0x4a/0x110 [ 450.709554][T12403] mpls_dev_sysctl_register+0x1c9/0x2a0 [ 450.723278][T12403] mpls_dev_notify+0x4ab/0xa20 [ 450.737007][T12403] notifier_call_chain+0xb9/0x410 [ 450.744483][T12403] call_netdevice_notifiers_info+0xbe/0x140 [ 450.782977][T12403] register_netdevice+0x182e/0x2270 [ 450.791837][T12403] register_netdev+0x34/0x50 [ 450.812536][T12403] ip6gre_init_net+0x306/0x450 [ 450.840639][T12404] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 450.863869][T12404] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 450.922662][T12404] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 450.950960][T12404] page_type: f5(slab) [ 450.968972][T12404] raw: 00fff00000000040 ffff88801ce9a640 dead000000000100 dead000000000122 [ 451.001614][T12404] raw: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000 [ 451.030095][T12404] head: 00fff00000000040 ffff88801ce9a640 dead000000000100 dead000000000122 [ 451.060959][T12404] head: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000 [ 451.086275][T12404] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 451.111281][T12404] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 451.133738][T12404] page dumped because: unmovable page [ 451.153600][T12404] page_owner tracks the page as allocated [ 451.225369][T12404] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11211, tgid 11211 (syz-executor), ts 391046038305, free_ts 391010754589 [ 451.313587][T12404] post_alloc_hook+0x1c0/0x230 [ 451.318440][T12404] get_page_from_freelist+0x132b/0x38e0 [ 451.336356][T12404] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 451.372393][T12404] alloc_pages_mpol+0x1fb/0x550 [ 451.377427][T12404] new_slab+0x247/0x330 [ 451.381638][T12404] ___slab_alloc+0xcf2/0x1750 [ 451.411845][T12404] __slab_alloc.constprop.0+0x56/0xb0 [ 451.422016][T12404] kmem_cache_alloc_noprof+0xef/0x3b0 [ 451.427468][T12404] getname_flags.part.0+0x4c/0x550 [ 451.442013][T12404] getname_flags+0x93/0xf0 [ 451.452280][T12404] do_sys_openat2+0xb8/0x1d0 [ 451.456971][T12404] __x64_sys_openat+0x174/0x210 [ 451.472622][T12404] do_syscall_64+0xcd/0x490 [ 451.489622][T12443] 0x000200000001-0xa29656a63616329 : "" [ 451.495719][T12443] mtd: partition "" is out of reach -- disabled [ 451.508017][T12443] ftl_cs: FTL header not found. [ 451.525822][T12404] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 451.541534][T12404] page last free pid 11183 tgid 11181 stack trace: [ 451.561292][T12404] __free_frozen_pages+0x7d5/0x10f0 [ 451.567810][T12404] __put_partials+0x165/0x1c0 [ 451.601097][T12404] qlist_free_all+0x4d/0x120 [ 451.617692][T12404] kasan_quarantine_reduce+0x195/0x1e0 [ 451.627720][T12404] __kasan_slab_alloc+0x69/0x90 [ 451.640256][T12404] kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 451.655259][T12404] kmalloc_reserve+0x18b/0x2c0 [ 451.664485][T12449] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1359'. [ 451.667101][T12404] __alloc_skb+0x166/0x380 [ 451.687262][T12404] mpls_netconf_notify_devconf+0x4a/0x110 [ 451.702677][T12404] mpls_dev_sysctl_register+0x1c9/0x2a0 [ 451.716422][T12404] mpls_dev_notify+0x4ab/0xa20 [ 451.730461][T12404] notifier_call_chain+0xb9/0x410 [ 451.740541][T12404] call_netdevice_notifiers_info+0xbe/0x140 [ 451.754389][T12404] register_netdevice+0x182e/0x2270 [ 451.768079][T12404] register_netdev+0x34/0x50 [ 451.780016][T12404] ip6gre_init_net+0x306/0x450 [ 452.402473][T12462] sp0: Synchronizing with TNC [ 452.481642][T12460] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1360'. [ 453.519801][T12475] FAULT_INJECTION: forcing a failure. [ 453.519801][T12475] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 453.533556][T12475] CPU: 1 UID: 0 PID: 12475 Comm: syz.3.1366 Tainted: G U syzkaller #0 PREEMPT(full) [ 453.533607][T12475] Tainted: [U]=USER [ 453.533617][T12475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 453.533636][T12475] Call Trace: [ 453.533645][T12475] [ 453.533656][T12475] dump_stack_lvl+0x16c/0x1f0 [ 453.533709][T12475] should_fail_ex+0x512/0x640 [ 453.533761][T12475] _copy_from_user+0x2e/0xd0 [ 453.533805][T12475] __sys_bpf+0x21d/0x4de0 [ 453.533858][T12475] ? __pfx___sys_bpf+0x10/0x10 [ 453.533901][T12475] ? errseq_sample+0x53/0x70 [ 453.533932][T12475] ? file_init_path+0x4fe/0x760 [ 453.533984][T12475] ? do_futex+0x122/0x350 [ 453.534030][T12475] ? __pfx_do_futex+0x10/0x10 [ 453.534084][T12475] ? __sys_socket+0xac/0x260 [ 453.534124][T12475] ? xfd_validate_state+0x61/0x180 [ 453.534167][T12475] ? __pfx___do_sys_close_range+0x10/0x10 [ 453.534213][T12475] __x64_sys_bpf+0x78/0xc0 [ 453.534259][T12475] ? lockdep_hardirqs_on+0x7c/0x110 [ 453.534303][T12475] do_syscall_64+0xcd/0x490 [ 453.534352][T12475] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.534383][T12475] RIP: 0033:0x7f63f2f8ebe9 [ 453.534409][T12475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.534438][T12475] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 453.534468][T12475] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 453.534488][T12475] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 453.534505][T12475] RBP: 00007f63f3011e19 R08: 0000000000000000 R09: 0000000000000000 [ 453.534522][T12475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 453.534539][T12475] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 453.534578][T12475] [ 455.894913][T12503] FAULT_INJECTION: forcing a failure. [ 455.894913][T12503] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 455.915255][T12503] CPU: 1 UID: 0 PID: 12503 Comm: syz.3.1371 Tainted: G U syzkaller #0 PREEMPT(full) [ 455.915303][T12503] Tainted: [U]=USER [ 455.915313][T12503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 455.915330][T12503] Call Trace: [ 455.915340][T12503] [ 455.915351][T12503] dump_stack_lvl+0x16c/0x1f0 [ 455.915399][T12503] should_fail_ex+0x512/0x640 [ 455.915453][T12503] _copy_from_user+0x2e/0xd0 [ 455.915488][T12503] do_sock_getsockopt+0x3ca/0x440 [ 455.915524][T12503] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 455.915553][T12503] ? __fget_files+0x204/0x3c0 [ 455.915606][T12503] __sys_getsockopt+0x123/0x1b0 [ 455.915659][T12503] __x64_sys_getsockopt+0xbd/0x160 [ 455.915698][T12503] ? do_syscall_64+0x91/0x490 [ 455.915742][T12503] ? lockdep_hardirqs_on+0x7c/0x110 [ 455.915784][T12503] do_syscall_64+0xcd/0x490 [ 455.915832][T12503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.915863][T12503] RIP: 0033:0x7f63f2f8ebe9 [ 455.915887][T12503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 455.915917][T12503] RSP: 002b:00007f63f3e38038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 455.915946][T12503] RAX: ffffffffffffffda RBX: 00007f63f31c6180 RCX: 00007f63f2f8ebe9 [ 455.915965][T12503] RDX: 0000000000000021 RSI: 0000000000000006 RDI: 0000000000000006 [ 455.915982][T12503] RBP: 00007f63f3011e19 R08: 0000000000000000 R09: 0000000000000000 [ 455.916000][T12503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.916017][T12503] R13: 00007f63f31c6218 R14: 00007f63f31c6180 R15: 00007ffef43b7b38 [ 455.916056][T12503] [ 456.566808][T12518] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input65 [ 457.153516][T12529] __vm_enough_memory: pid: 12529, comm: syz.4.1377, bytes: 4398046511104 not enough memory for the allocation [ 457.545264][ T5184] Bluetooth: hci1: Malformed LE Event: 0x1b [ 458.855040][T12573] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1387'. [ 458.875072][T12566] FAULT_INJECTION: forcing a failure. [ 458.875072][T12566] name failslab, interval 1, probability 0, space 0, times 0 [ 458.956183][T12566] CPU: 0 UID: 0 PID: 12566 Comm: syz.4.1385 Tainted: G U syzkaller #0 PREEMPT(full) [ 458.956236][T12566] Tainted: [U]=USER [ 458.956246][T12566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 458.956264][T12566] Call Trace: [ 458.956274][T12566] [ 458.956286][T12566] dump_stack_lvl+0x16c/0x1f0 [ 458.956334][T12566] should_fail_ex+0x512/0x640 [ 458.956377][T12566] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 458.956416][T12566] should_failslab+0xc2/0x120 [ 458.956456][T12566] __kmalloc_cache_noprof+0x6a/0x3e0 [ 458.956488][T12566] ? lockdep_init_map_type+0x5c/0x280 [ 458.956524][T12566] ? qrtr_endpoint_register+0x85/0x500 [ 458.956574][T12566] qrtr_endpoint_register+0x85/0x500 [ 458.956624][T12566] qrtr_tun_open+0x151/0x220 [ 458.956658][T12566] ? __pfx_qrtr_tun_open+0x10/0x10 [ 458.956694][T12566] misc_open+0x35d/0x420 [ 458.956732][T12566] ? __pfx_misc_open+0x10/0x10 [ 458.956776][T12566] chrdev_open+0x231/0x6a0 [ 458.956815][T12566] ? __pfx_apparmor_file_open+0x10/0x10 [ 458.956849][T12566] ? __pfx_chrdev_open+0x10/0x10 [ 458.956892][T12566] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 458.956934][T12566] do_dentry_open+0x97f/0x1530 [ 458.956973][T12566] ? __pfx_chrdev_open+0x10/0x10 [ 458.957023][T12566] vfs_open+0x82/0x3f0 [ 458.957072][T12566] path_openat+0x1de4/0x2cb0 [ 458.957123][T12566] ? __pfx_path_openat+0x10/0x10 [ 458.957166][T12566] do_filp_open+0x20b/0x470 [ 458.957203][T12566] ? __pfx_do_filp_open+0x10/0x10 [ 458.957271][T12566] ? alloc_fd+0x471/0x7d0 [ 458.957315][T12566] do_sys_openat2+0x11b/0x1d0 [ 458.957358][T12566] ? __pfx_do_sys_openat2+0x10/0x10 [ 458.957418][T12566] __x64_sys_openat+0x174/0x210 [ 458.957462][T12566] ? __pfx___x64_sys_openat+0x10/0x10 [ 458.957524][T12566] do_syscall_64+0xcd/0x490 [ 458.957573][T12566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 458.957603][T12566] RIP: 0033:0x7f1b7fd8ebe9 [ 458.957628][T12566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 458.957658][T12566] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 458.957687][T12566] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 458.957707][T12566] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 458.957725][T12566] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 458.957741][T12566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 458.957759][T12566] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 458.957812][T12566] [ 459.611842][T12577] __vm_enough_memory: pid: 12577, comm: syz.3.1388, bytes: 4398046511104 not enough memory for the allocation [ 460.158595][T12594] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 462.241022][T12624] random: crng reseeded on system resumption [ 462.301895][T12640] __vm_enough_memory: pid: 12640, comm: syz.1.1404, bytes: 4398046511104 not enough memory for the allocation [ 462.799688][T12647] synth uevent: /devices/virtual/tty/ptyc1: unknown uevent action string [ 462.809883][T12647] tty ptyc1: uevent: failed to send synthetic uevent: -22 [ 463.445387][T12653] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 463.963145][T12663] bond0: option all_slaves_active: invalid value () [ 464.704128][T12681] __vm_enough_memory: pid: 12681, comm: syz.0.1414, bytes: 4398046511104 not enough memory for the allocation [ 467.433365][T12761] __vm_enough_memory: pid: 12761, comm: syz.0.1426, bytes: 4398046511104 not enough memory for the allocation [ 468.011151][T12774] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 468.770741][T12797] random: crng reseeded on system resumption [ 468.807171][T12802] __vm_enough_memory: pid: 12802, comm: syz.3.1438, bytes: 4398046511104 not enough memory for the allocation [ 470.204786][T12827] can: request_module (can-proto-3) failed. [ 470.451393][T12831] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 470.461191][T12831] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 471.442469][T12849] FAULT_INJECTION: forcing a failure. [ 471.442469][T12849] name failslab, interval 1, probability 0, space 0, times 0 [ 471.496447][T12849] CPU: 0 UID: 0 PID: 12849 Comm: syz.0.1449 Tainted: G U syzkaller #0 PREEMPT(full) [ 471.496499][T12849] Tainted: [U]=USER [ 471.496510][T12849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 471.496528][T12849] Call Trace: [ 471.496538][T12849] [ 471.496550][T12849] dump_stack_lvl+0x16c/0x1f0 [ 471.496603][T12849] should_fail_ex+0x512/0x640 [ 471.496649][T12849] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 471.496684][T12849] should_failslab+0xc2/0x120 [ 471.496725][T12849] __kmalloc_cache_noprof+0x6a/0x3e0 [ 471.496757][T12849] ? lockdep_init_map_type+0x5c/0x280 [ 471.496798][T12849] ? qrtr_endpoint_register+0x85/0x500 [ 471.496853][T12849] qrtr_endpoint_register+0x85/0x500 [ 471.496904][T12849] qrtr_tun_open+0x151/0x220 [ 471.496939][T12849] ? __pfx_qrtr_tun_open+0x10/0x10 [ 471.496976][T12849] misc_open+0x35d/0x420 [ 471.497014][T12849] ? __pfx_misc_open+0x10/0x10 [ 471.497049][T12849] chrdev_open+0x231/0x6a0 [ 471.497089][T12849] ? __pfx_apparmor_file_open+0x10/0x10 [ 471.497124][T12849] ? __pfx_chrdev_open+0x10/0x10 [ 471.497165][T12849] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 471.497210][T12849] do_dentry_open+0x97f/0x1530 [ 471.497250][T12849] ? __pfx_chrdev_open+0x10/0x10 [ 471.497298][T12849] vfs_open+0x82/0x3f0 [ 471.497349][T12849] path_openat+0x1de4/0x2cb0 [ 471.497406][T12849] ? __pfx_path_openat+0x10/0x10 [ 471.497466][T12849] do_filp_open+0x20b/0x470 [ 471.497503][T12849] ? __pfx_do_filp_open+0x10/0x10 [ 471.497562][T12849] ? alloc_fd+0x471/0x7d0 [ 471.497606][T12849] do_sys_openat2+0x11b/0x1d0 [ 471.497656][T12849] ? __pfx_do_sys_openat2+0x10/0x10 [ 471.497713][T12849] __x64_sys_openat+0x174/0x210 [ 471.497759][T12849] ? __pfx___x64_sys_openat+0x10/0x10 [ 471.497824][T12849] do_syscall_64+0xcd/0x490 [ 