last executing test programs: 2m38.105868886s ago: executing program 3 (id=2563): unshare$auto(0x40000080) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) write$auto(r0, 0x0, 0xfff) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/workqueue/nvme-reset-wq/cpumask\x00', 0x9c2342, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0xb00, 0x0) pread64$auto(r3, 0x0, 0xf469, 0xbc3ab41) sendfile$auto(r2, r2, 0x0, 0x4000000a1f) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x100, 0x0) prctl$auto_PR_SCHED_CORE_CREATE(0x1, 0x1, 0x0, 0x0, 0x4) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) (fail_nth: 1) 2m37.344318035s ago: executing program 3 (id=2568): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video63\x00', 0x80800, 0x0) read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f00000001c0)=""/191, 0x1f8) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326bd7017fddbdf250200000008002700080000000a001800aaaa8aaaaabb0000"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04\x04\x00\x00\x00\xfa\b\x1c\xc7k', 0x9) pipe$auto(0x0) 2m36.593274278s ago: executing program 3 (id=2571): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x9) r0 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsu\x00', 0x108002, 0x0) r1 = epoll_create$auto(0x5a5d) epoll_ctl$auto(r1, 0x1, r0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x1d, 0x2, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/pci_hotplug/parameters/debug_acpi\x00', 0x80800, 0x0) sendfile$auto(0x1, r2, 0x0, 0x400007ffff000) 2m35.997270558s ago: executing program 3 (id=2575): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x10, 0x4, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x406, 0x0, 0x8fd6, 0x9489, 0x3, 0x15f4da0a, 0x4000000000005, 0x6, 0x62, 0x8, 0x7, 0x1, 0xb, 0x100, 0x19]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64) fchdir$auto(r3) mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0xffffffffffffffff, 0x0, 0x3}, 0x6f3) r6 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r6, @new_prog_fd=r5, 0x4, @old_map_fd=r4}, 0xa3) mmap$auto(0x5, 0x4020008, 0x1001, 0xeb1, r6, 0x8003) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mremap$auto(0x4fff, 0xb8, 0x13fd4, 0x3, 0xfffff000) mmap$auto(0x0, 0x8, 0x1000e2, 0xeb1, 0x405, 0x100008000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x1}, 0x801) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r7, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010026bd7000fcdbdf2503000000180002800c000100060000000000000008000200", @ANYRES32=r8, @ANYBLOB="080001"], 0x34}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000040) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x4, 0x0, 0x0, 0xf0}, 0x7}, 0x3, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), r1) 2m33.985943823s ago: executing program 3 (id=2583): mmap$auto(0x1ff, 0x100071b, 0x7, 0x10000000eb4, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000380), 0x900, 0x0) mmap$auto(0x0, 0xcd86, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f00000000c0)={0x80000001, r0, 0x1000, "9f53c596ba6102f98e5239777e5d4e9a"}) io_uring_setup$auto(0xa, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x2, 0x1, 0x0) socket(0x2, 0x5, 0x0) epoll_create$auto(0x7) r1 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9) 2m33.833948697s ago: executing program 3 (id=2584): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4, 0x4831, 0x40eb2, r1, 0x300000000000) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) semget$auto(0xff, 0x40000000, 0x7f) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/available_events\x00', 0x25a080, 0x0) r2 = gettid() rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, &(0x7f0000001ac0)={0x80000000000003, 0x8}, 0x8) tkill$auto(r2, 0x7) msgsnd$auto(0x1, 0x0, 0x2000, 0x800) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x12, 0x940, 0x1fee0, 0x3, 0x6, 0xfffffffffffffffe, 0x9, 0x5, 0x5, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x800, 0x7, 0x0, 0x0, 0x0, 0x1, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, [0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0x82) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20040041}, 0x40000) r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r3) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000140)={0x40, r4, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@L2TP_ATTR_COOKIE={0xc, 0xf, 0x400}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x2}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0xa8}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x7fffffff}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x4001) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x20, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x14, 0x1, "5e1f970f497f9f23d63e72850177cde9"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, '-\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0) 2m25.976024482s ago: executing program 1 (id=2619): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/rose7/flags\x00', 0x2262, 0x0) ioctl$auto_SNDCTL_SEQ_THRESHOLD(0xffffffffffffffff, 0x4004510d, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) socket(0x1f, 0x3, 0x400001) setsockopt$auto(0xffffffffffffffff, 0x6, 0xc, 0x0, 0x7fffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xebf, 0x401, 0x5) dup$auto(r0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setresuid$auto(0x8, 0x8, 0x0) access$auto(0x0, 0x3) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10010}, 0xc, &(0x7f00000000c0)={0x0, 0x1094}, 0x1, 0x0, 0x0, 0x4081}, 0xc000) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) execve$auto(0x0, 0x0, 0x0) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00') ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_clock\x00', 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x20040, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) 2m25.090279011s ago: executing program 1 (id=2621): mmap$auto(0x1ff, 0x100071b, 0x7, 0x10000000eb4, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000380), 0x900, 0x0) mmap$auto(0x0, 0xcd86, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f00000000c0)={0x80000001, r0, 0x1000, "9f53c596ba6102f98e5239777e5d4e9a"}) io_uring_setup$auto(0xa, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x2, 0x1, 0x0) socket(0x2, 0x5, 0x0) epoll_create$auto(0x7) socket$nl_generic(0x10, 0x3, 0x10) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9) 2m24.941709669s ago: executing program 1 (id=2622): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ttyt9\x00', 0x103982, 0x0) mmap$auto(0x20000004, 0x6, 0xdf, 0xfff, r0, 0x8000) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/exec\x00', 0x101000, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000380)={{&(0x7f00000001c0)="a36d3fa58cc14c483eaeefbda25ed11e6584b0e06b6f7d2a0920bb3dac705aa384572b6a4be4e53907a7b258", 0x7fff, 0x0, 0x9, 0x0, 0x2, 0x9}, 0x2}, 0xfffffffd, 0x3, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) ppoll$auto(0x0, 0x7f, 0x0, &(0x7f00000001c0)={0x10004}, 0x8) mount$auto(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='nfs\x00', 0x1, &(0x7f00000001c0)) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010) syz_open_procfs$namespace(0x0, 0x0) socketpair$auto(0x1d, 0x2, 0x8000000000000000, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100) socket(0x21, 0x2, 0x2) write$auto(0x3, 0x0, 0x81) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_background_ratio\x00', 0x141241, 0x0) write$auto(r2, 0x0, 0x0) socket(0x2, 0x1, 0x0) socket(0x21, 0x2, 0x2) write$auto(0x3, 0x0, 0x81) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(0x0, 0x6041, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) 2m24.776082894s ago: executing program 1 (id=2623): mmap$auto(0x1ff, 0x100071b, 0x7, 0x10000000eb4, 0xffffffffffffffff, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000380), 0x900, 0x0) mmap$auto(0x0, 0xcd86, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(0xffffffffffffffff, 0xc02054a5, &(0x7f00000000c0)={0x80000001, r0, 0x1000, "9f53c596ba6102f98e5239777e5d4e9a"}) io_uring_setup$auto(0xa, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x2, 0x1, 0x0) socket(0x2, 0x5, 0x0) epoll_create$auto(0x7) r1 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r1, 0x0) close_range$auto(0x2, 0x8, 0x0) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x9) 2m24.727128026s ago: executing program 1 (id=2624): mmap$auto(0x0, 0xd, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6', 0x4, 0x0) getcwd$auto(0x0, 0x49) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x4040, 0x0) preadv2$auto(0x3, 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x2e) mmap$auto(0x0, 0xc9, 0x6, 0xd4, 0xffffffffffffffff, 0x6) ioctl$auto(0xffffffffffffffff, 0x8912, 0x38) r2 = socket(0xa, 0x5, 0x0) ioctl$auto(r2, 0x8941, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000) ustat$auto(0x801, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) waitid$auto_P_PGID(0x2, r4, &(0x7f0000000340)={@siginfo_0_0={0x6, 0x8000, 0x6, @_sigpoll={0x200, r0}}}, 0x7, &(0x7f00000003c0)={{0xa, 0x8000000000000000}, {0x5}, 0x7, 0xfce3, 0xfffffffffffffffc, 0x8, 0x224, 0x80000000, 0x7ff, 0x0, 0x5, 0x101, 0x50b, 0x5, 0x9, 0x2}) r5 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto_SO_ATTACH_REUSEPORT_CBPF(r5, 0x20000001, 0x33, &(0x7f0000000280)='o\x00\xfb\x00\x00\x00\xe4(\xe5\xb9Y\xacS\xbe\xcc4\xf9!\xd0\x92<\x9bf\x01j\x83\xb3\xd7a.\x92\xf5\xb0j\xd3\x01\xfe:\x93\xed\xe4\x16\a\xcemS\xeb\x93D\b\xdb\x0f\x9f\x903\xad?\x17\xddF2\x7f\x15~\x94\x1d\x1c\x83\x03\xb9K\x04\xd3\x99\xe6[\xf8\xddn`\xdb\x19\xa9R\xc2\x00\x8a\xc7>\xfbC\x9e\xcfY\xaa\xc9\x99_\x8d\xc14o\xd9\x97\xf9\xb6\x80\xc0Tf\xea\x82\x8f\x82^\xf7\x01\x894?\xf7\xb8\"\x9dd/\x15\xf5\x013\x84\xe8\xdev\x8eW\xfaym\x8a_\x0e\xc5\xde\x90\xc4$\xbb\xaa\x839]\x14m{R,i\x80\xecM.\xa9\'<\xd6\xc8\xd6\xc4\x1b\xd2\xd6\x193<\".\x85\xea\xb7\x9d\xa3r\xca\xeeP\xdeu4\xf2s\x9b\x03\xbex.\x17\xf2\xa4\xba\x9a$\x1f.e\v3.\xd1{}\x94\xd9\xc4\xf1\xa9\x9aK\xbc?0x\xa1G\xf5\xd3K\xf7\xa25=\x9f+\x1d\xe7\x00', 0x10) writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000) r6 = socket(0x15, 0x5, 0x0) sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000540)="56d512af15a0d5795e32b401ad23b86ec161fe6ba11ba72b7596e1b2e06df5d933e8260c7d67f591cce97b92a5bf6815322f458b3e6970306acf8c3db4fcf65076b8fd3afa74d7ba43ee48b0526a7c42d3110dfcd89b8fe0421c5ebc6b1c0dc44b35294303fe42892858c836007ecf631e9b05ce4d13d274c939939197eaa8cb06a5937bbe676a55bbb070cf785aa6580e9e59a052cab468e85c812aa83d7dd0446bd3353f6a656098067f19317c426764ef126f6a971f24d0c2da42ae3322b3bf7bfb019df03b8d35a86555c43e323f279574927f424470541f4a97bda8f9290eab1f1c2ce7542c8668c84e5d7f2bf5fe4670fd1df2656eda5168e20034eaf5f8f9481cf85783c0ee5a416af7f6ffcda22af3e160ad163184f0dd5a6e552990e8cffc326d0b773b1f48776026d9375b79cac48d91999947e5dfaf461fa5e896f714f683b9210cf243a817a97342ef5faa648820ac3e6ad36085765bc6cd36af511bad3b1a5e", 0x7fc, 0x0, 0x8001, 0x0, 0x1, 0x4}, 0x0) sendmsg$auto_OVS_FLOW_CMD_SET(r6, &(0x7f0000001b80)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001b40)={&(0x7f0000000c80)=ANY=[@ANYBLOB="04000000", @ANYRES16=0x0, @ANYBLOB="000828bd7000fbdbdf25040000000500090004000000cb030780d40144800c003e00000000000000000008003d00", @ANYRES32=0x0, @ANYBLOB="04003a800800c000", @ANYRES32=r6, @ANYBLOB="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"], 0x410}, 0x1, 0x0, 0x0, 0x8884}, 0x800) r7 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_SCAN(r8, 0x0, 0x4000) read$auto(r7, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) 2m24.173750122s ago: executing program 1 (id=2626): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7ffffffffffffffc, 0xd, 0x1, 0x948b, 0x3af, 0x15f4da0a, 0x3, 0x6, 0x4, 0x8000001e, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) 2m17.849764387s ago: executing program 32 (id=2584): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4, 0x4831, 0x40eb2, r1, 0x300000000000) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) semget$auto(0xff, 0x40000000, 0x7f) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/available_events\x00', 0x25a080, 0x0) r2 = gettid() rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, &(0x7f0000001ac0)={0x80000000000003, 0x8}, 0x8) tkill$auto(r2, 0x7) msgsnd$auto(0x1, 0x0, 0x2000, 0x800) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x12, 0x940, 0x1fee0, 0x3, 0x6, 0xfffffffffffffffe, 0x9, 0x5, 0x5, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x800, 0x7, 0x0, 0x0, 0x0, 0x1, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, [0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0x82) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20040041}, 0x40000) r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r3) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000140)={0x40, r4, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@L2TP_ATTR_COOKIE={0xc, 0xf, 0x400}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x2}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0xa8}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x7fffffff}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x4001) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x34, r5, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x20, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x14, 0x1, "5e1f970f497f9f23d63e72850177cde9"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, '-\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0) 2m9.122852742s ago: executing program 33 (id=2626): openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7ffffffffffffffc, 0xd, 0x1, 0x948b, 0x3af, 0x15f4da0a, 0x3, 0x6, 0x4, 0x8000001e, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) 2m5.849241081s ago: executing program 0 (id=2679): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) membarrier$auto(0x2, 0x0, 0x9) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x121040, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/oom_adj\x00', 0x300, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x88802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) 2m4.951309065s ago: executing program 0 (id=2683): mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000001c0)={0x0, 0x7}, 0x3) socket(0x1e, 0x1, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000480), 0xffffffffffffffff) openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0xe4) 2m4.362389169s ago: executing program 0 (id=2686): shmctl$auto_SHM_LOCK(0x7ff, 0xb, &(0x7f0000000140)={{0x6, 0xffffffffffffffff, 0xee01, 0xaf1, 0xa, 0x6, 0x1}, 0xca, 0xe42, 0x1, 0x8000000000000001, @raw=0x5, @raw=0x10000, 0x6, 0x0, 0x0, &(0x7f00000000c0)}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000) bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='>', 0x1) mprotect$auto(0x1ffff000, 0x8000000000000007, 0x100000c) r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) io_uring_setup$auto(0xc, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x403c6f2b, 0x0) read$auto(0x3, 0x0, 0x80) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) madvise$auto(0x0, 0x2000040080000004, 0xe) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) ioctl$auto_BLKZEROOUT(r2, 0x127f, 0x0) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x81, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/irq/9/affinity_hint\x00', 0x40, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) socket(0xa, 0x6, 0x3a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(r4, 0x8, 0xd0, 0x0, 0x107) eventfd$auto(0x22000010) setsockopt$auto(0x4, 0x0, 0x16, 0xfffffffffffffffe, 0x0) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) 2m3.614428675s ago: executing program 0 (id=2694): mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) move_mount$auto(0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x77) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000001c0)={0x0, 0x7}, 0x3) socket(0x1e, 0x1, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000480), 0xffffffffffffffff) openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) 2m2.942385875s ago: executing program 0 (id=2691): socket(0x2, 0x3, 0xa) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) settimeofday$auto(0x0, &(0x7f0000000100)={0x82, 0x4}) getsockopt$auto(0xffffffffffffffff, 0x10002, 0x2, 0x0, &(0x7f0000000040)=0x2000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) socket(0xa, 0x5, 0x0) r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a) listen$auto(0x3, 0x81) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) socket(0x25, 0x2, 0x7) setsockopt$auto(0x3, 0x6b, 0x4, 0x0, 0xfb3) mmap$auto(0x0, 0x2020009, 0x3, 0x13, 0xfffffffffffffffb, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x5, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\xfc\x00/\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) set_mempolicy$auto(0x800002, &(0x7f0000000080)=0x1, 0x21) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/smaps_rollup\x00', 0x1a3000, 0x0) 2m2.033798966s ago: executing program 0 (id=2693): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r0) sendmsg$auto_NFSD_CMD_VERSION_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x28, r1, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x14, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MINOR={0x8, 0x2, 0x8}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000001}, 0x844) mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0) pwritev2$auto(r2, &(0x7f0000000140)={0x0, 0x24c1e3d9}, 0x3, 0x9, 0x7fff, 0x6) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) mmap$auto(0x0, 0x400007, 0xb1f, 0x9b72, r2, 0x8000) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) socket(0x2, 0x1, 0x0) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x8, 0x7fff) futex$auto(0x0, 0x89, 0x4, 0x0, 0x0, 0x100) 1m46.812223811s ago: executing program 34 (id=2693): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r0) sendmsg$auto_NFSD_CMD_VERSION_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x28, r1, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x14, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MINOR={0x8, 0x2, 0x8}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000001}, 0x844) mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0) pwritev2$auto(r2, &(0x7f0000000140)={0x0, 0x24c1e3d9}, 0x3, 0x9, 0x7fff, 0x6) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) mmap$auto(0x0, 0x400007, 0xb1f, 0x9b72, r2, 0x8000) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x106) socket(0x2, 0x1, 0x0) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x8, 0x7fff) futex$auto(0x0, 0x89, 0x4, 0x0, 0x0, 0x100) 6.097855466s ago: executing program 6 (id=3269): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000100)={0x0, 0x4, 0x3}) 5.075572511s ago: executing program 6 (id=3273): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x40026f33, 0x0) (fail_nth: 1) 5.044779275s ago: executing program 4 (id=3274): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) fremovexattr$auto(0xffffffffffffffff, 0x0) rt_sigsuspend$auto(0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x3) socket(0x2b, 0x1, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x53) read$auto(0x3, 0x0, 0x7fffffff) madvise$auto(0x0, 0xf663, 0x15) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x200009, 0x2, 0x40eb1, 0x602, 0x300000000000) mlockall$auto(0x7) madvise$auto(0x2000, 0xffffffffffff0001, 0x9) r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x143482, 0x0) writev$auto(r0, &(0x7f0000000000)={&(0x7f0000000000), 0x4}, 0x3) 4.524622977s ago: executing program 5 (id=3275): r0 = prctl$auto(0x1000000001f, 0x5, 0x154, 0x200000000000009, 0xc311) mmap$auto(0x4, 0x8000000000004, 0x3, 0x40eb2, 0x402, 0x40) setsockopt$auto_SO_BUF_LOCK(r0, 0x2, 0x48, &(0x7f0000000000)='/dev/dvb/adapter0/demux0\x00', 0x1) r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x40026f33, 0x0) 4.429780412s ago: executing program 6 (id=3277): sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x3, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0) write$auto(0x3, 0x0, 0x0) socket(0x8, 0x6, 0x4) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) getcwd$auto(0x0, 0xfffffffffffff4c7) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r0, 0x0, 0x890) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/node/node0/hugepages/hugepages-1048576kB/nr_hugepages\x00', 0xe8202, 0x0) sendfile$auto(r2, r2, 0x0, 0xcd) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab/kmalloc-64/objects\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000008c0)=""/61, 0x3d) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) memfd_create$auto(0x0, 0xe) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd10\x00', 0x1206c2, 0x0) write$auto(r5, &(0x7f0000000000)='//\xf2\x00', 0x80000000) ioctl$auto_BLKRRPART(r4, 0x125f, 0x0) unshare$auto(0x40000080) mmap$auto(0xfffffffffffffffa, 