last executing test programs: 44.450449593s ago: executing program 3 (id=796): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000480)={'dummy0\x00', 0x0}) sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c00}, 0x4000000) sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r2, 0x0, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVKEY={0xe, 0x2f, 0x0, 0x1, [@generic="2f5a75a60bdfe0f440ed"]}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x101}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x100, 0x0) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) ioctl$auto_KVM_CREATE_VM(r5, 0x4048aecb, 0x0) 43.715535552s ago: executing program 3 (id=800): unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x2ba2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0xc) socket(0x2000000000000021, 0x2, 0x10000000000002) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x5, 0x84) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "3d64dc400201007f6100dc050024"}, 0x55) bpf$auto_BPF_TASK_FD_QUERY(0x14, 0x0, 0x80) 42.914970778s ago: executing program 3 (id=804): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x1ff, 0x2, 0x9}, 0x9, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async) socket(0x10, 0x2, 0x0) (async) socket(0x11, 0x80003, 0x300) (async) socket(0xa, 0x801, 0x84) r0 = open(0x0, 0x22240, 0x154) execveat$auto(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) (rerun: 64) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0) (async) mmap$auto(0x0, 0xc7d, 0x80df, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x6, 0x0) (async) openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0) (async) setresuid$auto(0x0, 0x8, 0x8000) (async) fanotify_init$auto(0x200, 0x1) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r1, 0x107, 0x5, 0x0, 0x8004) (async) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x101000, 0x0) (async) socket(0x10, 0x2, 0x4) (async) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101081, 0x0) (async, rerun: 64) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async, rerun: 64) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) 42.144729932s ago: executing program 3 (id=808): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) read$auto(r0, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r1) fstat$auto(r2, &(0x7f0000000100)={0x0, 0x4, 0xa6, 0x1, 0xee00, 0xee01, 0x0, 0x2, 0x3, 0xd, 0x7, 0x7, 0x0, 0xc64c, 0x5, 0x3, 0x5}) sendmsg$auto_NFC_CMD_VENDOR(r1, 0x0, 0x20000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183941, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) r4 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_TUNGETVNETHDRSZ2(r4, 0x800454d7, &(0x7f0000000080)=0x9) write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040), 0x0) memfd_create$auto(&(0x7f0000000140)='!\x00', 0x16) fallocate$auto(0x8000000000000003, 0x1, 0xd, 0x2cbd58) seccomp$auto(0x2, 0x10, 0x0) unshare$auto(0x40000080) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x8) unshare$auto(0x40000080) read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0) 41.597158603s ago: executing program 3 (id=813): ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000000)) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x2, 0x2000de, 0x3ad6, 0x7, 0x28000) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp1\x00', 0x20002, 0x0) ioctl$auto_SNDCTL_DSP_POST(r2, 0x5008, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, &(0x7f0000000440)="0db1eb") ioctl$auto_SNDCTL_DSP_GETOSPACE(r2, 0x8010500c, &(0x7f0000000040)) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r3 = io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0) sysfs$auto(0x2, 0x1f, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0xa, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/name\x00', 0xa000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/4096, 0x1000) mmap$auto(0x0, 0x9, 0x49f, 0x9b72, 0x2, 0x8000000000008000) r5 = open(&(0x7f0000000000)='./file0\x00', 0x26142, 0x4b) write$auto(r5, 0x0, 0x100082) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'vlan1\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GET2(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fcdbdf", @ANYRES32=r6, @ANYRES64, @ANYRESDEC, @ANYBLOB='\b\x00\b\x00', @ANYRES64, @ANYRES8], 0x2c}, 0x1, 0x0, 0x0, 0x10040001}, 0xc0) pwrite64$auto(r5, 0x0, 0x8, 0x200000000000003) close_range$auto(0x2, 0xa, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3f) 40.638136755s ago: executing program 3 (id=814): writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="01002dbdd8079b8fc97000fddb5f00001000"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x2000c0c5) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto(r2, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) read$auto(0x3, 0x0, 0xf34) write$auto(0x3, 0x0, 0xffd8) 25.511699354s ago: executing program 32 (id=814): writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="01002dbdd8079b8fc97000fddb5f00001000"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x2000c0c5) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto(r2, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) read$auto(0x3, 0x0, 0xf34) write$auto(0x3, 0x0, 0xffd8) 25.00600934s ago: executing program 2 (id=866): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) bpf$auto(0x5, 0x0, 0x102) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_SUPPORTED_SELECTORS={0x5, 0x14e, "13"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008040}, 0x80) 24.572130877s ago: executing program 2 (id=868): unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_CQM(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40800) ioctl$auto_XFS_IOC_ERROR_CLEARALL(0xffffffffffffffff, 0x40085875, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'team_slave_0\x00'}) sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={0x0, 0xa4}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x80202, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x89, 0x0) sendmsg$auto_NFC_CMD_FW_DOWNLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYRES16=r1], 0x3c}, 0x1, 0x0, 0x0, 0x4000800}, 0x24044845) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setresgid$auto(0x81, 0x800000a0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000040)={0xc00000}, 0x0, &(0x7f0000000180), 0x8) setgroups$auto(0xc00000000, 0xfffffffffffffffc) shmget$auto(0x8, 0x10563, 0x568d1af2) r2 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x0) getsockname$auto(r2, &(0x7f0000000040)=@vsock={0x28, 0x0, 0xffffffff}, &(0x7f0000000180)=0x82) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/inhibited\x00', 0x20b42, 0x0) write$auto(r3, &(0x7f0000000080)='1\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0x4) ioctl$auto_PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f00000001c0)={0xd969, 0x4, 0x8, 0x2dd0ceb6, 0x1, 0x6, 0x8, 0x174, 0xffffffffffffffff, 0x5, 0x2, 0x1}) write$auto(r2, 0x0, 0xfffffdef) fcntl$auto_F_ADD_SEALS(r2, 0x409, 0x0) 22.962381532s ago: executing program 2 (id=870): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0x10, 0x2, 0x4) write$auto(r0, 0x0, 0xfdef) close_range$auto(r0, r0, 0x0) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r1, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000005f40)={0x24, r2, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0xf1, 0x0, 0x1, [@typed={0x8, 0x94, 0x0, 0x0, @fd=r1}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24006011}, 0x400004a) socketpair$auto(0x1, 0x1, 0x0, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) socketpair$auto(0x0, 0xc, 0xf, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = socketpair$auto(0x1e, 0x5, 0xfffffffe, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x85) r6 = ioctl$auto_NS_GET_TGID_IN_PIDNS(r4, 0x8004b709, &(0x7f0000000100)=0x3) ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, r6) madvise$auto(0x0, 0x2003f0, 0x15) r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r7, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0) 22.384940955s ago: executing program 2 (id=872): writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf250200c12b2bd90252"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) read$auto(0x3, 0x0, 0xf34) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x3, 0x87) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="931be24970025ef08bc2be2986", @ANYRES16=0x0, @ANYBLOB="040027bd7000fbdbdf2514000000"], 0x14}, 0x1, 0x0, 0x0, 0x48891}, 0x20) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2) syz_genetlink_get_family_id$auto_nl80211(0x0, r2) mq_notify$auto(0x5cf5, &(0x7f00000006c0)={@sival_ptr=0x0, @inferred, 0x2, @_sigev_thread={0x0, 0x0}}) socket(0xa, 0x801, 0x106) 21.393646774s ago: executing program 2 (id=877): mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x7fff) prctl$auto(0x5, 0x80000000, 0x0, 0x78, 0x8) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrlimit$auto(0x8, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r2, 0x0, 0xe) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm1c/sub0/hw_params\x00', 0x200, 0x0) 21.233809388s ago: executing program 2 (id=878): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x2001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x4000000, 0xffffffffffff0085, 0x1004) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffffffffffffffd, 0x80040000d, 0x5, 0x9b72, r1, 0x8000) dup$auto(0xffffffffffffffff) timer_create$auto_CLOCK_MONOTONIC(0x1, &(0x7f0000000080)={@sival_int=0x41, @inferred=r0, 0x3ff}, &(0x7f0000000280)=0x27f) socket(0x2, 0x1, 0x106) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x4, 0xda, 0x948b, 0x0, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000005, 0x7, 0x4, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='A\x99k\xbf\x94/dev/au\x8cBo1\x00', 0x101) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x10000]}, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)="42bf466a98f4921b6c0a", 0xa) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r4, 0x400, 0x1) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0) execve$auto(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f0000000180)=""/253, 0xfd) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ff0b00fbf2ffff0000b401", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) ioctl$auto_FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000340)="77a8a4dba6fdbbc3a0ddfc48adcb6206dd5cf2319f0732e9c9342739578f35e7fe993210be9ffdda72c243e0daaf0f0e84c44901a730ae28b2ff943a1e1b6f62b52b017a4d4fa70c8d7c81075f82969d7bc62e9a92b3605a548d3d9499a7c0605de392afd838c4aa3dddf6edea32a8f95ba99a6240df97fc9dbb30f342d515c55b1a8503134e943ab1d4395c8b8c977ed9e7c03802b62f1627b299c2f1e82380cefb2d998d10f5da845ebc38bdd112674de9f95612b5923d5f188b65ba4e641c6db45d645717c8f37c28a59cf556e2f4f757e38d47bf4611c7ccb46089ea3c06087faffc3444723c96802c31686d75c1462e25cee4ba06426f6b8e6fcbe5920c") openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) 16.057578257s ago: executing program 4 (id=864): mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) ioctl$auto_UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, &(0x7f0000000080)={0x130, 0x8, 0x10001}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) setgroups$auto(0x8, &(0x7f0000000000)=0x5) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0x400a507}, 0x800}, 0xa, 0x8) write$auto_proc_mem_operations_base(r0, &(0x7f0000000400)="94c5be883ae7ee95e2bff5f990f6f7249475e8960bf6c1ee8796193bfbd249c19c9460ea0c1c18bb983b84aebb8629e8e9e25558c9bfeb22ed79fdab8065d67eec271b56d08971f043224fe7604598e2506e785c6318c1b7696b10324d1e7db02961facdf9fab2640716f07dd1c617dcb6f1bb648821a53f78be14a6dc8f336e92e389609b991019c180950ed085b91123", 0x91) syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff) r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop9/hctx0/sched_tags_bitmap\x00', 0x101a00, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f0000000340)=""/179, 0xb3) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2900, 0x0) read$auto(r4, 0x0, 0x7) acct$auto(&(0x7f0000000000)='/dev/tty\x00`Mx\x9d\xfa\xb3\x1f\xc6k\x01\x13\x9b\x15[\xf7\xaan\x1fOgo\xbb(\xcbx\x9bJ\x91*\xa5a\x02\xf3\x1b\x9d\xddy\xef\xee\xe4h\xd5\nH\x80\x8a\xd7Y\xb8\xcb\x90') r5 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x3, 0xfffc, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0x1]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c001300fcdbbc2353f74fa9256563b979e41af25e403ec2c853d4662dc2477fb8ce947bdc0f5c0513ff03a03e2f969bf97ff8acf360d119aec1eb971d4cc78fc8e0d10db928bac2c9", @ANYRESHEX=r5], 0x3c}, 0x1, 0x0, 0x0, 0x8014}, 0x8000) 15.506729805s ago: executing program 4 (id=889): openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0xc0080, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x80000, 0x2) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x5b) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000080), 0x600, 0x0) mmap$auto(0x0, 0xa00005, 0x9, 0x40abe, r0, 0x7) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x40200, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) pread64$auto(0xffffffffffffffff, 0x0, 0x5, 0x8d) mmap$auto(0x0, 0x400008, 0xe4, 0x9b72, 0x2, 0x400) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r1, 0x0, 0x800) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r2, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) read$auto(0x3, 0x0, 0x7fffffff) 14.188914185s ago: executing program 4 (id=892): alarm$auto(0x800) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=ANY=[@ANYBLOB="1451eb56665ccfeb35277e03a09ab97c02895fc85200ccafca2b486e0000008d50155f0677a1180f0eb37ebb14351852f3a83b4bee7377c67722802d2edfa299c0da84d8df3b11deb96ffad558dd5dea391426ae1088a5d3bdf30781bf4e3391503b215a062b9127668332cef97c8086daf01f13a3031ce1951fdda0d1a560c72921129e610193de0be3b0", @ANYRES32, @ANYBLOB="010027bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x8108}, 0x4046801) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x2, &(0x7f00000015c0)="d6ba95a34602d893e1d7cf088d808f2eaa5eff30fb44b8cb89c8cd785d57d814250f5962a7a32a32f21226a13ea122c675796125c7afdb7ce903799d19f5fc0a5a52d04ec0700c04aa98d56474a712764946b81db9b94605f3248e6c0903744369fa9638a9f44b40ec537cc08384c475bbf4be6c635cdef85f5b67dbfd816a4be06aa015f5d915600f9de7058efb405a387c7eb66787bf5c1b4b0e8f0c1c0a9c82699b11de0aba3bf33288c81c27555229b5ce3f885263ed2b0d4503f570e8dc8bfd37716dfe10e479cd74d061b3c10743fe1380bcac2028b8c2a3f09432388b08", 0x7, 0xa505}, 0x800}, 0x7, 0x400b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000040)) write$auto(r3, 0x0, 0xfffffdf1) linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x16e) mmap$auto(0x800000, 0x2000009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, 0x0) syz_clone3(&(0x7f0000001380)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x2d}, &(0x7f00000000c0)=""/127, 0x7f, &(0x7f0000000380)=""/4096, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, r6) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd0e, &(0x7f00000001c0)) process_vm_writev$auto(0x1, &(0x7f0000000200)={0x0, 0x4}, 0x8, &(0x7f0000002a40)={0x0, 0x7ffffffe}, 0x6, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x10000000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 13.549628178s ago: executing program 4 (id=896): r0 = socket(0x25, 0x1, 0x0) sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fallocate$auto(r1, 0x1, 0x2, 0x6653) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0) setreuid$auto(0x0, 0x0) sendmsg$auto_THERMAL_GENL_CMD_CDEV_GET(r0, &(0x7f0000000940)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000900)={&(0x7f00000003c0)={0x52c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [@THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x8, 0xf1e}, @THERMAL_GENL_ATTR_THRESHOLD={0x2d9, 0x18, 0x0, 0x1, [@nested={0x1eb, 0x117, 0x0, 0x1, [@generic="7fb7cd14069855f481fc1506b566806128c124fe1a99bd0fd13508c5ef654bf914564eaf2219fa02a64c29bb0a44daa68566a2124a39163d238946dad1dc808101e61fcb9aac0f012dd44cc129cda8939274f84edb5194460f85de68c5f6ed21fa0bae5da2a83b3a8cb3d16c60507a0aef830a7f35d7a6ccab8adedaffd704742c120c7837155a06aad31f28d870ac8f93f958325fa7ca882c37ec27f85a671a006a54ac80fef36ae1d6122e8ee29ed08fd8945d2f3fb430958b99e8b6926afceaa5d521ebf9b724b0f898667ac7c84fec7965873f930bfc8dbce33279618499a79d2ce97b11d056b782", @nested={0x4, 0x108}, @typed={0x42, 0x14c, 0x0, 0x0, @binary="c301cd0a071b68d50446cf81b90dd1c3cf9a5d8683461a546986fd9c95f51ed1e1f60d61f0571e4800e9baec7486deac2cecbb64952444f8ec0c8f874f83"}, @generic="684a29d1eee6e6cec8958ce9c424aaeed52424b511206786ea2438ad3e5caa51b77a2be96d9c320024dcb6b9138d1fccf5e31117a306265a97cc5c0c5041d414c29ff9d04f6ffd04c1ec6e5e0b61f2a3a24c13a6be5ebf3264e571478456015027f796b32e4f59e191d0b94a65a8b82e01c63a45c25974448085b27f1c0675a4b6826bb208be6a65c07d0fcb87f06530012dd03374ccbef6df7c0c6e743b0d77492dfdf5f69bce009f65e47c90a36b90ed3f610631"]}, @nested={0x9a, 0x10a, 0x0, 0x1, [@generic="47054494d8811896f10d44a9eb0f37edfd0c8c21fd4986fc11a5daef2dc077a1ed15a96849d4cee198c85ea8fc57d94f2e2fb8c6f7dfc682ed5648dd0a831b368a232218fc2b4ec565278375b3ddcdfd37cb48bcea5780800ba19139b0862b19a6b126261dec6b86606f635ac4eb748afc1f75622266", @nested={0x4, 0x9f}, @typed={0x14, 0x135, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @typed={0x8, 0x4, 0x0, 0x0, @uid}]}, @generic="a2017d9ac975f8294450a6ff18bcf7a07f832dafc3bc120b3c67567dc44a1c09bd8ae6da62d6a9451b02b7ccc5d26629e8d3c4f35411b46865cf1091a8bd6977aaca034065", @typed={0x8, 0x110, 0x0, 0x0, @fd=r2}]}, @THERMAL_GENL_ATTR_CDEV_ID={0x8, 0xf, 0x1}, @THERMAL_GENL_ATTR_CPU_CAPABILITY_ID={0x8, 0x15, 0x6}, @THERMAL_GENL_ATTR_TZ_GOV_NAME={0xb, 0xd, '[)*.$@\''}, @THERMAL_GENL_ATTR_CDEV={0x138, 0xe, 0x0, 0x1, [@nested={0x131, 0x7b, 0x0, 0x1, [@nested={0x4, 0x33}, @generic="1d9564b5c7e47887c454981351e58d9f1351b2ca266b9c51887694e8ebe07c3562364577afc9cb3d03eec77ab79c71fb1268c3b6facf6bb49bd218d1804b249882ac5cbdc16acb78f97a478fd5f72ca18535636f2e61ce323cf333f655976b4592d3d80333d184723e", @typed={0xb7, 0x82, 0x0, 0x0, @binary="bc43ae8d9f9713fcf43be92a962dd833998e952c95f8988af3a405c5ff791c236b37ec43add1419c2b32724a95d649ed9cb30cf5ddf07f607acd8d538545868a66ae7613c02abd92e678cec4ce9fa02eca1a188587ff7e769498291bba2bb9d0e1cac521a48e734bd15849667eb6c5ec25a1b97290508dce15d279d437f6892026928635cf0acb9dc41b6729cb5c87bd37997cfdf9b0c565f6dc900d9b45bf50a25b00f130a59cd38ac7a7f994faea8fb4911e"}, @typed={0x8, 0x113, 0x0, 0x0, @uid}]}]}, @THERMAL_GENL_ATTR_CPU_CAPABILITY={0xd5, 0x14, 0x0, 0x1, [@nested={0x8e, 0x13f, 0x0, 0x1, [@generic="29157a31107bd0b586b26f87f7533f7b894df8d4ac6cb1b4dbfed5182e7dfa280d008d4c6938663875c9867a609dcf538bd3b760d7423337d251c52041166dbcc4103b97ed05a2a45c421e4269128bc1ad39cf05a576c1ed18def3faac4c09d4b9b5ff839a197e9963da35ee4985fbae71b53b81a9c91ac4c0bbb377fb87c1b487fb7d8b432d", @nested={0x4, 0xd3}]}, @generic="db150329bc9932058b983e8f3e109d2c68882503759d8470cc83ca4cc000b3e598f4b386f79b71c0e38d9d4711d1eb385274d364cc1d387dd46cf12c314a803647"]}, @THERMAL_GENL_ATTR_CDEV_MAX_STATE={0x8, 0x11, 0x1}]}, 0x52c}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r4, &(0x7f0000001680)="a7", 0x80000) madvise$auto(0x0, 0x20200, 0x15) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x2, 0x0) msgctl$auto(0x7, 0xa3, &(0x7f0000000240)={{0x8, 0xee00, 0xee01, 0x5, 0xa, 0x0, 0xfe01}, 0x0, 0x0, 0x6, 0xd, 0x6, 0x31f4, 0x51c, 0x3, 0x1, 0x3, @inferred=0xffffffffffffffff, @raw=0x8}) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0) 11.939584247s ago: executing program 4 (id=901): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x7, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0x2, 0x5, 0x3, 0x40, 0x7, 0x20, 0x309, 0x6, 0x0, 0x7fffffff, 0x200000, 0x0, 0x0, 0xffffffff, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x800000000000, 0x9, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10]}, 0x1fb, 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), r0) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, r1, 0x20, 0x70bd25, 0x25dfdbfd, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, 0x4}, @L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0x3}]}, 0x40}}, 0x4008000) 5.439223941s ago: executing program 33 (id=878): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = io_uring_setup$auto(0x5, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x2001, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x4000000, 0xffffffffffff0085, 0x1004) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xfffffffffffffffd, 0x80040000d, 0x5, 0x9b72, r1, 0x8000) dup$auto(0xffffffffffffffff) timer_create$auto_CLOCK_MONOTONIC(0x1, &(0x7f0000000080)={@sival_int=0x41, @inferred=r0, 0x3ff}, &(0x7f0000000280)=0x27f) socket(0x2, 0x1, 0x106) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x4, 0xda, 0x948b, 0x0, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000005, 0x7, 0x4, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='A\x99k\xbf\x94/dev/au\x8cBo1\x00', 0x101) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x10000]}, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000000)="42bf466a98f4921b6c0a", 0xa) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r4, 0x400, 0x1) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0) execve$auto(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f0000000180)=""/253, 0xfd) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ff0b00fbf2ffff0000b401", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) ioctl$auto_FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000340)="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") openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) 4.430348192s ago: executing program 0 (id=920): alarm$auto(0x800) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=ANY=[@ANYBLOB="1451eb56665ccfeb35277e03a09ab97c02895fc85200ccafca2b486e0000008d50155f0677a1180f0eb37ebb14351852f3a83b4bee7377c67722802d2edfa299c0da84d8df3b11deb96ffad558dd5dea391426ae1088a5d3bdf30781bf4e3391503b215a062b9127668332cef97c8086daf01f13a3031ce1951fdda0d1a560c72921129e610193de0be3b0", @ANYRES32, @ANYBLOB="010027bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x8108}, 0x4046801) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x2, &(0x7f00000015c0)="d6ba95a34602d893e1d7cf088d808f2eaa5eff30fb44b8cb89c8cd785d57d814250f5962a7a32a32f21226a13ea122c675796125c7afdb7ce903799d19f5fc0a5a52d04ec0700c04aa98d56474a712764946b81db9b94605f3248e6c0903744369fa9638a9f44b40ec537cc08384c475bbf4be6c635cdef85f5b67dbfd816a4be06aa015f5d915600f9de7058efb405a387c7eb66787bf5c1b4b0e8f0c1c0a9c82699b11de0aba3bf33288c81c27555229b5ce3f885263ed2b0d4503f570e8dc8bfd37716dfe10e479cd74d061b3c10743fe1380bcac2028b8c2a3f09432388b08", 