last executing test programs: 20m41.536572042s ago: executing program 3 (id=1086): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) sendfile$auto(r0, r0, 0x0, 0xe) (fail_nth: 4) 20m40.867813963s ago: executing program 3 (id=1088): openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f00000000c0), 0x8c02, 0x0) r0 = waitid$auto(0x2, 0xffffffffffffffff, &(0x7f0000000380)={@_si_pad}, 0x100, &(0x7f0000000400)={{0xfffffffffffffbff, 0x100000001}, {0x0, 0x2}, 0x101, 0x200, 0xfffffffffffffaaa, 0x6, 0x8000, 0x4, 0x4, 0x81, 0x4a8, 0x7, 0x9, 0x61, 0x3, 0x4}) prctl$auto_PR_SET_MM_ENV_END(0x6000, 0xb, r0, 0xd8a0, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/pci_bus/0000:00/cpuaffinity\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/179, 0xb3) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) chmod$auto(&(0x7f0000000280)='./file0\x00', 0x79bc) prctl$auto(0x2f, 0x3, 0x0, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r4) sendmsg$auto_NFSD_CMD_VERSION_SET(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010025bd7000fbdbdf250c0000000400018004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x24000001}, 0x200040d0) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c097}, 0x800) r7 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f00000002c0)={0x2, 0x80, 0xffff, 0x5, &(0x7f0000000240)=' \f', 0xc694, 0x3, 0x80005, @stream_id=0x7, 0x2004b, 0xc, 0x0}) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000000000)="351ff6218163cce8505bf40fca856149f185354f86f6766b73aeb066b2a65290e689cb5a9cd45a63766508ae821ea42a555887244ce3a5676c4a8f62c1dadfd6efc8b8dd0eae0c03292f536b2b5042c923", 0x51) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="52010000", @ANYBLOB="180027"], 0x1ac}}, 0x6048044) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0xb}, 0x3, 0x0) socket(0x11, 0x3, 0x2) getpeername$auto(0x3, 0x0, 0x0) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r1) sendmsg$auto_NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x1c, r8, 0x10, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_TIMEOUT={0x8, 0x110, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10000851}, 0x10) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nbd6\x00', 0x82000, 0x0) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/take_snapshot\x00', 0x8000, 0x0) sendmsg$auto_TIPC_NL_BEARER_DISABLE(r1, &(0x7f0000002740)={0x0, 0x0, &(0x7f0000002700)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="012429bd7000fddbdf3404000000"], 0x14}, 0x1, 0x0, 0x0, 0x2400c001}, 0x8000) 20m40.577806967s ago: executing program 3 (id=1089): openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000540), 0x40102, 0x0) r0 = socket(0x29, 0x2, 0xfffffffe) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x48000) recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1) 20m40.05399393s ago: executing program 3 (id=1092): mmap$auto(0x0, 0x20008, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x11, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto_EROFS_MOUNT_DAX_NEVER(r0, 0x4, &(0x7f0000000100)='\x00', &(0x7f0000000140), 0xffffff9c) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) r1 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000140), 0x40200, 0x0) ioctl$auto_RNDADDENTROPY(r1, 0x40085203, 0x0) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) write$auto(r3, 0x0, 0x6) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x181200, 0x0) 20m39.307090834s ago: executing program 3 (id=1094): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) prctl$auto(0x23, 0x800000000006, 0x80000001, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r0 = getpid() unshare$auto(0x40000080) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x4, 0xffb, 0xecb8, 0x3, 0x354e) prctl$auto(0x1b, 0x6, 0x0, 0x0, 0x0) prctl$auto_PR_SET_VMA(0x53564d41, 0x8, 0xfffffffffffffffc, 0x1, 0x4) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8, 0x7, 0x7, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x200000000000008, 0xdf, 0x9b72, 0x2, 0x7fff) openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim5/ports/3/udp_ports_reset\x00', 0x20000, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/workqueue/nvmet-wq/affinity_strict\x00', 0x20461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x20000) prctl$auto_PR_GET_AUXV(0x41555856, 0x5400000000000000, 0x5, 0x0, 0x5) ioctl$auto(0xffffffffffffffff, 0x5646, 0xffffffffffffffff) r2 = pidfd_open$auto(0x1, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0) setns(r2, 0x60020000) process_vm_readv$auto(r0, 0x0, 0x800000001, 0x0, 0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000280), r2) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x4c, r3, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x65}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x1}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x9}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e20}, @L2TP_ATTR_PW_TYPE={0x6}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e21}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) socket(0x18, 0x5, 0x1) 20m38.296292528s ago: executing program 3 (id=1099): socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(r0, 0x400454ca, 0x38) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) r2 = socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0xac1, 0xdf, 0x100000009b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x15, 0x5, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x8, 0x8, 0xfffffff8) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) select$auto(0x10, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x4002008d, 0x1, 0x2, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001e, 0x7, 0xa, 0x9, 0x2, 0x6]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x8a801, 0x0) write$auto(r4, &(0x7f0000000200)='1\x00\\\xa0\x04\x06\x00\x00\x00*\x8d\x14\xfa 3\x00\xad1\xcc\xeb&{q\xe0$\xcd\x81Zm\xeb\xe39LC{\xf8\xa09\xe9\x05\xfc\xddUw4e\xc6\t}k\x14\xcah\xba\x16\xdc\x00\x88\x11\x008\xb3z\xe4\xb9\x97\x90z\xb41&YH\xd6\xaa\x06\xbc \b\xd7\xee\x8a:\xd9\x88\x8f\x06)l\xe4\x83\xbc\xd1wOa\xb6\x93\xe7\xb7\xbb\xdc\x98\xba\\\x15\xc2\xdc1D\x8b@\x9btfi\xaf\xdf\xee\v\x8e\xa2P\x93\x19\xea\x84T]<]+\x04N5=\xc0\x9d-\xaf\xfd\xc7\x87\x00\x00\x00\x00\xa4q\xec\x82\x95\x01\xfc7\x86\xd0\xd2\x93\xa7?\xc5\xf3\xaf\xe5\x17\x96\xc6\xbd=\x9a=\xe8\xf22\xab\x83\x9f\xc2\xc2\x8f\x1fQ|\x91&\x15\x0f\x18\xbc\xd3\xd6\xd7P\bTb\xfaY\xfcio\xa3\xe1d#-R\x91}\xe4\x88\xf6\xcc\xd5e\xb1Va\xa4Z\'w\xee\x94`>\x99\x00\xef\xe5\x9csXS<\x96\xafgM\xadY\xae\xf5\xe4\xb3\x9d\x18\x0f\xcc\xbb\tGb\xf5\x8c\xf4\xbc\xaf\x7f\x87\'\x9f\x8ff\x03m\xaf+D\xee\xcd\xd9\xfe\xe2)\x830}\xcc\xadC\xdd\xea\xb1\x8d\x06xj^U\xc0<\xfe\xc3U\xf8\x1ff\xe1\xd8\x14\t\xa8l]\xeb\xb6\xef\x04\x8f\xff\xfc\x97\x91\xdbN\x81\xfd\xf2\x9e\x18\x85G\xc7\xef\x86;\xd5\xd9\xd8\x18wq.%\xa9l\xc8\xdaC\x93\xc6\xc6\xd5p8\xa5\xb1\xd7:<\x8aCP\xd08\xcf', 0x4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) io_uring_setup$auto(0x1, 0x0) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) ioctl$auto(r5, 0x8910, r2) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) 20m22.347017079s ago: executing program 32 (id=1099): socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(r0, 0x400454ca, 0x38) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) r2 = socket(0x1e, 0x1, 0x0) mmap$auto(0x0, 0xac1, 0xdf, 0x100000009b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x15, 0x5, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) madvise$auto(0x8, 0x8, 0xfffffff8) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) select$auto(0x10, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x4002008d, 0x1, 0x2, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001e, 0x7, 0xa, 0x9, 0x2, 0x6]}, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x8a801, 0x0) write$auto(r4, &(0x7f0000000200)='1\x00\\\xa0\x04\x06\x00\x00\x00*\x8d\x14\xfa 3\x00\xad1\xcc\xeb&{q\xe0$\xcd\x81Zm\xeb\xe39LC{\xf8\xa09\xe9\x05\xfc\xddUw4e\xc6\t}k\x14\xcah\xba\x16\xdc\x00\x88\x11\x008\xb3z\xe4\xb9\x97\x90z\xb41&YH\xd6\xaa\x06\xbc \b\xd7\xee\x8a:\xd9\x88\x8f\x06)l\xe4\x83\xbc\xd1wOa\xb6\x93\xe7\xb7\xbb\xdc\x98\xba\\\x15\xc2\xdc1D\x8b@\x9btfi\xaf\xdf\xee\v\x8e\xa2P\x93\x19\xea\x84T]<]+\x04N5=\xc0\x9d-\xaf\xfd\xc7\x87\x00\x00\x00\x00\xa4q\xec\x82\x95\x01\xfc7\x86\xd0\xd2\x93\xa7?\xc5\xf3\xaf\xe5\x17\x96\xc6\xbd=\x9a=\xe8\xf22\xab\x83\x9f\xc2\xc2\x8f\x1fQ|\x91&\x15\x0f\x18\xbc\xd3\xd6\xd7P\bTb\xfaY\xfcio\xa3\xe1d#-R\x91}\xe4\x88\xf6\xcc\xd5e\xb1Va\xa4Z\'w\xee\x94`>\x99\x00\xef\xe5\x9csXS<\x96\xafgM\xadY\xae\xf5\xe4\xb3\x9d\x18\x0f\xcc\xbb\tGb\xf5\x8c\xf4\xbc\xaf\x7f\x87\'\x9f\x8ff\x03m\xaf+D\xee\xcd\xd9\xfe\xe2)\x830}\xcc\xadC\xdd\xea\xb1\x8d\x06xj^U\xc0<\xfe\xc3U\xf8\x1ff\xe1\xd8\x14\t\xa8l]\xeb\xb6\xef\x04\x8f\xff\xfc\x97\x91\xdbN\x81\xfd\xf2\x9e\x18\x85G\xc7\xef\x86;\xd5\xd9\xd8\x18wq.%\xa9l\xc8\xdaC\x93\xc6\xc6\xd5p8\xa5\xb1\xd7:<\x8aCP\xd08\xcf', 0x4) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) io_uring_setup$auto(0x1, 0x0) ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0) ioctl$auto(r5, 0x8910, r2) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0) 11.419506755s ago: executing program 1 (id=4858): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x2a461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)='-7', 0xfffffc49) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) io_uring_setup$auto(0x6, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8) write$auto(0x3, 0x0, 0xfdef) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x121582, 0x0) fsmount$auto(r2, 0x4, 0x2) listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff, 0xfffffffffffffffb}, 0x0, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x6, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) recvmsg$auto(r3, &(0x7f00000007c0)={&(0x7f00000006c0), 0x200, &(0x7f0000000740)={&(0x7f0000000700), 0xf}, 0x400, 0x0, 0xe, 0x466d}, 0x6) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r1, &(0x7f0000002080)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002040)={&(0x7f0000000940)=ANY=[@ANYBLOB="101300", @ANYRES16=0x0, @ANYBLOB="000228bd7000fedbdf255d00008a1e000100080000b54361", @ANYBLOB="0d154b804b596e89f98aef0a678d3db390d67c171b2a6c002761ac21fb1576da7b9ff48e29d53573", @ANYBLOB="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"], 0x1310}, 0x1, 0x0, 0x0, 0x240040e4}, 0x24004880) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000004c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4008890}, 0x4008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) tee$auto(r2, r4, 0x0, 0x5) r5 = prctl$auto_PR_SET_MM_ENV_END(0x1, 0xb, 0xffffffffffffffff, 0x8, 0x80000000) r6 = fcntl$auto_F_UNLCK(r5, 0x5c5, 0x2) write$auto_hwsim_fops_rx_rssi_(r6, &(0x7f0000000000), 0x0) ioctl$auto(r2, 0x64c5, r2) 7.116610696s ago: executing program 1 (id=4871): mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x71, 0x0, 0x8) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x2000, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x3}, 0x7, 0x0, 0x5, 0x3cbb}, 0xfff}, 0x8, 0x311) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x22002, 0x0) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x8, 0x0, 0x0, 0x2, 0x100000000) socket(0x2, 0x80002, 0x73) read$auto_stat_fops_per_vm_kvm_main(0xffffffffffffffff, 0x0, 0x0) r1 = socket(0xa, 0x3, 0x5) syz_genetlink_get_family_id$auto_nl802154(0x0, r1) sendmsg$auto_NL802154_CMD_ASSOCIATE(r1, 0x0, 0x4040004) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, 0x0, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0) write$auto(r2, 0x0, 0x3) r3 = socket(0x10, 0x2, 0x0) r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') ioctl$auto(r4, 0x8004b706, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), r3) r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r5, 0x1, 0x7ff) ptrace$auto_PTRACE_DETACH(0x11, r5, 0xb, 0x9) r6 = setfsuid$auto(0xee00) r7 = setfsuid$auto(0xee01) setresuid$auto(r6, r7, r7) 6.347671883s ago: executing program 1 (id=4873): r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) socket(0x2, 0x3, 0xa) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r0, 0x80083314, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r1 = io_uring_setup$auto(0x2, 0x0) (async) close_range$auto(r0, 0xa, 0x1) r2 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media11\x00', 0x40, 0x0) r3 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x40000, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r1, 0x40095505, &(0x7f0000000080)={0xf8, 0xee, 0x4, 0x7, 0x3, 0x6, 0x5, 0x4a}) (async) ioctl$auto_SNDRV_PCM_IOCTL_UNLINK2(r3, 0x4161, 0x0) (async) ioctl$auto_media_devnode_fops_mc_devnode(r2, 0x80047c05, 0x0) (async) ioctl$auto_BTRFS_IOC_TREE_SEARCH(r1, 0x7c80, 0x0) (async) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x68200, 0x0) (async) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async) select$auto(0xbf0, 0x0, 0x0, &(0x7f00000002c0)={[0xfffffffffffefffb, 0x5, 0xffff, 0x8000000000007d, 0x10000000008, 0xffffffffffffffff, 0x200000003, 0x2000000000000008, 0x1, 0xffffffff, 0x8000000000400000, 0x3, 0x6d3c, 0x5, 0xfffdffff, 0x8]}, 0x0) (async) mbind$auto(0x4, 0x8, 0x5, &(0x7f0000000100)=0x8, 0x100, 0x0) 6.076598317s ago: executing program 2 (id=4875): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$auto_VHOST_SET_VRING_BASE2(r0, 0x4008af12, &(0x7f0000000040)={0xa, 0x4}) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60040440}, 0x800) pwrite64$auto(0xffffffffffffffff, 0x0, 0x6bc, 0x5) socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0xfffffffe, 0x802, 0x8000000000000000, 0x0) socket(0xa, 0x5, 0x84) socket(0x10, 0x2, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) bpf$auto(0x1, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x8000, 0xf9c, 0x466, 0x9, 0x3, 0x4, 0x2, 0x4, 0x200, 0x1fd, 0xb6, 0x4, 0x6, 0x3}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='\x80\xfb\xd8o`AG,>^\xd6e\xe1[\x8d\xb4\xfeQ\x06\x9b\x12\x90B\x1c\xeb/Y\xd1\xbc\x16v\t\xb4^\x9a\xa4z\xbb\xdd\n\xdbB\x1d\xbc\x06\x94\xaf\x91\x111\xf2\n\x84\xed\xab\x93~,\xd4\xfc\x97(\xa8\x1d\xdfb\xc2\xa2\x8aocpIr>\v\xeep,CfM\xf7\xee\x893&\xba^>,\xbc\x1a2\x91\x88\t\x18\a\xd6\x18\xbefW\xc0y\x8c\xc13W\xb1\xa9\xe1\'WS\xad0\x1e:\x1f\xa4X\x99\x94_\xb4=\x04C\xe5\x86l\x13\x88\x01\x9e\xad6 \xd2|\x88L\xde\x9dA\xcfL\xc5E\x1cz\xdc\x86\xc8\xff\xeb{\x1a\xaa\xad{\xdf.\x9b\xbd\a\xb6$\x82\xcc\x12\xac\xe2\xe4C\xa7\xdd\x82;\xa0\xc8Yw\x0f=', 0x100081) signalfd$auto(0xffffffffffffffff, 0x0, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x17) fallocate$auto(r1, 0xe, 0x4, 0x7) 5.868429105s ago: executing program 1 (id=4876): socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x64, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IFINDEX={0x8}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @random="431396a271ac"}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF2_AGE={0x8, 0x4, 0x10}, @HSR_A_NODE_ADDR={0xa, 0x1, @remote}]}, 0x64}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x1000000, 0x9}, 0x7}, 0x3, 0x0) 5.807572104s ago: executing program 2 (id=4877): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x2a461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)='-7', 0xfffffc49) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) io_uring_setup$auto(0x6, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8) write$auto(0x3, 0x0, 0xfdef) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x121582, 0x0) fsmount$auto(r2, 0x4, 0x2) listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff, 0xfffffffffffffffb}, 0x0, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x6, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) recvmsg$auto(r3, &(0x7f00000007c0)={&(0x7f00000006c0), 0x200, &(0x7f0000000740)={&(0x7f0000000700), 0xf}, 0x400, 0x0, 0xe, 0x466d}, 0x6) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r1, &(0x7f0000002080)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002040)={&(0x7f0000000940)=ANY=[@ANYBLOB="10130000", @ANYRES16=0x0, @ANYBLOB="000228bd7000fedbdf255d00008a1e000100080000b54361", @ANYBLOB="0d154b804b596e89f98aef0a678d3db390d67c171b2a6c002761ac21fb1576da7b9ff48e29d53573", @ANYBLOB="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"], 0x1310}, 0x1, 0x0, 0x0, 0x240040e4}, 0x24004880) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, 0x0, 0x4008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) tee$auto(r2, r4, 0x0, 0x5) r5 = prctl$auto_PR_SET_MM_ENV_END(0x1, 0xb, 0xffffffffffffffff, 0x8, 0x80000000) r6 = fcntl$auto_F_UNLCK(r5, 0x5c5, 0x2) write$auto_hwsim_fops_rx_rssi_(r6, &(0x7f0000000000), 0x0) ioctl$auto(r2, 0x64c5, r2) 5.629363948s ago: executing program 1 (id=4878): preadv$auto(0xffffffffffffffff, 0x0, 0x7, 0x7, 0x402) madvise$auto(0x110c230000, 0x8031ca, 0x9) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) socket(0x2, 0x5, 0x0) capset$auto(0x0, 0x0) setsockopt$auto(0x3, 0x0, 0x21, 0x0, 0x28) read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/irq/25/smp_affinity_list\x00', 0x402, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0x1, 0x7ff) ptrace$auto_ARCH_GET_GS(0x7, r1, 0xffffffffffffffff, 0x1004) prctl$auto(0x3e, 0x1, r1, 0xffffffffffffffff, 0xffffffffffffffff) write$auto(r0, &(0x7f0000000500)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x95\x82 )\xca\x99h\xcf\xfdK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x413e) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/028/001\x00', 0x400, 0x0) socket(0x2c, 0x80003, 0x0) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec3\x00', 0x0, 0x0) ioctl$auto_CEC_DQEVENT(r2, 0xc0506107, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0x20000000000000b2, 0xfb, 0x9489, 0x2, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x8000000009, 0x2, 0xffffffff]}, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x5, 0xc, 0x20000004, 0x9b72, 0x2, 0x8000) madvise$auto(0x110c230000, 0x1fffffe, 0x9) close_range$auto(0x2, 0x8, 0x0) 5.350722634s ago: executing program 0 (id=4879): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/drivers\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) timerfd_create$auto(0x9, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x2ff, 0x4, 0x1}]}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0xa2741, 0x0) semctl$auto(0x0, 0x9, 0x1, 0x2) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) sendmmsg$auto(r3, &(0x7f00000012c0)={{&(0x7f0000000140)="7ff5daf650061fe41256b78d57cd1a295ddb993fa83e72958a30a1c183772b8114abdff5b0251d219062c410ce54dd659f2062b7a2b6dfd9a2f10b7b783c97b10ac6828025538d6edee46d52", 0x5, &(0x7f0000001200)={&(0x7f0000000200)="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", 0xe}, 0x527, &(0x7f0000001240)="2d8bb977627abc15c1b3654e387da065fd315b7f122ab5e1b38e569bd1fc2ead47e643a6c308c3556e2040ffa25243124d74187790f2a6dabdfd92b278fbbe10fb28204d501cd7522cf1570b3bbdb8ba99f97c9b4fa8b93bb94dc712011afed73bba27f69e11da312081c20b73a0", 0x4, 0x81}, 0x1}, 0x3, 0x5) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000013c0)=""/172, 0xac) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) setresuid$auto(0x8, 0x8, 0x0) 5.054034948s ago: executing program 4 (id=4880): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0xffffffffffffffff, 0x4b47, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0xffffffffffffff27, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0600253d7000fdfbffffff00a800"], 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) r4 = io_uring_setup$auto(0x1, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto(r3, 0x89f0, r2) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/rescan\x00', 0xb81, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0), 0x0) ioctl$auto_TUNSETVNETHDRSZ2(r4, 0x400454d8, &(0x7f00000000c0)=0x7) r6 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0) mmap$auto(0x0, 0x2020009, 0x2000000000000006, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto(r6, 0x40a85321, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/devices/virtual/thermal/cooling_device0/max_state\x00', 0x500, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8) unshare$auto(0x8000000) semget$auto(0x0, 0x2e4a, 0x8000) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) socket$nl_generic(0x11, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) 3.283293468s ago: executing