last executing test programs: 4m6.274918966s ago: executing program 3 (id=309): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x8000000000000001) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x20102, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) write$auto(r0, &(0x7f0000000440)='/dev/audio1\x00\xc8iB?n&\x82{k\x91i\x1e\\P5\xac\x19Z\xa8\x9fB\xb2\xc7Nw9\xaa\xae\xbai\xfb\x866\xc9\xc0_\x98d\x86CXW\x12\xfc\xe5BA:t\xdbN\x00\x950l\x1f\x8d\xf2\xcb\xef\xec\xfc\xdb\n\x035\xd6nQ-\x88\x8d\x91\xce0\x86\xecm\x03\x19P\n\xe4\xa5\xe3\xba\x90L.\x1aE\xfaZ\xd4\xd7\x01[\x06\b\xc9T)\x949\xe1\xf8k\xe2\x90\xa8eB+B/\x92\xdb\xd7M\xce\xb8?\xc7z\x8bfE\x9c\xfd~|^L\xd7\xb3\xdf@L\xe8\xda\xec\xde&\xda}J\xd6\xb2\xe5\x90\xd5\xcd\x89\x05_pf\x908\xde\xc69\v.\xa98\xfd\xfc\x02\xea\xacFn\xf2u\xd3\xa5\xb2\xb5f\xd2\x04\xbb\xfc\xcd\xec\xc6\f\xd8C\xe7\v!bB\xfa\xed\\$\xe7\xf6P8O\xd6n1\x15\x912\xe5\x0fJ\xde\x92v)\xdc\x9d\xe3\x13\xbb\xe3!\xe3\xa4-\x83Mz\n\xf9', 0x100000a3d9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x40000000008, 0x6, 0x67) io_uring_setup$auto(0x9, 0x0) socket(0xa, 0x2, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x7fffffff) setsockopt$auto(0x3, 0x1, 0x2, 0x0, 0x8) shutdown$auto(0x200000003, 0x2) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x1000, 0x9, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x5) read$auto(r2, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) close_range$auto(0x2, r1, 0x10000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/capability\x00', 0x129102, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x102, 0x0) 4m5.194171011s ago: executing program 3 (id=312): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0xa, 0x3) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/timer_source\x00', 0x20080, 0x0) pread64$auto(r0, 0x0, 0x1fffe001, 0xb) socket$nl_generic(0x10, 0x3, 0x10) socket(0x22, 0x1, 0x8) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x5) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x73) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x7c3142, 0x0) socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto(r2, 0x400455c8, r1) 4m2.657412232s ago: executing program 3 (id=320): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c0300000000000000a3677337f9eca9075f6bba441b", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x5c5840, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x1a2002, 0x0) socket(0x1a, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000) close_range$auto(0x0, 0x5, 0x0) inotify_init1$auto(0x800) io_uring_setup$auto(0x4, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) ioctl$auto(0x3, 0x80286f4e, r1) ioctl$auto(0x3, 0x6f41, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) io_uring_setup$auto(0x6, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/net\x00') mbind$auto(0x2000, 0x100000004, 0x5, 0x0, 0xffffffffffffff39, 0xffffffff) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) 4m1.661950619s ago: executing program 3 (id=323): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000002c00), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000004440)={&(0x7f0000000040)={0x18, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000840}, 0x840) 4m1.5003319s ago: executing program 3 (id=324): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x15, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x2000000) r0 = io_uring_setup$auto(0xb, 0x0) r1 = socket(0x28, 0x80006, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x80) unshare$auto(0x40000080) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/msr/parameters/allow_writes\x00', 0x80302, 0x0) sendfile$auto(r2, r2, 0x0, 0x7ffff000) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x3a8000, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/clockevents/broadcast/current_device\x00', 0x181400, 0x0) r4 = socket(0x11, 0x80003, 0x20) setsockopt$auto(r4, 0x107, 0x5, 0x0, 0x4) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000180)=""/136, 0x88) setgid$auto(0x0) mprotect$auto(0x200000000000, 0x806121, 0x8) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio1/protocol\x00', 0x40880, 0x0) socket(0x18, 0x80000, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/mac80211_hwsim/hwsim1/ieee80211/phy1/rfkill3/power/autosuspend_delay_ms\x00', 0x1, 0x0) read$auto(r5, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x2000000000007}, 0x80000000) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x68a80, 0x0) mmap$auto(0x100000000, 0x2020007, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) 4m1.009747907s ago: executing program 3 (id=325): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) socket(0x10, 0x2, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/erspan0/arp_announce\x00', 0x141241, 0x0) pwrite64$auto(r0, 0x0, 0x6bc, 0x5) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e22, @loopback}, 0x53) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x1) write$auto(0x3, 0x0, 0xfffffdef) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r3, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000440)={0x24c, r4, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x234, 0x1, 0x0, 0x1, [@nested={0x22d, 0x139, 0x0, 0x1, [@nested={0x21b, 0xeb, 0x0, 0x1, [@generic="4540411dc202cca7c3000938b0c18de4cfac1203a8319dc7b96f0e2a79334de3be28009e292ede89fa03", @typed={0x8, 0xdd, 0x0, 0x0, @pid}, @generic="6930d90e6909e2b8e7eb7fce61b1c025380ce4702699d87c1fed3cf9f146b4ded92ce82ffe7fa2ac72640f557a845a28a0e484eab4c323b7a631c0e9ea7cd1623d365b31ac8f93d7b7ba1fe0dc38aac8423995fbf05cefbfcc2cf976cdb77a84b14a852fa07c112b31360ea6913f2214d52fd4fdc9d70f5d00ae063c4b369b11a363e0a6f5f9edfc8b527c68e2f43e321c006a2034c49e67e56ab2060bccbadae47f135e9370e4143639388d590430c25637db9a1f372b131aed9326e3db4a6bc9080db86a4649bc6bf77993ab", @nested={0x70, 0xe8, 0x0, 0x1, [@generic="b43e00104808a69ceefccdc7208d795692755d48b7d3eaf37da135891ae1764cf2fdac302d49af25e1cfedfa7d2ea160f99e24961c2a3f75338a77437119afaf3c16c367d73289398b08635cccbd637a44a7e458", @generic="151410cb8e5e702b6c00f1ace487751a9e174acb", @generic="197d6a76"]}, @nested={0x4, 0x12d}, @nested={0x9c, 0x109, 0x0, 0x1, [@generic="18dd0047f071cf26f71d7c3e0953a7b809f180b71a907ce8eee916b786c12bef043849f161b88cbb4f01bf22d7564404244d4a13c3a6386f14ef3c114ccaa122e838b4e7a335dea8cbe3bcec519afde9f5c23303b82c57b41f730b3046db635a18dd6ae8e02e7eecc84472f0833c6a03b2d8ab0f34a797c4cc4a02f9775150e42001e3c49e4af528b3a41699", @typed={0xc, 0xf0, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x50, 0x0, 0x0, @uid}]}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048) sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="28020000", @ANYRES16=0x0, @ANYBLOB="000227bd7000fedbdf254b00000008009e00050000000c001b800400020004000300"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x1) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0) 3m44.883177175s ago: executing program 32 (id=325): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) socket(0x10, 0x2, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/conf/erspan0/arp_announce\x00', 0x141241, 0x0) pwrite64$auto(r0, 0x0, 0x6bc, 0x5) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e22, @loopback}, 0x53) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x1) write$auto(0x3, 0x0, 0xfffffdef) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r3, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000440)={0x24c, r4, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x234, 0x1, 0x0, 0x1, [@nested={0x22d, 0x139, 0x0, 0x1, [@nested={0x21b, 0xeb, 0x0, 0x1, [@generic="4540411dc202cca7c3000938b0c18de4cfac1203a8319dc7b96f0e2a79334de3be28009e292ede89fa03", @typed={0x8, 0xdd, 0x0, 0x0, @pid}, @generic="6930d90e6909e2b8e7eb7fce61b1c025380ce4702699d87c1fed3cf9f146b4ded92ce82ffe7fa2ac72640f557a845a28a0e484eab4c323b7a631c0e9ea7cd1623d365b31ac8f93d7b7ba1fe0dc38aac8423995fbf05cefbfcc2cf976cdb77a84b14a852fa07c112b31360ea6913f2214d52fd4fdc9d70f5d00ae063c4b369b11a363e0a6f5f9edfc8b527c68e2f43e321c006a2034c49e67e56ab2060bccbadae47f135e9370e4143639388d590430c25637db9a1f372b131aed9326e3db4a6bc9080db86a4649bc6bf77993ab", @nested={0x70, 0xe8, 0x0, 0x1, [@generic="b43e00104808a69ceefccdc7208d795692755d48b7d3eaf37da135891ae1764cf2fdac302d49af25e1cfedfa7d2ea160f99e24961c2a3f75338a77437119afaf3c16c367d73289398b08635cccbd637a44a7e458", @generic="151410cb8e5e702b6c00f1ace487751a9e174acb", @generic="197d6a76"]}, @nested={0x4, 0x12d}, @nested={0x9c, 0x109, 0x0, 0x1, [@generic="18dd0047f071cf26f71d7c3e0953a7b809f180b71a907ce8eee916b786c12bef043849f161b88cbb4f01bf22d7564404244d4a13c3a6386f14ef3c114ccaa122e838b4e7a335dea8cbe3bcec519afde9f5c23303b82c57b41f730b3046db635a18dd6ae8e02e7eecc84472f0833c6a03b2d8ab0f34a797c4cc4a02f9775150e42001e3c49e4af528b3a41699", @typed={0xc, 0xf0, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x50, 0x0, 0x0, @uid}]}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048) sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="28020000", @ANYRES16=0x0, @ANYBLOB="000227bd7000fedbdf254b00000008009e00050000000c001b800400020004000300"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x1) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0) 6.652677797s ago: executing program 2 (id=1100): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) read$auto(0xffffffffffffffff, 0x0, 0x39b8) socket(0x1e, 0x1, 0x0) memfd_create$auto(0x0, 0x4) mmap$auto(0x8000000, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000) readv$auto(0x3, 0x0, 0x1) close_range$auto(0x2, 0xa, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r1, 0x4008ae6a, r2) 6.434583203s ago: executing program 2 (id=1102): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) unshare$auto(0x40000080) socket(0x23, 0x1, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0xa) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x109401, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0) sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000003180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x4, 0x0, 0x9, 0x15, 0xffffffffffffffff, 0xce9) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socketpair$auto(0x4, 0x2, 0x10, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b03, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) unshare$auto(0x40000080) 5.472496128s ago: executing program 0 (id=1107): socket(0x28, 0x800, 0x38) prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x9, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x8, 0x0, 0x0) r0 = prctl$auto_PR_SET_MM_START_CODE(0x9, 0x1, 0xffffffffffffffff, 0x2, 0x87d) clone$auto(0x8, 0x7, 0x0, 0xffffffffffffffff, 0x80000001) pwrite64$auto(r0, &(0x7f00000001c0)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06Y\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebz\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\x06\x00\x00\x00\x00\x00\x00\x00\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14\xf8\x10\xdeNH\x1a\xca\xc1kr\x88\x06\xa5\xf30\xd2\x7f \xf6\xd3\xa1J3=\xa3\xb2>/S\x94\xa01{\xeb\xb1\xf2\xe6\x8b`@\xed\xc1\xb8\xc5\x90\xf9\xb6\xc8\x17\xdd\xf4\xd1\xa4\xf6\xaa`\x90\x130\x8a5\x15(\xdd\xaa\xe4wa\x82\xd6\x97\xf5n\xba-\x0f#\xf32_\x0e\r%&\x1d\x85\xff\xe5\x97C\x06A\xf9\xd2\xb2\xf4\xe7\xe8\xe2\xf0=-yMq\xfa\x89\xd0\n\xfc\xb8\x85\x9e\xd8\xfas\xb0\xe7\x9e\xcf\xd9W\xad\\J&\xd0\x7f\xba\xd1\x93\xffB\x9d\x91\xe4\a\xcf\x96#8i\x1ab6\xc0\xc9X\x9d\x02\xb8+-\x88d\x1e\x90\x8a\\\x14\xe1\x172\xcf\xfa\xc8\xd1\xcd\x11\v*g\xa9\xca3\xb3\xde\x135\x122\xf6D\xee[\xcfcVob', 0x10, 0x6) bind$auto(0x3, 0x0, 0x6a) sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044010}, 0x40850) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff5fff500"}, 0x55) 4.401742229s ago: executing program 0 (id=1113): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) io_setup$auto(0x7ffe, &(0x7f0000000000)) (fail_nth: 12) close_range$auto(0x2, 0x8, 0x2) mmap$auto(0xa0, 0x2000400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) sendfile$auto(r1, r1, 0x0, 0x4000000000001) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) r2 = socket(0x2c, 0x3, 0x0) getsockopt$auto_SO_DEBUG(r2, 0x4, 0x1, 0x0, 0x0) r3 = landlock_create_ruleset$auto(0x0, 0x18, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000140)=']}\x00', 0x101, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f00000002c0), 0x8040, 0x0) r4 = epoll_create$auto(0x8) epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r3, 0x454f, 0x5f, 0x0, 0x0, r3, 0x80000001}, 0x6d4) 3.850130984s ago: executing program 1 (id=1114): mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200040, 0x2) writev$auto(r0, &(0x7f0000000100)={&(0x7f0000000040)="2f3568f51dfbc9eb5317a94c3f8cbc0e607521f0110bbc019bbbdd31a63bf5878ec9ae7a253d1ff58a61d01ac2f589438bd69a1db2a8b9800a92abfd07e89c26d22f6b9772be61bf1c3864ee83ecea16780ec40625c937cdc0aa21f50847134706531e9cf7bab40929f3cb6a6c55648edc5beda0216bbf2f129ef486c20f8ac04e82d1a4cb7fd855aedc277fe76c2f2f"}, 0x2a) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) futex$auto(&(0x7f0000000080)=0x1, 0xb, 0x1, 0x0, 0x0, 0xfffffffa) write$auto_sg_fops_sg(0xffffffffffffffff, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) socket(0x11, 0x80003, 0x300) r1 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) socket(0x1, 0x3, 0x3b) prctl$auto(0x59616d61, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffe5) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x0, 0x2000000005, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x80100, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socketpair$auto(0xa, 0x100, 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc8201, 0x0) r2 = socket(0x10, 0x3, 0x6) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002cbd7000fbdbdf251c006cfe1200000000000000000000001400040074756eab6c"], 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x48d0) 3.613795318s ago: executing program 2 (id=1115): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) signalfd4$auto(0xffffffff, &(0x7f0000000080)={0x8000}, 0x8, 0x0) 3.468563317s ago: executing program 4 (id=1116): openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, 0x0, 0x400000, 0x0) r0 = socket(0xa, 0x2, 0x0) setsockopt$auto_SO_WIFI_STATUS(r0, 0x0, 0x29, 0x0, 0xbff) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0) write$auto_snd_pcm_oss_f_reg_pcm_oss(r1, &(0x7f0000000080)="c2", 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x10d140, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, 0x0, 0x20c01, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r5 = io_uring_setup$auto(0x86, 0x0) r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x101000, 0x0) ioctl$auto(r6, 0xc0205647, r5) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000640)={'dvmrp0\x00'}) close_range$auto(0x2, r4, 0x3) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x3, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) 3.448140457s ago: executing program 1 (id=1117): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0xc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB='\r'], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) (async) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB='\r'], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) socket(0xa, 0x3, 0x3b) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, 0x0, 0x8a141, 0x0) (async) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, 0x0, 0x8a141, 0x0) socket(0x2, 0x2, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x7fffffff, 0xffffffffffffffff, 0x3, 0x1, 0x54f1, 0xa, 0x6d3f, 0x100000009, 0x2, 0xfffffffffffffffe]}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20048810}, 0x40000) mmap$auto(0x0, 0x2000b, 0xe2, 0xeb1, 0x405, 0x8000) r0 = socket(0x2b, 0x0, 0x2) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfe, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xebd, 0x401, 0x8000) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xebd, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) gettid() close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x1e, 0x4, 0x0) ioctl$auto_CEC_ADAP_G_LOG_ADDRS(0xffffffffffffffff, 0x805c6103, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) (async) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) (async) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) setresuid$auto(0x8, 0x8, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) 3.386118067s ago: executing program 2 (id=1118): mmap$auto(0x0, 0x2000009, 0x2bb, 0x8000000000000013, 0xffffffffffffffff, 0x8000) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200040, 0x2) writev$auto(r0, &(0x7f0000000100)={&(0x7f0000000040)="2f3568f51dfbc9eb5317a94c3f8cbc0e607521f0110bbc019bbbdd31a63bf5878ec9ae7a253d1ff58a61d01ac2f589438bd69a1db2a8b9800a92abfd07e89c26d22f6b9772be61bf1c3864ee83ecea16780ec40625c937cdc0aa21f50847134706531e9cf7bab40929f3cb6a6c55648edc5beda0216bbf2f129ef486c20f8ac04e82d1a4cb7fd855aedc277fe76c2f2f"}, 0x2a) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = socket(0xa, 0x3, 0x3b) prctl$auto(0x59616d61, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffe5) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x0, 0x2000000005, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0xa, 0x3, 0x3b) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r1) sendmsg$auto_NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000000540)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)={0xe8, r2, 0x300, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x1}, @NL80211_ATTR_PMKR0_NAME={0xca, 0x102, "eea474da278a395edf35fa98d606f7e1a3c19068441a5f579141dbae97b3c42eafafbf062f8a01256ecbb3f2250d6463cde642566f36b84d73a2371a75a29d8b395faf9fc33e9620b48a45e07f3a8fc47cdbba5cd9f7db367525919a9e51da8ea18ea3a6c905c86e238b61e2645fde9214a6e6708caa9187b3cd7b1ea64f49c868ce91abe0e038b3556f8a944bd89b425d1a16c03aa880462144969fb6fc1764f782d9d0be790ba6ad9efdf999d13fbb3eb2d7517e3963d7e06e661766d8f4dc7ce3dc6743d9"}]}, 0xe8}, 0x1, 0x0, 0x0, 0x20000000}, 0x81) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x80100, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/vlan/config\x00', 0xc0000, 0x0) pread64$auto(r3, &(0x7f0000000300)='K\x1da\"\x1eH\xcc4\xeb\x01\n\xe5\x01\xc19\x80\xbd\xd3\xf2\xdfz\xc9gy\xd9\xf4\xbb\xdc\xb5\x7f\xb6\x19q\xe2\xc8d\xd6@\xdb\x9bs\x19\xab\x03>YV\xe7\x93\xce\xf4\xd4k\xa4\x9d\xe9\'?