last executing test programs: 2m1.674864177s ago: executing program 2 (id=3015): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000) bpf$auto(0x0, 0x0, 0x4f4) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000002040)='/dev/snd/pcmC1D1c\x00', 0x80, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/bus/hid/drivers/smartjoyplus/new_id\x00', 0x0, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b71, 0x1) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0x4000000d3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x3, 0x4000080000005, 0x50ab, 0x4, 0x9, 0x2, 0xffffffffffffffff]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) 1m58.250551153s ago: executing program 2 (id=3029): mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x9, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptys5\x00', 0x2000, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000300)="db000000") 1m57.677106129s ago: executing program 2 (id=3034): r0 = socket(0x1d, 0x3, 0x1) setsockopt$auto(r0, 0x65, 0x7, 0x0, 0x8) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) seccomp$auto_SECCOMP_GET_NOTIF_SIZES(0x3, 0xfffffffa, &(0x7f0000000000)="98bf17b4819f88494e283ea1715e") socket$nl_generic(0x10, 0x3, 0x10) socket(0x2a, 0x2, 0x800009) ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000040)=0x0) sendto$auto(0xffffffffffffffff, 0x0, 0x5, 0x5, &(0x7f0000000700)=@nfc={0x27, r1, 0xffffffffffffffff, 0x1}, 0x1c) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x9, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptys5\x00', 0x2000, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/rose14/statistics/rx_length_errors\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001100)=""/4105, 0x8b5) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000300)="db000000") 1m57.299486519s ago: executing program 2 (id=3035): socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) clone$auto(0x8, 0x7, 0x0, 0xffffffffffffffff, 0x80000001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @initdev={0xac, 0x1e, 0x0, 0x0}}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @private=0xa010100}]}, 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b", @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1m56.980819776s ago: executing program 2 (id=3036): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r1) ioctl$auto(0xffffffffffffffff, 0x64c6, 0x1e2) setuid$auto(0xe) r2 = pidfd_open$auto(0x1, 0x0) setns(r2, 0x60020000) r3 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x80000001, 0x4000018, r3, 0x40000000028800) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) pipe2$auto(0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xea241, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyde\x00', 0xa0102, 0x0) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) 1m55.724844431s ago: executing program 2 (id=3039): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x4, 0x100000000000004, 0x1ff, 0x40eb2, 0x4, 0x300000000000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp\x00', 0x8e40, 0x0) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, 0x0) socket(0x1d, 0x1, 0x7fff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) bpf$auto(0x4, &(0x7f0000000300)=@bpf_attr_3={0x15, 0x24, 0xf, 0x63, 0x7fff, 0x0, 0x6, 0x80f0c8, 0x60, "38c1d5cbcb9f6b5e511f0cd8ed068f65", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x8, 0x0, 0x2}, 0x47) write$auto(r1, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xe0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\xff\x0fU\x953.O\xab\"\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k87MI\xbb\xd2\x83\xe5\x83\xcf\xc5D\xcc\x00\x00\x00', 0x7) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) ioctl$auto_FS_IOC_SETFLAGS(r3, 0x40086602, 0x8) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) r4 = socket(0x9, 0x2, 0x1001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r2, 0x6) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyy2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r5, 0x5403, 0x0) connect$auto(r4, 0x0, 0x3a) msync$auto(0x7, 0x1800000000000fe, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x20200, 0x0) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) ioperm$auto(0x7, 0x6, 0x2) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) pidfd_open$auto(0x1, 0x0) 1m40.526005941s ago: executing program 32 (id=3039): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x4, 0x100000000000004, 0x1ff, 0x40eb2, 0x4, 0x300000000000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp\x00', 0x8e40, 0x0) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, 0x0) socket(0x1d, 0x1, 0x7fff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) bpf$auto(0x4, &(0x7f0000000300)=@bpf_attr_3={0x15, 0x24, 0xf, 0x63, 0x7fff, 0x0, 0x6, 0x80f0c8, 0x60, "38c1d5cbcb9f6b5e511f0cd8ed068f65", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x8, 0x0, 0x2}, 0x47) write$auto(r1, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xe0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\xff\x0fU\x953.O\xab\"\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k87MI\xbb\xd2\x83\xe5\x83\xcf\xc5D\xcc\x00\x00\x00', 0x7) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) ioctl$auto_FS_IOC_SETFLAGS(r3, 0x40086602, 0x8) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) r4 = socket(0x9, 0x2, 0x1001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r2, 0x6) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyy2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r5, 0x5403, 0x0) connect$auto(r4, 0x0, 0x3a) msync$auto(0x7, 0x1800000000000fe, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x20200, 0x0) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) ioperm$auto(0x7, 0x6, 0x2) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) pidfd_open$auto(0x1, 0x0) 8.754824291s ago: executing program 3 (id=3351): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, 0x0, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000) bpf$auto(0x0, 0x0, 0x4f4) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000002040)='/dev/snd/pcmC1D1c\x00', 0x80, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b71, 0x1) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0x4000000d3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x3, 0x4000080000005, 0x50ab, 0x4, 0x9, 0x2, 0xffffffffffffffff]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) 7.379590887s ago: executing program 0 (id=3356): mmap$auto(0x5, 0x8, 0x4000000000e3, 0x800000000000017, 0x401, 0x5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x4) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe\x00', 0x68c000, 0x0) writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x100, 0x0) ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f00000001c0)="ff") pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x25}, 0x5, 0x3, 0x9) read$auto(0x3, 0x0, 0xf34) write$auto(0x3, 0x0, 0xffd8) 7.339257591s ago: executing program 4 (id=3357): r0 = mq_open$auto(&(0x7f0000000380)='\\*)A\x00\xcfI\x16\x14n\xbaHn\x9b\a\xc0@\xcc\x82]@\x8aX\xd7\xc1\x92\xcfT-g\xfc\xe5\x1b\xd7\x8dj\xc2\x1f\b|\xb1D\"\xe0F\xa2\x88v\xfb\x1f\f\x83\xda:\xf9\xac\x90\x00\x00\x00\x00\x00\x00\xa6\xbf\xb7[\xbc):\xb7\xb0\xaevd 65&Up\xfb\xa8\x8e:\x98C.\xbd\xd6\xe4B\xb6\x85\xb77\t\xa2s\x00\x00\x00\x00\xde\xff\xff\xff\x88x\xe4\xcdA\x84&Z\xaaq\xa2b\xc0\xf1\x92t|B\x8dO\xf4\xeb\xd8\x19\x9cv\x85\x96\x02\xa5\x16\xb5c\xfa\"\t*\x96\xa9t\xeb\xcbj\x18\xce\'y\xd4\x1b\xfcb\xaf\x93\x8e%\xf82\xaa[qNl)\nd\x1c9+\x91\xa7\xa5^}\x92j&\xad\x9b^\xf6\xe7\x9d\xdc\x1b\x19\xe2\xc0\xd7\xe0\x9f\xecI\x11L\x9a<\x1d\xc0/\x1f\xb9\xae\x84\xe3\x1b\xec\x0f\xe3\x03\x95\xae\xe4\xe4\xc8T\x82x\x9e\x91\xfaX5\xbb\xedd\x17\xb9\xcci\xee)\xd1\xdd\x82,\xe1ZFgF#\xc2\xa9\xe2\xd0S\xb0S\xf3.\x8c\x9e\xdc\t\xb8k\x96*E\xce\xb8!h&#\xd8K\x12*\x99&v\x10Q\xf7\xb1\xb3N\x92\xcd;G\'\xc2\f@\xc4(\xe2:\xdf\x12\xa5\x16\x895-\x7f\x19E\xe2:\xfe\x15XZ*lvD\xc9\xd0j\x90\xa8*C\x19\x16\x9a5\r.\xbf\xa6\x14\x17\xa0\x9eau\xd7U\x80\xa6\\Y\xf408\xc0\xb8v\xa21\x93\xda\x89k\x83a\x81\x9ed\f\x14\vS\xfa\xb6h\xdb0Q\x92t\x00\x00\x00\x00\x00\x00\x00\x00\x00;\x8e\\\xb1b\x02\x00|H\xd7\x98\xf6`\'\xd3)\x0fp\xf4@\xe7\xcd|\xcd\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x7, 0x9, 0x0) mq_notify$auto(r0, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0x3, 0x0, 0x1f40) 6.624674264s ago: executing program 4 (id=3358): ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000007c0)={{@inferred, 0x8, 0x4, 0xa2, "c6e47a44a36664a5e709f0e4c97056bc9fa32c617bb88dc98fa7591aefc4647f5af349f8e1e79c823b22958f"}, 0x1, @enumerated=@item=[0x0, 0x3, 0x1, 0xb, 0x6, 0x8001, 0x10, 0x6, 0x10001, 0xefe, 0xfffffff9, 0x5, 0x8001, 0x62f, 0x101, 0x4, 0x200, 0xfffffff0, 0x1000, 0x7, 0x3, 0x3, 0x0, 0x6, 0xb94, 0x0, 0x1, 0x7, 0x3, 0xe8, 0x4, 0x0, 0x9, 0x46f, 0x8, 0x1, 0x6, 0x4, 0x6, 0x8, 0x80, 0x9, 0x65b, 0x9, 0x7, 0x81, 0x1ce8, 0x9, 0x34b5, 0xfff, 0x5, 0x4, 0x2, 0x1000, 0x9, 0x0, 0x400, 0xd, 0x0, 0x0, 0x207d, 0xa79, 0x5, 0x5, 0x4, 0x80, 0x6ed, 0x0, 0x1, 0x1, 0x6, 0x4, 0x8, 0x1, 0x4003ff, 0x5, 0x8, 0x6, 0x0, 0xa, 0x2, 0x5, 0x400, 0x6, 0x4, 0x9, 0x29, 0x8, 0x30971ad3, 0x9, 0x78d, 0x7f, 0x0, 0x8001, 0x20000, 0x40, 0x0, 0x4, 0x5, 0xfffff43e, 0x0, 0x4f000, 0xfe, 0x5, 0x7, 0xd49e923b, 0x4, 0x80000000, 0x77, 0xf2, 0x0, 0x7fffffff, 0x7f77, 0x9, 0x5b, 0x8, 0x10011, 0x8, 0x0, 0xc2, 0x0, 0x5, 0x1000, 0x1, 0x7, 0x400, 0x8, 0x3], "4570dcfd140074f863fc1385c4fd7abe6fce96c0b442897f58fd7d975d164deff4eef5b9f9173fa400163669eae95125d4bd68ca54ca1b0aefb60ffa8d501b1329af8d4108ac145aa564c6e7a09ea1b2dfae0f309c6ea508833d7d134b13d8cb3ef95bf5ed43801c280c02a5a853512e6f730d43226f00af1c5ac268ecc1d18f"}) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) write$auto(r0, 0x0, 0x10001) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) 5.945562346s ago: executing program 4 (id=3360): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ram15\x00', 0x400080, 0x0) unshare$auto(0x40000080) r1 = socket(0xa, 0x5, 0x0) mmap$auto(0x4, 0xa020009, 0x3, 0xeb1, r1, 0x7ffe) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card0/pcm0p/sub6/status\x00', 0x402a82, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2a, 0x8001, 0x200000009b7e, r0, 0x2000028000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x80000, 0x0) poll$auto(&(0x7f0000000180)={r3, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x0) r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) ioctl$auto_UBI_IOCDET(r5, 0x40046f41, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x8, 0xfffffffffffffffa, 0x9, 0xfffffffffffffbff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0) read$auto(0xffffffffffffffff, &(0x7f0000000240)='\xcb%)\x00', 0x400000000007) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x7, 0x24, 0x1037b, 0x80000003) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(r6, &(0x7f00000000c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[], 0x158}, 0x1, 0x0, 0x0, 0x8080}, 0x84) sendmsg$auto_OVS_FLOW_CMD_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x40010}, 0x800) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) 5.325772526s ago: executing program 3 (id=3362): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/default_smp_affinity\x00', 0x4003f, 0x0) 5.177229487s ago: executing program 3 (id=3363): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000000)='//\xf2\x00', 0x80000000) rt_tgsigqueueinfo$auto_SIGCONT(0xffffffffffffffff, 0xffffffffffffffff, 0x12, &(0x7f00000003c0)={@_si_pad}) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x581402, 0x0) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0xc0403d11, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) waitid$auto_P_ALL(0x0, 0x3b000, &(0x7f0000000280)={@siginfo_0_0={0x200, 0x0, 0x6, @_sigsys={&(0x7f00000000c0)="55eb8df319677f9aebf453b195011dc75b314a6a2de037085459dc03a1ad19978559dbc978c89a4fb1f552151699faea53575d94e9e2f930abeb4f1cd2fa58efd12b9315baeca5f900c19f32e51de1ba99fb4f82871232b3", 0x1000, 0x826}}}, 0x3, &(0x7f0000000300)={{0xda0000000000000, 0x969d}, {0x2, 0x6}, 0x8000000000000000, 0xa, 0x8, 0x9, 0xb871, 0x6, 0x9ffd, 0x81, 0x0, 0x1000000000f8c5, 0x1000, 0x81, 0xc, 0xd}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) 4.757757194s ago: executing program 0 (id=3365): mount$auto(0xffffffffffffffff, 0x0, 0x0, 0xa, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) sendfile$auto(r0, r0, 0x0, 0x4000000000001) 4.686057045s ago: executing program 1 (id=3366): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x22001, 0x0) r0 = epoll_create$auto(0x3f) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) r1 = socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x0) getsockopt$auto(0x100000006, 0x1, 0x29, 0xfffffffffffffffe, 0x0) splice$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xb, 0x1) unshare$auto(0x40000080) write$auto(0xca, &(0x7f00000000c0)='\x04>\x01\x01\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c\f\xb6,NS\xa2(Q\xcc', 0x7f) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ustat$auto(0x801, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) r3 = socket(0x2, 0x5, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(r3, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xff80}, 0x7, 0x0, 0x4, 0xb}, 0x8}, 0x5, 0x7fffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, 0x0, 0x20000010) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, 0x0, 0x20000004) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r1, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x14, r2, 0x1, 0x1, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0xc810}, 0x40) 4.374493401s ago: executing program 0 (id=3367): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0) ftruncate$auto(r0, 0xd5d) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3914) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:480/min_ratio_fine\x00', 0x2062, 0x0) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) socket(0xa, 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003040), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000003080)=ANY=[@ANYBLOB="100a231d", @ANYRES16=r4, @ANYBLOB="010025bd7000fbdbdf251200000008000900010000000c00018008000100", @ANYRES32=r5, @ANYBLOB="0800070006000000"], 0x30}, 0x1, 0x0, 0x0, 0x4000004}, 0x20008800) mbind$auto(0x0, 0x2091d2, 0x1, 0x0, 0x7, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r6 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r6, 0x80045104, 0x0) brk$auto(0x8) fstat$auto(0xffffffffffffffff, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) mmap$auto(0x0, 0x4, 0x4000000000e3, 0x40eb1, 0x401, 0x300000000000) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/uts\x00') socket(0x2, 0xa, 0x1) statx$auto(0xffffff9c, 0x0, 0x1000, 0x0, 0x0) ioctl$auto(0x1, 0x890b, 0x8) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x48, r1, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_HASH={0x3, 0xb, 0x1}, @OVS_PACKET_ATTR_PACKET={0x0, 0x1, "71d79c0db2f69d408c099e6fb9d4"}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "89fe0600000017790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_PROBE={0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x44000884}, 0xc880) 3.514804473s ago: executing program 4 (id=3368): ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000007c0)={{@inferred, 0x8, 0x4, 0xa2, "c6e47a44a36664a5e709f0e4c97056bc9fa32c617bb88dc98fa7591aefc4647f5af349f8e1e79c823b22958f"}, 0x1, @enumerated=@item=[0x0, 0x3, 0x1, 0xb, 0x6, 0x8001, 0x10, 0x6, 0x10001, 0xefe, 0xfffffff9, 0x5, 0x8001, 0x62f, 0x101, 0x4, 0x200, 0xfffffff0, 0x1000, 0x7, 0x3, 0x3, 0x0, 0x6, 0xb94, 0x0, 0x1, 0x7, 0x3, 0xe8, 0x4, 0x0, 0x9, 0x46f, 0x8, 0x1, 0x6, 0x4, 0x6, 0x8, 0x80, 0x9, 0x65b, 0x9, 0x7, 0x81, 0x1ce8, 0x9, 0x34b5, 0xfff, 0x5, 0x4, 0x2, 0x1000, 0x9, 0x0, 0x400, 0xd, 0x0, 0x0, 0x207d, 0xa79, 0x5, 0x5, 0x4, 0x80, 0x6ed, 0x0, 0x1, 0x1, 0x6, 0x4, 0x8, 0x1, 0x4003ff, 0x5, 0x8, 0x6, 0x0, 0xa, 0x2, 0x5, 0x400, 0x6, 0x4, 0x9, 0x29, 0x8, 0x30971ad3, 0x9, 0x78d, 0x7f, 0x0, 0x8001, 0x20000, 0x40, 0x0, 0x4, 0x5, 0xfffff43e, 0x0, 0x4f000, 0xfe, 0x5, 0x7, 0xd49e923b, 0x4, 0x80000000, 0x77, 0xf2, 0x0, 0x7fffffff, 0x7f77, 0x9, 0x5b, 0x8, 0x10011, 0x8, 0x0, 0xc2, 0x0, 0x5, 0x1000, 0x1, 0x7, 0x400, 0x8, 0x3], "4570dcfd140074f863fc1385c4fd7abe6fce96c0b442897f58fd7d975d164deff4eef5b9f9173fa400163669eae95125d4bd68ca54ca1b0aefb60ffa8d501b1329af8d4108ac145aa564c6e7a09ea1b2dfae0f309c6ea508833d7d134b13d8cb3ef95bf5ed43801c280c02a5a853512e6f730d43226f00af1c5ac268ecc1d18f"}) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) write$auto(r0, 0x0, 0x10001) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) 3.321683672s ago: executing program 0 (id=3369): open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) fallocate$auto(0x8000000000000003, 0x2000, 0x8000000d, 0x2cbd5d) 3.196398919s ago: executing program 4 (id=3370): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000005) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2100, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x40800) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mlockall$auto(0x7) mprotect$auto(0x0, 0x806121, 0x6) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm1p/sub4/xrun_injection\x00', 0x8880, 0x0) setitimer$auto(0x0, &(0x7f0000001a00)={{0x80, 0x9}, {0x6, 0x100}}, 0x0) getitimer$auto_ITIMER_REAL(0x0, &(0x7f0000001bc0)={{0x2, 0x7fffffffffffffff}, {0x7, 0x1000}}) r3 = fcntl$auto_F_DUPFD_CLOEXEC(r2, 0x406, r2) ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f0000000100)={@inferred=r2, 0x8, 0x100000001, @btrfs_ioctl_vol_args_v2_3_0={0x68, &(0x7f0000000080)={0x8000000000000000, 0xada, 0x8000000000000001, 0x9, {0x101, 0x6, 0x4, 0x0, 