program 4 (id=4881): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) sync_file_range$auto(r0, 0x7, 0x80000000, 0x5) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/scsi/device_info\x00', 0x40380, 0x0) mmap$auto(0x0, 0x1, 0xe2, 0xeb1, 0x405, 0x8002) ustat$auto(0x801, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, 0x0, 0x141402, 0x0) sysfs$auto(0x2, 0x100000000000029, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sda1\x00', 0x8800, 0x0) ioctl$auto_IOC_PR_PREEMPT(r2, 0x401870cb, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x81a0ae8c, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/loop6\x00', 0x101282, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r3, 0x4c00, 0x0) (fail_nth: 2) r4 = seccomp$auto(0x3, 0x7, &(0x7f0000000000)="32f795fb55112f416aaae89a42fa586aea92263e578389fab6601859b51a708fcd370c3e16953d593a2b") r5 = openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/bluetooth/hci1/force_suspend\x00', 0x121401, 0x0) write$auto_force_suspend_fops_hci_vhci(r5, 0x0, 0x0) r6 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000000c0), r4) r7 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000280)='/proc/swaps\x00', 0x40000, 0x0) read$auto_proc_pid_maps_operations_internal(r7, &(0x7f00000010c0)=""/4082, 0xff2) r8 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000005880)='/proc/sys/kernel/panic_print\x00', 0x1c1840, 0x0) read$auto_output_bpc_fops_(r8, 0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000002c0)="3b0262c5aec448e084d032b6a4ca38cada01b6588eaa68e161dc9d2c3aeaa2902a5430373377b79dc5a482a2ba8628485fedb5c27ba02ec949c8b4a4b56b422f1c747644dd503790fc05490b27d6ada76df080196a78d9a081391ea39b94", 0x5e) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) read$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffffff, &(0x7f00000004c0)=""/219, 0xdb) sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2010", @ANYRESHEX=r0, @ANYBLOB="010029bd7100fcdb0000000000000000010000000000000000004721cf6f4731e682e81b8d9a263969dc7873497f62a5f3ba233203318bc359d1c494c28d93ce6eb435781d0bf2cdca72975873d1e51049d8001894008427d2670a65e85eb4a2fbeaf5c70cd31b24e1a68df51ff5767d223f5096dfebb2cb0e8599499066d85ea0992450641533", @ANYRES64=r6, @ANYRESHEX=r5], 0x20}, 0x1, 0x0, 0x0, 0x20004004}, 0x2000cc41) pwrite64$auto(r4, 0x0, 0x1, 0x8) pread64$auto(r1, 0x0, 0x81, 0x2000000000830) 2.397914204s ago: executing program 0 (id=4882): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sg0\x00', 0x141000, 0x0) r1 = setfsuid$auto(0xee01) setresuid$auto(0x0, r1, 0x0) r2 = setfsuid$auto(r1) setresuid$auto(r1, 0x8, r2) r3 = bpf$auto(0xb, &(0x7f00000000c0)=@test={r0, 0x9, 0x4, 0x400, 0x6, 0x6, 0x3, 0x8000, 0x6, 0xc, 0x8, 0x4, 0xff, 0x8}, 0x93) msgsnd$auto(0x0, &(0x7f0000000240)={0x0, 0xd5}, 0x0, 0x5) ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f0000000040)=0x0) recvfrom$auto(r4, &(0x7f0000000000)="ecca9b7bc827ef4f453221c3fc7db48d292d14f72e105335ed193e094ef402728874ce89257b72165ae8", 0xfffffffffffffff8, 0x7, &(0x7f0000000080)=@nfc={0x27, r5, 0x0, 0x5}, &(0x7f0000000180)=0x4) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x100000, 0x0) 2.261094275s ago: executing program 0 (id=4883): mmap$auto(0x0, 0x400009, 0x20df, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/set_event_pid\x00', 0x408484, 0x0) semctl$auto(0x2, 0x5, 0x13, 0x9) sysfs$auto(0x2, 0x43, 0x0) add_key$auto_KEY_SPEC_USER_KEYRING(0x0, 0x0, 0x0, 0x1f, 0xfffffffffffffffc) 2.046983679s ago: executing program 0 (id=4884): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, 0x0, 0x2000c040) sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x0, 0xa01, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffffffffff6a, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4000009}, 0x24004880) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='2'], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x81}, 0x5}, 0x3, 0x0) pwrite64$auto(0xc8, &(0x7f0000000600)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\r\xaa\x1c\x03\x00\xe0\x00c\x14M>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\xdd\xac\x00\x00\x00\x00\x00\x00\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x15\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\xff\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x8bd) 1.912671532s ago: executing program 4 (id=4885): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000200)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6, 0xfffffffffffffffd}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0x100000000}}) socket(0xa, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000000)=@generic={0xa, "dfffffffffffffff00"}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x800000000000003, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='-\x00', @ANYBLOB=']'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.865945497s ago: executing program 2 (id=4886): r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$auto_VHOST_SET_VRING_BASE2(r0, 0x4008af12, &(0x7f0000000040)={0xa, 0x4}) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60040440}, 0x800) pwrite64$auto(0xffffffffffffffff, 0x0, 0x6bc, 0x5) socket(0x10, 0x2, 0x4) write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x00\x01_\x9e\x99:R\xcc\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c%\xb6\x9a\\S\xa2(Q\xcc', 0x7f) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0xfffffffe, 0x802, 0x8000000000000000, 0x0) socket(0xa, 0x5, 0x84) socket(0x10, 0x2, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) bpf$auto(0x1, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x8000, 0xf9c, 0x466, 0x9, 0x3, 0x4, 0x2, 0x4, 0x200, 0x1fd, 0xb6, 0x4, 0x6, 0x3}, 0xa3) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='\x80\xfb\xd8o`AG,>^\xd6e\xe1[\x8d\xb4\xfeQ\x06\x9b\x12\x90B\x1c\xeb/Y\xd1\xbc\x16v\t\xb4^\x9a\xa4z\xbb\xdd\n\xdbB\x1d\xbc\x06\x94\xaf\x91\x111\xf2\n\x84\xed\xab\x93~,\xd4\xfc\x97(\xa8\x1d\xdfb\xc2\xa2\x8aocpIr>\v\xeep,CfM\xf7\xee\x893&\xba^>,\xbc\x1a2\x91\x88\t\x18\a\xd6\x18\xbefW\xc0y\x8c\xc13W\xb1\xa9\xe1\'WS\xad0\x1e:\x1f\xa4X\x99\x94_\xb4=\x04C\xe5\x86l\x13\x88\x01\x9e\xad6 \xd2|\x88L\xde\x9dA\xcfL\xc5E\x1cz\xdc\x86\xc8\xff\xeb{\x1a\xaa\xad{\xdf.\x9b\xbd\a\xb6$\x82\xcc\x12\xac\xe2\xe4C\xa7\xdd\x82;\xa0\xc8Yw\x0f=', 0x100081) signalfd$auto(0xffffffffffffffff, 0x0, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x17) fallocate$auto(r1, 0xe, 0x4, 0x7) 1.73385028s ago: executing program 1 (id=4887): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x2a461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)='-7', 0xfffffc49) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) io_uring_setup$auto(0x6, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8) write$auto(0x3, 0x0, 0xfdef) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x121582, 0x0) fsmount$auto(r2, 0x4, 0x2) listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff, 0xfffffffffffffffb}, 0x0, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x6, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) recvmsg$auto(r3, &(0x7f00000007c0)={&(0x7f00000006c0), 0x200, &(0x7f0000000740)={&(0x7f0000000700), 0xf}, 0x400, 0x0, 0xe, 0x466d}, 0x6) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r1, &(0x7f0000002080)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002040)={&(0x7f0000000940)=ANY=[@ANYBLOB="10130000", @ANYRES16=0x0, @ANYBLOB="000228bd7000fedbdf255d00008a1e000100080000b54361", @ANYBLOB="0d154b804b596e89f98aef0a678d3db390d67c171b2a6c002761ac21fb1576da7b9ff48e29d53573", @ANYBLOB="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"], 0x1310}, 0x1, 0x0, 0x0, 0x240040e4}, 0x24004880) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, 0x0, 0x4008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) tee$auto(r2, r4, 0x0, 0x5) r5 = prctl$auto_PR_SET_MM_ENV_END(0x1, 0xb, 0xffffffffffffffff, 0x8, 0x80000000) r6 = fcntl$auto_F_UNLCK(r5, 0x5c5, 0x2) write$auto_hwsim_fops_rx_rssi_(r6, &(0x7f0000000000), 0x0) ioctl$auto(r2, 0x64c5, r2) 1.512433515s ago: executing program 4 (id=4888): open(0x0, 0x149443, 0x0) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='nfs4\x00', 0x8, &(0x7f0000000240)) r0 = socket(0xa, 0x3, 0x2) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x90, 0x0, 0x400, 0x70bd2b, 0x25dfdbfc, {}, "1ead596c0aa757cb532167db13fe36f59e21b6c2579133f068f408ca4ee8ad2c48de98951c19733a9287801a8bf5ff04632c90d9260d88e388b7b04a77896714bee0a844443ff9cdf683eaa10b8d431a483b214a1d5c0c656ead386801d7c5f0603cd96ff5b7bc86b3ae5c7784d0e734f5b892a5482f22502159b7"}, 0x90}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r2, 0x305, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x4040008) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/tracing/set_event\x00', 0x0, 0x0) 1.324585201s ago: executing program 2 (id=4889): ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000080)="a64c1e6e8ba8fb3aa73fa774dff751b25c99bb4f744ad28db0124642ab2909a56a46664ecaaf7415f7ac74631a30c3583691f07ac4b22d8364d6737f52432fb5421d1d4a05525016b88c06afd899673f7855053c35618be1b5efc34c039fcc68f35ebc31522f793e4c7dc11b3856aeadfc27926c4cac35f36f9215b1bb554e85e559bbcfcebc4f288d5b876430") mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x0) socket(0x10, 0x2, 0x14) socket(0x10, 0x2, 0x4) openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) sendmsg$auto_IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000a00)=ANY=[@ANYBLOB="1c010000", @ANYRES16=0x0, @ANYBLOB="390428bd7000fcdbdf25020000000800018004000580"], 0x1c}, 0x1, 0x0, 0x0, 0x4050}, 0x4004881) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2506, &(0x7f00000002c0)={0x0, 0xae}, 0x5, 0x0, 0x3, 0x3a32182}, 0x4}, 0x3, 0x9) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) close_range$auto(0x2, 0xa, 0x0) getdents64$auto(r0, 0x0, 0x400) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/ram11/events_poll_msecs\x00', 0x20681, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setreuid$auto(0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mtd/mtd0/subpagesize\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0) 1.200366596s ago: executing program 4 (id=4890): mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/eql/queues/tx-0/tx_timeout\x00', 0x1279c2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x80302, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram12\x00', 0xa100, 0x0) sendfile$auto(0x3, r1, 0x0, 0x100400000000006) preadv$auto(r0, &(0x7f00000000c0)={0x0, 0x4008000}, 0x1d4, 0x2000000000f, 0x200000001) mmap$auto(0x0, 0x20009, 0xdf, 0xebe, r0, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0xfffe) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x8000007b) mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400000000000400, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x0) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) rename$auto(&(0x7f0000000180)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)') syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff) r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r4, 0x8000) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) 1.192268404s ago: executing program 0 (id=4891): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40, 0x0) r0 = socket(0x15, 0x5, 0x0) setsockopt$auto(r0, 0x114, 0x7, 0x0, 0x1) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) mprotect$auto(0x200000000000, 0x806121, 0x4) write$auto(r1, &(0x7f0000000280)='S\x00\x00\x00\xfe\xff\xff\xff\xdf\xac\x9f*~\x9e\xf4\x14\xd2d2i\a*\x93\xda\xec\xfe\xb6HI\x8bMJ}\x8d\xc1\x94D\xdbSt/\xdd\xb5\fnW{\xb0^:\x80\xb5\xdd\x8d\x1e\x96\xdf\xcb\xac\xbfB\xb3\xba\x9a\x02\xeaZ\xb9Rg2\x87\x9e\x9c\xb3\xac\x16\xa3g\xad\xf7<\xc5c\xfa2\x97,O\xb2\xe3\xad\xe0v\x13\x03\x00\x00\x00\xce*\xee\xcdX\x1dM\xe3\x8cT\xc6\x1dj\xe8\xc1\xc0\x85c\xf6\r^\xa2\b\x9c\xb9\xff\x89i\x04\xc8\r\x14p\xad\v,O\xb8\x9b\xd8\xe0\x964/\x8fQ\xaf\x13\xd7\xf14\x85\xe8\x0f\'\xc4\xe3\x1c\x92', 0x808585) (fail_nth: 10) 924.490807ms ago: executing program 0 (id=4892): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0xffffffffffffffff, 0x4b47, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0xffffffffffffff27, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0600253d7000fdfbffffff00a800"], 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) r4 = io_uring_setup$auto(0x1, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto(r3, 0x89f0, r2) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/rescan\x00', 0xb81, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0), 0x0) ioctl$auto_TUNSETVNETHDRSZ2(r4, 0x400454d8, &(0x7f00000000c0)=0x7) r6 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0) mmap$auto(0x0, 0x2020009, 0x2000000000000006, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto(r6, 0x40a85321, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/devices/virtual/thermal/cooling_device0/max_state\x00', 0x500, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8) unshare$auto(0x8000000) semget$auto(0x0, 0x2e4a, 0x8000) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) socket$nl_generic(0x11, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) 871.705161ms ago: executing program 2 (id=4893): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x240082, 0x0) read$auto(r0, 0x0, 0x20) (async) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/card0/pcm0p/sub6/hw_params\x00', 0x199000, 0x0) (async) close_range$auto(0x2, 0xffffffffffffffff, 0x40) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x18b040, 0x0) close_range$auto(0x2, r2, 0x0) (async) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r3) (async) ioctl$auto_KVM_CREATE_VM(r2, 0xc040aed5, 0x0) (async) write$auto(r1, &(0x7f0000000040)='Fm_\xbd\xc3!\x00', 0x7) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x34fa02, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x1, 0x100, 0x0, 0x8) (async) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) (async) r4 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x89b0, &(0x7f0000000140)={'macvlan1\x00'}) (async) listen$auto(0x3, 0x83) setsockopt$auto(0x3, 0x1, 0x31, 0x0, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) r5 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cec8\x00', 0x0, 0x0) ioctl$auto_CEC_DQEVENT(r5, 0xc0506107, 0x0) 417.4304ms ago: executing program 2 (id=4894): socket(0x23, 0x5, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/crash_elfcorehdr_size\x00', 0x688140, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setresuid$auto(0x0, 0x7, 0x8080) setfsuid$auto(0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4b4a, r0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0x1ff, 0xffffffffffffffff, 0x8000) socket(0x18, 0x800, 0x1) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r1 = socketpair$auto(0x0, 0x5, 0x4, 0x0) io_uring_setup$auto(0x1, 0x0) sysfs$auto(0x2, 0x201f, 0x3d1a) fsopen$auto(0x0, 0x1) r2 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r2, 0x0, 0x17) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) read$auto(r3, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x10) read$auto_dfs_sched_itmt_fops_itmt(r1, &(0x7f0000000240)=""/201, 0xec) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r4) read$auto(r4, &(0x7f0000000000)='\x00', 0x91e2) 0s ago: executing program 4 (id=4895): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x400, 0x0) keyctl$auto(0x17, 0x4, 0x7fffffffefff, 0x400, 0x0) mmap$auto(0x7f, 0x5, 0x6, 0x4eb1, r0, 0x8000) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000280)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd}, 0xa3) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40440, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0)) readv$auto(r2, &(0x7f0000000200)={0x0}, 0x7fff8000000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x123002, 0x0) socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): /0x840 [ 1480.724041][T25088] ? clear_bhb_loop+0x40/0x90 [ 1480.724070][T25088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1480.724094][T25088] RIP: 0033:0x7fc36299de59 [ 1480.724121][T25088] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1480.724146][T25088] RSP: 002b:00007fc363942028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1480.724173][T25088] RAX: ffffffffffffffda RBX: 00007fc362c25fa0 RCX: 00007fc36299de59 [ 1480.724189][T25088] RDX: 00002000000001c0 RSI: fffffffffffffd01 RDI: 0000000000000004 [ 1480.724204][T25088] RBP: 00007fc363942090 R08: 0000000000000000 R09: 0000000000000000 [ 1480.724219][T25088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1480.724234][T25088] R13: 00007fc362c26038 R14: 00007fc362c25fa0 R15: 00007fff5493b9d8 [ 1480.724272][T25088] [ 1480.724291][T25088] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1483.195564][T25036] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 4 with max blocks 13 with error 117 [ 1483.306398][T25036] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1483.306398][T25036] [ 1484.390656][T25148] netlink: 330 bytes leftover after parsing attributes in process `syz.4.4071'. [ 1485.359488][T25144] tipc: Started in network mode [ 1485.372201][T25144] tipc: Node identity ee00, cluster identity 4711 [ 1485.401465][T25144] tipc: Node number set to 60928 [ 1488.315219][T25179] Process accounting resumed [ 1488.647902][T25198] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1488.766885][T25203] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4082'. [ 1488.850458][T25203] openvswitch: : Dropping previously announced user features [ 1489.007736][T25208] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1489.032668][T25208] netlink: 310 bytes leftover after parsing attributes in process `syz.2.4083'. [ 1489.920783][T25224] syz.2.4087 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1492.103099][T25251] Ignoring unsupported numa_zonelist_order value: [ 1492.162660][T25252] random: crng reseeded on system resumption [ 1493.730137][T25267] FAULT_INJECTION: forcing a failure. [ 1493.730137][T25267] name failslab, interval 1, probability 0, space 0, times 0 [ 1494.029711][T25277] FAULT_INJECTION: forcing a failure. [ 1494.029711][T25277] name failslab, interval 1, probability 0, space 0, times 0 [ 1494.094633][T25267] CPU: 0 UID: 0 PID: 25267 Comm: syz.1.4097 Tainted: G L syzkaller #0 PREEMPT(full) [ 1494.094672][T25267] Tainted: [L]=SOFTLOCKUP [ 1494.094681][T25267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1494.094697][T25267] Call Trace: [ 1494.094705][T25267] [ 1494.094715][T25267] dump_stack_lvl+0x100/0x190 [ 1494.094754][T25267] should_fail_ex.cold+0x5/0xa [ 1494.094791][T25267] should_failslab+0xc2/0x120 [ 1494.094827][T25267] kmem_cache_alloc_noprof+0x91/0x6a0 [ 1494.094860][T25267] ? sk_prot_alloc+0x60/0x2a0 [ 1494.094901][T25267] sk_prot_alloc+0x60/0x2a0 [ 1494.094938][T25267] sk_alloc+0x36/0xe80 [ 1494.094967][T25267] inet_create+0x3a0/0x1060 [ 1494.094995][T25267] ? inet_create+0x94/0x1060 [ 1494.095026][T25267] __sock_create+0x339/0x860 [ 1494.095069][T25267] __sys_socket+0x14d/0x260 [ 1494.095109][T25267] ? __pfx___sys_socket+0x10/0x10 [ 1494.095156][T25267] __x64_sys_socket+0x72/0xb0 [ 1494.095194][T25267] ? lockdep_hardirqs_on+0x78/0x100 [ 1494.095234][T25267] do_syscall_64+0x115/0x840 [ 1494.095262][T25267] ? clear_bhb_loop+0x40/0x90 [ 1494.095292][T25267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1494.095319][T25267] RIP: 0033:0x7fd1e5f9de59 [ 1494.095341][T25267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1494.095365][T25267] RSP: 002b:00007fd1e6d7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1494.095389][T25267] RAX: ffffffffffffffda RBX: 00007fd1e6226180 RCX: 00007fd1e5f9de59 [ 1494.095406][T25267] RDX: 0000000000000106 RSI: 0000000000000001 RDI: 0000000000000002 [ 1494.095420][T25267] RBP: 00007fd1e6033e6f R08: 0000000000000000 R09: 0000000000000000 [ 1494.095436][T25267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1494.095450][T25267] R13: 00007fd1e6226218 R14: 00007fd1e6226180 R15: 00007ffd51713a68 [ 1494.095481][T25267] [ 1494.386119][T25277] CPU: 0 UID: 0 PID: 25277 Comm: syz.4.4101 Tainted: G L syzkaller #0 PREEMPT(full) [ 1494.386158][T25277] Tainted: [L]=SOFTLOCKUP [ 1494.386167][T25277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1494.386182][T25277] Call Trace: [ 1494.386190][T25277] [ 