\x16y4lX\xb9\xa6=Yo\x9f%\xb1\'%\x86\x8f\x93\xb7l\x15\x9c\x1b\xaf\x9f\x13\x01\xe9y\xa8\x92Y\x1c>\xd2\xf6\x81\xf8\xd4\x8d\xb6*\xa17j\xd5\xdah\xc7\x13\x16o\x18\xdcPD\x8f\x8e1\xac\x82HH\xee\fd\xf9E\xdeBy\x128\xba\x8f\xf9w\x95\xa0*[\a\x8ed\x02', 0x6d, 0x7) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc8201, 0x0) r4 = socket(0x10, 0x3, 0x6) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002cbd7000fbdbdf251c006cfe1200000000000000000000001400040074756eab6c"], 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x48d0) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x110}, 0x1, 0x0, 0x0, 0x4}, 0x40000) select$auto(0xbe6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x8d, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x803, 0x1001, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x80000000]}, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xc2c02, 0x0) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r6, 0x5453, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000000)={0x3, 0x3fd, 0x6, 0x1, 0x2, 0xa, 0xffffffffffffffff, [], {0x8, 0x1, 0xffffffff, 0x8998d5d, 0x8000100, 0x581, 0x101, 0x1000006, 0x2}, {0x9, 0x1, 0x52, 0x4, 0x3, 0x3b, 0x8, 0x7, 0x1}}) ioctl$auto(0x3, 0x89e0, 0x91) 3.138452833s ago: executing program 0 (id=1119): mknod$auto(0x0, 0x1001, 0x4) open(0x0, 0x161342, 0x13d) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x201, 0x0) ioctl$auto_USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000000100)) 2.821482163s ago: executing program 0 (id=1120): mmap$auto(0x0, 0x4, 0x4000000000e3, 0x40eb1, 0x401, 0x300000000000) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) readv$auto(0x3, &(0x7f0000000600)={0x0, 0xc}, 0x1da) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0x7b2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) io_uring_setup$auto(0x9, 0x0) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) r0 = semctl$auto_GETPID(0x6, 0xdd, 0xb, 0x6) pidfd_open$auto(r0, 0x6) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/rds/tcp/rds_tcp_sndbuf\x00', 0x40601, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x340, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff) msgctl$auto(0x3, 0xb7, &(0x7f0000000180)={{0x4, 0x0, 0xffffffffffffffff, 0x3, 0x418, 0xf, 0x2}, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x8, 0x9, 0x967, 0xc, 0xffffffffffffffff, 0x6, 0x3, 0x11d4, 0x8, @raw=0x5, @inferred=0xffffffffffffffff}) socket(0x2, 0x1, 0x106) fcntl$auto(0x3, 0x4, 0xa553) listen$auto(0x3, 0x81) shutdown$auto(0x200000003, 0x2) getresuid$auto(0xfffffffffffffffc, 0xfffffffffffffffe, 0xfffffffffffffffc) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f00000001c0)) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="200025bd7000fddbdf2538000000180038801400008010002d800400358008004a00cf0d84610000000000000000fe", @ANYRES32=0x0, @ANYBLOB="06004301090000000600f700e20b0000050002000000000030003a016c775a7b0f7d76366b313a9bb950fa8e4e60753f791b88277054b89fff3cc02154edc02e204952689dda3ce6"], 0x74}, 0x1, 0x0, 0x0, 0x840}, 0x800) unshare$auto(0x40000080) 2.473873637s ago: executing program 1 (id=1121): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) read$auto(0xffffffffffffffff, 0x0, 0x39b8) socket(0x1e, 0x1, 0x0) memfd_create$auto(0x0, 0x4) mmap$auto(0x8000000, 0x8, 0x1000000016, 0x13, 0x3, 0x180000000) readv$auto(0x3, 0x0, 0x1) close_range$auto(0x2, 0xa, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r1, 0x4008ae6a, r2) 2.427157002s ago: executing program 4 (id=1122): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0xc, 0x0, 0x100000000) setsockopt$auto(0xffffffffffffffff, 0x2b, 0x43b696d3, 0x0, 0x56b) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyd1\x00', 0x40, 0x0) mmap$auto(0xffffffff, 0x3, 0x5, 0xeb1, 0x405, 0x8000) openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) rseq$auto(&(0x7f0000000300)={0x12, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0x6, &(0x7f0000000180)='\b\x00\x00\x00\xe4\x15\rq\tW\x9d=\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe7\x9b\xdd\x1cp\x19\xa0\x9dHN\xb4\x7f\x7f\xa0\xeaI\xa1\x0f/\xfc\x8e\xf9\xa6x\xa0\xdeo\t\x826Xe(\x0e\xffr\r\x8d\xefh\xdbG\x8b\xde\xfd$\'\a ]\x91YP\x94\xd0\xd0\x02\x10\xb1_z\xa2Ql\x8c\x91\xca4\x118\xcd\xc3\x97\xdaJ:\x1e\xe5f\xcaq\xdf`\x01;\xf9{D2\xc9WV)\xa3JH\xf5\xf9\x16\xac\xa4\x155\x80\x01I\xd9\xa5\xd0\xf1\xbd\xa0\xa4\xa5q\xc6F\x940\x00\xf8\xef\xa4\xfd\xd2z\xf5\x91z<\x9f\xf0\x8f/\x81\x84\xed J&\x8f\xd9\xab-\xf8\xd0\xd3\xcea\x91pM0\xcd\x18\xb4\xe0u\x99\b', 0x7) getsockopt$auto(r2, 0x6, 0x6, &(0x7f0000000000)='\b\x00\x00\x00\xe4\x15\rq\tW\x9d=\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe7\x9b\xdd\x1cp\x19\xa0\x9dHN\xb4\x7f\x7f\xa0\xeaI\xa1\x0f/\xfc\x8e\xf9\xa6x\xa0\xdeo\t\x826Xe(\x0e\xffr\r\x8d\xefh\xdbG\x8b\xde\xfd$\'\a ]\x91YP\x94\xd0\xd0\x02\x10\xb1_z\xa2Ql\x8c\x91\xca4\x118\xcd\xc3\x97\xdaJ:\x1e\xe5f\xcaq\xdf`\x01;\xf9{D2\xc9WV)\xa3JH\xf5\xf9\x16\xac\xa4\x155\x80\x01I\xd9\xa5\xd0\xf1\xbd\xa0\xa4\xa5q\xc6F\x940\x00\xf8\xef\xa4\xfd\xd2z\xf5\x91z<\x9f\xf0\x8f/\x81\x84\xed J&\x8f\xd9\xab-\xf8\xd0\xd3\xcea\x91pM0\xcd\x18\xb4\xe0u\x99\b', &(0x7f00000000c0)=0x800) mmap$auto(0x0, 0x1, 0xfd5, 0x12, r1, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x1e9e02, 0x61) unshare$auto(0x4) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) 2.396257953s ago: executing program 2 (id=1123): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x4) unshare$auto(0x40000080) socket(0xa, 0x1, 0x84) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, 0x0, 0x80040, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40004) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0xa2040, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x5, 0x948b, 0x445f, 0x15f4da0a, 0x1, 0x81, 0x300000000000000, 0x7fffffff, 0x7, 0x0, 0x9, 0x2]}, 0x0) socket(0x23, 0x80805, 0x0) sendto$auto(0xffffffffffffffff, 0x0, 0x402, 0xacf8, 0x0, 0x1b) socket(0xa, 0x801, 0x100) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NCSI_CMD_SET_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001380)={0x14, 0x0, 0x4, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x1) setsockopt$auto(r0, 0x1, 0x12, 0x0, 0xeb66) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event2\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) remap_file_pages$auto(0xbde, 0x20, 0x0, 0x0, 0xb) r1 = openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim6/ports/3/bpf_offloaded_id\x00', 0x10000, 0x0) fcntl$auto(0x0, 0x40a, 0x0) mmap$auto(0x0, 0x4000400008, 0x4, 0x17, r1, 0x7ffc) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8}, @NFSD_A_SERVER_SCOPE={0x5, 0x4, '\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) 2.273614124s ago: executing program 1 (id=1124): prctl$auto_PR_SET_THP_DISABLE(0x29, 0xa213, 0x1, 0x9, 0x10000) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x5, 0x9, 0x9, 0x4d480000000) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x5, 0x28, 0x4, 0x2) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xffffffffffffffff, 0x8, 0x80, 0x0) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x6d1, 0x9, 0x8, 0x7) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xd9, 0x0, 0x4, 0x8) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x8000, 0x0, 0x3, 0x8) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x5, 0x8, 0x8, 0x4) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x0, 0x4, 0xfff, 0x8) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x8, 0x9, 0x7dd1, 0xffff) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x1, 0x9, 0x0, 0x7) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x3, 0xed, 0x4, 0x9) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x3, 0x1, 0x8000000000000001, 0x7) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xffffffffffff8a8d, 0x9, 0x0, 0x1ff) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xfffffffffffffff9, 0xffffffffffffff10, 0xb9f5, 0x8) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x5, 0x0, 0x9, 0xfff) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x44, 0x6, 0xbe, 0x9) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xb10, 0x80fc, 0x81, 0x80000000) prctl$auto_PR_SET_THP_DISABLE(0x29, 0xfffffffffffffffa, 0x8, 0x6, 0x0) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x8, 0xc, 0x10001, 0xfffffffffffffff9) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x64, 0x6, 0x6, 0x8000) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETPAGEFILE(r0, 0x7a9, 0x0) epoll_wait$auto(r0, &(0x7f0000000040)={0x1, 0xe93}, 0x1, 0x8) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x7fff, 0x5, 0x10, 0xb) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x1, 0x100000001, 0x4, 0x80000001) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x8, 0x0, 0x1fcc6cfe, 0x7) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x80, 0x5, 0x7, 0xffffffffffffff7f) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x7f, 0x7fffffff, 0x2, 0x2) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x9, 0x3, 0xffffffffffffffff, 0x1551f075) 2.071847005s ago: executing program 1 (id=1125): io_uring_setup$auto(0x7, &(0x7f00000001c0)={0x5, 0x5, 0xffffffff, 0xfffffffd, 0x53, 0x2, 0xffffffffffffffff, [0x40009574, 0x7, 0x1], {0x9, 0x2, 0x201, 0x4, 0x3d, 0x8000001, 0x5530, 0x400, 0x100}, {0x40003, 0x23, 0x5, 0x6, 0x400, 0x58, 0x5, 0x27, 0x40}}) r1 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0xa0241, 0x0) socket(0x10, 0x2, 0x0) r2 = socket(0x11, 0x3, 0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), r3) sendmsg$auto_HWSIM_CMD_REGISTER(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x14, r4, 0x1, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f00000003c0)='\a', 0x5ea}, 0x5, 0x0, 0x0, 0x1001}, 0x5}, 0x2, 0x100) mmap$auto(0x0, 0x4020009, 0xe1, 0xeb1, r1, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="f8ffffff", @ANYRES16=0x0, @ANYBLOB="00045d5804a500fdff00"/22], 0x1c}, 0x1, 0x0, 0x0, 0x24008054}, 0x854) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) clock_nanosleep$auto(0x2, 0x6, &(0x7f0000000840)={0x0, 0xc025}, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r6 = socket(0x18, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x40047459, 0x0) ioctl$auto(0x3, 0x541b, 0x10000000000402) mmap$auto(0xc, 0x2000a, 0x5, 0x14, 0xffffffffffffffff, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/read_ahead_kb\x00', 0x181482, 0x0) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x7f, 0x40000000200004, 0x4000000000e3, 0x19, 0xd, 0x1c) preadv2$auto(r0, &(0x7f0000000180)={&(0x7f0000000880)="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", 0xc3d}, 0x1, 0x9, 0x7fffffffffffffff, 0xa) 1.643655206s ago: executing program 4 (id=1126): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) signalfd4$auto(0xffffffff, &(0x7f0000000080)={0x8000}, 0x8, 0x0) 1.496966616s ago: executing program 2 (id=1127): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f0000000200)="352c8efa610c0bcf83a4ebdb040000000000000021cb244b19a48bb5e0d12df9735b745b9554dfb0ad77a37be296ebe6f598901d632a206d9bb056d8c8", 0x3d) ioctl$auto(0xffffffffffffffff, 0x8912, 0x38) mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x2, 0x0) write$auto_sg_fops_sg(r1, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e) symlink$auto(&(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file0\x00') creat$auto(&(0x7f0000000680)='./file0\x00', 0x3) mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x1902, 0x0) ioctl$auto_BLKPG2(r2, 0x1269, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0) ioctl$auto_LOOP_CTL_REMOVE(r4, 0x4c81, 0x0) close_range$auto(0x0, r3, 0x4000000000002) socket(0x2, 0x801, 0x106) socketpair$auto(0x1a, 0x9, 0x8000000000000000, 0x0) r5 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0ro\x00', 0x0, 0x0) ioctl$auto_BLKPG2(r5, 0x1269, 0x0) (fail_nth: 8) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop1\x00', 0x282700, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mtd0\x00', 0x2080, 0x0) ioctl$auto_BLKIOMIN(r6, 0x1278, 0x1000000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r7, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) 1.423484366s ago: executing program 4 (id=1128): mknod$auto(0x0, 0x1001, 0x4) open(0x0, 0x161342, 0x13d) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x201, 0x0) ioctl$auto_USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000000100)) 1.213067841s ago: executing program 4 (id=1129): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x4000000, [0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x4]}, 0x1fa, 0xd) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000000000)={0x8, 0x3, 0x4, 0xba44, 0x2, 0xc, "e000265b7222b141ecb9fb5793abe8fdffdbcd2c02d3c293fa98882f5336d79fc5b8202cb37f6b6d22c42432352deb58e78afdbae76900"}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/tunl0/napi_defer_hard_irqs\x00', 0x28b42, 0x0) sendfile$auto(r1, r1, 0x0, 0x1ff) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x100) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/card0/pcm0c/sub0/status\x00', 0x100, 0x0) pread64$auto(r3, 0x0, 0x40000000f42c, 0x80002) r4 = socket(0xa, 0x3, 0x3a) mprotect$auto(0x3, 0xffffffffa84bce18, 0x7fff) add_key$auto(&(0x7f0000000740)='#)-\\&[}\x00', 0x0, 0x0, 0x5, 0x9) io_uring_setup$auto(0x4, &(0x7f00000000c0)={0x9, 0x7, 0xffff, 0x62, 0x3, 0x6, r4, [0x8, 0x8, 0x8], {0x3, 0xc, 0x4, 0xb, 0x8, 0xd9, 0x3, 0x8, 0x5}, {0x7, 0x0, 0x0, 0x17ca6a62, 0x5, 0x9, 0x2, 0x9, 0x120}}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x2000000008000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r5, 0x0, 0xe8) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004680), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(r7, &(0x7f00000049c0)={0x0, 0x0, &(0x7f0000004980)={&(0x7f0000000040)={0x20, r8, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0xc, 0x4, 0x0, 0x1, [@nested={0x8, 0x8, 0x0, 0x1, [@generic="8592a023"]}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40040801}, 0x44000) socket$nl_generic(0x10, 0x3, 0x10) r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r9, &(0x7f0000000240)="1c520b214b197e", 0x7) write$auto(r9, 0x0, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x1438bf, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) 542.655466ms ago: executing program 0 (id=1130): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/blkio.throttle.write_iops_device\x00', 0x121002, 0x0) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2b, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop10/mq/0/nr_tags\x00', 0x20000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000001900), 0xffffffffffffffff) sendmsg$auto_TASKSTATS_CMD_GET(r4, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001a40)=ANY=[@ANYBLOB='\t\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd7000fddbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x4000000) sendmsg$auto_CGROUPSTATS_CMD_GET(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000229bd7000fcdbdf250400000008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="08000100d7f86a8c5dff467de2df953a75bbe39b40763c4732121676e95b9b28a0f8d8fbe3c1fdbc955761da14dcd5c070e2c3fc746bfced464555f45aba6084b9b5dcff8581325e066eb971940b29487e8ed1cd1b809a7a6ae1cceb8f5b09fcd219222a6e874517d0cd445054ccc69f5521013c8a2a5e3efd87063666da8b9fe143a5c23c034fe7d69b7e1114bf8b21c44b915a8dc4d633c133c2cc622505aa0bae59682514a40c014823cac6f03f47ccb78597cebd98ebbc5cba853296362f3197271a97baa13cbfa4f22ff02fa9bf1dbb267695e35860e675ff", @ANYRES32, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0xc000) ioctl$auto_XFS_IOC_ALLOCSP64(r0, 0x40305824, &(0x7f00000000c0)={0x8a, 0x90a, 0x7, 0xf, 0x10, 0x0}) sendmsg$auto_TASKSTATS_CMD_GET(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000228bd7000fcdbdf250100000008000200", @ANYRES32=0x0, @ANYBLOB="0b0003006e732f6d6e740000320004002e2f6367726f75702e6e65742f626c6b696f2e7468726f74746c652e77726974655f696f70735f64657669636500000008000200", @ANYRES32=r6, @ANYBLOB="c8b50fb2b852da503cbfde3b77d44f9c70a10c1001ed1a6402ec7430112485a51db30abc693a73d9e18193b11f2f4603514b8139a95c99dea76300884566e8066b41e985e750f0f870fe9be5f800b5a2bfce11ec99288374ba293132f7599305b6cc27770e44d3ec15f72fe7087a31ea336b4eb8b1e18a34d140fcb2c3ecf1a2b1e39a9b33c960c6e6f4b3539d32c669759d369a4d0102dbe9b48c77fc70b1b71cbf87c30e1158c49229ecfe3748e250a094d85397c039eb27573467194f"], 0x64}, 0x1, 0x0, 0x0, 0x8005}, 0x4001) socket(0x2, 0x5, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/mnt\x00') socketpair$auto(0x1, 0x3, 0x0, 0x0) r7 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r7, 0x0, 0xc3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r8 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) landlock_add_rule$auto_LANDLOCK_RULE_NET_PORT(r8, 0x2, &(0x7f0000000040), 0x6f7e) r9 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x2a0242, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r10, 0x5408, 0x0) io_uring_setup$auto(0x1, &(0x7f00000001c0)={0x8, 0xfff, 0x4a43dd, 0x6, 0x8, 0xac20, r10, [0x4, 0x4, 0x4], {0x401, 0x1, 0x6, 0x80000001, 0x400, 0xfffff000, 0x7, 0xffffff96}, {0x1, 0x7, 0x1, 0x5, 0xc5a, 0x5, 0x8, 0x200, 0x10001}}) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r9, 0x40045010, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r9, 0x40045010, 0x0) 396.702051ms ago: executing program 1 (id=1131): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) setxattr$auto(0x0, 0x0, 0x0, 0x800000, 0x0) madvise$auto(0x0, 0x2000040080000004, 0xe) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x109c01, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000140)=@task_fd_query={0x7, 0x4, 0x200, 0xf, 0x8, 0x3, 0x1, 0x0, 0x2}, 0x6f4) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x11, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r0) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000780)=ANY=[@ANYBLOB="07000000d8c0236df562cac2e4c48087db408c28057796f5eb489785201c3c652ceedf6aec6434da6111b0e2f4a0edb88a4367ce28f30d", @ANYRES16=r3, @ANYBLOB="14042bbd7000fedbdf250200000008000200000000800800010006000000070004003a7d0000"], 0x2c}, 0x1, 0x0, 0x0, 0x20008045}, 0x40000) bind$auto(r2, &(0x7f0000000200)=@generic={0x11, "bc340f00"}, 0x80) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r4 = socket(0x11, 0x80003, 0x304) setsockopt$auto(r4, 0x107, 0x5, 0x0, 0x24) bind$auto(0x3, &(0x7f0000000040)=@in={0x11, 0xbc34, @empty}, 0x6a) r5 = bpf$auto(0x0, &(0x7f0000000000)=@link_update={0xa, @new_map_fd=0x2, 0x7, @old_prog_fd=0x13b}, 0xa3) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000011c0), r7) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000012c0)={'veth0_macvtap\x00', 0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000800)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000004) select$auto(0x5, &(0x7f00000005c0)={[0x800, 0x1000000000000000, 0x9, 0x9, 0xfffffffffffffffa, 0x200, 0xa7, 0x7, 0x4, 0xf731, 0x6, 0x819, 0x3, 0x3, 0x6, 0x4]}, &(0x7f0000000640)={[0xd2f, 0xafe, 0x1ff, 0xf2e, 0xf, 0x93, 0x3, 0xfffffffffffffffc, 0x3, 0xcdb, 0x8, 0x2, 0x9, 0x10001, 0xff, 0x6]}, &(0x7f00000006c0)={[0x3, 0x9b06, 0xffffffffffffd73d, 0x8, 0x3d80, 0x7, 0x200, 0xc, 0x100, 0x4, 0x2, 0x1, 0x1ff, 0x6, 0x6, 0xa0]}, &(0x7f0000000740)={0xe5, 0xfffffffffffffffd}) syz_genetlink_get_family_id$auto_handshake(&(0x7f00000002c0), r5) sendto$auto(r6, &(0x7f0000000500)="7930479da7a9ead98522bef3a42f50692a03c4701c51e35734ae43f98c60e6711c88003291baf8225a89c7f5d72f4c6c9fe8b0977110cc563578c6b708a74a3252720c5c11dd9045f2791797b3ba4d7c360377e3c0dde7f198aef9949443647ef2b022800badc2c96d82249ba76963a7", 0x5, 0xfffffffb, &(0x7f0000000580)=@in={0x2, 0x4e20, @multicast2}, 0x3) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x3, 0x0, 0x1f, 0xd}}, 0x1, 0x20000000) recvmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x7, &(0x7f0000000040)={0x0, 0x7ff}, 0x6, 0x0, 0x4, 0x6}, 0x1) r10 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x7, 0x0, 0x0, 0x9}, 0x3}, 0xfff, 0x0) 72.760777ms ago: executing program 0 (id=1132): unshare$auto(0x40000080) semctl$auto_SETVAL(0x6, 0xd74, 0x10, 0x3) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rt_cache\x00', 0x18b202, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000180)={0x0, 0x25c, 0x9, 0x0, 0x7, "d0b659edd155ffb6da143aab"}) pread64$auto(r1, 0x0, 0x100000001, 0x100) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_KVM_GET_API_VERSION(r2, 0xae00, 0x0) ioctl$auto_SG_GET_ACCESS_COUNT(r2, 0x2289, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000008000) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) io_uring_setup$auto(0x1406, 0x0) r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f00000000c0)="853b33beb09cc9805808ebfcf09c11e1f16d8766f7d285df51d3f93f524861b48f927d619dcf98b1d448352bb6b73362a150591191f29db12efc6bd5fb3a4a65bd1223fc536a894f0a72a1a5b23fc6aeadcb1e1611d62ac3f5ddbceb50b715871b98b255605106af1386095da3ee314be8d9f0f325490823693c4c491bcf64168ea62286f6f6b7af85") sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=ANY=[@ANYBLOB='\t\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0400"], 0x464}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t+\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39) read$auto(0xffffffffffffffff, 0x0, 0x20) r4 = socket$nl_generic(0x10, 0x3, 0x10) setresuid$auto(0x60, 0x1000, 0x8000) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'syzkaller1\x00'}) r5 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) lseek$auto(r5, 0x1, 0x1) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020007, 0x2, 0xeb5, r2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), 0xffffffffffffffff) syslog$auto(0xffffbf96, &(0x7f0000000040)='\xaa#\x00', 0x583) ioctl$auto(0x3, 0x89e0, 0x91) 0s ago: executing program 4 (id=1133): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0xa0241, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) kernel console output (not intermixed with test programs): x10 [ 269.319036][ T8994] ? __lock_acquire+0xb8a/0x1c90 [ 269.319052][ T8994] do_filp_open+0x20b/0x470 [ 269.319072][ T8994] ? __pfx_do_filp_open+0x10/0x10 [ 269.319104][ T8994] ? alloc_fd+0x471/0x7d0 [ 269.319128][ T8994] do_sys_openat2+0x11b/0x1d0 [ 269.319143][ T8994] ? __pfx_do_sys_openat2+0x10/0x10 [ 269.319160][ T8994] ? __fget_files+0x20e/0x3c0 [ 269.319181][ T8994] __x64_sys_openat+0x174/0x210 [ 269.319196][ T8994] ? __pfx___x64_sys_openat+0x10/0x10 [ 269.319210][ T8994] ? ksys_write+0x1ac/0x250 [ 269.319235][ T8994] do_syscall_64+0xcd/0xfa0 [ 269.319256][ T8994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.319270][ T8994] RIP: 0033:0x7f3f4198eec9 [ 269.319282][ T8994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.319295][ T8994] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 269.319309][ T8994] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 269.319318][ T8994] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 269.319327][ T8994] RBP: 00007f3f42888090 R08: 0000000000000000 R09: 0000000000000000 [ 269.319335][ T8994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 269.319343][ T8994] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 269.319362][ T8994] [ 270.086520][ T9001] netlink: 268 bytes leftover after parsing attributes in process `syz.2.620'. [ 270.229949][ T9002] random: crng reseeded on system resumption [ 270.950449][ T9015] netlink: 'syz.4.624': attribute type 8 has an invalid length. [ 271.082410][ T9015] random: crng reseeded on system resumption [ 273.107754][ T9047] netlink: 268 bytes leftover after parsing attributes in process `syz.0.631'. [ 273.243986][ T9047] vhci_hcd: invalid port number 16 [ 273.276205][ T9047] vhci_hcd: invalid port number 16 [ 273.298518][ T9051] random: crng reseeded on system resumption [ 