last executing test programs: 25m11.788678002s ago: executing program 1 (id=2): mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000) unshare$auto(0x9) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xc080aebe, 0xf400) 25m11.387811786s ago: executing program 1 (id=5): lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000000001c, 0x280000000000, 0x63, 0x0, 0x0, 0x0, 0x1002, 0x4, 0x80000008040000a, 0x40000402, 0x7, 0x8, 0xffffffff80000000, 0x800000000000b, 0x6, 0x240000100103}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r0 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (fail_nth: 4) 25m11.116406187s ago: executing program 1 (id=7): lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x100000000000001c, 0x280000000000, 0x63, 0x0, 0x0, 0x0, 0x1002, 0x4, 0x80000008040000a, 0x40000402, 0x7, 0x8, 0xffffffff80000000, 0x800000000000b, 0x6, 0x240000100103}) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) r0 = socket(0x10, 0x2, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0xf0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) 25m10.850047257s ago: executing program 1 (id=9): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) write$auto(r0, 0x0, 0xfffffffffffffffe) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) lseek$auto(r1, 0x0, 0x1) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(r1, r0, 0x4) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/loginuid\x00', 0x84000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r2) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r2, &(0x7f00000006c0)={0x0, 0x34000, &(0x7f0000000680)={&(0x7f0000000080)={0x24, r3, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x7fffffff}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x4a}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x80) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC0D0c\x00', 0x100, 0x0) 24m55.619967676s ago: executing program 32 (id=9): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) write$auto(r0, 0x0, 0xfffffffffffffffe) mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) lseek$auto(r1, 0x0, 0x1) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(r1, r0, 0x4) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/loginuid\x00', 0x84000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000600), r2) sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r2, &(0x7f00000006c0)={0x0, 0x34000, &(0x7f0000000680)={&(0x7f0000000080)={0x24, r3, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x7fffffff}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x4a}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x80) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC0D0c\x00', 0x100, 0x0) 21m6.68363617s ago: executing program 2 (id=1015): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) r0 = socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r0) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYRESDEC=r1, @ANYBLOB="7e5a999322dcea1636da6970e84c42ec96a38586d50cf6599cd838edc2ed879dcfba767c2db982d07ac41217bcb51a278077826b443ef2458acf7304b9c384064d2975b127daebd77fcfbb8ed1f0ca84d20140a29cd720a17966780620609bb7ffb64b5548ece51a3781c2c33617e11323b9ce2d2ea935cc9fbeac3c4c72d49914619d90ee87ed117339e5489fd4b8707ca316df05880aee58670a10eeeface64c86502e1b1253e0211ee098a37056a3f8c760792be34db788c685f079c6c33ef518", @ANYRESHEX=r4, @ANYRES64=0x0, @ANYRES8=r3, @ANYRES8=r0], 0x1ac}}, 0x24048871) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[], 0xf5c}, 0x1, 0x0, 0x0, 0x4044055}, 0x20008811) recvmmsg$auto(r5, 0x0, 0x10c, 0x8, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) readahead$auto(r6, 0xcc7f, 0x6) close_range$auto(0x2, 0x8, 0xffffff97) sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24044845}, 0x10) bpf$auto(0x7, &(0x7f0000000280)=@bpf_attr_7={@prog_id=0xffffffff, 0x8, 0x4, r2}, 0x90) socket(0x10, 0x5, 0x4) 21m3.681403862s ago: executing program 2 (id=1026): mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0xffffffffffffffff, 0x3) r0 = pipe2$auto(&(0x7f0000000080), 0x8) fcntl$auto_F_GETFL(r0, 0x3, 0x7f) r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0\x00', 0x8000, 0x0) read$auto(r1, 0x0, 0x0) r2 = socket(0x15, 0x5, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) unshare$auto(0x40000080) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000e00)="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", 0xaaf) socket(0x5, 0x3, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x2060009, 0x3, 0xeb2, r2, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/ubifs/parameters/default_version\x00', 0xa041, 0x0) write$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0xa) writev$auto(0x1, 0x0, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video54\x00', 0x80000, 0x0) ioctl$auto(0x3, 0xc0285628, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) writev$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) 21m2.488489391s ago: executing program 2 (id=1033): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) (async) mmap$auto(0x6, 0x5, 0xc00000072, 0xfff, 0xffffffffffffffff, 0x8000) (async) io_uring_setup$auto(0x86, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) (async) socket(0x10, 0x4, 0xffffffc0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 64) select$auto(0xe, 0x0, 0x0, &(0x7f0000000280)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80400001, 0x7, 0x1, 0x9, 0x4, 0xfffffffffffffffa]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async, rerun: 32) r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (rerun: 64) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setgroups$auto(0xe32, 0x0) madvise$auto(0x0, 0x200007, 0x19) r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) read$auto_proc_pid_maps_operations_internal(r5, &(0x7f00000010c0)=""/4082, 0xff2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_setup$auto(0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000001c0)=""/176, 0xb0) (async) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="110000000500000000", 0x9) (async) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, 0xfffffffffffffffd) (async) socket(0xf, 0x3, 0x2) 21m1.839041364s ago: executing program 2 (id=1034): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_expire_count\x00', 0x40a00, 0x0) (async) acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_\xf6\r\x00\x00default_nu_gp/lu_gp_id\x1f\xd7\xba(-\xc4*e\xff\xad\xbae\xd9.\xff\x19\x9fx\xa4f\xb7U9\xae7\xf6n\x17f\xe9nt\a\x1aD\xdeo\vT\x8b\xb2D1\xd1\xf7#\xe2\xb5\'U}W\xbb\xa6\x9d\xaeD\xb2\xa8t\xff\xa3\xa5\x93p\xb3\xee~\xd3\xaca\"\x956#\xf6\xc2\x92p\x83\x8fT\xaa\xeby\x89\a\x81\x97A\x98&\x86\x11$\xf94\xb4\xaf\xc9\x81Qb\x14F.E\xde\xd6\x10\x8b\xa7\vve|\xe9\xa3d\x13\xd8J\xfc\xeap\xba\xe7VMk\xe9\x9c\xdf\xbf\xc2\xa05\x9f\xdcI\xa2/\xc1W\xf9\xfc\x86n\x8e\x9a:\x92\xb4d\x8d\t\x859\n\x8f\xab\xed\xfd\x81\xad\xc1\xc2\x0f_Ic') (async) acct$auto(&(0x7f0000000140)='/sys/kernel/config/target/core/alua/lu_\xf6\r\x00\x00default_nu_gp/lu_gp_id\x1f\xd7\xba(-\xc4*e\xff\xad\xbae\xd9.\xff\x19\x9fx\xa4f\xb7U9\xae7\xf6n\x17f\xe9nt\a\x1aD\xdeo\vT\x8b\xb2D1\xd1\xf7#\xe2\xb5\'U}W\xbb\xa6\x9d\xaeD\xb2\xa8t\xff\xa3\xa5\x93p\xb3\xee~\xd3\xaca\"\x956#\xf6\xc2\x92p\x83\x8fT\xaa\xeby\x89\a\x81\x97A\x98&\x86\x11$\xf94\xb4\xaf\xc9\x81Qb\x14F.E\xde\xd6\x10\x8b\xa7\vve|\xe9\xa3d\x13\xd8J\xfc\xeap\xba\xe7VMk\xe9\x9c\xdf\xbf\xc2\xa05\x9f\xdcI\xa2/\xc1W\xf9\xfc\x86n\x8e\x9a:\x92\xb4d\x8d\t\x859\n\x8f\xab\xed\xfd\x81\xad\xc1\xc2\x0f_Ic') (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/phram/parameters/phram\x00', 0x4a481, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0x2, 0x8000) (async, rerun: 64) clone$auto(0x801fd, 0x3, 0x0, 0x0, 0x15) (async, rerun: 32) socket(0x10, 0x2, 0x0) (async, rerun: 32) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="143ccfc37c27d4150cc6f97af73fb14c21a135d0682013b62c84052fd700001806996cbde179f12d517bf75ef8070b40cc1b706eda2c4737c47815d760d4d21a66b0130133b2d8006ec77304bb2899102d995f0b09000000000000002013afba2d11", @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf250200000008003c00020000000800130002000000"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) (async, rerun: 32) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (rerun: 32) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) write$auto(r1, &(0x7f0000000040)='7\x02\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/76, 0x4c) (async) mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000) mmap$auto(0xffff, 0x20009, 0x104000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) (rerun: 64) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000100), r2) (async) ioctl$auto_TCFLSH2(r2, 0x542e, 0x0) (async, rerun: 32) signalfd$auto(0x4, 0x0, 0x8) (rerun: 32) 21m0.186749209s ago: executing program 2 (id=1042): r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x15, 0x5, 0x0) (async) setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async) sendmsg$auto_NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, 0x0, 0x4004010) (async, rerun: 64) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) (rerun: 64) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fcdbdf25040000000400100008000cf1edfba1d1e45aea61b8f7020700000002681af944a5465101930e1f4b991ef2f10f485ddf80e07251de39066555baed365ef3"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000) (async, rerun: 64) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) close_range$auto(r0, 0x8, 0x0) (async) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) (async) brk$auto(0xffffffffffffff66) write$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000300)="352c8efa618c0bcf83a4ebdb278754e15f334a572cad539da201096bbbc2ce7db19c429be7137d848ef31b38b0b3c7da1c61fef8e0e24e400f96eb989b4f68220f90f3df243e352f17abbc44e0cfececd72dc611200c0fc4cb84d1fc175dc31b38e002c53627c31e0f3a31c079ae368fd33dfdfc97f40f7f", 0x78) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000200), 0x84200, 0x0) (async) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x800, 0x0) (async) sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(r1, &(0x7f0000000540)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="cc000000", @ANYRES16=r3, @ANYBLOB="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"], 0xcc}, 0x1, 0x0, 0x0, 0x4040}, 0xc000) (async) mmap$auto(0x8, 0x2, 0xea2, 0x24f0c8f3, r1, 0xda3) (async) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32) fstatfs$auto(r5, 0x0) (rerun: 32) 20m52.668016122s ago: executing program 2 (id=1068): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto(r0, &(0x7f0000000180)=',\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) 20m34.951525123s ago: executing program 33 (id=1068): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto(r0, &(0x7f0000000180)=',\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) 2m29.50427097s ago: executing program 4 (id=5503): openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) r0 = socket(0x1d, 0x3, 0x1) bind$auto(0x3, &(0x7f0000000040)=@can, 0x6a) setsockopt$auto(r0, 0x65, 0x1, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/irq/default_smp_affinity\x00', 0x2, 0x0) write$auto(0x4, 0x0, 0x100082) mmap$auto(0x5, 0xfffffffffffffffc, 0x5, 0x13, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x3, 0x100) sysfs$auto(0x2, 0x4c, 0x0) fsopen$auto(0x0, 0x1) socket(0x2, 0x5, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$auto(r1, 0x104000000000010e, 0x1, 0x0, 0x16) bind$auto(0x3, &(0x7f0000000000)=@nl=@kern={0x10, 0x0, 0x24}, 0x68) mmap$auto(0x0, 0x40005, 0xdf, 0x9b72, 0x7, 0x28000) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0) ioctl$auto_UI_SET_LEDBIT(r2, 0x40045569, &(0x7f0000000080)=0x698d) socket(0x28, 0x801, 0x0) r3 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_clock\x00', 0x8000, 0x0) read$auto_trace_clock_fops_trace(r3, &(0x7f0000000040)=""/56, 0x38) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x40000001, 0x0, 0x1, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2c, 0x1, 0x3) socket(0x6, 0x2, 0x2) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x10000, 0x0, 0x0, &(0x7f0000000100)={[0x8, 0x6, 0x1, 0xfffff7fffffffffa, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x9, 0x26, 0x1, 0x20000000007fff, 0x5, 0x9]}, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) 2m28.322192929s ago: executing program 4 (id=5507): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xa4e00, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x20000000000000d4, 0x1, 0x6, 0x0, 0x7, 0x368a, 0x20002, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0xfffeffff, 0x0, 0x4, 0x9, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x80c}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db) mmap$auto(0x0, 0x10000, 0xffb, 0x8000000008011, 0x3, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x1010) ioctl$auto(0xffffffffffffffff, 0xaccd, r2) getrandom$auto(0x0, 0x8, 0x7) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001280)=ANY=[@ANYRES16=r4, @ANYBLOB="010025bd7000fddbdf2503000000040007800c00020005000000000000000800010007"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8880) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) madvise$auto(0x110c230000, 0x1, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0) write$auto(r0, &(0x7f0000000180)='N\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7ff) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000007c0)=""/153, 0x99) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:01/status\x00', 0x80840, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000180)={0x4}) read$auto_kernfs_file_fops_kernfs_internal(r5, 0x0, 0x0) 2m27.548510951s ago: executing program 4 (id=5511): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) socket(0x10, 0x4, 0xffffffc0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0x6, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) setgroups$auto(0xe32, 0x0) madvise$auto(0x0, 0x200007, 0x19) r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) read$auto_proc_pid_maps_operations_internal(r5, &(0x7f00000010c0)=""/4082, 0xff2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_setup$auto(0x1, 0x0) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/pagemap\x00', 0x8200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000001c0)=""/176, 0xb0) 2m24.016060703s ago: executing program 4 (id=5523): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2008000) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x80) (async) lstat$auto(&(0x7f0000000340)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) prctl$auto(0x1000000003b, 0xfffffffffffffffe, 0x4, 0x5, 0x7) (async) setreuid$auto(0x9, 0x1) (async) pipe$auto(0x0) arch_prctl$auto(0x9a7, 0x8) (async) r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r1, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) ioctl$auto_UBI_IOCATT(r2, 0x40186f40, &(0x7f0000000000)={0x6, 0x5, 0x9, 0x3, 0x6, 0x3}) (async) ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) getrandom$auto(0xfffffffffffffffd, 0x8, 0x3) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd11/queue/stable_writes\x00', 0x1a1842, 0x0) write$auto(r3, &(0x7f0000000000)='9@\xc9\x9b \x9e\v*\x1b', 0x8) (async) read$auto(r3, 0x0, 0x80000000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f00000001c0), 0xffffffffffffffff) (async) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) (async) mmap$auto(0x0, 0x2a4, 0x0, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x800000000ffd8) (async) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0) write$auto(r4, 0x0, 0x7ef) (async) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) (async) mmap$auto(0x0, 0x1fb, 0x2, 0x110, 0xfffffffffffffffa, 0x2) (async) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) 2m23.479097046s ago: executing program 4 (id=5525): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0xa000, 0x0) ioctl$auto_VHOST_RESET_OWNER(r0, 0xaf02, 0x3) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) ioctl$auto(r1, 0x4008550c, r1) 2m22.542753868s ago: executing program 4 (id=5532): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, 0x0) unshare$auto(0x40000080) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 32) r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) (rerun: 32) setns(r2, 0x10000000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0) read$auto(r3, 0x0, 0x20) (async) write$auto(0x3, 0x0, 0x81) (async, rerun: 32) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) (async, rerun: 32) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) (async) statmount$auto(0x0, 0x0, 0x1fe, 0xd) 2m7.208530741s ago: executing program 34 (id=5532): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, 0x0) unshare$auto(0x40000080) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 32) r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) (rerun: 32) setns(r2, 0x10000000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0) read$auto(r3, 0x0, 0x20) (async) write$auto(0x3, 0x0, 0x81) (async, rerun: 32) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) (async, rerun: 32) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f0, 0x15) (async) statmount$auto(0x0, 0x0, 0x1fe, 0xd) 10.132321649s ago: executing program 0 (id=5924): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0) r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x302, 0x0) ioctl$auto_TIOCCONS(r1, 0x541d, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD_OLD(r0, 0x40045402, 0x0) 9.700115924s ago: executing program 0 (id=5928): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) r0 = socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2\x00', 0x80001f00) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r0) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYRESDEC=r1, @ANYBLOB="7e5a999322dcea1636da6970e84c42ec96a38586d50cf6599cd838edc2ed879dcfba767c2db982d07ac41217bcb51a278077826b443ef2458acf7304b9c384064d2975b127daebd77fcfbb8ed1f0ca84d20140a29cd720a17966780620609bb7ffb64b5548ece51a3781c2c33617e11323b9ce2d2ea935cc9fbeac3c4c72d49914619d90ee87ed117339e5489fd4b8707ca316df05880aee58670a10eeeface64c86502e1b1253e0211e", @ANYRESHEX=r4, @ANYRES64=0x0, @ANYRES8=r3, @ANYRES8=r0], 0x1ac}}, 0x24048871) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[], 0xf5c}, 0x1, 0x0, 0x0, 0x4044055}, 0x20008811) recvmmsg$auto(r5, 0x0, 0x10c, 0x8, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) readahead$auto(r6, 0xcc7f, 0x6) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24044845}, 0x10) bpf$auto(0x7, &(0x7f0000000280)=@bpf_attr_7={@prog_id=0xffffffff, 0x8, 0x4, r2}, 0x90) 6.171134951s ago: executing program 5 (id=5935): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, 0x0, 0x55) getsockopt$auto(r0, 0x29, 0x18, 0x0, 0x0) 6.147199953s ago: executing program 6 (id=5936): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/sound/ctl-led/speaker/mode\x00', 0x182, 0x0) r1 = socket(0x10, 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/swradio10\x00', 0x129f43, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/acpi/parameters/ec_event_clearing\x00', 0x129882, 0x0) sendfile$auto(r3, r3, 0x0, 0x8) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r2) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x3c, r4, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_LINKMODES_HEADER={0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2004d081}, 0x4010) write$auto(r0, 0x0, 0xd149) 5.945341316s ago: executing program 5 (id=5938): r0 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0xa, 0x72, 0x8b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x9) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xf5s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) socket(0xa, 0x5, 0x0) listen$auto(0x3, 0x81) fcntl$auto(0x0, 0x8, 0x1) io_uring_setup$auto(0x7, 0x0) fsmount$auto(0xffffffffffffffff, 0x1, 0x2ce7) sendfile$auto(0x1, 0x3, 0x0, 0x6) close_range$auto(0x2, 0x8000, 0x0) open(0x0, 0xa22c0, 0x155) open(0x0, 0x28240, 0x1de) madvise$auto(0x0, 0xffffffffffff0001, 0x15) select$auto(0x200, 0x0, 0x0, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x5522, r0) mmap$auto(0x0, 0x20009, 0xdc, 0xeb1, 0x401, 0x8000) open(0x0, 0x161342, 0x110) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0) mmap$auto(0x0, 0x10, 0xa, 0x20000000000eb1, r0, 0x8) sysfs$auto(0x2, 0x1, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa102, 0x0) write$auto(r1, 0x0, 0xd) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) unlink$auto(0x0) execve$auto(0x0, 0x0, 0x0) readv$auto(0x3, 0x0, 0x7) write$auto_sg_fops_sg(0xffffffffffffffff, 0x0, 0x0) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) 5.830932241s ago: executing program 6 (id=5939): r0 = socket(0xa, 0x2, 0x88) setsockopt$auto_SO_MARK(r0, 0x0, 0x24, &(0x7f0000000040)='/dev/ram9\x00', 0x1f) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) socketpair$auto(0xa, 0x5, 0x8000000000000000, 0x0) r3 = socket(0x2b, 0x1, 0x1) ioctl$auto(r3, 0x8983, 0x4) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r2, &(0x7f0000000180)='\x00\x00\xff\xff\xdeVA\x1a\xa0\x91\x96=)+', 