1494.386200][T25277] dump_stack_lvl+0x100/0x190 [ 1494.386234][T25277] should_fail_ex.cold+0x5/0xa [ 1494.386266][T25277] should_failslab+0xc2/0x120 [ 1494.386307][T25277] __kmalloc_noprof+0xfc/0x820 [ 1494.386336][T25277] ? find_held_lock+0x2b/0x80 [ 1494.386367][T25277] ? usb_alloc_urb+0x66/0xa0 [ 1494.386503][T25277] usb_alloc_urb+0x66/0xa0 [ 1494.386539][T25277] do_proc_control+0x2ee/0xe50 [ 1494.386597][T25277] ? __pfx_do_proc_control+0x10/0x10 [ 1494.386642][T25277] usbdev_ioctl+0x1a28/0x3aa0 [ 1494.386683][T25277] ? __pfx_usbdev_ioctl+0x10/0x10 [ 1494.386744][T25277] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1494.386783][T25277] ? do_vfs_ioctl+0x226/0x13e0 [ 1494.386828][T25277] ? find_held_lock+0x2b/0x80 [ 1494.386858][T25277] ? __fget_files+0x215/0x3d0 [ 1494.386878][T25277] ? hook_file_ioctl_common+0x140/0x440 [ 1494.386915][T25277] ? __fget_files+0x21f/0x3d0 [ 1494.386941][T25277] ? __pfx_usbdev_ioctl+0x10/0x10 [ 1494.386981][T25277] __x64_sys_ioctl+0x18e/0x210 [ 1494.387017][T25277] do_syscall_64+0x115/0x840 [ 1494.387039][T25277] ? clear_bhb_loop+0x40/0x90 [ 1494.387068][T25277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1494.387093][T25277] RIP: 0033:0x7f0ef339de59 [ 1494.387112][T25277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1494.387136][T25277] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1494.387159][T25277] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1494.387175][T25277] RDX: 0000200000000240 RSI: 00000000c0185500 RDI: 0000000000000003 [ 1494.387190][T25277] RBP: 00007f0ef4194090 R08: 0000000000000000 R09: 0000000000000000 [ 1494.387205][T25277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1494.387220][T25277] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1494.387250][T25277] [ 1495.831350][T25286] FAULT_INJECTION: forcing a failure. [ 1495.831350][T25286] name failslab, interval 1, probability 0, space 0, times 0 [ 1495.877545][T25286] CPU: 0 UID: 0 PID: 25286 Comm: syz.0.4103 Tainted: G L syzkaller #0 PREEMPT(full) [ 1495.877584][T25286] Tainted: [L]=SOFTLOCKUP [ 1495.877593][T25286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1495.877608][T25286] Call Trace: [ 1495.877616][T25286] [ 1495.877626][T25286] dump_stack_lvl+0x100/0x190 [ 1495.877661][T25286] should_fail_ex.cold+0x5/0xa [ 1495.877693][T25286] should_failslab+0xc2/0x120 [ 1495.877728][T25286] kmem_cache_alloc_noprof+0x91/0x6a0 [ 1495.877759][T25286] ? __pfx_acct_collect+0x10/0x10 [ 1495.877792][T25286] ? taskstats_exit+0x6d3/0xca0 [ 1495.877832][T25286] taskstats_exit+0x6d3/0xca0 [ 1495.877866][T25286] ? __pfx_acct_update_integrals+0x10/0x10 [ 1495.877903][T25286] ? __pfx_taskstats_exit+0x10/0x10 [ 1495.877941][T25286] ? rcu_read_lock_any_held+0x6a/0xa0 [ 1495.877979][T25286] do_exit+0x65c/0x2ae0 [ 1495.878018][T25286] ? __pfx_do_exit+0x10/0x10 [ 1495.878051][T25286] ? do_raw_spin_lock+0x128/0x260 [ 1495.878079][T25286] ? find_held_lock+0x2b/0x80 [ 1495.878109][T25286] ? get_signal+0x7e0/0x21e0 [ 1495.878139][T25286] do_group_exit+0xd5/0x2a0 [ 1495.878176][T25286] get_signal+0x1ec7/0x21e0 [ 1495.878222][T25286] ? __pfx_get_signal+0x10/0x10 [ 1495.878252][T25286] ? do_futex+0x190/0x440 [ 1495.878282][T25286] arch_do_signal_or_restart+0x91/0x7a0 [ 1495.878310][T25286] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1495.878342][T25286] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1495.878383][T25286] exit_to_user_mode_loop+0x139/0x6f0 [ 1495.878409][T25286] ? rcu_is_watching+0x12/0xc0 [ 1495.878440][T25286] do_syscall_64+0x652/0x840 [ 1495.878462][T25286] ? clear_bhb_loop+0x40/0x90 [ 1495.878491][T25286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1495.878516][T25286] RIP: 0033:0x7f216099de59 [ 1495.878535][T25286] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1495.878559][T25286] RSP: 002b:00007f21618920e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1495.878582][T25286] RAX: fffffffffffffe00 RBX: 00007f2160c25fa8 RCX: 00007f216099de59 [ 1495.878598][T25286] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2160c25fa8 [ 1495.878613][T25286] RBP: 00007f2160c25fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1495.878628][T25286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1495.878642][T25286] R13: 00007f2160c26038 R14: 00007ffdcdb853f0 R15: 00007ffdcdb854d8 [ 1495.878672][T25286] [ 1496.698927][T25288] netlink: 186 bytes leftover after parsing attributes in process `syz.1.4104'. [ 1496.881617][T25291] FAULT_INJECTION: forcing a failure. [ 1496.881617][T25291] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.935492][T25291] CPU: 0 UID: 0 PID: 25291 Comm: syz.2.4105 Tainted: G L syzkaller #0 PREEMPT(full) [ 1496.935530][T25291] Tainted: [L]=SOFTLOCKUP [ 1496.935538][T25291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1496.935553][T25291] Call Trace: [ 1496.935560][T25291] [ 1496.935570][T25291] dump_stack_lvl+0x100/0x190 [ 1496.935606][T25291] should_fail_ex.cold+0x5/0xa [ 1496.935637][T25291] should_failslab+0xc2/0x120 [ 1496.935672][T25291] kmem_cache_alloc_node_noprof+0x94/0x6b0 [ 1496.935706][T25291] ? __alloc_skb+0x140/0x710 [ 1496.935738][T25291] __alloc_skb+0x140/0x710 [ 1496.935764][T25291] ? __pfx___alloc_skb+0x10/0x10 [ 1496.935798][T25291] tipc_buf_acquire+0x26/0xe0 [ 1496.935918][T25291] tipc_msg_build+0x112/0x1100 [ 1496.935956][T25291] ? tipc_node_find+0x2dc/0x510 [ 1496.936013][T25291] ? __pfx_tipc_msg_build+0x10/0x10 [ 1496.936064][T25291] __tipc_sendmsg+0xb68/0x1ab0 [ 1496.936113][T25291] ? __pfx___tipc_sendmsg+0x10/0x10 [ 1496.936149][T25291] ? __lock_acquire+0x49f/0x1a40 [ 1496.936175][T25291] ? aa_sk_perm+0x309/0xaa0 [ 1496.936205][T25291] ? __pfx_woken_wake_function+0x10/0x10 [ 1496.936247][T25291] ? __local_bh_enable_ip+0x9e/0x120 [ 1496.936280][T25291] tipc_sendmsg+0x4f/0x70 [ 1496.936313][T25291] ____sys_sendmsg+0xa4d/0xbe0 [ 1496.936348][T25291] ? __pfx_tipc_sendmsg+0x10/0x10 [ 1496.936384][T25291] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1496.936424][T25291] ? rcu_is_watching+0x12/0xc0 [ 1496.936453][T25291] ? ___sys_sendmsg+0x19d/0x1e0 [ 1496.936489][T25291] ? kfree+0x1e5/0x6c0 [ 1496.936522][T25291] ___sys_sendmsg+0x190/0x1e0 [ 1496.936561][T25291] ? __pfx____sys_sendmsg+0x10/0x10 [ 1496.936624][T25291] ? __pfx___might_resched+0x10/0x10 [ 1496.936668][T25291] __sys_sendmmsg+0x20c/0x440 [ 1496.936701][T25291] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1496.936729][T25291] ? ksys_write+0x190/0x250 [ 1496.936773][T25291] ? fput+0x79/0x100 [ 1496.936800][T25291] ? ksys_write+0x1ac/0x250 [ 1496.936821][T25291] ? __pfx_ksys_write+0x10/0x10 [ 1496.936849][T25291] __x64_sys_sendmmsg+0x9c/0x100 [ 1496.936877][T25291] ? lockdep_hardirqs_on+0x78/0x100 [ 1496.936915][T25291] do_syscall_64+0x115/0x840 [ 1496.936936][T25291] ? clear_bhb_loop+0x40/0x90 [ 1496.936965][T25291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1496.936990][T25291] RIP: 0033:0x7fc36299de59 [ 1496.937009][T25291] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1496.937033][T25291] RSP: 002b:00007fc363942028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1496.937056][T25291] RAX: ffffffffffffffda RBX: 00007fc362c25fa0 RCX: 00007fc36299de59 [ 1496.937072][T25291] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 1496.937095][T25291] RBP: 00007fc363942090 R08: 0000000000000000 R09: 0000000000000000 [ 1496.937110][T25291] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001 [ 1496.937125][T25291] R13: 00007fc362c26038 R14: 00007fc362c25fa0 R15: 00007fff5493b9d8 [ 1496.937155][T25291] [ 1497.828433][T25304] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20835] was attempted by ""[25304] [ 1498.104261][T25301] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4108'. [ 1498.313046][T25312] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4111'. [ 1498.400511][T25312] openvswitch: : Dropping previously announced user features [ 1500.100693][T25332] program syz.4.4118 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1501.886553][T25372] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20155] was attempted by ""[25372] [ 1502.085509][T25372] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4128'. [ 1503.696967][T25387] usb usb39: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1506.144974][T25421] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4140'. [ 1506.247499][T25421] openvswitch: : Dropping previously announced user features [ 1508.455988][T25453] FAULT_INJECTION: forcing a failure. [ 1508.455988][T25453] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1508.657876][T25453] CPU: 0 UID: 0 PID: 25453 Comm: syz.4.4149 Tainted: G L syzkaller #0 PREEMPT(full) [ 1508.657916][T25453] Tainted: [L]=SOFTLOCKUP [ 1508.657925][T25453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1508.657941][T25453] Call Trace: [ 1508.657949][T25453] [ 1508.657959][T25453] dump_stack_lvl+0x100/0x190 [ 1508.657995][T25453] should_fail_ex.cold+0x5/0xa [ 1508.658028][T25453] strncpy_from_user+0x3b/0x2d0 [ 1508.658067][T25453] do_getname+0x78/0x390 [ 1508.658103][T25453] do_sys_openat2+0xc7/0x1e0 [ 1508.658147][T25453] ? __pfx_do_sys_openat2+0x10/0x10 [ 1508.658191][T25453] __x64_sys_openat+0x12d/0x210 [ 1508.658227][T25453] ? __pfx___x64_sys_openat+0x10/0x10 [ 1508.658272][T25453] do_syscall_64+0x115/0x840 [ 1508.658294][T25453] ? clear_bhb_loop+0x40/0x90 [ 1508.658324][T25453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1508.658350][T25453] RIP: 0033:0x7f0ef339de59 [ 1508.658370][T25453] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1508.658394][T25453] RSP: 002b:00007f0ef15d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1508.658418][T25453] RAX: ffffffffffffffda RBX: 00007f0ef3626180 RCX: 00007f0ef339de59 [ 1508.658435][T25453] RDX: 0000000000088000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1508.658451][T25453] RBP: 00007f0ef3433e6f R08: 0000000000000000 R09: 0000000000000000 [ 1508.658466][T25453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1508.658481][T25453] R13: 00007f0ef3626218 R14: 00007f0ef3626180 R15: 00007ffde85b8ad8 [ 1508.658512][T25453] [ 1509.187733][T25462] MTRR 2 not used [ 1510.503130][T25492] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17213] was attempted by ""[25492] [ 1515.118658][T25537] Process accounting resumed [ 1515.689537][T25590] FAULT_INJECTION: forcing a failure. [ 1515.689537][T25590] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1515.761816][T25590] CPU: 0 UID: 0 PID: 25590 Comm: syz.1.4176 Tainted: G L syzkaller #0 PREEMPT(full) [ 1515.761854][T25590] Tainted: [L]=SOFTLOCKUP [ 1515.761863][T25590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1515.761877][T25590] Call Trace: [ 1515.761886][T25590] [ 1515.761895][T25590] dump_stack_lvl+0x100/0x190 [ 1515.761930][T25590] should_fail_ex.cold+0x5/0xa [ 1515.761963][T25590] _copy_from_user+0x2e/0xd0 [ 1515.761999][T25590] eventfd_write+0xd9/0x680 [ 1515.762036][T25590] ? get_pid_task+0xfc/0x250 [ 1515.762069][T25590] ? __pfx_eventfd_write+0x10/0x10 [ 1515.762110][T25590] ? apparmor_file_permission+0x13f/0x1c0 [ 1515.762142][T25590] ? bpf_lsm_file_permission+0x9/0x10 [ 1515.762165][T25590] ? security_file_permission+0x76/0x210 [ 1515.762198][T25590] ? rw_verify_area+0xce/0x6d0 [ 1515.762237][T25590] vfs_write+0x2aa/0x1050 [ 1515.762260][T25590] ? __pfx_eventfd_write+0x10/0x10 [ 1515.762299][T25590] ? __pfx_vfs_write+0x10/0x10 [ 1515.762320][T25590] ? find_held_lock+0x2b/0x80 [ 1515.762359][T25590] ? __fget_files+0x215/0x3d0 [ 1515.762381][T25590] ? __fget_files+0x215/0x3d0 [ 1515.762408][T25590] ? __fget_files+0x21f/0x3d0 [ 1515.762438][T25590] ksys_write+0x12a/0x250 [ 1515.762461][T25590] ? __pfx_ksys_write+0x10/0x10 [ 1515.762492][T25590] do_syscall_64+0x115/0x840 [ 1515.762514][T25590] ? clear_bhb_loop+0x40/0x90 [ 1515.762543][T25590] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1515.762568][T25590] RIP: 0033:0x7fd1e5f9de59 [ 1515.762587][T25590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1515.762612][T25590] RSP: 002b:00007fd1e6d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1515.762641][T25590] RAX: ffffffffffffffda RBX: 00007fd1e6226090 RCX: 00007fd1e5f9de59 [ 1515.762657][T25590] RDX: 0000000000000008 RSI: 0000200000000040 RDI: 0000000000000003 [ 1515.762672][T25590] RBP: 00007fd1e6d9f090 R08: 0000000000000000 R09: 0000000000000000 [ 1515.762687][T25590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1515.762702][T25590] R13: 00007fd1e6226128 R14: 00007fd1e6226090 R15: 00007ffd51713a68 [ 1515.762735][T25590] [ 1516.817655][T25605] blkio.reset_stats is deprecated [ 1518.404629][T25627] Process accounting paused [ 1521.092064][T25680] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20155] was attempted by ""[25680] [ 1521.222061][T25681] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1523.112978][T25702] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17213] was attempted by ""[25702] [ 1523.194320][T25698] kexec: Could not allocate control_code_buffer [ 1524.284547][T20844] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1525.464908][T25743] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4209'. [ 1527.327208][T25766] nvme_fabrics: missing parameter 'transport=%s' [ 1527.398327][T25766] nvme_fabrics: missing parameter 'nqn=%s' [ 1532.420128][T25850] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4234'. [ 1532.856084][T25856] FAULT_INJECTION: forcing a failure. [ 1532.856084][T25856] name failslab, interval 1, probability 0, space 0, times 0 [ 1532.920135][T25856] CPU: 0 UID: 0 PID: 25856 Comm: syz.2.4236 Tainted: G L syzkaller #0 PREEMPT(full) [ 1532.920177][T25856] Tainted: [L]=SOFTLOCKUP [ 1532.920186][T25856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1532.920203][T25856] Call Trace: [ 1532.920212][T25856] [ 1532.920222][T25856] dump_stack_lvl+0x100/0x190 [ 1532.920259][T25856] should_fail_ex.cold+0x5/0xa [ 1532.920294][T25856] should_failslab+0xc2/0x120 [ 1532.920331][T25856] __kmalloc_noprof+0xfc/0x820 [ 1532.920365][T25856] ? constrain_params_by_rules+0x175/0xd20 [ 1532.920413][T25856] constrain_params_by_rules+0x175/0xd20 [ 1532.920459][T25856] ? stack_depot_save_flags+0x27/0x9d0 [ 1532.920505][T25856] ? kasan_save_stack+0x3f/0x50 [ 1532.920538][T25856] ? __kmalloc_cache_noprof+0x2e5/0x6c0 [ 1532.920570][T25856] ? snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 1532.920611][T25856] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 1532.920649][T25856] ? do_select+0xd54/0x1850 [ 1532.920687][T25856] ? core_sys_select+0x55b/0xbb0 [ 1532.920725][T25856] ? kern_select+0x1d0/0x280 [ 1532.920764][T25856] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1532.920804][T25856] ? rcu_is_watching+0x12/0xc0 [ 1532.920835][T25856] ? snd_interval_refine+0x2d0/0x580 [ 1532.920869][T25856] snd_pcm_hw_refine+0x82a/0xb40 [ 1532.920913][T25856] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 1532.920956][T25856] ? __kasan_kmalloc+0xaa/0xb0 [ 1532.920989][T25856] ? __asan_memset+0x23/0x50 [ 1532.921015][T25856] ? _snd_pcm_hw_param_min+0x1ea/0x670 [ 1532.921056][T25856] snd_pcm_oss_change_params_locked+0x2594/0x39f0 [ 1532.921097][T25856] ? trace_contention_end+0x126/0x160 [ 1532.921129][T25856] ? rcu_is_watching+0x12/0xc0 [ 1532.921160][T25856] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1532.921199][T25856] ? __pfx___mutex_lock+0x10/0x10 [ 1532.921222][T25856] ? __mutex_lock+0x26d/0x1bd0 [ 1532.921247][T25856] ? find_held_lock+0x2b/0x80 [ 1532.921286][T25856] ? __mutex_unlock_slowpath+0x35d/0x930 [ 1532.921332][T25856] snd_pcm_oss_make_ready+0xeb/0x1b0 [ 1532.921372][T25856] snd_pcm_oss_set_trigger.isra.0+0x331/0x6c0 [ 1532.921417][T25856] snd_pcm_oss_poll+0x404/0xae0 [ 1532.921516][T25856] ? __pfx___pollwait+0x10/0x10 [ 1532.921557][T25856] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 1532.921607][T25856] ? __fget_files+0x21f/0x3d0 [ 1532.921636][T25856] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 1532.921675][T25856] do_select+0xd54/0x1850 [ 1532.921712][T25856] ? do_raw_spin_lock+0x128/0x260 [ 1532.921762][T25856] ? __pfx_do_select+0x10/0x10 [ 1532.921803][T25856] ? __pfx___pollwait+0x10/0x10 [ 1532.921845][T25856] ? __pfx_pollwake+0x10/0x10 [ 1532.921886][T25856] ? __pfx_pollwake+0x10/0x10 [ 1532.921962][T25856] ? find_held_lock+0x2b/0x80 [ 1532.921992][T25856] ? __might_fault+0xc5/0x140 [ 1532.922018][T25856] ? __might_fault+0xc5/0x140 [ 1532.922054][T25856] ? core_sys_select+0x55b/0xbb0 [ 1532.922092][T25856] core_sys_select+0x55b/0xbb0 [ 1532.922139][T25856] ? __pfx_core_sys_select+0x10/0x10 [ 1532.922178][T25856] ? get_pid_task+0xfc/0x250 [ 1532.922238][T25856] ? do_futex+0x190/0x440 [ 1532.922267][T25856] ? __pfx_do_futex+0x10/0x10 [ 1532.922300][T25856] kern_select+0x1d0/0x280 [ 1532.922342][T25856] ? __pfx_kern_select+0x10/0x10 [ 1532.922392][T25856] __x64_sys_select+0xbd/0x160 [ 1532.922414][T25856] ? do_syscall_64+0x90/0x840 [ 1532.922436][T25856] ? lockdep_hardirqs_on+0x78/0x100 [ 1532.922481][T25856] do_syscall_64+0x115/0x840 [ 1532.922503][T25856] ? clear_bhb_loop+0x40/0x90 [ 1532.922534][T25856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1532.922560][T25856] RIP: 0033:0x7fc36299de59 [ 1532.922582][T25856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1532.922607][T25856] RSP: 002b:00007fc363921028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1532.922632][T25856] RAX: ffffffffffffffda RBX: 00007fc362c26090 RCX: 00007fc36299de59 [ 1532.922651][T25856] RDX: 0000200000000080 RSI: 0000000000000000 RDI: 0000000000000007 [ 1532.922667][T25856] RBP: 00007fc362a33e6f R08: 0000000000000000 R09: 0000000000000000 [ 1532.922682][T25856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1532.922697][T25856] R13: 00007fc362c26128 R14: 00007fc362c26090 R15: 00007fff5493b9d8 [ 1532.922729][T25856] [ 1537.913137][T25919] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1537.972023][T25919] netlink: 310 bytes leftover after parsing attributes in process `syz.2.4245'. [ 1539.010733][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1539.021779][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 1542.110665][T25994] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4258'. [ 1542.129419][T25995] FAULT_INJECTION: forcing a failure. [ 1542.129419][T25995] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.189437][T25995] CPU: 0 UID: 0 PID: 25995 Comm: syz.1.4259 Tainted: G L syzkaller #0 PREEMPT(full) [ 1542.189474][T25995] Tainted: [L]=SOFTLOCKUP [ 1542.189483][T25995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1542.189497][T25995] Call Trace: [ 1542.189506][T25995] [ 1542.189515][T25995] dump_stack_lvl+0x100/0x190 [ 1542.189550][T25995] should_fail_ex.cold+0x5/0xa [ 1542.189582][T25995] should_failslab+0xc2/0x120 [ 1542.189618][T25995] __kmalloc_cache_noprof+0x91/0x6c0 [ 1542.189642][T25995] ? usb_alloc_urb+0x66/0xa0 [ 1542.189681][T25995] ? do_proc_control+0x334/0xe50 [ 1542.189724][T25995] do_proc_control+0x334/0xe50 [ 1542.189767][T25995] ? __pfx_do_proc_control+0x10/0x10 [ 1542.189814][T25995] usbdev_ioctl+0x1a28/0x3aa0 [ 1542.189856][T25995] ? __pfx_usbdev_ioctl+0x10/0x10 [ 1542.189901][T25995] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1542.189939][T25995] ? do_vfs_ioctl+0x226/0x13e0 [ 1542.189984][T25995] ? find_held_lock+0x2b/0x80 [ 1542.190015][T25995] ? __fget_files+0x215/0x3d0 [ 1542.190036][T25995] ? hook_file_ioctl_common+0x140/0x440 [ 1542.190075][T25995] ? __fget_files+0x21f/0x3d0 [ 1542.190101][T25995] ? __pfx_usbdev_ioctl+0x10/0x10 [ 1542.190141][T25995] __x64_sys_ioctl+0x18e/0x210 [ 1542.190177][T25995] do_syscall_64+0x115/0x840 [ 1542.190208][T25995] ? clear_bhb_loop+0x40/0x90 [ 1542.190238][T25995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1542.190262][T25995] RIP: 0033:0x7fd1e5f9de59 [ 1542.190282][T25995] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1542.190306][T25995] RSP: 002b:00007fd1e6dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1542.190328][T25995] RAX: ffffffffffffffda RBX: 00007fd1e6225fa0 RCX: 00007fd1e5f9de59 [ 1542.190344][T25995] RDX: 0000200000000240 RSI: 00000000c0185500 RDI: 0000000000000003 [ 1542.190359][T25995] RBP: 00007fd1e6dc0090 R08: 0000000000000000 