273.767085][ T9064] netlink: 8 bytes leftover after parsing attributes in process `syz.0.636'. [ 273.834743][ T9060] netlink: 28 bytes leftover after parsing attributes in process `syz.1.635'. [ 274.302640][ T9076] 0x000200000001-0xa29656a63616329 : "" [ 274.345628][ T9076] mtd: partition "" is out of reach -- disabled [ 274.415092][ T9079] FAULT_INJECTION: forcing a failure. [ 274.415092][ T9079] name failslab, interval 1, probability 0, space 0, times 0 [ 274.552907][ T9076] ftl_cs: FTL header not found. [ 274.796655][ T9079] CPU: 0 UID: 0 PID: 9079 Comm: syz.1.638 Not tainted syzkaller #0 PREEMPT(full) [ 274.796676][ T9079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 274.796685][ T9079] Call Trace: [ 274.796690][ T9079] [ 274.796695][ T9079] dump_stack_lvl+0x16c/0x1f0 [ 274.796720][ T9079] should_fail_ex+0x512/0x640 [ 274.796741][ T9079] ? __kmalloc_cache_noprof+0x5f/0x780 [ 274.796760][ T9079] should_failslab+0xc2/0x120 [ 274.796774][ T9079] __kmalloc_cache_noprof+0x72/0x780 [ 274.796790][ T9079] ? __pfx_get_mtd_device+0x10/0x10 [ 274.796809][ T9079] ? mtdchar_open+0x1e5/0x320 [ 274.796827][ T9079] ? mtdchar_open+0x1e5/0x320 [ 274.796841][ T9079] mtdchar_open+0x1e5/0x320 [ 274.796857][ T9079] ? __pfx_mtdchar_open+0x10/0x10 [ 274.796871][ T9079] chrdev_open+0x234/0x6a0 [ 274.796891][ T9079] ? __pfx_apparmor_file_open+0x10/0x10 [ 274.796906][ T9079] ? __pfx_chrdev_open+0x10/0x10 [ 274.796927][ T9079] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 274.796949][ T9079] do_dentry_open+0x982/0x1530 [ 274.796970][ T9079] ? __pfx_chrdev_open+0x10/0x10 [ 274.796993][ T9079] vfs_open+0x82/0x3f0 [ 274.797010][ T9079] path_openat+0x1de4/0x2cb0 [ 274.797035][ T9079] ? __pfx_path_openat+0x10/0x10 [ 274.797054][ T9079] ? __lock_acquire+0xb8a/0x1c90 [ 274.797071][ T9079] do_filp_open+0x20b/0x470 [ 274.797098][ T9079] ? __pfx_do_filp_open+0x10/0x10 [ 274.797129][ T9079] ? alloc_fd+0x471/0x7d0 [ 274.797152][ T9079] do_sys_openat2+0x11b/0x1d0 [ 274.797166][ T9079] ? __pfx_do_sys_openat2+0x10/0x10 [ 274.797183][ T9079] ? __fget_files+0x20e/0x3c0 [ 274.797203][ T9079] __x64_sys_openat+0x174/0x210 [ 274.797218][ T9079] ? __pfx___x64_sys_openat+0x10/0x10 [ 274.797232][ T9079] ? ksys_write+0x1ac/0x250 [ 274.797257][ T9079] do_syscall_64+0xcd/0xfa0 [ 274.797279][ T9079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.797293][ T9079] RIP: 0033:0x7f023a38eec9 [ 274.797304][ T9079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.797317][ T9079] RSP: 002b:00007f02385d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 274.797330][ T9079] RAX: ffffffffffffffda RBX: 00007f023a5e6090 RCX: 00007f023a38eec9 [ 274.797339][ T9079] RDX: 0000000000002080 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 274.797348][ T9079] RBP: 00007f02385d5090 R08: 0000000000000000 R09: 0000000000000000 [ 274.797356][ T9079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 274.797364][ T9079] R13: 00007f023a5e6128 R14: 00007f023a5e6090 R15: 00007ffc9928e3c8 [ 274.797382][ T9079] [ 274.996061][ T5835] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7 [ 275.097380][ T9096] netlink: 268 bytes leftover after parsing attributes in process `syz.0.643'. [ 275.184338][ T9096] vhci_hcd: invalid port number 16 [ 275.184354][ T9096] vhci_hcd: invalid port number 16 [ 275.184761][ T9096] random: crng reseeded on system resumption [ 275.197399][ T9096] FAULT_INJECTION: forcing a failure. [ 275.197399][ T9096] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 275.197428][ T9096] CPU: 0 UID: 0 PID: 9096 Comm: syz.0.643 Not tainted syzkaller #0 PREEMPT(full) [ 275.197445][ T9096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 275.197455][ T9096] Call Trace: [ 275.197460][ T9096] [ 275.197466][ T9096] dump_stack_lvl+0x16c/0x1f0 [ 275.197490][ T9096] should_fail_ex+0x512/0x640 [ 275.197516][ T9096] should_fail_alloc_page+0xe7/0x130 [ 275.197532][ T9096] prepare_alloc_pages+0x3c2/0x610 [ 275.197545][ T9096] ? rcu_is_watching+0x12/0xc0 [ 275.197567][ T9096] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 275.197593][ T9096] ? stack_trace_save+0x8e/0xc0 [ 275.197613][ T9096] ? __pfx_stack_trace_save+0x10/0x10 [ 275.197635][ T9096] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 275.197656][ T9096] ? kasan_save_stack+0x42/0x60 [ 275.197675][ T9096] ? kasan_save_stack+0x33/0x60 [ 275.197696][ T9096] ? do_dentry_open+0x982/0x1530 [ 275.197715][ T9096] ? vfs_open+0x82/0x3f0 [ 275.197727][ T9096] ? path_openat+0x1de4/0x2cb0 [ 275.197745][ T9096] ? do_filp_open+0x20b/0x470 [ 275.197762][ T9096] ? do_sys_openat2+0x11b/0x1d0 [ 275.197775][ T9096] ? __x64_sys_openat+0x174/0x210 [ 275.197789][ T9096] ? do_syscall_64+0xcd/0xfa0 [ 275.197808][ T9096] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.197823][ T9096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 275.197840][ T9096] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 275.197859][ T9096] ? policy_nodemask+0xea/0x4e0 [ 275.197874][ T9096] alloc_pages_mpol+0x1fb/0x550 [ 275.197889][ T9096] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 275.197908][ T9096] alloc_pages_noprof+0x131/0x390 [ 275.197922][ T9096] get_zeroed_page_noprof+0x18/0xb0 [ 275.197962][ T9096] get_image_page+0x18/0x190 [ 275.197982][ T9096] alloc_rtree_node+0x3c/0xb0 [ 275.198001][ T9096] memory_bm_create+0x519/0x810 [ 275.198027][ T9096] create_basic_memory_bitmaps+0xbd/0x320 [ 275.198056][ T9096] snapshot_open+0x235/0x2b0 [ 275.198068][ T9096] ? __pfx_snapshot_open+0x10/0x10 [ 275.198082][ T9096] misc_open+0x26d/0x450 [ 275.198104][ T9096] ? __pfx_misc_open+0x10/0x10 [ 275.198124][ T9096] chrdev_open+0x234/0x6a0 [ 275.198144][ T9096] ? __pfx_apparmor_file_open+0x10/0x10 [ 275.198160][ T9096] ? __pfx_chrdev_open+0x10/0x10 [ 275.198182][ T9096] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 275.198205][ T9096] do_dentry_open+0x982/0x1530 [ 275.198225][ T9096] ? __pfx_chrdev_open+0x10/0x10 [ 275.198249][ T9096] vfs_open+0x82/0x3f0 [ 275.198266][ T9096] path_openat+0x1de4/0x2cb0 [ 275.198291][ T9096] ? __pfx_path_openat+0x10/0x10 [ 275.198311][ T9096] ? __lock_acquire+0xb8a/0x1c90 [ 275.198328][ T9096] do_filp_open+0x20b/0x470 [ 275.198347][ T9096] ? __pfx_do_filp_open+0x10/0x10 [ 275.198380][ T9096] ? alloc_fd+0x471/0x7d0 [ 275.198403][ T9096] do_sys_openat2+0x11b/0x1d0 [ 275.198418][ T9096] ? __pfx_do_sys_openat2+0x10/0x10 [ 275.198440][ T9096] __x64_sys_openat+0x174/0x210 [ 275.198456][ T9096] ? __pfx___x64_sys_openat+0x10/0x10 [ 275.198479][ T9096] do_syscall_64+0xcd/0xfa0 [ 275.198500][ T9096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.198514][ T9096] RIP: 0033:0x7f7aa0d8eec9 [ 275.198527][ T9096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.198540][ T9096] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 275.198553][ T9096] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 275.198563][ T9096] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 275.198573][ T9096] RBP: 00007f7aa0e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 275.198582][ T9096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.198591][ T9096] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 275.198611][ T9096] [ 275.642177][ T9099] netlink: 28 bytes leftover after parsing attributes in process `syz.2.644'. [ 276.456350][ T9103] random: crng reseeded on system resumption [ 277.829656][ T9122] kAFS: unparsable volume name [ 277.926282][ T9124] FAULT_INJECTION: forcing a failure. [ 277.926282][ T9124] name failslab, interval 1, probability 0, space 0, times 0 [ 277.926313][ T9124] CPU: 0 UID: 0 PID: 9124 Comm: syz.2.649 Not tainted syzkaller #0 PREEMPT(full) [ 277.926329][ T9124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 277.926338][ T9124] Call Trace: [ 277.926343][ T9124] [ 277.926348][ T9124] dump_stack_lvl+0x16c/0x1f0 [ 277.926373][ T9124] should_fail_ex+0x512/0x640 [ 277.926394][ T9124] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 277.926410][ T9124] should_failslab+0xc2/0x120 [ 277.926424][ T9124] kmem_cache_alloc_noprof+0x75/0x6e0 [ 277.926443][ T9124] ? skb_clone+0x190/0x3f0 [ 277.926467][ T9124] ? skb_clone+0x190/0x3f0 [ 277.926485][ T9124] skb_clone+0x190/0x3f0 [ 277.926506][ T9124] netlink_deliver_tap+0xabd/0xd30 [ 277.926531][ T9124] netlink_unicast+0x64c/0x870 [ 277.926554][ T9124] ? __pfx_netlink_unicast+0x10/0x10 [ 277.926582][ T9124] netlink_sendmsg+0x8c8/0xdd0 [ 277.926607][ T9124] ? __pfx_netlink_sendmsg+0x10/0x10 [ 277.926630][ T9124] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 277.926648][ T9124] ____sys_sendmsg+0xa98/0xc70 [ 277.926664][ T9124] ? copy_msghdr_from_user+0x10a/0x160 [ 277.926684][ T9124] ? __pfx_____sys_sendmsg+0x10/0x10 [ 277.926708][ T9124] ___sys_sendmsg+0x134/0x1d0 [ 277.926729][ T9124] ? __pfx____sys_sendmsg+0x10/0x10 [ 277.926747][ T9124] ? __lock_acquire+0x622/0x1c90 [ 277.926785][ T9124] __sys_sendmsg+0x16d/0x220 [ 277.926804][ T9124] ? __pfx___sys_sendmsg+0x10/0x10 [ 277.926845][ T9124] do_syscall_64+0xcd/0xfa0 [ 277.926866][ T9124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.926881][ T9124] RIP: 0033:0x7f3f4198eec9 [ 277.926892][ T9124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 277.926906][ T9124] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 277.926919][ T9124] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 277.926928][ T9124] RDX: 0000000000000880 RSI: 0000200000000f80 RDI: 0000000000000003 [ 277.926937][ T9124] RBP: 00007f3f42888090 R08: 0000000000000000 R09: 0000000000000000 [ 277.926945][ T9124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 277.926953][ T9124] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 277.926972][ T9124] [ 278.294257][ T9131] netlink: 504 bytes leftover after parsing attributes in process `syz.1.651'. [ 278.591898][ T9136] netlink: 28 bytes leftover after parsing attributes in process `syz.4.653'. [ 278.812872][ T9136] bridge0: port 2(bridge_slave_1) entered disabled state [ 278.927101][ T9136] bridge_slave_1 (unregistering): left allmulticast mode [ 278.927123][ T9136] bridge_slave_1 (unregistering): left promiscuous mode [ 278.928031][ T9136] bridge0: port 2(bridge_slave_1) entered disabled state [ 282.209354][ T9189] netlink: 268 bytes leftover after parsing attributes in process `syz.4.663'. [ 282.355459][ T9193] vhci_hcd: invalid port number 16 [ 282.409951][ T9193] vhci_hcd: invalid port number 16 [ 282.472537][ T9196] random: crng reseeded on system resumption [ 283.738936][ T9206] random: crng reseeded on system resumption [ 284.776293][ T9231] netlink: 28 bytes leftover after parsing attributes in process `syz.4.668'. [ 285.455605][ T9210] Process accounting paused [ 286.243904][ T9250] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 287.348935][ T9268] random: crng reseeded on system resumption [ 287.721654][ T9249] kexec: Could not allocate control_code_buffer [ 288.779398][ T9285] usb usb23: usbfs: interface 0 claimed by hub while 'syz.1.677' sets config #0 [ 288.805786][ T9279] random: crng reseeded on system resumption [ 289.243937][ T9292] netlink: 268 bytes leftover after parsing attributes in process `syz.2.678'. [ 289.467060][ T9298] random: crng reseeded on system resumption [ 290.809167][ T50] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 291.451845][ T50] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 291.538157][ T9330] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 291.538157][ T9330] program syz.0.685 not setting count and/or reply_len properly [ 291.863130][ T50] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 292.226545][ T9330] netlink: 338 bytes leftover after parsing attributes in process `syz.0.685'. [ 292.442140][ T9335] netlink: 338 bytes leftover after parsing attributes in process `syz.0.685'. [ 292.642532][ T9340] random: crng reseeded on system resumption [ 293.152181][ T50] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 294.067993][ T50] bridge_slave_1: left allmulticast mode [ 294.073825][ T50] bridge_slave_1: left promiscuous mode [ 294.148236][ T50] bridge0: port 2(bridge_slave_1) entered disabled state [ 294.341415][ T50] bridge_slave_0: left allmulticast mode [ 294.386667][ T50] bridge_slave_0: left promiscuous mode [ 294.392405][ T50] bridge0: port 1(bridge_slave_0) entered disabled state [ 295.896127][ T9392] Falling back ldisc for ttynull. [ 297.061168][ T9417] random: crng reseeded on system resumption [ 297.564857][ T9422] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.701' sets config #0 [ 297.585028][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 297.686765][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 297.720683][ T50] bond0 (unregistering): Released all slaves [ 297.897695][ T9426] FAULT_INJECTION: forcing a failure. [ 297.897695][ T9426] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 298.036537][ T9426] CPU: 0 UID: 0 PID: 9426 Comm: syz.0.702 Not tainted syzkaller #0 PREEMPT(full) [ 298.036559][ T9426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 298.036568][ T9426] Call Trace: [ 298.036573][ T9426] [ 298.036578][ T9426] dump_stack_lvl+0x16c/0x1f0 [ 298.036603][ T9426] should_fail_ex+0x512/0x640 [ 298.036628][ T9426] strncpy_from_user+0x3b/0x2e0 [ 298.036649][ T9426] getname_flags.part.0+0x8f/0x550 [ 298.036668][ T9426] getname_flags+0x93/0xf0 [ 298.036685][ T9426] acct_on+0x82/0xa00 [ 298.036703][ T9426] ? __pfx_acct_on+0x10/0x10 [ 298.036719][ T9426] ? bpf_lsm_capable+0x9/0x10 [ 298.036736][ T9426] __x64_sys_acct+0x81/0x1e0 [ 298.036752][ T9426] ? lockdep_hardirqs_on+0x7c/0x110 [ 298.036771][ T9426] do_syscall_64+0xcd/0xfa0 [ 298.036792][ T9426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.036806][ T9426] RIP: 0033:0x7f7aa0d8eec9 [ 298.036817][ T9426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 298.036830][ T9426] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 298.036844][ T9426] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 298.036853][ T9426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040 [ 298.036861][ T9426] RBP: 00007f7aa1c11090 R08: 0000000000000000 R09: 0000000000000000 [ 298.036870][ T9426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 298.036877][ T9426] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 298.036896][ T9426] [ 298.207033][ C0] vkms_vblank_simulate: vblank timer overrun [ 298.992668][ T9452] netlink: 4 bytes leftover after parsing attributes in process `syz.0.710'. [ 299.068827][ T9455] netlink: 13 bytes leftover after parsing attributes in process `syz.0.710'. [ 299.181718][ T9455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.710'. [ 299.867078][ T9445] [U] [ 300.640357][ T50] hsr_slave_0: left promiscuous mode [ 300.677922][ T50] hsr_slave_1: left promiscuous mode [ 300.700985][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 300.749134][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 300.807716][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 300.836077][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 300.993564][ T50] veth1_macvtap: left promiscuous mode [ 301.023793][ T50] veth0_macvtap: left promiscuous mode [ 301.818596][ T9490] random: crng reseeded on system resumption [ 302.336769][ T50] team0 (unregistering): Port device team_slave_1 removed [ 302.370027][ T50] team0 (unregistering): Port device team_slave_0 removed [ 303.786463][ T5835] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 304.065481][ T9541] random: crng reseeded on system resumption [ 306.618535][ T9613] random: crng reseeded on system resumption [ 307.129793][ T9620] FAULT_INJECTION: forcing a failure. [ 307.129793][ T9620] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 307.196421][ T9620] CPU: 0 UID: 0 PID: 9620 Comm: syz.2.735 Not tainted syzkaller #0 PREEMPT(full) [ 307.196443][ T9620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 307.196464][ T9620] Call Trace: [ 307.196470][ T9620] [ 307.196475][ T9620] dump_stack_lvl+0x16c/0x1f0 [ 307.196500][ T9620] should_fail_ex+0x512/0x640 [ 307.196525][ T9620] _copy_from_iter+0x463/0x1720 [ 307.196551][ T9620] ? __pfx__copy_from_iter+0x10/0x10 [ 307.196573][ T9620] ? __asan_memset+0x23/0x50 [ 307.196592][ T9620] ? __build_skb_around+0x278/0x3b0 [ 307.196610][ T9620] ? is_vmalloc_addr+0x86/0xa0 [ 307.196630][ T9620] netlink_sendmsg+0x820/0xdd0 [ 307.196662][ T9620] ? __pfx_netlink_sendmsg+0x10/0x10 [ 307.196685][ T9620] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 307.196703][ T9620] ____sys_sendmsg+0xa98/0xc70 [ 307.196720][ T9620] ? __pfx_____sys_sendmsg+0x10/0x10 [ 307.196739][ T9620] ? __pfx__kstrtoull+0x10/0x10 [ 307.196759][ T9620] ___sys_sendmsg+0x134/0x1d0 [ 307.196780][ T9620] ? __pfx____sys_sendmsg+0x10/0x10 [ 307.196809][ T9620] ? find_held_lock+0x2b/0x80 [ 307.196839][ T9620] __sys_sendmmsg+0x200/0x420 [ 307.196861][ T9620] ? __pfx___sys_sendmmsg+0x10/0x10 [ 307.196886][ T9620] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 307.196915][ T9620] ? fput+0x9b/0xd0 [ 307.196929][ T9620] ? ksys_write+0x1ac/0x250 [ 307.196948][ T9620] ? __pfx_ksys_write+0x10/0x10 [ 307.196970][ T9620] __x64_sys_sendmmsg+0x9c/0x100 [ 307.196989][ T9620] ? lockdep_hardirqs_on+0x7c/0x110 [ 307.197009][ T9620] do_syscall_64+0xcd/0xfa0 [ 307.197030][ T9620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.197044][ T9620] RIP: 0033:0x7f3f4198eec9 [ 307.197055][ T9620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.197069][ T9620] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 307.197082][ T9620] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 307.197091][ T9620] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 307.197100][ T9620] RBP: 00007f3f42888090 R08: 0000000000000000 R09: 0000000000000000 [ 307.197108][ T9620] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 307.197116][ T9620] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 307.197134][ T9620] [ 307.440754][ T9628] FAULT_INJECTION: forcing a failure. [ 307.440754][ T9628] name failslab, interval 1, probability 0, space 0, times 0 [ 307.453469][ T9628] CPU: 0 UID: 0 PID: 9628 Comm: syz.2.735 Not tainted syzkaller #0 PREEMPT(full) [ 307.453489][ T9628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 307.453497][ T9628] Call Trace: [ 307.453502][ T9628] [ 307.453507][ T9628] dump_stack_lvl+0x16c/0x1f0 [ 307.453532][ T9628] should_fail_ex+0x512/0x640 [ 307.453553][ T9628] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 307.453577][ T9628] should_failslab+0xc2/0x120 [ 307.453591][ T9628] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 307.453612][ T9628] ? kstrdup_const+0x63/0x80 [ 307.453635][ T9628] ? kstrdup+0x53/0x100 [ 307.453651][ T9628] kstrdup+0x53/0x100 [ 307.453670][ T9628] kstrdup_const+0x63/0x80 [ 307.453698][ T9628] __kernfs_new_node+0x9b/0x8e0 [ 307.453723][ T9628] ? __pfx___kernfs_new_node+0x10/0x10 [ 307.453748][ T9628] ? find_held_lock+0x2b/0x80 [ 307.453768][ T9628] ? kernfs_root+0xee/0x2a0 [ 307.453784][ T9628] kernfs_new_node+0x13c/0x1e0 [ 307.453802][ T9628] __kernfs_create_file+0x53/0x350 [ 307.453822][ T9628] cgroup_addrm_files+0x546/0xc20 [ 307.453847][ T9628] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 307.453871][ T9628] ? css_next_child+0xcf/0x2d0 [ 307.453886][ T9628] ? css_next_descendant_pre+0x58/0x1a0 [ 307.453903][ T9628] css_populate_dir+0x343/0x580 [ 307.453926][ T9628] cgroup_mkdir+0x5c4/0x12e0 [ 307.453946][ T9628] ? __pfx_cgroup_mkdir+0x10/0x10 [ 307.453964][ T9628] kernfs_iop_mkdir+0x111/0x190 [ 307.453977][ T9628] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 307.453996][ T9628] vfs_mkdir+0x593/0x8c0 [ 307.454015][ T9628] do_mkdirat+0x304/0x3e0 [ 307.454035][ T9628] ? __pfx_do_mkdirat+0x10/0x10 [ 307.454056][ T9628] ? getname_flags.part.0+0x1c5/0x550 [ 307.454073][ T9628] __x64_sys_mkdir+0xef/0x140 [ 307.454092][ T9628] do_syscall_64+0xcd/0xfa0 [ 307.454114][ T9628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.454128][ T9628] RIP: 0033:0x7f3f4198eec9 [ 307.454141][ T9628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.454154][ T9628] RSP: 002b:00007f3f42867038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 307.454167][ T9628] RAX: ffffffffffffffda RBX: 00007f3f41be6090 RCX: 00007f3f4198eec9 [ 307.454176][ T9628] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 307.454184][ T9628] RBP: 00007f3f41a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 307.454193][ T9628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.454201][ T9628] R13: 00007f3f41be6128 R14: 00007f3f41be6090 R15: 00007ffeec6fafe8 [ 307.454220][ T9628] [ 307.454226][ T9628] cgroup: cgroup_addrm_files: failed to add tasks, err=-12 [ 307.718013][ T9626] input: f¬ as /devices/virtual/input/input16 [ 307.825759][ T5147] Bluetooth: hci3: unexpected event 0x36 length: 123 > 7 [ 309.030436][ T5147] Bluetooth: hci4: command 0x0406 tx timeout [ 309.741083][ T9668] ptrace attach of "./syz-executor exec"[5838] was attempted by ""[9668] [ 310.559746][ T9682] input: f¬ as /devices/virtual/input/input17 [ 310.789610][ T9691] random: crng reseeded on system resumption [ 310.915569][ T9689] ubi31: attaching mtd0 [ 310.962586][ T9689] ubi31 error: validate_ec_hdr: bad VID header offset 64, expected 514 [ 311.038402][ T9689] ubi31 error: validate_ec_hdr: bad EC header [ 311.109465][ T9689] Erase counter header dump: [ 311.135455][ T9689] magic 0x55424923 [ 311.181844][ T9689] version 1 [ 311.207037][ T9689] ec 1 [ 311.216152][ T9689] vid_hdr_offset 64 [ 311.245341][ T9689] data_offset 128 [ 311.270908][ T9689] image_seq 1063563751 [ 311.297469][ T9689] hdr_crc 0xe1026da [ 311.320305][ T9689] erase counter header hexdump: [ 311.346684][ T9689] CPU: 0 UID: 0 PID: 9689 Comm: syz.4.748 Not tainted syzkaller #0 PREEMPT(full) [ 311.346700][ T9689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 311.346709][ T9689] Call Trace: [ 311.346714][ T9689] [ 311.346720][ T9689] dump_stack_lvl+0x16c/0x1f0 [ 311.346745][ T9689] validate_ec_hdr+0x28c/0x330 [ 311.346766][ T9689] ubi_io_read_ec_hdr+0x63b/0x6c0 [ 311.346787][ T9689] ubi_attach+0x601/0x4be0 [ 311.346809][ T9689] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 311.346826][ T9689] ? __pfx_ubi_msg+0x10/0x10 [ 311.346839][ T9689] ? __pfx_ubi_attach+0x10/0x10 [ 311.346854][ T9689] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 311.346868][ T9689] ? __vmalloc_node_noprof+0xad/0xf0 [ 311.346882][ T9689] ? ubi_attach_mtd_dev+0x155b/0x35d0 [ 311.346898][ T9689] ubi_attach_mtd_dev+0x15a7/0x35d0 [ 311.346922][ T9689] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 311.346935][ T9689] ? __pfx_get_mtd_device+0x10/0x10 [ 311.346959][ T9689] ctrl_cdev_ioctl+0x337/0x3d0 [ 311.346974][ T9689] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 311.346993][ T9689] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 311.347009][ T9689] __x64_sys_ioctl+0x18e/0x210 [ 311.347026][ T9689] do_syscall_64+0xcd/0xfa0 [ 311.347047][ T9689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.347061][ T9689] RIP: 0033:0x7efef078eec9 [ 311.347073][ T9689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.347087][ T9689] RSP: 002b:00007efef15d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.347100][ T9689] RAX: ffffffffffffffda RBX: 00007efef09e6090 RCX: 00007efef078eec9 [ 311.347109][ T9689] RDX: 0000200000000080 RSI: 0000000040186f40 RDI: 0000000000000007 [ 311.347117][ T9689] RBP: 00007efef0811f91 R08: 0000000000000000 R09: 0000000000000000 [ 311.347125][ T9689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.347133][ T9689] R13: 00007efef09e6128 R14: 00007efef09e6090 R15: 00007ffee33c19e8 [ 311.347152][ T9689] [ 311.347157][ T9689] ubi31 error: ubi_io_read_ec_hdr: validation failed for PEB 0 [ 311.578469][ T9707] netlink: 342 bytes leftover after parsing attributes in process `syz.0.752'. [ 311.776373][ T9710] FAULT_INJECTION: forcing a failure. [ 311.776373][ T9710] name failslab, interval 1, probability 0, space 0, times 0 [ 311.799922][ T9710] CPU: 0 UID: 0 PID: 9710 Comm: syz.0.752 Not tainted syzkaller #0 PREEMPT(full) [ 311.799944][ T9710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 311.799953][ T9710] Call Trace: [ 311.799958][ T9710] [ 311.799964][ T9710] dump_stack_lvl+0x16c/0x1f0 [ 311.799990][ T9710] should_fail_ex+0x512/0x640 [ 311.800012][ T9710] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 311.800035][ T9710] should_failslab+0xc2/0x120 [ 311.800049][ T9710] kmem_cache_alloc_node_noprof+0x78/0x770 [ 311.800067][ T9710] ? copy_process+0x4b5/0x76a0 [ 311.800093][ T9710] ? copy_process+0x4b5/0x76a0 [ 311.800112][ T9710] copy_process+0x4b5/0x76a0 [ 311.800140][ T9710] ? __pfx_copy_process+0x10/0x10 [ 311.800164][ T9710] ? lockdep_init_map_type+0x5c/0x280 [ 311.800181][ T9710] ? lockdep_init_map_type+0x5c/0x280 [ 311.800196][ T9710] ? __pfx_vhost_run_work_list+0x10/0x10 [ 311.800215][ T9710] ? __pfx_vhost_worker_killed+0x10/0x10 [ 311.800232][ T9710] vhost_task_create+0x1d2/0x370 [ 311.800248][ T9710] ? __pfx_vhost_task_create+0x10/0x10 [ 311.800263][ T9710] ? vsnprintf+0x318/0x1160 [ 311.800285][ T9710] ? __pfx_vhost_task_fn+0x10/0x10 [ 311.800305][ T9710] ? snprintf+0xc7/0x100 [ 311.800325][ T9710] vhost_task_worker_create+0x8d/0x200 [ 311.800345][ T9710] ? __pfx_vhost_task_worker_create+0x10/0x10 [ 311.800364][ T9710] ? lockdep_init_map_type+0x5c/0x280 [ 311.800380][ T9710] ? lockdep_init_map_type+0x5c/0x280 [ 311.800406][ T9710] vhost_worker_create+0x243/0x310 [ 311.800425][ T9710] ? __pfx_vhost_worker_create+0x10/0x10 [ 311.800446][ T9710] ? vhost_dev_set_owner+0x287/0xa50 [ 311.800463][ T9710] vhost_dev_set_owner+0x742/0xa50 [ 311.800484][ T9710] vhost_net_ioctl+0xe1e/0x1840 [ 311.800504][ T9710] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 311.800522][ T9710] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 311.800544][ T9710] ? find_held_lock+0x2b/0x80 [ 311.800562][ T9710] ? hook_file_ioctl_common+0x145/0x410 [ 311.800584][ T9710] ? __fget_files+0x20e/0x3c0 [ 311.800604][ T9710] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 311.800625][ T9710] __x64_sys_ioctl+0x18e/0x210 [ 311.800642][ T9710] do_syscall_64+0xcd/0xfa0 [ 311.800663][ T9710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.800677][ T9710] RIP: 0033:0x7f7aa0d8eec9 [ 311.800690][ T9710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.800704][ T9710] RSP: 002b:00007f7aa1bf0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.800718][ T9710] RAX: ffffffffffffffda RBX: 00007f7aa0fe6090 RCX: 00007f7aa0d8eec9 [ 311.800727][ T9710] RDX: 0000000000000005 RSI: 000000000000af01 RDI: 000000000000000b [ 311.800736][ T9710] RBP: 00007f7aa0e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 311.800745][ T9710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.800754][ T9710] R13: 00007f7aa0fe6128 R14: 00007f7aa0fe6090 R15: 00007fff3aee3ce8 [ 311.800774][ T9710] [ 312.404681][ T9706] random: crng reseeded on system resumption [ 312.415346][ T9706] FAULT_INJECTION: forcing a failure. [ 312.415346][ T9706] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 312.429577][ T9706] CPU: 0 UID: 0 PID: 9706 Comm: syz.2.751 Not tainted syzkaller #0 PREEMPT(full) [ 312.429599][ T9706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 312.429608][ T9706] Call Trace: [ 312.429613][ T9706] [ 312.429619][ T9706] dump_stack_lvl+0x16c/0x1f0 [ 312.429644][ T9706] should_fail_ex+0x512/0x640 [ 312.429669][ T9706] should_fail_alloc_page+0xe7/0x130 [ 312.429685][ T9706] prepare_alloc_pages+0x3c2/0x610 [ 312.429707][ T9706] ? rcu_is_watching+0x12/0xc0 [ 312.429730][ T9706] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 312.429756][ T9706] ? stack_trace_save+0x8e/0xc0 [ 312.429778][ T9706] ? __pfx_stack_trace_save+0x10/0x10 [ 312.429801][ T9706] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 312.429823][ T9706] ? kasan_save_stack+0x42/0x60 [ 312.429842][ T9706] ? kasan_save_stack+0x33/0x60 [ 312.429864][ T9706] ? do_dentry_open+0x982/0x1530 [ 312.429882][ T9706] ? vfs_open+0x82/0x3f0 [ 312.429894][ T9706] ? path_openat+0x1de4/0x2cb0 [ 312.429912][ T9706] ? do_filp_open+0x20b/0x470 [ 312.429929][ T9706] ? do_sys_openat2+0x11b/0x1d0 [ 312.429942][ T9706] ? __x64_sys_openat+0x174/0x210 [ 312.429956][ T9706] ? do_syscall_64+0xcd/0xfa0 [ 312.429975][ T9706] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.429990][ T9706] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 312.430008][ T9706] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 312.430027][ T9706] ? policy_nodemask+0xea/0x4e0 [ 312.430042][ T9706] alloc_pages_mpol+0x1fb/0x550 [ 312.430057][ T9706] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 312.430076][ T9706] alloc_pages_noprof+0x131/0x390 [ 312.430090][ T9706] get_zeroed_page_noprof+0x18/0xb0 [ 312.430112][ T9706] get_image_page+0x18/0x190 [ 312.430131][ T9706] alloc_rtree_node+0x3c/0xb0 [ 312.430150][ T9706] memory_bm_create+0x519/0x810 [ 312.430176][ T9706] create_basic_memory_bitmaps+0xbd/0x320 [ 312.430200][ T9706] snapshot_open+0x235/0x2b0 [ 312.430211][ T9706] ? __pfx_snapshot_open+0x10/0x10 [ 312.430225][ T9706] misc_open+0x26d/0x450 [ 312.430247][ T9706] ? __pfx_misc_open+0x10/0x10 [ 312.430267][ T9706] chrdev_open+0x234/0x6a0 [ 312.430287][ T9706] ? __pfx_apparmor_file_open+0x10/0x10 [ 312.430302][ T9706] ? __pfx_chrdev_open+0x10/0x10 [ 312.430324][ T9706] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 312.430347][ T9706] do_dentry_open+0x982/0x1530 [ 312.430367][ T9706] ? __pfx_chrdev_open+0x10/0x10 [ 312.430399][ T9706] vfs_open+0x82/0x3f0 [ 312.430416][ T9706] path_openat+0x1de4/0x2cb0 [ 312.430442][ T9706] ? __pfx_path_openat+0x10/0x10 [ 312.430464][ T9706] ? __lock_acquire+0xb8a/0x1c90 [ 312.430481][ T9706] do_filp_open+0x20b/0x470 [ 312.430500][ T9706] ? __pfx_do_filp_open+0x10/0x10 [ 312.430533][ T9706] ? alloc_fd+0x471/0x7d0 [ 312.430557][ T9706] do_sys_openat2+0x11b/0x1d0 [ 312.430572][ T9706] ? __pfx_do_sys_openat2+0x10/0x10 [ 312.430594][ T9706] __x64_sys_openat+0x174/0x210 [ 312.430610][ T9706] ? __pfx___x64_sys_openat+0x10/0x10 [ 312.430633][ T9706] do_syscall_64+0xcd/0xfa0 [ 312.430655][ T9706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.430668][ T9706] RIP: 0033:0x7f3f4198eec9 [ 312.430681][ T9706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 312.430696][ T9706] RSP: 002b:00007f3f42867038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 312.430710][ T9706] RAX: ffffffffffffffda RBX: 00007f3f41be6090 RCX: 00007f3f4198eec9 [ 312.430720][ T9706] RDX: 00000000001438bf RSI: 0000200000000000 RDI: ffffffffffffff9c [ 312.430730][ T9706] RBP: 00007f3f41a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 312.430739][ T9706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 312.430747][ T9706] R13: 00007f3f41be6128 R14: 00007f3f41be6090 R15: 00007ffeec6fafe8 [ 312.430768][ T9706] [ 312.979480][ T9689] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 313.170193][ T9736] FAULT_INJECTION: forcing a failure. [ 313.170193][ T9736] name failslab, interval 1, probability 0, space 0, times 0 [ 313.182893][ T9736] CPU: 0 UID: 0 PID: 9736 Comm: syz.0.755 Not tainted syzkaller #0 PREEMPT(full) [ 313.182912][ T9736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 313.182920][ T9736] Call Trace: [ 313.182927][ T9736] [ 313.182934][ T9736] dump_stack_lvl+0x16c/0x1f0 [ 313.182959][ T9736] should_fail_ex+0x512/0x640 [ 313.182983][ T9736] should_failslab+0xc2/0x120 [ 313.182998][ T9736] kmem_cache_alloc_node_noprof+0x78/0x770 [ 313.183018][ T9736] ? zswap_store+0x850/0x2830 [ 313.183038][ T9736] ? zswap_store+0x850/0x2830 [ 313.183053][ T9736] zswap_store+0x850/0x2830 [ 313.183078][ T9736] ? __pfx_zswap_store+0x10/0x10 [ 313.183094][ T9736] ? folio_free_swap+0x141/0x4b0 [ 313.183108][ T9736] ? do_raw_spin_unlock+0x172/0x230 [ 313.183126][ T9736] ? _raw_spin_unlock+0x28/0x50 [ 313.183144][ T9736] ? folio_free_swap+0x19d/0x4b0 [ 313.183155][ T9736] ? __pfx_try_to_unmap+0x10/0x10 [ 313.183175][ T9736] swap_writeout+0x3f4/0x1090 [ 313.183195][ T9736] shrink_folio_list+0x3e50/0x4800 [ 313.183218][ T9736] ? __pfx_shrink_folio_list+0x10/0x10 [ 313.183247][ T9736] ? find_held_lock+0x2b/0x80 [ 313.183288][ T9736] reclaim_folio_list+0xda/0x5d0 [ 313.183303][ T9736] ? __pfx_css_rstat_updated+0x10/0x10 [ 313.183325][ T9736] ? __pfx_reclaim_folio_list+0x10/0x10 [ 313.183349][ T9736] ? lru_gen_update_size+0x543/0xe10 [ 313.183369][ T9736] ? lru_gen_del_folio+0x32b/0x540 [ 313.183385][ T9736] reclaim_pages+0x3ec/0x570 [ 313.183404][ T9736] ? __pfx_reclaim_pages+0x10/0x10 [ 313.183418][ T9736] ? find_held_lock+0x2b/0x80 [ 313.183437][ T9736] ? madvise_cold_or_pageout_pte_range+0x73e/0x20d0 [ 313.183455][ T9736] madvise_cold_or_pageout_pte_range+0x14e5/0x20d0 [ 313.183479][ T9736] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 313.183495][ T9736] ? __lock_acquire+0x622/0x1c90 [ 313.183510][ T9736] ? __pfx_stack_trace_save+0x10/0x10 [ 313.183530][ T9736] ? stack_depot_save_flags+0x29/0x9c0 [ 313.183558][ T9736] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 313.183574][ T9736] walk_pgd_range+0xc05/0x1f50 [ 313.183607][ T9736] ? __pfx_walk_pgd_range+0x10/0x10 [ 313.183630][ T9736] __walk_page_range+0x163/0x820 [ 313.183652][ T9736] ? __lock_acquire+0xb8a/0x1c90 [ 313.183669][ T9736] walk_page_range_vma+0x2c7/0xa20 [ 313.183691][ T9736] ? __pfx_walk_page_range_vma+0x10/0x10 [ 313.183710][ T9736] ? find_held_lock+0x2b/0x80 [ 313.183735][ T9736] madvise_pageout+0x257/0x540 [ 313.183749][ T9736] ? __pfx_madvise_pageout+0x10/0x10 [ 313.183771][ T9736] ? mtree_range_walk+0x718/0xc00 [ 313.183793][ T9736] madvise_vma_behavior+0xb14/0x2d50 [ 313.183812][ T9736] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 313.183828][ T9736] ? __pfx_mt_find+0x10/0x10 [ 313.183853][ T9736] ? find_vma_prev+0xd3/0x150 [ 313.183870][ T9736] ? find_vma+0xbf/0x140 [ 313.183889][ T9736] ? __pfx_find_vma+0x10/0x10 [ 313.183910][ T9736] ? __lock_acquire+0x622/0x1c90 [ 313.183925][ T9736] madvise_walk_vmas+0x31f/0x9c0 [ 313.183943][ T9736] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 313.183963][ T9736] madvise_do_behavior+0x1e2/0x530 [ 313.183979][ T9736] ? __pfx_madvise_do_behavior+0x10/0x10 [ 313.183995][ T9736] ? down_read+0x13d/0x480 [ 313.184016][ T9736] do_madvise+0x176/0x240 [ 313.184030][ T9736] ? __pfx_do_madvise+0x10/0x10 [ 313.184043][ T9736] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 313.184070][ T9736] ? __fget_files+0x20e/0x3c0 [ 313.184095][ T9736] ? syscall_user_dispatch+0x78/0x140 [ 313.184116][ T9736] __x64_sys_madvise+0xa9/0x110 [ 313.184131][ T9736] do_syscall_64+0xcd/0xfa0 [ 313.184152][ T9736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.184167][ T9736] RIP: 0033:0x7f7aa0d8eec9 [ 313.184180][ T9736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.184194][ T9736] RSP: 002b:00007f7aa1bf0038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 313.184207][ T9736] RAX: ffffffffffffffda RBX: 00007f7aa0fe6090 RCX: 00007f7aa0d8eec9 [ 313.184217][ T9736] RDX: 0000000000000015 RSI: ffffffffffff0001 RDI: 0000000000000000 [ 313.184225][ T9736] RBP: 00007f7aa1bf0090 R08: 0000000000000000 R09: 0000000000000000 [ 313.184233][ T9736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 313.184242][ T9736] R13: 00007f7aa0fe6128 R14: 00007f7aa0fe6090 R15: 00007fff3aee3ce8 [ 313.184260][ T9736] [ 313.610288][ T9737] random: crng reseeded on system resumption [ 316.212993][ T9763] Process accounting resumed [ 316.453741][ T9808] random: crng reseeded on system resumption [ 317.173418][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.183228][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.574124][ T5835] Bluetooth: hci0: unexpected event 0x36 length: 123 > 7 [ 320.261020][ T9907] FAULT_INJECTION: forcing a failure. [ 320.261020][ T9907] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 320.432444][ T9907] CPU: 0 UID: 0 PID: 9907 Comm: syz.2.784 Not tainted syzkaller #0 PREEMPT(full) [ 320.432466][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 320.432474][ T9907] Call Trace: [ 320.432480][ T9907] [ 320.432485][ T9907] dump_stack_lvl+0x16c/0x1f0 [ 320.432511][ T9907] should_fail_ex+0x512/0x640 [ 320.432535][ T9907] should_fail_alloc_page+0xe7/0x130 [ 320.432551][ T9907] prepare_alloc_pages+0x3c2/0x610 [ 320.432564][ T9907] ? rcu_is_watching+0x12/0xc0 [ 320.432586][ T9907] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 320.432606][ T9907] ? __lock_acquire+0xb8a/0x1c90 [ 320.432628][ T9907] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 320.432646][ T9907] ? do_raw_spin_lock+0x12c/0x2b0 [ 320.432663][ T9907] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 320.432678][ T9907] ? look_up_lock_class+0x59/0x150 [ 320.432701][ T9907] ? find_held_lock+0x2b/0x80 [ 320.432726][ T9907] ? __lock_acquire+0xb8a/0x1c90 [ 320.432739][ T9907] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 320.432758][ T9907] ? policy_nodemask+0xea/0x4e0 [ 320.432780][ T9907] alloc_pages_mpol+0x1fb/0x550 [ 320.432794][ T9907] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 320.432813][ T9907] folio_alloc_mpol_noprof+0x36/0x2f0 [ 320.432831][ T9907] shmem_alloc_folio+0x135/0x160 [ 320.432848][ T9907] shmem_alloc_and_add_folio+0x499/0xc20 [ 320.432870][ T9907] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 320.432889][ T9907] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 320.432912][ T9907] shmem_get_folio_gfp+0x67f/0x1610 [ 320.432934][ T9907] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 320.432958][ T9907] ? __pfx_timestamp_truncate+0x10/0x10 [ 320.432982][ T9907] shmem_fault+0x1fe/0xa30 [ 320.433000][ T9907] ? current_time+0x11d/0x1a0 [ 320.433020][ T9907] ? __pfx_shmem_fault+0x10/0x10 [ 320.433041][ T9907] ? __pfx___up_read+0x10/0x10 [ 320.433055][ T9907] ? inode_to_bdi+0x9e/0x160 [ 320.433079][ T9907] ? __pfx_filemap_map_pages+0x10/0x10 [ 320.433096][ T9907] __do_fault+0x10d/0x490 [ 320.433116][ T9907] ? __pfx_filemap_map_pages+0x10/0x10 [ 320.433132][ T9907] do_pte_missing+0x1a6/0x3ba0 [ 320.433148][ T9907] ? find_held_lock+0x2b/0x80 [ 320.433166][ T9907] ? __handle_mm_fault+0x1529/0x2aa0 [ 320.433185][ T9907] __handle_mm_fault+0x1556/0x2aa0 [ 320.433203][ T9907] ? mt_find+0x3e2/0xa20 [ 320.433225][ T9907] ? __pfx___handle_mm_fault+0x10/0x10 [ 320.433240][ T9907] ? __pfx_mt_find+0x10/0x10 [ 320.433271][ T9907] ? find_vma+0xbf/0x140 [ 320.433290][ T9907] ? __pfx_find_vma+0x10/0x10 [ 320.433311][ T9907] handle_mm_fault+0x589/0xd10 [ 320.433328][ T9907] ? __pkru_allows_pkey+0x11/0xb0 [ 320.433347][ T9907] do_user_addr_fault+0x7a6/0x1370 [ 320.433366][ T9907] ? rcu_is_watching+0x12/0xc0 [ 320.433386][ T9907] exc_page_fault+0x64/0xc0 [ 320.433406][ T9907] asm_exc_page_fault+0x26/0x30 [ 320.433419][ T9907] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 320.433435][ T9907] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 7f 3e 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 320.433449][ T9907] RSP: 0018:ffffc9000499f740 EFLAGS: 00050206 [ 320.433460][ T9907] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000000ff8 [ 320.433469][ T9907] RDX: 0000000000000000 RSI: ffff8881427c5008 RDI: 0000000000001000 [ 320.433477][ T9907] RBP: 0000000000001000 R08: 0000000000000000 R09: ffffed10284f8bff [ 320.433486][ T9907] R10: ffff8881427c5fff R11: 0000000000000000 R12: 0000000000000ff8 [ 320.433494][ T9907] R13: ffffc9000499fd60 R14: ffff8881427c5000 R15: 0000000000000ff8 [ 320.433513][ T9907] _copy_to_iter+0x4eb/0x1710 [ 320.433532][ T9907] ? __pfx__copy_to_iter+0x10/0x10 [ 320.433546][ T9907] ? const_folio_flags+0x5b/0x100 [ 320.433564][ T9907] ? folio_mark_accessed+0xc1/0xc00 [ 320.433584][ T9907] ? __pfx_folio_mark_accessed+0x10/0x10 [ 320.433608][ T9907] copy_page_to_iter+0x12a/0x1e0 [ 320.433623][ T9907] filemap_read+0x6b1/0xe40 [ 320.433651][ T9907] ? __pfx_filemap_read+0x10/0x10 [ 320.433683][ T9907] ? __pfx_down_read+0x10/0x10 [ 320.433698][ T9907] ? __pfx_aa_file_perm+0x10/0x10 [ 320.433721][ T9907] blkdev_read_iter+0x1ac/0x500 [ 320.433744][ T9907] do_iter_readv_writev+0x743/0x9e0 [ 320.433772][ T9907] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 320.433793][ T9907] ? bpf_lsm_file_permission+0x9/0x10 [ 320.433813][ T9907] ? security_file_permission+0x71/0x210 [ 320.433832][ T9907] ? rw_verify_area+0xcf/0x6c0 [ 320.433850][ T9907] vfs_readv+0x4cb/0x8b0 [ 320.433872][ T9907] ? __pfx_vfs_readv+0x10/0x10 [ 320.433890][ T9907] ? find_held_lock+0x2b/0x80 [ 320.433919][ T9907] ? __fget_files+0x20e/0x3c0 [ 320.433941][ T9907] ? do_preadv+0x1a6/0x270 [ 320.433957][ T9907] do_preadv+0x1a6/0x270 [ 320.433975][ T9907] ? __pfx_do_preadv+0x10/0x10 [ 320.433997][ T9907] do_syscall_64+0xcd/0xfa0 [ 320.434020][ T9907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.434033][ T9907] RIP: 0033:0x7f3f4198eec9 [ 320.434044][ T9907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 320.434057][ T9907] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 320.434069][ T9907] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 320.434078][ T9907] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0040000000000003 [ 320.434086][ T9907] RBP: 00007f3f42888090 R08: 0000000000000005 R09: 0000000000000000 [ 320.434094][ T9907] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 320.434102][ T9907] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 320.434121][ T9907] [ 322.400874][ T9951] netlink: 268 bytes leftover after parsing attributes in process `syz.4.791'. [ 322.508645][ T9951] vhci_hcd: invalid port number 16 [ 322.538445][ T9951] vhci_hcd: invalid port number 16 [ 322.551477][ T9951] random: crng reseeded on system resumption [ 322.584250][ T9951] FAULT_INJECTION: forcing a failure. [ 322.584250][ T9951] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 322.670967][ T9951] CPU: 0 UID: 0 PID: 9951 Comm: syz.4.791 Not tainted syzkaller #0 PREEMPT(full) [ 322.670990][ T9951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 