0x100000a3d9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) statmount$auto(&(0x7f0000000140)={0x9, @inferred=r4, 0x2, 0x8, 0x7f}, &(0x7f0000000440)={0x6, 0x6, 0x53, 0x4, 0x3, 0x101, 0x2, 0x3, 0x5, 0xffffffff80000001, 0x57d6, 0x8, 0x3, 0x1, 0x8, 0x3, 0x1, 0x8001, 0x400, 0x1ff, 0xfff, 0xd8, 0x8, 0x2, 0x9, 0xbef3, 0x411, 0x7, 0x0, 0x7, 0x7, [0x200000000000006, 0x7f, 0x8, 0x599, 0x56, 0xf93, 0x6, 0x8, 0xffffffffffffffff, 0x0, 0x200000000000, 0x2, 0x1, 0x9, 0x100, 0x40004545, 0x4, 0xa, 0xb, 0xf5fd, 0x7, 0x4, 0x7fffffff, 0x1fc, 0x2, 0x5, 0x8, 0x4, 0x4, 0x7fffffff, 0x4, 0x0, 0x7, 0x80, 0x6, 0x4, 0x7, 0x4, 0xffc0000000000000, 0x1, 0x9, 0x8, 0x80000001], "73e9b0abe71d1e2aee680f7f0e812f294220578764aaba215588c48129939d0d8c6c8dcb488aeb5a653cee9f3407b9069269771811ce667d8e"}, 0x40, 0x36) msync$auto(0x2, 0x9, 0x40) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) socket$nl_generic(0x10, 0x3, 0x10) 5.353296843s ago: executing program 5 (id=5941): mmap$auto(0x0, 0x400007, 0xdf, 0x15, 0x2, 0x8) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0) ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000080)={0xe3e, 0x0, 0x8, 0x5, 0x9, 0x1, 0x80000000, 0xff, 0x5, 0x7, 0xb, 0x7, 0x8, 0x7, 0x9}) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) bpf$auto_BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000100)=@bpf_attr_7={@prog_id=0x10000, 0x200, 0x1, r1}, 0x8) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r3], 0x1ac}}, 0x40000) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff004}}) 5.118259434s ago: executing program 5 (id=5942): socket(0xa, 0x1, 0x84) socket(0x10, 0x6, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, 0x0) statmount$auto(0x0, &(0x7f00000005c0)={0x4, 0xffff59e7, 0x3, 0x100, 0x9df, 0x6, 0x3, 0x7, 0x3, 0xcb, 0x6b7, 0x0, 0xb4, 0x81, 0x8, 0x8, 0x101, 0x10001, 0x4, 0x100000001, 0x0, 0x0, 0x7, 0x7, 0x1, 0x10001, 0x0, 0x8, 0xf, 0x6, 0x10, [0x6, 0x2, 0xffff, 0x3, 0x7, 0x200000003, 0x10000, 0x5, 0xe3f8, 0x9, 0x180, 0x1, 0x1000, 0x4, 0x4, 0x1, 0x100, 0x8, 0x9, 0x8000, 0xd1c7, 0x3, 0x8, 0xf36, 0x0, 0x6ba3, 0x3, 0x6, 0x7, 0x55ac, 0xbbb, 0xa, 0xfffffffffffffffd, 0x7, 0xa00, 0xfae9, 0x95, 0x0, 0x9, 0xfffffffffffffbff, 0x5, 0x7fff, 0x6], "d2fe"}, 0x4, 0xf) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x6, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000d40)=""/16, 0x10) unshare$auto(0x40000080) open(0x0, 0x22240, 0x154) poll$auto(&(0x7f0000000480)={0xffffffffffffffff, 0xffff, 0x29}, 0x3, 0x8) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) modify_ldt$auto(0x1, 0x0, 0x10) 4.763116528s ago: executing program 6 (id=5943): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000300), r0) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="2450153eb35fce2364b09c37740d026e02002713a2bed8c900a4e6d51da9a65f5bc9ff4a0d2e0bc7e1623deb0e087f1ffecc0351fa94cffc7cdd5356f0a77fd2fa65477530be734291003c88ea46cb3922beb787ee6b91b6830a68e427f46729b37cea7d2a8dc23b89517c7eaae9988d542b03b1083a380e33e63cbe7c2422c1aaef20acf7142cb484bbe883f5e8bb38d9cc529abfd48de8066f97ec226dfe5a393dcb4fadc3cc4ebad0ec83518d016fc1126eb14f64c94a5cba289fc315f99d63b29d3b0294d76e1c62d0c29c90902c2e5661f3a8b5139051", @ANYRES16=r1, @ANYBLOB="010029bd7000ffdbdf251400000008001100060000000800080005000000"], 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x800) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x81, 0x100000000) rt_sigtimedwait$auto(0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8) socket(0x1d, 0x2, 0x7) r2 = socket(0x2, 0x2, 0x1) memfd_secret$auto(0x0) waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f00000000c0)={@siginfo_0_0={0x1, 0x7fff, 0xfffffffb, @_kill={0x0, 0xee01}}}, 0x7ff, &(0x7f0000000200)={{0xff, 0xa81}, {0xf, 0xa3}, 0x3, 0x7, 0x3, 0x4, 0xe, 0x1ff, 0x0, 0x2, 0x40000000, 0xffffffffffffff85, 0x5, 0x0, 0x1000, 0x2}) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0xfff, 0x5, 0x10, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) socket(0x15, 0x5, 0x0) madvise$auto(0x4, 0x7, 0x100000000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x11080000}, 0xc, &(0x7f0000000080)={&(0x7f0000000500)={0x1154, 0x0, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_KEY={0x1124, 0x1, 0x0, 0x1, [@generic="5ab08d83bd5aff3c963571cd56f72dacf3fcc0e48b5c18cbbb8b76fa1ecfee791d99409282edb5a773d68e97f96935559079bc522bffe306615ce49fa1afee919c041311789efef11f3702a5112773f5fe6de30caf440de858dff203c1675b24725c516112f92eb0e9545a4fee38a80b8cf27a35966164e004a44b9f8d0fad3d58f054e4265a7de552a3a4acd50812264d10e307f621791c3c9b3ba54280c5f3140a2dc8dc7a483223f426611c73f93e80170f6cceaaac86f36e42ed298019b20c351c1acf5f6e1a10eef7e8d9f95e25313b429e3f11d970b7838d26e3c52735370e7cd14d504739d6e7bbd0c14afccc7df46863af99363946d034b866c69b5eade1c171d57a3ceb79df9531d81467b52b0b4dc5f8ca5d6d3f975d847014d0f6ad97e3950235027726848bc0074cdbb65a7fd62ca18a6dd4a6c4d02267f6e613a9e76a63d2fef9494dd68da213e441eecd25ef5addb2c0bda9a7266e36c7aa7d5de395d874d9f789d2d5097fc5fdf1ada1f1073bf99f4d5ab39b5c9487fc6c8e474b6f9d57570c5300b19b60cb42936826dbe53d9f5f334938ed627939bd0e82be39335106505bb6e78c49fe72903a96df985cbac94c3c5ba1d5438a2b66cfb36620db24656b0d5f232f71d6c4989d7c82cfd2acabfb8dc57c0497acfc6a4b3af5feb4e499612aa6731736dcaa17a9401da45cded06e357b56a848502825d24d83b4e49330fe780c633bfddaccf416f3df245cf60a9e7a8cf8129b655e64936650a3b540b4323a102b0e86a1f29e9ead76780f79bcb7c7a52f7e28111bec410c89294eae74e98027ca13ef54dad652230b07187f1db9820d88d4fb423aa5aa9b9e5ba9acb5dcef57f31a747c6664749e7a1dc820348ca4b21549cf284fb3760f46e1848928af47c130413355febd52fc08049d9a9d3a5d6db0e4503d0fbad3306c3aed5edc9e5153813b9274a0acb20df0a145e2951338b395da8f0b66ceb5adf330f96fb4f8fc26affb2532c3d3715ba5e1557186ca4b12046fcefee671d5f56dd7b3f90628e0e06820b06cb50f90984ad905aa05137d6741aebd785d700abd4b4a6c395918a158707c0a64c3216353659221b23edd856c7ba528275be6a62329fc3e2b5578b88a7bf0fb755ebc8ac4a19242f4528da2f294b834696719d3d5bcf2495dc903f19e8ceb4ee95c18b8be00f18cfe47ab23c6f8ffcc551a76350004cc79edfa59a5fced1e05d456a25bd5a7eb20a177124a2eef519fe491365a21365db3ca563704cb37a109d6752a6ad18f1d0e26149583ee8601649a4ce4d1fbe3736870989684ab443e86632150a8a0565b95cb109d5cfafaa8a9c93b4b2a0ff1857ababc8c9c0b889f5a5408587c569ffa6cf30f0152b0c20c90ac2f2f62b9a7157fadc9921d4bc3a0cf994079dafcd1531553583a7218cdcb99ea2ac4924ed17d2a0bfb61c965f38bad30099806ea56a80536859573422eb30736ca93d5ca7340b7861e4c3ca89bec7cedbff96229f2fba8e926e33d348f129df8dfaaf67fc35577dc557c331609ca94df81105af07a18d119cbfe7f4847d43b760e2f653b73e485bcfdc0b78602f5d9984a3169152460c3848b74e69e0e88836438e908ab795c2cd5d3b123753c75f291822fe3d09945d66f821edc34495fb325c2b637f4faddcb830f94bd4e0175563e719e07dc03fcf3852a1aa40c804080c109ccec47fcff084aa8fff54f146f24102db0eaa42dbaa6ae47603fb25558c7a9087f67c338238494a256c383f1f5628e6a822b6bbd45af1ce72600ce2f14dddf5413aa4636bfb1f2f1aa8ef3535f3f3a97ddd282f01760bf1e34145f40829714ffbe45f91b4f17b92e82bb233e53e6ca0a3bef7babc8b23d50695f411769ea625f95efd001a5f4af1207c3a6553f7f52076f424158c8007defd3e475c5c743f24f8bcea53be6522a316c57efc45238ff987282cbcd9496c39a822c322c2a1d357ef1549211628c19fd44ff618e09fee120c2aeaa3ebb507e6375a3b72e71df5aab5604a0c3e2a29f7274bc681f9848103d7b7537e687db132e335bb54dcecb70b4a69e0ca97de9eddfd016912a8514d66364a294331ca07f5cf32ee4a0b454b64688d12002e084fce54b2c76535e2f3cd47350f6e04649982a26444984568fae733b7e0fde25b548b26cd2440cb678ff30fcb400a2cb8ac28f4da4889cfd297b86c1ecc3076ad21c4cbb409dfe9ad69f6d7b15e4f4874326bb81327e2fce0016f96cf496902a757bd06eb523e1e7032adc3991c02317f84de9841f9071ef2aa91699be14be83d4fbdeb939d70172f84d8a5675244d401dd7c0a5ae85a3cb8803926d3cf50c851bb510d72ac81ea818dd2ee11b478dba4cb2fc3a798e732b01de8c17427100b598a6fb978cad82c250616b05467eb894fc6e9ef1bc033d5a0f573fa3b6e91b6c44d8d3e6b95dab276616a21dbcc26d6c017561c66e251aaee94dc06c0f1bf05ff274307f696b5a9346d6e52a596b66d94f071bc17f75d50684f2f30b674bd4abca592ce77446beda94004c7b18820bd1abdf63577952848d7781cb1c43b0ffab1532c2849db9f8c10d572b70661a7dad18197d8c6d95f5c643df1ed43e4e08781be57d7e042473915d6a9825d7b1db40465da2d03de537bfc6573e8780c87fd509eaf7787873f0b129c186e81caf2b1e42f32ff318795a9887f70ccf4f917464f94b597cc8edd88996923e81e8e8bebec36c1e6f184231090b77721db11cec81695eb9bfe1cecef27e094ece589b3a00338779df0d5174c6b4a0ed39ab81650abf2edaf5e080557559a8c9c16f847db22fde5a0018e588c85ce507f7b0ce25f986feb96027fd2f19900a106f164dd741dd55ead43797dc3aeef12de9ca1c4d0979c27bd72a9e0e1e16c16d68434ed2afbff88c889dc1148a4b48a7eb87c1fff5bf8bb07ae9a3d89963dae56eb176cda02a7225f0693e6d4c7754dffd9169fa02aafe65a902c1f4250218526fcb1e955210450cc1c7897a023fd0a61635b6d79188f9c974154a9bb0bff753f2872393099799389b011471192cb08273ac2319fe3b8faf709017133038f47221b44318b88bb5cd8cfaf8bbd99f90fe33187812343a93dbd492fa2a3533e8b004ded534e5ce53e3d94f53bef89c94a30ce3171e0ffb1241b2b60ec46d133ef6635ef9c282e27fd3897a834cde78eb1506b77b0a996740b585c8378ea0a68bc6223e3d8871ac823933ee9b2931f71c2252e1160370e7d8ec7681b9592d9c59f7746883b14a7717b437db67f91e75566524515fba168893de46e648e87ba0ee6663aef42e016a20511e9f0352c2e62447f58aa1d6bf145bf18e5bc4d2b3235c7e3968f8424a0ac5c0e41fd8c87817f524baba9fca5fab3d2d800886640f028c4cbf9841888371eb5142c799d713318a1497a387cea93c591ed555f9d57e705820e98d2ad13217b81b1c0586dd571057c9b16fbdbb339d0833d1b16d89184438b5d6e5f4b95991dc6319b9cab9f18c726f30cc5daa3dcfc6cb5c4d4004e7b9237dbfbb0f3561032b055a2c10a74b641f0e45f4d35ebbce3cfb9c76530de270b76dfeee763acd0686afcdc8fa409a1818a9783f2bbff2d065411a02bd8da73a45eb7bed1c1637f760b7f9c7f67f0ecd8993a2f6ce8e7078520c95b831dd52c63f18d4a9cf11eaf5e393f72c6e114560a8e51632d3eeb4ff2481781bcf1ce2cdf6945d4361e2b315fe2f292538ffc1a550464856b601bb0c859dea832ef6de3a855e67088d4f8a5738c5ca421d11b058aa77d3809836470e21653ae6a0333aee17f9c50e7028f81b614a8714c3454cd35055b252882c7b307c621edef9abe07062c695cf040fcc79aacafb5b2b6fc9e9eb4eeb8cbc8541535b517863557a78e8e064f753606742d70762cc70be5930983c962ae3d50d71f0b29c95713f41df40d640c3890c8be9719cc8f694322cad726fea867701aa7460e15a42c8f32f7482c81d874d73108e45b43f916dc0b52a3cde51ce920c2b124938136e088b63924dc3ecf29bb85170f04bdc8718040f563edb45cf4fb369792aaa695c2ebb0fb7d027cb2454ba459a3639586f13440014feef49757347d1ca8c0275b0e27f659b1a9cc4aecc070079d2c0bc78527c4c6c359fa9b0c6c2a3d81d367eac132b99b29ebe0d25c8af99a167603f053d3962195f350c8366e4303c540df0a64ce67668a95189beaa94d23740f06182f6a672c3d6941c81359a64bb09a72ad281bf3b725535aae72c1440f62da49e19123a68ac03fc78077f210aa49cf5ddb7c5463dca89b9262454b40724290ccea11c4f9752360a87b080454029f1a46e79631e4a70e52845d07a305a3c51c4fa140c81e4bce6f2f8eae5f8b1df5411108cd172a86f4db99d0dddc76d2e3e4f923f7fafd7c7b25c09e0c5f97420adece853db26e7800eacda33468a806f00d97831576f5527d07a9f0a4f13ad150078535a2da1ec3b59e96a36918a7ec92a44fc3ca7628e3324ae3fba7c5a7879ccdf5574aa2fcf12ac4d745280d8ac99bbb12daa1a2570f95a84d540f9b66398c6e8d85bd45a1b3010f4924fe54997453b843616de4ba71cb8ef9ae075ac50dfbcdddbe5b0ed84ac4834fb250e8524bbf3cf716cf0936f931ccd092b7f635b4e1793de85b9457556c3fcc28678a71a2606e67cf17a0b93101bdf6b78ac812f38a18c2aac9bc82f07b4fc9f57b59011bad3bb9fc9a5d3e7345b3414d18dff71ae98a23c5d6986facd9d4bea4c4a4d3a88e7b6dd814b2ba240ace4e380e3ea385ee0dae5047fc18f189ef21f93ec51e2e5bc76e27c8508d35aeff8325135f0ffe0515b1b402487e4d8f0ed01ed7e5fa1f2ca3f09c11ae2cc2819abb8fc43bd9dc8023eb204c80af5dbf710a1da72cdcb68c4a8676e79ba850deef21dc405e952d643240d5c652adc412125a829fb3e519ad11e58eca0d56f1a1f59690696b6132448b034199644e6c2b87d9d66e8752523a079562d62fd5ab94cf2e5c1e7b25d41f1717b849789450e522af3d1da1804c3af57981cbe1c5fd48bd080296ba8e46f33f68dc8d8f1733c62a59d160d7fb87029030f21520e8b059bd17ed4f2194b1b61fe8e2188e0453d69061b40e6cdf69f5237bb4f98d233feca1553696e55f1d77ec56ea3c789f62cf9d2083835ea0f626aaf7c01531613c52226a3a0d82d7bd4892aef459bd079b98235c9ac818f2d50a44c6f28c20944cbcbe9d7e7e6303ff603daccdb33c25219e2b7b895c4b0ecdc17957e32b4a0d1a73700f067d4e7ed7855adfb4395603a94bac826634e865952b0bc5665cbbb52adbbc030f73da85451132578858e8c10c8048a90fb9115803e6844eddc7c24770a71f7371ac060eef202f6ee005d31100707c045659a944b19f31f1c96aa08839f92276aec883eb1cbac87b36d77da4c6fc81e1f657203ee20f36a0d6c14800d2c2bfc8512c25d5f744e04e9bf0fd7bad43a97f68c5917d53eead26b7fb4f874620b72319ba3421c0d3231bc75950d28f6fb8c9ccb11897bf7befbb6e9af5b9a120b654bb5b96523b1ef955c18c9831ec8c2c17d5930e9e74e9029f395198204d5ed970656acf33ec5f3e1aad9afbdd6e116b535223420b927ace15b1807d602fefdc6389c7ffd0ecdb7fc99fdf343b8709a5793ddb8b7ccaaee3729804b69ba2a8cec195b544d66aaaeccfd7becb093429bbcaeaf57df9a1e911de793685ab52a73bc87d3b92edd837d1b49b6e671006e1a12d2aae88bc9b39a6a6567bbe33ffef924844b4eec", @typed={0x8, 0x6a, 0x0, 0x0, @pid=r3}, @generic="43e6f46bc93224b61c862736d12883a3b1fa43c6aac9636d88e880ffeea4324bbd6a9107c61f59de3eb659c7b066570309f906c68cfe440bb4a805cb65cb4e7b91f4e2b4c67bb50774f5f8aeed4bc48fda2397", @generic="7b583572d54cb5feb7af265488ba99409570737c05484d1f4b7c765ec06edb09d7ed23a29290fcae3042abe2bba0f76a1ea47725f837ec1b8522a1fd03fcd105fe6d868f60797d33fded140709da963ef86c0a338c56d4de7dc551c5223d5f56999bea819d0bf71df5bf84317b5e2b72a494e096d59ef85df81b55bb7397e12c514b84a50bf418fb4dfe56b819386f0b79a791d6041e6096adfac8f677f9c71f87d3d1a83f1b4b9466", @typed={0x8, 0x124, 0x0, 0x0, @pid=r3}, @typed={0x8, 0xad, 0x0, 0x0, @fd}, @nested={0xc, 0x7d, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x7}]}]}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_CLEAR={0x4}]}, 0x1154}, 0x1, 0x0, 0x0, 0x20040881}, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) mmap$auto(0x0, 0x40009, 0xe2, 0x13, 0x7, 0x3) sysfs$auto(0x2, 0x4d, 0x0) fsopen$auto(0x0, 0x1) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) 4.350162448s ago: executing program 3 (id=5945): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x2, 0x1) write$auto_proc_projid_map_operations_base(0xffffffffffffffff, 0x0, 0x0) rseq$auto(0x0, 0x8000, 0x0, 0x6) mincore$auto(0x1000, 0x4000000, 0x0) 3.614528672s ago: executing program 0 (id=5946): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, 0x0, 0x55) getsockopt$auto(r0, 0x29, 0x18, 0x0, 0x0) 3.610818488s ago: executing program 3 (id=5947): r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0100, 0x0) statmount$auto(0x0, &(0x7f0000000580)={0x81, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x368, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x400007f, 0x3, 0x0, 0xe, 0x3, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x24, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], "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"}, 0x1fa, 0xd) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)="de91b83a075c", 0x6) setitimer$auto(0x2, &(0x7f0000000080)={{0x2, 0x5}, {0x0, 0x8}}, 0x0) setitimer$auto(0x2, &(0x7f0000000000)={{0x8000, 0x6}, {0xa4b, 0x6}}, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x28102, 0x0) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) r1 = fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) close_range$auto(r0, r1, 0x9) r2 = io_uring_setup$auto(0x8000, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000280)={{0x0, 0x5aa, 0x0, 0x2e, 0x0, 0x7, 0x1083}, 0x5}, 0x2, 0x100) unshare$auto(0x40000080) r3 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/media5\x00', 0x202, 0x0) symlink$auto(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f00000002c0)='./file0\x00') rename$auto(&(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)\x00', &(0x7f00000000c0)='./file0/../file0\x00') getsockopt$auto_SO_ERROR(r3, 0x7ff, 0x4, &(0x7f0000000140)=':>()\x00', &(0x7f0000000180)=0xa7d) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008) acct$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), r2) sendmsg$auto_NL80211_CMD_LEAVE_IBSS(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x14, r4, 0x400, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x48000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r3, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x20) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) write$auto(r7, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) 3.258915578s ago: executing program 6 (id=5948): mmap$auto(0x0, 0x20009, 0x6, 0xeb2, 0x405, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/midi0\x00', 0x480000, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) io_uring_setup$auto(0x6, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) socket(0x15, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x80, 0xb}, 0x800009}, 0x5, 0x20000000) r2 = socket(0x28, 0x800, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(r2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000000a00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x28040) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x14) write$auto(0x3, 0x0, 0xfdef) recvmmsg$auto(r2, &(0x7f0000000340)={{0x0, 0x5aa9, &(0x7f00000002c0)={0x0, 0x3b}, 0x7, 0x0, 0xf, 0x2}, 0x9}, 0x6, 0xffff, 0x0) r3 = socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x40000002c55, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) setsockopt$auto(r3, 0x10000000084, 0x7f, 0x0, 0xad4) 3.190932952s ago: executing program 0 (id=5949): msync$auto(0x20000001ffff000, 0x64c, 0x400000004) close_range$auto(0xffffffffffffffff, 0x8, 0xf) r0 = socket(0x15, 0x80000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYRESDEC, @ANYRES64=r0, @ANYBLOB="010326bd7000ff88d30e2d000000180001801400020069705f760c864aebbdd31e4e2980bf776d3f799bca452ce8054ee5c2f5b97c5d23602d2fd9feca506334c852cada6287171e79ef0d1ef8eaf3f0383092176e7b40f4432cc497f67aacebce8967d8bc2c829f8aa518723b373913a51f"], 0x2c}, 0x1, 0x0, 0x0, 0x2404c092}, 0x80) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001780)={0x14, 0x0, 0x20, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x401c}, 0x0) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000300), r1) syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r1) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f0000000140)='./file0\x00', 0x161342, 0x100) write$auto(r2, &(0x7f0000000000)='e\xde', 0x3) sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4048000}, 0x20000890) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) get_robust_list$auto(0x1, 0x0, 0x0) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) msync$auto(0x7, 0x4, 0x80000001) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xe0202, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/rose15/address\x00', 0x0, 0x0) sendfile$auto(r4, r5, 0x0, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/hid_apple/parameters/fnmode\x00', 0x400080, 0x0) socket(0x18, 0x4, 0x2) write$auto(0xca, &(0x7f00000000c0)='\x04>\x00\x02\x18\x00\x00\xd3b\x01\xbd\x9b@\xb0\x00\x00\x00\x84\xa2\\\x15\xc4>\xa9\x82,\xf9y\xc7p\xf1w\xbe\xde\xe8\xc3\x01#\xcc\tF\xb6\x95\xeeH\xf8}v\xb3\xcb(\xa90Abe\xc3\x8c\xcc\xe7\xb8\x00F\x89#\xb4\xf0F\xa1\xd5\x1e\x8f\t\x9dZ~\xea\xa3\x93\xc2\x04\xe1;b\x99\x85\x00\x00\x00\xe2E\x00\x00-a\xb6n\xbc\xb4=\xf8\xce\x01\x1f]\x85|\xce\xd7\xff\xff\xd3lb\xc5\xee\xdb\xcb\xbb\xd8\x00\x80\x00\x00\xe9e\xe5\x80\x1c\x02\"\xa7&8U\xfd\xdc\x15\xae\xfa5\xb8}\x0e\xb4:\x91\xbb5\xd3{\xb2\xd0\xc0\x93=\xf8E\xceO\x1e\xd5\x8f\xdf\xaa\x1c\xfd\xb0h\xd8\xbc\xecA\xa6\xde\xd1=\xfd)d\x8f\vk\x1c+\xf7, \xf8]\xb3\xe9B\x02\f\'\xcf0\x06', 0x1ff) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/dri/vkms/Virtual-1/force\x00', 0x111003, 0x0) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000000380)="9575bb95d387bc8389033be25913143a510950f4606e398cf15eadc3342db148afecaa5db9571aef85610d5e788d465b02e57fe5020a1233739789", 0x311) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001500), 0xffffffffffffffff) 3.072170756s ago: executing program 3 (id=5950): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x4000, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x5, 0x104) r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x2001, 0x1ff, 0x0, 0x800000000000001, 0x10) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/traceSMB\x00', 0x40c01, 0x0) write$auto_proc_reg_file_ops_compat_inode(r3, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xfffffbff, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x5, 0x7, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtd\x00', 0xc40, 0x0) read$auto_cgwb_debug_stats_fops_(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) listen$auto(r0, 0x7e) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r2) mmap$auto(0x0, 0x2820009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2008000) ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3) r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r4, 0x7a4, 0x0) 2.578778199s ago: executing program 6 (id=5951): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2\x00', 0x80001f00) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = socket(0x10, 0x2, 0x0) recvmmsg$auto(r2, 0x0, 0x10c, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) readahead$auto(r3, 0xcc7f, 0x6) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_ADD_UEID(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, r5, 0x1, 0x70bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20004880}, 