471.497874][T12849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.497905][T12849] RIP: 0033:0x7f3110b8ebe9 [ 471.497931][T12849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 471.497961][T12849] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 471.497991][T12849] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 471.498011][T12849] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 471.498029][T12849] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 471.498047][T12849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 471.498065][T12849] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 471.498106][T12849] [ 471.687326][T12853] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 472.106420][T12857] __vm_enough_memory: pid: 12857, comm: syz.1.1450, bytes: 4398046511104 not enough memory for the allocation [ 473.008765][T12871] ICMPv6: process `syz.3.1455' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 474.084248][T12877] FAULT_INJECTION: forcing a failure. [ 474.084248][T12877] name failslab, interval 1, probability 0, space 0, times 0 [ 474.161201][T12877] CPU: 0 UID: 0 PID: 12877 Comm: syz.4.1452 Tainted: G U syzkaller #0 PREEMPT(full) [ 474.161249][T12877] Tainted: [U]=USER [ 474.161258][T12877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 474.161274][T12877] Call Trace: [ 474.161284][T12877] [ 474.161294][T12877] dump_stack_lvl+0x16c/0x1f0 [ 474.161339][T12877] should_fail_ex+0x512/0x640 [ 474.161377][T12877] ? __kmalloc_noprof+0xbf/0x510 [ 474.161412][T12877] ? memcg_list_lru_alloc+0x4e9/0x740 [ 474.161441][T12877] should_failslab+0xc2/0x120 [ 474.161477][T12877] __kmalloc_noprof+0xd2/0x510 [ 474.161506][T12877] ? __lock_acquire+0x62e/0x1ce0 [ 474.161547][T12877] memcg_list_lru_alloc+0x4e9/0x740 [ 474.161591][T12877] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 474.161644][T12877] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 474.161678][T12877] __memcg_slab_post_alloc_hook+0x133/0x960 [ 474.161722][T12877] ? kasan_save_track+0x14/0x30 [ 474.161756][T12877] kmem_cache_alloc_lru_noprof+0x30f/0x3b0 [ 474.161790][T12877] ? alloc_inode+0xc3/0x240 [ 474.161835][T12877] alloc_inode+0xc3/0x240 [ 474.161871][T12877] iget_locked+0x2e4/0x830 [ 474.161909][T12877] ? stack_trace_save+0x8e/0xc0 [ 474.161943][T12877] ? __pfx_iget_locked+0x10/0x10 [ 474.161989][T12877] ? find_held_lock+0x2b/0x80 [ 474.162017][T12877] ? kernfs_find_and_get_node_by_id+0x1c3/0x3f0 [ 474.162067][T12877] kernfs_get_inode+0x48/0x460 [ 474.162102][T12877] kernfs_fh_to_dentry+0xf3/0x250 [ 474.162136][T12877] exportfs_decode_fh_raw+0x167/0x7d0 [ 474.162179][T12877] ? __pfx_vfs_dentry_acceptable+0x10/0x10 [ 474.162218][T12877] ? __pfx_kernfs_fh_to_dentry+0x10/0x10 [ 474.162249][T12877] ? __pfx_exportfs_decode_fh_raw+0x10/0x10 [ 474.162346][T12877] do_handle_open+0x6e3/0xc50 [ 474.162374][T12877] ? __pfx_do_handle_open+0x10/0x10 [ 474.162397][T12877] ? __x64_sys_futex+0x1e0/0x4c0 [ 474.162438][T12877] ? xfd_validate_state+0x61/0x180 [ 474.162489][T12877] ? do_syscall_64+0xcd/0x490 [ 474.162520][T12877] do_syscall_64+0xcd/0x490 [ 474.162546][T12877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 474.162565][T12877] RIP: 0033:0x7f1b7fd8ebe9 [ 474.162581][T12877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 474.162598][T12877] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 474.162616][T12877] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 474.162627][T12877] RDX: 0000000000000002 RSI: 0000200000000000 RDI: 0000000000000006 [ 474.162645][T12877] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 474.162655][T12877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 474.162665][T12877] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 474.162687][T12877] [ 476.440607][T12900] FAULT_INJECTION: forcing a failure. [ 476.440607][T12900] name failslab, interval 1, probability 0, space 0, times 0 [ 476.479374][T12900] CPU: 1 UID: 0 PID: 12900 Comm: syz.0.1460 Tainted: G U syzkaller #0 PREEMPT(full) [ 476.479434][T12900] Tainted: [U]=USER [ 476.479444][T12900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 476.479459][T12900] Call Trace: [ 476.479468][T12900] [ 476.479480][T12900] dump_stack_lvl+0x16c/0x1f0 [ 476.479528][T12900] should_fail_ex+0x512/0x640 [ 476.479575][T12900] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 476.479611][T12900] should_failslab+0xc2/0x120 [ 476.479651][T12900] __kmalloc_cache_noprof+0x6a/0x3e0 [ 476.479681][T12900] ? lockdep_init_map_type+0x5c/0x280 [ 476.479720][T12900] ? qrtr_endpoint_register+0x85/0x500 [ 476.479773][T12900] qrtr_endpoint_register+0x85/0x500 [ 476.479824][T12900] qrtr_tun_open+0x151/0x220 [ 476.479857][T12900] ? __pfx_qrtr_tun_open+0x10/0x10 [ 476.479891][T12900] misc_open+0x35d/0x420 [ 476.479926][T12900] ? __pfx_misc_open+0x10/0x10 [ 476.479961][T12900] chrdev_open+0x231/0x6a0 [ 476.479999][T12900] ? __pfx_apparmor_file_open+0x10/0x10 [ 476.480033][T12900] ? __pfx_chrdev_open+0x10/0x10 [ 476.480074][T12900] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 476.480116][T12900] do_dentry_open+0x97f/0x1530 [ 476.480155][T12900] ? __pfx_chrdev_open+0x10/0x10 [ 476.480203][T12900] vfs_open+0x82/0x3f0 [ 476.480253][T12900] path_openat+0x1de4/0x2cb0 [ 476.480303][T12900] ? __pfx_path_openat+0x10/0x10 [ 476.480351][T12900] do_filp_open+0x20b/0x470 [ 476.480387][T12900] ? __pfx_do_filp_open+0x10/0x10 [ 476.480462][T12900] ? alloc_fd+0x471/0x7d0 [ 476.480507][T12900] do_sys_openat2+0x11b/0x1d0 [ 476.480553][T12900] ? __pfx_do_sys_openat2+0x10/0x10 [ 476.480617][T12900] __x64_sys_openat+0x174/0x210 [ 476.480663][T12900] ? __pfx___x64_sys_openat+0x10/0x10 [ 476.480727][T12900] do_syscall_64+0xcd/0x490 [ 476.480776][T12900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 476.480806][T12900] RIP: 0033:0x7f3110b8ebe9 [ 476.480830][T12900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 476.480859][T12900] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 476.480888][T12900] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 476.480908][T12900] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 476.480925][T12900] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 476.480943][T12900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 476.480959][T12900] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 476.481000][T12900] [ 476.893778][T12905] __vm_enough_memory: pid: 12905, comm: syz.1.1461, bytes: 4398046511104 not enough memory for the allocation [ 478.416190][T12933] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 481.161223][T12961] zswap: compressor not available [ 482.584130][T12991] FAULT_INJECTION: forcing a failure. [ 482.584130][T12991] name failslab, interval 1, probability 0, space 0, times 0 [ 482.634232][T12991] CPU: 1 UID: 0 PID: 12991 Comm: syz.4.1482 Tainted: G U syzkaller #0 PREEMPT(full) [ 482.634284][T12991] Tainted: [U]=USER [ 482.634295][T12991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 482.634312][T12991] Call Trace: [ 482.634322][T12991] [ 482.634334][T12991] dump_stack_lvl+0x16c/0x1f0 [ 482.634384][T12991] should_fail_ex+0x512/0x640 [ 482.634430][T12991] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 482.634467][T12991] should_failslab+0xc2/0x120 [ 482.634507][T12991] __kmalloc_cache_noprof+0x6a/0x3e0 [ 482.634537][T12991] ? lockdep_init_map_type+0x5c/0x280 [ 482.634574][T12991] ? qrtr_endpoint_register+0x85/0x500 [ 482.634636][T12991] qrtr_endpoint_register+0x85/0x500 [ 482.634688][T12991] qrtr_tun_open+0x151/0x220 [ 482.634721][T12991] ? __pfx_qrtr_tun_open+0x10/0x10 [ 482.634756][T12991] misc_open+0x35d/0x420 [ 482.634792][T12991] ? __pfx_misc_open+0x10/0x10 [ 482.634827][T12991] chrdev_open+0x231/0x6a0 [ 482.634866][T12991] ? __pfx_apparmor_file_open+0x10/0x10 [ 482.634900][T12991] ? __pfx_chrdev_open+0x10/0x10 [ 482.634941][T12991] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 482.634982][T12991] do_dentry_open+0x97f/0x1530 [ 482.635021][T12991] ? __pfx_chrdev_open+0x10/0x10 [ 482.635067][T12991] vfs_open+0x82/0x3f0 [ 482.635117][T12991] path_openat+0x1de4/0x2cb0 [ 482.635168][T12991] ? __pfx_path_openat+0x10/0x10 [ 482.635215][T12991] do_filp_open+0x20b/0x470 [ 482.635251][T12991] ? __pfx_do_filp_open+0x10/0x10 [ 482.635319][T12991] ? alloc_fd+0x471/0x7d0 [ 482.635364][T12991] do_sys_openat2+0x11b/0x1d0 [ 482.635408][T12991] ? __pfx_do_sys_openat2+0x10/0x10 [ 482.635471][T12991] __x64_sys_openat+0x174/0x210 [ 482.635519][T12991] ? __pfx___x64_sys_openat+0x10/0x10 [ 482.635583][T12991] do_syscall_64+0xcd/0x490 [ 482.635638][T12991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.635668][T12991] RIP: 0033:0x7f1b7fd8ebe9 [ 482.635692][T12991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.635721][T12991] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 482.635750][T12991] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 482.635770][T12991] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 482.635789][T12991] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 482.635807][T12991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.635824][T12991] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 482.635866][T12991] [ 483.591309][T13013] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input71 [ 485.886213][T13053] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 486.000266][T13048] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 486.211319][T13057] 0x000200000001-0xa29656a63616329 : "" [ 486.217444][T13057] mtd: partition "" is out of reach -- disabled [ 486.235872][T13057] ftl_cs: FTL header not found. [ 486.363462][T13048] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 486.596401][T13048] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 486.737942][T13063] sysfs_service_op_store: Client not running :-5: [ 486.786191][T13048] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 487.394235][T13065] Invalid ELF header magic: != ELF [ 489.880878][T13123] Invalid ELF header magic: != ELF [ 490.905049][ T30] audit: type=1800 audit(4294969508.972:16): pid=13141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1515" name="members" dev="configfs" ino=46319 res=0 errno=0 [ 491.104616][T13147] __vm_enough_memory: pid: 13147, comm: syz.3.1516, bytes: 4398046511104 not enough memory for the allocation [ 493.033635][T13172] __vm_enough_memory: pid: 13172, comm: syz.1.1524, bytes: 4398046511104 not enough memory for the allocation [ 495.557791][T13210] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1535'. [ 495.649005][T13214] hub 8-0:1.0: USB hub found [ 495.659494][T13214] hub 8-0:1.0: 1 port detected [ 496.219606][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.228474][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.243663][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.255178][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.264803][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.356231][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.416700][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.425345][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.462511][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.472737][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.601444][T13232] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.645113][ T5929] rtc_cmos 00:00: Alarms can be up to one day in the future [ 496.660266][T13251] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 496.678061][ T5929] rtc_cmos 00:00: Alarms can be up to one day in the future [ 496.840705][ T5929] rtc_cmos 00:00: Alarms can be up to one day in the future [ 496.848917][ T5929] rtc_cmos 00:00: Alarms can be up to one day in the future [ 496.857115][ T5929] rtc rtc0: __rtc_set_alarm: err=-22 [ 499.499654][T13297] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input74 [ 499.751313][T13300] QAT: failed to copy from user. [ 500.202559][T13310] FAULT_INJECTION: forcing a failure. [ 500.202559][T13310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 500.217196][T13310] CPU: 1 UID: 0 PID: 13310 Comm: syz.0.1556 Tainted: G U syzkaller #0 PREEMPT(full) [ 500.217241][T13310] Tainted: [U]=USER [ 500.217250][T13310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 500.217266][T13310] Call Trace: [ 500.217276][T13310] [ 500.217287][T13310] dump_stack_lvl+0x16c/0x1f0 [ 500.217334][T13310] should_fail_ex+0x512/0x640 [ 500.217386][T13310] should_fail_alloc_page+0xe7/0x130 [ 500.217423][T13310] prepare_alloc_pages+0x3c2/0x610 [ 500.217473][T13310] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 500.217522][T13310] ? lock_acquire+0x179/0x350 [ 500.217575][T13310] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 500.217615][T13310] ? __lock_acquire+0xb97/0x1ce0 [ 500.217663][T13310] ? __lock_acquire+0xb97/0x1ce0 [ 500.217694][T13310] ? look_up_lock_class+0x59/0x150 [ 500.217735][T13310] ? register_lock_class+0x41/0x4c0 [ 500.217770][T13310] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 500.217816][T13310] ? policy_nodemask+0xea/0x4e0 [ 500.217854][T13310] alloc_pages_mpol+0x1fb/0x550 [ 500.217895][T13310] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 500.217935][T13310] ? udp_sendmsg+0x3c8/0x2870 [ 500.217984][T13310] folio_alloc_mpol_noprof+0x36/0x2f0 [ 500.218030][T13310] vma_alloc_folio_noprof+0xed/0x1e0 [ 500.218070][T13310] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 500.218114][T13310] ? rcu_read_unlock+0x2d/0xb0 [ 500.218155][T13310] do_wp_page+0x1e5b/0x4f00 [ 500.218206][T13310] ? __pfx_do_wp_page+0x10/0x10 [ 500.218250][T13310] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 500.218288][T13310] ? ___pte_offset_map+0x2ad/0x4f0 [ 500.218330][T13310] __handle_mm_fault+0x1b2d/0x2a50 [ 500.218369][T13310] ? __pfx___handle_mm_fault+0x10/0x10 [ 500.218404][T13310] ? lock_vma_under_rcu+0x1eb/0x530 [ 500.218448][T13310] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 500.218490][T13310] handle_mm_fault+0x589/0xd10 [ 500.218522][T13310] ? trace_raw_output_exceptions+0x131/0x150 [ 500.218581][T13310] do_user_addr_fault+0x60c/0x1370 [ 500.218632][T13310] ? rcu_is_watching+0x12/0xc0 [ 500.218666][T13310] exc_page_fault+0x5c/0xb0 [ 500.218705][T13310] asm_exc_page_fault+0x26/0x30 [ 500.218732][T13310] RIP: 0033:0x7f3110b48715 [ 500.218756][T13310] Code: 0f 1f 44 00 00 8b 57 18 64 8b 04 25 d0 02 00 00 39 c2 0f 84 0d 01 00 00 41 54 55 53 83 7f 30 02 48 89 fb 74 28 b8 08 00 00 00 0f c1 03 83 c0 08 85 c0 0f 88 fc 00 00 00 a8 01 75 78 31 d2 5b [ 500.218783][T13310] RSP: 002b:00007f31119e7de0 EFLAGS: 00010293 [ 500.218807][T13310] RAX: 0000000000000008 RBX: 00007f31118f7d60 RCX: 0000000000000000 [ 500.218826][T13310] RDX: 0000000000000000 RSI: 00007f3110c4f9fe RDI: 00007f31118f7d60 [ 500.218842][T13310] RBP: 00007f31119e7f00 R08: 0000000000000000 R09: 0000000000000005 [ 500.218859][T13310] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f3110c4f5a0 [ 500.218876][T13310] R13: 0000000000000016 R14: 00007f3110d97460 R15: 0000000000000000 [ 500.218914][T13310] [ 500.219138][T13310] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 500.227078][T13303] 0x000200000001-0xa29656a63616329 : "" [ 500.551172][T13303] mtd: partition "" is out of reach -- disabled [ 500.597898][T13303] ftl_cs: FTL header not found. [ 501.362466][T13338] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1562'. [ 501.560693][T13349] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1565'. [ 501.589124][T13349] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 503.450492][T13395] FAULT_INJECTION: forcing a failure. [ 503.450492][T13395] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 503.464856][T13395] CPU: 1 UID: 0 PID: 13395 Comm: syz.3.1573 Tainted: G U syzkaller #0 PREEMPT(full) [ 503.464904][T13395] Tainted: [U]=USER [ 503.464913][T13395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 503.464945][T13395] Call Trace: [ 503.464954][T13395] [ 503.464965][T13395] dump_stack_lvl+0x16c/0x1f0 [ 503.465012][T13395] should_fail_ex+0x512/0x640 [ 503.465083][T13395] _copy_from_user+0x2e/0xd0 [ 503.465116][T13395] copy_msghdr_from_user+0x98/0x160 [ 503.465159][T13395] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 503.465221][T13395] ___sys_sendmsg+0xfe/0x1d0 [ 503.465263][T13395] ? __pfx____sys_sendmsg+0x10/0x10 [ 503.465353][T13395] __sys_sendmsg+0x16d/0x220 [ 503.465394][T13395] ? __pfx___sys_sendmsg+0x10/0x10 [ 503.465459][T13395] do_syscall_64+0xcd/0x490 [ 503.465504][T13395] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.465542][T13395] RIP: 0033:0x7f63f2f8ebe9 [ 503.465565][T13395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.465593][T13395] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 503.465619][T13395] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 503.465638][T13395] RDX: 000000000400c080 RSI: 00002000000006c0 RDI: 0000000000000003 [ 503.465655][T13395] RBP: 00007f63f3e7a090 R08: 0000000000000000 R09: 0000000000000000 [ 503.465671][T13395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 503.465688][T13395] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 503.465737][T13395] [ 504.105308][T13405] random: crng reseeded on system resumption [ 504.193304][T13405] blktrace: Concurrent blktraces are not allowed on loop12 [ 504.462967][T13415] __vm_enough_memory: pid: 13415, comm: syz.0.1578, bytes: 4398046511104 not enough memory for the allocation [ 504.492893][T13416] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 504.496256][T13414] netlink: 'syz.4.1576': attribute type 1 has an invalid length. [ 504.581136][T13418] __vm_enough_memory: pid: 13418, comm: syz.1.1579, bytes: 4398046511104 not enough memory for the allocation [ 505.679335][T13413] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1577'. [ 506.427847][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.436087][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 507.398263][T13468] program syz.3.1591 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 507.450035][T13465] FAULT_INJECTION: forcing a failure. [ 507.450035][T13465] name fail_futex, interval 1, probability 0, space 0, times 0 [ 507.482647][T13465] CPU: 0 UID: 0 PID: 13465 Comm: syz.0.1593 Tainted: G U syzkaller #0 PREEMPT(full) [ 507.482678][T13465] Tainted: [U]=USER [ 507.482684][T13465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 507.482694][T13465] Call Trace: [ 507.482699][T13465] [ 507.482706][T13465] dump_stack_lvl+0x16c/0x1f0 [ 507.482735][T13465] should_fail_ex+0x512/0x640 [ 507.482765][T13465] get_futex_key+0x293/0x1560 [ 507.482790][T13465] ? __pfx_get_futex_key+0x10/0x10 [ 507.482810][T13465] ? __mutex_trylock_common+0xe9/0x250 [ 507.482840][T13465] futex_wake+0xea/0x530 [ 507.482867][T13465] ? __pfx_futex_wake+0x10/0x10 [ 507.482901][T13465] do_futex+0x1e3/0x350 [ 507.482923][T13465] ? __pfx_do_futex+0x10/0x10 [ 507.482943][T13465] ? __might_fault+0xe3/0x190 [ 507.482969][T13465] mm_release+0x24e/0x300 [ 507.482990][T13465] do_exit+0x68e/0x2bf0 [ 507.483017][T13465] ? __pfx_do_exit+0x10/0x10 [ 507.483040][T13465] ? do_raw_spin_lock+0x12c/0x2b0 [ 507.483065][T13465] ? find_held_lock+0x2b/0x80 [ 507.483085][T13465] do_group_exit+0xd3/0x2a0 [ 507.483111][T13465] get_signal+0x2673/0x26d0 [ 507.483141][T13465] ? __pfx_get_signal+0x10/0x10 [ 507.483160][T13465] ? do_futex+0x122/0x350 [ 507.483181][T13465] ? __pfx_do_futex+0x10/0x10 [ 507.483206][T13465] arch_do_signal_or_restart+0x8f/0x790 [ 507.483230][T13465] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 507.483265][T13465] ? xfd_validate_state+0x61/0x180 [ 507.483295][T13465] ? __pfx___do_sys_close_range+0x10/0x10 [ 507.483320][T13465] exit_to_user_mode_loop+0x84/0x110 [ 507.483347][T13465] do_syscall_64+0x3f6/0x490 [ 507.483374][T13465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.483392][T13465] RIP: 0033:0x7f3110b8ebe9 [ 507.483406][T13465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 507.483424][T13465] RSP: 002b:00007f31119e90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 507.483440][T13465] RAX: fffffffffffffe00 RBX: 00007f3110dc5fa8 RCX: 00007f3110b8ebe9 [ 507.483451][T13465] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3110dc5fa8 [ 507.483461][T13465] RBP: 00007f3110dc5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 507.483471][T13465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.483481][T13465] R13: 00007f3110dc6038 R14: 00007ffebf591350 R15: 00007ffebf591438 [ 507.483509][T13465] [ 508.047278][T13473] FAULT_INJECTION: forcing a failure. [ 508.047278][T13473] name failslab, interval 1, probability 0, space 0, times 0 [ 508.060733][T13473] CPU: 1 UID: 0 PID: 13473 Comm: syz.0.1596 Tainted: G U syzkaller #0 PREEMPT(full) [ 508.060782][T13473] Tainted: [U]=USER [ 508.060793][T13473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 508.060811][T13473] Call Trace: [ 508.060821][T13473] [ 508.060834][T13473] dump_stack_lvl+0x16c/0x1f0 [ 508.060886][T13473] should_fail_ex+0x512/0x640 [ 508.060941][T13473] should_failslab+0xc2/0x120 [ 508.060983][T13473] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 508.061021][T13473] ? stack_depot_save_flags+0x29/0x9c0 [ 508.061067][T13473] ? radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 508.061114][T13473] radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 508.061162][T13473] idr_get_free+0x528/0xa30 [ 508.061218][T13473] idr_alloc_u32+0x190/0x2f0 [ 508.061263][T13473] ? __pfx_idr_alloc_u32+0x10/0x10 [ 508.061321][T13473] idr_alloc+0xc0/0x130 [ 508.061361][T13473] ? __pfx_idr_alloc+0x10/0x10 [ 508.061399][T13473] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 508.061466][T13473] tipc_conn_alloc+0x337/0x590 [ 508.061507][T13473] tipc_topsrv_kern_subscr+0x11c/0x3c0 [ 508.061550][T13473] ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10 [ 508.061596][T13473] ? net_generic+0xea/0x2a0 [ 508.061645][T13473] tipc_group_create+0x4ab/0x660 [ 508.061693][T13473] tipc_setsockopt+0x7f0/0xdb0 [ 508.061746][T13473] ? __pfx_tipc_setsockopt+0x10/0x10 [ 508.061813][T13473] ? __pfx_tipc_setsockopt+0x10/0x10 [ 508.061864][T13473] do_sock_setsockopt+0xf3/0x1d0 [ 508.061904][T13473] __sys_setsockopt+0x120/0x1a0 [ 508.061954][T13473] __x64_sys_setsockopt+0xbd/0x160 [ 508.061996][T13473] ? do_syscall_64+0x91/0x490 [ 508.062041][T13473] ? lockdep_hardirqs_on+0x7c/0x110 [ 508.062084][T13473] do_syscall_64+0xcd/0x490 [ 508.062133][T13473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.062165][T13473] RIP: 0033:0x7f3110b8ebe9 [ 508.062190][T13473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.062217][T13473] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 508.062246][T13473] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 508.062267][T13473] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000005 [ 508.062285][T13473] RBP: 00007f3110c11e19 R08: 0000000000000014 R09: 0000000000000000 [ 508.062303][T13473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.062321][T13473] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 508.062363][T13473] [ 511.229467][T13531] netlink: 'syz.3.1607': attribute type 19 has an invalid length. [ 511.249436][T13531] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1607'. [ 512.728891][T13569] ubi0: attaching mtd0 [ 512.747712][T13569] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127) [ 512.975366][T13574] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1615'. [ 514.762805][T13608] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 515.237499][T13624] netlink: 21 bytes leftover after parsing attributes in process `syz.4.1627'. [ 516.637112][T13649] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 516.782560][T13657] random: crng reseeded on system resumption [ 517.275626][T13663] FAULT_INJECTION: forcing a failure. [ 517.275626][T13663] name failslab, interval 1, probability 0, space 0, times 0 [ 517.331263][T13663] CPU: 0 UID: 0 PID: 13663 Comm: syz.0.1636 Tainted: G U syzkaller #0 PREEMPT(full) [ 517.331293][T13663] Tainted: [U]=USER [ 517.331299][T13663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 517.331309][T13663] Call Trace: [ 517.331315][T13663] [ 517.331322][T13663] dump_stack_lvl+0x16c/0x1f0 [ 517.331352][T13663] should_fail_ex+0x512/0x640 [ 517.331381][T13663] should_failslab+0xc2/0x120 [ 517.331404][T13663] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 517.331426][T13663] ? skb_clone+0x190/0x3f0 [ 517.331454][T13663] skb_clone+0x190/0x3f0 [ 517.331479][T13663] netlink_deliver_tap+0xabd/0xd30 [ 517.331509][T13663] netlink_unicast+0x64c/0x870 [ 517.331539][T13663] ? __pfx_netlink_unicast+0x10/0x10 [ 517.331565][T13663] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 517.331589][T13663] ? __lock_acquire+0xb97/0x1ce0 [ 517.331618][T13663] netlink_sendmsg+0x8d1/0xdd0 [ 517.331647][T13663] ? __pfx_netlink_sendmsg+0x10/0x10 [ 517.331675][T13663] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 517.331698][T13663] ____sys_sendmsg+0xa95/0xc70 [ 517.331718][T13663] ? copy_msghdr_from_user+0x10a/0x160 [ 517.331743][T13663] ? __pfx_____sys_sendmsg+0x10/0x10 [ 517.331772][T13663] ___sys_sendmsg+0x134/0x1d0 [ 517.331798][T13663] ? __pfx____sys_sendmsg+0x10/0x10 [ 517.331850][T13663] __sys_sendmsg+0x16d/0x220 [ 517.331875][T13663] ? __pfx___sys_sendmsg+0x10/0x10 [ 517.331914][T13663] do_syscall_64+0xcd/0x490 [ 517.331941][T13663] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 517.331959][T13663] RIP: 0033:0x7f3110b8ebe9 [ 517.331973][T13663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 517.331989][T13663] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 517.332006][T13663] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 517.332017][T13663] RDX: 000000000400c080 RSI: 00002000000006c0 RDI: 0000000000000003 [ 517.332027][T13663] RBP: 00007f31119e9090 R08: 0000000000000000 R09: 0000000000000000 [ 517.332037][T13663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 517.332047][T13663] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 517.332068][T13663] [ 517.611748][T13660] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1635'. [ 518.357780][T13683] ICMPv6: process `syz.0.1643' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 518.461749][T13685] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 519.317304][T13695] Console: switching to colour frame buffer device 128x48 [ 520.491560][T13728] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 520.594781][T13728] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 521.163376][T13743] 0x000200000001-0xa29656a63616329 : "" [ 521.169093][T13743] mtd: partition "" is out of reach -- disabled [ 521.178221][T13743] ftl_cs: FTL header not found. [ 521.564596][T13754] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1658'. [ 521.582802][T13756] FAULT_INJECTION: forcing a failure. [ 521.582802][T13756] name