322.670999][ T9951] Call Trace: [ 322.671004][ T9951] [ 322.671010][ T9951] dump_stack_lvl+0x16c/0x1f0 [ 322.671035][ T9951] should_fail_ex+0x512/0x640 [ 322.671060][ T9951] should_fail_alloc_page+0xe7/0x130 [ 322.671077][ T9951] prepare_alloc_pages+0x3c2/0x610 [ 322.671091][ T9951] ? rcu_is_watching+0x12/0xc0 [ 322.671113][ T9951] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 322.671138][ T9951] ? stack_trace_save+0x8e/0xc0 [ 322.671158][ T9951] ? __pfx_stack_trace_save+0x10/0x10 [ 322.671180][ T9951] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 322.671201][ T9951] ? kasan_save_stack+0x42/0x60 [ 322.671220][ T9951] ? kasan_save_stack+0x33/0x60 [ 322.671242][ T9951] ? do_dentry_open+0x982/0x1530 [ 322.671261][ T9951] ? vfs_open+0x82/0x3f0 [ 322.671273][ T9951] ? path_openat+0x1de4/0x2cb0 [ 322.671290][ T9951] ? do_filp_open+0x20b/0x470 [ 322.671307][ T9951] ? do_sys_openat2+0x11b/0x1d0 [ 322.671321][ T9951] ? __x64_sys_openat+0x174/0x210 [ 322.671335][ T9951] ? do_syscall_64+0xcd/0xfa0 [ 322.671353][ T9951] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.671368][ T9951] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.671386][ T9951] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.671404][ T9951] ? policy_nodemask+0xea/0x4e0 [ 322.671420][ T9951] alloc_pages_mpol+0x1fb/0x550 [ 322.671435][ T9951] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 322.671454][ T9951] alloc_pages_noprof+0x131/0x390 [ 322.671468][ T9951] get_zeroed_page_noprof+0x18/0xb0 [ 322.671490][ T9951] get_image_page+0x18/0x190 [ 322.671509][ T9951] alloc_rtree_node+0x3c/0xb0 [ 322.671528][ T9951] memory_bm_create+0x519/0x810 [ 322.671563][ T9951] create_basic_memory_bitmaps+0xbd/0x320 [ 322.671588][ T9951] snapshot_open+0x235/0x2b0 [ 322.671600][ T9951] ? __pfx_snapshot_open+0x10/0x10 [ 322.671614][ T9951] misc_open+0x26d/0x450 [ 322.671636][ T9951] ? __pfx_misc_open+0x10/0x10 [ 322.671656][ T9951] chrdev_open+0x234/0x6a0 [ 322.671676][ T9951] ? __pfx_apparmor_file_open+0x10/0x10 [ 322.671691][ T9951] ? __pfx_chrdev_open+0x10/0x10 [ 322.671712][ T9951] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 322.671735][ T9951] do_dentry_open+0x982/0x1530 [ 322.671755][ T9951] ? __pfx_chrdev_open+0x10/0x10 [ 322.671780][ T9951] vfs_open+0x82/0x3f0 [ 322.671797][ T9951] path_openat+0x1de4/0x2cb0 [ 322.671823][ T9951] ? __pfx_path_openat+0x10/0x10 [ 322.671843][ T9951] ? __lock_acquire+0xb8a/0x1c90 [ 322.671860][ T9951] do_filp_open+0x20b/0x470 [ 322.671879][ T9951] ? __pfx_do_filp_open+0x10/0x10 [ 322.671913][ T9951] ? alloc_fd+0x471/0x7d0 [ 322.671936][ T9951] do_sys_openat2+0x11b/0x1d0 [ 322.671951][ T9951] ? __pfx_do_sys_openat2+0x10/0x10 [ 322.671977][ T9951] __x64_sys_openat+0x174/0x210 [ 322.671993][ T9951] ? __pfx___x64_sys_openat+0x10/0x10 [ 322.672017][ T9951] do_syscall_64+0xcd/0xfa0 [ 322.672039][ T9951] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.672053][ T9951] RIP: 0033:0x7efef078eec9 [ 322.672065][ T9951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.672079][ T9951] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 322.672093][ T9951] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 322.672103][ T9951] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 322.672112][ T9951] RBP: 00007efef0811f91 R08: 0000000000000000 R09: 0000000000000000 [ 322.672121][ T9951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.672130][ T9951] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 322.672158][ T9951] [ 324.478671][ T9965] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 324.496070][ T9965] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 324.603883][ T9965] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 324.627032][ T9965] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 324.673448][ T9965] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 324.712210][ T9965] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 324.760681][ T9965] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 324.783522][ T9965] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 326.137431][T10009] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 326.206615][ T5147] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 326.526130][ T5147] Bluetooth: hci0: command 0x0406 tx timeout [ 326.605993][ T5147] Bluetooth: hci1: command 0x0406 tx timeout [ 326.686314][ T5147] Bluetooth: hci3: command 0x0406 tx timeout [ 326.773511][ T5147] Bluetooth: hci4: command 0x0406 tx timeout [ 328.609248][ T5147] Bluetooth: hci0: command 0x0406 tx timeout [ 328.656651][T10049] FAULT_INJECTION: forcing a failure. [ 328.656651][T10049] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 328.694853][ T5147] Bluetooth: hci1: command 0x0406 tx timeout [ 328.766366][ T5147] Bluetooth: hci3: command 0x0406 tx timeout [ 328.826469][T10049] CPU: 0 UID: 0 PID: 10049 Comm: syz.0.811 Not tainted syzkaller #0 PREEMPT(full) [ 328.826507][T10049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 328.826526][T10049] Call Trace: [ 328.826536][T10049] [ 328.826548][T10049] dump_stack_lvl+0x16c/0x1f0 [ 328.826596][T10049] should_fail_ex+0x512/0x640 [ 328.826621][T10049] should_fail_alloc_page+0xe7/0x130 [ 328.826637][T10049] prepare_alloc_pages+0x3c2/0x610 [ 328.826653][T10049] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 328.826684][T10049] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 328.826705][T10049] ? validate_mm+0x403/0x560 [ 328.826723][T10049] ? __pfx_validate_mm+0x10/0x10 [ 328.826744][T10049] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 328.826765][T10049] ? policy_nodemask+0xea/0x4e0 [ 328.826780][T10049] alloc_pages_mpol+0x1fb/0x550 [ 328.826794][T10049] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 328.826813][T10049] alloc_pages_noprof+0x131/0x390 [ 328.826828][T10049] __pmd_alloc+0x3b/0x8b0 [ 328.826843][T10049] move_page_tables+0x30b7/0x4230 [ 328.826866][T10049] ? __pfx_copy_vma+0x10/0x10 [ 328.826887][T10049] ? __pfx_move_page_tables+0x10/0x10 [ 328.826914][T10049] ? rcu_is_watching+0x12/0xc0 [ 328.826933][T10049] ? finish_task_switch.isra.0+0x221/0xc10 [ 328.826951][T10049] ? lockdep_hardirqs_on+0x7c/0x110 [ 328.826977][T10049] copy_vma_and_data+0x24e/0x790 [ 328.826997][T10049] ? __pfx_copy_vma_and_data+0x10/0x10 [ 328.827019][T10049] ? __vma_enter_locked+0x163/0x3f0 [ 328.827038][T10049] ? find_held_lock+0x2b/0x80 [ 328.827058][T10049] ? move_vma+0x52e/0x1770 [ 328.827080][T10049] move_vma+0x540/0x1770 [ 328.827102][T10049] ? __pfx_move_vma+0x10/0x10 [ 328.827132][T10049] ? shmem_get_unmapped_area+0x170/0xa00 [ 328.827150][T10049] ? cap_mmap_addr+0x4b/0x120 [ 328.827164][T10049] ? bpf_lsm_mmap_addr+0x9/0x10 [ 328.827184][T10049] ? security_mmap_addr+0x6c/0x1e0 [ 328.827202][T10049] ? __get_unmapped_area+0x267/0x440 [ 328.827217][T10049] ? vrm_set_new_addr+0x208/0x290 [ 328.827236][T10049] mremap_to+0x1b7/0x450 [ 328.827255][T10049] do_mremap+0x13a8/0x2020 [ 328.827273][T10049] ? futex_private_hash_put+0xf0/0x300 [ 328.827300][T10049] ? __pfx_do_mremap+0x10/0x10 [ 328.827328][T10049] __do_sys_mremap+0x119/0x170 [ 328.827345][T10049] ? __pfx___do_sys_mremap+0x10/0x10 [ 328.827368][T10049] ? __x64_sys_futex+0x1e0/0x4c0 [ 328.827393][T10049] do_syscall_64+0xcd/0xfa0 [ 328.827415][T10049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.827429][T10049] RIP: 0033:0x7f7aa0d8eec9 [ 328.827441][T10049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.827456][T10049] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 328.827471][T10049] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 328.827481][T10049] RDX: 0000000000000843 RSI: 00000000000000ff RDI: 00000000001ff000 [ 328.827491][T10049] RBP: 00007f7aa0e11f91 R08: 00000000fffff000 R09: 0000000000000000 [ 328.827500][T10049] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 328.827509][T10049] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 328.827529][T10049] [ 328.831568][T10062] : Can't lookup blockdev [ 329.157735][ T5147] Bluetooth: hci4: command 0x0406 tx timeout [ 329.269093][T10063] random: crng reseeded on system resumption [ 331.202749][T10091] random: crng reseeded on system resumption [ 332.083561][ T36] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow. [ 332.858151][T10102] netlink: 268 bytes leftover after parsing attributes in process `syz.0.822'. [ 332.924977][T10108] random: crng reseeded on system resumption [ 333.010780][T10109] vhci_hcd: invalid port number 16 [ 333.094105][T10116] random: crng reseeded on system resumption [ 333.146866][T10109] vhci_hcd: invalid port number 16 [ 334.251985][T10123] netlink: 25 bytes leftover after parsing attributes in process `syz.1.826'. [ 335.019491][T10147] FAULT_INJECTION: forcing a failure. [ 335.019491][T10147] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 335.037093][T10144] netlink: 32 bytes leftover after parsing attributes in process `syz.2.831'. [ 335.080730][T10147] CPU: 0 UID: 0 PID: 10147 Comm: syz.4.832 Not tainted syzkaller #0 PREEMPT(full) [ 335.080751][T10147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 335.080760][T10147] Call Trace: [ 335.080765][T10147] [ 335.080770][T10147] dump_stack_lvl+0x16c/0x1f0 [ 335.080795][T10147] should_fail_ex+0x512/0x640 [ 335.080820][T10147] _copy_to_iter+0x29f/0x1710 [ 335.080837][T10147] ? kfree+0x2b8/0x6d0 [ 335.080853][T10147] ? traverse.part.0.constprop.0+0x2c0/0x650 [ 335.080871][T10147] ? __pfx__copy_to_iter+0x10/0x10 [ 335.080885][T10147] ? traverse.part.0.constprop.0+0x2c0/0x650 [ 335.080901][T10147] ? traverse.part.0.constprop.0+0x2c5/0x650 [ 335.080923][T10147] seq_read_iter+0x71e/0x12d0 [ 335.080947][T10147] proc_reg_read_iter+0x220/0x310 [ 335.080963][T10147] vfs_read+0x8bf/0xcf0 [ 335.080986][T10147] ? __pfx_vfs_read+0x10/0x10 [ 335.081003][T10147] ? find_held_lock+0x2b/0x80 [ 335.081034][T10147] __x64_sys_pread64+0x1eb/0x250 [ 335.081054][T10147] ? __pfx___x64_sys_pread64+0x10/0x10 [ 335.081079][T10147] do_syscall_64+0xcd/0xfa0 [ 335.081101][T10147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.081115][T10147] RIP: 0033:0x7efef078eec9 [ 335.081126][T10147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 335.081140][T10147] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 335.081153][T10147] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 335.081163][T10147] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000004 [ 335.081171][T10147] RBP: 00007efef15f8090 R08: 0000000000000000 R09: 0000000000000000 [ 335.081179][T10147] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 335.081187][T10147] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 335.081206][T10147] [ 335.270976][ C0] vkms_vblank_simulate: vblank timer overrun [ 335.544171][T10145] netlink: 338 bytes leftover after parsing attributes in process `syz.0.830'. [ 335.568288][T10145] netlink: 338 bytes leftover after parsing attributes in process `syz.0.830'. [ 335.591396][T10145] netlink: 290 bytes leftover after parsing attributes in process `syz.0.830'. [ 335.612789][T10145] netlink: 290 bytes leftover after parsing attributes in process `syz.0.830'. [ 335.637000][ T5147] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 337.308545][T10201] FAULT_INJECTION: forcing a failure. [ 337.308545][T10201] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 337.542533][T10201] CPU: 0 UID: 0 PID: 10201 Comm: syz.2.846 Not tainted syzkaller #0 PREEMPT(full) [ 337.542555][T10201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 337.542563][T10201] Call Trace: [ 337.542568][T10201] [ 337.542574][T10201] dump_stack_lvl+0x16c/0x1f0 [ 337.542598][T10201] should_fail_ex+0x512/0x640 [ 337.542623][T10201] should_fail_alloc_page+0xe7/0x130 [ 337.542638][T10201] prepare_alloc_pages+0x3c2/0x610 [ 337.542652][T10201] ? rcu_is_watching+0x12/0xc0 [ 337.542673][T10201] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 337.542691][T10201] ? register_lock_class+0x41/0x4c0 [ 337.542708][T10201] ? __lock_acquire+0x622/0x1c90 [ 337.542723][T10201] ? css_rstat_updated+0x1c2/0x510 [ 337.542744][T10201] ? __pfx_css_rstat_updated+0x10/0x10 [ 337.542763][T10201] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 337.542784][T10201] ? rcu_is_watching+0x12/0xc0 [ 337.542809][T10201] ? __lock_acquire+0x622/0x1c90 [ 337.542822][T10201] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 337.542841][T10201] ? policy_nodemask+0xea/0x4e0 [ 337.542857][T10201] alloc_pages_mpol+0x1fb/0x550 [ 337.542871][T10201] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 337.542885][T10201] ? filemap_get_entry+0x1a7/0x3b0 [ 337.542907][T10201] folio_alloc_noprof+0x20/0x2d0 [ 337.542924][T10201] filemap_alloc_folio_noprof+0x3a1/0x470 [ 337.542937][T10201] ? filemap_add_folio+0x110/0x610 [ 337.542956][T10201] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 337.542976][T10201] __filemap_get_folio+0x5e1/0xc30 [ 337.542998][T10201] ioctx_alloc+0x761/0x2120 [ 337.543026][T10201] ? __pfx_ioctx_alloc+0x10/0x10 [ 337.543044][T10201] ? __might_fault+0x13b/0x190 [ 337.543066][T10201] __x64_sys_io_setup+0xc9/0x210 [ 337.543087][T10201] do_syscall_64+0xcd/0xfa0 [ 337.543108][T10201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.543122][T10201] RIP: 0033:0x7f3f4198eec9 [ 337.543134][T10201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 337.543147][T10201] RSP: 002b:00007f3f42867038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 337.543161][T10201] RAX: ffffffffffffffda RBX: 00007f3f41be6090 RCX: 00007f3f4198eec9 [ 337.543170][T10201] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000007ffe [ 337.543182][T10201] RBP: 00007f3f42867090 R08: 0000000000000000 R09: 0000000000000000 [ 337.543190][T10201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 337.543198][T10201] R13: 00007f3f41be6128 R14: 00007f3f41be6090 R15: 00007ffeec6fafe8 [ 337.543218][T10201] [ 338.146408][T10208] FAULT_INJECTION: forcing a failure. [ 338.146408][T10208] name failslab, interval 1, probability 0, space 0, times 0 [ 338.159162][T10208] CPU: 0 UID: 0 PID: 10208 Comm: syz.4.848 Not tainted syzkaller #0 PREEMPT(full) [ 338.159183][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 338.159193][T10208] Call Trace: [ 338.159200][T10208] [ 338.159206][T10208] dump_stack_lvl+0x16c/0x1f0 [ 338.159232][T10208] should_fail_ex+0x512/0x640 [ 338.159253][T10208] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 338.159274][T10208] should_failslab+0xc2/0x120 [ 338.159288][T10208] kmem_cache_alloc_noprof+0x75/0x6e0 [ 338.159306][T10208] ? ptlock_alloc+0x1f/0x70 [ 338.159326][T10208] ? ptlock_alloc+0x1f/0x70 [ 338.159341][T10208] ptlock_alloc+0x1f/0x70 [ 338.159357][T10208] pte_alloc_one+0x84/0x350 [ 338.159378][T10208] __pte_alloc+0x6d/0x380 [ 338.159398][T10208] ? __pfx___pte_alloc+0x10/0x10 [ 338.159421][T10208] ? do_raw_spin_lock+0x12c/0x2b0 [ 338.159448][T10208] do_pte_missing+0x282c/0x3ba0 [ 338.159466][T10208] ? do_raw_spin_unlock+0x172/0x230 [ 338.159484][T10208] ? _raw_spin_unlock+0x28/0x50 [ 338.159502][T10208] ? __pmd_alloc+0x64f/0x8b0 [ 338.159518][T10208] __handle_mm_fault+0x1556/0x2aa0 [ 338.159541][T10208] ? __pfx___handle_mm_fault+0x10/0x10 [ 338.159573][T10208] handle_mm_fault+0x589/0xd10 [ 338.159593][T10208] __get_user_pages+0x54e/0x3530 [ 338.159615][T10208] ? __pfx___get_user_pages+0x10/0x10 [ 338.159634][T10208] populate_vma_page_range+0x267/0x3f0 [ 338.159651][T10208] ? __pfx_populate_vma_page_range+0x10/0x10 [ 338.159665][T10208] ? __pfx_find_vma_intersection+0x10/0x10 [ 338.159687][T10208] ? do_mmap+0x69c/0x1210 [ 338.159702][T10208] __mm_populate+0x1d8/0x380 [ 338.159717][T10208] ? __pfx___mm_populate+0x10/0x10 [ 338.159733][T10208] ? up_write+0x1b2/0x520 [ 338.159751][T10208] vm_mmap_pgoff+0x37f/0x470 [ 338.159775][T10208] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 338.159800][T10208] ? __x64_sys_futex+0x1e0/0x4c0 [ 338.159813][T10208] ? __x64_sys_futex+0x1e9/0x4c0 [ 338.159830][T10208] ksys_mmap_pgoff+0x7d/0x5c0 [ 338.159850][T10208] ? xfd_validate_state+0x61/0x180 [ 338.159864][T10208] ? __pfx_do_writev+0x10/0x10 [ 338.159884][T10208] __x64_sys_mmap+0x125/0x190 [ 338.159902][T10208] do_syscall_64+0xcd/0xfa0 [ 338.159924][T10208] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.159938][T10208] RIP: 0033:0x7efef078eec9 [ 338.159950][T10208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.159964][T10208] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 338.159978][T10208] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 338.159988][T10208] RDX: 00000000000000df RSI: 0000000000400007 RDI: 0000000000000000 [ 338.159997][T10208] RBP: 00007efef0811f91 R08: ffffffffffffffff R09: 4000000000000000 [ 338.160007][T10208] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 338.160016][T10208] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 338.160035][T10208] [ 338.536851][T10215] FAULT_INJECTION: forcing a failure. [ 338.536851][T10215] name failslab, interval 1, probability 0, space 0, times 0 [ 338.551174][T10215] CPU: 0 UID: 0 PID: 10215 Comm: syz.1.849 Not tainted syzkaller #0 PREEMPT(full) [ 338.551194][T10215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 338.551202][T10215] Call Trace: [ 338.551207][T10215] [ 338.551212][T10215] dump_stack_lvl+0x16c/0x1f0 [ 338.551238][T10215] should_fail_ex+0x512/0x640 [ 338.551259][T10215] ? __kmalloc_noprof+0xca/0x880 [ 338.551278][T10215] should_failslab+0xc2/0x120 [ 338.551292][T10215] __kmalloc_noprof+0xdd/0x880 [ 338.551308][T10215] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 338.551330][T10215] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 338.551346][T10215] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 338.551366][T10215] genl_start+0x18f/0x980 [ 338.551382][T10215] __netlink_dump_start+0x60e/0x990 [ 338.551411][T10215] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 338.551428][T10215] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 338.551448][T10215] ? __pfx_genl_get_cmd+0x10/0x10 [ 338.551460][T10215] ? __pfx_genl_start+0x10/0x10 [ 338.551472][T10215] ? __pfx_genl_dumpit+0x10/0x10 [ 338.551484][T10215] ? __pfx_genl_done+0x10/0x10 [ 338.551501][T10215] ? __radix_tree_lookup+0x21f/0x2c0 [ 338.551521][T10215] genl_rcv_msg+0x46e/0x800 [ 338.551538][T10215] ? __pfx_genl_rcv_msg+0x10/0x10 [ 338.551553][T10215] ? __pfx_ethnl_tunnel_info_start+0x10/0x10 [ 338.551573][T10215] ? __pfx_ethnl_tunnel_info_dumpit+0x10/0x10 [ 338.551601][T10215] netlink_rcv_skb+0x158/0x420 [ 338.551613][T10215] ? __pfx_genl_rcv_msg+0x10/0x10 [ 338.551628][T10215] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 338.551648][T10215] ? netlink_deliver_tap+0x1ae/0xd30 [ 338.551671][T10215] genl_rcv+0x28/0x40 [ 338.551683][T10215] netlink_unicast+0x5aa/0x870 [ 338.551707][T10215] ? __pfx_netlink_unicast+0x10/0x10 [ 338.551736][T10215] netlink_sendmsg+0x8c8/0xdd0 [ 338.551760][T10215] ? __pfx_netlink_sendmsg+0x10/0x10 [ 338.551783][T10215] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 338.551801][T10215] ____sys_sendmsg+0xa98/0xc70 [ 338.551817][T10215] ? copy_msghdr_from_user+0x10a/0x160 [ 338.551837][T10215] ? __pfx_____sys_sendmsg+0x10/0x10 [ 338.551862][T10215] ___sys_sendmsg+0x134/0x1d0 [ 338.551883][T10215] ? __pfx____sys_sendmsg+0x10/0x10 [ 338.551901][T10215] ? __lock_acquire+0x622/0x1c90 [ 338.551939][T10215] __sys_sendmsg+0x16d/0x220 [ 338.551959][T10215] ? __pfx___sys_sendmsg+0x10/0x10 [ 338.551991][T10215] do_syscall_64+0xcd/0xfa0 [ 338.552013][T10215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.552026][T10215] RIP: 0033:0x7f023a38eec9 [ 338.552039][T10215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.552052][T10215] RSP: 002b:00007f02385f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 338.552065][T10215] RAX: ffffffffffffffda RBX: 00007f023a5e5fa0 RCX: 00007f023a38eec9 [ 338.552074][T10215] RDX: 0000000000000880 RSI: 0000200000000f80 RDI: 0000000000000003 [ 338.552083][T10215] RBP: 00007f02385f6090 R08: 0000000000000000 R09: 0000000000000000 [ 338.552091][T10215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 338.552099][T10215] R13: 00007f023a5e6038 R14: 00007f023a5e5fa0 R15: 00007ffc9928e3c8 [ 338.552118][T10215] [ 339.027674][T10223] random: crng reseeded on system resumption [ 339.203703][T10225] ptrace attach of "./syz-executor exec"[7735] was attempted by "./syz-executor exec"[10225] [ 339.896652][T10240] netlink: 28 bytes leftover after parsing attributes in process `syz.2.856'. [ 340.036621][T10246] random: crng reseeded on system resumption [ 342.012432][T10323] hub 8-0:1.0: USB hub found [ 342.139407][T10323] hub 8-0:1.0: 1 port detected [ 344.196194][T10374] random: crng reseeded on system resumption [ 345.326496][T10400] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 346.494873][T10405] Process accounting paused [ 346.538675][T10399] kexec: Could not allocate control_code_buffer [ 347.157320][T10436] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.886' sets