0x8092) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) readv$auto(r0, &(0x7f0000000000)={&(0x7f00000000c0)="cbc43dc2432dead38ffa1a6fa54c33474cedb21851415d624bcfeac6446af75418fa1ff33f60b431f41c013af3c930f53c6f79489ad94e07b14c72066b8049d5ab413ad8f0", 0x5}, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58) 2.207942906s ago: executing program 0 (id=5952): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, 0x0) openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/kernel/debug/o2hb/failed_regions\x00', 0x200, 0x0) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000280)={0x4, 0x3, 0xa, @state_change={0xc, 0x6, 0x8}}) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)) ioctl$auto_CEC_DQEVENT(r0, 0xc0506107, &(0x7f0000000040)={0xffffffffffffff0c, 0x2, 0x3, @raw=[0x9, 0x8, 0x3ff, 0x0, 0x0, 0x4, 0x4, 0x3, 0x92, 0x10, 0x7ff, 0xd817, 0x5, 0x1, 0x3, 0x1000]}) prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb) write$auto(0xffffffffffffffff, 0x0, 0x7) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x20400, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f0000000440)={{@inferred, 0x1, 0x6d2e99e8, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b62b67bd764f9", @raw=0x2}, 0x0, @iec958={"15a2efc2d3924d554f9814e38bcc84af07a18f8b739d1f06", "a85427ff70455fde648eff0148d9981bdfad7ad3c7a0149f7ac7b52eafa482a5534c2b189e11b1850033c47bc4d5ef8484223aaf5cdf275c0d485b701bfe944a5b7dd0e922c8311d7c2b5ed8f6ac4a065ba0cc686a2bae512eb2980c9035cb1db1c570a5aa1a6e6a4209658f258fa1d6c61411a5b075f7599e3fc8f6d15b5ef46510a3d0e8e2438971b181b384d3f35c611cec", 0x0, "265fab37"}, "528d458095d42b72adda0cac2d45bdaacfc82245992af763188ba00ab57d5d73b094925aa928ca41e93023ab4510269ed900009a7895fd181a33375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea81f7e333cf1c9da590b3fea1258074885c899d75cd52751f9be959d90fa5c200"}) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x8c300, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x1a3780, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x80000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x6, 0x1, 0x948b, 0x3, 0x1, 0x572f14dc, 0x80000000, 0x80000000, 0x0, 0x7, 0x6d3e, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x3, 0xd, 0x1, 0x948b, 0x0, 0x15f4da0a, 0x41000000003, 0x9, 0x62, 0x8000001b, 0x7, 0x6d3e, 0x9, 0x2, 0x200]}, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, r1) close_range$auto(0x2, 0x8, 0x0) 2.061094123s ago: executing program 3 (id=5953): r0 = socket(0x11, 0x800000003, 0x0) sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800) socket(0x10, 0x2, 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'dummy0\x00'}) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x20000004}, 0x2404c000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/softnet_stat\x00', 0x141103, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r2, &(0x7f0000000680)={0x0, 0x40200}, 0x8f) mmap$auto(0x8, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) mmap$auto(0x400, 0x4000d, 0xa35, 0x18, r2, 0x28000) unshare$auto(0x8) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0) read$auto(r3, 0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) r4 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) read$auto_proc_pid_maps_operations_internal(r4, &(0x7f00000001c0)=""/204, 0xcc) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x20040, 0x0) openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/options/latency-format\x00', 0x121082, 0x0) writev$auto(0x4, &(0x7f0000000080)={0x0, 0x8}, 0x1) mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x1c9e40, 0x0) mmap$auto(0x3, 0x20009, 0x2b, 0xeb1, r2, 0xd1a) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ptyz4\x00', 0x0, 0x0) ioctl$auto_TIOCSTI2(r4, 0x5412, &(0x7f0000000000)) 1.459894495s ago: executing program 5 (id=5954): socket(0x1e, 0x4, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) socketpair$auto(0x1, 0x2, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x1f, 0x103) 1.163784636s ago: executing program 5 (id=5955): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) r0 = socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2\x00', 0x80001f00) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r0) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYRESDEC=r1, @ANYBLOB="7e5a999322dcea1636da6970e84c42ec96a38586d50cf6599cd838edc2ed879dcfba767c2db982d07ac41217bcb51a278077826b443ef2458acf7304b9c384064d2975b127daebd77fcfbb8ed1f0ca84d20140a29cd720a17966780620609bb7ffb64b5548ece51a3781c2c33617e11323b9ce2d2ea935cc9fbeac3c4c72d49914619d90ee87ed117339e5489fd4b8707ca316df05880aee58670a10eeeface64c86502e1b1253e0211ee098a37056a3f8c760792be3", @ANYRESHEX=r4, @ANYRES64=0x0, @ANYRES8=r3, @ANYRES8=r0], 0x1ac}}, 0x24048871) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[], 0xf5c}, 0x1, 0x0, 0x0, 0x4044055}, 0x20008811) recvmmsg$auto(r5, 0x0, 0x10c, 0x8, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) readahead$auto(r6, 0xcc7f, 0x6) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24044845}, 0x10) bpf$auto(0x7, &(0x7f0000000280)=@bpf_attr_7={@prog_id=0xffffffff, 0x8, 0x4, r2}, 0x90) 1.04643851s ago: executing program 3 (id=5956): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) listen$auto(0x3, 0x83) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000100)=0x4) r0 = gettid() tkill$auto(r0, 0x7) tkill$auto(r0, 0x7ffefffe) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0xc0000, 0x0) init_module$auto(&(0x7f0000000240)="f7a385b2b9458a679bce476a315c9ce6e496a8f31eff6f4616c2e56480e0667d29ce12b52ac39e300c0cefc1d2174c76aec8d29e51ffda4a9c8e26052ff35d814f9def94f649023499fb1cd37c2c77c3bdfa6b9aded7a9efe05e586ab8ce8c2ea241b02f4ed0a04fad6e0986a2be50e87d433afe78af5fdefd20130d02848a814bf0fa4086c236", 0x80, &(0x7f00000000c0)='/dev/tap63\x00') openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x1000, 0x15f4da0a, 0x3, 0x5, 0x62, 0x5, 0x20000005, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) 418.45187ms ago: executing program 0 (id=5957): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, 0x0, 0x55) getsockopt$auto(r0, 0x29, 0x18, 0x0, 0x0) 91.969805ms ago: executing program 6 (id=5958): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/192, 0xc0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) utimensat$auto(r2, &(0x7f0000001c80)='\x00', 0x0, 0x1000) fsopen$auto(0x0, 0x1) write$auto(0xca, &(0x7f0000000040)='\x04>\x01\x0e\xfb\xff\x05OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_ipv6\x00', 0x1401, 0x0) pwrite64$auto(r3, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99C\x05s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2y\x1f\xee\xeeE\x18A\x14\xc6\xaa\x19\x9d\x17\xcf\x9e3!\x97\xe8X\xa3,a\xd5\x14\xb9\xa9\xb3\xf7\x19\xe5\xa6\x81\xbb 3\xc3\xec\x12\xef\xfbs\x9e}\xb0\xc9\x16I\x14\xbc\x01\xf0\x93O\xf0\x9byg\xb2\xdcZ\xf8g[\xf5\x97\x16\x0fm3\xcc\xc9\xaa\x812\b\x12\xffQq\xd5\xfc\xc5\xaf\xcd:1\xef\xca\xf3\xc7\xa4\xebS\x17\x99\x0f\xa3\x83\xb9\xbe\xa0u\x90(\xd2\xa5\xbe\xaf9a\x10K&\xf7N\xb8\xf5\x19\x12\x95\x1ex\xe3\x89\x9eU\xb5\x80\x0e\xfb\xe2\xd61\b\t\xa4H*v\x9a`%\xb4)\xa0\xb6\x11\xc3\xb4\xaa^\x02\xc5E\na\x03\xd3\xf2j\xa4Ly\xfa\xfcX.\xa1\xcfU\xcc\xec\x8b\x057\xda,v\x1br\xd3\xc1\xcc\xb4p\xff\x8c\x17YW\xc2\x92\xaf\xa8\x9c\x9dX]\xa4\x9a\x1a\xd5\x80B\x10\xd1\xd5\xca\x85\x9e)FT0\xe3\xb4\x19\x9dR\xc5\xdf\xb3\x9e\xea+2\x94\xba\x8c\xbe79\xba\x92\xcb\xd5\x87kB\xbd\xda\xf9\xb6)\xb3R\"\xe5A\xcfi\xd1\xf6\xa9\x86\x00\x88\x86\x05@d\xbc\xca\xd0v\xa07\xd9\x01Z\x89\xec\xce[J\xfeM\xfc\x1f\xe7j)\xe8\xdb\xfa\xa57\xe71\x9b\xbc\xf5|\xc6\xc8\xe7N\xd3i.|\xdd\xc0h\xd6', 0x8001, 0x20000000) socketpair$auto(0x1, 0x0, 0x8000000000000000, 0x0) socket(0x2c, 0x1, 0x20003) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0xf53, 0xffffffffffff0008, 0x17) r4 = set_tid_address$auto(&(0x7f0000000140)=0x1) fanotify_mark$auto(r0, 0x2, 0xe, 0xffffffffffffffff, &(0x7f0000000200)='./file0\x00') ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r4) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r5, &(0x7f00000000c0)={0x0, 0x5}, 0x3) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.3/usb4/4-0:1.0/authorized\x00', 0x10b142, 0x0) sendfile$auto(r6, r6, 0x0, 0x1000200) 0s ago: executing program 3 (id=5959): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/max_page_sharing\x00', 0x1ab101, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18"], 0x18}, 0x1, 0x0, 0x0, 0x60040001}, 0x80) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000000)) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mincore$auto(0x1000, 0x8001, 0x0) r3 = eventfd$auto(0x7) close_range$auto(r3, r2, 0x80000000) io_uring_setup$auto(0x6, 0x0) io_uring_enter$auto(r2, 0x0, 0x820e, 0x9, 0x0, 0x80000005) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) kernel console output (not intermixed with test programs): scuous mode [ 378.703071][T11395] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1128'. [ 378.760534][ T7260] hsr_slave_0: left promiscuous mode [ 378.780500][ T7260] hsr_slave_1: left promiscuous mode [ 378.786614][ T7260] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 378.822121][ T7260] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 378.837246][ T7260] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 378.858174][ T7260] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 378.974867][ T7260] veth1_macvtap: left promiscuous mode [ 378.983495][ T7260] veth1_vlan: left promiscuous mode [ 378.989720][ T7260] veth0_vlan: left promiscuous mode [ 379.572943][ T7238] Bluetooth: hci0: command tx timeout [ 379.872689][T11422] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1133'. [ 380.022585][ T7260] team0 (unregistering): Port device team_slave_1 removed [ 380.373653][T11403] netlink: 338 bytes leftover after parsing attributes in process `syz.4.1128'. [ 380.566368][T11424] FAULT_INJECTION: forcing a failure. [ 380.566368][T11424] name fail_futex, interval 1, probability 0, space 0, times 0 [ 380.588797][T11424] CPU: 1 UID: 0 PID: 11424 Comm: syz.4.1134 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 380.588836][T11424] Tainted: [U]=USER [ 380.588844][T11424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 380.588858][T11424] Call Trace: [ 380.588865][T11424] [ 380.588874][T11424] dump_stack_lvl+0x16c/0x1f0 [ 380.588914][T11424] should_fail_ex+0x512/0x640 [ 380.588955][T11424] get_futex_key+0xf36/0x1540 [ 380.588984][T11424] ? find_held_lock+0x2b/0x80 [ 380.589007][T11424] ? __pfx_get_futex_key+0x10/0x10 [ 380.589036][T11424] ? __mutex_trylock_common+0xe9/0x250 [ 380.589076][T11424] futex_wake+0xea/0x530 [ 380.589113][T11424] ? __pfx_futex_wake+0x10/0x10 [ 380.589161][T11424] ? __lock_acquire+0xb8a/0x1c90 [ 380.589207][T11424] do_futex+0x1e3/0x350 [ 380.589237][T11424] ? __pfx_do_futex+0x10/0x10 [ 380.589263][T11424] ? __might_fault+0xe3/0x190 [ 380.589307][T11424] mm_release+0x24e/0x300 [ 380.589334][T11424] do_exit+0x68b/0x2bd0 [ 380.589373][T11424] ? __pfx_do_exit+0x10/0x10 [ 380.589405][T11424] ? do_raw_spin_lock+0x12c/0x2b0 [ 380.589441][T11424] ? find_held_lock+0x2b/0x80 [ 380.589469][T11424] do_group_exit+0xd3/0x2a0 [ 380.589504][T11424] get_signal+0x2673/0x26d0 [ 380.589542][T11424] ? __pfx_get_signal+0x10/0x10 [ 380.589567][T11424] ? do_futex+0x122/0x350 [ 380.589597][T11424] ? __pfx_do_futex+0x10/0x10 [ 380.589629][T11424] arch_do_signal_or_restart+0x8f/0x790 [ 380.589658][T11424] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 380.589694][T11424] ? xfd_validate_state+0x61/0x180 [ 380.589732][T11424] exit_to_user_mode_loop+0x84/0x110 [ 380.589771][T11424] do_syscall_64+0x3f6/0x490 [ 380.589812][T11424] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.589836][T11424] RIP: 0033:0x7f42c038e929 [ 380.589856][T11424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 380.589880][T11424] RSP: 002b:00007f42c11ff0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 380.589902][T11424] RAX: fffffffffffffe00 RBX: 00007f42c05b5fa8 RCX: 00007f42c038e929 [ 380.589918][T11424] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f42c05b5fa8 [ 380.589933][T11424] RBP: 00007f42c05b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 380.589947][T11424] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f42c05b5fac [ 380.589961][T11424] R13: 0000000000000000 R14: 00007ffc6fd37810 R15: 00007ffc6fd378f8 [ 380.589991][T11424] [ 380.899709][T11300] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 380.985631][T11300] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 381.006712][T11300] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 381.036653][T11300] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 381.257900][T11438] zram: Cannot change disksize for initialized device [ 381.708319][ T7238] Bluetooth: hci0: command tx timeout [ 382.077217][T11459] netlink: 'syz.0.1141': attribute type 16 has an invalid length. [ 382.105519][T11300] 8021q: adding VLAN 0 to HW filter on device bond0 [ 382.108083][T11459] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1141'. [ 382.136571][T11459] veth1_macvtap: left promiscuous mode [ 382.204759][T11300] 8021q: adding VLAN 0 to HW filter on device team0 [ 382.379836][ T7991] bridge0: port 1(bridge_slave_0) entered blocking state [ 382.386985][ T7991] bridge0: port 1(bridge_slave_0) entered forwarding state [ 382.457156][ T7991] bridge0: port 2(bridge_slave_1) entered blocking state [ 382.464370][ T7991] bridge0: port 2(bridge_slave_1) entered forwarding state [ 383.464478][T11300] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 383.492293][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.523265][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.755779][T11300] veth0_vlan: entered promiscuous mode [ 384.830852][T11300] veth1_vlan: entered promiscuous mode [ 384.921883][T11528] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1156'. [ 384.983899][T11300] veth0_macvtap: entered promiscuous mode [ 385.028237][T11528] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1156'. [ 385.069236][T11300] veth1_macvtap: entered promiscuous mode [ 385.081961][T11528] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1156'. [ 385.230985][T11300] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 385.320056][T11300] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 385.381383][T11300] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.414494][T11542] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1151'. [ 385.432258][T11300] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.469874][T11300] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.513467][T11300] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.886341][ T7260] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 385.936763][ T7260] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 386.055307][ T9456] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 386.081225][ T9456] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 386.912512][T11574] FAULT_INJECTION: forcing a failure. [ 386.912512][T11574] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 386.998198][T11574] CPU: 0 UID: 0 PID: 11574 Comm: syz.5.1157 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 386.998237][T11574] Tainted: [U]=USER [ 386.998244][T11574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 386.998257][T11574] Call Trace: [ 386.998264][T11574] [ 386.998272][T11574] dump_stack_lvl+0x16c/0x1f0 [ 386.998311][T11574] should_fail_ex+0x512/0x640 [ 386.998347][T11574] _copy_from_user+0x2e/0xd0 [ 386.998383][T11574] copy_msghdr_from_user+0x98/0x160 [ 386.998418][T11574] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 386.998458][T11574] ? __pfx__kstrtoull+0x10/0x10 [ 386.998490][T11574] ___sys_sendmsg+0xfe/0x1d0 [ 386.998525][T11574] ? __pfx____sys_sendmsg+0x10/0x10 [ 386.998579][T11574] ? find_held_lock+0x2b/0x80 [ 386.998630][T11574] __sys_sendmmsg+0x200/0x420 [ 386.998684][T11574] ? __pfx___sys_sendmmsg+0x10/0x10 [ 386.998740][T11574] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 386.998785][T11574] ? fput+0x70/0xf0 [ 386.998805][T11574] ? ksys_write+0x1ac/0x250 [ 386.998835][T11574] ? __pfx_ksys_write+0x10/0x10 [ 386.998869][T11574] __x64_sys_sendmmsg+0x9c/0x100 [ 386.998901][T11574] ? lockdep_hardirqs_on+0x7c/0x110 [ 386.998932][T11574] do_syscall_64+0xcd/0x490 [ 386.998969][T11574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.998991][T11574] RIP: 0033:0x7f12c8f8e929 [ 386.999006][T11574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.999027][T11574] RSP: 002b:00007f12c9d82038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 386.999046][T11574] RAX: ffffffffffffffda RBX: 00007f12c91b5fa0 RCX: 00007f12c8f8e929 [ 386.999059][T11574] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 386.999072][T11574] RBP: 00007f12c9d82090 R08: 0000000000000000 R09: 0000000000000000 [ 386.999084][T11574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 386.999096][T11574] R13: 0000000000000000 R14: 00007f12c91b5fa0 R15: 00007ffe9592b938 [ 386.999121][T11574] [ 388.358023][T11601] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1158'. [ 389.719975][T11605] FAULT_INJECTION: forcing a failure. [ 389.719975][T11605] name fail_futex, interval 1, probability 0, space 0, times 0 [ 389.782640][T11605] CPU: 1 UID: 0 PID: 11605 Comm: syz.5.1160 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 389.782678][T11605] Tainted: [U]=USER [ 389.782684][T11605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 389.782698][T11605] Call Trace: [ 389.782704][T11605] [ 389.782712][T11605] dump_stack_lvl+0x16c/0x1f0 [ 389.782750][T11605] should_fail_ex+0x512/0x640 [ 389.782786][T11605] get_futex_key+0xf36/0x1540 [ 389.782815][T11605] ? find_held_lock+0x2b/0x80 [ 389.782837][T11605] ? __pfx_get_futex_key+0x10/0x10 [ 389.782864][T11605] ? __mutex_trylock_common+0xe9/0x250 [ 389.782900][T11605] futex_wake+0xea/0x530 [ 389.782934][T11605] ? __pfx_futex_wake+0x10/0x10 [ 389.782964][T11605] ? __lock_acquire+0xb8a/0x1c90 [ 389.783006][T11605] do_futex+0x1e3/0x350 [ 389.783033][T11605] ? __pfx_do_futex+0x10/0x10 [ 389.783058][T11605] ? __might_fault+0xe3/0x190 [ 389.783098][T11605] mm_release+0x24e/0x300 [ 389.783123][T11605] do_exit+0x68b/0x2bd0 [ 389.783159][T11605] ? __pfx_do_exit+0x10/0x10 [ 389.783187][T11605] ? do_raw_spin_lock+0x12c/0x2b0 [ 389.783221][T11605] ? find_held_lock+0x2b/0x80 [ 389.783247][T11605] do_group_exit+0xd3/0x2a0 [ 389.783278][T11605] get_signal+0x2673/0x26d0 [ 389.783313][T11605] ? __pfx_get_signal+0x10/0x10 [ 389.783337][T11605] ? do_futex+0x122/0x350 [ 389.783364][T11605] ? __pfx_do_futex+0x10/0x10 [ 389.783394][T11605] arch_do_signal_or_restart+0x8f/0x790 [ 389.783421][T11605] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 389.783454][T11605] ? xfd_validate_state+0x61/0x180 [ 389.783482][T11605] ? __pfx_ksys_write+0x10/0x10 [ 389.783519][T11605] exit_to_user_mode_loop+0x84/0x110 [ 389.783555][T11605] do_syscall_64+0x3f6/0x490 [ 389.783598][T11605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 389.783621][T11605] RIP: 0033:0x7f12c8f8e929 [ 389.783638][T11605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 389.783660][T11605] RSP: 002b:00007f12c9d1f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 389.783681][T11605] RAX: fffffffffffffe00 RBX: 00007f12c91b6248 RCX: 00007f12c8f8e929 [ 389.783696][T11605] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f12c91b6248 [ 389.783709][T11605] RBP: 00007f12c91b6240 R08: 0000000000000000 R09: 0000000000000000 [ 389.783723][T11605] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12c91b624c [ 389.783737][T11605] R13: 0000000000000000 R14: 00007ffe9592b850 R15: 00007ffe9592b938 [ 389.783765][T11605] [ 394.523099][T11718] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1176'. [ 396.028654][T11759] FAULT_INJECTION: forcing a failure. [ 396.028654][T11759] name failslab, interval 1, probability 0, space 0, times 0 [ 396.080545][T11759] CPU: 1 UID: 0 PID: 11759 Comm: syz.0.1187 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 396.080593][T11759] Tainted: [U]=USER [ 396.080603][T11759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 396.080619][T11759] Call Trace: [ 396.080628][T11759] [ 396.080639][T11759] dump_stack_lvl+0x16c/0x1f0 [ 396.080686][T11759] should_fail_ex+0x512/0x640 [ 396.080725][T11759] ? __kmalloc_noprof+0xbf/0x510 [ 396.080768][T11759] ? fib_default_rule_add+0x4f/0x420 [ 396.080811][T11759] should_failslab+0xc2/0x120 [ 396.080839][T11759] __kmalloc_noprof+0xd2/0x510 [ 396.080888][T11759] fib_default_rule_add+0x4f/0x420 [ 396.080936][T11759] fib4_rules_init+0xa6/0x1c0 [ 396.080976][T11759] fib_net_init+0x1dc/0x3f0 [ 396.081004][T11759] ? __pfx___register_sysctl_table+0x10/0x10 [ 396.081049][T11759] ? __pfx_fib_net_init+0x10/0x10 [ 396.081085][T11759] ? lockdep_init_map_type+0x5c/0x280 [ 396.081125][T11759] ? do_init_timer+0xc9/0x110 [ 396.081159][T11759] ? devinet_init_net+0x5c2/0x910 [ 396.081197][T11759] ? __pfx_fib_net_init+0x10/0x10 [ 396.081225][T11759] ops_init+0x1df/0x5f0 [ 396.081273][T11759] setup_net+0x1ff/0x510 [ 396.081295][T11759] ? lockdep_init_map_type+0x5c/0x280 [ 