last executing test programs: 6.860006088s ago: executing program 1 (id=737): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/cpuid\x00', 0x10101, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) socket(0x2, 0x1, 0x5) shutdown$auto(0x200000003, 0x2) r1 = eventfd$auto(0x8e) mlock$auto(0xfbe8, 0x4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto_proc_iter_file_ops_compat_inode(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x40010, r1, 0x0) memfd_create$auto(0x0, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) r3 = socket(0xa, 0x801, 0x84) sendmmsg$auto(r2, &(0x7f0000000380)={{&(0x7f0000000180)="7b17e08fac73f25737d4ed9802d6009e851c6fa8b00ff12c1cfcfeb7e8484ae054f99416fbd619ff3c930104795b8d828e17d4ff449b7bdd42dc3a896de51a2d187e44e4809e98e74d1765b94b95a9127ba99108d9363b44a17c52dea5887311b71ae9943012988eeca9cfd9858a44b2fead45d6b2ff9882753f5682cc81a422440125921693a3aff3949fb6bb10f98e18231b273783aaf0145c9fbebc97c9db941c4ace74575d66aad7a835829cca3f4b95175105ad602a11f0226de2c5b0da7e", 0xffff, &(0x7f0000000080)={&(0x7f0000000280)="2cad36e5e3b742c23b67c140399b606aecfca292dacfe602b5b58ee87339a262d77b4ddc76bc0e39ab2ec3bff7f8d341516a738606c5a3e8184d8da60d77554d880625d44f99f787910401321763e79685db6e590cd24c52290ab18a2faaf7c9feea13dd6e5e3379e9967ecc2f58daa36181ea61fb", 0x5}, 0x4, &(0x7f0000000300)="57f6eb4a827f60b495788c6c996c04dbe0cb13c6561d80d85a0216124f97ba456675b661e25528c87fa001f3bfcaae436f5daea34bb6612738ed7324a22c173ce715d73c2504157ecdda015f1b01e30470ba2eef983925e9f177f4e599607c48258cd1c31fb3", 0x10, 0x5}, 0xc}, 0x10, 0x100) getsockopt$auto(r3, 0x84, 0x2, 0x0, 0x0) 5.144442379s ago: executing program 1 (id=744): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) ioctl$auto_TCFLSH2(r0, 0x80045439, 0x0) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_IOCTL_VMCI_GET_CONTEXT_ID(r1, 0x7b3, 0x1000000000000) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto(r0, 0x89f1, r0) 5.081181888s ago: executing program 2 (id=746): ioctl$auto_XFS_IOC_PATH_TO_HANDLE(0xffffffffffffffff, 0xc0385869, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000000000)="8438ee7de6bf85b04106c81feb38d958cdd3ea75849e16176cab45fd0cc908e61889697c80b79854b5451018ede5fa027a1ccba23323a5f95ae695f8", 0x0, &(0x7f0000000040)="5777ee0a23a7", 0x1, &(0x7f0000000080)="97eb5f11445c21a6ce5d83dbb1804b59852cc28a9dd4d58c909547bf56f734c6a5b956e356ec51f6ec502d962f08e6fdfab870ed95048439975d0278961e25ecb1c8544d93a10ee0a367dcfb43a12b243ea2ad074c7891971386a04fe58ab764b9559148945bac7c0589ec2b83aa7ff5110052a3dae5802801a6d81555885b810b153efa5cfe43664ef249a49a2e8587cd9325efb8a2ccfa2284d59c4079d5d4393b6f228a1a94c3532b0b190d", &(0x7f0000000140)=0x10}) r1 = ioctl$auto_TUNSETVNETBE2(r0, 0x400454de, &(0x7f00000001c0)=0xad6) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/ip_tables_targets\x00', 0x200202, 0x0) r3 = io_uring_setup$auto(0xffff, &(0x7f0000000240)={0x6, 0xfffffff8, 0x2, 0x3, 0x2, 0xf8, r2, [0x0, 0x5, 0x6], {0x80000001, 0x4, 0xffff, 0x6, 0x6bd, 0x7fff, 0x0, 0x5, 0x6}, {0x2, 0x7, 0x7, 0x5, 0x6, 0x66b7, 0x2b, 0x7ff, 0x4d}}) ioctl$auto_VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f00000002c0)={0x8, r3}) lseek$auto(r5, 0x3, 0xdf) mmap$auto_proc_reg_file_ops_compat_inode(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x5, 0x10010, r0, 0x6) r6 = open(&(0x7f0000000300)='./file0\x00', 0x200, 0x4) getsockopt$auto_SO_BPF_EXTENSIONS(r1, 0x0, 0x30, &(0x7f0000000340)='/proc/thread-self/net/ip_tables_targets\x00', &(0x7f0000000380)=0x40) r7 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event2\x00', 0x8040, 0x0) r8 = ioctl$NS_GET_PARENT(r4, 0xb702, 0x0) execveat$auto(r8, &(0x7f0000000400)='./file0\x00', &(0x7f0000000480)=&(0x7f0000000440)='/proc/thread-self/net/ip_tables_targets\x00', &(0x7f0000000500)=&(0x7f00000004c0)=',.#\x00', 0x8) r9 = semctl$auto(0x5, 0x4d8, 0x9, 0xffff) close_range$auto(r7, r4, 0x9) process_madvise$auto_MADV_UNMERGEABLE(r5, &(0x7f0000000640)={&(0x7f0000000540)="eddf16e26ae5523f25c2397f6ad364cd2368ff30f826a6db64824850bc4b1794842ad52ed3356c9ca0b4db4d57382175a2050f4168702477aa8d71b9a96dfc2fa281e5be0207e296379e777337ffb8c239f9309b91284f065689a0de0778db303e90b9394001209e088458dedecafb954b540a4d71f2b49e25c975928f33d18e5f5d0157adf4bfd1f9acaf303173a9f53a63487ad837caa8f859b60ca1d4d1358b264572464c397e772e510ccaddb15623d3edb5f67766e8aa794f36abf7b3f91eee43416a2649bd897fb99f93c3526feac883f77631fee18f075e420decf32ba4ed4ef7", 0x5}, 0x8000000000000000, 0xd, 0x2) r10 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000680)='/dev/binderfs/binder1\x00', 0x140, 0x0) readv$auto(r10, &(0x7f0000000740)={&(0x7f00000006c0)="7f64f6c99b0241a422777beacfaa4db4cce1a200eb7c673ba7973fdd69a2fd793fd7d9944bfecafdce78cecabb95da90778e82623a43c06fea8ce63d61d3d8a675d172c8033432bc8ce793b7c92451", 0x6}, 0x0) write$auto(r1, &(0x7f0000000780)='{\x00', 0x8) close_range$auto(r8, r10, 0x0) r11 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000800), r1) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000940)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000900)={&(0x7f0000000840)={0x88, r11, 0x20, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0x4}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x5}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0xde}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r5}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xd76}, @NL802154_ATTR_SEC_DEVICE={0x38, 0x2e, 0x0, 0x1, [@nested={0x1d, 0x78, 0x0, 0x1, [@generic="ae12048e66d3aa727c44f15948c219ff365cf5417336027f85"]}, @typed={0x14, 0x150, 0x0, 0x0, @ipv6=@private0}]}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0xa3fb}]}, 0x88}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040090) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000000980)=@batch={0x80000000, 0x100, 0x0, 0x7, 0x80000001, r5, 0x8, 0xc}, 0x40) open(&(0x7f0000000a40)='./file0\x00', 0x20200, 0x40) r12 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000ac0), r6) sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r12, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_FILS_KEK={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008041}, 0x4) ptrace$auto_PTRACE_PEEKTEXT(0x1, r9, 0x6, 0x0) mount_setattr$auto(r5, &(0x7f0000000bc0)='./file0\x00', 0x4, &(0x7f0000000c00)={0x100, 0xb, 0x7fff, @inferred=r5}, 0xe75a) io_uring_register$auto_IORING_REGISTER_SEND_MSG_RING(r10, 0x1f, &(0x7f0000000c40)="c18e8ab6db003efd5b05dc57153a85a36e6e2ecb75629cd8308f2753b5d5a0408eaed71f579b05843d4bf5945ee964f9b255d4cf4c207f8e12d5a6314f4701fa1923220196da5260ae80302f62142364adee6050a2e3bdbc8ba57108ac6fba045bbecc3ba5af3aef8a40b6d8f56576f53005fdc5880f6ec22f354673924c2b2b842f4082aaee4828a7dc", 0x200) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(r4, &(0x7f0000000fc0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000d40)={0x22c, r12, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syz_tun\x00'}, @NL80211_ATTR_MNTR_FLAGS={0xfb, 0x17, "996ef665ebcbe8728572e5822e79d27f371e922ddf1dd87197086179251b38d71d63f771d6226144bc001def3de9dcd18fabcc8b6b76a67429d3ca1a61a70580f8936ac85a51f39cbe47014ad6d2ba17315be74cc815accdc80fceba0542d3d5b8772ab165af66e5be9b6ed0371949b7b1a104c359b509ecae8ba9c2cf6f04c7096c94f81035e6180ae62f78f1e069769a05aaee4dcadbfb539cf920ef00d3750a4a0e48deef2ff00db05ad2679975f663bd645c7b7e2c3fe4c2f04a6c70ab72f597805842d1d967bacefcf6833512c203b7081f797f2b1e430b18e5c4c77e2ad57f7a63239bf29a80cd5c3f1e0824cfdabd81d0552c37"}, @NL80211_ATTR_REG_ALPHA2={0xd4, 0x21, "43dac23603684a610ad3db1c4d6da0e0c0f45a845e507e1d37ea2e81460caaa553195b6e9f217f418cb13eb4a0b3c992cee5acf04188752200d9dfc353bd9bcdda687ef7050eac27f6a3e6bd1eb93f157372ca52edadf0a387bfc417d35d7d6a38d760e391ffb60b302281f67997eb5c7692362266da8e0e90be54fe1f718401962cb192e3c5b950cea87fc187791ac4d0e268737a90ef4c31c0a8a7949c0a792fddc47c775dbf28d26d496a82676e828cd90304329dc31d7f30be9fe4d0b16d6d1db3425851c245df77df94b9923c6a"}, @NL80211_ATTR_WDEV={0xc, 0x99, 0xffffffffffffffff}, @NL80211_ATTR_COLOR_CHANGE_COUNT={0x5, 0x12f, 0xb7}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x94}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xc3}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x5}}, @NL80211_ATTR_MLO_SUPPORT={0x4}]}, 0x22c}, 0x1, 0x0, 0x0, 0x1}, 0x4000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85512, &(0x7f0000001040)={{@raw=0x13e, 0xac, 0xc5, 0xe, "5be2d3817098af69e9f7c05b3174db866b0c39495399bc8bf94536fc558bf63db80e7e76beded4e3a2b98958", @raw=0x1c000000}, 0x1, @integer64=@value_ptr=&(0x7f0000001000)=0x6, "5e6f302ff642d2538ba2dac2ca50dafbdd43ea4140ce7ef0a8df73dd33460f1f64c426d5d59f3659383d6cb15561917b2fe403738464ee590db407cbb724cf55461caa774ecc266a3e7b61ac6eb30729dd94d904865cd6d9ba55c173394c30c7ed2234360f98377405c54bbb9cf78e54de8f661702cfadfeb31f709b644f5b6c"}) 4.888014143s ago: executing program 2 (id=748): r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x10, 0x0, [{0x484, 0x400, 0x9}]}) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptytd\x00', 0x8000, 0x0) ioctl$auto_TCFLSH2(r1, 0x540b, &(0x7f00000001c0)="a5d3a29b0fa70aeb8257ca6e4b559b68f4b91c5ca1d8976e19e5bdf5253950e631c91b9f779449b70c62345daf1a36667c642764f4169d3abc4a3403c7a1c29e0450900807a60c9940090eae41fc190930c3fc44d3589e2425871e29e9a555f94b2d229b1a6364bfcabdeccf3642a5c1428033ba508331ecad578fe50b38b36b26aab640735f8c861d9a062047fd49c97fab8161c41d") mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0x400000000000eb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x2}, 0x1000002bf) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) r2 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) write$auto(0x4, 0x0, 0x100082) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) mmap$auto(0x0, 0x6, 0x4000002, 0x40eb2, 0xffffffffffffffff, 0x308000000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/netdevsim/netdevsim3/ports/2/pp_hold\x00', 0x20002, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) read$auto_mon_fops_text_t_mon_text(r2, &(0x7f0000000280)=""/18, 0x12) recvfrom$auto(0x3, 0x0, 0x8000000012, 0x100, 0x0, 0xfffffffffffffffd) ioctl$auto_FIDEDUPERANGE(r2, 0xc0189436, 0x8000000000000000) 4.810756961s ago: executing program 1 (id=749): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = socket$nl_generic(0x10, 0x3, 0x10) timer_create$auto(0x0, &(0x7f00000002c0)={@sival_ptr=0x0, @raw=0x10001, 0x4}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) ioctl$auto(0xc8, 0x400454ce, 0x5c8d) close_range$auto(0x2, 0x8, 0x0) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0xe0, r2, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_NAME={0xc4, 0x1, '!&\x00\x94\xf1\xfc\xad\x1fUP;\xc5x\xc1d\x16\x15\x1f\xe5\xca/\xfc\x11\x98\x11Us<2\xc6\xcc\v\xbe`*x\x16x\xe3\xc1\xf8\"\"}\xea\\2\xb5O\xf8\x12\x04\x83\xa3\xf14\xf1\xd9\x97c\xb9\xf2+m\xe2\xf8\x0f\xc4\xf7\xfa\xfe\xd4\xbb\xae\x89k\xcfsS*#\xb7G\x97N\x1as\x95\x15\xa2y\xba\x84\xc3\xb2\x80\x9a\xd8\x04\xd3\x84$\x00\x00\x00\x80~ZA\xa8\xce(\x00\xa6\xa5\x0e\x7f[u\x17&\xfaW\x94*\xef\xe0f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) readv$auto(r1, &(0x7f0000000480)={0x0, 0x4}, 0x4000000000004) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001840), r0) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000018c0)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x200480c7}, 0x80) 3.74991939s ago: executing program 2 (id=751): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000000)=@sco={0x1f, @none}, 0x454) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0xf, 0x8, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) 3.379260256s ago: executing program 1 (id=753): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000000c0)={@inferred=r0, 0x4, 0x2, @btrfs_ioctl_vol_args_v2_3_0={0x0, &(0x7f0000000040)={0x8000000000000000, 0xffffffffffff7fff, 0x0, 0x2, {0x2, 0x1, 0x7f, 0x4, 0x7}, [0x9e0e]}}, @name="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"}) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0xa) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88G\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x30b140, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/034/001\x00', 0x80142, 0x0) ioctl$auto_USBDEVFS_CLEAR_HALT(r3, 0x80045515, &(0x7f0000000140)=0x81) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4605, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe2180, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_CREATE_VM(r1, 0x4068aea3, 0x0) 3.189370956s ago: executing program 2 (id=754): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) socket(0x2, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty1\x00', 0xa0000, 0x0) ioctl$auto(r2, 0x4b3a, 0x1) r3 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) copy_file_range$auto(r3, 0x0, r4, 0x0, 0x21c3, 0x0) write$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x8000000000003, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) ioctl$auto_UI_BEGIN_FF_ERASE(r4, 0xc00c55ca, &(0x7f0000000080)={0x40, 0x10001, 0x5}) select$auto(0x10, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x1, 0xbc3, 0x800, 0x3, 0x8, 0xc, 0x400000000003, 0x3, 0x0, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x4]}, 0x0) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) 2.770080126s ago: executing program 1 (id=756): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) write$auto_cachefiles_daemon_fops_internal(r0, &(0x7f00000000c0)='a', 0x1) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x5, 0x810003, 0xfff, 0x8000000008011, r1, 0x8000) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0) getpgid$auto(0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r2 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xb5d1af1605322d93) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sg0\x00', 0x200, 0x0) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x4) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) open_by_handle_at$auto(r2, &(0x7f0000000040), 0xfe) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyy2\x00', 0x100, 0x0) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x3a, 0x0, 0x1000) keyctl$auto(0xe, 0x0, 0x16efae4c, 0x8000005092, 0x61f93bdb) mmap$auto(0x0, 0x2020009, 0x5, 0xf7, 0xfffffffffffffffa, 0x800000000008009) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r3) unshare$auto(0x8000000) semget$auto(0x0, 0x2e4a, 0x8000) semtimedop$auto(0x0, &(0x7f0000000200)={0x0, 0x800b, 0x7}, 0x4, 0x0) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x0, 0x36ec}, 0x1, 0x0) 2.738979805s ago: executing program 3 (id=757): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) fremovexattr$auto(r0, &(0x7f0000000100)=',!-\xe9(+\x00') socket(0x10, 0x2, 0x4) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="ffa2"], 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x20056, 0x8020000000f, 0x4, 0x5f, 0x20000000000804, 0xfffffffffffffffe}, 0x6f0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5402, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0xa}, 0x7}, 0x3, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) (async) fremovexattr$auto(r0, &(0x7f0000000100)=',!