0x8000000000000001}}}, @name="7844043bb48cd7ae9f73c25191f0be18f67433b1c446a8e7d92f91221d5b14a3573e3a6a21633d47b742e5242df6f21ce4c14e0e9ae7d101e26bc7d5ca3c80df6a6df1f8b708bfdb5e9a1d1a020af0339751f3846da66c0238860dd00a90ff8a0cdc9ce6f61d206f2d39872ca20fbffe273d987640832f404e2b385c6ec9172f0967b5e25b77d7208eb2506e39c1f5282501ac5911c2d09ac79ef78d13014cfff8c4cb0a4fe9e592963ca6e90f69be775770938df66936351364f331ac4b2efd358b8636829a782c7cb2c36e6f441b2544bd17a9aa468090f5aaf52ea1fe7ace124862b2c071fc7c839cfd030eb8bdd4cbc7116fde0e7d1084f154a43ee93c5d1f26e13486565468405fd286a55272c774952e51c68cd1b9aed8dd71393e7228af89fdae9d1c8bc1832fc86d7f717c961d21e59f5789b16fbeacd70fea7f67b878b00cc5c05dbc296be60def605047265e56a6d2fa58e2d7a95730e0398cd8e447faf2e88ebbdae48e99c5f3c7d76f09a1b0422788f814c96047e099bfdb721f1c399ac383a90fd40b647fafbe37e04df497fc5023bbcfda9898bdead10ae20022ca4c4091db49544ae14f8c45360a052807540e319aa720ee2c22fb189e06384ef188c1c85edef08b26502628f0a81f84122707fc1760f2b8752527885db38c437353ea4dd6d926d7ef39b4b29fb77ee47a50a9de32f1f175d69479b21520f0bdc70fb3310ff970ba1072a0ea99e8109a62a56669d5456451dd958f76242d7d3014c60c6ca1deebc16411f56e3b334cf1d76a0a18e3bd1b8f8ac84d7d0f806660c0c604f8378301a42996668f6c10bdb0c2af677722053245e762f48450fbbf6b63925b5fd106824b6ba8c2d0f7a4cf587aacb62e37a2b3141fbce34edc7bc748dc1a648bc53fcb0c456c0d8fb1f857e06a4734aa54aaf13fd33949eb3f164abae690b359e3972e74b5b3bff5c13e7a51154eb9e6fddd82db58b15a1c44c116e2c4ee4b2b510ad45a7559c40bd89c2e75e768c845f79e2c1cc483bfef3f20b18639f4827fd438efa508e35fe97d85d98ef0cd64ad1e71a0c5cf7c4db6ff9eaf42af84a093c4c4882e1bc0a4e2708c77615155061c67450dd4ad421feb18961d9c21992701e101c116154c04d49249713a48bd7052ed32d396b692b2f3e9094594538a2a7b156040b88d8ed7063be44c2d712fa413764807f2f9cdd54fcbca2fe392f635becb8a4692176e0846f61870559ab459e7318bb55a29dde201431f545855294ad2b9f825e3dd8d3c54ca7298e82d7b71ed3c35fd77e355568cf76a7007ed2f0792667d16d74dc39a9a336675a161b88a0b3bba4086a495ec4bcda6867444fedd74c0e26b1ca04b79318c4e63c624ec7643401b6a1c3a0f18a07df7b86710aaeb7154cbaa909c7441f6cf8d1548828a183e4faed08863f3b46acb7da8a3da315e3ff772bb81145bc284c005c7b797beb53b3ae4b3b45116d842e9a9db69ea121d64fa58d03424d46b1093381b30c328953f61d4ba373c3dd462881f8de58e320a462b130ac3d06b4551ab67edbfe5fd685d6d07d5174c0641ec262ca2133c2560b40de602186599b86e37db649289f85f0a042fdc2328a7e52c737448841ba721fac61d4c196b1e4c1d348f112bc260412d8fd588b0ac2b0b4cd531d258ae3274a9703dda270e49e4c39db51a32b655a72a9799c3fe3a4147eb96f3d1d934bc175b12be06ac2e6765e3ef9cfe0121fa2c141774f68bd9839955ad53963fe188773c830b27b088479fca98d4d823ae4554401c450b7dcae560800d1a48fbd936e4fbd57d22853b22e876a846cfbef194175b1d794e14336e780645d7e78ba5e2ea06450f3f290d1521b1df181fc2d2b2581503267495b7e3c3ab3145be552545a86978507ac21a9b2651e861ad7eb2f3df28b8ccd9d9401d2244f05baa9d4486912c21f535f1d7f1e9b2799e8df3694341c8f91abab05a8485d0055577852cb1f9410cc645f2702c7b7876e5ae91418bfa0e2d9ab303ac1d1135277a2464b6eddb568ed08d153f83314731215e44885346eaf17830d3f5e499af8dcd98ac29eb1372b5de2cda6c42873e0306486c8e8da448e6c7182f8a1168a90243f4542a6bcce60d3d58d41915d864c7453cc4bb5376b37180830b05dfd4963408dcc553b6d7bbbe331d5940648093e683bca9b3634220b61503c71b276eb61c2fbb13bcce09d83e8996ee5faca00454a89e0c781b262a22af2c793826b69fa8987f2f6cbd24ace1adb71009f9da9238468e41df3d83f71848d8ddb6ce06f2cf900488af1133d79b744ded3402a1e249b712415cf9c1cc11d5aa8608b034d35b5407780687a73c21ca4fdf84c595180920853baec1f05b16c6fd822f448f049703cb3dc34bd22622375e836ff16fbd9c153a09621e4a495e63e7da1c80705873d3359b69e80753d1f390956cad53d08bf26022a589f617a191015482526efbb24c8a6413b0886b6533e1834dd62f9d38136fb7b56b995cbc95ed04ff2562ad959a9eebf72ffce6f14ba89155e9a2724b4f3b921afae06f558131589a88501787b85df066cbbf54debcc2322f800b5e531b30dc0ee9e3204d34156f72f8024d58ebe77f95ef58a9354a5fb5c1d7f04e7481bb2e74c1fe41f2ec2b81f6697ae7ad80426777c43959743ace14009f45ae389e4ff61cc76d5050e988805cad09e7ba3143b824460006dc51feb79c296113eb7a17d92a5e9caa62955f06c24770c65dc776ab80562b68ac9088171e5696776545817d30a3748af2fb109ea091365f1847b27e90f44b6c3f9355bfcc0533e9f601c69edeabb1006e8ba3ea1af17e582603778cd39eca02dde7847281fecae5e161ddcbef0dbeb50518378da15f0c56175d7825a591c2272c4aab2c87316c93cff4df263e3d1aee5e211e9d76ef993040e4fc647e2e6c954d815c9e9a22c7531dd025eb7d0a13a61cf6ec4c4497290da248705a47dacff05da5092f854b5dc99394b0a2d30ba3c92ab9566594966e245750470fe44c7cbc7410466ce677fd606b692af6cab9e4ef6f7802e93b6e5561ddf3b20bc4269fabdae7d8e72dfcb15e8f583dbbd34a7022b608ca36dd52c90aab6aaa84974f0b7d571aa668ff9ddaa90deb0956e8044d44b1856e3fe6244865086acd318f637a10fe40e945a042747f172b890e7751c05d41e91a5d6f00d88e3efd79cd2586e7d2cabd6a28b0b00a8779ac3e264ec4fae0c8db69b4b7100261e9ac9ea117c234e1ec639ca67f101ca96b5167db44f0da208b1325c7adf789e066048f480f4591ebe1eeb78b4ac9bf2522a006a1ee74460e274fd6def0091e799fa834389b057679d9fd7a392373346221110025c6e0378c864ba90854e7f8f264327fa8d2cff19415d24bac4f3708b97393e36209c4bcd23da668e0f4368e8419c85a91c1890ec2ac31ab316946cca97d0ecfc0f5a746ece0ef564be02f4a094a77d8d2ab2bf4a66d16bd8c0ecea13d8c67991f459591fe6a839b9dd27a8588294f53801a215dc27e7f996ede2bd280045760eaf8fcb4cbfa86c045f2aa292eb05ae3ad5577589cae40a1b787d113c40956d7a42cc2304a682ac32d702076684ef057bf7d7a2ca67150f2870a4d8867a76b2acf448c4d26dcfc023c38b57035f01ed0f7cf905d19b4e0d2f1cde0e17fe12da36ef4c146ff7785d9d27cc822e6289a2dd940b87624f5abc157dcbaefffda7d7324465abb7b92118b1b992fc94cbf9a37a5b6890863d631783039c07ac7e64358bde5edbe50b6346fc19be967489e70f86291765a095399440303bb8aab543eb3d79cd5302ab8987ef0c993546ef1ed68179bc598a492e91edb963df9dd9efa1aabdd4ff51e60c37b52227cf2f98ed3767d6bc251060eb1ef8214cfdbf0f154461d3afe11cd3b8168d5dd348db074b663241097a78eb2d26eee42a308b987ee16b7f8c69a0ea579767e0a50dbbf2fb3da6ef4374088640f92c3cb4ac98454584640c3cbbede2bdf90d9ab52b390d1759cb933bf9c4b66c641a37fac358761792d474990ed9f03cf3d42f1a66f1f7d5bfbc9f4db9310bce2ae8982874f9c9267c07b9d3a993eff5f5f7968de1cd8ac791e8be67b3ca7df2eb70a2cb6d8359d26767c9691a99377fbf92528c3a0e1cc768c680376d9a03f6ebfb98b5b0e89e9a411e6d6d78581592978350d2135295388774fdd124e092733d2a163fdf67680f1132ff8d2511eef3bf272c38f2f5d0f1da2ec7bcfe40bf0ab70ca892a36668c7235804227948fac7791e4b9a354f4b84ce507a748c0bdfee7b2d21caadd0abe447658cc5784877e091e4e1d8cad52305fc0c2e3ec6d07246205854cac8e6726c8d220038536ab0b00ac653d50d2f3d4a7d86061218e3d5dc44e6e047ed3b8e8326094b5e78b96d2270b344da8dbe6e2452782bfa12c9bdfa487c414056a79755400278b2426fc3b80101eaaf9ef9e8ce9263ef6cae00b8ff2e76ac6f046c343d748631733a118a4e26bf0c09cebc8536d1e460cf3ab5e734aedc6060942820f70e480294976502519403c82ad413723167e519f4dfc7a2d1b8155effc210fa7c7adbeaa998ee11ab24e6bd02d49b611b897cab800352850676c2b333e5715a168db88da39209a3f606c0bb3f173d4d684d4c6f69d31e829f17a959f434ea9336c2482ddd77279567cd77b667118cff8275b111d64fb16709ce5b48b16694b4d4a0a9e11d90acdcba0b528023fa51d3b9d463ee3558c445cfa83c1341840c4481ac5135e73eec9bfc6992ba2922f476f4b57712c5c763e6940154dd8566163d4f9fc1f4859b0d11556239114efc4992d50c2f45fccac8a0bce43db69747d44f6d229ea09b5a90beb1fcb92bc7a801839df907b23b47f08dfe685ea9cf6244d4181b567d6fa93ae2db08cde6c7629bfde0a39d95cbd5a3232d4a2c2c4d24ad39ee4921c8b388cfbda8c94e9340cd4ce88c5539339e6416e0fd2bd7b21a962e7dd88352e5b6293ac24498d94efd420248c2dd1deffb3d96008ff1af866c27a5c79e86aab9e7b1e8a12a12687b7d56ca232abbc01942ce19aac281e3b795ce899c00b5653e36f83eb52620fa844ba737969ef37856ef6e4fb783b6b3e5238a6328f711d896677e439bceede3c64890df8102e216c5b1f31edb17198b6d5809dee8be6a423c8b1e4f447878e32da85a892c295bbe00cb560d5341adb6f3ea357ea610070c67a9577b88bb733812b3c6852ebcf338b0c97f206cf398ed0119033684a99744662ae4a522fea1bd39378dc07926803740903957253b575a0e3d6f09e13de31c5fe82b995b243f24dbcb370d7bdc42288e76c441cedc1f65bda7bcf17a5d1286ac7dbffe6507ac27e170d71b655fbce412206c007f61110949d31572f9470aefa277503ff79493b9ca5a7f99e72f8390af99af64ba593f71684d9e5146adf69669b220dfc4cfb93ee69c312f95258d50e541997d353bf8e43e79bd014e1447811be8f90245be5461e30c60d7cb76438142697600d2b36837e7fb232416534b0ff44ce99876a88edfe27ee4f9515e7f7c288c4c854912c3c194944d1f5dccd34cdb917822c75e942deafe4c09388a83e531b06dad3b20e78689a6b00b06cb0e292fffb61b1cc6965306241d7a2b4a20aa0a3d9ecb4924538f329f5dbb0008e884ccdb9d5aac876478a90a8701defd6d29091ab0dc463f61e"}) read$auto(r2, 0x0, 0x102) r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) ioctl$auto_SNDRV_TIMER_IOCTL_INFO(r4, 0x80e85411, &(0x7f00000002c0)={0x1, 0x17b7, "e5d02ebff1a0f22827060519362f2f88e79b08745cfeeb517c6dc57b7e6cdc606f490e7822d765e620e59b384bb7a4767cef31f639bb12efa4922229c5b4918f", "957bb98f6817aa559f6d1846dba8340fd7ad51f4595586d2c600434e68629cea1e53bc48eae23140d90b519394bf8df11a3924c9253960b4e9ab012fc27ef6ab0965734454d6662aa9e4680705010b14", 0x4, 0x2, "8668cf815dcbb782114b268bb324a302a4842e0b7270da771be7a331349e3b3cb06f60eabb01da08aaee3bafb4fda1fa3d27f74dd006547ab43c2200128038c7"}) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto_tty_fops_tty_io(r5, &(0x7f0000000200)="352c8efa610c0bcf83a4ebdb040000000000000021cb244b19a48bb5e0d12df9735b745b9554dfb0ad77a37be296", 0x2e) 3.132965619s ago: executing program 3 (id=3371): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ram15\x00', 0x400080, 0x0) unshare$auto(0x40000080) r1 = socket(0xa, 0x5, 0x0) mmap$auto(0x4, 0xa020009, 0x3, 0xeb1, r1, 0x7ffe) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card0/pcm0p/sub6/status\x00', 0x402a82, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2a, 0x8001, 0x200000009b7e, r0, 0x2000028000) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x80000, 0x0) poll$auto(&(0x7f0000000180)={r3, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x0) r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) ioctl$auto_UBI_IOCDET(r5, 0x40046f41, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x8, 0xfffffffffffffffa, 0x9, 0xfffffffffffffbff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0) read$auto(0xffffffffffffffff, &(0x7f0000000240)='\xcb%)\x00', 0x400000000007) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x7, 0x24, 0x1037b, 0x80000003) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(r6, &(0x7f00000000c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[], 0x158}, 0x1, 0x0, 0x0, 0x8080}, 0x84) sendmsg$auto_OVS_FLOW_CMD_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x40010}, 0x800) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) 3.074853718s ago: executing program 0 (id=3372): mmap$auto(0x10000000000000, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:03/wakeup/wakeup2/event_count\x00', 0x509882, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\xfc\xff\xff\xff\xff\xff\xf8\xffRN8\x99\x88\xf5s\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\xae\x18\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\xdac$w\x883\xac\xcd\x96\xc2\x93\x0e\x12/v0\x90\x915?', 0x4c, 0x9) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/006/001\x00', 0x802, 0x0) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) getsockopt$auto(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) pidfd_open$auto(0x1, 0x0) socket(0x2, 0x80002, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3a8453d3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0x2, 0x2, 0xc28}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(0xffffffffffffffff, 0x0, 0x20000054) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x1, 0xaa66, 0x9b7e, 0xffffffffffffffff, 0x5) unshare$auto(0x40000080) epoll_create$auto(0x5a) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nbd11\x00', 0x80000, 0x0) 3.067678472s ago: executing program 1 (id=3373): mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES16=r0, @ANYBLOB="010025bd7000fbdbdf0002"], 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4008044) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/pci/resource_alignment\x00', 0x8ea182, 0x0) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000100), r1) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) socket(0x2, 0x1, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55) write$auto(0x3, 0x0, 0xfdef) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x80000001, 0xa, 0x0, 0x6) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x7, 0x0) sendmmsg$auto(0x3, &(0x7f0000000180)={{0x0, 0x1040, &(0x7f00000001c0)={0x0, 0x2000000000000be}, 0x1, 0x0, 0x0, 0x9}}, 0x2, 0x5) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop10/mq/0/nr_tags\x00', 0x20000, 0x0) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x10002c, 0x7f, 0x0, @inferred=r2}, 0x287) close_range$auto(0x0, 0xffffffffffffffff, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=@bpf_attr_7={@start_id=0x7, 0x2, 0x10000, r3}, 0xac) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8000, 0x0) close_range$auto(r4, r4, 0x6) 1.092039364s ago: executing program 1 (id=3374): open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) r0 = prctl$auto(0xfffffffe, 0x1009, 0x4, 0x2, 0x7fe) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid_for_children\x00') fremovexattr$auto(r1, &(0x7f0000000000)='system.posix_acl_access\x00') splice$auto(r0, &(0x7f0000000500)=0x8, r1, &(0x7f0000000540)=0x2, 0x800, 0x7) r2 = getpid() getsid$auto(r2) capget$auto(&(0x7f0000000440), &(0x7f0000000480)={0x7, 0xfff, 0xffffffff}) socket(0xa, 0x5, 0x0) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x23) set_tid_address$auto(0x0) prctl$auto(0x23, 0xa, 0x7fffffffefff, 0x0, 0x0) 873.743052ms ago: executing program 1 (id=3375): mount$auto(0xffffffffffffffff, 0x0, 0x0, 0xa, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpuidle/current_governor\x00', 0xa42, 0x0) sendfile$auto(r0, r0, 0x0, 0x4000000000001) 737.956033ms ago: executing program 3 (id=3376): openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x20200, 0x0) socket(0xbdace62dac29e3d3, 0x804, 0x6) mmap$auto(0x0, 0x4, 0x4000000000de, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioctl$auto_BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000500)={0x40a, 0x3, 0x403ac, 0x8, {0x20000000000001, 0x4, 0xd, 0x1, 0x8000000000000000, 0x4, 0x9, 0x2, 0x20000000e, 0xa5, 0x3, 0x4, 0x0, 0x25, 0xbb}}) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x1, 0x0) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f00000002c0)=@test={r1, 0x0, 0x856, 0x189, 0x8, 0x7fff, 0x7fff, 0x10000, 0xc91a, 0x7, 0x5, 0x3, 0x3, 0x3, 0x6}, 0x1) mmap$auto(0xeb2, 0xa00004, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) ioctl$auto_BTRFS_IOC_ENCODED_WRITE_32(r2, 0x40789440, &(0x7f00000000c0)={0x9, 0x2656, 0x81, 0x56, 0x724, 0x80, 0x4, 0x8, 0x100, "a6fe4a8a0108d83a134f72167ad0a1f92bee06e22beaababccc9c6f47997d4e49a7190095e78edc2a157b3d4299a6615cd8ca60400e3150f9d376a3d1e48e2cb"}) sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000881}, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) mmap$auto(0x0, 0x9, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x341102, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x20e00, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_CREATE_VM(r4, 0x8004ae98, 0x0) write$auto(r3, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 650.217149ms ago: executing program 0 (id=3377): mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getrlimit$auto(0x3, 0x0) fdatasync$auto(r0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x60742, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wg0\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'veth0_to_batadv\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'pimreg\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'veth0_to_bond\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'virt_wifi0\x00'}) r2 = socket(0x1d, 0x2, 0x6) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) r4 = socket(0xa, 0x2, 0x88) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000004c0)={'wg1\x00'}) bpf$auto(0x0, &(0x7f0000000200)=@bpf_attr_5={@target_fd=r4, r5, 0x4, 0x1ff, r4, @relative_id=0x9, 0xe5fe}, 0xf) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000400)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'team_slave_0\x00'}) r6 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r7, 0xfd}, 0x6a) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x303101, 0x0) r8 = gettid() kill$auto(r8, 0x11) prctl$auto(0x3, 0x1, r8, 0x2, 0x40000000000) write$auto(r2, &(0x7f0000000680)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\tC:\x84D\x1du\xb4\x9ab\xce\xa7TU\xff\xff\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\x036\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\xfc\xfd\xac\xd4\xbd\b\xb2\xa85\xd9\xd6\r\xc2\x97h\xa4\xeas\x90\xb3\xf7\x83\x11`V5;\xccg\"\xb8\r\xe1\x87j\xed\xe1\xb9WW\x82\\\"\xef\xb2\xc4M\xa0=ii\xfb\xdd\x90\xe0\xda\x10_\xffO\xbb\xb0\xf0\x89t\xa2\x06\x1e*\x04\x8di\xad\xad\x86\xdfqr\x84\xdfi\xbdQx`H)\x8f\xfa$\x1e\tc\xf2E\xfb\xab\xfa\xe4t\x91[\xe5\xe4\xab\x16\xf6\xd6\x92O\xdd\x0e\xa4\xe6\xb8\x84&`\xfb6<#\xf9\xb6sw#\xbb\x9e\x14\x15t\xf7\xf2h\xde\xeb\xf9G\xc1\xbb\x83\xb6o1\xd9\xc2\xfd/\x0f\v\xc5/z\x95\xean\xfd\x04\xc4\xb4\x05Hu\xd5\x98\xb5i\xab\xcfV\xa9R\xdb\xad\xfe\x14\xc7jR\x1e\xc2\xbb\xe61\xe2\xe5\x11\xeb\x859\xc7@\xb1\x90\xd3\xdc\xb3\x95\rT', 0x1) 578.083893ms ago: executing program 1 (id=3378): ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000007c0)={{@inferred, 0x8, 0x4, 0xa2, "c6e47a44a36664a5e709f0e4c97056bc9fa32c617bb88dc98fa7591aefc4647f5af349f8e1e79c823b22958f"}, 0x1, @enumerated=@item=[0x0, 0x3, 0x1, 0xb, 0x6, 0x8001, 0x10, 0x6, 0x10001, 0xefe, 0xfffffff9, 0x5, 0x8001, 0x62f, 0x101, 0x4, 0x200, 0xfffffff0, 0x1000, 0x7, 0x3, 0x3, 0x0, 0x6, 0xb94, 0x0, 0x1, 0x7, 0x3, 0xe8, 0x4, 0x0, 0x9, 0x46f, 0x8, 0x1, 0x6, 0x4, 0x6, 0x8, 0x80, 0x9, 0x65b, 0x9, 0x7, 0x81, 0x1ce8, 0x9, 0x34b5, 0xfff, 0x5, 0x4, 0x2, 0x1000, 0x9, 0x0, 0x400, 0xd, 0x0, 0x0, 0x207d, 0xa79, 0x5, 0x5, 0x4, 0x80, 0x6ed, 0x0, 0x1, 0x1, 0x6, 0x4, 0x8, 0x1, 0x4003ff, 0x5, 0x8, 0x6, 0x0, 0xa, 0x2, 0x5, 0x400, 0x6, 0x4, 0x9, 0x29, 0x8, 0x30971ad3, 0x9, 0x78d, 0x7f, 0x0, 0x8001, 0x20000, 0x40, 0x0, 0x4, 0x5, 0xfffff43e, 0x0, 0x4f000, 0xfe, 0x5, 0x7, 0xd49e923b, 0x4, 0x80000000, 0x77, 0xf2, 0x0, 0x7fffffff, 0x7f77, 0x9, 0x5b, 0x8, 0x10011, 0x8, 0x0, 0xc2, 0x0, 0x5, 0x1000, 0x1, 0x7, 0x400, 0x8, 0x3], "4570dcfd140074f863fc1385c4fd7abe6fce96c0b442897f58fd7d975d164deff4eef5b9f9173fa400163669eae95125d4bd68ca54ca1b0aefb60ffa8d501b1329af8d4108ac145aa564c6e7a09ea1b2dfae0f309c6ea508833d7d134b13d8cb3ef95bf5ed43801c280c02a5a853512e6f730d43226f00af1c5ac268ecc1d18f"}) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) write$auto(r0, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8001, 0x0) 549.85294ms ago: executing program 4 (id=3379): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='./cgroup.net/net_prio.prioidx\x00', 0x20a42, 0x0) unshare$auto(0x40000080) unshare$auto(0x4) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x3, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy16/reset\x00', 0x182, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(r2, 0x0, 0x20) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000002080)=""/4085, 0xff5) 233.656512ms ago: executing program 1 (id=3380): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000000)='//\xf2\x00', 0x80000000) rt_tgsigqueueinfo$auto_SIGCONT(0xffffffffffffffff, 0xffffffffffffffff, 0x12, &(0x7f00000003c0)={@_si_pad}) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffd, 0x7, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804}) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x581402, 0x0) r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0xc0403d11, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) waitid$auto_P_ALL(0x0, 0x3b000, &(0x7f0000000280)={@siginfo_0_0={0x200, 0x0, 0x6, @_sigsys={&(0x7f00000000c0)="55eb8df319677f9aebf453b195011dc75b314a6a2de037085459dc03a1ad19978559dbc978c89a4fb1f552151699faea53575d94e9e2f930abeb4f1cd2fa58efd12b9315baeca5f900c19f32e51de1ba99fb4f82871232b3", 0x1000, 0x826}}}, 0x3, &(0x7f0000000300)={{0xda0000000000000, 0x969d}, {0x2, 0x6}, 0x8000000000000000, 0xa, 0x8, 0x9, 0xb871, 0x6, 0x9ffd, 0x81, 0x0, 0x1000000000f8c5, 0x1000, 0x81, 0xc, 0xd}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) 0s ago: executing program 3 (id=3381): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto(r0, 0x40025504, 0xea3) (fail_nth: 5) kernel console output (not intermixed with test programs): using interface batadv_slave_0 (retrying later): interface not active [ 1110.250292][T19672] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1110.257307][T19672] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1110.364288][T19672] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1110.518133][T19672] hsr_slave_0: entered promiscuous mode [ 1110.579793][T19672] hsr_slave_1: entered promiscuous mode [ 1111.322751][ T60] bridge_slave_1: left allmulticast mode [ 1111.344572][ T60] bridge_slave_1: left promiscuous mode [ 1111.356496][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 1111.379973][ T60] bridge_slave_0: left allmulticast mode [ 1111.385760][ T60] bridge_slave_0: left promiscuous mode [ 1111.401882][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 1111.608685][T19507] Bluetooth: hci0: command tx timeout [ 1111.875631][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1111.896369][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1111.906985][ T60] bond0 (unregistering): Released all slaves [ 1112.826680][ T60] hsr_slave_0: left promiscuous mode [ 1112.843437][ T60] hsr_slave_1: left promiscuous mode [ 1112.864985][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1112.883367][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1112.944101][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1112.954179][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1113.028177][ T60] veth1_macvtap: left promiscuous mode [ 1113.033775][ T60] veth0_macvtap: left promiscuous mode [ 1113.085374][ T60] veth1_vlan: left promiscuous mode [ 1113.095972][ T60] veth0_vlan: left promiscuous mode [ 1113.617665][T19757] Process accounting resumed [ 1113.686678][T19507] Bluetooth: hci0: command tx timeout [ 1113.856356][ T60] team0 (unregistering): Port device team_slave_1 removed [ 1113.906040][ T60] team0 (unregistering): Port device team_slave_0 removed [ 1114.808726][T19672] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1114.877649][T19672] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1114.910449][T19672] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1114.958512][T19672] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1115.699185][T19672] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1115.774659][T19507] Bluetooth: hci0: command tx timeout [ 1115.950226][T19672] 8021q: adding VLAN 0 to HW filter on device team0 [ 1116.176074][T12424] bridge0: port 1(bridge_slave_0) entered blocking state [ 1116.183212][T12424] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1116.425337][T12424] bridge0: port 2(bridge_slave_1) entered blocking state [ 1116.432462][T12424] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1116.611379][T19803] Process accounting resumed [ 1117.250009][T19672] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1117.422773][T19672] veth0_vlan: entered promiscuous mode [ 1117.599042][T19672] veth1_vlan: entered promiscuous mode [ 1117.740139][T19672] veth0_macvtap: entered promiscuous mode [ 1117.772514][T19672] veth1_macvtap: entered promiscuous mode [ 1118.083719][T19672] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1118.126479][T19672] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1118.425765][T12424] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1118.481566][T12424] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1118.504682][ T1140] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1118.518692][ T1140] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1119.180252][T12424] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1119.202247][T12424] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1119.431684][ T3538] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1119.462673][ T3538] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1121.276644][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1121.287857][ T5842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1121.295752][ T5842] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1121.307368][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1121.324770][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1122.184825][ T60] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.274997][T19878] chnl_net:caif_netlink_parms(): no params data found [ 1122.387341][ T60] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.709491][ T60] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.748985][T19878] bridge0: port 1(bridge_slave_0) entered blocking state [ 1122.758657][T19878] bridge0: port 1(bridge_slave_0) entered disabled state [ 1122.768870][T19878] bridge_slave_0: entered allmulticast mode [ 1122.825736][T19878] bridge_slave_0: entered promiscuous mode [ 1122.837525][T19878] bridge0: port 2(bridge_slave_1) entered blocking state [ 1122.845420][T19878] bridge0: port 2(bridge_slave_1) entered disabled state [ 1122.854933][T19878] bridge_slave_1: entered allmulticast mode [ 1122.862146][T19878] bridge_slave_1: entered promiscuous mode [ 1122.979820][ T60] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1123.135818][T19878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1123.216633][T19878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1123.373309][T19878] team0: Port device team_slave_0 added [ 1123.379019][ T5842] Bluetooth: hci3: command tx timeout [ 1123.475770][T19878] team0: Port device team_slave_1 added [ 1123.589324][T19878] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1123.598837][T19878] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1123.629824][T19878] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1123.673071][T19878] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1123.725142][T19878] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1123.785966][T19878] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1124.104925][T19878] hsr_slave_0: entered promiscuous mode [ 1124.119634][T19878] hsr_slave_1: entered promiscuous mode [ 1124.137403][T19878] debugfs: 'hsr0' already exists in 'hsr' [ 1124.166816][T19878] Cannot create hsr debugfs directory [ 1124.187394][ T60] bridge_slave_1: left allmulticast mode [ 1124.193070][ T60] bridge_slave_1: left promiscuous mode [ 1124.209015][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 1124.242945][ T60] bridge_slave_0: left allmulticast mode [ 1124.256109][ T60] bridge_slave_0: left promiscuous mode [ 1124.267251][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 1124.826731][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1124.864969][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1124.888708][ T60] bond0 (unregistering): Released all slaves [ 1125.455198][ T5842] Bluetooth: hci3: command tx timeout [ 1126.182337][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1126.188776][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1126.197375][T19910] Process accounting paused [ 1126.202866][ T60] hsr_slave_0: left promiscuous mode [ 1126.255108][ T60] hsr_slave_1: left promiscuous mode [ 1126.280603][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1126.309885][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1126.342582][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1126.362512][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1126.418879][ T60] veth1_macvtap: left promiscuous mode [ 1126.427508][ T60] veth0_macvtap: left promiscuous mode [ 1126.436588][ T60] veth1_vlan: left promiscuous mode [ 1126.442045][ T60] veth0_vlan: left promiscuous mode [ 1127.306638][ T60] team0 (unregistering): Port device team_slave_1 removed [ 1127.336438][ T60] team0 (unregistering): Port device team_slave_0 removed [ 1127.537504][ T5842] Bluetooth: hci3: command tx timeout [ 1128.431878][T19878] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1128.470456][T19878] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1128.524042][T19878] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1128.607662][T19878] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1129.572861][T19878] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1129.604378][ T5842] Bluetooth: hci3: command tx timeout [ 1129.617220][T19878] 8021q: adding VLAN 0 to HW filter on device team0 [ 1129.640794][ T3538] bridge0: port 1(bridge_slave_0) entered blocking state [ 1129.648049][ T3538] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1129.682346][ T1159] bridge0: port 2(bridge_slave_1) entered blocking state [ 1129.689515][ T1159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1129.822093][T20015] Process accounting resumed [ 1131.092318][T19878] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1131.502887][T19878] veth0_vlan: entered promiscuous mode [ 1131.535716][T19878] veth1_vlan: entered promiscuous mode [ 1131.618433][T19878] veth0_macvtap: entered promiscuous mode [ 1131.640446][T19878] veth1_macvtap: entered promiscuous mode [ 1131.948316][T19878] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1132.070087][T19878] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1132.166772][ T34] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.202015][ T34] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.261921][ T34] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.491616][ T34] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1132.731048][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1132.749332][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1132.851198][ T2122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1132.867283][ T2122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1133.917024][T19507] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1133.927345][T19507] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1133.944775][T19507] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1133.953659][T19507] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1133.974632][T19507] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1134.635644][T20102] chnl_net:caif_netlink_parms(): no params data found [ 1134.769635][T20110] Process accounting resumed [ 1134.948768][T20102] bridge0: port 1(bridge_slave_0) entered blocking state [ 1134.956068][T20102] bridge0: port 1(bridge_slave_0) entered disabled state [ 1134.972775][T20102] bridge_slave_0: entered allmulticast mode [ 1135.085753][T20102] bridge_slave_0: entered promiscuous mode [ 1135.266009][ T34] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1135.325386][T20102] bridge0: port 2(bridge_slave_1) entered blocking state [ 1135.364767][T20102] bridge0: port 2(bridge_slave_1) entered disabled state [ 1135.372065][T20102] bridge_slave_1: entered allmulticast mode [ 1135.388887][T20102] bridge_slave_1: entered promiscuous mode [ 1135.644828][ T34] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1135.987637][ T34] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1136.022380][T20102] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1136.043886][T20102] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1136.084456][ T5842] Bluetooth: hci2: command tx timeout [ 1136.159323][ T34] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1136.322520][T20102] team0: Port device team_slave_0 added [ 1136.333500][T20102] team0: Port device team_slave_1 added [ 1136.425112][T20102] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1136.452522][T20102] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1136.520641][T20102] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1136.568494][T20102] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1136.604301][T20102] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1136.754332][T20102] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1137.303397][T20102] hsr_slave_0: entered promiscuous mode [ 1137.315863][T20102] hsr_slave_1: entered promiscuous mode [ 1137.330245][T20102] debugfs: 'hsr0' already exists in 'hsr' [ 1137.344437][T20102] Cannot create hsr debugfs directory [ 1137.465110][ T34] bridge_slave_1: left allmulticast mode [ 1137.476693][ T34] bridge_slave_1: left promiscuous mode [ 1137.482548][ T34] bridge0: port 2(bridge_slave_1) entered disabled state [ 1137.501602][ T34] bridge_slave_0: left allmulticast mode [ 1137.515882][ T34] bridge_slave_0: left promiscuous mode [ 1137.526543][ T34] bridge0: port 1(bridge_slave_0) entered disabled state [ 1137.876642][ T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1137.887672][ T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1137.898639][ T34] bond0 (unregistering): Released all slaves [ 1138.164694][ T5842] Bluetooth: hci2: command tx timeout [ 1138.340359][ T34] hsr_slave_0: left promiscuous mode [ 1138.350848][ T34] hsr_slave_1: left promiscuous mode [ 1138.362706][ T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1138.372698][ T34] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1138.383267][ T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1138.391860][ T34] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1138.414124][ T34] veth1_macvtap: left promiscuous mode [ 1138.424461][ T34] veth0_macvtap: left promiscuous mode [ 1138.430147][ T34] veth1_vlan: left promiscuous mode [ 1138.435602][ T34] veth0_vlan: left promiscuous mode [ 1138.927966][ T34] team0 (unregistering): Port device team_slave_1 removed [ 1138.969438][ T34] team0 (unregistering): Port device team_slave_0 removed [ 1140.244584][ T5842] Bluetooth: hci2: command tx timeout [ 1140.966491][T20102] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1141.085867][T20102] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1141.195111][T20102] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1141.286295][T20102] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1141.957173][T20192] Process accounting resumed [ 1142.250342][T20102] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1142.295707][T20102] 8021q: adding VLAN 0 to HW filter on device team0 [ 1142.323684][ T1159] bridge0: port 1(bridge_slave_0) entered blocking state [ 1142.330843][ T1159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1142.338499][ T5842] Bluetooth: hci2: command tx timeout [ 1142.391549][ T1159] bridge0: port 2(bridge_slave_1) entered blocking state [ 1142.398691][ T1159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1142.529520][T20102] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1142.580734][T20102] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1142.731171][T20210] Process accounting resumed [ 1143.428125][T20102] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1143.610911][T20102] veth0_vlan: entered promiscuous mode [ 1143.641619][T20102] veth1_vlan: entered promiscuous mode [ 1143.680528][T20102] veth0_macvtap: entered promiscuous mode [ 1143.728471][T20102] veth1_macvtap: entered promiscuous mode [ 1143.782284][T20102] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1143.818108][T20102] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1143.851630][ T9374] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1143.872472][ T9374] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1143.892500][ T9374] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1143.910508][ T9374] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1144.137351][ T6022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1144.160216][ T6022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1144.485890][T12424] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1144.497387][T12424] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1150.319467][T20366] Process accounting resumed [ 1168.278954][T20663] Process accounting resumed [ 1174.039473][T20707] Process accounting paused [ 1174.062740][T20748] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1174.338668][T20752] bond0: option all_slaves_active: invalid value () [ 1175.109866][T20756] Process accounting resumed [ 1175.534649][T20773] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1176.284580][T20733] Process accounting paused [ 1176.548575][T20780] bond0: option all_slaves_active: invalid value () [ 1176.605535][T20779] bond0: option all_slaves_active: invalid value () [ 1179.140097][T20818] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1180.502695][T20837] bond0: option all_slaves_active: invalid value () [ 1180.700519][T20830] Process accounting resumed [ 1183.049483][T20863] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1187.626122][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1187.632485][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1189.284455][T20948] bond0: option all_slaves_active: invalid value () [ 1198.828319][T21071] Process accounting resumed [ 1199.229780][T21074] Process accounting paused [ 1202.726990][T21133] bond0: option all_slaves_active: invalid value () [ 1206.971925][T21163] Process accounting paused [ 1218.749139][T21353] bond0: option all_slaves_active: invalid value () [ 1220.409443][ T5842] Bluetooth: hci4: command 0x0406 tx timeout [ 1226.387191][T21461] ima: Unable to open file: /surit‹¯Ròy/integrity?iqa/policy (-2) [ 1226.706058][T21458] ima: policy update failed [ 1226.742073][ T30] audit: type=1802 audit(3536579052.775:2): pid=21458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2679" res=0 errno=0 [ 1229.471021][T21496] Process accounting paused [ 1229.508311][T21468] Process accounting resumed [ 1230.646263][T19507] Bluetooth: hci0: command 0x0406 tx timeout [ 1232.568333][T21575] ima: Unable to open file: /surit‹¯Ròy/integrity?iqa/policy (-2) [ 1232.922073][T21574] ima: policy update failed [ 1232.970662][ T30] audit: type=1802 audit(3536579059.005:3): pid=21574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2695" res=0 errno=0 [ 1233.298862][T21593] ima: Unable to open file: /surit‹¯Ròy/integrity?iqa/policy (-2) [ 1233.467004][T21592] ima: policy update failed [ 1233.484456][ T30] audit: type=1802 audit(3536579059.515:4): pid=21592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2699" res=0 errno=0 [ 1237.830711][T21662] Process accounting resumed [ 1246.012430][ T5842] Bluetooth: hci3: command 0x0406 tx timeout [ 1249.073039][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1249.080581][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1256.244365][T19507] Bluetooth: hci2: command 0x0406 tx timeout [ 1257.671978][T21993] forcing mempool usage for bio_alloc_bioset+0x3de/0x8c0 [ 1259.661158][T22025] Process accounting resumed [ 1261.493930][T22034] Process accounting paused [ 1267.882799][T22165] Process accounting paused [ 1286.591403][T22389] forcing mempool usage for bio_alloc_bioset+0x3de/0x8c0 [ 1289.830854][T22434] Process accounting paused [ 1291.851555][T22467] Process accounting resumed [ 1297.982379][T22550] Process accounting resumed [ 1310.499113][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1310.509611][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1321.633500][T22821] Process accounting resumed [ 1324.711343][T22845] Process accounting paused [ 1328.513523][T22911] Process accounting paused [ 1343.465057][T23123] FAULT_INJECTION: forcing a failure. [ 1343.465057][T23123] name failslab, interval 1, probability 0, space 0, times 0 [ 1343.489091][T23123] CPU: 1 UID: 0 PID: 23123 Comm: syz.1.2965 Not tainted syzkaller #0 PREEMPT(full) [ 1343.489129][T23123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1343.489147][T23123] Call Trace: [ 1343.489158][T23123] [ 1343.489170][T23123] dump_stack_lvl+0x16c/0x1f0 [ 1343.489225][T23123] should_fail_ex+0x512/0x640 [ 1343.489259][T23123] ? kmem_cache_alloc_noprof+0x62/0x770 [ 1343.489300][T23123] should_failslab+0xc2/0x120 [ 1343.489348][T23123] kmem_cache_alloc_noprof+0x83/0x770 [ 1343.489384][T23123] ? getname_flags.part.0+0x4c/0x550 [ 1343.489423][T23123] ? getname_flags.part.0+0x4c/0x550 [ 1343.489454][T23123] getname_flags.part.0+0x4c/0x550 [ 1343.489490][T23123] getname_flags+0x93/0xf0 [ 1343.489528][T23123] do_sys_openat2+0xb9/0x290 [ 1343.489561][T23123] ? __pfx_do_sys_openat2+0x10/0x10 [ 1343.489597][T23123] ? __fget_files+0x20e/0x3c0 [ 1343.489645][T23123] __x64_sys_openat+0x174/0x210 [ 1343.489679][T23123] ? __pfx___x64_sys_openat+0x10/0x10 [ 1343.489713][T23123] ? ksys_write+0x1ac/0x250 [ 1343.489767][T23123] do_syscall_64+0xcd/0xf80 [ 1343.489797][T23123] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1343.489826][T23123] RIP: 0033:0x7fdc55f8f7c9 [ 1343.489851][T23123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1343.489888][T23123] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1343.489917][T23123] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1343.489948][T23123] RDX: 0000000000040000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1343.489966][T23123] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1343.489982][T23123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1343.490000][T23123] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1343.490036][T23123] [ 1346.102891][T23158] FAULT_INJECTION: forcing a failure. [ 1346.102891][T23158] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1346.134777][T23158] CPU: 1 UID: 0 PID: 23158 Comm: syz.0.2973 Not tainted syzkaller #0 PREEMPT(full) [ 1346.134823][T23158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1346.134837][T23158] Call Trace: [ 1346.134845][T23158] [ 1346.134855][T23158] dump_stack_lvl+0x16c/0x1f0 [ 1346.134897][T23158] should_fail_ex+0x512/0x640 [ 1346.134928][T23158] _copy_to_user+0x32/0xd0 [ 1346.134957][T23158] simple_read_from_buffer+0xcb/0x170 [ 1346.134993][T23158] proc_fail_nth_read+0x197/0x240 [ 1346.135033][T23158] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1346.135074][T23158] ? rw_verify_area+0xcf/0x6c0 [ 1346.135104][T23158] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1346.135144][T23158] vfs_read+0x1e4/0xcf0 [ 1346.135177][T23158] ? __pfx___mutex_lock+0x10/0x10 [ 1346.135202][T23158] ? __pfx_vfs_read+0x10/0x10 [ 1346.135242][T23158] ? __fget_files+0x20e/0x3c0 [ 1346.135283][T23158] ksys_read+0x12a/0x250 [ 1346.135316][T23158] ? __pfx_ksys_read+0x10/0x10 [ 1346.135356][T23158] do_syscall_64+0xcd/0xf80 [ 1346.135379][T23158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1346.135403][T23158] RIP: 0033:0x7f29cc38e1dc [ 1346.135422][T23158] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1346.135446][T23158] RSP: 