396.081332][T11759] ? __pfx_setup_net+0x10/0x10 [ 396.081360][T11759] ? debug_mutex_init+0x37/0x70 [ 396.081389][T11759] copy_net_ns+0x2a6/0x5f0 [ 396.081421][T11759] create_new_namespaces+0x3ea/0xa90 [ 396.081459][T11759] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 396.081492][T11759] ksys_unshare+0x45b/0xa40 [ 396.081527][T11759] ? __pfx_ksys_unshare+0x10/0x10 [ 396.081563][T11759] ? xfd_validate_state+0x61/0x180 [ 396.081610][T11759] __x64_sys_unshare+0x31/0x40 [ 396.081645][T11759] do_syscall_64+0xcd/0x490 [ 396.081689][T11759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 396.081716][T11759] RIP: 0033:0x7fa9be78e929 [ 396.081738][T11759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 396.081765][T11759] RSP: 002b:00007fa9bf61b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 396.081792][T11759] RAX: ffffffffffffffda RBX: 00007fa9be9b5fa0 RCX: 00007fa9be78e929 [ 396.081810][T11759] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 396.081827][T11759] RBP: 00007fa9be810b39 R08: 0000000000000000 R09: 0000000000000000 [ 396.081843][T11759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 396.081859][T11759] R13: 0000000000000000 R14: 00007fa9be9b5fa0 R15: 00007ffec83ded88 [ 396.081892][T11759] [ 396.992543][T11773] tipc: Started in network mode [ 397.005232][T11773] tipc: Node identity ee00, cluster identity 4711 [ 397.022645][T11773] tipc: Node number set to 60928 [ 397.204845][T11772] Process accounting resumed [ 397.206647][T11785] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1193'. [ 397.278216][T11785] ipvlan0: entered allmulticast mode [ 397.283579][T11785] veth0_vlan: entered allmulticast mode [ 399.630402][T11838] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1206'. [ 399.680466][T11838] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 399.760193][T11824] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 399.785751][T11824] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 399.870118][T11824] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 399.876257][T11824] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 399.894185][T11824] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 399.904035][T11824] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 399.941362][T11824] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 401.088224][ T9768] Bluetooth: hci2: command 0x0c1a tx timeout [ 401.217246][T11868] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1211'. [ 401.888152][ T7238] Bluetooth: hci3: command 0x0c1a tx timeout [ 401.894395][ T9768] Bluetooth: hci4: command 0x0c1a tx timeout [ 401.968224][ T9768] Bluetooth: hci0: command 0x0c1a tx timeout [ 402.510857][T11887] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1216'. [ 403.168413][ T9768] Bluetooth: hci2: command 0x0c1a tx timeout [ 404.048506][ T9768] Bluetooth: hci0: command 0x0c1a tx timeout [ 406.023764][T11973] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1231'. [ 406.040837][T11973] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 406.128123][ T9768] Bluetooth: hci0: command 0x0c1a tx timeout [ 406.354284][T11980] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1232'. [ 406.369661][T11980] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1232'. [ 407.059582][T11997] FAULT_INJECTION: forcing a failure. [ 407.059582][T11997] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 407.142440][T11997] CPU: 1 UID: 0 PID: 11997 Comm: syz.3.1237 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 407.142485][T11997] Tainted: [U]=USER [ 407.142493][T11997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 407.142509][T11997] Call Trace: [ 407.142518][T11997] [ 407.142527][T11997] dump_stack_lvl+0x16c/0x1f0 [ 407.142572][T11997] should_fail_ex+0x512/0x640 [ 407.142617][T11997] _copy_to_user+0x32/0xd0 [ 407.142661][T11997] simple_read_from_buffer+0xcb/0x170 [ 407.142698][T11997] proc_fail_nth_read+0x197/0x270 [ 407.142731][T11997] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 407.142766][T11997] ? rw_verify_area+0xcf/0x680 [ 407.142799][T11997] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 407.142829][T11997] vfs_read+0x1e4/0xc60 [ 407.142871][T11997] ? __pfx___mutex_lock+0x10/0x10 [ 407.142911][T11997] ? __pfx_vfs_read+0x10/0x10 [ 407.142958][T11997] ? __fget_files+0x20e/0x3c0 [ 407.143004][T11997] ksys_read+0x12a/0x250 [ 407.143042][T11997] ? __pfx_ksys_read+0x10/0x10 [ 407.143091][T11997] do_syscall_64+0xcd/0x490 [ 407.143135][T11997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.143168][T11997] RIP: 0033:0x7f552d78d33c [ 407.143191][T11997] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 407.143217][T11997] RSP: 002b:00007f552e526030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 407.143239][T11997] RAX: ffffffffffffffda RBX: 00007f552d9b5fa0 RCX: 00007f552d78d33c [ 407.143256][T11997] RDX: 000000000000000f RSI: 00007f552e5260a0 RDI: 0000000000000004 [ 407.143272][T11997] RBP: 00007f552e526090 R08: 0000000000000000 R09: 0000000000000000 [ 407.143287][T11997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 407.143303][T11997] R13: 0000000000000000 R14: 00007f552d9b5fa0 R15: 00007fffce401258 [ 407.143337][T11997] [ 407.694048][T12011] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1242'. [ 407.716934][T12011] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1242'. [ 407.751541][T12011] netlink: 290 bytes leftover after parsing attributes in process `syz.3.1242'. [ 407.823848][T12016] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input17 [ 408.188454][T12030] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1247'. [ 408.244509][T12030] ipvlan1: entered allmulticast mode [ 408.257241][T12030] veth0_vlan: entered allmulticast mode [ 408.999957][T12048] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 409.564147][T12063] Process accounting resumed syzkaller syzkaller login: [ 412.404182][ T9768] Bluetooth: hci2: unexpected event 0x3e length: 509 > 260 [ 412.404225][ T9768] Bluetooth: hci2: unexpected subevent 0x02 length: 508 > 260 [ 412.419642][ T9768] Bluetooth: hci2: Dropping invalid advertising data [ 412.426657][ T9768] Bluetooth: hci2: unknown advertising packet type: 0xe9 [ 412.994881][T12143] sp0: Synchronizing with TNC [ 416.199410][T12221] CIFS: VFS: Invalid SecurityFlags: [ 416.583718][T12232] Process accounting resumed [ 416.806689][T12251] FAULT_INJECTION: forcing a failure. [ 416.806689][T12251] name fail_futex, interval 1, probability 0, space 0, times 0 [ 416.860973][T12251] CPU: 0 UID: 0 PID: 12251 Comm: syz.5.1292 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 416.861022][T12251] Tainted: [U]=USER [ 416.861031][T12251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 416.861047][T12251] Call Trace: [ 416.861056][T12251] [ 416.861066][T12251] dump_stack_lvl+0x16c/0x1f0 [ 416.861116][T12251] should_fail_ex+0x512/0x640 [ 416.861170][T12251] get_futex_key+0x1d0/0x1540 [ 416.861213][T12251] ? __pfx_get_futex_key+0x10/0x10 [ 416.861259][T12251] futex_wake+0xea/0x530 [ 416.861303][T12251] ? __pfx_futex_wake+0x10/0x10 [ 416.861350][T12251] ? find_held_lock+0x2b/0x80 [ 416.861376][T12251] ? __might_fault+0xe3/0x190 [ 416.861416][T12251] ? __might_fault+0xe3/0x190 [ 416.861455][T12251] ? __might_fault+0x13b/0x190 [ 416.861501][T12251] do_futex+0x1e3/0x350 [ 416.861536][T12251] ? __pfx_do_futex+0x10/0x10 [ 416.861573][T12251] ? __do_sys_capget+0x109/0x540 [ 416.861606][T12251] __x64_sys_futex+0x1e0/0x4c0 [ 416.861644][T12251] ? __x64_sys_openat+0x174/0x210 [ 416.861676][T12251] ? __pfx___x64_sys_futex+0x10/0x10 [ 416.861725][T12251] do_syscall_64+0xcd/0x490 [ 416.861772][T12251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.861800][T12251] RIP: 0033:0x7f12c8f8e929 [ 416.861823][T12251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.861851][T12251] RSP: 002b:00007f12c9d820e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 416.861877][T12251] RAX: ffffffffffffffda RBX: 00007f12c91b5fa8 RCX: 00007f12c8f8e929 [ 416.861895][T12251] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f12c91b5fac [ 416.861913][T12251] RBP: 00007f12c91b5fa0 R08: 00007f12c9d83000 R09: 0000000000000000 [ 416.861930][T12251] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f12c91b5fac [ 416.861947][T12251] R13: 0000000000000000 R14: 00007ffe9592b850 R15: 00007ffe9592b938 [ 416.861983][T12251] [ 417.063637][ C0] vkms_vblank_simulate: vblank timer overrun [ 419.553647][T12307] FAULT_INJECTION: forcing a failure. [ 419.553647][T12307] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 419.581810][T12307] CPU: 0 UID: 0 PID: 12307 Comm: syz.3.1302 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 419.581857][T12307] Tainted: [U]=USER [ 419.581865][T12307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 419.581882][T12307] Call Trace: [ 419.581891][T12307] [ 419.581902][T12307] dump_stack_lvl+0x16c/0x1f0 [ 419.581952][T12307] should_fail_ex+0x512/0x640 [ 419.581998][T12307] _copy_to_user+0x32/0xd0 [ 419.582044][T12307] simple_read_from_buffer+0xcb/0x170 [ 419.582083][T12307] proc_fail_nth_read+0x197/0x270 [ 419.582117][T12307] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 419.582151][T12307] ? rw_verify_area+0xcf/0x680 [ 419.582191][T12307] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 419.582223][T12307] vfs_read+0x1e4/0xc60 [ 419.582266][T12307] ? __pfx___mutex_lock+0x10/0x10 [ 419.582309][T12307] ? __pfx_vfs_read+0x10/0x10 [ 419.582356][T12307] ? __fget_files+0x20e/0x3c0 [ 419.582392][T12307] ? ipc_obtain_object_check+0x160/0x190 [ 419.582442][T12307] ksys_read+0x12a/0x250 [ 419.582478][T12307] ? __pfx_ksys_read+0x10/0x10 [ 419.582526][T12307] do_syscall_64+0xcd/0x490 [ 419.582569][T12307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.582601][T12307] RIP: 0033:0x7f552d78d33c [ 419.582622][T12307] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 419.582650][T12307] RSP: 002b:00007f552e526030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 419.582676][T12307] RAX: ffffffffffffffda RBX: 00007f552d9b5fa0 RCX: 00007f552d78d33c [ 419.582694][T12307] RDX: 000000000000000f RSI: 00007f552e5260a0 RDI: 0000000000000003 [ 419.582711][T12307] RBP: 00007f552e526090 R08: 0000000000000000 R09: 0000000000000000 [ 419.582728][T12307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 419.582744][T12307] R13: 0000000000000001 R14: 00007f552d9b5fa0 R15: 00007fffce401258 [ 419.582782][T12307] [ 419.780565][ C0] vkms_vblank_simulate: vblank timer overrun [ 421.405386][T12349] Process accounting resumed [ 421.862476][T12350] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1308'. [ 422.720985][T12376] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 424.037768][T12389] tipc: Started in network mode [ 424.050363][T12389] tipc: Node identity ee00, cluster identity 4711 [ 424.056847][T12389] tipc: Node number set to 60928 [ 424.212893][T12388] Process accounting resumed [ 427.358350][T12462] tipc: Started in network mode [ 427.363281][T12462] tipc: Node identity ee00, cluster identity 4711 [ 427.370244][T12462] tipc: Node number set to 60928 [ 427.451602][T12465] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1336'. [ 427.686181][T12460] Process accounting resumed [ 428.801042][T12452] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 429.320616][T12480] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1338'. [ 431.462385][T12526] Process accounting resumed [ 432.089703][T12532] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1353'. [ 433.186022][T12566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1362'. [ 435.098934][T12607] FAULT_INJECTION: forcing a failure. [ 435.098934][T12607] name fail_futex, interval 1, probability 0, space 0, times 0 [ 435.151722][T12607] CPU: 1 UID: 0 PID: 12607 Comm: syz.0.1372 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 435.151768][T12607] Tainted: [U]=USER [ 435.151777][T12607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 435.151793][T12607] Call Trace: [ 435.151802][T12607] [ 435.151812][T12607] dump_stack_lvl+0x16c/0x1f0 [ 435.151857][T12607] should_fail_ex+0x512/0x640 [ 435.151901][T12607] get_futex_key+0x1d0/0x1540 [ 435.151940][T12607] ? __pfx_get_futex_key+0x10/0x10 [ 435.151985][T12607] futex_wake+0xea/0x530 [ 435.152026][T12607] ? rcu_is_watching+0x12/0xc0 [ 435.152053][T12607] ? __pfx_futex_wake+0x10/0x10 [ 435.152097][T12607] ? kmem_cache_free+0x2d1/0x4d0 [ 435.152142][T12607] ? fd_install+0x225/0x750 [ 435.152177][T12607] ? putname+0x154/0x1a0 [ 435.152207][T12607] do_futex+0x1e3/0x350 [ 435.152242][T12607] ? __pfx_do_futex+0x10/0x10 [ 435.152278][T12607] ? __pfx___might_resched+0x10/0x10 [ 435.152310][T12607] __x64_sys_futex+0x1e0/0x4c0 [ 435.152348][T12607] ? __x64_sys_openat+0x174/0x210 [ 435.152379][T12607] ? __pfx___x64_sys_futex+0x10/0x10 [ 435.152427][T12607] do_syscall_64+0xcd/0x490 [ 435.152472][T12607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.152500][T12607] RIP: 0033:0x7fa9be78e929 [ 435.152522][T12607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.152550][T12607] RSP: 002b:00007fa9bf61b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 435.152575][T12607] RAX: ffffffffffffffda RBX: 00007fa9be9b5fa8 RCX: 00007fa9be78e929 [ 435.152593][T12607] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa9be9b5fac [ 435.152611][T12607] RBP: 00007fa9be9b5fa0 R08: 00007fa9bf61c000 R09: 0000000000000000 [ 435.152628][T12607] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fa9be9b5fac [ 435.152644][T12607] R13: 0000000000000000 R14: 00007ffec83deca0 R15: 00007ffec83ded88 [ 435.152687][T12607] [ 436.774433][T12633] Process accounting resumed [ 439.087413][T12662] Process accounting resumed [ 440.334548][T12673] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 440.378233][T12673] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 440.423920][T12673] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 440.705278][T12684] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1384'. [ 440.815994][T12688] Process accounting resumed [ 441.400488][T12701] kAFS: No cell specified [ 443.353246][ T9768] Bluetooth: hci4: unexpected event 0x3e length: 728 > 260 [ 443.353284][ T9768] Bluetooth: hci4: unexpected subevent 0x03 length: 727 > 9 [ 443.438111][T12725] FAULT_INJECTION: forcing a failure. [ 443.438111][T12725] name fail_futex, interval 1, probability 0, space 0, times 0 [ 443.469788][T12725] CPU: 0 UID: 0 PID: 12725 Comm: syz.4.1406 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 443.469842][T12725] Tainted: [U]=USER [ 443.469853][T12725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 443.469872][T12725] Call Trace: [ 443.469883][T12725] [ 443.469895][T12725] dump_stack_lvl+0x16c/0x1f0 [ 443.469949][T12725] should_fail_ex+0x512/0x640 [ 443.470002][T12725] get_futex_key+0x1d0/0x1540 [ 443.470043][T12725] ? __pfx_get_futex_key+0x10/0x10 [ 443.470097][T12725] futex_wake+0xea/0x530 [ 443.470144][T12725] ? debugfs_file_put+0x72/0xc0 [ 443.470174][T12725] ? __pfx_futex_wake+0x10/0x10 [ 443.470219][T12725] ? full_proxy_read+0x154/0x200 [ 443.470260][T12725] ? __pfx_full_proxy_read+0x10/0x10 [ 443.470299][T12725] ? vfs_read+0x23b/0xc60 [ 443.470353][T12725] do_futex+0x1e3/0x350 [ 443.470391][T12725] ? __pfx_do_futex+0x10/0x10 [ 443.470438][T12725] __x64_sys_futex+0x1e0/0x4c0 [ 443.470476][T12725] ? fput+0x70/0xf0 [ 443.470504][T12725] ? __pfx___x64_sys_futex+0x10/0x10 [ 443.470542][T12725] ? __pfx___x64_sys_pread64+0x10/0x10 [ 443.470599][T12725] do_syscall_64+0xcd/0x490 [ 443.470659][T12725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.470687][T12725] RIP: 0033:0x7f42c038e929 [ 443.470710][T12725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.470738][T12725] RSP: 002b:00007f42c11ff0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 443.470767][T12725] RAX: ffffffffffffffda RBX: 00007f42c05b5fa8 RCX: 00007f42c038e929 [ 443.470798][T12725] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f42c05b5fac [ 443.470815][T12725] RBP: 00007f42c05b5fa0 R08: 00007f42c1200000 R09: 0000000000000000 [ 443.470832][T12725] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f42c05b5fac [ 443.470849][T12725] R13: 0000000000000000 R14: 00007ffc6fd37810 R15: 00007ffc6fd378f8 [ 443.470884][T12725] [ 443.673113][ C0] vkms_vblank_simulate: vblank timer overrun [ 444.074793][T12732] kAFS: No cell specified [ 444.634093][T12737] FAULT_INJECTION: forcing a failure. [ 444.634093][T12737] name failslab, interval 1, probability 0, space 0, times 0 [ 444.676033][T12737] CPU: 1 UID: 2054 PID: 12737 Comm: syz.3.1400 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 444.676080][T12737] Tainted: [U]=USER [ 444.676089][T12737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 444.676104][T12737] Call Trace: [ 444.676112][T12737] [ 444.676121][T12737] dump_stack_lvl+0x16c/0x1f0 [ 444.676171][T12737] should_fail_ex+0x512/0x640 [ 444.676209][T12737] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 444.676248][T12737] should_failslab+0xc2/0x120 [ 444.676272][T12737] __kmalloc_cache_noprof+0x6a/0x3e0 [ 444.676306][T12737] ? key_user_lookup+0x169/0x560 [ 444.676337][T12737] ? key_user_lookup+0x195/0x560 [ 444.676373][T12737] key_user_lookup+0x195/0x560 [ 444.676406][T12737] ? __pfx_key_user_lookup+0x10/0x10 [ 444.676443][T12737] ? security_key_permission+0x79/0x240 [ 444.676482][T12737] key_alloc+0x18b/0x1330 [ 444.676525][T12737] ? __pfx_keyring_search+0x10/0x10 [ 444.676565][T12737] ? __pfx_key_alloc+0x10/0x10 [ 444.676590][T12737] ? __pfx_key_default_cmp+0x10/0x10 [ 444.676619][T12737] ? __pfx_keyring_search_iterator+0x10/0x10 [ 444.676651][T12737] keyring_alloc+0x44/0xc0 [ 444.676681][T12737] look_up_user_keyrings+0x46d/0x760 [ 444.676707][T12737] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 444.676739][T12737] lookup_user_key+0x1a3/0x1300 [ 444.676765][T12737] ? __pfx_lookup_user_key+0x10/0x10 [ 444.676786][T12737] ? do_futex+0x122/0x350 [ 444.676816][T12737] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 444.676844][T12737] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 444.676874][T12737] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 444.676905][T12737] keyctl_keyring_clear+0x24/0x1a0 [ 444.676925][T12737] __do_sys_keyctl+0x355/0x590 [ 444.676947][T12737] do_syscall_64+0xcd/0x490 [ 444.676979][T12737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.677000][T12737] RIP: 0033:0x7f552d78e929 [ 444.677015][T12737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.677034][T12737] RSP: 002b:00007f552e526038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 444.677052][T12737] RAX: ffffffffffffffda RBX: 00007f552d9b5fa0 RCX: 00007f552d78e929 [ 444.677065][T12737] RDX: 0000000000000002 RSI: 00000000fffffffb RDI: 0000000000000007 [ 444.677077][T12737] RBP: 00007f552d810b39 R08: 0000000000000008 R09: 0000000000000000 [ 444.677090][T12737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.677102][T12737] R13: 0000000000000000 R14: 00007f552d9b5fa0 R15: 00007fffce401258 [ 444.677127][T12737] [ 444.966090][T12743] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1401'. [ 445.084929][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.091505][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.908076][T12765] kAFS: No cell specified [ 446.607752][T12786] Process accounting resumed [ 446.975945][T12797] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1414'. [ 447.024113][T12798] kAFS: No cell specified [ 447.424978][T12810] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1417'. [ 449.363764][T12835] kAFS: No cell specified [ 452.054232][T12887] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1435'. [ 453.052721][T12920] FAULT_INJECTION: forcing a failure. [ 453.052721][T12920] name failslab, interval 1, probability 0, space 0, times 0 [ 453.082539][T12920] CPU: 1 UID: 0 PID: 12920 Comm: syz.0.1441 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 453.082583][T12920] Tainted: [U]=USER [ 453.082592][T12920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 453.082607][T12920] Call Trace: [ 453.082616][T12920] [ 453.082626][T12920] dump_stack_lvl+0x16c/0x1f0 [ 453.082670][T12920] should_fail_ex+0x512/0x640 [ 453.082698][T12920] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 453.082731][T12920] should_failslab+0xc2/0x120 [ 453.082750][T12920] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 453.082779][T12920] ? d_lookup+0xe7/0x190 [ 453.082799][T12920] ? alloc_inode+0xc3/0x240 [ 453.082822][T12920] alloc_inode+0xc3/0x240 [ 453.082841][T12920] new_inode+0x22/0x1c0 [ 453.082862][T12920] binderfs_create_file+0xb2/0x3b0 [ 453.082892][T12920] binderfs_fill_super+0xa18/0x1360 [ 453.082922][T12920] ? __pfx_binderfs_fill_super+0x10/0x10 [ 453.082967][T12920] ? shrinker_register+0x1a8/0x260 [ 453.083002][T12920] ? sget_fc+0x808/0xc20 [ 453.083038][T12920] ? apparmor_capable+0x114/0x1d0 [ 453.083063][T12920] ? __pfx_set_anon_super_fc+0x10/0x10 [ 453.083098][T12920] ? __pfx_binderfs_fill_super+0x10/0x10 [ 453.083133][T12920] get_tree_nodev+0xdd/0x190 [ 453.083172][T12920] vfs_get_tree+0x8e/0x340 [ 453.083204][T12920] vfs_cmd_create+0xd7/0x2a0 [ 453.083231][T12920] __do_sys_fsconfig+0x7b8/0xbe0 [ 453.083255][T12920] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 453.083272][T12920] ? fput+0x70/0xf0 [ 453.083300][T12920] do_syscall_64+0xcd/0x490 [ 453.083336][T12920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.083356][T12920] RIP: 0033:0x7fa9be78e929 [ 453.083372][T12920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.083392][T12920] RSP: 002b:00007fa9bf61b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 453.083411][T12920] RAX: ffffffffffffffda RBX: 00007fa9be9b5fa0 RCX: 00007fa9be78e929 [ 453.083424][T12920] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003 [ 453.083441][T12920] RBP: 00007fa9bf61b090 R08: 0000000000000000 R09: 0000000000000000 [ 453.083453][T12920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 453.083465][T12920] R13: 0000000000000000 R14: 00007fa9be9b5fa0 R15: 00007ffec83ded88 [ 453.083490][T12920] [ 453.669094][T12925] Process accounting resumed [ 453.843592][T12931] Process accounting resumed [ 454.652358][T12941] delete_channel: no stack [ 454.742118][T12952] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1450'. [ 1474.737107][T32570] zswap: compressor not available [ 1475.183780][T32584] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1475.312684][T32576] Setting dangerous option i915.mitigations - tainting kernel [ 1476.468372][T32593] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5557'. [ 1476.740101][T32599] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1477.859779][T14222] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 1477.859823][T14222] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15 [ 1477.896320][T14222] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1478.446728][T32632] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1479.333342][T32643] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1480.408672][T32655] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1480.908216][T31668] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1480.923024][T31668] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1480.975507][T31668] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1480.987842][T31668] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1480.995537][T31668] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1481.829172][T32681] netlink: 330 bytes leftover after parsing attributes in process `syz.5.5573'. [ 1482.445617][T32660] chnl_net:caif_netlink_parms(): no params data found [ 1482.499363][T32681] ›: renamed from hsr0 (while UP) [ 1483.087914][T31668] Bluetooth: hci3: command tx timeout [ 1483.362348][T32660] bridge0: port 1(bridge_slave_0) entered blocking state [ 1483.484458][T32660] bridge0: port 1(bridge_slave_0) entered disabled state [ 1483.499001][T32660] bridge_slave_0: entered allmulticast mode [ 1483.525423][T32660] bridge_slave_0: entered promiscuous mode [ 1483.553116][T32660] bridge0: port 2(bridge_slave_1) entered blocking state [ 1483.573142][T32660] bridge0: port 2(bridge_slave_1) entered disabled state [ 1483.610106][T32660] bridge_slave_1: entered allmulticast mode [ 1483.626974][T32660] bridge_slave_1: entered promiscuous mode [ 1483.806836][T32660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1483.961467][T32660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1484.359291][T32660] team0: Port device team_slave_0 added [ 1484.390600][T32660] team0: Port device team_slave_1 added [ 1484.584677][T32660] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1484.592224][T32660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1484.620049][T32660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1484.685700][T32660] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1484.747565][T32660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1484.853621][T32660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1485.108303][T32660] hsr_slave_0: entered promiscuous mode [ 1485.118935][T32660] hsr_slave_1: entered promiscuous mode [ 1485.136977][T32660] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1485.144603][T32660] Cannot create hsr debugfs directory [ 1485.167669][T31668] Bluetooth: hci3: command tx timeout [ 1486.559181][T32660] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 1486.767910][T32660] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 1486.819012][T32660] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 1486.902431][T32660] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 1487.249821][T31668] Bluetooth: hci3: command tx timeout [ 1487.626788][T32757] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1487.814660][T32660] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1488.877085][T32660] 8021q: adding VLAN 0 to HW filter on device team0 [ 1489.035812][ T7260] bridge0: port 1(bridge_slave_0) entered blocking state [ 1489.042968][ T7260] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1489.119288][ T7260] bridge0: port 2(bridge_slave_1) entered blocking state [ 1489.126471][ T7260] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1489.368637][T31668] Bluetooth: hci3: command tx timeout [ 1489.415045][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1489.421563][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1490.240532][ T8285] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1490.405058][ T8285] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1490.519691][ T8285] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1490.580966][T32660] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1490.733596][ T8285] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1490.904740][ T325] snd_aloop snd_aloop.0: control 16781581:65533:6:é'x?F¢é/èìzFË·fCªáª:0 is already present [ 1491.912760][ T8285] bridge_slave_1: left allmulticast mode [ 1491.945176][ T8285] bridge_slave_1: left promiscuous mode [ 1491.972154][ T8285] bridge0: port 2(bridge_slave_1) entered disabled state [ 1492.160500][ T8285] bridge_slave_0: left allmulticast mode [ 1492.166184][ T8285] bridge_slave_0: left promiscuous mode [ 1492.215919][ T8285] bridge0: port 1(bridge_slave_0) entered disabled state [ 1492.678574][ T347] Process accounting paused [ 1492.850000][ T351] FAULT_INJECTION: forcing a failure. [ 1492.850000][ T351] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1492.881440][ T351] CPU: 1 UID: 0 PID: 351 Comm: syz.0.5599 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1492.881487][ T351] Tainted: [U]=USER [ 1492.881498][ T351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1492.881515][ T351] Call Trace: [ 1492.881525][ T351] [ 1492.881537][ T351] dump_stack_lvl+0x16c/0x1f0 [ 1492.881587][ T351] should_fail_ex+0x512/0x640 [ 1492.881633][ T351] strncpy_from_user+0x3b/0x2e0 [ 1492.881675][ T351] getname_flags.part.0+0x8f/0x550 [ 1492.881712][ T351] getname_flags+0x93/0xf0 [ 1492.881750][ T351] do_sys_openat2+0xb8/0x1d0 [ 1492.881784][ T351] ? __pfx_do_sys_openat2+0x10/0x10 [ 1492.881829][ T351] __x64_sys_openat+0x174/0x210 [ 1492.881864][ T351] ? __pfx___x64_sys_openat+0x10/0x10 [ 1492.881911][ T351] do_syscall_64+0xcd/0x490 [ 1492.881959][ T351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1492.881989][ T351] RIP: 0033:0x7fbf26b8d290 [ 1492.882013][ T351] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 1492.882045][ T351] RSP: 002b:00007fbf2790ff10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1492.882072][ T351] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fbf26b8d290 [ 1492.882091][ T351] RDX: 0000000000000002 RSI: 00007fbf2790ffa0 RDI: 00000000ffffff9c [ 1492.882109][ T351] RBP: 00007fbf2790ffa0 R08: 0000000000000000 R09: 00007fbf2790fcd4 [ 1492.882128][ T351] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1492.882157][ T351] R13: 0000000000000000 R14: 00007fbf26db5fa0 R15: 00007ffc49200df8 [ 1492.882193][ T351] [ 1493.793239][ T8285] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1493.972745][ T8285] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1494.012969][ T8285] bond0 (unregistering): Released all slaves [ 1494.137207][T32660] veth0_vlan: entered promiscuous mode [ 1494.478966][ T368] rnbd_client L213: map_device: Parameters missing [ 1494.810507][T32660] veth1_vlan: entered promiscuous mode [ 1494.889934][ T369] zswap: compressor not available [ 1495.216444][T32660] veth0_macvtap: entered promiscuous mode [ 1495.307225][T32660] veth1_macvtap: entered promiscuous mode [ 1495.718953][T32660] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1495.890984][T32660] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1495.964363][T32660] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1495.997635][T32660] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1496.049141][T32660] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1496.091148][T32660] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1497.062444][ T9445] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1497.176816][ T9445] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1498.600106][ T9452] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1498.619738][ T9452] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1498.639380][ T444] random: crng reseeded on system resumption [ 1498.688623][ T444] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1499.270644][ T454] FAULT_INJECTION: forcing a failure. [ 1499.270644][ T454] name failslab, interval 1, probability 0, space 0, times 0 [ 1499.283506][ T454] CPU: 1 UID: 0 PID: 454 Comm: syz.6.5567 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1499.283554][ T454] Tainted: [U]=USER [ 1499.283564][ T454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1499.283581][ T454] Call Trace: [ 1499.283590][ T454] [ 1499.283601][ T454] dump_stack_lvl+0x16c/0x1f0 [ 1499.283648][ T454] should_fail_ex+0x512/0x640 [ 1499.283687][ T454] ? fs_reclaim_acquire+0xae/0x150 [ 1499.283723][ T454] should_failslab+0xc2/0x120 [ 1499.283750][ T454] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1499.283793][ T454] ? ext4_init_io_end+0x24/0x170 [ 1499.283828][ T454] ext4_init_io_end+0x24/0x170 [ 1499.283857][ T454] ext4_do_writepages+0x985/0x3490 [ 1499.283899][ T454] ? __lock_acquire+0x622/0x1c90 [ 1499.283960][ T454] ? __pfx_ext4_do_writepages+0x10/0x10 [ 1499.284020][ T454] ? ext4_writepages+0x37a/0x7d0 [ 1499.284058][ T454] ext4_writepages+0x37a/0x7d0 [ 1499.284099][ T454] ? __pfx_ext4_writepages+0x10/0x10 [ 1499.284153][ T454] ? do_writepages+0x4b7/0x600 [ 1499.284189][ T454] ? __pfx_ext4_writepages+0x10/0x10 [ 1499.284230][ T454] do_writepages+0x27a/0x600 [ 1499.284269][ T454] ? __pfx_do_writepages+0x10/0x10 [ 1499.284301][ T454] ? do_raw_spin_unlock+0x172/0x230 [ 1499.284346][ T454] ? _raw_spin_unlock+0x28/0x50 [ 1499.284386][ T454] filemap_fdatawrite_wbc+0x104/0x160 [ 1499.284424][ T454] __filemap_fdatawrite_range+0xb2/0xf0 [ 1499.284468][ T454] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 1499.284516][ T454] ? __lock_acquire+0x622/0x1c90 [ 1499.284606][ T454] file_write_and_wait_range+0xca/0x140 [ 1499.284656][ T454] ext4_sync_file+0x310/0xf10 [ 1499.284692][ T454] ? __pfx___up_read+0x10/0x10 [ 1499.284735][ T454] ? __pfx_ext4_sync_file+0x10/0x10 [ 1499.284769][ T454] vfs_fsync_range+0x139/0x220 [ 1499.284814][ T454] __do_sys_msync+0x3cb/0x5c0 [ 1499.284865][ T454] do_syscall_64+0xcd/0x490 [ 1499.284909][ T454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1499.284938][ T454] RIP: 0033:0x7faf2cf8e929 [ 1499.284960][ T454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1499.284987][ T454] RSP: 002b:00007faf2ddc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 1499.285013][ T454] RAX: ffffffffffffffda RBX: 00007faf2d1b5fa0 RCX: 00007faf2cf8e929 [ 1499.285031][ T454] RDX: 0000000400000004 RSI: 01800000000000fe RDI: 000000001ffff000 [ 1499.285048][ T454] RBP: 00007faf2ddc5090 R08: 0000000000000000 R09: 0000000000000000 [ 1499.285065][ T454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1499.285082][ T454] R13: 0000000000000000 R14: 00007faf2d1b5fa0 R15: 00007ffe3b948d48 [ 1499.285117][ T454] [ 1499.669743][ T462] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1500.091270][ T469] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 1500.225862][ T9452] ttyS ttyS0: 2 input overrun(s) [ 1501.081153][ T8285] hsr_slave_0: left promiscuous mode [ 1501.128294][ T8285] hsr_slave_1: left promiscuous mode [ 1501.134425][ T8285] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1501.182713][ T8285] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1501.221016][ T8285] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1501.256085][ T8285] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1501.332085][ T8285] veth1_macvtap: left promiscuous mode [ 1501.340091][ T8285] veth0_macvtap: left promiscuous mode [ 1501.350988][ T8285] veth1_vlan: left promiscuous mode [ 1501.358360][ T8285] veth0_vlan: left promiscuous mode [ 1501.722432][ T502] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input44 [ 1502.872164][ T8285] team0 (unregistering): Port device team_slave_1 removed [ 1502.929767][ T8285] team0 (unregistering): Port device team_slave_0 removed [ 1504.450919][ T528] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1504.619854][ T528] netlink: 334 bytes leftover after parsing attributes in process `syz.6.5624'. [ 1504.707782][ T535] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1505.713107][ T7260] ttyS ttyS0: 1 input overrun(s) [ 1505.755799][ T548] random: crng reseeded on system resumption [ 1508.223976][ T585] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5637'. [ 1508.263278][ T596] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5637'. [ 1509.578789][ T638] netlink: 342 bytes leftover after parsing attributes in process `syz.3.5646'. [ 1510.237329][ T651] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5648'. [ 1510.291309][ T651] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5648'. [ 1510.857970][ T665] zram: Cannot change disksize for initialized device [ 1511.054463][ T671] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5651'. [ 1511.085059][ T671] veth1_macvtap: left promiscuous mode [ 1512.052834][ T700] FAULT_INJECTION: forcing a failure. [ 1512.052834][ T700] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1512.122168][ T700] CPU: 1 UID: 0 PID: 700 Comm: syz.5.5656 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1512.122253][ T700] Tainted: [U]=USER [ 1512.122264][ T700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1512.122283][ T700] Call Trace: [ 1512.122294][ T700] [ 1512.122306][ T700] dump_stack_lvl+0x16c/0x1f0 [ 1512.122359][ T700] should_fail_ex+0x512/0x640 [ 1512.122410][ T700] _copy_to_user+0x32/0xd0 [ 1512.122460][ T700] simple_read_from_buffer+0xcb/0x170 [ 1512.122506][ T700] proc_fail_nth_read+0x197/0x270 [ 1512.122544][ T700] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1512.122583][ T700] ? rw_verify_area+0xcf/0x680 [ 1512.122622][ T700] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1512.122660][ T700] vfs_read+0x1e4/0xc60 [ 1512.122742][ T700] ? __pfx___mutex_lock+0x10/0x10 [ 1512.122793][ T700] ? __pfx_vfs_read+0x10/0x10 [ 1512.122849][ T700] ? __fget_files+0x20e/0x3c0 [ 1512.122906][ T700] ksys_read+0x12a/0x250 [ 1512.122950][ T700] ? __pfx_ksys_read+0x10/0x10 [ 1512.123008][ T700] do_syscall_64+0xcd/0x490 [ 1512.123060][ T700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1512.123094][ T700] RIP: 0033:0x7f254018d33c [ 1512.123119][ T700] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1512.123149][ T700] RSP: 002b:00007f2541064030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1512.123212][ T700] RAX: ffffffffffffffda RBX: 00007f25403b5fa0 RCX: 00007f254018d33c [ 1512.123233][ T700] RDX: 000000000000000f RSI: 00007f25410640a0 RDI: 0000000000000004 [ 1512.123252][ T700] RBP: 00007f2541064090 R08: 0000000000000000 R09: 0000000000000000 [ 1512.123271][ T700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1512.123289][ T700] R13: 0000000000000000 R14: 00007f25403b5fa0 R15: 00007ffca16f9b68 [ 1512.123329][ T700] [ 1513.342372][ T729] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1513.407293][ T729] delete_channel: no stack [ 1513.661740][ T735] FAULT_INJECTION: forcing a failure. [ 1513.661740][ T735] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1513.766277][ T735] CPU: 0 UID: 0 PID: 735 Comm: syz.6.5661 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1513.766328][ T735] Tainted: [U]=USER [ 1513.766337][ T735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1513.766356][ T735] Call Trace: [ 1513.766367][ T735] [ 1513.766379][ T735] dump_stack_lvl+0x16c/0x1f0 [ 1513.766431][ T735] should_fail_ex+0x512/0x640 [ 1513.766482][ T735] _copy_to_user+0x32/0xd0 [ 1513.766534][ T735] simple_read_from_buffer+0xcb/0x170 [ 1513.766578][ T735] proc_fail_nth_read+0x197/0x270 [ 1513.766624][ T735] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1513.766663][ T735] ? rw_verify_area+0xcf/0x680 [ 1513.766703][ T735] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1513.766740][ T735] vfs_read+0x1e4/0xc60 [ 1513.766787][ T735] ? __pfx___mutex_lock+0x10/0x10 [ 1513.766836][ T735] ? __pfx_vfs_read+0x10/0x10 [ 1513.766889][ T735] ? __fget_files+0x20e/0x3c0 [ 1513.766943][ T735] ksys_read+0x12a/0x250 [ 1513.766986][ T735] ? __pfx_ksys_read+0x10/0x10 [ 1513.767043][ T735] do_syscall_64+0xcd/0x490 [ 1513.767094][ T735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1513.767127][ T735] RIP: 0033:0x7faf2cf8d33c [ 1513.767153][ T735] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1513.767185][ T735] RSP: 002b:00007faf2ddc5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1513.767215][ T735] RAX: ffffffffffffffda RBX: 00007faf2d1b5fa0 RCX: 00007faf2cf8d33c [ 1513.767236][ T735] RDX: 000000000000000f RSI: 00007faf2ddc50a0 RDI: 0000000000000004 [ 1513.767256][ T735] RBP: 00007faf2ddc5090 R08: 0000000000000000 R09: 0000000000000000 [ 1513.767275][ T735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1513.767294][ T735] R13: 0000000000000000 R14: 00007faf2d1b5fa0 R15: 00007ffe3b948d48 [ 1513.767334][ T735] [ 1514.198410][ T741] netlink: 342 bytes leftover after parsing attributes in process `syz.0.5662'. [ 1515.963537][ T781] FAULT_INJECTION: forcing a failure. [ 1515.963537][ T781] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1516.077565][ T781] CPU: 1 UID: 0 PID: 781 Comm: syz.3.5668 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1516.077614][ T781] Tainted: [U]=USER [ 1516.077624][ T781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1516.077640][ T781] Call Trace: [ 1516.077650][ T781] [ 1516.077662][ T781] dump_stack_lvl+0x16c/0x1f0 [ 1516.077711][ T781] should_fail_ex+0x512/0x640 [ 1516.077760][ T781] _copy_from_user+0x2e/0xd0 [ 1516.077806][ T781] ____sys_sendmsg+0x607/0xc70 [ 1516.077844][ T781] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1516.077884][ T781] ? __pfx__kstrtoull+0x10/0x10 [ 1516.077925][ T781] ___sys_sendmsg+0x134/0x1d0 [ 1516.078000][ T781] ? __pfx____sys_sendmsg+0x10/0x10 [ 1516.078068][ T781] ? find_held_lock+0x2b/0x80 [ 1516.078125][ T781] __sys_sendmmsg+0x200/0x420 [ 1516.078186][ T781] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1516.078246][ T781] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1516.078314][ T781] ? fput+0x70/0xf0 [ 1516.078343][ T781] ? ksys_write+0x1ac/0x250 [ 1516.078387][ T781] ? __pfx_ksys_write+0x10/0x10 [ 1516.078439][ T781] __x64_sys_sendmmsg+0x9c/0x100 [ 1516.078486][ T781] ? lockdep_hardirqs_on+0x7c/0x110 [ 1516.078531][ T781] do_syscall_64+0xcd/0x490 [ 1516.078581][ T781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1516.078613][ T781] RIP: 0033:0x7f3b5678e929 [ 1516.078638][ T781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1516.078670][ T781] RSP: 002b:00007f3b575f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1516.078700][ T781] RAX: ffffffffffffffda RBX: 00007f3b569b5fa0 RCX: 00007f3b5678e929 [ 1516.078720][ T781] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 1516.078739][ T781] RBP: 00007f3b575f3090 R08: 0000000000000000 R09: 0000000000000000 [ 1516.078758][ T781] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 1516.078777][ T781] R13: 0000000000000000 R14: 00007f3b569b5fa0 R15: 00007ffd70ef7de8 [ 1516.078817][ T781] [ 1517.309726][ T799] Invalid ELF header magic: != ELF [ 1518.262088][ T824] FAULT_INJECTION: forcing a failure. [ 1518.262088][ T824] name failslab, interval 1, probability 0, space 0, times 0 [ 1518.275843][ T824] CPU: 0 UID: 0 PID: 824 Comm: syz.0.5673 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1518.275897][ T824] Tainted: [U]=USER [ 1518.275908][ T824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1518.275925][ T824] Call Trace: [ 1518.275937][ T824] [ 1518.275950][ T824] dump_stack_lvl+0x16c/0x1f0 [ 1518.276007][ T824] should_fail_ex+0x512/0x640 [ 1518.276057][ T824] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1518.276115][ T824] should_failslab+0xc2/0x120 [ 1518.276149][ T824] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1518.276200][ T824] ? stack_depot_save_flags+0x28/0xa40 [ 1518.276259][ T824] ? alloc_empty_file+0x55/0x1e0 [ 1518.276300][ T824] alloc_empty_file+0x55/0x1e0 [ 1518.276338][ T824] path_openat+0xda/0x2cb0 [ 1518.276382][ T824] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1518.276433][ T824] ? __pfx_path_openat+0x10/0x10 [ 1518.276487][ T824] ? __lock_acquire+0xb8a/0x1c90 [ 1518.276534][ T824] do_filp_open+0x20b/0x470 [ 1518.276583][ T824] ? __pfx_do_filp_open+0x10/0x10 [ 1518.276660][ T824] ? alloc_fd+0x471/0x7d0 [ 1518.276718][ T824] do_sys_openat2+0x11b/0x1d0 [ 1518.276756][ T824] ? __pfx_do_sys_openat2+0x10/0x10 [ 1518.276796][ T824] ? ksys_unshare+0x687/0xa40 [ 1518.276852][ T824] __x64_sys_openat+0x174/0x210 [ 1518.276891][ T824] ? __pfx___x64_sys_openat+0x10/0x10 [ 1518.276947][ T824] do_syscall_64+0xcd/0x490 [ 1518.277004][ T824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1518.277037][ T824] RIP: 0033:0x7fbf26b8d290 [ 1518.277065][ T824] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 1518.277099][ T824] RSP: 002b:00007fbf2790ff10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1518.277130][ T824] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf26b8d290 [ 1518.277152][ T824] RDX: 0000000000000000 RSI: 00007fbf2790ffa0 RDI: 00000000ffffff9c [ 1518.277173][ T824] RBP: 00007fbf2790ffa0 R08: 0000000000000000 R09: 0000000000000000 [ 1518.277194][ T824] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1518.277214][ T824] R13: 0000000000000000 R14: 00007fbf26db5fa0 R15: 00007ffc49200df8 [ 1518.277269][ T824] [ 1519.151962][ T834] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1519.165916][ T833] program syz.5.5674 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1521.858197][ T873] netlink: 334 bytes leftover after parsing attributes in process `syz.3.5681'. [ 1522.132316][ T883] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1522.177630][ T7991] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u10:7: bg 2: bad block bitmap checksum [ 1522.216640][ T7991] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 3326 with max blocks 69 with error 74 [ 1522.235419][T31668] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1522.320128][ T7991] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1522.320128][ T7991] [ 1523.475820][ T879] Process accounting resumed [ 1526.084255][T14222] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 1526.084304][T14222] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 1526.104587][T14222] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1526.769031][ T969] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1528.780899][ T1001] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1529.610723][T14222] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 1529.610767][T14222] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 1529.627635][T14222] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 1529.627667][T14222] Bluetooth: hci3: Unknown advertising packet type: 0x5a [ 1529.634757][T14222] Bluetooth: hci3: Malformed LE Event: 0x0d [ 1529.661776][ T1016] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5701'. [ 1531.238217][ T1034] tipc: Started in network mode [ 1531.243177][ T1034] tipc: Node identity ee00, cluster identity 4711 [ 1531.270618][ T1034] tipc: Node number set to 60928 [ 1531.317363][ T1037] Process accounting resumed [ 1531.841972][ T1061] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 3394 with max blocks 1 with error 117 [ 1531.864619][ T1061] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1531.864619][ T1061] [ 1532.788704][ T1080] netlink: 'syz.3.5709': attribute type 8 has an invalid length. [ 1533.423688][ T1087] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1533.450474][ T1088] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1535.217965][ T1129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5718'. [ 1535.360913][ T1137] FAULT_INJECTION: forcing a failure. [ 1535.360913][ T1137] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1535.417339][ T1131] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5717'. [ 1535.433264][ T1137] CPU: 1 UID: 0 PID: 1137 Comm: syz.6.5717 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1535.433311][ T1137] Tainted: [U]=USER [ 1535.433321][ T1137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1535.433338][ T1137] Call Trace: [ 1535.433348][ T1137] [ 1535.433359][ T1137] dump_stack_lvl+0x16c/0x1f0 [ 1535.433409][ T1137] should_fail_ex+0x512/0x640 [ 1535.433456][ T1137] _copy_from_user+0x2e/0xd0 [ 1535.433502][ T1137] copy_msghdr_from_user+0x98/0x160 [ 1535.433547][ T1137] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1535.433616][ T1137] ___sys_sendmsg+0xfe/0x1d0 [ 1535.433662][ T1137] ? __pfx____sys_sendmsg+0x10/0x10 [ 1535.433723][ T1137] ? __lock_acquire+0x622/0x1c90 [ 1535.433827][ T1137] __sys_sendmsg+0x16d/0x220 [ 1535.433873][ T1137] ? __pfx___sys_sendmsg+0x10/0x10 [ 1535.433944][ T1137] do_syscall_64+0xcd/0x490 [ 1535.434011][ T1137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1535.434042][ T1137] RIP: 0033:0x7faf2cf8e929 [ 1535.434067][ T1137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1535.434098][ T1137] RSP: 002b:00007faf2dd83038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1535.434128][ T1137] RAX: ffffffffffffffda RBX: 00007faf2d1b6160 RCX: 00007faf2cf8e929 [ 1535.434149][ T1137] RDX: 0000000004000050 RSI: 00002000000040c0 RDI: 0000000000000004 [ 1535.434168][ T1137] RBP: 00007faf2dd83090 R08: 0000000000000000 R09: 0000000000000000 [ 1535.434186][ T1137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1535.434205][ T1137] R13: 0000000000000001 R14: 00007faf2d1b6160 R15: 00007ffe3b948d48 [ 1535.434255][ T1137] [ 1536.351990][ T1148] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5719'. [ 1540.333180][ T1233] FAULT_INJECTION: forcing a failure. [ 1540.333180][ T1233] name failslab, interval 1, probability 0, space 0, times 0 [ 1540.396839][ T1233] CPU: 1 UID: 0 PID: 1233 Comm: syz.3.5731 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1540.396892][ T1233] Tainted: [U]=USER [ 1540.396903][ T1233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1540.396922][ T1233] Call Trace: [ 1540.396932][ T1233] [ 1540.396945][ T1233] dump_stack_lvl+0x16c/0x1f0 [ 1540.397001][ T1233] should_fail_ex+0x512/0x640 [ 1540.397061][ T1233] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1540.397116][ T1233] should_failslab+0xc2/0x120 [ 1540.397148][ T1233] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1540.397208][ T1233] ? __d_alloc+0x31/0xaa0 [ 1540.397263][ T1233] __d_alloc+0x31/0xaa0 [ 1540.397319][ T1233] d_alloc+0x4a/0x1e0 [ 1540.397372][ T1233] d_alloc_parallel+0xe3/0x12e0 [ 1540.397408][ T1233] ? __x64_sys_ioctl+0x18b/0x210 [ 1540.397444][ T1233] ? __kernel_text_address+0xd/0x40 [ 1540.397503][ T1233] ? arch_stack_walk+0xa6/0x100 [ 1540.397561][ T1233] ? __pfx_d_alloc_parallel+0x10/0x10 [ 1540.397604][ T1233] ? lockdep_init_map_type+0x5c/0x280 [ 1540.397649][ T1233] ? lockdep_init_map_type+0x5c/0x280 [ 1540.397701][ T1233] __lookup_slow+0x193/0x460 [ 1540.397738][ T1233] ? __pfx___lookup_slow+0x10/0x10 [ 1540.397780][ T1233] ? pcpu_populate_chunk+0x3b0/0xb00 [ 1540.397832][ T1233] ? pcpu_populate_chunk+0x3b0/0xb00 [ 1540.397877][ T1233] ? d_lookup+0xe7/0x190 [ 1540.397924][ T1233] lookup_noperm+0xe1/0x110 [ 1540.397981][ T1233] start_creating.part.0+0x15a/0x3e0 [ 1540.398033][ T1233] __debugfs_create_file+0xa7/0x6b0 [ 1540.398083][ T1233] debugfs_create_file_full+0x41/0x60 [ 1540.398133][ T1233] kvm_dev_ioctl+0x14ff/0x1ad0 [ 1540.398207][ T1233] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 1540.398277][ T1233] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 1540.398333][ T1233] __x64_sys_ioctl+0x18b/0x210 [ 1540.398376][ T1233] do_syscall_64+0xcd/0x490 [ 1540.398429][ T1233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1540.398463][ T1233] RIP: 0033:0x7f3b5678e929 [ 1540.398490][ T1233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1540.398526][ T1233] RSP: 002b:00007f3b575f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1540.398559][ T1233] RAX: ffffffffffffffda RBX: 00007f3b569b5fa0 RCX: 00007f3b5678e929 [ 1540.398583][ T1233] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 1540.398603][ T1233] RBP: 00007f3b56810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1540.398624][ T1233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1540.398644][ T1233] R13: 0000000000000000 R14: 00007f3b569b5fa0 R15: 00007ffd70ef7de8 [ 1540.398687][ T1233] [ 1540.657343][ C1] vkms_vblank_simulate: vblank timer overrun [ 1544.292683][ T1307] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5738'. [ 1544.414759][ T1305] netlink: 338 bytes leftover after parsing attributes in process `syz.0.5738'. [ 1544.820271][ T30] audit: type=1800 audit(4294967323.349:22): pid=1319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5741" name="members" dev="configfs" ino=129018 res=0 errno=0 [ 1545.438208][ T1330] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1545.777653][T14222] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 1545.777709][T14222] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 1545.793880][T14222] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1546.957485][T14222] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 1546.970337][ T1368] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(320.8192.104), cmd(10) [ 1547.715302][T14222] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 1547.715345][T14222] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 1547.743804][T14222] Bluetooth: hci0: Dropping invalid advertising data [ 1547.750755][T14222] Bluetooth: hci0: Dropping invalid advertising data [ 1550.857912][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1550.864292][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1552.722524][ T9452] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 3326 with max blocks 69 with error 117 [ 1552.987680][ T9452] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1552.987680][ T9452] [ 1554.400541][ T1473] Process accounting paused [ 1555.143673][ T1497] FAULT_INJECTION: forcing a failure. [ 1555.143673][ T1497] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1555.172571][ T1497] CPU: 0 UID: 0 PID: 1497 Comm: syz.0.5780 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1555.172623][ T1497] Tainted: [U]=USER [ 1555.172634][ T1497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1555.172652][ T1497] Call Trace: [ 1555.172663][ T1497] [ 1555.172674][ T1497] dump_stack_lvl+0x16c/0x1f0 [ 1555.172727][ T1497] should_fail_ex+0x512/0x640 [ 1555.172776][ T1497] get_futex_key+0x1d0/0x1540 [ 1555.172816][ T1497] ? __pfx_get_futex_key+0x10/0x10 [ 1555.172862][ T1497] futex_wake+0xea/0x530 [ 1555.172905][ T1497] ? rcu_is_watching+0x12/0xc0 [ 1555.172936][ T1497] ? __pfx_futex_wake+0x10/0x10 [ 1555.172982][ T1497] ? kmem_cache_free+0x2d1/0x4d0 [ 1555.173024][ T1497] ? fd_install+0x225/0x750 [ 1555.173061][ T1497] ? putname+0x154/0x1a0 [ 1555.173112][ T1497] do_futex+0x1e3/0x350 [ 1555.173152][ T1497] ? __pfx_do_futex+0x10/0x10 [ 1555.173202][ T1497] __x64_sys_futex+0x1e0/0x4c0 [ 1555.173254][ T1497] ? __x64_sys_openat+0x174/0x210 [ 1555.173292][ T1497] ? __pfx___x64_sys_futex+0x10/0x10 [ 1555.173350][ T1497] do_syscall_64+0xcd/0x490 [ 1555.173402][ T1497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1555.173435][ T1497] RIP: 0033:0x7fbf26b8e929 [ 1555.173461][ T1497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1555.173493][ T1497] RSP: 002b:00007fbf279100e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1555.173523][ T1497] RAX: ffffffffffffffda RBX: 00007fbf26db5fa8 RCX: 00007fbf26b8e929 [ 1555.173545][ T1497] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbf26db5fac [ 1555.173564][ T1497] RBP: 00007fbf26db5fa0 R08: 00007fbf27911000 R09: 0000000000000000 [ 1555.173584][ T1497] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fbf26db5fac [ 1555.173603][ T1497] R13: 0000000000000000 R14: 00007ffc49200d10 R15: 00007ffc49200df8 [ 1555.173643][ T1497] [ 1555.237212][ T1485] sd 0:0:1:0: PR command failed: 1026 [ 1555.239691][ C0] vkms_vblank_simulate: vblank timer overrun [ 1555.394451][ T1485] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1555.411013][ T1485] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1556.980234][ T1518] netlink: 186 bytes leftover after parsing attributes in process `syz.0.5785'. [ 1557.109199][ T1522] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1557.315583][ T1530] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5789'. [ 1561.460933][ T1602] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5803'. [ 1561.635989][ T1606] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1562.257089][ T1565] Process accounting paused [ 1563.245493][ T1637] FAULT_INJECTION: forcing a failure. [ 1563.245493][ T1637] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.324429][ T1637] CPU: 0 UID: 0 PID: 1637 Comm: syz.6.5811 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1563.324484][ T1637] Tainted: [U]=USER [ 1563.324496][ T1637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1563.324513][ T1637] Call Trace: [ 1563.324523][ T1637] [ 1563.324535][ T1637] dump_stack_lvl+0x16c/0x1f0 [ 1563.324584][ T1637] should_fail_ex+0x512/0x640 [ 1563.324626][ T1637] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1563.324704][ T1637] should_failslab+0xc2/0x120 [ 1563.324735][ T1637] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1563.324784][ T1637] ? security_file_alloc+0x34/0x2b0 [ 1563.324833][ T1637] security_file_alloc+0x34/0x2b0 [ 1563.324876][ T1637] init_file+0x93/0x4c0 [ 1563.324907][ T1637] alloc_empty_file+0x73/0x1e0 [ 1563.324942][ T1637] path_openat+0xda/0x2cb0 [ 1563.324985][ T1637] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1563.325032][ T1637] ? __pfx_path_openat+0x10/0x10 [ 1563.325080][ T1637] ? __lock_acquire+0xb8a/0x1c90 [ 1563.325126][ T1637] do_filp_open+0x20b/0x470 [ 1563.325183][ T1637] ? __pfx_do_filp_open+0x10/0x10 [ 1563.325254][ T1637] ? alloc_fd+0x471/0x7d0 [ 1563.325321][ T1637] do_sys_openat2+0x11b/0x1d0 [ 1563.325356][ T1637] ? __pfx_do_sys_openat2+0x10/0x10 [ 1563.325407][ T1637] __x64_sys_openat+0x174/0x210 [ 1563.325445][ T1637] ? __pfx___x64_sys_openat+0x10/0x10 [ 1563.325498][ T1637] do_syscall_64+0xcd/0x490 [ 1563.325549][ T1637] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1563.325580][ T1637] RIP: 0033:0x7faf2cf8e929 [ 1563.325606][ T1637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1563.325638][ T1637] RSP: 002b:00007faf2dd83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1563.325676][ T1637] RAX: ffffffffffffffda RBX: 00007faf2d1b6160 RCX: 00007faf2cf8e929 [ 1563.325698][ T1637] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 1563.325718][ T1637] RBP: 00007faf2d010b39 R08: 0000000000000000 R09: 0000000000000000 [ 1563.325738][ T1637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1563.325757][ T1637] R13: 0000000000000000 R14: 00007faf2d1b6160 R15: 00007ffe3b948d48 [ 1563.325797][ T1637] [ 1567.078934][ T1690] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5826'. [ 1568.291404][ T1706] FAULT_INJECTION: forcing a failure. [ 1568.291404][ T1706] name failslab, interval 1, probability 0, space 0, times 0 [ 1568.347781][ T1706] CPU: 1 UID: 0 PID: 1706 Comm: syz.3.5828 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1568.347833][ T1706] Tainted: [U]=USER [ 1568.347844][ T1706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1568.347863][ T1706] Call Trace: [ 1568.347873][ T1706] [ 1568.347886][ T1706] dump_stack_lvl+0x16c/0x1f0 [ 1568.347942][ T1706] should_fail_ex+0x512/0x640 [ 1568.348003][ T1706] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1568.348055][ T1706] should_failslab+0xc2/0x120 [ 1568.348086][ T1706] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1568.348134][ T1706] ? security_file_alloc+0x34/0x2b0 [ 1568.348190][ T1706] security_file_alloc+0x34/0x2b0 [ 1568.348231][ T1706] init_file+0x93/0x4c0 [ 1568.348260][ T1706] alloc_empty_file+0x73/0x1e0 [ 1568.348294][ T1706] path_openat+0xda/0x2cb0 [ 1568.348336][ T1706] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1568.348385][ T1706] ? __pfx_path_openat+0x10/0x10 [ 1568.348441][ T1706] do_filp_open+0x20b/0x470 [ 1568.348489][ T1706] ? __pfx_do_filp_open+0x10/0x10 [ 1568.348566][ T1706] ? _raw_spin_unlock+0x28/0x50 [ 1568.348605][ T1706] ? alloc_fd+0x471/0x7d0 [ 1568.348658][ T1706] do_sys_openat2+0x11b/0x1d0 [ 1568.348699][ T1706] ? __pfx_do_sys_openat2+0x10/0x10 [ 1568.348738][ T1706] ? __fget_files+0x20e/0x3c0 [ 1568.348789][ T1706] __x64_sys_open+0x153/0x1e0 [ 1568.348825][ T1706] ? __pfx___x64_sys_open+0x10/0x10 [ 1568.348871][ T1706] ? rcu_is_watching+0x12/0xc0 [ 1568.348906][ T1706] do_syscall_64+0xcd/0x490 [ 1568.348960][ T1706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1568.348992][ T1706] RIP: 0033:0x7f3b5678e929 [ 1568.349019][ T1706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1568.349051][ T1706] RSP: 002b:00007f3b575d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1568.349081][ T1706] RAX: ffffffffffffffda RBX: 00007f3b569b6080 RCX: 00007f3b5678e929 [ 1568.349100][ T1706] RDX: 00000000000001c7 RSI: 0000000000000200 RDI: 00002000000002c0 [ 1568.349118][ T1706] RBP: 00007f3b575d2090 R08: 0000000000000000 R09: 0000000000000000 [ 1568.349134][ T1706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1568.349152][ T1706] R13: 0000000000000001 R14: 00007f3b569b6080 R15: 00007ffd70ef7de8 [ 1568.349206][ T1706] [ 1570.862863][ T1742] random: crng reseeded on system resumption [ 1571.625098][ T1742] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5837'. [ 1572.688719][ T1776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5844'. [ 1574.011278][ T1800] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1576.840940][ T1844] FAULT_INJECTION: forcing a failure. [ 1576.840940][ T1844] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1576.910796][ T1844] CPU: 1 UID: 0 PID: 1844 Comm: syz.0.5857 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1576.910851][ T1844] Tainted: [U]=USER [ 1576.910862][ T1844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1576.910882][ T1844] Call Trace: [ 1576.910894][ T1844] [ 1576.910907][ T1844] dump_stack_lvl+0x16c/0x1f0 [ 1576.910959][ T1844] should_fail_ex+0x512/0x640 [ 1576.911012][ T1844] get_futex_key+0x1d0/0x1540 [ 1576.911055][ T1844] ? __pfx_get_futex_key+0x10/0x10 [ 1576.911095][ T1844] ? __pfx___schedule+0x10/0x10 [ 1576.911139][ T1844] ? trace_pid_list_is_set+0xfb/0x150 [ 1576.911185][ T1844] futex_wait_setup+0x9d/0x550 [ 1576.911254][ T1844] __futex_wait+0x194/0x2f0 [ 1576.911290][ T1844] ? __pfx___futex_wait+0x10/0x10 [ 1576.911328][ T1844] ? __pfx_futex_wake_mark+0x10/0x10 [ 1576.911379][ T1844] futex_wait+0xe8/0x380 [ 1576.911412][ T1844] ? __pfx_futex_wait+0x10/0x10 [ 1576.911460][ T1844] do_futex+0x229/0x350 [ 1576.911490][ T1844] ? __pfx_do_futex+0x10/0x10 [ 1576.911519][ T1844] ? do_raw_spin_unlock+0x172/0x230 [ 1576.911560][ T1844] __x64_sys_futex+0x1e0/0x4c0 [ 1576.911591][ T1844] ? __pfx___x64_sys_futex+0x10/0x10 [ 1576.911620][ T1844] ? xfd_validate_state+0x61/0x180 [ 1576.911659][ T1844] do_syscall_64+0xcd/0x490 [ 1576.911696][ T1844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1576.911720][ T1844] RIP: 0033:0x7fbf26b8e929 [ 1576.911750][ T1844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1576.911772][ T1844] RSP: 002b:00007fbf279100e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1576.911793][ T1844] RAX: ffffffffffffffda RBX: 00007fbf26db5fa8 RCX: 00007fbf26b8e929 [ 1576.911827][ T1844] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf26db5fa8 [ 1576.911841][ T1844] RBP: 00007fbf26db5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1576.911855][ T1844] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf26db5fac [ 1576.911870][ T1844] R13: 0000000000000000 R14: 00007ffc49200d10 R15: 00007ffc49200df8 [ 1576.911898][ T1844] [ 1577.503626][ T1853] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1579.106207][ T1872] zswap: compressor not available [ 1579.113212][ T1876] Setting dangerous option i915.mitigations - tainting kernel [ 1579.395169][ T1888] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1580.166234][ T1904] FAULT_INJECTION: forcing a failure. [ 1580.166234][ T1904] name failslab, interval 1, probability 0, space 0, times 0 [ 1580.229432][ T1904] CPU: 0 UID: 0 PID: 1904 Comm: syz.0.5871 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1580.229466][ T1904] Tainted: [U]=USER [ 1580.229473][ T1904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1580.229485][ T1904] Call Trace: [ 1580.229493][ T1904] [ 1580.229501][ T1904] dump_stack_lvl+0x16c/0x1f0 [ 1580.229535][ T1904] should_fail_ex+0x512/0x640 [ 1580.229565][ T1904] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1580.229598][ T1904] should_failslab+0xc2/0x120 [ 1580.229618][ T1904] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1580.229649][ T1904] ? d_instantiate+0x77/0x90 [ 1580.229666][ T1904] ? alloc_empty_file+0x55/0x1e0 [ 1580.229690][ T1904] alloc_empty_file+0x55/0x1e0 [ 1580.229712][ T1904] alloc_file_pseudo+0x13a/0x230 [ 1580.229736][ T1904] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1580.229764][ T1904] sock_alloc_file+0x50/0x210 [ 1580.229785][ T1904] do_accept+0x240/0x530 [ 1580.229810][ T1904] ? 