last executing test programs: 5.697527887s ago: executing program 3 (id=372): select$auto(0x32, 0x0, 0x0, &(0x7f00000001c0)={[0x5, 0x10000, 0xffff, 0x9, 0x6, 0xfffffffffffffffd, 0x1, 0x4, 0x8, 0xfffffffffffffff9, 0x4, 0x10, 0x2, 0x0, 0x6, 0x6]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) connect$auto(0x3, 0x0, 0x54) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d) mmap$auto(0x0, 0x20000a00006, 0x100, 0x91, 0xffffffffffffffff, 0x2ffffffffffe) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, 0x0) mmap$auto(0x0, 0x400008, 0x0, 0x9b72, 0x2, 0x8000) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x7980, 0x6}, 0x2, 0x0, 0x0, 0x8) fcntl$auto(0x0, 0x407, 0x100000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000100), 0x3, 0x2}, 0x800}, 0xffffffff, 0x4008) 4.640996664s ago: executing program 3 (id=377): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f) write$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfffffdef) setresuid$auto(0x0, 0x0, 0xee01) r1 = socket(0x10, 0x2, 0x0) bind$auto(r1, 0x0, 0x68) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x100000000) close_range$auto(0x2, 0x8, 0x0) timer_create$auto(0x0, 0x0, 0x0) timer_create$auto(0x3, 0x0, 0x0) mmap$auto(0x40, 0x400008, 0xdf, 0x18, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ioctl$auto(r0, 0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 4.10219957s ago: executing program 3 (id=379): r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/rto_max\x00', 0x101201, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) lchown$auto(&(0x7f0000000080)='./file0\x00', 0xee01, 0xee00) write$auto(0x3, 0x0, 0x100082) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x101) lseek$auto(0x3, 0x2, 0x4) 4.091655175s ago: executing program 2 (id=380): r0 = socket(0x2b, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, 0x0, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000003fc0), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x42000}, 0x804) close_range$auto(0x2, 0x8, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000180), 0x80a040, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x2, 0x1, 0x0) fcntl$auto(0x3, 0x8, 0x0) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e25, @remote}, 0x6d) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x51}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x80009, 0x0, 0x1, 0x0, 0x4, 0x9}, 0x3}, 0x3, 0x9) sendmsg$auto_SEG6_CMD_SETHMAC(r2, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20008060}, 0x9c1e69dda35d178a) shutdown$auto(0x200000003, 0x2) recvfrom$auto(r0, 0x0, 0x800000000c, 0x1003, 0x0, 0xfffffffffffffffd) 3.902442844s ago: executing program 1 (id=382): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/fail_make_request/space\x00', 0x48981, 0x0) write$auto(r0, &(0x7f0000000200)='0\x00\xa6C\x1b\xad\xb1\x9e\xc8Tt\xa8\x87\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\xaf\x14\x8a\xcf\xe8\xe8,-d\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\xf6\xf1\xe9\x17\xb3\xc1\x13\x00\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3Ch\x03&\x1c\r&\xf9i\xa8\x01\xdbBr\'\x83\'d`\x05\x10\x9d\x8f*E\xfb\x9c\rTD\xa3\xc5\x1bWZ\xb8Q7]E\x84v\x17M\xd3\xf3\x1c\xd4.\vA\xad\x88\x85\xe3vi\xd6', 0x4) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sysfs$auto(0x1, 0x4, 0x41) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x110c230000, 0x0, 0x2000101, 0x3, 0xf000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0x7, "00000000000000e3ffffffffffffff00", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r1, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/xfrm0/router_solicitation_max_interval\x00', 0x80080, 0x0) ioctl$auto(0xffffffffffffffff, 0x40a0ae49, 0xffffffffffffffff) 3.791994093s ago: executing program 2 (id=383): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfffffdef) setresuid$auto(0x0, 0x0, 0xee01) r1 = socket(0x10, 0x2, 0x0) bind$auto(r1, 0x0, 0x68) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x100000000) close_range$auto(0x2, 0x8, 0x0) timer_create$auto(0x0, 0x0, 0x0) timer_create$auto(0x3, 0x0, 0x0) mmap$auto(0x40, 0x400008, 0xdf, 0x18, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ioctl$auto(r0, 0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 3.307379169s ago: executing program 1 (id=384): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f) write$auto(0x3, 0x0, 0xfffffdef) setresuid$auto(0x0, 0x0, 0xee01) r1 = socket(0x10, 0x2, 0x0) bind$auto(r1, 0x0, 0x68) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x100000000) close_range$auto(0x2, 0x8, 0x0) timer_create$auto(0x0, 0x0, 0x0) timer_create$auto(0x3, 0x0, 0x0) mmap$auto(0x40, 0x400008, 0xdf, 0x18, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ioctl$auto(r0, 0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 3.225101455s ago: executing program 0 (id=385): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2b, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, 0x0, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x42000}, 0x804) close_range$auto(0x2, 0x8, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000180), 0x80a040, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x2, 0x1, 0x0) fcntl$auto(0x3, 0x8, 0x0) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e25, @remote}, 