0xe983, 0xdf, 0xeb1, r1, 0x8000) 4.420635576s ago: executing program 5 (id=3278): socket(0xf, 0xa, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) r0 = socket(0xa, 0x1, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0) pread64$auto(r2, 0x0, 0x7ff, 0x400) r3 = socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) inotify_init1$auto(0x401) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_IPVS_CMD_FLUSH(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000d80)=ANY=[@ANYBLOB="b2f40700", @ANYRES16=0x0, @ANYBLOB="080025bd7000ffdbdf25110000000800050006000000", @ANYRESHEX=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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"], 0x390}, 0x1, 0x0, 0x0, 0x20018810}, 0x44040) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0) ioctl$auto(r5, 0xab04, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r4, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="8c020000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fcdbdf251d0000004301188014002100fc0200000000000000000000000000003600bd0068f76224d76fcedd858a40d2e4daac3a906310b4882866e15a38c714c9301ed5c7bc670cf749f0cdf4d958ac4a46c983cc4f0000018afb34431813703fe999e41360aa2f78624f27b11e5a80a7355d38b6a4c7eca4adda34ea7b2c60ffec2b34de68f8ff238429af8ce6285ab588c4cbe1d1b9824702b1b3566b51eb0437240289d7fdcbf3ef53cadf457e49070342cb80a88f3f14dca7b272e3137c4e10ce76365024e974704d9a5595511d1f39495f2163c2230d709bd2265fdf2d1186082017d28e03ab27269c84a9209ad6f713d57101963260539b122401c9b87400fb6d4b3bc1372583932e221d8f717a5356013ff43bd8a3750baecad4d4d3deafe0a6cf783bfeaedc61d5f02142c3cd9d90bd596f2170c6488482f92288f2c3490acdd285c57f422cb30008000300", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="00000005043891ec44d3d7"], 0x28c}, 0x1, 0x0, 0x0, 0x20048000}, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) 3.93798646s ago: executing program 4 (id=3279): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fd9b4d0f81d1b16c3cca5b2611827c2f1ca88bb01e672131ac62d346b5601f538ccf285e7a197166480ef899794cab4b6110", 0x54) 3.589190869s ago: executing program 4 (id=3280): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x1, 0x1, 0xfffffffffffffff8, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x60d80, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/irq/2/hwirq\x00', 0x0, 0x0) unshare$auto(0x200) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, &(0x7f00000002c0)={r2, &(0x7f0000000440)="9275ceac07117f662b60e5becaf883f176605db71c7bd7caa7a2d6810db328109c171cc155b112909ce634cdbd3704001e52e47fbe2f2293be1a18f0770a489348175bf2084a0b5f829678061b33ffa0d7c0d351d0758e4cea07027a539dc1267aad31c42e6d6f53c2946980fca56b92468b27d2aa06dae0b3b91c7ea405b972bd7689da225904328569b3b59914a91688b6a4e204c9a83403b382018eb7e19014ea4555de364500ceaf322d2f0897658b5948bbc6f87c45f1fd8987e96086ffcc4d1f6e5da5ac73dcd3ac8a3e8d9666cb991a5748eed960ee31452e7b", 0x7, 0x0, 0x6, &(0x7f0000000200)="eb2cbf355668ad148ef23e702d7489c05d6d4b141d95d46060935ca06b93e8aa77ff044458f3919372d3d5018439673e423108c692999cbf54934b6651f797f7c4dfdf177b5810ebbfdeac4006fe24551b050000", &(0x7f0000000280)=0xffff}) ioctl$auto_NS_GET_MNTNS_ID(r3, 0x8008b705, &(0x7f0000000000)=0xca6) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0) read$auto(r4, 0x0, 0x20) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 3.555414206s ago: executing program 2 (id=3281): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000100)={0x0, 0x4, 0x3}) 3.397571174s ago: executing program 6 (id=3282): socket(0xf, 0xa, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) r0 = socket(0xa, 0x1, 0x100) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0) pread64$auto(r2, 0x0, 0x7ff, 0x400) r3 = socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) inotify_init1$auto(0x401) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_IPVS_CMD_FLUSH(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000d80)=ANY=[@ANYBLOB="b2f40700", @ANYRES16=0x0, @ANYBLOB="080025bd7000ffdbdf25110000000800050006000000", @ANYRESHEX=0x0, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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"], 0x390}, 0x1, 0x0, 0x0, 0x20018810}, 0x44040) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0) ioctl$auto(r6, 0xab04, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_NEW_SEC_DEVKEY(r5, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="8c020000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="00000005043891ec44d3d7"], 0x28c}, 0x1, 0x0, 0x0, 0x20048000}, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) 3.370281632s ago: executing program 5 (id=3283): shmctl$auto_SHM_LOCK(0x7ff, 0xb, &(0x7f0000000140)={{0x6, 0xffffffffffffffff, 0xee01, 0xaf1, 0xa, 0x6, 0x1}, 0xca, 0xe42, 0x1, 0x8000000000000001, @raw=0x5, @raw=0x10000, 0x6, 0x0, 0x0, &(0x7f00000000c0)}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x400c000) bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='>', 0x1) mprotect$auto(0x1ffff000, 0x8000000000000007, 0x100000c) io_uring_setup$auto(0xc, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x403c6f2b, 0x0) read$auto(0x3, 0x0, 0x80) readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x81, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/irq/9/affinity_hint\x00', 0x40, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) socket(0xa, 0x6, 0x3a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) setsockopt$auto(r4, 0x8, 0xd0, 0x0, 0x107) eventfd$auto(0x22000010) setsockopt$auto(0x4, 0x0, 0x16, 0xfffffffffffffffe, 0x0) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000180), r3) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) 2.8403493s ago: executing program 5 (id=3284): r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) mmap$auto(0x0, 0x400404, 0xe3, 0x9b72, 0x2, 0x0) r1 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) read$auto(r0, 0x0, 0x80000000406) signalfd$auto(r1, 0x0, 0x8) read$auto(0x3, 0x0, 0x7) madvise$auto(0x0, 0x200008, 0x19) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) socket(0x11, 0x80003, 0x300) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x1000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0xfffffffd, 0x6, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mq_open$auto(&(0x7f0000000000)='nlctrl\x00', 0x80, 0x8001, &(0x7f0000000040)={0x4, 0x1, 0x4c3, 0x28}) mmap$auto(0x0, 0x40006, 0xe2, 0x20009b72, 0x7, 0x28000) openat$auto_msr_fops_msr(0xffffffffffffff9c, 0x0, 0x121980, 0x0) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, 0x0, 0x2) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 2.676798347s ago: executing program 2 (id=3285): r0 = pidfd_open$auto(0x1, 0x0) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40800}, 0x8092) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) writev$auto(0x8, 0x0, 0xabc) io_uring_setup$auto(0x4, 0x0) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad80, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000400), 0xffffffffffffffff) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptye7\x00', 0x800, 0x0) ioctl$auto_TIOCSWINSZ2(r4, 0x5414, &(0x7f0000000080)="a2") readv$auto(r2, &(0x7f0000000680)={0x0, 0x40200}, 0x3) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), r5) sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x14, r6, 0x1, 0x70bd2d, 0x25dfdc00}, 0x14}, 0x1, 0x0, 0x0, 0x200400f0}, 0x40050) sendmsg$auto_OVS_FLOW_CMD_DEL(r3, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x7c, r6, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_KEY={0x40, 0x1, 0x0, 0x1, [@nested={0x39, 0xb4, 0x0, 0x1, [@typed={0xc, 0x65, 0x0, 0x0, @u64=0x5}, @generic, @generic, @generic="a31933a38bdc0ae38f1a3558b54097f9d8127432824cc39f601d91a6b31b3aa3ca1c41d8c9457d713f"]}]}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x6}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0xc3}, @OVS_FLOW_ATTR_UFID={0x5}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x80}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x9}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4008000}, 0x14) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) read$auto_mISDN_fops_timerdev(0xffffffffffffffff, &(0x7f0000000140)=""/168, 0xa8) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x39, 0x6, 0x4, 0x8000003, 0x8000000000000000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) io_uring_enter$auto(0xffffffffffffffff, 0x6, 0xfffffffe, 0x6b80, 0x0, 0x5) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0) 2.626521213s ago: executing program 4 (id=3286): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x6, 0xffff, 0x6, 0x8032d4, 0x10000, 0x7fffffff) open(0x0, 0x64842, 0x0) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000000)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x40054) socket$nl_generic(0x10, 0x3, 0x10) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/ram5/queue/discard_granularity\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x752502, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/veth1/max_desync_factor\x00', 0x727382, 0x0) sendfile$auto(r1, r1, 0x0, 0x48) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xcac00, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x41, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="60c9afbb0be06ca4df250a0000000600010017000000"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r4) openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/buffer_percent\x00', 0xbc102, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x8000, 0x0) r6 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r6, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r6, 0x5501, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4811}, 0x4080) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) 1.840862244s ago: executing program 6 (id=3287): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x2, 0x1, 0x0) socket(0x2, 0x5, 0x0) sysfs$auto(0x2, 0x0, 0x0) r1 = epoll_create$auto(0x7) r2 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r2, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x82000000) epoll_wait$auto(r1, 0x0, 0xe007, 0x1) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r3 = openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) write$auto(0x3, 0x0, 0xfffffdef) r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), r0) ioctl$auto(0xffffffffffffffff, 0x900064b5, 0xc14) msgctl$auto(0x9, 0xf8, &(0x7f00000001c0)={{0x8, 0xee00, 0x0, 0x4, 0xa771, 0x7, 0x9}, &(0x7f0000000140)=0x1, &(0x7f0000000180)=0x1, 0xc28a, 0x5f52, 0x3, 0x9, 0x8, 0x2cce, 0xfffc, 0x6, @inferred, @inferred=0xffffffffffffffff}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_UPD_RXSC(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r6, 0x201, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @uid}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x48010) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000027c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002780)={&(0x7f0000000240)={0x264, r4, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8}, @OVS_VPORT_ATTR_NAME={0xf, 0x3, '/dev/adsp1\x00'}, @OVS_VPORT_ATTR_OPTIONS={0x222, 0x4, 0x0, 0x1, [@nested={0xce, 0x144, 0x0, 0x1, [@typed={0x4, 0x75}, @nested={0x4, 0x68}, @generic="d1506bbd2b1ebe4d19b0d1c0ab9c296454e83f6f917ac6b0097c35d5df5abbc18838f7a7f3b46966c809d12efc3a7a069afe67a71d5567097f060e60e752058afe2f21dd8e61df70ef93aeeebfdb2433f6f4fc2a08eaf6e20011cc4749ac9c02feb7059988773029c0283338878bcccdc09ee6318737f2af18d42604ad6bba937d6dd2f5a7d9c92e8f08d40b3f052e083a9bb7bf59ad99a2501b8622414a", @typed={0x14, 0x40, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @private=0xa010100}}, @nested={0x4, 0x57}, @typed={0xc, 0x104, 0x0, 0x0, @u64=0x7}]}, @nested={0x3b, 0xab, 0x0, 0x1, [@nested={0x4, 0x12}, @nested={0x4, 0x23}, @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0x5f}, @typed={0x8, 0xd0, 0x0, 0x0, @fd}, @typed={0xc, 0x7c, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x90}, @generic="79d31828245d1d", @nested={0x4, 0x54}]}, @nested={0xa1, 0xe6, 0x0, 0x1, [@generic="9a9ee0a2123a8fa92a4224c5e320835bc1df4b86308f1eb106b640770860908a7ee198191bec22d0e1fe7b49b4428100781fc9231baa218eb9dff6587e85758d2557a569379b8216c1a1a193109a24a6cbf4ca980e8cd518672d8170bfc296672040c805d2805a666b2c10da076637bada153ac529599e829086c0d426fe1187195bc35fd3", @typed={0x7, 0xa5, 0x0, 0x0, @str='}+\x00'}, @typed={0x8, 0xd8, 0x0, 0x0, @ipv4=@private=0xa010100}, @typed={0x8, 0x3f, 0x0, 0x0, @fd=r3}]}, @typed={0x8, 0xb6, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="78679f385b78dc", @typed={0xf, 0x141, 0x0, 0x0, @str='/dev/adsp1\x00'}, @generic="34dbb4a18fb580bda46a26cb741baeb66648b73e16593e6280ab1f493bdceced1b1cb8e704a055f6ba30c848e10359186bdac20f914fc3e87ed1e9d944940d1af2861a7aa210570710731e24a2b60c"]}, @OVS_VPORT_ATTR_UPCALL_STATS={0x4, 0xa, 0x0, 0x1, [@generic]}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x5}, @OVS_VPORT_ATTR_NETNSID={0x8}]}, 0x264}, 0x1, 0x0, 0x0, 0xd5}, 0x4000040) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20002, 0x0) connect$auto(0x3, 0x0, 0x55) 1.60043641s ago: executing program 2 (id=3288): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fd9b4d0f81d1b16c3cca5b2611827c2f1ca88bb01e672131ac62d346b5601f538ccf285e7a197166480ef899794cab4b6110", 0x54) 1.581579875s ago: executing program 5 (id=3289): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x1, 0x1, 0xfffffffffffffff8, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x60d80, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/irq/2/hwirq\x00', 0x0, 0x0) unshare$auto(0x200) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, &(0x7f00000002c0)={r2, &(0x7f0000000440)="9275ceac07117f662b60e5becaf883f176605db71c7bd7caa7a2d6810db328109c171cc155b112909ce634cdbd3704001e52e47fbe2f2293be1a18f0770a489348175bf2084a0b5f829678061b33ffa0d7c0d351d0758e4cea07027a539dc1267aad31c42e6d6f53c2946980fca56b92468b27d2aa06dae0b3b91c7ea405b972bd7689da225904328569b3b59914a91688b6a4e204c9a83403b382018eb7e19014ea4555de364500ceaf322d2f0897658b5948bbc6f87c45f1fd8987e96086ffcc4d1f6e5da5ac73dcd3ac8a3e8d9666cb991a5748eed960ee31452e7b", 0x7, 0x0, 0x6, &(0x7f0000000200)="eb2cbf355668ad148ef23e702d7489c05d6d4b141d95d46060935ca06b93e8aa77ff044458f3919372d3d5018439673e423108c692999cbf54934b6651f797f7c4dfdf177b5810ebbfdeac4006fe24551b050000", &(0x7f0000000280)=0xffff}) ioctl$auto_NS_GET_MNTNS_ID(r3, 0x8008b705, &(0x7f0000000000)=0xca6) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0) read$auto(r4, 0x0, 0x20) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 1.529561039s ago: executing program 2 (id=3290): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_LINK_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000051c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0000002a6e15d8e6da6caeadfadb70dfd7308a992c0b4b23722527d546257a98a391db0e879659b350bc8645ecfab15711c12b6739385348bc7a9e422f9736275fd901e6f362b9f3374987c4ee88c7fc3487f6fbd360c4b78ba62201add9db0bf737494b46d908ce47dd7b44c76d9b14209c857cc2f9432463c6297a3f0a733720ab024d516ea224c2a4325446d9437f0ed761661b87783e5c47d02e3d5f1333da388f2b246bd0eb28c05bd6ebd0871dcf9f030a3adba8ee79270773acb427c4ae80ef51d67f4cf3", @ANYRES16=0x0, @ANYBLOB="010326bd7000fedbdf25080000000800048004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x24000055}, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x48802, 0x0) read$auto(r0, &(0x7f0000000140)='/sys/kernel/debug/lru_gen\x00', 0x5) socket(0x23, 0x800, 0xfffffd58) r1 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r1, 0x40045431, 0x0) write$auto(0x3, 0x0, 0x70) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), r0) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5408, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.452642428s ago: executing program 4 (id=3291): sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x3, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0) write$auto(0x3, 0x0, 0x0) socket(0x8, 0x6, 0x4) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) getcwd$auto(0x0, 0xfffffffffffff4c7) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_KEY(r0, 0x0, 0x890) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/node/node0/hugepages/hugepages-1048576kB/nr_hugepages\x00', 0xe8202, 0x0) sendfile$auto(r2, r2, 0x0, 0xcd) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab/kmalloc-64/objects\x00', 0x20000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000008c0)=""/61, 0x3d) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) memfd_create$auto(0x0, 0xe) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd10\x00', 0x1206c2, 0x0) write$auto(r5, &(0x7f0000000000)='//\xf2\x00', 0x80000000) ioctl$auto_BLKRRPART(r4, 0x125f, 0x0) unshare$auto(0x40000080) mmap$auto(0xfffffffffffffffa, 0xe983, 0xdf, 0xeb1, r1, 0x8000) 995.030118ms ago: executing program 2 (id=3292): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_LINK_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000051c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0000002a6e15d8e6da6caeadfadb70dfd7308a992c0b4b23722527d546257a98a391db0e879659b350bc8645ecfab15711c12b6739385348bc7a9e422f9736275fd901e6f362b9f3374987c4ee88c7fc3487f6fbd360c4b78ba62201add9db0bf737494b46d908ce47dd7b44c76d9b14209c857cc2f9432463c6297a3f0a733720ab024d516ea224c2a4325446d9437f0ed761661b87783e5c47d02e3d5f1333da388f2b246bd0eb28c05bd6ebd0871dcf9f030a3adba8ee79270773acb427c4ae80ef51d67f4cf3", @ANYRES16=0x0, @ANYBLOB="010326bd7000fedbdf25080000000800048004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x24000055}, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x48802, 0x0) read$auto(r0, &(0x7f0000000140)='/sys/kernel/debug/lru_gen\x00', 0x5) socket(0x23, 0x800, 0xfffffd58) r1 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r1, 0x40045431, 0x0) write$auto(0x3, 0x0, 0x70) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), r0) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5408, 0x0) close_range$auto(0x2, 0x8, 0x0) 646.06786ms ago: executing program 6 (id=3293): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000100)={0x0, 0x4, 0x3}) 569.580629ms ago: executing program 5 (id=3294): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x1, 0x1, 0xfffffffffffffff8, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x60d80, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/irq/2/hwirq\x00', 0x0, 0x0) unshare$auto(0x200) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, &(0x7f00000002c0)={r2, &(0x7f0000000440)="9275ceac07117f662b60e5becaf883f176605db71c7bd7caa7a2d6810db328109c171cc155b112909ce634cdbd3704001e52e47fbe2f2293be1a18f0770a489348175bf2084a0b5f829678061b33ffa0d7c0d351d0758e4cea07027a539dc1267aad31c42e6d6f53c2946980fca56b92468b27d2aa06dae0b3b91c7ea405b972bd7689da225904328569b3b59914a91688b6a4e204c9a83403b382018eb7e19014ea4555de364500ceaf322d2f0897658b5948bbc6f87c45f1fd8987e96086ffcc4d1f6e5da5ac73dcd3ac8a3e8d9666cb991a5748eed960ee31452e7b", 0x7, 0x0, 0x6, &(0x7f0000000200)="eb2cbf355668ad148ef23e702d7489c05d6d4b141d95d46060935ca06b93e8aa77ff044458f3919372d3d5018439673e423108c692999cbf54934b6651f797f7c4dfdf177b5810ebbfdeac4006fe24551b050000", &(0x7f0000000280)=0xffff}) ioctl$auto_NS_GET_MNTNS_ID(r3, 0x8008b705, &(0x7f0000000000)=0xca6) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0) read$auto(r4, 0x0, 0x20) socket(0x2, 0x4, 0x106) 76.603567ms ago: executing program 4 (id=3295): mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bind$auto(0x3, 0x0, 0x6a) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0x1, 0x1, 0xfffffffffffffff8, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x60d80, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/irq/2/hwirq\x00', 0x0, 0x0) unshare$auto(0x200) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, &(0x7f00000002c0)={r2, &(0x7f0000000440)="9275ceac07117f662b60e5becaf883f176605db71c7bd7caa7a2d6810db328109c171cc155b112909ce634cdbd3704001e52e47fbe2f2293be1a18f0770a489348175bf2084a0b5f829678061b33ffa0d7c0d351d0758e4cea07027a539dc1267aad31c42e6d6f53c2946980fca56b92468b27d2aa06dae0b3b91c7ea405b972bd7689da225904328569b3b59914a91688b6a4e204c9a83403b382018eb7e19014ea4555de364500ceaf322d2f0897658b5948bbc6f87c45f1fd8987e96086ffcc4d1f6e5da5ac73dcd3ac8a3e8d9666cb991a5748eed960ee31452e7b", 0x7, 0x0, 0x6, &(0x7f0000000200)="eb2cbf355668ad148ef23e702d7489c05d6d4b141d95d46060935ca06b93e8aa77ff044458f3919372d3d5018439673e423108c692999cbf54934b6651f797f7c4dfdf177b5810ebbfdeac4006fe24551b050000", &(0x7f0000000280)=0xffff}) ioctl$auto_NS_GET_MNTNS_ID(r3, 0x8008b705, &(0x7f0000000000)=0xca6) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x8000, 0x0) read$auto(r4, 0x0, 0x20) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) 0s ago: executing program 2 (id=3296): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_LINK_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000051c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0000002a6e15d8e6da6caeadfadb70dfd7308a992c0b4b23722527d546257a98a391db0e879659b350bc8645ecfab15711c12b6739385348bc7a9e422f9736275fd901e6f362b9f3374987c4ee88c7fc3487f6fbd360c4b78ba62201add9db0bf737494b46d908ce47dd7b44c76d9b14209c857cc2f9432463c6297a3f0a733720ab024d516ea224c2a4325446d9437f0ed761661b87783e5c47d02e3d5f1333da388f2b246bd0eb28c05bd6ebd0871dcf9f030a3adba8ee79270773acb427c4ae80ef51d67f4cf3", @ANYRES16=0x0, @ANYBLOB="010326bd7000fedbdf25080000000800048004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x24000055}, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x48802, 0x0) read$auto(r0, &(0x7f0000000140)='/sys/kernel/debug/lru_gen\x00', 0x5) socket(0x23, 0x800, 0xfffffd58) r1 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r1, 0x40045431, 0x0) write$auto(0x3, 0x0, 0x70) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), r0) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5408, 0x0) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): 00110 [ 756.747152][T12819] RAX: ffffffffffffffda RBX: 00007f5a15bb6180 RCX: 00007f5a1598ebe9 [ 756.747169][T12819] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 756.747185][T12819] RBP: 00007f5a15a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 756.747201][T12819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 756.747218][T12819] R13: 00007f5a15bb6218 R14: 00007f5a15bb6180 R15: 00007ffcaacd87a8 [ 756.747244][T12819] [ 757.000537][T12679] bridge0: port 1(bridge_slave_0) entered blocking state [ 757.070306][T12679] bridge0: port 1(bridge_slave_0) entered disabled state [ 757.082958][T12679] bridge_slave_0: entered allmulticast mode [ 757.101291][T12679] bridge_slave_0: entered promiscuous mode [ 757.109830][T12679] bridge0: port 2(bridge_slave_1) entered blocking state [ 757.117382][T12679] bridge0: port 2(bridge_slave_1) entered disabled state [ 757.128551][T12679] bridge_slave_1: entered allmulticast mode [ 757.135409][T12679] bridge_slave_1: entered promiscuous mode [ 757.177183][T12679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 757.191739][T12679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 757.392565][T12679] team0: Port device team_slave_0 added [ 757.425174][T12679] team0: Port device team_slave_1 added [ 757.543459][T12679] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 757.584176][T12679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 757.620211][T12679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 757.634246][T12679] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 757.641446][T12679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 757.667897][T12679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 757.727363][T12679] hsr_slave_0: entered promiscuous mode [ 757.736788][T12679] hsr_slave_1: entered promiscuous mode [ 757.746881][T12679] debugfs: 'hsr0' already exists in 'hsr' [ 757.754170][T12679] Cannot create hsr debugfs directory [ 757.771098][T12951] zswap: compressor not available [ 758.038764][ T5183] Bluetooth: hci5: command tx timeout [ 758.284149][T12679] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 758.300055][T12679] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 758.329405][T12679] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 758.356005][T12679] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 758.517764][T13079] FAULT_INJECTION: forcing a failure. [ 758.517764][T13079] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 758.531279][T13079] CPU: 0 UID: 0 PID: 13079 Comm: syz.2.2678 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 758.531321][T13079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 758.531336][T13079] Call Trace: [ 758.531345][T13079] [ 758.531354][T13079] dump_stack_lvl+0x16c/0x1f0 [ 758.531390][T13079] should_fail_ex+0x512/0x640 [ 758.531426][T13079] _copy_from_user+0x2e/0xd0 [ 758.531463][T13079] __x64_sys_sigaltstack+0x129/0x360 [ 758.531498][T13079] ? __pfx___x64_sys_sigaltstack+0x10/0x10 [ 758.531538][T13079] do_syscall_64+0xcd/0x490 [ 758.531567][T13079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 758.531602][T13079] RIP: 0033:0x7f035138ebe9 [ 758.531622][T13079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 758.531649][T13079] RSP: 002b:00007f035218b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000083 [ 758.531674][T13079] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 758.531692][T13079] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 758.531707][T13079] RBP: 00007f0351411e19 R08: 0000000000000000 R09: 0000000000000000 [ 758.531723][T13079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 758.531739][T13079] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 758.531764][T13079] [ 758.701884][T12679] 8021q: adding VLAN 0 to HW filter on device bond0 [ 758.734127][T12679] 8021q: adding VLAN 0 to HW filter on device team0 [ 758.744745][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 758.751896][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 758.801747][ T1783] bridge0: port 2(bridge_slave_1) entered blocking state [ 758.808878][ T1783] bridge0: port 2(bridge_slave_1) entered forwarding state [ 759.232407][T12679] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 759.265647][T13089] FAULT_INJECTION: forcing a failure. [ 759.265647][T13089] name failslab, interval 1, probability 0, space 0, times 0 [ 759.284497][T13089] CPU: 1 UID: 0 PID: 13089 Comm: syz.0.2679 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 759.284522][T13089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 759.284532][T13089] Call Trace: [ 759.284537][T13089] [ 759.284543][T13089] dump_stack_lvl+0x16c/0x1f0 [ 759.284566][T13089] should_fail_ex+0x512/0x640 [ 759.284587][T13089] ? snd_midi_event_new+0xa1/0x210 [ 759.284609][T13089] should_failslab+0xc2/0x120 [ 759.284628][T13089] __kmalloc_noprof+0xd2/0x510 [ 759.284647][T13089] snd_midi_event_new+0xa1/0x210 [ 759.284665][T13089] snd_virmidi_output_open+0x106/0x670 [ 759.284686][T13089] open_substream+0x478/0x990 [ 759.284701][T13089] rawmidi_open_priv+0x543/0x6e0 [ 759.284720][T13089] snd_rawmidi_open+0x4cc/0xbf0 [ 759.284736][T13089] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 759.284750][T13089] ? rcu_is_watching+0x12/0xc0 [ 759.284764][T13089] ? __pfx_default_wake_function+0x10/0x10 [ 759.284779][T13089] ? kobject_get_unless_zero+0x156/0x1e0 [ 759.284798][T13089] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 759.284812][T13089] snd_open+0x22a/0x4c0 [ 759.284831][T13089] ? __pfx_snd_open+0x10/0x10 [ 759.284857][T13089] chrdev_open+0x231/0x6a0 [ 759.284875][T13089] ? __pfx_apparmor_file_open+0x10/0x10 [ 759.284891][T13089] ? __pfx_chrdev_open+0x10/0x10 [ 759.284908][T13089] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 759.284925][T13089] do_dentry_open+0x97f/0x1530 [ 759.284942][T13089] ? __pfx_chrdev_open+0x10/0x10 [ 759.284960][T13089] vfs_open+0x82/0x3f0 [ 759.284980][T13089] path_openat+0x1de4/0x2cb0 [ 759.284998][T13089] ? __pfx_path_openat+0x10/0x10 [ 759.285015][T13089] do_filp_open+0x20b/0x470 [ 759.285030][T13089] ? __pfx_do_filp_open+0x10/0x10 [ 759.285051][T13089] ? alloc_fd+0x471/0x7d0 [ 759.285066][T13089] do_sys_openat2+0x11b/0x1d0 [ 759.285086][T13089] ? __pfx_do_sys_openat2+0x10/0x10 [ 759.285108][T13089] __x64_sys_openat+0x174/0x210 [ 759.285128][T13089] ? __pfx___x64_sys_openat+0x10/0x10 [ 759.285151][T13089] do_syscall_64+0xcd/0x490 [ 759.285169][T13089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 759.285184][T13089] RIP: 0033:0x7f3dcfd8ebe9 [ 759.285195][T13089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 759.285210][T13089] RSP: 002b:00007f3dcdff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 759.285224][T13089] RAX: ffffffffffffffda RBX: 00007f3dcffb6090 RCX: 00007f3dcfd8ebe9 [ 759.285233][T13089] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 759.285242][T13089] RBP: 00007f3dcfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 759.285251][T13089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 759.285260][T13089] R13: 00007f3dcffb6128 R14: 00007f3dcffb6090 R15: 00007ffde3535918 [ 759.285273][T13089] [ 759.730485][T13103] FAULT_INJECTION: forcing a failure. [ 759.730485][T13103] name failslab, interval 1, probability 0, space 0, times 0 [ 759.743177][T13103] CPU: 1 UID: 0 PID: 13103 Comm: syz.0.2683 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 759.743199][T13103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 759.743209][T13103] Call Trace: [ 759.743215][T13103] [ 759.743220][T13103] dump_stack_lvl+0x16c/0x1f0 [ 759.743243][T13103] should_fail_ex+0x512/0x640 [ 759.743264][T13103] should_failslab+0xc2/0x120 [ 759.743283][T13103] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 759.743299][T13103] ? __kernfs_new_node+0x2fd/0x8e0 [ 759.743317][T13103] ? __kernfs_new_node+0xd2/0x8e0 [ 759.743335][T13103] __kernfs_new_node+0xd2/0x8e0 [ 759.743352][T13103] ? rcu_is_watching+0x12/0xc0 [ 759.743366][T13103] ? __pfx___kernfs_new_node+0x10/0x10 [ 759.743383][T13103] ? __pfx___might_resched+0x10/0x10 [ 759.743398][T13103] ? rcu_is_watching+0x12/0xc0 [ 759.743411][T13103] ? kernfs_root+0xee/0x2a0 [ 759.743426][T13103] ? rcu_is_watching+0x12/0xc0 [ 759.743439][T13103] ? lock_release+0x201/0x2f0 [ 759.743457][T13103] kernfs_new_node+0x13c/0x1e0 [ 759.743477][T13103] __kernfs_create_file+0x53/0x350 [ 759.743492][T13103] sysfs_add_file_mode_ns+0x207/0x3c0 [ 759.743509][T13103] sysfs_merge_group+0x1aa/0x340 [ 759.743526][T13103] ? __pfx_sysfs_merge_group+0x10/0x10 [ 759.743544][T13103] ? __pfx_dev_add_physical_location+0x10/0x10 [ 759.743566][T13103] ? bus_to_subsys+0x131/0x160 [ 759.743581][T13103] dpm_sysfs_add+0x237/0x280 [ 759.743618][T13103] device_add+0x9a6/0x1aa0 [ 759.743631][T13103] ? __pfx_device_add+0x10/0x10 [ 759.743647][T13103] nfc_register_device+0x41/0x3c0 [ 759.743667][T13103] nci_register_device+0x7f1/0xb80 [ 759.743682][T13103] ? __pfx_nci_register_device+0x10/0x10 [ 759.743699][T13103] ? lockdep_init_map_type+0x5c/0x280 [ 759.743718][T13103] virtual_ncidev_open+0x141/0x220 [ 759.743733][T13103] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 759.743747][T13103] misc_open+0x35a/0x420 [ 759.743762][T13103] ? __pfx_misc_open+0x10/0x10 [ 759.743775][T13103] chrdev_open+0x231/0x6a0 [ 759.743792][T13103] ? __pfx_apparmor_file_open+0x10/0x10 [ 759.743808][T13103] ? __pfx_chrdev_open+0x10/0x10 [ 759.743824][T13103] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 759.743842][T13103] do_dentry_open+0x97f/0x1530 [ 759.743858][T13103] ? __pfx_chrdev_open+0x10/0x10 [ 759.743876][T13103] vfs_open+0x82/0x3f0 [ 759.743896][T13103] path_openat+0x1de4/0x2cb0 [ 759.743914][T13103] ? __pfx_path_openat+0x10/0x10 [ 759.743931][T13103] do_filp_open+0x20b/0x470 [ 759.743946][T13103] ? __pfx_do_filp_open+0x10/0x10 [ 759.743967][T13103] ? alloc_fd+0x471/0x7d0 [ 759.743983][T13103] do_sys_openat2+0x11b/0x1d0 [ 759.744002][T13103] ? __pfx_do_sys_openat2+0x10/0x10 [ 759.744024][T13103] __x64_sys_openat+0x174/0x210 [ 759.744044][T13103] ? __pfx___x64_sys_openat+0x10/0x10 [ 759.744067][T13103] do_syscall_64+0xcd/0x490 [ 759.744085][T13103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 759.744100][T13103] RIP: 0033:0x7f3dcfd8ebe9 [ 759.744112][T13103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 759.744127][T13103] RSP: 002b:00007f3dd0b26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 759.744141][T13103] RAX: ffffffffffffffda RBX: 00007f3dcffb5fa0 RCX: 00007f3dcfd8ebe9 [ 759.744150][T13103] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 759.744159][T13103] RBP: 00007f3dcfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 759.744168][T13103] R10: 00000000000000e4 R11: 0000000000000246 R12: 0000000000000000 [ 759.744176][T13103] R13: 00007f3dcffb6038 R14: 00007f3dcffb5fa0 R15: 00007ffde3535918 [ 759.744190][T13103] [ 760.119717][ T5183] Bluetooth: hci5: command tx timeout [ 760.632724][T12679] veth0_vlan: entered promiscuous mode [ 760.667340][T12679] veth1_vlan: entered promiscuous mode [ 760.705879][T12679] veth0_macvtap: entered promiscuous mode [ 760.725790][T12679] veth1_macvtap: entered promiscuous mode [ 760.761879][T12679] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 760.782187][T12679] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 760.802604][ T5722] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 760.816377][ T5722] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 760.832812][ T5722] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 760.852731][ T5722] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 760.920939][ T1783] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 760.935404][ T1783] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 760.952541][ T5722] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 760.964100][ T5722] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 761.082173][T13179] kAFS: Invalid Command on /proc/fs/afs/cells file [ 761.171844][T13173] FAULT_INJECTION: forcing a failure. [ 761.171844][T13173] name failslab, interval 1, probability 0, space 0, times 0 [ 761.198830][T13173] CPU: 1 UID: 0 PID: 13173 Comm: syz.0.2694 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 761.198870][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 761.198884][T13173] Call Trace: [ 761.198893][T13173] [ 761.198903][T13173] dump_stack_lvl+0x16c/0x1f0 [ 761.198941][T13173] should_fail_ex+0x512/0x640 [ 761.198977][T13173] should_failslab+0xc2/0x120 [ 761.199009][T13173] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 761.199037][T13173] ? __kernfs_new_node+0x2fd/0x8e0 [ 761.199067][T13173] ? __kernfs_new_node+0xd2/0x8e0 [ 761.199095][T13173] __kernfs_new_node+0xd2/0x8e0 [ 761.199125][T13173] ? rcu_is_watching+0x12/0xc0 [ 761.199150][T13173] ? __pfx___kernfs_new_node+0x10/0x10 [ 761.199178][T13173] ? __pfx___might_resched+0x10/0x10 [ 761.199205][T13173] ? rcu_is_watching+0x12/0xc0 [ 761.199228][T13173] ? kernfs_root+0xee/0x2a0 [ 761.199255][T13173] ? rcu_is_watching+0x12/0xc0 [ 761.199277][T13173] ? lock_release+0x201/0x2f0 [ 761.199310][T13173] kernfs_new_node+0x13c/0x1e0 [ 761.199345][T13173] __kernfs_create_file+0x53/0x350 [ 761.199371][T13173] sysfs_add_file_mode_ns+0x207/0x3c0 [ 761.199404][T13173] sysfs_merge_group+0x1aa/0x340 [ 761.199444][T13173] ? __pfx_sysfs_merge_group+0x10/0x10 [ 761.199480][T13173] ? __pfx_dev_add_physical_location+0x10/0x10 [ 761.199516][T13173] ? bus_to_subsys+0x131/0x160 [ 761.199540][T13173] dpm_sysfs_add+0x237/0x280 [ 761.199575][T13173] device_add+0x9a6/0x1aa0 [ 761.199598][T13173] ? __pfx_device_add+0x10/0x10 [ 761.199626][T13173] nfc_register_device+0x41/0x3c0 [ 761.199659][T13173] nci_register_device+0x7f1/0xb80 [ 761.199685][T13173] ? __pfx_nci_register_device+0x10/0x10 [ 761.199714][T13173] ? lockdep_init_map_type+0x5c/0x280 [ 761.199749][T13173] virtual_ncidev_open+0x141/0x220 [ 761.199776][T13173] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 761.199801][T13173] misc_open+0x35a/0x420 [ 761.199827][T13173] ? __pfx_misc_open+0x10/0x10 [ 761.199856][T13173] chrdev_open+0x231/0x6a0 [ 761.199886][T13173] ? __pfx_apparmor_file_open+0x10/0x10 [ 761.199914][T13173] ? __pfx_chrdev_open+0x10/0x10 [ 761.199944][T13173] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 761.199975][T13173] do_dentry_open+0x97f/0x1530 [ 761.200004][T13173] ? __pfx_chrdev_open+0x10/0x10 [ 761.200036][T13173] vfs_open+0x82/0x3f0 [ 761.200071][T13173] path_openat+0x1de4/0x2cb0 [ 761.200104][T13173] ? __pfx_path_openat+0x10/0x10 [ 761.200135][T13173] do_filp_open+0x20b/0x470 [ 761.200161][T13173] ? __pfx_do_filp_open+0x10/0x10 [ 761.200194][T13173] ? alloc_fd+0x471/0x7d0 [ 761.200219][T13173] do_sys_openat2+0x11b/0x1d0 [ 761.200248][T13173] ? __pfx_do_sys_openat2+0x10/0x10 [ 761.200284][T13173] __x64_sys_openat+0x174/0x210 [ 761.200315][T13173] ? __pfx___x64_sys_openat+0x10/0x10 [ 761.200353][T13173] do_syscall_64+0xcd/0x490 [ 761.200405][T13173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 761.200435][T13173] RIP: 0033:0x7f3dcfd8ebe9 [ 761.200455][T13173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 761.200480][T13173] RSP: 002b:00007f3dd0b26038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 761.200504][T13173] RAX: ffffffffffffffda RBX: 00007f3dcffb5fa0 RCX: 00007f3dcfd8ebe9 [ 761.200521][T13173] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 761.200537][T13173] RBP: 00007f3dcfe11e19 R08: 0000000000000000 R09: 0000000000000000 [ 761.200552][T13173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 761.200566][T13173] R13: 00007f3dcffb6038 R14: 00007f3dcffb5fa0 R15: 00007ffde3535918 [ 761.200590][T13173] [ 762.208500][ T5183] Bluetooth: hci5: command tx timeout [ 762.324386][T13246] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 763.446962][T13203] kexec: Could not allocate control_code_buffer [ 763.624053][T13321] FAULT_INJECTION: forcing a failure. [ 763.624053][T13321] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 763.637322][T13321] CPU: 1 UID: 0 PID: 13321 Comm: syz.4.2700 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 763.637362][T13321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 763.637377][T13321] Call Trace: [ 763.637389][T13321] [ 763.637398][T13321] dump_stack_lvl+0x16c/0x1f0 [ 763.637434][T13321] should_fail_ex+0x512/0x640 [ 763.637477][T13321] _copy_from_user+0x2e/0xd0 [ 763.637514][T13321] __x64_sys_sigaltstack+0x129/0x360 [ 763.637551][T13321] ? __pfx___x64_sys_sigaltstack+0x10/0x10 [ 763.637586][T13321] ? __pfx___x64_sys_futex+0x10/0x10 [ 763.637617][T13321] ? ksys_write+0x1ac/0x250 [ 763.637651][T13321] do_syscall_64+0xcd/0x490 [ 763.637685][T13321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 763.637714][T13321] RIP: 0033:0x7f5a1598ebe9 [ 763.637735][T13321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 763.637760][T13321] RSP: 002b:00007f5a1674b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000083 [ 763.637785][T13321] RAX: ffffffffffffffda RBX: 00007f5a15bb5fa0 RCX: 00007f5a1598ebe9 [ 763.637803][T13321] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 763.637819][T13321] RBP: 00007f5a15a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 763.637833][T13321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 763.637847][T13321] R13: 00007f5a15bb6038 R14: 00007f5a15bb5fa0 R15: 00007ffcaacd87a8 [ 763.637868][T13321] [ 763.941110][ T30] audit: type=1800 audit(1755337710.330:83): pid=13324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2699" name="members" dev="configfs" ino=93375 res=0 errno=0 [ 764.279821][ T5183] Bluetooth: hci5: command tx timeout [ 765.780788][T13400] mmap: syz.5.2709 (13400) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 766.188824][ T30] audit: type=1800 audit(1755337712.570:84): pid=13418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2712" name="members" dev="configfs" ino=93421 res=0 errno=0 [ 766.792745][T13461] netlink: 35120 bytes leftover after parsing attributes in process `syz.5.2718'. [ 767.722312][T13505] FAULT_INJECTION: forcing a failure. [ 767.722312][T13505] name failslab, interval 1, probability 0, space 0, times 0 [ 767.735600][T13505] CPU: 0 UID: 0 PID: 13505 Comm: syz.5.2722 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 767.735638][T13505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 767.735655][T13505] Call Trace: [ 767.735662][T13505] [ 767.735670][T13505] dump_stack_lvl+0x16c/0x1f0 [ 767.735704][T13505] should_fail_ex+0x512/0x640 [ 767.735741][T13505] ? tomoyo_encode2+0x100/0x3e0 [ 767.735770][T13505] should_failslab+0xc2/0x120 [ 767.735800][T13505] __kmalloc_noprof+0xd2/0x510 [ 767.735825][T13505] ? lock_release+0x201/0x2f0 [ 767.735858][T13505] tomoyo_encode2+0x100/0x3e0 [ 767.735904][T13505] tomoyo_encode+0x29/0x50 [ 767.735934][T13505] tomoyo_mount_acl+0x314/0x850 [ 767.735964][T13505] ? lock_release+0x201/0x2f0 [ 767.735991][T13505] ? bpf_ksym_find+0x124/0x1c0 [ 767.736015][T13505] ? is_bpf_text_address+0x94/0x1a0 [ 767.736045][T13505] ? __pfx_tomoyo_mount_acl+0x10/0x10 [ 767.736075][T13505] ? __kernel_text_address+0xd/0x40 [ 767.736098][T13505] ? unwind_get_return_address+0x59/0xa0 [ 767.736124][T13505] ? arch_stack_walk+0xa6/0x100 [ 767.736160][T13505] ? rcu_is_watching+0x12/0xc0 [ 767.736184][T13505] ? lock_acquire+0x2cd/0x350 [ 767.736211][T13505] ? kasan_save_free_info+0x3b/0x60 [ 767.736247][T13505] ? tomoyo_domain+0xbb/0x150 [ 767.736268][T13505] ? tomoyo_profile+0x47/0x60 [ 767.736291][T13505] tomoyo_mount_permission+0x16d/0x420 [ 767.736322][T13505] ? tomoyo_mount_permission+0x14f/0x420 [ 767.736353][T13505] ? __pfx_tomoyo_mount_permission+0x10/0x10 [ 767.736389][T13505] security_sb_mount+0x9b/0x260 [ 767.736417][T13505] path_mount+0x15f/0x1fd0 [ 767.736448][T13505] ? __pfx_path_mount+0x10/0x10 [ 767.736479][T13505] ? kmem_cache_free+0x2d1/0x4d0 [ 767.736508][T13505] ? putname+0x154/0x1a0 [ 767.736542][T13505] ? putname+0x154/0x1a0 [ 767.736575][T13505] ? __x64_sys_mount+0x28d/0x310 [ 767.736604][T13505] __x64_sys_mount+0x28d/0x310 [ 767.736633][T13505] ? __pfx___x64_sys_mount+0x10/0x10 [ 767.736668][T13505] do_syscall_64+0xcd/0x490 [ 767.736700][T13505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 767.736727][T13505] RIP: 0033:0x7f4f3db8ebe9 [ 767.736747][T13505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 767.736772][T13505] RSP: 002b:00007f4f3e960038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 767.736797][T13505] RAX: ffffffffffffffda RBX: 00007f4f3ddb5fa0 RCX: 00007f4f3db8ebe9 [ 767.736813][T13505] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000 [ 767.736830][T13505] RBP: 00007f4f3dc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 767.736846][T13505] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 767.736861][T13505] R13: 00007f4f3ddb6038 R14: 00007f4f3ddb5fa0 R15: 00007ffcf95c0ca8 [ 767.736893][T13505] [ 768.660940][ T30] audit: type=1800 audit(1755337715.050:85): pid=13567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2728" name="members" dev="configfs" ino=94317 res=0 errno=0 [ 770.390082][T13621] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 770.482082][T13658] FAULT_INJECTION: forcing a failure. [ 770.482082][T13658] name failslab, interval 1, probability 0, space 0, times 0 [ 770.506381][T13658] CPU: 1 UID: 0 PID: 13658 Comm: syz.4.2734 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 770.506418][T13658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 770.506431][T13658] Call Trace: [ 770.506440][T13658] [ 770.506448][T13658] dump_stack_lvl+0x16c/0x1f0 [ 770.506481][T13658] should_fail_ex+0x512/0x640 [ 770.506513][T13658] ? snd_midi_event_new+0xa1/0x210 [ 770.506544][T13658] should_failslab+0xc2/0x120 [ 770.506577][T13658] __kmalloc_noprof+0xd2/0x510 [ 770.506606][T13658] snd_midi_event_new+0xa1/0x210 [ 770.506633][T13658] snd_virmidi_output_open+0x106/0x670 [ 770.506654][T13658] open_substream+0x478/0x990 [ 770.506670][T13658] rawmidi_open_priv+0x543/0x6e0 [ 770.506685][T13658] snd_rawmidi_open+0x4cc/0xbf0 [ 770.506702][T13658] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 770.506716][T13658] ? rcu_is_watching+0x12/0xc0 [ 770.506729][T13658] ? __pfx_default_wake_function+0x10/0x10 [ 770.506744][T13658] ? kobject_get_unless_zero+0x156/0x1e0 [ 770.506763][T13658] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 770.506778][T13658] snd_open+0x22a/0x4c0 [ 770.506797][T13658] ? __pfx_snd_open+0x10/0x10 [ 770.506815][T13658] chrdev_open+0x231/0x6a0 [ 770.506831][T13658] ? __pfx_apparmor_file_open+0x10/0x10 [ 770.506847][T13658] ? __pfx_chrdev_open+0x10/0x10 [ 770.506863][T13658] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 770.506888][T13658] do_dentry_open+0x97f/0x1530 [ 770.506905][T13658] ? __pfx_chrdev_open+0x10/0x10 [ 770.506924][T13658] vfs_open+0x82/0x3f0 [ 770.506945][T13658] path_openat+0x1de4/0x2cb0 [ 770.506963][T13658] ? __pfx_path_openat+0x10/0x10 [ 770.506980][T13658] do_filp_open+0x20b/0x470 [ 770.506995][T13658] ? __pfx_do_filp_open+0x10/0x10 [ 770.507016][T13658] ? alloc_fd+0x471/0x7d0 [ 770.507032][T13658] do_sys_openat2+0x11b/0x1d0 [ 770.507051][T13658] ? __pfx_do_sys_openat2+0x10/0x10 [ 770.507074][T13658] __x64_sys_openat+0x174/0x210 [ 770.507094][T13658] ? __pfx___x64_sys_openat+0x10/0x10 [ 770.507117][T13658] do_syscall_64+0xcd/0x490 [ 770.507134][T13658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 770.507148][T13658] RIP: 0033:0x7f5a1598ebe9 [ 770.507160][T13658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 770.507173][T13658] RSP: 002b:00007f5a13bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 770.507187][T13658] RAX: ffffffffffffffda RBX: 00007f5a15bb6180 RCX: 00007f5a1598ebe9 [ 770.507196][T13658] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 770.507205][T13658] RBP: 00007f5a15a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 770.507214][T13658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 770.507222][T13658] R13: 00007f5a15bb6218 R14: 00007f5a15bb6180 R15: 00007ffcaacd87a8 [ 770.507236][T13658] [ 771.290603][ T30] audit: type=1800 audit(1755337717.680:86): pid=13685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2738" name="members" dev="configfs" ino=94406 res=0 errno=0 [ 771.685513][T13691] netlink: 268 bytes leftover after parsing attributes in process `syz.4.2740'. [ 771.994478][T13696] ima: policy update failed [ 772.009639][ T30] audit: type=1802 audit(1755337718.390:87): pid=13696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.2741" res=0 errno=0 [ 772.231013][T13691] syz.4.2740 (13691) used greatest stack depth: 18328 bytes left [ 773.056113][T13728] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 773.618554][ T30] audit: type=1800 audit(1755337719.990:88): pid=13775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2750" name="members" dev="configfs" ino=94478 res=0 errno=0 [ 774.804197][ T30] audit: type=1800 audit(1755337721.190:89): pid=13877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=93850 res=0 errno=0 [ 775.980824][T13955] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 776.003656][T13954] FAULT_INJECTION: forcing a failure. [ 776.003656][T13954] name failslab, interval 1, probability 0, space 0, times 0 [ 776.026148][T13954] CPU: 0 UID: 0 PID: 13954 Comm: syz.5.2767 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 776.026181][T13954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 776.026190][T13954] Call Trace: [ 776.026194][T13954] [ 776.026200][T13954] dump_stack_lvl+0x16c/0x1f0 [ 776.026223][T13954] should_fail_ex+0x512/0x640 [ 776.026251][T13954] ? snd_midi_event_new+0xa1/0x210 [ 776.026271][T13954] should_failslab+0xc2/0x120 [ 776.026290][T13954] __kmalloc_noprof+0xd2/0x510 [ 776.026307][T13954] snd_midi_event_new+0xa1/0x210 [ 776.026326][T13954] snd_virmidi_output_open+0x106/0x670 [ 776.026346][T13954] open_substream+0x478/0x990 [ 776.026362][T13954] rawmidi_open_priv+0x543/0x6e0 [ 776.026378][T13954] snd_rawmidi_open+0x4cc/0xbf0 [ 776.026394][T13954] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 776.026408][T13954] ? rcu_is_watching+0x12/0xc0 [ 776.026422][T13954] ? __pfx_default_wake_function+0x10/0x10 [ 776.026437][T13954] ? kobject_get_unless_zero+0x156/0x1e0 [ 776.026456][T13954] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 776.026470][T13954] snd_open+0x22a/0x4c0 [ 776.026489][T13954] ? __pfx_snd_open+0x10/0x10 [ 776.026507][T13954] chrdev_open+0x231/0x6a0 [ 776.026524][T13954] ? __pfx_apparmor_file_open+0x10/0x10 [ 776.026539][T13954] ? __pfx_chrdev_open+0x10/0x10 [ 776.026556][T13954] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 776.026573][T13954] do_dentry_open+0x97f/0x1530 [ 776.026590][T13954] ? __pfx_chrdev_open+0x10/0x10 [ 776.026608][T13954] vfs_open+0x82/0x3f0 [ 776.026627][T13954] path_openat+0x1de4/0x2cb0 [ 776.026645][T13954] ? __pfx_path_openat+0x10/0x10 [ 776.026662][T13954] do_filp_open+0x20b/0x470 [ 776.026677][T13954] ? __pfx_do_filp_open+0x10/0x10 [ 776.026698][T13954] ? alloc_fd+0x471/0x7d0 [ 776.026714][T13954] do_sys_openat2+0x11b/0x1d0 [ 776.026733][T13954] ? __pfx_do_sys_openat2+0x10/0x10 [ 776.026755][T13954] __x64_sys_openat+0x174/0x210 [ 776.026775][T13954] ? __pfx___x64_sys_openat+0x10/0x10 [ 776.026798][T13954] do_syscall_64+0xcd/0x490 [ 776.026816][T13954] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.026830][T13954] RIP: 0033:0x7f4f3db8ebe9 [ 776.026841][T13954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 776.026855][T13954] RSP: 002b:00007f4f3e93f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 776.026868][T13954] RAX: ffffffffffffffda RBX: 00007f4f3ddb6090 RCX: 00007f4f3db8ebe9 [ 776.026878][T13954] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 776.026886][T13954] RBP: 00007f4f3dc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 776.026895][T13954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 776.026904][T13954] R13: 00007f4f3ddb6128 R14: 00007f4f3ddb6090 R15: 00007ffcf95c0ca8 [ 776.026917][T13954] [ 776.611832][T13966] FAULT_INJECTION: forcing a failure. [ 776.611832][T13966] name failslab, interval 1, probability 0, space 0, times 0 [ 776.635869][T13966] CPU: 1 UID: 0 PID: 13966 Comm: syz.2.2761 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 776.635910][T13966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 776.635926][T13966] Call Trace: [ 776.635935][T13966] [ 776.635944][T13966] dump_stack_lvl+0x16c/0x1f0 [ 776.635980][T13966] should_fail_ex+0x512/0x640 [ 776.636019][T13966] ? snd_midi_event_new+0xa1/0x210 [ 776.636047][T13966] should_failslab+0xc2/0x120 [ 776.636075][T13966] __kmalloc_noprof+0xd2/0x510 [ 776.636101][T13966] snd_midi_event_new+0xa1/0x210 [ 776.636127][T13966] snd_virmidi_output_open+0x106/0x670 [ 776.636157][T13966] open_substream+0x478/0x990 [ 776.636180][T13966] rawmidi_open_priv+0x543/0x6e0 [ 776.636202][T13966] snd_rawmidi_open+0x4cc/0xbf0 [ 776.636225][T13966] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 776.636245][T13966] ? rcu_is_watching+0x12/0xc0 [ 776.636265][T13966] ? __pfx_default_wake_function+0x10/0x10 [ 776.636286][T13966] ? kobject_get_unless_zero+0x156/0x1e0 [ 776.636312][T13966] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 776.636333][T13966] snd_open+0x22a/0x4c0 [ 776.636358][T13966] ? __pfx_snd_open+0x10/0x10 [ 776.636384][T13966] chrdev_open+0x231/0x6a0 [ 776.636408][T13966] ? __pfx_apparmor_file_open+0x10/0x10 [ 776.636439][T13966] ? __pfx_chrdev_open+0x10/0x10 [ 776.636465][T13966] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 776.636492][T13966] do_dentry_open+0x97f/0x1530 [ 776.636516][T13966] ? __pfx_chrdev_open+0x10/0x10 [ 776.636543][T13966] vfs_open+0x82/0x3f0 [ 776.636570][T13966] path_openat+0x1de4/0x2cb0 [ 776.636595][T13966] ? __pfx_path_openat+0x10/0x10 [ 776.636620][T13966] do_filp_open+0x20b/0x470 [ 776.636641][T13966] ? __pfx_do_filp_open+0x10/0x10 [ 776.636671][T13966] ? alloc_fd+0x471/0x7d0 [ 776.636694][T13966] do_sys_openat2+0x11b/0x1d0 [ 776.636721][T13966] ? __pfx_do_sys_openat2+0x10/0x10 [ 776.636753][T13966] __x64_sys_openat+0x174/0x210 [ 776.636781][T13966] ? __pfx___x64_sys_openat+0x10/0x10 [ 776.636814][T13966] do_syscall_64+0xcd/0x490 [ 776.636839][T13966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.636858][T13966] RIP: 0033:0x7f035138ebe9 [ 776.636874][T13966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 776.636893][T13966] RSP: 002b:00007f035216a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 776.636914][T13966] RAX: ffffffffffffffda RBX: 00007f03515b6090 RCX: 00007f035138ebe9 [ 776.636927][T13966] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 776.636940][T13966] RBP: 00007f0351411e19 R08: 0000000000000000 R09: 0000000000000000 [ 776.636952][T13966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 776.636963][T13966] R13: 00007f03515b6128 R14: 00007f03515b6090 R15: 00007ffddc1ea728 [ 776.636982][T13966] [ 777.047378][ T30] audit: type=1800 audit(1755337723.430:90): pid=13978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2764" name="members" dev="configfs" ino=93897 res=0 errno=0 [ 778.134855][ T5862] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 778.142373][ T5862] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 778.149915][ T5862] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 778.157613][ T5862] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 778.165513][ T5862] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 778.527357][T14008] chnl_net:caif_netlink_parms(): no params data found [ 778.842164][T14008] bridge0: port 1(bridge_slave_0) entered blocking state [ 778.849992][T14008] bridge0: port 1(bridge_slave_0) entered disabled state [ 778.859989][T14008] bridge_slave_0: entered allmulticast mode [ 778.886723][T14008] bridge_slave_0: entered promiscuous mode [ 778.918718][T14008] bridge0: port 2(bridge_slave_1) entered blocking state [ 778.942638][T14008] bridge0: port 2(bridge_slave_1) entered disabled state [ 778.962319][T14008] bridge_slave_1: entered allmulticast mode [ 778.998738][T14008] bridge_slave_1: entered promiscuous mode [ 779.158338][T14008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 779.240724][T14008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 779.376465][T14008] team0: Port device team_slave_0 added [ 779.448851][T14008] team0: Port device team_slave_1 added [ 779.562557][T14287] netlink: 35120 bytes leftover after parsing attributes in process `syz.4.2777'. [ 779.588625][T14008] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 779.608564][T14008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 779.645744][T14008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 779.661957][T14008] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 779.672266][T14008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 779.698527][T14008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 779.836145][T14008] hsr_slave_0: entered promiscuous mode [ 779.850321][T14008] hsr_slave_1: entered promiscuous mode [ 779.862805][T14008] debugfs: 'hsr0' already exists in 'hsr' [ 779.868991][T14008] Cannot create hsr debugfs directory [ 780.163191][T14008] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 780.198459][ T5183] Bluetooth: hci6: command tx timeout [ 780.205641][T14008] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 780.242099][T14008] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 780.289545][T14008] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 780.513061][T14008] 8021q: adding VLAN 0 to HW filter on device bond0 [ 780.578429][T14008] 8021q: adding VLAN 0 to HW filter on device team0 [ 780.591521][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 780.598641][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 780.619368][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 780.626473][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 780.704926][T14008] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 780.724794][T14008] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 781.095853][T14008] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 781.130791][T14530] zswap: compressor not available [ 781.517340][T14545] FAULT_INJECTION: forcing a failure. [ 781.517340][T14545] name failslab, interval 1, probability 0, space 0, times 0 [ 781.590916][T14545] CPU: 0 UID: 0 PID: 14545 Comm: syz.2.2786 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 781.590954][T14545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 781.590969][T14545] Call Trace: [ 781.590974][T14545] [ 781.590979][T14545] dump_stack_lvl+0x16c/0x1f0 [ 781.591004][T14545] should_fail_ex+0x512/0x640 [ 781.591026][T14545] ? snd_midi_event_new+0xa1/0x210 [ 781.591046][T14545] should_failslab+0xc2/0x120 [ 781.591065][T14545] __kmalloc_noprof+0xd2/0x510 [ 781.591082][T14545] snd_midi_event_new+0xa1/0x210 [ 781.591101][T14545] snd_virmidi_output_open+0x106/0x670 [ 781.591122][T14545] open_substream+0x478/0x990 [ 781.591137][T14545] rawmidi_open_priv+0x543/0x6e0 [ 781.591153][T14545] snd_rawmidi_open+0x4cc/0xbf0 [ 781.591169][T14545] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 781.591183][T14545] ? rcu_is_watching+0x12/0xc0 [ 781.591197][T14545] ? __pfx_default_wake_function+0x10/0x10 [ 781.591212][T14545] ? kobject_get_unless_zero+0x156/0x1e0 [ 781.591232][T14545] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 781.591246][T14545] snd_open+0x22a/0x4c0 [ 781.591264][T14545] ? __pfx_snd_open+0x10/0x10 [ 781.591282][T14545] chrdev_open+0x231/0x6a0 [ 781.591299][T14545] ? __pfx_apparmor_file_open+0x10/0x10 [ 781.591314][T14545] ? __pfx_chrdev_open+0x10/0x10 [ 781.591331][T14545] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 781.591348][T14545] do_dentry_open+0x97f/0x1530 [ 781.591364][T14545] ? __pfx_chrdev_open+0x10/0x10 [ 781.591383][T14545] vfs_open+0x82/0x3f0 [ 781.591402][T14545] path_openat+0x1de4/0x2cb0 [ 781.591420][T14545] ? __pfx_path_openat+0x10/0x10 [ 781.591437][T14545] do_filp_open+0x20b/0x470 [ 781.591452][T14545] ? __pfx_do_filp_open+0x10/0x10 [ 781.591473][T14545] ? alloc_fd+0x471/0x7d0 [ 781.591488][T14545] do_sys_openat2+0x11b/0x1d0 [ 781.591508][T14545] ? __pfx_do_sys_openat2+0x10/0x10 [ 781.591530][T14545] __x64_sys_openat+0x174/0x210 [ 781.591550][T14545] ? __pfx___x64_sys_openat+0x10/0x10 [ 781.591573][T14545] do_syscall_64+0xcd/0x490 [ 781.591591][T14545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 781.591605][T14545] RIP: 0033:0x7f035138ebe9 [ 781.591616][T14545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 781.591630][T14545] RSP: 002b:00007f035216a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 781.591644][T14545] RAX: ffffffffffffffda RBX: 00007f03515b6090 RCX: 00007f035138ebe9 [ 781.591654][T14545] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 781.591664][T14545] RBP: 00007f0351411e19 R08: 0000000000000000 R09: 0000000000000000 [ 781.591672][T14545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 781.591681][T14545] R13: 00007f03515b6128 R14: 00007f03515b6090 R15: 00007ffddc1ea728 [ 781.591694][T14545] [ 781.650893][T14008] veth0_vlan: entered promiscuous mode [ 781.915738][T14008] veth1_vlan: entered promiscuous mode [ 781.994954][T14008] veth0_macvtap: entered promiscuous mode [ 782.030708][T14008] veth1_macvtap: entered promiscuous mode [ 782.057733][T14008] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 782.097471][T14008] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 782.132874][ T7753] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.156013][ T7753] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.177261][ T7753] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.192079][ T7753] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 782.278668][ T5183] Bluetooth: hci6: command tx timeout [ 782.307168][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 782.344604][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 782.406241][ T5722] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 782.454496][ T5722] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 782.594494][T14612] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 782.687459][T14606] zswap: compressor not available [ 782.884095][T14631] FAULT_INJECTION: forcing a failure. [ 782.884095][T14631] name failslab, interval 1, probability 0, space 0, times 0 [ 782.933381][T14631] CPU: 0 UID: 0 PID: 14631 Comm: syz.5.2796 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 782.933419][T14631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 782.933435][T14631] Call Trace: [ 782.933444][T14631] [ 782.933453][T14631] dump_stack_lvl+0x16c/0x1f0 [ 782.933489][T14631] should_fail_ex+0x512/0x640 [ 782.933525][T14631] ? snd_midi_event_new+0xa1/0x210 [ 782.933559][T14631] should_failslab+0xc2/0x120 [ 782.933593][T14631] __kmalloc_noprof+0xd2/0x510 [ 782.933624][T14631] snd_midi_event_new+0xa1/0x210 [ 782.933657][T14631] snd_virmidi_output_open+0x106/0x670 [ 782.933695][T14631] open_substream+0x478/0x990 [ 782.933722][T14631] rawmidi_open_priv+0x543/0x6e0 [ 782.933752][T14631] snd_rawmidi_open+0x4cc/0xbf0 [ 782.933782][T14631] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 782.933809][T14631] ? rcu_is_watching+0x12/0xc0 [ 782.933835][T14631] ? __pfx_default_wake_function+0x10/0x10 [ 782.933862][T14631] ? kobject_get_unless_zero+0x156/0x1e0 [ 782.933896][T14631] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 782.933936][T14631] snd_open+0x22a/0x4c0 [ 782.933971][T14631] ? __pfx_snd_open+0x10/0x10 [ 782.934005][T14631] chrdev_open+0x231/0x6a0 [ 782.934035][T14631] ? __pfx_apparmor_file_open+0x10/0x10 [ 782.934063][T14631] ? __pfx_chrdev_open+0x10/0x10 [ 782.934096][T14631] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 782.934129][T14631] do_dentry_open+0x97f/0x1530 [ 782.934161][T14631] ? __pfx_chrdev_open+0x10/0x10 [ 782.934195][T14631] vfs_open+0x82/0x3f0 [ 782.934230][T14631] path_openat+0x1de4/0x2cb0 [ 782.934264][T14631] ? __pfx_path_openat+0x10/0x10 [ 782.934296][T14631] do_filp_open+0x20b/0x470 [ 782.934324][T14631] ? __pfx_do_filp_open+0x10/0x10 [ 782.934364][T14631] ? alloc_fd+0x471/0x7d0 [ 782.934393][T14631] do_sys_openat2+0x11b/0x1d0 [ 782.934428][T14631] ? __pfx_do_sys_openat2+0x10/0x10 [ 782.934469][T14631] __x64_sys_openat+0x174/0x210 [ 782.934506][T14631] ? __pfx___x64_sys_openat+0x10/0x10 [ 782.934549][T14631] do_syscall_64+0xcd/0x490 [ 782.934581][T14631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 782.934607][T14631] RIP: 0033:0x7f4f3db8ebe9 [ 782.934627][T14631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 782.934652][T14631] RSP: 002b:00007f4f3e91e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 