002b:00007f29cd202030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1346.135473][T23158] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38e1dc [ 1346.135495][T23158] RDX: 000000000000000f RSI: 00007f29cd2020a0 RDI: 0000000000000004 [ 1346.135510][T23158] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1346.135526][T23158] R10: 00000000002cbd5d R11: 0000000000000246 R12: 0000000000000001 [ 1346.135541][T23158] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1346.135576][T23158] [ 1347.769452][T23186] FAULT_INJECTION: forcing a failure. [ 1347.769452][T23186] name failslab, interval 1, probability 0, space 0, times 0 [ 1347.783232][T23186] CPU: 0 UID: 0 PID: 23186 Comm: syz.3.2979 Not tainted syzkaller #0 PREEMPT(full) [ 1347.783260][T23186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1347.783273][T23186] Call Trace: [ 1347.783280][T23186] [ 1347.783287][T23186] dump_stack_lvl+0x16c/0x1f0 [ 1347.783324][T23186] should_fail_ex+0x512/0x640 [ 1347.783347][T23186] ? __kvmalloc_node_noprof+0x129/0xa40 [ 1347.783399][T23186] should_failslab+0xc2/0x120 [ 1347.783433][T23186] __kvmalloc_node_noprof+0x14a/0xa40 [ 1347.783466][T23186] ? seq_read_iter+0x830/0x12d0 [ 1347.783509][T23186] ? seq_read_iter+0x830/0x12d0 [ 1347.783538][T23186] seq_read_iter+0x830/0x12d0 [ 1347.783578][T23186] kernfs_fop_read_iter+0x46c/0x610 [ 1347.783614][T23186] ? rw_verify_area+0xcf/0x6c0 [ 1347.783645][T23186] vfs_read+0x8bf/0xcf0 [ 1347.783681][T23186] ? __pfx_vfs_read+0x10/0x10 [ 1347.783727][T23186] ksys_read+0x12a/0x250 [ 1347.783770][T23186] ? __pfx_ksys_read+0x10/0x10 [ 1347.783806][T23186] do_syscall_64+0xcd/0xf80 [ 1347.783826][T23186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1347.783846][T23186] RIP: 0033:0x7f382ab8f7c9 [ 1347.783862][T23186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1347.783882][T23186] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1347.783900][T23186] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1347.783914][T23186] RDX: 0000000000000096 RSI: 0000200000000080 RDI: 0000000000000003 [ 1347.783926][T23186] RBP: 00007f382ba2a090 R08: 0000000000000000 R09: 0000000000000000 [ 1347.783939][T23186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1347.783951][T23186] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1347.783977][T23186] [ 1348.551664][T23201] FAULT_INJECTION: forcing a failure. [ 1348.551664][T23201] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1348.632146][T23201] CPU: 1 UID: 0 PID: 23201 Comm: syz.1.2982 Not tainted syzkaller #0 PREEMPT(full) [ 1348.632175][T23201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1348.632189][T23201] Call Trace: [ 1348.632196][T23201] [ 1348.632203][T23201] dump_stack_lvl+0x16c/0x1f0 [ 1348.632261][T23201] should_fail_ex+0x512/0x640 [ 1348.632290][T23201] get_futex_key+0x1d0/0x15f0 [ 1348.632317][T23201] ? __pfx_get_futex_key+0x10/0x10 [ 1348.632341][T23201] ? get_pid_task+0xfc/0x250 [ 1348.632366][T23201] futex_wake+0xea/0x530 [ 1348.632393][T23201] ? proc_fail_nth_write+0x9f/0x220 [ 1348.632417][T23201] ? __pfx_futex_wake+0x10/0x10 [ 1348.632458][T23201] ? ksys_write+0x190/0x250 [ 1348.632494][T23201] do_futex+0x1e3/0x350 [ 1348.632520][T23201] ? __pfx_do_futex+0x10/0x10 [ 1348.632552][T23201] __x64_sys_futex+0x1e0/0x4c0 [ 1348.632579][T23201] ? fput+0x70/0xf0 [ 1348.632619][T23201] ? __pfx___x64_sys_futex+0x10/0x10 [ 1348.632645][T23201] ? ksys_write+0x1ac/0x250 [ 1348.632679][T23201] ? __pfx_ksys_write+0x10/0x10 [ 1348.632721][T23201] do_syscall_64+0xcd/0xf80 [ 1348.632744][T23201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1348.632768][T23201] RIP: 0033:0x7fdc55f8f7c9 [ 1348.632786][T23201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1348.632809][T23201] RSP: 002b:00007fdc541f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1348.632830][T23201] RAX: ffffffffffffffda RBX: 00007fdc561e6090 RCX: 00007fdc55f8f7c9 [ 1348.632846][T23201] RDX: 0000000000000f3b RSI: 000000000000000a RDI: 0000200000000080 [ 1348.632860][T23201] RBP: 00007fdc541f6090 R08: 0000000000000000 R09: 00000000440a48ce [ 1348.632875][T23201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1348.632889][T23201] R13: 00007fdc561e6128 R14: 00007fdc561e6090 R15: 00007fffdeec5b48 [ 1348.632917][T23201] [ 1349.987752][T23217] can: request_module (can-proto-0) failed. [ 1350.448403][T23244] FAULT_INJECTION: forcing a failure. [ 1350.448403][T23244] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1350.513325][T23244] CPU: 1 UID: 0 PID: 23244 Comm: syz.2.2993 Not tainted syzkaller #0 PREEMPT(full) [ 1350.513353][T23244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1350.513372][T23244] Call Trace: [ 1350.513378][T23244] [ 1350.513386][T23244] dump_stack_lvl+0x16c/0x1f0 [ 1350.513423][T23244] should_fail_ex+0x512/0x640 [ 1350.513451][T23244] _copy_from_user+0x2e/0xd0 [ 1350.513476][T23244] do_ipv6_setsockopt+0x91b/0x4570 [ 1350.513504][T23244] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 1350.513532][T23244] ? get_pid_task+0xfc/0x250 [ 1350.513560][T23244] ? __pfx___might_resched+0x10/0x10 [ 1350.513590][T23244] ? __lock_acquire+0x436/0x2890 [ 1350.513612][T23244] ? aa_sk_perm+0x2f2/0xae0 [ 1350.513637][T23244] ? ksys_write+0x190/0x250 [ 1350.513669][T23244] ? __pfx_aa_sk_perm+0x10/0x10 [ 1350.513696][T23244] ? find_held_lock+0x2b/0x80 [ 1350.513727][T23244] ? ipv6_setsockopt+0xcb/0x170 [ 1350.513747][T23244] ipv6_setsockopt+0xcb/0x170 [ 1350.513769][T23244] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 1350.513805][T23244] do_sock_setsockopt+0xf3/0x1d0 [ 1350.513842][T23244] __sys_setsockopt+0x120/0x1a0 [ 1350.513873][T23244] __x64_sys_setsockopt+0xbd/0x160 [ 1350.513899][T23244] ? do_syscall_64+0x91/0xf80 [ 1350.513918][T23244] ? lockdep_hardirqs_on+0x7c/0x110 [ 1350.513951][T23244] do_syscall_64+0xcd/0xf80 [ 1350.513988][T23244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1350.514020][T23244] RIP: 0033:0x7f77baf8f7c9 [ 1350.514043][T23244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1350.514073][T23244] RSP: 002b:00007f77bbedf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1350.514092][T23244] RAX: ffffffffffffffda RBX: 00007f77bb1e5fa0 RCX: 00007f77baf8f7c9 [ 1350.514105][T23244] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003 [ 1350.514119][T23244] RBP: 00007f77bbedf090 R08: 0000000000000110 R09: 0000000000000000 [ 1350.514153][T23244] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001 [ 1350.514170][T23244] R13: 00007f77bb1e6038 R14: 00007f77bb1e5fa0 R15: 00007fff91b8be18 [ 1350.514207][T23244] [ 1352.263088][T23277] FAULT_INJECTION: forcing a failure. [ 1352.263088][T23277] name failslab, interval 1, probability 0, space 0, times 0 [ 1352.275839][T23277] CPU: 0 UID: 0 PID: 23277 Comm: syz.0.3001 Not tainted syzkaller #0 PREEMPT(full) [ 1352.275888][T23277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1352.275908][T23277] Call Trace: [ 1352.275920][T23277] [ 1352.275932][T23277] dump_stack_lvl+0x16c/0x1f0 [ 1352.276011][T23277] should_fail_ex+0x512/0x640 [ 1352.276043][T23277] ? kmem_cache_alloc_noprof+0x62/0x770 [ 1352.276082][T23277] should_failslab+0xc2/0x120 [ 1352.276125][T23277] kmem_cache_alloc_noprof+0x83/0x770 [ 1352.276160][T23277] ? getname_flags.part.0+0x4c/0x550 [ 1352.276198][T23277] ? getname_flags.part.0+0x4c/0x550 [ 1352.276227][T23277] getname_flags.part.0+0x4c/0x550 [ 1352.276263][T23277] getname_flags+0x93/0xf0 [ 1352.276301][T23277] __x64_sys_execve+0x74/0xb0 [ 1352.276341][T23277] do_syscall_64+0xcd/0xf80 [ 1352.276370][T23277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1352.276398][T23277] RIP: 0033:0x7f29cc38f7c9 [ 1352.276419][T23277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1352.276448][T23277] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 1352.276475][T23277] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1352.276494][T23277] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 1352.276511][T23277] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1352.276528][T23277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1352.276544][T23277] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1352.276583][T23277] [ 1352.489128][T23253] Process accounting paused [ 1354.905028][T23328] FAULT_INJECTION: forcing a failure. [ 1354.905028][T23328] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1354.939755][T23328] CPU: 0 UID: 0 PID: 23328 Comm: syz.0.3017 Not tainted syzkaller #0 PREEMPT(full) [ 1354.939784][T23328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1354.939798][T23328] Call Trace: [ 1354.939805][T23328] [ 1354.939814][T23328] dump_stack_lvl+0x16c/0x1f0 [ 1354.939878][T23328] should_fail_ex+0x512/0x640 [ 1354.939910][T23328] _copy_from_user+0x2e/0xd0 [ 1354.939937][T23328] copy_msghdr_from_user+0x98/0x160 [ 1354.939970][T23328] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1354.940017][T23328] ___sys_sendmsg+0xfe/0x1d0 [ 1354.940050][T23328] ? __pfx____sys_sendmsg+0x10/0x10 [ 1354.940115][T23328] __sys_sendmsg+0x16d/0x220 [ 1354.940148][T23328] ? __pfx___sys_sendmsg+0x10/0x10 [ 1354.940198][T23328] do_syscall_64+0xcd/0xf80 [ 1354.940221][T23328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1354.940245][T23328] RIP: 0033:0x7f29cc38f7c9 [ 1354.940264][T23328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1354.940288][T23328] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1354.940310][T23328] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1354.940326][T23328] RDX: 0000000000008080 RSI: 00002000000001c0 RDI: 0000000000000003 [ 1354.940341][T23328] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1354.940356][T23328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1354.940370][T23328] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1354.940399][T23328] [ 1355.430541][T23304] Process accounting resumed [ 1356.680610][T23352] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3023'. [ 1356.896538][T23358] FAULT_INJECTION: forcing a failure. [ 1356.896538][T23358] name failslab, interval 1, probability 0, space 0, times 0 [ 1356.924327][T23358] CPU: 1 UID: 0 PID: 23358 Comm: syz.0.3024 Not tainted syzkaller #0 PREEMPT(full) [ 1356.924354][T23358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1356.924366][T23358] Call Trace: [ 1356.924374][T23358] [ 1356.924381][T23358] dump_stack_lvl+0x16c/0x1f0 [ 1356.924417][T23358] should_fail_ex+0x512/0x640 [ 1356.924445][T23358] ? kmem_cache_alloc_noprof+0x62/0x770 [ 1356.924474][T23358] should_failslab+0xc2/0x120 [ 1356.924507][T23358] kmem_cache_alloc_noprof+0x83/0x770 [ 1356.924532][T23358] ? vm_area_alloc+0x1f/0x160 [ 1356.924558][T23358] ? vm_area_alloc+0x1f/0x160 [ 1356.924577][T23358] vm_area_alloc+0x1f/0x160 [ 1356.924598][T23358] __mmap_region+0x107a/0x2a00 [ 1356.924625][T23358] ? __lock_acquire+0x436/0x2890 [ 1356.924644][T23358] ? __pfx___mmap_region+0x10/0x10 [ 1356.924705][T23358] ? lock_acquire+0x179/0x330 [ 1356.924753][T23358] ? rcu_is_watching+0x12/0xc0 [ 1356.924793][T23358] mmap_region+0x1ab/0x3f0 [ 1356.924840][T23358] ? __get_unmapped_area+0x267/0x3f0 [ 1356.924880][T23358] do_mmap+0xa3e/0x1210 [ 1356.924922][T23358] ? __pfx_do_mmap+0x10/0x10 [ 1356.924959][T23358] ? __pfx_down_write_killable+0x10/0x10 [ 1356.924992][T23358] vm_mmap_pgoff+0x29e/0x470 [ 1356.925032][T23358] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1356.925070][T23358] ? __fget_files+0x20e/0x3c0 [ 1356.925114][T23358] ksys_mmap_pgoff+0x7d/0x5c0 [ 1356.925149][T23358] ? __pfx_ksys_write+0x10/0x10 [ 1356.925189][T23358] __x64_sys_mmap+0x125/0x190 [ 1356.925217][T23358] do_syscall_64+0xcd/0xf80 [ 1356.925241][T23358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1356.925266][T23358] RIP: 0033:0x7f29cc38f7c9 [ 1356.925285][T23358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1356.925320][T23358] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1356.925343][T23358] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1356.925360][T23358] RDX: 00000000000000df RSI: 000000000040000a RDI: 0000000000000000 [ 1356.925375][T23358] RBP: 00007f29cd202090 R08: 0000000000000002 R09: 0000000000008000 [ 1356.925391][T23358] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 1356.925406][T23358] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1356.925444][T23358] [ 1357.656659][T23365] mkiss: ax0: crc mode is auto. [ 1357.675356][T23367] FAULT_INJECTION: forcing a failure. [ 1357.675356][T23367] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1357.709208][T23367] CPU: 1 UID: 0 PID: 23367 Comm: syz.3.3028 Not tainted syzkaller #0 PREEMPT(full) [ 1357.709244][T23367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1357.709263][T23367] Call Trace: [ 1357.709273][T23367] [ 1357.709285][T23367] dump_stack_lvl+0x16c/0x1f0 [ 1357.709337][T23367] should_fail_ex+0x512/0x640 [ 1357.709386][T23367] _copy_to_user+0x32/0xd0 [ 1357.709424][T23367] simple_read_from_buffer+0xcb/0x170 [ 1357.709469][T23367] proc_fail_nth_read+0x197/0x240 [ 1357.709521][T23367] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1357.709574][T23367] ? rw_verify_area+0xcf/0x6c0 [ 1357.709613][T23367] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1357.709664][T23367] vfs_read+0x1e4/0xcf0 [ 1357.709709][T23367] ? __pfx___mutex_lock+0x10/0x10 [ 1357.709743][T23367] ? __pfx_vfs_read+0x10/0x10 [ 1357.709796][T23367] ? __fget_files+0x20e/0x3c0 [ 1357.709852][T23367] ksys_read+0x12a/0x250 [ 1357.709904][T23367] ? __pfx_ksys_read+0x10/0x10 [ 1357.709952][T23367] ? fdget+0x187/0x210 [ 1357.709997][T23367] do_syscall_64+0xcd/0xf80 [ 1357.710017][T23367] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1357.710038][T23367] RIP: 0033:0x7f382ab8e1dc [ 1357.710054][T23367] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1357.710074][T23367] RSP: 002b:00007f382ba2a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1357.710093][T23367] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8e1dc [ 1357.710107][T23367] RDX: 000000000000000f RSI: 00007f382ba2a0a0 RDI: 0000000000000005 [ 1357.710120][T23367] RBP: 00007f382ba2a090 R08: 0000000000000000 R09: 0000000000000000 [ 1357.710132][T23367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1357.710144][T23367] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1357.710171][T23367] [ 1358.107629][T23372] FAULT_INJECTION: forcing a failure. [ 1358.107629][T23372] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1358.164270][T23372] CPU: 0 UID: 0 PID: 23372 Comm: syz.1.3030 Not tainted syzkaller #0 PREEMPT(full) [ 1358.164310][T23372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1358.164328][T23372] Call Trace: [ 1358.164337][T23372] [ 1358.164350][T23372] dump_stack_lvl+0x16c/0x1f0 [ 1358.164402][T23372] should_fail_ex+0x512/0x640 [ 1358.164443][T23372] _copy_to_user+0x32/0xd0 [ 1358.164480][T23372] simple_read_from_buffer+0xcb/0x170 [ 1358.164525][T23372] proc_fail_nth_read+0x197/0x240 [ 1358.164586][T23372] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1358.164640][T23372] ? rw_verify_area+0xcf/0x6c0 [ 1358.164678][T23372] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1358.164728][T23372] vfs_read+0x1e4/0xcf0 [ 1358.164773][T23372] ? __pfx___mutex_lock+0x10/0x10 [ 1358.164825][T23372] ? __pfx_vfs_read+0x10/0x10 [ 1358.164885][T23372] ? __fget_files+0x20e/0x3c0 [ 1358.164944][T23372] ksys_read+0x12a/0x250 [ 1358.164991][T23372] ? __pfx_ksys_read+0x10/0x10 [ 1358.165041][T23372] ? fdget+0x187/0x210 [ 1358.165094][T23372] do_syscall_64+0xcd/0xf80 [ 1358.165128][T23372] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1358.165163][T23372] RIP: 0033:0x7fdc55f8e1dc [ 1358.165205][T23372] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1358.165239][T23372] RSP: 002b:00007fdc56d45030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1358.165271][T23372] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8e1dc [ 1358.165292][T23372] RDX: 000000000000000f RSI: 00007fdc56d450a0 RDI: 0000000000000005 [ 1358.165317][T23372] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1358.165338][T23372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1358.165358][T23372] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1358.165403][T23372] [ 1358.633363][T23385] sp0: Synchronizing with TNC [ 1359.091634][T23391] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3035'. [ 1359.613992][T23374] Process accounting resumed [ 1361.519085][T23421] sp0: Synchronizing with TNC [ 1361.763338][T23425] sp0: Synchronizing with TNC [ 1362.090639][T23429] sp0: Synchronizing with TNC [ 1362.103735][T23429] FAULT_INJECTION: forcing a failure. [ 1362.103735][T23429] name failslab, interval 1, probability 0, space 0, times 0 [ 1362.128657][T23431] FAULT_INJECTION: forcing a failure. [ 1362.128657][T23431] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1362.142712][T23429] CPU: 1 UID: 0 PID: 23429 Comm: syz.3.3043 Not tainted syzkaller #0 PREEMPT(full) [ 1362.142749][T23429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1362.142766][T23429] Call Trace: [ 1362.142776][T23429] [ 1362.142788][T23429] dump_stack_lvl+0x16c/0x1f0 [ 1362.142838][T23429] should_fail_ex+0x512/0x640 [ 1362.142871][T23429] ? fs_reclaim_acquire+0xae/0x150 [ 1362.142922][T23429] should_failslab+0xc2/0x120 [ 1362.142969][T23429] __kmalloc_noprof+0xeb/0x910 [ 1362.143003][T23429] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1362.143052][T23429] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1362.143097][T23429] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1362.143142][T23429] ? tomoyo_profile+0x47/0x60 [ 1362.143188][T23429] tomoyo_path_number_perm+0x245/0x580 [ 1362.143230][T23429] ? tomoyo_path_number_perm+0x237/0x580 [ 1362.143269][T23429] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1362.143308][T23429] ? find_held_lock+0x2b/0x80 [ 1362.143378][T23429] ? find_held_lock+0x2b/0x80 [ 1362.143417][T23429] ? hook_file_ioctl_common+0x144/0x410 [ 1362.143460][T23429] ? __fget_files+0x20e/0x3c0 [ 1362.143510][T23429] security_file_ioctl+0x9b/0x240 [ 1362.143548][T23429] __x64_sys_ioctl+0xb7/0x210 [ 1362.143589][T23429] do_syscall_64+0xcd/0xf80 [ 1362.143620][T23429] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1362.143652][T23429] RIP: 0033:0x7f382ab8f7c9 [ 1362.143676][T23429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1362.143707][T23429] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1362.143736][T23429] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1362.143756][T23429] RDX: 0000200000000300 RSI: 0000000000005412 RDI: 0000000000000007 [ 1362.143775][T23429] RBP: 00007f382ba2a090 R08: 0000000000000000 R09: 0000000000000000 [ 1362.143794][T23429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1362.143812][T23429] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1362.143852][T23429] [ 1362.144059][T23429] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1362.304485][T23431] CPU: 0 UID: 0 PID: 23431 Comm: syz.0.3044 Not tainted syzkaller #0 PREEMPT(full) [ 1362.304576][T23431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1362.304633][T23431] Call Trace: [ 1362.304675][T23431] [ 1362.304698][T23431] dump_stack_lvl+0x16c/0x1f0 [ 1362.304862][T23431] should_fail_ex+0x512/0x640 [ 1362.304983][T23431] should_fail_alloc_page+0xe7/0x130 [ 1362.305128][T23431] prepare_alloc_pages+0x401/0x670 [ 1362.305311][T23431] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 1362.305443][T23431] ? __lock_acquire+0x436/0x2890 [ 1362.305549][T23431] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1362.305697][T23431] ? is_bpf_text_address+0x8a/0x1a0 [ 1362.305805][T23431] ? bpf_ksym_find+0x124/0x1c0 [ 1362.305900][T23431] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1362.306059][T23431] ? is_bpf_text_address+0x94/0x1a0 [ 1362.306144][T23431] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1362.306282][T23431] ? policy_nodemask+0xea/0x4e0 [ 1362.306407][T23431] alloc_pages_mpol+0x1fb/0x550 [ 