0x7, 0xa505}, 0x800}, 0x7, 0x400b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000040)) write$auto(r3, 0x0, 0xfffffdf1) linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x16e) mmap$auto(0x800000, 0x2000009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, 0x0) syz_clone3(&(0x7f0000001380)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x2d}, &(0x7f00000000c0)=""/127, 0x7f, &(0x7f0000000380)=""/4096, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, r6) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd0e, &(0x7f00000001c0)) process_vm_writev$auto(0x1, &(0x7f0000000200)={0x0, 0x4}, 0x8, &(0x7f0000002a40)={0x0, 0x7ffffffe}, 0x6, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x10000000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 3.178215465s ago: executing program 0 (id=932): alarm$auto(0x800) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=ANY=[@ANYBLOB="1451eb56665ccfeb35277e03a09ab97c02895fc85200ccafca2b486e0000008d50155f0677a1180f0eb37ebb14351852f3a83b4bee7377c67722802d2edfa299c0da84d8df3b11deb96ffad558dd5dea391426ae1088a5d3bdf30781bf4e3391503b215a062b9127668332cef97c8086daf01f13a3031ce1951fdda0d1a560c72921129e610193de0be3b0", @ANYRES32, @ANYBLOB="010027bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x8108}, 0x4046801) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x2, &(0x7f00000015c0)="d6ba95a34602d893e1d7cf088d808f2eaa5eff30fb44b8cb89c8cd785d57d814250f5962a7a32a32f21226a13ea122c675796125c7afdb7ce903799d19f5fc0a5a52d04ec0700c04aa98d56474a712764946b81db9b94605f3248e6c0903744369fa9638a9f44b40ec537cc08384c475bbf4be6c635cdef85f5b67dbfd816a4be06aa015f5d915600f9de7058efb405a387c7eb66787bf5c1b4b0e8f0c1c0a9c82699b11de0aba3bf33288c81c27555229b5ce3f885263ed2b0d4503f570e8dc8bfd37716dfe10e479cd74d061b3c10743fe1380bcac2028b8c2a3f09432388b08", 0x7, 0xa505}, 0x800}, 0x7, 0x400b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000040)) write$auto(r3, 0x0, 0xfffffdf1) linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x16e) mmap$auto(0x800000, 0x2000009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, 0x0) syz_clone3(&(0x7f0000001380)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x2d}, &(0x7f00000000c0)=""/127, 0x7f, &(0x7f0000000380)=""/4096, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, r6) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd0e, &(0x7f00000001c0)) process_vm_writev$auto(0x1, &(0x7f0000000200)={0x0, 0x4}, 0x8, &(0x7f0000002a40)={0x0, 0x7ffffffe}, 0x6, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x10000000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 3.172066458s ago: executing program 1 (id=933): alarm$auto(0x800) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=ANY=[@ANYBLOB="1451eb56665ccfeb35277e03a09ab97c02895fc85200ccafca2b486e0000008d50155f0677a1180f0eb37ebb14351852f3a83b4bee7377c67722802d2edfa299c0da84d8df3b11deb96ffad558dd5dea391426ae1088a5d3bdf30781bf4e3391503b215a062b9127668332cef97c8086daf01f13a3031ce1951fdda0d1a560c72921129e610193de0be3b0", @ANYRES32, @ANYBLOB="010027bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x8108}, 0x4046801) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x2, &(0x7f00000015c0)="d6ba95a34602d893e1d7cf088d808f2eaa5eff30fb44b8cb89c8cd785d57d814250f5962a7a32a32f21226a13ea122c675796125c7afdb7ce903799d19f5fc0a5a52d04ec0700c04aa98d56474a712764946b81db9b94605f3248e6c0903744369fa9638a9f44b40ec537cc08384c475bbf4be6c635cdef85f5b67dbfd816a4be06aa015f5d915600f9de7058efb405a387c7eb66787bf5c1b4b0e8f0c1c0a9c82699b11de0aba3bf33288c81c27555229b5ce3f885263ed2b0d4503f570e8dc8bfd37716dfe10e479cd74d061b3c10743fe1380bcac2028b8c2a3f09432388b08", 0x7, 0xa505}, 0x800}, 0x7, 0x400b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000040)) write$auto(r3, 0x0, 0xfffffdf1) linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x16e) mmap$auto(0x800000, 0x2000009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, 0x0) syz_clone3(&(0x7f0000001380)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x2d}, &(0x7f00000000c0)=""/127, 0x7f, &(0x7f0000000380)=""/4096, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, r6) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd0e, &(0x7f00000001c0)) process_vm_writev$auto(0x1, &(0x7f0000000200)={0x0, 0x4}, 0x8, 0x0, 0x6, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x10000000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 2.626680281s ago: executing program 0 (id=935): alarm$auto(0x800) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=ANY=[@ANYBLOB="1451eb56665ccfeb35277e03a09ab97c02895fc85200ccafca2b486e0000008d50155f0677a1180f0eb37ebb14351852f3a83b4bee7377c67722802d2edfa299c0da84d8df3b11deb96ffad558dd5dea391426ae1088a5d3bdf30781bf4e3391503b215a062b9127668332cef97c8086daf01f13a3031ce1951fdda0d1a560c72921129e610193de0be3b0", @ANYRES32, @ANYBLOB="010027bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x8108}, 0x4046801) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x2, &(0x7f00000015c0)="d6ba95a34602d893e1d7cf088d808f2eaa5eff30fb44b8cb89c8cd785d57d814250f5962a7a32a32f21226a13ea122c675796125c7afdb7ce903799d19f5fc0a5a52d04ec0700c04aa98d56474a712764946b81db9b94605f3248e6c0903744369fa9638a9f44b40ec537cc08384c475bbf4be6c635cdef85f5b67dbfd816a4be06aa015f5d915600f9de7058efb405a387c7eb66787bf5c1b4b0e8f0c1c0a9c82699b11de0aba3bf33288c81c27555229b5ce3f885263ed2b0d4503f570e8dc8bfd37716dfe10e479cd74d061b3c10743fe1380bcac2028b8c2a3f09432388b08", 0x7, 0xa505}, 0x800}, 0x7, 0x400b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000040)) write$auto(r3, 0x0, 0xfffffdf1) linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x16e) mmap$auto(0x800000, 0x2000009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, 0x0) syz_clone3(&(0x7f0000001380)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x2d}, &(0x7f00000000c0)=""/127, 0x7f, &(0x7f0000000380)=""/4096, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, r6) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd0e, &(0x7f00000001c0)) process_vm_writev$auto(0x1, &(0x7f0000000200)={0x0, 0x4}, 0x8, &(0x7f0000002a40)={0x0, 0x7ffffffe}, 0x6, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x10000000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 2.625971372s ago: executing program 1 (id=926): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000480)={'dummy0\x00', 0x0}) sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c00}, 0x4000000) sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r2, 0x0, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVKEY={0x16, 0x2f, 0x0, 0x1, [@generic="2f5a75a60bdfe0f440ed42e174ce2d12f2ad"]}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x101}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x100, 0x0) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) ioctl$auto_KVM_CREATE_VM(r5, 0x4048aecb, 0x0) 2.251697531s ago: executing program 1 (id=938): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r1) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000480)={'dummy0\x00', 0x0}) sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c00}, 0x4000000) sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r2, 0x0, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVKEY={0x16, 0x2f, 0x0, 0x1, [@generic="2f5a75a60bdfe0f440ed42e174ce2d12f2ad"]}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x101}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x100, 0x0) move_pages$auto(0x0, 0xd0, 0x0, 0x0, 0x0, 0x2) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) ioctl$auto_KVM_CREATE_VM(r5, 0x4048aecb, 0x0) 1.613704158s ago: executing program 5 (id=928): mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x2) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) ioctl$auto_UI_END_FF_ERASE(0xffffffffffffffff, 0x400c55cb, &(0x7f0000000080)={0x130, 0x8, 0x10001}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x2, 0x0) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) setgroups$auto(0x8, &(0x7f0000000000)=0x5) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0x400a507}, 0x800}, 0xa, 0x8) write$auto_proc_mem_operations_base(r0, &(0x7f0000000400)="94c5be883ae7ee95e2bff5f990f6f7249475e8960bf6c1ee8796193bfbd249c19c9460ea0c1c18bb983b84aebb8629e8e9e25558c9bfeb22ed79fdab8065d67eec271b56d08971f043224fe7604598e2506e785c6318c1b7696b10324d1e7db02961facdf9fab2640716f07dd1c617dcb6f1bb648821a53f78be14a6dc8f336e92e389609b991019c180950ed085b91123", 0x91) syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff) r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/block/loop9/hctx0/sched_tags_bitmap\x00', 0x101a00, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r3, &(0x7f0000000340)=""/179, 0xb3) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2900, 0x0) read$auto(r4, 0x0, 0x7) acct$auto(&(0x7f0000000000)='/dev/tty\x00`Mx\x9d\xfa\xb3\x1f\xc6k\x01\x13\x9b\x15[\xf7\xaan\x1fOgo\xbb(\xcbx\x9bJ\x91*\xa5a\x02\xf3\x1b\x9d\xddy\xef\xee\xe4h\xd5\nH\x80\x8a\xd7Y\xb8\xcb\x90') r5 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x3b, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x9, 0x3, 0xfffc, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0x1]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c001300fcdbbc2353f74fa9256563b979e41af25e403ec2c853d4662dc2477fb8ce947bdc0f5c0513ff03a03e2f969bf97ff8acf360d119aec1eb971d4cc78fc8e0d10db928bac2c9", @ANYRESHEX=r5], 0x3c}, 0x1, 0x0, 0x0, 0x8014}, 0x8000) 1.612886984s ago: executing program 0 (id=940): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0xffffffffffffffff, &(0x7f0000000180)='#\x00T\x8e\xf2\xd3U\x1c\vAZ\x84\xd8\x1ds{\xeaS3{\bC1\xff\xb8mw{\x00\x8d\xa2\x04R\xa47\x00\xaa\xe98\x92E&\x93\xe0%\xd4Xx\x10\xc6S<\xc7\xce\xbc8X\xebm\x15\x95I\xf1C\xc6\xf8\xb9\xc7_\x80\xbe', 0x81) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x20000800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x9, 0x21e9, 0x1, 0x2, 0x2, 0xb, 0x2e, 0x8000, 0x3}, 0x6f4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x11, 0x2, 0x14) unshare$auto(0x40000080) setfsgid$auto(0x9) unshare$auto(0x1) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0xffffff6c, 0x4, 0x8000000, 0x0) r0 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8955, 0x0) r1 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x181f82, 0x0) readv$auto(r1, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r2, @ANYBLOB="060006000500dfff08000d"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.611926431s ago: executing program 1 (id=929): unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x2ba2) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0xc) socket(0x2000000000000021, 0x2, 0x10000000000002) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x5, 0x84) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "3d64dc400201007f6100003f0024"}, 0x55) bpf$auto_BPF_TASK_FD_QUERY(0x14, 0x0, 0x80) 1.098271253s ago: executing program 5 (id=930): openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/error_log\x00', 0x618b83, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto_SO_PASSSEC(r0, 0x1, 0x22, &(0x7f0000007180)='%-&', &(0x7f00000071c0)=0x200) connect$auto(0x3, &(0x7f0000000080)=@generic={0x23, "ea00080000000400"}, 0x57) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x141603, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400) mmap$auto(0x0, 0x20009, 0x20000000000000e2, 0xeb1, 0x405, 0x8000) futex$auto(&(0x7f0000000380), 0xd, 0x4, &(0x7f0000000000)={0x200000000000a, 0x6}, 0x0, 0x8) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027"], 0x1ac}}, 0x40000) socket(0x2a, 0x1, 0xcd80) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x20a6, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x7, 0x0) socket(0xa, 0x2, 0x88) setsockopt$auto(0x3, 0x0, 0x22, 0x0, 0x10001) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) 1.015691361s ago: executing program 0 (id=931): openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/make-it-fail\x00', 0x40002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xa800, 0x0) (async) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xa800, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) (async) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x2b, 0x1, 0x0) ioctl$auto_TCSBRK2(r2, 0x5409, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) (async) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) r4 = geteuid() setresuid$auto(r4, r4, 0xee00) setrlimit$auto(0x6, &(0x7f0000000140)={0x0, 0x6}) mount$auto(&(0x7f0000000040), &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfs\x00\x00X\xca\xd8\xce\xc1\xfc\x9f\x9f?o;\xf7\xdf\x9f\x11\xc5\xea\xd9', 0x8, 0x0) (async) mount$auto(&(0x7f0000000040), &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfs\x00\x00X\xca\xd8\xce\xc1\xfc\x9f\x9f?o;\xf7\xdf\x9f\x11\xc5\xea\xd9', 0x8, 0x0) setresuid$auto(0x0, 0x8, 0x8000) timerfd_gettime$auto(r0, &(0x7f0000000040)={{0x8, 0x5}, {0x7, 0x79e3}}) (async) timerfd_gettime$auto(r0, &(0x7f0000000040)={{0x8, 0x5}, {0x7, 0x79e3}}) madvise$auto(0x0, 0x200007, 0x19) (async) madvise$auto(0x0, 0x200007, 0x19) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video8\x00', 0x802, 0x0) (async) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video8\x00', 0x802, 0x0) write$auto(r5, &(0x7f0000000100)='\x00\x00\x00\x00\x00\xf2\x1e\xadp@f\x1b\xd9\xfb\xfa?$B\xcer\xec\xb2!\xdb\xd1\xcaA\b6q\xf6\x17[\xac;\xe9\xe5\fp\xef\xec\x1a\vt\xae\x86l\xb5k{\x0f\x9e\na\x02v\xe8/\xe1t\xcd\x9aT\xee\xbb\xb1\x04o\x8e\x13\'b\xc5\xf5\x03\x98\f:\x92T(i2U\x84\xbbW\']~\x8b,\x96\x12\xbb4\xfa\xb3X\x17u\xc2\xa8\x01\x92\xf3\xef^\x16w6\xc8\xb6\xe0Y\x01v\xb8\xe1\xcc\xb8d\x98\xdd4\x0f\x9f9c\xa5\xb9\x8d$&H\'\x9e\x80\xa0', 0x100000001) (async) write$auto(r5, &(0x7f0000000100)='\x00\x00\x00\x00\x00\xf2\x1e\xadp@f\x1b\xd9\xfb\xfa?$B\xcer\xec\xb2!\xdb\xd1\xcaA\b6q\xf6\x17[\xac;\xe9\xe5\fp\xef\xec\x1a\vt\xae\x86l\xb5k{\x0f\x9e\na\x02v\xe8/\xe1t\xcd\x9aT\xee\xbb\xb1\x04o\x8e\x13\'b\xc5\xf5\x03\x98\f:\x92T(i2U\x84\xbbW\']~\x8b,\x96\x12\xbb4\xfa\xb3X\x17u\xc2\xa8\x01\x92\xf3\xef^\x16w6\xc8\xb6\xe0Y\x01v\xb8\xe1\xcc\xb8d\x98\xdd4\x0f\x9f9c\xa5\xb9\x8d$&H\'\x9e\x80\xa0', 0x100000001) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000) write$auto(0x3, 0x0, 0xfffffdef) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) set_mempolicy_home_node$auto(0x600000, 0xffffffffffffffff, 0x0, 0x0) socket(0x2, 0x5, 0x0) 949.880525ms ago: executing program 1 (id=934): r0 = timerfd_create$auto_CLOCK_BOOTTIME_ALARM(0x9, 0x8001) bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f00000003c0)=@prog_bind_map={0xffffffffffffffff, r0, 0x6}, 0x1a) mmap$auto(0x0, 0x2020009, 0x4000000005, 0x800000000eb1, 0xffffffffffffffff, 0x2008000) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xf7s\x1cJ\x99\xaa6b\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15Bl@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;C\xa3\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x00'/97, 0x7, 0x3) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x3c3c00, 0x0) close_range$auto(r2, 0xfffffffffffff000, 0x6) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x32240, 0x0) io_uring_register$auto_IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, 0x0, 0x5) sendmsg$auto_OVS_FLOW_CMD_NEW(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24008890}, 0x4000044) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0x4, 0xfffffffd, 0x7ffc, 0x0) shutdown$auto(r1, 0x2) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x181482, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSTI2(r3, 0x545c, 0x0) ioctl$auto_MEMGETREGIONCOUNT(0xffffffffffffffff, 0x80044d07, 0x0) ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_LINK(0xffffffffffffffff, 0x40044160, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x40603d10, 0x0) shutdown$auto(0xffffffffffffffff, 0xa) utimes$auto(0x0, &(0x7f0000000080)={0x3a, 0x8000000000000001}) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/slabinfo\x00', 0x357740, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/can/rcvlist_eff\x00', 0xb00, 0x0) r4 = memfd_secret$auto(0x0) fcntl$auto(r4, 0x6, 0xffffffffffffffff) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, r1, 0x4000000000008000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) 795.97053ms ago: executing program 5 (id=936): alarm$auto(0x800) sendmsg$auto_L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=ANY=[@ANYBLOB="1451eb56665ccfeb35277e03a09ab97c02895fc85200ccafca2b486e0000008d50155f0677a1180f0eb37ebb14351852f3a83b4bee7377c67722802d2edfa299c0da84d8df3b11deb96ffad558dd5dea391426ae1088a5d3bdf30781bf4e3391503b215a062b9127668332cef97c8086daf01f13a3031ce1951fdda0d1a560c72921129e610193de0be3b0", @ANYRES32, @ANYBLOB="010027bd7000fedbdf2507000000"], 0x14}, 0x1, 0x0, 0x0, 0x8108}, 0x4046801) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000", @ANYBLOB="1e"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x2, &(0x7f00000015c0)="d6ba95a34602d893e1d7cf088d808f2eaa5eff30fb44b8cb89c8cd785d57d814250f5962a7a32a32f21226a13ea122c675796125c7afdb7ce903799d19f5fc0a5a52d04ec0700c04aa98d56474a712764946b81db9b94605f3248e6c0903744369fa9638a9f44b40ec537cc08384c475bbf4be6c635cdef85f5b67dbfd816a4be06aa015f5d915600f9de7058efb405a387c7eb66787bf5c1b4b0e8f0c1c0a9c82699b11de0aba3bf33288c81c27555229b5ce3f885263ed2b0d4503f570e8dc8bfd37716dfe10e479cd74d061b3c10743fe1380bcac2028b8c2a3f09432388b08", 0x7, 0xa505}, 0x800}, 0x7, 0x400b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0xc0189436, 0x0) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r4, 0x80045104, &(0x7f0000000040)) write$auto(r3, 0x0, 0xfffffdf1) linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) fcntl$auto_F_OFD_GETLK(r1, 0x24, 0x16e) mmap$auto(0x800000, 0x2000009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, 0x0) syz_clone3(&(0x7f0000001380)={0x400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0, {0x2d}, &(0x7f00000000c0)=""/127, 0x7f, &(0x7f0000000380)=""/4096, &(0x7f0000000140)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, r6) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd0e, &(0x7f00000001c0)) process_vm_writev$auto(0x1, &(0x7f0000000200)={0x0, 0x4}, 0x8, 0x0, 0x6, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r7, r7, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x0, 0x7, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3043, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x10000000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 277.890674ms ago: executing program 5 (id=937): close_range$auto(0x2, 0x8, 0xfffffffc) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fb1\x00', 0x24402, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)="75ffea0200") openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x2ae440, 0x0) r1 = pidfd_open$auto(0x0, 0x8) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) (async) socket(0xa, 0x801, 0x106) (async, rerun: 64) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64) arch_prctl$auto(0x1021, 0x3) mmap$auto(0x0, 0x6, 0x80000000971c, 0x9b72, 0x2, 0x8000) (async) socket(0x28, 0x1, 0x0) (async) r2 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) (async) close_range$auto(0x2, 0x8, 0x0) (async) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r3) (async) ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x345, 0x400, 0xffffffffffffffff}]}) (async) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async) close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async) memfd_create$auto(0x0, 0xe) (async) socket(0x2, 0x1, 0x106) (async) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/pci0000:00/0000:00:03.0/irq\x00', 0x80100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/4096, 0x1000) bind$auto(0x3, 0x0, 0x408) setsockopt$auto(0x3, 0x6, 0x4, 0x0, 0xfb3) (async) setsockopt$auto(0x3, 0x9, 0x9, 0x0, 0xfb3) ioctl$auto(0x3, 0xae64, 0x38) 93.706722ms ago: executing program 5 (id=939): socket(0x10, 0x2, 0x0) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100f9020000fbdbdf250100000008000b00ac141420080001"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socket(0x11, 0x3, 0x9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xfffffffffffffffd, 0x40000008000) r1 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x8) getcwd$auto(0x0, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r2 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0xa, 0x5, 0x0) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0x4000e6e) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0) socket(0xa, 0x2, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) readv$auto(0x3, 0x0, 0x1) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r1) sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f00000003c0)={0x2f0, r5, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NBD_ATTR_DEVICE_LIST={0x1c2, 0x9, 0x0, 0x1, [@generic="ebee5b3796adb49405da16b1955c09bbf4164276c781848d85809c3ed18cf29c590fa4cfdd5b9be4bf6a77ddca46fc705267b5c83a9e7aef8d85325aa8f3cb87639a77bd40bcbd2aaf7ebfb5fd1d1c262c736253d6264b4bcb3f50d6", @generic="ee5d8a1f2ecbd96da972c715fe70f37617302f4b375013fc2fcd01489c11c55e93", @generic="2661b37289f224e8e51959ba2b5f75cb4cd43e31237591a7093fc9dfb6028f3c", @nested={0x6a, 0xf6, 0x0, 0x1, [@nested={0x4, 0xc7}, @generic="efefb4020104e00c64f2c53c406a9cc409a8d0f0b2404264e72ca14c287b2f0bab6a109ef00835d4327f51adb0896c252518386f13a92d6fd39a03ef9489e03176461bcc470dc73a725136cf172d38fff6aa", @generic, @nested={0x4, 0xec}, @typed={0xc, 0x111, 0x0, 0x0, @u64=0x4}]}, @generic="8ad2a7f8384e6935525b7848d11810d12f46ec084c1e186bd274dc0096294a10585a7997741e628fbb5a77c6df772af83743019cfac5dfadac087945db85a0ea7e0b8c822b1199b6ac2c72177afba20e1983ee209cf95edf7e3da225c8676ed8ba69e9930978ec6c8ca1ae66cf51abca47f55a75aa9d2dc791ff113405ad79bd2ca471c6b02d5acbcf4b33a93e069afe2b01d2334c0eec8dfe8d0037b167632449113aece8a3e5b0595061c8c19a43cc435eb32ff0"]}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x5c0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_BACKEND_IDENTIFIER={0x6, 0xa, '-\x00'}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1000}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_INDEX={0x8, 0x1, 0x1}, @NBD_ATTR_SOCKETS={0xcc, 0x7, 0x0, 0x1, [@typed={0x73, 0x87, 0x0, 0x0, @binary="78db610af4ba51f15acf4b432a57e3daa7d0c83d3ed288c2a5ea6098af344ef8670e4d1cf8c9e7dfa860598536ffb391104528b2676ad10c0c23e9321e0f7abac91d7f53652d49474ad2ce21fafa23da69ddc6f6582123093d5d776cf476cf4b29be16e8ec65b1974a1993eed17332"}, @nested={0x1c, 0x5e, 0x0, 0x1, [@nested={0x4, 0x33}, @typed={0x14, 0x73, 0x0, 0x0, @ipv6=@private1}]}, @generic="2347493eb98e472911fd0ffb44a56a379ba05a2cd8d441357a217cc6a3420eab886e219330e55780e1ab5c50aeab2893ae38b85116d297e4"]}]}, 