0x6d) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x51}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x80009, 0x0, 0x1, 0x0, 0x4, 0x9}, 0x3}, 0x3, 0x9) sendmsg$auto_SEG6_CMD_SETHMAC(r2, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20008060}, 0x9c1e69dda35d178a) shutdown$auto(0x200000003, 0x2) recvfrom$auto(r0, 0x0, 0x800000000c, 0x1003, 0x0, 0xfffffffffffffffd) 3.106855516s ago: executing program 2 (id=386): r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/rto_max\x00', 0x101201, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) lchown$auto(&(0x7f0000000080)='./file0\x00', 0xee01, 0xee00) write$auto(0x3, 0x0, 0x100082) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x101) lseek$auto(0x3, 0x2, 0x4) 2.973016232s ago: executing program 0 (id=387): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = io_uring_setup$auto(0x4, 0x0) close_range$auto(0x2, r0, 0x0) open(0x0, 0x22240, 0x55) fanotify_init$auto(0x8, 0x1) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$auto(0x3, 0x800c6f40, 0xffffffffffffffff) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x7, 0x3, 0x10001, 0x3, 0x5e, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x880, 0x3, 0x948e, 0xffffffffffffffff, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nullb0/queue/scheduler\x00', 0xca002, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) msync$auto(0x1ffff000, 0x1800000000000ff, 0x3) write$auto(0x1, 0x0, 0x80000000) 2.893416566s ago: executing program 3 (id=388): r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/rto_max\x00', 0x101201, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) lchown$auto(&(0x7f0000000080)='./file0\x00', 0xee01, 0xee00) write$auto(0x3, 0x0, 0x100082) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x101) lseek$auto(0x3, 0x2, 0x4) setns(r0, 0x80) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r2 = socket(0xa, 0x801, 0x84) getsockopt$auto(r2, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c) read$auto_nsim_pp_hold_fops_netdev(r0, &(0x7f0000000140)=""/34, 0x22) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x4c40, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) 2.21177195s ago: executing program 1 (id=389): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/fail_make_request/space\x00', 0x48981, 0x0) write$auto(r0, &(0x7f0000000200)='0\x00\xa6C\x1b\xad\xb1\x9e\xc8Tt\xa8\x87\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\xaf\x14\x8a\xcf\xe8\xe8,-d\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\xf6\xf1\xe9\x17\xb3\xc1\x13\x00\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3Ch\x03&\x1c\r&\xf9i\xa8\x01\xdbBr\'\x83\'d`\x05\x10\x9d\x8f*E\xfb\x9c\rTD\xa3\xc5\x1bWZ\xb8Q7]E\x84v\x17M\xd3\xf3\x1c\xd4.\vA\xad\x88\x85\xe3vi\xd6', 0x4) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sysfs$auto(0x1, 0x4, 0x41) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x110c230000, 0x0, 0x2000101, 0x3, 0xf000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0x7, "00000000000000e3ffffffffffffff00", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r1, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/xfrm0/router_solicitation_max_interval\x00', 0x80080, 0x0) ioctl$auto(0xffffffffffffffff, 0x40a0ae49, 0xffffffffffffffff) 1.978404581s ago: executing program 2 (id=390): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000380), 0x10d040, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) r1 = gettid() sendmsg$auto_IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000800) readv$auto(0x3, 0x0, 0x1) tkill$auto(r1, 0x7) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) io_uring_setup$auto(0x401, 0x0) read$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) lseek$auto(0x3, 0xffffffffff800002, 0xe) write$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x9, 0x3, 0x0, 0x6, 0x100000001) timerfd_create$auto(0xfffffffb, 0x7) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) 1.741618312s ago: executing program 0 (id=391): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/fail_make_request/space\x00', 0x48981, 0x0) write$auto(r0, &(0x7f0000000200)='0\x00\xa6C\x1b\xad\xb1\x9e\xc8Tt\xa8\x87\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\xaf\x14\x8a\xcf\xe8\xe8,-d\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\xf6\xf1\xe9\x17\xb3\xc1\x13\x00\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3Ch\x03&\x1c\r&\xf9i\xa8\x01\xdbBr\'\x83\'d`\x05\x10\x9d\x8f*E\xfb\x9c\rTD\xa3\xc5\x1bWZ\xb8Q7]E\x84v\x17M\xd3\xf3\x1c\xd4.\vA\xad\x88\x85\xe3vi\xd6', 0x4) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sysfs$auto(0x1, 0x4, 0x41) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x110c230000, 0x0, 0x2000101, 0x3, 0xf000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0x7, "00000000000000e3ffffffffffffff00", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r1, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/xfrm0/router_solicitation_max_interval\x00', 0x80080, 0x0) ioctl$auto(0xffffffffffffffff, 0x40a0ae49, 0xffffffffffffffff) 1.56783373s ago: executing program 1 (id=392): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000380), 0x10d040, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) r1 = gettid() sendmsg$auto_IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000800) readv$auto(0x3, 0x0, 0x1) tkill$auto(r1, 0x7) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) io_uring_setup$auto(0x401, 0x0) read$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x9, 0x3, 0x0, 0x6, 0x100000001) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) timerfd_create$auto(0xfffffffb, 0x7) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) 1.468248127s ago: executing program 2 (id=393): process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) sendmsg$auto_NL80211_CMD_LEAVE_OCB(0xffffffffffffffff, 0x0, 0x40) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cec4\x00', 0x10b703, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = pidfd_open$auto(0x0, 0x945) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(r2, 0x8, 0x0) brk$auto(0x40008000) open(&(0x7f0000000000)='.