R09: 0000000000000000 [ 1542.190374][T25995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1542.190392][T25995] R13: 00007fd1e6226038 R14: 00007fd1e6225fa0 R15: 00007ffd51713a68 [ 1542.190423][T25995] [ 1543.259770][T25994] openvswitch: : Dropping previously announced user features [ 1543.890612][ T30] audit: type=1806 audit(4294985735.843:23): xattr="." res=0 [ 1546.699496][T26041] Process accounting paused [ 1547.651061][T26086] FAULT_INJECTION: forcing a failure. [ 1547.651061][T26086] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1547.711101][T26086] CPU: 0 UID: 0 PID: 26086 Comm: syz.0.4278 Tainted: G L syzkaller #0 PREEMPT(full) [ 1547.711138][T26086] Tainted: [L]=SOFTLOCKUP [ 1547.711147][T26086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1547.711162][T26086] Call Trace: [ 1547.711170][T26086] [ 1547.711180][T26086] dump_stack_lvl+0x100/0x190 [ 1547.711214][T26086] should_fail_ex.cold+0x5/0xa [ 1547.711246][T26086] _copy_from_user+0x2e/0xd0 [ 1547.711283][T26086] core_sys_select+0x472/0xbb0 [ 1547.711328][T26086] ? __pfx_core_sys_select+0x10/0x10 [ 1547.711366][T26086] ? get_pid_task+0xfc/0x250 [ 1547.711403][T26086] ? get_pid_task+0x106/0x250 [ 1547.711453][T26086] ? __pfx_vfs_write+0x10/0x10 [ 1547.711476][T26086] ? do_sys_openat2+0x159/0x1e0 [ 1547.711508][T26086] ? __pfx_do_sys_openat2+0x10/0x10 [ 1547.711545][T26086] kern_select+0x1d0/0x280 [ 1547.711586][T26086] ? __pfx_kern_select+0x10/0x10 [ 1547.711640][T26086] ? __pfx_ksys_write+0x10/0x10 [ 1547.711667][T26086] __x64_sys_select+0xbd/0x160 [ 1547.711688][T26086] ? do_syscall_64+0x90/0x840 [ 1547.711709][T26086] ? lockdep_hardirqs_on+0x78/0x100 [ 1547.711747][T26086] do_syscall_64+0x115/0x840 [ 1547.711768][T26086] ? clear_bhb_loop+0x40/0x90 [ 1547.711797][T26086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1547.711822][T26086] RIP: 0033:0x7f216099de59 [ 1547.711840][T26086] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1547.711864][T26086] RSP: 002b:00007f2161892028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1547.711886][T26086] RAX: ffffffffffffffda RBX: 00007f2160c25fa0 RCX: 00007f216099de59 [ 1547.711903][T26086] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 1547.711917][T26086] RBP: 00007f2161892090 R08: 0000000000000000 R09: 0000000000000000 [ 1547.711932][T26086] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001 [ 1547.711947][T26086] R13: 00007f2160c26038 R14: 00007f2160c25fa0 R15: 00007ffdcdb854d8 [ 1547.711977][T26086] [ 1548.390343][T26098] random: crng reseeded on system resumption [ 1548.478987][T26094] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20835] was attempted by ""[26094] [ 1549.973884][T26088] Process accounting resumed [ 1552.394271][T20844] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 1553.132903][T26155] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20155] was attempted by ""[26155] [ 1553.719497][T26160] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4298'. [ 1553.777900][T26160] openvswitch: : Dropping previously announced user features [ 1555.437254][T20844] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1555.511982][T20844] Bluetooth: hci2: unexpected event 0x05 length: 6 > 4 [ 1556.884159][T26212] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17213] was attempted by ""[26212] [ 1557.476774][T20844] Bluetooth: hci2: command 0x0c1a tx timeout [ 1558.359019][T20844] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 1558.418842][T20844] Bluetooth: hci1: unexpected event 0x05 length: 6 > 4 [ 1558.644361][T26241] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4319'. [ 1558.794185][T26241] openvswitch: : Dropping previously announced user features [ 1558.805845][T26246] netlink: 'syz.2.4321': attribute type 11 has an invalid length. [ 1560.420869][T20844] Bluetooth: hci1: command 0x0c1a tx timeout [ 1560.653405][T26282] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17011] was attempted by ""[26282] [ 1562.332536][T26306] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4334'. [ 1562.399796][T26306] openvswitch: : Dropping previously announced user features [ 1563.368269][T26326] FAULT_INJECTION: forcing a failure. [ 1563.368269][T26326] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1563.428742][T26326] CPU: 0 UID: 0 PID: 26326 Comm: syz.4.4339 Tainted: G L syzkaller #0 PREEMPT(full) [ 1563.428779][T26326] Tainted: [L]=SOFTLOCKUP [ 1563.428787][T26326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1563.428802][T26326] Call Trace: [ 1563.428810][T26326] [ 1563.428820][T26326] dump_stack_lvl+0x100/0x190 [ 1563.428854][T26326] should_fail_ex.cold+0x5/0xa [ 1563.428882][T26326] ? prepare_alloc_pages+0x16d/0x5f0 [ 1563.428920][T26326] should_fail_alloc_page+0xeb/0x140 [ 1563.428957][T26326] prepare_alloc_pages+0x1f0/0x5f0 [ 1563.428992][T26326] ? stack_trace_save+0x8e/0xc0 [ 1563.429030][T26326] __alloc_frozen_pages_noprof+0x1af/0x2dc0 [ 1563.429062][T26326] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1563.429091][T26326] ? kasan_save_stack+0x3f/0x50 [ 1563.429128][T26326] ? __lock_acquire+0x49f/0x1a40 [ 1563.429150][T26326] ? __x64_sys_mmap+0x125/0x190 [ 1563.429183][T26326] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1563.429211][T26326] ? __lock_acquire+0x49f/0x1a40 [ 1563.429236][T26326] ? __lock_acquire+0x49f/0x1a40 [ 1563.429269][T26326] ? __lock_acquire+0x49f/0x1a40 [ 1563.429291][T26326] ? find_held_lock+0x2b/0x80 [ 1563.429330][T26326] ? xa_load+0x149/0x2c0 [ 1563.429357][T26326] ? xa_load+0x149/0x2c0 [ 1563.429383][T26326] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1563.429419][T26326] ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80 [ 1563.429451][T26326] ? policy_nodemask+0xed/0x4f0 [ 1563.429488][T26326] alloc_pages_mpol+0x1fb/0x540 [ 1563.429525][T26326] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1563.429568][T26326] alloc_pages_noprof+0x1a/0x160 [ 1563.429592][T26326] pte_alloc_one+0x1c/0x3d0 [ 1563.429632][T26326] do_huge_pmd_anonymous_page+0x2bf/0x1530 [ 1563.429663][T26326] ? _raw_spin_unlock+0x28/0x50 [ 1563.429697][T26326] ? __pmd_alloc+0x3fb/0x950 [ 1563.429736][T26326] __handle_mm_fault+0x239e/0x2a00 [ 1563.429768][T26326] ? mt_find+0x45e/0x8e0 [ 1563.429796][T26326] ? __pfx___handle_mm_fault+0x10/0x10 [ 1563.429819][T26326] ? __pfx_mt_find+0x10/0x10 [ 1563.429867][T26326] handle_mm_fault+0x37b/0xa30 [ 1563.429897][T26326] __get_user_pages+0x1178/0x32a0 [ 1563.429943][T26326] ? __pfx___get_user_pages+0x10/0x10 [ 1563.429986][T26326] populate_vma_page_range+0x267/0x3f0 [ 1563.430025][T26326] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1563.430062][T26326] ? __pfx_find_vma_intersection+0x10/0x10 [ 1563.430097][T26326] ? do_mmap+0x93f/0x12f0 [ 1563.430134][T26326] __mm_populate+0x107/0x3a0 [ 1563.430171][T26326] ? __pfx___mm_populate+0x10/0x10 [ 1563.430210][T26326] ? up_write+0x2e5/0x5c0 [ 1563.430239][T26326] vm_mmap_pgoff+0x37f/0x470 [ 1563.430276][T26326] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1563.430318][T26326] ? __mutex_unlock_slowpath+0x35d/0x930 [ 1563.430367][T26326] ksys_mmap_pgoff+0xe4/0x610 [ 1563.430404][T26326] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1563.430436][T26326] ? fput+0x79/0x100 [ 1563.430463][T26326] ? ksys_write+0x1ac/0x250 [ 1563.430486][T26326] ? __pfx_ksys_write+0x10/0x10 [ 1563.430512][T26326] __x64_sys_mmap+0x125/0x190 [ 1563.430546][T26326] do_syscall_64+0x115/0x840 [ 1563.430567][T26326] ? clear_bhb_loop+0x40/0x90 [ 1563.430597][T26326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1563.430621][T26326] RIP: 0033:0x7f0ef339de59 [ 1563.430640][T26326] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1563.430664][T26326] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1563.430686][T26326] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1563.430703][T26326] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1563.430717][T26326] RBP: 00007f0ef4194090 R08: 0000000000000002 R09: 0000000000008000 [ 1563.430732][T26326] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 1563.430747][T26326] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1563.430777][T26326] [ 1565.133398][T26345] FAULT_INJECTION: forcing a failure. [ 1565.133398][T26345] name failslab, interval 1, probability 0, space 0, times 0 [ 1565.311496][T26345] CPU: 0 UID: 0 PID: 26345 Comm: syz.4.4343 Tainted: G L syzkaller #0 PREEMPT(full) [ 1565.311535][T26345] Tainted: [L]=SOFTLOCKUP [ 1565.311544][T26345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1565.311559][T26345] Call Trace: [ 1565.311567][T26345] [ 1565.311577][T26345] dump_stack_lvl+0x100/0x190 [ 1565.311615][T26345] should_fail_ex.cold+0x5/0xa [ 1565.311648][T26345] should_failslab+0xc2/0x120 [ 1565.311684][T26345] kmem_cache_alloc_noprof+0x91/0x6a0 [ 1565.311714][T26345] ? stack_trace_save+0x8e/0xc0 [ 1565.311750][T26345] ? alloc_empty_file+0x5b/0x1c0 [ 1565.311787][T26345] alloc_empty_file+0x5b/0x1c0 [ 1565.311819][T26345] path_openat+0xe7/0x4280 [ 1565.311843][T26345] ? __kasan_slab_alloc+0x89/0x90 [ 1565.311875][T26345] ? kmem_cache_alloc_noprof+0x26b/0x6a0 [ 1565.311904][T26345] ? do_getname+0x35/0x390 [ 1565.311933][T26345] ? do_sys_openat2+0xc7/0x1e0 [ 1565.311963][T26345] ? __x64_sys_openat+0x12d/0x210 [ 1565.311995][T26345] ? do_syscall_64+0x115/0x840 [ 1565.312017][T26345] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1565.312051][T26345] ? __pfx_path_openat+0x10/0x10 [ 1565.312084][T26345] do_file_open+0x20e/0x430 [ 1565.312120][T26345] ? __pfx_do_file_open+0x10/0x10 [ 1565.312166][T26345] ? alloc_fd+0x471/0x7a0 [ 1565.312193][T26345] ? do_getname+0x191/0x390 [ 1565.312231][T26345] do_sys_openat2+0x10f/0x1e0 [ 1565.312264][T26345] ? __pfx_do_sys_openat2+0x10/0x10 [ 1565.312299][T26345] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1565.312349][T26345] __x64_sys_openat+0x12d/0x210 [ 1565.312384][T26345] ? __pfx___x64_sys_openat+0x10/0x10 [ 1565.312429][T26345] do_syscall_64+0x115/0x840 [ 1565.312450][T26345] ? clear_bhb_loop+0x40/0x90 [ 1565.312480][T26345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1565.312506][T26345] RIP: 0033:0x7f0ef339de59 [ 1565.312526][T26345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1565.312550][T26345] RSP: 002b:00007f0ef15f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1565.312574][T26345] RAX: ffffffffffffffda RBX: 00007f0ef3626090 RCX: 00007f0ef339de59 [ 1565.312592][T26345] RDX: 0000000000000001 RSI: 0000200000003cc0 RDI: ffffffffffffff9c [ 1565.312608][T26345] RBP: 00007f0ef3433e6f R08: 0000000000000000 R09: 0000000000000000 [ 1565.312624][T26345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1565.312639][T26345] R13: 00007f0ef3626128 R14: 00007f0ef3626090 R15: 00007ffde85b8ad8 [ 1565.312675][T26345] [ 1566.228613][T20844] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1566.245161][T20844] Bluetooth: hci2: unexpected event 0x05 length: 6 > 4 [ 1567.676109][T26397] random: crng reseeded on system resumption [ 1569.834915][T26426] FAULT_INJECTION: forcing a failure. [ 1569.834915][T26426] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1569.927545][T26426] CPU: 0 UID: 0 PID: 26426 Comm: syz.1.4364 Tainted: G L syzkaller #0 PREEMPT(full) [ 1569.927582][T26426] Tainted: [L]=SOFTLOCKUP [ 1569.927592][T26426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1569.927606][T26426] Call Trace: [ 1569.927614][T26426] [ 1569.927624][T26426] dump_stack_lvl+0x100/0x190 [ 1569.927659][T26426] should_fail_ex.cold+0x5/0xa [ 1569.927690][T26426] _copy_to_user+0x32/0xd0 [ 1569.927728][T26426] simple_read_from_buffer+0xcb/0x170 [ 1569.927771][T26426] proc_fail_nth_read+0x1af/0x230 [ 1569.927812][T26426] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1569.927847][T26426] ? rw_verify_area+0xce/0x6d0 [ 1569.927882][T26426] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1569.927915][T26426] vfs_read+0x1e4/0xb40 [ 1569.927943][T26426] ? __pfx_vfs_read+0x10/0x10 [ 1569.927964][T26426] ? __fget_files+0x215/0x3d0 [ 1569.927993][T26426] ? __fget_files+0x21f/0x3d0 [ 1569.928023][T26426] ksys_read+0x12a/0x250 [ 1569.928046][T26426] ? __pfx_ksys_read+0x10/0x10 [ 1569.928076][T26426] do_syscall_64+0x115/0x840 [ 1569.928099][T26426] ? clear_bhb_loop+0x40/0x90 [ 1569.928129][T26426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1569.928154][T26426] RIP: 0033:0x7fd1e5f5e68e [ 1569.928174][T26426] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1569.928199][T26426] RSP: 002b:00007fd1e6dbffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1569.928222][T26426] RAX: ffffffffffffffda RBX: 00007fd1e6dc06c0 RCX: 00007fd1e5f5e68e [ 1569.928238][T26426] RDX: 000000000000000f RSI: 00007fd1e6dc00a0 RDI: 0000000000000003 [ 1569.928252][T26426] RBP: 00007fd1e6dc0090 R08: 0000000000000000 R09: 0000000000000000 [ 1569.928267][T26426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1569.928281][T26426] R13: 00007fd1e6226038 R14: 00007fd1e6225fa0 R15: 00007ffd51713a68 [ 1569.928311][T26426] [ 1572.211686][T26452] futex_wake_op: syz.2.4371 tries to shift op by -2048; fix this program [ 1572.363866][T26452] futex_wake_op: syz.2.4371 tries to shift op by -2048; fix this program [ 1572.411627][T26456] 0x000000000001-0x000000020000 : "" [ 1572.545059][T26456] ftl_cs: FTL header corrupt! [ 1573.921015][T20844] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1573.945603][T20839] Bluetooth: hci0: unexpected event 0x05 length: 6 > 4 [ 1574.221786][T20839] Bluetooth: hci3: unexpected event 0x3e length: 358 > 260 [ 1574.228932][T20839] Bluetooth: hci3: unexpected subevent 0x1b length: 357 > 260 [ 1575.941470][T26482] Bluetooth: hci0: command 0x0c1a tx timeout [ 1576.259114][T20844] Bluetooth: hci3: command 0x0c1a tx timeout [ 1576.265291][T20839] Bluetooth: hci3: Opcode 0x206a failed: -110 [ 1577.049664][T26514] Process accounting resumed [ 1578.019430][T20839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1578.083188][T20839] Bluetooth: hci3: unexpected event 0x05 length: 6 > 4 [ 1578.362906][T26545] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1580.072828][T26560] Process accounting paused [ 1580.083005][T20844] Bluetooth: hci3: command 0x0c1a tx timeout [ 1581.332618][T26596] FAULT_INJECTION: forcing a failure. [ 1581.332618][T26596] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1581.384162][T26596] CPU: 0 UID: 0 PID: 26596 Comm: syz.4.4407 Tainted: G L syzkaller #0 PREEMPT(full) [ 1581.384203][T26596] Tainted: [L]=SOFTLOCKUP [ 1581.384212][T26596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1581.384227][T26596] Call Trace: [ 1581.384237][T26596] [ 1581.384247][T26596] dump_stack_lvl+0x100/0x190 [ 1581.384282][T26596] should_fail_ex.cold+0x5/0xa [ 1581.384313][T26596] _copy_to_user+0x32/0xd0 [ 1581.384356][T26596] simple_read_from_buffer+0xcb/0x170 [ 1581.384420][T26596] proc_fail_nth_read+0x1af/0x230 [ 1581.384467][T26596] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1581.384502][T26596] ? rw_verify_area+0xce/0x6d0 [ 1581.384550][T26596] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1581.384589][T26596] vfs_read+0x1e4/0xb40 [ 1581.384617][T26596] ? __pfx_vfs_read+0x10/0x10 [ 1581.384638][T26596] ? __fget_files+0x215/0x3d0 [ 1581.384669][T26596] ? __fget_files+0x21f/0x3d0 [ 1581.384727][T26596] ksys_read+0x12a/0x250 [ 1581.384763][T26596] ? __pfx_ksys_read+0x10/0x10 [ 1581.384796][T26596] do_syscall_64+0x115/0x840 [ 1581.384818][T26596] ? clear_bhb_loop+0x40/0x90 [ 1581.384847][T26596] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1581.384872][T26596] RIP: 0033:0x7f0ef335e68e [ 1581.384892][T26596] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1581.384915][T26596] RSP: 002b:00007f0ef15f5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1581.384938][T26596] RAX: ffffffffffffffda RBX: 00007f0ef15f66c0 RCX: 00007f0ef335e68e [ 1581.384954][T26596] RDX: 000000000000000f RSI: 00007f0ef15f60a0 RDI: 0000000000000005 [ 1581.384969][T26596] RBP: 00007f0ef15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1581.384984][T26596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1581.384999][T26596] R13: 00007f0ef3626128 R14: 00007f0ef3626090 R15: 00007ffde85b8ad8 [ 1581.385029][T26596] [ 1581.955341][T26598] FAULT_INJECTION: forcing a failure. [ 1581.955341][T26598] name failslab, interval 1, probability 0, space 0, times 0 [ 1582.010924][T26598] CPU: 0 UID: 0 PID: 26598 Comm: syz.4.4408 Tainted: G L syzkaller #0 PREEMPT(full) [ 1582.010963][T26598] Tainted: [L]=SOFTLOCKUP [ 1582.010972][T26598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1582.010987][T26598] Call Trace: [ 1582.010994][T26598] [ 1582.011003][T26598] dump_stack_lvl+0x100/0x190 [ 1582.011067][T26598] should_fail_ex.cold+0x5/0xa [ 1582.011094][T26598] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 1582.011136][T26598] should_failslab+0xc2/0x120 [ 1582.011170][T26598] kmem_cache_alloc_noprof+0x91/0x6a0 [ 1582.011201][T26598] ? skb_clone+0x190/0x400 [ 1582.011235][T26598] skb_clone+0x190/0x400 [ 1582.011264][T26598] netlink_deliver_tap+0xaed/0xcc0 [ 1582.011310][T26598] netlink_unicast+0x62b/0x850 [ 1582.011352][T26598] ? __pfx_netlink_unicast+0x10/0x10 [ 1582.011410][T26598] netlink_sendmsg+0x8b0/0xda0 [ 1582.011452][T26598] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1582.011496][T26598] ? apparmor_socket_sendmsg+0x15b/0x270 [ 1582.011526][T26598] ____sys_sendmsg+0xa4d/0xbe0 [ 1582.011561][T26598] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1582.011601][T26598] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1582.011649][T26598] ___sys_sendmsg+0x190/0x1e0 [ 1582.011688][T26598] ? __pfx____sys_sendmsg+0x10/0x10 [ 1582.011723][T26598] ? __lock_acquire+0x49f/0x1a40 [ 1582.011746][T26598] ? get_pid_task+0x106/0x250 [ 1582.011814][T26598] __sys_sendmsg+0x160/0x210 [ 1582.011845][T26598] ? __pfx___sys_sendmsg+0x10/0x10 [ 1582.011889][T26598] do_syscall_64+0x115/0x840 [ 1582.011911][T26598] ? clear_bhb_loop+0x40/0x90 [ 1582.011940][T26598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1582.011964][T26598] RIP: 0033:0x7f0ef339de59 [ 1582.011984][T26598] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1582.012008][T26598] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1582.012032][T26598] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1582.012048][T26598] RDX: 00000000200040d0 RSI: 00002000000004c0 RDI: 0000000000000006 [ 1582.012063][T26598] RBP: 00007f0ef4194090 R08: 0000000000000000 R09: 0000000000000000 [ 1582.012077][T26598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1582.012092][T26598] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1582.012122][T26598] [ 1582.019450][T26599] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1583.026791][T26598] netlink: 310 bytes leftover after parsing attributes in process `syz.4.4408'. [ 1583.885211][T26617] FAULT_INJECTION: forcing a failure. [ 1583.885211][T26617] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1583.968357][T26617] CPU: 0 UID: 0 PID: 26617 Comm: syz.1.4410 Tainted: G L syzkaller #0 PREEMPT(full) [ 1583.968398][T26617] Tainted: [L]=SOFTLOCKUP [ 1583.968407][T26617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1583.968423][T26617] Call Trace: [ 1583.968432][T26617] [ 1583.968441][T26617] dump_stack_lvl+0x100/0x190 [ 1583.968481][T26617] should_fail_ex.cold+0x5/0xa [ 1583.968509][T26617] ? prepare_alloc_pages+0x16d/0x5f0 [ 1583.968557][T26617] should_fail_alloc_page+0xeb/0x140 [ 1583.968595][T26617] prepare_alloc_pages+0x1f0/0x5f0 [ 1583.968636][T26617] __alloc_frozen_pages_noprof+0x1af/0x2dc0 [ 1583.968677][T26617] ? __lock_acquire+0x49f/0x1a40 [ 1583.968701][T26617] ? stack_trace_save+0x8e/0xc0 [ 1583.968736][T26617] ? __pfx_stack_trace_save+0x10/0x10 [ 1583.968773][T26617] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1583.968806][T26617] ? lock_acquire+0x1b9/0x370 [ 1583.968835][T26617] ? __lock_acquire+0x49f/0x1a40 [ 1583.968868][T26617] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1583.968907][T26617] ? policy_nodemask+0xed/0x4f0 [ 1583.968945][T26617] alloc_pages_mpol+0x1fb/0x540 [ 1583.968983][T26617] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1583.969018][T26617] ? __memcg_slab_post_alloc_hook+0x749/0x1160 [ 