-\xe9(+\x00') (async) socket(0x10, 0x2, 0x4) (async) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="ffa2"], 0x44}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x20056, 0x8020000000f, 0x4, 0x5f, 0x20000000000804, 0xfffffffffffffffe}, 0x6f0) (async) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) io_uring_setup$auto(0x20, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0) (async) ioctl$auto(0x3, 0x5402, 0xffffffffffffffff) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0xa}, 0x7}, 0x3, 0x2) (async) 2.403757837s ago: executing program 3 (id=759): openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, 0x0, 0x5a1380, 0x0) socket(0x2, 0x3, 0xa) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r3 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) (async) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) (async, rerun: 64) recvmmsg$auto(r4, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) (async, rerun: 64) write$auto_proc_clear_refs_operations_internal(r3, 0x0, 0xffffff4b) mprotect$auto(0x0, 0x806121, 0x6) (async) write$auto(r2, &(0x7f0000000440)='ON\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf0F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\xed\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0xb8c5) (async, rerun: 64) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) (async, rerun: 64) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) (async, rerun: 64) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="11000000", 0x4) (async) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) (async) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/kernel/pid_max\x00', 0x0, 0x0) (async) socket(0xf, 0x3, 0x2) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async, rerun: 64) io_uring_setup$auto(0x1, 0x0) (async, rerun: 32) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) (rerun: 32) gettid() (async) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) 2.051801336s ago: executing program 2 (id=761): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) pwrite64$auto(0xc8, 0x0, 0xe, 0x3) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r0 = socket(0x28, 0x1, 0x0) r1 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES32], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) recvmmsg$auto(r3, &(0x7f0000000180)={{0x0, 0x10001, &(0x7f0000000080)={&(0x7f0000000040), 0x200}, 0x4, 0x0, 0x8, 0x7}, 0x7}, 0x5, 0x66a6, 0x0) r4 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r4, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c03000000000000002f", 0x49}, 0x5, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x3a, 0x400, 0xffffffffffffffff}]}) mmap$auto(0x0, 0x40006, 0xe2, 0x20009b72, 0x7, 0x28000) socket(0x18, 0xa, 0x1) getpid() pread64$auto(r0, &(0x7f0000000000)='{@@\x00', 0xffffffffffffffc9, 0xd) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0) recvfrom$auto(0xffffffffffffffff, 0x0, 0x0, 0x40, 0x0, 0x0) connect$auto(0x3, 0x0, 0x55) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) 1.777235606s ago: executing program 1 (id=762): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' ', @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x40005, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40200, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) read$auto_proc_pid_maps_operations_internal(r2, &(0x7f00000020c0)=""/4093, 0xffd) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(r0, 0x8, 0x0) brk$auto(0xffffffffffffff66) r3 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) r5 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000001c0), r1) sendmsg$auto_KSMBD_EVENT_TREE_CONNECT_RESPONSE(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x14, r5, 0x100, 0x70bd25, 0x25dfdbfd, {}, ["", "", ""]}, 0x14}}, 0x400c004) pread64$auto(r4, 0x0, 0x800003, 0x270) mlockall$auto(0x7) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x202, 0x0) ioctl$auto_SNAPSHOT_CREATE_IMAGE(r3, 0x40043311, 0x0) personality$auto(0xfffff032) ppoll$auto(&(0x7f0000001ac0)={0xffffffffffffffff, 0x9, 0x7}, 0x8, &(0x7f0000001b00)={0xf2, 0x9}, &(0x7f00000002c0)={0x10000}, 0x8) msgctl$auto_IPC_RMID(0x1, 0x0, &(0x7f0000001600)={{0x7b0, 0x0, 0x0, 0xd, 0x3ff, 0x7, 0xb}, &(0x7f0000000400)=0x9, 0x0, 0x1, 0xd80, 0x9, 0x0, 0x8000000000000000, 0x6, 0xa, 0xfff9, @raw=0x80, @raw=0x9}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x8894) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/net/hwsim0/tx_queue_len\x00', 0x82942, 0x0) openat$auto_stats_fops_2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 1.773021026s ago: executing program 0 (id=763): rseq$auto(&(0x7f00000002c0)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0xfffffff4, 0x0, 0x7) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311) rseq$auto(&(0x7f0000000640)={0x7, 0xdf, 0x7fffffff, 0x2, 0xf, 0x49, "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"}, 0x3, 0x0, 0x4) setregid$auto(0x81, 0x5) clone$auto(0x7fff, 0xff, &(0x7f0000000600)=0x8000, 0x0, 0x7) 1.623423031s ago: executing program 0 (id=764): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000100)=0x11512) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x801, 0x84) timerfd_create$auto(0x9, 0x0) socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) io_uring_setup$auto(0x52, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer2\x00', 0x0, 0x0) epoll_create$auto(0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vhci_hcd.0/usb10/10-0:1.0/usb10-port1/connect_type\x00', 0x20a800, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x9, 0x63, 0x0, 0x0, 0x0, 0x9, 0x200, 0x800000000100002, 0x40000407, 0x2, 0xc, 0x2, 0x19, 0x20000000009, 0x7}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc0008000200", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a0001"], 0x6c}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x40100, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r1 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r1, 0x0, 0xc3) 1.265049756s ago: executing program 3 (id=765): r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) setsockopt$auto(r0, 0x6, 0x12, 0x0, 0x40) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = getpgid(0x0) socketpair$auto(0xc, 0x9, 0x8000, &(0x7f0000000040)) rt_tgsigqueueinfo$auto(0xffffffffffffffff, r1, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r1, 0x0, 0x401, 0x5, 0x3}}}) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ') 1.260688673s ago: executing program 0 (id=766): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) statmount$auto(&(0x7f0000000040)={0x1f, @raw, 0x80000008, 0x3, 0x6}, 0x0, 0x7ffffffff000, 0x0) setsockopt$auto(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x14) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x1e, 0x4, 0x0) mmap$auto(0x0, 0x1, 0xe1, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), 0xffffffffffffffff) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd8\x00', 0x101400, 0x0) close_range$auto(r3, r0, 0xfffffffe) r4 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r4, 0x0) landlock_restrict_self$auto(r4, 0x0) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0) ioctl$auto(r5, 0xab04, 0xffffffffffffffff) close_range$auto(0x0, 0xfffffffffffff000, 0x2) inotify_init1$auto(0x3000000000000) socket$nl_generic(0x11, 0x3, 0x10) socket(0xa, 0x2, 0x88) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090027bd7000fbdbdf250200000008000800", @ANYRES32=r7, @ANYBLOB="1400018008000200060000000800010003"], 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0xc050) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r8 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r8, 0x10f, 0x87, 0x0, 0x14) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x1b1800, 0x0) 911.798511ms ago: executing program 3 (id=767): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x15, 0x1000, 0x47, 0xc, 0xf, 0x0, 0x0, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x3]}, 0x0, 0x0) socket(0xa, 0x2, 0x0) (async) r0 = socket(0xa, 0x2, 0x0) sendto$auto(r0, 0x0, 0x402, 0xacf8, &(0x7f0000000000)=@generic={0xa, "e2e13d0ee94e00"}, 0x1b) io_uring_setup$auto(0x6, 0x0) (async) r1 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) (async) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44b, 0x7, 0x5, 0x1007181, 0xd1, 0x7, 0x7, 0x7ff, 0x800c, 0x80000001, 0x4, 0x80200000000001, 0x800000000fff, 0xde3, 0x800000000008, 0x0, 0x2, 0x1e8c, 0x864, 0x6, 0x22000, 0x200, 0x0, 0xc3f, 0x2000000, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44cd98b, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x5, 0x2a, 0x100000001, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x8, 0x1, 0x0, 0x0, 0x3, 0x0, 0xfff]}, 0xa, 0xd) ioctl$auto_FS_IOC_SETFLAGS2(r1, 0x40086602, &(0x7f0000000000)=0xffffffff) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd02, &(0x7f00000001c0)) 879.636182ms ago: executing program 2 (id=768): openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, 0x0, 0x400000, 0x0) r0 = socket(0xa, 0x2, 0x0) setsockopt$auto_SO_WIFI_STATUS(r0, 0x0, 0x29, 0x0, 0xbff) r1 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy0/power\x00', 0x88000, 0x0) read$auto(r1, &(0x7f0000001200)='\x00', 0x4) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0) write$auto_snd_pcm_oss_f_reg_pcm_oss(r2, &(0x7f0000000080)="c2", 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0xfffffffffffffffc) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) r4 = socket(0x11, 0x2, 0x0) sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f00000003c0), 0x5, 0x1000}, 0x5}, 0x2, 0x100) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x28, r7, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x10, 0x1, 0x0, 0x1, [@nested={0xc, 0x10, 0x0, 0x1, [@typed={0x8, 0xb, 0x0, 0x0, @fd=r8}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000640)={'dvmrp0\x00'}) close_range$auto(0x2, 0x8, 0x7f) close_range$auto(0x2, 0xffffffffffffffff, 0x0) 851.348005ms ago: executing program 0 (id=769): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) kexec_load$auto(0x25c6, 0xffff, 0x0, 0x9) (async) ustat$auto(0x801, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) open(0x0, 0x22240, 0x155) (async) prlimit64$auto(0x0, 0x2, &(0x7f0000000040)={0x401, 0xffffffffffffffff}, 0x0) brk$auto(0xffffffffffffffff) select$auto(0x0, &(0x7f0000000000)={[0xfffffffffffffffd, 0x2, 0x6, 0x2, 0xfffffffffffffffa, 0x40000000000, 0x200, 0x6, 0x10000, 0x8, 0x6, 0x6, 0x5, 0x100, 0x3, 0x2]}, &(0x7f0000000080)={[0x1, 0x5, 0x9, 0x7, 0x130, 0x3, 0x4, 0x5, 0x4000, 0x9, 0x18000000, 0xff, 0x9, 0xc, 0x3, 0x4]}, &(0x7f0000000100)={[0x8000000000000001, 0x1, 0x6, 0x27, 0x6, 0x8000000000000001, 0x9, 0x8, 0xfffffffffffffffd, 0x7fff, 0x3, 0x120, 0x9, 0x3, 0x1, 0x100000000]}, &(0x7f0000000180)={0x7, 0xfffffffffffffffb}) socket(0x2, 0x1, 0x0) (async) listen$auto(0x3, 0x81) (async) ioctl$auto(0x3, 0x800005411, 0x38) 625.162018ms ago: executing program 0 (id=770): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0x8, 0xffffffff, 0xfffffffffffffffe, 0x1, 0xfc2, 0x26f, @inferred, @raw=0x9}) setresgid$auto(0x0, 0xffffffffffffffff, r1) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) io_uring_register$auto(0x2, 0x9, 0x0, 0x0) socket(0x1d, 0x2, 0x6) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xa, 0x3, 0xe, 0x940, 0xfffffff8, 0x3, 0x1004, 0x1, 0x9, 0x5, 0x6, 0x7, 0x1001000, 0x8, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffd, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc79f, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x4, 0x40000081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x52, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x8044) mmap$auto(0x0, 0xeb80, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0) fadvise64$auto(r5, 0x7fffffffffffffff, 0x400000040000005, 0x0) close_range$auto(0x2, 0xa, 0x0) 484.135568ms ago: executing program 3 (id=771): socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x5, 0x84) read$auto(0x3, 0x0, 0x7) (async) read$auto(0x3, 0x0, 0x7) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) (async) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) connect$auto(0x3, 0x0, 0x55) (async) connect$auto(0x3, 0x0, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0) memfd_create$auto(0x0, 0x4) (async) r0 = memfd_create$auto(0x0, 0x4) r1 = socket(0xa, 0x3, 0x3a) statx$auto(r0, 0x0, 0x1000, 0xbdfc, 0x0) setsockopt$auto(r1, 0x29, 0x14, 0x0, 0x56b) prctl$auto(0x10000000024, 0x0, 0xfffffffffffffffa, 0x7, 0x80001) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x801, 0x106) mmap$auto(0x3, 0x400005, 0xe2, 0x9b72, 0x2, 0x2) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) bind$auto(0x3, 0x0, 0x68) (async) bind$auto(0x3, 0x0, 0x68) openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x4000, 0x0) (async) r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x4000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r2, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) getrandom$auto(0x0, 0x6000002, 0x1) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) userfaultfd$auto(0x1) 0s ago: executing program 0 (id=772): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy3/reset\x00', 0x2, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(r0, &(0x7f0000000080)="2784ed900344924187d99e1b1281fde15c909676a52c02fa2b123d0d521d4e782f8f24e17be4688107827fd93779a2cda7c788dafbde921e90de7ab85eca311ee4a76108eb2cb7cd7d957b3b46d7441e770d25308c5b48a2fb662a08bc752d6903b86fd310e1961a43cbc1542d7513da863877d1e8867535f406ecaaac6375af15efb21f0eabeaf2f003930da5390673bc8208f9cbd2eedaccce2202c5c59a36943e11da0ce0aa7e056e6b6c26eaa244d6a111a1114094218e4bc95e850eb1816c3fc8c5d133464b32bca5ce0fa0e7414309e995799b05bde571a82daf5f6ef07f", 0xe1) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi11\x00', 0x169000, 0x0) ioctl$auto(r1, 0xc0285629, r1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x23, 0x9) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68) kernel console output (not intermixed with test programs): 0:50 [ 90.365029][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.409720][ T5824] veth0_vlan: entered promiscuous mode [ 90.439390][ T5830] veth0_macvtap: entered promiscuous mode [ 90.454784][ T5824] veth1_vlan: entered promiscuous mode [ 90.460947][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.469293][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.484724][ T5830] veth1_macvtap: entered promiscuous mode [ 90.492532][ T5825] veth0_vlan: entered promiscuous mode [ 90.513882][ T5825] veth1_vlan: entered promiscuous mode [ 90.562760][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.576032][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.589784][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 90.603174][ T5825] veth0_macvtap: entered promiscuous mode [ 90.616158][ T1093] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.627970][ T1093] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.641770][ T1093] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.651233][ T1093] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.671799][ T5825] veth1_macvtap: entered promiscuous mode [ 90.692105][ T5824] veth0_macvtap: entered promiscuous mode [ 90.724970][ T5824] veth1_macvtap: entered promiscuous mode [ 90.785995][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.805112][ T5919] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 90.820349][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.856150][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.856357][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.872201][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.883514][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.923031][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.935404][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.973641][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.005035][ T4105] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.031364][ T4105] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.048160][ T4105] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.058091][ T4105] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.061724][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.076612][ T4105] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.106079][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.257986][ T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.283045][ T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.405958][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.439187][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.461099][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.470351][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.598551][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.606413][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.685742][ T5929] capability: warning: `syz.1.5' uses 32-bit capabilities (legacy support in use) [ 91.960229][ T5839] Bluetooth: hci0: command tx timeout [ 91.964158][ T24] cfg80211: failed to load regulatory.db [ 92.005921][ T5944] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 92.041375][ T5839] Bluetooth: hci1: command tx timeout [ 92.055836][ T5936] Zero length message leads to an empty skb [ 92.118627][ T5839] Bluetooth: hci3: command tx timeout [ 92.124058][ T5839] Bluetooth: hci2: command tx timeout [ 92.358830][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.811033][ T5961] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11'. [ 92.923315][ T5964] mmap: syz.2.12 (5964) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 93.102326][ T5968] syz.0.13: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 93.119376][ T5968] CPU: 0 UID: 0 PID: 5968 Comm: syz.0.13 Not tainted syzkaller #0 PREEMPT(full) [ 93.119409][ T5968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 93.119428][ T5968] Call Trace: [ 93.119437][ T5968] [ 93.119448][ T5968] dump_stack_lvl+0x16c/0x1f0 [ 93.119487][ T5968] warn_alloc+0x248/0x3a0 [ 93.119516][ T5968] ? __pfx_warn_alloc+0x10/0x10 [ 93.119561][ T5968] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 93.119595][ T5968] __vmalloc_node_range_noprof+0xfbc/0x1480 [ 93.119632][ T5968] ? __pfx___might_resched+0x10/0x10 [ 93.119661][ T5968] ? rcu_is_watching+0x12/0xc0 [ 93.119687][ T5968] ? trace_contention_end+0xdd/0x130 [ 93.119722][ T5968] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 93.119757][ T5968] ? tomoyo_path_number_perm+0x295/0x580 [ 93.119802][ T5968] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 93.119836][ T5968] ? __pfx___mutex_lock+0x10/0x10 [ 93.119870][ T5968] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 93.119912][ T5968] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 93.119941][ T5968] __vmalloc_node_noprof+0xad/0xf0 [ 93.119974][ T5968] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 93.120007][ T5968] dvb_dvr_do_ioctl+0x15d/0x290 [ 93.120046][ T5968] dvb_usercopy+0x167/0x340 [ 93.120073][ T5968] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 93.120105][ T5968] ? __pfx_dvb_usercopy+0x10/0x10 [ 93.120148][ T5968] ? __fget_files+0x20e/0x3c0 [ 93.120181][ T5968] dvb_dvr_ioctl+0x29/0x40 [ 93.120221][ T5968] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 93.120260][ T5968] __x64_sys_ioctl+0x18e/0x210 [ 93.120299][ T5968] do_syscall_64+0xcd/0xfa0 [ 93.120330][ T5968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.120357][ T5968] RIP: 0033:0x7f520fb8f6c9 [ 93.120385][ T5968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 93.120410][ T5968] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 93.120434][ T5968] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 93.120452][ T5968] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000004 [ 93.120468][ T5968] RBP: 00007f520fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 93.120484][ T5968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 93.120498][ T5968] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 93.120535][ T5968] [ 93.120545][ T5968] Mem-Info: [ 93.249151][ T5839] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 93.256059][ T5968] active_anon:7975 inactive_anon:0 isolated_anon:0 [ 93.256059][ T5968] active_file:2381 inactive_file:39879 isolated_file:0 [ 93.256059][ T5968] unevictable:768 dirty:1219 writeback:0 [ 93.256059][ T5968] slab_reclaimable:10068 slab_unreclaimable:89850 [ 93.256059][ T5968] mapped:25337 shmem:2307 pagetables:984 [ 93.256059][ T5968] sec_pagetables:0 bounce:0 [ 93.256059][ T5968] kernel_misc_reclaimable:0 [ 93.256059][ T5968] free:1336293 free_pcp:24853 free_cma:0 [ 93.427831][ T5968] Node 0 active_anon:33100kB inactive_anon:0kB active_file:9524kB inactive_file:159312kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:100448kB dirty:4860kB writeback:0kB shmem:7792kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11424kB pagetables:3776kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 93.528216][ T5968] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:16kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 93.628872][ T5968] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 93.661884][ T5968] lowmem_reserve[]: 0 2485 2487 2487 2487 [ 93.667693][ T5968] Node 0 DMA32 free:1436492kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32900kB inactive_anon:0kB active_file:9524kB inactive_file:159312kB unevictable:1536kB writepending:4860kB zspages:0kB present:3129332kB managed:2545088kB mlocked:0kB bounce:0kB free_pcp:78704kB local_pcp:66260kB free_cma:0kB [ 93.703315][ T5968] lowmem_reserve[]: 0 0 1 1 1 [ 93.708079][ T5968] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 93.739528][ T5968] lowmem_reserve[]: 0 0 0 0 0 [ 93.744486][ T5968] Node 1 Normal free:3889056kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:16kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:23064kB local_pcp:8024kB free_cma:0kB [ 93.784687][ T5968] lowmem_reserve[]: 0 0 0 0 0 [ 93.789570][ T5968] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 93.817174][ T5968] Node 0 DMA32: 4*4kB (ME) 2*8kB (ME) 2*16kB (UM) 4*32kB (UME) 2*64kB (M) 2*128kB (ME) 4*256kB (UME) 2*512kB (UE) 2*1024kB (UE) 2*2048kB (ME) 349*4096kB (M) = 1438272kB [ 93.822021][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 93.838519][ T5968] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 94.038365][ T5839] Bluetooth: hci0: command tx timeout [ 94.055960][ T5968] Node 1 Normal: 200*4kB (UE) 27*8kB (UM) 20*16kB (UM) 50*32kB (UME) 13*64kB (UME) 8*128kB (UME) 3*256kB (ME) 4*512kB (UM) 3*1024kB (UME) 2*2048kB (UE) 946*4096kB (M) = 3889592kB [ 94.058369][ T5961] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 94.074263][ T5968] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 94.124547][ T5839] Bluetooth: hci1: command tx timeout [ 94.129344][ T5968] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 94.153768][ T5968] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 94.181678][ T5968] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 94.199535][ T5839] Bluetooth: hci2: command tx timeout [ 94.200897][ T52] Bluetooth: hci3: command tx timeout [ 94.205037][ T5968] 45756 total pagecache pages [ 94.228356][ T5968] 0 pages in swap cache [ 94.238316][ T5968] Free swap = 124996kB [ 94.243157][ T5968] Total swap = 124996kB [ 94.247329][ T5968] 2097051 pages RAM [ 94.251204][ T5968] 0 pages HighMem/MovableOnly [ 94.256430][ T5968] 428689 pages reserved [ 94.268903][ T5968] 0 pages cma reserved [ 95.785297][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.065669][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.074661][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.083760][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.092489][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.101169][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.109755][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 96.120174][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 99.591692][ T6043] netlink: 25 bytes leftover after parsing attributes in process `syz.0.30'. [ 99.889191][ T6059] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 100.072016][ T6064] FAULT_INJECTION: forcing a failure. [ 100.072016][ T6064] name failslab, interval 1, probability 0, space 0, times 1 [ 100.089436][ T6064] CPU: 1 UID: 0 PID: 6064 Comm: syz.3.29 Not tainted syzkaller #0 PREEMPT(full) [ 100.089470][ T6064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 100.089486][ T6064] Call Trace: [ 100.089494][ T6064] [ 100.089504][ T6064] dump_stack_lvl+0x16c/0x1f0 [ 100.089540][ T6064] should_fail_ex+0x512/0x640 [ 100.089575][ T6064] ? __kmalloc_noprof+0xca/0x880 [ 100.089617][ T6064] should_failslab+0xc2/0x120 [ 100.089650][ T6064] __kmalloc_noprof+0xdd/0x880 [ 100.089685][ T6064] ? __pfx___mutex_trylock_common+0x10/0x10 [ 100.089718][ T6064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 100.089761][ T6064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 100.089794][ T6064] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 100.089836][ T6064] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 100.089869][ T6064] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 100.089900][ T6064] ? genl_get_cmd+0x194/0x580 [ 100.089940][ T6064] ? __radix_tree_lookup+0x21f/0x2c0 [ 100.089972][ T6064] genl_rcv_msg+0x55c/0x800 [ 100.090007][ T6064] ? __pfx_genl_rcv_msg+0x10/0x10 [ 100.090038][ T6064] ? __pfx_ctrl_getfamily+0x10/0x10 [ 100.090087][ T6064] netlink_rcv_skb+0x158/0x420 [ 100.090114][ T6064] ? __pfx_genl_rcv_msg+0x10/0x10 [ 100.090148][ T6064] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 100.090202][ T6064] genl_rcv+0x28/0x40 [ 100.090228][ T6064] netlink_unicast+0x5aa/0x870 [ 100.090267][ T6064] ? __pfx_netlink_unicast+0x10/0x10 [ 100.090309][ T6064] netlink_sendmsg+0x8c8/0xdd0 [ 100.090348][ T6064] ? __pfx_netlink_sendmsg+0x10/0x10 [ 100.090379][ T6064] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 100.090422][ T6064] __sys_sendto+0x4a3/0x520 [ 100.090460][ T6064] ? __pfx___sys_sendto+0x10/0x10 [ 100.090507][ T6064] ? find_held_lock+0x2b/0x80 [ 100.090561][ T6064] __x64_sys_sendto+0xe0/0x1c0 [ 100.090596][ T6064] ? do_syscall_64+0x91/0xfa0 [ 100.090623][ T6064] ? lockdep_hardirqs_on+0x7c/0x110 [ 100.090652][ T6064] do_syscall_64+0xcd/0xfa0 [ 100.090683][ T6064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.090709][ T6064] RIP: 0033:0x7f6ce3b9155c [ 100.090731][ T6064] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 100.090754][ T6064] RSP: 002b:00007f6ce4ac1ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 100.090779][ T6064] RAX: ffffffffffffffda RBX: 00007f6ce4ac1fc0 RCX: 00007f6ce3b9155c [ 100.090796][ T6064] RDX: 0000000000000020 RSI: 00007f6ce4ac2010 RDI: 0000000000000006 [ 100.090812][ T6064] RBP: 0000000000000000 R08: 00007f6ce4ac1f14 R09: 000000000000000c [ 100.090828][ T6064] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006 [ 100.090843][ T6064] R13: 00007f6ce4ac1f68 R14: 00007f6ce4ac2010 R15: 0000000000000000 [ 100.090880][ T6064] [ 100.679455][ T6064] process 'syz.3.29' launched ':,' with NULL argv: empty string added [ 100.868641][ T52] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 101.964747][ T6095] FAULT_INJECTION: forcing a failure. [ 101.964747][ T6095] name fail_futex, interval 1, probability 0, space 0, times 1 [ 101.998756][ T6095] CPU: 1 UID: 0 PID: 6095 Comm: syz.0.43 Not tainted syzkaller #0 PREEMPT(full) [ 101.998789][ T6095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 101.998802][ T6095] Call Trace: [ 101.998810][ T6095] [ 101.998819][ T6095] dump_stack_lvl+0x16c/0x1f0 [ 101.998852][ T6095] should_fail_ex+0x512/0x640 [ 101.998901][ T6095] get_futex_key+0x1d0/0x1560 [ 101.998937][ T6095] ? __pfx_get_futex_key+0x10/0x10 [ 101.998969][ T6095] ? __pfx___schedule+0x10/0x10 [ 101.998992][ T6095] ? trace_sched_set_need_resched_tp+0xf3/0x150 [ 101.999022][ T6095] futex_wait_setup+0x9d/0x550 [ 101.999053][ T6095] __futex_wait+0x193/0x2f0 [ 101.999077][ T6095] ? __pfx___futex_wait+0x10/0x10 [ 101.999106][ T6095] ? __pfx_futex_wake_mark+0x10/0x10 [ 101.999143][ T6095] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 101.999176][ T6095] ? __hrtimer_setup+0x176/0x280 [ 101.999213][ T6095] ? ktime_add_safe+0x60/0x70 [ 101.999251][ T6095] futex_wait+0xe8/0x380 [ 101.999273][ T6095] ? __pfx_futex_wait+0x10/0x10 [ 101.999294][ T6095] ? __lock_acquire+0xb8a/0x1c90 [ 101.999327][ T6095] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 101.999374][ T6095] do_futex+0x229/0x350 [ 101.999406][ T6095] ? __pfx_do_futex+0x10/0x10 [ 101.999433][ T6095] ? rcu_is_watching+0x12/0xc0 [ 101.999458][ T6095] ? ktime_get+0x200/0x310 [ 101.999484][ T6095] ? lockdep_hardirqs_on+0x7c/0x110 [ 101.999511][ T6095] ? read_tsc+0x9/0x20 [ 101.999540][ T6095] __x64_sys_futex+0x1e0/0x4c0 [ 101.999576][ T6095] ? __pfx___x64_sys_futex+0x10/0x10 [ 101.999606][ T6095] ? xfd_validate_state+0x61/0x180 [ 101.999650][ T6095] do_syscall_64+0xcd/0xfa0 [ 101.999680][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.999704][ T6095] RIP: 0033:0x7f520fb8f6c9 [ 101.999723][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 101.999744][ T6095] RSP: 002b:00007fff2dde9c18 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 101.999767][ T6095] RAX: ffffffffffffffda RBX: 0000000000018e26 RCX: 00007f520fb8f6c9 [ 101.999782][ T6095] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f520fde5fac [ 101.999795][ T6095] RBP: 0000000000000032 R08: 00007f52109e2000 R09: 000000032dde9f0f [ 101.999808][ T6095] R10: 00007fff2dde9d10 R11: 0000000000000246 R12: 00007f520fde5fac [ 101.999822][ T6095] R13: 00007fff2dde9d10 R14: 0000000000018e58 R15: 00007fff2dde9d30 [ 101.999871][ T6095] [ 103.048560][ T30] audit: type=1800 audit(1762843171.966:2): pid=6114 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.48" name="version" dev="configfs" ino=7866 res=0 errno=0 [ 103.737382][ T6125] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 105.009576][ T6144] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 105.159318][ T6144] netlink: 28 bytes leftover after parsing attributes in process `syz.3.57'. [ 105.523029][ T6146] zswap: compressor not available [ 105.935121][ T6165] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub [ 105.948342][ T6165] queue_state_write: operation too long [ 105.954021][ T6165] queue_state_write: use 'run', 'start' or 'kick' [ 106.414935][ T6175] random: crng reseeded on system resumption [ 106.427904][ T6176] Invalid ELF header magic: != ELF [ 106.825019][ T6187] netlink: 'syz.3.66': attribute type 2 has an invalid length. [ 106.837806][ T6187] FAULT_INJECTION: forcing a failure. [ 106.837806][ T6187] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 106.853768][ T6187] CPU: 0 UID: 0 PID: 6187 Comm: syz.3.66 Not tainted syzkaller #0 PREEMPT(full) [ 106.853799][ T6187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 106.853812][ T6187] Call Trace: [ 106.853820][ T6187] [ 106.853829][ T6187] dump_stack_lvl+0x16c/0x1f0 [ 106.853862][ T6187] should_fail_ex+0x512/0x640 [ 106.853897][ T6187] should_fail_alloc_page+0xe7/0x130 [ 106.853926][ T6187] prepare_alloc_pages+0x3c2/0x610 [ 106.853958][ T6187] ? rcu_is_watching+0x12/0xc0 [ 106.853986][ T6187] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 106.854013][ T6187] ? rcu_is_watching+0x12/0xc0 [ 106.854035][ T6187] ? trace_mm_page_alloc+0x11f/0x1a0 [ 106.854064][ T6187] ? __alloc_frozen_pages_noprof+0x292/0x2470 [ 106.854084][ T6187] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 106.854107][ T6187] ? lockdep_hardirqs_on+0x7c/0x110 [ 106.854133][ T6187] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 106.854157][ T6187] ? stack_depot_save_flags+0x3de/0x9c0 [ 106.854204][ T6187] ? alloc_vmap_area+0xdcf/0x29e0 [ 106.854231][ T6187] ? __vmalloc_node_range_noprof+0x271/0x1480 [ 106.854263][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 106.854290][ T6187] ? do_ip6t_set_ctl+0x498/0xa70 [ 106.854322][ T6187] ? nf_setsockopt+0x8d/0xf0 [ 106.854346][ T6187] ? ipv6_setsockopt+0x135/0x170 [ 106.854377][ T6187] ? do_sock_setsockopt+0xf3/0x1d0 [ 106.854404][ T6187] ? __sys_setsockopt+0x120/0x1a0 [ 106.854436][ T6187] ? __x64_sys_setsockopt+0xbd/0x160 [ 106.854494][ T6187] alloc_pages_bulk_noprof+0x71c/0x1410 [ 106.854521][ T6187] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 106.854564][ T6187] ? policy_nodemask+0xea/0x4e0 [ 106.854600][ T6187] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 106.854627][ T6187] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 106.854674][ T6187] kasan_populate_vmalloc+0x112/0x2d0 [ 106.854700][ T6187] ? alloc_vmap_area+0x8b5/0x29e0 [ 106.854736][ T6187] alloc_vmap_area+0x960/0x29e0 [ 106.854780][ T6187] ? __pfx_alloc_vmap_area+0x10/0x10 [ 106.854820][ T6187] __get_vm_area_node+0x1ca/0x330 [ 106.854858][ T6187] __vmalloc_node_range_noprof+0x271/0x1480 [ 106.854893][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 106.854921][ T6187] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 106.854960][ T6187] ? policy_nodemask+0xea/0x4e0 [ 106.854993][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 106.855030][ T6187] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 106.855069][ T6187] ? ___kmalloc_large_node+0xed/0x160 [ 106.855107][ T6187] __kvmalloc_node_noprof+0x431/0x9c0 [ 106.855135][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 106.855159][ T6187] ? copy_from_sockptr_offset+0xed/0x1b0 [ 106.855193][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 106.855229][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 106.855256][ T6187] xt_alloc_table_info+0x43/0xa0 [ 106.855285][ T6187] do_ip6t_set_ctl+0x498/0xa70 [ 106.855320][ T6187] ? nf_sockopt_find.constprop.0+0x222/0x290 [ 106.855353][ T6187] ? __pfx_do_ip6t_set_ctl+0x10/0x10 [ 106.855389][ T6187] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 106.855427][ T6187] ? nf_sockopt_find.constprop.0+0x222/0x290 [ 106.855452][ T6187] nf_setsockopt+0x8d/0xf0 [ 106.855488][ T6187] ipv6_setsockopt+0x135/0x170 [ 106.855518][ T6187] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 106.855543][ T6187] do_sock_setsockopt+0xf3/0x1d0 [ 106.855571][ T6187] __sys_setsockopt+0x120/0x1a0 [ 106.855603][ T6187] __x64_sys_setsockopt+0xbd/0x160 [ 106.855634][ T6187] ? do_syscall_64+0x91/0xfa0 [ 106.855660][ T6187] ? lockdep_hardirqs_on+0x7c/0x110 [ 106.855688][ T6187] do_syscall_64+0xcd/0xfa0 [ 106.855716][ T6187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.855740][ T6187] RIP: 0033:0x7f6ce3b8f6c9 [ 106.855759][ T6187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.855779][ T6187] RSP: 002b:00007f6ce4ac3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 106.855802][ T6187] RAX: ffffffffffffffda RBX: 00007f6ce3de5fa0 RCX: 00007f6ce3b8f6c9 [ 106.855817][ T6187] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000009 [ 106.855830][ T6187] RBP: 00007f6ce3c11f91 R08: 00000000420b5bf1 R09: 0000000000000000 [ 106.855844][ T6187] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000 [ 106.855858][ T6187] R13: 00007f6ce3de6038 R14: 00007f6ce3de5fa0 R15: 00007ffc5fc69598 [ 106.855890][ T6187] [ 106.857221][ T6187] syz.3.66: vmalloc error: size 536870911, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 107.299823][ T6187] CPU: 0 UID: 0 PID: 6187 Comm: syz.3.66 Not tainted syzkaller #0 PREEMPT(full) [ 107.299854][ T6187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 107.299867][ T6187] Call Trace: [ 107.299875][ T6187] [ 107.299883][ T6187] dump_stack_lvl+0x16c/0x1f0 [ 107.299915][ T6187] warn_alloc+0x248/0x3a0 [ 107.299941][ T6187] ? __pfx_warn_alloc+0x10/0x10 [ 107.299968][ T6187] ? kfree+0x2b8/0x6d0 [ 107.299986][ T6187] ? __get_vm_area_node+0x2cd/0x330 [ 107.300023][ T6187] ? __get_vm_area_node+0x2cd/0x330 [ 107.300050][ T6187] ? __get_vm_area_node+0x208/0x330 [ 107.300088][ T6187] __vmalloc_node_range_noprof+0xaf5/0x1480 [ 107.300122][ T6187] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 107.300160][ T6187] ? policy_nodemask+0xea/0x4e0 [ 107.300190][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 107.300224][ T6187] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 107.300262][ T6187] ? ___kmalloc_large_node+0xed/0x160 [ 107.300296][ T6187] __kvmalloc_node_noprof+0x431/0x9c0 [ 107.300323][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 107.300350][ T6187] ? copy_from_sockptr_offset+0xed/0x1b0 [ 107.300384][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 107.300419][ T6187] ? xt_alloc_table_info+0x43/0xa0 [ 107.300449][ T6187] xt_alloc_table_info+0x43/0xa0 [ 107.300477][ T6187] do_ip6t_set_ctl+0x498/0xa70 [ 107.300511][ T6187] ? nf_sockopt_find.constprop.0+0x222/0x290 [ 107.300544][ T6187] ? __pfx_do_ip6t_set_ctl+0x10/0x10 [ 107.300580][ T6187] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 107.300628][ T6187] ? nf_sockopt_find.constprop.0+0x222/0x290 [ 107.300661][ T6187] nf_setsockopt+0x8d/0xf0 [ 107.300692][ T6187] ipv6_setsockopt+0x135/0x170 [ 107.300722][ T6187] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 107.300755][ T6187] do_sock_setsockopt+0xf3/0x1d0 [ 107.300787][ T6187] __sys_setsockopt+0x120/0x1a0 [ 107.300833][ T6187] __x64_sys_setsockopt+0xbd/0x160 [ 107.300866][ T6187] ? do_syscall_64+0x91/0xfa0 [ 107.300891][ T6187] ? lockdep_hardirqs_on+0x7c/0x110 [ 107.300917][ T6187] do_syscall_64+0xcd/0xfa0 [ 107.300942][ T6187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.300962][ T6187] RIP: 0033:0x7f6ce3b8f6c9 [ 107.300978][ T6187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 107.300995][ T6187] RSP: 002b:00007f6ce4ac3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 107.301013][ T6187] RAX: ffffffffffffffda RBX: 00007f6ce3de5fa0 RCX: 00007f6ce3b8f6c9 [ 107.301026][ T6187] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000009 [ 107.301037][ T6187] RBP: 00007f6ce3c11f91 R08: 00000000420b5bf1 R09: 0000000000000000 [ 107.301049][ T6187] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000 [ 107.301060][ T6187] R13: 00007f6ce3de6038 R14: 00007f6ce3de5fa0 R15: 00007ffc5fc69598 [ 107.301086][ T6187] [ 107.301163][ T6187] Mem-Info: [ 107.375874][ T6195] netlink: 40 bytes leftover after parsing attributes in process `syz.2.64'. [ 107.385854][ T6187] active_anon:5452 inactive_anon:0 isolated_anon:0 [ 107.385854][ T6187] active_file:15354 inactive_file:40271 isolated_file:0 [ 107.385854][ T6187] unevictable:768 dirty:320 writeback:0 [ 107.385854][ T6187] slab_reclaimable:10824 slab_unreclaimable:91030 [ 107.385854][ T6187] mapped:24282 shmem:1366 pagetables:999 [ 107.385854][ T6187] sec_pagetables:0 bounce:0 [ 107.385854][ T6187] kernel_misc_reclaimable:0 [ 107.385854][ T6187] free:1320691 free_pcp:27072 free_cma:0 [ 107.648403][ T6187] Node 0 active_anon:21808kB inactive_anon:0kB active_file:61416kB inactive_file:160880kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97128kB dirty:1264kB writeback:0kB shmem:3928kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11272kB pagetables:3936kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 107.700804][ T6187] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:16kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 107.798590][ T6187] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 107.830296][ T6187] lowmem_reserve[]: 0 2485 2487 2487 2487 [ 107.836091][ T6187] Node 0 DMA32 free:1378596kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21808kB inactive_anon:0kB active_file:61416kB inactive_file:160880kB unevictable:1536kB writepending:1264kB zspages:0kB present:3129332kB managed:2545088kB mlocked:0kB bounce:0kB free_pcp:85152kB local_pcp:43760kB free_cma:0kB [ 107.870764][ T6187] lowmem_reserve[]: 0 0 1 1 1 [ 107.875942][ T6187] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 107.906535][ T6187] lowmem_reserve[]: 0 0 0 0 0 [ 107.913962][ T6187] Node 1 Normal free:3888368kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:16kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:23236kB local_pcp:8852kB free_cma:0kB [ 107.947285][ T6187] lowmem_reserve[]: 0 0 0 0 0 [ 107.952594][ T6187] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 107.976667][ T6187] Node 0 DMA32: 1538*4kB (UME) 843*8kB (UM) 606*16kB (UME) 461*32kB (UME) 312*64kB (UME) 185*128kB (ME) 120*256kB (UME) 34*512kB (UM) 14*1024kB (UME) 7*2048kB (UME) 299*4096kB (UM) = 1382496kB [ 107.996472][ T6187] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 108.008646][ T6187] Node 1 Normal: 111*4kB (UME) 17*8kB (UME) 4*16kB (UM) 53*32kB (UM) 14*64kB (UME) 7*128kB (UME) 2*256kB (ME) 4*512kB (UM) 3*1024kB (UME) 2*2048kB (UE) 946*4096kB (M) = 3888676kB [ 108.030243][ T6187] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 108.040366][ T6187] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 108.050479][ T6187] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 108.064690][ T6187] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 108.074386][ T6187] 56980 total pagecache pages [ 108.079640][ T6187] 0 pages in swap cache [ 108.083803][ T6187] Free swap = 124996kB [ 108.089206][ T6187] Total swap = 124996kB [ 108.097025][ T6187] 2097051 pages RAM [ 108.102347][ T6187] 0 pages HighMem/MovableOnly [ 108.119514][ T6187] 428689 pages reserved [ 108.123691][ T6187] 0 pages cma reserved [ 108.389058][ T6212] qrtr: Invalid version 0 [ 108.924781][ T6218] random: crng reseeded on system resumption [ 109.108946][ T6217] hub 8-0:1.0: USB hub found [ 109.118894][ T6217] hub 8-0:1.0: 1 port detected [ 110.497969][ T6245] FAULT_INJECTION: forcing a failure. [ 110.497969][ T6245] name failslab, interval 1, probability 0, space 0, times 0 [ 110.528673][ T6245] CPU: 0 UID: 0 PID: 6245 Comm: syz.1.80 Not tainted syzkaller #0 PREEMPT(full) [ 110.528708][ T6245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 110.528722][ T6245] Call Trace: [ 110.528731][ T6245] [ 110.528741][ T6245] dump_stack_lvl+0x16c/0x1f0 [ 110.528775][ T6245] should_fail_ex+0x512/0x640 [ 110.528812][ T6245] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 110.528841][ T6245] should_failslab+0xc2/0x120 [ 110.528873][ T6245] kmem_cache_alloc_noprof+0x75/0x6e0 [ 110.528900][ T6245] ? __kernfs_new_node+0xd2/0x8e0 [ 110.528937][ T6245] ? __kernfs_new_node+0xd2/0x8e0 [ 110.528966][ T6245] __kernfs_new_node+0xd2/0x8e0 [ 110.529002][ T6245] ? __pfx___kernfs_new_node+0x10/0x10 [ 110.529043][ T6245] ? find_held_lock+0x2b/0x80 [ 110.529071][ T6245] ? kernfs_root+0xee/0x2a0 [ 110.529117][ T6245] kernfs_new_node+0x13c/0x1e0 [ 110.529159][ T6245] __kernfs_create_file+0x53/0x350 [ 110.529190][ T6245] sysfs_add_file_mode_ns+0x207/0x3c0 [ 110.529230][ T6245] internal_create_group+0x578/0xf30 [ 110.529272][ T6245] ? __pfx_internal_create_group+0x10/0x10 [ 110.529311][ T6245] ? kernfs_create_link+0x1bd/0x240 [ 110.529342][ T6245] internal_create_groups+0x9d/0x150 [ 110.529378][ T6245] device_add+0x6d1/0x1aa0 [ 110.529419][ T6245] ? __pfx_device_add+0x10/0x10 [ 110.529454][ T6245] ? lockdep_init_map_type+0x5c/0x280 [ 110.529488][ T6245] ? __init_waitqueue_head+0xca/0x150 [ 110.529522][ T6245] rfkill_register+0x1ad/0xb40 [ 110.529550][ T6245] nfc_register_device+0x11f/0x3c0 [ 110.529583][ T6245] nci_register_device+0x7f1/0xb80 [ 110.529607][ T6245] ? __pfx_nci_register_device+0x10/0x10 [ 110.529636][ T6245] ? lockdep_init_map_type+0x5c/0x280 [ 110.529676][ T6245] virtual_ncidev_open+0x141/0x220 [ 110.529703][ T6245] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 110.529731][ T6245] misc_open+0x26d/0x450 [ 110.529769][ T6245] ? __pfx_misc_open+0x10/0x10 [ 110.529804][ T6245] chrdev_open+0x234/0x6a0 [ 110.529833][ T6245] ? __pfx_apparmor_file_open+0x10/0x10 [ 110.529870][ T6245] ? __pfx_chrdev_open+0x10/0x10 [ 110.529904][ T6245] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 110.529942][ T6245] do_dentry_open+0x982/0x1530 [ 110.529975][ T6245] ? __pfx_chrdev_open+0x10/0x10 [ 110.530012][ T6245] vfs_open+0x82/0x3f0 [ 110.530051][ T6245] path_openat+0x1de4/0x2cb0 [ 110.530100][ T6245] ? __pfx_path_openat+0x10/0x10 [ 110.530131][ T6245] ? __lock_acquire+0xb8a/0x1c90 [ 110.530170][ T6245] do_filp_open+0x20b/0x470 [ 110.530201][ T6245] ? __pfx_do_filp_open+0x10/0x10 [ 110.530262][ T6245] ? alloc_fd+0x471/0x7d0 [ 110.530299][ T6245] do_sys_openat2+0x11b/0x1d0 [ 110.530334][ T6245] ? __pfx_do_sys_openat2+0x10/0x10 [ 110.530372][ T6245] ? __pfx___might_resched+0x10/0x10 [ 110.530410][ T6245] __x64_sys_openat+0x174/0x210 [ 110.530445][ T6245] ? __pfx___x64_sys_openat+0x10/0x10 [ 110.530497][ T6245] do_syscall_64+0xcd/0xfa0 [ 110.530530][ T6245] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.530556][ T6245] RIP: 0033:0x7f700b58f6c9 [ 110.530577][ T6245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 110.530600][ T6245] RSP: 002b:00007f700c43c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 110.530625][ T6245] RAX: ffffffffffffffda RBX: 00007f700b7e5fa0 RCX: 00007f700b58f6c9 [ 110.530642][ T6245] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 110.530658][ T6245] RBP: 00007f700b611f91 R08: 0000000000000000 R09: 0000000000000000 [ 110.530673][ T6245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 110.530687][ T6245] R13: 00007f700b7e6038 R14: 00007f700b7e5fa0 R15: 00007ffd35403e18 [ 110.530725][ T6245] [ 111.046532][ T6259] WARNING! power/level is deprecated; use power/control instead [ 111.118784][ T6259] ICMPv6: process `syz.2.82' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 111.891360][ T6283] Invalid ELF header magic: != ELF [ 113.413015][ T6320] netlink: 28 bytes leftover after parsing attributes in process `syz.2.98'. [ 113.527320][ T6321] netlink: 28 bytes leftover after parsing attributes in process `syz.2.98'. [ 113.580031][ T30] audit: type=1800 audit(1762843182.516:3): pid=6333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.99" name="trace_pipe" dev="tracefs" ino=1099 res=0 errno=0 [ 114.263997][ T6358] FAULT_INJECTION: forcing a failure. [ 114.263997][ T6358] name failslab, interval 1, probability 0, space 0, times 0 [ 114.281595][ T6358] CPU: 1 UID: 0 PID: 6358 Comm: syz.0.102 Not tainted syzkaller #0 PREEMPT(full) [ 114.281628][ T6358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 114.281642][ T6358] Call Trace: [ 114.281649][ T6358] [ 114.281658][ T6358] dump_stack_lvl+0x16c/0x1f0 [ 114.281690][ T6358] should_fail_ex+0x512/0x640 [ 114.281722][ T6358] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 114.281749][ T6358] should_failslab+0xc2/0x120 [ 114.281780][ T6358] kmem_cache_alloc_noprof+0x75/0x6e0 [ 114.281805][ T6358] ? skb_clone+0x190/0x3f0 [ 114.281835][ T6358] ? skb_clone+0x190/0x3f0 [ 114.281856][ T6358] skb_clone+0x190/0x3f0 [ 114.281881][ T6358] netlink_deliver_tap+0xabd/0xd30 [ 114.281915][ T6358] netlink_dump+0x881/0xd30 [ 114.281943][ T6358] ? __pfx_netlink_dump+0x10/0x10 [ 114.281988][ T6358] ? __asan_memset+0x23/0x50 [ 114.282013][ T6358] ? genl_start+0x67f/0x980 [ 114.282045][ T6358] __netlink_dump_start+0x6d6/0x990 [ 114.282076][ T6358] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 114.282109][ T6358] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 114.282139][ T6358] ? find_held_lock+0x2b/0x80 [ 114.282170][ T6358] ? __pfx_genl_get_cmd+0x10/0x10 [ 114.282193][ T6358] ? __pfx_genl_start+0x10/0x10 [ 114.282217][ T6358] ? __pfx_genl_dumpit+0x10/0x10 [ 114.282242][ T6358] ? __pfx_genl_done+0x10/0x10 [ 114.282274][ T6358] ? __radix_tree_lookup+0x21f/0x2c0 [ 114.282311][ T6358] genl_rcv_msg+0x46e/0x800 [ 114.282345][ T6358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 114.282373][ T6358] ? __pfx_netdev_nl_page_pool_get_dumpit+0x10/0x10 [ 114.282423][ T6358] netlink_rcv_skb+0x158/0x420 [ 114.282449][ T6358] ? __pfx_genl_rcv_msg+0x10/0x10 [ 114.282479][ T6358] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 114.282521][ T6358] ? netlink_deliver_tap+0x1ae/0xd30 [ 114.282550][ T6358] genl_rcv+0x28/0x40 [ 114.282575][ T6358] netlink_unicast+0x5aa/0x870 [ 114.282606][ T6358] ? __pfx_netlink_unicast+0x10/0x10 [ 114.282647][ T6358] netlink_sendmsg+0x8c8/0xdd0 [ 114.282679][ T6358] ? __pfx_netlink_sendmsg+0x10/0x10 [ 114.282709][ T6358] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 114.282750][ T6358] ____sys_sendmsg+0xa98/0xc70 [ 114.282781][ T6358] ? copy_msghdr_from_user+0x10a/0x160 [ 114.282804][ T6358] ? __pfx_____sys_sendmsg+0x10/0x10 [ 114.282853][ T6358] ___sys_sendmsg+0x134/0x1d0 [ 114.282879][ T6358] ? __pfx____sys_sendmsg+0x10/0x10 [ 114.282900][ T6358] ? __lock_acquire+0x622/0x1c90 [ 114.282980][ T6358] __sys_sendmsg+0x16d/0x220 [ 114.283005][ T6358] ? __pfx___sys_sendmsg+0x10/0x10 [ 114.283053][ T6358] do_syscall_64+0xcd/0xfa0 [ 114.283083][ T6358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.283107][ T6358] RIP: 0033:0x7f520fb8f6c9 [ 114.283126][ T6358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.283147][ T6358] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 114.283170][ T6358] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 114.283185][ T6358] RDX: 0000000000000880 RSI: 0000200000000100 RDI: 0000000000000004 [ 114.283199][ T6358] RBP: 00007f52109e1090 R08: 0000000000000000 R09: 0000000000000000 [ 114.283214][ T6358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.283228][ T6358] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 114.283264][ T6358] [ 115.401965][ T6367] zswap: compressor Ø not available [ 115.863317][ T6392] netlink: 342 bytes leftover after parsing attributes in process `syz.1.109'. [ 116.202199][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.251709][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.269772][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.335286][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.344525][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.365090][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.388582][ T6400] netlink: 62 bytes leftover after parsing attributes in process `syz.0.111'. [ 116.692708][ T6420] netlink: 'syz.0.114': attribute type 2 has an invalid length. [ 116.983435][ T6405] Invalid ELF header magic: != ELF [ 117.113781][ T6397] delete_channel: no stack [ 117.183093][ T6426] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 118.542515][ T6452] serio: Serial port ttyS2 [ 119.051444][ T6462] nvme_fabrics: missing parameter 'transport=%s' [ 119.067574][ T6462] nvme_fabrics: missing parameter 'nqn=%s' [ 119.570702][ T6487] Invalid ELF header magic: != ELF [ 119.752961][ T6487] __nla_validate_parse: 17 callbacks suppressed [ 119.752982][ T6487] netlink: 8 bytes leftover after parsing attributes in process `syz.3.128'. [ 119.942022][ T6494] zswap: compressor 000 not available [ 120.542077][ T6519] netlink: 28 bytes leftover after parsing attributes in process `syz.2.134'. [ 121.307075][ T6534] netlink: 342 bytes leftover after parsing attributes in process `syz.2.137'. [ 121.327647][ T6534] IPv6: NLM_F_CREATE should be specified when creating new route [ 121.388730][ T6534] IPv6: Can't replace route, no match found [ 122.696220][ T6591] netlink: 28 bytes leftover after parsing attributes in process `syz.3.148'. [ 124.929140][ T6644] ttyprintk ttyprintk: ldisc open failed (-12), clearing slot 0 [ 125.080848][ T6632] FAULT_INJECTION: forcing a failure. [ 125.080848][ T6632] name failslab, interval 1, probability 0, space 0, times 0 [ 125.130757][ T6632] CPU: 1 UID: 0 PID: 6632 Comm: syz.2.156 Not tainted syzkaller #0 PREEMPT(full) [ 125.130792][ T6632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 125.130806][ T6632] Call Trace: [ 125.130813][ T6632] [ 125.130824][ T6632] dump_stack_lvl+0x16c/0x1f0 [ 125.130870][ T6632] should_fail_ex+0x512/0x640 [ 125.130906][ T6632] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 125.130943][ T6632] should_failslab+0xc2/0x120 [ 125.130989][ T6632] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 125.131023][ T6632] ? kvasprintf_const+0x66/0x1a0 [ 125.131057][ T6632] ? kvasprintf+0xbc/0x160 [ 125.131079][ T6632] kvasprintf+0xbc/0x160 [ 125.131103][ T6632] ? __pfx_kvasprintf+0x10/0x10 [ 125.131130][ T6632] ? rcu_read_unlock+0x17/0x60 [ 125.131166][ T6632] kvasprintf_const+0x66/0x1a0 [ 125.131191][ T6632] kobject_set_name_vargs+0x5a/0x140 [ 125.131226][ T6632] dev_set_name+0xc7/0x100 [ 125.131251][ T6632] ? __pfx_dev_set_name+0x10/0x10 [ 125.131279][ T6632] ? trace_kmalloc+0x2b/0xd0 [ 125.131308][ T6632] ? __kmalloc_noprof.cold+0x5d/0x62 [ 125.131342][ T6632] ? stack_depot_save_flags+0x29/0x9c0 [ 125.131376][ T6632] ? __pfx_stack_trace_save+0x10/0x10 [ 125.131403][ T6632] ? wiphy_new_nm+0x701/0x2190 [ 125.131441][ T6632] wiphy_new_nm+0x811/0x2190 [ 125.131472][ T6632] ? __pfx_mac80211_hwsim_add_chanctx+0x10/0x10 [ 125.131505][ T6632] ? __pfx_mac80211_hwsim_change_chanctx+0x10/0x10 [ 125.131540][ T6632] ? __pfx_mac80211_hwsim_remove_chanctx+0x10/0x10 [ 125.131575][ T6632] ieee80211_alloc_hw_nm+0x495/0x22b0 [ 125.131608][ T6632] ? __local_bh_enable_ip+0xa4/0x120 [ 125.131642][ T6632] mac80211_hwsim_new_radio+0x1d3/0x50b0 [ 125.131685][ T6632] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 125.131728][ T6632] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 125.131768][ T6632] hwsim_new_radio_nl+0xba2/0x1330 [ 125.131799][ T6632] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 125.131838][ T6632] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 125.131871][ T6632] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 125.131912][ T6632] genl_family_rcv_msg_doit+0x209/0x2f0 [ 125.131946][ T6632] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 125.131998][ T6632] ? bpf_lsm_capable+0x9/0x10 [ 125.132028][ T6632] ? security_capable+0x7e/0x260 [ 125.132062][ T6632] ? ns_capable+0xd7/0x110 [ 125.132092][ T6632] genl_rcv_msg+0x55c/0x800 [ 125.132127][ T6632] ? __pfx_genl_rcv_msg+0x10/0x10 [ 125.132158][ T6632] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 125.132199][ T6632] netlink_rcv_skb+0x158/0x420 [ 125.132224][ T6632] ? __pfx_genl_rcv_msg+0x10/0x10 [ 125.132256][ T6632] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 125.132296][ T6632] ? netlink_deliver_tap+0x1ae/0xd30 [ 125.132334][ T6632] genl_rcv+0x28/0x40 [ 125.132360][ T6632] netlink_unicast+0x5aa/0x870 [ 125.132392][ T6632] ? __pfx_netlink_unicast+0x10/0x10 [ 125.132431][ T6632] netlink_sendmsg+0x8c8/0xdd0 [ 125.132464][ T6632] ? __pfx_netlink_sendmsg+0x10/0x10 [ 125.132495][ T6632] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 125.132537][ T6632] ____sys_sendmsg+0xa98/0xc70 [ 125.132569][ T6632] ? copy_msghdr_from_user+0x10a/0x160 [ 125.132594][ T6632] ? __pfx_____sys_sendmsg+0x10/0x10 [ 125.132622][ T6632] ? preempt_schedule_thunk+0x16/0x30 [ 125.132665][ T6632] ? try_to_wake_up+0xa67/0x1870 [ 125.132698][ T6632] ___sys_sendmsg+0x134/0x1d0 [ 125.132719][ T6632] ? find_held_lock+0x2b/0x80 [ 125.132748][ T6632] ? __pfx____sys_sendmsg+0x10/0x10 [ 125.132766][ T6632] ? __lock_acquire+0x622/0x1c90 [ 125.132844][ T6632] __sys_sendmsg+0x16d/0x220 [ 125.132870][ T6632] ? __pfx___sys_sendmsg+0x10/0x10 [ 125.132894][ T6632] ? __x64_sys_futex+0x1e0/0x4c0 [ 125.132956][ T6632] do_syscall_64+0xcd/0xfa0 [ 125.132991][ T6632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.133018][ T6632] RIP: 0033:0x7f671c78f6c9 [ 125.133050][ T6632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.133071][ T6632] RSP: 002b:00007f671d70b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 125.133096][ T6632] RAX: ffffffffffffffda RBX: 00007f671c9e5fa0 RCX: 00007f671c78f6c9 [ 125.133113][ T6632] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006 [ 125.133129][ T6632] RBP: 00007f671c811f91 R08: 0000000000000000 R09: 0000000000000000 [ 125.133144][ T6632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.133158][ T6632] R13: 00007f671c9e6038 R14: 00007f671c9e5fa0 R15: 00007ffc0f89d848 [ 125.133196][ T6632] [ 126.192244][ T6650] ovs_ÿþÿþ?: entered promiscuous mode [ 126.219555][ T6651] openvswitch: ovs_ÿþÿþ?: Dropping previously announced user features [ 126.633013][ T6664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.164'. [ 126.950964][ T6672] netlink: 130 bytes leftover after parsing attributes in process `syz.0.167'. [ 126.964216][ T6672] bridge0: port 3(syz_tun) entered blocking state [ 126.971077][ T6672] bridge0: port 3(syz_tun) entered disabled state [ 126.977666][ T6672] syz_tun: entered allmulticast mode [ 127.003203][ T6672] syz_tun: entered promiscuous mode [ 127.010602][ T6672] bridge0: port 3(syz_tun) entered blocking state [ 127.017352][ T6672] bridge0: port 3(syz_tun) entered forwarding state [ 129.318628][ T52] Bluetooth: hci0: unexpected event 0x01 length: 5 > 1 [ 130.994311][ T6705] kexec: Could not allocate control_code_buffer [ 132.004726][ T6750] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.3.185: [ 133.629625][ T52] Bluetooth: hci1: unexpected event 0x23 length: 127 > 13 [ 136.831217][ T6878] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 136.998674][ T6878] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 137.189676][ T6886] random: crng reseeded on system resumption [ 137.243767][ T6887] queue_state_write: operation too long [ 137.253812][ T6887] queue_state_write: use 'run', 'start' or 'kick' [ 137.827949][ T30] audit: type=1804 audit(6057810502.759:4): pid=6896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.217" name="/newroot/55/file0" dev="tmpfs" ino=306 res=1 errno=0 [ 138.047707][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.054308][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.863646][ T6925] netlink: 338 bytes leftover after parsing attributes in process `syz.3.223'. [ 139.001752][ T6928] netlink: 338 bytes leftover after parsing attributes in process `syz.3.223'. [ 140.108785][ T6937] Invalid ELF header magic: != ELF [ 140.754889][ T6948] netlink: 504 bytes leftover after parsing attributes in process `syz.2.227'. [ 140.766487][ T6948] netlink: 504 bytes leftover after parsing attributes in process `syz.2.227'. [ 140.899063][ T6951] netlink: 16 bytes leftover after parsing attributes in process `syz.2.228'. [ 141.157549][ T6960] FAULT_INJECTION: forcing a failure. [ 141.157549][ T6960] name fail_futex, interval 1, probability 0, space 0, times 0 [ 141.194194][ T6959] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 141.207664][ T6960] CPU: 0 UID: 0 PID: 6960 Comm: syz.3.231 Not tainted syzkaller #0 PREEMPT(full) [ 141.207697][ T6960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 141.207712][ T6960] Call Trace: [ 141.207720][ T6960] [ 141.207730][ T6960] dump_stack_lvl+0x16c/0x1f0 [ 141.207768][ T6960] should_fail_ex+0x512/0x640 [ 141.207810][ T6960] get_futex_key+0x1d0/0x1560 [ 141.207848][ T6960] ? __pfx_get_futex_key+0x10/0x10 [ 141.207891][ T6960] futex_wake+0xea/0x530 [ 141.207929][ T6960] ? rcu_is_watching+0x12/0xc0 [ 141.207956][ T6960] ? __pfx_futex_wake+0x10/0x10 [ 141.207997][ T6960] ? kmem_cache_free+0x2d4/0x6c0 [ 141.208034][ T6960] ? putname+0x154/0x1a0 [ 141.208075][ T6960] do_futex+0x1e3/0x350 [ 141.208110][ T6960] ? __pfx_do_futex+0x10/0x10 [ 141.208152][ T6960] __x64_sys_futex+0x1e0/0x4c0 [ 141.208188][ T6960] ? __x64_sys_openat+0x174/0x210 [ 141.208225][ T6960] ? __pfx___x64_sys_futex+0x10/0x10 [ 141.208265][ T6960] do_syscall_64+0xcd/0xfa0 [ 141.208295][ T6960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.208319][ T6960] RIP: 0033:0x7f6ce3b8f6c9 [ 141.208339][ T6960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.208361][ T6960] RSP: 002b:00007f6ce4ac30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 141.208383][ T6960] RAX: ffffffffffffffda RBX: 00007f6ce3de5fa8 RCX: 00007f6ce3b8f6c9 [ 141.208398][ T6960] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6ce3de5fac [ 141.208413][ T6960] RBP: 00007f6ce3de5fa0 R08: 00007f6ce4ac4000 R09: 0000000000000000 [ 141.208429][ T6960] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 141.208443][ T6960] R13: 00007f6ce3de6038 R14: 00007ffc5fc694b0 R15: 00007ffc5fc69598 [ 141.208478][ T6960] [ 141.617764][ T52] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 141.769179][ T6962] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 143.483281][ T6996] 0x000200000001-0xa29656a63616329 : "" [ 143.489578][ T6996] mtd: partition "" is out of reach -- disabled [ 143.518439][ T6996] ftl_cs: FTL header not found. [ 144.912640][ T30] audit: type=1800 audit(6057810509.849:5): pid=7020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.245" name="discovery_nqn" dev="configfs" ino=14759 res=0 errno=0 [ 145.109814][ T7032] phram: not enough arguments [ 145.265805][ T7044] sctp: [Deprecated]: syz.3.248 (pid 7044) Use of struct sctp_assoc_value in delayed_ack socket option. [ 145.265805][ T7044] Use struct sctp_sack_info instead [ 151.556722][ T7111] netlink: 'syz.2.264': attribute type 21 has an invalid length. [ 151.601547][ T7111] netlink: 326 bytes leftover after parsing attributes in process `syz.2.264'. [ 154.448789][ T7196] FAULT_INJECTION: forcing a failure. [ 154.448789][ T7196] name failslab, interval 1, probability 0, space 0, times 0 [ 154.461741][ T7196] CPU: 0 UID: 0 PID: 7196 Comm: syz.2.280 Not tainted syzkaller #0 PREEMPT(full) [ 154.461770][ T7196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 154.461783][ T7196] Call Trace: [ 154.461795][ T7196] [ 154.461804][ T7196] dump_stack_lvl+0x116/0x1f0 [ 154.461834][ T7196] should_fail_ex+0x512/0x640 [ 154.461869][ T7196] should_failslab+0xc2/0x120 [ 154.461897][ T7196] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 154.461923][ T7196] ? netlink_realloc_groups+0x1b5/0x2d0 [ 154.461950][ T7196] ? krealloc_node_align_noprof+0x2c5/0x470 [ 154.461971][ T7196] krealloc_node_align_noprof+0x2c5/0x470 [ 154.461999][ T7196] netlink_realloc_groups+0x1b5/0x2d0 [ 154.462017][ T7196] ? tomoyo_socket_bind_permission+0x14f/0x350 [ 154.462045][ T7196] netlink_bind+0x7a8/0x9d0 [ 154.462070][ T7196] ? __pfx_netlink_bind+0x10/0x10 [ 154.462091][ T7196] ? apparmor_socket_bind+0x105/0x200 [ 154.462121][ T7196] __sys_bind+0x1a7/0x260 [ 154.462151][ T7196] ? __pfx___sys_bind+0x10/0x10 [ 154.462186][ T7196] ? xfd_validate_state+0x61/0x180 [ 154.462212][ T7196] ? __pfx_do_writev+0x10/0x10 [ 154.462237][ T7196] __x64_sys_bind+0x72/0xb0 [ 154.462260][ T7196] ? lockdep_hardirqs_on+0x7c/0x110 [ 154.462283][ T7196] do_syscall_64+0xcd/0xfa0 [ 154.462308][ T7196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.462327][ T7196] RIP: 0033:0x7f671c78f6c9 [ 154.462344][ T7196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.462365][ T7196] RSP: 002b:00007f671d70b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 154.462385][ T7196] RAX: ffffffffffffffda RBX: 00007f671c9e5fa0 RCX: 00007f671c78f6c9 [ 154.462399][ T7196] RDX: 0000000000000068 RSI: 0000200000000000 RDI: 0000000000000003 [ 154.462412][ T7196] RBP: 00007f671c811f91 R08: 0000000000000000 R09: 0000000000000000 [ 154.462424][ T7196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.462437][ T7196] R13: 00007f671c9e6038 R14: 00007f671c9e5fa0 R15: 00007ffc0f89d848 [ 154.462465][ T7196] [ 154.818387][ T7207] FAULT_INJECTION: forcing a failure. [ 154.818387][ T7207] name fail_futex, interval 1, probability 0, space 0, times 0 [ 154.833160][ T7207] CPU: 0 UID: 0 PID: 7207 Comm: syz.3.283 Not tainted syzkaller #0 PREEMPT(full) [ 154.833194][ T7207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 154.833210][ T7207] Call Trace: [ 154.833218][ T7207] [ 154.833228][ T7207] dump_stack_lvl+0x16c/0x1f0 [ 154.833263][ T7207] should_fail_ex+0x512/0x640 [ 154.833306][ T7207] get_futex_key+0x1d0/0x1560 [ 154.833345][ T7207] ? __pfx_get_futex_key+0x10/0x10 [ 154.833381][ T7207] ? __pick_eevdf+0x30a/0x670 [ 154.833416][ T7207] futex_wait_setup+0x9d/0x550 [ 154.833450][ T7207] __futex_wait+0x193/0x2f0 [ 154.833475][ T7207] ? __pfx___futex_wait+0x10/0x10 [ 154.833496][ T7207] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 154.833529][ T7207] ? lockdep_hardirqs_on+0x7c/0x110 [ 154.833563][ T7207] ? __pfx_futex_wake_mark+0x10/0x10 [ 154.833607][ T7207] ? find_held_lock+0x2b/0x80 [ 154.833640][ T7207] ? futex_private_hash_put+0xd5/0x190 [ 154.833675][ T7207] futex_wait+0xe8/0x380 [ 154.833698][ T7207] ? __pfx_futex_wait+0x10/0x10 [ 154.833742][ T7207] do_futex+0x229/0x350 [ 