0xffffffff81000000 [ 1580.229825][ T1904] ? do_raw_spin_lock+0x12c/0x2b0 [ 1580.229857][ T1904] ? __pfx_do_accept+0x10/0x10 [ 1580.229916][ T1904] ? 0xffffffff81000000 [ 1580.229930][ T1904] __sys_accept4+0x100/0x1c0 [ 1580.229958][ T1904] ? __pfx___sys_accept4+0x10/0x10 [ 1580.229985][ T1904] ? __pfx_do_writev+0x10/0x10 [ 1580.230019][ T1904] __x64_sys_accept+0x74/0xb0 [ 1580.230045][ T1904] ? lockdep_hardirqs_on+0x7c/0x110 [ 1580.230076][ T1904] do_syscall_64+0xcd/0x490 [ 1580.230111][ T1904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1580.230133][ T1904] RIP: 0033:0x7fbf26b8e929 [ 1580.230149][ T1904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1580.230171][ T1904] RSP: 002b:00007fbf27910038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 1580.230191][ T1904] RAX: ffffffffffffffda RBX: 00007fbf26db5fa0 RCX: 00007fbf26b8e929 [ 1580.230206][ T1904] RDX: ffffffff81000000 RSI: ffffffffffffffff RDI: 0000000000000003 [ 1580.230227][ T1904] RBP: 00007fbf26c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 1580.230241][ T1904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1580.230255][ T1904] R13: 0000000000000000 R14: 00007fbf26db5fa0 R15: 00007ffc49200df8 [ 1580.230276][ T1904] ? 0xffffffff81000000 [ 1580.230295][ T1904] [ 1580.760967][ T1914] FAULT_INJECTION: forcing a failure. [ 1580.760967][ T1914] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1580.777593][ T1914] CPU: 0 UID: 0 PID: 1914 Comm: syz.6.5873 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1580.777640][ T1914] Tainted: [U]=USER [ 1580.777649][ T1914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1580.777666][ T1914] Call Trace: [ 1580.777675][ T1914] [ 1580.777687][ T1914] dump_stack_lvl+0x16c/0x1f0 [ 1580.777736][ T1914] should_fail_ex+0x512/0x640 [ 1580.777783][ T1914] _copy_from_user+0x2e/0xd0 [ 1580.777830][ T1914] bch2_ioctl_fsck_offline+0xf6/0x860 [ 1580.777901][ T1914] ? __pfx_bch2_ioctl_fsck_offline+0x10/0x10 [ 1580.777951][ T1914] ? find_held_lock+0x2b/0x80 [ 1580.778009][ T1914] ? __fget_files+0x20e/0x3c0 [ 1580.778064][ T1914] bch2_chardev_ioctl+0x10f/0x140 [ 1580.778101][ T1914] ? __pfx_bch2_chardev_ioctl+0x10/0x10 [ 1580.778139][ T1914] __x64_sys_ioctl+0x18b/0x210 [ 1580.778192][ T1914] do_syscall_64+0xcd/0x490 [ 1580.778246][ T1914] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1580.778281][ T1914] RIP: 0033:0x7faf2cf8e929 [ 1580.778307][ T1914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1580.778340][ T1914] RSP: 002b:00007faf2dda4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1580.778372][ T1914] RAX: ffffffffffffffda RBX: 00007faf2d1b6080 RCX: 00007faf2cf8e929 [ 1580.778394][ T1914] RDX: 00002000000005c0 RSI: 000000004018bc13 RDI: 0000000000000005 [ 1580.778414][ T1914] RBP: 00007faf2dda4090 R08: 0000000000000000 R09: 0000000000000000 [ 1580.778434][ T1914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1580.778453][ T1914] R13: 0000000000000000 R14: 00007faf2d1b6080 R15: 00007ffe3b948d48 [ 1580.778494][ T1914] [ 1581.152351][T14222] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 1581.152392][T14222] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15 [ 1581.178351][T14222] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1582.662072][ T1935] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1583.740372][T28589] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 3247 with max blocks 79 with error 117 [ 1583.772242][T28589] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1583.772242][T28589] [ 1584.044421][ T1935] kexec: Could not allocate control_code_buffer [ 1585.704951][ T1983] bridge0: port 3(veth0_to_bridge) entered blocking state [ 1585.727897][ T1983] bridge0: port 3(veth0_to_bridge) entered disabled state [ 1585.735304][ T1983] veth0_to_bridge: entered allmulticast mode [ 1585.797961][ T1983] veth0_to_bridge: entered promiscuous mode [ 1585.815834][ T1983] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1585.919474][ T1983] bridge0: port 3(veth0_to_bridge) entered blocking state [ 1585.926803][ T1983] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 1586.365599][T14222] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 1586.365630][T14222] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 1586.385930][ T1995] FAULT_INJECTION: forcing a failure. [ 1586.385930][ T1995] name failslab, interval 1, probability 0, space 0, times 0 [ 1586.394462][T14222] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1586.414966][ T1995] CPU: 1 UID: 0 PID: 1995 Comm: syz.6.5886 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1586.415001][ T1995] Tainted: [U]=USER [ 1586.415009][ T1995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1586.415022][ T1995] Call Trace: [ 1586.415030][ T1995] [ 1586.415039][ T1995] dump_stack_lvl+0x16c/0x1f0 [ 1586.415077][ T1995] should_fail_ex+0x512/0x640 [ 1586.415109][ T1995] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1586.415141][ T1995] should_failslab+0xc2/0x120 [ 1586.415162][ T1995] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1586.415191][ T1995] ? lockdep_init_map_type+0x5c/0x280 [ 1586.415220][ T1995] ? userio_char_open+0xdb/0x210 [ 1586.415242][ T1995] ? __init_waitqueue_head+0xca/0x150 [ 1586.415279][ T1995] ? __pfx_userio_char_open+0x10/0x10 [ 1586.415298][ T1995] userio_char_open+0xdb/0x210 [ 1586.415318][ T1995] ? __pfx_userio_char_open+0x10/0x10 [ 1586.415339][ T1995] misc_open+0x35d/0x420 [ 1586.415366][ T1995] ? __pfx_misc_open+0x10/0x10 [ 1586.415392][ T1995] chrdev_open+0x231/0x6a0 [ 1586.415426][ T1995] ? __pfx_apparmor_file_open+0x10/0x10 [ 1586.415497][ T1995] ? __pfx_chrdev_open+0x10/0x10 [ 1586.415548][ T1995] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 1586.415583][ T1995] do_dentry_open+0x744/0x1c10 [ 1586.415635][ T1995] ? __pfx_chrdev_open+0x10/0x10 [ 1586.415676][ T1995] vfs_open+0x82/0x3f0 [ 1586.415704][ T1995] path_openat+0x1de4/0x2cb0 [ 1586.415747][ T1995] ? __pfx_path_openat+0x10/0x10 [ 1586.415782][ T1995] ? __lock_acquire+0xb8a/0x1c90 [ 1586.415815][ T1995] do_filp_open+0x20b/0x470 [ 1586.415848][ T1995] ? __pfx_do_filp_open+0x10/0x10 [ 1586.415901][ T1995] ? alloc_fd+0x471/0x7d0 [ 1586.415940][ T1995] do_sys_openat2+0x11b/0x1d0 [ 1586.415965][ T1995] ? __pfx_do_sys_openat2+0x10/0x10 [ 1586.416002][ T1995] __x64_sys_openat+0x174/0x210 [ 1586.416029][ T1995] ? __pfx___x64_sys_openat+0x10/0x10 [ 1586.416067][ T1995] do_syscall_64+0xcd/0x490 [ 1586.416104][ T1995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1586.416129][ T1995] RIP: 0033:0x7faf2cf8e929 [ 1586.416146][ T1995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1586.416169][ T1995] RSP: 002b:00007faf2dda4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1586.416190][ T1995] RAX: ffffffffffffffda RBX: 00007faf2d1b6080 RCX: 00007faf2cf8e929 [ 1586.416206][ T1995] RDX: 00000000000a2300 RSI: 0000200000000d40 RDI: ffffffffffffff9c [ 1586.416221][ T1995] RBP: 00007faf2d010b39 R08: 0000000000000000 R09: 0000000000000000 [ 1586.416236][ T1995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1586.416250][ T1995] R13: 0000000000000000 R14: 00007faf2d1b6080 R15: 00007ffe3b948d48 [ 1586.416279][ T1995] [ 1587.395121][ T2003] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5888'. [ 1590.380718][ T2054] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1590.406293][ T2042] Process accounting resumed [ 1590.952677][ T2055] netlink: 342 bytes leftover after parsing attributes in process `syz.6.5900'. [ 1591.336265][ T2074] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1591.640165][ T2084] FAULT_INJECTION: forcing a failure. [ 1591.640165][ T2084] name failslab, interval 1, probability 0, space 0, times 0 [ 1591.655174][ T2084] CPU: 1 UID: 0 PID: 2084 Comm: syz.5.5906 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1591.655226][ T2084] Tainted: [U]=USER [ 1591.655237][ T2084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1591.655257][ T2084] Call Trace: [ 1591.655268][ T2084] [ 1591.655281][ T2084] dump_stack_lvl+0x16c/0x1f0 [ 1591.655334][ T2084] should_fail_ex+0x512/0x640 [ 1591.655387][ T2084] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1591.655440][ T2084] should_failslab+0xc2/0x120 [ 1591.655471][ T2084] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1591.655520][ T2084] ? alloc_empty_file+0x55/0x1e0 [ 1591.655559][ T2084] alloc_empty_file+0x55/0x1e0 [ 1591.655594][ T2084] path_openat+0xda/0x2cb0 [ 1591.655636][ T2084] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1591.655685][ T2084] ? __pfx_path_openat+0x10/0x10 [ 1591.655732][ T2084] ? __lock_acquire+0xb8a/0x1c90 [ 1591.655777][ T2084] do_filp_open+0x20b/0x470 [ 1591.655824][ T2084] ? __pfx_do_filp_open+0x10/0x10 [ 1591.655901][ T2084] ? alloc_fd+0x471/0x7d0 [ 1591.655956][ T2084] do_sys_openat2+0x11b/0x1d0 [ 1591.655992][ T2084] ? __pfx_do_sys_openat2+0x10/0x10 [ 1591.656031][ T2084] ? __fget_files+0x20e/0x3c0 [ 1591.656082][ T2084] __x64_sys_openat+0x174/0x210 [ 1591.656120][ T2084] ? __pfx___x64_sys_openat+0x10/0x10 [ 1591.656156][ T2084] ? ksys_write+0x1ac/0x250 [ 1591.656216][ T2084] do_syscall_64+0xcd/0x490 [ 1591.656270][ T2084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1591.656302][ T2084] RIP: 0033:0x7f254018e929 [ 1591.656328][ T2084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1591.656360][ T2084] RSP: 002b:00007f2541064038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1591.656396][ T2084] RAX: ffffffffffffffda RBX: 00007f25403b5fa0 RCX: 00007f254018e929 [ 1591.656418][ T2084] RDX: 0000000000008000 RSI: 000020000000c340 RDI: ffffffffffffff9c [ 1591.656438][ T2084] RBP: 00007f2541064090 R08: 0000000000000000 R09: 0000000000000000 [ 1591.656458][ T2084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1591.656477][ T2084] R13: 0000000000000001 R14: 00007f25403b5fa0 R15: 00007ffca16f9b68 [ 1591.656518][ T2084] [ 1593.138593][ T2094] vivid-007: ================= START STATUS ================= [ 1593.178252][ T2094] vivid-007: Generate PTS: true [ 1593.207730][ T2094] vivid-007: Generate SCR: true [ 1593.257572][ T2094] tpg source WxH: 320x240 (Y'CbCr) [ 1593.262777][ T2094] tpg field: 1 [ 1593.287331][ T2090] Process accounting resumed [ 1593.321294][ T2094] tpg crop: (0,0)/320x240 [ 1593.337668][ T2094] tpg compose: (0,0)/320x240 [ 1593.370636][ T2094] tpg colorspace: 8 [ 1593.424974][ T2094] tpg transfer function: 0/0 [ 1593.436381][ T2094] tpg Y'CbCr encoding: 0/0 [ 1593.444346][ T2094] tpg quantization: 0/0 [ 1593.449750][ T2094] tpg RGB range: 0/2 [ 1593.453715][ T2094] vivid-007: ================== END STATUS ================== [ 1596.505020][ T2156] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5921'. [ 1598.039670][ T2187] FAULT_INJECTION: forcing a failure. [ 1598.039670][ T2187] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1598.066088][ T2187] CPU: 0 UID: 0 PID: 2187 Comm: syz.5.5930 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1598.066141][ T2187] Tainted: [U]=USER [ 1598.066152][ T2187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1598.066172][ T2187] Call Trace: [ 1598.066183][ T2187] [ 1598.066195][ T2187] dump_stack_lvl+0x16c/0x1f0 [ 1598.066251][ T2187] should_fail_ex+0x512/0x640 [ 1598.066297][ T2187] ? unwind_get_return_address+0x59/0xa0 [ 1598.066352][ T2187] get_futex_key+0x1d0/0x1540 [ 1598.066396][ T2187] ? __pfx_get_futex_key+0x10/0x10 [ 1598.066446][ T2187] ? stack_trace_save+0x8e/0xc0 [ 1598.066479][ T2187] ? __pfx_stack_trace_save+0x10/0x10 [ 1598.066513][ T2187] ? stack_depot_save_flags+0x28/0xa40 [ 1598.066564][ T2187] futex_wait_setup+0x9d/0x550 [ 1598.066621][ T2187] __futex_wait+0x194/0x2f0 [ 1598.066668][ T2187] ? __pfx___futex_wait+0x10/0x10 [ 1598.066721][ T2187] ? __pfx_futex_wake_mark+0x10/0x10 [ 1598.066795][ T2187] futex_wait+0xe8/0x380 [ 1598.066841][ T2187] ? __pfx_futex_wait+0x10/0x10 [ 1598.066916][ T2187] ? kmem_cache_free+0x2d1/0x4d0 [ 1598.066962][ T2187] ? fd_install+0x225/0x750 [ 1598.067003][ T2187] ? putname+0x154/0x1a0 [ 1598.067040][ T2187] do_futex+0x229/0x350 [ 1598.067082][ T2187] ? __pfx_do_futex+0x10/0x10 [ 1598.067134][ T2187] __x64_sys_futex+0x1e0/0x4c0 [ 1598.067179][ T2187] ? __x64_sys_openat+0x174/0x210 [ 1598.067217][ T2187] ? __pfx___x64_sys_futex+0x10/0x10 [ 1598.067275][ T2187] do_syscall_64+0xcd/0x490 [ 1598.067328][ T2187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1598.067361][ T2187] RIP: 0033:0x7f254018e929 [ 1598.067386][ T2187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1598.067419][ T2187] RSP: 002b:00007f25410640e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1598.067450][ T2187] RAX: ffffffffffffffda RBX: 00007f25403b5fa8 RCX: 00007f254018e929 [ 1598.067472][ T2187] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f25403b5fa8 [ 1598.067492][ T2187] RBP: 00007f25403b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1598.067515][ T2187] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f25403b5fac [ 1598.067537][ T2187] R13: 0000000000000000 R14: 00007ffca16f9a80 R15: 00007ffca16f9b68 [ 1598.067579][ T2187] [ 1599.495203][ T2215] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1601.171720][ T2234] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 1601.630413][ T2247] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1604.136386][ T2277] Bluetooth: hci3: command 0x0406 tx timeout [ 1604.453255][T14222] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 1604.453301][T14222] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 1604.470101][T14222] Bluetooth: hci0: Dropping invalid advertising data [ 1604.476834][T14222] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 1604.476873][T14222] Bluetooth: hci0: Dropping invalid advertising data [ 1604.490849][T14222] Bluetooth: hci0: Malformed LE Event: 0x02 [ 1605.081704][ T2310] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1605.490739][T31668] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1606.205766][ T2327] Invalid ELF header magic: != ELF [ 1607.177824][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1607.190451][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1607.202895][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1607.215642][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1607.228526][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1607.240923][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1607.253377][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1607.265728][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1607.278125][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1607.290526][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1608.599899][T31668] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 1608.599930][T31668] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 1608.625730][T31668] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1610.700232][ T0] sched: DL replenish lagged too much [ 1612.187629][ C0] net_ratelimit: 15114 callbacks suppressed [ 1612.187649][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1612.206060][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1612.218479][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1612.230767][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1612.243172][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1612.255582][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1612.268002][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1612.280462][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1612.292865][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1612.305352][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1617.197591][ C0] net_ratelimit: 15566 callbacks suppressed [ 1617.197610][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1617.215823][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1617.228153][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1617.240507][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1617.252804][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1617.265042][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1617.277390][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1617.289779][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1617.302076][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1617.314329][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1622.207732][ C0] net_ratelimit: 16737 callbacks suppressed [ 1622.207751][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1622.226026][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1622.238391][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1622.250748][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1622.263114][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1622.275452][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1622.287791][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1622.300107][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1622.312513][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1622.324871][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1627.217915][ C0] net_ratelimit: 10537 callbacks suppressed [ 1627.217933][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1627.236826][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1627.249152][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1627.261473][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1627.274499][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1627.286830][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1627.299150][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1627.311536][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1627.324582][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1627.336947][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1632.228648][ C0] net_ratelimit: 10058 callbacks suppressed [ 1632.228669][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1632.246979][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1632.259376][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1632.271639][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1632.284678][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1632.297115][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1632.309422][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1632.321670][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1632.334758][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1632.347149][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1637.237715][ C0] net_ratelimit: 10278 callbacks suppressed [ 1637.237734][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1637.256085][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1637.268431][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1637.280711][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1637.293701][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1637.306064][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1637.318401][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1637.330674][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1637.343791][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1637.356177][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1642.248205][ C0] net_ratelimit: 10314 callbacks suppressed [ 1642.248227][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1642.266631][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1642.278957][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1642.291209][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1642.304386][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1642.316752][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1642.329117][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1642.341433][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1642.354509][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1642.366873][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1647.258267][ C0] net_ratelimit: 10118 callbacks suppressed [ 