failslab, interval 1, probability 0, space 0, times 0 [ 521.602096][T13756] CPU: 0 UID: 0 PID: 13756 Comm: syz.0.1660 Tainted: G U syzkaller #0 PREEMPT(full) [ 521.602144][T13756] Tainted: [U]=USER [ 521.602154][T13756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 521.602172][T13756] Call Trace: [ 521.602183][T13756] [ 521.602195][T13756] dump_stack_lvl+0x16c/0x1f0 [ 521.602245][T13756] should_fail_ex+0x512/0x640 [ 521.602290][T13756] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 521.602326][T13756] ? __pfx_rescuer_thread+0x10/0x10 [ 521.602370][T13756] should_failslab+0xc2/0x120 [ 521.602411][T13756] __kmalloc_cache_noprof+0x6a/0x3e0 [ 521.602441][T13756] ? lockdep_init_map_type+0x5c/0x280 [ 521.602483][T13756] ? __kthread_create_on_node+0xce/0x3f0 [ 521.602527][T13756] ? __pfx_rescuer_thread+0x10/0x10 [ 521.602573][T13756] __kthread_create_on_node+0xce/0x3f0 [ 521.602617][T13756] ? __pfx___kthread_create_on_node+0x10/0x10 [ 521.602669][T13756] ? __pfx_vsnprintf+0x10/0x10 [ 521.602718][T13756] ? __pfx_rescuer_thread+0x10/0x10 [ 521.602767][T13756] kthread_create_on_node+0xc7/0x100 [ 521.602807][T13756] ? __pfx_kthread_create_on_node+0x10/0x10 [ 521.602839][T13756] ? __pfx_scnprintf+0x10/0x10 [ 521.602877][T13756] init_rescuer+0x320/0x640 [ 521.602901][T13756] ? __pfx_init_rescuer+0x10/0x10 [ 521.602932][T13756] ? wq_adjust_max_active+0x39d/0x4a0 [ 521.602966][T13756] __alloc_workqueue+0xc37/0x1810 [ 521.602992][T13756] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 521.603018][T13756] alloc_workqueue_noprof+0xd2/0x200 [ 521.603040][T13756] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 521.603069][T13756] ? __pfx___debug_object_init+0x10/0x10 [ 521.603103][T13756] nci_register_device+0x511/0xb80 [ 521.603126][T13756] ? __pfx_nci_register_device+0x10/0x10 [ 521.603150][T13756] ? lockdep_init_map_type+0x5c/0x280 [ 521.603178][T13756] virtual_ncidev_open+0x141/0x220 [ 521.603201][T13756] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 521.603222][T13756] misc_open+0x35d/0x420 [ 521.603244][T13756] ? __pfx_misc_open+0x10/0x10 [ 521.603263][T13756] chrdev_open+0x231/0x6a0 [ 521.603284][T13756] ? __pfx_apparmor_file_open+0x10/0x10 [ 521.603304][T13756] ? __pfx_chrdev_open+0x10/0x10 [ 521.603327][T13756] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 521.603354][T13756] do_dentry_open+0x97f/0x1530 [ 521.603376][T13756] ? __pfx_chrdev_open+0x10/0x10 [ 521.603402][T13756] vfs_open+0x82/0x3f0 [ 521.603430][T13756] path_openat+0x1de4/0x2cb0 [ 521.603458][T13756] ? __pfx_path_openat+0x10/0x10 [ 521.603485][T13756] do_filp_open+0x20b/0x470 [ 521.603505][T13756] ? __pfx_do_filp_open+0x10/0x10 [ 521.603543][T13756] ? alloc_fd+0x471/0x7d0 [ 521.603568][T13756] do_sys_openat2+0x11b/0x1d0 [ 521.603593][T13756] ? __pfx_do_sys_openat2+0x10/0x10 [ 521.603628][T13756] __x64_sys_openat+0x174/0x210 [ 521.603654][T13756] ? __pfx___x64_sys_openat+0x10/0x10 [ 521.603692][T13756] do_syscall_64+0xcd/0x490 [ 521.603719][T13756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 521.603736][T13756] RIP: 0033:0x7f3110b8ebe9 [ 521.603752][T13756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 521.603768][T13756] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 521.603785][T13756] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 521.603796][T13756] RDX: 0000000000000002 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 521.603806][T13756] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 521.603816][T13756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 521.603826][T13756] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 521.603848][T13756] [ 521.609524][T13756] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_tx_wq": -ENOMEM [ 522.521923][T13770] FAULT_INJECTION: forcing a failure. [ 522.521923][T13770] name fail_futex, interval 1, probability 0, space 0, times 0 [ 522.580551][T13770] CPU: 0 UID: 0 PID: 13770 Comm: syz.0.1663 Tainted: G U syzkaller #0 PREEMPT(full) [ 522.580602][T13770] Tainted: [U]=USER [ 522.580612][T13770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 522.580629][T13770] Call Trace: [ 522.580638][T13770] [ 522.580650][T13770] dump_stack_lvl+0x16c/0x1f0 [ 522.580699][T13770] should_fail_ex+0x512/0x640 [ 522.580752][T13770] get_futex_key+0x1d0/0x1560 [ 522.580795][T13770] ? __pfx_get_futex_key+0x10/0x10 [ 522.580836][T13770] ? do_raw_spin_lock+0x12c/0x2b0 [ 522.580889][T13770] futex_wake+0xea/0x530 [ 522.580930][T13770] ? find_held_lock+0x2b/0x80 [ 522.580963][T13770] ? __pfx_futex_wake+0x10/0x10 [ 522.581008][T13770] ? rcu_is_watching+0x12/0xc0 [ 522.581040][T13770] ? lockdep_hardirqs_on+0x7c/0x110 [ 522.581086][T13770] ? posix_timer_unhash_and_free+0x375/0x400 [ 522.581135][T13770] do_futex+0x1e3/0x350 [ 522.581175][T13770] ? __pfx_do_futex+0x10/0x10 [ 522.581224][T13770] __x64_sys_futex+0x1e0/0x4c0 [ 522.581265][T13770] ? __pfx___x64_sys_timer_create+0x10/0x10 [ 522.581308][T13770] ? __fget_files+0x20e/0x3c0 [ 522.581341][T13770] ? __pfx___x64_sys_futex+0x10/0x10 [ 522.581405][T13770] do_syscall_64+0xcd/0x490 [ 522.581452][T13770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.581480][T13770] RIP: 0033:0x7f3110b8ebe9 [ 522.581505][T13770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 522.581533][T13770] RSP: 002b:00007f31119e90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 522.581564][T13770] RAX: ffffffffffffffda RBX: 00007f3110dc5fa8 RCX: 00007f3110b8ebe9 [ 522.581583][T13770] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3110dc5fac [ 522.581599][T13770] RBP: 00007f3110dc5fa0 R08: 00007f31119ea000 R09: 0000000000000000 [ 522.581618][T13770] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 522.581635][T13770] R13: 00007f3110dc6038 R14: 00007ffebf591350 R15: 00007ffebf591438 [ 522.581675][T13770] [ 522.788001][ C0] vkms_vblank_simulate: vblank timer overrun [ 523.949759][T13788] FAULT_INJECTION: forcing a failure. [ 523.949759][T13788] name failslab, interval 1, probability 0, space 0, times 0 [ 524.069898][T13788] CPU: 1 UID: 0 PID: 13788 Comm: syz.3.1666 Tainted: G U syzkaller #0 PREEMPT(full) [ 524.069929][T13788] Tainted: [U]=USER [ 524.069935][T13788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 524.069945][T13788] Call Trace: [ 524.069952][T13788] [ 524.069960][T13788] dump_stack_lvl+0x16c/0x1f0 [ 524.069990][T13788] should_fail_ex+0x512/0x640 [ 524.070017][T13788] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 524.070038][T13788] should_failslab+0xc2/0x120 [ 524.070060][T13788] __kmalloc_cache_noprof+0x6a/0x3e0 [ 524.070077][T13788] ? lockdep_init_map_type+0x5c/0x280 [ 524.070100][T13788] ? qrtr_endpoint_register+0x85/0x500 [ 524.070129][T13788] qrtr_endpoint_register+0x85/0x500 [ 524.070156][T13788] qrtr_tun_open+0x151/0x220 [ 524.070184][T13788] ? __pfx_qrtr_tun_open+0x10/0x10 [ 524.070204][T13788] misc_open+0x35d/0x420 [ 524.070224][T13788] ? __pfx_misc_open+0x10/0x10 [ 524.070244][T13788] chrdev_open+0x231/0x6a0 [ 524.070266][T13788] ? __pfx_apparmor_file_open+0x10/0x10 [ 524.070285][T13788] ? __pfx_chrdev_open+0x10/0x10 [ 524.070308][T13788] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 524.070332][T13788] do_dentry_open+0x97f/0x1530 [ 524.070353][T13788] ? __pfx_chrdev_open+0x10/0x10 [ 524.070379][T13788] vfs_open+0x82/0x3f0 [ 524.070406][T13788] path_openat+0x1de4/0x2cb0 [ 524.070433][T13788] ? __pfx_path_openat+0x10/0x10 [ 524.070459][T13788] do_filp_open+0x20b/0x470 [ 524.070480][T13788] ? __pfx_do_filp_open+0x10/0x10 [ 524.070517][T13788] ? alloc_fd+0x471/0x7d0 [ 524.070542][T13788] do_sys_openat2+0x11b/0x1d0 [ 524.070566][T13788] ? __pfx_do_sys_openat2+0x10/0x10 [ 524.070600][T13788] __x64_sys_openat+0x174/0x210 [ 524.070626][T13788] ? __pfx___x64_sys_openat+0x10/0x10 [ 524.070661][T13788] do_syscall_64+0xcd/0x490 [ 524.070687][T13788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 524.070704][T13788] RIP: 0033:0x7f63f2f8ebe9 [ 524.070718][T13788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 524.070734][T13788] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 524.070751][T13788] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 524.070762][T13788] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 524.070772][T13788] RBP: 00007f63f3011e19 R08: 0000000000000000 R09: 0000000000000000 [ 524.070782][T13788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 524.070791][T13788] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 524.070813][T13788] [ 524.468304][T13795] 0x000200000001-0xa29656a63616329 : "" [ 524.474217][T13795] mtd: partition "" is out of reach -- disabled [ 524.657591][T13795] ftl_cs: FTL header not found. [ 525.882071][T13819] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 527.301569][T13846] serio: Serial port pty6 [ 527.996626][T13865] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 528.122300][T13868] Invalid ELF header magic: != ELF [ 529.635441][T13894] 0x000200000001-0xa29656a63616329 : "" [ 529.641616][T13894] mtd: partition "" is out of reach -- disabled [ 529.651484][T13894] ftl_cs: FTL header not found. [ 529.904433][T13896] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1692'. [ 530.389839][T13919] netlink: 'syz.0.1700': attribute type 33 has an invalid length. [ 530.419617][T13919] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1700'. [ 530.851065][T13928] FAULT_INJECTION: forcing a failure. [ 530.851065][T13928] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 530.967812][T13928] CPU: 0 UID: 0 PID: 13928 Comm: syz.4.1703 Tainted: G U syzkaller #0 PREEMPT(full) [ 530.967862][T13928] Tainted: [U]=USER [ 530.967872][T13928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 530.967890][T13928] Call Trace: [ 530.967900][T13928] [ 530.967911][T13928] dump_stack_lvl+0x16c/0x1f0 [ 530.967958][T13928] should_fail_ex+0x512/0x640 [ 530.968007][T13928] _copy_from_user+0x2e/0xd0 [ 530.968041][T13928] copy_mount_options+0x76/0x190 [ 530.968084][T13928] __x64_sys_mount+0x1ac/0x310 [ 530.968123][T13928] ? __pfx___x64_sys_mount+0x10/0x10 [ 530.968171][T13928] do_syscall_64+0xcd/0x490 [ 530.968218][T13928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.968249][T13928] RIP: 0033:0x7f1b7fd8ebe9 [ 530.968272][T13928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 530.968300][T13928] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 530.968328][T13928] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 530.968347][T13928] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 530.968364][T13928] RBP: 00007f1b7fe11e19 R08: 00002000000001c0 R09: 0000000000000000 [ 530.968391][T13928] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 530.968408][T13928] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 530.968443][T13928] [ 533.419691][T13984] syz.0.1712 (13984): attempted to duplicate a private mapping with mremap. This is not supported. [ 533.878444][T13996] netlink: 146 bytes leftover after parsing attributes in process `syz.4.1715'. [ 534.543980][T14008] FAULT_INJECTION: forcing a failure. [ 534.543980][T14008] name failslab, interval 1, probability 0, space 0, times 0 [ 534.603853][T14008] CPU: 1 UID: 0 PID: 14008 Comm: syz.4.1717 Tainted: G U syzkaller #0 PREEMPT(full) [ 534.603906][T14008] Tainted: [U]=USER [ 534.603916][T14008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 534.603934][T14008] Call Trace: [ 534.603945][T14008] [ 534.603957][T14008] dump_stack_lvl+0x16c/0x1f0 [ 534.604008][T14008] should_fail_ex+0x512/0x640 [ 534.604061][T14008] ? __kmalloc_noprof+0xbf/0x510 [ 534.604099][T14008] ? binder_open+0x168/0xde0 [ 534.604150][T14008] should_failslab+0xc2/0x120 [ 534.604191][T14008] __kmalloc_noprof+0xd2/0x510 [ 534.604236][T14008] binder_open+0x168/0xde0 [ 534.604281][T14008] ? __pfx_apparmor_file_open+0x10/0x10 [ 534.604316][T14008] ? __pfx_binder_open+0x10/0x10 [ 534.604364][T14008] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 534.604406][T14008] do_dentry_open+0x97f/0x1530 [ 534.604446][T14008] ? __pfx_binder_open+0x10/0x10 [ 534.604499][T14008] vfs_open+0x82/0x3f0 [ 534.604549][T14008] path_openat+0x1de4/0x2cb0 [ 534.604600][T14008] ? __pfx_path_openat+0x10/0x10 [ 534.604648][T14008] do_filp_open+0x20b/0x470 [ 534.604684][T14008] ? __pfx_do_filp_open+0x10/0x10 [ 534.604748][T14008] ? alloc_fd+0x471/0x7d0 [ 534.604788][T14008] do_sys_openat2+0x11b/0x1d0 [ 534.604833][T14008] ? __pfx_do_sys_openat2+0x10/0x10 [ 534.604894][T14008] __x64_sys_openat+0x174/0x210 [ 534.604963][T14008] ? __pfx___x64_sys_openat+0x10/0x10 [ 534.605029][T14008] do_syscall_64+0xcd/0x490 [ 534.605079][T14008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.605110][T14008] RIP: 0033:0x7f1b7fd8ebe9 [ 534.605143][T14008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 534.605171][T14008] RSP: 002b:00007f1b80c0d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 534.605201][T14008] RAX: ffffffffffffffda RBX: 00007f1b7ffc6090 RCX: 00007f1b7fd8ebe9 [ 534.605221][T14008] RDX: 0000000000002001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 534.605240][T14008] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 534.605258][T14008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 534.605276][T14008] R13: 00007f1b7ffc6128 R14: 00007f1b7ffc6090 R15: 00007ffd097755c8 [ 534.605317][T14008] [ 535.272847][T14014] Invalid ELF header magic: != ELF [ 535.777642][T14032] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1724'. [ 