0x2f0}, 0x1, 0x0, 0x0, 0x40004}, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r3], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082) write$auto(r4, &(0x7f0000000000)='-\x00', 0xfdef) 67.836057ms ago: executing program 0 (id=941): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop13\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) timer_create$auto(0x0, 0x0, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) mmap$auto(0x6, 0x4, 0x4000000000dd, 0x40eb1, r1, 0x300000000000) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) sched_getscheduler$auto(0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r5 = geteuid() msgctl$auto_IPC_SET(0xaf9, 0x1, &(0x7f0000000300)={{0xa27, 0xee01, 0xffffffffffffffff, 0x81, 0x8001, 0xfffff729, 0x43e}, &(0x7f0000000140)=0x6, &(0x7f00000002c0)=0x1, 0x6, 0x3, 0x8, 0x3, 0x6, 0x5, 0x75a0, 0x5, @raw=0xb1aa}) r7 = bpf$auto_BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000380)=@link_detach={r4}, 0x7fff) r8 = wait4$auto(0x0, &(0x7f0000000440)=0x4, 0x0, &(0x7f0000000480)={{0x1, 0x86}, {0x9, 0x4}, 0x4, 0x2, 0x2, 0x8, 0x4ca, 0x6, 0x200, 0xfffffffffffffffe, 0xbaa9, 0x8, 0x8000000000000000, 0x5, 0x9, 0x3}) sendmsg$auto_NL80211_CMD_LEAVE_OCB(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000840)={0x15e4, 0x0, 0x0, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_KEY_SEQ={0x7, 0xa, "107c4c"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "5b43075596bae7e4abe7258e6ad24c9561e58a18ba1717b2"}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x3}, @NL80211_ATTR_WIPHY_TXQ_PARAMS={0x15a4, 0x25, 0x0, 0x1, [@generic="bcdfad4305403bdad85e0f3fcdbbffe9bd49d8b593c809118bea23f34249e8e4e23c437a52eb43e0c9aa8f433b2c5bb6f9ac8ab47cc7ee400e3120ea903267cd376e7a098dc68ba2938c53da3b6631c5cdf56f9753384071dee7f996e2402d1a863febab3eb9052b381e1c2c4654cfda05f409c45eb7ab8e99d721593f61b931590a52ebaf8613a137a67cce610c76eb14d449d724949a8dd89b94c14167fa716082b8a362b249e9c461360fb694e492782c834caaddde21f7a991", @generic="7c0fd2e39ac694ed64ff8e4a81b11e31777813955ba29f492742dfce428d255fcd4ed9e8726a8411a0873f27834ebd4efb8328e69cb0c9a2e604ab46fde0b3e1643d58457fafcdd22e82b70e3daddaf32165c48ee1822838a60b176993a8f0be9ed12cfc46af7f74d7b926e82d8890c503c427a9bb2570f3707732621ca5e0b47635eda1b029d76086f48e139ec2529d31118b507b7c302319205712f0f19c22fbdf0207ac6645fb4dee6ed0484883f229fa8879bb0e73f3408b0c7c6bc38c855ffcde05ef9e97ee2e2350b24d5dfda2bbb957ad7505d8f896", @typed={0x8, 0x1a, 0x0, 0x0, @uid=r5}, @typed={0x8, 0xf0, 0x0, 0x0, @uid=r6}, @generic="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", @nested={0x47, 0xc, 0x0, 0x1, [@typed={0x7, 0x35, 0x0, 0x0, @str='%+\x00'}, @nested={0x4, 0x26}, @nested={0x4, 0x143}, @typed={0x5, 0x67, 0x0, 0x0, @str='\x00'}, @generic="8101f4eaa49f098d03fef1b164081f", @typed={0x14, 0x43, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0xca}, @nested={0x4, 0x150}]}, @nested={0x1c4, 0x4, 0x0, 0x1, [@nested={0x4, 0xc1}, @nested={0x4, 0x3}, @nested={0x4, 0x87}, @typed={0x8, 0x10a, 0x0, 0x0, @fd=r2}, @nested={0x4, 0x2b}, @generic="cb21f180c4b09692115ccd4eb7532db365d3160edcf96e2ce5eed7811a9d1eab01d99b6fb252efdb4c7594b447f0efe335f2b290c1485911114281c0b64f13e7b56a18e1bc950f0749955c45721a9dc47e51316d087dc9bbda11f96fdce272a5de97f24ec1136a3c5b8c74c9d5e31d4706332f48ba4cb3cf0c6e0f89f8055f15403e06976704834668c8ff9c9b3494f846b492a9fc1198446f293cc602f8293eaabb215764cda0dace9f265faa11280c3dea084be32ad1cada5f933cef9fc24350af3774c8bfc896c133468cc389c67b524fe4936b38a38c9c9665e2bd991cda086d7e43f4ed0a05f181d3c3bfb565f0", @generic="00f69caf3720e1d4016365a58b900a4fb2b60054c62f163c2d5209d241cb3f339fc8df92cde0609979408129ec6d0e3ee997e256f208e55b3cf992582ed61794d81d009dd7de3fd5e3321740a0a2ce0af425797f97528d111e3da7396474cf552dfd1b1ca7e4d33fb3a0ffb199ab0cd100c8bd971e221bb3fe368c637fd3aad413e5fd7abc56f6bf395eb482a42515b5303ca4f152", @nested={0x4, 0x4c}, @generic="07a427313a8ee69b7b781df4428a9121287c43fc37c7aeb1a85c33eb977a6e"]}, @nested={0x1ef, 0xfb, 0x0, 0x1, [@typed={0x8d, 0x2d, 0x0, 0x0, @binary="7772ddde8258fde72f7ed95d3f8b369978af2dfda7ff804156e88dafa6dfa2bb8b1ae1ade459e5628c39e2eb9c699ae93d0202ed7726dd0640783a0222d16e4afeec843fc664dd8575820d466cd509e752728a4137320704c388dfd1cbac9803819720475211296026d0d6d3edd7eb85148cc08a155c390588c5f3b702887abce6aa82f531390c9a27"}, @generic="e556980586654f19de94ae2d03b221f706ceb3176cc21aaefa36e97d0df99ccd9c542e64586e1a8665d4d9c632eaaa062a4e98b897d7a6777996b602945a5a275c8d901fd34c6b57052e0eeebd8d800100383ff76f25b0930feae35754f5a6a490244e3bcadde63b82", @typed={0xe, 0xff, 0x0, 0x0, @str='/dev/tty0\x00'}, @nested={0x4, 0x104}, @typed={0x8, 0x119, 0x0, 0x0, @fd=r7}, @nested={0x4, 0x3b}, @generic="b30367088112fc13ab124a3fedf6c20907d70a539a965ec00e0d423c34773a2c9c4d0b43408cf99992adcdc5d926cb9e40a74f247636ae6932205c9f8dc69505166b2bc158a7b097a0eb05e42a1f1652d5b4c0e6d58b04ece062713a8c45e3f00ceeed0d78a57ad872b7976344ba0518f870618e8e9c2c627830bb2025abacb1905028f26368369660f5820e7bed47378703acb70608cedc1e6aef3a87a1cccbf0f82e098fa67997cf96f205ee287a687321d5f3c1fd412001b2d2eb0340", @typed={0x8, 0x85, 0x0, 0x0, @pid=r8}, @typed={0x8, 0xb9, 0x0, 0x0, @fd=r3}, @nested={0x4, 0x6}]}]}]}, 0x15e4}, 0x1, 0x0, 0x0, 0x48000}, 0x40000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) 28.671149ms ago: executing program 1 (id=942): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x4, 0x7fffffffffffffff, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) keyctl$auto(0x8, 0xfffffffe, 0xffffffffffffffff, 0x0, 0x7) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) unshare$auto(0x40000080) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D2\x00', 0x80980, 0x0) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, r1, 0x8000) socket(0x23, 0x1, 0x9) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002ca4706b67dbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x30004894) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}, 0x1, 0x0, 0x0, 0x20000004}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x240048d0}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xb}, 0x6}, 0x3, 0x4000080) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)="b2", 0x1) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r0, r3, 0x0, 0x1) r4 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x3, 0xebe, 0x401, 0x8001) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000000), r4) capset$auto(&(0x7f0000000140)={0x400003, 0x0}, &(0x7f00000001c0)={0xdc3, 0xfffffffb, 0x11}) getpriority$auto_PRIO_PGRP(0x1, r5) setsockopt$auto(0x3, 0x1, 0x48, 0x0, 0x9) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2000, 0x0) 0s ago: executing program 5 (id=943): rseq$auto(&(0x7f0000000200)={0xe, 0x400, 0xfb82, 0xfc, 0xffffffff, 0x200}, 0x8000, 0x0, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) mmap$auto(0x200000004, 0x400008, 0x2000000000df, 0x9b72, 0xffffffffffffffff, 0x8001) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x0, 0x20, 0x0, 0x28) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_RNDADDENTROPY2(r2, 0x40085203, 0x0) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r1) write$auto_bm_register_operations_binfmt_misc(r0, &(0x7f0000000440)="3a0556029d1b531b485b34574d8bce9ee04d400cee3a8b6daf1684d63daf6285dc5b458d793d6a14bd99ef46ce95cd400a1ab840c6252ac19e4d897a92288dc91e25231f11e6c5942112add033c612dd0a89a4aac8258da0cce03663b2f7cd06798d5146ae92ab38f65bc0d1311728b2bfa82d482dc34e48af7fedc7ddb05516524569ed3b7becf68240e8aaa83df6cc445afe8687c66979b79fddf24b728f1d0a6273c8f6c51a75685a9930ddb18053bfde1f", 0xb3) ioctl$auto_BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000001200)=0x7) sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, 0x0, 0x14) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) rseq$auto(&(0x7f0000000080)={0x2, 0x8000, 0x8, 0x9, 0x0, 0x87f6, "673216515d7be48345cbe356a7e38f879103fa46a8ef06e2b6477dfee98d833c80756496d56ec30050f74ef5318fe2c742c87fb125c414dab1f492a6971fd551888b95be3a000c53e27facc71cf6a64a4c4fe3d3c4b5fac11e0c2d9c9b2beb10bd01fb5df7047fc2e3fdb069e958acf770e8ffa9e2f65e09d2"}, 0x7, 0xfffffffa, 0x80000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, &(0x7f0000000300)={[0x1ff, 0x5, 0xd, 0xfffffffffffff4d6, 0x948b, 0x3, 0x15f4da0e, 0x3, 0x0, 0x9, 0x80000001, 0x1000, 0x1, 0x9, 0x3, 0x1]}, 0x0) write$auto(r3, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0) r4 = setfsuid$auto(0xee01) getpriority$auto_PRIO_USER(0x2, r4) lstat$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000500)={0x6f, 0x1, 0x8, 0x3, r4, 0xee00, 0x0, 0x6, 0x722, 0x9, 0x7, 0x1, 0x3, 0x102c8ebe2a, 0x7c1, 0x1, 0x4}) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r5, 0x0, 0xfffffdef) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) kernel console output (not intermixed with test programs): 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.159081][ T7275] RSP: 002b:00007f499edf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 143.159110][ T7275] RAX: ffffffffffffffda RBX: 00007f49a0de6090 RCX: 00007f49a0b8f6c9 [ 143.159125][ T7275] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 143.159140][ T7275] RBP: 00007f499edf6090 R08: 0000000000000000 R09: 0000000000000000 [ 143.159153][ T7275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 143.159167][ T7275] R13: 00007f49a0de6128 R14: 00007f49a0de6090 R15: 00007fff230ae7c8 [ 143.159208][ T7275] [ 143.424716][ C0] vkms_vblank_simulate: vblank timer overrun [ 143.475458][ T7281] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 143.484885][ T7281] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[7281] [ 144.020639][ T7295] random: crng reseeded on system resumption [ 144.058856][ T7291] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 144.101652][ T7291] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7291] [ 145.227121][ T7328] FAULT_INJECTION: forcing a failure. [ 145.227121][ T7328] name failslab, interval 1, probability 0, space 0, times 0 [ 145.276458][ T7328] CPU: 0 UID: 0 PID: 7328 Comm: syz.2.315 Not tainted syzkaller #0 PREEMPT(full) [ 145.276497][ T7328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 145.276510][ T7328] Call Trace: [ 145.276518][ T7328] [ 145.276529][ T7328] dump_stack_lvl+0x16c/0x1f0 [ 145.276560][ T7328] should_fail_ex+0x512/0x640 [ 145.276601][ T7328] should_failslab+0xc2/0x120 [ 145.276634][ T7328] __kmalloc_cache_noprof+0x72/0x780 [ 145.276682][ T7328] ? sctp_add_bind_addr+0xae/0x3f0 [ 145.276714][ T7328] ? sctp_add_bind_addr+0xae/0x3f0 [ 145.276736][ T7328] ? sctp_get_af_specific+0x38/0x70 [ 145.276765][ T7328] sctp_add_bind_addr+0xae/0x3f0 [ 145.276800][ T7328] sctp_copy_local_addr_list+0x349/0x550 [ 145.276834][ T7328] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 145.276868][ T7328] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 145.276901][ T7328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 145.276944][ T7328] sctp_bind_addr_copy+0xe0/0x530 [ 145.276978][ T7328] sctp_connect_new_asoc+0x1c9/0x770 [ 145.277015][ T7328] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 145.277055][ T7328] ? __ipv6_addr_type+0x225/0x300 [ 145.277078][ T7328] ? __ipv6_addr_type+0x225/0x300 [ 145.277105][ T7328] __sctp_connect+0x3f3/0xc60 [ 145.277145][ T7328] ? do_raw_spin_lock+0x12c/0x2b0 [ 145.277184][ T7328] ? __pfx___sctp_connect+0x10/0x10 [ 145.277221][ T7328] ? __pfx_sctp_inet_connect+0x10/0x10 [ 145.277256][ T7328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 145.277298][ T7328] ? __pfx_sctp_inet_connect+0x10/0x10 [ 145.277331][ T7328] sctp_inet_connect+0x15f/0x200 [ 145.277368][ T7328] __sys_connect_file+0x141/0x1a0 [ 145.277408][ T7328] __sys_connect+0x13b/0x160 [ 145.277442][ T7328] ? __pfx___sys_connect+0x10/0x10 [ 145.277490][ T7328] ? __pfx_ksys_write+0x10/0x10 [ 145.277526][ T7328] __x64_sys_connect+0x72/0xb0 [ 145.277559][ T7328] ? lockdep_hardirqs_on+0x7c/0x110 [ 145.277586][ T7328] do_syscall_64+0xcd/0xfa0 [ 145.277617][ T7328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.277643][ T7328] RIP: 0033:0x7fe02498f6c9 [ 145.277670][ T7328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.277693][ T7328] RSP: 002b:00007fe025841038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 145.277716][ T7328] RAX: ffffffffffffffda RBX: 00007fe024be6090 RCX: 00007fe02498f6c9 [ 145.277732][ T7328] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 145.277747][ T7328] RBP: 00007fe025841090 R08: 0000000000000000 R09: 0000000000000000 [ 145.277765][ T7328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 145.277780][ T7328] R13: 00007fe024be6128 R14: 00007fe024be6090 R15: 00007ffdac8d9278 [ 145.277816][ T7328] [ 145.784911][ T7332] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 145.794162][ T7332] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[7332] [ 147.045442][ T7352] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 147.062389][ T7352] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7352] [ 148.646459][ T7369] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 148.741584][ T7373] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7373] [ 148.924687][ T7382] binder: 7381:7382 ioctl c0306201 200000000000 returned -11 [ 149.581703][ T7397] FAULT_INJECTION: forcing a failure. [ 149.581703][ T7397] name failslab, interval 1, probability 0, space 0, times 0 [ 149.602034][ T7397] CPU: 0 UID: 0 PID: 7397 Comm: syz.3.333 Not tainted syzkaller #0 PREEMPT(full) [ 149.602068][ T7397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 149.602082][ T7397] Call Trace: [ 149.602090][ T7397] [ 149.602100][ T7397] dump_stack_lvl+0x16c/0x1f0 [ 149.602133][ T7397] should_fail_ex+0x512/0x640 [ 149.602171][ T7397] should_failslab+0xc2/0x120 [ 149.602202][ T7397] __kmalloc_cache_noprof+0x72/0x780 [ 149.602240][ T7397] ? sctp_add_bind_addr+0xae/0x3f0 [ 149.602265][ T7397] ? __sctp_v6_cmp_addr+0x206/0x530 [ 149.602297][ T7397] ? sctp_add_bind_addr+0xae/0x3f0 [ 149.602321][ T7397] sctp_add_bind_addr+0xae/0x3f0 [ 149.602359][ T7397] sctp_copy_local_addr_list+0x349/0x550 [ 149.602395][ T7397] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 149.602429][ T7397] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 149.602461][ T7397] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 149.602501][ T7397] sctp_bind_addr_copy+0xe0/0x530 [ 149.602532][ T7397] sctp_connect_new_asoc+0x1c9/0x770 [ 149.602565][ T7397] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 149.602600][ T7397] ? __ipv6_addr_type+0x225/0x300 [ 149.602621][ T7397] ? __ipv6_addr_type+0x225/0x300 [ 149.602647][ T7397] __sctp_connect+0x3f3/0xc60 [ 149.602682][ T7397] ? do_raw_spin_lock+0x12c/0x2b0 [ 149.602717][ T7397] ? __pfx___sctp_connect+0x10/0x10 [ 149.602751][ T7397] ? __pfx_sctp_inet_connect+0x10/0x10 [ 149.602786][ T7397] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 149.602825][ T7397] ? __pfx_sctp_inet_connect+0x10/0x10 [ 149.602849][ T7397] sctp_inet_connect+0x15f/0x200 [ 149.602882][ T7397] __sys_connect_file+0x141/0x1a0 [ 149.602926][ T7397] __sys_connect+0x13b/0x160 [ 149.602955][ T7397] ? __pfx___sys_connect+0x10/0x10 [ 149.602998][ T7397] ? __pfx_ksys_write+0x10/0x10 [ 149.603031][ T7397] __x64_sys_connect+0x72/0xb0 [ 149.603061][ T7397] ? lockdep_hardirqs_on+0x7c/0x110 [ 149.603088][ T7397] do_syscall_64+0xcd/0xfa0 [ 149.603116][ T7397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.603141][ T7397] RIP: 0033:0x7f3efbd8f6c9 [ 149.603160][ T7397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 149.603182][ T7397] RSP: 002b:00007f3efcbcf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 149.603205][ T7397] RAX: ffffffffffffffda RBX: 00007f3efbfe6090 RCX: 00007f3efbd8f6c9 [ 149.603221][ T7397] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 149.603235][ T7397] RBP: 00007f3efcbcf090 R08: 0000000000000000 R09: 0000000000000000 [ 149.603249][ T7397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 149.603262][ T7397] R13: 00007f3efbfe6128 R14: 00007f3efbfe6090 R15: 00007ffcd7ab4e58 [ 149.603296][ T7397] [ 149.609537][ T7399] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 149.938936][ T7399] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7399] [ 150.864076][ T7428] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 150.885663][ T7423] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7423] [ 151.442365][ T7444] netlink: 'syz.3.344': attribute type 10 has an invalid length. [ 151.470741][ T7444] netlink: 330 bytes leftover after parsing attributes in process `syz.3.344'. [ 151.699557][ T7443] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 151.704194][ T7443] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7443] [ 151.996636][ T7454] FAULT_INJECTION: forcing a failure. [ 151.996636][ T7454] name failslab, interval 1, probability 0, space 0, times 0 [ 151.996699][ T7454] CPU: 1 UID: 0 PID: 7454 Comm: syz.3.347 Not tainted syzkaller #0 PREEMPT(full) [ 151.996729][ T7454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 151.996743][ T7454] Call Trace: [ 151.996751][ T7454] [ 151.996760][ T7454] dump_stack_lvl+0x16c/0x1f0 [ 151.996793][ T7454] should_fail_ex+0x512/0x640 [ 151.996837][ T7454] should_failslab+0xc2/0x120 [ 151.996870][ T7454] __kmalloc_cache_noprof+0x72/0x780 [ 151.996910][ T7454] ? sctp_add_bind_addr+0xae/0x3f0 [ 151.996935][ T7454] ? __sctp_v6_cmp_addr+0x206/0x530 [ 151.996969][ T7454] ? sctp_add_bind_addr+0xae/0x3f0 [ 151.996994][ T7454] sctp_add_bind_addr+0xae/0x3f0 [ 151.997024][ T7454] sctp_copy_local_addr_list+0x349/0x550 [ 151.997059][ T7454] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 151.997094][ T7454] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 151.997126][ T7454] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 151.997177][ T7454] sctp_bind_addr_copy+0xe0/0x530 [ 151.997213][ T7454] sctp_connect_new_asoc+0x1c9/0x770 [ 151.997251][ T7454] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 151.997292][ T7454] ? __ipv6_addr_type+0x225/0x300 [ 151.997314][ T7454] ? __ipv6_addr_type+0x225/0x300 [ 151.997343][ T7454] __sctp_connect+0x3f3/0xc60 [ 151.997381][ T7454] ? do_raw_spin_lock+0x12c/0x2b0 [ 151.997421][ T7454] ? __pfx___sctp_connect+0x10/0x10 [ 151.997458][ T7454] ? __pfx_sctp_inet_connect+0x10/0x10 [ 151.997494][ T7454] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 151.997537][ T7454] ? __pfx_sctp_inet_connect+0x10/0x10 [ 151.997570][ T7454] sctp_inet_connect+0x15f/0x200 [ 151.997607][ T7454] __sys_connect_file+0x141/0x1a0 [ 151.997648][ T7454] __sys_connect+0x13b/0x160 [ 151.997682][ T7454] ? __pfx___sys_connect+0x10/0x10 [ 151.997731][ T7454] ? __pfx_ksys_write+0x10/0x10 [ 151.997766][ T7454] __x64_sys_connect+0x72/0xb0 [ 151.997799][ T7454] ? lockdep_hardirqs_on+0x7c/0x110 [ 151.997826][ T7454] do_syscall_64+0xcd/0xfa0 [ 151.997857][ T7454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.997882][ T7454] RIP: 0033:0x7f3efbd8f6c9 [ 151.997902][ T7454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.997925][ T7454] RSP: 002b:00007f3efcbcf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 151.997949][ T7454] RAX: ffffffffffffffda RBX: 00007f3efbfe6090 RCX: 00007f3efbd8f6c9 [ 151.997966][ T7454] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 151.997981][ T7454] RBP: 00007f3efcbcf090 R08: 0000000000000000 R09: 0000000000000000 [ 151.997996][ T7454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 151.998009][ T7454] R13: 00007f3efbfe6128 R14: 00007f3efbfe6090 R15: 00007ffcd7ab4e58 [ 151.998046][ T7454] [ 152.759650][ T7469] capability: warning: `syz.3.351' uses 32-bit capabilities (legacy support in use) [ 153.231481][ T7476] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 153.262347][ T7476] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7476] [ 154.821776][ T7497] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 154.852226][ T7497] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7497] [ 155.064234][ T7505] FAULT_INJECTION: forcing a failure. [ 155.064234][ T7505] name failslab, interval 1, probability 0, space 0, times 0 [ 155.077035][ T7505] CPU: 0 UID: 0 PID: 7505 Comm: syz.0.360 Not tainted syzkaller #0 PREEMPT(full) [ 155.077066][ T7505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 155.077079][ T7505] Call Trace: [ 155.077086][ T7505] [ 155.077095][ T7505] dump_stack_lvl+0x16c/0x1f0 [ 155.077129][ T7505] should_fail_ex+0x512/0x640 [ 155.077170][ T7505] should_failslab+0xc2/0x120 [ 155.077204][ T7505] __kmalloc_cache_noprof+0x72/0x780 [ 155.077244][ T7505] ? sctp_add_bind_addr+0xae/0x3f0 [ 155.077269][ T7505] ? __sctp_v6_cmp_addr+0x206/0x530 [ 155.077302][ T7505] ? sctp_add_bind_addr+0xae/0x3f0 [ 155.077326][ T7505] sctp_add_bind_addr+0xae/0x3f0 [ 155.077357][ T7505] sctp_copy_local_addr_list+0x349/0x550 [ 155.077393][ T7505] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 155.077426][ T7505] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 155.077459][ T7505] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 155.077503][ T7505] sctp_bind_addr_copy+0xe0/0x530 [ 155.077535][ T7505] sctp_connect_new_asoc+0x1c9/0x770 [ 155.077568][ T7505] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 155.077603][ T7505] ? __ipv6_addr_type+0x225/0x300 [ 155.077623][ T7505] ? __ipv6_addr_type+0x225/0x300 [ 155.077648][ T7505] __sctp_connect+0x3f3/0xc60 [ 155.077682][ T7505] ? do_raw_spin_lock+0x12c/0x2b0 [ 155.077716][ T7505] ? __pfx___sctp_connect+0x10/0x10 [ 155.077749][ T7505] ? __pfx_sctp_inet_connect+0x10/0x10 [ 155.077785][ T7505] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 155.077823][ T7505] ? __pfx_sctp_inet_connect+0x10/0x10 [ 155.077855][ T7505] sctp_inet_connect+0x15f/0x200 [ 155.077890][ T7505] __sys_connect_file+0x141/0x1a0 [ 155.077928][ T7505] __sys_connect+0x13b/0x160 [ 155.077962][ T7505] ? __pfx___sys_connect+0x10/0x10 [ 155.078009][ T7505] ? __pfx_ksys_write+0x10/0x10 [ 155.078049][ T7505] __x64_sys_connect+0x72/0xb0 [ 155.078082][ T7505] ? lockdep_hardirqs_on+0x7c/0x110 [ 155.078109][ T7505] do_syscall_64+0xcd/0xfa0 [ 155.078140][ T7505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.078164][ T7505] RIP: 0033:0x7f88ed58f6c9 [ 155.078184][ T7505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 155.078207][ T7505] RSP: 002b:00007f88ee37b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 155.078231][ T7505] RAX: ffffffffffffffda RBX: 00007f88ed7e6090 RCX: 00007f88ed58f6c9 [ 155.078247][ T7505] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 155.078262][ T7505] RBP: 00007f88ee37b090 R08: 0000000000000000 R09: 0000000000000000 [ 155.078277][ T7505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 155.078291][ T7505] R13: 00007f88ed7e6128 R14: 00007f88ed7e6090 R15: 00007ffd1129ed48 [ 155.078328][ T7505] [ 155.603590][ T30] audit: type=1800 audit(4294967333.871:5): pid=7519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.364" name="lu_gp_id" dev="configfs" ino=17537 res=0 errno=0 [ 155.627474][ T7519] kstrtoul() returned -22 for lu_gp_id [ 155.815997][ T7526] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 155.835093][ T7512] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7512] [ 156.664328][ T7546] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 156.687976][ T7546] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7546] [ 157.463660][ T7570] FAULT_INJECTION: forcing a failure. [ 157.463660][ T7570] name failslab, interval 1, probability 0, space 0, times 0 [ 157.476750][ T7570] CPU: 0 UID: 0 PID: 7570 Comm: syz.3.374 Not tainted syzkaller #0 PREEMPT(full) [ 157.476782][ T7570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 157.476796][ T7570] Call Trace: [ 157.476805][ T7570] [ 157.476814][ T7570] dump_stack_lvl+0x16c/0x1f0 [ 157.476848][ T7570] should_fail_ex+0x512/0x640 [ 157.476883][ T7570] ? __kmalloc_cache_noprof+0x5f/0x780 [ 157.476926][ T7570] should_failslab+0xc2/0x120 [ 157.476969][ T7570] __kmalloc_cache_noprof+0x72/0x780 [ 157.477012][ T7570] ? sctp_transport_new+0xa8/0x7b0 [ 157.477064][ T7570] ? sctp_transport_new+0xa8/0x7b0 [ 157.477100][ T7570] sctp_transport_new+0xa8/0x7b0 [ 157.477133][ T7570] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 157.477177][ T7570] sctp_assoc_add_peer+0x2e3/0x1550 [ 157.477219][ T7570] sctp_connect_new_asoc+0x1f8/0x770 [ 157.477258][ T7570] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 157.477298][ T7570] ? __ipv6_addr_type+0x225/0x300 [ 157.477319][ T7570] ? __ipv6_addr_type+0x225/0x300 [ 157.477345][ T7570] __sctp_connect+0x3f3/0xc60 [ 157.477383][ T7570] ? do_raw_spin_lock+0x12c/0x2b0 [ 157.477419][ T7570] ? __pfx___sctp_connect+0x10/0x10 [ 157.477456][ T7570] ? __pfx_sctp_inet_connect+0x10/0x10 [ 157.477493][ T7570] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 157.477536][ T7570] ? __pfx_sctp_inet_connect+0x10/0x10 [ 157.477569][ T7570] sctp_inet_connect+0x15f/0x200 [ 157.477607][ T7570] __sys_connect_file+0x141/0x1a0 [ 157.477647][ T7570] __sys_connect+0x13b/0x160 [ 157.477678][ T7570] ? __pfx___sys_connect+0x10/0x10 [ 157.477726][ T7570] ? __pfx_ksys_write+0x10/0x10 [ 157.477761][ T7570] __x64_sys_connect+0x72/0xb0 [ 157.477793][ T7570] ? lockdep_hardirqs_on+0x7c/0x110 [ 157.477821][ T7570] do_syscall_64+0xcd/0xfa0 [ 157.477858][ T7570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.477884][ T7570] RIP: 0033:0x7f3efbd8f6c9 [ 157.477904][ T7570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.477927][ T7570] RSP: 002b:00007f3efcbcf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 157.477951][ T7570] RAX: ffffffffffffffda RBX: 00007f3efbfe6090 RCX: 00007f3efbd8f6c9 [ 157.477968][ T7570] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003 [ 157.477983][ T7570] RBP: 00007f3efcbcf090 R08: 0000000000000000 R09: 0000000000000000 [ 157.477998][ T7570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 157.478013][ T7570] R13: 00007f3efbfe6128 R14: 00007f3efbfe6090 R15: 00007ffcd7ab4e58 [ 157.478056][ T7570] [ 158.145273][ T7585] netlink: 'syz.3.377': attribute type 10 has an invalid length. [ 158.513678][ T7586] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 158.537808][ T7586] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7586] [ 158.779515][ T7596] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 158.844006][ T7590] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7590] [ 160.084513][ T7615] netlink: 346 bytes leftover after parsing attributes in process `syz.2.385'. [ 160.500638][ T7624] FAULT_INJECTION: forcing a failure. [ 160.500638][ T7624] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.524627][ T7624] CPU: 0 UID: 0 PID: 7624 Comm: syz.0.387 Not tainted syzkaller #0 PREEMPT(full) [ 160.524661][ T7624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 160.524674][ T7624] Call Trace: [ 160.524683][ T7624] [ 160.524693][ T7624] dump_stack_lvl+0x16c/0x1f0 [ 160.524725][ T7624] should_fail_ex+0x512/0x640 [ 160.524766][ T7624] _copy_to_iter+0x463/0x1710 [ 160.524800][ T7624] ? __pfx__copy_to_iter+0x10/0x10 [ 160.524818][ T7624] ? __pfx___might_resched+0x10/0x10 [ 160.524846][ T7624] ? rcu_is_watching+0x12/0xc0 [ 160.524873][ T7624] ? trace_contention_end+0xdd/0x130 [ 160.524918][ T7624] copy_page_to_iter+0x12a/0x1e0 [ 160.524946][ T7624] pipe_to_user+0xb0/0x170 [ 160.524988][ T7624] __splice_from_pipe+0x39a/0x800 [ 160.525014][ T7624] ? __pfx_pipe_to_user+0x10/0x10 [ 160.525054][ T7624] __do_sys_vmsplice+0x716/0x11a0 [ 160.525091][ T7624] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 160.525120][ T7624] ? get_pid_task+0x106/0x250 [ 160.525156][ T7624] ? find_held_lock+0x2b/0x80 [ 160.525188][ T7624] ? find_held_lock+0x2b/0x80 [ 160.525237][ T7624] ? __fget_files+0x20e/0x3c0 [ 160.525269][ T7624] ? fput+0x9b/0xd0 [ 160.525300][ T7624] ? ksys_write+0x1ac/0x250 [ 160.525323][ T7624] ? __pfx_ksys_write+0x10/0x10 [ 160.525359][ T7624] ? do_syscall_64+0xcd/0xfa0 [ 160.525386][ T7624] do_syscall_64+0xcd/0xfa0 [ 160.525416][ T7624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.525443][ T7624] RIP: 0033:0x7f88ed58f6c9 [ 160.525463][ T7624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.525486][ T7624] RSP: 002b:00007f88ee37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 160.525510][ T7624] RAX: ffffffffffffffda RBX: 00007f88ed7e6090 RCX: 00007f88ed58f6c9 [ 160.525527][ T7624] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 160.525542][ T7624] RBP: 00007f88ee37b090 R08: 0000000000000000 R09: 0000000000000000 [ 160.525564][ T7624] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 160.525579][ T7624] R13: 00007f88ed7e6128 R14: 00007f88ed7e6090 R15: 00007ffd1129ed48 [ 160.525616][ T7624] [ 161.717427][ T7636] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 161.735681][ T7636] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7636] [ 162.031469][ T7640] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 162.049767][ T7640] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7640] [ 163.512283][ T7692] FAULT_INJECTION: forcing a failure. [ 163.512283][ T7692] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 163.533481][ T7692] CPU: 0 UID: 0 PID: 7692 Comm: syz.0.403 Not tainted syzkaller #0 PREEMPT(full) [ 163.533515][ T7692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 163.533529][ T7692] Call Trace: [ 163.533537][ T7692] [ 163.533548][ T7692] dump_stack_lvl+0x16c/0x1f0 [ 163.533582][ T7692] should_fail_ex+0x512/0x640 [ 163.533623][ T7692] _copy_to_iter+0x463/0x1710 [ 163.533655][ T7692] ? __pfx__copy_to_iter+0x10/0x10 [ 163.533677][ T7692] ? __pfx___might_resched+0x10/0x10 [ 163.533705][ T7692] ? rcu_is_watching+0x12/0xc0 [ 163.533732][ T7692] ? trace_contention_end+0xdd/0x130 [ 163.533776][ T7692] copy_page_to_iter+0x12a/0x1e0 [ 163.533805][ T7692] pipe_to_user+0xb0/0x170 [ 163.533838][ T7692] ? anon_pipe_buf_release+0x41f/0x520 [ 163.533865][ T7692] __splice_from_pipe+0x39a/0x800 [ 163.533894][ T7692] ? __pfx_pipe_to_user+0x10/0x10 [ 163.533938][ T7692] __do_sys_vmsplice+0x716/0x11a0 [ 163.533974][ T7692] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 163.534003][ T7692] ? get_pid_task+0x106/0x250 [ 163.534037][ T7692] ? find_held_lock+0x2b/0x80 [ 163.534069][ T7692] ? find_held_lock+0x2b/0x80 [ 163.534116][ T7692] ? __fget_files+0x20e/0x3c0 [ 163.534147][ T7692] ? fput+0x9b/0xd0 [ 163.534178][ T7692] ? ksys_write+0x1ac/0x250 [ 163.534204][ T7692] ? __pfx_ksys_write+0x10/0x10 [ 163.534242][ T7692] ? do_syscall_64+0xcd/0xfa0 [ 163.534268][ T7692] do_syscall_64+0xcd/0xfa0 [ 163.534298][ T7692] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.534324][ T7692] RIP: 0033:0x7f88ed58f6c9 [ 163.534352][ T7692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 163.534375][ T7692] RSP: 002b:00007f88ee37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 163.534399][ T7692] RAX: ffffffffffffffda RBX: 00007f88ed7e6090 RCX: 00007f88ed58f6c9 [ 163.534416][ T7692] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 163.534431][ T7692] RBP: 00007f88ee37b090 R08: 0000000000000000 R09: 0000000000000000 [ 163.534446][ T7692] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 163.534461][ T7692] R13: 00007f88ed7e6128 R14: 00007f88ed7e6090 R15: 00007ffd1129ed48 [ 163.534498][ T7692] [ 164.344467][ T7694] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 164.389772][ T7694] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[7694] [ 164.770882][ T7704] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 164.780601][ T7704] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7704] [ 165.744021][ T7720] FAULT_INJECTION: forcing a failure. [ 165.744021][ T7720] name fail_futex, interval 1, probability 0, space 0, times 1 [ 165.797487][ T7720] CPU: 0 UID: 0 PID: 7720 Comm: syz.0.411 Not tainted syzkaller #0 PREEMPT(full) [ 165.797523][ T7720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 165.797539][ T7720] Call Trace: [ 165.797548][ T7720] [ 165.797557][ T7720] dump_stack_lvl+0x16c/0x1f0 [ 165.797592][ T7720] should_fail_ex+0x512/0x640 [ 165.797637][ T7720] get_futex_key+0x1d0/0x1560 [ 165.797674][ T7720] ? __pfx_get_futex_key+0x10/0x10 [ 165.797706][ T7720] ? kernel_text_address+0x8d/0x100 [ 165.797744][ T7720] ? __kernel_text_address+0xd/0x40 [ 165.797768][ T7720] ? __kernel_text_address+0xd/0x40 [ 165.797801][ T7720] futex_wait_setup+0x9d/0x550 [ 165.797853][ T7720] __futex_wait+0x193/0x2f0 [ 165.797893][ T7720] ? __pfx___futex_wait+0x10/0x10 [ 165.797939][ T7720] ? __pfx_futex_wake_mark+0x10/0x10 [ 165.797984][ T7720] ? futex_private_hash_put+0x176/0x300 [ 165.798022][ T7720] ? futex_private_hash_put+0x18a/0x300 [ 165.798058][ T7720] futex_wait+0xe8/0x380 [ 165.798082][ T7720] ? __pfx_futex_wait+0x10/0x10 [ 165.798141][ T7720] do_futex+0x229/0x350 [ 165.798176][ T7720] ? __pfx_do_futex+0x10/0x10 [ 165.798212][ T7720] ? kmem_cache_free+0x2d4/0x6c0 [ 165.798239][ T7720] ? putname+0x154/0x1a0 [ 165.798277][ T7720] __x64_sys_futex+0x1e0/0x4c0 [ 165.798317][ T7720] ? __pfx___x64_sys_futex+0x10/0x10 [ 165.798353][ T7720] ? __pfx_path_listxattrat+0x10/0x10 [ 165.798394][ T7720] do_syscall_64+0xcd/0xfa0 [ 165.798428][ T7720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.798456][ T7720] RIP: 0033:0x7f88ed58f6c9 [ 165.798477][ T7720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.798502][ T7720] RSP: 002b:00007f88ee39c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 165.798527][ T7720] RAX: ffffffffffffffda RBX: 00007f88ed7e5fa8 RCX: 00007f88ed58f6c9 [ 165.798545][ T7720] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f88ed7e5fa8 [ 165.798561][ T7720] RBP: 00007f88ed7e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 165.798576][ T7720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.798592][ T7720] R13: 00007f88ed7e6038 R14: 00007ffd1129ec60 R15: 00007ffd1129ed48 [ 165.798629][ T7720] [ 166.251339][ T7743] FAULT_INJECTION: forcing a failure. [ 166.251339][ T7743] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 166.334539][ T7745] netlink: 4 bytes leftover after parsing attributes in process `syz.3.417'. [ 166.387215][ T7743] CPU: 1 UID: 0 PID: 7743 Comm: syz.1.416 Not tainted syzkaller #0 PREEMPT(full) [ 166.387249][ T7743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 166.387263][ T7743] Call Trace: [ 166.387272][ T7743] [ 166.387282][ T7743] dump_stack_lvl+0x16c/0x1f0 [ 166.387315][ T7743] should_fail_ex+0x512/0x640 [ 166.387365][ T7743] _copy_to_iter+0x463/0x1710 [ 166.387399][ T7743] ? __pfx__copy_to_iter+0x10/0x10 [ 166.387420][ T7743] ? __pfx___might_resched+0x10/0x10 [ 166.387449][ T7743] ? rcu_is_watching+0x12/0xc0 [ 166.387476][ T7743] ? trace_contention_end+0xdd/0x130 [ 166.387521][ T7743] copy_page_to_iter+0x12a/0x1e0 [ 166.387550][ T7743] pipe_to_user+0xb0/0x170 [ 166.387588][ T7743] ? anon_pipe_buf_release+0x41f/0x520 [ 166.387621][ T7743] __splice_from_pipe+0x39a/0x800 [ 166.387649][ T7743] ? __pfx_pipe_to_user+0x10/0x10 [ 166.387695][ T7743] __do_sys_vmsplice+0x716/0x11a0 [ 166.387732][ T7743] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 166.387762][ T7743] ? get_pid_task+0x106/0x250 [ 166.387798][ T7743] ? find_held_lock+0x2b/0x80 [ 166.387833][ T7743] ? find_held_lock+0x2b/0x80 [ 166.387881][ T7743] ? __fget_files+0x20e/0x3c0 [ 166.387913][ T7743] ? fput+0x9b/0xd0 [ 166.387946][ T7743] ? ksys_write+0x1ac/0x250 [ 166.387972][ T7743] ? __pfx_ksys_write+0x10/0x10 [ 166.388010][ T7743] ? do_syscall_64+0xcd/0xfa0 [ 166.388035][ T7743] do_syscall_64+0xcd/0xfa0 [ 166.388066][ T7743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.388106][ T7743] RIP: 0033:0x7f49a0b8f6c9 [ 166.388126][ T7743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.388150][ T7743] RSP: 002b:00007f499edf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 166.388174][ T7743] RAX: ffffffffffffffda RBX: 00007f49a0de6090 RCX: 00007f49a0b8f6c9 [ 166.388191][ T7743] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 166.388206][ T7743] RBP: 00007f499edf6090 R08: 0000000000000000 R09: 0000000000000000 [ 166.388221][ T7743] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 166.388235][ T7743] R13: 00007f49a0de6128 R14: 00007f49a0de6090 R15: 00007fff230ae7c8 [ 166.388273][ T7743] [ 166.448419][ T7746] netlink: 4 bytes leftover after parsing attributes in process `syz.3.417'. [ 166.451770][ C1] vkms_vblank_simulate: vblank timer overrun [ 166.969311][ T7741] Process accounting resumed [ 167.010753][ T7752] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 167.126526][ T7758] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7758] [ 167.164022][ T7755] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 167.175872][ T7760] netlink: 4 bytes leftover after parsing attributes in process `syz.1.422'. [ 167.193757][ T7760] netlink: 25 bytes leftover after parsing attributes in process `syz.1.422'. [ 167.208812][ T7755] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[7755] [ 167.253757][ T7762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.423'. [ 167.611862][ T7769] Console: switching to colour VGA+ 80x25 [ 168.201485][ T7790] netlink: 16 bytes leftover after parsing attributes in process `syz.1.429'. [ 168.259426][ T7790] netlink: 93 bytes leftover after parsing attributes in process `syz.1.429'. [ 168.689265][ T7797] FAULT_INJECTION: forcing a failure. [ 168.689265][ T7797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.763638][ T7797] CPU: 0 UID: 0 PID: 7797 Comm: syz.2.431 Not tainted syzkaller #0 PREEMPT(full) [ 168.763673][ T7797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 168.763688][ T7797] Call Trace: [ 168.763696][ T7797] [ 168.763705][ T7797] dump_stack_lvl+0x16c/0x1f0 [ 168.763740][ T7797] should_fail_ex+0x512/0x640 [ 168.763783][ T7797] _copy_to_iter+0x463/0x1710 [ 168.763819][ T7797] ? _raw_spin_unlock+0x28/0x50 [ 168.763844][ T7797] ? __pfx__copy_to_iter+0x10/0x10 [ 168.763874][ T7797] ? __folio_put+0x32e/0x450 [ 168.763907][ T7797] copy_page_to_iter+0x12a/0x1e0 [ 168.763936][ T7797] pipe_to_user+0xb0/0x170 [ 168.763973][ T7797] ? anon_pipe_buf_release+0x40a/0x520 [ 168.764006][ T7797] __splice_from_pipe+0x39a/0x800 [ 168.764040][ T7797] ? __pfx_pipe_to_user+0x10/0x10 [ 168.764083][ T7797] __do_sys_vmsplice+0x716/0x11a0 [ 168.764120][ T7797] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 168.764150][ T7797] ? get_pid_task+0x106/0x250 [ 168.764187][ T7797] ? find_held_lock+0x2b/0x80 [ 168.764229][ T7797] ? find_held_lock+0x2b/0x80 [ 168.764278][ T7797] ? __fget_files+0x20e/0x3c0 [ 168.764310][ T7797] ? fput+0x9b/0xd0 [ 168.764343][ T7797] ? ksys_write+0x1ac/0x250 [ 168.764369][ T7797] ? __pfx_ksys_write+0x10/0x10 [ 168.764407][ T7797] ? do_syscall_64+0xcd/0xfa0 [ 168.764433][ T7797] do_syscall_64+0xcd/0xfa0 [ 168.764464][ T7797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.764490][ T7797] RIP: 0033:0x7fe02498f6c9 [ 168.764510][ T7797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.764533][ T7797] RSP: 002b:00007fe025841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 168.764557][ T7797] RAX: ffffffffffffffda RBX: 00007fe024be6090 RCX: 00007fe02498f6c9 [ 168.764572][ T7797] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 168.764587][ T7797] RBP: 00007fe025841090 R08: 0000000000000000 R09: 0000000000000000 [ 168.764602][ T7797] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 168.764616][ T7797] R13: 00007fe024be6128 R14: 00007fe024be6090 R15: 00007ffdac8d9278 [ 168.764653][ T7797] [ 169.322034][ T7803] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 169.370069][ T7800] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7800] [ 170.346251][ T7819] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 170.440041][ T7812] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7812] [ 170.482009][ T7827] netlink: 342 bytes leftover after parsing attributes in process `syz.3.439'. [ 170.583290][ T7827] netlink: 342 bytes leftover after parsing attributes in process `syz.3.439'. [ 171.286622][ T7851] FAULT_INJECTION: forcing a failure. [ 171.286622][ T7851] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.299883][ T7851] CPU: 0 UID: 0 PID: 7851 Comm: syz.0.445 Not tainted syzkaller #0 PREEMPT(full) [ 171.299915][ T7851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 171.299928][ T7851] Call Trace: [ 171.299935][ T7851] [ 171.299944][ T7851] dump_stack_lvl+0x16c/0x1f0 [ 171.299973][ T7851] should_fail_ex+0x512/0x640 [ 171.300011][ T7851] _copy_to_iter+0x463/0x1710 [ 171.300038][ T7851] ? _raw_spin_unlock+0x28/0x50 [ 171.300060][ T7851] ? __pfx__copy_to_iter+0x10/0x10 [ 171.300088][ T7851] ? __folio_put+0x32e/0x450 [ 171.300117][ T7851] copy_page_to_iter+0x12a/0x1e0 [ 171.300142][ T7851] pipe_to_user+0xb0/0x170 [ 171.300175][ T7851] ? anon_pipe_buf_release+0x40a/0x520 [ 171.300203][ T7851] __splice_from_pipe+0x39a/0x800 [ 171.300228][ T7851] ? __pfx_pipe_to_user+0x10/0x10 [ 171.300268][ T7851] __do_sys_vmsplice+0x716/0x11a0 [ 171.300299][ T7851] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 171.300325][ T7851] ? get_pid_task+0x106/0x250 [ 171.300357][ T7851] ? find_held_lock+0x2b/0x80 [ 171.300386][ T7851] ? find_held_lock+0x2b/0x80 [ 171.300428][ T7851] ? __fget_files+0x20e/0x3c0 [ 171.300455][ T7851] ? fput+0x9b/0xd0 [ 171.300483][ T7851] ? ksys_write+0x1ac/0x250 [ 171.300506][ T7851] ? __pfx_ksys_write+0x10/0x10 [ 171.300538][ T7851] ? do_syscall_64+0xcd/0xfa0 [ 171.300561][ T7851] do_syscall_64+0xcd/0xfa0 [ 171.300587][ T7851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.300609][ T7851] RIP: 0033:0x7f88ed58f6c9 [ 171.300626][ T7851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.300646][ T7851] RSP: 002b:00007f88ee37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 171.300667][ T7851] RAX: ffffffffffffffda RBX: 00007f88ed7e6090 RCX: 00007f88ed58f6c9 [ 171.300682][ T7851] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 171.300695][ T7851] RBP: 00007f88ee37b090 R08: 0000000000000000 R09: 0000000000000000 [ 171.300708][ T7851] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 171.300720][ T7851] R13: 00007f88ed7e6128 R14: 00007f88ed7e6090 R15: 00007ffd1129ed48 [ 171.300752][ T7851] [ 171.785266][ T7856] netlink: 8 bytes leftover after parsing attributes in process `syz.2.447'. [ 171.807103][ T7858] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(14) [ 171.824146][ T7858] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[7858] [ 172.432086][ T7873] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 172.454465][ T7873] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7873] [ 172.757059][ T7875] zswap: compressor not available [ 172.819742][ T7875] ima: policy update failed [ 172.825183][ T30] audit: type=1802 audit(4294967351.082:6): pid=7875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.453" res=0 errno=0 [ 172.890451][ T5150] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 173.716062][ T7884] random: crng reseeded on system resumption [ 173.817977][ T7895] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(14) [ 173.862744][ T7895] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[7895] [ 174.019851][ T7913] FAULT_INJECTION: forcing a failure. [ 174.019851][ T7913] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.051088][ T7913] CPU: 0 UID: 0 PID: 7913 Comm: syz.0.462 Not tainted syzkaller #0 PREEMPT(full) [ 174.051121][ T7913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 174.051133][ T7913] Call Trace: [ 174.051142][ T7913] [ 174.051151][ T7913] dump_stack_lvl+0x16c/0x1f0 [ 174.051184][ T7913] should_fail_ex+0x512/0x640 [ 174.051227][ T7913] _copy_to_iter+0x463/0x1710 [ 174.051257][ T7913] ? _raw_spin_unlock+0x28/0x50 [ 174.051283][ T7913] ? __pfx__copy_to_iter+0x10/0x10 [ 174.051316][ T7913] ? __folio_put+0x32e/0x450 [ 174.051350][ T7913] copy_page_to_iter+0x12a/0x1e0 [ 174.051379][ T7913] pipe_to_user+0xb0/0x170 [ 174.051416][ T7913] ? anon_pipe_buf_release+0x40a/0x520 [ 174.051449][ T7913] __splice_from_pipe+0x39a/0x800 [ 174.051479][ T7913] ? __pfx_pipe_to_user+0x10/0x10 [ 174.051523][ T7913] __do_sys_vmsplice+0x716/0x11a0 [ 174.051559][ T7913] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 174.051590][ T7913] ? get_pid_task+0x106/0x250 [ 174.051627][ T7913] ? find_held_lock+0x2b/0x80 [ 174.051662][ T7913] ? find_held_lock+0x2b/0x80 [ 174.051712][ T7913] ? __fget_files+0x20e/0x3c0 [ 174.051744][ T7913] ? fput+0x9b/0xd0 [ 174.051784][ T7913] ? ksys_write+0x1ac/0x250 [ 174.051811][ T7913] ? __pfx_ksys_write+0x10/0x10 [ 174.051849][ T7913] ? do_syscall_64+0xcd/0xfa0 [ 174.051875][ T7913] do_syscall_64+0xcd/0xfa0 [ 174.051905][ T7913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.051931][ T7913] RIP: 0033:0x7f88ed58f6c9 [ 174.051955][ T7913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.051977][ T7913] RSP: 002b:00007f88ee37b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 174.052001][ T7913] RAX: ffffffffffffffda RBX: 00007f88ed7e6090 RCX: 00007f88ed58f6c9 [ 174.052018][ T7913] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 174.052033][ T7913] RBP: 00007f88ee37b090 R08: 0000000000000000 R09: 0000000000000000 [ 174.052048][ T7913] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 174.052063][ T7913] R13: 00007f88ed7e6128 R14: 00007f88ed7e6090 R15: 00007ffd1129ed48 [ 174.052100][ T7913] [ 174.652740][ T7915] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 