154.833775][ T7207] ? __pfx_do_futex+0x10/0x10 [ 154.833816][ T7207] __x64_sys_futex+0x1e0/0x4c0 [ 154.833851][ T7207] ? fput+0x9b/0xd0 [ 154.833881][ T7207] ? __pfx___x64_sys_futex+0x10/0x10 [ 154.833914][ T7207] ? xfd_validate_state+0x61/0x180 [ 154.833946][ T7207] ? __pfx_ksys_write+0x10/0x10 [ 154.833983][ T7207] do_syscall_64+0xcd/0xfa0 [ 154.834015][ T7207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.834041][ T7207] RIP: 0033:0x7f6ce3b8f6c9 [ 154.834061][ T7207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.834084][ T7207] RSP: 002b:00007f6ce4aa20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 154.834108][ T7207] RAX: ffffffffffffffda RBX: 00007f6ce3de6098 RCX: 00007f6ce3b8f6c9 [ 154.834126][ T7207] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6ce3de6098 [ 154.834142][ T7207] RBP: 00007f6ce3de6090 R08: 0000000000000000 R09: 0000000000000000 [ 154.834157][ T7207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.834172][ T7207] R13: 00007f6ce3de6128 R14: 00007ffc5fc694b0 R15: 00007ffc5fc69598 [ 154.834208][ T7207] [ 158.677707][ T7274] usb usb8: usbfs: interface 0 claimed by hub while 'syz.1.298' sets config #1986356322 [ 159.211269][ T7299] vhci_hcd: invalid port number 16 [ 159.227751][ T7304] FAULT_INJECTION: forcing a failure. [ 159.227751][ T7304] name failslab, interval 1, probability 0, space 0, times 0 [ 159.387058][ T7304] CPU: 1 UID: 0 PID: 7304 Comm: syz.3.303 Not tainted syzkaller #0 PREEMPT(full) [ 159.387089][ T7304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 159.387103][ T7304] Call Trace: [ 159.387111][ T7304] [ 159.387120][ T7304] dump_stack_lvl+0x16c/0x1f0 [ 159.387153][ T7304] should_fail_ex+0x512/0x640 [ 159.387185][ T7304] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 159.387213][ T7304] should_failslab+0xc2/0x120 [ 159.387244][ T7304] kmem_cache_alloc_noprof+0x75/0x6e0 [ 159.387268][ T7304] ? alloc_empty_file+0x55/0x1e0 [ 159.387306][ T7304] ? alloc_empty_file+0x55/0x1e0 [ 159.387334][ T7304] alloc_empty_file+0x55/0x1e0 [ 159.387366][ T7304] path_openat+0xda/0x2cb0 [ 159.387403][ T7304] ? __pfx_path_openat+0x10/0x10 [ 159.387431][ T7304] ? __lock_acquire+0xb8a/0x1c90 [ 159.387466][ T7304] do_filp_open+0x20b/0x470 [ 159.387493][ T7304] ? __pfx_do_filp_open+0x10/0x10 [ 159.387544][ T7304] ? alloc_fd+0x471/0x7d0 [ 159.387578][ T7304] do_sys_openat2+0x11b/0x1d0 [ 159.387611][ T7304] ? __pfx_do_sys_openat2+0x10/0x10 [ 159.387646][ T7304] ? do_raw_spin_unlock+0x172/0x230 [ 159.387677][ T7304] __x64_sys_openat+0x174/0x210 [ 159.387723][ T7304] ? __pfx___x64_sys_openat+0x10/0x10 [ 159.387769][ T7304] do_syscall_64+0xcd/0xfa0 [ 159.387799][ T7304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 159.387823][ T7304] RIP: 0033:0x7f6ce3b8f6c9 [ 159.387842][ T7304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 159.387863][ T7304] RSP: 002b:00007f6ce4ac3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 159.387886][ T7304] RAX: ffffffffffffffda RBX: 00007f6ce3de5fa0 RCX: 00007f6ce3b8f6c9 [ 159.387902][ T7304] RDX: c7f16bff2a01f801 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 159.387918][ T7304] RBP: 00007f6ce3c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 159.387932][ T7304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.387945][ T7304] R13: 00007f6ce3de6038 R14: 00007f6ce3de5fa0 R15: 00007ffc5fc69598 [ 159.387980][ T7304] [ 160.230125][ T7326] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 161.177445][ T7341] FAULT_INJECTION: forcing a failure. [ 161.177445][ T7341] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 161.224402][ T7328] syz.1.306 (7328) used greatest stack depth: 19720 bytes left [ 161.258414][ T7341] CPU: 1 UID: 0 PID: 7341 Comm: syz.0.310 Not tainted syzkaller #0 PREEMPT(full) [ 161.258436][ T7341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 161.258445][ T7341] Call Trace: [ 161.258450][ T7341] [ 161.258456][ T7341] dump_stack_lvl+0x16c/0x1f0 [ 161.258477][ T7341] should_fail_ex+0x512/0x640 [ 161.258504][ T7341] should_fail_alloc_page+0xe7/0x130 [ 161.258526][ T7341] prepare_alloc_pages+0x3c2/0x610 [ 161.258547][ T7341] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 161.258564][ T7341] ? lock_acquire+0x179/0x350 [ 161.258583][ T7341] ? find_held_lock+0x2b/0x80 [ 161.258598][ T7341] ? finish_task_switch.isra.0+0x21c/0xc10 [ 161.258614][ T7341] ? rcu_is_watching+0x12/0xc0 [ 161.258627][ T7341] ? finish_task_switch.isra.0+0x221/0xc10 [ 161.258642][ T7341] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 161.258656][ T7341] ? finish_task_switch.isra.0+0x221/0xc10 [ 161.258671][ T7341] ? rcu_is_watching+0x12/0xc0 [ 161.258685][ T7341] ? trace_sched_exit_tp+0xd1/0x120 [ 161.258713][ T7341] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 161.258745][ T7341] ? policy_nodemask+0xea/0x4e0 [ 161.258766][ T7341] alloc_pages_mpol+0x1fb/0x550 [ 161.258786][ T7341] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 161.258810][ T7341] alloc_pages_noprof+0x131/0x390 [ 161.258834][ T7341] get_free_pages_noprof+0x10/0xb0 [ 161.258850][ T7341] kasan_populate_vmalloc+0x9f/0x2d0 [ 161.258870][ T7341] alloc_vmap_area+0x960/0x29e0 [ 161.258896][ T7341] ? __pfx_alloc_vmap_area+0x10/0x10 [ 161.258918][ T7341] __get_vm_area_node+0x1ca/0x330 [ 161.258940][ T7341] __vmalloc_node_range_noprof+0x271/0x1480 [ 161.258959][ T7341] ? kernel_clone+0xfc/0x930 [ 161.258982][ T7341] ? kernel_clone+0xfc/0x930 [ 161.259003][ T7341] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 161.259026][ T7341] ? rcu_is_watching+0x12/0xc0 [ 161.259042][ T7341] ? kernel_clone+0xfc/0x930 [ 161.259057][ T7341] __vmalloc_node_noprof+0xad/0xf0 [ 161.259076][ T7341] ? kernel_clone+0xfc/0x930 [ 161.259093][ T7341] copy_process+0x2c77/0x76a0 [ 161.259110][ T7341] ? __pfx___futex_wait+0x10/0x10 [ 161.259129][ T7341] ? __pfx_copy_process+0x10/0x10 [ 161.259150][ T7341] ? futex_private_hash_put+0xd5/0x190 [ 161.259170][ T7341] kernel_clone+0xfc/0x930 [ 161.259188][ T7341] ? __pfx_kernel_clone+0x10/0x10 [ 161.259215][ T7341] __do_sys_clone+0xce/0x120 [ 161.259231][ T7341] ? __pfx___do_sys_clone+0x10/0x10 [ 161.259256][ T7341] ? xfd_validate_state+0x61/0x180 [ 161.259281][ T7341] do_syscall_64+0xcd/0xfa0 [ 161.259299][ T7341] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.259313][ T7341] RIP: 0033:0x7f520fb8f6c9 [ 161.259326][ T7341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.259339][ T7341] RSP: 002b:00007f52109bffe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 161.259352][ T7341] RAX: ffffffffffffffda RBX: 00007f520fde6090 RCX: 00007f520fb8f6c9 [ 161.259362][ T7341] RDX: 00002000000000c0 RSI: 0000200000000090 RDI: 0000000020002000 [ 161.259370][ T7341] RBP: 00007f520fc11f91 R08: 0000200000000440 R09: 0000200000000440 [ 161.259379][ T7341] R10: 0000200000000100 R11: 0000000000000206 R12: 0000000000000000 [ 161.259387][ T7341] R13: 00007f520fde6128 R14: 00007f520fde6090 R15: 00007fff2dde9ab8 [ 161.259406][ T7341] [ 161.259429][ T7341] warn_alloc: 1 callbacks suppressed [ 161.259437][ T7341] syz.0.310: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 161.648940][ T7341] CPU: 0 UID: 0 PID: 7341 Comm: syz.0.310 Not tainted syzkaller #0 PREEMPT(full) [ 161.648974][ T7341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 161.648988][ T7341] Call Trace: [ 161.648997][ T7341] [ 161.649008][ T7341] dump_stack_lvl+0x16c/0x1f0 [ 161.649040][ T7341] warn_alloc+0x248/0x3a0 [ 161.649067][ T7341] ? __pfx_warn_alloc+0x10/0x10 [ 161.649095][ T7341] ? kfree+0x2b8/0x6d0 [ 161.649113][ T7341] ? __get_vm_area_node+0x2cd/0x330 [ 161.649151][ T7341] ? __get_vm_area_node+0x2cd/0x330 [ 161.649181][ T7341] ? __get_vm_area_node+0x208/0x330 [ 161.649219][ T7341] __vmalloc_node_range_noprof+0xaf5/0x1480 [ 161.649263][ T7341] ? kernel_clone+0xfc/0x930 [ 161.649302][ T7341] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 161.649343][ T7341] ? rcu_is_watching+0x12/0xc0 [ 161.649374][ T7341] ? kernel_clone+0xfc/0x930 [ 161.649401][ T7341] __vmalloc_node_noprof+0xad/0xf0 [ 161.649433][ T7341] ? kernel_clone+0xfc/0x930 [ 161.649464][ T7341] copy_process+0x2c77/0x76a0 [ 161.649492][ T7341] ? __pfx___futex_wait+0x10/0x10 [ 161.649528][ T7341] ? __pfx_copy_process+0x10/0x10 [ 161.649562][ T7341] ? futex_private_hash_put+0xd5/0x190 [ 161.649598][ T7341] kernel_clone+0xfc/0x930 [ 161.649629][ T7341] ? __pfx_kernel_clone+0x10/0x10 [ 161.649677][ T7341] __do_sys_clone+0xce/0x120 [ 161.649706][ T7341] ? __pfx___do_sys_clone+0x10/0x10 [ 161.649759][ T7341] ? xfd_validate_state+0x61/0x180 [ 161.649804][ T7341] do_syscall_64+0xcd/0xfa0 [ 161.649834][ T7341] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.649858][ T7341] RIP: 0033:0x7f520fb8f6c9 [ 161.649878][ T7341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.649900][ T7341] RSP: 002b:00007f52109bffe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 161.649923][ T7341] RAX: ffffffffffffffda RBX: 00007f520fde6090 RCX: 00007f520fb8f6c9 [ 161.649939][ T7341] RDX: 00002000000000c0 RSI: 0000200000000090 RDI: 0000000020002000 [ 161.649954][ T7341] RBP: 00007f520fc11f91 R08: 0000200000000440 R09: 0000200000000440 [ 161.649969][ T7341] R10: 0000200000000100 R11: 0000000000000206 R12: 0000000000000000 [ 161.649984][ T7341] R13: 00007f520fde6128 R14: 00007f520fde6090 R15: 00007fff2dde9ab8 [ 161.650017][ T7341] [ 161.650140][ T7341] Mem-Info: [ 161.903635][ T7341] active_anon:7739 inactive_anon:0 isolated_anon:0 [ 161.903635][ T7341] active_file:17209 inactive_file:40400 isolated_file:0 [ 161.903635][ T7341] unevictable:768 dirty:489 writeback:0 [ 161.903635][ T7341] slab_reclaimable:11051 slab_unreclaimable:91059 [ 161.903635][ T7341] mapped:25888 shmem:1358 pagetables:1219 [ 161.903635][ T7341] sec_pagetables:0 bounce:0 [ 161.903635][ T7341] kernel_misc_reclaimable:0 [ 161.903635][ T7341] free:1320398 free_pcp:21410 free_cma:0 [ 161.985353][ T7341] Node 0 active_anon:31688kB inactive_anon:0kB active_file:68836kB inactive_file:161480kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:103592kB dirty:1964kB writeback:0kB shmem:3900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:11720kB pagetables:4652kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 162.054925][ T7341] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 162.097396][ T7341] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 162.151671][ T7341] lowmem_reserve[]: 0 2485 2487 2487 2487 [ 162.157564][ T7341] Node 0 DMA32 free:1367816kB boost:0kB min:34364kB low:42952kB high:51540kB reserved_highatomic:0KB free_highatomic:0KB active_anon:35488kB inactive_anon:0kB active_file:68836kB inactive_file:161480kB unevictable:1536kB writepending:1964kB zspages:28kB present:3129332kB managed:2545088kB mlocked:0kB bounce:0kB free_pcp:67604kB local_pcp:32960kB free_cma:0kB [ 162.199244][ T7341] lowmem_reserve[]: 0 0 1 1 1 [ 162.204090][ T7341] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 162.268286][ T7341] lowmem_reserve[]: 0 0 0 0 0 [ 162.273044][ T7341] Node 1 Normal free:3907856kB boost:0kB min:55512kB low:69388kB high:83264kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:3844kB local_pcp:3568kB free_cma:0kB [ 162.310751][ T7341] lowmem_reserve[]: 0 0 0 0 0 [ 162.315518][ T7341] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 162.329376][ T7341] Node 0 DMA32: 1376*4kB (UME) 1648*8kB (UM) 974*16kB (UME) 830*32kB (UME) 422*64kB (UME) 368*128kB (UME) 197*256kB (UM) 71*512kB (UM) 20*1024kB (UM) 14*2048kB (UME) 269*4096kB (UM) = 1372704kB [ 162.353345][ T7341] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 162.358751][ T7360] openvswitch: netlink: IP tunnel TTL not specified. [ 162.365869][ T7341] Node 1 Normal: 182*4kB (UE) 59*8kB (UME) 27*16kB (UME) 205*32kB (UME) 117*64kB (UME) 38*128kB (UME) 13*256kB (UME) 6*512kB (UM) 2*1024kB (UE) 4*2048kB (UME) 945*4096kB (M) = 3907904kB [ 162.423666][ T7341] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 162.439031][ T7341] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 162.452082][ T7341] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 162.462451][ T7341] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 162.472220][ T7341] 58479 total pagecache pages [ 162.477876][ T7341] 24 pages in swap cache [ 162.482726][ T7341] Free swap = 124788kB [ 162.486900][ T7341] Total swap = 124996kB [ 162.493704][ T7341] 2097051 pages RAM [ 162.497522][ T7341] 0 pages HighMem/MovableOnly [ 162.505728][ T7341] 428689 pages reserved [ 162.511590][ T7341] 0 pages cma reserved [ 163.099082][ T7372] netlink: 28 bytes leftover after parsing attributes in process `syz.0.318'. [ 164.418598][ T7405] vhci_hcd: default hub control req: 8004 v0002 i0002 l2042 [ 164.510143][ T7449] ======================================================= [ 164.510143][ T7449] WARNING: The mand mount option has been deprecated and [ 164.510143][ T7449] and is ignored by this kernel. Remove the mand [ 164.510143][ T7449] option from the mount to silence this warning. [ 164.510143][ T7449] ======================================================= [ 164.582605][ T7449] nfsd: Unknown parameter 'TšR‚Ð' [ 167.497825][ T7544] Console: switching to colour VGA+ 80x25 [ 167.976005][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz.1.345'. [ 168.837998][ T7576] FAULT_INJECTION: forcing a failure. [ 168.837998][ T7576] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 168.923464][ T7576] CPU: 1 UID: 0 PID: 7576 Comm: syz.0.348 Not tainted syzkaller #0 PREEMPT(full) [ 168.923511][ T7576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 168.923525][ T7576] Call Trace: [ 168.923533][ T7576] [ 168.923541][ T7576] dump_stack_lvl+0x16c/0x1f0 [ 168.923573][ T7576] should_fail_ex+0x512/0x640 [ 168.923612][ T7576] should_fail_alloc_page+0xe7/0x130 [ 168.923645][ T7576] prepare_alloc_pages+0x3c2/0x610 [ 168.923693][ T7576] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 168.923718][ T7576] ? is_bpf_text_address+0x8a/0x1a0 [ 168.923753][ T7576] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 168.923782][ T7576] ? is_bpf_text_address+0x94/0x1a0 [ 168.923814][ T7576] ? kernel_text_address+0x8d/0x100 [ 168.923837][ T7576] ? __kernel_text_address+0xd/0x40 [ 168.923859][ T7576] ? unwind_get_return_address+0x59/0xa0 [ 168.923885][ T7576] ? arch_stack_walk+0xa6/0x100 [ 168.923909][ T7576] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 168.923950][ T7576] ? __pfx_stack_trace_save+0x10/0x10 [ 168.923979][ T7576] ? stack_depot_save_flags+0x29/0x9c0 [ 168.924016][ T7576] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 168.924056][ T7576] ? policy_nodemask+0xea/0x4e0 [ 168.924090][ T7576] alloc_pages_mpol+0x1fb/0x550 [ 168.924123][ T7576] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 168.924163][ T7576] alloc_pages_noprof+0x131/0x390 [ 168.924196][ T7576] __pmd_alloc+0x3b/0x8b0 [ 168.924230][ T7576] __handle_mm_fault+0xada/0x2aa0 [ 168.924269][ T7576] ? mt_find+0x3e2/0xa20 [ 168.924300][ T7576] ? __pfx___handle_mm_fault+0x10/0x10 [ 168.924332][ T7576] ? __pfx_mt_find+0x10/0x10 [ 168.924380][ T7576] ? find_vma+0xbf/0x140 [ 168.924407][ T7576] ? __pfx_find_vma+0x10/0x10 [ 168.924438][ T7576] handle_mm_fault+0x589/0xd10 [ 168.924474][ T7576] ? __pkru_allows_pkey+0x21/0xb0 [ 168.924519][ T7576] do_user_addr_fault+0x7a6/0x1370 [ 168.924546][ T7576] ? rcu_is_watching+0x12/0xc0 [ 168.924576][ T7576] exc_page_fault+0x64/0xc0 [ 168.924604][ T7576] asm_exc_page_fault+0x26/0x30 [ 168.924627][ T7576] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 168.924665][ T7576] Code: c4 10 e9 84 3c 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 3c 04 00 66 66 [ 168.924686][ T7576] RSP: 0018:ffffc90004bef9c0 EFLAGS: 00050202 [ 168.924705][ T7576] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000007 [ 168.924717][ T7576] RDX: fffff5200097df4a RSI: 0000000000000000 RDI: ffffc90004befa48 [ 168.924731][ T7576] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff5200097df49 [ 168.924744][ T7576] R10: ffffc90004befa4e R11: 0000000000000001 R12: 0000000000000000 [ 168.924757][ T7576] R13: ffffc90004befa48 R14: 1ffff9200097df43 R15: ffffc90004befd7c [ 168.924790][ T7576] _copy_from_user+0x98/0xd0 [ 168.924828][ T7576] ____sys_sendmsg+0x607/0xc70 [ 168.924860][ T7576] ? __pfx_____sys_sendmsg+0x10/0x10 [ 168.924893][ T7576] ? __pfx__kstrtoull+0x10/0x10 [ 168.924929][ T7576] ___sys_sendmsg+0x134/0x1d0 [ 168.924954][ T7576] ? __pfx____sys_sendmsg+0x10/0x10 [ 168.924996][ T7576] ? find_held_lock+0x2b/0x80 [ 168.925034][ T7576] ? proc_fail_nth_write+0x9f/0x220 [ 168.925061][ T7576] ? find_held_lock+0x2b/0x80 [ 168.925090][ T7576] __sys_sendmmsg+0x200/0x420 [ 168.925118][ T7576] ? __pfx___sys_sendmmsg+0x10/0x10 [ 168.925152][ T7576] ? do_sys_openat2+0x157/0x1d0 [ 168.925183][ T7576] ? __pfx_do_sys_openat2+0x10/0x10 [ 168.925234][ T7576] ? ksys_write+0x1ac/0x250 [ 168.925259][ T7576] ? __pfx_ksys_write+0x10/0x10 [ 168.925291][ T7576] __x64_sys_sendmmsg+0x9c/0x100 [ 168.925314][ T7576] ? lockdep_hardirqs_on+0x7c/0x110 [ 168.925342][ T7576] do_syscall_64+0xcd/0xfa0 [ 168.925373][ T7576] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.925397][ T7576] RIP: 0033:0x7f520fb8f6c9 [ 168.925416][ T7576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.925436][ T7576] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 168.925458][ T7576] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 168.925474][ T7576] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 168.925488][ T7576] RBP: 00007f52109e1090 R08: 0000000000000000 R09: 0000000000000000 [ 168.925502][ T7576] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 168.925524][ T7576] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 168.925559][ T7576]                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   syzkaller syzkaller login: [ 205.273336][ T8476] random: crng reseeded on system resumption [ 206.940730][ T8527] netlink: 342 bytes leftover after parsing attributes in process `syz.0.528'. [ 206.984800][ T8527] FAULT_INJECTION: forcing a failure. [ 206.984800][ T8527] name failslab, interval 1, probability 0, space 0, times 0 [ 207.057630][ T8527] CPU: 1 UID: 0 PID: 8527 Comm: syz.0.528 Not tainted syzkaller #0 PREEMPT(full) [ 207.057667][ T8527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 207.057682][ T8527] Call Trace: [ 207.057691][ T8527] [ 207.057702][ T8527] dump_stack_lvl+0x16c/0x1f0 [ 207.057737][ T8527] should_fail_ex+0x512/0x640 [ 207.057784][ T8527] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 207.057816][ T8527] should_failslab+0xc2/0x120 [ 207.057849][ T8527] kmem_cache_alloc_noprof+0x75/0x6e0 [ 207.057874][ T8527] ? alloc_empty_file+0x55/0x1e0 [ 207.057913][ T8527] ? alloc_empty_file+0x55/0x1e0 [ 207.057943][ T8527] ? _raw_spin_unlock+0x28/0x50 [ 207.057964][ T8527] alloc_empty_file+0x55/0x1e0 [ 207.057996][ T8527] alloc_file_pseudo+0x13a/0x230 [ 207.058030][ T8527] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 207.058065][ T8527] ? _raw_spin_unlock+0x28/0x50 [ 207.058089][ T8527] ? alloc_fd+0x471/0x7d0 [ 207.058117][ T8527] __anon_inode_getfile+0xe8/0x280 [ 207.058145][ T8527] ? __init_waitqueue_head+0xca/0x150 [ 207.058172][ T8527] do_epoll_create+0x329/0x480 [ 207.058200][ T8527] __x64_sys_epoll_create+0x45/0x70 [ 207.058227][ T8527] do_syscall_64+0xcd/0xfa0 [ 207.058255][ T8527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.058277][ T8527] RIP: 0033:0x7f520fb8f6c9 [ 207.058299][ T8527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.058321][ T8527] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5 [ 207.058346][ T8527] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 207.058363][ T8527] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 207.058378][ T8527] RBP: 00007f520fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 207.058393][ T8527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.058405][ T8527] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 207.058437][ T8527] [ 207.794846][ T30] audit: type=1804 audit(4294967308.890:75): pid=8548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.533" name="/newroot/sys/kernel/debug/tracing/options/blk_cgroup" dev="tracefs" ino=1117 res=1 errno=0 [ 208.076721][ T8561] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 208.974583][ T8564] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 210.065607][ T8602] netlink: 20 bytes leftover after parsing attributes in process `syz.2.542'. [ 210.075430][ T8602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.542'. [ 210.475435][ T8613] vivid-001: ================= START STATUS ================= [ 210.549700][ T8613] vivid-001: ================== END STATUS ================== [ 211.377890][ T8641] Invalid ELF header magic: != ELF [ 211.707270][ T8652] sctp: [Deprecated]: syz.1.551 (pid 8652) Use of struct sctp_assoc_value in delayed_ack socket option. [ 211.707270][ T8652] Use struct sctp_sack_info instead [ 212.016870][ T8660] netlink: 28 bytes leftover after parsing attributes in process `syz.0.553'. [ 212.490776][ T8677] netlink: 268 bytes leftover after parsing attributes in process `syz.2.556'. [ 212.513890][ T8677] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 213.148674][ T5839] block nbd0: Receive control failed (result -107) [ 213.950187][ T8710] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 214.084250][ T8710] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 214.185152][ T8710] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 214.223522][ T8710] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 214.425915][ T8728] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 214.441524][ T8733] FAULT_INJECTION: forcing a failure. [ 214.441524][ T8733] name failslab, interval 1, probability 0, space 0, times 0 [ 214.467055][ T8733] CPU: 0 UID: 0 PID: 8733 Comm: syz.3.562 Not tainted syzkaller #0 PREEMPT(full) [ 214.467090][ T8733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 214.467113][ T8733] Call Trace: [ 214.467122][ T8733] [ 214.467132][ T8733] dump_stack_lvl+0x16c/0x1f0 [ 214.467170][ T8733] should_fail_ex+0x512/0x640 [ 214.467207][ T8733] ? __kmalloc_noprof+0xca/0x880 [ 214.467249][ T8733] should_failslab+0xc2/0x120 [ 214.467283][ T8733] __kmalloc_noprof+0xdd/0x880 [ 214.467319][ T8733] ? lockdep_init_map_type+0x5c/0x280 [ 214.467353][ T8733] ? udpv6_init_sock+0x24e/0x450 [ 214.467384][ T8733] ? udpv6_init_sock+0x24e/0x450 [ 214.467406][ T8733] udpv6_init_sock+0x24e/0x450 [ 214.467435][ T8733] udplitev6_sk_init+0x15/0x60 [ 214.467461][ T8733] ? __pfx_udplitev6_sk_init+0x10/0x10 [ 214.467489][ T8733] inet6_create+0xb30/0x12b0 [ 214.467520][ T8733] ? inet6_create+0x7f/0x12b0 [ 214.467553][ T8733] __sock_create+0x338/0x8d0 [ 214.467596][ T8733] __sys_socket+0x14d/0x260 [ 214.467630][ T8733] ? __pfx___sys_socket+0x10/0x10 [ 214.467663][ T8733] ? xfd_validate_state+0x61/0x180 [ 214.467698][ T8733] ? __pfx_ksys_write+0x10/0x10 [ 214.467734][ T8733] __x64_sys_socket+0x72/0xb0 [ 214.467764][ T8733] ? lockdep_hardirqs_on+0x7c/0x110 [ 214.467793][ T8733] do_syscall_64+0xcd/0xfa0 [ 214.467825][ T8733] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.467850][ T8733] RIP: 0033:0x7f6ce3b8f6c9 [ 214.467870][ T8733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.467895][ T8733] RSP: 002b:00007f6ce4ac3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 214.467919][ T8733] RAX: ffffffffffffffda RBX: 00007f6ce3de5fa0 RCX: 00007f6ce3b8f6c9 [ 214.467937][ T8733] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 000000000000000a [ 214.467952][ T8733] RBP: 00007f6ce3c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 214.467967][ T8733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.467983][ T8733] R13: 00007f6ce3de6038 R14: 00007f6ce3de5fa0 R15: 00007ffc5fc69598 [ 214.468018][ T8733] [ 215.212135][ T8736] Invalid ELF header magic: != ELF [ 215.339940][ T8730] delete_channel: no stack [ 215.974718][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 216.119996][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 216.198752][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 216.280958][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 217.569441][ T8792] random: crng reseeded on system resumption [ 217.862036][ T8796] netlink: 8 bytes leftover after parsing attributes in process `syz.2.578'. [ 218.016944][ T8800] FAULT_INJECTION: forcing a failure. [ 218.016944][ T8800] name fail_futex, interval 1, probability 0, space 0, times 0 [ 218.073593][ T8800] CPU: 1 UID: 0 PID: 8800 Comm: syz.2.580 Not tainted syzkaller #0 PREEMPT(full) [ 218.073628][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 218.073644][ T8800] Call Trace: [ 218.073652][ T8800] [ 218.073662][ T8800] dump_stack_lvl+0x16c/0x1f0 [ 218.073697][ T8800] should_fail_ex+0x512/0x640 [ 218.073741][ T8800] get_futex_key+0xff0/0x1560 [ 218.073778][ T8800] ? __pfx_get_futex_key+0x10/0x10 [ 218.073810][ T8800] ? get_futex_key+0x5b4/0x1560 [ 218.073850][ T8800] futex_wait_setup+0x9d/0x550 [ 218.073885][ T8800] futex_wait_requeue_pi+0x241/0x830 [ 218.073924][ T8800] ? futex_unqueue+0x13d/0x2c0 [ 218.073954][ T8800] ? __pfx_futex_wait_requeue_pi+0x10/0x10 [ 218.073996][ T8800] ? __futex_wait+0x24b/0x2f0 [ 218.074022][ T8800] ? __pfx___futex_wait+0x10/0x10 [ 218.074043][ T8800] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 218.074072][ T8800] ? lockdep_hardirqs_on+0x7c/0x110 [ 218.074122][ T8800] ? futex_private_hash_put+0xd5/0x190 [ 218.074159][ T8800] ? __pfx_futex_wake_mark+0x10/0x10 [ 218.074206][ T8800] ? do_writev+0x218/0x340 [ 218.074239][ T8800] do_futex+0x2ae/0x350 [ 218.074271][ T8800] ? __pfx_do_futex+0x10/0x10 [ 218.074307][ T8800] ? __sys_recvmsg+0x189/0x220 [ 218.074336][ T8800] __x64_sys_futex+0x1e0/0x4c0 [ 218.074374][ T8800] ? __pfx___x64_sys_futex+0x10/0x10 [ 218.074407][ T8800] ? xfd_validate_state+0x61/0x180 [ 218.074456][ T8800] do_syscall_64+0xcd/0xfa0 [ 218.074489][ T8800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.074515][ T8800] RIP: 0033:0x7f671c78f6c9 [ 218.074537][ T8800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.074560][ T8800] RSP: 002b:00007f671d70b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 218.074584][ T8800] RAX: ffffffffffffffda RBX: 00007f671c9e5fa0 RCX: 00007f671c78f6c9 [ 218.074601][ T8800] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000000 [ 218.074617][ T8800] RBP: 00007f671c811f91 R08: 0000000000000000 R09: 00000000fffffffa [ 218.074632][ T8800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.074647][ T8800] R13: 00007f671c9e6038 R14: 00007f671c9e5fa0 R15: 00007ffc0f89d848 [ 218.074683][ T8800] [ 218.297795][ C1] vkms_vblank_simulate: vblank timer overrun [ 218.398382][ T8775] kexec: Could not allocate control_code_buffer [ 218.618009][ T8807] netlink: 16 bytes leftover after parsing attributes in process `syz.1.584'. [ 218.627186][ T8808] netlink: 16 bytes leftover after parsing attributes in process `syz.1.584'. [ 218.802623][ T8814] netlink: 16 bytes leftover after parsing attributes in process `syz.2.582'. [ 220.443136][ T8845] vivid-003: ================= START STATUS ================= [ 220.476669][ T8845] vivid-003: Radio HW Seek Mode: Bounded [ 220.494037][ T8845] vivid-003: Radio Programmable HW Seek: false [ 220.510650][ T8845] vivid-003: RDS Rx I/O Mode: Block I/O [ 220.523858][ T8845] vivid-003: Generate RBDS Instead of RDS: false [ 220.531597][ T8845] vivid-003: RDS Reception: true [ 220.536692][ T8845] vivid-003: RDS Program Type: 0 inactive [ 220.543723][ T8845] vivid-003: RDS PS Name: inactive [ 220.549538][ T8845] vivid-003: RDS Radio Text: inactive [ 220.556757][ T8845] vivid-003: RDS Traffic Announcement: false inactive [ 220.564139][ T8845] vivid-003: RDS Traffic Program: false inactive [ 220.571089][ T8845] vivid-003: RDS Music: false inactive [ 220.576732][ T8845] vivid-003: ================== END STATUS ================== [ 221.709546][ T8876] FAULT_INJECTION: forcing a failure. [ 221.709546][ T8876] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 221.733222][ T8876] CPU: 0 UID: 0 PID: 8876 Comm: syz.0.601 Not tainted syzkaller #0 PREEMPT(full) [ 221.733256][ T8876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 221.733277][ T8876] Call Trace: [ 221.733287][ T8876] [ 221.733296][ T8876] dump_stack_lvl+0x16c/0x1f0 [ 221.733319][ T8876] should_fail_ex+0x512/0x640 [ 221.733344][ T8876] _copy_from_user+0x2e/0xd0 [ 221.733367][ T8876] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 221.733396][ T8876] snd_rawmidi_write+0x26e/0xc10 [ 221.733420][ T8876] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 221.733441][ T8876] ? __pfx_default_wake_function+0x10/0x10 [ 221.733458][ T8876] ? bpf_lsm_file_permission+0x9/0x10 [ 221.733474][ T8876] ? security_file_permission+0x71/0x210 [ 221.733490][ T8876] ? rw_verify_area+0xcf/0x6c0 [ 221.733504][ T8876] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 221.733523][ T8876] vfs_write+0x2a0/0x11d0 [ 221.733542][ T8876] ? __pfx_vfs_write+0x10/0x10 [ 221.733555][ T8876] ? do_futex+0x122/0x350 [ 221.733574][ T8876] ? __pfx_do_futex+0x10/0x10 [ 221.733598][ T8876] ? __x64_sys_futex+0x1e0/0x4c0 [ 221.733616][ T8876] ? __x64_sys_futex+0x1e9/0x4c0 [ 221.733637][ T8876] ksys_write+0x1f8/0x250 [ 221.733651][ T8876] ? __pfx_ksys_write+0x10/0x10 [ 221.733672][ T8876] do_syscall_64+0xcd/0xfa0 [ 221.733690][ T8876] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.733704][ T8876] RIP: 0033:0x7f520fb8f6c9 [ 221.733716][ T8876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.733731][ T8876] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 221.733745][ T8876] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 221.733755][ T8876] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 000000000000000b [ 221.733763][ T8876] RBP: 00007f520fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 221.733772][ T8876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.733780][ T8876] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 221.733799][ T8876] [ 221.821105][ T8875] netlink: 'syz.1.600': attribute type 1 has an invalid length. [ 222.836721][ T5839] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 222.844298][ T5839] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 222.861112][ T8891] TCP: TCP_TX_DELAY enabled [ 223.157864][ T8904] Invalid ELF header magic: != ELF [ 224.565885][ T8937] program syz.0.619 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 226.219538][ T8955] FAULT_INJECTION: forcing a failure. [ 226.219538][ T8955] name failslab, interval 1, probability 0, space 0, times 0 [ 226.318362][ T8955] CPU: 1 UID: 0 PID: 8955 Comm: syz.2.623 Not tainted syzkaller #0 PREEMPT(full) [ 226.318397][ T8955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 226.318411][ T8955] Call Trace: [ 226.318419][ T8955] [ 226.318429][ T8955] dump_stack_lvl+0x16c/0x1f0 [ 226.318465][ T8955] should_fail_ex+0x512/0x640 [ 226.318498][ T8955] ? __kmalloc_cache_noprof+0x5f/0x780 [ 226.318529][ T8955] should_failslab+0xc2/0x120 [ 226.318563][ T8955] __kmalloc_cache_noprof+0x72/0x780 [ 226.318588][ T8955] ? down_write_killable+0x154/0x250 [ 226.318620][ T8955] ? alloc_ldt_struct+0x5d/0x1a0 [ 226.318661][ T8955] ? alloc_ldt_struct+0x5d/0x1a0 [ 226.318684][ T8955] alloc_ldt_struct+0x5d/0x1a0 [ 226.318709][ T8955] write_ldt+0x852/0xd20 [ 226.318741][ T8955] ? __pfx_write_ldt+0x10/0x10 [ 226.318770][ T8955] ? __pfx___x64_sys_futex+0x10/0x10 [ 226.318805][ T8955] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 226.318838][ T8955] __x64_sys_modify_ldt+0xb1/0x170 [ 226.318864][ T8955] do_syscall_64+0xcd/0xfa0 [ 226.318894][ T8955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.318916][ T8955] RIP: 0033:0x7f671c78f6c9 [ 226.318935][ T8955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 226.318957][ T8955] RSP: 002b:00007f671d70b038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 226.318981][ T8955] RAX: ffffffffffffffda RBX: 00007f671c9e5fa0 RCX: 00007f671c78f6c9 [ 226.318998][ T8955] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 226.319013][ T8955] RBP: 00007f671c811f91 R08: 0000000000000000 R09: 0000000000000000 [ 226.319026][ T8955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.319041][ T8955] R13: 00007f671c9e6038 R14: 00007f671c9e5fa0 R15: 00007ffc0f89d848 [ 226.319076][ T8955] [ 227.401838][ T8971] netlink: 20 bytes leftover after parsing attributes in process `syz.1.627'. [ 227.551257][ T8970] random: crng reseeded on system resumption [ 229.502803][ T9012] FAULT_INJECTION: forcing a failure. [ 229.502803][ T9012] name failslab, interval 1, probability 0, space 0, times 0 [ 229.528287][ T9012] CPU: 1 UID: 0 PID: 9012 Comm: syz.2.636 Not tainted syzkaller #0 PREEMPT(full) [ 229.528320][ T9012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 229.528332][ T9012] Call Trace: [ 229.528339][ T9012] [ 229.528349][ T9012] dump_stack_lvl+0x16c/0x1f0 [ 229.528379][ T9012] should_fail_ex+0x512/0x640 [ 229.528410][ T9012] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 229.528436][ T9012] should_failslab+0xc2/0x120 [ 229.528465][ T9012] kmem_cache_alloc_noprof+0x75/0x6e0 [ 229.528487][ T9012] ? alloc_empty_file+0x55/0x1e0 [ 229.528521][ T9012] ? alloc_empty_file+0x55/0x1e0 [ 229.528549][ T9012] alloc_empty_file+0x55/0x1e0 [ 229.528579][ T9012] alloc_file_pseudo+0x13a/0x230 [ 229.528613][ T9012] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 229.528644][ T9012] ? alloc_fd+0x471/0x7d0 [ 229.528672][ T9012] sock_alloc_file+0x50/0x210 [ 229.528698][ T9012] __sys_socket+0x1c0/0x260 [ 229.528728][ T9012] ? __pfx___sys_socket+0x10/0x10 [ 229.528760][ T9012] ? do_user_addr_fault+0x843/0x1370 [ 229.528789][ T9012] __x64_sys_socket+0x72/0xb0 [ 229.528817][ T9012] ? lockdep_hardirqs_on+0x7c/0x110 [ 229.528845][ T9012] do_syscall_64+0xcd/0xfa0 [ 229.528876][ T9012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.528901][ T9012] RIP: 0033:0x7f671c7915e7 [ 229.528921][ T9012] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.528944][ T9012] RSP: 002b:00007f671d6a6fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 229.528986][ T9012] RAX: ffffffffffffffda RBX: 00007f671c9e6270 RCX: 00007f671c7915e7 [ 229.529002][ T9012] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 229.529016][ T9012] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 229.529031][ T9012] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 229.529045][ T9012] R13: 00007f671c9e6308 R14: 00007f671c9e6270 R15: 00007ffc0f89d848 [ 229.529081][ T9012] [ 230.489416][ T9027] cougar: G6 mapped to F18 [ 231.022189][ T9035] FAULT_INJECTION: forcing a failure. [ 231.022189][ T9035] name fail_futex, interval 1, probability 0, space 0, times 0 [ 231.035222][ T9035] CPU: 1 UID: 0 PID: 9035 Comm: syz.1.642 Not tainted syzkaller #0 PREEMPT(full) [ 231.035252][ T9035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 231.035265][ T9035] Call Trace: [ 231.035273][ T9035] [ 231.035281][ T9035] dump_stack_lvl+0x16c/0x1f0 [ 231.035313][ T9035] should_fail_ex+0x512/0x640 [ 231.035352][ T9035] get_futex_key+0x293/0x1560 [ 231.035386][ T9035] ? __pfx_get_futex_key+0x10/0x10 [ 231.035415][ T9035] ? __mutex_trylock_common+0xe9/0x250 [ 231.035454][ T9035] futex_wake+0xea/0x530 [ 231.035488][ T9035] ? __pfx_futex_wake+0x10/0x10 [ 231.035515][ T9035] ? __lock_acquire+0xb8a/0x1c90 [ 231.035557][ T9035] do_futex+0x1e3/0x350 [ 231.035587][ T9035] ? __pfx_do_futex+0x10/0x10 [ 231.035612][ T9035] ? __might_fault+0xe3/0x190 [ 231.035643][ T9035] mm_release+0x24e/0x300 [ 231.035670][ T9035] do_exit+0x68e/0x2bf0 [ 231.035706][ T9035] ? __pfx_do_exit+0x10/0x10 [ 231.035734][ T9035] ? do_raw_spin_lock+0x12c/0x2b0 [ 231.035765][ T9035] ? find_held_lock+0x2b/0x80 [ 231.035794][ T9035] do_group_exit+0xd3/0x2a0 [ 231.035838][ T9035] get_signal+0x2671/0x26d0 [ 231.035875][ T9035] ? __pfx_get_signal+0x10/0x10 [ 231.035901][ T9035] ? do_futex+0x122/0x350 [ 231.035928][ T9035] ? __pfx_do_futex+0x10/0x10 [ 231.035960][ T9035] arch_do_signal_or_restart+0x8f/0x790 [ 231.035990][ T9035] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 231.036028][ T9035] ? xfd_validate_state+0x61/0x180 [ 231.036067][ T9035] exit_to_user_mode_loop+0x85/0x130 [ 231.036102][ T9035] do_syscall_64+0x426/0xfa0 [ 231.036131][ T9035] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.036156][ T9035] RIP: 0033:0x7f700b58f6c9 [ 231.036175][ T9035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.036198][ T9035] RSP: 002b:00007f700c41b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 231.036221][ T9035] RAX: fffffffffffffe00 RBX: 00007f700b7e6098 RCX: 00007f700b58f6c9 [ 231.036238][ T9035] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f700b7e6098 [ 231.036253][ T9035] RBP: 00007f700b7e6090 R08: 0000000000000000 R09: 0000000000000000 [ 231.036268][ T9035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.036282][ T9035] R13: 00007f700b7e6128 R14: 00007ffd35403d30 R15: 00007ffd35403e18 [ 231.036317][ T9035] [ 232.187646][ T9064] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 233.073575][ T9065] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 233.593424][ T9089] Console: switching to colour frame buffer device 128x48 [ 234.437664][ T9119] netlink: 342 bytes leftover after parsing attributes in process `syz.3.661'. [ 235.539603][ T9153] input: f¬ as /devices/virtual/input/input20 [ 240.145384][ T9281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.688'. [ 240.191997][ T9277] zswap: compressor not available [ 241.240547][ T9314] syz.2.694(9314): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 242.920285][ T9335] netlink: 28 bytes leftover after parsing attributes in process `syz.1.699'. [ 243.613188][ T9357] netlink: 25 bytes leftover after parsing attributes in process `syz.2.705'. [ 243.638680][ T9358] FAULT_INJECTION: forcing a failure. [ 243.638680][ T9358] name failslab, interval 1, probability 0, space 0, times 0 [ 243.651471][ T9358] CPU: 1 UID: 0 PID: 9358 Comm: syz.1.703 Not tainted syzkaller #0 PREEMPT(full) [ 243.651498][ T9358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 243.651508][ T9358] Call Trace: [ 243.651514][ T9358] [ 243.651521][ T9358] dump_stack_lvl+0x16c/0x1f0 [ 243.651544][ T9358] should_fail_ex+0x512/0x640 [ 243.651566][ T9358] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 243.651583][ T9358] should_failslab+0xc2/0x120 [ 243.651602][ T9358] kmem_cache_alloc_noprof+0x75/0x6e0 [ 243.651616][ T9358] ? vm_area_dup+0x27/0x8d0 [ 243.651632][ T9358] ? vm_area_dup+0x27/0x8d0 [ 243.651643][ T9358] vm_area_dup+0x27/0x8d0 [ 243.651657][ T9358] __split_vma+0x18e/0x1070 [ 243.651680][ T9358] ? __pfx___split_vma+0x10/0x10 [ 243.651701][ T9358] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 243.651727][ T9358] vms_gather_munmap_vmas+0x3aa/0x1340 [ 243.651744][ T9358] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 243.651757][ T9358] ? move_page_tables+0xf9e/0x4230 [ 243.651781][ T9358] do_vmi_align_munmap+0x286/0x7e0 [ 243.651796][ T9358] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 243.651836][ T9358] do_vmi_munmap+0x204/0x3e0 [ 243.651852][ T9358] move_vma+0xb5f/0x1770 [ 243.651869][ T9358] ? __pfx_move_vma+0x10/0x10 [ 243.651893][ T9358] ? vrm_set_new_addr+0x208/0x290 [ 243.651908][ T9358] mremap_to+0x1b7/0x450 [ 243.651922][ T9358] do_mremap+0x13a8/0x2020 [ 243.651937][ T9358] ? futex_private_hash_put+0x90/0x190 [ 243.651960][ T9358] ? __pfx_do_mremap+0x10/0x10 [ 243.651977][ T9358] ? do_writev+0x218/0x340 [ 243.651996][ T9358] __do_sys_mremap+0x119/0x170 [ 243.652009][ T9358] ? __pfx___do_sys_mremap+0x10/0x10 [ 243.652032][ T9358] ? __x64_sys_futex+0x1e0/0x4c0 [ 243.652061][ T9358] do_syscall_64+0xcd/0xfa0 [ 243.652080][ T9358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.652094][ T9358] RIP: 0033:0x7f700b58f6c9 [ 243.652107][ T9358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.652121][ T9358] RSP: 002b:00007f700c41b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 243.652135][ T9358] RAX: ffffffffffffffda RBX: 00007f700b7e6090 RCX: 00007f700b58f6c9 [ 243.652145][ T9358] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000000000 [ 243.652153][ T9358] RBP: 00007f700b611f91 R08: 0000000100000000 R09: 0000000000000000 [ 243.652162][ T9358] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 243.652170][ T9358] R13: 00007f700b7e6128 R14: 00007f700b7e6090 R15: 00007ffd35403e18 [ 243.652191][ T9358] [ 244.315149][ T52] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 245.503738][ T9392] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 246.356239][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 247.065984][ T52] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 247.414741][ T9445] openvswitch: netlink: Key type 261 is out of range max 32 [ 248.208472][ T9466] netlink: 4 bytes leftover after parsing attributes in process `syz.2.727'. [ 248.219092][ T9466] netlink: 17 bytes leftover after parsing attributes in process `syz.2.727'. [ 248.228720][ T9466] netlink: 2 bytes leftover after parsing attributes in process `syz.2.727'. [ 249.561176][ T9510] netlink: 4 bytes leftover after parsing attributes in process `syz.3.738'. [ 249.650240][ T9] smpboot: CPU 1 is now offline [ 251.042183][ T9532] netlink: 342 bytes leftover after parsing attributes in process `syz.3.742'. [ 251.100488][ T9528] netlink: 342 bytes leftover after parsing attributes in process `syz.3.742'. [ 253.124058][ T9588] usb usb34: usbfs: process 9588 (syz.1.753) did not claim interface 0 before use [ 254.950901][ T9654] netlink: 186 bytes leftover after parsing attributes in process `syz.0.764'. [ 255.700765][ T9679] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 255.707483][ T9679] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 255.863272][ T9687] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 255.942715][ T9684] netlink: 28 bytes leftover after parsing attributes in process `syz.0.770'. [ 256.476050][ T9700] ------------[ cut here ]------------ [ 256.481823][ T9700] WARNING: CPU: 0 PID: 9700 at net/mac80211/pm.c:171 __ieee80211_suspend+0x105b/0x1310 [ 256.491528][ T9700] Modules linked in: [ 256.495748][ T9700] CPU: 0 UID: 0 PID: 9700 Comm: syz.0.772 Not tainted syzkaller #0 PREEMPT(full) [ 256.504993][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 256.515097][ T9700] RIP: 0010:__ieee80211_suspend+0x105b/0x1310 [ 256.521369][ T9700] Code: 2e f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 4d ba 2e f7 eb ba e8 e6 20 c7 f6 90 <0f> 0b 90 e9 4f f8 ff ff e8 d8 20 c7 f6 90 0f 0b 90 e9 30 f6 ff ff [ 256.541767][ T9700] RSP: 0018:ffffc9000415fc40 EFLAGS: 00010283 [ 256.548395][ T9700] RAX: 0000000000006123 RBX: ffff888063020e80 RCX: ffffc9000b729000 [ 256.556429][ T9700] RDX: 0000000000080000 RSI: ffffffff8af5379a RDI: 0000000000000001 [ 256.564543][ T9700] RBP: ffff888063022b10 R08: 0000000000000001 R09: 0000000000000000 [ 256.572501][ T9700] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 [ 256.580522][ T9700] R13: ffffed100c6041d9 R14: ffff888063022910 R15: 0000000000000001 [ 256.588595][ T9700] FS: 00007f52109e16c0(0000) GS:ffff888124a0e000(0000) knlGS:0000000000000000 [ 256.597713][ T9700] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 256.604382][ T9700] CR2: 000055d2cfd4f950 CR3: 0000000031e46000 CR4: 00000000003526f0 [ 256.612372][ T9700] Call Trace: [ 256.615706][ T9700] [ 256.618634][ T9700] reset_write+0x7a/0x2a0 [ 256.623036][ T9700] short_proxy_write+0x135/0x1a0 [ 256.627989][ T9700] ? __pfx_short_proxy_write+0x10/0x10 [ 256.633593][ T9700] vfs_write+0x2a0/0x11d0 [ 256.637923][ T9700] ? __pfx___mutex_lock+0x10/0x10 [ 256.643544][ T9700] ? __pfx_vfs_write+0x10/0x10 [ 256.648302][ T9700] ? __fget_files+0x20e/0x3c0 [ 256.653401][ T9700] ksys_write+0x12a/0x250 [ 256.657721][ T9700] ? __pfx_ksys_write+0x10/0x10 [ 256.662616][ T9700] do_syscall_64+0xcd/0xfa0 [ 256.667110][ T9700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.673039][ T9700] RIP: 0033:0x7f520fb8f6c9 [ 256.677454][ T9700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.697135][ T9700] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 256.706172][ T9700] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 256.714171][ T9700] RDX: 00000000000000e1 RSI: 0000200000000080 RDI: 0000000000000003 [ 256.722165][ T9700] RBP: 00007f520fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 256.730138][ T9700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 256.738138][ T9700] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 256.746707][ T9700] [ 256.749714][ T9700] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 256.756985][ T9700] CPU: 0 UID: 0 PID: 9700 Comm: syz.0.772 Not tainted syzkaller #0 PREEMPT(full) [ 256.766155][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 256.776193][ T9700] Call Trace: [ 256.779461][ T9700] [ 256.782372][ T9700] dump_stack_lvl+0x3d/0x1f0 [ 256.786955][ T9700] vpanic+0x640/0x6f0 [ 256.790935][ T9700] ? __ieee80211_suspend+0x105b/0x1310 [ 256.796449][ T9700] panic+0xca/0xd0 [ 256.800162][ T9700] ? __pfx_panic+0x10/0x10 [ 256.804577][ T9700] check_panic_on_warn+0xab/0xb0 [ 256.809601][ T9700] __warn+0xf6/0x3c0 [ 256.813576][ T9700] ? __ieee80211_suspend+0x105b/0x1310 [ 256.819021][ T9700] report_bug+0x3c3/0x580 [ 256.823336][ T9700] ? __ieee80211_suspend+0x105b/0x1310 [ 256.828800][ T9700] handle_bug+0x184/0x210 [ 256.833119][ T9700] exc_invalid_op+0x17/0x50 [ 256.837609][ T9700] asm_exc_invalid_op+0x1a/0x20 [ 256.842461][ T9700] RIP: 0010:__ieee80211_suspend+0x105b/0x1310 [ 256.848644][ T9700] Code: 2e f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 4d ba 2e f7 eb ba e8 e6 20 c7 f6 90 <0f> 0b 90 e9 4f f8 ff ff e8 d8 20 c7 f6 90 0f 0b 90 e9 30 f6 ff ff [ 256.868347][ T9700] RSP: 0018:ffffc9000415fc40 EFLAGS: 00010283 [ 256.874409][ T9700] RAX: 0000000000006123 RBX: ffff888063020e80 RCX: ffffc9000b729000 [ 256.882387][ T9700] RDX: 0000000000080000 RSI: ffffffff8af5379a RDI: 0000000000000001 [ 256.890358][ T9700] RBP: ffff888063022b10 R08: 0000000000000001 R09: 0000000000000000 [ 256.898329][ T9700] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 [ 256.906370][ T9700] R13: ffffed100c6041d9 R14: ffff888063022910 R15: 0000000000000001 [ 256.914332][ T9700] ? __ieee80211_suspend+0x105a/0x1310 [ 256.919879][ T9700] reset_write+0x7a/0x2a0 [ 256.924199][ T9700] short_proxy_write+0x135/0x1a0 [ 256.929127][ T9700] ? __pfx_short_proxy_write+0x10/0x10 [ 256.934627][ T9700] vfs_write+0x2a0/0x11d0 [ 256.938945][ T9700] ? __pfx___mutex_lock+0x10/0x10 [ 256.943960][ T9700] ? __pfx_vfs_write+0x10/0x10 [ 256.948731][ T9700] ? __fget_files+0x20e/0x3c0 [ 256.953433][ T9700] ksys_write+0x12a/0x250 [ 256.957758][ T9700] ? __pfx_ksys_write+0x10/0x10 [ 256.962606][ T9700] do_syscall_64+0xcd/0xfa0 [ 256.967103][ T9700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.972984][ T9700] RIP: 0033:0x7f520fb8f6c9 [ 256.977389][ T9700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.996995][ T9700] RSP: 002b:00007f52109e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 257.005484][ T9700] RAX: ffffffffffffffda RBX: 00007f520fde5fa0 RCX: 00007f520fb8f6c9 [ 257.013550][ T9700] RDX: 00000000000000e1 RSI: 0000200000000080 RDI: 0000000000000003 [ 257.021530][ T9700] RBP: 00007f520fc11f91 R08: 0000000000000000 R09: 0000000000000000 [ 257.029500][ T9700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.037470][ T9700] R13: 00007f520fde6038 R14: 00007f520fde5fa0 R15: 00007fff2dde9ab8 [ 257.045457][ T9700] [ 257.048521][ T9700] Kernel Offset: disabled [ 257.052829][ T9700] Rebooting in 86400 seconds..