536.109002][T14040] __vm_enough_memory: pid: 14040, comm: syz.4.1726, bytes: 4398046511104 not enough memory for the allocation [ 537.433425][T14054] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub [ 537.624251][T14066] device-mapper: ioctl: device name cannot contain '/' [ 538.066864][T14084] __vm_enough_memory: pid: 14084, comm: syz.0.1736, bytes: 4398046511104 not enough memory for the allocation [ 538.358389][T14089] FAULT_INJECTION: forcing a failure. [ 538.358389][T14089] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 538.401130][T14089] CPU: 0 UID: 0 PID: 14089 Comm: syz.3.1737 Tainted: G U syzkaller #0 PREEMPT(full) [ 538.401182][T14089] Tainted: [U]=USER [ 538.401193][T14089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 538.401209][T14089] Call Trace: [ 538.401219][T14089] [ 538.401230][T14089] dump_stack_lvl+0x16c/0x1f0 [ 538.401284][T14089] should_fail_ex+0x512/0x640 [ 538.401335][T14089] should_fail_alloc_page+0xe7/0x130 [ 538.401380][T14089] prepare_alloc_pages+0x3c2/0x610 [ 538.401426][T14089] ? rcu_is_watching+0x12/0xc0 [ 538.401463][T14089] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 538.401502][T14089] ? stack_depot_save_flags+0x29/0x9c0 [ 538.401560][T14089] ? __lock_acquire+0x62e/0x1ce0 [ 538.401608][T14089] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 538.401662][T14089] ? __lock_acquire+0x62e/0x1ce0 [ 538.401710][T14089] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 538.401759][T14089] ? policy_nodemask+0xea/0x4e0 [ 538.401803][T14089] alloc_pages_mpol+0x1fb/0x550 [ 538.401843][T14089] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 538.401882][T14089] ? __lock_acquire+0x62e/0x1ce0 [ 538.401922][T14089] folio_alloc_mpol_noprof+0x36/0x2f0 [ 538.401965][T14089] vma_alloc_folio_noprof+0xed/0x1e0 [ 538.402009][T14089] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 538.402074][T14089] do_pte_missing+0x2230/0x3ba0 [ 538.402113][T14089] ? find_held_lock+0x2b/0x80 [ 538.402155][T14089] __handle_mm_fault+0x152a/0x2a50 [ 538.402199][T14089] ? __pfx___handle_mm_fault+0x10/0x10 [ 538.402234][T14089] ? __pte_offset_map_lock+0x174/0x310 [ 538.402276][T14089] ? find_held_lock+0x2b/0x80 [ 538.402317][T14089] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 538.402373][T14089] handle_mm_fault+0x589/0xd10 [ 538.402413][T14089] __get_user_pages+0x551/0x34a0 [ 538.402476][T14089] ? __pfx___get_user_pages+0x10/0x10 [ 538.402534][T14089] populate_vma_page_range+0x267/0x3f0 [ 538.402584][T14089] ? __pfx_populate_vma_page_range+0x10/0x10 [ 538.402630][T14089] ? __pfx_find_vma_intersection+0x10/0x10 [ 538.402676][T14089] ? do_mmap+0x69c/0x1210 [ 538.402723][T14089] __mm_populate+0x1d8/0x380 [ 538.402770][T14089] ? __pfx___mm_populate+0x10/0x10 [ 538.402820][T14089] ? up_write+0x1b2/0x520 [ 538.402868][T14089] vm_mmap_pgoff+0x37f/0x470 [ 538.402916][T14089] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 538.402969][T14089] ? __x64_sys_futex+0x1e0/0x4c0 [ 538.403006][T14089] ? __x64_sys_futex+0x1e9/0x4c0 [ 538.403058][T14089] ksys_mmap_pgoff+0x7d/0x5c0 [ 538.403099][T14089] ? xfd_validate_state+0x61/0x180 [ 538.403149][T14089] __x64_sys_mmap+0x125/0x190 [ 538.403200][T14089] do_syscall_64+0xcd/0x490 [ 538.403250][T14089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 538.403277][T14089] RIP: 0033:0x7f63f2f8ebe9 [ 538.403300][T14089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 538.403328][T14089] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 538.403358][T14089] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 538.403377][T14089] RDX: 00000000000000b3 RSI: 0000000000040008 RDI: 0000000000000000 [ 538.403395][T14089] RBP: 00007f63f3011e19 R08: 0000000000000003 R09: 0000000000028000 [ 538.403413][T14089] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 538.403430][T14089] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 538.403471][T14089] [ 538.950510][T14107] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1741'. [ 539.029963][T14107] netlink: 252 bytes leftover after parsing attributes in process `syz.4.1741'. [ 540.071828][T14145] __vm_enough_memory: pid: 14145, comm: syz.0.1749, bytes: 4398046511104 not enough memory for the allocation [ 541.630687][T14194] nbd: must specify at least one socket [ 542.498706][T14210] __vm_enough_memory: pid: 14210, comm: syz.1.1762, bytes: 4398046511104 not enough memory for the allocation [ 542.719307][T14214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1763'. [ 543.747283][T14233] FAULT_INJECTION: forcing a failure. [ 543.747283][T14233] name fail_futex, interval 1, probability 0, space 0, times 0 [ 543.779648][T14233] CPU: 1 UID: 0 PID: 14233 Comm: syz.4.1767 Tainted: G U syzkaller #0 PREEMPT(full) [ 543.779698][T14233] Tainted: [U]=USER [ 543.779708][T14233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 543.779724][T14233] Call Trace: [ 543.779734][T14233] [ 543.779745][T14233] dump_stack_lvl+0x16c/0x1f0 [ 543.779792][T14233] should_fail_ex+0x512/0x640 [ 543.779844][T14233] get_futex_key+0x1d0/0x1560 [ 543.779884][T14233] ? __pfx_get_futex_key+0x10/0x10 [ 543.779926][T14233] ? find_held_lock+0x2b/0x80 [ 543.779960][T14233] futex_wait_setup+0x9d/0x550 [ 543.780011][T14233] __futex_wait+0x194/0x2f0 [ 543.780068][T14233] ? __pfx___futex_wait+0x10/0x10 [ 543.780121][T14233] ? __pfx_futex_wake_mark+0x10/0x10 [ 543.780174][T14233] ? futex_private_hash_put+0x176/0x300 [ 543.780216][T14233] ? futex_private_hash_put+0x18a/0x300 [ 543.780257][T14233] futex_wait+0xe8/0x380 [ 543.780302][T14233] ? __pfx_futex_wait+0x10/0x10 [ 543.780370][T14233] do_futex+0x229/0x350 [ 543.780410][T14233] ? __pfx_do_futex+0x10/0x10 [ 543.780451][T14233] ? find_held_lock+0x2b/0x80 [ 543.780486][T14233] __x64_sys_futex+0x1e0/0x4c0 [ 543.780527][T14233] ? __pfx_loop_control_ioctl+0x10/0x10 [ 543.780565][T14233] ? __pfx___x64_sys_futex+0x10/0x10 [ 543.780605][T14233] ? xfd_validate_state+0x61/0x180 [ 543.780663][T14233] do_syscall_64+0xcd/0x490 [ 543.780711][T14233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.780741][T14233] RIP: 0033:0x7f1b7fd8ebe9 [ 543.780765][T14233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 543.780794][T14233] RSP: 002b:00007f1b80c2e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 543.780824][T14233] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa8 RCX: 00007f1b7fd8ebe9 [ 543.780842][T14233] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1b7ffc5fa8 [ 543.780860][T14233] RBP: 00007f1b7ffc5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 543.780877][T14233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 543.780895][T14233] R13: 00007f1b7ffc6038 R14: 00007ffd097754e0 R15: 00007ffd097755c8 [ 543.780936][T14233] [ 544.774982][T14251] 0x000200000001-0xa29656a63616329 : "" [ 544.829654][T14251] mtd: partition "" is out of reach -- disabled [ 544.920932][T14251] ftl_cs: FTL header not found. [ 545.597142][T14261] openvswitch: netlink: Key type 261 is out of range max 32 [ 545.801302][T14265] random: crng reseeded on system resumption [ 545.942609][ T5184] Bluetooth: hci3: unexpected event 0x30 length: 47 > 3 [ 547.018186][T14289] 0x000200000001-0xa29656a63616329 : "" [ 547.023824][T14289] mtd: partition "" is out of reach -- disabled [ 547.140747][T14289] ftl_cs: FTL header not found. [ 549.205601][T14326] __vm_enough_memory: pid: 14326, comm: syz.4.1791, bytes: 4398046511104 not enough memory for the allocation [ 550.783494][T14339] 0x000200000001-0xa29656a63616329 : "" [ 550.789811][T14339] mtd: partition "" is out of reach -- disabled [ 550.805846][T14339] ftl_cs: FTL header not found. [ 552.759080][T14384] FAULT_INJECTION: forcing a failure. [ 552.759080][T14384] name failslab, interval 1, probability 0, space 0, times 0 [ 552.801807][T14384] CPU: 1 UID: 0 PID: 14384 Comm: syz.0.1806 Tainted: G U syzkaller #0 PREEMPT(full) [ 552.801857][T14384] Tainted: [U]=USER [ 552.801866][T14384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 552.801884][T14384] Call Trace: [ 552.801894][T14384] [ 552.801906][T14384] dump_stack_lvl+0x16c/0x1f0 [ 552.801957][T14384] should_fail_ex+0x512/0x640 [ 552.802001][T14384] ? __kmalloc_noprof+0xbf/0x510 [ 552.802039][T14384] ? devlink_fmsg_put_value+0xaa/0x2d0 [ 552.802083][T14384] should_failslab+0xc2/0x120 [ 552.802125][T14384] __kmalloc_noprof+0xd2/0x510 [ 552.802157][T14384] ? trace_kmalloc+0x2b/0xd0 [ 552.802197][T14384] ? __kmalloc_noprof+0x242/0x510 [ 552.802241][T14384] devlink_fmsg_put_value+0xaa/0x2d0 [ 552.802305][T14384] devlink_fmsg_string_pair_put+0xc1/0x1b0 [ 552.802357][T14384] nsim_dev_dummy_fmsg_put+0x77/0x1e0 [ 552.802405][T14384] devlink_health_do_dump+0x240/0x620 [ 552.802446][T14384] devlink_health_report+0x3c9/0x9c0 [ 552.802483][T14384] ? __pfx_devlink_health_report+0x10/0x10 [ 552.802515][T14384] ? _copy_from_user+0x59/0xd0 [ 552.802551][T14384] nsim_dev_health_break_write+0x166/0x210 [ 552.802597][T14384] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 552.802657][T14384] full_proxy_write+0x131/0x1a0 [ 552.802710][T14384] ? __pfx_full_proxy_write+0x10/0x10 [ 552.802764][T14384] vfs_write+0x29d/0x11d0 [ 552.802802][T14384] ? __pfx___mutex_lock+0x10/0x10 [ 552.802840][T14384] ? __pfx_vfs_write+0x10/0x10 [ 552.802883][T14384] ? __fget_files+0x20e/0x3c0 [ 552.802926][T14384] ksys_write+0x12a/0x250 [ 552.802962][T14384] ? __pfx_ksys_write+0x10/0x10 [ 552.803010][T14384] do_syscall_64+0xcd/0x490 [ 552.803057][T14384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 552.803087][T14384] RIP: 0033:0x7f3110b8ebe9 [ 552.803113][T14384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 552.803143][T14384] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 552.803172][T14384] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 552.803191][T14384] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000009 [ 552.803208][T14384] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 552.803226][T14384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 552.803243][T14384] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 552.803284][T14384] [ 553.572700][T14395] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1808'. [ 553.901918][T14401] 0x000200000001-0xa29656a63616329 : "" [ 553.907540][T14401] mtd: partition "" is out of reach -- disabled [ 553.918051][T14401] ftl_cs: FTL header not found. [ 555.042143][T14422] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1815'. [ 555.103725][T14422] IPv6: NLM_F_CREATE should be specified when creating new route [ 555.136697][T14425] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1815'. [ 555.174406][T14422] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 555.182133][T14422] IPv6: NLM_F_CREATE should be set when creating new route [ 555.189384][T14422] IPv6: NLM_F_CREATE should be set when creating new route [ 555.198726][T14425] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 556.602909][T14446] FAULT_INJECTION: forcing a failure. [ 556.602909][T14446] name failslab, interval 1, probability 0, space 0, times 0 [ 556.622608][T14446] CPU: 1 UID: 0 PID: 14446 Comm: syz.0.1821 Tainted: G U syzkaller #0 PREEMPT(full) [ 556.622660][T14446] Tainted: [U]=USER [ 556.622670][T14446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 556.622687][T14446] Call Trace: [ 556.622696][T14446] [ 556.622708][T14446] dump_stack_lvl+0x16c/0x1f0 [ 556.622758][T14446] should_fail_ex+0x512/0x640 [ 556.622804][T14446] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 556.622840][T14446] should_failslab+0xc2/0x120 [ 556.622880][T14446] __kmalloc_cache_noprof+0x6a/0x3e0 [ 556.622911][T14446] ? lockdep_init_map_type+0x5c/0x280 [ 556.622964][T14446] ? qrtr_endpoint_register+0x85/0x500 [ 556.623014][T14446] qrtr_endpoint_register+0x85/0x500 [ 556.623053][T14446] qrtr_tun_open+0x151/0x220 [ 556.623078][T14446] ? __pfx_qrtr_tun_open+0x10/0x10 [ 556.623104][T14446] misc_open+0x35d/0x420 [ 556.623131][T14446] ? __pfx_misc_open+0x10/0x10 [ 556.623158][T14446] chrdev_open+0x231/0x6a0 [ 556.623188][T14446] ? __pfx_apparmor_file_open+0x10/0x10 [ 556.623214][T14446] ? __pfx_chrdev_open+0x10/0x10 [ 556.623245][T14446] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 556.623277][T14446] do_dentry_open+0x97f/0x1530 [ 556.623306][T14446] ? __pfx_chrdev_open+0x10/0x10 [ 556.623342][T14446] vfs_open+0x82/0x3f0 [ 556.623380][T14446] path_openat+0x1de4/0x2cb0 [ 556.623417][T14446] ? __pfx_path_openat+0x10/0x10 [ 556.623453][T14446] do_filp_open+0x20b/0x470 [ 556.623480][T14446] ? __pfx_do_filp_open+0x10/0x10 [ 556.623531][T14446] ? alloc_fd+0x471/0x7d0 [ 556.623564][T14446] do_sys_openat2+0x11b/0x1d0 [ 556.623598][T14446] ? __pfx_do_sys_openat2+0x10/0x10 [ 556.623645][T14446] __x64_sys_openat+0x174/0x210 [ 556.623680][T14446] ? __pfx___x64_sys_openat+0x10/0x10 [ 556.623729][T14446] do_syscall_64+0xcd/0x490 [ 556.623765][T14446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 556.623788][T14446] RIP: 0033:0x7f3110b8ebe9 [ 556.623808][T14446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 556.623830][T14446] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 556.623852][T14446] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 556.623867][T14446] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 556.623882][T14446] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 556.623895][T14446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 