174.691534][ T7912] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7912] [ 174.743750][ T7923] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 175.855323][ T7960] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(14) [ 175.866531][ T7960] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[7960] [ 176.295364][ T7978] netlink: 4 bytes leftover after parsing attributes in process `syz.1.478'. [ 176.599681][ T7986] FAULT_INJECTION: forcing a failure. [ 176.599681][ T7986] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 176.712407][ T7986] CPU: 1 UID: 0 PID: 7986 Comm: syz.2.479 Not tainted syzkaller #0 PREEMPT(full) [ 176.712443][ T7986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 176.712457][ T7986] Call Trace: [ 176.712465][ T7986] [ 176.712475][ T7986] dump_stack_lvl+0x16c/0x1f0 [ 176.712508][ T7986] should_fail_ex+0x512/0x640 [ 176.712551][ T7986] _copy_to_iter+0x463/0x1710 [ 176.712580][ T7986] ? _raw_spin_unlock+0x28/0x50 [ 176.712602][ T7986] ? __pfx__copy_to_iter+0x10/0x10 [ 176.712633][ T7986] ? __folio_put+0x32e/0x450 [ 176.712674][ T7986] copy_page_to_iter+0x12a/0x1e0 [ 176.712703][ T7986] pipe_to_user+0xb0/0x170 [ 176.712737][ T7986] ? anon_pipe_buf_release+0x40a/0x520 [ 176.712767][ T7986] __splice_from_pipe+0x39a/0x800 [ 176.712793][ T7986] ? __pfx_pipe_to_user+0x10/0x10 [ 176.712835][ T7986] __do_sys_vmsplice+0x716/0x11a0 [ 176.712867][ T7986] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 176.712894][ T7986] ? get_pid_task+0x106/0x250 [ 176.712928][ T7986] ? find_held_lock+0x2b/0x80 [ 176.712958][ T7986] ? find_held_lock+0x2b/0x80 [ 176.713005][ T7986] ? __fget_files+0x20e/0x3c0 [ 176.713034][ T7986] ? fput+0x9b/0xd0 [ 176.713063][ T7986] ? ksys_write+0x1ac/0x250 [ 176.713087][ T7986] ? __pfx_ksys_write+0x10/0x10 [ 176.713120][ T7986] ? do_syscall_64+0xcd/0xfa0 [ 176.713149][ T7986] do_syscall_64+0xcd/0xfa0 [ 176.713176][ T7986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.713200][ T7986] RIP: 0033:0x7fe02498f6c9 [ 176.713218][ T7986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.713239][ T7986] RSP: 002b:00007fe025820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 176.713261][ T7986] RAX: ffffffffffffffda RBX: 00007fe024be6180 RCX: 00007fe02498f6c9 [ 176.713276][ T7986] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 176.713290][ T7986] RBP: 00007fe025820090 R08: 0000000000000000 R09: 0000000000000000 [ 176.713304][ T7986] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 176.713317][ T7986] R13: 00007fe024be6218 R14: 00007fe024be6180 R15: 00007ffdac8d9278 [ 176.713350][ T7986] [ 176.933544][ C1] vkms_vblank_simulate: vblank timer overrun [ 177.464746][ T7991] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 177.511578][ T7991] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[7991] [ 178.031807][ T8013] FAULT_INJECTION: forcing a failure. [ 178.031807][ T8013] name failslab, interval 1, probability 0, space 0, times 0 [ 178.071199][ T8013] CPU: 0 UID: 0 PID: 8013 Comm: syz.1.487 Not tainted syzkaller #0 PREEMPT(full) [ 178.071236][ T8013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 178.071251][ T8013] Call Trace: [ 178.071260][ T8013] [ 178.071278][ T8013] dump_stack_lvl+0x16c/0x1f0 [ 178.071314][ T8013] should_fail_ex+0x512/0x640 [ 178.071354][ T8013] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 178.071392][ T8013] should_failslab+0xc2/0x120 [ 178.071428][ T8013] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 178.071462][ T8013] ? fib_rules_register+0x30/0x500 [ 178.071498][ T8013] ? kmemdup_noprof+0x29/0x60 [ 178.071523][ T8013] kmemdup_noprof+0x29/0x60 [ 178.071551][ T8013] fib_rules_register+0x30/0x500 [ 178.071583][ T8013] fib4_rules_init+0x1f/0x1c0 [ 178.071623][ T8013] fib_net_init+0x1dc/0x3f0 [ 178.071652][ T8013] ? __pfx___register_sysctl_table+0x10/0x10 [ 178.071692][ T8013] ? __pfx_fib_net_init+0x10/0x10 [ 178.071721][ T8013] ? lockdep_init_map_type+0x5c/0x280 [ 178.071758][ T8013] ? do_init_timer+0xc9/0x110 [ 178.071791][ T8013] ? devinet_init_net+0x5c2/0x910 [ 178.071828][ T8013] ? __pfx_fib_net_init+0x10/0x10 [ 178.071857][ T8013] ops_init+0x1e2/0x5f0 [ 178.071886][ T8013] setup_net+0x100/0x390 [ 178.071913][ T8013] ? __pfx_setup_net+0x10/0x10 [ 178.071942][ T8013] ? debug_mutex_init+0x37/0x70 [ 178.071974][ T8013] copy_net_ns+0x2f8/0x690 [ 178.072009][ T8013] create_new_namespaces+0x3ea/0xa90 [ 178.072047][ T8013] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 178.072095][ T8013] ksys_unshare+0x45b/0xa40 [ 178.072143][ T8013] ? __pfx_ksys_unshare+0x10/0x10 [ 178.072181][ T8013] ? dnotify_flush+0x79/0x4c0 [ 178.072223][ T8013] __x64_sys_unshare+0x31/0x40 [ 178.072257][ T8013] do_syscall_64+0xcd/0xfa0 [ 178.072297][ T8013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.072324][ T8013] RIP: 0033:0x7f49a0b8f6c9 [ 178.072346][ T8013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.072371][ T8013] RSP: 002b:00007f49a194d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 178.072396][ T8013] RAX: ffffffffffffffda RBX: 00007f49a0de5fa0 RCX: 00007f49a0b8f6c9 [ 178.072414][ T8013] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 178.072430][ T8013] RBP: 00007f49a0c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 178.072447][ T8013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.072462][ T8013] R13: 00007f49a0de6038 R14: 00007f49a0de5fa0 R15: 00007fff230ae7c8 [ 178.072500][ T8013] [ 178.566527][ T8014] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 178.768897][ T8022] FAULT_INJECTION: forcing a failure. [ 178.768897][ T8022] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 178.792417][ T8022] CPU: 0 UID: 0 PID: 8022 Comm: syz.1.489 Not tainted syzkaller #0 PREEMPT(full) [ 178.792451][ T8022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 178.792465][ T8022] Call Trace: [ 178.792473][ T8022] [ 178.792482][ T8022] dump_stack_lvl+0x16c/0x1f0 [ 178.792515][ T8022] should_fail_ex+0x512/0x640 [ 178.792555][ T8022] _copy_to_iter+0x463/0x1710 [ 178.792586][ T8022] ? _raw_spin_unlock+0x28/0x50 [ 178.792610][ T8022] ? __pfx__copy_to_iter+0x10/0x10 [ 178.792641][ T8022] ? __folio_put+0x32e/0x450 [ 178.792673][ T8022] copy_page_to_iter+0x12a/0x1e0 [ 178.792701][ T8022] pipe_to_user+0xb0/0x170 [ 178.792736][ T8022] ? anon_pipe_buf_release+0x40a/0x520 [ 178.792769][ T8022] __splice_from_pipe+0x39a/0x800 [ 178.792799][ T8022] ? __pfx_pipe_to_user+0x10/0x10 [ 178.792842][ T8022] __do_sys_vmsplice+0x716/0x11a0 [ 178.792879][ T8022] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 178.792909][ T8022] ? get_pid_task+0x106/0x250 [ 178.792945][ T8022] ? find_held_lock+0x2b/0x80 [ 178.792979][ T8022] ? find_held_lock+0x2b/0x80 [ 178.793029][ T8022] ? __fget_files+0x20e/0x3c0 [ 178.793060][ T8022] ? fput+0x9b/0xd0 [ 178.793093][ T8022] ? ksys_write+0x1ac/0x250 [ 178.793119][ T8022] ? __pfx_ksys_write+0x10/0x10 [ 178.793155][ T8022] ? do_syscall_64+0xcd/0xfa0 [ 178.793181][ T8022] do_syscall_64+0xcd/0xfa0 [ 178.793212][ T8022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.793238][ T8022] RIP: 0033:0x7f49a0b8f6c9 [ 178.793258][ T8022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.793285][ T8022] RSP: 002b:00007f499edf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 178.793306][ T8022] RAX: ffffffffffffffda RBX: 00007f49a0de6090 RCX: 00007f49a0b8f6c9 [ 178.793322][ T8022] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 178.793335][ T8022] RBP: 00007f499edf6090 R08: 0000000000000000 R09: 0000000000000000 [ 178.793349][ T8022] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 178.793362][ T8022] R13: 00007f49a0de6128 R14: 00007f49a0de6090 R15: 00007fff230ae7c8 [ 178.793405][ T8022] [ 179.855489][ T8037] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 179.903711][ T8037] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8037] [ 179.964784][ T8045] netlink: 28 bytes leftover after parsing attributes in process `syz.1.495'. [ 180.029026][ T8045] ipvlan0: entered promiscuous mode [ 180.064502][ T8045] ipvlan0: entered allmulticast mode [ 180.092839][ T8045] veth0_vlan: entered allmulticast mode [ 180.215113][ T8041] ptrace attach of ""[8047] was attempted by "./syz-executor exec"[8041] [ 181.436508][ T8056] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 181.876903][ T8077] netlink: 12 bytes leftover after parsing attributes in process `syz.0.505'. [ 181.899310][ T8077] XFS: Clearing xfsstats [ 181.958693][ T8074] FAULT_INJECTION: forcing a failure. [ 181.958693][ T8074] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.981912][ T8074] CPU: 0 UID: 0 PID: 8074 Comm: syz.3.504 Not tainted syzkaller #0 PREEMPT(full) [ 181.981944][ T8074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 181.981956][ T8074] Call Trace: [ 181.981965][ T8074] [ 181.981974][ T8074] dump_stack_lvl+0x16c/0x1f0 [ 181.982008][ T8074] should_fail_ex+0x512/0x640 [ 181.982051][ T8074] _copy_to_iter+0x463/0x1710 [ 181.982080][ T8074] ? _raw_spin_unlock+0x28/0x50 [ 181.982105][ T8074] ? __pfx__copy_to_iter+0x10/0x10 [ 181.982137][ T8074] ? __folio_put+0x32e/0x450 [ 181.982169][ T8074] copy_page_to_iter+0x12a/0x1e0 [ 181.982197][ T8074] pipe_to_user+0xb0/0x170 [ 181.982240][ T8074] ? anon_pipe_buf_release+0x40a/0x520 [ 181.982273][ T8074] __splice_from_pipe+0x39a/0x800 [ 181.982303][ T8074] ? __pfx_pipe_to_user+0x10/0x10 [ 181.982348][ T8074] __do_sys_vmsplice+0x716/0x11a0 [ 181.982385][ T8074] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 181.982415][ T8074] ? get_pid_task+0x106/0x250 [ 181.982451][ T8074] ? find_held_lock+0x2b/0x80 [ 181.982484][ T8074] ? find_held_lock+0x2b/0x80 [ 181.982531][ T8074] ? __fget_files+0x20e/0x3c0 [ 181.982562][ T8074] ? fput+0x9b/0xd0 [ 181.982594][ T8074] ? ksys_write+0x1ac/0x250 [ 181.982620][ T8074] ? __pfx_ksys_write+0x10/0x10 [ 181.982657][ T8074] ? do_syscall_64+0xcd/0xfa0 [ 181.982680][ T8074] do_syscall_64+0xcd/0xfa0 [ 181.982709][ T8074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.982733][ T8074] RIP: 0033:0x7f3efbd8f6c9 [ 181.982751][ T8074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.982773][ T8074] RSP: 002b:00007f3efcbf0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 181.982798][ T8074] RAX: ffffffffffffffda RBX: 00007f3efbfe5fa0 RCX: 00007f3efbd8f6c9 [ 181.982815][ T8074] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 181.982830][ T8074] RBP: 00007f3efcbf0090 R08: 0000000000000000 R09: 0000000000000000 [ 181.982845][ T8074] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 181.982859][ T8074] R13: 00007f3efbfe6038 R14: 00007f3efbfe5fa0 R15: 00007ffcd7ab4e58 [ 181.982894][ T8074] [ 182.710345][ T8088] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 182.802069][ T8088] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8088] [ 183.242149][ T8105] FAULT_INJECTION: forcing a failure. [ 183.242149][ T8105] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 183.284744][ T8105] CPU: 0 UID: 0 PID: 8105 Comm: syz.1.510 Not tainted syzkaller #0 PREEMPT(full) [ 183.284780][ T8105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 183.284796][ T8105] Call Trace: [ 183.284804][ T8105] [ 183.284814][ T8105] dump_stack_lvl+0x16c/0x1f0 [ 183.284851][ T8105] should_fail_ex+0x512/0x640 [ 183.284896][ T8105] should_fail_alloc_page+0xe7/0x130 [ 183.284934][ T8105] prepare_alloc_pages+0x3c2/0x610 [ 183.284968][ T8105] ? rcu_is_watching+0x12/0xc0 [ 183.285001][ T8105] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 183.285033][ T8105] ? __lock_acquire+0xb8a/0x1c90 [ 183.285091][ T8105] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 183.285120][ T8105] ? do_raw_spin_lock+0x12c/0x2b0 [ 183.285161][ T8105] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 183.285203][ T8105] ? find_held_lock+0x2b/0x80 [ 183.285242][ T8105] ? __lock_acquire+0xb8a/0x1c90 [ 183.285276][ T8105] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.285321][ T8105] ? policy_nodemask+0xea/0x4e0 [ 183.285358][ T8105] alloc_pages_mpol+0x1fb/0x550 [ 183.285394][ T8105] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 183.285440][ T8105] folio_alloc_mpol_noprof+0x36/0x2f0 [ 183.285482][ T8105] shmem_alloc_folio+0x135/0x160 [ 183.285526][ T8105] shmem_alloc_and_add_folio+0x499/0xc20 [ 183.285575][ T8105] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 183.285619][ T8105] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 183.285646][ T8105] ? __lock_acquire+0xb60/0x1c90 [ 183.285687][ T8105] shmem_get_folio_gfp+0x67f/0x1610 [ 183.285723][ T8105] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 183.285753][ T8105] ? __pfx___might_resched+0x10/0x10 [ 183.285788][ T8105] shmem_fallocate+0x794/0xf50 [ 183.285831][ T8105] ? __pfx_shmem_fallocate+0x10/0x10 [ 183.285871][ T8105] ? __lock_acquire+0xb8a/0x1c90 [ 183.285911][ T8105] ? __lock_acquire+0x622/0x1c90 [ 183.285968][ T8105] ? __pfx_shmem_fallocate+0x10/0x10 [ 183.285997][ T8105] vfs_fallocate+0x5b4/0x10e0 [ 183.286032][ T8105] ? __pfx_vfs_fallocate+0x10/0x10 [ 183.286079][ T8105] __x64_sys_fallocate+0xd5/0x150 [ 183.286116][ T8105] do_syscall_64+0xcd/0xfa0 [ 183.286155][ T8105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.286182][ T8105] RIP: 0033:0x7f49a0b8f6c9 [ 183.286204][ T8105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.286230][ T8105] RSP: 002b:00007f49a194d038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 183.286257][ T8105] RAX: ffffffffffffffda RBX: 00007f49a0de5fa0 RCX: 00007f49a0b8f6c9 [ 183.286276][ T8105] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 8000000000000003 [ 183.286294][ T8105] RBP: 00007f49a0c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 183.286311][ T8105] R10: 00000000004cbd5d R11: 0000000000000246 R12: 0000000000000000 [ 183.286328][ T8105] R13: 00007f49a0de6038 R14: 00007f49a0de5fa0 R15: 00007fff230ae7c8 [ 183.286367][ T8105] [ 183.929206][ T8109] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 184.719683][ T8133] FAULT_INJECTION: forcing a failure. [ 184.719683][ T8133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.796387][ T8133] CPU: 1 UID: 0 PID: 8133 Comm: syz.3.516 Not tainted syzkaller #0 PREEMPT(full) [ 184.796420][ T8133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 184.796434][ T8133] Call Trace: [ 184.796441][ T8133] [ 184.796450][ T8133] dump_stack_lvl+0x16c/0x1f0 [ 184.796483][ T8133] should_fail_ex+0x512/0x640 [ 184.796522][ T8133] _copy_to_iter+0x463/0x1710 [ 184.796550][ T8133] ? _raw_spin_unlock+0x28/0x50 [ 184.796572][ T8133] ? __pfx__copy_to_iter+0x10/0x10 [ 184.796603][ T8133] ? __folio_put+0x32e/0x450 [ 184.796634][ T8133] copy_page_to_iter+0x12a/0x1e0 [ 184.796661][ T8133] pipe_to_user+0xb0/0x170 [ 184.796696][ T8133] ? anon_pipe_buf_release+0x40a/0x520 [ 184.796737][ T8133] __splice_from_pipe+0x39a/0x800 [ 184.796765][ T8133] ? __pfx_pipe_to_user+0x10/0x10 [ 184.796810][ T8133] __do_sys_vmsplice+0x716/0x11a0 [ 184.796848][ T8133] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 184.796877][ T8133] ? get_pid_task+0x106/0x250 [ 184.796913][ T8133] ? find_held_lock+0x2b/0x80 [ 184.796946][ T8133] ? find_held_lock+0x2b/0x80 [ 184.796994][ T8133] ? __fget_files+0x20e/0x3c0 [ 184.797024][ T8133] ? fput+0x9b/0xd0 [ 184.797055][ T8133] ? ksys_write+0x1ac/0x250 [ 184.797081][ T8133] ? __pfx_ksys_write+0x10/0x10 [ 184.797117][ T8133] ? do_syscall_64+0xcd/0xfa0 [ 184.797143][ T8133] do_syscall_64+0xcd/0xfa0 [ 184.797171][ T8133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.797197][ T8133] RIP: 0033:0x7f3efbd8f6c9 [ 184.797215][ T8133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.797239][ T8133] RSP: 002b:00007f3efcbf0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 184.797263][ T8133] RAX: ffffffffffffffda RBX: 00007f3efbfe5fa0 RCX: 00007f3efbd8f6c9 [ 184.797279][ T8133] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 184.797295][ T8133] RBP: 00007f3efcbf0090 R08: 0000000000000000 R09: 0000000000000000 [ 184.797310][ T8133] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 184.797325][ T8133] R13: 00007f3efbfe6038 R14: 00007f3efbfe5fa0 R15: 00007ffcd7ab4e58 [ 184.797362][ T8133] [ 185.850351][ T8147] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 185.862615][ T8147] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8147] [ 186.629206][ T8161] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 187.035298][ T8142] binder: 8138:8142 ioctl 400c620e 0 returned -22 [ 187.057695][ T8172] binder: 8138:8172 ioctl 400c620e 0 returned -22 [ 187.271506][ T8183] FAULT_INJECTION: forcing a failure. [ 187.271506][ T8183] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.314379][ T8183] CPU: 1 UID: 0 PID: 8183 Comm: syz.2.527 Not tainted syzkaller #0 PREEMPT(full) [ 187.314412][ T8183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 187.314425][ T8183] Call Trace: [ 187.314433][ T8183] [ 187.314443][ T8183] dump_stack_lvl+0x16c/0x1f0 [ 187.314474][ T8183] should_fail_ex+0x512/0x640 [ 187.314517][ T8183] _copy_to_iter+0x463/0x1710 [ 187.314546][ T8183] ? _raw_spin_unlock+0x28/0x50 [ 187.314570][ T8183] ? __pfx__copy_to_iter+0x10/0x10 [ 187.314599][ T8183] ? __folio_put+0x32e/0x450 [ 187.314630][ T8183] copy_page_to_iter+0x12a/0x1e0 [ 187.314657][ T8183] pipe_to_user+0xb0/0x170 [ 187.314690][ T8183] ? anon_pipe_buf_release+0x40a/0x520 [ 187.314720][ T8183] __splice_from_pipe+0x39a/0x800 [ 187.314746][ T8183] ? __pfx_pipe_to_user+0x10/0x10 [ 187.314794][ T8183] __do_sys_vmsplice+0x716/0x11a0 [ 187.314826][ T8183] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 187.314855][ T8183] ? get_pid_task+0x106/0x250 [ 187.314892][ T8183] ? find_held_lock+0x2b/0x80 [ 187.314930][ T8183] ? find_held_lock+0x2b/0x80 [ 187.314979][ T8183] ? __fget_files+0x20e/0x3c0 [ 187.315010][ T8183] ? fput+0x9b/0xd0 [ 187.315041][ T8183] ? ksys_write+0x1ac/0x250 [ 187.315067][ T8183] ? __pfx_ksys_write+0x10/0x10 [ 187.315101][ T8183] ? do_syscall_64+0xcd/0xfa0 [ 187.315127][ T8183] do_syscall_64+0xcd/0xfa0 [ 187.315157][ T8183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.315181][ T8183] RIP: 0033:0x7fe02498f6c9 [ 187.315201][ T8183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 187.315224][ T8183] RSP: 002b:00007fe025820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 187.315246][ T8183] RAX: ffffffffffffffda RBX: 00007fe024be6180 RCX: 00007fe02498f6c9 [ 187.315262][ T8183] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 187.315278][ T8183] RBP: 00007fe025820090 R08: 0000000000000000 R09: 0000000000000000 [ 187.315293][ T8183] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 187.315307][ T8183] R13: 00007fe024be6218 R14: 00007fe024be6180 R15: 00007ffdac8d9278 [ 187.315344][ T8183] [ 188.280818][ T8195] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 188.348302][ T8195] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[8195] [ 188.867852][ T8226] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 189.362673][ T8238] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 189.375872][ T8238] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 189.389706][ T8238] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 189.396968][ T8238] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 189.497471][ T8241] Invalid ELF header magic: != ELF [ 189.543116][ T8246] FAULT_INJECTION: forcing a failure. [ 189.543116][ T8246] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 189.673139][ T8246] CPU: 1 UID: 0 PID: 8246 Comm: syz.2.543 Not tainted syzkaller #0 PREEMPT(full) [ 189.673175][ T8246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 189.673189][ T8246] Call Trace: [ 189.673197][ T8246] [ 189.673206][ T8246] dump_stack_lvl+0x16c/0x1f0 [ 189.673240][ T8246] should_fail_ex+0x512/0x640 [ 189.673283][ T8246] _copy_to_iter+0x463/0x1710 [ 189.673314][ T8246] ? _raw_spin_unlock+0x28/0x50 [ 189.673339][ T8246] ? __pfx__copy_to_iter+0x10/0x10 [ 189.673379][ T8246] ? __folio_put+0x32e/0x450 [ 189.673412][ T8246] copy_page_to_iter+0x12a/0x1e0 [ 189.673441][ T8246] pipe_to_user+0xb0/0x170 [ 189.673480][ T8246] ? anon_pipe_buf_release+0x40a/0x520 [ 189.673512][ T8246] __splice_from_pipe+0x39a/0x800 [ 189.673541][ T8246] ? __pfx_pipe_to_user+0x10/0x10 [ 189.673582][ T8246] __do_sys_vmsplice+0x716/0x11a0 [ 189.673617][ T8246] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 189.673646][ T8246] ? get_pid_task+0x106/0x250 [ 189.673682][ T8246] ? find_held_lock+0x2b/0x80 [ 189.673717][ T8246] ? find_held_lock+0x2b/0x80 [ 189.673767][ T8246] ? __fget_files+0x20e/0x3c0 [ 189.673799][ T8246] ? fput+0x9b/0xd0 [ 189.673831][ T8246] ? ksys_write+0x1ac/0x250 [ 189.673857][ T8246] ? __pfx_ksys_write+0x10/0x10 [ 189.673895][ T8246] ? do_syscall_64+0xcd/0xfa0 [ 189.673921][ T8246] do_syscall_64+0xcd/0xfa0 [ 189.673951][ T8246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.673976][ T8246] RIP: 0033:0x7fe02498f6c9 [ 189.673997][ T8246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.674020][ T8246] RSP: 002b:00007fe025841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 189.674044][ T8246] RAX: ffffffffffffffda RBX: 00007fe024be6090 RCX: 00007fe02498f6c9 [ 189.674061][ T8246] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 189.674075][ T8246] RBP: 00007fe025841090 R08: 0000000000000000 R09: 0000000000000000 [ 189.674090][ T8246] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 189.674104][ T8246] R13: 00007fe024be6128 R14: 00007fe024be6090 R15: 00007ffdac8d9278 [ 189.674141][ T8246] [ 190.311825][ T8260] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 190.362655][ T8263] netlink: Conntrack attr has 16 unknown bytes [ 190.374430][ T8263] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 190.413403][ T8256] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8256] [ 190.951903][ T8269] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 191.105301][ T8276] FAULT_INJECTION: forcing a failure. [ 191.105301][ T8276] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 191.155276][ T8276] CPU: 1 UID: 0 PID: 8276 Comm: syz.3.551 Not tainted syzkaller #0 PREEMPT(full) [ 191.155314][ T8276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 191.155329][ T8276] Call Trace: [ 191.155338][ T8276] [ 191.155348][ T8276] dump_stack_lvl+0x16c/0x1f0 [ 191.155383][ T8276] should_fail_ex+0x512/0x640 [ 191.155426][ T8276] _copy_from_user+0x2e/0xd0 [ 191.155465][ T8276] do_sys_name_to_handle+0x205/0x830 [ 191.155499][ T8276] ? __pfx_do_sys_name_to_handle+0x10/0x10 [ 191.155531][ T8276] ? putname+0x154/0x1a0 [ 191.155560][ T8276] ? putname+0x154/0x1a0 [ 191.155593][ T8276] __x64_sys_name_to_handle_at+0x2af/0x310 [ 191.155623][ T8276] ? __pfx___x64_sys_name_to_handle_at+0x10/0x10 [ 191.155662][ T8276] do_syscall_64+0xcd/0xfa0 [ 191.155693][ T8276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.155719][ T8276] RIP: 0033:0x7f3efbd8f6c9 [ 191.155740][ T8276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.155765][ T8276] RSP: 002b:00007f3efcbcf038 EFLAGS: 00000246 ORIG_RAX: 000000000000012f [ 191.155790][ T8276] RAX: ffffffffffffffda RBX: 00007f3efbfe6090 RCX: 00007f3efbd8f6c9 [ 191.155807][ T8276] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 191.155824][ T8276] RBP: 00007f3efbe11f91 R08: 0000000000000002 R09: 0000000000000000 [ 191.155841][ T8276] R10: 0000200000001180 R11: 0000000000000246 R12: 0000000000000000 [ 191.155857][ T8276] R13: 00007f3efbfe6128 R14: 00007f3efbfe6090 R15: 00007ffcd7ab4e58 [ 191.155892][ T8276] [ 191.393811][ T5150] Bluetooth: hci1: command 0x0c1a tx timeout [ 191.399960][ T5150] Bluetooth: hci0: command 0x0c1a tx timeout [ 191.486340][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 191.502025][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 191.732388][ T8287] FAULT_INJECTION: forcing a failure. [ 191.732388][ T8287] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 191.759616][ T8287] CPU: 1 UID: 0 PID: 8287 Comm: syz.2.557 Not tainted syzkaller #0 PREEMPT(full) [ 191.759651][ T8287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 191.759665][ T8287] Call Trace: [ 191.759674][ T8287] [ 191.759683][ T8287] dump_stack_lvl+0x16c/0x1f0 [ 191.759715][ T8287] should_fail_ex+0x512/0x640 [ 191.759754][ T8287] _copy_to_iter+0x463/0x1710 [ 191.759785][ T8287] ? _raw_spin_unlock+0x28/0x50 [ 191.759807][ T8287] ? __pfx__copy_to_iter+0x10/0x10 [ 191.759836][ T8287] ? __folio_put+0x32e/0x450 [ 191.759866][ T8287] copy_page_to_iter+0x12a/0x1e0 [ 191.759891][ T8287] pipe_to_user+0xb0/0x170 [ 191.759926][ T8287] ? anon_pipe_buf_release+0x40a/0x520 [ 191.759955][ T8287] __splice_from_pipe+0x39a/0x800 [ 191.759981][ T8287] ? __pfx_pipe_to_user+0x10/0x10 [ 191.760022][ T8287] __do_sys_vmsplice+0x716/0x11a0 [ 191.760054][ T8287] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 191.760080][ T8287] ? get_pid_task+0x106/0x250 [ 191.760114][ T8287] ? find_held_lock+0x2b/0x80 [ 191.760145][ T8287] ? find_held_lock+0x2b/0x80 [ 191.760187][ T8287] ? __fget_files+0x20e/0x3c0 [ 191.760213][ T8287] ? fput+0x9b/0xd0 [ 191.760242][ T8287] ? ksys_write+0x1ac/0x250 [ 191.760265][ T8287] ? __pfx_ksys_write+0x10/0x10 [ 191.760298][ T8287] ? do_syscall_64+0xcd/0xfa0 [ 191.760322][ T8287] do_syscall_64+0xcd/0xfa0 [ 191.760349][ T8287] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.760372][ T8287] RIP: 0033:0x7fe02498f6c9 [ 191.760390][ T8287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 191.760412][ T8287] RSP: 002b:00007fe025862038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 191.760440][ T8287] RAX: ffffffffffffffda RBX: 00007fe024be5fa0 RCX: 00007fe02498f6c9 [ 191.760456][ T8287] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 191.760470][ T8287] RBP: 00007fe025862090 R08: 0000000000000000 R09: 0000000000000000 [ 191.760484][ T8287] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 191.760497][ T8287] R13: 00007fe024be6038 R14: 00007fe024be5fa0 R15: 00007ffdac8d9278 [ 191.760530][ T8287] [ 192.130352][ T8298] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 192.139463][ T8298] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[8298] [ 192.836672][ T8316] netlink: 28 bytes leftover after parsing attributes in process `syz.3.565'. [ 192.864517][ T8308] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 192.967386][ T8308] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8308] [ 193.709918][ T8333] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 194.017107][ T8342] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 194.052602][ T8333] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8333] [ 194.061127][ T8342] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 194.273466][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.279802][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.331871][ T8354] FAULT_INJECTION: forcing a failure. [ 194.331871][ T8354] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 194.346721][ T8354] CPU: 0 UID: 0 PID: 8354 Comm: syz.3.572 Not tainted syzkaller #0 PREEMPT(full) [ 194.346754][ T8354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 194.346769][ T8354] Call Trace: [ 194.346777][ T8354] [ 194.346786][ T8354] dump_stack_lvl+0x16c/0x1f0 [ 194.346820][ T8354] should_fail_ex+0x512/0x640 [ 194.346862][ T8354] _copy_to_iter+0x463/0x1710 [ 194.346894][ T8354] ? _raw_spin_unlock+0x28/0x50 [ 194.346919][ T8354] ? __pfx__copy_to_iter+0x10/0x10 [ 194.346953][ T8354] ? __folio_put+0x32e/0x450 [ 194.346985][ T8354] copy_page_to_iter+0x12a/0x1e0 [ 194.347015][ T8354] pipe_to_user+0xb0/0x170 [ 194.347053][ T8354] ? anon_pipe_buf_release+0x40a/0x520 [ 194.347095][ T8354] __splice_from_pipe+0x39a/0x800 [ 194.347124][ T8354] ? __pfx_pipe_to_user+0x10/0x10 [ 194.347171][ T8354] __do_sys_vmsplice+0x716/0x11a0 [ 194.347208][ T8354] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 194.347245][ T8354] ? get_pid_task+0x106/0x250 [ 194.347283][ T8354] ? find_held_lock+0x2b/0x80 [ 194.347316][ T8354] ? find_held_lock+0x2b/0x80 [ 194.347365][ T8354] ? __fget_files+0x20e/0x3c0 [ 194.347396][ T8354] ? fput+0x9b/0xd0 [ 194.347429][ T8354] ? ksys_write+0x1ac/0x250 [ 194.347455][ T8354] ? __pfx_ksys_write+0x10/0x10 [ 194.347492][ T8354] ? do_syscall_64+0xcd/0xfa0 [ 194.347519][ T8354] do_syscall_64+0xcd/0xfa0 [ 194.347549][ T8354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.347574][ T8354] RIP: 0033:0x7f3efbd8f6c9 [ 194.347595][ T8354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.347619][ T8354] RSP: 002b:00007f3efcbae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 194.347643][ T8354] RAX: ffffffffffffffda RBX: 00007f3efbfe6180 RCX: 00007f3efbd8f6c9 [ 194.347661][ T8354] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 194.347677][ T8354] RBP: 00007f3efcbae090 R08: 0000000000000000 R09: 0000000000000000 [ 194.347693][ T8354] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 194.347708][ T8354] R13: 00007f3efbfe6218 R14: 00007f3efbfe6180 R15: 00007ffcd7ab4e58 [ 194.347747][ T8354] [ 194.958144][ T8366] ptp ptp0: max value is 20 [ 195.357407][ T8364] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 195.371976][ T8364] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8364] [ 195.946589][ T8393] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 195.957772][ T8393] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8393] [ 196.543629][ T8413] FAULT_INJECTION: forcing a failure. [ 196.543629][ T8413] name failslab, interval 1, probability 0, space 0, times 0 [ 196.632323][ T8413] CPU: 1 UID: 0 PID: 8413 Comm: syz.1.588 Not tainted syzkaller #0 PREEMPT(full) [ 196.632357][ T8413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 196.632371][ T8413] Call Trace: [ 196.632379][ T8413] [ 196.632388][ T8413] dump_stack_lvl+0x16c/0x1f0 [ 196.632421][ T8413] should_fail_ex+0x512/0x640 [ 196.632455][ T8413] ? fs_reclaim_acquire+0xae/0x150 [ 196.632489][ T8413] should_failslab+0xc2/0x120 [ 196.632519][ T8413] __kmalloc_noprof+0xdd/0x880 [ 196.632556][ T8413] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 196.632587][ T8413] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 196.632611][ T8413] tomoyo_realpath_from_path+0xc2/0x6e0 [ 196.632641][ T8413] ? tomoyo_profile+0x47/0x60 [ 196.632675][ T8413] tomoyo_path_number_perm+0x245/0x580 [ 196.632710][ T8413] ? tomoyo_path_number_perm+0x237/0x580 [ 196.632747][ T8413] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 196.632785][ T8413] ? find_held_lock+0x2b/0x80 [ 196.632841][ T8413] ? find_held_lock+0x2b/0x80 [ 196.632865][ T8413] ? hook_file_ioctl_common+0x145/0x410 [ 196.632898][ T8413] ? __fget_files+0x20e/0x3c0 [ 196.632928][ T8413] security_file_ioctl+0x9b/0x240 [ 196.632955][ T8413] __x64_sys_ioctl+0xb7/0x210 [ 196.632994][ T8413] do_syscall_64+0xcd/0xfa0 [ 196.633023][ T8413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.633049][ T8413] RIP: 0033:0x7f49a0b8f6c9 [ 196.633078][ T8413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.633101][ T8413] RSP: 002b:00007f49a194d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 196.633124][ T8413] RAX: ffffffffffffffda RBX: 00007f49a0de5fa0 RCX: 00007f49a0b8f6c9 [ 196.633140][ T8413] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 196.633153][ T8413] RBP: 00007f49a194d090 R08: 0000000000000000 R09: 0000000000000000 [ 196.633167][ T8413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 196.633182][ T8413] R13: 00007f49a0de6038 R14: 00007f49a0de5fa0 R15: 00007fff230ae7c8 [ 196.633213][ T8413] [ 196.633223][ T8413] ERROR: Out of memory at tomoyo_realpath_from_path. [ 197.013639][ T8413] Process accounting paused [ 197.753993][ T8426] FAULT_INJECTION: forcing a failure. [ 197.753993][ T8426] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 197.819390][ T8426] CPU: 0 UID: 0 PID: 8426 Comm: syz.1.592 Not tainted syzkaller #0 PREEMPT(full) [ 197.819426][ T8426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 197.819441][ T8426] Call Trace: [ 197.819449][ T8426] [ 197.819459][ T8426] dump_stack_lvl+0x16c/0x1f0 [ 197.819493][ T8426] should_fail_ex+0x512/0x640 [ 197.819535][ T8426] _copy_to_iter+0x463/0x1710 [ 197.819566][ T8426] ? _raw_spin_unlock+0x28/0x50 [ 197.819591][ T8426] ? __pfx__copy_to_iter+0x10/0x10 [ 197.819619][ T8426] ? __folio_put+0x32e/0x450 [ 197.819647][ T8426] copy_page_to_iter+0x12a/0x1e0 [ 197.819674][ T8426] pipe_to_user+0xb0/0x170 [ 197.819714][ T8426] ? anon_pipe_buf_release+0x40a/0x520 [ 197.819748][ T8426] __splice_from_pipe+0x39a/0x800 [ 197.819776][ T8426] ? __pfx_pipe_to_user+0x10/0x10 [ 197.819828][ T8426] __do_sys_vmsplice+0x716/0x11a0 [ 197.819865][ T8426] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 197.819895][ T8426] ? get_pid_task+0x106/0x250 [ 197.819931][ T8426] ? find_held_lock+0x2b/0x80 [ 197.819965][ T8426] ? find_held_lock+0x2b/0x80 [ 197.820013][ T8426] ? __fget_files+0x20e/0x3c0 [ 197.820045][ T8426] ? fput+0x9b/0xd0 [ 197.820077][ T8426] ? ksys_write+0x1ac/0x250 [ 197.820103][ T8426] ? __pfx_ksys_write+0x10/0x10 [ 197.820140][ T8426] ? do_syscall_64+0xcd/0xfa0 [ 197.820167][ T8426] do_syscall_64+0xcd/0xfa0 [ 197.820197][ T8426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.820223][ T8426] RIP: 0033:0x7f49a0b8f6c9 [ 197.820243][ T8426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.820267][ T8426] RSP: 002b:00007f499edd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 197.820291][ T8426] RAX: ffffffffffffffda RBX: 00007f49a0de6180 RCX: 00007f49a0b8f6c9 [ 197.820309][ T8426] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 197.820325][ T8426] RBP: 00007f499edd5090 R08: 0000000000000000 R09: 0000000000000000 [ 197.820340][ T8426] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 197.820356][ T8426] R13: 00007f49a0de6218 R14: 00007f49a0de6180 R15: 00007fff230ae7c8 [ 197.820392][ T8426] [ 198.033917][ C0] vkms_vblank_simulate: vblank timer overrun [ 198.111037][ T8421] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8421] [ 198.303508][ T8430] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 198.334100][ T8430] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8430] [ 198.896876][ T8458] FAULT_INJECTION: forcing a failure. [ 198.896876][ T8458] name failslab, interval 1, probability 0, space 0, times 0 [ 198.920546][ T8458] CPU: 1 UID: 0 PID: 8458 Comm: syz.0.601 Not tainted syzkaller #0 PREEMPT(full) [ 198.920582][ T8458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 198.920596][ T8458] Call Trace: [ 198.920605][ T8458] [ 198.920615][ T8458] dump_stack_lvl+0x16c/0x1f0 [ 198.920648][ T8458] should_fail_ex+0x512/0x640 [ 198.920685][ T8458] ? fs_reclaim_acquire+0xae/0x150 [ 198.920721][ T8458] should_failslab+0xc2/0x120 [ 198.920754][ T8458] __kmalloc_noprof+0xdd/0x880 [ 198.920794][ T8458] ? tomoyo_encode2+0x100/0x3e0 [ 198.920828][ T8458] ? tomoyo_encode2+0x100/0x3e0 [ 198.920855][ T8458] tomoyo_encode2+0x100/0x3e0 [ 198.920888][ T8458] tomoyo_encode+0x29/0x50 [ 198.920914][ T8458] tomoyo_realpath_from_path+0x18f/0x6e0 [ 198.920954][ T8458] tomoyo_path_number_perm+0x245/0x580 [ 198.921000][ T8458] ? tomoyo_path_number_perm+0x237/0x580 [ 198.921043][ T8458] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 198.921088][ T8458] ? find_held_lock+0x2b/0x80 [ 198.921147][ T8458] ? find_held_lock+0x2b/0x80 [ 198.921172][ T8458] ? hook_file_ioctl_common+0x145/0x410 [ 198.921207][ T8458] ? __fget_files+0x20e/0x3c0 [ 198.921243][ T8458] security_file_ioctl+0x9b/0x240 [ 198.921271][ T8458] __x64_sys_ioctl+0xb7/0x210 [ 198.921310][ T8458] do_syscall_64+0xcd/0xfa0 [ 198.921343][ T8458] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.921369][ T8458] RIP: 0033:0x7f88ed58f6c9 [ 198.921389][ T8458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.921414][ T8458] RSP: 002b:00007f88ee39c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 198.921439][ T8458] RAX: ffffffffffffffda RBX: 00007f88ed7e5fa0 RCX: 00007f88ed58f6c9 [ 198.921456][ T8458] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 198.921473][ T8458] RBP: 00007f88ee39c090 R08: 0000000000000000 R09: 0000000000000000 [ 198.921490][ T8458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 198.921505][ T8458] R13: 00007f88ed7e6038 R14: 00007f88ed7e5fa0 R15: 00007ffd1129ed48 [ 198.921540][ T8458] [ 198.921563][ T8458] ERROR: Out of memory at tomoyo_realpath_from_path. [ 199.742376][ T8476] FAULT_INJECTION: forcing a failure. [ 199.742376][ T8476] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.803232][ T8476] CPU: 0 UID: 0 PID: 8476 Comm: syz.1.604 Not tainted syzkaller #0 PREEMPT(full) [ 199.803265][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 199.803280][ T8476] Call Trace: [ 199.803289][ T8476] [ 199.803298][ T8476] dump_stack_lvl+0x16c/0x1f0 [ 199.803333][ T8476] should_fail_ex+0x512/0x640 [ 199.803373][ T8476] _copy_to_iter+0x463/0x1710 [ 199.803401][ T8476] ? _raw_spin_unlock+0x28/0x50 [ 199.803428][ T8476] ? __pfx__copy_to_iter+0x10/0x10 [ 199.803458][ T8476] ? __folio_put+0x32e/0x450 [ 199.803489][ T8476] copy_page_to_iter+0x12a/0x1e0 [ 199.803515][ T8476] pipe_to_user+0xb0/0x170 [ 199.803549][ T8476] ? anon_pipe_buf_release+0x40a/0x520 [ 199.803579][ T8476] __splice_from_pipe+0x39a/0x800 [ 199.803605][ T8476] ? __pfx_pipe_to_user+0x10/0x10 [ 199.803646][ T8476] __do_sys_vmsplice+0x716/0x11a0 [ 199.803678][ T8476] ? __pfx___do_sys_vmsplice+0x10/0x10 [ 199.803705][ T8476] ? get_pid_task+0x106/0x250 [ 199.803738][ T8476] ? find_held_lock+0x2b/0x80 [ 199.803769][ T8476] ? find_held_lock+0x2b/0x80 [ 199.803811][ T8476] ? __fget_files+0x20e/0x3c0 [ 199.803846][ T8476] ? fput+0x9b/0xd0 [ 199.803875][ T8476] ? ksys_write+0x1ac/0x250 [ 199.803899][ T8476] ? __pfx_ksys_write+0x10/0x10 [ 199.803932][ T8476] ? do_syscall_64+0xcd/0xfa0 [ 199.803956][ T8476] do_syscall_64+0xcd/0xfa0 [ 199.803985][ T8476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.804008][ T8476] RIP: 0033:0x7f49a0b8f6c9 [ 199.804026][ T8476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.804048][ T8476] RSP: 002b:00007f499edf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116 [ 199.804070][ T8476] RAX: ffffffffffffffda RBX: 00007f49a0de6090 RCX: 00007f49a0b8f6c9 [ 199.804085][ T8476] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000004 [ 199.804099][ T8476] RBP: 00007f499edf6090 R08: 0000000000000000 R09: 0000000000000000 [ 199.804113][ T8476] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000002 [ 199.804127][ T8476] R13: 00007f49a0de6128 R14: 00007f49a0de6090 R15: 00007fff230ae7c8 [ 199.804159][ T8476] [ 200.024004][ C0] vkms_vblank_simulate: vblank timer overrun [ 200.288567][ T8477] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8477] [ 200.351067][ T8454] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 201.364087][ T8510] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8510] [ 202.274426][ T8527] FAULT_INJECTION: forcing a failure. [ 202.274426][ T8527] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.343653][ T8527] CPU: 1 UID: 0 PID: 8527 Comm: syz.3.612 Not tainted syzkaller #0 PREEMPT(full) [ 202.343687][ T8527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 202.343701][ T8527] Call Trace: [ 202.343709][ T8527] [ 202.343718][ T8527] dump_stack_lvl+0x16c/0x1f0 [ 202.343752][ T8527] should_fail_ex+0x512/0x640 [ 202.343792][ T8527] _copy_from_user+0x2e/0xd0 [ 202.343836][ T8527] do_fb_ioctl+0x290/0x7e0 [ 202.343863][ T8527] ? __pfx_do_fb_ioctl+0x10/0x10 [ 202.343893][ T8527] ? find_held_lock+0x2b/0x80 [ 202.343923][ T8527] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.343987][ T8527] ? __fget_files+0x20e/0x3c0 [ 202.344015][ T8527] fb_ioctl+0xe5/0x150 [ 202.344038][ T8527] ? __pfx_fb_ioctl+0x10/0x10 [ 202.344059][ T8527] __x64_sys_ioctl+0x18e/0x210 [ 202.344093][ T8527] do_syscall_64+0xcd/0xfa0 [ 202.344120][ T8527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.344143][ T8527] RIP: 0033:0x7f3efbd8f6c9 [ 202.344160][ T8527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.344185][ T8527] RSP: 002b:00007f3efcbf0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 202.344209][ T8527] RAX: ffffffffffffffda RBX: 00007f3efbfe5fa0 RCX: 00007f3efbd8f6c9 [ 202.344227][ T8527] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 202.344243][ T8527] RBP: 00007f3efcbf0090 R08: 0000000000000000 R09: 0000000000000000 [ 202.344259][ T8527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 202.344274][ T8527] R13: 00007f3efbfe6038 R14: 00007f3efbfe5fa0 R15: 00007ffcd7ab4e58 [ 202.344311][ T8527] [ 202.978544][ T8537] netlink: 342 bytes leftover after parsing attributes in process `syz.2.615'. [ 204.236248][ T8552] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 204.264191][ T8551] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[8551] [ 204.373558][ T8541] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 204.403143][ T8541] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8541] [ 205.664432][ T8582] FAULT_INJECTION: forcing a failure. [ 205.664432][ T8582] name failslab, interval 1, probability 0, space 0, times 0 [ 205.664521][ T8582] CPU: 1 UID: 0 PID: 8582 Comm: syz.0.627 Not tainted syzkaller #0 PREEMPT(full) [ 205.664551][ T8582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 205.664566][ T8582] Call Trace: [ 205.664575][ T8582] [ 205.664584][ T8582] dump_stack_lvl+0x16c/0x1f0 [ 205.664618][ T8582] should_fail_ex+0x512/0x640 [ 205.664654][ T8582] ? __kmalloc_cache_noprof+0x5f/0x780 [ 205.664697][ T8582] should_failslab+0xc2/0x120 [ 205.664730][ T8582] __kmalloc_cache_noprof+0x72/0x780 [ 205.664771][ T8582] ? drm_atomic_state_alloc+0xb8/0x120 [ 205.664815][ T8582] ? drm_atomic_state_alloc+0xb8/0x120 [ 205.664850][ T8582] drm_atomic_state_alloc+0xb8/0x120 [ 205.664887][ T8582] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 205.664931][ T8582] ? rcu_is_watching+0x12/0xc0 [ 205.664959][ T8582] ? trace_contention_end+0xdd/0x130 [ 205.664996][ T8582] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 205.665035][ T8582] ? __mutex_lock+0x1c5/0x1060 [ 205.665093][ T8582] ? kernel_text_address+0x8d/0x100 [ 205.665161][ T8582] drm_client_modeset_commit_locked+0x14d/0x580 [ 205.665205][ T8582] drm_client_modeset_commit+0x4f/0x80 [ 205.665244][ T8582] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 205.665286][ T8582] drm_fb_helper_set_par+0xd8/0x120 [ 205.665319][ T8582] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 205.665354][ T8582] fb_set_var+0x822/0x1280 [ 205.665392][ T8582] ? __lock_acquire+0xb8a/0x1c90 [ 205.665424][ T8582] ? __pfx_fb_set_var+0x10/0x10 [ 205.665466][ T8582] ? tb_switch_reset+0x16c0/0x18a0 [ 205.665495][ T8582] ? do_syscall_64+0xcd/0xfa0 [ 205.665522][ T8582] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.665557][ T8582] ? __mutex_trylock_common+0xe9/0x250 [ 205.665593][ T8582] ? __pfx___mutex_trylock_common+0x10/0x10 [ 205.665630][ T8582] ? __pfx___might_resched+0x10/0x10 [ 205.665659][ T8582] ? rcu_is_watching+0x12/0xc0 [ 205.665686][ T8582] ? trace_contention_end+0xdd/0x130 [ 205.665721][ T8582] ? __mutex_lock+0x1c5/0x1060 [ 205.665750][ T8582] ? __lock_acquire+0xb8a/0x1c90 [ 205.665809][ T8582] ? is_console_locked+0x9/0x20 [ 205.665840][ T8582] ? fbcon_modechange_possible+0x337/0x450 [ 205.665881][ T8582] do_fb_ioctl+0x745/0x7e0 [ 205.665909][ T8582] ? __pfx_do_fb_ioctl+0x10/0x10 [ 205.665941][ T8582] ? find_held_lock+0x2b/0x80 [ 205.665976][ T8582] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 205.666057][ T8582] ? __fget_files+0x20e/0x3c0 [ 205.666090][ T8582] fb_ioctl+0xe5/0x150 [ 205.666113][ T8582] ? __pfx_fb_ioctl+0x10/0x10 [ 205.666139][ T8582] __x64_sys_ioctl+0x18e/0x210 [ 205.666184][ T8582] do_syscall_64+0xcd/0xfa0 [ 205.666214][ T8582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.666239][ T8582] RIP: 0033:0x7f88ed58f6c9 [ 205.666260][ T8582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.666285][ T8582] RSP: 002b:00007f88ee39c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 205.666310][ T8582] RAX: ffffffffffffffda RBX: 00007f88ed7e5fa0 RCX: 00007f88ed58f6c9 [ 205.666327][ T8582] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 205.666344][ T8582] RBP: 00007f88ee39c090 R08: 0000000000000000 R09: 0000000000000000 [ 205.666359][ T8582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 205.666374][ T8582] R13: 00007f88ed7e6038 R14: 00007f88ed7e5fa0 R15: 00007ffd1129ed48 [ 205.666415][ T8582] [ 206.630476][ T5150] Bluetooth: hci1: unexpected event 0x3d length: 726 > 14 [ 207.332403][ T8606] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 207.354711][ T8605] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[8605] [ 208.274287][ T8614] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8614] [ 209.291540][ T8633] FAULT_INJECTION: forcing a failure. [ 209.291540][ T8633] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 209.310494][ T8633] CPU: 1 UID: 0 PID: 8633 Comm: syz.0.641 Not tainted syzkaller #0 PREEMPT(full) [ 209.310525][ T8633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 209.310535][ T8633] Call Trace: [ 209.310540][ T8633] [ 209.310545][ T8633] dump_stack_lvl+0x16c/0x1f0 [ 209.310566][ T8633] should_fail_ex+0x512/0x640 [ 209.310591][ T8633] _copy_from_user+0x2e/0xd0 [ 209.310613][ T8633] get_timespec64+0x8b/0x1b0 [ 209.310631][ T8633] ? __pfx_get_timespec64+0x10/0x10 [ 209.310650][ T8633] ? common_nsleep+0xa1/0xd0 [ 