782.934676][T14631] RAX: ffffffffffffffda RBX: 00007f4f3ddb6180 RCX: 00007f4f3db8ebe9 [ 782.934693][T14631] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 782.934710][T14631] RBP: 00007f4f3dc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 782.934726][T14631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 782.934741][T14631] R13: 00007f4f3ddb6218 R14: 00007f4f3ddb6180 R15: 00007ffcf95c0ca8 [ 782.934765][T14631] [ 784.170065][ T30] audit: type=1800 audit(1755337730.530:91): pid=14707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2801" name="members" dev="configfs" ino=95224 res=0 errno=0 [ 784.359701][ T5183] Bluetooth: hci6: command tx timeout [ 784.526877][T14726] netlink: 35120 bytes leftover after parsing attributes in process `syz.6.2803'. [ 786.384394][ T30] audit: type=1800 audit(1755337732.770:92): pid=14926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2815" name="members" dev="configfs" ino=96432 res=0 errno=0 [ 786.439041][ T5183] Bluetooth: hci6: command tx timeout [ 786.841679][T14982] netlink: 35120 bytes leftover after parsing attributes in process `syz.2.2817'. [ 787.757194][T15036] netlink: 22780 bytes leftover after parsing attributes in process `syz.6.2821'. [ 789.160620][T15118] ima: policy update failed [ 789.182415][ T30] audit: type=1802 audit(1755337735.550:93): pid=15118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2829" res=0 errno=0 [ 791.064481][ T30] audit: type=1800 audit(1755337737.450:94): pid=15369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2846" name="members" dev="configfs" ino=96798 res=0 errno=0 [ 791.967805][T15455] FAULT_INJECTION: forcing a failure. [ 791.967805][T15455] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 791.979620][T15454] FAULT_INJECTION: forcing a failure. [ 791.979620][T15454] name failslab, interval 1, probability 0, space 0, times 0 [ 791.994322][T15454] CPU: 0 UID: 0 PID: 15454 Comm: syz.4.2854 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 791.994358][T15454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 791.994374][T15454] Call Trace: [ 791.994382][T15454] [ 791.994391][T15454] dump_stack_lvl+0x16c/0x1f0 [ 791.994429][T15454] should_fail_ex+0x512/0x640 [ 791.994465][T15454] ? snd_midi_event_new+0xa1/0x210 [ 791.994500][T15454] should_failslab+0xc2/0x120 [ 791.994532][T15454] __kmalloc_noprof+0xd2/0x510 [ 791.994564][T15454] snd_midi_event_new+0xa1/0x210 [ 791.994597][T15454] snd_virmidi_output_open+0x106/0x670 [ 791.994634][T15454] open_substream+0x478/0x990 [ 791.994663][T15454] rawmidi_open_priv+0x543/0x6e0 [ 791.994691][T15454] snd_rawmidi_open+0x4cc/0xbf0 [ 791.994726][T15454] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 791.994753][T15454] ? rcu_is_watching+0x12/0xc0 [ 791.994781][T15454] ? __pfx_default_wake_function+0x10/0x10 [ 791.994808][T15454] ? kobject_get_unless_zero+0x156/0x1e0 [ 791.994843][T15454] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 791.994869][T15454] snd_open+0x22a/0x4c0 [ 791.994901][T15454] ? __pfx_snd_open+0x10/0x10 [ 791.994932][T15454] chrdev_open+0x231/0x6a0 [ 791.994969][T15454] ? __pfx_apparmor_file_open+0x10/0x10 [ 791.994998][T15454] ? __pfx_chrdev_open+0x10/0x10 [ 791.995029][T15454] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 791.995061][T15454] do_dentry_open+0x97f/0x1530 [ 791.995092][T15454] ? __pfx_chrdev_open+0x10/0x10 [ 791.995127][T15454] vfs_open+0x82/0x3f0 [ 791.995162][T15454] path_openat+0x1de4/0x2cb0 [ 791.995195][T15454] ? __pfx_path_openat+0x10/0x10 [ 791.995226][T15454] do_filp_open+0x20b/0x470 [ 791.995254][T15454] ? __pfx_do_filp_open+0x10/0x10 [ 791.995293][T15454] ? alloc_fd+0x471/0x7d0 [ 791.995322][T15454] do_sys_openat2+0x11b/0x1d0 [ 791.995356][T15454] ? __pfx_do_sys_openat2+0x10/0x10 [ 791.995398][T15454] __x64_sys_openat+0x174/0x210 [ 791.995432][T15454] ? __pfx___x64_sys_openat+0x10/0x10 [ 791.995475][T15454] do_syscall_64+0xcd/0x490 [ 791.995507][T15454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 791.995532][T15454] RIP: 0033:0x7f5a1598ebe9 [ 791.995553][T15454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 791.995578][T15454] RSP: 002b:00007f5a1674b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 791.995603][T15454] RAX: ffffffffffffffda RBX: 00007f5a15bb5fa0 RCX: 00007f5a1598ebe9 [ 791.995621][T15454] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 791.995639][T15454] RBP: 00007f5a15a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 791.995655][T15454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 791.995671][T15454] R13: 00007f5a15bb6038 R14: 00007f5a15bb5fa0 R15: 00007ffcaacd87a8 [ 791.995696][T15454] [ 792.288023][T15455] CPU: 0 UID: 0 PID: 15455 Comm: syz.2.2853 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 792.288044][T15455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 792.288052][T15455] Call Trace: [ 792.288057][T15455] [ 792.288061][T15455] dump_stack_lvl+0x16c/0x1f0 [ 792.288083][T15455] should_fail_ex+0x512/0x640 [ 792.288112][T15455] _copy_from_user+0x2e/0xd0 [ 792.288133][T15455] io_sqe_files_register+0x219/0x960 [ 792.288155][T15455] ? __pfx_io_sqe_files_register+0x10/0x10 [ 792.288175][T15455] ? __mutex_trylock_common+0xe9/0x250 [ 792.288194][T15455] ? __pfx___mutex_trylock_common+0x10/0x10 [ 792.288213][T15455] __io_uring_register+0x130a/0x23c0 [ 792.288232][T15455] ? trace_contention_end+0xdd/0x130 [ 792.288250][T15455] ? __pfx___io_uring_register+0x10/0x10 [ 792.288267][T15455] ? __fget_files+0x204/0x3c0 [ 792.288283][T15455] ? __pfx___mutex_lock+0x10/0x10 [ 792.288300][T15455] ? __fget_files+0x204/0x3c0 [ 792.288313][T15455] ? rcu_is_watching+0x12/0xc0 [ 792.288328][T15455] ? __fget_files+0x20e/0x3c0 [ 792.288343][T15455] __x64_sys_io_uring_register+0x169/0x280 [ 792.288368][T15455] do_syscall_64+0xcd/0x490 [ 792.288394][T15455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 792.288415][T15455] RIP: 0033:0x7f035138ebe9 [ 792.288431][T15455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 792.288445][T15455] RSP: 002b:00007f035218b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 792.288458][T15455] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 792.288467][T15455] RDX: 0000200000000040 RSI: 0000000000000002 RDI: 0000000000000002 [ 792.288475][T15455] RBP: 00007f035218b090 R08: 0000000000000000 R09: 0000000000000000 [ 792.288483][T15455] R10: 0000000000000086 R11: 0000000000000246 R12: 0000000000000002 [ 792.288491][T15455] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 792.288504][T15455] [ 792.901147][T15503] FAULT_INJECTION: forcing a failure. [ 792.901147][T15503] name failslab, interval 1, probability 0, space 0, times 0 [ 792.949998][T15503] CPU: 0 UID: 0 PID: 15503 Comm: syz.2.2857 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 792.950038][T15503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 792.950059][T15503] Call Trace: [ 792.950068][T15503] [ 792.950078][T15503] dump_stack_lvl+0x16c/0x1f0 [ 792.950115][T15503] should_fail_ex+0x512/0x640 [ 792.950152][T15503] should_failslab+0xc2/0x120 [ 792.950184][T15503] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 792.950213][T15503] ? __pfx___debug_object_init+0x10/0x10 [ 792.950240][T15503] ? __d_alloc+0x32/0xae0 [ 792.950271][T15503] __d_alloc+0x32/0xae0 [ 792.950301][T15503] d_alloc_pseudo+0x1c/0xc0 [ 792.950336][T15503] alloc_file_pseudo+0xcf/0x230 [ 792.950376][T15503] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 792.950413][T15503] ? alloc_fd+0x471/0x7d0 [ 792.950442][T15503] sock_alloc_file+0x50/0x210 [ 792.950478][T15503] __sys_socket+0x1c0/0x260 [ 792.950502][T15503] ? __pfx___sys_socket+0x10/0x10 [ 792.950526][T15503] ? xfd_validate_state+0x61/0x180 [ 792.950560][T15503] ? __pfx_ksys_write+0x10/0x10 [ 792.950590][T15503] __x64_sys_socket+0x72/0xb0 [ 792.950615][T15503] do_syscall_64+0xcd/0x490 [ 792.950647][T15503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 792.950672][T15503] RIP: 0033:0x7f035138ebe9 [ 792.950691][T15503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 792.950716][T15503] RSP: 002b:00007f0352149038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 792.950740][T15503] RAX: ffffffffffffffda RBX: 00007f03515b6180 RCX: 00007f035138ebe9 [ 792.950757][T15503] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000002a [ 792.950773][T15503] RBP: 00007f0351411e19 R08: 0000000000000000 R09: 0000000000000000 [ 792.950789][T15503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 792.950804][T15503] R13: 00007f03515b6218 R14: 00007f03515b6180 R15: 00007ffddc1ea728 [ 792.950827][T15503] [ 793.794275][T15557] FAULT_INJECTION: forcing a failure. [ 793.794275][T15557] name failslab, interval 1, probability 0, space 0, times 0 [ 793.824047][ T30] audit: type=1800 audit(1755337740.200:95): pid=15560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2861" name="members" dev="configfs" ino=97488 res=0 errno=0 [ 793.824141][T15557] CPU: 1 UID: 0 PID: 15557 Comm: syz.5.2864 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 793.824176][T15557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 793.824192][T15557] Call Trace: [ 793.824199][T15557] [ 793.824208][T15557] dump_stack_lvl+0x16c/0x1f0 [ 793.824244][T15557] should_fail_ex+0x512/0x640 [ 793.824280][T15557] ? snd_midi_event_new+0xa1/0x210 [ 793.824313][T15557] should_failslab+0xc2/0x120 [ 793.824344][T15557] __kmalloc_noprof+0xd2/0x510 [ 793.824376][T15557] snd_midi_event_new+0xa1/0x210 [ 793.824408][T15557] snd_virmidi_output_open+0x106/0x670 [ 793.824445][T15557] open_substream+0x478/0x990 [ 793.824474][T15557] rawmidi_open_priv+0x543/0x6e0 [ 793.824502][T15557] snd_rawmidi_open+0x4cc/0xbf0 [ 793.824531][T15557] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 793.824557][T15557] ? rcu_is_watching+0x12/0xc0 [ 793.824582][T15557] ? __pfx_default_wake_function+0x10/0x10 [ 793.824608][T15557] ? kobject_get_unless_zero+0x156/0x1e0 [ 793.824643][T15557] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 793.824669][T15557] snd_open+0x22a/0x4c0 [ 793.824701][T15557] ? __pfx_snd_open+0x10/0x10 [ 793.824743][T15557] chrdev_open+0x231/0x6a0 [ 793.824775][T15557] ? __pfx_apparmor_file_open+0x10/0x10 [ 793.824804][T15557] ? __pfx_chrdev_open+0x10/0x10 [ 793.824836][T15557] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 793.824867][T15557] do_dentry_open+0x97f/0x1530 [ 793.824896][T15557] ? __pfx_chrdev_open+0x10/0x10 [ 793.824928][T15557] vfs_open+0x82/0x3f0 [ 793.824963][T15557] path_openat+0x1de4/0x2cb0 [ 793.824994][T15557] ? __pfx_path_openat+0x10/0x10 [ 793.825025][T15557] do_filp_open+0x20b/0x470 [ 793.825052][T15557] ? __pfx_do_filp_open+0x10/0x10 [ 793.825091][T15557] ? alloc_fd+0x471/0x7d0 [ 793.825120][T15557] do_sys_openat2+0x11b/0x1d0 [ 793.825154][T15557] ? __pfx_do_sys_openat2+0x10/0x10 [ 793.825195][T15557] __x64_sys_openat+0x174/0x210 [ 793.825229][T15557] ? __pfx___x64_sys_openat+0x10/0x10 [ 793.825271][T15557] do_syscall_64+0xcd/0x490 [ 793.825302][T15557] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 793.825327][T15557] RIP: 0033:0x7f4f3db8ebe9 [ 793.825347][T15557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 793.825371][T15557] RSP: 002b:00007f4f3e960038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 793.825395][T15557] RAX: ffffffffffffffda RBX: 00007f4f3ddb5fa0 RCX: 00007f4f3db8ebe9 [ 793.825413][T15557] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 793.825429][T15557] RBP: 00007f4f3dc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 793.825445][T15557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 793.825461][T15557] R13: 00007f4f3ddb6038 R14: 00007f4f3ddb5fa0 R15: 00007ffcf95c0ca8 [ 793.825486][T15557] [ 795.478710][ T5862] Bluetooth: hci0: command 0x0406 tx timeout [ 796.564927][ T30] audit: type=1800 audit(1755337742.950:96): pid=15721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2874" name="members" dev="configfs" ino=97183 res=0 errno=0 [ 798.230643][ T30] audit: type=1800 audit(1755337744.610:97): pid=15870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2888" name="members" dev="configfs" ino=98345 res=0 errno=0 [ 800.708769][ T30] audit: type=1800 audit(1755337747.090:98): pid=16030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2898" name="members" dev="configfs" ino=97890 res=0 errno=0 [ 800.939491][T16031] netlink: 22784 bytes leftover after parsing attributes in process `syz.2.2897'. [ 800.984831][ T30] audit: type=1800 audit(1755337747.370:99): pid=16069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2900" name="members" dev="configfs" ino=98464 res=0 errno=0 [ 802.646587][ T30] audit: type=1800 audit(1755337749.030:100): pid=16152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2910" name="members" dev="configfs" ino=98527 res=0 errno=0 [ 804.424498][T16302] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 804.449494][T16303] FAULT_INJECTION: forcing a failure. [ 804.449494][T16303] name failslab, interval 1, probability 0, space 0, times 0 [ 804.464952][T16303] CPU: 1 UID: 0 PID: 16303 Comm: syz.4.2920 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 804.464974][T16303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 804.464983][T16303] Call Trace: [ 804.464987][T16303] [ 804.464993][T16303] dump_stack_lvl+0x16c/0x1f0 [ 804.465015][T16303] should_fail_ex+0x512/0x640 [ 804.465036][T16303] should_failslab+0xc2/0x120 [ 804.465053][T16303] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 804.465070][T16303] ? dst_alloc+0x99/0x1a0 [ 804.465085][T16303] dst_alloc+0x99/0x1a0 [ 804.465100][T16303] rt_dst_alloc+0x35/0x3a0 [ 804.465118][T16303] ip_route_output_key_hash_rcu+0x880/0x28c0 [ 804.465135][T16303] ip_route_output_key_hash+0x137/0x2e0 [ 804.465155][T16303] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 804.465168][T16303] ? __pfx_ip4_datagram_release_cb+0x10/0x10 [ 804.465191][T16303] ? rcu_is_watching+0x12/0xc0 [ 804.465207][T16303] ip_route_output_flow+0x27/0x150 [ 804.465221][T16303] raw_sendmsg+0xd5b/0x37e0 [ 804.465237][T16303] ? __pfx_raw_sendmsg+0x10/0x10 [ 804.465251][T16303] ? __pfx_process_measurement+0x10/0x10 [ 804.465265][T16303] ? tomoyo_check_open_permission+0x20e/0x3c0 [ 804.465282][T16303] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 804.465309][T16303] ? __pfx_raw_sendmsg+0x10/0x10 [ 804.465322][T16303] inet_sendmsg+0x11c/0x140 [ 804.465335][T16303] ____sys_sendmsg+0x973/0xc70 [ 804.465356][T16303] ? copy_msghdr_from_user+0x10a/0x160 [ 804.465372][T16303] ? __pfx_____sys_sendmsg+0x10/0x10 [ 804.465393][T16303] ? kfree+0x24f/0x4d0 [ 804.465405][T16303] ? __pfx__kstrtoull+0x10/0x10 [ 804.465422][T16303] ___sys_sendmsg+0x134/0x1d0 [ 804.465439][T16303] ? __pfx____sys_sendmsg+0x10/0x10 [ 804.465457][T16303] ? rcu_is_watching+0x12/0xc0 [ 804.465473][T16303] ? __pfx___might_resched+0x10/0x10 [ 804.465489][T16303] __sys_sendmmsg+0x200/0x420 [ 804.465507][T16303] ? __pfx___sys_sendmmsg+0x10/0x10 [ 804.465526][T16303] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 804.465547][T16303] ? fput+0x9b/0xd0 [ 804.465564][T16303] ? ksys_write+0x1ac/0x250 [ 804.465578][T16303] ? __pfx_ksys_write+0x10/0x10 [ 804.465594][T16303] __x64_sys_sendmmsg+0x9c/0x100 [ 804.465611][T16303] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 804.465631][T16303] do_syscall_64+0xcd/0x490 [ 804.465649][T16303] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 804.465663][T16303] RIP: 0033:0x7f5a1598ebe9 [ 804.465674][T16303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 804.465687][T16303] RSP: 002b:00007f5a1672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 804.465701][T16303] RAX: ffffffffffffffda RBX: 00007f5a15bb6090 RCX: 00007f5a1598ebe9 [ 804.465710][T16303] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 804.465718][T16303] RBP: 00007f5a1672a090 R08: 0000000000000000 R09: 0000000000000000 [ 804.465726][T16303] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002 [ 804.465733][T16303] R13: 00007f5a15bb6128 R14: 00007f5a15bb6090 R15: 00007ffcaacd87a8 [ 804.465746][T16303] [ 805.161200][ T30] audit: type=1800 audit(1755337751.520:101): pid=16309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2921" name="members" dev="configfs" ino=98117 res=0 errno=0 [ 805.557627][T16372] FAULT_INJECTION: forcing a failure. [ 805.557627][T16372] name failslab, interval 1, probability 0, space 0, times 0 [ 805.576075][T16372] CPU: 1 UID: 0 PID: 16372 Comm: syz.2.2925 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 805.576108][T16372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 805.576120][T16372] Call Trace: [ 805.576127][T16372] [ 805.576135][T16372] dump_stack_lvl+0x16c/0x1f0 [ 805.576165][T16372] should_fail_ex+0x512/0x640 [ 805.576197][T16372] ? snd_midi_event_new+0xa1/0x210 [ 805.576225][T16372] should_failslab+0xc2/0x120 [ 805.576252][T16372] __kmalloc_noprof+0xd2/0x510 [ 805.576279][T16372] snd_midi_event_new+0xa1/0x210 [ 805.576307][T16372] snd_virmidi_output_open+0x106/0x670 [ 805.576341][T16372] open_substream+0x478/0x990 [ 805.576368][T16372] rawmidi_open_priv+0x543/0x6e0 [ 805.576394][T16372] snd_rawmidi_open+0x4cc/0xbf0 [ 805.576423][T16372] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 805.576447][T16372] ? rcu_is_watching+0x12/0xc0 [ 805.576471][T16372] ? __pfx_default_wake_function+0x10/0x10 [ 805.576497][T16372] ? kobject_get_unless_zero+0x156/0x1e0 [ 805.576529][T16372] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 805.576555][T16372] snd_open+0x22a/0x4c0 [ 805.576586][T16372] ? __pfx_snd_open+0x10/0x10 [ 805.576615][T16372] chrdev_open+0x231/0x6a0 [ 805.576643][T16372] ? __pfx_apparmor_file_open+0x10/0x10 [ 805.576668][T16372] ? __pfx_chrdev_open+0x10/0x10 [ 805.576696][T16372] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 805.576722][T16372] do_dentry_open+0x97f/0x1530 [ 805.576748][T16372] ? __pfx_chrdev_open+0x10/0x10 [ 805.576800][T16372] vfs_open+0x82/0x3f0 [ 805.576839][T16372] path_openat+0x1de4/0x2cb0 [ 805.576860][T16372] ? __pfx_path_openat+0x10/0x10 [ 805.576876][T16372] do_filp_open+0x20b/0x470 [ 805.576891][T16372] ? __pfx_do_filp_open+0x10/0x10 [ 805.576912][T16372] ? alloc_fd+0x471/0x7d0 [ 805.576927][T16372] do_sys_openat2+0x11b/0x1d0 [ 805.576946][T16372] ? __pfx_do_sys_openat2+0x10/0x10 [ 805.576966][T16372] ? __fget_files+0x20e/0x3c0 [ 805.576981][T16372] __x64_sys_openat+0x174/0x210 [ 805.577001][T16372] ? __pfx___x64_sys_openat+0x10/0x10 [ 805.577021][T16372] ? ksys_write+0x1ac/0x250 [ 805.577038][T16372] do_syscall_64+0xcd/0x490 [ 805.577056][T16372] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 805.577072][T16372] RIP: 0033:0x7f035138ebe9 [ 805.577083][T16372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 805.577096][T16372] RSP: 002b:00007f0352149038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 805.577109][T16372] RAX: ffffffffffffffda RBX: 00007f03515b6180 RCX: 00007f035138ebe9 [ 805.577119][T16372] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 805.577127][T16372] RBP: 00007f0352149090 R08: 0000000000000000 R09: 0000000000000000 [ 805.577135][T16372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 805.577143][T16372] R13: 00007f03515b6218 R14: 00007f03515b6180 R15: 00007ffddc1ea728 [ 805.577155][T16372] [ 805.887494][T16254] Bluetooth: hci3: command 0x0406 tx timeout [ 807.153853][ T30] audit: type=1800 audit(1755337753.530:102): pid=16422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2930" name="members" dev="configfs" ino=98183 res=0 errno=0 [ 808.769351][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.775723][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.017367][T16611] netlink: 35120 bytes leftover after parsing attributes in process `syz.4.2938'. [ 810.596812][T16644] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2940'. [ 810.699627][ T30] audit: type=1800 audit(1755337757.060:103): pid=16646 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2941" name="members" dev="configfs" ino=98975 res=0 errno=0 [ 811.106857][T16598] kexec: Could not allocate control_code_buffer [ 811.755658][T16694] netlink: 22784 bytes leftover after parsing attributes in process `syz.6.2947'. [ 812.211032][T16717] netlink: 35120 bytes leftover after parsing attributes in process `syz.4.2951'. [ 812.467106][ T30] audit: type=1800 audit(1755337758.850:104): pid=16739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2952" name="members" dev="configfs" ino=99455 res=0 errno=0 [ 813.146863][T16770] netlink: 35120 bytes leftover after parsing attributes in process `syz.6.2964'. [ 814.503759][ T30] audit: type=1800 audit(1755337760.880:105): pid=16873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2963" name="members" dev="configfs" ino=99585 res=0 errno=0 [ 815.959513][T16254] Bluetooth: hci1: command 0x0406 tx timeout [ 816.205037][T16947] netlink: 35116 bytes leftover after parsing attributes