last executing test programs: 7.309767209s ago: executing program 1 (id=980): semctl$auto_IPC_SET(0x2, 0x6, 0x1, 0x100) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="000129bd7000fbdbdf251f0000001000b000b18f9b9656446831f5c21a9e0800a0000b000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4010}, 0x20000000) socket(0x2, 0x3, 0x6) r2 = socket(0xa, 0x1, 0x84) capget$auto(0x0, 0xfffffffffffffffe) getsockopt$auto(r2, 0x84, 0x85, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) mmap$auto(0x0, 0x1, 0xfd5, 0x12, r4, 0x0) mmap$auto(0x9, 0x1ff, 0x4, 0x14, 0x3, 0x0) socket(0xa, 0x3, 0x73) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) write$auto(r3, 0x0, 0x800085) r5 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0) ioctl$auto_RNDADDENTROPY(r5, 0x40085203, &(0x7f00000001c0)=[0x2, 0x8]) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x2}, 0xed7138c}, 0x2, 0x9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x8080, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/fail-nth\x00', 0x282082, 0x0) 7.001282562s ago: executing program 0 (id=982): mmap$auto(0x0, 0xfffffffffffffe01, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) setrlimit$auto(0x7, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x100000000000028, 0x0) fsopen$auto(0x0, 0x1) socket(0x2, 0x1, 0x106) socket(0x25, 0x1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) capget$auto(0x0, 0xfffffffffffffffe) ioctl$auto(r1, 0x2203, r1) 5.874894923s ago: executing program 0 (id=986): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bpq1/flags\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/nbd9/sched/write0_next_rq\x00', 0x40, 0x0) prctl$auto(0x8, 0x6, 0xffffffffffffffff, 0xffffffff, 0x1ef) r1 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_percent\x00', 0x40, 0x0) read$auto(r1, &(0x7f0000000040)=',^{\'\x00', 0x7) 5.266239267s ago: executing program 3 (id=989): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) socket(0x10, 0x2, 0x0) (async) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) (async) socket(0x10, 0x2, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0xa, 0x2, 0x88) (async) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x4, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0xf) mmap$auto(0x0, 0x2020009, 0xf6, 0xeb1, 0xfffffffffffffffa, 0x8001) mmap$auto(0x0, 0x40007, 0xdf, 0x18, 0x7, 0x28000) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) ioctl$auto_PPPIOCSNPMODE(r3, 0x4008744b, 0x0) r4 = prctl$auto(0x29206, 0x1, 0x4, 0x6, 0x8) mmap$auto(0x2, 0x1, 0x8000000000000003, 0x8000000000000010, r4, 0x8000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000100)={{@raw=0xfffffffe, 0x85, 0x20e, 0x9, "660e00d9e9756f22fdffa188f5f106000000000000000b2f4ab8633824f2d2252ca5f200", @raw=0x6}, 0x0, @integer=@value=[0x42, 0x3, 0x4, 0x6, 0x9, 0xffffffffffffffff, 0x9, 0x3, 0x101, 0x101, 0x22, 0x4, 0x6, 0x4, 0x7, 0xf, 0x1ff, 0x1, 0x400, 0x8, 0x5, 0x2, 0xe294, 0xa2, 0x8, 0x100000000, 0x2, 0x8, 0xae, 0xaeb, 0x3, 0x8, 0x5, 0x8, 0xfffffffffffffffe, 0x10000, 0x55e2, 0x7, 0x4, 0xe, 0xffffffffffffffff, 0x6, 0x9, 0x14f3, 0x1ff, 0x1, 0x8000000006e7, 0x3, 0x8, 0x9, 0x0, 0x2, 0x7fffffff, 0x7, 0x2f79f1d9, 0x0, 0x401, 0x9, 0x6, 0x100000001, 0xffffffff, 0x800, 0x8001, 0x5, 0x5ed4, 0x1, 0x7, 0x80000000, 0x962, 0x5, 0xfffffffffffffffe, 0x8, 0xfffffffffffffff7, 0x401, 0x1, 0x3e44, 0x8, 0x4, 0x9, 0x1, 0xc98c, 0x68, 0x2, 0x6, 0x1, 0x3, 0xfffffffffffffffe, 0x4, 0xfffffffffffffffe, 0xffffffffffffffff, 0x55, 0x8, 0x30, 0x2d, 0x7ff, 0x3, 0x5, 0x0, 0x726, 0x7fffffff, 0x1000, 0x10000, 0x0, 0x4, 0x1, 0xbf, 0x2, 0x4, 0x0, 0x7, 0x1, 0x3f, 0x6, 0x9, 0x8000, 0xffff, 0x7, 0x80000000000140, 0x0, 0xc7dd, 0xfc05, 0x0, 0x4, 0x6, 0x8, 0x3, 0x0, 0x4], "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e87e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b232c1d35a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c85"}) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000680)=""/249, 0xf9) (async) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, 0x0, 0x426a2, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) r5 = socket(0x15, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) (async) sendmsg$auto(r5, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) (async) socketpair$auto(0x1, 0x803, 0x8000000000000000, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) 5.200198686s ago: executing program 0 (id=990): socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$auto(0x3, 0x541b, 0x7f) (async) ioctl$auto(0x3, 0x541b, 0x7f) socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) setitimer$auto(0x2, &(0x7f00000005c0)={{0xfffffffffffffffd, 0x5}, {0x0, 0x8}}, 0x0) (async) setitimer$auto(0x2, &(0x7f00000005c0)={{0xfffffffffffffffd, 0x5}, {0x0, 0x8}}, 0x0) write$auto(0x3, 0x0, 0xfdef) (async) write$auto(0x3, 0x0, 0xfdef) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) write$auto(0xffffffffffffffff, &(0x7f0000000080)='V\x89Zn\xbd\x93\x8e\x91$\x11\xddM\n\xc292\xb6$\xde|\x85\x83R\xe7*\x9bY\xce\xa9\x10\xf6\x8c|\xfb\xd0x\xd8\x00\x00\x00\x00\x00\x01\x00\x00\x001\xc2\xa2\x04\xe2\x81\x9c\xdc\x00\x00\x00\x00\xa6f\xa8\xe0RV\x91\xd4\x16\xa9\xafWW\xb1\xf4o\x1d \xc6\xef\x9dB\xce\xde\xac\x97v\\n\x00\xc6L\xa8\x01~\xe9\x8d\xc7\x18\xcc\xed\xfe\xe3\xe6!\x9e\x9d\x04\xe9\xfc', 0x1) mmap$auto(0x400, 0x8, 0x0, 0x9b72, 0xffffffffffffffff, 0x6) socket(0x1e, 0x2, 0x401002) setsockopt$auto(0x3, 0x0, 0xd3, 0xfffffffffffffffc, 0xfd72) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socket(0xa, 0x5, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/i8042/serio0/id/proto\x00', 0x0, 0x0) read$auto(r1, 0x0, 0xe8) setsockopt$auto(r0, 0x10000000084, 0x12, 0x0, 0x4) (async) setsockopt$auto(r0, 0x10000000084, 0x12, 0x0, 0x4) getpid() (async) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r3 = socket(0xa, 0x1, 0x84) setsockopt$auto(r3, 0x0, 0x40, 0x0, 0x6f7250c4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) ioctl$auto_SNDCTL_DSP_GETBLKSIZE(0xffffffffffffffff, 0xc0045004, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) (async) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x2, 0x1, 0x0) (async) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0p/oss\x00', 0x101000, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) 4.958064958s ago: executing program 1 (id=992): r0 = pidfd_open$auto(0x0, 0x9) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x202, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x400100, 0x0) sendfile$auto(r1, r0, 0x0, 0x7fffe000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim2/new_port\x00', 0x183941, 0x0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14) open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x1c7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) write$auto(0x3, 0x0, 0x5c8) sysfs$auto(0x2, 0x100000000000038, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r2, 0x0, 0x1ff) r3 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) ioctl$auto_SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000200)) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r4, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c855}, 0x4880) flock$auto(0xffffffffffffffff, 0x3) write$auto(0x3, 0x0, 0x5c8) r5 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x33903f3ada88776b) ioctl$auto_TUNSETSNDBUF2(r5, 0x400454d4, &(0x7f0000000000)=0x1000003) io_uring_register$auto_IORING_REGISTER_IOWQ_MAX_WORKERS(r4, 0x13, &(0x7f0000000200)="8c00", 0xcbc) 4.518145462s ago: executing program 0 (id=995): r0 = pidfd_open$auto(0x0, 0x9) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x202, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x400100, 0x0) sendfile$auto(r1, r0, 0x0, 0x7fffe000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183941, 0x0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(0x0, 0x201, 0x14) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) write$auto(0x3, 0x0, 0x5c8) sysfs$auto(0x2, 0x100000000000038, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r2, 0x0, 0x1ff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c855}, 0x4880) flock$auto(0xffffffffffffffff, 0x3) write$auto(0x3, 0x0, 0x5c8) 4.196292697s ago: executing program 1 (id=996): mmap$auto(0x0, 0xfffffffffffffe01, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) setrlimit$auto(0x7, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x100000000000028, 0x0) fsopen$auto(0x0, 0x1) socket(0x2, 0x1, 0x106) socket(0x25, 0x1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) capget$auto(0x0, 0xfffffffffffffffe) ioctl$auto(r1, 0x2203, r1) 4.108258643s ago: executing program 0 (id=997): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) socket(0x29, 0x5, 0x0) write$auto(0x3, 0x0, 0x100082) write$auto(0x3, 0x0, 0x1e) semctl$auto(0x1ff, 0x2, 0x13, 0x1) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/clear_refs\x00', 0x440, 0x0) setsockopt$auto(r0, 0x10001, 0x8, 0x0, 0x9) 3.337323669s ago: executing program 3 (id=999): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/zram0/mm_stat\x00', 0x8900, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/233, 0xe9) ioctl$auto_FS_IOC_GETFLAGS(r0, 0x80086601, 0x52d) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x80000000, 0x7) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) fspick$auto(r1, 0x0, 0x5) 2.830514746s ago: executing program 1 (id=1001): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'}) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c081) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c0236"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) (async) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c0236"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x15, 0x5, 0x0) (async) socket(0x15, 0x5, 0x0) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d80)=ANY=[@ANYBLOB="05000000", @ANYRES16=0x0, @ANYBLOB="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"], 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) bind$auto(r3, &(0x7f0000000080)=@in={0x2, 0x2, @loopback}, 0x6b) sendmsg$auto_OVS_DP_CMD_GET(r3, 0x0, 0x0) r4 = socket(0x10, 0x2, 0x4) write$auto(r4, &(0x7f0000000480)='\xc24\x11\xffJQkQ\xad4tC\t\x8a{\xca,\xffe\x1a\xc1\x14\xee\xf5{r\xba^g\xa1\x87\xe5~\x83\xae_6\xa8\vZ\xa3n\x90I\x01\xc6\x84\x89G*\x84\xfa\xf7\xe3?\xdb\xc2]\x938\x99H\x00\x004\xab2\xbbjf\xaa\x91\x90 \xa7<\xe2J\xb8\x8b\xe4\x11izx\xa6G\x8cv\x13`K\xc6\x16\xe8\xb8\x9d<\xf1Ck\x92\r\"\x1db\\\xb6N$\xae{\t\x0e\x19\x84\xaa\xdfSd\xc7\x97\xef\xa2\x13+\x18\bq\x85\x8c\xbb \xd8\xe9\xf3\xe0\x99\x198&\xedb\x87\x10\x92\xaeMa\xfc\xee\x063\xe2kbQ)\x9b\x8b\xa8\xf7J \xb7\xad\x8aRF\xa2\xf1.\xe6L\xe4\x85\xc5kG\x17eNFV\xf5\xbfP.\x95~\x9b&~\x0e\xfd\x82\xf2$\xd5l`L7\x8b\x12^H\x8ev\xdd\x7f\x00~0\xae\xce\\%IQ\xab4tLo-\xca\\L', 0x2fb) (async) write$auto(r4, &(0x7f0000000480)='\xc24\x11\xffJQkQ\xad4tC\t\x8a{\xca,\xffe\x1a\xc1\x14\xee\xf5{r\xba^g\xa1\x87\xe5~\x83\xae_6\xa8\vZ\xa3n\x90I\x01\xc6\x84\x89G*\x84\xfa\xf7\xe3?\xdb\xc2]\x938\x99H\x00\x004\xab2\xbbjf\xaa\x91\x90 \xa7<\xe2J\xb8\x8b\xe4\x11izx\xa6G\x8cv\x13`K\xc6\x16\xe8\xb8\x9d<\xf1Ck\x92\r\"\x1db\\\xb6N$\xae{\t\x0e\x19\x84\xaa\xdfSd\xc7\x97\xef\xa2\x13+\x18\bq\x85\x8c\xbb \xd8\xe9\xf3\xe0\x99\x198&\xedb\x87\x10\x92\xaeMa\xfc\xee\x063\xe2kbQ)\x9b\x8b\xa8\xf7J \xb7\xad\x8aRF\xa2\xf1.\xe6L\xe4\x85\xc5kG\x17eNFV\xf5\xbfP.\x95~\x9b&~\x0e\xfd\x82\xf2$\xd5l`L7\x8b\x12^H\x8ev\xdd\x7f\x00~0\xae\xce\\%IQ\xab4tLo-\xca\\L', 0x2fb) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x101100, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) (async) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x8, 0xb}, 0x1000}, 0x5, 0x311) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x8, 0xb}, 0x1000}, 0x5, 0x311) socket(0x27, 0x2, 0x0) (async) socket(0x27, 0x2, 0x0) r5 = socket(0x10, 0x3, 0x4a4) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='\x00\x00', @ANYBLOB="5de1"], 0x1ac}}, 0x40000) 2.667264653s ago: executing program 2 (id=1003): mmap$auto(0x80000001, 0x20009, 0x4000000000df, 0xffffffffffffffb4, 0x401, 0x4) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0xa2001, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) socket(0x2, 0x2, 0x88) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/infiniband_mad/abi_version\x00', 0x20100, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x880, 0x3f) read$auto(r0, 0x0, 0x2) socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) fsopen$auto(0x0, 0x1) fsopen$auto(0x0, 0x1) r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x7, 0x0) mq_timedsend$auto(r1, &(0x7f0000000040)='\xcf \xbf+\xd7!\xde\xe9%T\xe1\xa5\xd2,\x83', 0x2, 0x6, &(0x7f0000000240)={0x2000000000000003, 0x101}) r2 = socket(0x10, 0x2, 0xc) ppoll$auto(&(0x7f00000000c0)={r2, 0x804, 0x3}, 0x4b, &(0x7f0000000100)={0x8, 0x7}, &(0x7f0000000140)={0x3}, 0x8) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x2a4400, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) r4 = socketcall$auto(0x8000, 0x0) ioctl$auto(0x3, 0xae41, r4) mmap$auto(0x0, 0xffffffff00000000, 0x4000000000df, 0xeb1, 0x401, 0x8001) capget$auto(0x0, 0xfffffffffffffffe) socket(0x2, 0x801, 0x6) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) 2.530101324s ago: executing program 0 (id=1004): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8) readahead$auto(0xffffffffffffffff, 0x9, 0x7fffffffffffffff) ioctl$auto_UI_SET_ABSBIT(r0, 0x40045567, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) sendmsg$auto_SMC_NETLINK_FLUSH_UEID(0xffffffffffffffff, 0x0, 0x0) clock_adjtime$auto(0xfffffffffffffffb, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') ioctl$auto(r1, 0x8004b706, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/saved_tgids\x00', 0x101002, 0x0) close_range$auto(r2, 0x8, 0x80) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) mmap$auto(0x0, 0x9aad, 0xdf, 0xeb1, r3, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty42\x00', 0x40741, 0x0) ioctl$auto(0x3, 0x402c542d, r4) write$auto(0x3, 0x0, 0xfffffdef) setsockopt$auto(r4, 0x2, 0x3a, 0x0, 0x7) ioctl$auto(0x3, 0x541b, 0x74) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x10, 0xd, 0xfffffffffffffffb, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0x1000000040, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000005]}, 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) chdir$auto(&(0x7f0000000040)='./cgroup\x00') 2.179298704s ago: executing program 3 (id=1005): futex$auto(&(0x7f0000000000)=0x7, 0x9, 0x7, &(0x7f0000000040)={0xb, 0x401}, &(0x7f0000000080)=0x6f5, 0x4) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x5522, 0xf15) ioctl$auto(r0, 0x5523, r0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) msgsnd$auto(0x0, 0x0, 0x8, 0x9) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x101681, 0x0) openat$auto_nsim_nexthop_bucket_activity_fops_fib(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim0/fib/nexthop_bucket_activity\x00', 0x4080c1, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)="b4c786f5c9e9979f3e38083c24eb01aa1ad77e97d3402c12487d388cb8834d12b2c0aeb4206741a7338efd8546e0b0df022b1599860a230a543be1dbf0f17a045a3b13b5082f4c20195506a3e16a57526468e55189cb135d43e6057fa5fecb19bd826896f3009f4db4bf6fffe31a972db00f449ce414e3cec0175d4a84e88aa9f97d6d7cb4ca8bb05662650c6d73d731750eaa1542e27b6bdf1a502621de5648c9506b32c1dcdce3cb2c4fed31fb1582fb9e998846386c2142124cf9e84e9d78a5f8d19e721a526859bee157adb4c2d101417874e13618e8789e375f19b261a5d1cb386f548d3b56f9da7b2ad32eeee8944a4d") ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, 0x0) 1.863797913s ago: executing program 2 (id=1006): r0 = pidfd_open$auto(0x0, 0x9) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x202, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x400100, 0x0) sendfile$auto(r1, r0, 0x0, 0x7fffe000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x183941, 0x0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(0x0, 0x201, 0x14) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) write$auto(0x3, 0x0, 0x5c8) sysfs$auto(0x2, 0x100000000000038, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) read$auto(r2, 0x0, 0x1ff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c855}, 0x4880) flock$auto(0xffffffffffffffff, 0x3) write$auto(0x3, 0x0, 0x5c8) 1.753243966s ago: executing program 1 (id=1007): r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x101b00, 0x0) fcntl$auto_F_WRLCK(r0, 0x6, 0x1) r1 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000100)="58e7a2329fbdfb4986a26faf4182257497e4856e4a66e5177fa5d4eb558a61b740", 0xffffffff}, 0x6, 0x0) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x2, 0x2, 0x9, 0x2e, 0x3, 0x10, 0x101, 0x8, 0x9, "3a1937feb474bd0cf565cf26f2229d72", 0x0, 0xffffffff, 0xffffffffffffffff, 0x9, 0xb7, 0x9, 0xc, 0x3, 0xff, 0x9, @attach_btf_obj_fd=r1, 0x3, 0x5, 0x2, 0x7fffffff, 0xe6}, 0x7) 1.743104377s ago: executing program 2 (id=1008): r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, r0, 0x2) landlock_create_ruleset$auto(&(0x7f00000000c0)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd4/queue/nr_zones\x00', 0x123c80, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001080)=""/4120, 0x1018) ftruncate$auto(r0, 0x5) 1.723061249s ago: executing program 3 (id=1009): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty30\x00', 0x62c00, 0x0) ioctl$auto(r0, 0x4b30, 0x20000009) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vidtv.0/i2c-0/delete_device\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="35b918", 0x3) (async) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="35b918", 0x3) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fs/ext4/sda1/mb_structs_summary\x00', 0x40080, 0x0) (async) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fs/ext4/sda1/mb_structs_summary\x00', 