\x00', 0xc00, 0x409) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0) pread64$auto(r5, 0x0, 0x800003, 0x270) mlockall$auto(0x7) mprotect$auto(0x110c230000, 0xa588, 0x6) mremap$auto(0x110c231000, 0x0, 0x101, 0x3, 0x0) move_pages$auto(0x0, 0x9, 0x0, 0x0, 0x0, 0x2) msgctl$auto_IPC_RMID(0x1, 0x0, 0x0) r6 = syz_open_procfs$namespace(r0, &(0x7f00000000c0)='ns/ipc\x00') fcntl$auto(r6, 0x402, 0x0) setns(r1, 0x60020000) 1.12968124s ago: executing program 3 (id=394): select$auto(0x32, 0x0, 0x0, &(0x7f00000001c0)={[0x5, 0x10000, 0xffff, 0x9, 0x6, 0xfffffffffffffffd, 0x1, 0x4, 0x8, 0xfffffffffffffff9, 0x4, 0x10, 0x2, 0x0, 0x6, 0x6]}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) socket(0x2, 0x1, 0x106) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) connect$auto(0x3, 0x0, 0x54) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setsockopt$auto(0x400000000000003, 0x28, 0x6, 0x0, 0x56d) mmap$auto(0x0, 0x20000a00006, 0x100, 0x91, 0xffffffffffffffff, 0x2ffffffffffe) r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0) ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, 0x0) mmap$auto(0x0, 0x400008, 0x0, 0x9b72, 0x2, 0x8000) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x7980, 0x6}, 0x2, 0x0, 0x0, 0x8) fcntl$auto(0x0, 0x407, 0x100000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000100), 0x3, 0x2}, 0x800}, 0xffffffff, 0x4008) 1.058022671s ago: executing program 0 (id=395): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = io_uring_setup$auto(0x4, 0x0) close_range$auto(0x2, r0, 0x0) open(0x0, 0x22240, 0x55) fanotify_init$auto(0x8, 0x1) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$auto(0x3, 0x800c6f40, 0xffffffffffffffff) mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x7, 0x3, 0x10001, 0x3, 0x5e, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x880, 0x3, 0x948e, 0xffffffffffffffff, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nullb0/queue/scheduler\x00', 0xca002, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) msync$auto(0x1ffff000, 0x1800000000000ff, 0x3) write$auto(0x1, 0x0, 0x80000000) 877.485393ms ago: executing program 1 (id=396): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfffffdef) setresuid$auto(0x0, 0x0, 0xee01) r1 = socket(0x10, 0x2, 0x0) bind$auto(r1, 0x0, 0x68) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x100000000) close_range$auto(0x2, 0x8, 0x0) timer_create$auto(0x0, 0x0, 0x0) timer_create$auto(0x3, 0x0, 0x0) mmap$auto(0x40, 0x400008, 0xdf, 0x18, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ioctl$auto(r0, 0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 494.742175ms ago: executing program 2 (id=397): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x26, 0x5, 0x8c68) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/mountinfo\x00', 0x28c40, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x101e41, 0x0) r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000340)=""/179, 0xb3) unshare$auto(0x40000080) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r1, 0x0, 0x40000) ioperm$auto(0x84, 0x7, 0x4000008) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr0\x00', 0x60540, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x802, 0x8000009, 0x1, 0x19, 0xffffffffffffffff, 0x100000000000008) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r4, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2b, 0x0) 231.87581ms ago: executing program 0 (id=398): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2b, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, 0x0, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000003fc0), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x804) close_range$auto(0x2, 0x8, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000180), 0x80a040, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x2, 0x1, 0x0) fcntl$auto(0x3, 0x8, 0x0) bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e25, @remote}, 0x6d) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x51}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x80009, 0x0, 0x1, 0x0, 0x4, 0x9}, 0x3}, 0x3, 0x9) sendmsg$auto_SEG6_CMD_SETHMAC(r2, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20008060}, 0x9c1e69dda35d178a) shutdown$auto(0x200000003, 0x2) recvfrom$auto(r0, 0x0, 0x800000000c, 0x1003, 0x0, 0xfffffffffffffffd) 44.389784ms ago: executing program 3 (id=399): bpf$auto(0xaa0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0x3, 0xfd0, 0xa0, 0x2878, 0x8, 0x7, 0x0, 0xfffffffd, 0x1000, 0x2, 0xa, 0xfffffff8, 0x7, 0xf}, 