1362.306541][T23431] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1362.306623][T23431] alloc_pages_noprof+0x131/0x390 [ 1362.306776][T23431] __pmd_alloc+0x3b/0x9c0 [ 1362.306918][T23431] __handle_mm_fault+0xbeb/0x2bb0 [ 1362.307035][T23431] ? __pfx___handle_mm_fault+0x10/0x10 [ 1362.307170][T23431] ? find_vma+0xbf/0x140 [ 1362.307274][T23431] ? __pfx_find_vma+0x10/0x10 [ 1362.307399][T23431] handle_mm_fault+0x3fe/0xad0 [ 1362.307516][T23431] do_user_addr_fault+0x7a6/0x1370 [ 1362.307621][T23431] ? rcu_is_watching+0x12/0xc0 [ 1362.307742][T23431] exc_page_fault+0x64/0xc0 [ 1362.307863][T23431] asm_exc_page_fault+0x26/0x30 [ 1362.307933][T23431] RIP: 0010:__put_user_4+0xd/0x20 [ 1362.308044][T23431] Code: 66 89 01 31 c9 0f 01 ca e9 c0 c0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 c0 03 00 0f 1f 80 00 00 00 00 90 90 90 [ 1362.308153][T23431] RSP: 0018:ffffc9000c597e18 EFLAGS: 00050246 [ 1362.308224][T23431] RAX: 0000000000000007 RBX: 0000000000000000 RCX: 0000000000000000 [ 1362.308272][T23431] RDX: ffff88802dd90000 RSI: ffffffff89395864 RDI: ffffffff8bf2b600 [ 1362.308328][T23431] RBP: 1ffff920018b2fc7 R08: 00000000ffffffff R09: 00000000ffffffff [ 1362.308383][T23431] R10: 0000000000000001 R11: ffff88802dd90b30 R12: 0000000000000007 [ 1362.308433][T23431] R13: 0000000000000008 R14: 0000000000000005 R15: dffffc0000000000 [ 1362.308512][T23431] ? __sys_socketpair+0x114/0x5a0 [ 1362.308612][T23431] __sys_socketpair+0x120/0x5a0 [ 1362.308703][T23431] ? __pfx___sys_socketpair+0x10/0x10 [ 1362.308799][T23431] ? __pfx_ksys_write+0x10/0x10 [ 1362.308929][T23431] __x64_sys_socketpair+0x96/0x100 [ 1362.309022][T23431] ? lockdep_hardirqs_on+0x7c/0x110 [ 1362.309139][T23431] do_syscall_64+0xcd/0xf80 [ 1362.309209][T23431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1362.309273][T23431] RIP: 0033:0x7f29cc38f7c9 [ 1362.309331][T23431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1362.309407][T23431] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 1362.309480][T23431] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1362.309546][T23431] RDX: 0000000000000009 RSI: 0000000000000005 RDI: 000000000000001e [ 1362.309621][T23431] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1362.309666][T23431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1362.309709][T23431] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1362.309798][T23431] [ 1363.184679][T23427] mmap: syz.1.3042 (23427) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 1363.702525][T23446] FAULT_INJECTION: forcing a failure. [ 1363.702525][T23446] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1363.738866][T23446] CPU: 1 UID: 0 PID: 23446 Comm: syz.1.3048 Not tainted syzkaller #0 PREEMPT(full) [ 1363.738905][T23446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1363.738917][T23446] Call Trace: [ 1363.738924][T23446] [ 1363.738933][T23446] dump_stack_lvl+0x16c/0x1f0 [ 1363.738970][T23446] should_fail_ex+0x512/0x640 [ 1363.738997][T23446] _copy_from_user+0x2e/0xd0 [ 1363.739020][T23446] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 1363.739054][T23446] snd_rawmidi_write+0x26e/0xc10 [ 1363.739085][T23446] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1363.739110][T23446] ? common_file_perm+0x1b1/0x500 [ 1363.739138][T23446] ? bpf_lsm_file_permission+0x9/0x10 [ 1363.739163][T23446] ? security_file_permission+0x71/0x210 [ 1363.739192][T23446] ? rw_verify_area+0xcf/0x6c0 [ 1363.739220][T23446] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1363.739244][T23446] vfs_write+0x2a0/0x11d0 [ 1363.739279][T23446] ? __pfx_vfs_write+0x10/0x10 [ 1363.739307][T23446] ? find_held_lock+0x2b/0x80 [ 1363.739335][T23446] ? __fget_files+0x204/0x3c0 [ 1363.739368][T23446] ? __fget_files+0x20e/0x3c0 [ 1363.739404][T23446] ksys_write+0x1f8/0x250 [ 1363.739434][T23446] ? __pfx_ksys_write+0x10/0x10 [ 1363.739471][T23446] do_syscall_64+0xcd/0xf80 [ 1363.739491][T23446] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1363.739512][T23446] RIP: 0033:0x7fdc55f8f7c9 [ 1363.739527][T23446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.739547][T23446] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1363.739566][T23446] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1363.739580][T23446] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000006 [ 1363.739593][T23446] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1363.739605][T23446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1363.739618][T23446] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1363.739643][T23446] [ 1365.953251][T23464] FAULT_INJECTION: forcing a failure. [ 1365.953251][T23464] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1365.976176][T23462] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3052'. [ 1366.019940][T23464] CPU: 0 UID: 0 PID: 23464 Comm: syz.0.3054 Not tainted syzkaller #0 PREEMPT(full) [ 1366.019977][T23464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1366.019993][T23464] Call Trace: [ 1366.020003][T23464] [ 1366.020014][T23464] dump_stack_lvl+0x16c/0x1f0 [ 1366.020062][T23464] should_fail_ex+0x512/0x640 [ 1366.020099][T23464] _copy_from_user+0x2e/0xd0 [ 1366.020131][T23464] do_sock_getsockopt+0x3a1/0x410 [ 1366.020179][T23464] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1366.020221][T23464] ? __fget_files+0x204/0x3c0 [ 1366.020276][T23464] __sys_getsockopt+0x123/0x1b0 [ 1366.020321][T23464] __x64_sys_getsockopt+0xbd/0x160 [ 1366.020358][T23464] ? do_syscall_64+0x91/0xf80 [ 1366.020382][T23464] ? lockdep_hardirqs_on+0x7c/0x110 [ 1366.020426][T23464] do_syscall_64+0xcd/0xf80 [ 1366.020453][T23464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1366.020482][T23464] RIP: 0033:0x7f29cc38f7c9 [ 1366.020504][T23464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1366.020534][T23464] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1366.020560][T23464] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1366.020579][T23464] RDX: 0000000000000050 RSI: 0000040000000029 RDI: 0000000000000007 [ 1366.020596][T23464] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1366.020614][T23464] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001 [ 1366.020631][T23464] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1366.020670][T23464] [ 1366.877237][T23489] FAULT_INJECTION: forcing a failure. [ 1366.877237][T23489] name failslab, interval 1, probability 0, space 0, times 0 [ 1366.951266][T23489] CPU: 1 UID: 0 PID: 23489 Comm: syz.1.3056 Not tainted syzkaller #0 PREEMPT(full) [ 1366.951305][T23489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1366.951322][T23489] Call Trace: [ 1366.951333][T23489] [ 1366.951344][T23489] dump_stack_lvl+0x16c/0x1f0 [ 1366.951395][T23489] should_fail_ex+0x512/0x640 [ 1366.951427][T23489] ? fs_reclaim_acquire+0xae/0x150 [ 1366.951475][T23489] should_failslab+0xc2/0x120 [ 1366.951519][T23489] __kmalloc_noprof+0xeb/0x910 [ 1366.951560][T23489] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1366.951609][T23489] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1366.951650][T23489] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1366.951695][T23489] ? tomoyo_profile+0x47/0x60 [ 1366.951744][T23489] tomoyo_path_number_perm+0x245/0x580 [ 1366.951777][T23489] ? tomoyo_path_number_perm+0x237/0x580 [ 1366.951813][T23489] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1366.951850][T23489] ? find_held_lock+0x2b/0x80 [ 1366.951918][T23489] ? find_held_lock+0x2b/0x80 [ 1366.951955][T23489] ? hook_file_ioctl_common+0x144/0x410 [ 1366.951997][T23489] ? __fget_files+0x20e/0x3c0 [ 1366.952043][T23489] security_file_ioctl+0x9b/0x240 [ 1366.952081][T23489] __x64_sys_ioctl+0xb7/0x210 [ 1366.952120][T23489] do_syscall_64+0xcd/0xf80 [ 1366.952150][T23489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1366.952179][T23489] RIP: 0033:0x7fdc55f8f7c9 [ 1366.952202][T23489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1366.952230][T23489] RSP: 002b:00007fdc541f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1366.952257][T23489] RAX: ffffffffffffffda RBX: 00007fdc561e6090 RCX: 00007fdc55f8f7c9 [ 1366.952280][T23489] RDX: 0000000000000001 RSI: 0000000000004b67 RDI: 0000000000000002 [ 1366.952297][T23489] RBP: 00007fdc541f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1366.952315][T23489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1366.952332][T23489] R13: 00007fdc561e6128 R14: 00007fdc561e6090 R15: 00007fffdeec5b48 [ 1366.952371][T23489] [ 1366.953576][T23489] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1370.046208][T23533] FAULT_INJECTION: forcing a failure. [ 1370.046208][T23533] name failslab, interval 1, probability 0, space 0, times 0 [ 1370.084282][T23533] CPU: 1 UID: 0 PID: 23533 Comm: syz.1.3068 Not tainted syzkaller #0 PREEMPT(full) [ 1370.084324][T23533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1370.084345][T23533] Call Trace: [ 1370.084357][T23533] [ 1370.084369][T23533] dump_stack_lvl+0x16c/0x1f0 [ 1370.084425][T23533] should_fail_ex+0x512/0x640 [ 1370.084462][T23533] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1370.084505][T23533] should_failslab+0xc2/0x120 [ 1370.084567][T23533] __kmalloc_cache_noprof+0x80/0x800 [ 1370.084605][T23533] ? __thp_vma_allowable_orders+0x1c8/0xcd0 [ 1370.084640][T23533] ? madvise_collapse+0x1a9/0xa40 [ 1370.084683][T23533] ? madvise_collapse+0x1a9/0xa40 [ 1370.084717][T23533] madvise_collapse+0x1a9/0xa40 [ 1370.084758][T23533] ? is_bpf_text_address+0x8a/0x1a0 [ 1370.084809][T23533] ? __pfx_madvise_collapse+0x10/0x10 [ 1370.084859][T23533] madvise_vma_behavior+0xe8a/0x29e0 [ 1370.084896][T23533] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 1370.084950][T23533] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 1370.084985][T23533] ? mas_prev+0x9b/0xf0 [ 1370.085015][T23533] ? __pfx_mas_prev+0x10/0x10 [ 1370.085056][T23533] ? find_vma_prev+0xd3/0x150 [ 1370.085107][T23533] ? __pfx_find_vma_prev+0x10/0x10 [ 1370.085180][T23533] madvise_walk_vmas+0x31f/0xac0 [ 1370.085220][T23533] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 1370.085266][T23533] madvise_do_behavior+0x1e2/0x530 [ 1370.085303][T23533] ? __pfx_madvise_do_behavior+0x10/0x10 [ 1370.085340][T23533] ? down_read+0x13d/0x460 [ 1370.085394][T23533] do_madvise+0x176/0x240 [ 1370.085425][T23533] ? __pfx_do_madvise+0x10/0x10 [ 1370.085469][T23533] ? __mutex_unlock_slowpath+0x161/0x790 [ 1370.085520][T23533] ? __fget_files+0x20e/0x3c0 [ 1370.085582][T23533] ? __pfx_ksys_write+0x10/0x10 [ 1370.085638][T23533] __x64_sys_madvise+0xa9/0x110 [ 1370.085669][T23533] ? lockdep_hardirqs_on+0x7c/0x110 [ 1370.085723][T23533] do_syscall_64+0xcd/0xf80 [ 1370.085757][T23533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1370.085791][T23533] RIP: 0033:0x7fdc55f8f7c9 [ 1370.085817][T23533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1370.085851][T23533] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1370.085883][T23533] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1370.085905][T23533] RDX: 0000000000000019 RSI: ffffffffffff0005 RDI: 0000000000000000 [ 1370.085926][T23533] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1370.085957][T23533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1370.085975][T23533] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1370.086016][T23533] [ 1371.945648][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1371.952005][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1374.655434][T23607] FAULT_INJECTION: forcing a failure. [ 1374.655434][T23607] name failslab, interval 1, probability 0, space 0, times 0 [ 1374.689042][T23607] CPU: 0 UID: 0 PID: 23607 Comm: syz.0.3080 Not tainted syzkaller #0 PREEMPT(full) [ 1374.689089][T23607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1374.689123][T23607] Call Trace: [ 1374.689134][T23607] [ 1374.689146][T23607] dump_stack_lvl+0x16c/0x1f0 [ 1374.689210][T23607] should_fail_ex+0x512/0x640 [ 1374.689242][T23607] ? __kmalloc_noprof+0xca/0x910 [ 1374.689277][T23607] should_failslab+0xc2/0x120 [ 1374.689340][T23607] __kmalloc_noprof+0xeb/0x910 [ 1374.689374][T23607] ? kernfs_fop_write_iter+0x237/0x570 [ 1374.689426][T23607] ? kernfs_fop_write_iter+0x237/0x570 [ 1374.689471][T23607] kernfs_fop_write_iter+0x237/0x570 [ 1374.689521][T23607] vfs_write+0x7d3/0x11d0 [ 1374.689566][T23607] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1374.689618][T23607] ? __pfx_vfs_write+0x10/0x10 [ 1374.689687][T23607] ksys_write+0x12a/0x250 [ 1374.689731][T23607] ? __pfx_ksys_write+0x10/0x10 [ 1374.689787][T23607] do_syscall_64+0xcd/0xf80 [ 1374.689818][T23607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1374.689859][T23607] RIP: 0033:0x7f29cc38f7c9 [ 1374.689881][T23607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1374.689909][T23607] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1374.689937][T23607] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1374.689956][T23607] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 1374.689974][T23607] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1374.689991][T23607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1374.690008][T23607] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1374.690046][T23607] [ 1375.325193][T23620] FAULT_INJECTION: forcing a failure. [ 1375.325193][T23620] name failslab, interval 1, probability 0, space 0, times 0 [ 1375.395415][T23620] CPU: 0 UID: 0 PID: 23620 Comm: syz.1.3084 Not tainted syzkaller #0 PREEMPT(full) [ 1375.395457][T23620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1375.395477][T23620] Call Trace: [ 1375.395488][T23620] [ 1375.395501][T23620] dump_stack_lvl+0x16c/0x1f0 [ 1375.395561][T23620] should_fail_ex+0x512/0x640 [ 1375.395598][T23620] ? kmem_cache_alloc_noprof+0x62/0x770 [ 1375.395641][T23620] should_failslab+0xc2/0x120 [ 1375.395690][T23620] kmem_cache_alloc_noprof+0x83/0x770 [ 1375.395730][T23620] ? getname_flags.part.0+0x4c/0x550 [ 1375.395781][T23620] ? getname_flags.part.0+0x4c/0x550 [ 1375.395816][T23620] getname_flags.part.0+0x4c/0x550 [ 1375.395857][T23620] getname_flags+0x93/0xf0 [ 1375.395900][T23620] user_path_at+0x24/0x60 [ 1375.395944][T23620] __x64_sys_name_to_handle_at+0x1e7/0x310 [ 1375.396002][T23620] ? __pfx___x64_sys_name_to_handle_at+0x10/0x10 [ 1375.396068][T23620] do_syscall_64+0xcd/0xf80 [ 1375.396111][T23620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1375.396141][T23620] RIP: 0033:0x7fdc55f8f7c9 [ 1375.396181][T23620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1375.396207][T23620] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 000000000000012f [ 1375.396233][T23620] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1375.396251][T23620] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1375.396269][T23620] RBP: 00007fdc56d45090 R08: 0000000000000002 R09: 0000000000000000 [ 1375.396286][T23620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1375.396303][T23620] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1375.396339][T23620] [ 1376.104990][T19507] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1376.115558][T19507] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1376.125616][T19507] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1376.133993][T19507] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1376.144299][T19507] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1376.573517][T23636] FAULT_INJECTION: forcing a failure. [ 1376.573517][T23636] name failslab, interval 1, probability 0, space 0, times 0 [ 1376.624916][T23636] CPU: 1 UID: 0 PID: 23636 Comm: syz.1.3088 Not tainted syzkaller #0 PREEMPT(full) [ 1376.624960][T23636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1376.624980][T23636] Call Trace: [ 1376.624991][T23636] [ 1376.625004][T23636] dump_stack_lvl+0x16c/0x1f0 [ 1376.625060][T23636] should_fail_ex+0x512/0x640 [ 1376.625097][T23636] ? kmem_cache_alloc_noprof+0x62/0x770 [ 1376.625143][T23636] should_failslab+0xc2/0x120 [ 1376.625195][T23636] kmem_cache_alloc_noprof+0x83/0x770 [ 1376.625238][T23636] ? __pfx_acct_collect+0x10/0x10 [ 1376.625271][T23636] ? taskstats_exit+0x654/0xbe0 [ 1376.625312][T23636] ? taskstats_exit+0x654/0xbe0 [ 1376.625345][T23636] taskstats_exit+0x654/0xbe0 [ 1376.625383][T23636] ? __pfx_taskstats_exit+0x10/0x10 [ 1376.625421][T23636] ? exit_signals+0x388/0xb00 [ 1376.625458][T23636] do_exit+0x5e4/0x2bd0 [ 1376.625480][T23636] ? __pfx___blk_flush_plug+0x10/0x10 [ 1376.625508][T23636] ? mlock_drain_local+0x24c/0x4e0 [ 1376.625542][T23636] ? __pfx_do_exit+0x10/0x10 [ 1376.625565][T23636] ? do_raw_spin_lock+0x12c/0x2b0 [ 1376.625593][T23636] ? find_held_lock+0x2b/0x80 [ 1376.625629][T23636] do_group_exit+0xd3/0x2a0 [ 1376.625655][T23636] get_signal+0x2671/0x26d0 [ 1376.625694][T23636] ? madvise_unlock+0x16d/0x220 [ 1376.625741][T23636] ? __pfx_get_signal+0x10/0x10 [ 1376.625774][T23636] ? do_madvise+0x1af/0x240 [ 1376.625796][T23636] ? __pfx_do_madvise+0x10/0x10 [ 1376.625818][T23636] ? __mutex_unlock_slowpath+0x161/0x790 [ 1376.625846][T23636] arch_do_signal_or_restart+0x8f/0x7a0 [ 1376.625883][T23636] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1376.625935][T23636] exit_to_user_mode_loop+0x8c/0x540 [ 1376.625978][T23636] do_syscall_64+0x4ee/0xf80 [ 1376.625999][T23636] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1376.626022][T23636] RIP: 0033:0x7fdc55f8f7c9 [ 1376.626039][T23636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1376.626061][T23636] RSP: 002b:00007fdc541d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1376.626081][T23636] RAX: fffffffffffffffc RBX: 00007fdc561e6180 RCX: 00007fdc55f8f7c9 [ 1376.626096][T23636] RDX: 0000000000000017 RSI: fffffffffffefffd RDI: 0000000000000000 [ 1376.626110][T23636] RBP: 00007fdc541d5090 R08: 0000000000000000 R09: 0000000000000000 [ 1376.626123][T23636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1376.626148][T23636] R13: 00007fdc561e6218 R14: 00007fdc561e6180 R15: 00007fffdeec5b48 [ 1376.626174][T23636] [ 1377.606074][T23639] chnl_net:caif_netlink_parms(): no params data found [ 1378.137462][T23639] bridge0: port 1(bridge_slave_0) entered blocking state [ 1378.164275][ T5842] Bluetooth: hci1: command tx timeout [ 1378.168925][T23639] bridge0: port 1(bridge_slave_0) entered disabled state [ 1378.199164][T23639] bridge_slave_0: entered allmulticast mode [ 1378.208329][T23639] bridge_slave_0: entered promiscuous mode [ 1378.243214][T23639] bridge0: port 2(bridge_slave_1) entered blocking state [ 1378.250993][T23639] bridge0: port 2(bridge_slave_1) entered disabled state [ 1378.258567][T23639] bridge_slave_1: entered allmulticast mode [ 1378.273571][T23639] bridge_slave_1: entered promiscuous mode [ 1378.332511][T23669] FAULT_INJECTION: forcing a failure. [ 1378.332511][T23669] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1378.351297][T23669] CPU: 0 UID: 0 PID: 23669 Comm: syz.3.3095 Not tainted syzkaller #0 PREEMPT(full) [ 1378.351332][T23669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1378.351349][T23669] Call Trace: [ 1378.351359][T23669] [ 1378.351370][T23669] dump_stack_lvl+0x16c/0x1f0 [ 1378.351417][T23669] should_fail_ex+0x512/0x640 [ 1378.351454][T23669] _copy_from_user+0x2e/0xd0 [ 1378.351486][T23669] do_sock_getsockopt+0x3a1/0x410 [ 1378.351535][T23669] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1378.351579][T23669] ? __fget_files+0x204/0x3c0 [ 1378.351635][T23669] __sys_getsockopt+0x123/0x1b0 [ 1378.351680][T23669] __x64_sys_getsockopt+0xbd/0x160 [ 1378.351716][T23669] ? do_syscall_64+0x91/0xf80 [ 1378.351740][T23669] ? lockdep_hardirqs_on+0x7c/0x110 [ 1378.351789][T23669] do_syscall_64+0xcd/0xf80 [ 1378.351816][T23669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1378.351845][T23669] RIP: 0033:0x7f382ab8f7c9 [ 1378.351867][T23669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1378.351895][T23669] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1378.351922][T23669] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1378.351940][T23669] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000003 [ 1378.351957][T23669] RBP: 00007f382ba2a090 R08: 0000200000000040 R09: 0000000000000000 [ 1378.351976][T23669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1378.351994][T23669] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1378.352032][T23669] [ 1378.723171][T23639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1378.880991][T23639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1378.965937][T23672] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3096'. [ 1379.168310][T23639] team0: Port device team_slave_0 added [ 1379.201915][T23639] team0: Port device team_slave_1 added [ 1379.328588][T23639] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1379.364263][T23639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1379.405273][T23639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1379.455791][T23639] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1379.467126][T23639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1379.500339][T23639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1379.686084][T23639] hsr_slave_0: entered promiscuous mode [ 1379.726442][T23639] hsr_slave_1: entered promiscuous mode [ 1379.744528][T23639] debugfs: 'hsr0' already exists in 'hsr' [ 1379.750405][T23639] Cannot create hsr debugfs directory [ 1380.244329][ T5842] Bluetooth: hci1: command tx timeout [ 1380.335933][T23639] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1380.403656][T23639] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1380.452329][T23639] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1380.482763][T23639] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1380.820007][T23639] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1380.905154][T23639] 8021q: adding VLAN 0 to HW filter on device team0 [ 1380.924826][ T5842] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 1380.987944][T23478] bridge0: port 1(bridge_slave_0) entered blocking state [ 1380.995116][T23478] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1381.053947][T23469] bridge0: port 2(bridge_slave_1) entered blocking state [ 1381.061159][T23469] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1381.284941][T23718] FAULT_INJECTION: forcing a failure. [ 1381.284941][T23718] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1381.352995][T23718] CPU: 0 UID: 0 PID: 23718 Comm: syz.0.3108 Tainted: G L syzkaller #0 PREEMPT(full) [ 1381.353039][T23718] Tainted: [L]=SOFTLOCKUP [ 1381.353050][T23718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1381.353067][T23718] Call Trace: [ 1381.353076][T23718] [ 1381.353088][T23718] dump_stack_lvl+0x16c/0x1f0 [ 1381.353136][T23718] should_fail_ex+0x512/0x640 [ 1381.353176][T23718] _copy_to_iter+0x29f/0x1710 [ 1381.353210][T23718] ? __mutex_unlock_slowpath+0x161/0x790 [ 1381.353240][T23718] ? cpu_show_reg_file_data_sampling+0x44/0x100 [ 1381.353274][T23718] ? __pfx__copy_to_iter+0x10/0x10 [ 1381.353306][T23718] ? kernfs_seq_stop+0xcd/0x120 [ 1381.353355][T23718] ? kernfs_put_active+0x86/0xe0 [ 1381.353398][T23718] seq_read_iter+0xd02/0x12d0 [ 1381.353453][T23718] kernfs_fop_read_iter+0x46c/0x610 [ 1381.353500][T23718] ? rw_verify_area+0xcf/0x6c0 [ 1381.353547][T23718] vfs_read+0x8bf/0xcf0 [ 1381.353594][T23718] ? __pfx_vfs_read+0x10/0x10 [ 1381.353657][T23718] ksys_read+0x12a/0x250 [ 1381.353696][T23718] ? __pfx_ksys_read+0x10/0x10 [ 1381.353748][T23718] do_syscall_64+0xcd/0xf80 [ 1381.353776][T23718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1381.353805][T23718] RIP: 0033:0x7f29cc38f7c9 [ 1381.353828][T23718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1381.353857][T23718] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1381.353883][T23718] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1381.353902][T23718] RDX: 0000000000000096 RSI: 0000200000000080 RDI: 0000000000000003 [ 1381.353919][T23718] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1381.353936][T23718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1381.353952][T23718] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1381.353991][T23718] [ 1381.906007][ T5842] Bluetooth: hci0: unexpected event 0x23 length: 127 > 13 [ 1382.059940][T23725] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3110'. [ 1382.324515][ T5842] Bluetooth: hci1: command tx timeout [ 1382.349212][T23639] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1382.877337][T23743] random: crng reseeded on system resumption [ 1383.327253][T23755] FAULT_INJECTION: forcing a failure. [ 1383.327253][T23755] name failslab, interval 1, probability 0, space 0, times 0 [ 1383.402944][T23755] CPU: 0 UID: 0 PID: 23755 Comm: syz.3.3116 Tainted: G L syzkaller #0 PREEMPT(full) [ 1383.403009][T23755] Tainted: [L]=SOFTLOCKUP [ 1383.403020][T23755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1383.403040][T23755] Call Trace: [ 1383.403050][T23755] [ 1383.403064][T23755] dump_stack_lvl+0x16c/0x1f0 [ 1383.403120][T23755] should_fail_ex+0x512/0x640 [ 1383.403157][T23755] ? fs_reclaim_acquire+0xae/0x150 [ 1383.403212][T23755] should_failslab+0xc2/0x120 [ 1383.403261][T23755] __kmalloc_noprof+0xeb/0x910 [ 1383.403304][T23755] ? tomoyo_encode2+0x100/0x3e0 [ 1383.403357][T23755] ? tomoyo_encode2+0x100/0x3e0 [ 1383.403400][T23755] tomoyo_encode2+0x100/0x3e0 [ 1383.403450][T23755] tomoyo_encode+0x29/0x50 [ 1383.403493][T23755] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1383.403552][T23755] tomoyo_path_number_perm+0x245/0x580 [ 1383.403591][T23755] ? tomoyo_path_number_perm+0x237/0x580 [ 1383.403632][T23755] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1383.403675][T23755] ? find_held_lock+0x2b/0x80 [ 1383.403751][T23755] ? find_held_lock+0x2b/0x80 [ 1383.403792][T23755] ? hook_file_ioctl_common+0x144/0x410 [ 1383.403841][T23755] ? __fget_files+0x20e/0x3c0 [ 1383.403893][T23755] security_file_ioctl+0x9b/0x240 [ 1383.403935][T23755] __x64_sys_ioctl+0xb7/0x210 [ 1383.403978][T23755] do_syscall_64+0xcd/0xf80 [ 1383.404012][T23755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1383.404044][T23755] RIP: 0033:0x7f382ab8f7c9 [ 1383.404069][T23755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1383.404102][T23755] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1383.404149][T23755] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1383.404169][T23755] RDX: 0000000000000ea3 RSI: 0000000040025504 RDI: 0000000000000003 [ 1383.404188][T23755] RBP: 00007f382ba2a090 R08: 0000000000000000 R09: 0000000000000000 [ 1383.404216][T23755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1383.404234][T23755] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1383.404272][T23755] [ 1383.639010][T23755] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1383.798916][T23639] veth0_vlan: entered promiscuous mode [ 1383.850495][T23639] veth1_vlan: entered promiscuous mode [ 1384.136502][T23639] veth0_macvtap: entered promiscuous mode [ 1384.227100][T23639] veth1_macvtap: entered promiscuous mode [ 1384.404244][ T5842] Bluetooth: hci1: command tx timeout [ 1384.445989][T23639] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1384.861566][T23639] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1384.909869][ T6414] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1384.969174][ T6414] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1385.055247][ T6414] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1385.130304][ T6414] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1385.202352][T23774] FAULT_INJECTION: forcing a failure. [ 1385.202352][T23774] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1385.235905][T23774] CPU: 0 UID: 0 PID: 23774 Comm: syz.3.3121 Tainted: G L syzkaller #0 PREEMPT(full) [ 1385.235952][T23774] Tainted: [L]=SOFTLOCKUP [ 1385.235975][T23774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1385.235991][T23774] Call Trace: [ 1385.236011][T23774] [ 1385.236022][T23774] dump_stack_lvl+0x16c/0x1f0 [ 1385.236078][T23774] should_fail_ex+0x512/0x640 [ 1385.236111][T23774] strncpy_from_user+0x3b/0x2e0 [ 1385.236146][T23774] getname_flags.part.0+0x8f/0x550 [ 1385.236183][T23774] getname_flags+0x93/0xf0 [ 1385.236217][T23774] __x64_sys_rename+0x58/0xa0 [ 1385.236242][T23774] do_syscall_64+0xcd/0xf80 [ 1385.236267][T23774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1385.236292][T23774] RIP: 0033:0x7f382ab8f7c9 [ 1385.236311][T23774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1385.236336][T23774] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 1385.236359][T23774] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1385.236375][T23774] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000000040 [ 1385.236391][T23774] RBP: 00007f382ba2a090 R08: 0000000000000000 R09: 0000000000000000 [ 1385.236407][T23774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1385.236421][T23774] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1385.236452][T23774] [ 1385.715193][T23778] netlink: 'syz.0.3123': attribute type 1 has an invalid length. [ 1385.734911][T23780] netlink: 'syz.0.3123': attribute type 1 has an invalid length. [ 1385.752972][T23469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1385.781607][T23469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1385.966111][ T2987] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1385.993138][ T2987] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1386.941281][T23793] binder: 23792:23793 ioctl 4018620d ffffffffffffffff returned -22 [ 1387.524623][T23800] zswap: compressor not available [ 1387.773182][T23808] random: crng reseeded on system resumption [ 1388.078855][T23783] Process accounting paused [ 1388.446623][T23816] FAULT_INJECTION: forcing a failure. [ 1388.446623][T23816] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1388.503826][T23816] CPU: 1 UID: 0 PID: 23816 Comm: syz.1.3128 Tainted: G L syzkaller #0 PREEMPT(full) [ 1388.503893][T23816] Tainted: [L]=SOFTLOCKUP [ 1388.503905][T23816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1388.503925][T23816] Call Trace: [ 1388.503935][T23816] [ 1388.503948][T23816] dump_stack_lvl+0x16c/0x1f0 [ 1388.504005][T23816] should_fail_ex+0x512/0x640 [ 1388.504048][T23816] _copy_from_user+0x2e/0xd0 [ 1388.504085][T23816] do_tcp_getsockopt+0x962/0x2b20 [ 1388.504137][T23816] ? __pfx_do_tcp_getsockopt+0x10/0x10 [ 1388.504186][T23816] ? __kernel_text_address+0xd/0x40 [ 1388.504244][T23816] ? __lock_acquire+0x436/0x2890 [ 1388.504273][T23816] ? _parse_integer_limit+0x17f/0x1d0 [ 1388.504322][T23816] ? aa_label_sk_perm+0x194/0x5f0 [ 1388.504360][T23816] ? _kstrtoull+0x145/0x200 [ 1388.504403][T23816] ? __pfx__kstrtoull+0x10/0x10 [ 1388.504450][T23816] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 1388.504491][T23816] ? find_held_lock+0x2b/0x80 [ 1388.504536][T23816] ? __lock_acquire+0x436/0x2890 [ 1388.504588][T23816] ? __lock_acquire+0x436/0x2890 [ 1388.504626][T23816] ? get_pid_task+0xfc/0x250 [ 1388.504674][T23816] ? find_held_lock+0x2b/0x80 [ 1388.504714][T23816] ? __might_fault+0xe3/0x190 [ 1388.504750][T23816] ? __might_fault+0xe3/0x190 [ 1388.504786][T23816] ? __might_fault+0x13b/0x190 [ 1388.504847][T23816] tcp_getsockopt+0xdf/0x100 [ 1388.504898][T23816] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 1388.504954][T23816] do_sock_getsockopt+0x324/0x410 [ 1388.505011][T23816] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1388.505062][T23816] ? __fget_files+0x204/0x3c0 [ 1388.505130][T23816] __sys_getsockopt+0x123/0x1b0 [ 1388.505184][T23816] __x64_sys_getsockopt+0xbd/0x160 [ 1388.505226][T23816] ? do_syscall_64+0x91/0xf80 [ 1388.505255][T23816] ? lockdep_hardirqs_on+0x7c/0x110 [ 1388.505308][T23816] do_syscall_64+0xcd/0xf80 [ 1388.505341][T23816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1388.505375][T23816] RIP: 0033:0x7fdc55f8f7c9 [ 1388.505401][T23816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1388.505435][T23816] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1388.505467][T23816] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1388.505489][T23816] RDX: 000000000000001d RSI: 0000000000000006 RDI: 0000000000000003 [ 1388.505510][T23816] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1388.505530][T23816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1388.505549][T23816] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1388.505593][T23816] [ 1390.976811][T23849] FAULT_INJECTION: forcing a failure. [ 1390.976811][T23849] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1391.049533][T23834] Process accounting paused [ 1391.115030][T23849] CPU: 1 UID: 0 PID: 23849 Comm: syz.1.3136 Tainted: G L syzkaller #0 PREEMPT(full) [ 1391.115088][T23849] Tainted: [L]=SOFTLOCKUP [ 1391.115103][T23849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1391.115125][T23849] Call Trace: [ 1391.115136][T23849] [ 1391.115150][T23849] dump_stack_lvl+0x16c/0x1f0 [ 1391.115213][T23849] should_fail_ex+0x512/0x640 [ 1391.115299][T23849] _copy_from_user+0x2e/0xd0 [ 1391.115345][T23849] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 1391.115417][T23849] snd_rawmidi_write+0x26e/0xc10 [ 1391.115474][T23849] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1391.115517][T23849] ? common_file_perm+0x1b1/0x500 [ 1391.115562][T23849] ? __pfx_default_wake_function+0x10/0x10 [ 1391.115615][T23849] ? bpf_lsm_file_permission+0x9/0x10 [ 1391.115660][T23849] ? security_file_permission+0x71/0x210 [ 1391.115710][T23849] ? rw_verify_area+0xcf/0x6c0 [ 1391.115759][T23849] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1391.115801][T23849] vfs_write+0x2a0/0x11d0 [ 1391.115863][T23849] ? __pfx_vfs_write+0x10/0x10 [ 1391.115914][T23849] ? find_held_lock+0x2b/0x80 [ 1391.115974][T23849] ? __fget_files+0x204/0x3c0 [ 1391.116045][T23849] ? __fget_files+0x20e/0x3c0 [ 1391.116102][T23849] ksys_write+0x1f8/0x250 [ 1391.116147][T23849] ? __pfx_ksys_write+0x10/0x10 [ 1391.116201][T23849] do_syscall_64+0xcd/0xf80 [ 1391.116234][T23849] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1391.116266][T23849] RIP: 0033:0x7fdc55f8f7c9 [ 1391.116291][T23849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1391.116322][T23849] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1391.116352][T23849] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1391.116404][T23849] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000006 [ 1391.116425][T23849] RBP: 00007fdc56013f91 R08: 0000000000000000 R09: 0000000000000000 [ 1391.116446][T23849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1391.116467][T23849] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1391.116507][T23849] [ 1391.906857][T23858] FAULT_INJECTION: forcing a failure. [ 1391.906857][T23858] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1391.964316][T23858] CPU: 1 UID: 0 PID: 23858 Comm: syz.0.3139 Tainted: G L syzkaller #0 PREEMPT(full) [ 1391.964362][T23858] Tainted: [L]=SOFTLOCKUP [ 1391.964372][T23858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1391.964389][T23858] Call Trace: [ 1391.964400][T23858] [ 1391.964412][T23858] dump_stack_lvl+0x16c/0x1f0 [ 1391.964483][T23858] should_fail_ex+0x512/0x640 [ 1391.964526][T23858] _copy_from_user+0x2e/0xd0 [ 1391.964571][T23858] do_ipv6_getsockopt+0x369/0x3320 [ 1391.964615][T23858] ? __pfx_do_ipv6_getsockopt+0x10/0x10 [ 1391.964653][T23858] ? aa_label_sk_perm+0x194/0x5f0 [ 1391.964689][T23858] ? _kstrtoull+0x145/0x200 [ 1391.964731][T23858] ? __pfx__kstrtoull+0x10/0x10 [ 1391.964778][T23858] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 1391.964837][T23858] ? find_held_lock+0x2b/0x80 [ 1391.964881][T23858] ? __lock_acquire+0x436/0x2890 [ 1391.964938][T23858] ? ipv6_getsockopt+0x126/0x280 [ 1391.964972][T23858] ipv6_getsockopt+0x126/0x280 [ 1391.965012][T23858] ? __pfx_ipv6_getsockopt+0x10/0x10 [ 1391.965060][T23858] rawv6_getsockopt+0xb2/0x4c0 [ 1391.965093][T23858] ? __pfx_rawv6_getsockopt+0x10/0x10 [ 1391.965136][T23858] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 1391.965191][T23858] do_sock_getsockopt+0x324/0x410 [ 1391.965251][T23858] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1391.965301][T23858] ? __fget_files+0x204/0x3c0 [ 1391.965368][T23858] __sys_getsockopt+0x123/0x1b0 [ 1391.965422][T23858] __x64_sys_getsockopt+0xbd/0x160 [ 1391.965465][T23858] ? do_syscall_64+0x91/0xf80 [ 1391.965495][T23858] ? lockdep_hardirqs_on+0x7c/0x110 [ 1391.965541][T23858] do_syscall_64+0xcd/0xf80 [ 1391.965576][T23858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1391.965606][T23858] RIP: 0033:0x7f29cc38f7c9 [ 1391.965629][T23858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1391.965658][T23858] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1391.965685][T23858] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1391.965705][T23858] RDX: 0000000000000050 RSI: 0000040000000029 RDI: 0000000000000007 [ 1391.965724][T23858] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1391.965742][T23858] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001 [ 1391.965760][T23858] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1391.965796][T23858] [ 1393.296077][T23870] FAULT_INJECTION: forcing a failure. [ 1393.296077][T23870] name failslab, interval 1, probability 0, space 0, times 0 [ 1393.367927][T23870] CPU: 1 UID: 0 PID: 23870 Comm: syz.0.3141 Tainted: G L syzkaller #0 PREEMPT(full) [ 1393.367971][T23870] Tainted: [L]=SOFTLOCKUP [ 1393.367979][T23870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1393.367992][T23870] Call Trace: [ 1393.368000][T23870] [ 1393.368009][T23870] dump_stack_lvl+0x16c/0x1f0 [ 1393.368048][T23870] should_fail_ex+0x512/0x640 [ 1393.368074][T23870] ? fs_reclaim_acquire+0xae/0x150 [ 1393.368111][T23870] should_failslab+0xc2/0x120 [ 1393.368146][T23870] __kmalloc_noprof+0xeb/0x910 [ 1393.368177][T23870] ? tomoyo_encode2+0x100/0x3e0 [ 1393.368212][T23870] ? tomoyo_encode2+0x100/0x3e0 [ 1393.368261][T23870] tomoyo_encode2+0x100/0x3e0 [ 1393.368293][T23870] tomoyo_encode+0x29/0x50 [ 1393.368320][T23870] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1393.368357][T23870] tomoyo_path_number_perm+0x245/0x580 [ 1393.368381][T23870] ? tomoyo_path_number_perm+0x237/0x580 [ 1393.368408][T23870] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1393.368434][T23870] ? find_held_lock+0x2b/0x80 [ 1393.368482][T23870] ? find_held_lock+0x2b/0x80 [ 1393.368508][T23870] ? hook_file_ioctl_common+0x144/0x410 [ 1393.368538][T23870] ? __fget_files+0x20e/0x3c0 [ 1393.368573][T23870] security_file_ioctl+0x9b/0x240 [ 1393.368599][T23870] __x64_sys_ioctl+0xb7/0x210 [ 1393.368627][T23870] do_syscall_64+0xcd/0xf80 [ 1393.368648][T23870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1393.368669][T23870] RIP: 0033:0x7f29cc38f7c9 [ 1393.368684][T23870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1393.368703][T23870] RSP: 002b:00007f29cd1e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1393.368722][T23870] RAX: ffffffffffffffda RBX: 00007f29cc5e6090 RCX: 00007f29cc38f7c9 [ 1393.368736][T23870] RDX: 0000000000000001 RSI: 0000000000004b67 RDI: 0000000000000002 [ 1393.368748][T23870] RBP: 00007f29cd1e1090 R08: 0000000000000000 R09: 0000000000000000 [ 1393.368761][T23870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1393.368773][T23870] R13: 00007f29cc5e6128 R14: 00007f29cc5e6090 R15: 00007ffc829273a8 [ 1393.368799][T23870] [ 1393.368816][T23870] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1394.190268][T23878] bond0: option all_slaves_active: invalid value () [ 1394.388509][T23878] bond0: option all_slaves_active: invalid value () [ 1394.789155][T23879] bond0: option all_slaves_active: invalid value () [ 1395.047818][T23885] nvme_fabrics: unknown parameter or missing value 'û@è' in ctrl creation request [ 1396.269534][T23895] random: crng reseeded on system resumption [ 1400.600097][T23961] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3165'. [ 1403.392000][T23998] FAULT_INJECTION: forcing a failure. [ 1403.392000][T23998] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1403.471864][T23998] CPU: 