0x40080, 0x0) pread64$auto(r2, 0x0, 0x8100000041, 0x413e) fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r0, 0x7, &(0x7f0000000080)='MAC80211_HWSIM\x00', &(0x7f00000002c0)="c05fd49ff3838cd92230072e44a9a93bf090b809d7853f4370213ca88002feb447aad0e10990274efebb2bdfa1fe9326d97d5e88dc9f811831db163352347aee046bfdc4ffb06724c04636244d7d4ba4de6cc765acfd48706e83", 0x4) waitid$auto(0x9, 0xffffffffffffffff, 0x0, 0x9, &(0x7f00000001c0)={{0x4, 0x4000000000002}, {0x3}, 0xffffffffffffff74, 0x3ff, 0x4, 0x3, 0x4, 0x3, 0x7c3, 0x6, 0x1, 0x3, 0x9, 0x2002, 0x9, 0x200}) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd08, &(0x7f00000001c0)) (async) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd08, &(0x7f00000001c0)) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) syz_clone3(&(0x7f00000001c0)={0x80a00400, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) rt_sigtimedwait$auto(&(0x7f0000000140)={0xfffffffffffffffc}, 0x0, &(0x7f0000000180)={0x5, 0x3}, 0x8) pread64$auto(r4, 0x0, 0x20000000001, 0xfffffffffffff) prctl$auto(0x23, 0x3, 0x2009, 0x0, 0x0) setdomainname$auto(0x0, 0x1f3) (async) setdomainname$auto(0x0, 0x1f3) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socketpair$auto(0x10, 0x1, 0x8000000000000000, 0x0) r5 = socket(0x2, 0x801, 0x84) getsockopt$auto(r5, 0x84, 0x6c, 0x0, 0x0) (async) getsockopt$auto(r5, 0x84, 0x6c, 0x0, 0x0) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) (async) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x110, r6, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@HWSIM_ATTR_PERM_ADDR={0x4}, @HWSIM_ATTR_ADDR_RECEIVER={0xf8, 0x1, "b9662efb602d7a35901c8b07381e94bfcfd7d7af7d01ea1c2420bc8ecbc04f5d55823400418198695d1dffd7c37476cdf786500e1c8dad71b2ce58854b37fdd402c08d567fefe86ec3e491fe5f2e6da43bd52e674f7c263957f403110cd538b28b664ef3f38d736fb24ec72f8003dac3e3f4842c9f654c2d1ba07705fa1d4ed598beb05ccf93f68423549eccdd4b21292d01277290e8bc9cf321bdbecb38331e53f81501e5e8c0c88ad812e4314e280b1207011443cd855f046cf1ad20e247afc73c313a4d08095ca83c35c563d4b500922612be1c936f20e9f9158244cdbd0509073fa37dce1d6359b8278d738a17ce30871fc8"}]}, 0x110}, 0x1, 0x0, 0x0, 0x880}, 0x8805) 1.624924657s ago: executing program 2 (id=1010): mmap$auto(0x0, 0xfffffffffffffe01, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) setrlimit$auto(0x7, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x100000000000028, 0x0) fsopen$auto(0x0, 0x1) socket(0x2, 0x1, 0x106) socket(0x25, 0x1, 0x3) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) capget$auto(0x0, 0xfffffffffffffffe) ioctl$auto(r1, 0x2203, r1) 1.29301688s ago: executing program 1 (id=1011): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r4, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r4, 0xffffffffffffff25, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0) read$auto(r5, 0x0, 0xb4d3) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3a) mmap$auto(0xffffffff00000000, 0x2020007, 0x0, 0x100000eb1, r1, 0x529) fsopen$auto(0x0, 0x1) r6 = socket(0xa, 0x3, 0x88) setsockopt$auto(r6, 0x11, 0xa, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) 1.277234711s ago: executing program 2 (id=1012): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x18, 0x7, 0x80000001) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSNPMODE(r0, 0x4008744b, 0x0) r1 = prctl$auto(0x29206, 0x1, 0x4, 0x6, 0x8) mmap$auto(0x2, 0x1, 0x8000000000000003, 0x8000000000000010, r1, 0x8000) rename$auto(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./cgroup/file0\x00') ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000600)={{@raw=0xfffffffe, 0x85, 0x20e, 0x9, "660e00d9e9756f22fdffa188f5f106000000000000000b2f4ab8633824f2d2252ca5f200", @raw=0x6}, 0x0, @integer=@value=[0x42, 0x3, 0x4, 0x6, 0x9, 0xffffffffffffffff, 0x9, 0x3, 0x101, 0x101, 0x22, 0x4, 0x6, 0x4, 0x7, 0xf, 0x1ff, 0x1, 0x400, 0x8, 0x5, 0x2, 0xe294, 0xa2, 0x8, 0x100000000, 0x2, 0x8, 0xae, 0xaeb, 0x3, 0x8, 0x5, 0x8, 0xfffffffffffffffe, 0x10000, 0x7, 0x7, 0x4, 0xe, 0xffffffffffffffff, 0x6, 0x9, 0x14f3, 0x1ff, 0x1, 0x8000000006e7, 0x3, 0x8, 0x9, 0x0, 0x2, 0x7fffffff, 0x7, 0x2f79f1d9, 0x0, 0x401, 0x9, 0x6, 0x100000003, 0xffffffff, 0x800, 0x8001, 0x5, 0x2, 0x4, 0x7, 0x80000000, 0x962, 0x5, 0xfffffffffffffffe, 0x8, 0xfffffffffffffff7, 0x401, 0x1, 0x3e44, 0x8, 0x4, 0x9, 0x1, 0x643, 0x68, 0x2, 0x6, 0x1, 0x3, 0xfffffffffffffffe, 0x4, 0xfffffffffffffffe, 0xffffffffffffffff, 0x55, 0x8, 0x30, 0x2d, 0x7ff, 0x3, 0x5, 0x0, 0x726, 0x7fffffff, 0x1000, 0x10000, 0x0, 0x4, 0x1, 0xbf, 0x2, 0x4, 0xfffffffffffffffd, 0x7, 0x1, 0x3f, 0x6, 0x9, 0x8000, 0xffff, 0x7, 0x80000000000140, 0x0, 0xc7dd, 0xfc05, 0x0, 0x4, 0x6, 0x8, 0x3, 0x0, 0x4], "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e87e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b232c1d35a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c85"}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000140)=@can, 0x3) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fcntl$auto(0x3, 0x4, 0xa553) syz_genetlink_get_family_id$auto_ethtool(0x0, r2) r3 = socket(0xb, 0x1, 0xc) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0) bind$auto(0x3, 0x0, 0x6a) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00'}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x4e, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x20000040}, 0x20040894) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x45}, 0x2000c010) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x1a0000, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x4, 0x3, 0xeb1, r4, 0x8000) mmap$auto(0x0, 0x3, 0xdf, 0x18, r5, 0x8000) r6 = socket(0xa, 0x2, 0x0) setsockopt$auto(r6, 0x29, 0x3b, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) setsockopt$auto(0x400000000000003, 0x29, 0x39, 0xffffffffffffffff, 0x0) 1.097415049s ago: executing program 3 (id=1013): openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="01012b"], 0x20}, 0x1, 0x0, 0x0, 0x60040440}, 0x800) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x60020000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x44000, 0x0) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 443.298186ms ago: executing program 2 (id=1014): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x468063, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cpu.max\x00', 0x20b02, 0x0) io_uring_register$auto_IORING_UNREGISTER_FILES(r0, 0x3, &(0x7f0000000080)="193f32b995f0ecb4ddf8cd83baeda5c352a745214ad880cc4c561670de2d13131c656d339507302cd18f379f551569932d17bb17195ecfc677eb23ac801128003ef54e78817f1a", 0x3) sendfile$auto(r0, r0, &(0x7f0000000000)=0x3, 0xad6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0xfffffffffffffffc, 0x2, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r2}, 0x6f4) setsockopt$auto(0x3, 0x1, 0x4a, 0x0, 0x9) socket(0x10, 0x80002, 0x0) 0s ago: executing program 3 (id=1015): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x6, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfc, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0x3}, 0x800}, 0x7, 0x4008) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.33' (ED25519) to the list of known hosts. [ 79.788692][ T5818] cgroup: Unknown subsys name 'net' [ 79.916734][ T5818] cgroup: Unknown subsys name 'cpuset' [ 79.925363][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 81.380170][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 83.524098][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 83.532398][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 83.539952][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.547965][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.555691][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.574192][ T5151] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.582280][ T5151] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 83.589833][ T5151] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 83.598500][ T5151] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 83.606269][ T5151] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 83.681224][ T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 83.690280][ T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 83.697893][ T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 83.715265][ T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 83.723082][ T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 83.757196][ T52] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 83.765251][ T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 83.772651][ T52] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.781485][ T52] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.789440][ T52] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.037003][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 84.092759][ T5833] chnl_net:caif_netlink_parms(): no params data found [ 84.214585][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.221773][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.229168][ T5829] bridge_slave_0: entered allmulticast mode [ 84.236273][ T5829] bridge_slave_0: entered promiscuous mode [ 84.265301][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.272436][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.280054][ T5829] bridge_slave_1: entered allmulticast mode [ 84.287619][ T5829] bridge_slave_1: entered promiscuous mode [ 84.304037][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.311177][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.318332][ T5833] bridge_slave_0: entered allmulticast mode [ 84.325248][ T5833] bridge_slave_0: entered promiscuous mode [ 84.358871][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.366032][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.373138][ T5833] bridge_slave_1: entered allmulticast mode [ 84.380349][ T5833] bridge_slave_1: entered promiscuous mode [ 84.420608][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.452257][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.475745][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.510829][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.571309][ T5829] team0: Port device team_slave_0 added [ 84.578156][ T5837] chnl_net:caif_netlink_parms(): no params data found [ 84.599721][ T5829] team0: Port device team_slave_1 added [ 84.618088][ T5833] team0: Port device team_slave_0 added [ 84.640648][ T5840] chnl_net:caif_netlink_parms(): no params data found [ 84.652803][ T5833] team0: Port device team_slave_1 added [ 84.691651][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.698714][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.724793][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.759076][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.766097][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.792495][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.818142][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.825235][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.851148][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.879249][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.886240][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.912226][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.964131][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.971508][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.978881][ T5837] bridge_slave_0: entered allmulticast mode [ 84.985870][ T5837] bridge_slave_0: entered promiscuous mode [ 85.011146][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.018345][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.025678][ T5837] bridge_slave_1: entered allmulticast mode [ 85.032544][ T5837] bridge_slave_1: entered promiscuous mode [ 85.082035][ T5829] hsr_slave_0: entered promiscuous mode [ 85.088409][ T5829] hsr_slave_1: entered promiscuous mode [ 85.095434][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.102557][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.109727][ T5840] bridge_slave_0: entered allmulticast mode [ 85.116809][ T5840] bridge_slave_0: entered promiscuous mode [ 85.143539][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.151040][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.158233][ T5840] bridge_slave_1: entered allmulticast mode [ 85.165143][ T5840] bridge_slave_1: entered promiscuous mode [ 85.180665][ T5833] hsr_slave_0: entered promiscuous mode [ 85.187336][ T5833] hsr_slave_1: entered promiscuous mode [ 85.193309][ T5833] debugfs: 'hsr0' already exists in 'hsr' [ 85.199125][ T5833] Cannot create hsr debugfs directory [ 85.208412][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.238939][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.283194][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.318454][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.345701][ T5837] team0: Port device team_slave_0 added [ 85.373084][ T5837] team0: Port device team_slave_1 added [ 85.410104][ T5840] team0: Port device team_slave_0 added [ 85.438540][ T5840] team0: Port device team_slave_1 added [ 85.456603][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.463534][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.489977][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.521138][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.528133][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.554339][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.574571][ T5151] Bluetooth: hci0: command tx timeout [ 85.597240][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.604382][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.631012][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.643598][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.650832][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.677038][ T5151] Bluetooth: hci1: command tx timeout [ 85.683346][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.733915][ T5151] Bluetooth: hci2: command tx timeout [ 85.765415][ T5837] hsr_slave_0: entered promiscuous mode [ 85.771959][ T5837] hsr_slave_1: entered promiscuous mode [ 85.778249][ T5837] debugfs: 'hsr0' already exists in 'hsr' [ 85.784160][ T5837] Cannot create hsr debugfs directory [ 85.813986][ T5151] Bluetooth: hci3: command tx timeout [ 85.874469][ T5840] hsr_slave_0: entered promiscuous mode [ 85.880714][ T5840] hsr_slave_1: entered promiscuous mode [ 85.887739][ T5840] debugfs: 'hsr0' already exists in 'hsr' [ 85.893464][ T5840] Cannot create hsr debugfs directory [ 86.036370][ T5829] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 86.049133][ T5829] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 86.073763][ T5829] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 86.103147][ T5829] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 86.212644][ T5833] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 86.223552][ T5833] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 86.237548][ T5833] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 86.248365][ T5833] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 86.325553][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 86.338080][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 86.353551][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 86.392132][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 86.471193][ T5840] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 86.487542][ T5840] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 86.505553][ T5840] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 86.516216][ T5840] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 86.545412][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.577707][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.595746][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.602878][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.627047][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.634201][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.673702][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.712476][ T5833] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.775844][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.782930][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.818828][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.826021][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.898556][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.020033][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.042006][ T5837] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.116439][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.123597][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.179846][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.187100][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.233649][ T5840] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.280442][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.287647][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.322850][ T4787] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.330036][ T4787] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.378866][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.472553][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.527143][ T5829] veth0_vlan: entered promiscuous mode [ 87.555924][ T5829] veth1_vlan: entered promiscuous mode [ 87.642100][ T5833] veth0_vlan: entered promiscuous mode [ 87.653663][ T5829] veth0_macvtap: entered promiscuous mode [ 87.668294][ T5151] Bluetooth: hci0: command tx timeout [ 87.691012][ T5833] veth1_vlan: entered promiscuous