0x660e) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000002b00)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x20900, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffff9}, 0x6, 0xe27c, 0x8) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/consoles\x00', 0x800, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = prctl$auto(0x27, 0x0, 0x0, 0x0, 0x0) pread64$auto(r2, 0x0, 0xd00, 0x2) ioctl$auto_AUTOFS_IOC_SETTIMEOUT32(r0, 0xc0049364, &(0x7f0000000080)=0xfffffffb) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0x82002, 0x0) ioctl$auto_BLKDISCARDZEROES(r4, 0x127c, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x51, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) write$auto(r1, &(0x7f0000000040)='S\x00\x00\x00\xfc\xff\xff\xff', 0x8587) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000480)={'dummy0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r6, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000e80)={0x20, r7, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x20}, 0x1, 0x1000060}, 0x400c080) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000100)={0x14, r7, 0x320, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x8000) 40.706356ms ago: executing program 1 (id=400): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x1, 0x0, 0x8004) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_netdev(&(0x7f00000013c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'}) sendmsg$auto_NETDEV_CMD_BIND_RX(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x10) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/arp_tables_names\x00', 0x40, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r3, 0x1, 0x7ff) ptrace$auto_PTRACE_SECCOMP_GET_METADATA(0x420d, r3, 0x62, 0x27dd) ptrace$auto_PTRACE_GET_RSEQ_CONFIGURATION(0x420f, r3, 0x1000, 0xfff) process_vm_readv$auto(r3, &(0x7f00000001c0)={&(0x7f0000000180)="77d87c0e9a9ccce885045dc4a827b49f", 0x9}, 0x776, &(0x7f0000000200)={&(0x7f0000000280)="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", 0x80000000}, 0x1ff, 0x2) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\b\x00\x00\x00\x00\x00\x00\x00\x01\x88\v\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\b\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3) 0s ago: executing program 0 (id=401): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0xe8) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x8001, 0x7ffffff8, 0x5, 0x7, 0x5, 0x61, 0x103}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) futex$auto(0x0, 0x5, 0xfffff05e, 0x0, 0x0, 0x80000001) gettid() kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.183' (ED25519) to the list of known hosts. [ 73.493306][ T5809] cgroup: Unknown subsys name 'net' [ 73.590016][ T5809] cgroup: Unknown subsys name 'cpuset' [ 73.598747][ T5809] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.049581][ T5809] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 76.894981][ T5833] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.905326][ T5833] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.913113][ T5833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.921427][ T5833] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.930025][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.930542][ T5833] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.939024][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.952807][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.953333][ T5833] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.969040][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.976702][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.986178][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.994241][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.994801][ T5833] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.009246][ T5838] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.009302][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.024107][ T5833] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.025262][ T5838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.039470][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.046989][ T5837] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.546619][ T5822] chnl_net:caif_netlink_parms(): no params data found [ 77.637325][ T5820] chnl_net:caif_netlink_parms(): no params data found [ 77.674816][ T5823] chnl_net:caif_netlink_parms(): no params data found [ 77.820252][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.827993][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.835170][ T5822] bridge_slave_0: entered allmulticast mode [ 77.842520][ T5822] bridge_slave_0: entered promiscuous mode [ 77.851067][ T5821] chnl_net:caif_netlink_parms(): no params data found [ 77.882472][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.889893][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.897122][ T5822] bridge_slave_1: entered allmulticast mode [ 77.904223][ T5822] bridge_slave_1: entered promiscuous mode [ 77.937209][ T5820] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.944359][ T5820] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.952621][ T5820] bridge_slave_0: entered allmulticast mode [ 77.959787][ T5820] bridge_slave_0: entered promiscuous mode [ 78.013445][ T5820] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.020810][ T5820] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.028044][ T5820] bridge_slave_1: entered allmulticast mode [ 78.035016][ T5820] bridge_slave_1: entered promiscuous mode [ 78.055005][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.064940][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.072182][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.080115][ T5823] bridge_slave_0: entered allmulticast mode [ 78.087574][ T5823] bridge_slave_0: entered promiscuous mode [ 78.113913][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.131696][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.138954][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.146097][ T5823] bridge_slave_1: entered allmulticast mode [ 78.153434][ T5823] bridge_slave_1: entered promiscuous mode [ 78.207194][ T5822] team0: Port device team_slave_0 added [ 78.215506][ T5820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.244696][ T5822] team0: Port device team_slave_1 added [ 78.252538][ T5820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.274608][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.304285][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.311547][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.318820][ T5821] bridge_slave_0: entered allmulticast mode [ 78.325991][ T5821] bridge_slave_0: entered promiscuous mode [ 78.335870][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.370683][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.377844][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.403835][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.424194][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.431655][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.439109][ T5821] bridge_slave_1: entered allmulticast mode [ 78.446102][ T5821] bridge_slave_1: entered promiscuous mode [ 78.463203][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.470235][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.496335][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.508991][ T5820] team0: Port device team_slave_0 added [ 78.525627][ T5823] team0: Port device team_slave_0 added [ 78.544306][ T5820] team0: Port device team_slave_1 added [ 78.563134][ T5823] team0: Port device team_slave_1 added [ 78.603332][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.638959][ T5822] hsr_slave_0: entered promiscuous mode [ 78.645238][ T5822] hsr_slave_1: entered promiscuous mode [ 78.654750][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.673657][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.680837][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.707097][ T5820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.719938][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.728477][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.754560][ T5820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.776397][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.783348][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.809432][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.822161][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.829274][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.855219][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.907920][ T5821] team0: Port device team_slave_0 added [ 78.952879][ T5821] team0: Port device team_slave_1 added [ 79.009818][ T5823] hsr_slave_0: entered promiscuous mode [ 79.016698][ T5823] hsr_slave_1: entered promiscuous mode [ 79.022754][ T5823] debugfs: 'hsr0' already exists in 'hsr' [ 79.028795][ T5823] Cannot create hsr debugfs directory [ 79.037446][ T51] Bluetooth: hci0: command tx timeout [ 79.059577][ T5820] hsr_slave_0: entered promiscuous mode [ 79.066134][ T5820] hsr_slave_1: entered promiscuous mode [ 79.072519][ T5820] debugfs: 'hsr0' already exists in 'hsr' [ 79.078363][ T5820] Cannot create hsr debugfs directory [ 79.091284][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.098296][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.116596][ T5838] Bluetooth: hci1: command tx timeout [ 79.124400][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.130331][ T5831] Bluetooth: hci2: command tx timeout [ 79.140469][ T51] Bluetooth: hci3: command tx timeout [ 79.153700][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.160871][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.186891][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.309732][ T5821] hsr_slave_0: entered promiscuous mode [ 79.315982][ T5821] hsr_slave_1: entered promiscuous mode [ 79.322353][ T5821] debugfs: 'hsr0' already exists in 'hsr' [ 79.328131][ T5821] Cannot create hsr debugfs directory [ 79.653163][ T5822] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 79.672383][ T5822] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 79.690922][ T5822] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 79.714472][ T5822] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 79.777304][ T5820] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 79.792991][ T5820] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 79.802862][ T5820] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 79.813930][ T5820] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 79.901313][ T5823] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 79.928617][ T5823] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 79.957329][ T5823] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 79.968645][ T5823] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.045135][ T5821] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.065824][ T5821] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.080087][ T5821] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.095107][ T5821] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.128032][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.168508][ T5822] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.181155][ T5820] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.221023][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.228257][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.242583][ T5820] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.263324][ T1044] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.270523][ T1044] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.294787][ T1044] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.301982][ T1044] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.315578][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.322782][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.429384][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.465960][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.519939][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.527182][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.546129][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.553378][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.568597][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.688168][ T5821] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.734531][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.741698][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.771007][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.778236][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.850883][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.047037][ T5822] veth0_vlan: entered promiscuous mode [ 81.080497][ T5822] veth1_vlan: entered promiscuous mode [ 81.116489][ T51] Bluetooth: hci0: command tx timeout [ 81.122108][ T5820] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.162124][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.193499][ T5822] veth0_macvtap: entered promiscuous mode [ 81.199564][ T51] Bluetooth: hci2: command tx timeout [ 81.199639][ T5831] Bluetooth: hci1: command tx timeout [ 81.210733][ T51] Bluetooth: hci3: command tx timeout [ 81.239419][ T5822] veth1_macvtap: entered promiscuous mode [ 81.313121][ T5823] veth0_vlan: entered promiscuous mode [ 81.344740][ T5820] veth0_vlan: entered promiscuous mode [ 81.353186][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.367645][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.385078][ T5823] veth1_vlan: entered promiscuous mode [ 81.407779][ T5820] veth1_vlan: entered promiscuous mode [ 81.419537][ T58] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.429821][ T58] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.455514][ T58] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.464431][ T58] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.497919][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.508034][ T5823] veth0_macvtap: entered promiscuous mode [ 81.521552][ T5823] veth1_macvtap: entered promiscuous mode [ 81.574879][ T5820] veth0_macvtap: entered promiscuous mode [ 81.585400][ T5820] veth1_macvtap: entered promiscuous mode [ 81.630089][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.647195][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.675229][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.732727][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.758008][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.801884][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.819843][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.833290][ T5821] veth0_vlan: entered promiscuous mode [ 81.841373][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.879669][ T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.891960][ T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.906046][ T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.928457][ T5821] veth1_vlan: entered promiscuous mode [ 81.942602][ T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.955170][ T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.994681][ T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.011872][ T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.045129][ T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.062832][ T5822] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 82.158756][ T5821] veth0_macvtap: entered promiscuous mode [ 82.201985][ T5821] veth1_macvtap: entered promiscuous mode [ 82.275551][ T1037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.296951][ T1037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.320712][ T5916] netlink: 'syz.0.1': attribute type 7 has an invalid length. [ 82.338583][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.346518][ T5916] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1'. [ 