config #0 [ 348.187940][T10458] random: crng reseeded on system resumption [ 349.198380][T10467] FAULT_INJECTION: forcing a failure. [ 349.198380][T10467] name failslab, interval 1, probability 0, space 0, times 0 [ 349.402127][T10467] CPU: 0 UID: 0 PID: 10467 Comm: syz.4.889 Not tainted syzkaller #0 PREEMPT(full) [ 349.402148][T10467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 349.402156][T10467] Call Trace: [ 349.402161][T10467] [ 349.402167][T10467] dump_stack_lvl+0x16c/0x1f0 [ 349.402192][T10467] should_fail_ex+0x512/0x640 [ 349.402212][T10467] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 349.402233][T10467] should_failslab+0xc2/0x120 [ 349.402247][T10467] kmem_cache_alloc_noprof+0x75/0x6e0 [ 349.402263][T10467] ? find_held_lock+0x2b/0x80 [ 349.402281][T10467] ? vm_area_dup+0x27/0x8d0 [ 349.402301][T10467] ? vm_area_dup+0x27/0x8d0 [ 349.402314][T10467] vm_area_dup+0x27/0x8d0 [ 349.402332][T10467] __split_vma+0x18e/0x1070 [ 349.402348][T10467] ? trace_sched_exit_tp+0xd1/0x120 [ 349.402366][T10467] ? __schedule+0x11a3/0x5de0 [ 349.402384][T10467] ? __pfx___split_vma+0x10/0x10 [ 349.402398][T10467] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 349.402430][T10467] vma_modify+0xee1/0x2030 [ 349.402451][T10467] ? __pfx_vma_modify+0x10/0x10 [ 349.402472][T10467] vma_modify_flags+0x212/0x2d0 [ 349.402490][T10467] ? __pfx_vma_modify_flags+0x10/0x10 [ 349.402519][T10467] mprotect_fixup+0x1df/0xb40 [ 349.402539][T10467] ? __pfx_mprotect_fixup+0x10/0x10 [ 349.402561][T10467] do_mprotect_pkey+0x9bc/0xd40 [ 349.402583][T10467] ? __pfx_do_mprotect_pkey+0x10/0x10 [ 349.402600][T10467] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 349.402632][T10467] ? __fget_files+0x20e/0x3c0 [ 349.402657][T10467] ? __pfx_ksys_write+0x10/0x10 [ 349.402680][T10467] __x64_sys_mprotect+0x78/0xc0 [ 349.402695][T10467] ? lockdep_hardirqs_on+0x7c/0x110 [ 349.402714][T10467] do_syscall_64+0xcd/0xfa0 [ 349.402735][T10467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.402749][T10467] RIP: 0033:0x7efef078eec9 [ 349.402762][T10467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.402776][T10467] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a [ 349.402790][T10467] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 349.402799][T10467] RDX: 0000000000000008 RSI: 0000000000806121 RDI: 0000200000000000 [ 349.402808][T10467] RBP: 00007efef15f8090 R08: 0000000000000000 R09: 0000000000000000 [ 349.402816][T10467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 349.402824][T10467] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 349.402843][T10467] [ 350.329229][T10494] usb usb23: usbfs: interface 0 claimed by hub while 'syz.1.896' sets config #0 [ 350.648480][T10504] syz.1.900(10504): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 351.212102][ T5835] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7 [ 351.312101][T10524] random: crng reseeded on system resumption [ 352.074875][T10540] random: crng reseeded on system resumption [ 352.631331][T10546] usb usb23: usbfs: interface 0 claimed by hub while 'syz.1.907' sets config #0 [ 352.826964][T10550] netlink: 268 bytes leftover after parsing attributes in process `syz.1.909'. [ 352.974202][T10550] vhci_hcd: invalid port number 16 [ 353.007970][T10550] vhci_hcd: invalid port number 16 [ 353.052486][T10550] random: crng reseeded on system resumption [ 353.112005][T10550] FAULT_INJECTION: forcing a failure. [ 353.112005][T10550] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 353.207490][T10550] CPU: 0 UID: 0 PID: 10550 Comm: syz.1.909 Not tainted syzkaller #0 PREEMPT(full) [ 353.207513][T10550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 353.207522][T10550] Call Trace: [ 353.207527][T10550] [ 353.207533][T10550] dump_stack_lvl+0x16c/0x1f0 [ 353.207561][T10550] should_fail_ex+0x512/0x640 [ 353.207587][T10550] should_fail_alloc_page+0xe7/0x130 [ 353.207602][T10550] prepare_alloc_pages+0x3c2/0x610 [ 353.207616][T10550] ? rcu_is_watching+0x12/0xc0 [ 353.207639][T10550] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 353.207663][T10550] ? stack_trace_save+0x8e/0xc0 [ 353.207683][T10550] ? __pfx_stack_trace_save+0x10/0x10 [ 353.207705][T10550] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 353.207726][T10550] ? kasan_save_stack+0x42/0x60 [ 353.207745][T10550] ? kasan_save_stack+0x33/0x60 [ 353.207766][T10550] ? do_dentry_open+0x982/0x1530 [ 353.207785][T10550] ? vfs_open+0x82/0x3f0 [ 353.207797][T10550] ? path_openat+0x1de4/0x2cb0 [ 353.207814][T10550] ? do_filp_open+0x20b/0x470 [ 353.207831][T10550] ? do_sys_openat2+0x11b/0x1d0 [ 353.207844][T10550] ? __x64_sys_openat+0x174/0x210 [ 353.207858][T10550] ? do_syscall_64+0xcd/0xfa0 [ 353.207877][T10550] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.207891][T10550] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 353.207909][T10550] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 353.207928][T10550] ? policy_nodemask+0xea/0x4e0 [ 353.207943][T10550] alloc_pages_mpol+0x1fb/0x550 [ 353.207958][T10550] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 353.207977][T10550] alloc_pages_noprof+0x131/0x390 [ 353.207991][T10550] get_zeroed_page_noprof+0x18/0xb0 [ 353.208013][T10550] get_image_page+0x18/0x190 [ 353.208033][T10550] alloc_rtree_node+0x3c/0xb0 [ 353.208051][T10550] memory_bm_create+0x519/0x810 [ 353.208078][T10550] create_basic_memory_bitmaps+0xbd/0x320 [ 353.208101][T10550] snapshot_open+0x235/0x2b0 [ 353.208113][T10550] ? __pfx_snapshot_open+0x10/0x10 [ 353.208126][T10550] misc_open+0x26d/0x450 [ 353.208149][T10550] ? __pfx_misc_open+0x10/0x10 [ 353.208169][T10550] chrdev_open+0x234/0x6a0 [ 353.208190][T10550] ? __pfx_apparmor_file_open+0x10/0x10 [ 353.208205][T10550] ? __pfx_chrdev_open+0x10/0x10 [ 353.208226][T10550] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 353.208249][T10550] do_dentry_open+0x982/0x1530 [ 353.208269][T10550] ? __pfx_chrdev_open+0x10/0x10 [ 353.208294][T10550] vfs_open+0x82/0x3f0 [ 353.208311][T10550] path_openat+0x1de4/0x2cb0 [ 353.208336][T10550] ? __pfx_path_openat+0x10/0x10 [ 353.208356][T10550] ? __lock_acquire+0xb8a/0x1c90 [ 353.208373][T10550] do_filp_open+0x20b/0x470 [ 353.208393][T10550] ? __pfx_do_filp_open+0x10/0x10 [ 353.208426][T10550] ? alloc_fd+0x471/0x7d0 [ 353.208462][T10550] do_sys_openat2+0x11b/0x1d0 [ 353.208478][T10550] ? __pfx_do_sys_openat2+0x10/0x10 [ 353.208502][T10550] __x64_sys_openat+0x174/0x210 [ 353.208521][T10550] ? __pfx___x64_sys_openat+0x10/0x10 [ 353.208545][T10550] do_syscall_64+0xcd/0xfa0 [ 353.208566][T10550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.208580][T10550] RIP: 0033:0x7f023a38eec9 [ 353.208594][T10550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 353.208608][T10550] RSP: 002b:00007f02385f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 353.208622][T10550] RAX: ffffffffffffffda RBX: 00007f023a5e5fa0 RCX: 00007f023a38eec9 [ 353.208632][T10550] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 353.208641][T10550] RBP: 00007f023a411f91 R08: 0000000000000000 R09: 0000000000000000 [ 353.208650][T10550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 353.208659][T10550] R13: 00007f023a5e6038 R14: 00007f023a5e5fa0 R15: 00007ffc9928e3c8 [ 353.208680][T10550] [ 353.969463][T10561] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 353.969463][T10561] program syz.4.912 not setting count and/or reply_len properly [ 354.600621][T10580] netlink: 338 bytes leftover after parsing attributes in process `syz.4.912'. [ 354.770551][T10561] netlink: 338 bytes leftover after parsing attributes in process `syz.4.912'. [ 354.830588][T10580] netlink: 290 bytes leftover after parsing attributes in process `syz.4.912'. [ 354.870668][T10561] netlink: 290 bytes leftover after parsing attributes in process `syz.4.912'. [ 355.523726][T10597] zswap: compressor not available [ 355.595450][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.4.918'. [ 356.358086][T10617] vhci_hcd: invalid port number 16 [ 356.363231][T10617] vhci_hcd: invalid port number 16 [ 356.424945][T10625] random: crng reseeded on system resumption [ 356.432620][T10621] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present [ 358.935988][T10682] random: crng reseeded on system resumption [ 359.656201][T10697] sg_write: data in/out 3292/1 bytes for SCSI command 0xa3-- guessing data in; [ 359.656201][T10697] program syz.0.939 not setting count and/or reply_len properly [ 360.236592][T10703] netlink: 338 bytes leftover after parsing attributes in process `syz.0.939'. [ 360.307842][T10697] netlink: 338 bytes leftover after parsing attributes in process `syz.0.939'. [ 362.133857][T10741] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 362.175440][T10741] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 362.921646][T10745] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 362.989707][T10745] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 362.995748][T10745] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 363.010934][T10759] Invalid ELF header magic: != ELF [ 363.096387][T10745] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 364.430106][T10779] netlink: 8 bytes leftover after parsing attributes in process `syz.4.959'. [ 364.560778][T10789] usb usb23: usbfs: interface 0 claimed by hub while 'syz.2.961' sets config #0 [ 364.766157][ T5147] Bluetooth: hci0: command 0x0406 tx timeout [ 364.849288][T10794] FAULT_INJECTION: forcing a failure. [ 364.849288][T10794] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 364.928406][T10794] CPU: 0 UID: 0 PID: 10794 Comm: syz.0.964 Not tainted syzkaller #0 PREEMPT(full) [ 364.928425][T10794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 364.928434][T10794] Call Trace: [ 364.928439][T10794] [ 364.928445][T10794] dump_stack_lvl+0x16c/0x1f0 [ 364.928470][T10794] should_fail_ex+0x512/0x640 [ 364.928495][T10794] should_fail_alloc_page+0xe7/0x130 [ 364.928511][T10794] prepare_alloc_pages+0x3c2/0x610 [ 364.928532][T10794] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 364.928553][T10794] ? __pfx___page_table_check_zero+0x10/0x10 [ 364.928576][T10794] ? lockdep_hardirqs_on+0x7c/0x110 [ 364.928600][T10794] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 364.928620][T10794] ? get_page_from_freelist+0x10a3/0x3a30 [ 364.928642][T10794] ? __lock_acquire+0x622/0x1c90 [ 364.928659][T10794] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 364.928678][T10794] ? policy_nodemask+0xea/0x4e0 [ 364.928693][T10794] alloc_pages_mpol+0x1fb/0x550 [ 364.928708][T10794] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 364.928727][T10794] folio_alloc_mpol_noprof+0x36/0x2f0 [ 364.928744][T10794] shmem_alloc_folio+0x135/0x160 [ 364.928761][T10794] shmem_alloc_and_add_folio+0x499/0xc20 [ 364.928783][T10794] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 364.928802][T10794] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 364.928824][T10794] shmem_get_folio_gfp+0x67f/0x1610 [ 364.928846][T10794] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 364.928865][T10794] ? filemap_map_pages+0xe01/0x1b70 [ 364.928886][T10794] shmem_fault+0x1fe/0xa30 [ 364.928905][T10794] ? __pfx_shmem_fault+0x10/0x10 [ 364.928926][T10794] ? __pfx_filemap_map_pages+0x10/0x10 [ 364.928948][T10794] ? __pfx_filemap_map_pages+0x10/0x10 [ 364.928964][T10794] __do_fault+0x10d/0x490 [ 364.928984][T10794] ? __pfx_filemap_map_pages+0x10/0x10 [ 364.929000][T10794] do_pte_missing+0xf4a/0x3ba0 [ 364.929016][T10794] ? find_held_lock+0x2b/0x80 [ 364.929035][T10794] ? __handle_mm_fault+0x1529/0x2aa0 [ 364.929053][T10794] __handle_mm_fault+0x1556/0x2aa0 [ 364.929072][T10794] ? mt_find+0x3e2/0xa20 [ 364.929094][T10794] ? __pfx___handle_mm_fault+0x10/0x10 [ 364.929108][T10794] ? __pfx_mt_find+0x10/0x10 [ 364.929138][T10794] ? find_vma+0xbf/0x140 [ 364.929157][T10794] ? __pfx_find_vma+0x10/0x10 [ 364.929179][T10794] handle_mm_fault+0x589/0xd10 [ 364.929195][T10794] ? __pkru_allows_pkey+0x11/0xb0 [ 364.929213][T10794] do_user_addr_fault+0x7a6/0x1370 [ 364.929232][T10794] ? rcu_is_watching+0x12/0xc0 [ 364.929254][T10794] exc_page_fault+0x64/0xc0 [ 364.929273][T10794] asm_exc_page_fault+0x26/0x30 [ 364.929286][T10794] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 364.929307][T10794] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 7f 3e 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 364.929320][T10794] RSP: 0018:ffffc90004a6f7c0 EFLAGS: 00050206 [ 364.929332][T10794] RAX: 0000000000000001 RBX: 000000000000fdef RCX: 000000000000edef [ 364.929341][T10794] RDX: ffffed100f74bfbe RSI: 0000000000001000 RDI: ffff88807ba51000 [ 364.929350][T10794] RBP: 000000000000fdef R08: 0000000000000001 R09: ffffed100f74bfbd [ 364.929358][T10794] R10: ffff88807ba5fdee R11: 0000000000000000 R12: 0000000000000000 [ 364.929367][T10794] R13: ffffc90004a6fb50 R14: ffff88807ba50000 R15: 0000000000000000 [ 364.929385][T10794] _copy_from_iter+0x4eb/0x1720 [ 364.929412][T10794] ? __pfx__copy_from_iter+0x10/0x10 [ 364.929434][T10794] ? __asan_memset+0x23/0x50 [ 364.929452][T10794] ? __build_skb_around+0x278/0x3b0 [ 364.929470][T10794] ? is_vmalloc_addr+0x86/0xa0 [ 364.929490][T10794] netlink_sendmsg+0x820/0xdd0 [ 364.929520][T10794] ? __pfx_netlink_sendmsg+0x10/0x10 [ 364.929543][T10794] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 364.929561][T10794] ____sys_sendmsg+0xa98/0xc70 [ 364.929578][T10794] ? __pfx_____sys_sendmsg+0x10/0x10 [ 364.929597][T10794] ? __pfx__kstrtoull+0x10/0x10 [ 364.929617][T10794] ___sys_sendmsg+0x134/0x1d0 [ 364.929639][T10794] ? __pfx____sys_sendmsg+0x10/0x10 [ 364.929668][T10794] ? find_held_lock+0x2b/0x80 [ 364.929697][T10794] __sys_sendmmsg+0x200/0x420 [ 364.929720][T10794] ? __pfx___sys_sendmmsg+0x10/0x10 [ 364.929746][T10794] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 364.929775][T10794] ? fput+0x9b/0xd0 [ 364.929789][T10794] ? ksys_write+0x1ac/0x250 [ 364.929807][T10794] ? __pfx_ksys_write+0x10/0x10 [ 364.929829][T10794] __x64_sys_sendmmsg+0x9c/0x100 [ 364.929848][T10794] ? lockdep_hardirqs_on+0x7c/0x110 [ 364.929867][T10794] do_syscall_64+0xcd/0xfa0 [ 364.929888][T10794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.929901][T10794] RIP: 0033:0x7f7aa0d8eec9 [ 364.929912][T10794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.929924][T10794] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 364.929936][T10794] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 364.929945][T10794] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 364.929953][T10794] RBP: 00007f7aa1c11090 R08: 0000000000000000 R09: 0000000000000000 [ 364.929961][T10794] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 364.929969][T10794] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 364.929988][T10794] [ 365.966018][T10799] FAULT_INJECTION: forcing a failure. [ 365.966018][T10799] name fail_futex, interval 1, probability 0, space 0, times 0 [ 366.025953][ T5147] Bluetooth: hci3: command 0x0406 tx timeout [ 366.031982][ T5147] Bluetooth: hci1: command 0x0406 tx timeout [ 366.038038][ T5147] Bluetooth: hci4: command 0x0406 tx timeout [ 366.049546][T10799] CPU: 0 UID: 0 PID: 10799 Comm: syz.0.964 Not tainted syzkaller #0 PREEMPT(full) [ 366.049565][T10799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 366.049574][T10799] Call Trace: [ 366.049579][T10799] [ 366.049584][T10799] dump_stack_lvl+0x16c/0x1f0 [ 366.049609][T10799] should_fail_ex+0x512/0x640 [ 366.049634][T10799] get_futex_key+0x1d0/0x1560 [ 366.049659][T10799] ? __pfx_get_futex_key+0x10/0x10 [ 366.049683][T10799] ? __lock_acquire+0x622/0x1c90 [ 366.049700][T10799] futex_wake+0xea/0x530 [ 366.049718][T10799] ? __pfx_futex_wake+0x10/0x10 [ 366.049737][T10799] ? task_mm_cid_work+0x37b/0x900 [ 366.049759][T10799] do_futex+0x1e3/0x350 [ 366.049773][T10799] ? __pfx_do_futex+0x10/0x10 [ 366.049786][T10799] ? __pfx_task_mm_cid_work+0x10/0x10 [ 366.049803][T10799] ? __pfx___might_resched+0x10/0x10 [ 366.049824][T10799] __x64_sys_futex+0x1e0/0x4c0 [ 366.049839][T10799] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 366.049859][T10799] ? __pfx___x64_sys_futex+0x10/0x10 [ 366.049880][T10799] do_syscall_64+0xcd/0xfa0 [ 366.049901][T10799] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 366.049915][T10799] RIP: 0033:0x7f7aa0d8eec9 [ 366.049926][T10799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 366.049939][T10799] RSP: 002b:00007f7aa1bf00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 366.049953][T10799] RAX: ffffffffffffffda RBX: 00007f7aa0fe6098 RCX: 00007f7aa0d8eec9 [ 366.049962][T10799] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7aa0fe609c [ 366.049971][T10799] RBP: 00007f7aa0fe6090 R08: 00007f7aa1c12000 R09: 0000000000000000 [ 366.049979][T10799] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 366.049988][T10799] R13: 00007f7aa0fe6128 R14: 00007fff3aee3c00 R15: 00007fff3aee3ce8 [ 366.050006][T10799] [ 366.369285][T10803] random: crng reseeded on system resumption [ 367.012752][T10821] FAULT_INJECTION: forcing a failure. [ 367.012752][T10821] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 367.086975][T10821] CPU: 0 UID: 0 PID: 10821 Comm: syz.2.966 Not tainted syzkaller #0 PREEMPT(full) [ 367.086996][T10821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 367.087004][T10821] Call Trace: [ 367.087009][T10821] [ 367.087015][T10821] dump_stack_lvl+0x16c/0x1f0 [ 367.087040][T10821] should_fail_ex+0x512/0x640 [ 367.087064][T10821] _copy_to_iter+0x29f/0x1710 [ 367.087083][T10821] ? __pfx__copy_to_iter+0x10/0x10 [ 367.087100][T10821] ? find_held_lock+0x2b/0x80 [ 367.087123][T10821] simple_copy_to_iter+0x46/0x90 [ 367.087141][T10821] __skb_datagram_iter+0x5af/0x900 [ 367.087157][T10821] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 367.087180][T10821] skb_copy_datagram_iter+0x40/0x50 [ 367.087198][T10821] tcp_recvmsg_locked+0x1af4/0x2910 [ 367.087226][T10821] ? __pfx_tcp_recvmsg_locked+0x10/0x10 [ 367.087247][T10821] ? __local_bh_enable_ip+0xa4/0x120 [ 367.087270][T10821] tcp_recvmsg+0x12f/0x680 [ 367.087289][T10821] ? __pfx_tcp_recvmsg+0x10/0x10 [ 367.087315][T10821] ? __pfx_tcp_recvmsg+0x10/0x10 [ 367.087330][T10821] inet_recvmsg+0x129/0x6a0 [ 367.087348][T10821] ? __fget_files+0x204/0x3c0 [ 367.087373][T10821] ? __pfx_inet_recvmsg+0x10/0x10 [ 367.087390][T10821] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 367.087409][T10821] sock_recvmsg+0x1b2/0x250 [ 367.087425][T10821] __sys_recvfrom+0x203/0x310 [ 367.087444][T10821] ? 0xffffffff81000000 [ 367.087455][T10821] ? __pfx___sys_recvfrom+0x10/0x10 [ 367.087490][T10821] ? ksys_write+0x1ac/0x250 [ 367.087510][T10821] ? __pfx_ksys_write+0x10/0x10 [ 367.087530][T10821] __x64_sys_recvfrom+0xe0/0x1c0 [ 367.087549][T10821] ? do_syscall_64+0x91/0xfa0 [ 367.087568][T10821] ? lockdep_hardirqs_on+0x7c/0x110 [ 367.087587][T10821] do_syscall_64+0xcd/0xfa0 [ 367.087608][T10821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.087622][T10821] RIP: 0033:0x7f3f4198eec9 [ 367.087632][T10821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 367.087646][T10821] RSP: 002b:00007f3f42825038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 367.087660][T10821] RAX: ffffffffffffffda RBX: 00007f3f41be6270 RCX: 00007f3f4198eec9 [ 367.087669][T10821] RDX: 000000800000000e RSI: 0000000000000000 RDI: 0000000000000003 [ 367.087677][T10821] RBP: 00007f3f42825090 R08: 0000000000000000 R09: ffffffff81000000 [ 367.087686][T10821] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 367.087694][T10821] R13: 00007f3f41be6308 R14: 00007f3f41be6270 R15: 00007ffeec6fafe8 [ 367.087707][T10821] ? 