556.623908][T14446] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 556.623946][T14446] [ 556.801549][T14448] 0x000200000001-0xa29656a63616329 : "" [ 557.114418][T14448] mtd: partition "" is out of reach -- disabled [ 557.134963][T14459] random: crng reseeded on system resumption [ 557.190762][T14448] ftl_cs: FTL header not found. [ 557.401455][T14459] FAULT_INJECTION: forcing a failure. [ 557.401455][T14459] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 557.458105][T14459] CPU: 0 UID: 0 PID: 14459 Comm: syz.0.1824 Tainted: G U syzkaller #0 PREEMPT(full) [ 557.458154][T14459] Tainted: [U]=USER [ 557.458163][T14459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 557.458179][T14459] Call Trace: [ 557.458188][T14459] [ 557.458198][T14459] dump_stack_lvl+0x16c/0x1f0 [ 557.458256][T14459] should_fail_ex+0x512/0x640 [ 557.458310][T14459] should_fail_alloc_page+0xe7/0x130 [ 557.458355][T14459] prepare_alloc_pages+0x3c2/0x610 [ 557.458401][T14459] ? rcu_is_watching+0x12/0xc0 [ 557.458437][T14459] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 557.458476][T14459] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 557.458513][T14459] ? is_bpf_text_address+0x94/0x1a0 [ 557.458552][T14459] ? kernel_text_address+0x8d/0x100 [ 557.458581][T14459] ? __kernel_text_address+0xd/0x40 [ 557.458610][T14459] ? unwind_get_return_address+0x59/0xa0 [ 557.458643][T14459] ? arch_stack_walk+0xa6/0x100 [ 557.458679][T14459] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 557.458735][T14459] ? stack_depot_save_flags+0x29/0x9c0 [ 557.458779][T14459] ? stack_trace_save+0x8e/0xc0 [ 557.458813][T14459] ? __pfx_stack_trace_save+0x10/0x10 [ 557.458849][T14459] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 557.458898][T14459] ? policy_nodemask+0xea/0x4e0 [ 557.458942][T14459] alloc_pages_mpol+0x1fb/0x550 [ 557.458982][T14459] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 557.459033][T14459] alloc_pages_noprof+0x131/0x390 [ 557.459074][T14459] kimage_alloc_pages+0x75/0x350 [ 557.459126][T14459] kimage_alloc_control_pages+0x153/0xa00 [ 557.459168][T14459] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 557.459219][T14459] do_kexec_load+0x478/0x8a0 [ 557.459254][T14459] ? __pfx_do_kexec_load+0x10/0x10 [ 557.459290][T14459] ? _copy_from_user+0x59/0xd0 [ 557.459328][T14459] __x64_sys_kexec_load+0x1bf/0x230 [ 557.459364][T14459] do_syscall_64+0xcd/0x490 [ 557.459413][T14459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.459445][T14459] RIP: 0033:0x7f3110b8ebe9 [ 557.459470][T14459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.459499][T14459] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 557.459529][T14459] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 557.459549][T14459] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 557.459567][T14459] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 557.459585][T14459] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 557.459602][T14459] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 557.459641][T14459] [ 557.461469][T14459] kexec: Could not allocate control_code_buffer [ 558.032206][T14498] __vm_enough_memory: pid: 14498, comm: syz.4.1826, bytes: 4398046511104 not enough memory for the allocation [ 558.904801][T14511] random: crng reseeded on system resumption [ 558.929755][T14512] netlink: Unknown conntrack attr (type=146, max=9) [ 558.960418][T14512] netlink: Unknown conntrack attr (type=146, max=9) [ 560.149415][T14540] FAULT_INJECTION: forcing a failure. [ 560.149415][T14540] name failslab, interval 1, probability 0, space 0, times 0 [ 560.162616][T14540] CPU: 1 UID: 0 PID: 14540 Comm: syz.0.1833 Tainted: G U syzkaller #0 PREEMPT(full) [ 560.162667][T14540] Tainted: [U]=USER [ 560.162677][T14540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 560.162694][T14540] Call Trace: [ 560.162704][T14540] [ 560.162716][T14540] dump_stack_lvl+0x16c/0x1f0 [ 560.162765][T14540] should_fail_ex+0x512/0x640 [ 560.162809][T14540] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 560.162847][T14540] should_failslab+0xc2/0x120 [ 560.162887][T14540] __kmalloc_cache_noprof+0x6a/0x3e0 [ 560.162916][T14540] ? lockdep_init_map_type+0x5c/0x280 [ 560.162956][T14540] ? qrtr_endpoint_register+0x85/0x500 [ 560.163020][T14540] qrtr_endpoint_register+0x85/0x500 [ 560.163071][T14540] qrtr_tun_open+0x151/0x220 [ 560.163105][T14540] ? __pfx_qrtr_tun_open+0x10/0x10 [ 560.163142][T14540] misc_open+0x35d/0x420 [ 560.163180][T14540] ? __pfx_misc_open+0x10/0x10 [ 560.163215][T14540] chrdev_open+0x231/0x6a0 [ 560.163252][T14540] ? __pfx_apparmor_file_open+0x10/0x10 [ 560.163285][T14540] ? __pfx_chrdev_open+0x10/0x10 [ 560.163326][T14540] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 560.163370][T14540] do_dentry_open+0x97f/0x1530 [ 560.163411][T14540] ? __pfx_chrdev_open+0x10/0x10 [ 560.163458][T14540] vfs_open+0x82/0x3f0 [ 560.163509][T14540] path_openat+0x1de4/0x2cb0 [ 560.163559][T14540] ? __pfx_path_openat+0x10/0x10 [ 560.163608][T14540] do_filp_open+0x20b/0x470 [ 560.163644][T14540] ? __pfx_do_filp_open+0x10/0x10 [ 560.163712][T14540] ? alloc_fd+0x471/0x7d0 [ 560.163757][T14540] do_sys_openat2+0x11b/0x1d0 [ 560.163803][T14540] ? __pfx_do_sys_openat2+0x10/0x10 [ 560.163867][T14540] __x64_sys_openat+0x174/0x210 [ 560.163914][T14540] ? __pfx___x64_sys_openat+0x10/0x10 [ 560.163979][T14540] do_syscall_64+0xcd/0x490 [ 560.164042][T14540] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.164073][T14540] RIP: 0033:0x7f3110b8ebe9 [ 560.164097][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.164127][T14540] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 560.164156][T14540] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 560.164175][T14540] RDX: 0000000000000500 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 560.164194][T14540] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 560.164211][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.164228][T14540] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 560.164268][T14540] [ 560.427409][ C1] vkms_vblank_simulate: vblank timer overrun [ 560.894726][T14546] zswap: compressor not available [ 561.388344][T14570] __vm_enough_memory: pid: 14570, comm: syz.1.1838, bytes: 4398046511104 not enough memory for the allocation [ 561.560967][T14564] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 562.577101][T14601] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 563.066695][T14613] __vm_enough_memory: pid: 14613, comm: syz.4.1847, bytes: 4398046511104 not enough memory for the allocation [ 564.171601][T14633] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 564.853999][T14644] 0x000200000001-0xa29656a63616329 : "" [ 564.859684][T14644] mtd: partition "" is out of reach -- disabled [ 564.904453][T14644] ftl_cs: FTL header not found. [ 565.539067][T14661] __vm_enough_memory: pid: 14661, comm: syz.3.1859, bytes: 4398046511104 not enough memory for the allocation [ 566.564096][T14684] serio: Serial port pty6 [ 566.965136][T14689] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1864'. [ 567.113756][T14691] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1864'. [ 567.470344][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 567.476839][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 567.701651][T14701] 0x000200000001-0xa29656a63616329 : "" [ 567.707257][T14701] mtd: partition "" is out of reach -- disabled [ 567.716993][T14701] ftl_cs: FTL header not found. [ 567.864463][T14710] kexec: Could not allocate control_code_buffer [ 568.253880][T14721] FAULT_INJECTION: forcing a failure. [ 568.253880][T14721] name failslab, interval 1, probability 0, space 0, times 0 [ 568.303853][T14721] CPU: 0 UID: 0 PID: 14721 Comm: syz.0.1868 Tainted: G U syzkaller #0 PREEMPT(full) [ 568.303884][T14721] Tainted: [U]=USER [ 568.303890][T14721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 568.303901][T14721] Call Trace: [ 568.303907][T14721] [ 568.303914][T14721] dump_stack_lvl+0x16c/0x1f0 [ 568.303952][T14721] should_fail_ex+0x512/0x640 [ 568.303984][T14721] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 568.304005][T14721] should_failslab+0xc2/0x120 [ 568.304027][T14721] __kmalloc_cache_noprof+0x6a/0x3e0 [ 568.304048][T14721] ? madvise_collapse+0x1a6/0xaa0 [ 568.304075][T14721] madvise_collapse+0x1a6/0xaa0 [ 568.304097][T14721] ? find_held_lock+0x2b/0x80 [ 568.304116][T14721] ? finish_task_switch.isra.0+0x21c/0xc10 [ 568.304136][T14721] ? __pfx_madvise_collapse+0x10/0x10 [ 568.304159][T14721] ? lockdep_hardirqs_on+0x7c/0x110 [ 568.304186][T14721] ? finish_task_switch.isra.0+0x221/0xc10 [ 568.304210][T14721] madvise_vma_behavior+0x10a4/0x2d60 [ 568.304237][T14721] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 568.304262][T14721] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 568.304289][T14721] ? __pfx_mas_prev+0x10/0x10 [ 568.304318][T14721] ? find_vma_prev+0xda/0x160 [ 568.304344][T14721] ? __pfx_find_vma_prev+0x10/0x10 [ 568.304374][T14721] ? __lock_acquire+0x62e/0x1ce0 [ 568.304401][T14721] madvise_walk_vmas+0x31f/0x9c0 [ 568.304429][T14721] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 568.304460][T14721] madvise_do_behavior+0x1e2/0x530 [ 568.304483][T14721] ? futex_private_hash_put+0x18a/0x300 [ 568.304505][T14721] ? __pfx_madvise_do_behavior+0x10/0x10 [ 568.304530][T14721] ? down_read+0x13d/0x480 [ 568.304549][T14721] ? do_user_addr_fault+0x829/0x1370 [ 568.304582][T14721] do_madvise+0x176/0x240 [ 568.304605][T14721] ? __pfx_do_madvise+0x10/0x10 [ 568.304628][T14721] ? do_futex+0x122/0x350 [ 568.304665][T14721] ? syscall_user_dispatch+0x78/0x140 [ 568.304696][T14721] __x64_sys_madvise+0xa9/0x110 [ 568.304720][T14721] do_syscall_64+0xcd/0x490 [ 568.304768][T14721] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.304787][T14721] RIP: 0033:0x7f3110b8ebe9 [ 568.304802][T14721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 568.304819][T14721] RSP: 002b:00007f31119a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 568.304837][T14721] RAX: ffffffffffffffda RBX: 00007f3110dc6180 RCX: 00007f3110b8ebe9 [ 568.304848][T14721] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 568.304859][T14721] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 568.304869][T14721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.304879][T14721] R13: 00007f3110dc6218 R14: 00007f3110dc6180 R15: 00007ffebf591438 [ 568.304901][T14721] [ 569.019986][T14739] __vm_enough_memory: pid: 14739, comm: syz.1.1872, bytes: 4398046511104 not enough memory for the allocation [ 569.078565][T14727] FAULT_INJECTION: forcing a failure. [ 569.078565][T14727] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 569.129471][T14727] CPU: 0 UID: 0 PID: 14727 Comm: syz.4.1870 Tainted: G U syzkaller #0 PREEMPT(full) [ 569.129519][T14727] Tainted: [U]=USER [ 569.129529][T14727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 569.129545][T14727] Call Trace: [ 569.129555][T14727] [ 569.129566][T14727] dump_stack_lvl+0x16c/0x1f0 [ 569.129615][T14727] should_fail_ex+0x512/0x640 [ 569.129667][T14727] strncpy_from_user+0x3b/0x2e0 [ 569.129714][T14727] getname_flags.part.0+0x8f/0x550 [ 569.129766][T14727] getname_flags+0x93/0xf0 [ 569.129799][T14727] do_sys_openat2+0xb8/0x1d0 [ 569.129843][T14727] ? __pfx_do_sys_openat2+0x10/0x10 [ 569.129888][T14727] ? find_held_lock+0x2b/0x80 [ 569.129927][T14727] __x64_sys_openat+0x174/0x210 [ 569.129978][T14727] ? __pfx___x64_sys_openat+0x10/0x10 [ 569.130036][T14727] do_syscall_64+0xcd/0x490 [ 569.130077][T14727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.130103][T14727] RIP: 0033:0x7f1b7fd8ebe9 [ 569.130125][T14727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.130152][T14727] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 569.130181][T14727] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 569.130199][T14727] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 569.130216][T14727] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 569.130232][T14727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.130247][T14727] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 569.130281][T14727] [ 569.804613][T14759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1876'. [ 570.975632][T14777] 0x000200000001-0xa29656a63616329 : "" [ 570.988397][T14777] mtd: partition "" is out of reach -- disabled [ 571.015369][T14777] ftl_cs: FTL header not found. [ 571.108255][T14785] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input98 [ 572.481291][T14801] FAULT_INJECTION: forcing a failure. [ 572.481291][T14801] name failslab, interval 1, probability 0, space 0, times 0 [ 572.553699][T14801] CPU: 0 UID: 0 PID: 14801 Comm: syz.0.1892 Tainted: G U syzkaller #0 PREEMPT(full) [ 572.553750][T14801] Tainted: [U]=USER [ 572.553760][T14801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 572.553776][T14801] Call Trace: [ 572.553784][T14801] [ 572.553791][T14801] dump_stack_lvl+0x16c/0x1f0 [ 572.553821][T14801] should_fail_ex+0x512/0x640 [ 572.553846][T14801] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 572.553869][T14801] should_failslab+0xc2/0x120 [ 572.553892][T14801] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 572.553914][T14801] ? sk_prot_alloc+0x60/0x2a0 [ 572.553943][T14801] sk_prot_alloc+0x60/0x2a0 [ 572.553963][T14801] sk_alloc+0x36/0xc20 [ 572.553986][T14801] inet_create+0x3a1/0x1040 [ 572.554007][T14801] ? inet_create+0x93/0x1040 [ 572.554030][T14801] __sock_create+0x335/0x8d0 [ 572.554056][T14801] mptcp_subflow_create_socket+0xf5/0xed0 [ 572.554078][T14801] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 572.554103][T14801] __mptcp_nmpc_sk+0x182/0x850 [ 572.554123][T14801] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 572.554145][T14801] ? __local_bh_enable_ip+0xa4/0x120 [ 572.554168][T14801] mptcp_getsockopt+0xcf8/0xe20 [ 572.554186][T14801] ? __pfx_mptcp_getsockopt+0x10/0x10 [ 572.554203][T14801] ? find_held_lock+0x2b/0x80 [ 572.554219][T14801] ? __might_fault+0xe3/0x190 [ 572.554238][T14801] ? __might_fault+0xe3/0x190 [ 572.554255][T14801] ? __might_fault+0x13b/0x190 [ 572.554282][T14801] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 572.554299][T14801] do_sock_getsockopt+0x34a/0x440 [ 572.554318][T14801] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 572.554334][T14801] ? __fget_files+0x204/0x3c0 [ 572.554364][T14801] __sys_getsockopt+0x123/0x1b0 [ 572.554393][T14801] __x64_sys_getsockopt+0xbd/0x160 [ 572.554415][T14801] ? do_syscall_64+0x91/0x490 [ 572.554439][T14801] ? lockdep_hardirqs_on+0x7c/0x110 [ 572.554462][T14801] do_syscall_64+0xcd/0x490 [ 572.554488][T14801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 572.554505][T14801] RIP: 0033:0x7f3110b8ebe9 [ 572.554521][T14801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 572.554537][T14801] RSP: 002b:00007f31119a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 572.554554][T14801] RAX: ffffffffffffffda RBX: 00007f3110dc6180 RCX: 00007f3110b8ebe9 [ 572.554565][T14801] RDX: 0000000000000021 RSI: 0000000000000006 RDI: 0000000000000006 [ 572.554575][T14801] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 572.554589][T14801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 572.554599][T14801] R13: 00007f3110dc6218 R14: 00007f3110dc6180 R15: 00007ffebf591438 [ 572.554621][T14801] [ 574.925690][T14840] ubi0: attaching mtd0 [ 574.961040][T14840] ubi0: scanning is finished [ 574.965871][T14840] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 575.184921][T14845] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 575.432723][T14840] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 581.111624][T14963] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 583.279081][T15016] __vm_enough_memory: pid: 15016, comm: syz.3.1921, bytes: 4398046511104 not enough memory for the allocation [ 583.585492][T15027] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 584.568825][T15050] 0x000200000001-0xa29656a63616329 : "" [ 584.603789][T15050] mtd: partition "" is out of reach -- disabled [ 584.652435][T15050] ftl_cs: FTL header not found. [ 585.940592][T15070] __vm_enough_memory: pid: 15070, comm: syz.4.1933, bytes: 4398046511104 not enough memory for the allocation [ 586.787514][T15088] FAULT_INJECTION: forcing a failure. [ 586.787514][T15088] name failslab, interval 1, probability 0, space 0, times 0 [ 586.920921][T15088] CPU: 0 UID: 0 PID: 15088 Comm: syz.4.1937 Tainted: G U syzkaller #0 PREEMPT(full) [ 586.920969][T15088] Tainted: [U]=USER [ 586.920979][T15088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 586.920996][T15088] Call Trace: [ 586.921005][T15088] [ 586.921016][T15088] dump_stack_lvl+0x16c/0x1f0 [ 586.921073][T15088] should_fail_ex+0x512/0x640 [ 586.921116][T15088] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 586.921156][T15088] should_failslab+0xc2/0x120 [ 586.921195][T15088] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 586.921230][T15088] ? __alloc_skb+0x2b2/0x380 [ 586.921276][T15088] __alloc_skb+0x2b2/0x380 [ 586.921315][T15088] ? __pfx___alloc_skb+0x10/0x10 [ 586.921360][T15088] ? __pfx___register_sysctl_table+0x10/0x10 [ 586.921402][T15088] ? is_module_address+0x69/0xf0 [ 586.921449][T15088] inet6_netconf_notify_devconf+0x87/0x180 [ 586.921486][T15088] __addrconf_sysctl_register+0x22b/0x360 [ 586.921524][T15088] ? __pfx___addrconf_sysctl_register+0x10/0x10 [ 586.921554][T15088] ? trace_kmalloc+0x2b/0xd0 [ 586.921593][T15088] ? addrconf_init_net+0x1e9/0x8e0 [ 586.921627][T15088] ? __asan_memcpy+0x3c/0x60 [ 586.921660][T15088] addrconf_init_net+0x50c/0x8e0 [ 586.921696][T15088] ? __pfx_addrconf_init_net+0x10/0x10 [ 586.921728][T15088] ops_init+0x1df/0x5f0 [ 586.921776][T15088] setup_net+0x10f/0x380 [ 586.921815][T15088] ? lockdep_init_map_type+0x5c/0x280 [ 586.921856][T15088] ? __pfx_setup_net+0x10/0x10 [ 586.921901][T15088] ? debug_mutex_init+0x37/0x70 [ 586.921936][T15088] copy_net_ns+0x2a6/0x5f0 [ 586.921970][T15088] create_new_namespaces+0x3ea/0xa90 [ 586.922013][T15088] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 586.922061][T15088] ksys_unshare+0x45b/0xa40 [ 586.922102][T15088] ? __pfx_ksys_unshare+0x10/0x10 [ 586.922143][T15088] ? xfd_validate_state+0x61/0x180 [ 586.922197][T15088] __x64_sys_unshare+0x31/0x40 [ 586.922236][T15088] do_syscall_64+0xcd/0x490 [ 586.922279][T15088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.922308][T15088] RIP: 0033:0x7f1b7fd8ebe9 [ 586.922331][T15088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 586.922356][T15088] RSP: 002b:00007f1b80c2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 586.922383][T15088] RAX: ffffffffffffffda RBX: 00007f1b7ffc5fa0 RCX: 00007f1b7fd8ebe9 [ 586.922402][T15088] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 586.922418][T15088] RBP: 00007f1b7fe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 586.922434][T15088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.922450][T15088] R13: 00007f1b7ffc6038 R14: 00007f1b7ffc5fa0 R15: 00007ffd097755c8 [ 586.922489][T15088] [ 587.967114][T15103] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1941'. [ 588.056800][T15108] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1941'. [ 588.303728][T15110] 0x000200000001-0xa29656a63616329 : "" [ 588.309388][T15110] mtd: partition "" is out of reach -- disabled [ 588.324003][T15110] ftl_cs: FTL header not found. [ 589.428957][T15127] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 589.764420][T15138] __vm_enough_memory: pid: 15138, comm: syz.4.1946, bytes: 4398046511104 not enough memory for the allocation [ 591.225981][T15160] __vm_enough_memory: pid: 15160, comm: syz.1.1948, bytes: 4398046511104 not enough memory for the allocation [ 591.390916][T15164] nbd: couldn't find device at index 137 [ 591.969754][T15166] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 593.171967][T15199] __vm_enough_memory: pid: 15199, comm: syz.4.1958, bytes: 4398046511104 not enough memory for the allocation [ 596.836885][T15253] kexec: Could not allocate control_code_buffer [ 597.226023][T15277] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input103 [ 597.314936][ T5929] Process accounting resumed [ 597.760450][T15288] FAULT_INJECTION: forcing a failure. [ 597.760450][T15288] name failslab, interval 1, probability 0, space 0, times 0 [ 597.773518][T15288] CPU: 1 UID: 0 PID: 15288 Comm: syz.0.1978 Tainted: G U syzkaller #0 PREEMPT(full) [ 597.773568][T15288] Tainted: [U]=USER [ 597.773579][T15288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 597.773597][T15288] Call Trace: [ 597.773606][T15288] [ 597.773618][T15288] dump_stack_lvl+0x116/0x1f0 [ 597.773669][T15288] should_fail_ex+0x512/0x640 [ 597.773722][T15288] should_failslab+0xc2/0x120 [ 597.773761][T15288] __kmalloc_cache_noprof+0x6a/0x3e0 [ 597.773795][T15288] ? snd_ctl_notify+0x3ab/0x710 [ 597.773853][T15288] snd_ctl_notify+0x3ab/0x710 [ 597.773908][T15288] snd_ctl_notify_one+0x122/0x240 [ 597.773951][T15288] ? __pfx_snd_ctl_notify_one+0x10/0x10 [ 597.774003][T15288] ? mark_held_locks+0x49/0x80 [ 597.774049][T15288] __snd_ctl_add_replace+0x63e/0x930 [ 597.774100][T15288] ? __pfx___snd_ctl_add_replace+0x10/0x10 [ 597.774153][T15288] ? trace_kmalloc+0x2b/0xd0 [ 597.774192][T15288] ? __kmalloc_noprof+0x242/0x510 [ 597.774227][T15288] ? snd_ctl_new+0xa1/0x1a0 [ 597.774272][T15288] snd_ctl_elem_add+0x92c/0x14e0 [ 597.774324][T15288] ? find_held_lock+0x2b/0x80 [ 597.774350][T15288] ? __might_fault+0xe3/0x190 [ 597.774380][T15288] ? __might_fault+0xe3/0x190 [ 597.774408][T15288] ? __might_fault+0x13b/0x190 [ 597.774442][T15288] ? __pfx_snd_ctl_elem_add+0x10/0x10 [ 597.774497][T15288] snd_ctl_elem_add_user+0xc3/0x170 [ 597.774541][T15288] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 597.774632][T15288] snd_ctl_ioctl+0x799/0xf80 [ 597.774680][T15288] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 597.774732][T15288] ? __x64_sys_openat+0x174/0x210 [ 597.774787][T15288] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 597.774844][T15288] __x64_sys_ioctl+0x18b/0x210 [ 597.774891][T15288] do_syscall_64+0xcd/0x490 [ 597.774939][T15288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.774967][T15288] RIP: 0033:0x7f3110b8ebe9 [ 597.774994][T15288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 597.775023][T15288] RSP: 002b:00007f31119e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 597.775051][T15288] RAX: ffffffffffffffda RBX: 00007f3110dc5fa0 RCX: 00007f3110b8ebe9 [ 597.775071][T15288] RDX: 0000200000000580 RSI: 00000000c1105517 RDI: 0000000000000002 [ 597.775090][T15288] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 597.775109][T15288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 597.775126][T15288] R13: 00007f3110dc6038 R14: 00007f3110dc5fa0 R15: 00007ffebf591438 [ 597.775169][T15288] [ 597.775185][T15288] snd_virmidi snd_virmidi.0: No memory available to allocate event [ 600.021268][T15327] kexec: Could not allocate control_code_buffer [ 603.253532][T15358] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 604.665692][ T5184] Bluetooth: hci3: unexpected event 0x30 length: 47 > 3 [ 604.858617][T15376] __vm_enough_memory: pid: 15376, comm: syz.0.1999, bytes: 4398046511104 not enough memory for the allocation [ 604.979125][ T5184] Bluetooth: hci1: unexpected subevent 0x03 length: 253 > 9 [ 605.498383][T15383] FAULT_INJECTION: forcing a failure. [ 605.498383][T15383] name fail_futex, interval 1, probability 0, space 0, times 0 [ 605.533693][T15383] CPU: 0 UID: 0 PID: 15383 Comm: syz.3.2001 Tainted: G U syzkaller #0 PREEMPT(full) [ 605.533742][T15383] Tainted: [U]=USER [ 605.533752][T15383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 605.533781][T15383] Call Trace: [ 605.533792][T15383] [ 605.533803][T15383] dump_stack_lvl+0x16c/0x1f0 [ 605.533854][T15383] should_fail_ex+0x512/0x640 [ 605.533907][T15383] get_futex_key+0x1d0/0x1560 [ 605.533947][T15383] ? __pfx_get_futex_key+0x10/0x10 [ 605.533998][T15383] futex_wake+0xea/0x530 [ 605.534040][T15383] ? rcu_is_watching+0x12/0xc0 [ 605.534069][T15383] ? __pfx_futex_wake+0x10/0x10 [ 605.534117][T15383] ? kmem_cache_free+0x2d1/0x4d0 [ 605.534149][T15383] ? fd_install+0x225/0x750 [ 605.534178][T15383] ? putname+0x154/0x1a0 [ 605.534226][T15383] do_futex+0x1e3/0x350 [ 605.534263][T15383] ? __pfx_do_futex+0x10/0x10 [ 605.534313][T15383] __x64_sys_futex+0x1e0/0x4c0 [ 605.534354][T15383] ? __x64_sys_openat+0x174/0x210 [ 605.534401][T15383] ? __pfx___x64_sys_futex+0x10/0x10 [ 605.534455][T15383] do_syscall_64+0xcd/0x490 [ 605.534503][T15383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.534532][T15383] RIP: 0033:0x7f63f2f8ebe9 [ 605.534557][T15383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 605.534585][T15383] RSP: 002b:00007f63f3e7a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 605.534613][T15383] RAX: ffffffffffffffda RBX: 00007f63f31c5fa8 RCX: 00007f63f2f8ebe9 [ 605.534632][T15383] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f63f31c5fac [ 605.534650][T15383] RBP: 00007f63f31c5fa0 R08: 00007f63f3e7b000 R09: 0000000000000000 [ 605.534668][T15383] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000 [ 605.534684][T15383] R13: 00007f63f31c6038 R14: 00007ffef43b7a50 R15: 00007ffef43b7b38 [ 605.534724][T15383] [ 606.289914][T15399] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 606.753645][T15417] FAULT_INJECTION: forcing a failure. [ 606.753645][T15417] name failslab, interval 1, probability 0, space 0, times 0 [ 606.770840][T15415] synth uevent: /bus/mei: unknown uevent action string [ 606.788979][T15417] CPU: 0 UID: 0 PID: 15417 Comm: syz.0.2008 Tainted: G U syzkaller #0 PREEMPT(full) [ 606.789027][T15417] Tainted: [U]=USER [ 606.789036][T15417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 606.789053][T15417] Call Trace: [ 606.789062][T15417] [ 606.789074][T15417] dump_stack_lvl+0x16c/0x1f0 [ 606.789121][T15417] should_fail_ex+0x512/0x640 [ 606.789164][T15417] ? __kmalloc_noprof+0xbf/0x510 [ 606.789200][T15417] ? __register_sysctl_table+0xea2/0x1900 [ 606.789241][T15417] should_failslab+0xc2/0x120 [ 606.789279][T15417] __kmalloc_noprof+0xd2/0x510 [ 606.789310][T15417] ? __register_sysctl_table+0xe8e/0x1900 [ 606.789366][T15417] __register_sysctl_table+0xea2/0x1900 [ 606.789418][T15417] ? __pfx___register_sysctl_table+0x10/0x10 [ 606.789458][T15417] ? is_module_address+0x69/0xf0 [ 606.789494][T15417] ? register_net_sysctl_sz+0x228/0x3e0 [ 606.789543][T15417] __devinet_sysctl_register+0x1b9/0x360 [ 606.789576][T15417] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 606.789608][T15417] ? devinet_init_net+0xeb/0x910 [ 606.789638][T15417] ? __asan_memcpy+0x3c/0x60 [ 606.789678][T15417] devinet_init_net+0x315/0x910 [ 606.789709][T15417] ? __pfx_devinet_init_net+0x10/0x10 [ 606.789736][T15417] ops_init+0x1df/0x5f0 [ 