1 UID: 0 PID: 23998 Comm: syz.0.3171 Tainted: G L syzkaller #0 PREEMPT(full) [ 1403.471899][T23998] Tainted: [L]=SOFTLOCKUP [ 1403.471907][T23998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1403.471919][T23998] Call Trace: [ 1403.471926][T23998] [ 1403.471933][T23998] dump_stack_lvl+0x16c/0x1f0 [ 1403.471970][T23998] should_fail_ex+0x512/0x640 [ 1403.471998][T23998] _copy_from_user+0x2e/0xd0 [ 1403.472022][T23998] do_ip_getsockopt+0xab8/0x2630 [ 1403.472053][T23998] ? __pfx_do_ip_getsockopt+0x10/0x10 [ 1403.472080][T23998] ? process_measurement+0x1e6/0x22d0 [ 1403.472119][T23998] ? __lock_acquire+0x436/0x2890 [ 1403.472144][T23998] ? __lock_acquire+0x436/0x2890 [ 1403.472179][T23998] ? find_held_lock+0x2b/0x80 [ 1403.472238][T23998] ? is_bpf_text_address+0x8a/0x1a0 [ 1403.472288][T23998] ? bpf_ksym_find+0x124/0x1c0 [ 1403.472313][T23998] ip_getsockopt+0x9b/0x1e0 [ 1403.472339][T23998] ? __pfx_ip_getsockopt+0x10/0x10 [ 1403.472372][T23998] ipv6_getsockopt+0x230/0x280 [ 1403.472397][T23998] ? __pfx_ipv6_getsockopt+0x10/0x10 [ 1403.472419][T23998] ? __lock_acquire+0x436/0x2890 [ 1403.472436][T23998] ? _parse_integer_limit+0x17f/0x1d0 [ 1403.472470][T23998] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 1403.472505][T23998] sctp_getsockopt+0x19f/0x7050 [ 1403.472531][T23998] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 1403.472559][T23998] ? find_held_lock+0x2b/0x80 [ 1403.472585][T23998] ? __pfx_sctp_getsockopt+0x10/0x10 [ 1403.472609][T23998] ? __lock_acquire+0x436/0x2890 [ 1403.472641][T23998] ? __lock_acquire+0x436/0x2890 [ 1403.472659][T23998] ? get_pid_task+0xfc/0x250 [ 1403.472689][T23998] ? find_held_lock+0x2b/0x80 [ 1403.472714][T23998] ? __might_fault+0xe3/0x190 [ 1403.472738][T23998] ? __might_fault+0xe3/0x190 [ 1403.472760][T23998] ? __might_fault+0x13b/0x190 [ 1403.472792][T23998] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 1403.472825][T23998] do_sock_getsockopt+0x324/0x410 [ 1403.472860][T23998] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 1403.472893][T23998] ? __fget_files+0x204/0x3c0 [ 1403.472934][T23998] __sys_getsockopt+0x123/0x1b0 [ 1403.472966][T23998] __x64_sys_getsockopt+0xbd/0x160 [ 1403.472992][T23998] ? do_syscall_64+0x91/0xf80 [ 1403.473010][T23998] ? lockdep_hardirqs_on+0x7c/0x110 [ 1403.473043][T23998] do_syscall_64+0xcd/0xf80 [ 1403.473063][T23998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1403.473084][T23998] RIP: 0033:0x7f29cc38f7c9 [ 1403.473100][T23998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1403.473120][T23998] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 1403.473139][T23998] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1403.473152][T23998] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000003 [ 1403.473165][T23998] RBP: 00007f29cd202090 R08: 0000200000000040 R09: 0000000000000000 [ 1403.473178][T23998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1403.473189][T23998] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1403.473215][T23998] [ 1404.770175][T24011] FAULT_INJECTION: forcing a failure. [ 1404.770175][T24011] name failslab, interval 1, probability 0, space 0, times 0 [ 1404.814426][T24011] CPU: 1 UID: 0 PID: 24011 Comm: syz.0.3173 Tainted: G L syzkaller #0 PREEMPT(full) [ 1404.814489][T24011] Tainted: [L]=SOFTLOCKUP [ 1404.814500][T24011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1404.814517][T24011] Call Trace: [ 1404.814527][T24011] [ 1404.814539][T24011] dump_stack_lvl+0x16c/0x1f0 [ 1404.814589][T24011] should_fail_ex+0x512/0x640 [ 1404.814624][T24011] ? __kmalloc_noprof+0xca/0x910 [ 1404.814660][T24011] should_failslab+0xc2/0x120 [ 1404.814706][T24011] __kmalloc_noprof+0xeb/0x910 [ 1404.814741][T24011] ? do_sys_poll+0x24a/0xdf0 [ 1404.814788][T24011] ? do_sys_poll+0x24a/0xdf0 [ 1404.814855][T24011] do_sys_poll+0x24a/0xdf0 [ 1404.814902][T24011] ? __kernel_text_address+0xd/0x40 [ 1404.814940][T24011] ? unwind_get_return_address+0x59/0xa0 [ 1404.814996][T24011] ? __pfx_do_sys_poll+0x10/0x10 [ 1404.815082][T24011] ? __lock_acquire+0x436/0x2890 [ 1404.815188][T24011] ? __pfx_timespec64_add_safe+0x10/0x10 [ 1404.815227][T24011] ? ktime_get_ts64+0x2d2/0x400 [ 1404.815262][T24011] ? read_tsc+0x9/0x20 [ 1404.815303][T24011] ? ktime_get_ts64+0x256/0x400 [ 1404.815346][T24011] __x64_sys_poll+0x1a6/0x450 [ 1404.815393][T24011] ? __pfx___x64_sys_poll+0x10/0x10 [ 1404.815459][T24011] do_syscall_64+0xcd/0xf80 [ 1404.815493][T24011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1404.815528][T24011] RIP: 0033:0x7f29cc38f7c9 [ 1404.815555][T24011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1404.815590][T24011] RSP: 002b:00007f29cd1e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 1404.815621][T24011] RAX: ffffffffffffffda RBX: 00007f29cc5e6090 RCX: 00007f29cc38f7c9 [ 1404.815643][T24011] RDX: 0000000000000020 RSI: 00000000000003fa RDI: 0000200000000f80 [ 1404.815664][T24011] RBP: 00007f29cd1e1090 R08: 0000000000000000 R09: 0000000000000000 [ 1404.815685][T24011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1404.815706][T24011] R13: 00007f29cc5e6128 R14: 00007f29cc5e6090 R15: 00007ffc829273a8 [ 1404.815749][T24011] [ 1405.755639][T24023] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3176'. [ 1407.857565][T24048] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3179'. [ 1409.333702][T24055] FAULT_INJECTION: forcing a failure. [ 1409.333702][T24055] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1409.386871][T24055] CPU: 0 UID: 0 PID: 24055 Comm: syz.4.3181 Tainted: G L syzkaller #0 PREEMPT(full) [ 1409.386909][T24055] Tainted: [L]=SOFTLOCKUP [ 1409.386917][T24055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1409.386929][T24055] Call Trace: [ 1409.386937][T24055] [ 1409.386945][T24055] dump_stack_lvl+0x16c/0x1f0 [ 1409.386984][T24055] should_fail_ex+0x512/0x640 [ 1409.387011][T24055] _copy_to_user+0x32/0xd0 [ 1409.387036][T24055] simple_read_from_buffer+0xcb/0x170 [ 1409.387066][T24055] proc_fail_nth_read+0x197/0x240 [ 1409.387101][T24055] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1409.387136][T24055] ? rw_verify_area+0xcf/0x6c0 [ 1409.387162][T24055] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1409.387195][T24055] vfs_read+0x1e4/0xcf0 [ 1409.387223][T24055] ? __pfx___mutex_lock+0x10/0x10 [ 1409.387245][T24055] ? __pfx_vfs_read+0x10/0x10 [ 1409.387278][T24055] ? __fget_files+0x20e/0x3c0 [ 1409.387313][T24055] ksys_read+0x12a/0x250 [ 1409.387340][T24055] ? __pfx_ksys_read+0x10/0x10 [ 1409.387375][T24055] do_syscall_64+0xcd/0xf80 [ 1409.387394][T24055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1409.387414][T24055] RIP: 0033:0x7f52f658e1dc [ 1409.387430][T24055] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1409.387449][T24055] RSP: 002b:00007f52f74a8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1409.387468][T24055] RAX: ffffffffffffffda RBX: 00007f52f67e5fa0 RCX: 00007f52f658e1dc [ 1409.387481][T24055] RDX: 000000000000000f RSI: 00007f52f74a80a0 RDI: 0000000000000003 [ 1409.387494][T24055] RBP: 00007f52f74a8090 R08: 0000000000000000 R09: 0000000000000000 [ 1409.387506][T24055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1409.387518][T24055] R13: 00007f52f67e6038 R14: 00007f52f67e5fa0 R15: 00007ffcdeda3028 [ 1409.387543][T24055] [ 1411.677561][T24093] FAULT_INJECTION: forcing a failure. [ 1411.677561][T24093] name failslab, interval 1, probability 0, space 0, times 0 [ 1411.734409][T24093] CPU: 0 UID: 0 PID: 24093 Comm: syz.0.3187 Tainted: G L syzkaller #0 PREEMPT(full) [ 1411.734455][T24093] Tainted: [L]=SOFTLOCKUP [ 1411.734466][T24093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1411.734483][T24093] Call Trace: [ 1411.734493][T24093] [ 1411.734505][T24093] dump_stack_lvl+0x16c/0x1f0 [ 1411.734557][T24093] should_fail_ex+0x512/0x640 [ 1411.734592][T24093] ? __kmalloc_cache_noprof+0x5f/0x800 [ 1411.734630][T24093] should_failslab+0xc2/0x120 [ 1411.734678][T24093] __kmalloc_cache_noprof+0x80/0x800 [ 1411.734713][T24093] ? input_allocate_device+0x44/0x350 [ 1411.734760][T24093] ? input_allocate_device+0x44/0x350 [ 1411.734814][T24093] input_allocate_device+0x44/0x350 [ 1411.734895][T24093] uinput_ioctl_handler.isra.0+0x8bb/0x1df0 [ 1411.734935][T24093] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1411.734977][T24093] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 1411.735025][T24093] ? find_held_lock+0x2b/0x80 [ 1411.735089][T24093] ? __pfx_uinput_ioctl+0x10/0x10 [ 1411.735124][T24093] __x64_sys_ioctl+0x18e/0x210 [ 1411.735168][T24093] do_syscall_64+0xcd/0xf80 [ 1411.735201][T24093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1411.735235][T24093] RIP: 0033:0x7f29cc38f7c9 [ 1411.735260][T24093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1411.735295][T24093] RSP: 002b:00007f29cd202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1411.735327][T24093] RAX: ffffffffffffffda RBX: 00007f29cc5e5fa0 RCX: 00007f29cc38f7c9 [ 1411.735349][T24093] RDX: 0000000000000ea3 RSI: 0000000040025504 RDI: 0000000000000003 [ 1411.735370][T24093] RBP: 00007f29cd202090 R08: 0000000000000000 R09: 0000000000000000 [ 1411.735392][T24093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1411.735412][T24093] R13: 00007f29cc5e6038 R14: 00007f29cc5e5fa0 R15: 00007ffc829273a8 [ 1411.735458][T24093] [ 1412.324947][ T30] audit: type=1107 audit(7831546533.355:5): pid=24099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1412.444923][ T30] audit: type=1107 audit(7831546533.355:6): pid=24099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1413.824028][T24123] ecryptfs_miscdev_write: memdup_user returned error [-14] [ 1414.614685][T24130] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 1415.671235][T24137] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3198'. [ 1418.185302][ T30] audit: type=1800 audit(7831546539.225:7): pid=24173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3205" name="dbroot" dev="configfs" ino=123981 res=0 errno=0 [ 1418.795450][T24179] ima: policy update failed [ 1418.844860][ T30] audit: type=1802 audit(7831546539.885:8): pid=24179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3207" res=0 errno=0 [ 1419.528209][T24156] Process accounting resumed [ 1420.304938][T24191] random: crng reseeded on system resumption [ 1421.114902][T24198] hub 1-0:1.0: USB hub found [ 1421.134495][T24198] hub 1-0:1.0: 1 port detected [ 1421.539755][T24194] Process accounting resumed [ 1422.827508][T24230] sp0: Synchronizing with TNC [ 1424.091547][T24249] sp0: Synchronizing with TNC [ 1425.145687][T24259] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3227'. [ 1425.636508][T24262] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3228'. [ 1425.678272][T24262] bridge0: port 2(bridge_slave_1) entered disabled state [ 1425.686182][T24262] bridge0: port 1(bridge_slave_0) entered disabled state [ 1427.179103][T24272] sp0: Synchronizing with TNC [ 1427.220793][T24273] FAULT_INJECTION: forcing a failure. [ 1427.220793][T24273] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1427.284742][T24273] CPU: 0 UID: 0 PID: 24273 Comm: syz.3.3230 Tainted: G L syzkaller #0 PREEMPT(full) [ 1427.284784][T24273] Tainted: [L]=SOFTLOCKUP [ 1427.284799][T24273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1427.284816][T24273] Call Trace: [ 1427.284825][T24273] [ 1427.284854][T24273] dump_stack_lvl+0x16c/0x1f0 [ 1427.284910][T24273] should_fail_ex+0x512/0x640 [ 1427.284954][T24273] _copy_to_user+0x32/0xd0 [ 1427.284995][T24273] simple_read_from_buffer+0xcb/0x170 [ 1427.285045][T24273] proc_fail_nth_read+0x197/0x240 [ 1427.285101][T24273] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1427.285170][T24273] ? rw_verify_area+0xcf/0x6c0 [ 1427.285210][T24273] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1427.285265][T24273] vfs_read+0x1e4/0xcf0 [ 1427.285314][T24273] ? __pfx___mutex_lock+0x10/0x10 [ 1427.285349][T24273] ? __pfx_vfs_read+0x10/0x10 [ 1427.285407][T24273] ? __fget_files+0x20e/0x3c0 [ 1427.285465][T24273] ksys_read+0x12a/0x250 [ 1427.285507][T24273] ? __pfx_ksys_read+0x10/0x10 [ 1427.285564][T24273] do_syscall_64+0xcd/0xf80 [ 1427.285596][T24273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1427.285630][T24273] RIP: 0033:0x7f382ab8e1dc [ 1427.285655][T24273] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1427.285688][T24273] RSP: 002b:00007f382ba09030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1427.285719][T24273] RAX: ffffffffffffffda RBX: 00007f382ade6090 RCX: 00007f382ab8e1dc [ 1427.285741][T24273] RDX: 000000000000000f RSI: 00007f382ba090a0 RDI: 0000000000000008 [ 1427.285762][T24273] RBP: 00007f382ba09090 R08: 0000000000000000 R09: 0000000000000000 [ 1427.285781][T24273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1427.285801][T24273] R13: 00007f382ade6128 R14: 00007f382ade6090 R15: 00007ffe4d851988 [ 1427.285843][T24273] [ 1428.387926][T24283] FAULT_INJECTION: forcing a failure. [ 1428.387926][T24283] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1428.436772][T24283] CPU: 1 UID: 0 PID: 24283 Comm: syz.1.3233 Tainted: G L syzkaller #0 PREEMPT(full) [ 1428.436834][T24283] Tainted: [L]=SOFTLOCKUP [ 1428.436845][T24283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1428.436863][T24283] Call Trace: [ 1428.436873][T24283] [ 1428.436885][T24283] dump_stack_lvl+0x16c/0x1f0 [ 1428.436939][T24283] should_fail_ex+0x512/0x640 [ 1428.436979][T24283] _copy_to_user+0x32/0xd0 [ 1428.437024][T24283] simple_read_from_buffer+0xcb/0x170 [ 1428.437070][T24283] proc_fail_nth_read+0x197/0x240 [ 1428.437121][T24283] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1428.437174][T24283] ? rw_verify_area+0xcf/0x6c0 [ 1428.437212][T24283] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1428.437264][T24283] vfs_read+0x1e4/0xcf0 [ 1428.437318][T24283] ? __pfx___mutex_lock+0x10/0x10 [ 1428.437350][T24283] ? __pfx_vfs_read+0x10/0x10 [ 1428.437400][T24283] ? __fget_files+0x20e/0x3c0 [ 1428.437449][T24283] ksys_read+0x12a/0x250 [ 1428.437492][T24283] ? __pfx_ksys_read+0x10/0x10 [ 1428.437543][T24283] do_syscall_64+0xcd/0xf80 [ 1428.437572][T24283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1428.437601][T24283] RIP: 0033:0x7fdc55f8e1dc [ 1428.437624][T24283] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1428.437651][T24283] RSP: 002b:00007fdc56d45030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1428.437678][T24283] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8e1dc [ 1428.437697][T24283] RDX: 000000000000000f RSI: 00007fdc56d450a0 RDI: 0000000000000008 [ 1428.437715][T24283] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1428.437733][T24283] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001 [ 1428.437751][T24283] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1428.437788][T24283] [ 1432.142817][T24331] mkiss: ax0: crc mode is auto. [ 1432.270230][T24331] capability: warning: `syz.3.3242' uses 32-bit capabilities (legacy support in use) [ 1432.446661][T24331] mkiss: ax0: crc mode is auto. [ 1433.368229][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1433.376623][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1433.391212][T24341] syz.1.3245 (24341) used greatest stack depth: 19688 bytes left [ 1434.720681][T24364] serio: Serial port pty6 [ 1435.204392][T24379] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3253'. [ 1436.527172][T24396] FAULT_INJECTION: forcing a failure. [ 1436.527172][T24396] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1436.574282][T24396] CPU: 1 UID: 0 PID: 24396 Comm: syz.4.3257 Tainted: G L syzkaller #0 PREEMPT(full) [ 1436.574326][T24396] Tainted: [L]=SOFTLOCKUP [ 1436.574335][T24396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1436.574349][T24396] Call Trace: [ 1436.574357][T24396] [ 1436.574367][T24396] dump_stack_lvl+0x16c/0x1f0 [ 1436.574410][T24396] should_fail_ex+0x512/0x640 [ 1436.574441][T24396] _copy_to_user+0x32/0xd0 [ 1436.574470][T24396] simple_read_from_buffer+0xcb/0x170 [ 1436.574517][T24396] proc_fail_nth_read+0x197/0x240 [ 1436.574561][T24396] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1436.574600][T24396] ? rw_verify_area+0xcf/0x6c0 [ 1436.574628][T24396] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1436.574683][T24396] vfs_read+0x1e4/0xcf0 [ 1436.574716][T24396] ? __pfx___mutex_lock+0x10/0x10 [ 1436.574742][T24396] ? __pfx_vfs_read+0x10/0x10 [ 1436.574781][T24396] ? __fget_files+0x20e/0x3c0 [ 1436.574824][T24396] ksys_read+0x12a/0x250 [ 1436.574857][T24396] ? __pfx_ksys_read+0x10/0x10 [ 1436.574916][T24396] do_syscall_64+0xcd/0xf80 [ 1436.574940][T24396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1436.574963][T24396] RIP: 0033:0x7f52f658e1dc [ 1436.574981][T24396] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1436.575004][T24396] RSP: 002b:00007f52f74a8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1436.575025][T24396] RAX: ffffffffffffffda RBX: 00007f52f67e5fa0 RCX: 00007f52f658e1dc [ 1436.575041][T24396] RDX: 000000000000000f RSI: 00007f52f74a80a0 RDI: 0000000000000004 [ 1436.575055][T24396] RBP: 00007f52f74a8090 R08: 0000000000000000 R09: 0000000000000000 [ 1436.575070][T24396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1436.575084][T24396] R13: 00007f52f67e6038 R14: 00007f52f67e5fa0 R15: 00007ffcdeda3028 [ 1436.575114][T24396] [ 1437.441981][T24404] random: crng reseeded on system resumption [ 1440.351877][T24459] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1441.017841][T24471] FAULT_INJECTION: forcing a failure. [ 1441.017841][T24471] name failslab, interval 1, probability 0, space 0, times 0 [ 1441.030740][T24471] CPU: 0 UID: 0 PID: 24471 Comm: syz.3.3271 Tainted: G L syzkaller #0 PREEMPT(full) [ 1441.030782][T24471] Tainted: [L]=SOFTLOCKUP [ 1441.030792][T24471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1441.030808][T24471] Call Trace: [ 1441.030817][T24471] [ 1441.030828][T24471] dump_stack_lvl+0x16c/0x1f0 [ 1441.030876][T24471] should_fail_ex+0x512/0x640 [ 1441.030909][T24471] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 1441.030948][T24471] should_failslab+0xc2/0x120 [ 1441.030991][T24471] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 1441.031028][T24471] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1441.031082][T24471] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1441.031126][T24471] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1441.031178][T24471] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 1441.031225][T24471] alloc_inode+0x64/0x240 [ 1441.031257][T24471] new_inode+0x22/0x1c0 [ 1441.031290][T24471] hugetlbfs_get_inode+0x354/0x700 [ 1441.031316][T24471] ? __fget_files+0x20e/0x3c0 [ 1441.031360][T24471] hugetlb_file_setup+0x15b/0x620 [ 1441.031394][T24471] ksys_mmap_pgoff+0x189/0x5c0 [ 1441.031442][T24471] __x64_sys_mmap+0x125/0x190 [ 1441.031476][T24471] do_syscall_64+0xcd/0xf80 [ 1441.031503][T24471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1441.031531][T24471] RIP: 0033:0x7f382ab8f7c9 [ 1441.031553][T24471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1441.031581][T24471] RSP: 002b:00007f382ba09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1441.031608][T24471] RAX: ffffffffffffffda RBX: 00007f382ade6090 RCX: 00007f382ab8f7c9 [ 1441.031627][T24471] RDX: 0000000000400002 RSI: 0000000000a00006 RDI: 0000000000000000 [ 1441.031644][T24471] RBP: 00007f382ba09090 R08: 0000000000000602 R09: 0000300000000000 [ 1441.031663][T24471] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000001 [ 1441.031680][T24471] R13: 00007f382ade6128 R14: 00007f382ade6090 R15: 00007ffe4d851988 [ 1441.031717][T24471] [ 1443.035442][T24505] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 1444.032350][T24525] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3278'. [ 1447.025641][ T5842] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 1447.025688][ T5842] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 1447.054380][ T5842] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 1447.054501][ T5842] Bluetooth: hci2: adv larger than maximum supported [ 1447.063013][ T5842] Bluetooth: hci2: adv larger than maximum supported [ 1447.073049][ T5842] Bluetooth: hci2: Malformed LE Event: 0x0d [ 1447.951634][T24578] FAULT_INJECTION: forcing a failure. [ 1447.951634][T24578] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1448.004374][T24578] CPU: 1 UID: 0 PID: 24578 Comm: syz.0.3290 Tainted: G L syzkaller #0 PREEMPT(full) [ 1448.004418][T24578] Tainted: [L]=SOFTLOCKUP [ 1448.004428][T24578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1448.004446][T24578] Call Trace: [ 1448.004456][T24578] [ 1448.004466][T24578] dump_stack_lvl+0x16c/0x1f0 [ 1448.004514][T24578] should_fail_ex+0x512/0x640 [ 1448.004552][T24578] _copy_from_user+0x2e/0xd0 [ 1448.004586][T24578] snd_rawmidi_kernel_write1+0x50a/0x8a0 [ 1448.004633][T24578] snd_rawmidi_write+0x26e/0xc10 [ 1448.004675][T24578] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1448.004727][T24578] ? common_file_perm+0x1b1/0x500 [ 1448.004762][T24578] ? __pfx_default_wake_function+0x10/0x10 [ 1448.004813][T24578] ? bpf_lsm_file_permission+0x9/0x10 [ 1448.004868][T24578] ? security_file_permission+0x71/0x210 [ 1448.004932][T24578] ? rw_verify_area+0xcf/0x6c0 [ 1448.004978][T24578] ? __pfx_snd_rawmidi_write+0x10/0x10 [ 1448.005016][T24578] vfs_write+0x2a0/0x11d0 [ 1448.005073][T24578] ? __pfx_vfs_write+0x10/0x10 [ 1448.005119][T24578] ? find_held_lock+0x2b/0x80 [ 1448.005164][T24578] ? __fget_files+0x204/0x3c0 [ 1448.005219][T24578] ? __fget_files+0x20e/0x3c0 [ 1448.005278][T24578] ksys_write+0x1f8/0x250 [ 1448.005333][T24578] ? __pfx_ksys_write+0x10/0x10 [ 1448.005394][T24578] do_syscall_64+0xcd/0xf80 [ 1448.005427][T24578] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1448.005460][T24578] RIP: 0033:0x7f29cc38f7c9 [ 1448.005486][T24578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1448.005519][T24578] RSP: 002b:00007f29cd1e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1448.005551][T24578] RAX: ffffffffffffffda RBX: 00007f29cc5e6090 RCX: 00007f29cc38f7c9 [ 1448.005573][T24578] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000008 [ 1448.005595][T24578] RBP: 00007f29cc413f91 R08: 0000000000000000 R09: 0000000000000000 [ 1448.005615][T24578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1448.005636][T24578] R13: 00007f29cc5e6128 R14: 00007f29cc5e6090 R15: 00007ffc829273a8 [ 1448.005682][T24578] [ 1448.256081][T24579] snd_aloop snd_aloop.0: snd_timer_stop(0,0,0) failed with -16 [ 1448.387071][T24592] snd_aloop snd_aloop.0: snd_timer_stop(0,0,0) failed with -16 [ 1448.594766][T24583] zswap: compressor not available [ 1449.098611][T24599] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3293'. [ 1449.665680][T24604] Process accounting paused [ 1450.069367][ T30] audit: type=1800 audit(7831546571.105:9): pid=24610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3297" name="members" dev="configfs" ino=127398 res=0 errno=0 [ 1450.236020][T24612] Invalid ELF header magic: != ELF [ 1451.449774][T24632] FAULT_INJECTION: forcing a failure. [ 1451.449774][T24632] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1451.493273][T24632] CPU: 0 UID: 0 PID: 24632 Comm: syz.3.3302 Tainted: G L syzkaller #0 PREEMPT(full) [ 1451.493308][T24632] Tainted: [L]=SOFTLOCKUP [ 1451.493316][T24632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1451.493329][T24632] Call Trace: [ 1451.493337][T24632] [ 1451.493346][T24632] dump_stack_lvl+0x16c/0x1f0 [ 1451.493385][T24632] should_fail_ex+0x512/0x640 [ 1451.493415][T24632] _copy_from_iter+0x2a4/0x16c0 [ 1451.493443][T24632] ? __alloc_skb+0x220/0x410 [ 1451.493467][T24632] ? __alloc_skb+0x35d/0x410 [ 1451.493492][T24632] ? __pfx__copy_from_iter+0x10/0x10 [ 1451.493517][T24632] ? netlink_autobind.isra.0+0x158/0x370 [ 1451.493560][T24632] netlink_sendmsg+0x820/0xdd0 [ 1451.493597][T24632] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1451.493633][T24632] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 1451.493675][T24632] ____sys_sendmsg+0xa5d/0xc30 [ 1451.493697][T24632] ? copy_msghdr_from_user+0x10a/0x160 [ 1451.493726][T24632] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1451.493759][T24632] ___sys_sendmsg+0x134/0x1d0 [ 1451.493790][T24632] ? __pfx____sys_sendmsg+0x10/0x10 [ 1451.493858][T24632] __sys_sendmsg+0x16d/0x220 [ 1451.493886][T24632] ? __pfx___sys_sendmsg+0x10/0x10 [ 1451.493929][T24632] do_syscall_64+0xcd/0xf80 [ 1451.493949][T24632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1451.493970][T24632] RIP: 0033:0x7f382ab8f7c9 [ 1451.493991][T24632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1451.494027][T24632] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1451.494047][T24632] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1451.494061][T24632] RDX: 00000000000040d0 RSI: 0000200000000780 RDI: 0000000000000003 [ 1451.494074][T24632] RBP: 00007f382ba2a090 R08: 0000000000000000 R09: 0000000000000000 [ 1451.494087][T24632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1451.494119][T24632] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1451.494158][T24632] [ 1451.751082][T24632] Process accounting paused [ 1452.472191][T24645] FAULT_INJECTION: forcing a failure. [ 1452.472191][T24645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1452.523297][T24645] CPU: 0 UID: 0 PID: 24645 Comm: syz.1.3304 Tainted: G L syzkaller #0 PREEMPT(full) [ 1452.523343][T24645] Tainted: [L]=SOFTLOCKUP [ 1452.523354][T24645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1452.523372][T24645] Call Trace: [ 1452.523382][T24645] [ 1452.523394][T24645] dump_stack_lvl+0x16c/0x1f0 [ 1452.523446][T24645] should_fail_ex+0x512/0x640 [ 1452.523485][T24645] _copy_from_iter+0x2a4/0x16c0 [ 1452.523525][T24645] ? __alloc_skb+0x220/0x410 [ 1452.523559][T24645] ? __alloc_skb+0x35d/0x410 [ 1452.523593][T24645] ? __pfx__copy_from_iter+0x10/0x10 [ 1452.523627][T24645] ? netlink_autobind.isra.0+0x158/0x370 [ 1452.523695][T24645] netlink_sendmsg+0x820/0xdd0 [ 1452.523744][T24645] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1452.523792][T24645] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 1452.523848][T24645] ____sys_sendmsg+0xa5d/0xc30 [ 1452.523883][T24645] ? copy_msghdr_from_user+0x10a/0x160 [ 1452.523923][T24645] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1452.523967][T24645] ___sys_sendmsg+0x134/0x1d0 [ 1452.524007][T24645] ? __pfx____sys_sendmsg+0x10/0x10 [ 1452.524091][T24645] __sys_sendmsg+0x16d/0x220 [ 1452.524131][T24645] ? __pfx___sys_sendmsg+0x10/0x10 [ 1452.524192][T24645] do_syscall_64+0xcd/0xf80 [ 1452.524221][T24645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1452.524249][T24645] RIP: 0033:0x7fdc55f8f7c9 [ 1452.524265][T24645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1452.524285][T24645] RSP: 002b:00007fdc56d45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1452.524304][T24645] RAX: ffffffffffffffda RBX: 00007fdc561e5fa0 RCX: 00007fdc55f8f7c9 [ 1452.524318][T24645] RDX: 0000000000008080 RSI: 00002000000001c0 RDI: 0000000000000003 [ 1452.524331][T24645] RBP: 00007fdc56d45090 R08: 0000000000000000 R09: 0000000000000000 [ 1452.524343][T24645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1452.524355][T24645] R13: 00007fdc561e6038 R14: 00007fdc561e5fa0 R15: 00007fffdeec5b48 [ 1452.524380][T24645] [ 1453.176025][T24649] mkiss: ax0: crc mode is auto. [ 1453.971909][T24664] mkiss: ax0: crc mode is auto. [ 1455.255798][T24685] sp0: Synchronizing with TNC [ 1455.833159][T24691] netlink: 350 bytes leftover after parsing attributes in process `syz.4.3315'. [ 1456.147566][T24691] futex_wake_op: syz.4.3315 tries to shift op by -2048; fix this program [ 1456.241230][T24691] futex_wake_op: syz.4.3315 tries to shift op by -2048; fix this program [ 1457.264264][T24705] delete_channel: no stack [ 1459.224492][T24740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3325'. [ 1459.892269][T24750] FAULT_INJECTION: forcing a failure. [ 1459.892269][T24750] name failslab, interval 1, probability 0, space 0, times 0 [ 1459.988168][T24750] CPU: 1 UID: 0 PID: 24750 Comm: syz.3.3327 Tainted: G L syzkaller #0 PREEMPT(full) [ 1459.988214][T24750] Tainted: [L]=SOFTLOCKUP [ 1459.988223][T24750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1459.988255][T24750] Call Trace: [ 1459.988267][T24750] [ 1459.988281][T24750] dump_stack_lvl+0x16c/0x1f0 [ 1459.988336][T24750] should_fail_ex+0x512/0x640 [ 1459.988364][T24750] ? kmem_cache_alloc_noprof+0x62/0x770 [ 1459.988398][T24750] should_failslab+0xc2/0x120 [ 1459.988438][T24750] kmem_cache_alloc_noprof+0x83/0x770 [ 1459.988469][T24750] ? __proc_create+0x2c8/0x8d0 [ 1459.988508][T24750] ? __proc_create+0x2c8/0x8d0 [ 1459.988540][T24750] __proc_create+0x2c8/0x8d0 [ 1459.988575][T24750] ? __pfx___proc_create+0x10/0x10 [ 1459.988621][T24750] proc_mkdir+0x81/0x170 [ 1459.988655][T24750] ? __pfx_proc_mkdir+0x10/0x10 [ 1459.988702][T24750] ? cache_register_net+0x137/0x5e0 [ 1459.988743][T24750] cache_register_net+0x18f/0x5e0 [ 1459.988767][T24750] gss_svc_init_net+0x98/0x660 [ 1459.988799][T24750] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 1459.988824][T24750] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 1459.988858][T24750] ops_init+0x1e2/0x5f0 [ 1459.988894][T24750] setup_net+0x11d/0x3a0 [ 1459.988927][T24750] ? __pfx_setup_net+0x10/0x10 [ 1459.988958][T24750] ? lockdep_init_map_type+0x5c/0x270 [ 1459.988993][T24750] ? mutex_init_lockep+0x110/0x150 [ 1459.989018][T24750] copy_net_ns+0x351/0x7c0 [ 1459.989054][T24750] create_new_namespaces+0x3ea/0xab0 [ 1459.989089][T24750] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1459.989120][T24750] ksys_unshare+0x45b/0xa40 [ 1459.989173][T24750] ? __pfx_ksys_unshare+0x10/0x10 [ 1459.989219][T24750] ? xfd_validate_state+0x61/0x180 [ 1459.989248][T24750] __x64_sys_unshare+0x31/0x40 [ 1459.989268][T24750] do_syscall_64+0xcd/0xf80 [ 1459.989290][T24750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1459.989313][T24750] RIP: 0033:0x7f382ab8f7c9 [ 1459.989331][T24750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1459.989353][T24750] RSP: 002b:00007f382ba2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1459.989375][T24750] RAX: ffffffffffffffda RBX: 00007f382ade5fa0 RCX: 00007f382ab8f7c9 [ 1459.989390][T24750] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1459.989403][T24750] RBP: 00007f382ac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1459.989417][T24750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1459.989431][T24750] R13: 00007f382ade6038 R14: 00007f382ade5fa0 R15: 00007ffe4d851988 [ 1459.989461][T24750] [ 1460.537108][ T6556] snd_aloop snd_aloop.0: Period size (4096 frames) of loopback device is not corresponding to timer resolution (4000000 nsec = 32 frames) of card timer 0,0,0. Use period size of 32 frames for loopback device. [ 1461.909846][T24765] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1461.939823][T24765] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1462.079054][T24765] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1462.117495][T24765] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 1462.221902][T24765] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1462.251411][T24765] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 1462.291155][T24765] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1462.361356][T24765] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1462.457129][T24765] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1462.465959][T24765] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1462.500959][T24765] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1463.333340][T24797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3338'. [ 1463.454311][ T5842] Bluetooth: hci4: command 0x0406 tx timeout [ 1464.096668][ T5842] Bluetooth: hci0: command 0x0406 tx timeout [ 1464.294242][ T5842] Bluetooth: hci3: command 0x0406 tx timeout [ 1464.324197][ T5842] Bluetooth: hci2: command 0x0406 tx timeout [ 1464.484249][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout [ 1464.747454][T24810] random: crng reseeded on system resumption [ 1465.410034][T24794] kexec: Could not allocate control_code_buffer [ 1465.527408][ T5842] Bluetooth: hci4: command 0x0406 tx timeout [ 1466.166659][ T5842] Bluetooth: hci0: command 0x0406 tx timeout [ 1466.280753][T24827] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 700010007 [ 1466.344237][ T5842] Bluetooth: hci3: command 0x0406 tx timeout [ 1466.404304][ T5842] Bluetooth: hci2: command 0x0406 tx timeout [ 1466.569168][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout [ 1466.929135][T24838] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3348'. [ 1468.644316][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout [ 1470.673454][T24885] netlink: 'syz.1.3361': attribute type 1 has an invalid length. [ 1470.694199][T24885] netlink: 'syz.1.3361': attribute type 6 has an invalid length. [ 1472.356684][ T5842] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1472.509581][T24912] syz.0.3367 uses obsolete (PF_INET,SOCK_PACKET) [ 1473.518255][T24941] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 1474.585581][T24943] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 1475.772165][T24955] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1475.809838][T24955] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1475.842586][T24955] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1475.853058][T24955] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1475.868078][T24955] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1476.012249][T24955] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1476.160019][T24968] ------------[ cut here ]------------ [ 1476.166219][T24968] WARNING: net/mac80211/pm.c:171 at __ieee80211_suspend+0x1003/0x12b0, CPU#0: syz.4.3379/24968 [ 1476.176948][T24968] Modules linked in: [ 1476.181363][T24968] CPU: 0 UID: 0 PID: 24968 Comm: syz.4.3379 Tainted: G L syzkaller #0 PREEMPT(full) [ 1476.192609][T24968] Tainted: [L]=SOFTLOCKUP [ 1476.197027][T24968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1476.207181][T24968] RIP: 0010:__ieee80211_suspend+0x1003/0x12b0 [ 1476.213512][T24968] Code: 1a f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 35 c2 1a f7 eb ba e8 ee e1 b1 f6 90 <0f> 0b 90 e9 a7 f8 ff ff e8 e0 e1 b1 f6 90 0f 0b 90 e9 88 f6 ff ff [ 1476.233447][T24968] RSP: 0018:ffffc9000b60fc40 EFLAGS: 00010283 [ 1476.239788][T24968] RAX: 000000000000612f RBX: ffff88807a330e80 RCX: ffffc900123dd000 [ 1476.248060][T24968] RDX: 0000000000080000 RSI: ffffffff8b0c7b82 RDI: 0000000000000001 [ 1476.256413][T24968] RBP: ffff88807a332b10 R08: 0000000000000001 R09: 0000000000000000 [ 1476.264604][T24968] R10: 0000000000000001 R11: ffff88807a628b30 R12: dffffc0000000000 [ 1476.272641][T24968] R13: ffffed100f4661d9 R14: ffff88807a332910 R15: 0000000000000001 [ 1476.280638][T24968] FS: 00007f52f74666c0(0000) GS:ffff8881248f9000(0000) knlGS:0000000000000000 [ 1476.289718][T24968] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1476.296352][T24968] CR2: 00002000000f8000 CR3: 00000000666b0000 CR4: 00000000003526f0 [ 1476.304351][T24968] Call Trace: [ 1476.307803][T24968] [ 1476.310738][T24968] reset_write+0x7a/0x290 [ 1476.315121][T24968] short_proxy_write+0x135/0x1a0 [ 1476.320083][T24968] ? __pfx_short_proxy_write+0x10/0x10 [ 1476.325651][T24968] vfs_write+0x2a0/0x11d0 [ 1476.330006][T24968] ? __pfx___mutex_lock+0x10/0x10 [ 1476.335250][T24968] ? __pfx_vfs_write+0x10/0x10 [ 1476.340059][T24968] ? __fget_files+0x20e/0x3c0 [ 1476.345115][T24968] ksys_write+0x12a/0x250 [ 1476.349487][T24968] ? __pfx_ksys_write+0x10/0x10 [ 1476.354426][T24968] do_syscall_64+0xcd/0xf80 [ 1476.358991][T24968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1476.364988][T24968] RIP: 0033:0x7f52f658f7c9 [ 1476.369456][T24968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1476.389292][T24968] RSP: 002b:00007f52f7466038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1476.397796][T24968] RAX: ffffffffffffffda RBX: 00007f52f67e6180 RCX: 00007f52f658f7c9 [ 1476.405844][T24968] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000005 [ 1476.413870][T24968] RBP: 00007f52f6613f91 R08: 0000000000000000 R09: 0000000000000000 [ 1476.422083][T24968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1476.430118][T24968] R13: 00007f52f67e6218 R14: 00007f52f67e6180 R15: 00007ffcdeda3028 [ 1476.438370][T24968] [ 1476.441429][T24968] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1476.448741][T24968] CPU: 0 UID: 0 PID: 24968 Comm: syz.4.3379 Tainted: G L syzkaller #0 PREEMPT(full) [ 1476.459734][T24968] Tainted: [L]=SOFTLOCKUP [ 1476.464083][T24968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1476.474180][T24968] Call Trace: [ 1476.477481][T24968] [ 1476.480544][T24968] dump_stack_lvl+0x3d/0x1f0 [ 1476.485213][T24968] vpanic+0x640/0x6f0 [ 1476.489286][T24968] ? __ieee80211_suspend+0x1003/0x12b0 [ 1476.494813][T24968] panic+0xca/0xd0 [ 1476.498604][T24968] ? __pfx_panic+0x10/0x10 [ 1476.503066][T24968] check_panic_on_warn+0xab/0xb0 [ 1476.508044][T24968] __warn+0x108/0x3c0 [ 1476.512098][T24968] __report_bug+0x2a0/0x520 [ 1476.516684][T24968] ? __ieee80211_suspend+0x1003/0x12b0 [ 1476.522182][T24968] ? __pfx___report_bug+0x10/0x10 [ 1476.527255][T24968] ? dput.part.0+0xd8/0x570 [ 1476.531800][T24968] ? dput+0x1f/0x30 [ 1476.535670][T24968] ? __debugfs_create_file+0x40d/0x530 [ 1476.541196][T24968] ? debugfs_create_file_short+0x41/0x60 [ 1476.546893][T24968] ? __ieee80211_suspend+0x1003/0x12b0 [ 1476.552379][T24968] report_bug+0xb2/0x220 [ 1476.556654][T24968] ? __ieee80211_suspend+0x1003/0x12b0 [ 1476.562144][T24968] handle_bug+0x127/0x260 [ 1476.566501][T24968] exc_invalid_op+0x17/0x50 [ 1476.571041][T24968] asm_exc_invalid_op+0x1a/0x20 [ 1476.575925][T24968] RIP: 0010:__ieee80211_suspend+0x1003/0x12b0 [ 1476.582042][T24968] Code: 1a f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 35 c2 1a f7 eb ba e8 ee e1 b1 f6 90 <0f> 0b 90 e9 a7 f8 ff ff e8 e0 e1 b1 f6 90 0f 0b 90 e9 88 f6 ff ff [ 1476.601675][T24968] RSP: 0018:ffffc9000b60fc40 EFLAGS: 00010283 [ 1476.607769][T24968] RAX: 000000000000612f RBX: ffff88807a330e80 RCX: ffffc900123dd000 [ 1476.615763][T24968] RDX: 0000000000080000 RSI: ffffffff8b0c7b82 RDI: 0000000000000001 [ 1476.623762][T24968] RBP: ffff88807a332b10 R08: 0000000000000001 R09: 0000000000000000 [ 1476.631752][T24968] R10: 0000000000000001 R11: ffff88807a628b30 R12: dffffc0000000000 [ 1476.639741][T24968] R13: ffffed100f4661d9 R14: ffff88807a332910 R15: 0000000000000001 [ 1476.647744][T24968] ? __ieee80211_suspend+0x1002/0x12b0 [ 1476.653240][T24968] reset_write+0x7a/0x290 [ 1476.657597][T24968] short_proxy_write+0x135/0x1a0 [ 1476.662575][T24968] ? __pfx_short_proxy_write+0x10/0x10 [ 1476.668061][T24968] vfs_write+0x2a0/0x11d0 [ 1476.672451][T24968] ? __pfx___mutex_lock+0x10/0x10 [ 1476.677507][T24968] ? __pfx_vfs_write+0x10/0x10 [ 1476.682349][T24968] ? __fget_files+0x20e/0x3c0 [ 1476.687079][T24968] ksys_write+0x12a/0x250 [ 1476.691443][T24968] ? __pfx_ksys_write+0x10/0x10 [ 1476.696336][T24968] do_syscall_64+0xcd/0xf80 [ 1476.700868][T24968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1476.706789][T24968] RIP: 0033:0x7f52f658f7c9 [ 1476.711229][T24968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1476.730854][T24968] RSP: 002b:00007f52f7466038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1476.739445][T24968] RAX: ffffffffffffffda RBX: 00007f52f67e6180 RCX: 00007f52f658f7c9 [ 1476.747441][T24968] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000005 [ 1476.755430][T24968] RBP: 00007f52f6613f91 R08: 0000000000000000 R09: 0000000000000000 [ 1476.763423][T24968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1476.771405][T24968] R13: 00007f52f67e6218 R14: 00007f52f67e6180 R15: 00007ffcdeda3028 [ 1476.779423][T24968] [ 1476.783026][T24968] Kernel Offset: disabled [ 1476.787357][T24968] Rebooting in 86400 seconds..