0xffffffff81000000 [ 367.087722][T10821] [ 367.589197][T10829] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.972' sets config #0 [ 368.067943][T10850] ptrace attach of "./syz-executor exec"[5825] was attempted by ""[10850] [ 370.586385][T10866] random: crng reseeded on system resumption [ 371.095278][T10887] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.982' sets config #0 [ 371.433860][T10897] ptrace attach of "./syz-executor exec"[7735] was attempted by ""[10897] [ 372.573997][T10937] random: crng reseeded on system resumption [ 372.930289][T10943] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.993' sets config #0 [ 373.609211][T10950] netlink: 28 bytes leftover after parsing attributes in process `syz.2.995'. [ 373.830279][T10950] veth1_macvtap: left promiscuous mode [ 375.076674][T10978] vhci_hcd: invalid port number 16 [ 375.081808][T10978] vhci_hcd: invalid port number 16 [ 375.146593][T10978] random: crng reseeded on system resumption [ 375.182054][T10978] FAULT_INJECTION: forcing a failure. [ 375.182054][T10978] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 375.256774][T10978] CPU: 0 UID: 0 PID: 10978 Comm: syz.0.1002 Not tainted syzkaller #0 PREEMPT(full) [ 375.256796][T10978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 375.256805][T10978] Call Trace: [ 375.256819][T10978] [ 375.256825][T10978] dump_stack_lvl+0x16c/0x1f0 [ 375.256852][T10978] should_fail_ex+0x512/0x640 [ 375.256878][T10978] should_fail_alloc_page+0xe7/0x130 [ 375.256894][T10978] prepare_alloc_pages+0x3c2/0x610 [ 375.256908][T10978] ? rcu_is_watching+0x12/0xc0 [ 375.256930][T10978] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 375.256954][T10978] ? stack_trace_save+0x8e/0xc0 [ 375.256974][T10978] ? __pfx_stack_trace_save+0x10/0x10 [ 375.256996][T10978] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 375.257017][T10978] ? kasan_save_stack+0x42/0x60 [ 375.257036][T10978] ? kasan_save_stack+0x33/0x60 [ 375.257057][T10978] ? do_dentry_open+0x982/0x1530 [ 375.257076][T10978] ? vfs_open+0x82/0x3f0 [ 375.257088][T10978] ? path_openat+0x1de4/0x2cb0 [ 375.257105][T10978] ? do_filp_open+0x20b/0x470 [ 375.257122][T10978] ? do_sys_openat2+0x11b/0x1d0 [ 375.257136][T10978] ? __x64_sys_openat+0x174/0x210 [ 375.257149][T10978] ? do_syscall_64+0xcd/0xfa0 [ 375.257168][T10978] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.257182][T10978] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 375.257200][T10978] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 375.257219][T10978] ? policy_nodemask+0xea/0x4e0 [ 375.257234][T10978] alloc_pages_mpol+0x1fb/0x550 [ 375.257249][T10978] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 375.257268][T10978] alloc_pages_noprof+0x131/0x390 [ 375.257282][T10978] get_zeroed_page_noprof+0x18/0xb0 [ 375.257303][T10978] get_image_page+0x18/0x190 [ 375.257323][T10978] alloc_rtree_node+0x3c/0xb0 [ 375.257342][T10978] memory_bm_create+0x519/0x810 [ 375.257368][T10978] create_basic_memory_bitmaps+0xbd/0x320 [ 375.257391][T10978] snapshot_open+0x235/0x2b0 [ 375.257403][T10978] ? __pfx_snapshot_open+0x10/0x10 [ 375.257417][T10978] misc_open+0x26d/0x450 [ 375.257438][T10978] ? __pfx_misc_open+0x10/0x10 [ 375.257458][T10978] chrdev_open+0x234/0x6a0 [ 375.257479][T10978] ? __pfx_apparmor_file_open+0x10/0x10 [ 375.257494][T10978] ? __pfx_chrdev_open+0x10/0x10 [ 375.257515][T10978] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 375.257538][T10978] do_dentry_open+0x982/0x1530 [ 375.257558][T10978] ? __pfx_chrdev_open+0x10/0x10 [ 375.257582][T10978] vfs_open+0x82/0x3f0 [ 375.257599][T10978] path_openat+0x1de4/0x2cb0 [ 375.257625][T10978] ? __pfx_path_openat+0x10/0x10 [ 375.257645][T10978] ? __lock_acquire+0xb8a/0x1c90 [ 375.257661][T10978] do_filp_open+0x20b/0x470 [ 375.257680][T10978] ? __pfx_do_filp_open+0x10/0x10 [ 375.257713][T10978] ? alloc_fd+0x471/0x7d0 [ 375.257736][T10978] do_sys_openat2+0x11b/0x1d0 [ 375.257751][T10978] ? __pfx_do_sys_openat2+0x10/0x10 [ 375.257773][T10978] __x64_sys_openat+0x174/0x210 [ 375.257789][T10978] ? __pfx___x64_sys_openat+0x10/0x10 [ 375.257822][T10978] do_syscall_64+0xcd/0xfa0 [ 375.257845][T10978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.257859][T10978] RIP: 0033:0x7f7aa0d8eec9 [ 375.257872][T10978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.257887][T10978] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 375.257901][T10978] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 375.257911][T10978] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 375.257920][T10978] RBP: 00007f7aa0e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 375.257929][T10978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.257938][T10978] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 375.257958][T10978] [ 375.629933][ C0] vkms_vblank_simulate: vblank timer overrun [ 375.893191][ T5835] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7 [ 376.796858][T10997] Process accounting resumed [ 377.037025][T11003] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 377.073951][T11003] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 377.392191][T11018] vhci_hcd: invalid port number 16 [ 377.407149][T11018] vhci_hcd: invalid port number 16 [ 377.422318][T11018] random: crng reseeded on system resumption [ 377.450218][T11018] FAULT_INJECTION: forcing a failure. [ 377.450218][T11018] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 377.489329][T11018] CPU: 0 UID: 0 PID: 11018 Comm: syz.0.1013 Not tainted syzkaller #0 PREEMPT(full) [ 377.489351][T11018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 377.489360][T11018] Call Trace: [ 377.489365][T11018] [ 377.489372][T11018] dump_stack_lvl+0x16c/0x1f0 [ 377.489398][T11018] should_fail_ex+0x512/0x640 [ 377.489423][T11018] should_fail_alloc_page+0xe7/0x130 [ 377.489439][T11018] prepare_alloc_pages+0x3c2/0x610 [ 377.489453][T11018] ? rcu_is_watching+0x12/0xc0 [ 377.489476][T11018] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 377.489502][T11018] ? stack_trace_save+0x8e/0xc0 [ 377.489522][T11018] ? __pfx_stack_trace_save+0x10/0x10 [ 377.489544][T11018] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 377.489565][T11018] ? kasan_save_stack+0x42/0x60 [ 377.489584][T11018] ? kasan_save_stack+0x33/0x60 [ 377.489605][T11018] ? do_dentry_open+0x982/0x1530 [ 377.489631][T11018] ? vfs_open+0x82/0x3f0 [ 377.489645][T11018] ? path_openat+0x1de4/0x2cb0 [ 377.489663][T11018] ? do_filp_open+0x20b/0x470 [ 377.489681][T11018] ? do_sys_openat2+0x11b/0x1d0 [ 377.489695][T11018] ? __x64_sys_openat+0x174/0x210 [ 377.489709][T11018] ? do_syscall_64+0xcd/0xfa0 [ 377.489728][T11018] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.489743][T11018] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 377.489761][T11018] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 377.489780][T11018] ? policy_nodemask+0xea/0x4e0 [ 377.489795][T11018] alloc_pages_mpol+0x1fb/0x550 [ 377.489810][T11018] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 377.489829][T11018] alloc_pages_noprof+0x131/0x390 [ 377.489843][T11018] get_zeroed_page_noprof+0x18/0xb0 [ 377.489868][T11018] get_image_page+0x18/0x190 [ 377.489887][T11018] alloc_rtree_node+0x3c/0xb0 [ 377.489907][T11018] memory_bm_create+0x519/0x810 [ 377.489934][T11018] create_basic_memory_bitmaps+0xbd/0x320 [ 377.489959][T11018] snapshot_open+0x235/0x2b0 [ 377.489971][T11018] ? __pfx_snapshot_open+0x10/0x10 [ 377.489985][T11018] misc_open+0x26d/0x450 [ 377.490006][T11018] ? __pfx_misc_open+0x10/0x10 [ 377.490026][T11018] chrdev_open+0x234/0x6a0 [ 377.490046][T11018] ? __pfx_apparmor_file_open+0x10/0x10 [ 377.490062][T11018] ? __pfx_chrdev_open+0x10/0x10 [ 377.490083][T11018] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 377.490106][T11018] do_dentry_open+0x982/0x1530 [ 377.490127][T11018] ? __pfx_chrdev_open+0x10/0x10 [ 377.490152][T11018] vfs_open+0x82/0x3f0 [ 377.490169][T11018] path_openat+0x1de4/0x2cb0 [ 377.490194][T11018] ? __pfx_path_openat+0x10/0x10 [ 377.490214][T11018] ? __lock_acquire+0xb8a/0x1c90 [ 377.490231][T11018] do_filp_open+0x20b/0x470 [ 377.490250][T11018] ? __pfx_do_filp_open+0x10/0x10 [ 377.490283][T11018] ? alloc_fd+0x471/0x7d0 [ 377.490307][T11018] do_sys_openat2+0x11b/0x1d0 [ 377.490322][T11018] ? __pfx_do_sys_openat2+0x10/0x10 [ 377.490344][T11018] __x64_sys_openat+0x174/0x210 [ 377.490360][T11018] ? __pfx___x64_sys_openat+0x10/0x10 [ 377.490383][T11018] do_syscall_64+0xcd/0xfa0 [ 377.490404][T11018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.490418][T11018] RIP: 0033:0x7f7aa0d8eec9 [ 377.490431][T11018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.490445][T11018] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 377.490460][T11018] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 377.490470][T11018] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 377.490480][T11018] RBP: 00007f7aa0e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 377.490489][T11018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.490497][T11018] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 377.490518][T11018] [ 378.685140][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.692057][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.996403][ T5835] Bluetooth: hci4: unexpected event 0x36 length: 123 > 7 [ 379.302090][T11043] random: crng reseeded on system resumption [ 380.169333][T11065] FAULT_INJECTION: forcing a failure. [ 380.169333][T11065] name failslab, interval 1, probability 0, space 0, times 0 [ 380.255823][T11065] CPU: 0 UID: 0 PID: 11065 Comm: syz.1.1024 Not tainted syzkaller #0 PREEMPT(full) [ 380.255848][T11065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 380.255858][T11065] Call Trace: [ 380.255863][T11065] [ 380.255869][T11065] dump_stack_lvl+0x16c/0x1f0 [ 380.255894][T11065] should_fail_ex+0x512/0x640 [ 380.255916][T11065] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 380.255937][T11065] should_failslab+0xc2/0x120 [ 380.255951][T11065] kmem_cache_alloc_noprof+0x75/0x6e0 [ 380.255969][T11065] ? security_file_alloc+0x34/0x2b0 [ 380.255991][T11065] ? security_file_alloc+0x34/0x2b0 [ 380.256007][T11065] security_file_alloc+0x34/0x2b0 [ 380.256024][T11065] init_file+0x93/0x4c0 [ 380.256039][T11065] alloc_empty_file+0x73/0x1e0 [ 380.256054][T11065] alloc_file_pseudo+0x13a/0x230 [ 380.256069][T11065] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 380.256085][T11065] ? do_raw_spin_unlock+0x172/0x230 [ 380.256105][T11065] __anon_inode_getfile+0xe8/0x280 [ 380.256128][T11065] anon_inode_getfile_fmode+0x37/0xa0 [ 380.256150][T11065] do_signalfd4+0x206/0x430 [ 380.256172][T11065] __x64_sys_signalfd4+0x14b/0x1d0 [ 380.256192][T11065] ? __pfx___x64_sys_signalfd4+0x10/0x10 [ 380.256219][T11065] do_syscall_64+0xcd/0xfa0 [ 380.256240][T11065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.256254][T11065] RIP: 0033:0x7f023a38eec9 [ 380.256266][T11065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 380.256280][T11065] RSP: 002b:00007f02385f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000121 [ 380.256293][T11065] RAX: ffffffffffffffda RBX: 00007f023a5e5fa0 RCX: 00007f023a38eec9 [ 380.256303][T11065] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 00000000ffffffff [ 380.256311][T11065] RBP: 00007f023a411f91 R08: 0000000000000000 R09: 0000000000000000 [ 380.256319][T11065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.256327][T11065] R13: 00007f023a5e6038 R14: 00007f023a5e5fa0 R15: 00007ffc9928e3c8 [ 380.256346][T11065] [ 380.492038][T11067] usb usb23: usbfs: interface 0 claimed by hub while 'syz.2.1025' sets config #0 [ 382.149821][T11092] random: crng reseeded on system resumption [ 382.738209][T11110] usb usb23: usbfs: interface 0 claimed by hub while 'syz.1.1034' sets config #0 [ 383.237108][T11108] FAULT_INJECTION: forcing a failure. [ 383.237108][T11108] name failslab, interval 1, probability 0, space 0, times 0 [ 383.259333][T11122] svc: failed to register nfsdv3 RPC service (errno 111). [ 383.290624][T11122] svc: failed to register nfsaclv3 RPC service (errno 111). [ 383.381648][T11108] CPU: 0 UID: 0 PID: 11108 Comm: syz.4.1033 Not tainted syzkaller #0 PREEMPT(full) [ 383.381671][T11108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 383.381680][T11108] Call Trace: [ 383.381686][T11108] [ 383.381692][T11108] dump_stack_lvl+0x16c/0x1f0 [ 383.381718][T11108] should_fail_ex+0x512/0x640 [ 383.381742][T11108] ? __kmalloc_cache_noprof+0x5f/0x780 [ 383.381762][T11108] should_failslab+0xc2/0x120 [ 383.381777][T11108] __kmalloc_cache_noprof+0x72/0x780 [ 383.381794][T11108] ? percpu_ref_init+0xec/0x410 [ 383.381815][T11108] ? percpu_ref_init+0xec/0x410 [ 383.381832][T11108] ? __pfx_blk_queue_usage_counter_release+0x10/0x10 [ 383.381847][T11108] percpu_ref_init+0xec/0x410 [ 383.381867][T11108] blk_alloc_queue+0x577/0x760 [ 383.381885][T11108] __blk_alloc_disk+0x9e/0x160 [ 383.381899][T11108] ? __pfx___blk_alloc_disk+0x10/0x10 [ 383.381922][T11108] ? lockdep_init_map_type+0x5c/0x280 [ 383.381938][T11108] ? lockdep_init_map_type+0x5c/0x280 [ 383.381955][T11108] dm_create+0x4c4/0x1160 [ 383.381976][T11108] dev_create+0x121/0x290 [ 383.381996][T11108] ? __pfx_dev_create+0x10/0x10 [ 383.382014][T11108] ? __might_fault+0x13b/0x190 [ 383.382038][T11108] ctl_ioctl+0x798/0xd70 [ 383.382058][T11108] ? __pfx_dev_create+0x10/0x10 [ 383.382077][T11108] ? __pfx_ctl_ioctl+0x10/0x10 [ 383.382115][T11108] ? __fget_files+0x20e/0x3c0 [ 383.382136][T11108] dm_ctl_ioctl+0x22/0x30 [ 383.382154][T11108] ? __pfx_dm_ctl_ioctl+0x10/0x10 [ 383.382173][T11108] __x64_sys_ioctl+0x18e/0x210 [ 383.382198][T11108] do_syscall_64+0xcd/0xfa0 [ 383.382220][T11108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.382236][T11108] RIP: 0033:0x7efef078eec9 [ 383.382248][T11108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.382262][T11108] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.382276][T11108] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 383.382286][T11108] RDX: 00002000000001c0 RSI: fffffffffffffd03 RDI: 0000000000000004 [ 383.382294][T11108] RBP: 00007efef0811f91 R08: 0000000000000000 R09: 0000000000000000 [ 383.382303][T11108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.382312][T11108] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 383.382331][T11108] [ 385.057411][ T5835] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 389.531659][T11230] usb usb15: usbfs: process 11230 (syz.1.1055) did not claim interface 0 before use [ 389.627594][T11232] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1055'. [ 389.679738][T11231] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1055'. [ 389.845749][T11235] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.1056' sets config #0 [ 389.895489][T11237] FAULT_INJECTION: forcing a failure. [ 389.895489][T11237] name failslab, interval 1, probability 0, space 0, times 0 [ 389.966128][T11237] CPU: 0 UID: 0 PID: 11237 Comm: syz.1.1057 Not tainted syzkaller #0 PREEMPT(full) [ 389.966151][T11237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 389.966160][T11237] Call Trace: [ 389.966165][T11237] [ 389.966171][T11237] dump_stack_lvl+0x16c/0x1f0 [ 389.966197][T11237] should_fail_ex+0x512/0x640 [ 389.966220][T11237] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 389.966241][T11237] should_failslab+0xc2/0x120 [ 389.966256][T11237] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 389.966275][T11237] ? alloc_inode+0x64/0x240 [ 389.966293][T11237] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 389.966309][T11237] ? alloc_inode+0x64/0x240 [ 389.966321][T11237] alloc_inode+0x64/0x240 [ 389.966335][T11237] new_inode+0x22/0x1c0 [ 389.966350][T11237] debugfs_create_dir+0xdd/0x5f0 [ 389.966369][T11237] ptp_open+0x334/0x550 [ 389.966392][T11237] ? __pfx_ptp_open+0x10/0x10 [ 389.966418][T11237] ? __pfx_ptp_open+0x10/0x10 [ 389.966438][T11237] posix_clock_open+0x17b/0x290 [ 389.966461][T11237] ? __pfx_posix_clock_open+0x10/0x10 [ 389.966481][T11237] chrdev_open+0x234/0x6a0 [ 389.966501][T11237] ? __pfx_apparmor_file_open+0x10/0x10 [ 389.966517][T11237] ? __pfx_chrdev_open+0x10/0x10 [ 389.966538][T11237] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 389.966561][T11237] do_dentry_open+0x982/0x1530 [ 389.966581][T11237] ? __pfx_chrdev_open+0x10/0x10 [ 389.966605][T11237] vfs_open+0x82/0x3f0 [ 389.966623][T11237] path_openat+0x1de4/0x2cb0 [ 389.966648][T11237] ? __pfx_path_openat+0x10/0x10 [ 389.966668][T11237] ? __lock_acquire+0xb8a/0x1c90 [ 389.966685][T11237] do_filp_open+0x20b/0x470 [ 389.966713][T11237] ? __pfx_do_filp_open+0x10/0x10 [ 389.966749][T11237] ? alloc_fd+0x471/0x7d0 [ 389.966772][T11237] do_sys_openat2+0x11b/0x1d0 [ 389.966788][T11237] ? __pfx_do_sys_openat2+0x10/0x10 [ 389.966812][T11237] __x64_sys_openat+0x174/0x210 [ 389.966829][T11237] ? __pfx___x64_sys_openat+0x10/0x10 [ 389.966853][T11237] do_syscall_64+0xcd/0xfa0 [ 389.966874][T11237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 389.966888][T11237] RIP: 0033:0x7f023a38eec9 [ 389.966901][T11237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 389.966915][T11237] RSP: 002b:00007f02385f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 389.966929][T11237] RAX: ffffffffffffffda RBX: 00007f023a5e5fa0 RCX: 00007f023a38eec9 [ 389.966939][T11237] RDX: 0000000000003f00 RSI: 0000200000005280 RDI: ffffffffffffff9c [ 389.966948][T11237] RBP: 00007f023a411f91 R08: 0000000000000000 R09: 0000000000000000 [ 389.966957][T11237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 389.966966][T11237] R13: 00007f023a5e6038 R14: 00007f023a5e5fa0 R15: 00007ffc9928e3c8 [ 389.966986][T11237] [ 389.966993][T11237] debugfs: out of free dentries, can not create directory '0xffff888034064000' [ 390.446619][T11244] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1058'. [ 391.847349][T11274] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.1068' sets config #0 [ 392.149316][T11281] vhci_hcd: invalid port number 16 [ 392.195375][T11281] vhci_hcd: invalid port number 16 [ 392.236142][T11281] random: crng reseeded on system resumption [ 392.244654][T11281] FAULT_INJECTION: forcing a failure. [ 392.244654][T11281] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 392.389389][T11281] CPU: 0 UID: 0 PID: 11281 Comm: syz.4.1070 Not tainted syzkaller #0 PREEMPT(full) [ 392.389411][T11281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 392.389420][T11281] Call Trace: [ 392.389426][T11281] [ 392.389432][T11281] dump_stack_lvl+0x16c/0x1f0 [ 392.389457][T11281] should_fail_ex+0x512/0x640 [ 392.389482][T11281] should_fail_alloc_page+0xe7/0x130 [ 392.389516][T11281] prepare_alloc_pages+0x3c2/0x610 [ 392.389531][T11281] ? rcu_is_watching+0x12/0xc0 [ 392.389563][T11281] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 392.389590][T11281] ? stack_trace_save+0x8e/0xc0 [ 392.389611][T11281] ? __pfx_stack_trace_save+0x10/0x10 [ 392.389634][T11281] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 392.389655][T11281] ? kasan_save_stack+0x42/0x60 [ 392.389674][T11281] ? kasan_save_stack+0x33/0x60 [ 392.389696][T11281] ? do_dentry_open+0x982/0x1530 [ 392.389715][T11281] ? vfs_open+0x82/0x3f0 [ 392.389727][T11281] ? path_openat+0x1de4/0x2cb0 [ 392.389745][T11281] ? do_filp_open+0x20b/0x470 [ 392.389762][T11281] ? do_sys_openat2+0x11b/0x1d0 [ 392.389775][T11281] ? __x64_sys_openat+0x174/0x210 [ 392.389789][T11281] ? do_syscall_64+0xcd/0xfa0 [ 392.389809][T11281] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.389824][T11281] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 392.389841][T11281] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 392.389860][T11281] ? policy_nodemask+0xea/0x4e0 [ 392.389875][T11281] alloc_pages_mpol+0x1fb/0x550 [ 392.389890][T11281] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 392.389909][T11281] alloc_pages_noprof+0x131/0x390 [ 392.389924][T11281] get_zeroed_page_noprof+0x18/0xb0 [ 392.389946][T11281] get_image_page+0x18/0x190 [ 392.389966][T11281] alloc_rtree_node+0x3c/0xb0 [ 392.389985][T11281] memory_bm_create+0x519/0x810 [ 392.390011][T11281] create_basic_memory_bitmaps+0xbd/0x320 [ 392.390034][T11281] snapshot_open+0x235/0x2b0 [ 392.390046][T11281] ? __pfx_snapshot_open+0x10/0x10 [ 392.390059][T11281] misc_open+0x26d/0x450 [ 392.390081][T11281] ? __pfx_misc_open+0x10/0x10 [ 392.390101][T11281] chrdev_open+0x234/0x6a0 [ 392.390122][T11281] ? __pfx_apparmor_file_open+0x10/0x10 [ 392.390137][T11281] ? __pfx_chrdev_open+0x10/0x10 [ 392.390159][T11281] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 392.390182][T11281] do_dentry_open+0x982/0x1530 [ 392.390202][T11281] ? __pfx_chrdev_open+0x10/0x10 [ 392.390226][T11281] vfs_open+0x82/0x3f0 [ 392.390242][T11281] path_openat+0x1de4/0x2cb0 [ 392.390268][T11281] ? __pfx_path_openat+0x10/0x10 [ 392.390288][T11281] ? __lock_acquire+0xb8a/0x1c90 [ 392.390304][T11281] do_filp_open+0x20b/0x470 [ 392.390323][T11281] ? __pfx_do_filp_open+0x10/0x10 [ 392.390356][T11281] ? alloc_fd+0x471/0x7d0 [ 392.390379][T11281] do_sys_openat2+0x11b/0x1d0 [ 392.390394][T11281] ? __pfx_do_sys_openat2+0x10/0x10 [ 392.390410][T11281] ? __pfx___might_resched+0x10/0x10 [ 392.390434][T11281] __x64_sys_openat+0x174/0x210 [ 392.390449][T11281] ? __pfx___x64_sys_openat+0x10/0x10 [ 392.390472][T11281] do_syscall_64+0xcd/0xfa0 [ 392.390493][T11281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 392.390507][T11281] RIP: 0033:0x7efef078eec9 [ 392.390520][T11281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 392.390534][T11281] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 392.390555][T11281] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 392.390565][T11281] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 392.390575][T11281] RBP: 00007efef0811f91 R08: 0000000000000000 R09: 0000000000000000 [ 392.390584][T11281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 392.390593][T11281] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 392.390614][T11281] [ 392.873870][T11291] random: crng reseeded on system resumption [ 393.986995][T11318] usb usb23: usbfs: interface 0 claimed by hub while 'syz.4.1079' sets config #0 [ 395.514301][T11335] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1078'. [ 395.622241][T11328] random: crng reseeded