1647.258287][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1647.276602][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1647.288911][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1647.301138][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1647.314182][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1647.326565][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1647.338858][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1647.351116][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1647.364141][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1647.376484][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1652.267743][ C0] net_ratelimit: 10304 callbacks suppressed [ 1652.267762][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1652.286006][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1652.299600][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1652.312126][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1652.324549][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1652.336906][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1652.351311][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1652.363692][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1652.375961][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1652.388245][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1657.277666][ C0] net_ratelimit: 10624 callbacks suppressed [ 1657.277684][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1657.296026][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1657.308327][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1657.320537][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1657.333469][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1657.345753][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1657.357997][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1657.370262][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1657.383275][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1657.395688][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1662.288235][ C0] net_ratelimit: 10686 callbacks suppressed [ 1662.288256][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1662.306546][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1662.318882][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1662.331138][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1662.344255][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1662.356646][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1662.369042][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1662.381271][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1662.394416][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1662.406758][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1667.298361][ C0] net_ratelimit: 10142 callbacks suppressed [ 1667.298381][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1667.316737][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1667.329179][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1667.341486][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1667.354657][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1667.367096][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1667.379449][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1667.391798][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1667.404906][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1667.417380][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1672.307734][ C0] net_ratelimit: 10365 callbacks suppressed [ 1672.307752][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1672.326750][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1672.339143][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1672.351666][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1672.363886][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1672.376887][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1672.389265][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1672.401534][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1672.413807][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1672.426879][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1677.317642][ C0] net_ratelimit: 10389 callbacks suppressed [ 1677.317663][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1677.335818][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1677.348923][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1677.361303][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1677.373587][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1677.385832][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1677.398935][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1677.411278][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1677.423555][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1677.435825][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1682.328148][ C0] net_ratelimit: 10272 callbacks suppressed [ 1682.328168][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1682.346462][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1682.358785][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1682.371085][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1682.384155][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1682.396503][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1682.408830][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1682.421083][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1682.434163][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1682.446590][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1687.337515][ C0] net_ratelimit: 10356 callbacks suppressed [ 1687.337536][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1687.355776][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1687.368856][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1687.381234][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1687.393512][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1687.405793][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1687.418893][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1687.431221][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1687.443563][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1687.455808][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1692.347701][ C0] net_ratelimit: 10215 callbacks suppressed [ 1692.347720][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1692.366777][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1692.379130][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1692.391740][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1692.403974][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1692.416998][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1692.429480][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1692.441783][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1692.454034][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1692.467100][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1697.358390][ C0] net_ratelimit: 10103 callbacks suppressed [ 1697.358412][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1697.377114][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1697.389438][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1697.401685][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1697.414763][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1697.427116][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1697.439426][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1697.451639][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1697.464668][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1697.476973][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1702.368464][ C0] net_ratelimit: 10498 callbacks suppressed [ 1702.368485][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1702.386814][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1702.399135][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1702.411489][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1702.424604][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1702.436972][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1702.449302][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1702.461567][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1702.474581][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1702.487641][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1707.378431][ C0] net_ratelimit: 10426 callbacks suppressed [ 1707.378452][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1707.396727][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1707.409128][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1707.421563][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1707.434612][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1707.447017][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1707.459391][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1707.471652][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1707.485235][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1707.497668][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1712.197476][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 1712.204572][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P2330/2:b..l [ 1712.212974][ C0] rcu: (detected by 0, t=10502 jiffies, g=194789, q=4460 ncpus=2) [ 1712.220880][ C0] task:syz.5.5955 state:R running task stack:26280 pid:2330 tgid:2321 ppid:22406 task_flags:0x20400040 flags:0x00004006 [ 1712.235720][ C0] Call Trace: [ 1712.239025][ C0] [ 1712.241998][ C0] __schedule+0x116a/0x5de0 [ 1712.246589][ C0] ? __pfx___schedule+0x10/0x10 [ 1712.251473][ C0] ? __lock_acquire+0x622/0x1c90 [ 1712.256444][ C0] preempt_schedule_irq+0x51/0x90 [ 1712.261516][ C0] irqentry_exit+0x36/0x90 [ 1712.265964][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 1712.271963][ C0] RIP: 0010:unwind_next_frame+0x50c/0x20a0 [ 1712.277796][ C0] Code: e8 19 f1 ff ff 48 89 c1 48 85 c0 0f 84 05 fe ff ff 48 b8 00 00 00 00 00 fc ff df 4c 8d 79 05 4c 89 fa 48 c1 ea 03 0f b6 04 02 <4c> 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 32 14 00 00 0f b6 41 05 [ 1712.297517][ C0] RSP: 0000:ffffc9000daa6c68 EFLAGS: 00000a06 [ 1712.303621][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff9147da0e [ 1712.311606][ C0] RDX: 1ffffffff228fb42 RSI: 0000000000000000 RDI: ffffffff90c0b4dc [ 1712.319586][ C0] RBP: ffffc9000daa6d20 R08: ffffffff9147da26 R09: 0000000000000000 [ 1712.327566][ C0] R10: 0000000000000000 R11: 000000000000f39c R12: ffffc9000daa6d28 [ 1712.335557][ C0] R13: ffffc9000daa6cd8 R14: ffffc9000daa6d0d R15: ffffffff9147da13 [ 1712.343559][ C0] ? unwind_next_frame+0x2ec/0x20a0 [ 1712.348789][ C0] ? mempool_free+0xe7/0x3b0 [ 1712.353398][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1712.359575][ C0] arch_stack_walk+0x94/0x100 [ 1712.364294][ C0] ? mempool_free+0xe7/0x3b0 [ 1712.368907][ C0] stack_trace_save+0x8e/0xc0 [ 1712.373599][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 1712.378986][ C0] ? __lock_acquire+0xb8a/0x1c90 [ 1712.383950][ C0] kasan_save_stack+0x33/0x60 [ 1712.388656][ C0] ? kasan_save_stack+0x33/0x60 [ 1712.393538][ C0] ? kasan_save_track+0x14/0x30 [ 1712.398416][ C0] ? __kasan_kmalloc+0xaa/0xb0 [ 1712.403204][ C0] ? kmem_cache_free+0x142/0x4d0 [ 1712.408195][ C0] ? mempool_free+0xe7/0x3b0 [ 1712.412835][ C0] kasan_save_track+0x14/0x30 [ 1712.417543][ C0] __kasan_kmalloc+0xaa/0xb0 [ 1712.422163][ C0] kmem_cache_free+0x142/0x4d0 [ 1712.426949][ C0] ? mempool_free+0xe7/0x3b0 [ 1712.431571][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1712.437400][ C0] ? __pfx_mempool_free_slab+0x10/0x10 [ 1712.442889][ C0] mempool_free+0xe7/0x3b0 [ 1712.447323][ C0] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1712.452899][ C0] bio_put+0x355/0x5b0 [ 1712.456982][ C0] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 1712.462548][ C0] bio_endio+0x70a/0x850 [ 1712.466804][ C0] ? blk_account_io_completion.part.0+0x146/0x280 [ 1712.473265][ C0] blk_update_request+0x96b/0x1630 [ 1712.478408][ C0] blk_mq_end_request+0x5b/0x630 [ 1712.483366][ C0] blk_mq_complete_request+0x8b/0xb0 [ 1712.488687][ C0] null_queue_rq+0xb69/0xfd0 [ 1712.493311][ C0] null_queue_rqs+0xe9/0x2f0 [ 1712.497929][ C0] ? __pfx_null_queue_rqs+0x10/0x10 [ 1712.503160][ C0] __blk_mq_flush_list+0x97/0xc0 [ 1712.508126][ C0] blk_mq_dispatch_queue_requests+0x184/0x7b0 [ 1712.514256][ C0] blk_mq_flush_plug_list+0x1f2/0x600 [ 1712.519647][ C0] ? update_io_ticks+0x137/0x2a0 [ 1712.524598][ C0] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 1712.530521][ C0] ? __pfx_update_io_ticks+0x10/0x10 [ 1712.535816][ C0] ? blk_add_trace_bio+0xe9/0x4a0 [ 1712.540852][ C0] blk_add_rq_to_plug+0x1ca/0x540 [ 1712.545904][ C0] blk_mq_submit_bio+0x18d5/0x26a0 [ 1712.551046][ C0] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 1712.556521][ C0] ? __lock_acquire+0x622/0x1c90 [ 1712.561491][ C0] ? __lock_acquire+0x622/0x1c90 [ 1712.566452][ C0] __submit_bio+0x3cf/0x690 [ 1712.570979][ C0] ? __pfx___submit_bio+0x10/0x10 [ 1712.576032][ C0] ? submit_bio_noacct_nocheck+0x660/0xd30 [ 1712.581853][ C0] submit_bio_noacct_nocheck+0x660/0xd30 [ 1712.587515][ C0] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 1712.593695][ C0] ? __pfx___might_resched+0x10/0x10 [ 1712.599014][ C0] submit_bio_noacct+0x50d/0x1eb0 [ 1712.604068][ C0] __block_write_full_folio+0x735/0xe00 [ 1712.609642][ C0] ? __pfx_blkdev_get_block+0x10/0x10 [ 1712.615032][ C0] block_write_full_folio+0x341/0x400 [ 1712.620419][ C0] ? __pfx_blkdev_get_block+0x10/0x10 [ 1712.625817][ C0] blkdev_writepages+0xb8/0x140 [ 1712.630688][ C0] ? __pfx_blkdev_writepages+0x10/0x10 [ 1712.636176][ C0] ? do_writepages+0x4b7/0x600 [ 1712.640964][ C0] ? __pfx_blkdev_writepages+0x10/0x10 [ 1712.646445][ C0] do_writepages+0x27a/0x600 [ 1712.651071][ C0] ? __pfx_do_writepages+0x10/0x10 [ 1712.656204][ C0] ? do_raw_spin_unlock+0x172/0x230 [ 1712.661432][ C0] ? _raw_spin_unlock+0x28/0x50 [ 1712.666298][ C0] filemap_fdatawrite_wbc+0x104/0x160 [ 1712.671686][ C0] ? kasan_save_stack+0x33/0x60 [ 1712.676555][ C0] __filemap_fdatawrite_range+0xb2/0xf0 [ 1712.682121][ C0] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 1712.688379][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1712.694490][ C0] ? locks_remove_file+0x399/0x5c0 [ 1712.699619][ C0] ? do_raw_spin_unlock+0x172/0x230 [ 1712.704844][ C0] filemap_write_and_wait_range+0xa3/0x130 [ 1712.710680][ C0] bdev_release+0x4d3/0x6d0 [ 1712.715200][ C0] ? __pfx_blkdev_release+0x10/0x10 [ 1712.720422][ C0] blkdev_release+0x15/0x20 [ 1712.724940][ C0] __fput+0x402/0xb70 [ 1712.728939][ C0] task_work_run+0x14d/0x240 [ 1712.733561][ C0] ? __pfx_task_work_run+0x10/0x10 [ 1712.738698][ C0] ? __pfx___do_sys_close_range+0x10/0x10 [ 1712.744445][ C0] exit_to_user_mode_loop+0xeb/0x110 [ 1712.749751][ C0] do_syscall_64+0x3f6/0x490 [ 1712.754375][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1712.760280][ C0] RIP: 0033:0x7f254018e929 [ 1712.764702][ C0] RSP: 002b:00007f2541022038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1712.773147][ C0] RAX: 0000000000000000 RBX: 00007f25403b6160 RCX: 00007f254018e929 [ 1712.781134][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 1712.789120][ C0] RBP: 00007f2540210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1712.797104][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1712.805083][ C0] R13: 0000000000000000 R14: 00007f25403b6160 R15: 00007ffca16f9b68 [ 1712.813117][ C0] [ 1712.816147][ C0] rcu: rcu_preempt kthread starved for 10187 jiffies! g194789 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 1712.827446][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 1712.837443][ C0] rcu: RCU grace-period kthread stack dump: [ 1712.843354][ C0] task:rcu_preempt state:R running task stack:27784 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00004000 [ 1712.856909][ C0] Call Trace: [ 1712.860255][ C0] [ 1712.863248][ C0] __schedule+0x116a/0x5de0 [ 1712.867810][ C0] ? __lock_acquire+0x622/0x1c90 [ 1712.872767][ C0] ? __pfx___schedule+0x10/0x10 [ 1712.877772][ C0] ? find_held_lock+0x2b/0x80 [ 1712.882459][ C0] ? schedule+0x2d7/0x3a0 [ 1712.886811][ C0] schedule+0xe7/0x3a0 [ 1712.890914][ C0] schedule_timeout+0x123/0x290 [ 1712.895784][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 1712.901194][ C0] ? __pfx_process_timeout+0x10/0x10 [ 1712.906536][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1712.912358][ C0] ? prepare_to_swait_event+0xf5/0x480 [ 1712.917847][ C0] rcu_gp_fqs_loop+0x1ea/0xb00 [ 1712.922639][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 1712.927943][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 1712.933193][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 1712.938164][ C0] ? rcu_gp_cleanup+0x7c1/0xd90 [ 1712.943105][ C0] rcu_gp_kthread+0x270/0x380 [ 1712.947829][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 1712.953051][ C0] ? rcu_is_watching+0x12/0xc0 [ 1712.957841][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 1712.963081][ C0] ? __kthread_parkme+0x19e/0x250 [ 1712.968128][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 1712.973350][ C0] kthread+0x3c5/0x780 [ 1712.977441][ C0] ? __pfx_kthread+0x10/0x10 [ 1712.982079][ C0] ? rcu_is_watching+0x12/0xc0 [ 1712.986855][ C0] ? __pfx_kthread+0x10/0x10 [ 1712.991468][ C0] ret_from_fork+0x5d4/0x6f0 [ 1712.996078][ C0] ? __pfx_kthread+0x10/0x10 [ 1713.000692][ C0] ret_from_fork_asm+0x1a/0x30 [ 1713.005482][ C0] [ 1713.008512][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 1713.014857][ C0] Sending NMI from CPU 0 to CPUs 1: [ 1713.020100][ C1] NMI backtrace for cpu 1 [ 1713.020123][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G U 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) [ 1713.020161][ C1] Tainted: [U]=USER [ 1713.020170][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1713.020186][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 1713.020226][ C1] Code: 4b 75 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d f3 5e 2d 00 fb f4 0c fb 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 1713.020253][ C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c2 [ 1713.020273][ C1] RAX: 0000000000ba8fc5 RBX: 0000000000000001 RCX: ffffffff8b7cac29 [ 1713.020290][ C1] RDX: 0000000000000000 RSI: ffffffff8de13876 RDI: ffffffff8c1565a0 [ 1713.020308][ C1] RBP: ffffed1003c55b40 R08: 0000000000000001 R09: ffffed10170a6645 [ 1713.020324][ C1] R10: ffff8880b853322b R11: 0000000000000001 R12: 0000000000000001 [ 1713.020340][ C1] R13: ffff88801e2ada00 R14: ffffffff90a82d50 R15: 0000000000000000 [ 1713.020357][ C1] FS: 0000000000000000(0000) GS:ffff888124860000(0000) knlGS:0000000000000000 [ 1713.020380][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1713.020397][ C1] CR2: 00007f21ddada058 CR3: 000000007a7f2000 CR4: 00000000003526f0 [ 1713.020413][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1713.020428][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1713.020444][ C1] Call Trace: [ 1713.020460][ C1] [ 1713.020469][ C1] default_idle+0x13/0x20 [ 1713.020493][ C1] default_idle_call+0x6d/0xb0 [ 1713.020529][ C1] do_idle+0x391/0x510 [ 1713.020553][ C1] ? __pfx_do_idle+0x10/0x10 [ 1713.020576][ C1] ? trace_sched_exit_tp+0x31/0x130 [ 1713.020606][ C1] cpu_startup_entry+0x4f/0x60 [ 1713.020630][ C1] start_secondary+0x21d/0x2b0 [ 1713.020658][ C1] ? __pfx_start_secondary+0x10/0x10 [ 1713.020690][ C1] common_startup_64+0x13e/0x148 [ 1713.020737][ C1] [ 1713.215287][ C0] net_ratelimit: 9912 callbacks suppressed [ 1713.215303][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1713.233416][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1713.247302][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1713.259694][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1713.272048][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1713.284293][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1713.297363][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1713.309769][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1713.322039][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1713.334753][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1718.217500][ C0] net_ratelimit: 9627 callbacks suppressed [ 1718.217519][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1718.236518][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1718.248981][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1718.261292][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1718.273602][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1718.287089][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1718.299511][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:a6:17:3c:7c:a1:b1, vlan:0) [ 1718.311837][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1718.324133][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1718.337346][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)