mode [ 87.708300][ T5829] veth1_macvtap: entered promiscuous mode [ 87.734231][ T5151] Bluetooth: hci1: command tx timeout [ 87.788160][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 87.805294][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.813077][ T5833] veth0_macvtap: entered promiscuous mode [ 87.829271][ T5151] Bluetooth: hci2: command tx timeout [ 87.846793][ T5833] veth1_macvtap: entered promiscuous mode [ 87.861560][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.894710][ T5151] Bluetooth: hci3: command tx timeout [ 87.902317][ T147] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.916150][ T147] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.927740][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.936722][ T147] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.946408][ T147] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.966629][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.996027][ T147] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.016218][ T147] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.026452][ T147] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.043007][ T147] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.055103][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.107519][ T5837] veth0_vlan: entered promiscuous mode [ 88.171914][ T5837] veth1_vlan: entered promiscuous mode [ 88.189738][ T147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.210690][ T147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.228484][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.247079][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.278459][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.288891][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.325553][ T5840] veth0_vlan: entered promiscuous mode [ 88.333436][ T5837] veth0_macvtap: entered promiscuous mode [ 88.346366][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.355659][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.377079][ T5840] veth1_vlan: entered promiscuous mode [ 88.390614][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 88.409278][ T5837] veth1_macvtap: entered promiscuous mode [ 88.464613][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.537596][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.563250][ T5840] veth0_macvtap: entered promiscuous mode [ 88.592683][ T5840] veth1_macvtap: entered promiscuous mode [ 88.617479][ T147] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.639527][ T147] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.664374][ T147] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.685637][ T5922] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 88.717418][ T147] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.742490][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.785591][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.831079][ T4787] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.856808][ T4787] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.861348][ T4787] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.861397][ T4787] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.904965][ T5925] random: crng reseeded on system resumption [ 88.959679][ T5925] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 89.025529][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.025567][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.067814][ T4787] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.067838][ T4787] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.137866][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.137889][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.233178][ T2953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.314228][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.322749][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.334398][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 89.348773][ T2953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.733972][ T5151] Bluetooth: hci0: command tx timeout [ 89.814998][ T5151] Bluetooth: hci1: command tx timeout [ 89.896451][ T5151] Bluetooth: hci2: command tx timeout [ 89.986097][ T5151] Bluetooth: hci3: command tx timeout [ 90.498160][ T5943] process 'syz.3.6' launched ':,' with NULL argv: empty string added [ 90.914132][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.594628][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.814217][ T5151] Bluetooth: hci0: command tx timeout [ 91.825933][ T48] cfg80211: failed to load regulatory.db [ 91.894847][ T5151] Bluetooth: hci1: command tx timeout [ 91.977782][ T5151] Bluetooth: hci2: command tx timeout [ 92.054495][ T5151] Bluetooth: hci3: command tx timeout [ 92.253326][ T5974] netlink: 21 bytes leftover after parsing attributes in process `syz.2.13'. [ 93.634782][ T5983] mmap: syz.1.16 (5983) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 93.834308][ T5977] syz.2.14 (5977) used greatest stack depth: 19688 bytes left [ 94.755259][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.764795][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.934288][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 95.154291][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.174694][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 95.385305][ T5998] Zero length message leads to an empty skb [ 101.467068][ T6083] random: crng reseeded on system resumption [ 101.899513][ T6083] hub 1-0:1.0: USB hub found [ 101.956914][ T6083] hub 1-0:1.0: 1 port detected [ 102.377118][ T6095] FAULT_INJECTION: forcing a failure. [ 102.377118][ T6095] name fail_futex, interval 1, probability 0, space 0, times 1 [ 102.405265][ T6095] CPU: 0 UID: 0 PID: 6095 Comm: syz.3.37 Not tainted syzkaller #0 PREEMPT(full) [ 102.405287][ T6095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 102.405299][ T6095] Call Trace: [ 102.405305][ T6095] [ 102.405311][ T6095] dump_stack_lvl+0x16c/0x1f0 [ 102.405344][ T6095] should_fail_ex+0x512/0x640 [ 102.405364][ T6095] get_futex_key+0x1d0/0x15f0 [ 102.405384][ T6095] ? __pfx_get_futex_key+0x10/0x10 [ 102.405406][ T6095] futex_wake+0xea/0x530 [ 102.405428][ T6095] ? __pfx_futex_wake+0x10/0x10 [ 102.405452][ T6095] ? kmem_cache_free+0x171/0x770 [ 102.405475][ T6095] do_futex+0x1e3/0x350 [ 102.405491][ T6095] ? __pfx_do_futex+0x10/0x10 [ 102.405507][ T6095] ? __pfx___might_resched+0x10/0x10 [ 102.405527][ T6095] ? blkcg_maybe_throttle_current+0x650/0xf30 [ 102.405546][ T6095] ? _raw_spin_unlock_irq+0x23/0x50 [ 102.405569][ T6095] __x64_sys_futex+0x1e0/0x4c0 [ 102.405594][ T6095] ? __do_sys_close_range+0x278/0x730 [ 102.405618][ T6095] ? __pfx___x64_sys_futex+0x10/0x10 [ 102.405635][ T6095] ? rcu_is_watching+0x12/0xc0 [ 102.405661][ T6095] do_syscall_64+0xcd/0xf80 [ 102.405686][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.405700][ T6095] RIP: 0033:0x7f615878f7c9 [ 102.405716][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.405730][ T6095] RSP: 002b:00007f61596960e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 102.405745][ T6095] RAX: ffffffffffffffda RBX: 00007f61589e6188 RCX: 00007f615878f7c9 [ 102.405755][ T6095] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f61589e618c [ 102.405764][ T6095] RBP: 00007f61589e6180 R08: 00007f61596d9000 R09: 0000000000000000 [ 102.405773][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.405781][ T6095] R13: 00007f61589e6218 R14: 00007fff86fc2940 R15: 00007fff86fc2a28 [ 102.405800][ T6095] [ 102.812115][ T6098] FAULT_INJECTION: forcing a failure. [ 102.812115][ T6098] name failslab, interval 1, probability 0, space 0, times 1 [ 102.848424][ T6098] CPU: 1 UID: 0 PID: 6098 Comm: syz.0.38 Not tainted syzkaller #0 PREEMPT(full) [ 102.848459][ T6098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 102.848474][ T6098] Call Trace: [ 102.848483][ T6098] [ 102.848493][ T6098] dump_stack_lvl+0x16c/0x1f0 [ 102.848538][ T6098] should_fail_ex+0x512/0x640 [ 102.848567][ T6098] ? __kmalloc_noprof+0xca/0x910 [ 102.848598][ T6098] should_failslab+0xc2/0x120 [ 102.848638][ T6098] __kmalloc_noprof+0xeb/0x910 [ 102.848665][ T6098] ? copy_splice_read+0x1a8/0xc20 [ 102.848706][ T6098] ? copy_splice_read+0x1a8/0xc20 [ 102.848740][ T6098] copy_splice_read+0x1a8/0xc20 [ 102.848782][ T6098] ? __pfx_copy_splice_read+0x10/0x10 [ 102.848831][ T6098] ? look_up_lock_class+0x59/0x130 [ 102.848876][ T6098] ? lockdep_init_map_type+0x5c/0x270 [ 102.848905][ T6098] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 102.848942][ T6098] ? __pfx_copy_splice_read+0x10/0x10 [ 102.848976][ T6098] do_splice_read+0x285/0x370 [ 102.849016][ T6098] splice_direct_to_actor+0x2a1/0xa30 [ 102.849055][ T6098] ? __pfx_direct_splice_actor+0x10/0x10 [ 102.849099][ T6098] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 102.849147][ T6098] do_splice_direct+0x174/0x240 [ 102.849183][ T6098] ? __pfx_do_splice_direct+0x10/0x10 [ 102.849220][ T6098] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 102.849261][ T6098] ? rw_verify_area+0xcf/0x6c0 [ 102.849295][ T6098] do_sendfile+0xb06/0xe50 [ 102.849335][ T6098] ? __pfx_do_sendfile+0x10/0x10 [ 102.849375][ T6098] ? __x64_sys_futex+0x1e0/0x4c0 [ 102.849403][ T6098] ? __x64_sys_futex+0x1e9/0x4c0 [ 102.849435][ T6098] __x64_sys_sendfile64+0x1d8/0x220 [ 102.849462][ T6098] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 102.849498][ T6098] do_syscall_64+0xcd/0xf80 [ 102.849538][ T6098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.849564][ T6098] RIP: 0033:0x7fad7c98f7c9 [ 102.849585][ T6098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 102.849608][ T6098] RSP: 002b:00007fad7d897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 102.849633][ T6098] RAX: ffffffffffffffda RBX: 00007fad7cbe6090 RCX: 00007fad7c98f7c9 [ 102.849651][ T6098] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007 [ 102.849666][ T6098] RBP: 00007fad7ca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 102.849681][ T6098] R10: 000000007fffe000 R11: 0000000000000246 R12: 0000000000000000 [ 102.849696][ T6098] R13: 00007fad7cbe6128 R14: 00007fad7cbe6090 R15: 00007ffd649fd4d8 [ 102.849732][ T6098] [ 103.534401][ T6113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.42'. [ 103.948717][ T6116] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 103.982866][ T6116] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 104.098964][ T6121] vhci_hcd vhci_hcd.2: invalid port number 255 [ 104.115345][ T6116] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 104.142460][ T6121] ======================================================= [ 104.142460][ T6121] WARNING: The mand mount option has been deprecated and [ 104.142460][ T6121] and is ignored by this kernel. Remove the mand [ 104.142460][ T6121] option from the mount to silence this warning. [ 104.142460][ T6121] ======================================================= [ 104.203754][ T6116] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 104.210447][ T6116] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 104.258067][ T6116] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 104.291436][ T6116] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 104.310531][ T6116] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 104.372074][ T6116] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 104.397546][ T6116] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 104.407964][ T6116] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 104.474516][ T6116] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 104.609683][ T6127] netlink: 28 bytes leftover after parsing attributes in process `syz.2.45'. [ 104.865659][ T6131] netlink: 8 bytes leftover after parsing attributes in process `syz.0.46'. [ 105.076738][ T6140] netlink: 4 bytes leftover after parsing attributes in process `syz.3.48'. [ 105.911886][ T6149] netlink: 28 bytes leftover after parsing attributes in process `syz.0.51'. [ 105.974016][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 106.086158][ T6149] vlan1: entered promiscuous mode [ 106.091391][ T6149] vlan1: entered allmulticast mode [ 106.102057][ T6149] veth0_vlan: entered allmulticast mode [ 106.213987][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 106.293866][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout [ 106.455541][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 106.462179][ T5151] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260 [ 106.462210][ T5151] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260 [ 106.479244][ T5151] Bluetooth: hci1: Dropping invalid advertising data [ 106.486328][ T5151] Bluetooth: hci1: unknown advertising packet type: 0xe9 [ 106.486363][ T5151] Bluetooth: hci1: Dropping invalid advertising data [ 106.500770][ T5151] Bluetooth: hci1: Malformed LE Event: 0x02 [ 108.053891][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 108.294062][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 108.383872][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout [ 108.535079][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 110.143853][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 110.374753][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 110.472346][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout [ 110.623837][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 113.004901][ T6226] FAULT_INJECTION: forcing a failure. [ 113.004901][ T6226] name failslab, interval 1, probability 0, space 0, times 0 [ 113.051612][ T6226] CPU: 0 UID: 60928 PID: 6226 Comm: syz.3.64 Not tainted syzkaller #0 PREEMPT(full) [ 113.051635][ T6226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 113.051644][ T6226] Call Trace: [ 113.051649][ T6226] [ 113.051656][ T6226] dump_stack_lvl+0x16c/0x1f0 [ 113.051685][ T6226] should_fail_ex+0x512/0x640 [ 113.051702][ T6226] ? kmem_cache_alloc_noprof+0x62/0x770 [ 113.051722][ T6226] should_failslab+0xc2/0x120 [ 113.051745][ T6226] kmem_cache_alloc_noprof+0x83/0x770 [ 113.051763][ T6226] ? __might_fault+0xe3/0x190 [ 113.051781][ T6226] ? __might_fault+0x13b/0x190 [ 113.051795][ T6226] ? prepare_creds+0x2c/0x940 [ 113.051816][ T6226] ? prepare_creds+0x2c/0x940 [ 113.051830][ T6226] prepare_creds+0x2c/0x940 [ 113.051848][ T6226] __do_sys_capset+0x26c/0x460 [ 113.051867][ T6226] ? __pfx___do_sys_capset+0x10/0x10 [ 113.051886][ T6226] ? __x64_sys_futex+0x1e0/0x4c0 [ 113.051907][ T6226] ? xfd_validate_state+0x61/0x180 [ 113.051924][ T6226] ? rcu_is_watching+0x12/0xc0 [ 113.051946][ T6226] do_syscall_64+0xcd/0xf80 [ 113.051971][ T6226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.051986][ T6226] RIP: 0033:0x7f615878f7c9 [ 113.051998][ T6226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.052012][ T6226] RSP: 002b:00007f61596d8038 EFLAGS: 00000246 ORIG_RAX: 000000000000007e [ 113.052026][ T6226] RAX: ffffffffffffffda RBX: 00007f61589e5fa0 RCX: 00007f615878f7c9 [ 113.052036][ T6226] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 113.052044][ T6226] RBP: 00007f6158813f91 R08: 0000000000000000 R09: 0000000000000000 [ 113.052053][ T6226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.052061][ T6226] R13: 00007f61589e6038 R14: 00007f61589e5fa0 R15: 00007fff86fc2a28 [ 113.052080][ T6226] [ 113.923390][ T6237] zswap: compressor not available [ 115.247795][ T6250] zswap: compressor not available [ 116.729186][ T6278] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 116.982022][ T6286] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 123.694764][ T6354] FAULT_INJECTION: forcing a failure. [ 123.694764][ T6354] name failslab, interval 1, probability 0, space 0, times 0 [ 123.726298][ T6354] CPU: 0 UID: 0 PID: 6354 Comm: syz.3.85 Not tainted syzkaller #0 PREEMPT(full) [ 123.726336][ T6354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 123.726351][ T6354] Call Trace: [ 123.726359][ T6354] [ 123.726369][ T6354] dump_stack_lvl+0x16c/0x1f0 [ 123.726416][ T6354] should_fail_ex+0x512/0x640 [ 123.726456][ T6354] ? kmem_cache_alloc_noprof+0x62/0x770 [ 123.726492][ T6354] should_failslab+0xc2/0x120 [ 123.726530][ T6354] kmem_cache_alloc_noprof+0x83/0x770 [ 123.726561][ T6354] ? kvm_vm_ioctl+0xca0/0x4090 [ 123.726597][ T6354] ? kvm_vm_ioctl+0xca0/0x4090 [ 123.726625][ T6354] kvm_vm_ioctl+0xca0/0x4090 [ 123.726669][ T6354] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 123.726725][ T6354] ? kasan_quarantine_put+0x10a/0x240 [ 123.726761][ T6354] ? lockdep_hardirqs_on+0x7c/0x110 [ 123.726805][ T6354] ? find_held_lock+0x2b/0x80 [ 123.726844][ T6354] ? tomoyo_path_number_perm+0x295/0x580 [ 123.726881][ T6354] ? tomoyo_path_number_perm+0x18d/0x580 [ 123.726918][ T6354] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 123.726963][ T6354] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 123.727008][ T6354] ? do_vfs_ioctl+0x128/0x14f0 [ 123.727042][ T6354] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 123.727084][ T6354] ? find_held_lock+0x2b/0x80 [ 123.727119][ T6354] ? hook_file_ioctl_common+0x144/0x410 [ 123.727157][ T6354] ? __fget_files+0x20e/0x3c0 [ 123.727202][ T6354] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 123.727235][ T6354] __x64_sys_ioctl+0x18e/0x210 [ 123.727273][ T6354] do_syscall_64+0xcd/0xf80 [ 123.727318][ T6354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.727346][ T6354] RIP: 0033:0x7f615878f7c9 [ 123.727367][ T6354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.727396][ T6354] RSP: 002b:00007f61596d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 123.727428][ T6354] RAX: ffffffffffffffda RBX: 00007f61589e5fa0 RCX: 