1583.969067][T26617] alloc_pages_noprof+0x1a/0x160 [ 1583.969091][T26617] pgd_alloc+0x4d/0x630 [ 1583.969112][T26617] ? mutex_init_lockdep+0xf1/0x120 [ 1583.969141][T26617] mm_init+0x6ab/0xf00 [ 1583.969171][T26617] copy_process+0x456a/0x8030 [ 1583.969200][T26617] ? futex_unqueue+0x133/0x2c0 [ 1583.969241][T26617] ? __pfx_copy_process+0x10/0x10 [ 1583.969279][T26617] ? _copy_from_user+0x59/0xd0 [ 1583.969320][T26617] kernel_clone+0x176/0x9d0 [ 1583.969353][T26617] ? __pfx_kernel_clone+0x10/0x10 [ 1583.969399][T26617] __do_sys_clone3+0x214/0x290 [ 1583.969431][T26617] ? __pfx___do_sys_clone3+0x10/0x10 [ 1583.969475][T26617] ? cleanup_mnt+0x263/0x450 [ 1583.969535][T26617] do_syscall_64+0x115/0x840 [ 1583.969564][T26617] ? clear_bhb_loop+0x40/0x90 [ 1583.969596][T26617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1583.969622][T26617] RIP: 0033:0x7fd1e5f9de59 [ 1583.969642][T26617] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1583.969666][T26617] RSP: 002b:00007fd1e6dbfef8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 1583.969689][T26617] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fd1e5f9de59 [ 1583.969706][T26617] RDX: 00007fd1e6dbff10 RSI: 0000000000000058 RDI: 00007fd1e6dbff10 [ 1583.969722][T26617] RBP: 00007fd1e6033e6f R08: 0000000000000000 R09: 0000000000000058 [ 1583.969737][T26617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1583.969752][T26617] R13: 00007fd1e6226038 R14: 00007fd1e6225fa0 R15: 00007ffd51713a68 [ 1583.969783][T26617] [ 1586.006247][T26659] FAULT_INJECTION: forcing a failure. [ 1586.006247][T26659] name failslab, interval 1, probability 0, space 0, times 0 [ 1586.096488][T26659] CPU: 0 UID: 0 PID: 26659 Comm: syz.0.4420 Tainted: G L syzkaller #0 PREEMPT(full) [ 1586.096528][T26659] Tainted: [L]=SOFTLOCKUP [ 1586.096537][T26659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1586.096552][T26659] Call Trace: [ 1586.096561][T26659] [ 1586.096570][T26659] dump_stack_lvl+0x100/0x190 [ 1586.096605][T26659] should_fail_ex.cold+0x5/0xa [ 1586.096639][T26659] should_failslab+0xc2/0x120 [ 1586.096675][T26659] __kmalloc_noprof+0xfc/0x820 [ 1586.096705][T26659] ? rcu_is_watching+0x12/0xc0 [ 1586.096736][T26659] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1586.096781][T26659] tomoyo_realpath_from_path+0xb6/0x690 [ 1586.096824][T26659] tomoyo_check_open_permission+0x2af/0x3c0 [ 1586.096858][T26659] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1586.096898][T26659] ? __lock_acquire+0x49f/0x1a40 [ 1586.096922][T26659] ? __lock_acquire+0x49f/0x1a40 [ 1586.096950][T26659] ? hook_file_open+0x24f/0x8f0 [ 1586.097019][T26659] ? path_get+0x61/0x80 [ 1586.097053][T26659] tomoyo_file_open+0x6b/0x90 [ 1586.097078][T26659] security_file_open+0xb5/0x1e0 [ 1586.097113][T26659] do_dentry_open+0x588/0x14d0 [ 1586.097147][T26659] vfs_open+0x82/0x3f0 [ 1586.097183][T26659] path_openat+0x2873/0x4280 [ 1586.097221][T26659] ? __pfx_path_openat+0x10/0x10 [ 1586.097255][T26659] do_file_open+0x20e/0x430 [ 1586.097286][T26659] ? __pfx_do_file_open+0x10/0x10 [ 1586.097333][T26659] ? alloc_fd+0x471/0x7a0 [ 1586.097360][T26659] ? do_getname+0x191/0x390 [ 1586.097394][T26659] do_sys_openat2+0x10f/0x1e0 [ 1586.097428][T26659] ? __pfx_do_sys_openat2+0x10/0x10 [ 1586.097463][T26659] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1586.097514][T26659] __x64_sys_openat+0x12d/0x210 [ 1586.097549][T26659] ? __pfx___x64_sys_openat+0x10/0x10 [ 1586.097595][T26659] do_syscall_64+0x115/0x840 [ 1586.097616][T26659] ? clear_bhb_loop+0x40/0x90 [ 1586.097647][T26659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1586.097673][T26659] RIP: 0033:0x7f216099de59 [ 1586.097693][T26659] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1586.097719][T26659] RSP: 002b:00007f2161892028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1586.097742][T26659] RAX: ffffffffffffffda RBX: 00007f2160c25fa0 RCX: 00007f216099de59 [ 1586.097758][T26659] RDX: 0000000000002000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 1586.097774][T26659] RBP: 00007f2160a33e6f R08: 0000000000000000 R09: 0000000000000000 [ 1586.097790][T26659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1586.097805][T26659] R13: 00007f2160c26038 R14: 00007f2160c25fa0 R15: 00007ffdcdb854d8 [ 1586.097837][T26659] [ 1586.097857][T26659] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1586.929670][T26667] Process accounting resumed [ 1588.660725][T26699] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20155] was attempted by ""[26699] [ 1589.724303][T25036] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 4 with max blocks 36 with error 117 [ 1589.831699][T25036] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1589.831699][T25036] [ 1591.476170][T26736] random: crng reseeded on system resumption [ 1591.588013][T26736] binder: 26733:26736 ioctl c018620c 200000000040 returned -22 [ 1595.762256][T26822] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17011] was attempted by ""[26822] [ 1596.022204][T26816] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4460'. [ 1597.476660][T20839] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1597.519348][T20844] Bluetooth: hci2: unexpected event 0x05 length: 6 > 4 [ 1598.440726][T26840] FAULT_INJECTION: forcing a failure. [ 1598.440726][T26840] name failslab, interval 1, probability 0, space 0, times 0 [ 1598.599689][T26840] CPU: 0 UID: 0 PID: 26840 Comm: syz.0.4464 Tainted: G L syzkaller #0 PREEMPT(full) [ 1598.599729][T26840] Tainted: [L]=SOFTLOCKUP [ 1598.599738][T26840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1598.599753][T26840] Call Trace: [ 1598.599762][T26840] [ 1598.599773][T26840] dump_stack_lvl+0x100/0x190 [ 1598.599809][T26840] should_fail_ex.cold+0x5/0xa [ 1598.599843][T26840] should_failslab+0xc2/0x120 [ 1598.599879][T26840] __kmalloc_cache_noprof+0x91/0x6c0 [ 1598.599904][T26840] ? ip6addrlbl_add+0x8c3/0xdb0 [ 1598.599998][T26840] ? ip6addrlbl_add+0x8c3/0xdb0 [ 1598.600026][T26840] ? ip6addrlbl_add+0xe0/0xdb0 [ 1598.600059][T26840] ip6addrlbl_add+0xe0/0xdb0 [ 1598.600096][T26840] ip6addrlbl_net_init+0x10a/0x330 [ 1598.600130][T26840] ? __pfx_ip6addrlbl_net_init+0x10/0x10 [ 1598.600161][T26840] ops_init+0x1e2/0x5f0 [ 1598.600195][T26840] setup_net+0x118/0x3a0 [ 1598.600227][T26840] ? __pfx_setup_net+0x10/0x10 [ 1598.600259][T26840] ? mutex_init_lockdep+0xf1/0x120 [ 1598.600290][T26840] copy_net_ns+0x46f/0x7c0 [ 1598.600327][T26840] create_new_namespaces+0x3ea/0xac0 [ 1598.600362][T26840] unshare_nsproxy_namespaces+0xf2/0x220 [ 1598.600398][T26840] ksys_unshare+0x438/0xab0 [ 1598.600434][T26840] ? __pfx_ksys_unshare+0x10/0x10 [ 1598.600479][T26840] __x64_sys_unshare+0x31/0x40 [ 1598.600512][T26840] do_syscall_64+0x115/0x840 [ 1598.600535][T26840] ? clear_bhb_loop+0x40/0x90 [ 1598.600566][T26840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1598.600591][T26840] RIP: 0033:0x7f216099de59 [ 1598.600612][T26840] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1598.600637][T26840] RSP: 002b:00007f2161892028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1598.600661][T26840] RAX: ffffffffffffffda RBX: 00007f2160c25fa0 RCX: 00007f216099de59 [ 1598.600678][T26840] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1598.600693][T26840] RBP: 00007f2160a33e6f R08: 0000000000000000 R09: 0000000000000000 [ 1598.600708][T26840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1598.600724][T26840] R13: 00007f2160c26038 R14: 00007f2160c25fa0 R15: 00007ffdcdb854d8 [ 1598.600755][T26840] [ 1599.049128][T26872] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1599.553962][T20844] Bluetooth: hci2: command 0x0c1a tx timeout [ 1600.140046][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1600.152325][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 1602.354347][T26939] FAULT_INJECTION: forcing a failure. [ 1602.354347][T26939] name failslab, interval 1, probability 0, space 0, times 0 [ 1602.432476][T26939] CPU: 0 UID: 0 PID: 26939 Comm: syz.1.4488 Tainted: G L syzkaller #0 PREEMPT(full) [ 1602.432514][T26939] Tainted: [L]=SOFTLOCKUP [ 1602.432522][T26939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1602.432537][T26939] Call Trace: [ 1602.432545][T26939] [ 1602.432554][T26939] dump_stack_lvl+0x100/0x190 [ 1602.432613][T26939] should_fail_ex.cold+0x5/0xa [ 1602.432645][T26939] should_failslab+0xc2/0x120 [ 1602.432683][T26939] kmem_cache_alloc_noprof+0x91/0x6a0 [ 1602.432715][T26939] ? ptlock_alloc+0x1f/0x70 [ 1602.432743][T26939] ptlock_alloc+0x1f/0x70 [ 1602.432766][T26939] pte_alloc_one+0x82/0x3d0 [ 1602.432808][T26939] do_huge_pmd_anonymous_page+0x2bf/0x1530 [ 1602.432839][T26939] ? _raw_spin_unlock+0x28/0x50 [ 1602.432889][T26939] ? __pmd_alloc+0x3fb/0x950 [ 1602.432939][T26939] __handle_mm_fault+0x239e/0x2a00 [ 1602.432968][T26939] ? mt_find+0x45e/0x8e0 [ 1602.432996][T26939] ? __pfx___handle_mm_fault+0x10/0x10 [ 1602.433019][T26939] ? __pfx_mt_find+0x10/0x10 [ 1602.433077][T26939] handle_mm_fault+0x37b/0xa30 [ 1602.433118][T26939] __get_user_pages+0x1178/0x32a0 [ 1602.433164][T26939] ? __pfx___get_user_pages+0x10/0x10 [ 1602.433206][T26939] populate_vma_page_range+0x267/0x3f0 [ 1602.433247][T26939] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1602.433283][T26939] ? __pfx_find_vma_intersection+0x10/0x10 [ 1602.433318][T26939] ? do_mmap+0x93f/0x12f0 [ 1602.433354][T26939] __mm_populate+0x107/0x3a0 [ 1602.433391][T26939] ? __pfx___mm_populate+0x10/0x10 [ 1602.433429][T26939] ? up_write+0x2e5/0x5c0 [ 1602.433458][T26939] vm_mmap_pgoff+0x37f/0x470 [ 1602.433494][T26939] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1602.433531][T26939] ? __mutex_unlock_slowpath+0x35d/0x930 [ 1602.433587][T26939] ksys_mmap_pgoff+0xe4/0x610 [ 1602.433624][T26939] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1602.433656][T26939] ? fput+0x79/0x100 [ 1602.433683][T26939] ? ksys_write+0x1ac/0x250 [ 1602.433706][T26939] ? __pfx_ksys_write+0x10/0x10 [ 1602.433731][T26939] __x64_sys_mmap+0x125/0x190 [ 1602.433766][T26939] do_syscall_64+0x115/0x840 [ 1602.433786][T26939] ? clear_bhb_loop+0x40/0x90 [ 1602.433816][T26939] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1602.433841][T26939] RIP: 0033:0x7fd1e5f9de59 [ 1602.433861][T26939] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1602.433883][T26939] RSP: 002b:00007fd1e6dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1602.433907][T26939] RAX: ffffffffffffffda RBX: 00007fd1e6225fa0 RCX: 00007fd1e5f9de59 [ 1602.433922][T26939] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 1602.433937][T26939] RBP: 00007fd1e6dc0090 R08: 0000000000000002 R09: 0000000000008000 [ 1602.433951][T26939] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 1602.433965][T26939] R13: 00007fd1e6226038 R14: 00007fd1e6225fa0 R15: 00007ffd51713a68 [ 1602.433996][T26939] [ 1603.130360][T26949] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17213] was attempted by ""[26949] [ 1603.250989][T26947] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4489'. [ 1604.664552][T26969] FAULT_INJECTION: forcing a failure. [ 1604.664552][T26969] name failslab, interval 1, probability 0, space 0, times 0 [ 1604.761186][T26969] CPU: 0 UID: 0 PID: 26969 Comm: syz.2.4492 Tainted: G L syzkaller #0 PREEMPT(full) [ 1604.761224][T26969] Tainted: [L]=SOFTLOCKUP [ 1604.761233][T26969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1604.761248][T26969] Call Trace: [ 1604.761257][T26969] [ 1604.761267][T26969] dump_stack_lvl+0x100/0x190 [ 1604.761302][T26969] should_fail_ex.cold+0x5/0xa [ 1604.761336][T26969] should_failslab+0xc2/0x120 [ 1604.761374][T26969] __kmalloc_cache_noprof+0x91/0x6c0 [ 1604.761402][T26969] ? snd_seq_pool_new+0x44/0x230 [ 1604.761504][T26969] ? __pfx_snd_seq_open+0x10/0x10 [ 1604.761536][T26969] snd_seq_pool_new+0x44/0x230 [ 1604.761576][T26969] snd_seq_fifo_new+0x5a/0x270 [ 1604.761601][T26969] snd_seq_open+0x3d2/0x540 [ 1604.761634][T26969] ? __pfx_snd_seq_open+0x10/0x10 [ 1604.761676][T26969] snd_open+0x201/0x450 [ 1604.761715][T26969] ? __pfx_snd_open+0x10/0x10 [ 1604.761749][T26969] chrdev_open+0x234/0x6a0 [ 1604.761775][T26969] ? __pfx_apparmor_file_open+0x10/0x10 [ 1604.761803][T26969] ? __pfx_chrdev_open+0x10/0x10 [ 1604.761830][T26969] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1604.761872][T26969] do_dentry_open+0x6ab/0x14d0 [ 1604.761903][T26969] ? __pfx_chrdev_open+0x10/0x10 [ 1604.761935][T26969] vfs_open+0x82/0x3f0 [ 1604.761972][T26969] path_openat+0x2873/0x4280 [ 1604.762021][T26969] ? __pfx_path_openat+0x10/0x10 [ 1604.762056][T26969] do_file_open+0x20e/0x430 [ 1604.762085][T26969] ? __pfx_do_file_open+0x10/0x10 [ 1604.762131][T26969] ? alloc_fd+0x471/0x7a0 [ 1604.762157][T26969] ? do_getname+0x191/0x390 [ 1604.762194][T26969] do_sys_openat2+0x10f/0x1e0 [ 1604.762227][T26969] ? __pfx_do_sys_openat2+0x10/0x10 [ 1604.762263][T26969] ? __fget_files+0x21f/0x3d0 [ 1604.762291][T26969] __x64_sys_openat+0x12d/0x210 [ 1604.762326][T26969] ? __pfx___x64_sys_openat+0x10/0x10 [ 1604.762373][T26969] do_syscall_64+0x115/0x840 [ 1604.762396][T26969] ? clear_bhb_loop+0x40/0x90 [ 1604.762426][T26969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1604.762451][T26969] RIP: 0033:0x7fc36299de59 [ 1604.762472][T26969] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1604.762496][T26969] RSP: 002b:00007fc363921028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1604.762520][T26969] RAX: ffffffffffffffda RBX: 00007fc362c26090 RCX: 00007fc36299de59 [ 1604.762537][T26969] RDX: 0000000000020000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1604.762553][T26969] RBP: 00007fc362a33e6f R08: 0000000000000000 R09: 0000000000000000 [ 1604.762568][T26969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1604.762584][T26969] R13: 00007fc362c26128 R14: 00007fc362c26090 R15: 00007fff5493b9d8 [ 1604.762616][T26969] [ 1607.043890][T20844] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1607.071408][T20844] Bluetooth: hci0: unexpected event 0x05 length: 6 > 4 [ 1607.160560][T27002] Process accounting paused [ 1607.308207][T26992] bond0: no command found in slaves file - use +ifname or -ifname [ 1609.052842][T20839] Bluetooth: hci0: command 0x0c1a tx timeout [ 1610.093630][T27029] Process accounting resumed [ 1610.489672][T25029] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 11 with max blocks 7 with error 117 [ 1610.575415][T25029] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1610.575415][T25029] [ 1611.780888][T27094] futex_wake_op: syz.2.4517 tries to shift op by -2048; fix this program [ 1611.963377][T27094] futex_wake_op: syz.2.4517 tries to shift op by -2048; fix this program [ 1613.798697][T20839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1614.361463][T20839] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1614.391161][T20839] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0' [ 1614.401045][T20839] CPU: 0 UID: 0 PID: 20839 Comm: kworker/u12:0 Tainted: G L syzkaller #0 PREEMPT(full) [ 1614.401084][T20839] Tainted: [L]=SOFTLOCKUP [ 1614.401093][T20839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1614.401135][T20839] Workqueue: hci3 hci_rx_work [ 1614.401236][T20839] Call Trace: [ 1614.401244][T20839] [ 1614.401255][T20839] dump_stack_lvl+0x100/0x190 [ 1614.401289][T20839] sysfs_warn_dup.cold+0x1c/0x28 [ 1614.401326][T20839] sysfs_create_dir_ns+0x24b/0x2b0 [ 1614.401363][T20839] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 1614.401398][T20839] ? find_held_lock+0x2b/0x80 [ 1614.401428][T20839] ? kobject_add_internal+0x25f/0x930 [ 1614.401459][T20839] ? kobject_add_internal+0x25f/0x930 [ 1614.401491][T20839] ? do_raw_spin_unlock+0x145/0x1e0 [ 1614.401523][T20839] kobject_add_internal+0x2c8/0x930 [ 1614.401572][T20839] kobject_add+0x16a/0x1e0 [ 1614.401604][T20839] ? __pfx_kobject_add+0x10/0x10 [ 1614.401633][T20839] ? class_to_subsys+0x10f/0x150 [ 1614.401678][T20839] ? kobject_put+0xb9/0x640 [ 1614.401704][T20839] ? _raw_spin_unlock+0x28/0x50 [ 1614.401746][T20839] device_add+0x294/0x1970 [ 1614.401816][T20839] ? __pfx_dev_set_name+0x10/0x10 [ 1614.401842][T20839] ? __pfx_device_add+0x10/0x10 [ 1614.401880][T20839] ? mgmt_send_event_skb+0x2fb/0x460 [ 1614.401967][T20839] hci_conn_add_sysfs+0x1a3/0x260 [ 1614.402017][T20839] le_conn_complete_evt+0x11eb/0x1f60 [ 1614.402097][T20839] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 1614.402135][T20839] ? __pfx_bt_warn+0x10/0x10 [ 1614.402168][T20839] ? hci_event_packet+0x186/0xcd0 [ 1614.402213][T20839] hci_le_conn_complete_evt+0x23c/0x3a0 [ 1614.402255][T20839] ? skb_pull_data+0x15f/0x1e0 [ 1614.402296][T20839] hci_le_meta_evt+0x34a/0x5f0 [ 1614.402321][T20839] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 1614.402365][T20839] hci_event_packet+0x51c/0xcd0 [ 1614.402405][T20839] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 1614.402432][T20839] ? __pfx_hci_event_packet+0x10/0x10 [ 1614.402474][T20839] ? kcov_remote_start+0x384/0x670 [ 1614.402511][T20839] ? lockdep_hardirqs_on+0x78/0x100 [ 1614.402558][T20839] hci_rx_work+0x451/0xfc0 [ 1614.402601][T20839] process_one_work+0xa23/0x1940 [ 1614.402651][T20839] ? __pfx_process_one_work+0x10/0x10 [ 1614.402705][T20839] ? __pfx_hci_rx_work+0x10/0x10 [ 1614.402746][T20839] worker_thread+0x5ef/0xe50 [ 1614.402794][T20839] ? kthread+0x13a/0x450 [ 1614.402828][T20839] ? __pfx_worker_thread+0x10/0x10 [ 1614.402864][T20839] kthread+0x370/0x450 [ 1614.402902][T20839] ? __pfx_kthread+0x10/0x10 [ 1614.402939][T20839] ret_from_fork+0x72b/0xd50 [ 1614.402972][T20839] ? __pfx_ret_from_fork+0x10/0x10 [ 1614.403006][T20839] ? __switch_to+0x800/0x10f0 [ 1614.403029][T20839] ? __switch_to_asm+0x39/0x70 [ 1614.403066][T20839] ? __pfx_kthread+0x10/0x10 [ 1614.403102][T20839] ret_from_fork_asm+0x1a/0x30 [ 1614.403154][T20839] [ 1614.403210][T20839] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 1614.735476][T20839] Bluetooth: hci3: failed to register connection device [ 1615.309422][T27150] FAULT_INJECTION: forcing a failure. [ 1615.309422][T27150] name failslab, interval 1, probability 0, space 0, times 0 [ 1615.494693][T27150] CPU: 0 UID: 0 PID: 27150 Comm: syz.2.4529 Tainted: G L syzkaller #0 PREEMPT(full) [ 1615.494742][T27150] Tainted: [L]=SOFTLOCKUP [ 1615.494752][T27150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1615.494784][T27150] Call Trace: [ 1615.494792][T27150] [ 1615.494802][T27150] dump_stack_lvl+0x100/0x190 [ 1615.494839][T27150] should_fail_ex.cold+0x5/0xa [ 1615.494875][T27150] should_failslab+0xc2/0x120 [ 1615.494911][T27150] __kmalloc_noprof+0xfc/0x820 [ 1615.494941][T27150] ? rcu_is_watching+0x12/0xc0 [ 1615.494978][T27150] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1615.495023][T27150] tomoyo_realpath_from_path+0xb6/0x690 [ 1615.495066][T27150] tomoyo_check_open_permission+0x2af/0x3c0 [ 1615.495102][T27150] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1615.495143][T27150] ? hook_file_open+0x24f/0x8f0 [ 1615.495195][T27150] ? path_get+0x61/0x80 [ 1615.495227][T27150] tomoyo_file_open+0x6b/0x90 [ 1615.495257][T27150] security_file_open+0xb5/0x1e0 [ 1615.495294][T27150] do_dentry_open+0x588/0x14d0 [ 1615.495327][T27150] vfs_open+0x82/0x3f0 [ 1615.495362][T27150] path_openat+0x2873/0x4280 [ 1615.495400][T27150] ? __pfx_path_openat+0x10/0x10 [ 1615.495433][T27150] do_file_open+0x20e/0x430 [ 1615.495461][T27150] ? __pfx_do_file_open+0x10/0x10 [ 1615.495507][T27150] ? alloc_fd+0x471/0x7a0 [ 1615.495534][T27150] ? do_getname+0x191/0x390 [ 1615.495567][T27150] do_sys_openat2+0x10f/0x1e0 [ 1615.495600][T27150] ? __pfx_do_sys_openat2+0x10/0x10 [ 1615.495634][T27150] ? __x64_sys_close_range+0x2d9/0x5d0 [ 1615.495668][T27150] __x64_sys_openat+0x12d/0x210 [ 1615.495703][T27150] ? __pfx___x64_sys_openat+0x10/0x10 [ 1615.495755][T27150] do_syscall_64+0x115/0x840 [ 1615.495778][T27150] ? clear_bhb_loop+0x40/0x90 [ 1615.495808][T27150] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1615.495833][T27150] RIP: 0033:0x7fc36299de59 [ 1615.495855][T27150] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1615.495879][T27150] RSP: 002b:00007fc363921028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1615.495903][T27150] RAX: ffffffffffffffda RBX: 00007fc362c26090 RCX: 00007fc36299de59 [ 1615.495919][T27150] RDX: 