in process `syz.5.2970'. [ 818.541406][T17060] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 818.574076][T17060] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 818.790612][T17116] netlink: 35116 bytes leftover after parsing attributes in process `syz.5.2984'. [ 822.023523][T17308] netlink: 35116 bytes leftover after parsing attributes in process `syz.4.2996'. [ 823.572441][ T30] audit: type=1800 audit(1755337769.950:106): pid=17454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3006" name="members" dev="configfs" ino=100746 res=0 errno=0 [ 824.481073][ T30] audit: type=1800 audit(1755337770.870:107): pid=17492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3008" name="members" dev="configfs" ino=99866 res=0 errno=0 [ 826.305141][T17627] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 826.327533][T17627] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 828.997615][T17856] FAULT_INJECTION: forcing a failure. [ 828.997615][T17856] name fail_futex, interval 1, probability 0, space 0, times 0 [ 829.020914][T17856] CPU: 1 UID: 0 PID: 17856 Comm: syz.4.3029 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 829.020951][T17856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 829.020967][T17856] Call Trace: [ 829.020975][T17856] [ 829.020984][T17856] dump_stack_lvl+0x16c/0x1f0 [ 829.021022][T17856] should_fail_ex+0x512/0x640 [ 829.021056][T17856] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 829.021095][T17856] get_futex_key+0x1d0/0x1560 [ 829.021123][T17856] ? __pfx_get_futex_key+0x10/0x10 [ 829.021160][T17856] ? lock_release+0x201/0x2f0 [ 829.021194][T17856] futex_wake+0xea/0x530 [ 829.021225][T17856] ? futex_wait+0x120/0x380 [ 829.021256][T17856] ? __pfx_futex_wait+0x10/0x10 [ 829.021288][T17856] ? __pfx_futex_wake+0x10/0x10 [ 829.021323][T17856] ? rcu_is_watching+0x12/0xc0 [ 829.021346][T17856] ? lock_release+0x201/0x2f0 [ 829.021379][T17856] do_futex+0x1e3/0x350 [ 829.021407][T17856] ? __pfx_do_futex+0x10/0x10 [ 829.021440][T17856] __x64_sys_futex+0x1e0/0x4c0 [ 829.021470][T17856] ? __pfx___x64_sys_timer_create+0x10/0x10 [ 829.021503][T17856] ? __pfx___x64_sys_futex+0x10/0x10 [ 829.021539][T17856] do_syscall_64+0xcd/0x490 [ 829.021571][T17856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.021597][T17856] RIP: 0033:0x7f5a1598ebe9 [ 829.021616][T17856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 829.021641][T17856] RSP: 002b:00007f5a1674b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 829.021666][T17856] RAX: ffffffffffffffda RBX: 00007f5a15bb5fa8 RCX: 00007f5a1598ebe9 [ 829.021683][T17856] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5a15bb5fac [ 829.021699][T17856] RBP: 00007f5a15bb5fa0 R08: 00007f5a1674c000 R09: 0000000000000000 [ 829.021716][T17856] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 829.021732][T17856] R13: 00007f5a15bb6038 R14: 00007ffcaacd86c0 R15: 00007ffcaacd87a8 [ 829.021756][T17856] [ 829.287347][T17867] syz.6.3030 uses obsolete (PF_INET,SOCK_PACKET) [ 829.588528][ T30] audit: type=1800 audit(1755337775.960:108): pid=17925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3031" name="members" dev="configfs" ino=100171 res=0 errno=0 [ 829.751663][T17949] netlink: 2348 bytes leftover after parsing attributes in process `syz.2.3032'. [ 829.943920][T17866] ima: policy update failed [ 829.950690][ T30] audit: type=1802 audit(1755337776.340:109): pid=17866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.6.3030" res=0 errno=0 [ 830.279537][T17996] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 830.497225][T18000] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 834.005040][T18277] FAULT_INJECTION: forcing a failure. [ 834.005040][T18277] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 834.104154][T18277] CPU: 1 UID: 0 PID: 18277 Comm: syz.2.3052 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 834.104178][T18277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 834.104186][T18277] Call Trace: [ 834.104191][T18277] [ 834.104196][T18277] dump_stack_lvl+0x16c/0x1f0 [ 834.104217][T18277] should_fail_ex+0x512/0x640 [ 834.104239][T18277] _copy_from_user+0x2e/0xd0 [ 834.104259][T18277] copy_mount_options+0x76/0x190 [ 834.104280][T18277] __x64_sys_mount+0x1ac/0x310 [ 834.104297][T18277] ? __pfx___x64_sys_mount+0x10/0x10 [ 834.104315][T18277] do_syscall_64+0xcd/0x490 [ 834.104333][T18277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 834.104347][T18277] RIP: 0033:0x7f035138ebe9 [ 834.104358][T18277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 834.104372][T18277] RSP: 002b:00007f035218b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 834.104385][T18277] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 834.104395][T18277] RDX: 0000000000000000 RSI: 9999999999999999 RDI: 0000000000000000 [ 834.104403][T18277] RBP: 00007f035218b090 R08: 9999999999999999 R09: 0000000000000000 [ 834.104411][T18277] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001 [ 834.104419][T18277] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 834.104432][T18277] [ 834.613541][T18301] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3051'. [ 835.219573][T18401] netlink: 34824 bytes leftover after parsing attributes in process `syz.4.3056'. [ 835.235011][ T30] audit: type=1800 audit(1755337781.620:110): pid=18402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3055" name="members" dev="configfs" ino=101499 res=0 errno=0 [ 835.540279][T18420] FAULT_INJECTION: forcing a failure. [ 835.540279][T18420] name fail_futex, interval 1, probability 0, space 0, times 0 [ 835.562698][T18420] CPU: 0 UID: 0 PID: 18420 Comm: syz.6.3059 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 835.562735][T18420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 835.562751][T18420] Call Trace: [ 835.562759][T18420] [ 835.562768][T18420] dump_stack_lvl+0x16c/0x1f0 [ 835.562805][T18420] should_fail_ex+0x512/0x640 [ 835.562838][T18420] ? get_pid_task+0xfc/0x250 [ 835.562872][T18420] get_futex_key+0x1d0/0x1560 [ 835.562905][T18420] ? __pfx_get_futex_key+0x10/0x10 [ 835.562933][T18420] ? lock_release+0x201/0x2f0 [ 835.562968][T18420] futex_wake+0xea/0x530 [ 835.563000][T18420] ? futex_wait+0x120/0x380 [ 835.563033][T18420] ? __pfx_futex_wait+0x10/0x10 [ 835.563067][T18420] ? __pfx_futex_wake+0x10/0x10 [ 835.563102][T18420] ? rcu_is_watching+0x12/0xc0 [ 835.563127][T18420] ? lock_release+0x201/0x2f0 [ 835.563160][T18420] do_futex+0x1e3/0x350 [ 835.563190][T18420] ? __pfx_do_futex+0x10/0x10 [ 835.563228][T18420] __x64_sys_futex+0x1e0/0x4c0 [ 835.563259][T18420] ? __pfx___x64_sys_timer_create+0x10/0x10 [ 835.563296][T18420] ? __pfx___x64_sys_futex+0x10/0x10 [ 835.563335][T18420] do_syscall_64+0xcd/0x490 [ 835.563368][T18420] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 835.563395][T18420] RIP: 0033:0x7f9bd238ebe9 [ 835.563413][T18420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 835.563439][T18420] RSP: 002b:00007f9bd31580e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 835.563464][T18420] RAX: ffffffffffffffda RBX: 00007f9bd25b5fa8 RCX: 00007f9bd238ebe9 [ 835.563482][T18420] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9bd25b5fac [ 835.563499][T18420] RBP: 00007f9bd25b5fa0 R08: 00007f9bd3159000 R09: 0000000000000000 [ 835.563516][T18420] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 835.563533][T18420] R13: 00007f9bd25b6038 R14: 00007ffeae35e770 R15: 00007ffeae35e858 [ 835.563559][T18420] [ 836.011584][ T30] audit: type=1800 audit(1755337782.400:111): pid=18436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3063" name="members" dev="configfs" ino=102454 res=0 errno=0 [ 836.266183][ T30] audit: type=1800 audit(1755337782.650:112): pid=18470 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3073" name="members" dev="configfs" ino=102462 res=0 errno=0 [ 836.519604][ T5183] Bluetooth: hci4: command 0x0406 tx timeout [ 836.786981][T18493] FAULT_INJECTION: forcing a failure. [ 836.786981][T18493] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 836.843346][T18493] CPU: 0 UID: 0 PID: 18493 Comm: syz.4.3067 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 836.843369][T18493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 836.843378][T18493] Call Trace: [ 836.843383][T18493] [ 836.843388][T18493] dump_stack_lvl+0x16c/0x1f0 [ 836.843409][T18493] should_fail_ex+0x512/0x640 [ 836.843430][T18493] _copy_from_user+0x2e/0xd0 [ 836.843451][T18493] copy_msghdr_from_user+0x98/0x160 [ 836.843469][T18493] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 836.843487][T18493] ? kfree+0x24f/0x4d0 [ 836.843499][T18493] ? __pfx__kstrtoull+0x10/0x10 [ 836.843516][T18493] ___sys_sendmsg+0xfe/0x1d0 [ 836.843532][T18493] ? __pfx____sys_sendmsg+0x10/0x10 [ 836.843551][T18493] ? rcu_is_watching+0x12/0xc0 [ 836.843569][T18493] ? __pfx___might_resched+0x10/0x10 [ 836.843584][T18493] __sys_sendmmsg+0x200/0x420 [ 836.843602][T18493] ? __pfx___sys_sendmmsg+0x10/0x10 [ 836.843621][T18493] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 836.843642][T18493] ? fput+0x9b/0xd0 [ 836.843660][T18493] ? ksys_write+0x1ac/0x250 [ 836.843674][T18493] ? __pfx_ksys_write+0x10/0x10 [ 836.843690][T18493] __x64_sys_sendmmsg+0x9c/0x100 [ 836.843706][T18493] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 836.843727][T18493] do_syscall_64+0xcd/0x490 [ 836.843745][T18493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.843759][T18493] RIP: 0033:0x7f5a1598ebe9 [ 836.843770][T18493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 836.843783][T18493] RSP: 002b:00007f5a1672a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 836.843796][T18493] RAX: ffffffffffffffda RBX: 00007f5a15bb6090 RCX: 00007f5a1598ebe9 [ 836.843805][T18493] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 836.843813][T18493] RBP: 00007f5a1672a090 R08: 0000000000000000 R09: 0000000000000000 [ 836.843821][T18493] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 836.843829][T18493] R13: 00007f5a15bb6128 R14: 00007f5a15bb6090 R15: 00007ffcaacd87a8 [ 836.843842][T18493] [ 837.768676][T18566] netlink: 34824 bytes leftover after parsing attributes in process `syz.2.3072'. [ 840.009139][T18725] FAULT_INJECTION: forcing a failure. [ 840.009139][T18725] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 840.022311][T18725] CPU: 0 UID: 0 PID: 18725 Comm: syz.2.3083 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 840.022346][T18725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 840.022360][T18725] Call Trace: [ 840.022368][T18725] [ 840.022376][T18725] dump_stack_lvl+0x16c/0x1f0 [ 840.022409][T18725] should_fail_ex+0x512/0x640 [ 840.022442][T18725] _copy_from_user+0x2e/0xd0 [ 840.022476][T18725] copy_msghdr_from_user+0x98/0x160 [ 840.022507][T18725] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 840.022538][T18725] ? kfree+0x24f/0x4d0 [ 840.022564][T18725] ___sys_sendmsg+0xfe/0x1d0 [ 840.022592][T18725] ? __pfx____sys_sendmsg+0x10/0x10 [ 840.022620][T18725] ? rcu_is_watching+0x12/0xc0 [ 840.022649][T18725] ? rcu_is_watching+0x12/0xc0 [ 840.022678][T18725] ? __pfx___might_resched+0x10/0x10 [ 840.022705][T18725] __sys_sendmmsg+0x200/0x420 [ 840.022734][T18725] ? __pfx___sys_sendmmsg+0x10/0x10 [ 840.022781][T18725] __x64_sys_sendmmsg+0x9c/0x100 [ 840.022810][T18725] do_syscall_64+0xcd/0x490 [ 840.022840][T18725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 840.022864][T18725] RIP: 0033:0x7f035138ebe9 [ 840.022882][T18725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 840.022905][T18725] RSP: 002b:00007f0352128038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 840.022928][T18725] RAX: ffffffffffffffda RBX: 00007f03515b6270 RCX: 00007f035138ebe9 [ 840.022944][T18725] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 840.022957][T18725] RBP: 00007f0352128090 R08: 0000000000000000 R09: 0000000000000000 [ 840.022972][T18725] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002 [ 840.022986][T18725] R13: 00007f03515b6308 R14: 00007f03515b6270 R15: 00007ffddc1ea728 [ 840.023017][T18725] [ 840.699455][ T30] audit: type=1800 audit(1755337787.080:113): pid=18766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3087" name="members" dev="configfs" ino=102036 res=0 errno=0 [ 843.145530][ T30] audit: type=1800 audit(1755337789.530:114): pid=18905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3102" name="members" dev="configfs" ino=102136 res=0 errno=0 [ 843.684912][T18938] ptrace attach of "./syz-executor exec"[18940] was attempted by "./syz-executor exec"[18938] [ 844.109138][T18956] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 844.118870][T18956] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 844.130340][T18956] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 844.139044][T18956] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 844.156648][T18956] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 844.190974][T18961] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 844.201061][T18956] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 844.221548][T18956] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 844.276114][T18956] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 844.349402][T18956] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 844.386911][T18956] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 844.426732][T18956] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 844.459444][T18956] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 844.483105][T18956] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 844.502669][T18956] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 844.523874][T18956] Bluetooth: hci6: Opcode 0x0c1a failed: -4 [ 844.533674][T18956] Bluetooth: hci6: Opcode 0x0406 failed: -4 [ 844.590799][T18956] Bluetooth: hci6: Opcode 0x0406 failed: -4 [ 846.129824][ T5183] Bluetooth: hci0: command 0x0406 tx timeout [ 846.208599][ T5183] Bluetooth: hci1: command 0x0406 tx timeout [ 846.214827][T16254] Bluetooth: hci3: command 0x0406 tx timeout [ 846.278595][ T5183] Bluetooth: hci4: command 0x0406 tx timeout [ 846.358810][ T5183] Bluetooth: hci2: command 0x0c1a tx timeout [ 846.521898][ T5183] Bluetooth: hci5: command 0x0c1a tx timeout [ 846.598418][ T5183] Bluetooth: hci6: command 0x0c1a tx timeout [ 847.448959][ T30] audit: type=1800 audit(1755337793.820:115): pid=19158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3124" name="members" dev="configfs" ino=102386 res=0 errno=0 [ 848.199175][ T5183] Bluetooth: hci0: command 0x0406 tx timeout [ 848.278590][ T5183] Bluetooth: hci1: command 0x0406 tx timeout [ 848.284720][T16254] Bluetooth: hci3: command 0x0406 tx timeout [ 848.358486][ T5183] Bluetooth: hci4: command 0x0406 tx timeout [ 848.438471][ T5183] Bluetooth: hci2: command 0x0c1a tx timeout [ 848.598788][ T5183] Bluetooth: hci5: command 0x0c1a tx timeout [ 848.678574][ T5183] Bluetooth: hci6: command 0x0c1a tx timeout [ 849.454220][T19252] random: crng reseeded on system resumption [ 850.528475][ T30] audit: type=1800 audit(1755337796.890:116): pid=19331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3139" name="members" dev="configfs" ino=103190 res=0 errno=0 [ 850.549122][ T5183] Bluetooth: hci2: command 0x0c1a tx timeout [ 850.681339][ T5183] Bluetooth: hci5: command 0x0c1a tx timeout [ 850.763349][ T5183] Bluetooth: hci6: command 0x0c1a tx timeout [ 851.057648][T19252] Restarting kernel threads ... [ 851.067114][T19252] Done restarting kernel threads. [ 851.353540][T19371] FAULT_INJECTION: forcing a failure. [ 851.353540][T19371] name failslab, interval 1, probability 0, space 0, times 0 [ 851.401806][T19371] CPU: 0 UID: 0 PID: 19371 Comm: syz.2.3145 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 851.401838][T19371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 851.401851][T19371] Call Trace: [ 851.401857][T19371] [ 851.401866][T19371] dump_stack_lvl+0x16c/0x1f0 [ 851.401898][T19371] should_fail_ex+0x512/0x640 [ 851.401929][T19371] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 851.401959][T19371] should_failslab+0xc2/0x120 [ 851.401987][T19371] __kmalloc_noprof+0xd2/0x510 [ 851.402015][T19371] tomoyo_realpath_from_path+0xc2/0x6e0 [ 851.402111][T19371] ? tomoyo_profile+0x47/0x60 [ 851.402129][T19371] tomoyo_path_number_perm+0x245/0x580 [ 851.402145][T19371] ? tomoyo_path_number_perm+0x237/0x580 [ 851.402162][T19371] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 851.402181][T19371] ? ksys_write+0x190/0x250 [ 851.402199][T19371] ? rcu_is_watching+0x12/0xc0 [ 851.402214][T19371] ? __fget_files+0x204/0x3c0 [ 851.402228][T19371] ? hook_file_ioctl_common+0x145/0x410 [ 851.402245][T19371] ? lock_release+0x201/0x2f0 [ 851.402263][T19371] ? __fget_files+0x20e/0x3c0 [ 851.402277][T19371] security_file_ioctl+0x9b/0x240 [ 851.402295][T19371] __x64_sys_ioctl+0xb7/0x210 [ 851.402319][T19371] do_syscall_64+0xcd/0x490 [ 851.402337][T19371] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 851.402351][T19371] RIP: 0033:0x7f035138ebe9 [ 851.402363][T19371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 851.402376][T19371] RSP: 002b:00007f035216a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 851.402389][T19371] RAX: ffffffffffffffda RBX: 00007f03515b6090 RCX: 00007f035138ebe9 [ 851.402399][T19371] RDX: 0000200000000000 RSI: 0000000040046109 RDI: 0000000000000007 [ 851.402407][T19371] RBP: 00007f035216a090 R08: 0000000000000000 R09: 0000000000000000 [ 851.402415][T19371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 851.402422][T19371] R13: 00007f03515b6128 R14: 00007f03515b6090 R15: 00007ffddc1ea728 [ 851.402435][T19371] [ 851.402517][T19371] ERROR: Out of memory at tomoyo_realpath_from_path. [ 852.739191][T19468] program syz.4.3150 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 853.379464][T19482] netlink: 'syz.5.3154': attribute type 17 has an invalid length. [ 853.399167][T19482] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3154'. [ 853.427891][T19487] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 855.752216][T19656] FAULT_INJECTION: forcing a failure. [ 855.752216][T19656] name failslab, interval 1, probability 0, space 0, times 0 [ 855.780781][T19656] CPU: 0 UID: 0 PID: 19656 Comm: syz.6.3173 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 855.780820][T19656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 855.780837][T19656] Call Trace: [ 855.780845][T19656] [ 855.780853][T19656] dump_stack_lvl+0x16c/0x1f0 [ 855.780887][T19656] should_fail_ex+0x512/0x640 [ 855.780922][T19656] should_failslab+0xc2/0x120 [ 855.780954][T19656] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 855.780984][T19656] ? ptlock_alloc+0x1f/0x70 [ 855.781007][T19656] ptlock_alloc+0x1f/0x70 [ 855.781028][T19656] pte_alloc_one+0x82/0x3a0 [ 855.781054][T19656] __pte_alloc+0x6d/0x3c0 [ 855.781085][T19656] ? __pfx___pte_alloc+0x10/0x10 [ 855.781115][T19656] ? _raw_spin_unlock+0x28/0x50 [ 855.781139][T19656] ? __pmd_alloc+0x3fb/0x930 [ 855.781172][T19656] copy_page_range+0x3b83/0x5c80 [ 855.781198][T19656] ? __do_sys_clone+0xce/0x120 [ 855.781239][T19656] ? mas_destroy+0x5de/0xa20 [ 855.781270][T19656] ? __pfx_copy_page_range+0x10/0x10 [ 855.781294][T19656] ? mas_store+0x7a9/0x1160 [ 855.781327][T19656] ? __pfx_mas_store+0x10/0x10 [ 855.781355][T19656] ? __vma_enter_locked+0x163/0x3f0 [ 855.781385][T19656] dup_mmap+0xe88/0x21d0 [ 855.781424][T19656] ? __pfx_dup_mmap+0x10/0x10 [ 855.781457][T19656] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 855.781493][T19656] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 855.781523][T19656] ? __pfx___might_resched+0x10/0x10 [ 855.781547][T19656] ? mm_init+0xd22/0x13a0 [ 855.781575][T19656] copy_process+0x4081/0x7690 [ 855.781604][T19656] ? __pfx___futex_wait+0x10/0x10 [ 855.781641][T19656] ? __pfx_copy_process+0x10/0x10 [ 855.781670][T19656] ? lock_release+0x201/0x2f0 [ 855.781701][T19656] ? futex_private_hash_put+0x11c/0x300 [ 855.781730][T19656] kernel_clone+0xfc/0x930 [ 855.781758][T19656] ? __pfx_kernel_clone+0x10/0x10 [ 855.781807][T19656] __do_sys_clone+0xce/0x120 [ 855.781837][T19656] ? __pfx___do_sys_clone+0x10/0x10 [ 855.781866][T19656] ? lock_release+0x201/0x2f0 [ 855.781899][T19656] ? xfd_validate_state+0x61/0x180 [ 855.781936][T19656] do_syscall_64+0xcd/0x490 [ 855.781966][T19656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.781993][T19656] RIP: 0033:0x7f9bd238ebe9 [ 855.782012][T19656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 855.782036][T19656] RSP: 002b:00007f9bd3157fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 855.782060][T19656] RAX: ffffffffffffffda RBX: 00007f9bd25b5fa0 RCX: 00007f9bd238ebe9 [ 855.782078][T19656] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 855.782094][T19656] RBP: 00007f9bd2411e19 R08: 0000000000000000 R09: 0000000000000000 [ 