606.789784][T15417] setup_net+0x10f/0x380 [ 606.789822][T15417] ? lockdep_init_map_type+0x5c/0x280 [ 606.789862][T15417] ? __pfx_setup_net+0x10/0x10 [ 606.789906][T15417] ? debug_mutex_init+0x37/0x70 [ 606.789939][T15417] copy_net_ns+0x2a6/0x5f0 [ 606.789972][T15417] create_new_namespaces+0x3ea/0xa90 [ 606.790015][T15417] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 606.790053][T15417] ksys_unshare+0x45b/0xa40 [ 606.790094][T15417] ? __pfx_ksys_unshare+0x10/0x10 [ 606.790134][T15417] ? xfd_validate_state+0x61/0x180 [ 606.790188][T15417] __x64_sys_unshare+0x31/0x40 [ 606.790226][T15417] do_syscall_64+0xcd/0x490 [ 606.790271][T15417] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 606.790299][T15417] RIP: 0033:0x7f3110b8ebe9 [ 606.790321][T15417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 606.790348][T15417] RSP: 002b:00007f31119c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 606.790374][T15417] RAX: ffffffffffffffda RBX: 00007f3110dc6090 RCX: 00007f3110b8ebe9 [ 606.790392][T15417] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 606.790408][T15417] RBP: 00007f3110c11e19 R08: 0000000000000000 R09: 0000000000000000 [ 606.790424][T15417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 606.790440][T15417] R13: 00007f3110dc6128 R14: 00007f3110dc6090 R15: 00007ffebf591438 [ 606.790479][T15417] [ 606.790569][T15417] sysctl could not get directory: /net/ipv4 -12 [ 607.185123][T15395] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 607.204357][T15395] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 607.214222][T15395] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 607.220905][T15395] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 608.014347][T15442] binder: 15440:15442 ioctl 40046210 0 returned -14 [ 608.185663][ T5184] Bluetooth: hci0: command 0x0c1a tx timeout [ 609.002129][T15454] zswap: compressor 000 not available [ 609.212936][ T5875] Bluetooth: hci1: command 0x0c1a tx timeout [ 609.292302][ T5875] Bluetooth: hci2: command 0x040f tx timeout [ 609.295903][ T5184] Bluetooth: hci3: command 0x0c1a tx timeout [ 611.481804][T15518] futex_wake_op: syz.4.2031 tries to shift op by -2048; fix this program [ 611.497822][T15518] futex_wake_op: syz.4.2031 tries to shift op by -2048; fix this program [ 611.932065][T15527] program syz.3.2034 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 612.724001][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.730854][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.756448][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.765000][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.798550][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.808341][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.840153][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 612.847461][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 612.967684][T15541] __vm_enough_memory: pid: 15541, comm: syz.1.2036, bytes: 4398046511104 not enough memory for the allocation [ 613.017983][T15542] 0x000200000001-0xa29656a63616329 : "" [ 613.031050][T15542] mtd: partition "" is out of reach -- disabled [ 613.073950][T15542] ftl_cs: FTL header not found. [ 613.875464][T15568] nfs: Unknown parameter 'w`_I+; HY Lu>>uh*C<+ ' [ 614.120451][T15569] FAULT_INJECTION: forcing a failure. [ 614.120451][T15569] name fail_futex, interval 1, probability 0, space 0, times 0 [ 614.342199][T15569] CPU: 1 UID: 0 PID: 15569 Comm: syz.4.2041 Tainted: G U syzkaller #0 PREEMPT(full) [ 614.342246][T15569] Tainted: [U]=USER [ 614.342256][T15569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 614.342273][T15569] Call Trace: [ 614.342283][T15569] [ 614.342294][T15569] dump_stack_lvl+0x16c/0x1f0 [ 614.342343][T15569] should_fail_ex+0x512/0x640 [ 614.342395][T15569] get_futex_key+0x1d0/0x1560 [ 614.342437][T15569] ? __pfx_get_futex_key+0x10/0x10 [ 614.342487][T15569] futex_wake+0xea/0x530 [ 614.342535][T15569] ? __pfx_futex_wake+0x10/0x10 [ 614.342597][T15569] do_futex+0x1e3/0x350 [ 614.342635][T15569] ? __pfx_do_futex+0x10/0x10 [ 614.342682][T15569] ? __pfx___do_sys_wait4+0x10/0x10 [ 614.342725][T15569] ? cap_task_prctl+0x2af/0xa80 [ 614.342760][T15569] __x64_sys_futex+0x1e0/0x4c0 [ 614.342799][T15569] ? __pfx___x64_sys_futex+0x10/0x10 [ 614.342834][T15569] ? __x64_sys_poll+0x123/0x450 [ 614.342864][T15569] ? __pfx___x64_sys_poll+0x10/0x10 [ 614.342905][T15569] do_syscall_64+0xcd/0x490 [ 614.342950][T15569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 614.342978][T15569] RIP: 0033:0x7f1b7fd8ebe9 [ 614.343002][T15569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 614.343032][T15569] RSP: 002b:00007f1b80baa0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 614.343060][T15569] RAX: ffffffffffffffda RBX: 00007f1b7ffc6368 RCX: 00007f1b7fd8ebe9 [ 614.343079][T15569] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1b7ffc636c [ 614.343098][T15569] RBP: 00007f1b7ffc6360 R08: 00007f1b80c2f000 R09: 0000000000000000 [ 614.343116][T15569] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 614.343134][T15569] R13: 00007f1b7ffc63f8 R14: 00007ffd097754e0 R15: 00007ffd097755c8 [ 614.343174][T15569] [ 615.301177][T15594] __vm_enough_memory: pid: 15594, comm: syz.0.2049, bytes: 4398046511104 not enough memory for the allocation [ 615.437693][T15592] 0x000200000001-0xa29656a63616329 : "" [ 615.461520][T15592] mtd: partition "" is out of reach -- disabled [ 615.590739][T15592] ftl_cs: FTL header not found. [ 615.789531][T15603] __vm_enough_memory: pid: 15603, comm: syz.1.2051, bytes: 4398046511104 not enough memory for the allocation [ 615.949411][T15610] __vm_enough_memory: pid: 15610, comm: syz.3.2053, bytes: 4398046511104 not enough memory for the allocation [ 616.027697][T15610] ------------[ cut here ]------------ [ 616.033866][T15610] invalid sysfs_emit_at: buf:ffff88803208400a at:10 [ 616.050239][T15610] WARNING: CPU: 0 PID: 15610 at fs/sysfs/file.c:795 sysfs_emit_at+0xe6/0x1a0 [ 616.059742][T15610] Modules linked in: [ 616.064301][T15610] CPU: 0 UID: 0 PID: 15610 Comm: syz.3.2053 Tainted: G U syzkaller #0 PREEMPT(full) [ 616.075498][T15610] Tainted: [U]=USER [ 616.079749][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 616.090245][T15610] RIP: 0010:sysfs_emit_at+0xe6/0x1a0 [ 616.095549][T15610] Code: ff 0f 00 00 4c 89 fe e8 28 e3 5a ff 4d 85 ff 74 68 e8 ae e7 5a ff 90 48 c7 c7 20 66 c3 8b 44 89 e2 48 89 de e8 2b de 19 ff 90 <0f> 0b 90 90 31 db e8 8f e7 5a ff 48 b8 00 00 00 00 00 fc ff df 49 [ 616.116263][T15610] RSP: 0018:ffffc9000d687860 EFLAGS: 00010286 [ 616.122776][T15610] RAX: 0000000000000000 RBX: ffff88803208400a RCX: ffffc9000c7dc000 [ 616.131466][T15610] RDX: 0000000000080000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 616.140150][T15610] RBP: ffffc9000d687938 R08: 0000000000000001 R09: 0000000000000000 [ 616.148361][T15610] R10: 0000000000000001 R11: 0000000000000001 R12: 000000000000000a [ 616.156798][T15610] R13: 1ffff92001ad0f0c R14: ffffffff8c742680 R15: 000000000000000a [ 616.164782][T15610] FS: 00007f63f3e7a6c0(0000) GS:ffff8881246bd000(0000) knlGS:0000000000000000 [ 616.183543][T15610] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 616.190489][T15610] CR2: 0000001b2ece3ff8 CR3: 000000007dd98000 CR4: 00000000003526f0 [ 616.198871][T15610] Call Trace: [ 616.202291][T15610] [ 616.205239][T15610] ? __pfx_sysfs_emit_at+0x10/0x10 [ 616.210799][T15610] usb_show_dynids+0x17e/0x220 [ 616.215853][T15610] ? __pfx_new_id_show+0x10/0x10 [ 616.220859][T15610] ? __pfx_drv_attr_show+0x10/0x10 [ 616.226086][T15610] drv_attr_show+0x6c/0xa0 [ 616.230583][T15610] sysfs_kf_seq_show+0x213/0x3e0 [ 616.235619][T15610] traverse.part.0.constprop.0+0x107/0x640 [ 616.241453][T15610] ? alloc_pages_bulk_noprof+0xa67/0x1410 [ 616.247262][T15610] seq_read_iter+0x932/0x12c0 [ 616.252010][T15610] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 616.258157][T15610] kernfs_fop_read_iter+0x40f/0x5a0 [ 616.263381][T15610] copy_splice_read+0x618/0xc20 [ 616.268321][T15610] ? __pfx_copy_splice_read+0x10/0x10 [ 616.273706][T15610] ? __pfx___mutex_lock+0x10/0x10 [ 616.278798][T15610] ? __fget_files+0x204/0x3c0 [ 616.283508][T15610] ? __pfx_copy_splice_read+0x10/0x10 [ 616.288954][T15610] do_splice_read+0x282/0x370 [ 616.293826][T15610] splice_file_to_pipe+0x109/0x120 [ 616.299224][T15610] do_sendfile+0x400/0xe50 [ 616.303714][T15610] ? __pfx_do_sendfile+0x10/0x10 [ 616.309560][T15610] ? __x64_sys_futex+0x1e0/0x4c0 [ 616.314630][T15610] ? __x64_sys_futex+0x1e9/0x4c0 [ 616.320127][T15610] __x64_sys_sendfile64+0x1d8/0x220 [ 616.325497][T15610] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 616.331299][T15610] do_syscall_64+0xcd/0x490 [ 616.335921][T15610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.341859][T15610] RIP: 0033:0x7f63f2f8ebe9 [ 616.346375][T15610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 616.366320][T15610] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 616.374850][T15610] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 616.382872][T15610] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 616.390986][T15610] RBP: 00007f63f3011e19 R08: 0000000000000000 R09: 0000000000000000 [ 616.399317][T15610] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000 [ 616.407680][T15610] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 616.416421][T15610] [ 616.419990][T15610] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 616.427322][T15610] CPU: 0 UID: 0 PID: 15610 Comm: syz.3.2053 Tainted: G U syzkaller #0 PREEMPT(full) [ 616.438303][T15610] Tainted: [U]=USER [ 616.442216][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 616.452308][T15610] Call Trace: [ 616.455607][T15610] [ 616.458556][T15610] dump_stack_lvl+0x3d/0x1f0 [ 616.463160][T15610] vpanic+0x6e8/0x7a0 [ 616.467252][T15610] ? __pfx_vpanic+0x10/0x10 [ 616.471782][T15610] ? sysfs_emit_at+0xe6/0x1a0 [ 616.476459][T15610] panic+0xca/0xd0 [ 616.480203][T15610] ? __pfx_panic+0x10/0x10 [ 616.484727][T15610] check_panic_on_warn+0xab/0xb0 [ 616.489669][T15610] __warn+0xf6/0x3c0 [ 616.493565][T15610] ? preempt_schedule_notrace+0x62/0xe0 [ 616.499116][T15610] ? sysfs_emit_at+0xe6/0x1a0 [ 616.503887][T15610] report_bug+0x3c3/0x580 [ 616.508236][T15610] ? sysfs_emit_at+0xe6/0x1a0 [ 616.512914][T15610] handle_bug+0x184/0x210 [ 616.517257][T15610] exc_invalid_op+0x17/0x50 [ 616.521761][T15610] asm_exc_invalid_op+0x1a/0x20 [ 616.526611][T15610] RIP: 0010:sysfs_emit_at+0xe6/0x1a0 [ 616.532342][T15610] Code: ff 0f 00 00 4c 89 fe e8 28 e3 5a ff 4d 85 ff 74 68 e8 ae e7 5a ff 90 48 c7 c7 20 66 c3 8b 44 89 e2 48 89 de e8 2b de 19 ff 90 <0f> 0b 90 90 31 db e8 8f e7 5a ff 48 b8 00 00 00 00 00 fc ff df 49 [ 616.551948][T15610] RSP: 0018:ffffc9000d687860 EFLAGS: 00010286 [ 616.558031][T15610] RAX: 0000000000000000 RBX: ffff88803208400a RCX: ffffc9000c7dc000 [ 616.566003][T15610] RDX: 0000000000080000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 616.573990][T15610] RBP: ffffc9000d687938 R08: 0000000000000001 R09: 0000000000000000 [ 616.582047][T15610] R10: 0000000000000001 R11: 0000000000000001 R12: 000000000000000a [ 616.590029][T15610] R13: 1ffff92001ad0f0c R14: ffffffff8c742680 R15: 000000000000000a [ 616.598032][T15610] ? __warn_printk+0x1a5/0x350 [ 616.602836][T15610] ? __pfx_sysfs_emit_at+0x10/0x10 [ 616.607975][T15610] usb_show_dynids+0x17e/0x220 [ 616.612776][T15610] ? __pfx_new_id_show+0x10/0x10 [ 616.617725][T15610] ? __pfx_drv_attr_show+0x10/0x10 [ 616.622852][T15610] drv_attr_show+0x6c/0xa0 [ 616.627285][T15610] sysfs_kf_seq_show+0x213/0x3e0 [ 616.632405][T15610] traverse.part.0.constprop.0+0x107/0x640 [ 616.638227][T15610] ? alloc_pages_bulk_noprof+0xa67/0x1410 [ 616.643958][T15610] seq_read_iter+0x932/0x12c0 [ 616.648642][T15610] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 616.654655][T15610] kernfs_fop_read_iter+0x40f/0x5a0 [ 616.659871][T15610] copy_splice_read+0x618/0xc20 [ 616.664737][T15610] ? __pfx_copy_splice_read+0x10/0x10 [ 616.670113][T15610] ? __pfx___mutex_lock+0x10/0x10 [ 616.675149][T15610] ? __fget_files+0x204/0x3c0 [ 616.679833][T15610] ? __pfx_copy_splice_read+0x10/0x10 [ 616.685292][T15610] do_splice_read+0x282/0x370 [ 616.689987][T15610] splice_file_to_pipe+0x109/0x120 [ 616.695099][T15610] do_sendfile+0x400/0xe50 [ 616.699524][T15610] ? __pfx_do_sendfile+0x10/0x10 [ 616.704487][T15610] ? __x64_sys_futex+0x1e0/0x4c0 [ 616.709453][T15610] ? __x64_sys_futex+0x1e9/0x4c0 [ 616.714400][T15610] __x64_sys_sendfile64+0x1d8/0x220 [ 616.719609][T15610] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 616.725360][T15610] do_syscall_64+0xcd/0x490 [ 616.729891][T15610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 616.735800][T15610] RIP: 0033:0x7f63f2f8ebe9 [ 616.740214][T15610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 616.759822][T15610] RSP: 002b:00007f63f3e7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 616.768235][T15610] RAX: ffffffffffffffda RBX: 00007f63f31c5fa0 RCX: 00007f63f2f8ebe9 [ 616.776203][T15610] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001 [ 616.784183][T15610] RBP: 00007f63f3011e19 R08: 0000000000000000 R09: 0000000000000000 [ 616.792153][T15610] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000 [ 616.800119][T15610] R13: 00007f63f31c6038 R14: 00007f63f31c5fa0 R15: 00007ffef43b7b38 [ 616.808101][T15610] [ 616.811397][T15610] Kernel Offset: disabled [ 616.815731][T15610] Rebooting in 86400 seconds..