0000000000008300 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1615.495936][T27150] RBP: 00007fc362a33e6f R08: 0000000000000000 R09: 0000000000000000 [ 1615.495951][T27150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1615.495966][T27150] R13: 00007fc362c26128 R14: 00007fc362c26090 R15: 00007fff5493b9d8 [ 1615.495998][T27150] [ 1616.021907][T27150] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1616.080675][T20839] Bluetooth: hci3: command 0x0c1a tx timeout [ 1616.572199][T20839] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1616.589589][T20839] Bluetooth: hci0: unexpected event 0x05 length: 6 > 4 [ 1617.703775][T27179] Process accounting paused [ 1617.991815][T20839] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 1618.126379][T20839] Bluetooth: hci3: command 0x0c1a tx timeout [ 1618.431707][T27193] futex_wake_op: syz.1.4537 tries to shift op by -2048; fix this program [ 1618.572382][T27193] futex_wake_op: syz.1.4537 tries to shift op by -2048; fix this program [ 1618.895087][T27204] futex_wake_op: syz.2.4539 tries to shift op by -2048; fix this program [ 1618.985843][T27204] futex_wake_op: syz.2.4539 tries to shift op by -2048; fix this program [ 1619.087415][T27212] 0x000000000001-0x000000020000 : "" [ 1619.202408][T27212] ftl_cs: FTL header corrupt! [ 1620.036260][T26482] Bluetooth: hci1: command 0x0c1a tx timeout [ 1620.195131][T20839] Bluetooth: hci3: command 0x0c1a tx timeout [ 1620.502824][T27226] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4543: iget: checksum invalid [ 1620.558826][T27226] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1620.620381][T27226] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4543: iget: checksum invalid [ 1620.687023][T27226] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1620.751090][T27226] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4543: iget: checksum invalid [ 1620.827906][T27226] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1620.914258][T27226] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4543: iget: checksum invalid [ 1620.981172][T27226] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1621.043281][T27226] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1621.087359][T27226] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1622.108199][T20844] Bluetooth: hci1: command 0x0c1a tx timeout [ 1622.264482][T26482] Bluetooth: hci3: command 0x0c1a tx timeout [ 1623.450426][T27267] futex_wake_op: syz.0.4554 tries to shift op by -2048; fix this program [ 1623.533405][T27267] futex_wake_op: syz.0.4554 tries to shift op by -2048; fix this program [ 1623.849485][T27276] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4556'. [ 1624.024061][T27276] ipvlan1: entered promiscuous mode [ 1624.050163][T27276] ipvlan1: entered allmulticast mode [ 1624.069026][T27276] veth0_vlan: entered allmulticast mode [ 1626.419313][T27310] futex_wake_op: syz.0.4565 tries to shift op by -2048; fix this program [ 1626.477613][T27310] futex_wake_op: syz.0.4565 tries to shift op by -2048; fix this program [ 1626.590703][T27314] 0x000000000001-0x000000020000 : "" [ 1626.757741][T27314] ftl_cs: FTL header corrupt! [ 1629.835963][T26482] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 1631.038074][T27382] netlink: 'syz.0.4579': attribute type 4 has an invalid length. [ 1631.116878][T27382] netlink: 'syz.0.4579': attribute type 4 has an invalid length. [ 1631.637229][T27404] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4584'. [ 1633.025010][T27419] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4587'. [ 1634.341771][T27443] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4593'. [ 1634.588191][T27440] futex_wake_op: syz.2.4592 tries to shift op by -2048; fix this program [ 1634.646008][T27440] futex_wake_op: syz.2.4592 tries to shift op by -2048; fix this program [ 1634.728233][T27440] 0x000000000001-0x000000020000 : "" [ 1634.967720][T27440] ftl_cs: FTL header corrupt! [ 1636.785173][T27478] futex_wake_op: syz.1.4603 tries to shift op by -2048; fix this program [ 1636.859969][T27478] futex_wake_op: syz.1.4603 tries to shift op by -2048; fix this program [ 1636.925749][T27484] 0x000000000001-0x000000020000 : "" [ 1636.938432][T27488] bond0: invalid ARP target specified [ 1636.965137][T27484] ftl_cs: FTL header corrupt! [ 1637.241036][T27481] Process accounting resumed [ 1640.465246][T27548] Process accounting paused [ 1640.656127][T27554] futex_wake_op: syz.0.4621 tries to shift op by -2048; fix this program [ 1640.811653][T27554] futex_wake_op: syz.0.4621 tries to shift op by -2048; fix this program [ 1643.967362][T27616] futex_wake_op: syz.0.4633 tries to shift op by -2048; fix this program [ 1644.087980][T27616] futex_wake_op: syz.0.4633 tries to shift op by -2048; fix this program [ 1644.384920][T20844] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1644.398937][T20844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1644.414512][T20844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1644.446334][T20844] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1644.459082][T20844] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1645.324190][T25036] bridge_slave_1: left allmulticast mode [ 1645.364558][T25036] bridge_slave_1: left promiscuous mode [ 1645.393130][T25036] bridge0: port 2(bridge_slave_1) entered disabled state [ 1645.465596][T25036] bridge_slave_0: left allmulticast mode [ 1645.486864][T25036] bridge_slave_0: left promiscuous mode [ 1645.512005][T25036] bridge0: port 1(bridge_slave_0) entered disabled state [ 1646.541156][T20844] Bluetooth: hci4: command tx timeout [ 1646.866028][T25036] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1646.922412][T25036] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1646.965449][T25036] bond0 (unregistering): Released all slaves [ 1647.007735][T27649] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 1647.137068][T25036] : left promiscuous mode [ 1647.346263][T27652] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.4641: iget: checksum invalid [ 1647.507587][T27652] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1647.571474][T27652] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.4641: iget: checksum invalid [ 1647.614587][T27652] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1647.649582][T27652] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.4641: iget: checksum invalid [ 1647.701691][T27652] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1647.750029][T27652] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.4641: iget: checksum invalid [ 1647.820848][T27652] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1647.855945][T27652] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1647.902230][T27652] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1648.028186][T27646] Process accounting resumed [ 1648.065874][T27660] FAULT_INJECTION: forcing a failure. [ 1648.065874][T27660] name failslab, interval 1, probability 0, space 0, times 0 [ 1648.147568][T27660] CPU: 0 UID: 0 PID: 27660 Comm: syz.0.4642 Tainted: G L syzkaller #0 PREEMPT(full) [ 1648.147606][T27660] Tainted: [L]=SOFTLOCKUP [ 1648.147615][T27660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1648.147629][T27660] Call Trace: [ 1648.147637][T27660] [ 1648.147647][T27660] dump_stack_lvl+0x100/0x190 [ 1648.147685][T27660] should_fail_ex.cold+0x5/0xa [ 1648.147718][T27660] should_failslab+0xc2/0x120 [ 1648.147754][T27660] kmem_cache_alloc_node_noprof+0x94/0x6b0 [ 1648.147787][T27660] ? __alloc_skb+0x140/0x710 [ 1648.147820][T27660] __alloc_skb+0x140/0x710 [ 1648.147846][T27660] ? __pfx___alloc_skb+0x10/0x10 [ 1648.147881][T27660] tipc_buf_acquire+0x26/0xe0 [ 1648.147919][T27660] tipc_msg_build+0x112/0x1100 [ 1648.147956][T27660] ? tipc_node_find+0x2dc/0x510 [ 1648.147998][T27660] ? __pfx_tipc_msg_build+0x10/0x10 [ 1648.148050][T27660] __tipc_sendmsg+0xb68/0x1ab0 [ 1648.148091][T27660] ? __pfx___tipc_sendmsg+0x10/0x10 [ 1648.148135][T27660] ? __lock_acquire+0x49f/0x1a40 [ 1648.148162][T27660] ? aa_sk_perm+0x309/0xaa0 [ 1648.148194][T27660] ? __pfx_woken_wake_function+0x10/0x10 [ 1648.148237][T27660] ? __local_bh_enable_ip+0x9e/0x120 [ 1648.148269][T27660] tipc_sendmsg+0x4f/0x70 [ 1648.148303][T27660] ____sys_sendmsg+0xa4d/0xbe0 [ 1648.148339][T27660] ? __pfx_tipc_sendmsg+0x10/0x10 [ 1648.148374][T27660] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1648.148415][T27660] ? rcu_is_watching+0x12/0xc0 [ 1648.148444][T27660] ? ___sys_sendmsg+0x19d/0x1e0 [ 1648.148480][T27660] ? kfree+0x1e5/0x6c0 [ 1648.148506][T27660] ___sys_sendmsg+0x190/0x1e0 [ 1648.148546][T27660] ? __pfx____sys_sendmsg+0x10/0x10 [ 1648.148612][T27660] ? __pfx___might_resched+0x10/0x10 [ 1648.148657][T27660] __sys_sendmmsg+0x20c/0x440 [ 1648.148691][T27660] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1648.148719][T27660] ? ksys_write+0x190/0x250 [ 1648.148764][T27660] ? fput+0x79/0x100 [ 1648.148792][T27660] ? ksys_write+0x1ac/0x250 [ 1648.148814][T27660] ? __pfx_ksys_write+0x10/0x10 [ 1648.148841][T27660] __x64_sys_sendmmsg+0x9c/0x100 [ 1648.148870][T27660] ? lockdep_hardirqs_on+0x78/0x100 [ 1648.148908][T27660] do_syscall_64+0x115/0x840 [ 1648.148929][T27660] ? clear_bhb_loop+0x40/0x90 [ 1648.148958][T27660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1648.148983][T27660] RIP: 0033:0x7f216099de59 [ 1648.149002][T27660] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1648.149027][T27660] RSP: 002b:00007f2161892028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1648.149050][T27660] RAX: ffffffffffffffda RBX: 00007f2160c25fa0 RCX: 00007f216099de59 [ 1648.149066][T27660] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 1648.149080][T27660] RBP: 00007f2161892090 R08: 0000000000000000 R09: 0000000000000000 [ 1648.149100][T27660] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001 [ 1648.149115][T27660] R13: 00007f2160c26038 R14: 00007f2160c25fa0 R15: 00007ffdcdb854d8 [ 1648.149146][T27660] [ 1648.711076][T20844] Bluetooth: hci4: command tx timeout [ 1649.220718][T25036] hsr_slave_0: left promiscuous mode [ 1649.249475][T25036] hsr_slave_1: left promiscuous mode [ 1649.310431][T25036] veth1_macvtap: left promiscuous mode [ 1649.353454][T25036] veth0_macvtap: left promiscuous mode [ 1649.391339][T25036] veth1_vlan: left promiscuous mode [ 1649.426388][T25036] veth0_vlan: left promiscuous mode [ 1650.714107][T25036] team0 (unregistering): Port device team_slave_1 removed [ 1650.759659][T20844] Bluetooth: hci4: command tx timeout [ 1650.833216][T25036] team0 (unregistering): Port device team_slave_0 removed [ 1651.293153][T27705] futex_wake_op: syz.4.4656 tries to shift op by -2048; fix this program [ 1651.335650][T27705] futex_wake_op: syz.4.4656 tries to shift op by -2048; fix this program [ 1651.385043][T27705] 0x000000000001-0x000000020000 : "" [ 1651.581063][T27705] ftl_cs: FTL header corrupt! [ 1652.828845][T20844] Bluetooth: hci4: command tx timeout [ 1652.926645][T27620] bridge0: port 1(bridge_slave_0) entered blocking state [ 1652.940658][T27620] bridge0: port 1(bridge_slave_0) entered disabled state [ 1652.948449][T27620] bridge_slave_0: entered allmulticast mode [ 1652.963194][T27620] bridge_slave_0: entered promiscuous mode [ 1653.006350][T27620] bridge0: port 2(bridge_slave_1) entered blocking state [ 1653.022273][T27620] bridge0: port 2(bridge_slave_1) entered disabled state [ 1653.038998][T27620] bridge_slave_1: entered allmulticast mode [ 1653.059134][T27620] bridge_slave_1: entered promiscuous mode [ 1653.184380][T27620] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1653.250532][T27620] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1653.556667][T27620] team0: Port device team_slave_0 added [ 1653.622308][T27620] team0: Port device team_slave_1 added [ 1653.814797][T27620] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1653.841048][T27620] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1653.869650][T27736] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1653.933383][T27620] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1654.052250][T27620] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1654.080521][T27620] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1654.189571][T27620] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1654.447855][T27620] hsr_slave_0: entered promiscuous mode [ 1654.468973][T27620] hsr_slave_1: entered promiscuous mode [ 1654.961371][T27748] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 211!phy1!netdev:wlan1!rc_rateid [ 1655.229812][T27751] sysfs: cannot create duplicate filename '/class/ieee80211/211!phy1!netdev:wlan1!rc_rateidx_mcs_mask' [ 1655.308363][T27751] CPU: 0 UID: 0 PID: 27751 Comm: syz.1.4667 Tainted: G L syzkaller #0 PREEMPT(full) [ 1655.308403][T27751] Tainted: [L]=SOFTLOCKUP [ 1655.308412][T27751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1655.308428][T27751] Call Trace: [ 1655.308436][T27751] [ 1655.308446][T27751] dump_stack_lvl+0x100/0x190 [ 1655.308483][T27751] sysfs_warn_dup.cold+0x1c/0x28 [ 1655.308522][T27751] sysfs_do_create_link_sd+0x113/0x140 [ 1655.308564][T27751] sysfs_create_link+0x61/0xc0 [ 1655.308601][T27751] device_add+0x675/0x1970 [ 1655.308645][T27751] ? __pfx_device_add+0x10/0x10 [ 1655.308682][T27751] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1655.308722][T27751] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 1655.308823][T27751] wiphy_register+0x2151/0x3110 [ 1655.308886][T27751] ? __pfx_wiphy_register+0x10/0x10 [ 1655.308921][T27751] ? __asan_memset+0x23/0x50 [ 1655.308949][T27751] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 1655.309010][T27751] ieee80211_register_hw+0x3053/0x4580 [ 1655.309076][T27751] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 1655.309104][T27751] ? __pfx___debug_object_init+0x10/0x10 [ 1655.309150][T27751] ? find_held_lock+0x2b/0x80 [ 1655.309183][T27751] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1655.309222][T27751] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 1655.309248][T27751] ? __hrtimer_setup+0x208/0x330 [ 1655.309280][T27751] mac80211_hwsim_new_radio+0x2acc/0x64c0 [ 1655.309338][T27751] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1655.309373][T27751] ? __asan_memcpy+0x3c/0x60 [ 1655.309404][T27751] hwsim_new_radio_nl+0xc6b/0x13f0 [ 1655.309438][T27751] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1655.309477][T27751] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 1655.309508][T27751] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 1655.309543][T27751] genl_family_rcv_msg_doit+0x214/0x300 [ 1655.309573][T27751] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1655.309599][T27751] ? genl_get_cmd+0x3e7/0x760 [ 1655.309630][T27751] ? bpf_lsm_capable+0x9/0x10 [ 1655.309659][T27751] ? security_capable+0x80/0x260 [ 1655.309685][T27751] ? ns_capable+0xd2/0xf0 [ 1655.309714][T27751] genl_rcv_msg+0x560/0x800 [ 1655.309743][T27751] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1655.309770][T27751] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1655.309811][T27751] netlink_rcv_skb+0x159/0x420 [ 1655.309851][T27751] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1655.309878][T27751] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1655.309929][T27751] ? netlink_deliver_tap+0x1ae/0xcc0 [ 1655.309971][T27751] genl_rcv+0x28/0x40 [ 1655.309997][T27751] netlink_unicast+0x585/0x850 [ 1655.310040][T27751] ? __pfx_netlink_unicast+0x10/0x10 [ 1655.310088][T27751] netlink_sendmsg+0x8b0/0xda0 [ 1655.310132][T27751] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1655.310176][T27751] ? apparmor_socket_sendmsg+0x15b/0x270 [ 1655.310205][T27751] ____sys_sendmsg+0xa4d/0xbe0 [ 1655.310242][T27751] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1655.310284][T27751] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1655.310334][T27751] ? rcu_is_watching+0x12/0xc0 [ 1655.310364][T27751] ? ___sys_sendmsg+0x19d/0x1e0 [ 1655.310401][T27751] ? kfree+0x1e5/0x6c0 [ 1655.310429][T27751] ___sys_sendmsg+0x190/0x1e0 [ 1655.310470][T27751] ? __pfx____sys_sendmsg+0x10/0x10 [ 1655.310536][T27751] ? __pfx___might_resched+0x10/0x10 [ 1655.310582][T27751] __sys_sendmmsg+0x20c/0x440 [ 1655.310616][T27751] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1655.310646][T27751] ? __lock_acquire+0x49f/0x1a40 [ 1655.310690][T27751] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1655.310733][T27751] ? kcov_ioctl+0x17a/0x750 [ 1655.310772][T27751] __x64_sys_sendmmsg+0x9c/0x100 [ 1655.310802][T27751] ? lockdep_hardirqs_on+0x78/0x100 [ 1655.310841][T27751] do_syscall_64+0x115/0x840 [ 1655.310863][T27751] ? clear_bhb_loop+0x40/0x90 [ 1655.310893][T27751] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1655.310918][T27751] RIP: 0033:0x7fd1e5f9de59 [ 1655.310940][T27751] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1655.310964][T27751] RSP: 002b:00007fd1e6d9f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1655.310988][T27751] RAX: ffffffffffffffda RBX: 00007fd1e6226090 RCX: 00007fd1e5f9de59 [ 1655.311005][T27751] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 1655.311036][T27751] RBP: 00007fd1e6033e6f R08: 0000000000000000 R09: 0000000000000000 [ 1655.311052][T27751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1655.311067][T27751] R13: 00007fd1e6226128 R14: 00007fd1e6226090 R15: 00007ffd51713a68 [ 1655.311100][T27751] [ 1655.919061][T27620] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1656.129767][T27620] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1656.137854][T27620] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1656.196834][T27620] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1656.248163][T27620] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1656.268287][T27620] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1656.277100][T27620] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1656.288902][T27620] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1656.668465][T27620] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1656.791567][T27620] 8021q: adding VLAN 0 to HW filter on device team0 [ 1656.850377][T25510] bridge0: port 1(bridge_slave_0) entered blocking state [ 1656.857576][T25510] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1656.913821][T25510] bridge0: port 2(bridge_slave_1) entered blocking state [ 1656.921063][T25510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1657.460109][T27782] futex_wake_op: syz.1.4674 tries to shift op by -2048; fix this program [ 1657.562195][T27782] futex_wake_op: syz.1.4674 tries to shift op by -2048; fix this program [ 1657.657397][T27790] 0x000000000001-0x000000020000 : "" [ 1657.759300][T27790] ftl_cs: FTL header corrupt! [ 1657.766279][T27794] netlink: 338 bytes leftover after parsing attributes in process `syz.0.4677'. [ 1658.794182][T27807] FAULT_INJECTION: forcing a failure. [ 1658.794182][T27807] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.047656][T27807] CPU: 0 UID: 0 PID: 27807 Comm: syz.0.4678 Tainted: G L syzkaller #0 PREEMPT(full) [ 1659.047696][T27807] Tainted: [L]=SOFTLOCKUP [ 1659.047705][T27807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1659.047721][T27807] Call Trace: [ 1659.047730][T27807] [ 1659.047740][T27807] dump_stack_lvl+0x100/0x190 [ 1659.047776][T27807] should_fail_ex.cold+0x5/0xa [ 1659.047809][T27807] should_failslab+0xc2/0x120 [ 1659.047845][T27807] __kmalloc_noprof+0xfc/0x820 [ 1659.047874][T27807] ? rcu_is_watching+0x12/0xc0 [ 1659.047906][T27807] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1659.047955][T27807] tomoyo_realpath_from_path+0xb6/0x690 [ 1659.047999][T27807] tomoyo_check_open_permission+0x2af/0x3c0 [ 1659.048033][T27807] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1659.048075][T27807] ? hook_file_open+0x24f/0x8f0 [ 1659.048137][T27807] ? path_get+0x61/0x80 [ 1659.048169][T27807] tomoyo_file_open+0x6b/0x90 [ 1659.048194][T27807] security_file_open+0xb5/0x1e0 [ 1659.048229][T27807] do_dentry_open+0x588/0x14d0 [ 1659.048269][T27807] vfs_open+0x82/0x3f0 [ 1659.048304][T27807] path_openat+0x2873/0x4280 [ 1659.048342][T27807] ? __pfx_path_openat+0x10/0x10 [ 1659.048376][T27807] do_file_open+0x20e/0x430 [ 1659.048404][T27807] ? __pfx_do_file_open+0x10/0x10 [ 1659.048450][T27807] ? alloc_fd+0x471/0x7a0 [ 1659.048477][T27807] ? do_getname+0x191/0x390 [ 1659.048511][T27807] do_sys_openat2+0x10f/0x1e0 [ 1659.048544][T27807] ? __pfx_do_sys_openat2+0x10/0x10 [ 1659.048578][T27807] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1659.048627][T27807] __x64_sys_openat+0x12d/0x210 [ 1659.048662][T27807] ? __pfx___x64_sys_openat+0x10/0x10 [ 1659.048706][T27807] do_syscall_64+0x115/0x840 [ 1659.048728][T27807] ? clear_bhb_loop+0x40/0x90 [ 1659.048758][T27807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1659.048783][T27807] RIP: 0033:0x7f216099de59 [ 1659.048804][T27807] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1659.048829][T27807] RSP: 002b:00007f216180e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1659.048852][T27807] RAX: ffffffffffffffda RBX: 00007f2160c26360 RCX: 00007f216099de59 [ 1659.048868][T27807] RDX: 0000000000000040 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1659.048885][T27807] RBP: 00007f2160a33e6f R08: 0000000000000000 R09: 0000000000000000 [ 1659.048901][T27807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1659.048916][T27807] R13: 00007f2160c263f8 R14: 00007f2160c26360 R15: 00007ffdcdb854d8 [ 1659.048957][T27807] [ 1659.357480][T27814] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4678'. [ 1659.391292][T27807] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1659.636154][T27620] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1659.672384][T27620] veth0_vlan: entered promiscuous mode [ 1659.711788][T27620] veth1_vlan: entered promiscuous mode [ 1659.757130][T27620] veth0_macvtap: entered promiscuous mode [ 1659.788032][T27620] veth1_macvtap: entered promiscuous mode [ 1659.856175][T27620] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1659.884389][T27826] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1659.912892][T27620] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1659.981126][T25509] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1660.012772][T25509] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1660.057487][T25509] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1660.187871][T25509] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1660.821560][T27837] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4682'. [ 1660.842510][T25508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1660.896505][T25508] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1661.203529][T25510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1661.250035][T25510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1661.273702][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1661.281942][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 1661.754641][T27844] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1662.099287][T27849] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20835] was attempted by ""[27849] [ 1662.267255][T27849] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4686'. [ 1663.632368][T27853] Process accounting resumed [ 1664.606562][T27888] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20835] was attempted by ""[27888] [ 1664.628785][T27890] futex_wake_op: syz.1.4691 tries to shift op by -2048; fix this program [ 1664.655147][T27890] futex_wake_op: syz.1.4691 tries to shift op by -2048; fix this program [ 1664.727939][T27884] 0x000000000001-0x000000020000 : "" [ 1664.786780][T27884] ftl_cs: FTL header corrupt! [ 1664.804600][T27894] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4694'. [ 1665.820306][T27900] misc userio: No port type given on /dev/userio [ 1666.367806][T27909] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4696'. [ 1667.321163][T27924] Process accounting paused [ 1668.960586][T27956] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1669.243503][T27962] FAULT_INJECTION: forcing a failure. [ 1669.243503][T27962] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1669.429496][T27962] CPU: 0 UID: 0 PID: 27962 Comm: syz.1.4707 Tainted: G L syzkaller #0 PREEMPT(full) [ 1669.429536][T27962] Tainted: [L]=SOFTLOCKUP [ 1669.429545][T27962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1669.429561][T27962] Call Trace: [ 1669.429569][T27962] [ 1669.429581][T27962] dump_stack_lvl+0x100/0x190 [ 1669.429626][T27962] should_fail_ex.cold+0x5/0xa [ 1669.429659][T27962] strncpy_from_user+0x3b/0x2d0 [ 1669.429697][T27962] do_getname+0x78/0x390 [ 1669.429732][T27962] do_sys_openat2+0xc7/0x1e0 [ 1669.429766][T27962] ? __pfx_do_sys_openat2+0x10/0x10 [ 1669.429827][T27962] __x64_sys_openat+0x12d/0x210 [ 1669.429862][T27962] ? __pfx___x64_sys_openat+0x10/0x10 [ 1669.429908][T27962] do_syscall_64+0x115/0x840 [ 1669.429930][T27962] ? clear_bhb_loop+0x40/0x90 [ 1669.429960][T27962] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1669.429985][T27962] RIP: 0033:0x7fd1e5f9de59 [ 1669.430005][T27962] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1669.430030][T27962] RSP: 002b:00007fd1e6d7e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1669.430053][T27962] RAX: ffffffffffffffda RBX: 00007fd1e6226180 RCX: 00007fd1e5f9de59 [ 1669.430075][T27962] RDX: 0000000000088000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1669.430094][T27962] RBP: 00007fd1e6033e6f R08: 0000000000000000 R09: 0000000000000000 [ 1669.430110][T27962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1669.430125][T27962] R13: 00007fd1e6226218 R14: 00007fd1e6226180 R15: 00007ffd51713a68 [ 1669.430156][T27962] [ 1671.795142][T28006] futex_wake_op: syz.2.4717 tries to shift op by -2048; fix this program [ 1671.894626][T28006] futex_wake_op: syz.2.4717 tries to shift op by -2048; fix this program [ 1676.360010][T28062] futex_wake_op: syz.4.4730 tries to shift op by -2048; fix this program [ 1676.486982][T28062] futex_wake_op: syz.4.4730 tries to shift op by -2048; fix this program [ 1676.873756][T28079] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[27620] was attempted by ""[28079] [ 1677.139261][T20844] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1677.193439][T26482] Bluetooth: hci3: unexpected event 0x03 length: 6 < 11 [ 1678.073287][T28095] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4735'. [ 1678.107788][T26482] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1678.116338][T26482] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0' [ 1678.125883][T26482] CPU: 0 UID: 0 PID: 26482 Comm: kworker/u12:3 Tainted: G L syzkaller #0 PREEMPT(full) [ 1678.125923][T26482] Tainted: [L]=SOFTLOCKUP [ 1678.125932][T26482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1678.125949][T26482] Workqueue: hci3 hci_rx_work [ 1678.125992][T26482] Call Trace: [ 1678.126002][T26482] [ 1678.126012][T26482] dump_stack_lvl+0x100/0x190 [ 1678.126046][T26482] sysfs_warn_dup.cold+0x1c/0x28 [ 1678.126084][T26482] sysfs_create_dir_ns+0x24b/0x2b0 [ 1678.126122][T26482] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 1678.126157][T26482] ? find_held_lock+0x2b/0x80 [ 1678.126189][T26482] ? kobject_add_internal+0x25f/0x930 [ 1678.126221][T26482] ? kobject_add_internal+0x25f/0x930 [ 1678.126254][T26482] ? do_raw_spin_unlock+0x145/0x1e0 [ 1678.126286][T26482] kobject_add_internal+0x2c8/0x930 [ 1678.126328][T26482] kobject_add+0x16a/0x1e0 [ 1678.126361][T26482] ? __pfx_kobject_add+0x10/0x10 [ 1678.126390][T26482] ? class_to_subsys+0x10f/0x150 [ 1678.126435][T26482] ? kobject_put+0xb9/0x640 [ 1678.126462][T26482] ? _raw_spin_unlock+0x28/0x50 [ 1678.126504][T26482] device_add+0x294/0x1970 [ 1678.126541][T26482] ? __pfx_dev_set_name+0x10/0x10 [ 1678.126567][T26482] ? __pfx_device_add+0x10/0x10 [ 1678.126606][T26482] ? mgmt_send_event_skb+0x2fb/0x460 [ 1678.126655][T26482] hci_conn_add_sysfs+0x1a3/0x260 [ 1678.126684][T26482] le_conn_complete_evt+0x11eb/0x1f60 [ 1678.126731][T26482] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 1678.126769][T26482] ? __pfx_bt_warn+0x10/0x10 [ 1678.126795][T26482] ? hci_event_packet+0x186/0xcd0 [ 1678.126843][T26482] hci_le_conn_complete_evt+0x23c/0x3a0 [ 1678.126885][T26482] ? skb_pull_data+0x15f/0x1e0 [ 1678.126925][T26482] hci_le_meta_evt+0x34a/0x5f0 [ 1678.126950][T26482] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 1678.126995][T26482] hci_event_packet+0x51c/0xcd0 [ 1678.127034][T26482] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 1678.127064][T26482] ? __pfx_hci_event_packet+0x10/0x10 [ 1678.127106][T26482] ? kcov_remote_start+0x384/0x670 [ 1678.127142][T26482] ? lockdep_hardirqs_on+0x78/0x100 [ 1678.127188][T26482] hci_rx_work+0x451/0xfc0 [ 1678.127231][T26482] process_one_work+0xa23/0x1940 [ 1678.127281][T26482] ? __pfx_process_one_work+0x10/0x10 [ 1678.127334][T26482] ? __pfx_hci_rx_work+0x10/0x10 [ 1678.127376][T26482] worker_thread+0x5ef/0xe50 [ 1678.127421][T26482] ? __pfx_worker_thread+0x10/0x10 [ 1678.127460][T26482] ? kthread+0x13a/0x450 [ 1678.127492][T26482] ? __pfx_worker_thread+0x10/0x10 [ 1678.127528][T26482] kthread+0x370/0x450 [ 1678.127561][T26482] ? __pfx_kthread+0x10/0x10 [ 1678.127598][T26482] ret_from_fork+0x72b/0xd50 [ 1678.127632][T26482] ? __pfx_ret_from_fork+0x10/0x10 [ 1678.127665][T26482] ? __switch_to+0x800/0x10f0 [ 1678.127686][T26482] ? __switch_to_asm+0x39/0x70 [ 1678.127723][T26482] ? __pfx_kthread+0x10/0x10 [ 1678.127759][T26482] ret_from_fork_asm+0x1a/0x30 [ 1678.127810][T26482] [ 1678.127863][T26482] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 1678.455520][T26482] Bluetooth: hci3: failed to register connection device [ 1678.613005][T26482] Bluetooth: hci3: unexpected event 0x03 length: 6 < 11 [ 1679.178486][T26482] Bluetooth: hci3: command 0x0c1a tx timeout [ 1679.320427][T26482] Bluetooth: hci3: unexpected event 0x18 length: 727 > 23 [ 1679.345678][T28114] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20155] was attempted by ""[28114] [ 1680.360655][T26482] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 1680.792063][T28127] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1680.812560][T28099] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 1681.243969][T26482] Bluetooth: hci3: command 0x0c1a tx timeout [ 1681.743681][T26482] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1681.809100][T28153] Bluetooth: hci0: unexpected event 0x04 length: 6 < 10 [ 1681.843088][T28155] futex_wake_op: syz.1.4747 tries to shift op by -2048; fix this program [ 1681.955935][T28155] futex_wake_op: syz.1.4747 tries to shift op by -2048; fix this program [ 1682.210603][T28153] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1682.243689][T28165] Bluetooth: hci2: unexpected event 0x04 length: 6 < 10 [ 1682.439973][T20839] Bluetooth: hci4: command 0x2016 tx timeout [ 1683.313333][T28165] Bluetooth: hci3: command 0x0c1a tx timeout [ 1683.792017][T26482] Bluetooth: hci0: command 0x0c1a tx timeout [ 1684.191066][T28205] futex_wake_op: syz.4.4762 tries to shift op by -2048; fix this program [ 1684.236674][T28205] futex_wake_op: syz.4.4762 tries to shift op by -2048; fix this program [ 1684.271141][T28153] Bluetooth: hci2: command 0x0c1a tx timeout [ 1684.304317][T28210] 0x000000000001-0x000000020000 : "" [ 1684.397829][T28210] ftl_cs: FTL header corrupt! [ 1684.513714][T28153] Bluetooth: hci4: command 0x2016 tx timeout [ 1685.266546][T28221] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1685.296301][T28220] FAULT_INJECTION: forcing a failure. [ 1685.296301][T28220] name failslab, interval 1, probability 0, space 0, times 0 [ 1685.387032][T20839] Bluetooth: hci3: command 0x0c1a tx timeout [ 1685.394690][T28220] CPU: 0 UID: 0 PID: 28220 Comm: syz.1.4767 Tainted: G L syzkaller #0 PREEMPT(full) [ 1685.394727][T28220] Tainted: [L]=SOFTLOCKUP [ 1685.394736][T28220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1685.394751][T28220] Call Trace: [ 1685.394759][T28220] [ 1685.394769][T28220] dump_stack_lvl+0x100/0x190 [ 1685.394804][T28220] should_fail_ex.cold+0x5/0xa [ 1685.394836][T28220] should_failslab+0xc2/0x120 [ 1685.394884][T28220] __kmalloc_noprof+0xfc/0x820 [ 1685.394913][T28220] ? rcu_is_watching+0x12/0xc0 [ 1685.394954][T28220] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1685.394996][T28220] tomoyo_realpath_from_path+0xb6/0x690 [ 1685.395038][T28220] tomoyo_path_number_perm+0x23c/0x580 [ 1685.395081][T28220] ? tomoyo_path_number_perm+0x22e/0x580 [ 1685.395113][T28220] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1685.395170][T28220] ? find_held_lock+0x2b/0x80 [ 1685.395201][T28220] ? __fget_files+0x215/0x3d0 [ 1685.395222][T28220] ? hook_file_ioctl_common+0x140/0x440 [ 1685.395251][T28220] ? __fget_files+0x215/0x3d0 [ 1685.395277][T28220] ? __fget_files+0x21f/0x3d0 [ 1685.395304][T28220] security_file_ioctl+0xd3/0x230 [ 1685.395334][T28220] __x64_sys_ioctl+0xb7/0x210 [ 1685.395371][T28220] do_syscall_64+0x115/0x840 [ 1685.395393][T28220] ? clear_bhb_loop+0x40/0x90 [ 1685.395422][T28220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1685.395447][T28220] RIP: 0033:0x7fd1e5f9de59 [ 1685.395467][T28220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1685.395491][T28220] RSP: 002b:00007fd1e6dc0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1685.395513][T28220] RAX: ffffffffffffffda RBX: 00007fd1e6225fa0 RCX: 00007fd1e5f9de59 [ 1685.395529][T28220] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000005 [ 1685.395543][T28220] RBP: 00007fd1e6dc0090 R08: 0000000000000000 R09: 0000000000000000 [ 1685.395558][T28220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1685.395572][T28220] R13: 00007fd1e6226038 R14: 00007fd1e6225fa0 R15: 00007ffd51713a68 [ 1685.395602][T28220] [ 1685.395653][T28220] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1685.925848][T20839] Bluetooth: hci0: command 0x0c1a tx timeout [ 1686.339373][T26482] Bluetooth: hci2: command 0x0c1a tx timeout [ 1687.169849][T28250] futex_wake_op: syz.0.4774 tries to shift op by -2048; fix this program [ 1687.231685][T28250] futex_wake_op: syz.0.4774 tries to shift op by -2048; fix this program [ 1687.877990][T28264] FAULT_INJECTION: forcing a failure. [ 1687.877990][T28264] name failslab, interval 1, probability 0, space 0, times 0 [ 1687.944867][T28264] CPU: 0 UID: 0 PID: 28264 Comm: syz.4.4776 Tainted: G L syzkaller #0 PREEMPT(full) [ 1687.944905][T28264] Tainted: [L]=SOFTLOCKUP [ 1687.944914][T28264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1687.944929][T28264] Call Trace: [ 1687.944937][T28264] [ 1687.944947][T28264] dump_stack_lvl+0x100/0x190 [ 1687.944981][T28264] should_fail_ex.cold+0x5/0xa [ 1687.945013][T28264] should_failslab+0xc2/0x120 [ 1687.945048][T28264] __kmalloc_noprof+0xfc/0x820 [ 1687.945079][T28264] ? iovec_from_user+0x8d/0x140 [ 1687.945121][T28264] iovec_from_user+0x8d/0x140 [ 1687.945159][T28264] __import_iovec+0x81/0x640 [ 1687.945201][T28264] import_iovec+0x82/0xb0 [ 1687.945239][T28264] vfs_readv+0x19e/0x8d0 [ 1687.945284][T28264] ? __pfx_vfs_readv+0x10/0x10 [ 1687.945322][T28264] ? rcu_read_lock_any_held+0x6a/0xa0 [ 1687.945374][T28264] ? __fget_files+0x21f/0x3d0 [ 1687.945403][T28264] ? do_readv+0x13e/0x340 [ 1687.945437][T28264] do_readv+0x13e/0x340 [ 1687.945482][T28264] ? __pfx_do_readv+0x10/0x10 [ 1687.945526][T28264] do_syscall_64+0x115/0x840 [ 1687.945548][T28264] ? clear_bhb_loop+0x40/0x90 [ 1687.945577][T28264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1687.945602][T28264] RIP: 0033:0x7f0ef339de59 [ 1687.945622][T28264] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1687.945645][T28264] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 1687.945668][T28264] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1687.945684][T28264] RDX: 0000000000000100 RSI: 0000200000000380 RDI: 0000000000000005 [ 1687.945699][T28264] RBP: 00007f0ef4194090 R08: 0000000000000000 R09: 0000000000000000 [ 1687.945713][T28264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1687.945728][T28264] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1687.945758][T28264] [ 1688.221158][T28267] nfs4: Unknown parameter 'ECH];^YىZL`~^g ' [ 1690.354318][T20844] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1690.419100][T20844] Bluetooth: hci3: unexpected event 0x04 length: 6 < 10 [ 1692.386910][T26482] Bluetooth: hci3: command 0x0c1a tx timeout [ 1692.424437][T28346] futex_wake_op: syz.2.4791 tries to shift op by -2048; fix this program [ 1692.508273][T28346] futex_wake_op: syz.2.4791 tries to shift op by -2048; fix this program [ 1693.586020][T28358] Process accounting paused [ 1695.181132][T28381] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1695.238938][T28381] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1695.266446][T28381] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1695.318207][T28381] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1695.369314][T28381] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1695.474000][T28381] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1696.446814][T26482] Bluetooth: hci3: command 0x0c1a tx timeout [ 1697.243142][T26482] Bluetooth: hci2: command 0x0c1a tx timeout [ 1697.321620][T20844] Bluetooth: hci0: command 0x0c1a tx timeout [ 1697.327833][T26482] Bluetooth: hci4: command 0x2016 tx timeout [ 1697.723637][T28437] futex_wake_op: syz.0.4807 tries to shift op by -2048; fix this program [ 1697.792678][T28437] futex_wake_op: syz.0.4807 tries to shift op by -2048; fix this program [ 1697.971563][T28448] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17213] was attempted by ""[28448] [ 1698.407706][T28456] FAULT_INJECTION: forcing a failure. [ 1698.407706][T28456] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.481874][T28456] CPU: 0 UID: 0 PID: 28456 Comm: syz.4.4811 Tainted: G L syzkaller #0 PREEMPT(full) [ 1698.481912][T28456] Tainted: [L]=SOFTLOCKUP [ 1698.481921][T28456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1698.481936][T28456] Call Trace: [ 1698.481945][T28456] [ 1698.481954][T28456] dump_stack_lvl+0x100/0x190 [ 1698.481990][T28456] should_fail_ex.cold+0x5/0xa [ 1698.482022][T28456] should_failslab+0xc2/0x120 [ 1698.482058][T28456] __kmalloc_noprof+0xfc/0x820 [ 1698.482089][T28456] ? rcu_is_watching+0x12/0xc0 [ 1698.482119][T28456] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1698.482161][T28456] tomoyo_realpath_from_path+0xb6/0x690 [ 1698.482230][T28456] tomoyo_path_number_perm+0x23c/0x580 [ 1698.482259][T28456] ? tomoyo_path_number_perm+0x22e/0x580 [ 1698.482290][T28456] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1698.482353][T28456] ? find_held_lock+0x2b/0x80 [ 1698.482384][T28456] ? __fget_files+0x215/0x3d0 [ 1698.482405][T28456] ? hook_file_ioctl_common+0x140/0x440 [ 1698.482435][T28456] ? __fget_files+0x215/0x3d0 [ 1698.482462][T28456] ? __fget_files+0x21f/0x3d0 [ 1698.482489][T28456] security_file_ioctl+0xd3/0x230 [ 1698.482519][T28456] __x64_sys_ioctl+0xb7/0x210 [ 1698.482570][T28456] do_syscall_64+0x115/0x840 [ 1698.482593][T28456] ? clear_bhb_loop+0x40/0x90 [ 1698.482627][T28456] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1698.482672][T28456] RIP: 0033:0x7f0ef339de59 [ 1698.482691][T28456] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1698.482720][T28456] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1698.482743][T28456] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1698.482761][T28456] RDX: 0000000000000000 RSI: 0000000000004c06 RDI: 0000000000000003 [ 1698.482777][T28456] RBP: 00007f0ef4194090 R08: 0000000000000000 R09: 0000000000000000 [ 1698.482792][T28456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1698.482806][T28456] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1698.482837][T28456] [ 1698.485118][T28456] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1699.329846][T28435] Process accounting resumed [ 1699.392381][T26482] Bluetooth: hci4: command 0x2016 tx timeout [ 1701.460835][T26482] Bluetooth: hci4: command 0x2016 tx timeout [ 1702.033497][T26482] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 1702.207464][T28502] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4822'. [ 1702.478659][T28509] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17213] was attempted by ""[28509] [ 1702.760309][T28513] futex_wake_op: syz.0.4825 tries to shift op by -2048; fix this program [ 1702.797271][T28513] futex_wake_op: syz.0.4825 