855.782110][T19656] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 855.782124][T19656] R13: 00007f9bd25b6038 R14: 00007f9bd25b5fa0 R15: 00007ffeae35e858 [ 855.782148][T19656] [ 856.996525][T19786] netlink: 'syz.6.3175': attribute type 1 has an invalid length. [ 858.105330][T19837] netlink: 'syz.6.3178': attribute type 1 has an invalid length. [ 858.147375][T19837] FAULT_INJECTION: forcing a failure. [ 858.147375][T19837] name failslab, interval 1, probability 0, space 0, times 0 [ 858.161616][T19837] CPU: 1 UID: 0 PID: 19837 Comm: syz.6.3178 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 858.161639][T19837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 858.161648][T19837] Call Trace: [ 858.161653][T19837] [ 858.161658][T19837] dump_stack_lvl+0x16c/0x1f0 [ 858.161681][T19837] should_fail_ex+0x512/0x640 [ 858.161701][T19837] ? evm_read_xattrs+0x175/0x410 [ 858.161717][T19837] should_failslab+0xc2/0x120 [ 858.161735][T19837] __kmalloc_noprof+0xd2/0x510 [ 858.161752][T19837] evm_read_xattrs+0x175/0x410 [ 858.161769][T19837] ? __pfx_evm_read_xattrs+0x10/0x10 [ 858.161785][T19837] vfs_readv+0x5be/0x8b0 [ 858.161800][T19837] ? __pfx_vfs_readv+0x10/0x10 [ 858.161816][T19837] ? __mutex_lock+0x1c4/0x10b0 [ 858.161833][T19837] ? ksys_write+0x190/0x250 [ 858.161847][T19837] ? rcu_is_watching+0x12/0xc0 [ 858.161862][T19837] ? __pfx___mutex_lock+0x10/0x10 [ 858.161881][T19837] ? __fget_files+0x20e/0x3c0 [ 858.161895][T19837] ? __fget_files+0x140/0x3c0 [ 858.161910][T19837] ? do_readv+0x132/0x340 [ 858.161922][T19837] do_readv+0x132/0x340 [ 858.161935][T19837] ? __pfx_do_readv+0x10/0x10 [ 858.161950][T19837] do_syscall_64+0xcd/0x490 [ 858.161967][T19837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 858.161981][T19837] RIP: 0033:0x7f9bd238ebe9 [ 858.161992][T19837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 858.162005][T19837] RSP: 002b:00007f9bd3158038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 858.162018][T19837] RAX: ffffffffffffffda RBX: 00007f9bd25b5fa0 RCX: 00007f9bd238ebe9 [ 858.162028][T19837] RDX: 0000000000000009 RSI: 00002000000018c0 RDI: 0000000000000006 [ 858.162036][T19837] RBP: 00007f9bd3158090 R08: 0000000000000000 R09: 0000000000000000 [ 858.162044][T19837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 858.162051][T19837] R13: 00007f9bd25b6038 R14: 00007f9bd25b5fa0 R15: 00007ffeae35e858 [ 858.162064][T19837] [ 858.868495][ T30] audit: type=1800 audit(1755337805.240:117): pid=19863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3181" name="members" dev="configfs" ino=103832 res=0 errno=0 [ 860.042085][T19928] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 860.170859][T19947] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 860.672738][T20007] FAULT_INJECTION: forcing a failure. [ 860.672738][T20007] name failslab, interval 1, probability 0, space 0, times 0 [ 860.686277][T20007] CPU: 1 UID: 0 PID: 20007 Comm: syz.2.3189 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 860.686316][T20007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 860.686332][T20007] Call Trace: [ 860.686341][T20007] [ 860.686350][T20007] dump_stack_lvl+0x16c/0x1f0 [ 860.686386][T20007] should_fail_ex+0x512/0x640 [ 860.686422][T20007] should_failslab+0xc2/0x120 [ 860.686452][T20007] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 860.686480][T20007] ? rcu_is_watching+0x12/0xc0 [ 860.686501][T20007] ? alloc_empty_file+0x55/0x1e0 [ 860.686537][T20007] alloc_empty_file+0x55/0x1e0 [ 860.686569][T20007] alloc_file_pseudo+0x13a/0x230 [ 860.686610][T20007] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 860.686646][T20007] ? do_raw_spin_unlock+0x172/0x230 [ 860.686681][T20007] __anon_inode_getfile+0xe8/0x280 [ 860.686710][T20007] anon_inode_getfile_fmode+0x37/0xa0 [ 860.686737][T20007] __do_sys_fanotify_init+0x96d/0xc00 [ 860.686769][T20007] do_syscall_64+0xcd/0x490 [ 860.686799][T20007] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.686826][T20007] RIP: 0033:0x7f035138ebe9 [ 860.686847][T20007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.686870][T20007] RSP: 002b:00007f035218b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 860.686894][T20007] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 860.686912][T20007] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005 [ 860.686926][T20007] RBP: 00007f0351411e19 R08: 0000000000000000 R09: 0000000000000000 [ 860.686939][T20007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.686953][T20007] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 860.686974][T20007] [ 861.724667][ T30] audit: type=1800 audit(1755337808.100:118): pid=20048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3192" name="members" dev="configfs" ino=104719 res=0 errno=0 [ 862.318420][T20066] sd 0:0:1:0: PR command failed: 1026 [ 862.323849][T20066] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 862.331722][T20066] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 863.212815][T20175] netlink: 'syz.6.3201': attribute type 1 has an invalid length. [ 863.632688][T20075] FAULT_INJECTION: forcing a failure. [ 863.632688][T20075] name failslab, interval 1, probability 0, space 0, times 0 [ 863.660117][T20075] CPU: 1 UID: 0 PID: 20075 Comm: syz.2.3198 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 863.660163][T20075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 863.660178][T20075] Call Trace: [ 863.660186][T20075] [ 863.660195][T20075] dump_stack_lvl+0x16c/0x1f0 [ 863.660232][T20075] should_fail_ex+0x512/0x640 [ 863.660269][T20075] should_failslab+0xc2/0x120 [ 863.660303][T20075] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 863.660333][T20075] ? ptlock_alloc+0x1f/0x70 [ 863.660360][T20075] ptlock_alloc+0x1f/0x70 [ 863.660382][T20075] pte_alloc_one+0x82/0x3a0 [ 863.660408][T20075] __pte_alloc+0x6d/0x3c0 [ 863.660439][T20075] ? __pfx___pte_alloc+0x10/0x10 [ 863.660471][T20075] ? _raw_spin_unlock+0x28/0x50 [ 863.660496][T20075] ? __pmd_alloc+0x3fb/0x930 [ 863.660532][T20075] copy_page_range+0x3b83/0x5c80 [ 863.660559][T20075] ? __do_sys_clone+0xce/0x120 [ 863.660606][T20075] ? mas_destroy+0x5de/0xa20 [ 863.660638][T20075] ? __pfx_copy_page_range+0x10/0x10 [ 863.660665][T20075] ? mas_store+0x7a9/0x1160 [ 863.660700][T20075] ? preempt_schedule_common+0x44/0xc0 [ 863.660731][T20075] ? __pfx_mas_store+0x10/0x10 [ 863.660762][T20075] ? __vma_enter_locked+0x163/0x3f0 [ 863.660794][T20075] dup_mmap+0xe88/0x21d0 [ 863.660835][T20075] ? __pfx_dup_mmap+0x10/0x10 [ 863.660870][T20075] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 863.660907][T20075] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 863.660932][T20075] ? __pfx___might_resched+0x10/0x10 [ 863.660955][T20075] ? mm_init+0xd22/0x13a0 [ 863.660981][T20075] copy_process+0x4081/0x7690 [ 863.661007][T20075] ? __pfx___futex_wait+0x10/0x10 [ 863.661048][T20075] ? __pfx_copy_process+0x10/0x10 [ 863.661078][T20075] ? lock_release+0x201/0x2f0 [ 863.661109][T20075] ? futex_private_hash_put+0x11c/0x300 [ 863.661147][T20075] kernel_clone+0xfc/0x930 [ 863.661175][T20075] ? __pfx_kernel_clone+0x10/0x10 [ 863.661212][T20075] __do_sys_clone+0xce/0x120 [ 863.661239][T20075] ? __pfx___do_sys_clone+0x10/0x10 [ 863.661268][T20075] ? lock_release+0x201/0x2f0 [ 863.661303][T20075] ? xfd_validate_state+0x61/0x180 [ 863.661342][T20075] do_syscall_64+0xcd/0x490 [ 863.661373][T20075] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 863.661398][T20075] RIP: 0033:0x7f035138ebe9 [ 863.661418][T20075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 863.661444][T20075] RSP: 002b:00007f035218afe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 863.661469][T20075] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 863.661487][T20075] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 863.661503][T20075] RBP: 00007f0351411e19 R08: 0000000000000000 R09: 0000000000000000 [ 863.661518][T20075] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 863.661533][T20075] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 863.661556][T20075] [ 864.573716][ T30] audit: type=1800 audit(1755337810.940:119): pid=20222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3206" name="members" dev="configfs" ino=104842 res=0 errno=0 [ 867.255905][ T30] audit: type=1800 audit(1755337813.640:120): pid=20339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3220" name="members" dev="configfs" ino=105090 res=0 errno=0 [ 867.698030][T20346] FAULT_INJECTION: forcing a failure. [ 867.698030][T20346] name failslab, interval 1, probability 0, space 0, times 0 [ 867.718951][T20346] CPU: 1 UID: 0 PID: 20346 Comm: syz.6.3222 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 867.718977][T20346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 867.718986][T20346] Call Trace: [ 867.718991][T20346] [ 867.718997][T20346] dump_stack_lvl+0x16c/0x1f0 [ 867.719018][T20346] should_fail_ex+0x512/0x640 [ 867.719047][T20346] should_failslab+0xc2/0x120 [ 867.719066][T20346] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 867.719083][T20346] ? getname_flags.part.0+0x4c/0x550 [ 867.719106][T20346] getname_flags.part.0+0x4c/0x550 [ 867.719127][T20346] getname_flags+0x93/0xf0 [ 867.719141][T20346] do_sys_openat2+0xb8/0x1d0 [ 867.719161][T20346] ? __pfx_do_sys_openat2+0x10/0x10 [ 867.719181][T20346] ? lock_release+0x201/0x2f0 [ 867.719201][T20346] __x64_sys_openat+0x174/0x210 [ 867.719221][T20346] ? __pfx___x64_sys_openat+0x10/0x10 [ 867.719250][T20346] do_syscall_64+0xcd/0x490 [ 867.719269][T20346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.719284][T20346] RIP: 0033:0x7f9bd238d550 [ 867.719296][T20346] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 867.719310][T20346] RSP: 002b:00007f9bd3157f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 867.719324][T20346] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9bd238d550 [ 867.719333][T20346] RDX: 0000000000000000 RSI: 00007f9bd3157fa0 RDI: 00000000ffffff9c [ 867.719342][T20346] RBP: 00007f9bd3157fa0 R08: 0000000000000000 R09: 0000000000000000 [ 867.719350][T20346] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 867.719358][T20346] R13: 00007f9bd25b6038 R14: 00007f9bd25b5fa0 R15: 00007ffeae35e858 [ 867.719371][T20346] [ 867.901028][ C1] vkms_vblank_simulate: vblank timer overrun [ 868.164515][T20391] FAULT_INJECTION: forcing a failure. [ 868.164515][T20391] name failslab, interval 1, probability 0, space 0, times 0 [ 868.189693][T20391] CPU: 0 UID: 0 PID: 20391 Comm: syz.2.3227 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 868.189730][T20391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 868.189743][T20391] Call Trace: [ 868.189751][T20391] [ 868.189760][T20391] dump_stack_lvl+0x16c/0x1f0 [ 868.189791][T20391] should_fail_ex+0x512/0x640 [ 868.189824][T20391] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 868.189855][T20391] should_failslab+0xc2/0x120 [ 868.189883][T20391] __kmalloc_noprof+0xd2/0x510 [ 868.189908][T20391] ? vsnprintf+0x318/0x1160 [ 868.189933][T20391] tomoyo_realpath_from_path+0xc2/0x6e0 [ 868.189968][T20391] tomoyo_check_open_permission+0x2ab/0x3c0 [ 868.189996][T20391] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 868.190038][T20391] ? rcu_is_watching+0x12/0xc0 [ 868.190064][T20391] ? lock_release+0x201/0x2f0 [ 868.190090][T20391] ? rcu_is_watching+0x12/0xc0 [ 868.190115][T20391] tomoyo_file_open+0x6b/0x90 [ 868.190137][T20391] security_file_open+0x84/0x1e0 [ 868.190168][T20391] do_dentry_open+0x596/0x1530 [ 868.190200][T20391] vfs_open+0x82/0x3f0 [ 868.190233][T20391] path_openat+0x1de4/0x2cb0 [ 868.190264][T20391] ? __pfx_path_openat+0x10/0x10 [ 868.190294][T20391] do_filp_open+0x20b/0x470 [ 868.190319][T20391] ? __pfx_do_filp_open+0x10/0x10 [ 868.190351][T20391] ? __pfx_kfree_link+0x10/0x10 [ 868.190387][T20391] ? alloc_fd+0x471/0x7d0 [ 868.190414][T20391] do_sys_openat2+0x11b/0x1d0 [ 868.190446][T20391] ? __pfx_do_sys_openat2+0x10/0x10 [ 868.190485][T20391] __x64_sys_openat+0x174/0x210 [ 868.190517][T20391] ? __pfx___x64_sys_openat+0x10/0x10 [ 868.190557][T20391] do_syscall_64+0xcd/0x490 [ 868.190586][T20391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 868.190608][T20391] RIP: 0033:0x7f035138d550 [ 868.190625][T20391] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 868.190647][T20391] RSP: 002b:00007f035218afe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 868.190670][T20391] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f035138d550 [ 868.190696][T20391] RDX: 0000000000000002 RSI: 00007f03514120d3 RDI: 00000000ffffff9c [ 868.190711][T20391] RBP: 00007f03514120d3 R08: 0000000000000000 R09: 00007f035218c000 [ 868.190726][T20391] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 868.190740][T20391] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 868.190764][T20391] [ 868.193098][T20391] ERROR: Out of memory at tomoyo_realpath_from_path. [ 868.457712][T20391] FAULT_INJECTION: forcing a failure. [ 868.457712][T20391] name failslab, interval 1, probability 0, space 0, times 0 [ 868.472954][T20391] CPU: 1 UID: 0 PID: 20391 Comm: syz.2.3227 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 868.472988][T20391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 868.473000][T20391] Call Trace: [ 868.473008][T20391] [ 868.473015][T20391] dump_stack_lvl+0x16c/0x1f0 [ 868.473047][T20391] should_fail_ex+0x512/0x640 [ 868.473078][T20391] should_failslab+0xc2/0x120 [ 868.473105][T20391] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 868.473129][T20391] ? security_inode_alloc+0x3b/0x2b0 [ 868.473156][T20391] security_inode_alloc+0x3b/0x2b0 [ 868.473179][T20391] inode_init_always_gfp+0xce4/0x1030 [ 868.473206][T20391] alloc_inode+0x86/0x240 [ 868.473236][T20391] create_pipe_files+0x4c/0x9a0 [ 868.473267][T20391] do_pipe2+0xaf/0x1c0 [ 868.473292][T20391] ? __pfx_do_pipe2+0x10/0x10 [ 868.473319][T20391] ? __pfx_ksys_write+0x10/0x10 [ 868.473347][T20391] __x64_sys_pipe+0x33/0x50 [ 868.473372][T20391] do_syscall_64+0xcd/0x490 [ 868.473400][T20391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 868.473423][T20391] RIP: 0033:0x7f035138ebe9 [ 868.473441][T20391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 868.473463][T20391] RSP: 002b:00007f035218b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 868.473484][T20391] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 868.473499][T20391] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 868.473512][T20391] RBP: 00007f035218b090 R08: 0000000000000000 R09: 0000000000000000 [ 868.473527][T20391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 868.473541][T20391] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 868.473565][T20391] [ 868.654166][ C1] vkms_vblank_simulate: vblank timer overrun [ 868.721724][T20402] FAULT_INJECTION: forcing a failure. [ 868.721724][T20402] name failslab, interval 1, probability 0, space 0, times 0 [ 868.759319][T20402] CPU: 1 UID: 0 PID: 20402 Comm: syz.5.3230 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 868.759354][T20402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 868.759367][T20402] Call Trace: [ 868.759375][T20402] [ 868.759383][T20402] dump_stack_lvl+0x16c/0x1f0 [ 868.759416][T20402] should_fail_ex+0x512/0x640 [ 868.759449][T20402] ? alloc_pipe_info+0x1ec/0x590 [ 868.759477][T20402] should_failslab+0xc2/0x120 [ 868.759507][T20402] __kmalloc_noprof+0xd2/0x510 [ 868.759536][T20402] alloc_pipe_info+0x1ec/0x590 [ 868.759566][T20402] splice_direct_to_actor+0x77d/0xa30 [ 868.759591][T20402] ? kstrtouint_from_user+0x13c/0x1d0 [ 868.759618][T20402] ? __pfx_direct_splice_actor+0x10/0x10 [ 868.759643][T20402] ? __pfx_aa_file_perm+0x10/0x10 [ 868.759677][T20402] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 868.759700][T20402] ? lock_release+0x201/0x2f0 [ 868.759732][T20402] do_splice_direct+0x174/0x240 [ 868.759756][T20402] ? __pfx_do_splice_direct+0x10/0x10 [ 868.759780][T20402] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 868.759803][T20402] ? bpf_lsm_file_permission+0x9/0x10 [ 868.759835][T20402] ? security_file_permission+0x71/0x210 [ 868.759866][T20402] ? rw_verify_area+0xcf/0x6c0 [ 868.759898][T20402] do_sendfile+0xb06/0xe50 [ 868.759925][T20402] ? __pfx_do_sendfile+0x10/0x10 [ 868.759950][T20402] ? __fget_files+0x20e/0x3c0 [ 868.759978][T20402] __x64_sys_sendfile64+0x1d8/0x220 [ 868.760007][T20402] ? ksys_write+0x1ac/0x250 [ 868.760032][T20402] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 868.760067][T20402] do_syscall_64+0xcd/0x490 [ 868.760097][T20402] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 868.760121][T20402] RIP: 0033:0x7f4f3db8ebe9 [ 868.760139][T20402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 868.760162][T20402] RSP: 002b:00007f4f3e960038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 868.760185][T20402] RAX: ffffffffffffffda RBX: 00007f4f3ddb5fa0 RCX: 00007f4f3db8ebe9 [ 868.760201][T20402] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 868.760215][T20402] RBP: 00007f4f3e960090 R08: 0000000000000000 R09: 0000000000000000 [ 868.760230][T20402] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001 [ 868.760244][T20402] R13: 00007f4f3ddb6038 R14: 00007f4f3ddb5fa0 R15: 00007ffcf95c0ca8 [ 868.760268][T20402] [ 869.003430][ C1] vkms_vblank_simulate: vblank timer overrun [ 869.076636][T20411] FAULT_INJECTION: forcing a failure. [ 869.076636][T20411] name failslab, interval 1, probability 0, space 0, times 0 [ 869.090410][T20411] CPU: 1 UID: 0 PID: 20411 Comm: syz.5.3233 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 869.090435][T20411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 869.090444][T20411] Call Trace: [ 869.090449][T20411] [ 869.090454][T20411] dump_stack_lvl+0x16c/0x1f0 [ 869.090477][T20411] should_fail_ex+0x512/0x640 [ 869.090498][T20411] ? alloc_pipe_info+0x1ec/0x590 [ 869.090517][T20411] should_failslab+0xc2/0x120 [ 869.090536][T20411] __kmalloc_noprof+0xd2/0x510 [ 869.090555][T20411] alloc_pipe_info+0x1ec/0x590 [ 869.090573][T20411] create_pipe_files+0x8c/0x9a0 [ 869.090592][T20411] do_pipe2+0xaf/0x1c0 [ 869.090609][T20411] ? __pfx_do_pipe2+0x10/0x10 [ 869.090627][T20411] ? xfd_validate_state+0x61/0x180 [ 869.090656][T20411] ? __pfx_ksys_write+0x10/0x10 [ 869.090677][T20411] __x64_sys_pipe+0x33/0x50 [ 869.090697][T20411] do_syscall_64+0xcd/0x490 [ 869.090716][T20411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 869.090731][T20411] RIP: 0033:0x7f4f3db8ebe9 [ 869.090743][T20411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 869.090757][T20411] RSP: 002b:00007f4f3e960038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016 [ 869.090771][T20411] RAX: ffffffffffffffda RBX: 00007f4f3ddb5fa0 RCX: 00007f4f3db8ebe9 [ 869.090781][T20411] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 869.090790][T20411] RBP: 00007f4f3dc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 869.090798][T20411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 869.090806][T20411] R13: 00007f4f3ddb6038 R14: 00007f4f3ddb5fa0 R15: 00007ffcf95c0ca8 [ 869.090819][T20411] [ 869.268762][ C1] vkms_vblank_simulate: vblank timer overrun syzkaller syzkaller login: [ 869.683099][T20406] ima: policy update failed [ 869.688507][ T30] audit: type=1802 audit(1755337816.070:121): pid=20406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3232" res=0 errno=0 [ 869.798754][ T30] audit: type=1800 audit(1755337816.170:122): pid=20424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3234" name="members" dev="configfs" ino=104267 res=0 errno=0 [ 870.218077][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.228974][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 872.350475][T20494] FAULT_INJECTION: forcing a failure. [ 872.350475][T20494] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 872.417220][T20494] CPU: 1 UID: 0 PID: 20494 Comm: syz.2.3249 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 872.417253][T20494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 872.417266][T20494] Call Trace: [ 872.417274][T20494] [ 872.417282][T20494] dump_stack_lvl+0x16c/0x1f0 [ 872.417312][T20494] should_fail_ex+0x512/0x640 [ 872.417353][T20494] should_fail_alloc_page+0xe7/0x130 [ 872.417383][T20494] prepare_alloc_pages+0x3c2/0x610 [ 872.417416][T20494] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 872.417445][T20494] ? __pfx_page_vma_mapped_walk+0x10/0x10 [ 872.417475][T20494] ? folio_remove_rmap_ptes+0x138/0x970 [ 872.417501][T20494] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 872.417535][T20494] ? __pfx_down_read_trylock+0x10/0x10 [ 872.417567][T20494] ? __up_read+0x1f8/0x750 [ 872.417596][T20494] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 872.417629][T20494] ? policy_nodemask+0xea/0x4e0 [ 872.417659][T20494] alloc_pages_mpol+0x1fb/0x550 [ 872.417687][T20494] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 872.417714][T20494] ? rmap_walk_anon+0x503/0x710 [ 872.417750][T20494] folio_alloc_mpol_noprof+0x36/0x2f0 [ 872.417782][T20494] alloc_migration_target_by_mpol+0x246/0x500 [ 872.417815][T20494] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 872.417848][T20494] ? __pfx_invalid_migration_vma+0x10/0x10 [ 872.417879][T20494] ? __pfx___might_resched+0x10/0x10 [ 872.417902][T20494] ? folio_get_anon_vma+0xdd/0x760 [ 872.417928][T20494] migrate_pages_batch+0x39c/0x3bd0 [ 872.417961][T20494] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 872.418002][T20494] ? __pfx_migrate_pages_batch+0x10/0x10 [ 872.418035][T20494] ? __pfx_walk_pgd_range+0x10/0x10 [ 872.418063][T20494] migrate_pages_sync+0x12d/0x8a0 [ 872.418097][T20494] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 872.418133][T20494] ? queue_pages_test_walk+0x279/0x410 [ 872.418163][T20494] ? __pfx_migrate_pages_sync+0x10/0x10 [ 872.418193][T20494] ? walk_page_test+0x9b/0x180 [ 872.418222][T20494] ? walk_page_range_mm+0x235/0xb40 [ 872.418248][T20494] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 872.418282][T20494] migrate_pages+0x1b67/0x23b0 [ 872.418314][T20494] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 872.418359][T20494] ? __pfx_migrate_pages+0x10/0x10 [ 872.418388][T20494] ? mas_next_slot+0x12d3/0x21b0 [ 872.418418][T20494] ? rcu_is_watching+0x12/0xc0 [ 872.418445][T20494] ? up_write+0x1b2/0x520 [ 872.418476][T20494] do_mbind+0x6f0/0xf30 [ 872.418511][T20494] ? __pfx_do_mbind+0x10/0x10 [ 872.418539][T20494] ? ksys_write+0x190/0x250 [ 872.418563][T20494] ? rcu_is_watching+0x12/0xc0 [ 872.418585][T20494] ? lock_release+0x201/0x2f0 [ 872.418615][T20494] ? __mutex_unlock_slowpath+0x163/0x800 [ 872.418648][T20494] ? __pfx_get_nodes+0x10/0x10 [ 872.418673][T20494] ? __fget_files+0x20e/0x3c0 [ 872.418700][T20494] kernel_mbind+0x1e3/0x1f0 [ 872.418734][T20494] ? __pfx_kernel_mbind+0x10/0x10 [ 872.418770][T20494] do_syscall_64+0xcd/0x490 [ 872.418799][T20494] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 872.418823][T20494] RIP: 0033:0x7f035138ebe9 [ 872.418841][T20494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 872.418861][T20494] RSP: 002b:00007f035218b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 872.418884][T20494] RAX: ffffffffffffffda RBX: 00007f03515b5fa0 RCX: 00007f035138ebe9 [ 872.418899][T20494] RDX: 0000000100000000 RSI: 0000000100000004 RDI: 0000000000002000 [ 872.418913][T20494] RBP: 00007f035218b090 R08: 0000000000000005 R09: 0000000000000002 [ 872.418927][T20494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 872.418939][T20494] R13: 00007f03515b6038 R14: 00007f03515b5fa0 R15: 00007ffddc1ea728 [ 872.418957][T20494] [ 873.739458][T20530] FAULT_INJECTION: forcing a failure. [ 873.739458][T20530] name failslab, interval 1, probability 0, space 0, times 0 [ 873.753973][T20530] CPU: 1 UID: 0 PID: 20530 Comm: syz.2.3251 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 873.754012][T20530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 873.754027][T20530] Call Trace: [ 873.754036][T20530] [ 873.754044][T20530] dump_stack_lvl+0x16c/0x1f0 [ 873.754081][T20530] should_fail_ex+0x512/0x640 [ 873.754117][T20530] should_failslab+0xc2/0x120 [ 873.754147][T20530] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 873.754176][T20530] ? __d_alloc+0x32/0xae0 [ 873.754204][T20530] __d_alloc+0x32/0xae0 [ 873.754240][T20530] d_alloc_parallel+0x111/0x1480 [ 873.754276][T20530] ? kasan_save_free_info+0x3b/0x60 [ 873.754313][T20530] ? __kasan_slab_free+0x60/0x70 [ 873.754340][T20530] ? walk_component+0x1a2/0x5b0 [ 873.754362][T20530] ? link_path_walk+0x511/0xe20 [ 873.754386][T20530] ? path_openat+0x1b0/0x2cb0 [ 873.754412][T20530] ? do_sys_openat2+0x11b/0x1d0 [ 873.754447][T20530] ? do_syscall_64+0xcd/0x490 [ 873.754475][T20530] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.754502][T20530] ? __pfx_d_alloc_parallel+0x10/0x10 [ 873.754540][T20530] ? lockdep_init_map_type+0x5c/0x280 [ 873.754575][T20530] ? lockdep_init_map_type+0x5c/0x280 [ 873.754609][T20530] __lookup_slow+0x193/0x460 [ 873.754643][T20530] ? __pfx___lookup_slow+0x10/0x10 [ 873.754687][T20530] ? lookup_fast+0x156/0x610 [ 873.754717][T20530] walk_component+0x353/0x5b0 [ 873.754743][T20530] link_path_walk+0x627/0xe20 [ 873.754775][T20530] path_openat+0x1b0/0x2cb0 [ 873.754801][T20530] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.754832][T20530] ? __pfx_path_openat+0x10/0x10 [ 873.754864][T20530] do_filp_open+0x20b/0x470 [ 873.754891][T20530] ? __pfx_do_filp_open+0x10/0x10 [ 873.754925][T20530] ? __pfx_kfree_link+0x10/0x10 [ 873.754960][T20530] ? alloc_fd+0x471/0x7d0 [ 873.754985][T20530] do_sys_openat2+0x11b/0x1d0 [ 873.755017][T20530] ? __pfx_do_sys_openat2+0x10/0x10 [ 873.755051][T20530] ? lock_release+0x201/0x2f0 [ 873.755082][T20530] __x64_sys_openat+0x174/0x210 [ 873.755116][T20530] ? __pfx___x64_sys_openat+0x10/0x10 [ 873.755148][T20530] ? do_user_addr_fault+0x843/0x1370 [ 873.755184][T20530] do_syscall_64+0xcd/0x490 [ 873.755213][T20530] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.755247][T20530] RIP: 0033:0x7f035138d550 [ 873.755265][T20530] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 873.755290][T20530] RSP: 002b:00007f0352169f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 873.755308][T20530] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f035138d550 [ 873.755318][T20530] RDX: 0000000000000002 RSI: 00007f0352169fa0 RDI: 00000000ffffff9c [ 873.755327][T20530] RBP: 00007f0352169fa0 R08: 0000000000000000 R09: 0000000000000000 [ 873.755336][T20530] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 873.755345][T20530] R13: 00007f03515b6128 R14: 00007f03515b6090 R15: 00007ffddc1ea728 [ 873.755359][T20530] syzkaller syzkaller login: [ 875.668429][ T30] audit: type=1800 audit(1755337822.030:123): pid=20612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.3258" name="members" dev="configfs" ino=104401 res=0 errno=0 [ 875.994074][ T30] audit: type=1800 audit(1755337822.380:124): pid=20625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3260" name="members" dev="configfs" ino=104414 res=0 errno=0 [ 876.823495][T20628] FAULT_INJECTION: forcing a failure. [ 876.823495][T20628] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 876.838295][T20628] CPU: 1 UID: 0 PID: 20628 Comm: syz.6.3261 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 876.838334][T20628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 876.838347][T20628] Call Trace: [ 876.838354][T20628] [ 876.838362][T20628] dump_stack_lvl+0x16c/0x1f0 [ 876.838396][T20628] should_fail_ex+0x512/0x640 [ 876.838429][T20628] core_sys_select+0x4c5/0xc10 [ 876.838458][T20628] ? __pfx_core_sys_select+0x10/0x10 [ 876.838485][T20628] ? proc_fail_nth_write+0x9f/0x220 [ 876.838521][T20628] ? __fget_files+0x204/0x3c0 [ 876.838543][T20628] ? rcu_is_watching+0x12/0xc0 [ 876.838567][T20628] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 876.838600][T20628] kern_select+0x15d/0x1e0 [ 876.838623][T20628] ? __pfx_kern_select+0x10/0x10 [ 876.838649][T20628] ? __pfx_ksys_write+0x10/0x10 [ 876.838677][T20628] __x64_sys_select+0xbd/0x160 [ 876.838700][T20628] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 876.838735][T20628] do_syscall_64+0xcd/0x490 [ 876.838764][T20628] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 876.838788][T20628] RIP: 0033:0x7f9bd238ebe9 [ 876.838806][T20628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 876.838829][T20628] RSP: 002b:00007f9bd3116038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 876.838851][T20628] RAX: ffffffffffffffda RBX: 00007f9bd25b6180 RCX: 00007f9bd238ebe9 [ 876.838867][T20628] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 876.838881][T20628] RBP: 00007f9bd3116090 R08: 0000000000000000 R09: 0000000000000000 [ 876.838895][T20628] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 876.838910][T20628] R13: 00007f9bd25b6218 R14: 00007f9bd25b6180 R15: 00007ffeae35e858 [ 876.838933][T20628] [ 877.776768][T20682] FAULT_INJECTION: forcing a failure. [ 877.776768][T20682] name failslab, interval 1, probability 0, space 0, times 0 [ 877.826175][T20682] CPU: 1 UID: 0 PID: 20682 Comm: syz.4.3263 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 877.826223][T20682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 877.826238][T20682] Call Trace: [ 877.826246][T20682] [ 877.826256][T20682] dump_stack_lvl+0x16c/0x1f0 [ 877.826292][T20682] should_fail_ex+0x512/0x640 [ 877.826329][T20682] should_failslab+0xc2/0x120 [ 877.826361][T20682] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 877.826392][T20682] ? sk_prot_alloc+0x60/0x2a0 [ 877.826431][T20682] sk_prot_alloc+0x60/0x2a0 [ 877.826466][T20682] sk_alloc+0x36/0xc20 [ 877.826493][T20682] inet_create+0x3a1/0x1040 [ 877.826517][T20682] ? inet_create+0x93/0x1040 [ 877.826542][T20682] __sock_create+0x335/0x8d0 [ 877.826567][T20682] __sys_socket+0x14d/0x260 [ 877.826591][T20682] ? __pfx___sys_socket+0x10/0x10 [ 877.826615][T20682] ? xfd_validate_state+0x61/0x180 [ 877.826648][T20682] ? __pfx_ksys_read+0x10/0x10 [ 877.826674][T20682] __x64_sys_socket+0x72/0xb0 [ 877.826697][T20682] do_syscall_64+0xcd/0x490 [ 877.826729][T20682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 877.826751][T20682] RIP: 0033:0x7f5a1598ebe9 [ 877.826763][T20682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 877.826776][T20682] RSP: 002b:00007f5a1674b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 877.826790][T20682] RAX: ffffffffffffffda RBX: 00007f5a15bb5fa0 RCX: 00007f5a1598ebe9 [ 877.826799][T20682] RDX: 0000000000000100 RSI: 0000000000000003 RDI: 0000000000000002 [ 877.826807][T20682] RBP: 00007f5a15a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 877.826815][T20682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 877.826824][T20682] R13: 00007f5a15bb6038 R14: 00007f5a15bb5fa0 R15: 00007ffcaacd87a8 [ 877.826837][T20682] [ 878.674024][ T30] audit: type=1800 audit(1755337825.060:125): pid=20812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3267" name="members" dev="configfs" ino=106600 res=0 errno=0 syzkaller syzkaller login: [ 879.705424][T20840] FAULT_INJECTION: forcing a failure. [ 879.705424][T20840] name failslab, interval 1, probability 0, space 0, times 0 [ 879.738522][T20840] CPU: 1 UID: 0 PID: 20840 Comm: syz.6.3273 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 879.738546][T20840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 879.738555][T20840] Call Trace: [ 879.738560][T20840] [ 879.738565][T20840] dump_stack_lvl+0x16c/0x1f0 [ 879.738586][T20840] should_fail_ex+0x512/0x640 [ 879.738606][T20840] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 879.738626][T20840] should_failslab+0xc2/0x120 [ 879.738644][T20840] __kmalloc_noprof+0xd2/0x510 [ 879.738661][T20840] tomoyo_realpath_from_path+0xc2/0x6e0 [ 879.738680][T20840] ? tomoyo_profile+0x47/0x60 [ 879.738693][T20840] tomoyo_path_number_perm+0x245/0x580 [ 879.738708][T20840] ? tomoyo_path_number_perm+0x237/0x580 [ 879.738726][T20840] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 879.738744][T20840] ? ksys_write+0x190/0x250 [ 879.738764][T20840] ? rcu_is_watching+0x12/0xc0 [ 879.738778][T20840] ? __fget_files+0x204/0x3c0 [ 879.738791][T20840] ? hook_file_ioctl_common+0x145/0x410 [ 879.738808][T20840] ? lock_release+0x201/0x2f0 [ 879.738826][T20840] ? __fget_files+0x20e/0x3c0 [ 879.738841][T20840] security_file_ioctl+0x9b/0x240 [ 879.738858][T20840] __x64_sys_ioctl+0xb7/0x210 [ 879.738879][T20840] do_syscall_64+0xcd/0x490 [ 879.738896][T20840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 879.738911][T20840] RIP: 0033:0x7f9bd238ebe9 [ 879.738922][T20840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 879.738935][T20840] RSP: 002b:00007f9bd3137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 879.738948][T20840] RAX: ffffffffffffffda RBX: 00007f9bd25b6090 RCX: 00007f9bd238ebe9 [ 879.738957][T20840] RDX: 0000000000000000 RSI: 0000000040026f33 RDI: 0000000000000003 [ 879.738966][T20840] RBP: 00007f9bd3137090 R08: 0000000000000000 R09: 0000000000000000 [ 879.738974][T20840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 879.738982][T20840] R13: 00007f9bd25b6128 R14: 00007f9bd25b6090 R15: 00007ffeae35e858 [ 879.739000][T20840] [ 879.739006][T20840] ERROR: Out of memory at tomoyo_realpath_from_path. [ 880.241973][T20848] nvme_fabrics: missing parameter 'transport=%s' [ 880.250733][T20848] nvme_fabrics: missing parameter 'nqn=%s' [ 882.234218][T20988] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input35 [ 882.636327][T20977] ima: policy update failed [ 882.688460][ T30] audit: type=1802 audit(1755337829.070:126): pid=20977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.3284" res=0 errno=0 [ 883.233180][T21009] netlink: 'syz.6.3287': attribute type 1 has an invalid length. [ 883.402674][T21012] nvme_fabrics: missing parameter 'transport=%s' [ 883.432163][T21012] nvme_fabrics: missing parameter 'nqn=%s' [ 884.954297][ T31] INFO: task syz-executor:10330 blocked for more than 143 seconds. [ 884.967856][ T31] Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 [ 884.975773][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 884.984815][ T31] task:syz-executor state:D stack:24440 pid:10330 tgid:10330 ppid:1 task_flags:0x400140 flags:0x00004004 [ 884.997146][ T31] Call Trace: [ 885.000828][ T31] [ 885.003776][ T31] __schedule+0x1190/0x5de0 [ 885.008609][ T31] ? stack_trace_snprint+0x70/0xd0 [ 885.014919][ T31] ? stack_depot_save_flags+0x29/0x9c0 [ 885.021637][ T31] ? __pfx___schedule+0x10/0x10 [ 885.026583][ T31] ? kasan_save_stack+0x33/0x60 [ 885.032937][ T31] ? kasan_record_aux_stack+0xa7/0xc0 [ 885.038585][ T31] ? __call_rcu_common.constprop.0+0xa5/0xa10 [ 885.045235][ T31] ? deactivate_locked_super+0x94/0x1a0 [ 885.055968][ T31] ? schedule+0x2d7/0x3a0 [ 885.062918][ T31] ? rcu_is_watching+0x12/0xc0 [ 885.072227][ T31] ? lock_release+0x201/0x2f0 [ 885.081405][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 885.128084][ T31] schedule+0xe7/0x3a0 [ 885.132522][ T31] schedule_preempt_disabled+0x13/0x30 [ 885.138093][ T31] __mutex_lock+0x82a/0x10b0 [ 885.142838][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 885.148204][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 885.153386][ T31] ? net_generic+0xea/0x2a0 [ 885.157960][ T31] ? rcu_is_watching+0x12/0xc0 [ 885.162867][ T31] ? lock_release+0x201/0x2f0 [ 885.167656][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 885.175082][ T31] nfsd_shutdown_threads+0x5b/0xf0 [ 885.193995][ T31] nfsd_umount+0x48/0xe0 [ 885.198288][ T31] deactivate_locked_super+0xc1/0x1a0 [ 885.242834][ T31] deactivate_super+0xde/0x100 [ 885.268545][ T31] cleanup_mnt+0x225/0x450 [ 885.273185][ T31] task_work_run+0x150/0x240 [ 885.277923][ T31] ? __pfx_task_work_run+0x10/0x10 [ 885.285088][ T31] ? __pfx___x64_sys_umount+0x10/0x10 [ 885.291458][ T31] exit_to_user_mode_loop+0xeb/0x110 [ 885.297229][ T31] do_syscall_64+0x3f6/0x490 [ 885.303637][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 885.311038][ T31] RIP: 0033:0x7fe5c938ff17 [ 885.315588][ T31] RSP: 002b:00007fff48654b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 885.326398][ T31] RAX: 0000000000000000 RBX: 00007fe5c9411c05 RCX: 00007fe5c938ff17 [ 885.380697][ T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff48655cd0 [ 885.403962][ T31] RBP: 00007fff48655cbc R08: 0000000000000000 R09: 0000000000000000 [ 885.422152][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff48655cd0 [ 885.514655][ T31] R13: 00007fe5c9411c05 R14: 00000000000b4bf6 R15: 00007fff48655d10 [ 885.525010][ T31] [ 885.529374][ T31] INFO: lockdep is turned off. [ 885.534255][ T31] NMI backtrace for cpu 0 [ 885.534274][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 885.534299][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 885.534310][ T31] Call Trace: [ 885.534317][ T31] [ 885.534324][ T31] dump_stack_lvl+0x116/0x1f0 [ 885.534355][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 885.534377][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 885.534410][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 885.534433][ T31] watchdog+0xf0e/0x1260 [ 885.534467][ T31] ? __pfx_watchdog+0x10/0x10 [ 885.534496][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 885.534532][ T31] ? __kthread_parkme+0x19e/0x250 [ 885.534561][ T31] ? __pfx_watchdog+0x10/0x10 [ 885.534591][ T31] kthread+0x3c2/0x780 [ 885.534620][ T31] ? __pfx_kthread+0x10/0x10 [ 885.534647][ T31] ? rcu_is_watching+0x12/0xc0 [ 885.534666][ T31] ? __pfx_kthread+0x10/0x10 [ 885.534695][ T31] ret_from_fork+0x5d4/0x6f0 [ 885.534726][ T31] ? __pfx_kthread+0x10/0x10 [ 885.534757][ T31] ret_from_fork_asm+0x1a/0x30 [ 885.534795][ T31] [ 885.534822][ T31] Sending NMI from CPU 0 to CPUs 1: [ 885.658760][ C1] NMI backtrace for cpu 1 [ 885.658779][ C1] CPU: 1 UID: 0 PID: 18780 Comm: kworker/u8:22 Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 885.658810][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 885.658826][ C1] Workqueue: bat_events batadv_nc_worker [ 885.658854][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x10/0x70 [ 885.658892][ C1] Code: 00 00 5b e9 52 75 25 03 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 34 24 65 48 8b 15 28 b0 1a 12 <65> 8b 05 39 b0 1a 12 a9 00 01 ff 00 74 1d f6 c4 01 74 43 a9 00 00 [ 885.658916][ C1] RSP: 0018:ffffc900127a7ab0 EFLAGS: 00000246 [ 885.658934][ C1] RAX: 1ffff1100f257d3f RBX: ffff8880792be9f8 RCX: ffffffff8b5d6464 [ 885.658951][ C1] RDX: ffff8880331dbc00 RSI: ffffffff8b5d655a RDI: 0000000000000005 [ 885.658966][ C1] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 885.658980][ C1] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000 [ 885.658994][ C1] R13: 0000000000000014 R14: 000000000000003f R15: ffffffff8b5d56f0 [ 885.659010][ C1] FS: 0000000000000000(0000) GS:ffff8881247c4000(0000) knlGS:0000000000000000 [ 885.659032][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 885.659047][ C1] CR2: 000055557c5b05c8 CR3: 0000000074a82000 CR4: 00000000003526f0 [ 885.659062][ C1] Call Trace: [ 885.659070][ C1] [ 885.659077][ C1] batadv_nc_process_nc_paths.part.0+0x1ea/0x3e0 [ 885.659110][ C1] ? rcu_is_watching+0x12/0xc0 [ 885.659137][ C1] batadv_nc_worker+0xd71/0x1030 [ 885.659162][ C1] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 885.659192][ C1] ? __pfx_batadv_nc_worker+0x10/0x10 [ 885.659217][ C1] ? rcu_is_watching+0x12/0xc0 [ 885.659246][ C1] ? lock_acquire+0x2cd/0x350 [ 885.659275][ C1] ? rcu_is_watching+0x12/0xc0 [ 885.659298][ C1] ? rcu_is_watching+0x12/0xc0 [ 885.659323][ C1] process_one_work+0x9cc/0x1b70 [ 885.659363][ C1] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 885.659393][ C1] ? __pfx_process_one_work+0x10/0x10 [ 885.659433][ C1] ? assign_work+0x1a0/0x250 [ 885.659467][ C1] worker_thread+0x6c8/0xf10 [ 885.659491][ C1] ? __kthread_parkme+0x19e/0x250 [ 885.659520][ C1] ? __pfx_worker_thread+0x10/0x10 [ 885.659555][ C1] kthread+0x3c2/0x780 [ 885.659588][ C1] ? __pfx_kthread+0x10/0x10 [ 885.659619][ C1] ? ret_from_fork+0x25/0x6f0 [ 885.659653][ C1] ? rcu_is_watching+0x12/0xc0 [ 885.659677][ C1] ? rcu_is_watching+0x12/0xc0 [ 885.659699][ C1] ? __pfx_kthread+0x10/0x10 [ 885.659732][ C1] ret_from_fork+0x5d4/0x6f0 [ 885.659766][ C1] ? __pfx_kthread+0x10/0x10 [ 885.659799][ C1] ret_from_fork_asm+0x1a/0x30 [ 885.659833][ C1] [ 885.661629][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 885.927449][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.17.0-rc1-syzkaller-00199-gdfd4b508c8c6 #0 PREEMPT(full) [ 885.939246][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 885.949305][ T31] Call Trace: [ 885.952578][ T31] [ 885.955499][ T31] dump_stack_lvl+0x3d/0x1f0 [ 885.960099][ T31] vpanic+0x6e8/0x7a0 [ 885.964090][ T31] ? __pfx_vpanic+0x10/0x10 [ 885.968578][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 885.974565][ T31] panic+0xca/0xd0 [ 885.978273][ T31] ? __pfx_panic+0x10/0x10 [ 885.982678][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 885.988069][ T31] ? nmi_trigger_cpumask_backtrace+0x1b1/0x300 [ 885.994230][ T31] ? watchdog+0xd78/0x1260 [ 885.998653][ T31] ? watchdog+0xd6b/0x1260 [ 886.003062][ T31] watchdog+0xd89/0x1260 [ 886.007307][ T31] ? __pfx_watchdog+0x10/0x10 [ 886.011998][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 886.017191][ T31] ? __kthread_parkme+0x19e/0x250 [ 886.022213][ T31] ? __pfx_watchdog+0x10/0x10 [ 886.026882][ T31] kthread+0x3c2/0x780 [ 886.030939][ T31] ? __pfx_kthread+0x10/0x10 [ 886.035521][ T31] ? rcu_is_watching+0x12/0xc0 [ 886.040272][ T31] ? __pfx_kthread+0x10/0x10 [ 886.044876][ T31] ret_from_fork+0x5d4/0x6f0 [ 886.049472][ T31] ? __pfx_kthread+0x10/0x10 [ 886.054055][ T31] ret_from_fork_asm+0x1a/0x30 [ 886.058811][ T31] [ 886.062068][ T31] Kernel Offset: disabled [ 886.066381][ T31] Rebooting in 86400 seconds..