209.310669][ T8633] __x64_sys_clock_nanosleep+0x1ce/0x4a0 [ 209.310685][ T8633] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 209.310705][ T8633] do_syscall_64+0xcd/0xfa0 [ 209.310722][ T8633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.310736][ T8633] RIP: 0033:0x7f88ed5c1f85 [ 209.310748][ T8633] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 209.310761][ T8633] RSP: 002b:00007ffd1129ee40 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 209.310775][ T8633] RAX: ffffffffffffffda RBX: 00007f88ed7e5fa0 RCX: 00007f88ed5c1f85 [ 209.310784][ T8633] RDX: 00007ffd1129ee80 RSI: 0000000000000000 RDI: 0000000000000000 [ 209.310793][ T8633] RBP: 00007f88ed7e7da0 R08: 0000000000000000 R09: 00007f88ee39d000 [ 209.310801][ T8633] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000003339c [ 209.310810][ T8633] R13: 00007f88ed7e6090 R14: ffffffffffffffff R15: 00007ffd1129efc0 [ 209.310828][ T8633] [ 209.464244][ C1] vkms_vblank_simulate: vblank timer overrun [ 210.155719][ T8652] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8652] [ 210.955216][ T8654] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 211.006776][ T8661] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8661] [ 212.366211][ T8690] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 212.435984][ T8694] netlink: 246 bytes leftover after parsing attributes in process `syz.2.655'. [ 212.658667][ T8699] netlink: 8 bytes leftover after parsing attributes in process `syz.1.654'. [ 213.368468][ T8689] mkiss: ax0: crc mode is auto. [ 213.417466][ T5150] Bluetooth: hci3: ISO packet for unknown connection handle 0 [ 213.463515][ T8693] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 213.635149][ T8700] mkiss: ax0: crc mode is auto. [ 213.843006][ T8706] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8706] [ 214.284407][ T8720] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 214.327492][ T8720] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8720] [ 215.638386][ T8756] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 215.713672][ T8774] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8774] [ 215.989947][ T8767] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8767] [ 216.617427][ T8791] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8791] [ 217.864099][ T8823] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8823] [ 218.391846][ T8824] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 218.514099][ T8824] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[8824] [ 219.826489][ T8866] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[8866] [ 219.853145][ T8872] netlink: 16 bytes leftover after parsing attributes in process `syz.1.693'. [ 219.904778][ T8863] netlink: 16 bytes leftover after parsing attributes in process `syz.1.693'. [ 220.157783][ T8880] netlink: 52 bytes leftover after parsing attributes in process `syz.2.699'. [ 220.826041][ T8896] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 220.885162][ T8901] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8901] [ 221.431539][ T8911] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 221.460762][ T8911] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8911] [ 221.585115][ T8919] netlink: 330 bytes leftover after parsing attributes in process `syz.0.709'. [ 222.456692][ T8945] FAULT_INJECTION: forcing a failure. [ 222.456692][ T8945] name failslab, interval 1, probability 0, space 0, times 0 [ 222.488711][ T8945] CPU: 1 UID: 0 PID: 8945 Comm: syz.1.716 Not tainted syzkaller #0 PREEMPT(full) [ 222.488749][ T8945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 222.488765][ T8945] Call Trace: [ 222.488775][ T8945] [ 222.488786][ T8945] dump_stack_lvl+0x16c/0x1f0 [ 222.488822][ T8945] should_fail_ex+0x512/0x640 [ 222.488863][ T8945] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 222.488904][ T8945] should_failslab+0xc2/0x120 [ 222.488941][ T8945] kmem_cache_alloc_noprof+0x75/0x6e0 [ 222.488969][ T8945] ? sk_prot_alloc+0x60/0x2a0 [ 222.489009][ T8945] ? sk_prot_alloc+0x60/0x2a0 [ 222.489036][ T8945] ? find_held_lock+0x2b/0x80 [ 222.489062][ T8945] sk_prot_alloc+0x60/0x2a0 [ 222.489095][ T8945] sk_alloc+0x36/0xc20 [ 222.489136][ T8945] inet_create+0x3a1/0x1040 [ 222.489174][ T8945] ? inet_create+0x93/0x1040 [ 222.489216][ T8945] __sock_create+0x338/0x8d0 [ 222.489257][ T8945] mptcp_subflow_create_socket+0xec/0xa10 [ 222.489297][ T8945] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 222.489345][ T8945] __mptcp_nmpc_sk+0x182/0x890 [ 222.489382][ T8945] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 222.489423][ T8945] ? __local_bh_enable_ip+0xa4/0x120 [ 222.489458][ T8945] mptcp_bind+0xa3/0x1e0 [ 222.489497][ T8945] __sys_bind+0x1a7/0x260 [ 222.489533][ T8945] ? __pfx___sys_bind+0x10/0x10 [ 222.489581][ T8945] ? xfd_validate_state+0x61/0x180 [ 222.489616][ T8945] ? __pfx_do_writev+0x10/0x10 [ 222.489651][ T8945] __x64_sys_bind+0x72/0xb0 [ 222.489683][ T8945] ? lockdep_hardirqs_on+0x7c/0x110 [ 222.489712][ T8945] do_syscall_64+0xcd/0xfa0 [ 222.489744][ T8945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.489771][ T8945] RIP: 0033:0x7f49a0b8f6c9 [ 222.489793][ T8945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.489819][ T8945] RSP: 002b:00007f49a194d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 222.489844][ T8945] RAX: ffffffffffffffda RBX: 00007f49a0de5fa0 RCX: 00007f49a0b8f6c9 [ 222.489861][ T8945] RDX: 000000000000006a RSI: 0000000000000000 RDI: 0000000000000003 [ 222.489884][ T8945] RBP: 00007f49a0c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 222.489901][ T8945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.489917][ T8945] R13: 00007f49a0de6038 R14: 00007f49a0de5fa0 R15: 00007fff230ae7c8 [ 222.489952][ T8945] [ 223.377418][ T8951] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 223.407641][ T8951] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[8951] [ 224.013829][ T8968] FAULT_INJECTION: forcing a failure. [ 224.013829][ T8968] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.033341][ T8968] CPU: 0 UID: 0 PID: 8968 Comm: syz.3.722 Not tainted syzkaller #0 PREEMPT(full) [ 224.033374][ T8968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 224.033389][ T8968] Call Trace: [ 224.033397][ T8968] [ 224.033408][ T8968] dump_stack_lvl+0x16c/0x1f0 [ 224.033439][ T8968] should_fail_ex+0x512/0x640 [ 224.033479][ T8968] _copy_from_user+0x2e/0xd0 [ 224.033515][ T8968] get_timespec64+0x8b/0x1b0 [ 224.033546][ T8968] ? __pfx_get_timespec64+0x10/0x10 [ 224.033582][ T8968] ? common_nsleep+0xa1/0xd0 [ 224.033615][ T8968] __x64_sys_clock_nanosleep+0x1ce/0x4a0 [ 224.033643][ T8968] ? __pfx___x64_sys_clock_nanosleep+0x10/0x10 [ 224.033678][ T8968] do_syscall_64+0xcd/0xfa0 [ 224.033709][ T8968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.033736][ T8968] RIP: 0033:0x7f3efbdc1f85 [ 224.033755][ T8968] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 224.033780][ T8968] RSP: 002b:00007ffcd7ab4f50 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 224.033812][ T8968] RAX: ffffffffffffffda RBX: 00007f3efbfe5fa0 RCX: 00007f3efbdc1f85 [ 224.033826][ T8968] RDX: 00007ffcd7ab4f90 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.033841][ T8968] RBP: 00007f3efbfe7da0 R08: 0000000000000000 R09: 00007f3efcbf1000 [ 224.033857][ T8968] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000036d11 [ 224.033872][ T8968] R13: 00007f3efbfe6090 R14: ffffffffffffffff R15: 00007ffcd7ab50d0 [ 224.033908][ T8968] [ 224.194110][ C0] vkms_vblank_simulate: vblank timer overrun [ 224.263592][ T8957] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 224.295557][ T8957] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8957] [ 225.053293][ T8735] mkiss: ax0: crc mode is auto. [ 225.335308][ T9000] netlink: 342 bytes leftover after parsing attributes in process `syz.0.732'. [ 225.397061][ T9000] netlink: 342 bytes leftover after parsing attributes in process `syz.0.732'. [ 225.590728][ T9002] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 225.744193][ T30] audit: type=1804 audit(4294967324.020:7): pid=9012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.734" name="file0" dev="tmpfs" ino=1150 res=1 errno=0 [ 225.764202][ C0] vkms_vblank_simulate: vblank timer overrun [ 225.782361][ T9002] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[9002] [ 225.803293][ T30] audit: type=1804 audit(4294967324.060:8): pid=9011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.734" name="file0" dev="tmpfs" ino=1150 res=1 errno=0 [ 226.382869][ T9021] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 226.425802][ T9021] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[9021] [ 226.735247][ T30] audit: type=1800 audit(4294967325.120:9): pid=9040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.742" name="members" dev="configfs" ino=26413 res=0 errno=0 [ 227.809600][ T9070] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 227.975783][ T9070] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[9070] [ 228.228592][ T8980] Process accounting resumed [ 228.998549][ T9089] netlink: 28 bytes leftover after parsing attributes in process `syz.2.751'. [ 229.093396][ T9087] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 229.112145][ T9089] veth1_macvtap: left promiscuous mode [ 229.124426][ T9087] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[9087] [ 229.591497][ T9099] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 229.598078][ T9098] ima: policy update failed [ 229.634320][ T30] audit: type=1802 audit(4294967328.020:10): pid=9098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.755" res=0 errno=0 [ 230.403012][ T9113] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 230.494729][ T9113] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[9113] [ 230.721140][ T9124] netlink: 8 bytes leftover after parsing attributes in process `syz.2.761'. [ 231.101180][ T9133] binder: 9129:9133 ioctl 400c620e 0 returned -22 [ 231.608424][ T9144] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 231.638410][ T9139] ptrace attach of "./syz-executor exec"[6100] was attempted by "./syz-executor exec"[9139] [ 231.645546][ T9147] netlink: 44 bytes leftover after parsing attributes in process `syz.2.766'. [ 233.703570][ T9184] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 233.753607][ T9184] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9184] [ 234.605169][ T9205] netlink: 28 bytes leftover after parsing attributes in process `syz.0.778'. [ 235.703956][ T9211] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 235.723578][ T9211] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9211] [ 236.181829][ T9225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.783'. [ 237.176286][ T9237] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9237] [ 237.211687][ T9020] mkiss: ax0: crc mode is auto. [ 238.467319][ T9253] delete_channel: no stack [ 239.883999][ T9273] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 239.905112][ T9273] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9273] [ 240.274363][ T9281] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9281] [ 240.490787][ T9285] Process accounting resumed [ 242.192209][ T9330] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9330] [ 242.262999][ T9332] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 242.282126][ T9332] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9332] [ 246.783391][ T9401] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9401] [ 247.717962][ T9430] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 247.771162][ T9430] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9430] [ 248.753280][ T9256] mkiss: ax0: crc mode is auto. [ 250.050762][ T9466] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9466] [ 250.750645][ T9479] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9479] [ 250.964366][ T9487] zswap: compressor not available [ 253.151529][ T9514] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9514] [ 255.024363][ T9172] syz.1.769 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 255.253250][ T9172] CPU: 0 UID: 0 PID: 9172 Comm: syz.1.769 Not tainted syzkaller #0 PREEMPT(full) [ 255.253282][ T9172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 255.253307][ T9172] Call Trace: [ 255.253314][ T9172] [ 255.253323][ T9172] dump_stack_lvl+0x16c/0x1f0 [ 255.253354][ T9172] dump_header+0x101/0x930 [ 255.253381][ T9172] oom_kill_process+0x272/0xa40 [ 255.253405][ T9172] out_of_memory+0x350/0x1700 [ 255.253433][ T9172] ? __pfx_out_of_memory+0x10/0x10 [ 255.253468][ T9172] mem_cgroup_out_of_memory+0x118/0x130 [ 255.253501][ T9172] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 255.253545][ T9172] ? do_raw_spin_unlock+0x172/0x230 [ 255.253588][ T9172] try_charge_memcg+0x695/0xd30 [ 255.253627][ T9172] ? __pfx_try_charge_memcg+0x10/0x10 [ 255.253664][ T9172] ? __print_lock_name+0xa1/0xe0 [ 255.253691][ T9172] ? rcu_read_unlock+0x17/0x60 [ 255.253733][ T9172] charge_memcg+0x8a/0x230 [ 255.253764][ T9172] __mem_cgroup_charge+0x2b/0x1e0 [ 255.253801][ T9172] shmem_alloc_and_add_folio+0x514/0xc20 [ 255.253852][ T9172] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 255.253895][ T9172] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 255.253930][ T9172] shmem_get_folio_gfp+0x67f/0x1610 [ 255.253960][ T9172] ? __lock_acquire+0xb8a/0x1c90 [ 255.253994][ T9172] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 255.254030][ T9172] shmem_write_begin+0x160/0x300 [ 255.254061][ T9172] ? __pfx_shmem_write_begin+0x10/0x10 [ 255.254085][ T9172] ? timestamp_truncate+0x21e/0x2d0 [ 255.254111][ T9172] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 255.254147][ T9172] generic_perform_write+0x3c4/0x900 [ 255.254191][ T9172] ? __pfx_generic_perform_write+0x10/0x10 [ 255.254229][ T9172] ? inode_needs_update_time.part.0+0x191/0x270 [ 255.254263][ T9172] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 255.254290][ T9172] shmem_file_write_iter+0x10e/0x140 [ 255.254324][ T9172] __kernel_write_iter+0x31a/0xb10 [ 255.254357][ T9172] ? __pfx___kernel_write_iter+0x10/0x10 [ 255.254384][ T9172] ? __up_read+0x1f8/0x750 [ 255.254424][ T9172] ? dump_user_range+0x756/0xb70 [ 255.254458][ T9172] dump_user_range+0x413/0xb70 [ 255.254492][ T9172] ? __pfx_dump_user_range+0x10/0x10 [ 255.254521][ T9172] ? elf_coredump_extra_notes_write+0xbd/0x4f0 [ 255.254568][ T9172] ? __pfx_writenote+0x10/0x10 [ 255.254605][ T9172] elf_core_dump+0x29c3/0x3c00 [ 255.254650][ T9172] ? __pfx_elf_core_dump+0x10/0x10 [ 255.254682][ T9172] ? finish_task_switch.isra.0+0x221/0xc10 [ 255.254714][ T9172] ? trace_sched_exit_tp+0xd1/0x120 [ 255.254758][ T9172] ? 0xffffffffff600000 [ 255.254792][ T9172] ? __pfx___schedule+0x10/0x10 [ 255.254859][ T9172] ? vfs_coredump+0x2b9f/0x5670 [ 255.254881][ T9172] vfs_coredump+0x2b9f/0x5670 [ 255.254919][ T9172] ? __pfx_vfs_coredump+0x10/0x10 [ 255.254947][ T9172] ? __lock_acquire+0x622/0x1c90 [ 255.254994][ T9172] ? lock_acquire+0x179/0x350 [ 255.255043][ T9172] ? is_bpf_text_address+0x8a/0x1a0 [ 255.255077][ T9172] ? bpf_ksym_find+0x124/0x1c0 [ 255.255115][ T9172] ? unwind_get_return_address+0x59/0xa0 [ 255.255143][ T9172] ? arch_stack_walk+0xa6/0x100 [ 255.255185][ T9172] ? stack_trace_save+0x8e/0xc0 [ 255.255213][ T9172] ? __pfx_stack_trace_save+0x10/0x10 [ 255.255242][ T9172] ? stack_depot_save_flags+0x29/0x9c0 [ 255.255280][ T9172] ? __lock_acquire+0xb8a/0x1c90 [ 255.255369][ T9172] ? rcu_is_watching+0x12/0xc0 [ 255.255395][ T9172] ? irqentry_exit+0x3b/0x90 [ 255.255423][ T9172] ? proc_coredump_connector+0x2d1/0x4f0 [ 255.255449][ T9172] ? __pfx_proc_coredump_connector+0x10/0x10 [ 255.255482][ T9172] ? trace_irq_enable.constprop.0+0x2f/0x120 [ 255.255520][ T9172] get_signal+0x22e1/0x26d0 [ 255.255559][ T9172] ? force_sig_fault+0xc4/0x100 [ 255.255590][ T9172] ? __pfx_get_signal+0x10/0x10 [ 255.255631][ T9172] arch_do_signal_or_restart+0x8f/0x790 [ 255.255670][ T9172] ? trace_irq_disable.constprop.0+0xd4/0x120 [ 255.255696][ T9172] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 255.255746][ T9172] irqentry_exit_to_user_mode+0x176/0x310 [ 255.255773][ T9172] asm_exc_page_fault+0x26/0x30 [ 255.255794][ T9172] RIP: 0033:0x21000 [ 255.255820][ T9172] Code: Unable to access opcode bytes at 0x20fd6. [ 255.255831][ T9172] RSP: 002b:000000000000000a EFLAGS: 00010246 [ 255.255851][ T9172] RAX: 0000000000000000 RBX: 00007f49a0de6270 RCX: 00007f49a0b8f6c9 [ 255.255867][ T9172] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 255.255882][ T9172] RBP: 00007f49a0c11f91 R08: 0000000000000002 R09: 0000000000000000 [ 255.255896][ T9172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.255910][ T9172] R13: 00007f49a0de6308 R14: 00007f49a0de6270 R15: 00007fff230ae7c8 [ 255.255947][ T9172] [ 255.255956][ T9172] memory: usage 307200kB, limit 307200kB, failcnt 24793 [ 255.462051][ T9539] random: crng reseeded on system resumption [ 255.498038][ T9172] memory+swap: usage 431404kB, limit 9007199254740988kB, failcnt 0 [ 255.498060][ T9172] kmem: usage 2840kB, limit 9007199254740988kB, failcnt 0 [ 255.498076][ T9172] Memory cgroup stats for /syz1 [ 255.753546][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.760643][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.931281][ T9172] : [ 255.931430][ T9172] cache 310693888 [ 256.051999][ T9172] rss 163840 [ 256.061880][ T9542] ptrace attach of "./syz-executor exec"[5830] was attempted by "./syz-executor exec"[9542] [ 256.077780][ T9172] rss_huge 0 [ 256.081000][ T9172] shmem 310595584 [ 256.133246][ T9172] mapped_file 4096 [ 256.143708][ T9172] dirty 0 [ 256.150713][ T9172] writeback 0 [ 256.253210][ T9172] workingset_refault_anon 1705 [ 256.258014][ T9172] workingset_refault_file 2000 [ 256.262776][ T9172] swap 127184896 [ 256.389774][ T9172] swapcached 802816 [ 256.407635][ T9172] pgpgin 420310 [ 256.441539][ T9172] pgpgout 345754 [ 256.462290][ T9172] pgfault 180159 [ 256.522994][ T9172] pgmajfault 539 [ 256.542476][ T9172] inactive_anon 4665344 [ 256.560957][ T9172] active_anon 306634752 [ 256.637113][ T9172] inactive_file 57344 [ 256.641587][ T9172] active_file 40960 [ 256.713295][ T9172] unevictable 0 [ 256.742599][ T9172] hierarchical_memory_limit 314572800 [ 256.752652][ T9172] hierarchical_memsw_limit 9223372036854771712 [ 256.793225][ T9172] total_cache 310693888 [ 256.808106][ T9172] total_rss 163840 [ 256.812223][ T9172] total_rss_huge 0 [ 256.882900][ T9172] total_shmem 310595584 [ 256.913086][ T9172] total_mapped_file 4096 [ 256.943195][ T9172] total_dirty 0 [ 256.953218][ T9172] total_writeback 0 [ 256.985424][ T9172] total_workingset_refault_anon 1705 [ 257.003216][ T9172] total_workingset_refault_file 2000 [ 257.009875][ T9172] total_swap 127184896 [ 257.047840][ T9172] total_swapcached 802816 [ 257.052208][ T9172] total_pgpgin 420310 [ 257.085354][ T9172] total_pgpgout 345754 [ 257.100743][ T9172] total_pgfault 180159 [ 257.122282][ T9172] total_pgmajfault 539 [ 257.142823][ T9172] total_inactive_anon 4665344 [ 257.168985][ T9172] total_active_anon 306634752 [ 257.204352][ T9172] total_inactive_file 57344 [ 257.237691][ T9172] total_active_file 40960 [ 257.281388][ T9172] total_unevictable 0 [ 257.317500][ T9172] anon_cost 0 [ 257.320819][ T9172] file_cost 0 [ 257.377750][ T9172] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.769,pid=9175,uid=0 [ 257.515640][ T9172] Memory cgroup out of memory: Killed process 9175 (syz.1.769) total-vm:98708kB, anon-rss:1272kB, file-rss:49876kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:1000 [ 257.718090][ T9573] netlink: 16 bytes leftover after parsing attributes in process `syz.2.858'. [ 258.212526][ T9585] netlink: 330 bytes leftover after parsing attributes in process `syz.2.860'. [ 258.650523][ T9592] netlink: 330 bytes leftover after parsing attributes in process `syz.2.862'. [ 259.253062][ T9601] netlink: 330 bytes leftover after parsing attributes in process `syz.0.865'. [ 259.394425][ T9605] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 259.744238][ T32] oom_reaper: reaped process 9175 (syz.1.769), now anon-rss:56kB, file-rss:48756kB, shmem-rss:0kB [ 260.032219][ T9372] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 260.046163][ T9372] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 260.056507][ T9372] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 260.068617][ T9372] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 260.076662][ T9372] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 260.183083][ T9469] mkiss: ax0: crc mode is auto. [ 260.866025][ T9613] chnl_net:caif_netlink_parms(): no params data found [ 261.055735][ T9171] syz.1.769 (9171) used greatest stack depth: 18920 bytes left [ 261.070380][ T9595] Process accounting paused [ 261.402579][ T9613] bridge0: port 1(bridge_slave_0) entered blocking state [ 261.417472][ T9613] bridge0: port 1(bridge_slave_0) entered disabled state [ 261.433518][ T9613] bridge_slave_0: entered allmulticast mode [ 261.441362][ T9613] bridge_slave_0: entered promiscuous mode [ 261.452710][ T9613] bridge0: port 2(bridge_slave_1) entered blocking state [ 261.463753][ T9613] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.506997][ T9613] bridge_slave_1: entered allmulticast mode [ 261.525130][ T9613] bridge_slave_1: entered promiscuous mode [ 261.727923][ T9640] netlink: 330 bytes leftover after parsing attributes in process `syz.1.869'. [ 261.920256][ T9613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 261.965080][ T9613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 262.110033][ T9372] Bluetooth: hci4: command tx timeout [ 262.207682][ T9613] team0: Port device team_slave_0 added [ 262.229667][ T9613] team0: Port device team_slave_1 added [ 262.391806][ T9613] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.399170][ T9613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 262.430089][ T9613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 262.464223][ T9613] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 262.498466][ T9613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 262.572316][ T9613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 262.761796][ T9613] hsr_slave_0: entered promiscuous mode [ 262.804374][ T9613] hsr_slave_1: entered promiscuous mode [ 262.810745][ T9613] debugfs: 'hsr0' already exists in 'hsr' [ 262.833197][ T9613] Cannot create hsr debugfs directory [ 263.338684][ T9659] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 263.387507][ T9659] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9659] [ 264.096543][ T9677] netlink: 330 bytes leftover after parsing attributes in process `syz.0.879'. [ 264.183872][ T9372] Bluetooth: hci4: command tx timeout [ 264.831428][ T9613] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 264.917983][ T9613] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 264.934416][ T9613] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 264.990881][ T9613] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 265.388118][ T9613] 8021q: adding VLAN 0 to HW filter on device bond0 [ 265.469565][ T9613] 8021q: adding VLAN 0 to HW filter on device team0 [ 265.492745][ T9365] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.499890][ T9365] bridge0: port 1(bridge_slave_0) entered forwarding state [ 265.540717][ T9167] syz.1.769 (9167) used greatest stack depth: 18744 bytes left [ 265.570519][ T9365] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.577710][ T9365] bridge0: port 2(bridge_slave_1) entered forwarding state [ 265.690550][ T9698] netlink: 330 bytes leftover after parsing attributes in process `syz.1.881'. [ 266.213381][ T9613] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 266.263346][ T9372] Bluetooth: hci4: command tx timeout [ 267.061834][ T9613] veth0_vlan: entered promiscuous mode [ 267.087740][ T9613] veth1_vlan: entered promiscuous mode [ 267.187103][ T9613] veth0_macvtap: entered promiscuous mode [ 267.210665][ T9613] veth1_macvtap: entered promiscuous mode [ 267.364009][ T9613] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 267.380675][ T9613] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 267.413589][ T9366] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.435296][ T9366] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.469390][ T9366] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.480312][ T9366] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.588296][ T9725] netlink: 330 bytes leftover after parsing attributes in process `syz.1.884'. [ 267.609948][ T9366] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.696339][ T9366] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 267.865431][ T9366] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 267.907174][ T9366] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 268.346740][ T9372] Bluetooth: hci4: command tx timeout [ 268.598857][ T9732] netlink: 330 bytes leftover after parsing attributes in process `syz.4.864'. [ 268.788174][ T9737] netlink: 330 bytes leftover after parsing attributes in process `syz.1.887'. [ 269.762139][ T9747] zswap: compressor not available [ 270.009725][ T9738] kexec: Could not allocate control_code_buffer [ 270.636508][ T9771] device-mapper: ioctl: Invalid ioctl structure: name , dev 3000000000 [ 270.748827][ T9775] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 270.793694][ T9767] ptrace attach of "./syz-executor exec"[9613] was attempted by "./syz-executor exec"[9767] [ 270.958529][ T9781] random: crng reseeded on system resumption [ 271.070047][ T9770] Process accounting paused [ 271.528085][ T9631] mkiss: ax0: crc mode is auto. [ 272.041869][ T9789] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 272.052011][ T9789] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9789] [ 272.337640][ T9372] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260 [ 272.337677][ T9372] Bluetooth: hci2: unexpected subevent 0x03 length: 727 > 9 [ 272.626880][ T9804] netlink: 28 bytes leftover after parsing attributes in process `syz.4.901'. [ 272.637626][ T9804] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 272.645515][ T9804] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 272.653882][ T9804] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 272.662255][ T9804] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 272.909294][ T9802] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 272.926696][ T9802] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9802] [ 273.000711][ T9808] syz.1.902 (9808): attempted to duplicate a private mapping with mremap. This is not supported. [ 273.072664][ T9811] misc userio: Invalid payload size [ 273.640245][ T9815] netlink: 318 bytes leftover after parsing attributes in process `syz.0.904'. [ 274.689557][ T9828] netlink: 4 bytes leftover after parsing attributes in process `syz.1.907'. [ 274.701603][ T9828] netlink: 'syz.1.907': attribute type 7 has an invalid length. [ 274.728914][ T9828] nbd: must specify a size in bytes for the device [ 274.744338][ T9828] netlink: 4 bytes leftover after parsing attributes in process `syz.1.907'. [ 275.020669][ T9832] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 275.030085][ T9832] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[9832] [ 275.042122][ T9834] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 275.353899][ T9838] netlink: 330 bytes leftover after parsing attributes in process `syz.0.912'. [ 275.482681][ T9841] zswap: compressor not available [ 275.739503][ T9848] netlink: 330 bytes leftover after parsing attributes in process `syz.1.914'. [ 276.143018][ T9859] netlink: 330 bytes leftover after parsing attributes in process `syz.0.916'. [ 276.876987][ T9864] netlink: 330 bytes leftover after parsing attributes in process `syz.1.918'. [ 279.213733][ T9363] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 279.221966][ T9363] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 279.229773][ T9363] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 279.238232][ T9363] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 279.246515][ T9363] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 279.393230][ T9867] chnl_net:caif_netlink_parms(): no params data found [ 279.461690][ T9867] bridge0: port 1(bridge_slave_0) entered blocking state [ 279.468992][ T9867] bridge0: port 1(bridge_slave_0) entered disabled state [ 279.476238][ T9867] bridge_slave_0: entered allmulticast mode [ 279.483204][ T9867] bridge_slave_0: entered promiscuous mode [ 279.490959][ T9867] bridge0: port 2(bridge_slave_1) entered blocking state [ 279.498570][ T9867] bridge0: port 2(bridge_slave_1) entered disabled state [ 279.505822][ T9867] bridge_slave_1: entered allmulticast mode [ 279.513614][ T9867] bridge_slave_1: entered promiscuous mode [ 279.543849][ T9867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 279.555709][ T9867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 279.587095][ T9867] team0: Port device team_slave_0 added [ 279.595957][ T9867] team0: Port device team_slave_1 added [ 279.625700][ T9867] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 279.632640][ T9867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 279.659289][ T9867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 279.671768][ T9867] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 279.679233][ T9867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 279.705598][ T9867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 279.752224][ T9867] hsr_slave_0: entered promiscuous mode [ 279.758506][ T9867] hsr_slave_1: entered promiscuous mode [ 279.764974][ T9867] debugfs: 'hsr0' already exists in 'hsr' [ 279.770695][ T9867] Cannot create hsr debugfs directory [ 279.908902][ T9867] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 279.919145][ T9867] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 279.929136][ T9867] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 279.938897][ T9867] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 279.969343][ T9867] bridge0: port 2(bridge_slave_1) entered blocking state [ 279.976578][ T9867] bridge0: port 2(bridge_slave_1) entered forwarding state [ 279.984703][ T9867] bridge0: port 1(bridge_slave_0) entered blocking state [ 279.991891][ T9867] bridge0: port 1(bridge_slave_0) entered forwarding state [ 280.076985][ T9867] 8021q: adding VLAN 0 to HW filter on device bond0 [ 280.105530][ T9602] bridge0: port 1(bridge_slave_0) entered disabled state [ 280.125180][ T9602] bridge0: port 2(bridge_slave_1) entered disabled state [ 280.158976][ T9867] 8021q: adding VLAN 0 to HW filter on device team0 [ 280.194842][ T9602] bridge0: port 1(bridge_slave_0) entered blocking state [ 280.202017][ T9602] bridge0: port 1(bridge_slave_0) entered forwarding state [ 280.245495][ T9362] bridge0: port 2(bridge_slave_1) entered blocking state [ 280.252667][ T9362] bridge0: port 2(bridge_slave_1) entered forwarding state [ 280.302074][ T9886] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 280.324462][ T9886] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9886] [ 280.358874][ T9883] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 280.645762][ T9867] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 280.655864][ T9893] netlink: 330 bytes leftover after parsing attributes in process `syz.1.923'. [ 280.985499][ T9867] veth0_vlan: entered promiscuous mode [ 280.997186][ T9867] veth1_vlan: entered promiscuous mode [ 281.023351][ T9867] veth0_macvtap: entered promiscuous mode [ 281.032324][ T9867] veth1_macvtap: entered promiscuous mode [ 281.049334][ T9867] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 281.065805][ T9867] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 281.080230][ T9602] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 281.096037][ T9602] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 281.105389][ T9602] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 281.119666][ T9602] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 281.178674][ T9602] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.193096][ T9602] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.219547][ T9362] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.229856][ T9362] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.311111][ T9372] Bluetooth: hci5: command tx timeout [ 281.429179][ T9908] netlink: 330 bytes leftover after parsing attributes in process `syz.5.919'. [ 281.513587][ T9906] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 281.712902][ T9907] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 281.731782][ T9902] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9902] [ 282.130747][ T9912] zswap: compressor not available [ 282.192649][ T9916] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 282.201899][ T9916] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[9916] [ 282.688331][ T9801] mkiss: ax0: crc mode is auto. [ 282.974493][ T9936] netlink: 330 bytes leftover after parsing attributes in process `syz.5.928'. [ 283.384180][ T9363] Bluetooth: hci5: command tx timeout [ 283.538218][ T9947] netlink: 338 bytes leftover after parsing attributes in process `syz.5.930'. [ 283.647543][ T9946] nfs: Bad value for 'source' [ 283.652825][ T9950] nfs: Bad value for 'source' [ 284.041392][ T9953] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007 [ 284.884553][ T9981] ================================================================== [ 284.884566][ T9981] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70 [ 284.884593][ T9981] Read of size 256 at addr ffff888031e7d460 by task syz.1.942/9981 [ 284.884605][ T9981] [ 284.884613][ T9981] CPU: 1 UID: 0 PID: 9981 Comm: syz.1.942 Not tainted syzkaller #0 PREEMPT(full) [ 284.884630][ T9981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 284.884638][ T9981] Call Trace: [ 284.884643][ T9981] [ 284.884648][ T9981] dump_stack_lvl+0x116/0x1f0 [ 284.884665][ T9981] print_report+0xcd/0x630 [ 284.884683][ T9981] ? __virt_addr_valid+0x81/0x610 [ 284.884700][ T9981] ? __phys_addr+0xe8/0x180 [ 284.884717][ T9981] ? fbcon_prepare_logo+0xa03/0xc70 [ 284.884735][ T9981] kasan_report+0xe0/0x110 [ 284.884752][ T9981] ? fbcon_prepare_logo+0xa03/0xc70 [ 284.884773][ T9981] kasan_check_range+0x100/0x1b0 [ 284.884793][ T9981] __asan_memcpy+0x23/0x60 [ 284.884807][ T9981] fbcon_prepare_logo+0xa03/0xc70 [ 284.884829][ T9981] fbcon_init+0xd77/0x1900 [ 284.884848][ T9981] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 284.884869][ T9981] visual_init+0x320/0x620 [ 284.884889][ T9981] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 284.884905][ T9981] store_bind+0x61d/0x760 [ 284.884919][ T9981] ? sysfs_file_kobj+0xe4/0x290 [ 284.884934][ T9981] ? __pfx_store_bind+0x10/0x10 [ 284.884947][ T9981] dev_attr_store+0x58/0x80 [ 284.884966][ T9981] ? __pfx_dev_attr_store+0x10/0x10 [ 284.884984][ T9981] sysfs_kf_write+0xf2/0x150 [ 284.884998][ T9981] kernfs_fop_write_iter+0x3af/0x570 [ 284.885019][ T9981] ? __pfx_sysfs_kf_write+0x10/0x10 [ 284.885034][ T9981] iter_file_splice_write+0xa24/0x12e0 [ 284.885053][ T9981] ? __pfx_iter_file_splice_write+0x10/0x10 [ 284.885068][ T9981] ? __pfx_copy_splice_read+0x10/0x10 [ 284.885093][ T9981] ? __pfx_iter_file_splice_write+0x10/0x10 [ 284.885107][ T9981] direct_splice_actor+0x192/0x6c0 [ 284.885121][ T9981] splice_direct_to_actor+0x345/0xa30 [ 284.885134][ T9981] ? __pfx_direct_splice_actor+0x10/0x10 [ 284.885149][ T9981] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 284.885164][ T9981] do_splice_direct+0x174/0x240 [ 284.885177][ T9981] ? __pfx_do_splice_direct+0x10/0x10 [ 284.885197][ T9981] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 284.885221][ T9981] ? rw_verify_area+0xcf/0x6c0 [ 284.885235][ T9981] do_sendfile+0xb06/0xe50 [ 284.885250][ T9981] ? __pfx_do_sendfile+0x10/0x10 [ 284.885266][ T9981] ? __x64_sys_futex+0x1e0/0x4c0 [ 284.885284][ T9981] ? __x64_sys_futex+0x1e9/0x4c0 [ 284.885302][ T9981] __x64_sys_sendfile64+0x1d8/0x220 [ 284.885319][ T9981] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 284.885339][ T9981] do_syscall_64+0xcd/0xfa0 [ 284.885354][ T9981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.885369][ T9981] RIP: 0033:0x7f49a0b8f6c9 [ 284.885380][ T9981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.885394][ T9981] RSP: 002b:00007f499edd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 284.885407][ T9981] RAX: ffffffffffffffda RBX: 00007f49a0de6180 RCX: 00007f49a0b8f6c9 [ 284.885417][ T9981] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003 [ 284.885425][ T9981] RBP: 00007f49a0c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 284.885438][ T9981] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 284.885446][ T9981] R13: 00007f49a0de6218 R14: 00007f49a0de6180 R15: 00007fff230ae7c8 [ 284.885459][ T9981] [ 284.885464][ T9981] [ 284.885468][ T9981] Allocated by task 9463: [ 284.885475][ T9981] kasan_save_stack+0x33/0x60 [ 284.885489][ T9981] kasan_save_track+0x14/0x30 [ 284.885503][ T9981] __kasan_slab_alloc+0x89/0x90 [ 284.885518][ T9981] kmem_cache_alloc_noprof+0x250/0x6e0 [ 284.885531][ T9981] __kernfs_new_node+0xd2/0x8e0 [ 284.885546][ T9981] kernfs_new_node+0x13c/0x1e0 [ 284.885564][ T9981] __kernfs_create_file+0x53/0x350 [ 284.885575][ T9981] sysfs_add_file_mode_ns+0x207/0x3c0 [ 284.885589][ T9981] internal_create_group+0x578/0xf30 [ 284.885605][ T9981] internal_create_groups+0x9d/0x150 [ 284.885620][ T9981] device_add+0x6d1/0x1aa0 [ 284.885639][ T9981] netdev_register_kobject+0x1a9/0x3d0 [ 284.885654][ T9981] register_netdevice+0x13dc/0x2270 [ 284.885668][ T9981] register_netdev+0x34/0x50 [ 284.885680][ T9981] ip6_tnl_init_net+0x2c7/0x4d0 [ 284.885694][ T9981] ops_init+0x1e2/0x5f0 [ 284.885706][ T9981] setup_net+0x100/0x390 [ 284.885717][ T9981] copy_net_ns+0x2f8/0x690 [ 284.885730][ T9981] create_new_namespaces+0x3ea/0xa90 [ 284.885744][ T9981] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 284.885758][ T9981] ksys_unshare+0x45b/0xa40 [ 284.885774][ T9981] __x64_sys_unshare+0x31/0x40 [ 284.885790][ T9981] do_syscall_64+0xcd/0xfa0 [ 284.885803][ T9981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.885815][ T9981] [ 284.885818][ T9981] The buggy address belongs to the object at ffff888031e7d3c0 [ 284.885818][ T9981] which belongs to the cache kernfs_node_cache of size 176 [ 284.885830][ T9981] The buggy address is located 160 bytes inside of [ 284.885830][ T9981] allocated 176-byte region [ffff888031e7d3c0, ffff888031e7d470) [ 284.885844][ T9981] [ 284.885847][ T9981] The buggy address belongs to the physical page: [ 284.885858][ T9981] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31e7d [ 284.885871][ T9981] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 284.885884][ T9981] page_type: f5(slab) [ 284.885897][ T9981] raw: 00fff00000000000 ffff888140407dc0 dead000000000122 0000000000000000 [ 284.885910][ T9981] raw: 0000000000000000 0000000000110011 00000000f5000000 0000000000000000 [ 284.885918][ T9981] page dumped because: kasan: bad access detected [ 284.885928][ T9981] page_owner tracks the page as allocated [ 284.885933][ T9981] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 9463, tgid 9462 (syz.0.828), ts 249652731603, free_ts 249587222751 [ 284.885956][ T9981] post_alloc_hook+0x1c0/0x230 [ 284.885976][ T9981] get_page_from_freelist+0x10a3/0x3a30 [ 284.885989][ T9981] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 284.886001][ T9981] alloc_pages_mpol+0x1fb/0x550 [ 284.886017][ T9981] new_slab+0x24a/0x360 [ 284.886035][ T9981] ___slab_alloc+0xdae/0x1a60 [ 284.886053][ T9981] __slab_alloc.constprop.0+0x63/0x110 [ 284.886073][ T9981] kmem_cache_alloc_noprof+0x43f/0x6e0 [ 284.886084][ T9981] __kernfs_new_node+0xd2/0x8e0 [ 284.886099][ T9981] kernfs_new_node+0x13c/0x1e0 [ 284.886116][ T9981] __kernfs_create_file+0x53/0x350 [ 284.886127][ T9981] sysfs_add_file_mode_ns+0x207/0x3c0 [ 284.886145][ T9981] internal_create_group+0x578/0xf30 [ 284.886171][ T9981] internal_create_groups+0x9d/0x150 [ 284.886209][ T9981] device_add+0x6d1/0x1aa0 [ 284.886243][ T9981] netdev_register_kobject+0x1a9/0x3d0 [ 284.886271][ T9981] page last free pid 9463 tgid 9462 stack trace: [ 284.886285][ T9981] __free_frozen_pages+0x7df/0x1160 [ 284.886306][ T9981] tlb_remove_table_rcu+0x121/0x320 [ 284.886329][ T9981] rcu_core+0x79c/0x1530 [ 284.886348][ T9981] handle_softirqs+0x219/0x8e0 [ 284.886374][ T9981] do_softirq+0xb2/0xf0 [ 284.886396][ T9981] __local_bh_enable_ip+0x100/0x120 [ 284.886423][ T9981] netlink_insert+0xc9/0x1850 [ 284.886445][ T9981] __netlink_kernel_create+0x22a/0x750 [ 284.886462][ T9981] xfrm_user_net_init+0xc6/0x190 [ 284.886478][ T9981] ops_init+0x1e2/0x5f0 [ 284.886489][ T9981] setup_net+0x100/0x390 [ 284.886500][ T9981] copy_net_ns+0x2f8/0x690 [ 284.886514][ T9981] create_new_namespaces+0x3ea/0xa90 [ 284.886529][ T9981] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 284.886543][ T9981] ksys_unshare+0x45b/0xa40 [ 284.886559][ T9981] __x64_sys_unshare+0x31/0x40 [ 284.886575][ T9981] [ 284.886579][ T9981] Memory state around the buggy address: [ 284.886586][ T9981] ffff888031e7d300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 284.886595][ T9981] ffff888031e7d380: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 [ 284.886605][ T9981] >ffff888031e7d400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc [ 284.886612][ T9981] ^ [ 284.886619][ T9981] ffff888031e7d480: fc fc fc fc fc fc 00 00 00 00 00 00 00 00 00 00 [ 284.886628][ T9981] ffff888031e7d500: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc [ 284.886635][ T9981] ================================================================== [ 284.912466][ T9981] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 284.912491][ T9981] CPU: 1 UID: 0 PID: 9981 Comm: syz.1.942 Not tainted syzkaller #0 PREEMPT(full) [ 284.912526][ T9981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 284.912544][ T9981] Call Trace: [ 284.912553][ T9981] [ 284.912564][ T9981] dump_stack_lvl+0x3d/0x1f0 [ 284.912600][ T9981] vpanic+0x640/0x6f0 [ 284.912638][ T9981] panic+0xca/0xd0 [ 284.912673][ T9981] ? __pfx_panic+0x10/0x10 [ 284.912709][ T9981] ? fbcon_prepare_logo+0xa03/0xc70 [ 284.912746][ T9981] ? preempt_schedule_common+0x44/0xc0 [ 284.912776][ T9981] ? preempt_schedule_thunk+0x16/0x30 [ 284.912819][ T9981] check_panic_on_warn+0xab/0xb0 [ 284.912857][ T9981] end_report+0x107/0x170 [ 284.912890][ T9981] kasan_report+0xee/0x110 [ 284.912922][ T9981] ? fbcon_prepare_logo+0xa03/0xc70 [ 284.912971][ T9981] kasan_check_range+0x100/0x1b0 [ 284.913011][ T9981] __asan_memcpy+0x23/0x60 [ 284.913038][ T9981] fbcon_prepare_logo+0xa03/0xc70 [ 284.913084][ T9981] fbcon_init+0xd77/0x1900 [ 284.913121][ T9981] ? __pfx_drm_fb_helper_set_par+0x10/0x10 [ 284.913162][ T9981] visual_init+0x320/0x620 [ 284.913208][ T9981] do_bind_con_driver.isra.0+0x57a/0xbf0 [ 284.913242][ T9981] store_bind+0x61d/0x760 [ 284.913271][ T9981] ? sysfs_file_kobj+0xe4/0x290 [ 284.913300][ T9981] ? __pfx_store_bind+0x10/0x10 [ 284.913326][ T9981] dev_attr_store+0x58/0x80 [ 284.913362][ T9981] ? __pfx_dev_attr_store+0x10/0x10 [ 284.913398][ T9981] sysfs_kf_write+0xf2/0x150 [ 284.913424][ T9981] kernfs_fop_write_iter+0x3af/0x570 [ 284.913460][ T9981] ? __pfx_sysfs_kf_write+0x10/0x10 [ 284.913489][ T9981] iter_file_splice_write+0xa24/0x12e0 [ 284.913528][ T9981] ? __pfx_iter_file_splice_write+0x10/0x10 [ 284.913553][ T9981] ? __pfx_copy_splice_read+0x10/0x10 [ 284.913578][ T9981] ? __pfx_iter_file_splice_write+0x10/0x10 [ 284.913593][ T9981] direct_splice_actor+0x192/0x6c0 [ 284.913607][ T9981] splice_direct_to_actor+0x345/0xa30 [ 284.913621][ T9981] ? __pfx_direct_splice_actor+0x10/0x10 [ 284.913636][ T9981] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 284.913651][ T9981] do_splice_direct+0x174/0x240 [ 284.913664][ T9981] ? __pfx_do_splice_direct+0x10/0x10 [ 284.913677][ T9981] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 284.913699][ T9981] ? rw_verify_area+0xcf/0x6c0 [ 284.913713][ T9981] do_sendfile+0xb06/0xe50 [ 284.913727][ T9981] ? __pfx_do_sendfile+0x10/0x10 [ 284.913742][ T9981] ? __x64_sys_futex+0x1e0/0x4c0 [ 284.913760][ T9981] ? __x64_sys_futex+0x1e9/0x4c0 [ 284.913778][ T9981] __x64_sys_sendfile64+0x1d8/0x220 [ 284.913796][ T9981] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 284.913816][ T9981] do_syscall_64+0xcd/0xfa0 [ 284.913832][ T9981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.913847][ T9981] RIP: 0033:0x7f49a0b8f6c9 [ 284.913859][ T9981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.913872][ T9981] RSP: 002b:00007f499edd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 284.913886][ T9981] RAX: ffffffffffffffda RBX: 00007f49a0de6180 RCX: 00007f49a0b8f6c9 [ 284.913896][ T9981] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003 [ 284.913904][ T9981] RBP: 00007f49a0c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 284.913913][ T9981] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 284.913922][ T9981] R13: 00007f49a0de6218 R14: 00007f49a0de6180 R15: 00007fff230ae7c8 [ 284.913936][ T9981] [ 284.914211][ T9981] Kernel Offset: disabled