on system resumption [ 396.842406][ T5835] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 396.954843][T11355] FAULT_INJECTION: forcing a failure. [ 396.954843][T11355] name failslab, interval 1, probability 0, space 0, times 0 [ 396.954871][T11355] CPU: 0 UID: 0 PID: 11355 Comm: syz.4.1087 Not tainted syzkaller #0 PREEMPT(full) [ 396.954889][T11355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 396.954898][T11355] Call Trace: [ 396.954903][T11355] [ 396.954909][T11355] dump_stack_lvl+0x16c/0x1f0 [ 396.954934][T11355] should_fail_ex+0x512/0x640 [ 396.954959][T11355] should_failslab+0xc2/0x120 [ 396.954975][T11355] __kmalloc_cache_noprof+0x72/0x780 [ 396.954992][T11355] ? __task_pid_nr_ns+0x1f5/0x500 [ 396.955007][T11355] ? proc_self_get_link+0x1a9/0x230 [ 396.955032][T11355] ? proc_self_get_link+0x1a9/0x230 [ 396.955053][T11355] proc_self_get_link+0x1a9/0x230 [ 396.955075][T11355] ? __pfx_proc_self_get_link+0x10/0x10 [ 396.955096][T11355] step_into+0x189e/0x21a0 [ 396.955118][T11355] ? __pfx_step_into+0x10/0x10 [ 396.955138][T11355] ? lookup_fast+0x156/0x610 [ 396.955156][T11355] walk_component+0xfc/0x5b0 [ 396.955175][T11355] link_path_walk+0x627/0xe20 [ 396.955198][T11355] path_openat+0x1b0/0x2cb0 [ 396.955223][T11355] ? __pfx_path_openat+0x10/0x10 [ 396.955243][T11355] ? __lock_acquire+0xb8a/0x1c90 [ 396.955260][T11355] do_filp_open+0x20b/0x470 [ 396.955279][T11355] ? __pfx_do_filp_open+0x10/0x10 [ 396.955312][T11355] ? alloc_fd+0x471/0x7d0 [ 396.955335][T11355] do_sys_openat2+0x11b/0x1d0 [ 396.955351][T11355] ? __pfx_do_sys_openat2+0x10/0x10 [ 396.955373][T11355] __x64_sys_openat+0x174/0x210 [ 396.955389][T11355] ? __pfx___x64_sys_openat+0x10/0x10 [ 396.955412][T11355] do_syscall_64+0xcd/0xfa0 [ 396.955434][T11355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.955448][T11355] RIP: 0033:0x7efef078eec9 [ 396.955460][T11355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.955474][T11355] RSP: 002b:00007efef15f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 396.955487][T11355] RAX: ffffffffffffffda RBX: 00007efef09e5fa0 RCX: 00007efef078eec9 [ 396.955505][T11355] RDX: 0000000000109480 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 396.955514][T11355] RBP: 00007efef0811f91 R08: 0000000000000000 R09: 0000000000000000 [ 396.955522][T11355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.955531][T11355] R13: 00007efef09e6038 R14: 00007efef09e5fa0 R15: 00007ffee33c19e8 [ 396.955551][T11355] [ 397.538268][T11365] usb usb23: usbfs: interface 0 claimed by hub while 'syz.0.1089' sets config #0 [ 397.709997][T11368] random: crng reseeded on system resumption [ 397.718923][T11368] FAULT_INJECTION: forcing a failure. [ 397.718923][T11368] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 397.718951][T11368] CPU: 0 UID: 0 PID: 11368 Comm: syz.0.1090 Not tainted syzkaller #0 PREEMPT(full) [ 397.718969][T11368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 397.718978][T11368] Call Trace: [ 397.718983][T11368] [ 397.718989][T11368] dump_stack_lvl+0x16c/0x1f0 [ 397.719014][T11368] should_fail_ex+0x512/0x640 [ 397.719038][T11368] should_fail_alloc_page+0xe7/0x130 [ 397.719055][T11368] prepare_alloc_pages+0x3c2/0x610 [ 397.719068][T11368] ? rcu_is_watching+0x12/0xc0 [ 397.719090][T11368] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 397.719119][T11368] ? stack_trace_save+0x8e/0xc0 [ 397.719140][T11368] ? __pfx_stack_trace_save+0x10/0x10 [ 397.719162][T11368] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 397.719183][T11368] ? kasan_save_stack+0x42/0x60 [ 397.719202][T11368] ? kasan_save_stack+0x33/0x60 [ 397.719225][T11368] ? do_dentry_open+0x982/0x1530 [ 397.719243][T11368] ? vfs_open+0x82/0x3f0 [ 397.719256][T11368] ? path_openat+0x1de4/0x2cb0 [ 397.719274][T11368] ? do_filp_open+0x20b/0x470 [ 397.719291][T11368] ? do_sys_openat2+0x11b/0x1d0 [ 397.719304][T11368] ? __x64_sys_openat+0x174/0x210 [ 397.719318][T11368] ? do_syscall_64+0xcd/0xfa0 [ 397.719336][T11368] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.719351][T11368] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 397.719369][T11368] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 397.719388][T11368] ? policy_nodemask+0xea/0x4e0 [ 397.719403][T11368] alloc_pages_mpol+0x1fb/0x550 [ 397.719417][T11368] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 397.719437][T11368] alloc_pages_noprof+0x131/0x390 [ 397.719457][T11368] get_zeroed_page_noprof+0x18/0xb0 [ 397.719480][T11368] get_image_page+0x18/0x190 [ 397.719500][T11368] alloc_rtree_node+0x3c/0xb0 [ 397.719519][T11368] memory_bm_create+0x519/0x810 [ 397.719547][T11368] create_basic_memory_bitmaps+0x10b/0x320 [ 397.719571][T11368] snapshot_open+0x235/0x2b0 [ 397.719583][T11368] ? __pfx_snapshot_open+0x10/0x10 [ 397.719596][T11368] misc_open+0x26d/0x450 [ 397.719617][T11368] ? __pfx_misc_open+0x10/0x10 [ 397.719637][T11368] chrdev_open+0x234/0x6a0 [ 397.719657][T11368] ? __pfx_apparmor_file_open+0x10/0x10 [ 397.719673][T11368] ? __pfx_chrdev_open+0x10/0x10 [ 397.719694][T11368] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 397.719717][T11368] do_dentry_open+0x982/0x1530 [ 397.719737][T11368] ? __pfx_chrdev_open+0x10/0x10 [ 397.719761][T11368] vfs_open+0x82/0x3f0 [ 397.719778][T11368] path_openat+0x1de4/0x2cb0 [ 397.719803][T11368] ? __pfx_path_openat+0x10/0x10 [ 397.719824][T11368] ? __lock_acquire+0xb8a/0x1c90 [ 397.719840][T11368] do_filp_open+0x20b/0x470 [ 397.719863][T11368] ? __pfx_do_filp_open+0x10/0x10 [ 397.719896][T11368] ? alloc_fd+0x471/0x7d0 [ 397.719919][T11368] do_sys_openat2+0x11b/0x1d0 [ 397.719935][T11368] ? __pfx_do_sys_openat2+0x10/0x10 [ 397.719958][T11368] __x64_sys_openat+0x174/0x210 [ 397.719975][T11368] ? __pfx___x64_sys_openat+0x10/0x10 [ 397.719998][T11368] do_syscall_64+0xcd/0xfa0 [ 397.720021][T11368] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 397.720034][T11368] RIP: 0033:0x7f7aa0d8eec9 [ 397.720047][T11368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 397.720061][T11368] RSP: 002b:00007f7aa1c11038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 397.720075][T11368] RAX: ffffffffffffffda RBX: 00007f7aa0fe5fa0 RCX: 00007f7aa0d8eec9 [ 397.720084][T11368] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 397.720093][T11368] RBP: 00007f7aa0e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 397.720102][T11368] R10: 0000000000000500 R11: 0000000000000246 R12: 0000000000000000 [ 397.720111][T11368] R13: 00007f7aa0fe6038 R14: 00007f7aa0fe5fa0 R15: 00007fff3aee3ce8 [ 397.720137][T11368] [ 397.970821][ C0] vkms_vblank_simulate: vblank timer overrun [ 398.388469][T11377] FAULT_INJECTION: forcing a failure. [ 398.388469][T11377] name failslab, interval 1, probability 0, space 0, times 0 [ 398.388520][T11377] CPU: 0 UID: 0 PID: 11377 Comm: syz.1.1093 Not tainted syzkaller #0 PREEMPT(full) [ 398.388538][T11377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 398.388546][T11377] Call Trace: [ 398.388551][T11377] [ 398.388556][T11377] dump_stack_lvl+0x16c/0x1f0 [ 398.388581][T11377] should_fail_ex+0x512/0x640 [ 398.388605][T11377] should_failslab+0xc2/0x120 [ 398.388620][T11377] __kmalloc_cache_noprof+0x72/0x780 [ 398.388636][T11377] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 398.388654][T11377] ? tipc_nametbl_insert_publ+0x700/0x1720 [ 398.388680][T11377] ? tipc_nametbl_insert_publ+0x700/0x1720 [ 398.388701][T11377] tipc_nametbl_insert_publ+0x700/0x1720 [ 398.388725][T11377] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 398.388740][T11377] ? net_generic+0xea/0x2a0 [ 398.388764][T11377] tipc_nametbl_publish+0x137/0x280 [ 398.388789][T11377] tipc_sk_publish+0x1d8/0x430 [ 398.388803][T11377] ? __pfx_tipc_sk_publish+0x10/0x10 [ 398.388818][T11377] ? __local_bh_enable_ip+0xa4/0x120 [ 398.388841][T11377] tipc_sk_bind+0x16f/0x380 [ 398.388856][T11377] tipc_bind+0x190/0x2a0 [ 398.388871][T11377] __sys_bind+0x1a7/0x260 [ 398.388888][T11377] ? __pfx___sys_bind+0x10/0x10 [ 398.388911][T11377] ? xfd_validate_state+0x61/0x180 [ 398.388925][T11377] ? __pfx_do_writev+0x10/0x10 [ 398.388946][T11377] __x64_sys_bind+0x72/0xb0 [ 398.388962][T11377] ? lockdep_hardirqs_on+0x7c/0x110 [ 398.388982][T11377] do_syscall_64+0xcd/0xfa0 [ 398.389003][T11377] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.389017][T11377] RIP: 0033:0x7f023a38eec9 [ 398.389029][T11377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.389042][T11377] RSP: 002b:00007f02385f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 398.389056][T11377] RAX: ffffffffffffffda RBX: 00007f023a5e5fa0 RCX: 00007f023a38eec9 [ 398.389083][T11377] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000008 [ 398.389098][T11377] RBP: 00007f023a411f91 R08: 0000000000000000 R09: 0000000000000000 [ 398.389107][T11377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 398.389115][T11377] R13: 00007f023a5e6038 R14: 00007f023a5e5fa0 R15: 00007ffc9928e3c8 [ 398.389135][T11377] [ 398.389141][T11377] tipc: Failed to bind to 65,0,0 [ 399.448846][T11371] tty tty12: ldisc open failed (-12), clearing slot 11 [ 399.458756][T11377] ttyS ttyS2: ldisc open failed (-12), clearing slot 2 [ 399.887509][T11412] usb usb23: usbfs: interface 0 claimed by hub while 'syz.2.1099' sets config #0 [ 400.251419][T11439] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1101'. [ 401.125002][T11468] Trying to write to read-only block-device ram2 [ 401.324651][T11527] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1108'. [ 401.481873][T11541] vhci_hcd: invalid port number 16 [ 401.503472][T11541] vhci_hcd: invalid port number 16 [ 401.535479][T11549] random: crng reseeded on system resumption [ 404.427564][ T30] audit: type=1804 audit(4294967319.700:2): pid=11687 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1122" name="/newroot/194/file0" dev="tmpfs" ino=1043 res=1 errno=0 [ 404.563873][ T30] audit: type=1804 audit(4294967319.730:3): pid=11687 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1122" name="/newroot/194/file0" dev="tmpfs" ino=1043 res=1 errno=0 [ 405.257360][T11763] 0x000200000001-0xa29656a63616329 : "" [ 405.299688][T11763] mtd: partition "" is out of reach -- disabled [ 405.352074][T11763] FAULT_INJECTION: forcing a failure. [ 405.352074][T11763] name failslab, interval 1, probability 0, space 0, times 0 [ 405.445216][T11763] CPU: 0 UID: 0 PID: 11763 Comm: syz.2.1127 Not tainted syzkaller #0 PREEMPT(full) [ 405.445238][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 405.445247][T11763] Call Trace: [ 405.445252][T11763] [ 405.445257][T11763] dump_stack_lvl+0x16c/0x1f0 [ 405.445282][T11763] should_fail_ex+0x512/0x640 [ 405.445304][T11763] ? __kmalloc_cache_noprof+0x5f/0x780 [ 405.445323][T11763] should_failslab+0xc2/0x120 [ 405.445337][T11763] __kmalloc_cache_noprof+0x72/0x780 [ 405.445354][T11763] ? device_add+0xccc/0x1aa0 [ 405.445367][T11763] ? __pfx___debug_object_init+0x10/0x10 [ 405.445388][T11763] ? device_add+0xccc/0x1aa0 [ 405.445399][T11763] device_add+0xccc/0x1aa0 [ 405.445412][T11763] ? lockdep_init_map_type+0x5c/0x280 [ 405.445428][T11763] ? __pfx_device_add+0x10/0x10 [ 405.445439][T11763] ? lockdep_init_map_type+0x5c/0x280 [ 405.445454][T11763] ? __init_waitqueue_head+0xca/0x150 [ 405.445476][T11763] add_mtd_device+0x999/0x1850 [ 405.445502][T11763] ? __pfx_add_mtd_device+0x10/0x10 [ 405.445528][T11763] mtd_add_partition+0x30c/0x670 [ 405.445544][T11763] ? __pfx_mtd_add_partition+0x10/0x10 [ 405.445557][T11763] ? __might_fault+0xe3/0x190 [ 405.445578][T11763] ? __might_fault+0xe3/0x190 [ 405.445609][T11763] mtdchar_blkpg_ioctl+0x20b/0x250 [ 405.445624][T11763] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 405.445656][T11763] mtdchar_ioctl+0xbc4/0x2090 [ 405.445675][T11763] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 405.445692][T11763] ? __mutex_trylock_common+0xe9/0x250 [ 405.445707][T11763] ? __pfx___mutex_trylock_common+0x10/0x10 [ 405.445725][T11763] ? rcu_is_watching+0x12/0xc0 [ 405.445746][T11763] ? __mutex_lock+0x1c5/0x1060 [ 405.445767][T11763] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 405.445786][T11763] ? __pfx___mutex_lock+0x10/0x10 [ 405.445808][T11763] ? do_raw_spin_unlock+0x172/0x230 [ 405.445834][T11763] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 405.445849][T11763] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 405.445865][T11763] __x64_sys_ioctl+0x18e/0x210 [ 405.445882][T11763] do_syscall_64+0xcd/0xfa0 [ 405.445904][T11763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 405.445918][T11763] RIP: 0033:0x7f3f4198eec9 [ 405.445930][T11763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 405.445943][T11763] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 405.445957][T11763] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 405.445966][T11763] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000001 [ 405.445975][T11763] RBP: 00007f3f42888090 R08: 0000000000000000 R09: 0000000000000000 [ 405.445983][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 405.445991][T11763] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 405.446010][T11763] [ 406.019967][T11708] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 406.205247][T11773] random: crng reseeded on system resumption [ 406.651403][T11763] ------------[ cut here ]------------ [ 406.656928][T11763] WARNING: CPU: 0 PID: 11763 at drivers/mtd/mtdpart.c:37 release_mtd_partition+0x71/0x90 [ 406.666849][T11763] Modules linked in: [ 406.670885][T11763] CPU: 0 UID: 0 PID: 11763 Comm: syz.2.1127 Not tainted syzkaller #0 PREEMPT(full) [ 406.680424][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 406.690530][T11763] RIP: 0010:release_mtd_partition+0x71/0x90 [ 406.696544][T11763] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 8f 3c d7 fb 48 89 df 5b 5d e9 85 3c d7 fb e8 80 1b 7b fb 90 <0f> 0b 90 eb c2 e8 35 ad e2 fb eb db 48 89 ef e8 2b ad e2 fb eb a5 [ 406.716250][T11763] RSP: 0018:ffffc9000b7b7830 EFLAGS: 00010293 [ 406.722304][T11763] RAX: 0000000000000000 RBX: ffff888028465000 RCX: ffffffff8b5e1bfd [ 406.730417][T11763] RDX: ffff88802aca5ac0 RSI: ffffffff86418ce0 RDI: ffff888028465000 [ 406.739182][T11763] RBP: ffff888028465650 R08: 0000000000000001 R09: 0000000000000001 [ 406.747739][T11763] R10: 0000000000000012 R11: 0000000000000001 R12: 0000000000000000 [ 406.755700][T11763] R13: dffffc0000000000 R14: ffff888028fd3460 R15: 0000000000000000 [ 406.763709][T11763] FS: 00007f3f428886c0(0000) GS:ffff8881249e1000(0000) knlGS:0000000000000000 [ 406.772685][T11763] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 406.779433][T11763] CR2: 000055555bef75c8 CR3: 0000000024c46000 CR4: 00000000003526f0 [ 406.787480][T11763] Call Trace: [ 406.790747][T11763] [ 406.793672][T11763] mtd_release+0xa0/0xd0 [ 406.797948][T11763] ? __pfx_mtd_release+0x10/0x10 [ 406.802870][T11763] device_release+0xa4/0x240 [ 406.807475][T11763] kobject_put+0x1e7/0x5a0 [ 406.811887][T11763] put_device+0x1f/0x30 [ 406.816063][T11763] add_mtd_device+0xc47/0x1850 [ 406.820826][T11763] ? __pfx_add_mtd_device+0x10/0x10 [ 406.826080][T11763] mtd_add_partition+0x30c/0x670 [ 406.831014][T11763] ? __pfx_mtd_add_partition+0x10/0x10 [ 406.836514][T11763] ? __might_fault+0xe3/0x190 [ 406.841912][T11763] ? __might_fault+0xe3/0x190 [ 406.847145][T11763] mtdchar_blkpg_ioctl+0x20b/0x250 [ 406.852251][T11763] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 406.857941][T11763] mtdchar_ioctl+0xbc4/0x2090 [ 406.862608][T11763] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 406.867750][T11763] ? __mutex_trylock_common+0xe9/0x250 [ 406.873270][T11763] ? __pfx___mutex_trylock_common+0x10/0x10 [ 406.879189][T11763] ? rcu_is_watching+0x12/0xc0 [ 406.883948][T11763] ? __mutex_lock+0x1c5/0x1060 [ 406.888731][T11763] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 406.893744][T11763] ? __pfx___mutex_lock+0x10/0x10 [ 406.898793][T11763] ? do_raw_spin_unlock+0x172/0x230 [ 406.903990][T11763] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 406.909209][T11763] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 406.915099][T11763] __x64_sys_ioctl+0x18e/0x210 [ 406.919890][T11763] do_syscall_64+0xcd/0xfa0 [ 406.924389][T11763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.930442][T11763] RIP: 0033:0x7f3f4198eec9 [ 406.934851][T11763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 406.955266][T11763] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 406.964506][T11763] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 406.972518][T11763] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000001 [ 406.980508][T11763] RBP: 00007f3f42888090 R08: 0000000000000000 R09: 0000000000000000 [ 406.988508][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 406.996507][T11763] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 407.004474][T11763] [ 407.007509][T11763] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 407.014774][T11763] CPU: 0 UID: 0 PID: 11763 Comm: syz.2.1127 Not tainted syzkaller #0 PREEMPT(full) [ 407.024121][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 407.034155][T11763] Call Trace: [ 407.037454][T11763] [ 407.040367][T11763] dump_stack_lvl+0x3d/0x1f0 [ 407.044947][T11763] vpanic+0x640/0x6f0 [ 407.048999][T11763] ? release_mtd_partition+0x71/0x90 [ 407.054265][T11763] panic+0xca/0xd0 [ 407.057967][T11763] ? __pfx_panic+0x10/0x10 [ 407.062370][T11763] ? check_panic_on_warn+0x1f/0xb0 [ 407.067467][T11763] check_panic_on_warn+0xab/0xb0 [ 407.072385][T11763] __warn+0xf6/0x3c0 [ 407.076263][T11763] ? release_mtd_partition+0x71/0x90 [ 407.081531][T11763] report_bug+0x3c3/0x580 [ 407.085852][T11763] ? release_mtd_partition+0x71/0x90 [ 407.091120][T11763] handle_bug+0x184/0x210 [ 407.095433][T11763] exc_invalid_op+0x17/0x50 [ 407.099917][T11763] asm_exc_invalid_op+0x1a/0x20 [ 407.104748][T11763] RIP: 0010:release_mtd_partition+0x71/0x90 [ 407.110622][T11763] Code: 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 1e 48 8b 7b 38 e8 8f 3c d7 fb 48 89 df 5b 5d e9 85 3c d7 fb e8 80 1b 7b fb 90 <0f> 0b 90 eb c2 e8 35 ad e2 fb eb db 48 89 ef e8 2b ad e2 fb eb a5 [ 407.130214][T11763] RSP: 0018:ffffc9000b7b7830 EFLAGS: 00010293 [ 407.136269][T11763] RAX: 0000000000000000 RBX: ffff888028465000 RCX: ffffffff8b5e1bfd [ 407.144221][T11763] RDX: ffff88802aca5ac0 RSI: ffffffff86418ce0 RDI: ffff888028465000 [ 407.152174][T11763] RBP: ffff888028465650 R08: 0000000000000001 R09: 0000000000000001 [ 407.160127][T11763] R10: 0000000000000012 R11: 0000000000000001 R12: 0000000000000000 [ 407.168079][T11763] R13: dffffc0000000000 R14: ffff888028fd3460 R15: 0000000000000000 [ 407.176037][T11763] ? delete_node+0x40d/0x8d0 [ 407.180612][T11763] ? release_mtd_partition+0x70/0x90 [ 407.185882][T11763] mtd_release+0xa0/0xd0 [ 407.190104][T11763] ? __pfx_mtd_release+0x10/0x10 [ 407.195024][T11763] device_release+0xa4/0x240 [ 407.199598][T11763] kobject_put+0x1e7/0x5a0 [ 407.204005][T11763] put_device+0x1f/0x30 [ 407.208139][T11763] add_mtd_device+0xc47/0x1850 [ 407.212892][T11763] ? __pfx_add_mtd_device+0x10/0x10 [ 407.218081][T11763] mtd_add_partition+0x30c/0x670 [ 407.222999][T11763] ? __pfx_mtd_add_partition+0x10/0x10 [ 407.228442][T11763] ? __might_fault+0xe3/0x190 [ 407.233102][T11763] ? __might_fault+0xe3/0x190 [ 407.237767][T11763] mtdchar_blkpg_ioctl+0x20b/0x250 [ 407.242861][T11763] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 407.248490][T11763] mtdchar_ioctl+0xbc4/0x2090 [ 407.253155][T11763] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 407.258252][T11763] ? __mutex_trylock_common+0xe9/0x250 [ 407.263692][T11763] ? __pfx___mutex_trylock_common+0x10/0x10 [ 407.269570][T11763] ? rcu_is_watching+0x12/0xc0 [ 407.274320][T11763] ? __mutex_lock+0x1c5/0x1060 [ 407.279069][T11763] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 407.284076][T11763] ? __pfx___mutex_lock+0x10/0x10 [ 407.289089][T11763] ? do_raw_spin_unlock+0x172/0x230 [ 407.294283][T11763] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 407.299463][T11763] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 407.305343][T11763] __x64_sys_ioctl+0x18e/0x210 [ 407.310092][T11763] do_syscall_64+0xcd/0xfa0 [ 407.314584][T11763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.320459][T11763] RIP: 0033:0x7f3f4198eec9 [ 407.324857][T11763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 407.344446][T11763] RSP: 002b:00007f3f42888038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 407.352843][T11763] RAX: ffffffffffffffda RBX: 00007f3f41be5fa0 RCX: 00007f3f4198eec9 [ 407.360796][T11763] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000001 [ 407.368748][T11763] RBP: 00007f3f42888090 R08: 0000000000000000 R09: 0000000000000000 [ 407.376701][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 407.384652][T11763] R13: 00007f3f41be6038 R14: 00007f3f41be5fa0 R15: 00007ffeec6fafe8 [ 407.392616][T11763] [ 407.395676][T11763] Kernel Offset: disabled [ 407.400001][T11763] Rebooting in 86400 seconds..