tries to shift op by -2048; fix this program [ 1704.087426][T20844] Bluetooth: hci3: command 0x0c1a tx timeout [ 1705.888643][T28553] futex_wake_op: syz.0.4835 tries to shift op by -2048; fix this program [ 1705.945365][T28553] futex_wake_op: syz.0.4835 tries to shift op by -2048; fix this program [ 1706.009997][T28564] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[20155] was attempted by ""[28564] [ 1706.173809][T20844] Bluetooth: hci3: command 0x0c1a tx timeout [ 1706.544459][T28571] block nbd0: NBD_DISCONNECT [ 1706.679481][T28571] block nbd0: Send disconnect failed -32 [ 1706.859014][T28571] block nbd0: shutting down sockets [ 1708.097383][T25036] bridge_slave_1: left allmulticast mode [ 1708.113172][T25036] bridge_slave_1: left promiscuous mode [ 1708.132842][T25036] bridge0: port 2(bridge_slave_1) entered disabled state [ 1708.164050][T25036] bridge_slave_0: left allmulticast mode [ 1708.186418][T25036] bridge_slave_0: left promiscuous mode [ 1708.208312][T25036] bridge0: port 1(bridge_slave_0) entered disabled state [ 1708.450486][T25036] bond0 (unregistering): (slave ): Releasing backup interface [ 1708.462983][T25036] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1708.476443][T25036] bond0 (unregistering): Released all slaves [ 1708.621286][T25036] HfR: left promiscuous mode [ 1709.629473][T25036] hsr_slave_0: left promiscuous mode [ 1709.673025][T25036] hsr_slave_1: left promiscuous mode [ 1709.764491][T25036] veth1_macvtap: left promiscuous mode [ 1709.797707][T25036] veth0_macvtap: left promiscuous mode [ 1709.832676][T25036] veth1_vlan: left promiscuous mode [ 1709.864517][T25036] veth0_vlan: left promiscuous mode [ 1711.129094][T25036] team0 (unregistering): Port device team_slave_1 removed [ 1711.282660][T28619] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4848'. [ 1712.563225][T26482] Bluetooth: hci0: unexpected event 0x05 length: 6 > 4 [ 1713.416333][T28653] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4859'. [ 1713.740301][T28657] ACPI Error: Could not disable RealTimeClock events (20260408/evxfevnt-243) [ 1714.184961][ T5710] ACPI Error: Could not disable RealTimeClock events (20260408/evxfevnt-243) [ 1714.523008][T28657] ACPI Error: Could not disable RealTimeClock events (20260408/evxfevnt-243) [ 1715.326378][T26482] Bluetooth: hci2: unexpected event 0x05 length: 6 > 4 [ 1715.406413][T28679] FAULT_INJECTION: forcing a failure. [ 1715.406413][T28679] name failslab, interval 1, probability 0, space 0, times 0 [ 1715.522375][T28679] CPU: 0 UID: 0 PID: 28679 Comm: syz.2.4865 Tainted: G L syzkaller #0 PREEMPT(full) [ 1715.522412][T28679] Tainted: [L]=SOFTLOCKUP [ 1715.522421][T28679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1715.522436][T28679] Call Trace: [ 1715.522444][T28679] [ 1715.522453][T28679] dump_stack_lvl+0x100/0x190 [ 1715.522488][T28679] should_fail_ex.cold+0x5/0xa [ 1715.522519][T28679] should_failslab+0xc2/0x120 [ 1715.522554][T28679] kmem_cache_alloc_node_noprof+0x94/0x6b0 [ 1715.522588][T28679] ? __alloc_skb+0x140/0x710 [ 1715.522619][T28679] __alloc_skb+0x140/0x710 [ 1715.522644][T28679] ? __alloc_skb+0x5b7/0x710 [ 1715.522669][T28679] ? __pfx___alloc_skb+0x10/0x10 [ 1715.522694][T28679] ? genl_rcv_msg+0x4be/0x800 [ 1715.522729][T28679] netlink_ack+0x117/0xb80 [ 1715.522775][T28679] netlink_rcv_skb+0x333/0x420 [ 1715.522816][T28679] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1715.522843][T28679] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1715.522892][T28679] ? netlink_deliver_tap+0x1ae/0xcc0 [ 1715.522931][T28679] genl_rcv+0x28/0x40 [ 1715.522952][T28679] netlink_unicast+0x585/0x850 [ 1715.522994][T28679] ? __pfx_netlink_unicast+0x10/0x10 [ 1715.523039][T28679] netlink_sendmsg+0x8b0/0xda0 [ 1715.523081][T28679] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1715.523130][T28679] ? apparmor_socket_sendmsg+0x15b/0x270 [ 1715.523160][T28679] ____sys_sendmsg+0xa4d/0xbe0 [ 1715.523195][T28679] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1715.523234][T28679] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1715.523283][T28679] ___sys_sendmsg+0x190/0x1e0 [ 1715.523322][T28679] ? __pfx____sys_sendmsg+0x10/0x10 [ 1715.523357][T28679] ? __lock_acquire+0x49f/0x1a40 [ 1715.523380][T28679] ? get_pid_task+0x106/0x250 [ 1715.523442][T28679] __sys_sendmsg+0x160/0x210 [ 1715.523472][T28679] ? __pfx___sys_sendmsg+0x10/0x10 [ 1715.523516][T28679] do_syscall_64+0x115/0x840 [ 1715.523538][T28679] ? clear_bhb_loop+0x40/0x90 [ 1715.523567][T28679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1715.523592][T28679] RIP: 0033:0x7f1d7299de59 [ 1715.523612][T28679] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1715.523636][T28679] RSP: 002b:00007f1d7390b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1715.523659][T28679] RAX: ffffffffffffffda RBX: 00007f1d72c25fa0 RCX: 00007f1d7299de59 [ 1715.523676][T28679] RDX: 00000000200040d0 RSI: 00002000000004c0 RDI: 0000000000000005 [ 1715.523690][T28679] RBP: 00007f1d7390b090 R08: 0000000000000000 R09: 0000000000000000 [ 1715.523705][T28679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1715.523720][T28679] R13: 00007f1d72c26038 R14: 00007f1d72c25fa0 R15: 00007ffc5c0ea168 [ 1715.523750][T28679] [ 1715.922481][T28679] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1715.930492][T28679] netlink: 310 bytes leftover after parsing attributes in process `syz.2.4865'. [ 1716.576277][T28698] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4868: iget: checksum invalid [ 1716.643980][T28698] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1716.774461][T28698] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4868: iget: checksum invalid [ 1716.878217][T28698] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1716.964464][T28698] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4868: iget: checksum invalid [ 1717.058739][T28698] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1717.148424][T28698] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4868: iget: checksum invalid [ 1717.235292][T28698] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1717.298122][T28712] FAULT_INJECTION: forcing a failure. [ 1717.298122][T28712] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1717.370126][T28698] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1717.398344][T28712] CPU: 0 UID: 0 PID: 28712 Comm: syz.0.4870 Tainted: G L syzkaller #0 PREEMPT(full) [ 1717.398383][T28712] Tainted: [L]=SOFTLOCKUP [ 1717.398393][T28712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1717.398409][T28712] Call Trace: [ 1717.398417][T28712] [ 1717.398426][T28712] dump_stack_lvl+0x100/0x190 [ 1717.398464][T28712] should_fail_ex.cold+0x5/0xa [ 1717.398497][T28712] get_futex_key+0x1d2/0x14f0 [ 1717.398526][T28712] ? __pfx_get_futex_key+0x10/0x10 [ 1717.398551][T28712] ? userfaultfd_unmap_complete+0x267/0x380 [ 1717.398580][T28712] ? do_mmap+0x93f/0x12f0 [ 1717.398614][T28712] ? __pfx_userfaultfd_unmap_complete+0x10/0x10 [ 1717.398646][T28712] futex_wake+0xf4/0x5e0 [ 1717.398682][T28712] ? __pfx_futex_wake+0x10/0x10 [ 1717.398713][T28712] ? up_write+0x2e5/0x5c0 [ 1717.398746][T28712] ? vm_mmap_pgoff+0x103/0x470 [ 1717.398788][T28712] do_futex+0x2b2/0x440 [ 1717.398816][T28712] ? __pfx_do_futex+0x10/0x10 [ 1717.398852][T28712] __x64_sys_futex+0x34f/0x4d0 [ 1717.398882][T28712] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1717.398918][T28712] ? __pfx___x64_sys_futex+0x10/0x10 [ 1717.398965][T28712] do_syscall_64+0x115/0x840 [ 1717.398988][T28712] ? clear_bhb_loop+0x40/0x90 [ 1717.399019][T28712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1717.399044][T28712] RIP: 0033:0x7f216099de59 [ 1717.399065][T28712] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1717.399089][T28712] RSP: 002b:00007f21618920e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1717.399113][T28712] RAX: ffffffffffffffda RBX: 00007f2160c25fa8 RCX: 00007f216099de59 [ 1717.399129][T28712] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2160c25fac [ 1717.399145][T28712] RBP: 00007f2160c25fa0 R08: 0000000000000001 R09: 0000000000000000 [ 1717.399160][T28712] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1717.399176][T28712] R13: 00007f2160c26038 R14: 00007ffdcdb853f0 R15: 00007ffdcdb854d8 [ 1717.399206][T28712] [ 1717.692249][T28717] FAULT_INJECTION: forcing a failure. [ 1717.692249][T28717] name failslab, interval 1, probability 0, space 0, times 0 [ 1717.705039][T28717] CPU: 0 UID: 0 PID: 28717 Comm: syz.4.4872 Tainted: G L syzkaller #0 PREEMPT(full) [ 1717.705090][T28717] Tainted: [L]=SOFTLOCKUP [ 1717.705099][T28717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1717.705115][T28717] Call Trace: [ 1717.705123][T28717] [ 1717.705132][T28717] dump_stack_lvl+0x100/0x190 [ 1717.705169][T28717] should_fail_ex.cold+0x5/0xa [ 1717.705202][T28717] should_failslab+0xc2/0x120 [ 1717.705238][T28717] kmem_cache_alloc_noprof+0x91/0x6a0 [ 1717.705270][T28717] ? vm_area_alloc+0x1f/0x160 [ 1717.705300][T28717] vm_area_alloc+0x1f/0x160 [ 1717.705323][T28717] __mmap_region+0x1033/0x2db0 [ 1717.705355][T28717] ? __pfx___mmap_region+0x10/0x10 [ 1717.705380][T28717] ? __pfx___might_resched+0x10/0x10 [ 1717.705426][T28717] ? __lock_acquire+0x49f/0x1a40 [ 1717.705466][T28717] ? __lock_acquire+0x49f/0x1a40 [ 1717.705503][T28717] ? hrtimer_start_range_ns_common+0x78e/0x18b0 [ 1717.705548][T28717] ? rcu_is_watching+0x12/0xc0 [ 1717.705578][T28717] ? finish_task_switch.isra.0+0x2c5/0x10c0 [ 1717.705606][T28717] ? lockdep_hardirqs_on+0x78/0x100 [ 1717.705701][T28717] mmap_region+0x35d/0x620 [ 1717.705730][T28717] ? rcu_is_watching+0x12/0xc0 [ 1717.705760][T28717] ? __pfx_mmap_region+0x10/0x10 [ 1717.705792][T28717] ? cap_mmap_addr+0x4b/0x120 [ 1717.705816][T28717] ? bpf_lsm_mmap_addr+0x9/0x30 [ 1717.705840][T28717] ? security_mmap_addr+0x71/0x1e0 [ 1717.705873][T28717] ? __get_unmapped_area+0x255/0x3e0 [ 1717.705914][T28717] do_mmap+0xc63/0x12f0 [ 1717.705955][T28717] ? __pfx_do_mmap+0x10/0x10 [ 1717.705990][T28717] ? __pfx_down_write_killable+0x10/0x10 [ 1717.706017][T28717] ? __pfx_futex_wait+0x10/0x10 [ 1717.706055][T28717] vm_mmap_pgoff+0x29e/0x470 [ 1717.706101][T28717] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1717.706141][T28717] ? __pfx_do_futex+0x10/0x10 [ 1717.706175][T28717] ksys_mmap_pgoff+0xe4/0x610 [ 1717.706210][T28717] ? __x64_sys_futex+0x358/0x4d0 [ 1717.706239][T28717] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1717.706274][T28717] ? xfd_validate_state+0x129/0x190 [ 1717.706310][T28717] __x64_sys_mmap+0x125/0x190 [ 1717.706351][T28717] do_syscall_64+0x115/0x840 [ 1717.706372][T28717] ? clear_bhb_loop+0x40/0x90 [ 1717.706402][T28717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1717.706427][T28717] RIP: 0033:0x7f0ef339de59 [ 1717.706448][T28717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1717.706473][T28717] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1717.706496][T28717] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1717.706512][T28717] RDX: 00000000000000df RSI: 0000000004020009 RDI: 0000000000000000 [ 1717.706528][T28717] RBP: 00007f0ef3433e6f R08: 0000000000000401 R09: 0000000000000000 [ 1717.706543][T28717] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1717.706559][T28717] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1717.706590][T28717] [ 1718.010706][T28698] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1718.244478][T28721] random: crng reseeded on system resumption [ 1718.532395][T26482] Bluetooth: hci4: unexpected event 0x05 length: 6 > 4 [ 1721.280681][T28778] FAULT_INJECTION: forcing a failure. [ 1721.280681][T28778] name failslab, interval 1, probability 0, space 0, times 0 [ 1721.372930][T28778] CPU: 0 UID: 0 PID: 28778 Comm: syz.4.4881 Tainted: G L syzkaller #0 PREEMPT(full) [ 1721.372969][T28778] Tainted: [L]=SOFTLOCKUP [ 1721.372977][T28778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1721.372992][T28778] Call Trace: [ 1721.373000][T28778] [ 1721.373009][T28778] dump_stack_lvl+0x100/0x190 [ 1721.373044][T28778] should_fail_ex.cold+0x5/0xa [ 1721.373076][T28778] should_failslab+0xc2/0x120 [ 1721.373112][T28778] __kmalloc_noprof+0xfc/0x820 [ 1721.373142][T28778] ? tomoyo_encode2+0xfb/0x3c0 [ 1721.373190][T28778] tomoyo_encode2+0xfb/0x3c0 [ 1721.373228][T28778] tomoyo_encode+0x29/0x50 [ 1721.373260][T28778] tomoyo_realpath_from_path+0x18c/0x690 [ 1721.373302][T28778] tomoyo_path_number_perm+0x23c/0x580 [ 1721.373331][T28778] ? tomoyo_path_number_perm+0x22e/0x580 [ 1721.373362][T28778] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1721.373403][T28778] ? rcu_read_lock_any_held+0x6a/0xa0 [ 1721.373454][T28778] ? hook_file_ioctl_common+0x140/0x440 [ 1721.373500][T28778] security_file_ioctl+0xd3/0x230 [ 1721.373531][T28778] __x64_sys_ioctl+0xb7/0x210 [ 1721.373569][T28778] do_syscall_64+0x115/0x840 [ 1721.373591][T28778] ? clear_bhb_loop+0x40/0x90 [ 1721.373620][T28778] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1721.373671][T28778] RIP: 0033:0x7f0ef339de59 [ 1721.373690][T28778] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1721.373714][T28778] RSP: 002b:00007f0ef4194028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1721.373737][T28778] RAX: ffffffffffffffda RBX: 00007f0ef3625fa0 RCX: 00007f0ef339de59 [ 1721.373753][T28778] RDX: 0000000000000000 RSI: 0000000000004c00 RDI: 0000000000000001 [ 1721.373767][T28778] RBP: 00007f0ef4194090 R08: 0000000000000000 R09: 0000000000000000 [ 1721.373782][T28778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1721.373796][T28778] R13: 00007f0ef3626038 R14: 00007f0ef3625fa0 R15: 00007ffde85b8ad8 [ 1721.373826][T28778] [ 1721.373853][T28778] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1722.396695][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1722.408278][ T1318] ieee802154 phy1 wpan1: encryption failed: -22 [ 1722.760416][T26482] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 1722.775569][T28788] netlink: 350 bytes leftover after parsing attributes in process `syz.0.4884'. [ 1722.819344][T20844] Bluetooth: hci4: unexpected event 0x08 length: 6 > 4 [ 1722.854410][T28788] tc_dump_action: action bad kind [ 1722.960039][T28788] netlink: 350 bytes leftover after parsing attributes in process `syz.0.4884'. [ 1723.013432][T28788] tc_dump_action: action bad kind [ 1724.782083][T20844] Bluetooth: hci4: command 0x2016 tx timeout [ 1724.866471][T26482] ------------[ cut here ]------------ [ 1724.872265][T26482] refcnt < 0 [ 1724.872288][T26482] WARNING: net/bluetooth/hci_conn.c:631 at hci_conn_timeout+0x16a/0x230, CPU#0: kworker/u12:3/26482 [ 1724.887620][T26482] Modules linked in: [ 1724.892224][T26482] CPU: 0 UID: 0 PID: 26482 Comm: kworker/u12:3 Tainted: G L syzkaller #0 PREEMPT(full) [ 1724.903644][T26482] Tainted: [L]=SOFTLOCKUP [ 1724.907985][T26482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1724.918841][T26482] Workqueue: hci4 hci_conn_timeout [ 1724.924859][T26482] RIP: 0010:hci_conn_timeout+0x16a/0x230 [ 1724.930539][T26482] Code: 44 0f b6 2d eb 03 46 06 31 ff 41 83 e5 40 44 89 ee e8 5a 65 77 f7 45 84 ed 0f 84 02 ff ff ff e9 90 9d df f6 e8 37 6b 77 f7 90 <0f> 0b 90 e8 2e 6b 77 f7 48 8d bb fd f5 ff ff 48 b8 00 00 00 00 00 [ 1724.951679][T26482] RSP: 0018:ffffc90003e2fc18 EFLAGS: 00010293 [ 1724.958659][T26482] RAX: 0000000000000000 RBX: ffff88807f694a40 RCX: ffffffff8a91700f [ 1724.967075][T26482] RDX: ffff888067891f00 RSI: ffffffff8a917109 RDI: ffff888067891f00 [ 1724.975137][T26482] RBP: 00000000ffffffff R08: 0000000000000005 R09: 0000000000000000 [ 1724.983186][T26482] R10: 00000000ffffffff R11: 0000000000000000 R12: ffff88807f694000 [ 1724.991244][T26482] R13: ffff8880678923c4 R14: ffffffff90dc0f44 R15: 0000000000000000 [ 1724.999242][T26482] FS: 0000000000000000(0000) GS:ffff8881242e7000(0000) knlGS:0000000000000000 [ 1725.008383][T26482] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1725.015051][T26482] CR2: 00007fc830ec9ac0 CR3: 000000005c168000 CR4: 00000000003526f0 [ 1725.024048][T26482] Call Trace: [ 1725.027343][T26482] [ 1725.030709][T26482] process_one_work+0xa23/0x1940 [ 1725.035694][T26482] ? __pfx_process_one_work+0x10/0x10 [ 1725.041165][T26482] ? __pfx_hci_conn_timeout+0x10/0x10 [ 1725.046567][T26482] worker_thread+0x5ef/0xe50 [ 1725.051445][T26482] ? __pfx_worker_thread+0x10/0x10 [ 1725.056608][T26482] ? kthread+0x13a/0x450 [ 1725.060940][T26482] ? __pfx_worker_thread+0x10/0x10 [ 1725.066100][T26482] kthread+0x370/0x450 [ 1725.070292][T26482] ? __pfx_kthread+0x10/0x10 [ 1725.074999][T26482] ret_from_fork+0x72b/0xd50 [ 1725.079630][T26482] ? __pfx_ret_from_fork+0x10/0x10 [ 1725.084862][T26482] ? __switch_to+0x800/0x10f0 [ 1725.089600][T26482] ? __switch_to_asm+0x39/0x70 [ 1725.094490][T26482] ? __pfx_kthread+0x10/0x10 [ 1725.099138][T26482] ret_from_fork_asm+0x1a/0x30 [ 1725.104154][T26482] [ 1725.107214][T26482] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1725.114520][T26482] CPU: 0 UID: 0 PID: 26482 Comm: kworker/u12:3 Tainted: G L syzkaller #0 PREEMPT(full) [ 1725.125742][T26482] Tainted: [L]=SOFTLOCKUP [ 1725.130081][T26482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1725.140179][T26482] Workqueue: hci4 hci_conn_timeout [ 1725.145321][T26482] Call Trace: [ 1725.148619][T26482] [ 1725.151560][T26482] dump_stack_lvl+0x100/0x190 [ 1725.156265][T26482] vpanic+0x552/0x970 [ 1725.160272][T26482] ? __pfx_vpanic+0x10/0x10 [ 1725.164800][T26482] panic+0xd1/0xe0 [ 1725.168560][T26482] ? __pfx_panic+0x10/0x10 [ 1725.173089][T26482] ? check_panic_on_warn+0x1f/0x90 [ 1725.178254][T26482] check_panic_on_warn.cold+0x19/0x34 [ 1725.183648][T26482] ? hci_conn_timeout+0x16a/0x230 [ 1725.188721][T26482] __warn.cold+0x191/0x318 [ 1725.193169][T26482] __report_bug+0x30f/0x440 [ 1725.197783][T26482] ? hci_conn_timeout+0x16a/0x230 [ 1725.202836][T26482] ? __pfx___report_bug+0x10/0x10 [ 1725.207984][T26482] ? do_raw_spin_unlock+0x145/0x1e0 [ 1725.213210][T26482] ? look_up_lock_class+0x55/0x120 [ 1725.218366][T26482] ? register_lock_class+0x40/0x560 [ 1725.223607][T26482] ? do_raw_spin_lock+0x128/0x260 [ 1725.228660][T26482] ? hci_conn_timeout+0x16a/0x230 [ 1725.233709][T26482] report_bug+0xb2/0x220 [ 1725.238009][T26482] ? hci_conn_timeout+0x16a/0x230 [ 1725.243108][T26482] handle_bug+0x16a/0x2a0 [ 1725.247481][T26482] exc_invalid_op+0x17/0x50 [ 1725.252023][T26482] asm_exc_invalid_op+0x1a/0x20 [ 1725.256917][T26482] RIP: 0010:hci_conn_timeout+0x16a/0x230 [ 1725.262617][T26482] Code: 44 0f b6 2d eb 03 46 06 31 ff 41 83 e5 40 44 89 ee e8 5a 65 77 f7 45 84 ed 0f 84 02 ff ff ff e9 90 9d df f6 e8 37 6b 77 f7 90 <0f> 0b 90 e8 2e 6b 77 f7 48 8d bb fd f5 ff ff 48 b8 00 00 00 00 00 [ 1725.282366][T26482] RSP: 0018:ffffc90003e2fc18 EFLAGS: 00010293 [ 1725.288460][T26482] RAX: 0000000000000000 RBX: ffff88807f694a40 RCX: ffffffff8a91700f [ 1725.296452][T26482] RDX: ffff888067891f00 RSI: ffffffff8a917109 RDI: ffff888067891f00 [ 1725.304513][T26482] RBP: 00000000ffffffff R08: 0000000000000005 R09: 0000000000000000 [ 1725.312515][T26482] R10: 00000000ffffffff R11: 0000000000000000 R12: ffff88807f694000 [ 1725.320679][T26482] R13: ffff8880678923c4 R14: ffffffff90dc0f44 R15: 0000000000000000 [ 1725.328702][T26482] ? hci_conn_timeout+0x6f/0x230 [ 1725.333769][T26482] ? hci_conn_timeout+0x169/0x230 [ 1725.338917][T26482] ? hci_conn_timeout+0x169/0x230 [ 1725.343967][T26482] process_one_work+0xa23/0x1940 [ 1725.348972][T26482] ? __pfx_process_one_work+0x10/0x10 [ 1725.354403][T26482] ? __pfx_hci_conn_timeout+0x10/0x10 [ 1725.359804][T26482] worker_thread+0x5ef/0xe50 [ 1725.364433][T26482] ? __pfx_worker_thread+0x10/0x10 [ 1725.369582][T26482] ? kthread+0x13a/0x450 [ 1725.373856][T26482] ? __pfx_worker_thread+0x10/0x10 [ 1725.379019][T26482] kthread+0x370/0x450 [ 1725.383120][T26482] ? __pfx_kthread+0x10/0x10 [ 1725.387747][T26482] ret_from_fork+0x72b/0xd50 [ 1725.392367][T26482] ? __pfx_ret_from_fork+0x10/0x10 [ 1725.397506][T26482] ? __switch_to+0x800/0x10f0 [ 1725.402222][T26482] ? __switch_to_asm+0x39/0x70 [ 1725.407049][T26482] ? __pfx_kthread+0x10/0x10 [ 1725.411670][T26482] ret_from_fork_asm+0x1a/0x30 [ 1725.416476][T26482] [ 1725.419581][T26482] Kernel Offset: disabled [ 1725.424009][T26482] Rebooting in 86400 seconds..