00007f615878f7c9 [ 123.727446][ T6354] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 123.727466][ T6354] RBP: 00007f6158813f91 R08: 0000000000000000 R09: 0000000000000000 [ 123.727483][ T6354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 123.727498][ T6354] R13: 00007f61589e6038 R14: 00007f61589e5fa0 R15: 00007fff86fc2a28 [ 123.727535][ T6354] [ 124.482035][ T30] audit: type=1800 audit(1768178583.321:2): pid=6364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.86" name="dbroot" dev="configfs" ino=11293 res=0 errno=0 [ 124.712309][ T6370] tipc: Started in network mode [ 124.772863][ T6370] tipc: Node identity ffffffff, cluster identity 4711 [ 124.812905][ T6370] tipc: Node number set to 4294967295 [ 124.971606][ T6364] db_root: cannot open: /dev/audio1 [ 125.508428][ T6380] NFSD: Failed to start, no listeners configured. [ 125.736609][ T30] audit: type=1800 audit(1768178584.591:3): pid=6385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.92" name="members" dev="configfs" ino=10697 res=0 errno=0 [ 129.291795][ T6412] zswap: compressor not available [ 130.952151][ T30] audit: type=1800 audit(1768178589.801:4): pid=6450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.102" name="members" dev="configfs" ino=11553 res=0 errno=0 [ 131.804828][ T6453] input: 9%vJ,6 as /devices/virtual/input/input6 [ 133.115051][ T6496] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 135.665030][ T5151] Bluetooth: hci0: Malformed Event: 0x13 [ 137.903728][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.910333][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.403018][ T6612] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 142.091889][ T6670] netlink: 'syz.0.144': attribute type 4 has an invalid length. [ 142.119889][ T6670] netlink: 314 bytes leftover after parsing attributes in process `syz.0.144'. [ 142.849973][ T6681] input: 9%vJ,6 as /devices/virtual/input/input7 [ 145.604169][ T6708] zswap: compressor not available [ 145.657442][ T6728] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 145.669066][ T6728] netlink: 28 bytes leftover after parsing attributes in process `syz.1.157'. [ 146.318645][ T5151] Bluetooth: hci0: unexpected event 0x14 length: 16 > 6 [ 147.213190][ T6760] zswap: compressor not available [ 147.576592][ T6782] netlink: 'syz.2.170': attribute type 1 has an invalid length. [ 147.853903][ T6790] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 147.860525][ T6790] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 147.954606][ T6790] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 147.961078][ T6790] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 149.241583][ T6811] zswap: compressor not available [ 151.813718][ T6877] zswap: compressor not available [ 156.039249][ T6953] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 156.903585][ T6955] zswap: compressor not available [ 157.128436][ T6980] sd 0:0:1:0: PR command failed: 1026 [ 157.136069][ T6981] sd 0:0:1:0: PR command failed: 1026 [ 157.146156][ T6980] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 157.176631][ T6981] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 157.183367][ T6981] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 157.186619][ T6980] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 158.413187][ T7005] netlink: 25 bytes leftover after parsing attributes in process `syz.3.215'. [ 159.263697][ T7015] Invalid ELF header magic: != ELF [ 159.343901][ T7018] zswap: compressor not available [ 161.476939][ T7078] netlink: 342 bytes leftover after parsing attributes in process `syz.3.231'. [ 162.335560][ T7088] netlink: 342 bytes leftover after parsing attributes in process `syz.3.233'. [ 163.988640][ T7113] syz.3.239 uses obsolete (PF_INET,SOCK_PACKET) [ 165.459882][ T7148] syz.0.237 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 165.554452][ T7137] zswap: compressor not available [ 165.881239][ T7158] FAULT_INJECTION: forcing a failure. [ 165.881239][ T7158] name failslab, interval 1, probability 0, space 0, times 0 [ 165.913544][ T7157] rnbd_client L213: map_device: Parameters missing [ 165.921091][ T7158] CPU: 1 UID: 0 PID: 7158 Comm: syz.0.247 Tainted: G L syzkaller #0 PREEMPT(full) [ 165.921128][ T7158] Tainted: [L]=SOFTLOCKUP [ 165.921137][ T7158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 165.921151][ T7158] Call Trace: [ 165.921159][ T7158] [ 165.921168][ T7158] dump_stack_lvl+0x16c/0x1f0 [ 165.921210][ T7158] should_fail_ex+0x512/0x640 [ 165.921238][ T7158] ? fs_reclaim_acquire+0xae/0x150 [ 165.921277][ T7158] should_failslab+0xc2/0x120 [ 165.921313][ T7158] kmem_cache_alloc_noprof+0x83/0x770 [ 165.921341][ T7158] ? __pfx_map_id_range_down+0x10/0x10 [ 165.921375][ T7158] ? security_inode_alloc+0x3b/0x2b0 [ 165.921408][ T7158] ? security_inode_alloc+0x3b/0x2b0 [ 165.921432][ T7158] security_inode_alloc+0x3b/0x2b0 [ 165.921459][ T7158] inode_init_always_gfp+0xced/0x1040 [ 165.921498][ T7158] alloc_inode+0x86/0x240 [ 165.921523][ T7158] sock_alloc+0x40/0x280 [ 165.921558][ T7158] __sock_create+0xc2/0x8a0 [ 165.921586][ T7158] __sys_socketpair+0x25c/0x5a0 [ 165.921614][ T7158] ? __pfx___sys_socketpair+0x10/0x10 [ 165.921642][ T7158] ? xfd_validate_state+0x61/0x180 [ 165.921671][ T7158] __x64_sys_socketpair+0x96/0x100 [ 165.921696][ T7158] ? lockdep_hardirqs_on+0x7c/0x110 [ 165.921732][ T7158] do_syscall_64+0xcd/0xf80 [ 165.921770][ T7158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.921794][ T7158] RIP: 0033:0x7fad7c98f7c9 [ 165.921813][ T7158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.921835][ T7158] RSP: 002b:00007fad7d897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 165.921858][ T7158] RAX: ffffffffffffffda RBX: 00007fad7cbe6090 RCX: 00007fad7c98f7c9 [ 165.921874][ T7158] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 165.921889][ T7158] RBP: 00007fad7ca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 165.921904][ T7158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.921916][ T7158] R13: 00007fad7cbe6128 R14: 00007fad7cbe6090 R15: 00007ffd649fd4d8 [ 165.921950][ T7158] [ 165.922089][ T7158] socket: no more sockets [ 166.852644][ T7174] netlink: 504 bytes leftover after parsing attributes in process `syz.1.251'. [ 167.398231][ T7170] capability: warning: `syz.1.251' uses 32-bit capabilities (legacy support in use) [ 169.033705][ T7191] zswap: compressor not available [ 169.884862][ T7205] Invalid ELF header magic: != ELF [ 170.025190][ T7203] FAULT_INJECTION: forcing a failure. [ 170.025190][ T7203] name fail_futex, interval 1, probability 0, space 0, times 0 [ 170.074728][ T7203] CPU: 1 UID: 0 PID: 7203 Comm: syz.3.257 Tainted: G L syzkaller #0 PREEMPT(full) [ 170.074771][ T7203] Tainted: [L]=SOFTLOCKUP [ 170.074780][ T7203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 170.074796][ T7203] Call Trace: [ 170.074804][ T7203] [ 170.074814][ T7203] dump_stack_lvl+0x16c/0x1f0 [ 170.074860][ T7203] should_fail_ex+0x512/0x640 [ 170.074895][ T7203] get_futex_key+0x1d0/0x15f0 [ 170.074937][ T7203] ? __pfx_get_futex_key+0x10/0x10 [ 170.074977][ T7203] futex_wake+0xea/0x530 [ 170.075017][ T7203] ? __pfx_futex_wake+0x10/0x10 [ 170.075069][ T7203] do_futex+0x1e3/0x350 [ 170.075099][ T7203] ? __pfx_do_futex+0x10/0x10 [ 170.075138][ T7203] __x64_sys_futex+0x1e0/0x4c0 [ 170.075173][ T7203] ? __pfx___x64_sys_futex+0x10/0x10 [ 170.075202][ T7203] ? set_cred_ucounts+0x10f/0x200 [ 170.075236][ T7203] ? __sys_setresuid+0x6ad/0x1160 [ 170.075276][ T7203] do_syscall_64+0xcd/0xf80 [ 170.075318][ T7203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.075345][ T7203] RIP: 0033:0x7f615878f7c9 [ 170.075367][ T7203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.075391][ T7203] RSP: 002b:00007f61596d80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 170.075416][ T7203] RAX: ffffffffffffffda RBX: 00007f61589e5fa8 RCX: 00007f615878f7c9 [ 170.075434][ T7203] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f61589e5fac [ 170.075452][ T7203] RBP: 00007f61589e5fa0 R08: 00007f61596d9000 R09: 0000000000000000 [ 170.075469][ T7203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.075485][ T7203] R13: 00007f61589e6038 R14: 00007fff86fc2940 R15: 00007fff86fc2a28 [ 170.075522][ T7203] [ 170.936588][ T7217] netlink: 342 bytes leftover after parsing attributes in process `syz.0.259'. [ 171.788414][ T7235] zswap: compressor not available [ 174.156788][ T7283] zswap: compressor not available [ 174.609557][ T7275] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 174.676700][ T7322] netlink: NAT attribute has 4 unknown bytes [ 175.812480][ T7368] zswap: compressor not available [ 175.949632][ T7394] random: crng reseeded on system resumption [ 178.056619][ T7433] FAULT_INJECTION: forcing a failure. [ 178.056619][ T7433] name failslab, interval 1, probability 0, space 0, times 0 [ 178.072733][ T7433] CPU: 1 UID: 0 PID: 7433 Comm: syz.1.302 Tainted: G L syzkaller #0 PREEMPT(full) [ 178.072771][ T7433] Tainted: [L]=SOFTLOCKUP [ 178.072780][ T7433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 178.072793][ T7433] Call Trace: [ 178.072801][ T7433] [ 178.072810][ T7433] dump_stack_lvl+0x16c/0x1f0 [ 178.072859][ T7433] should_fail_ex+0x512/0x640 [ 178.072886][ T7433] ? __kmalloc_node_noprof+0xcd/0x930 [ 178.072923][ T7433] should_failslab+0xc2/0x120 [ 178.072958][ T7433] __kmalloc_node_noprof+0xee/0x930 [ 178.072991][ T7433] ? alloc_slab_obj_exts+0x43/0xf0 [ 178.073015][ T7433] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 178.073054][ T7433] ? alloc_slab_obj_exts+0x43/0xf0 [ 178.073079][ T7433] alloc_slab_obj_exts+0x43/0xf0 [ 178.073105][ T7433] new_slab+0x353/0x430 [ 178.073133][ T7433] ___slab_alloc+0xe18/0x1c90 [ 178.073161][ T7433] ? __register_sysctl_table+0xb3/0x1900 [ 178.073202][ T7433] ? __register_sysctl_table+0xb3/0x1900 [ 178.073234][ T7433] ? __slab_alloc.constprop.0+0x63/0x110 [ 178.073260][ T7433] __slab_alloc.constprop.0+0x63/0x110 [ 178.073292][ T7433] __kmalloc_noprof+0x4fc/0x910 [ 178.073317][ T7433] ? __register_sysctl_table+0xb3/0x1900 [ 178.073355][ T7433] ? __register_sysctl_table+0xb3/0x1900 [ 178.073386][ T7433] __register_sysctl_table+0xb3/0x1900 [ 178.073419][ T7433] ? rcu_is_watching+0x12/0xc0 [ 178.073456][ T7433] ? __pfx___register_sysctl_table+0x10/0x10 [ 178.073493][ T7433] ? __asan_memcpy+0x3c/0x60 [ 178.073524][ T7433] register_pidns_sysctls+0x120/0x1c0 [ 178.073553][ T7433] ? __ns_common_init+0x24e/0x4b0 [ 178.073590][ T7433] copy_pid_ns+0x666/0x10d0 [ 178.073615][ T7433] ? __memcg_slab_post_alloc_hook+0x472/0x880 [ 178.073654][ T7433] ? __pfx_copy_pid_ns+0x10/0x10 [ 178.073680][ T7433] ? rcu_is_watching+0x12/0xc0 [ 178.073711][ T7433] ? copy_mnt_ns+0x10b/0xc40 [ 178.073742][ T7433] create_new_namespaces+0x2aa/0xab0 [ 178.073783][ T7433] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 178.073819][ T7433] ksys_unshare+0x45b/0xa40 [ 178.073861][ T7433] ? __pfx_ksys_unshare+0x10/0x10 [ 178.073914][ T7433] __x64_sys_unshare+0x31/0x40 [ 178.073936][ T7433] do_syscall_64+0xcd/0xf80 [ 178.073974][ T7433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.074004][ T7433] RIP: 0033:0x7f3c41f8f7c9 [ 178.074023][ T7433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.074045][ T7433] RSP: 002b:00007f3c42e7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 178.074068][ T7433] RAX: ffffffffffffffda RBX: 00007f3c421e6090 RCX: 00007f3c41f8f7c9 [ 178.074084][ T7433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 178.074098][ T7433] RBP: 00007f3c42013f91 R08: 0000000000000000 R09: 0000000000000000 [ 178.074113][ T7433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.074128][ T7433] R13: 00007f3c421e6128 R14: 00007f3c421e6090 R15: 00007ffdd57f8f88 [ 178.074163][ T7433] [ 178.549674][ T7426] zswap: compressor not available [ 180.545814][ T7475] netlink: 146 bytes leftover after parsing attributes in process `syz.3.310'. [ 181.747804][ T7486] zswap: compressor not available [ 183.214165][ T30] audit: type=1800 audit(1768196997.180:5): pid=7515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.314" name="members" dev="configfs" ino=16703 res=0 errno=0 [ 183.248188][ T7513] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 184.590513][ T7529] netlink: 342 bytes leftover after parsing attributes in process `syz.0.320'. [ 186.057219][ T7541] zswap: compressor not available [ 186.851130][ T7588] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(7) [ 187.432714][ T7598] zswap: compressor not available [ 187.657677][ T7604] can: request_module (can-proto-0) failed. [ 188.470158][ T7643] netlink: 246 bytes leftover after parsing attributes in process `syz.3.345'. [ 188.702935][ T7645] netlink: 28 bytes leftover after parsing attributes in process `syz.3.346'. [ 188.769935][ T7645] bond0: (slave bond_slave_1): Releasing backup interface [ 189.334891][ T7667] netlink: 28 bytes leftover after parsing attributes in process `syz.3.353'. [ 189.781828][ T7675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 189.892826][ T7675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 191.973086][ T7718] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 195.364942][ T7757] vhci_hcd: not connected 4 [ 195.374553][ T7769] random: crng reseeded on system resumption [ 197.376943][ T7800] warning: `syz.0.380' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 199.156072][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.164080][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.620320][ T7869] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 202.528697][ T7899] netlink: 4 bytes leftover after parsing attributes in process `syz.0.403'. [ 203.850536][ T30] audit: type=1326 audit(1768198040.920:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7930 comm="syz.1.414" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3c41f8f7c9 code=0x0 [ 204.035397][ T7926] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 204.807203][ T7946] zswap: compressor not available [ 205.065498][ T7974] netlink: 330 bytes leftover after parsing attributes in process `syz.1.422'. [ 205.680264][ T7993] netlink: 'syz.2.428': attribute type 1 has an invalid length. [ 206.125554][ T8012] FAULT_INJECTION: forcing a failure. [ 206.125554][ T8012] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 206.139508][ T8012] CPU: 1 UID: 0 PID: 8012 Comm: syz.1.433 Tainted: G L syzkaller #0 PREEMPT(full) [ 206.139545][ T8012] Tainted: [L]=SOFTLOCKUP [ 206.139553][ T8012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 206.139566][ T8012] Call Trace: [ 206.139574][ T8012] [ 206.139587][ T8012] dump_stack_lvl+0x16c/0x1f0 [ 206.139628][ T8012] should_fail_ex+0x512/0x640 [ 206.139660][ T8012] _copy_from_user+0x2e/0xd0 [ 206.139688][ T8012] move_addr_to_kernel+0x65/0x170 [ 206.139716][ T8012] __sys_bind+0x11b/0x260 [ 206.139743][ T8012] ? __pfx___sys_bind+0x10/0x10 [ 206.139782][ T8012] ? __pfx_ksys_write+0x10/0x10 [ 206.139823][ T8012] __x64_sys_bind+0x72/0xb0 [ 206.139846][ T8012] ? lockdep_hardirqs_on+0x7c/0x110 [ 206.139882][ T8012] do_syscall_64+0xcd/0xf80 [ 206.139919][ T8012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.139944][ T8012] RIP: 0033:0x7f3c41f8f7c9 [ 206.139970][ T8012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.139992][ T8012] RSP: 002b:00007f3c42e9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 206.140015][ T8012] RAX: ffffffffffffffda RBX: 00007f3c421e5fa0 RCX: 00007f3c41f8f7c9 [ 206.140032][ T8012] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000003 [ 206.140045][ T8012] RBP: 00007f3c42e9c090 R08: 0000000000000000 R09: 0000000000000000 [ 206.140060][ T8012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.140074][ T8012] R13: 00007f3c421e6038 R14: 00007f3c421e5fa0 R15: 00007ffdd57f8f88 [ 206.140109][ T8012] [ 206.744088][ T8015] zswap: compressor not available [ 207.468859][ T8042] random: crng reseeded on system resumption [ 207.870218][ T8055] FAULT_INJECTION: forcing a failure. [ 207.870218][ T8055] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 207.884732][ T8055] CPU: 0 UID: 0 PID: 8055 Comm: syz.2.443 Tainted: G L syzkaller #0 PREEMPT(full) [ 207.884785][ T8055] Tainted: [L]=SOFTLOCKUP [ 207.884794][ T8055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 207.884808][ T8055] Call Trace: [ 207.884817][ T8055] [ 207.884825][ T8055] dump_stack_lvl+0x16c/0x1f0 [ 207.884865][ T8055] should_fail_ex+0x512/0x640 [ 207.884898][ T8055] _copy_from_user+0x2e/0xd0 [ 207.884927][ T8055] kstrtouint_from_user+0xd6/0x1d0 [ 207.884961][ T8055] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 207.885000][ T8055] ? __lock_acquire+0x436/0x2890 [ 207.885031][ T8055] ? simple_read_from_buffer+0x10d/0x170 [ 207.885070][ T8055] proc_fail_nth_write+0x83/0x220 [ 207.885096][ T8055] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 207.885131][ T8055] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 207.885153][ T8055] vfs_write+0x2a0/0x11d0 [ 207.885194][ T8055] ? __pfx_vfs_write+0x10/0x10 [ 207.885229][ T8055] ? fdget+0x187/0x210 [ 207.885261][ T8055] ? __sys_bind+0x1c5/0x260 [ 207.885289][ T8055] ? __pfx___sys_bind+0x10/0x10 [ 207.885327][ T8055] ksys_write+0x12a/0x250 [ 207.885359][ T8055] ? __pfx_ksys_write+0x10/0x10 [ 207.885399][ T8055] do_syscall_64+0xcd/0xf80 [ 207.885437][ T8055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.885462][ T8055] RIP: 0033:0x7fc8bf98e27f [ 207.885481][ T8055] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 207.885503][ T8055] RSP: 002b:00007fc8c08ab030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 207.885527][ T8055] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc8bf98e27f [ 207.885544][ T8055] RDX: 0000000000000001 RSI: 00007fc8c08ab0a0 RDI: 0000000000000002 [ 207.885556][ T8055] RBP: 00007fc8c08ab090 R08: 0000000000000000 R09: 0000000000000000 [ 207.885570][ T8055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 207.885584][ T8055] R13: 00007fc8bfbe6128 R14: 00007fc8bfbe6090 R15: 00007ffc78e209a8 [ 207.885616][ T8055] [ 208.768843][ T8064] netlink: 4 bytes leftover after parsing attributes in process `syz.1.447'. [ 208.779181][ T8064] netlink: 13 bytes leftover after parsing attributes in process `syz.1.447'. [ 208.840120][ T8064] netlink: 8 bytes leftover after parsing attributes in process `syz.1.447'. [ 209.907445][ T8089] FAULT_INJECTION: forcing a failure. [ 209.907445][ T8089] name failslab, interval 1, probability 0, space 0, times 0 [ 210.037124][ T8089] CPU: 0 UID: 0 PID: 8089 Comm: syz.3.454 Tainted: G L syzkaller #0 PREEMPT(full) [ 210.037164][ T8089] Tainted: [L]=SOFTLOCKUP [ 210.037173][ T8089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 210.037187][ T8089] Call Trace: [ 210.037194][ T8089] [ 210.037203][ T8089] dump_stack_lvl+0x16c/0x1f0 [ 210.037244][ T8089] should_fail_ex+0x512/0x640 [ 210.037270][ T8089] ? kmem_cache_alloc_noprof+0x62/0x770 [ 210.037301][ T8089] should_failslab+0xc2/0x120 [ 210.037335][ T8089] kmem_cache_alloc_noprof+0x83/0x770 [ 210.037361][ T8089] ? ptlock_alloc+0x1f/0x70 [ 210.037390][ T8089] ? ptlock_alloc+0x1f/0x70 [ 210.037412][ T8089] ptlock_alloc+0x1f/0x70 [ 210.037435][ T8089] pte_alloc_one+0x84/0x3d0 [ 210.037468][ T8089] __pte_alloc+0x6d/0x3f0 [ 210.037500][ T8089] ? __pfx___pte_alloc+0x10/0x10 [ 210.037543][ T8089] ? do_raw_spin_lock+0x12c/0x2b0 [ 210.037571][ T8089] ? find_held_lock+0x2b/0x80 [ 210.037602][ T8089] do_anonymous_page+0x1092/0x2190 [ 210.037630][ T8089] ? do_raw_spin_unlock+0x172/0x230 [ 210.037658][ T8089] ? _raw_spin_unlock+0x28/0x50 [ 210.037690][ T8089] ? __pmd_alloc+0x6aa/0x9c0 [ 210.037728][ T8089] __handle_mm_fault+0x1ecf/0x2bb0 [ 210.037764][ T8089] ? __pfx___handle_mm_fault+0x10/0x10 [ 210.037821][ T8089] handle_mm_fault+0x3fe/0xad0 [ 210.037852][ T8089] __get_user_pages+0x54e/0x3590 [ 210.037903][ T8089] ? __pfx___get_user_pages+0x10/0x10 [ 210.037948][ T8089] populate_vma_page_range+0x267/0x3f0 [ 210.037986][ T8089] ? __pfx_populate_vma_page_range+0x10/0x10 [ 210.038021][ T8089] ? __pfx_find_vma_intersection+0x10/0x10 [ 210.038058][ T8089] ? do_mmap+0x69c/0x1210 [ 210.038095][ T8089] __mm_populate+0x1d8/0x380 [ 210.038133][ T8089] ? __pfx___mm_populate+0x10/0x10 [ 210.038175][ T8089] ? up_write+0x282/0x4e0 [ 210.038205][ T8089] vm_mmap_pgoff+0x37f/0x470 [ 210.038242][ T8089] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 210.038283][ T8089] ? __x64_sys_futex+0x1e0/0x4c0 [ 210.038309][ T8089] ? __x64_sys_futex+0x1e9/0x4c0 [ 210.038342][ T8089] ksys_mmap_pgoff+0x7d/0x5c0 [ 210.038374][ T8089] ? xfd_validate_state+0x61/0x180 [ 210.038395][ T8089] ? __pfx_ksys_write+0x10/0x10 [ 210.038433][ T8089] __x64_sys_mmap+0x125/0x190 [ 210.038462][ T8089] do_syscall_64+0xcd/0xf80 [ 210.038500][ T8089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.038530][ T8089] RIP: 0033:0x7f615878f7c9 [ 210.038550][ T8089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.038572][ T8089] RSP: 002b:00007f61596d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 210.038595][ T8089] RAX: ffffffffffffffda RBX: 00007f61589e5fa0 RCX: 00007f615878f7c9 [ 210.038611][ T8089] RDX: 00000000000000df RSI: 0000000000440008 RDI: 0000000100000000 [ 210.038626][ T8089] RBP: 00007f6158813f91 R08: 0000000000000002 R09: 0000000000008000 [ 210.038641][ T8089] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 210.038656][ T8089] R13: 00007f61589e6038 R14: 00007f61589e5fa0 R15: 00007fff86fc2a28 [ 210.038692][ T8089] [ 212.485220][ T8152] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 213.343144][ T8168] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 214.424827][ T8200] netlink: 28 bytes leftover after parsing attributes in process `syz.0.471'. [ 214.473583][ T8200] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 214.501366][ T8200] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 214.551876][ T8200] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 214.569223][ T8200] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 214.575386][ T8204] FAULT_INJECTION: forcing a failure. [ 214.575386][ T8204] name failslab, interval 1, probability 0, space 0, times 0 [ 214.590348][ T8204] CPU: 0 UID: 0 PID: 8204 Comm: syz.3.473 Tainted: G L syzkaller #0 PREEMPT(full) [ 214.590389][ T8204] Tainted: [L]=SOFTLOCKUP [ 214.590399][ T8204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 214.590414][ T8204] Call Trace: [ 214.590422][ T8204] [ 214.590432][ T8204] dump_stack_lvl+0x16c/0x1f0 [ 214.590477][ T8204] should_fail_ex+0x512/0x640 [ 214.590506][ T8204] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 214.590543][ T8204] should_failslab+0xc2/0x120 [ 214.590582][ T8204] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 214.590616][ T8204] ? alloc_inode+0xc3/0x240 [ 214.590652][ T8204] ? alloc_inode+0xc3/0x240 [ 214.590678][ T8204] alloc_inode+0xc3/0x240 [ 214.590705][ T8204] iget_locked+0x1d9/0x6d0 [ 214.590736][ T8204] ? __pfx_iget_locked+0x10/0x10 [ 214.590766][ T8204] ? kernfs_root+0xee/0x2a0 [ 214.590803][ T8204] kernfs_get_inode+0x46/0x470 [ 214.590833][ T8204] kernfs_iop_lookup+0x1a7/0x2d0 [ 214.590866][ T8204] ? __pfx_kernfs_iop_lookup+0x10/0x10 [ 214.590897][ T8204] lookup_open.isra.0+0x4e2/0x1780 [ 214.590942][ T8204] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 214.590998][ T8204] ? lookup_fast+0x156/0x610 [ 214.591035][ T8204] path_openat+0x12bb/0x3140 [ 214.591091][ T8204] ? __pfx_path_openat+0x10/0x10 [ 214.591144][ T8204] do_filp_open+0x20b/0x470 [ 214.591183][ T8204] ? __pfx_do_filp_open+0x10/0x10 [ 214.591250][ T8204] ? alloc_fd+0x471/0x7d0 [ 214.591296][ T8204] do_sys_openat2+0x121/0x290 [ 214.591325][ T8204] ? __pfx_do_sys_openat2+0x10/0x10 [ 214.591369][ T8204] __x64_sys_openat+0x174/0x210 [ 214.591398][ T8204] ? __pfx___x64_sys_openat+0x10/0x10 [ 214.591443][ T8204] do_syscall_64+0xcd/0xf80 [ 214.591485][ T8204] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.591512][ T8204] RIP: 0033:0x7f615878f7c9 [ 214.591533][ T8204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.591558][ T8204] RSP: 002b:00007f61596d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 214.591582][ T8204] RAX: ffffffffffffffda RBX: 00007f61589e5fa0 RCX: 00007f615878f7c9 [ 214.591601][ T8204] RDX: 0000000000080800 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 214.591618][ T8204] RBP: 00007f6158813f91 R08: 0000000000000000 R09: 0000000000000000 [ 214.591634][ T8204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.591650][ T8204] R13: 00007f61589e6038 R14: 00007f61589e5fa0 R15: 00007fff86fc2a28 [ 214.591689][ T8204] [ 216.371846][ T8265] vhci_hcd vhci_hcd.2: invalid port number 16 [ 216.380513][ T8265] vhci_hcd vhci_hcd.2: invalid port number 16 [ 217.450258][ T8294] zswap: compressor not available [ 217.673616][ T8304] zswap: compressor not available [ 217.724147][ T8315] netlink: 'syz.0.495': attribute type 1 has an invalid length. [ 219.947440][ T8357] random: crng reseeded on system resumption [ 220.358149][ T8365] FAULT_INJECTION: forcing a failure. [ 220.358149][ T8365] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 220.395831][ T8365] CPU: 0 UID: 0 PID: 8365 Comm: syz.3.508 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.395868][ T8365] Tainted: [L]=SOFTLOCKUP [ 220.395876][ T8365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 220.395889][ T8365] Call Trace: [ 220.395897][ T8365] [ 220.395905][ T8365] dump_stack_lvl+0x16c/0x1f0 [ 220.395945][ T8365] should_fail_ex+0x512/0x640 [ 220.395973][ T8365] should_fail_alloc_page+0xe7/0x130 [ 220.396009][ T8365] prepare_alloc_pages+0x401/0x670 [ 220.396041][ T8365] ? rcu_is_watching+0x12/0xc0 [ 220.396072][ T8365] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 220.396117][ T8365] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 220.396153][ T8365] ? rcu_is_watching+0x12/0xc0 [ 220.396180][ T8365] ? trace_kmalloc+0x2b/0xb0 [ 220.396208][ T8365] ? __kmalloc_node_track_caller_noprof+0x370/0x930 [ 220.396237][ T8365] ? __alloc_skb+0x186/0x410 [ 220.396259][ T8365] ? rcu_watching_snap_stopped_since+0x41/0x110 [ 220.396289][ T8365] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 220.396321][ T8365] ? policy_nodemask+0xea/0x4e0 [ 220.396353][ T8365] alloc_pages_mpol+0x1fb/0x550 [ 220.396384][ T8365] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 220.396412][ T8365] ? __pfx___alloc_skb+0x10/0x10 [ 220.396443][ T8365] alloc_pages_noprof+0x131/0x390 [ 220.396474][ T8365] alloc_skb_with_frags+0x24a/0x860 [ 220.396512][ T8365] sock_alloc_send_pskb+0x7f9/0x980 [ 220.396546][ T8365] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 220.396578][ T8365] ? find_held_lock+0x2b/0x80 [ 220.396606][ T8365] tun_get_user+0x7e2/0x3cc0 [ 220.396642][ T8365] ? __pfx_tun_get_user+0x10/0x10 [ 220.396664][ T8365] ? try_to_wake_up+0xa67/0x1860 [ 220.396691][ T8365] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 220.396725][ T8365] ? find_held_lock+0x2b/0x80 [ 220.396758][ T8365] ? tun_get+0x191/0x370 [ 220.396786][ T8365] tun_chr_write_iter+0xdc/0x210 [ 220.396813][ T8365] vfs_write+0x7d3/0x11d0 [ 220.396846][ T8365] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 220.396873][ T8365] ? __pfx_vfs_write+0x10/0x10 [ 220.396899][ T8365] ? find_held_lock+0x2b/0x80 [ 220.396941][ T8365] __x64_sys_pwrite64+0x1eb/0x250 [ 220.396972][ T8365] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 220.397009][ T8365] do_syscall_64+0xcd/0xf80 [ 220.397043][ T8365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.397064][ T8365] RIP: 0033:0x7f615878f7c9 [ 220.397081][ T8365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.397100][ T8365] RSP: 002b:00007f61596d8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 220.397121][ T8365] RAX: ffffffffffffffda RBX: 00007f61589e5fa0 RCX: 00007f615878f7c9 [ 220.397135][ T8365] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 00000000000000c8 [ 220.397148][ T8365] RBP: 00007f6158813f91 R08: 0000000000000000 R09: 0000000000000000 [ 220.397161][ T8365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.397174][ T8365] R13: 00007f61589e6038 R14: 00007f61589e5fa0 R15: 00007fff86fc2a28 [ 220.397203][ T8365] [ 220.884345][ T8371] Format for adding new port is "id [perm_addr]" (uint MAC). [ 220.982243][ T8371] Format for adding new port is "id [perm_addr]" (uint MAC). [ 221.611512][ T8373] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 222.362381][ T8391] random: crng reseeded on system resumption [ 224.924653][ T8415] zswap: compressor not available [ 224.968629][ T8441] __vm_enough_memory: pid: 8441, comm: syz.1.524, bytes: 4398046511104 not enough memory for the allocation [ 225.424641][ T5151] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 226.141507][ T8473] FAULT_INJECTION: forcing a failure. [ 226.141507][ T8473] name failslab, interval 1, probability 0, space 0, times 0 [ 226.320059][ T8473] CPU: 1 UID: 0 PID: 8473 Comm: syz.0.528 Tainted: G L syzkaller #0 PREEMPT(full) [ 226.320100][ T8473] Tainted: [L]=SOFTLOCKUP [ 226.320108][ T8473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 226.320121][ T8473] Call Trace: [ 226.320129][ T8473] [ 226.320139][ T8473] dump_stack_lvl+0x16c/0x1f0 [ 226.320181][ T8473] should_fail_ex+0x512/0x640 [ 226.320209][ T8473] ? __kvmalloc_node_noprof+0x129/0xa40 [ 226.320246][ T8473] should_failslab+0xc2/0x120 [ 226.320283][ T8473] __kvmalloc_node_noprof+0x14a/0xa40 [ 226.320313][ T8473] ? bpf_lsm_capable+0x9/0x10 [ 226.320344][ T8473] ? security_capable+0x7e/0x260 [ 226.320382][ T8473] ? proc_sys_call_handler+0x2d6/0x5b0 [ 226.320413][ T8473] ? ns_capable_noaudit+0xda/0x110 [ 226.320451][ T8473] ? proc_sys_call_handler+0x2d6/0x5b0 [ 226.320481][ T8473] proc_sys_call_handler+0x2d6/0x5b0 [ 226.320516][ T8473] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 226.320548][ T8473] ? __lock_acquire+0x436/0x2890 [ 226.320573][ T8473] ? copy_iovec_from_user+0x131/0x170 [ 226.320603][ T8473] do_iter_readv_writev+0x743/0x9e0 [ 226.320639][ T8473] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 226.320678][ T8473] ? rw_verify_area+0xcf/0x6c0 [ 226.320708][ T8473] vfs_readv+0x4cb/0x8b0 [ 226.320738][ T8473] ? trace_contention_end+0xdd/0x110 [ 226.320767][ T8473] ? __pfx_vfs_readv+0x10/0x10 [ 226.320795][ T8473] ? fdget_pos+0x2a2/0x370 [ 226.320858][ T8473] ? __fget_files+0x20e/0x3c0 [ 226.320889][ T8473] ? __fget_files+0x180/0x3c0 [ 226.320928][ T8473] ? do_readv+0x132/0x340 [ 226.320954][ T8473] do_readv+0x132/0x340 [ 226.320983][ T8473] ? __pfx_do_readv+0x10/0x10 [ 226.321020][ T8473] do_syscall_64+0xcd/0xf80 [ 226.321057][ T8473] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.321083][ T8473] RIP: 0033:0x7fad7c98f7c9 [ 226.321102][ T8473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.321123][ T8473] RSP: 002b:00007fad7d876038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 226.321146][ T8473] RAX: ffffffffffffffda RBX: 00007fad7cbe6180 RCX: 00007fad7c98f7c9 [ 226.321162][ T8473] RDX: 0000000000000007 RSI: 00002000000002c0 RDI: 0000000000000003 [ 226.321177][ T8473] RBP: 00007fad7d876090 R08: 0000000000000000 R09: 0000000000000000 [ 226.321191][ T8473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 226.321204][ T8473] R13: 00007fad7cbe6218 R14: 00007fad7cbe6180 R15: 00007ffd649fd4d8 [ 226.321239][ T8473] [ 227.275314][ T8478] No such timeout policy "" [ 227.290192][ T8478] netlink: Failed to associated timeout policy '' [ 227.831495][ T8502] FAULT_INJECTION: forcing a failure. [ 227.831495][ T8502] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 227.866376][ T8502] CPU: 1 UID: 0 PID: 8502 Comm: syz.1.534 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.866419][ T8502] Tainted: [L]=SOFTLOCKUP [ 227.866429][ T8502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 227.866442][ T8502] Call Trace: [ 227.866451][ T8502] [ 227.866460][ T8502] dump_stack_lvl+0x16c/0x1f0 [ 227.866505][ T8502] should_fail_ex+0x512/0x640 [ 227.866540][ T8502] _copy_from_user+0x2e/0xd0 [ 227.866570][ T8502] do_pages_stat+0x240/0x7b0 [ 227.866620][ T8502] ? __pfx_do_pages_stat+0x10/0x10 [ 227.866668][ T8502] ? find_held_lock+0x2b/0x80 [ 227.866719][ T8502] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 227.866757][ T8502] ? lockdep_hardirqs_on+0x7c/0x110 [ 227.866796][ T8502] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 227.866837][ T8502] kernel_move_pages+0xfc8/0x12f0 [ 227.866870][ T8502] ? do_futex+0x122/0x350 [ 227.866900][ T8502] ? __pfx_do_futex+0x10/0x10 [ 227.866928][ T8502] ? __pfx_kernel_move_pages+0x10/0x10 [ 227.866967][ T8502] ? __x64_sys_futex+0x1e0/0x4c0 [ 227.866997][ T8502] ? __x64_sys_futex+0x1e9/0x4c0 [ 227.867029][ T8502] ? __x64_sys_openat+0x174/0x210 [ 227.867062][ T8502] ? xfd_validate_state+0x61/0x180 [ 227.867094][ T8502] __x64_sys_move_pages+0xe0/0x1c0 [ 227.867121][ T8502] ? do_syscall_64+0x91/0xf80 [ 227.867158][ T8502] ? lockdep_hardirqs_on+0x7c/0x110 [ 227.867196][ T8502] do_syscall_64+0xcd/0xf80 [ 227.867237][ T8502] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.867264][ T8502] RIP: 0033:0x7f3c41f8f7c9 [ 227.867285][ T8502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 227.867310][ T8502] RSP: 002b:00007f3c42e9c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 227.867335][ T8502] RAX: ffffffffffffffda RBX: 00007f3c421e5fa0 RCX: 00007f3c41f8f7c9 [ 227.867353][ T8502] RDX: 0000000000000000 RSI: 0000000000001002 RDI: 0000000000000000 [ 227.867368][ T8502] RBP: 00007f3c42013f91 R08: 0000000000000000 R09: 0000000000000002 [ 227.867384][ T8502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.867400][ T8502] R13: 00007f3c421e6038 R14: 00007f3c421e5fa0 R15: 00007ffdd57f8f88 [ 227.867436][ T8502] [ 228.136970][ T8506] netlink: 4 bytes leftover after parsing attributes in process `syz.0.535'. [ 228.152576][ T8511] usb usb3: usbfs: interface 0 claimed by hub while 'syz.3.537' sets config #3 syzkaller syzkaller login: [ 229.734575][ T8535] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 229.742284][ T8535] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 229.752023][ T8535] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 229.770020][ T8535] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 230.114254][ T8552] FAULT_INJECTION: forcing a failure. [ 230.114254][ T8552] name fail_futex, interval 1, probability 0, space 0, times 0 [ 230.158084][ T8552] CPU: 1 UID: 0 PID: 8552 Comm: syz.0.545 Tainted: G L syzkaller #0 PREEMPT(full) [ 230.158125][ T8552] Tainted: [L]=SOFTLOCKUP [ 230.158134][ T8552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 230.158148][ T8552] Call Trace: [ 230.158157][ T8552] [ 230.158167][ T8552] dump_stack_lvl+0x16c/0x1f0 [ 230.158210][ T8552] should_fail_ex+0x512/0x640 [ 230.158245][ T8552] get_futex_key+0x1d0/0x15f0 [ 230.158278][ T8552] ? __pfx_get_futex_key+0x10/0x10 [ 230.158316][ T8552] futex_wake+0xea/0x530 [ 230.158349][ T8552] ? kasan_quarantine_put+0x10a/0x240 [ 230.158383][ T8552] ? __pfx_futex_wake+0x10/0x10 [ 230.158419][ T8552] ? putname+0xf5/0x1a0 [ 230.158450][ T8552] do_futex+0x1e3/0x350 [ 230.158492][ T8552] ? __pfx_do_futex+0x10/0x10 [ 230.158529][ T8552] __x64_sys_futex+0x1e0/0x4c0 [ 230.158560][ T8552] ? __x64_sys_openat+0x174/0x210 [ 230.158589][ T8552] ? __pfx___x64_sys_futex+0x10/0x10 [ 230.158620][ T8552] ? syscall_user_dispatch+0x78/0x140 [ 230.158661][ T8552] do_syscall_64+0xcd/0xf80 [ 230.158701][ T8552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.158727][ T8552] RIP: 0033:0x7fad7c98f7c9 [ 230.158747][ T8552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.158771][ T8552] RSP: 002b:00007fad7d8b80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 230.158796][ T8552] RAX: ffffffffffffffda RBX: 00007fad7cbe5fa8 RCX: 00007fad7c98f7c9 [ 230.158813][ T8552] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fad7cbe5fac [ 230.158829][ T8552] RBP: 00007fad7cbe5fa0 R08: 00007fad7d8b9000 R09: 0000000000000000 [ 230.158845][ T8552] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000 [ 230.158860][ T8552] R13: 00007fad7cbe6038 R14: 00007ffd649fd3f0 R15: 00007ffd649fd4d8 [ 230.158895][ T8552] [ 230.952197][ T8572] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 231.131046][ T8596] Invalid ELF header magic: != ELF [ 231.225985][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 231.680514][ T8606] FAULT_INJECTION: forcing a failure. [ 231.680514][ T8606] name failslab, interval 1, probability 0, space 0, times 0 [ 231.697281][ T8606] CPU: 0 UID: 0 PID: 8606 Comm: syz.3.552 Tainted: G L syzkaller #0 PREEMPT(full) [ 231.697330][ T8606] Tainted: [L]=SOFTLOCKUP [ 231.697339][ T8606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 231.697354][ T8606] Call Trace: [ 231.697362][ T8606] [ 231.697372][ T8606] dump_stack_lvl+0x16c/0x1f0 [ 231.697418][ T8606] should_fail_ex+0x512/0x640 [ 231.697447][ T8606] ? __kmalloc_cache_noprof+0x5f/0x800 [ 231.697482][ T8606] should_failslab+0xc2/0x120 [ 231.697520][ T8606] __kmalloc_cache_noprof+0x80/0x800 [ 231.697551][ T8606] ? pkcs7_parse_message+0x52/0x720 [ 231.697590][ T8606] ? pkcs7_parse_message+0x52/0x720 [ 231.697621][ T8606] pkcs7_parse_message+0x52/0x720 [ 231.697658][ T8606] verify_pkcs7_signature+0x30/0xa0 [ 231.697694][ T8606] valid_regdb+0x211/0x590 [ 231.697740][ T8606] ? __pfx_valid_regdb+0x10/0x10 [ 231.697788][ T8606] reg_reload_regdb+0x11a/0x460 [ 231.697817][ T8606] ? __pfx_reg_reload_regdb+0x10/0x10 [ 231.697847][ T8606] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 231.697879][ T8606] ? nl80211_pre_doit+0x1b0/0xb10 [ 231.697917][ T8606] genl_family_rcv_msg_doit+0x209/0x2f0 [ 231.697947][ T8606] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 231.697975][ T8606] ? genl_get_cmd+0x194/0x580 [ 231.698022][ T8606] ? bpf_lsm_capable+0x9/0x10 [ 231.698055][ T8606] ? security_capable+0x7e/0x260 [ 231.698103][ T8606] genl_rcv_msg+0x55c/0x800 [ 231.698134][ T8606] ? __pfx_genl_rcv_msg+0x10/0x10 [ 231.698161][ T8606] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 231.698190][ T8606] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 231.698214][ T8606] ? __pfx_nl80211_post_doit+0x10/0x10 [ 231.698258][ T8606] netlink_rcv_skb+0x158/0x420 [ 231.698299][ T8606] ? __pfx_genl_rcv_msg+0x10/0x10 [ 231.698335][ T8606] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 231.698398][ T8606] genl_rcv+0x28/0x40 [ 231.698422][ T8606] netlink_unicast+0x5aa/0x870 [ 231.698466][ T8606] ? __pfx_netlink_unicast+0x10/0x10 [ 231.698517][ T8606] netlink_sendmsg+0x8c8/0xdd0 [ 231.698561][ T8606] ? __pfx_netlink_sendmsg+0x10/0x10 [ 231.698603][ T8606] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 231.698651][ T8606] ____sys_sendmsg+0xa5d/0xc30 [ 231.698678][ T8606] ? copy_msghdr_from_user+0x10a/0x160 [ 231.698712][ T8606] ? __pfx_____sys_sendmsg+0x10/0x10 [ 231.698746][ T8606] ? __pfx_futex_wake_mark+0x10/0x10 [ 231.698787][ T8606] ___sys_sendmsg+0x134/0x1d0 [ 231.698824][ T8606] ? __pfx____sys_sendmsg+0x10/0x10 [ 231.698858][ T8606] ? futex_private_hash_put+0x160/0x1b0 [ 231.698928][ T8606] __sys_sendmsg+0x16d/0x220 [ 231.698963][ T8606] ? __pfx___sys_sendmsg+0x10/0x10 [ 231.698997][ T8606] ? __x64_sys_futex+0x1e0/0x4c0 [ 231.699048][ T8606] do_syscall_64+0xcd/0xf80 [ 231.699090][ T8606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.699117][ T8606] RIP: 0033:0x7f615878f7c9 [ 231.699139][ T8606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.699163][ T8606] RSP: 002b:00007f61596d8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 231.699189][ T8606] RAX: ffffffffffffffda RBX: 00007f61589e5fa0 RCX: 00007f615878f7c9 [ 231.699206][ T8606] RDX: 00000000000000d0 RSI: 0000200000000580 RDI: 0000000000000005 [ 231.699224][ T8606] RBP: 00007f6158813f91 R08: 0000000000000000 R09: 0000000000000000 [ 231.699240][ T8606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.699256][ T8606] R13: 00007f61589e6038 R14: 00007f61589e5fa0 R15: 00007fff86fc2a28 [ 231.699294][ T8606] [ 232.083241][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 232.083827][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 232.089621][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 233.063356][ T8643] vivid-007: ================= START STATUS ================= [ 233.085569][ T8643] vivid-007: Generate PTS: true [ 233.096490][ T8643] vivid-007: Generate SCR: true [ 233.101401][ T8643] tpg source WxH: 320x240 (Y'CbCr) [ 233.124901][ T8643] tpg field: 1 [ 233.128295][ T8643] tpg crop: (0,0)/320x240 [ 233.171825][ T8643] tpg compose: (0,0)/320x240 [ 233.192007][ T8643] tpg colorspace: 8 [ 233.196112][ T8643] tpg transfer function: 0/0 [ 233.216135][ T8643] tpg Y'CbCr encoding: 0/0 [ 233.220579][ T8643] tpg quantization: 0/0 [ 233.254292][ T8643] tpg RGB range: 0/2 [ 233.268623][ T8643] vivid-007: ================== END STATUS ================== [ 233.923012][ T8654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.563'. [ 234.193410][ T8659] No such timeout policy "" [ 234.205247][ T8659] netlink: Failed to associated timeout policy '' [ 234.497634][ T8672] Format for adding new port is "id [perm_addr]" (uint MAC). [ 234.503773][ T8666] zswap: compressor not available [ 234.519707][ T8672] Format for adding new port is "id [perm_addr]" (uint MAC). [ 234.707458][ T8682] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 234.767103][ T8657] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 234.775213][ T8657] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 234.788456][ T8657] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 234.794484][ T8657] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 234.821432][ T8677] FAULT_INJECTION: forcing a failure. [ 234.821432][ T8677] name failslab, interval 1, probability 0, space 0, times 0 [ 234.856046][ T8677] CPU: 0 UID: 0 PID: 8677 Comm: syz.2.568 Tainted: G L syzkaller #0 PREEMPT(full) [ 234.856086][ T8677] Tainted: [L]=SOFTLOCKUP [ 234.856095][ T8677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 234.856110][ T8677] Call Trace: [ 234.856119][ T8677] [ 234.856129][ T8677] dump_stack_lvl+0x16c/0x1f0 [ 234.856177][ T8677] should_fail_ex+0x512/0x640 [ 234.856207][ T8677] ? __kmalloc_cache_noprof+0x5f/0x800 [ 234.856240][ T8677] should_failslab+0xc2/0x120 [ 234.856289][ T8677] __kmalloc_cache_noprof+0x80/0x800 [ 234.856321][ T8677] ? __kthread_create_on_node+0xce/0x3f0 [ 234.856365][ T8677] ? __pfx_rescuer_thread+0x10/0x10 [ 234.856394][ T8677] ? __kthread_create_on_node+0xce/0x3f0 [ 234.856431][ T8677] __kthread_create_on_node+0xce/0x3f0 [ 234.856471][ T8677] ? __pfx___kthread_create_on_node+0x10/0x10 [ 234.856519][ T8677] ? __pfx_vsnprintf+0x10/0x10 [ 234.856561][ T8677] ? __pfx_rescuer_thread+0x10/0x10 [ 234.856591][ T8677] kthread_create_on_node+0xc7/0x100 [ 234.856629][ T8677] ? __pfx_kthread_create_on_node+0x10/0x10 [ 234.856664][ T8677] ? __pfx_scnprintf+0x10/0x10 [ 234.856715][ T8677] init_rescuer+0x319/0x590 [ 234.856742][ T8677] ? __pfx_init_rescuer+0x10/0x10 [ 234.856777][ T8677] ? wq_adjust_max_active+0x39d/0x4a0 [ 234.856809][ T8677] __alloc_workqueue+0xda4/0x1810 [ 234.856859][ T8677] alloc_workqueue_noprof+0xd2/0x200 [ 234.856898][ T8677] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 234.856958][ T8677] nci_register_device+0x21e/0xb80 [ 234.856994][ T8677] ? __pfx_nci_register_device+0x10/0x10 [ 234.857032][ T8677] ? lockdep_init_map_type+0x5c/0x270 [ 234.857071][ T8677] virtual_ncidev_open+0x141/0x220 [ 234.857100][ T8677] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 234.857127][ T8677] misc_open+0x26d/0x450 [ 234.857158][ T8677] ? __pfx_misc_open+0x10/0x10 [ 234.857188][ T8677] chrdev_open+0x234/0x6a0 [ 234.857225][ T8677] ? __pfx_apparmor_file_open+0x10/0x10 [ 234.857258][ T8677] ? __pfx_chrdev_open+0x10/0x10 [ 234.857300][ T8677] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 234.857349][ T8677] do_dentry_open+0x748/0x1590 [ 234.857385][ T8677] ? __pfx_chrdev_open+0x10/0x10 [ 234.857434][ T8677] vfs_open+0x82/0x3f0 [ 234.857467][ T8677] path_openat+0x2078/0x3140 [ 234.857517][ T8677] ? __pfx_path_openat+0x10/0x10 [ 234.857569][ T8677] do_filp_open+0x20b/0x470 [ 234.857608][ T8677] ? __pfx_do_filp_open+0x10/0x10 [ 234.857673][ T8677] ? alloc_fd+0x471/0x7d0 [ 234.857720][ T8677] do_sys_openat2+0x121/0x290 [ 234.857749][ T8677] ? __pfx_do_sys_openat2+0x10/0x10 [ 234.857789][ T8677] __x64_sys_openat+0x174/0x210 [ 234.857818][ T8677] ? __pfx___x64_sys_openat+0x10/0x10 [ 234.857861][ T8677] do_syscall_64+0xcd/0xf80 [ 234.857903][ T8677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.857931][ T8677] RIP: 0033:0x7fc8bf98f7c9 [ 234.857952][ T8677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.857976][ T8677] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 234.858002][ T8677] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 234.858019][ T8677] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 234.858037][ T8677] RBP: 00007fc8bfa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 234.858053][ T8677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.858068][ T8677] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 234.858106][ T8677] syzkaller syzkaller login: [ 234.858177][ T8677] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -ENOMEM [ 235.934617][ T8701] zswap: compressor  not available [ 235.955880][ T8706] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead. [ 236.331009][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 236.808074][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 236.814139][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 236.820449][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 237.831730][ T5831] Bluetooth: hci3: unexpected event 0x03 length: 727 > 11 [ 238.079202][ T8718] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 238.150720][ T8718] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 238.198826][ T8718] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 238.220726][ T8718] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 238.433635][ T8725] netlink: 322 bytes leftover after parsing attributes in process `syz.0.577'. [ 238.833981][ T8719] kexec: Could not allocate control_code_buffer [ 238.903193][ T8739] netlink: 25 bytes leftover after parsing attributes in process `syz.3.580'. [ 240.138466][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 240.228109][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 240.234190][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 240.241319][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 240.509071][ T30] audit: type=1800 audit(1768205877.759:7): pid=8772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.585" name="version" dev="configfs" ino=23642 res=0 errno=0 [ 240.673357][ T8771] netlink: 28 bytes leftover after parsing attributes in process `syz.1.586'. [ 241.734248][ T8789] Format for adding new port is "id [perm_addr]" (uint MAC). [ 241.798249][ T8790] Format for adding new port is "id [perm_addr]" (uint MAC). [ 244.333382][ T8807] netlink: 28 bytes leftover after parsing attributes in process `syz.0.590'. [ 244.344007][ T8795] netlink: 146 bytes leftover after parsing attributes in process `syz.1.591'. [ 244.485103][ T30] audit: type=1800 audit(1768205881.749:8): pid=8811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.590" name="discovery_nqn" dev="configfs" ino=23697 res=0 errno=0 [ 244.666164][ T8807] veth1_macvtap: left promiscuous mode [ 246.469600][ T8855] FAULT_INJECTION: forcing a failure. [ 246.469600][ T8855] name failslab, interval 1, probability 0, space 0, times 0 [ 246.524752][ T8855] CPU: 1 UID: 0 PID: 8855 Comm: syz.2.601 Tainted: G L syzkaller #0 PREEMPT(full) [ 246.524797][ T8855] Tainted: [L]=SOFTLOCKUP [ 246.524807][ T8855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 246.524842][ T8855] Call Trace: [ 246.524851][ T8855] [ 246.524862][ T8855] dump_stack_lvl+0x16c/0x1f0 [ 246.524908][ T8855] should_fail_ex+0x512/0x640 [ 246.524938][ T8855] ? fs_reclaim_acquire+0xae/0x150 [ 246.524982][ T8855] should_failslab+0xc2/0x120 [ 246.525019][ T8855] kmem_cache_alloc_noprof+0x83/0x770 [ 246.525050][ T8855] ? __pfx_map_id_range_down+0x10/0x10 [ 246.525084][ T8855] ? security_inode_alloc+0x3b/0x2b0 [ 246.525119][ T8855] ? security_inode_alloc+0x3b/0x2b0 [ 246.525149][ T8855] security_inode_alloc+0x3b/0x2b0 [ 246.525179][ T8855] inode_init_always_gfp+0xced/0x1040 [ 246.525219][ T8855] alloc_inode+0x86/0x240 [ 246.525247][ T8855] iget_locked+0x1d9/0x6d0 [ 246.525276][ T8855] ? __pfx_iget_locked+0x10/0x10 [ 246.525302][ T8855] ? find_held_lock+0x2b/0x80 [ 246.525336][ T8855] ? kernfs_find_and_get_node_by_id+0x1c3/0x3f0 [ 246.525376][ T8855] kernfs_get_inode+0x46/0x470 [ 246.525406][ T8855] kernfs_fh_to_dentry+0xf3/0x250 [ 246.525432][ T8855] exportfs_decode_fh_raw+0x167/0x7d0 [ 246.525462][ T8855] ? __pfx_vfs_dentry_acceptable+0x10/0x10 [ 246.525502][ T8855] ? __pfx_kernfs_fh_to_dentry+0x10/0x10 [ 246.525529][ T8855] ? __pfx_exportfs_decode_fh_raw+0x10/0x10 [ 246.525602][ T8855] do_handle_open+0x712/0xd10 [ 246.525643][ T8855] ? __pfx_do_handle_open+0x10/0x10 [ 246.525678][ T8855] ? __x64_sys_futex+0x1e0/0x4c0 [ 246.525715][ T8855] ? xfd_validate_state+0x61/0x180 [ 246.525751][ T8855] ? do_syscall_64+0xcd/0xf80 [ 246.525787][ T8855] do_syscall_64+0xcd/0xf80 [ 246.525836][ T8855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.525864][ T8855] RIP: 0033:0x7fc8bf98f7c9 [ 246.525892][ T8855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.525918][ T8855] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 246.525944][ T8855] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 246.525962][ T8855] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000008 [ 246.525978][ T8855] RBP: 00007fc8bfa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 246.525994][ T8855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.526010][ T8855] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 246.526047][ T8855] [ 247.781062][ T8897] netlink: 330 bytes leftover after parsing attributes in process `syz.1.611'. [ 247.815896][ T8897] : renamed from bond_slave_0 (while UP) [ 248.643608][ T8925] random: crng reseeded on system resumption [ 248.671171][ T8924] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 248.671171][ T8924] program syz.3.617 not setting count and/or reply_len properly [ 253.234004][ T8935] netlink: 'syz.1.618': attribute type 3 has an invalid length. [ 253.618460][ T8935] netlink: 332 bytes leftover after parsing attributes in process `syz.1.618'. [ 255.083209][ T8949] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 255.103142][ T8949] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 255.120844][ T8949] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 255.140230][ T8949] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 255.299055][ T8962] zswap: compressor not available [ 255.376785][ T8975] futex_wake_op: syz.3.625 tries to shift op by -2048; fix this program [ 255.565601][ T8981] program syz.2.626 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 255.808540][ T8990] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 256.196539][ T5831] Bluetooth: hci0: Malformed LE Event: 0x0b [ 256.692622][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 256.720614][ T9007] hub 1-0:1.0: USB hub found [ 256.729617][ T9007] hub 1-0:1.0: 1 port detected [ 256.756556][ T9006] hub 1-0:1.0: USB hub found [ 256.761734][ T9006] hub 1-0:1.0: 1 port detected [ 257.169990][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 257.176121][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 257.182666][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 257.381141][ T9014] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 260.277929][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.284987][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 263.143253][ T9118] netlink: 330 bytes leftover after parsing attributes in process `syz.0.652'. [ 263.342352][ T9122] random: crng reseeded on system resumption [ 265.155523][ T9153] random: crng reseeded on system resumption [ 267.109582][ T9206] FAULT_INJECTION: forcing a failure. [ 267.109582][ T9206] name failslab, interval 1, probability 0, space 0, times 0 [ 267.207910][ T9206] CPU: 1 UID: 0 PID: 9206 Comm: syz.2.671 Tainted: G L syzkaller #0 PREEMPT(full) [ 267.207938][ T9206] Tainted: [L]=SOFTLOCKUP [ 267.207943][ T9206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 267.207952][ T9206] Call Trace: [ 267.207957][ T9206] [ 267.207963][ T9206] dump_stack_lvl+0x16c/0x1f0 [ 267.207990][ T9206] should_fail_ex+0x512/0x640 [ 267.208008][ T9206] ? __kmalloc_noprof+0xca/0x910 [ 267.208025][ T9206] should_failslab+0xc2/0x120 [ 267.208048][ T9206] __kmalloc_noprof+0xeb/0x910 [ 267.208064][ T9206] ? __register_sysctl_table+0xea2/0x1900 [ 267.208089][ T9206] ? __register_sysctl_table+0xea2/0x1900 [ 267.208108][ T9206] __register_sysctl_table+0xea2/0x1900 [ 267.208132][ T9206] ? __pfx___register_sysctl_table+0x10/0x10 [ 267.208151][ T9206] ? is_module_address+0x69/0xf0 [ 267.208168][ T9206] ? register_net_sysctl_sz+0x222/0x450 [ 267.208188][ T9206] __devinet_sysctl_register+0x1b9/0x360 [ 267.208207][ T9206] ? rcu_is_watching+0x12/0xc0 [ 267.208227][ T9206] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 267.208242][ T9206] ? __kmalloc_node_track_caller_noprof+0x370/0x930 [ 267.208271][ T9206] ? __asan_memcpy+0x3c/0x60 [ 267.208290][ T9206] devinet_init_net+0x315/0x910 [ 267.208307][ T9206] ? __pfx_devinet_init_net+0x10/0x10 [ 267.208323][ T9206] ops_init+0x1e2/0x5f0 [ 267.208346][ T9206] setup_net+0x11d/0x3a0 [ 267.208366][ T9206] ? __pfx_setup_net+0x10/0x10 [ 267.208385][ T9206] ? lockdep_init_map_type+0x5c/0x270 [ 267.208400][ T9206] ? mutex_init_lockep+0x110/0x150 [ 267.208418][ T9206] copy_net_ns+0x351/0x7c0 [ 267.208442][ T9206] create_new_namespaces+0x3ea/0xab0 [ 267.208467][ T9206] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 267.208489][ T9206] ksys_unshare+0x45b/0xa40 [ 267.208512][ T9206] ? __pfx_ksys_unshare+0x10/0x10 [ 267.208535][ T9206] ? xfd_validate_state+0x61/0x180 [ 267.208554][ T9206] __x64_sys_unshare+0x31/0x40 [ 267.208566][ T9206] do_syscall_64+0xcd/0xf80 [ 267.208590][ T9206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.208605][ T9206] RIP: 0033:0x7fc8bf98f7c9 [ 267.208618][ T9206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 267.208632][ T9206] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 267.208647][ T9206] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 267.208656][ T9206] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 267.208665][ T9206] RBP: 00007fc8bfa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 267.208681][ T9206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.208689][ T9206] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 267.208710][ T9206] [ 267.208735][ T9206] sysctl could not get directory: /net/ipv4/conf -12 [ 268.106106][ T9220] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 269.023707][ T9231] XFS: Clearing xfsstats [ 269.308619][ T9241] futex_wake_op: syz.1.679 tries to shift op by -2048; fix this program [ 269.357818][ T9241] futex_wake_op: syz.1.679 tries to shift op by -2048; fix this program [ 270.579357][ T9274] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 270.948252][ T9278] serio: Serial port ttyS2 [ 271.243362][ T9280] netlink: 342 bytes leftover after parsing attributes in process `syz.2.687'. [ 271.287063][ T9282] netlink: 'syz.1.688': attribute type 1 has an invalid length. [ 271.941872][ T9301] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 272.341607][ T5831] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 272.416131][ T9309] zswap: compressor not available [ 274.707159][ T9381] Format for adding new port is "id [perm_addr]" (uint MAC). [ 274.778962][ T9381] Format for adding new port is "id [perm_addr]" (uint MAC). [ 274.832296][ T9386] netlink: 'syz.1.707': attribute type 1 has an invalid length. [ 274.941486][ T9386] netlink: 33 bytes leftover after parsing attributes in process `syz.1.707'. [ 275.640024][ T9369] sp0: Synchronizing with TNC [ 276.275490][ T9373] sp0: Found TNC [ 276.979226][ T9416] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 283.459568][ T9545] : Can't lookup blockdev [ 283.713780][ T9550] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 284.159741][ T9562] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 284.387748][ T9566] FAULT_INJECTION: forcing a failure. [ 284.387748][ T9566] name failslab, interval 1, probability 0, space 0, times 0 [ 284.531231][ T9566] CPU: 0 UID: 0 PID: 9566 Comm: syz.2.746 Tainted: G L syzkaller #0 PREEMPT(full) [ 284.531258][ T9566] Tainted: [L]=SOFTLOCKUP [ 284.531263][ T9566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 284.531272][ T9566] Call Trace: [ 284.531278][ T9566] [ 284.531284][ T9566] dump_stack_lvl+0x16c/0x1f0 [ 284.531315][ T9566] should_fail_ex+0x512/0x640 [ 284.531332][ T9566] ? kmem_cache_alloc_noprof+0x62/0x770 [ 284.531353][ T9566] should_failslab+0xc2/0x120 [ 284.531377][ T9566] kmem_cache_alloc_noprof+0x83/0x770 [ 284.531394][ T9566] ? __kernfs_new_node+0xd2/0x9b0 [ 284.531415][ T9566] ? __kernfs_new_node+0xd2/0x9b0 [ 284.531430][ T9566] __kernfs_new_node+0xd2/0x9b0 [ 284.531450][ T9566] ? __pfx___kernfs_new_node+0x10/0x10 [ 284.531471][ T9566] ? find_held_lock+0x2b/0x80 [ 284.531491][ T9566] ? kernfs_root+0xee/0x2a0 [ 284.531511][ T9566] kernfs_new_node+0x13c/0x1e0 [ 284.531534][ T9566] __kernfs_create_file+0x53/0x350 [ 284.531559][ T9566] cgroup_addrm_files+0x546/0xc20 [ 284.531588][ T9566] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 284.531616][ T9566] ? idr_replace+0xfa/0x170 [ 284.531636][ T9566] ? __pfx_idr_replace+0x10/0x10 [ 284.531660][ T9566] css_populate_dir+0x169/0x570 [ 284.531681][ T9566] cgroup_apply_control_enable+0x3f3/0xbb0 [ 284.531709][ T9566] cgroup_mkdir+0x5e0/0x12e0 [ 284.531733][ T9566] ? __pfx_cgroup_mkdir+0x10/0x10 [ 284.531754][ T9566] kernfs_iop_mkdir+0x111/0x190 [ 284.531772][ T9566] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 284.531788][ T9566] vfs_mkdir+0x731/0xb60 [ 284.531812][ T9566] do_mkdirat+0x442/0x5e0 [ 284.531851][ T9566] ? __pfx_do_mkdirat+0x10/0x10 [ 284.531887][ T9566] ? strncpy_from_user+0x203/0x2e0 [ 284.531918][ T9566] ? getname_flags.part.0+0x1c5/0x550 [ 284.531940][ T9566] __x64_sys_mkdir+0xef/0x140 [ 284.531963][ T9566] do_syscall_64+0xcd/0xf80 [ 284.531989][ T9566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.532004][ T9566] RIP: 0033:0x7fc8bf98f7c9 [ 284.532017][ T9566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.532030][ T9566] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 284.532045][ T9566] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 284.532054][ T9566] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 284.532063][ T9566] RBP: 00007fc8bfa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 284.532071][ T9566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.532080][ T9566] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 284.532099][ T9566] [ 285.033230][ T9566] cgroup: cgroup_addrm_files: failed to add stat, err=-12 [ 285.848010][ T9583] program syz.3.751 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 285.892735][ T9587] netlink: 334 bytes leftover after parsing attributes in process `syz.2.750'. [ 286.585829][ T9594] zswap: compressor not available [ 286.632057][ T30] audit: type=1800 audit(1768224275.118:9): pid=9603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.754" name="members" dev="configfs" ino=27769 res=0 errno=0 [ 286.906350][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 286.940316][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 286.979851][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 286.997856][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 287.044194][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 287.118406][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 287.138914][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 287.193998][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 287.469409][ T9611] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 287.891965][ T9619] FAULT_INJECTION: forcing a failure. [ 287.891965][ T9619] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 287.995597][ T9619] CPU: 1 UID: 0 PID: 9619 Comm: syz.0.754 Tainted: G L syzkaller #0 PREEMPT(full) [ 287.995637][ T9619] Tainted: [L]=SOFTLOCKUP [ 287.995645][ T9619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 287.995659][ T9619] Call Trace: [ 287.995667][ T9619] [ 287.995677][ T9619] dump_stack_lvl+0x16c/0x1f0 [ 287.995718][ T9619] should_fail_ex+0x512/0x640 [ 287.995751][ T9619] _copy_from_user+0x2e/0xd0 [ 287.995780][ T9619] __x64_sys_sigaltstack+0x129/0x360 [ 287.995805][ T9619] ? __pfx___x64_sys_sigaltstack+0x10/0x10 [ 287.995831][ T9619] ? fput+0x70/0xf0 [ 287.995871][ T9619] do_syscall_64+0xcd/0xf80 [ 287.995908][ T9619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.995934][ T9619] RIP: 0033:0x7fad7c98f7c9 [ 287.995953][ T9619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.995975][ T9619] RSP: 002b:00007fad7d813038 EFLAGS: 00000246 ORIG_RAX: 0000000000000083 [ 287.995998][ T9619] RAX: ffffffffffffffda RBX: 00007fad7cbe6450 RCX: 00007fad7c98f7c9 [ 287.996015][ T9619] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 00002000000000c0 [ 287.996030][ T9619] RBP: 00007fad7ca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 287.996045][ T9619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.996059][ T9619] R13: 00007fad7cbe64e8 R14: 00007fad7cbe6450 R15: 00007ffd649fd4d8 [ 287.996095][ T9619] [ 288.580809][ T9659] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 289.458889][ T9662] zswap: compressor not available [ 289.936965][ T9686] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 290.045696][ T9664] Line length is too long: Should be less than 4094 [ 290.764132][ T9698] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 290.791925][ T9698] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 290.831406][ T9698] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 290.896057][ T9708] __nla_validate_parse: 21 callbacks suppressed [ 290.896076][ T9708] netlink: 4184 bytes leftover after parsing attributes in process `syz.1.771'. [ 290.912367][ T9698] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 290.922454][ T9698] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 291.761577][ T9725] zswap: compressor not available [ 291.912828][ T9743] Format for adding new port is "id [perm_addr]" (uint MAC). [ 291.936284][ T9743] Format for adding new port is "id [perm_addr]" (uint MAC). [ 292.403178][ T9753] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 292.426671][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 292.819801][ T9765] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 292.904264][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 292.910328][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 292.984335][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout [ 294.395734][ T9780] snd_virmidi snd_virmidi.0: control 61678:131081:3:y>o[k<:-2147483648 is already present [ 294.496172][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 295.554298][ T9788] Unable to find swap-space signature [ 295.954685][ T9514] syz.2.731 (9514) used greatest stack depth: 18976 bytes left [ 296.483902][ T9791] binder: 9785:9791 ioctl 73a00ffe 9 returned -22 [ 296.507553][ T9767] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 296.624980][ T9802] random: crng reseeded on system resumption [ 297.431382][ T9827] Format for adding new port is "id [perm_addr]" (uint MAC). [ 297.466278][ T9827] Format for adding new port is "id [perm_addr]" (uint MAC). [ 297.514441][ T9829] zram: Added device: zram1 [ 297.994191][ T9838] netlink: 28 bytes leftover after parsing attributes in process `syz.2.801'. [ 298.016154][ T9838] veth0_macvtap: left promiscuous mode [ 298.031891][ T9838] macvtap0: entered promiscuous mode [ 298.040611][ T9838] macvtap0: entered allmulticast mode [ 298.339504][ T9845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.803'. [ 298.357685][ T9845] netlink: 13 bytes leftover after parsing attributes in process `syz.1.803'. [ 298.377142][ T9845] netlink: 8 bytes leftover after parsing attributes in process `syz.1.803'. [ 299.282377][ T9850] netlink: 93 bytes leftover after parsing attributes in process `syz.3.800'. [ 299.356299][ T9847] netlink: 93 bytes leftover after parsing attributes in process `syz.3.800'. [ 299.537889][ T9858] FAULT_INJECTION: forcing a failure. [ 299.537889][ T9858] name failslab, interval 1, probability 0, space 0, times 0 [ 299.623123][ T9858] CPU: 1 UID: 0 PID: 9858 Comm: syz.0.805 Tainted: G L syzkaller #0 PREEMPT(full) [ 299.623167][ T9858] Tainted: [L]=SOFTLOCKUP [ 299.623176][ T9858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 299.623191][ T9858] Call Trace: [ 299.623200][ T9858] [ 299.623210][ T9858] dump_stack_lvl+0x16c/0x1f0 [ 299.623255][ T9858] should_fail_ex+0x512/0x640 [ 299.623284][ T9858] ? fs_reclaim_acquire+0xae/0x150 [ 299.623326][ T9858] should_failslab+0xc2/0x120 [ 299.623364][ T9858] __kmalloc_noprof+0xeb/0x910 [ 299.623393][ T9858] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 299.623435][ T9858] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 299.623469][ T9858] tomoyo_realpath_from_path+0xc2/0x6e0 [ 299.623508][ T9858] ? tomoyo_profile+0x47/0x60 [ 299.623549][ T9858] tomoyo_path_number_perm+0x245/0x580 [ 299.623578][ T9858] ? tomoyo_path_number_perm+0x237/0x580 [ 299.623611][ T9858] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 299.623686][ T9858] ? find_held_lock+0x2b/0x80 [ 299.623721][ T9858] ? hook_file_ioctl_common+0x144/0x410 [ 299.623763][ T9858] ? __fget_files+0x20e/0x3c0 [ 299.623806][ T9858] security_file_ioctl+0x9b/0x240 [ 299.623840][ T9858] __x64_sys_ioctl+0xb7/0x210 [ 299.623875][ T9858] do_syscall_64+0xcd/0xf80 [ 299.623916][ T9858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.623943][ T9858] RIP: 0033:0x7fad7c98f7c9 [ 299.623964][ T9858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.623988][ T9858] RSP: 002b:00007fad7d897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.624013][ T9858] RAX: ffffffffffffffda RBX: 00007fad7cbe6090 RCX: 00007fad7c98f7c9 [ 299.624031][ T9858] RDX: 0000200000000240 RSI: 0000000081785501 RDI: 0000000000000005 [ 299.624047][ T9858] RBP: 00007fad7ca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 299.624063][ T9858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.624078][ T9858] R13: 00007fad7cbe6128 R14: 00007fad7cbe6090 R15: 00007ffd649fd4d8 [ 299.624114][ T9858] [ 299.624124][ T9858] ERROR: Out of memory at tomoyo_realpath_from_path. [ 300.093125][ T9866] zswap: compressor not available [ 300.734230][ T9854] kexec: Could not allocate control_code_buffer [ 300.889965][ T30] audit: type=1800 audit(1768224289.453:10): pid=9896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.814" name="dbroot" dev="configfs" ino=29782 res=0 errno=0 [ 303.071393][ T9935] zswap: compressor W;0?u=8}L(Eֹjj8+xpȜNkRuoo [ 320.752562][T10142] dump_stack_lvl+0x16c/0x1f0 [ 320.752607][T10142] should_fail_ex+0x512/0x640 [ 320.752643][T10142] _copy_from_user+0x2e/0xd0 [ 320.752674][T10142] copy_msghdr_from_user+0x98/0x160 [ 320.752710][T10142] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 320.752750][T10142] ? find_held_lock+0x2b/0x80 [ 320.752793][T10142] ___sys_sendmsg+0xfe/0x1d0 [ 320.752829][T10142] ? __pfx____sys_sendmsg+0x10/0x10 [ 320.752895][T10142] ? __pfx___might_resched+0x10/0x10 [ 320.752939][T10142] __sys_sendmmsg+0x200/0x420 [ 320.752978][T10142] ? __pfx___sys_sendmmsg+0x10/0x10 [ 320.753021][T10142] ? __pfx_do_futex+0x10/0x10 [ 320.753062][T10142] ? fput+0x70/0xf0 [ 320.753086][T10142] ? __pfx___x64_sys_futex+0x10/0x10 [ 320.753114][T10142] ? ksys_write+0x1ac/0x250 [ 320.753161][T10142] ? __pfx_ksys_write+0x10/0x10 [ 320.753203][T10142] __x64_sys_sendmmsg+0x9c/0x100 [ 320.753236][T10142] ? lockdep_hardirqs_on+0x7c/0x110 [ 320.753274][T10142] do_syscall_64+0xcd/0xf80 [ 320.753313][T10142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.753339][T10142] RIP: 0033:0x7fc8bf98f7c9 [ 320.753359][T10142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 320.753383][T10142] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 320.753414][T10142] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 320.753432][T10142] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 320.753448][T10142] RBP: 00007fc8bfa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 320.753465][T10142] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.753481][T10142] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 320.753518][T10142] [ 321.412394][T10156] netlink: 4 bytes leftover after parsing attributes in process `syz.1.871'. [ 321.415912][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.430371][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 321.566935][T10152] netlink: 86 bytes leftover after parsing attributes in process `syz.2.870'. [ 322.117182][T10183] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 324.617373][T10203] zswap: compressor not available [ 324.892991][T10225] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0] [ 324.902408][T10224] netlink: 342 bytes leftover after parsing attributes in process `syz.2.888'. [ 324.923666][T10224] IPv6: NLM_F_CREATE should be specified when creating new route [ 324.947657][T10224] IPv6: Can't replace route, no match found [ 325.500560][T10243] random: crng reseeded on system resumption [ 326.886241][T10261] zswap: compressor not available [ 332.718607][T10329] netlink: 24 bytes leftover after parsing attributes in process `syz.1.909'. [ 337.539296][T10386] netlink: 25 bytes leftover after parsing attributes in process `syz.3.924'. [ 339.061487][T10396] zswap: compressor not available [ 340.152093][T10409] sd 0:0:1:0: PR command failed: 1026 [ 340.157536][T10409] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 340.189097][T10409] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 340.546943][T10418] nvme_fabrics: unknown parameter or missing value '@' in ctrl creation request [ 341.892940][T10438] sd 0:0:1:0: PR command failed: 1026 [ 341.900717][T10438] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 341.907450][T10438] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 343.337204][T10445] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.505393][T10445] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.670853][T10445] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.828656][T10445] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.864936][ T30] audit: type=1800 audit(1768224332.646:11): pid=10459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.941" name="dbroot" dev="configfs" ino=33180 res=0 errno=0 [ 348.499787][T10515] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 348.512131][T10516] random: crng reseeded on system resumption [ 352.206523][T10557] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 353.449379][T10563] zswap: compressor not available [ 353.625255][T10573] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 Ijn9_UVQ8j@:Un M%Ux0 [ 356.235139][T10630] FAULT_INJECTION: forcing a failure. [ 356.235139][T10630] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 356.385298][T10630] CPU: 1 UID: 0 PID: 10630 Comm: syz.0.977 Tainted: G L syzkaller #0 PREEMPT(full) [ 356.385324][T10630] Tainted: [L]=SOFTLOCKUP [ 356.385329][T10630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 356.385337][T10630] Call Trace: [ 356.385342][T10630] [ 356.385348][T10630] dump_stack_lvl+0x16c/0x1f0 [ 356.385377][T10630] should_fail_ex+0x512/0x640 [ 356.385397][T10630] _copy_from_user+0x2e/0xd0 [ 356.385414][T10630] rtc_dev_ioctl+0x78e/0xdd0 [ 356.385438][T10630] ? __pfx_rtc_dev_ioctl+0x10/0x10 [ 356.385463][T10630] ? find_held_lock+0x2b/0x80 [ 356.385497][T10630] ? __pfx_rtc_dev_ioctl+0x10/0x10 [ 356.385519][T10630] __x64_sys_ioctl+0x18e/0x210 [ 356.385538][T10630] do_syscall_64+0xcd/0xf80 [ 356.385562][T10630] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.385577][T10630] RIP: 0033:0x7fad7c98f7c9 [ 356.385589][T10630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 356.385602][T10630] RSP: 002b:00007fad7d8b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 356.385616][T10630] RAX: ffffffffffffffda RBX: 00007fad7cbe5fa0 RCX: 00007fad7c98f7c9 [ 356.385625][T10630] RDX: 0000200000000000 RSI: 0000000040247007 RDI: 0000000000000003 [ 356.385633][T10630] RBP: 00007fad7d8b8090 R08: 0000000000000000 R09: 0000000000000000 [ 356.385642][T10630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 356.385649][T10630] R13: 00007fad7cbe6038 R14: 00007fad7cbe5fa0 R15: 00007ffd649fd4d8 [ 356.385668][T10630] [ 356.599961][T10632] netlink: 4 bytes leftover after parsing attributes in process `syz.1.978'. [ 357.177874][ T5151] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 357.512828][T10651] FAULT_INJECTION: forcing a failure. [ 357.512828][T10651] name failslab, interval 1, probability 0, space 0, times 0 [ 357.527506][T10651] CPU: 0 UID: 0 PID: 10651 Comm: syz.2.983 Tainted: G L syzkaller #0 PREEMPT(full) [ 357.527541][T10651] Tainted: [L]=SOFTLOCKUP [ 357.527550][T10651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 357.527564][T10651] Call Trace: [ 357.527571][T10651] [ 357.527581][T10651] dump_stack_lvl+0x16c/0x1f0 [ 357.527621][T10651] should_fail_ex+0x512/0x640 [ 357.527646][T10651] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 357.527686][T10651] should_failslab+0xc2/0x120 [ 357.527722][T10651] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 357.527751][T10651] ? __d_lookup+0x25c/0x4a0 [ 357.527779][T10651] ? __d_alloc+0x35/0xa80 [ 357.527805][T10651] ? __d_alloc+0x35/0xa80 [ 357.527823][T10651] __d_alloc+0x35/0xa80 [ 357.527850][T10651] d_alloc+0x4a/0x1e0 [ 357.527877][T10651] lookup_one_qstr_excl+0x175/0x250 [ 357.527909][T10651] start_dirop+0x59/0xb0 [ 357.527940][T10651] simple_start_creating+0xf4/0x100 [ 357.527973][T10651] ? __pfx_simple_start_creating+0x10/0x10 [ 357.528004][T10651] ? do_raw_spin_unlock+0x172/0x230 [ 357.528036][T10651] ? simple_pin_fs+0xa3/0x190 [ 357.528067][T10651] debugfs_start_creating.part.0+0x86/0x1c0 [ 357.528109][T10651] __debugfs_create_file+0xb3/0x530 [ 357.528139][T10651] debugfs_create_file_full+0x41/0x60 [ 357.528169][T10651] ref_tracker_dir_debugfs+0x19d/0x2f0 [ 357.528200][T10651] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 357.528263][T10651] ? lockdep_init_map_type+0x5c/0x270 [ 357.528294][T10651] preinit_net.part.0+0x24e/0x8f0 [ 357.528330][T10651] copy_net_ns+0x4cd/0x7c0 [ 357.528370][T10651] create_new_namespaces+0x3ea/0xab0 [ 357.528407][T10651] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 357.528442][T10651] ksys_unshare+0x45b/0xa40 [ 357.528479][T10651] ? __pfx_ksys_unshare+0x10/0x10 [ 357.528517][T10651] ? xfd_validate_state+0x61/0x180 [ 357.528550][T10651] __x64_sys_unshare+0x31/0x40 [ 357.528572][T10651] do_syscall_64+0xcd/0xf80 [ 357.528616][T10651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 357.528641][T10651] RIP: 0033:0x7fc8bf98f7c9 [ 357.528666][T10651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 357.528688][T10651] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 357.528711][T10651] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 357.528728][T10651] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 357.528743][T10651] RBP: 00007fc8bfa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 357.528758][T10651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 357.528772][T10651] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 357.528808][T10651] [ 357.604791][T10652] random: crng reseeded on system resumption [ 358.632257][ T30] audit: type=1804 audit(1768224347.483:12): pid=10647 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.980" name="/newroot/251/file0" dev="tmpfs" ino=1344 res=1 errno=0 [ 358.733397][T10671] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 358.765543][ T30] audit: type=1804 audit(1768224347.613:13): pid=10662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.980" name="/newroot/251/file0" dev="tmpfs" ino=1344 res=1 errno=0 [ 359.553574][T10696] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_tx_wq": -EINTR [ 359.828322][T10711] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input14 [ 360.392979][T10720] FAULT_INJECTION: forcing a failure. [ 360.392979][T10720] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 360.406319][T10720] CPU: 0 UID: 0 PID: 10720 Comm: syz.2.998 Tainted: G L syzkaller #0 PREEMPT(full) [ 360.406349][T10720] Tainted: [L]=SOFTLOCKUP [ 360.406354][T10720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 360.406363][T10720] Call Trace: [ 360.406369][T10720] [ 360.406374][T10720] dump_stack_lvl+0x16c/0x1f0 [ 360.406402][T10720] should_fail_ex+0x512/0x640 [ 360.406423][T10720] should_fail_alloc_page+0xe7/0x130 [ 360.406447][T10720] prepare_alloc_pages+0x401/0x670 [ 360.406470][T10720] ? rcu_is_watching+0x12/0xc0 [ 360.406493][T10720] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 360.406517][T10720] ? __lock_acquire+0x436/0x2890 [ 360.406533][T10720] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 360.406552][T10720] ? __mod_zone_page_state+0xcc/0x1a0 [ 360.406568][T10720] ? lru_gen_add_folio+0x1a4/0xef0 [ 360.406587][T10720] ? __lock_acquire+0x436/0x2890 [ 360.406602][T10720] ? __lock_acquire+0x436/0x2890 [ 360.406615][T10720] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 360.406638][T10720] ? policy_nodemask+0xea/0x4e0 [ 360.406662][T10720] alloc_pages_mpol+0x1fb/0x550 [ 360.406684][T10720] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 360.406725][T10720] folio_alloc_mpol_noprof+0x36/0x2f0 [ 360.406755][T10720] vma_alloc_folio_noprof+0xed/0x1e0 [ 360.406780][T10720] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 360.406817][T10720] do_anonymous_page+0xc81/0x2190 [ 360.406846][T10720] __handle_mm_fault+0x1ecf/0x2bb0 [ 360.406867][T10720] ? __pfx___handle_mm_fault+0x10/0x10 [ 360.406883][T10720] ? __pte_offset_map_lock+0x174/0x310 [ 360.406904][T10720] ? find_held_lock+0x2b/0x80 [ 360.406928][T10720] ? follow_page_pte+0x5cf/0x1390 [ 360.406953][T10720] handle_mm_fault+0x3fe/0xad0 [ 360.406971][T10720] __get_user_pages+0x54e/0x3590 [ 360.407000][T10720] ? __pfx___get_user_pages+0x10/0x10 [ 360.407027][T10720] populate_vma_page_range+0x267/0x3f0 [ 360.407051][T10720] ? __pfx_populate_vma_page_range+0x10/0x10 [ 360.407074][T10720] ? __pfx_find_vma_intersection+0x10/0x10 [ 360.407097][T10720] ? do_mmap+0x69c/0x1210 [ 360.407120][T10720] __mm_populate+0x1d8/0x380 [ 360.407143][T10720] ? __pfx___mm_populate+0x10/0x10 [ 360.407167][T10720] ? up_write+0x282/0x4e0 [ 360.407184][T10720] vm_mmap_pgoff+0x37f/0x470 [ 360.407207][T10720] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 360.407231][T10720] ? __x64_sys_futex+0x1e0/0x4c0 [ 360.407247][T10720] ? __x64_sys_futex+0x1e9/0x4c0 [ 360.407266][T10720] ksys_mmap_pgoff+0x7d/0x5c0 [ 360.407285][T10720] ? xfd_validate_state+0x61/0x180 [ 360.407302][T10720] __x64_sys_mmap+0x125/0x190 [ 360.407318][T10720] do_syscall_64+0xcd/0xf80 [ 360.407351][T10720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.407367][T10720] RIP: 0033:0x7fc8bf98f7c9 [ 360.407379][T10720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.407392][T10720] RSP: 002b:00007fc8c08cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 360.407406][T10720] RAX: ffffffffffffffda RBX: 00007fc8bfbe5fa0 RCX: 00007fc8bf98f7c9 [ 360.407416][T10720] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 360.407424][T10720] RBP: 00007fc8bfa13f91 R08: 0000000000000002 R09: 0000000000008000 [ 360.407433][T10720] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 360.407441][T10720] R13: 00007fc8bfbe6038 R14: 00007fc8bfbe5fa0 R15: 00007ffc78e209a8 [ 360.407461][T10720] [ 361.883047][T10736] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1001'. [ 362.084806][T10742] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1001'. [ 362.659993][ T30] audit: type=1804 audit(1768224351.534:14): pid=10761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1007" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 362.800595][T10763] i2c i2c-0: delete_device: Extra parameters [ 362.850662][T10766] i2c i2c-0: delete_device: Extra parameters [ 362.863445][T10763] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 362.920161][T10766] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 363.449453][T10778] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1013'. [ 363.714034][T10779] FAULT_INJECTION: forcing a failure. [ 363.714034][T10779] name failslab, interval 1, probability 0, space 0, times 0 [ 363.781530][T10779] CPU: 1 UID: 0 PID: 10779 Comm: syz.1.1011 Tainted: G L syzkaller #0 PREEMPT(full) [ 363.781576][T10779] Tainted: [L]=SOFTLOCKUP [ 363.781586][T10779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 363.781602][T10779] Call Trace: [ 363.781611][T10779] [ 363.781623][T10779] dump_stack_lvl+0x16c/0x1f0 [ 363.781670][T10779] should_fail_ex+0x512/0x640 [ 363.781700][T10779] ? __kmalloc_cache_noprof+0x5f/0x800 [ 363.781740][T10779] should_failslab+0xc2/0x120 [ 363.781781][T10779] __kmalloc_cache_noprof+0x80/0x800 [ 363.781812][T10779] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 363.781855][T10779] ? vidtv_psi_pmt_table_init+0x363/0x430 [ 363.781885][T10779] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 363.781925][T10779] vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 363.781967][T10779] vidtv_channel_si_init+0x13d2/0x1a50 [ 363.782007][T10779] vidtv_mux_init+0x526/0xbe0 [ 363.782042][T10779] vidtv_start_feed+0x33e/0x4d0 [ 363.782077][T10779] ? __pfx_vidtv_start_feed+0x10/0x10 [ 363.782114][T10779] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 363.782158][T10779] ? mark_held_locks+0x49/0x80 [ 363.782191][T10779] ? __pfx_vidtv_start_feed+0x10/0x10 [ 363.782227][T10779] dmx_ts_feed_start_filtering+0xf6/0x220 [ 363.782265][T10779] dvb_dmxdev_start_feed+0x273/0x3f0 [ 363.782298][T10779] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 363.782331][T10779] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 363.782364][T10779] dvb_demux_do_ioctl+0x9de/0x12f0 [ 363.782403][T10779] dvb_usercopy+0x167/0x340 [ 363.782426][T10779] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 363.782458][T10779] ? __pfx_dvb_usercopy+0x10/0x10 [ 363.782497][T10779] ? __fget_files+0x20e/0x3c0 [ 363.782536][T10779] dvb_demux_ioctl+0x29/0x40 [ 363.782559][T10779] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 363.782586][T10779] __x64_sys_ioctl+0x18e/0x210 [ 363.782621][T10779] do_syscall_64+0xcd/0xf80 [ 363.782663][T10779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.782690][T10779] RIP: 0033:0x7f3c41f8f7c9 [ 363.782712][T10779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 363.782745][T10779] RSP: 002b:00007f3c42e7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 363.782771][T10779] RAX: ffffffffffffffda RBX: 00007f3c421e6090 RCX: 00007f3c41f8f7c9 [ 363.782790][T10779] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 363.782807][T10779] RBP: 00007f3c42013f91 R08: 0000000000000000 R09: 0000000000000000 [ 363.782823][T10779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.782838][T10779] R13: 00007f3c421e6128 R14: 00007f3c421e6090 R15: 00007ffdd57f8f88 [ 363.782877][T10779] [ 364.331583][T10779] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 364.343524][T10779] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 364.351948][T10779] CPU: 1 UID: 0 PID: 10779 Comm: syz.1.1011 Tainted: G L syzkaller #0 PREEMPT(full) [ 364.362898][T10779] Tainted: [L]=SOFTLOCKUP [ 364.367222][T10779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 364.372906][T10794] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1015'. [ 364.377278][T10779] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 364.392100][T10779] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 2d 40 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 09 40 b9 f9 4d 85 e4 [ 364.411721][T10779] RSP: 0018:ffffc9000b897a20 EFLAGS: 00010247 [ 364.417795][T10779] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000d56b000 [ 364.425773][T10779] RDX: 0000000000000000 RSI: ffffffff88051af3 RDI: 0000000000000005 [ 364.433738][T10779] RBP: ffff88807e2b3000 R08: 0000000000000000 R09: 4453534204050000 [ 364.441700][T10779] R10: 0000000000000005 R11: ffff8880785fe6b0 R12: 0000000000000000 [ 364.449660][T10779] R13: ffff8880327f2880 R14: ffff88807e1e76a0 R15: ffff88803455ed40 [ 364.457621][T10779] FS: 00007f3c42e7b6c0(0000) GS:ffff8881249fa000(0000) knlGS:0000000000000000 [ 364.466539][T10779] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 364.473111][T10779] CR2: 0000001b313d9ff8 CR3: 00000000305a4000 CR4: 00000000003526f0 [ 364.481072][T10779] Call Trace: [ 364.484335][T10779] [ 364.487252][T10779] vidtv_channel_si_init+0x1445/0x1a50 [ 364.492711][T10779] vidtv_mux_init+0x526/0xbe0 [ 364.497385][T10779] vidtv_start_feed+0x33e/0x4d0 [ 364.502236][T10779] ? __pfx_vidtv_start_feed+0x10/0x10 [ 364.507614][T10779] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 364.514203][T10779] ? mark_held_locks+0x49/0x80 [ 364.518960][T10779] ? __pfx_vidtv_start_feed+0x10/0x10 [ 364.524328][T10779] dmx_ts_feed_start_filtering+0xf6/0x220 [ 364.530044][T10779] dvb_dmxdev_start_feed+0x273/0x3f0 [ 364.535320][T10779] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 364.540772][T10779] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 364.545961][T10779] dvb_demux_do_ioctl+0x9de/0x12f0 [ 364.551069][T10779] dvb_usercopy+0x167/0x340 [ 364.555561][T10779] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 364.561100][T10779] ? __pfx_dvb_usercopy+0x10/0x10 [ 364.566116][T10779] ? __fget_files+0x20e/0x3c0 [ 364.570793][T10779] dvb_demux_ioctl+0x29/0x40 [ 364.575372][T10779] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 364.580645][T10779] __x64_sys_ioctl+0x18e/0x210 [ 364.585405][T10779] do_syscall_64+0xcd/0xf80 [ 364.589913][T10779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.595796][T10779] RIP: 0033:0x7f3c41f8f7c9 [ 364.600200][T10779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.619804][T10779] RSP: 002b:00007f3c42e7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 364.628211][T10779] RAX: ffffffffffffffda RBX: 00007f3c421e6090 RCX: 00007f3c41f8f7c9 [ 364.636171][T10779] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 364.644128][T10779] RBP: 00007f3c42013f91 R08: 0000000000000000 R09: 0000000000000000 [ 364.652085][T10779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 364.660044][T10779] R13: 00007f3c421e6128 R14: 00007f3c421e6090 R15: 00007ffdd57f8f88 [ 364.668014][T10779] [ 364.671019][T10779] Modules linked in: [ 364.675451][T10779] ---[ end trace 0000000000000000 ]--- [ 365.250481][T10794] hsr_slave_0: left promiscuous mode [ 365.275764][T10794] hsr_slave_1: left promiscuous mode [ 365.586207][T10779] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 365.592156][T10779] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 2d 40 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 09 40 b9 f9 4d 85 e4 [ 365.635895][T10779] RSP: 0018:ffffc9000b897a20 EFLAGS: 00010247 [ 365.641974][T10779] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000d56b000 [ 365.665803][T10779] RDX: 0000000000000000 RSI: ffffffff88051af3 RDI: 0000000000000005 [ 365.673802][T10779] RBP: ffff88807e2b3000 R08: 0000000000000000 R09: 4453534204050000 [ 365.695732][T10779] R10: 0000000000000005 R11: ffff8880785fe6b0 R12: 0000000000000000 [ 365.703888][T10779] R13: ffff8880327f2880 R14: ffff88807e1e76a0 R15: ffff88803455ed40 [ 365.727663][T10779] FS: 00007f3c42e7b6c0(0000) GS:ffff8881249fa000(0000) knlGS:0000000000000000 [ 365.745230][T10779] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 365.751820][T10779] CR2: 00007ffdd57f8ec0 CR3: 00000000305a4000 CR4: 00000000003526f0 [ 365.775195][T10779] Kernel panic - not syncing: Fatal exception [ 365.781584][T10779] Kernel Offset: disabled [ 365.785891][T10779] Rebooting in 86400 seconds..