82.360629][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.407722][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.417561][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.424900][ T1150] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.467492][ T756] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.503944][ T756] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.515026][ T756] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.543213][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.554758][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.569196][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.587385][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.745760][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.763336][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.866044][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.885165][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.196755][ T51] Bluetooth: hci0: command tx timeout [ 83.276982][ T51] Bluetooth: hci1: command tx timeout [ 83.277418][ T5831] Bluetooth: hci3: command tx timeout [ 83.282499][ T51] Bluetooth: hci2: command tx timeout [ 83.347008][ T5928] zswap: compressor not available [ 83.582841][ T5932] zswap: compressor not available [ 83.737496][ T5947] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 84.020734][ T5947] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 84.105273][ T5957] smpboot: CPU 1 is now offline [ 84.115128][ T5955] netlink: 'syz.1.14': attribute type 2 has an invalid length. [ 84.411632][ T5963] netlink: 25 bytes leftover after parsing attributes in process `syz.1.16'. [ 84.427953][ T29] cfg80211: failed to load regulatory.db [ 84.651389][ T5969] Zero length message leads to an empty skb [ 85.237270][ T5982] FAULT_INJECTION: forcing a failure. [ 85.237270][ T5982] name failslab, interval 1, probability 0, space 0, times 1 [ 85.279492][ T51] Bluetooth: hci0: command tx timeout [ 85.353550][ T5982] CPU: 0 UID: 0 PID: 5982 Comm: syz.2.22 Not tainted syzkaller #0 PREEMPT(full) [ 85.353574][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 85.353589][ T5982] Call Trace: [ 85.353594][ T5982] [ 85.353603][ T5982] dump_stack_lvl+0x100/0x190 [ 85.353633][ T5982] should_fail_ex.cold+0x5/0xa [ 85.353651][ T5982] should_failslab+0xc2/0x120 [ 85.353673][ T5982] __kmalloc_cache_noprof+0x7a/0x6f0 [ 85.353689][ T5982] ? snd_pcm_oss_change_params_locked+0x81c/0x39f0 [ 85.353711][ T5982] ? _snd_pcm_hw_param_min+0x1ea/0x670 [ 85.353734][ T5982] snd_pcm_oss_change_params_locked+0x81c/0x39f0 [ 85.353756][ T5982] ? rcu_is_watching+0x12/0xc0 [ 85.353776][ T5982] ? trace_contention_end+0x140/0x180 [ 85.353798][ T5982] ? snd_pcm_oss_write+0x49a/0xa30 [ 85.353819][ T5982] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 85.353839][ T5982] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 85.353864][ T5982] ? __pfx___mutex_lock+0x10/0x10 [ 85.353886][ T5982] ? futex_wake+0x456/0x530 [ 85.353909][ T5982] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 85.353938][ T5982] snd_pcm_oss_write+0x4bb/0xa30 [ 85.353962][ T5982] ? bpf_lsm_file_permission+0x9/0x10 [ 85.353982][ T5982] ? security_file_permission+0x76/0x210 [ 85.354003][ T5982] vfs_write+0x2aa/0x1070 [ 85.354023][ T5982] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 85.354046][ T5982] ? __pfx_vfs_write+0x10/0x10 [ 85.354064][ T5982] ? find_held_lock+0x2b/0x80 [ 85.354086][ T5982] ? __fget_files+0x215/0x3d0 [ 85.354105][ T5982] ? __fget_files+0x215/0x3d0 [ 85.354127][ T5982] ? __fget_files+0x21f/0x3d0 [ 85.354152][ T5982] ksys_write+0x12a/0x250 [ 85.354171][ T5982] ? __pfx_ksys_write+0x10/0x10 [ 85.354195][ T5982] do_syscall_64+0x106/0xf80 [ 85.354210][ T5982] ? clear_bhb_loop+0x40/0x90 [ 85.354228][ T5982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.354243][ T5982] RIP: 0033:0x7fc666f9bf79 [ 85.354257][ T5982] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 85.354271][ T5982] RSP: 002b:00007fc667e3d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 85.354289][ T5982] RAX: ffffffffffffffda RBX: 00007fc667215fa0 RCX: 00007fc666f9bf79 [ 85.354299][ T5982] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000002 [ 85.354307][ T5982] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 85.354316][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 85.354325][ T5982] R13: 00007fc667216038 R14: 00007fc667215fa0 R15: 00007ffd2de173d8 [ 85.354344][ T5982] [ 85.948219][ T51] Bluetooth: hci1: command tx timeout [ 85.953724][ T51] Bluetooth: hci3: command tx timeout [ 85.963834][ T51] Bluetooth: hci2: command tx timeout [ 86.347428][ T5985] FAULT_INJECTION: forcing a failure. [ 86.347428][ T5985] name failslab, interval 1, probability 0, space 0, times 0 [ 86.347456][ T5985] CPU: 0 UID: 0 PID: 5985 Comm: syz.2.24 Not tainted syzkaller #0 PREEMPT(full) [ 86.347474][ T5985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 86.347483][ T5985] Call Trace: [ 86.347488][ T5985] [ 86.347494][ T5985] dump_stack_lvl+0x100/0x190 [ 86.347521][ T5985] should_fail_ex.cold+0x5/0xa [ 86.347539][ T5985] should_failslab+0xc2/0x120 [ 86.347561][ T5985] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 86.347580][ T5985] ? alloc_inode+0x183/0x250 [ 86.347595][ T5985] ? stashed_dentry_get+0x10a/0x2c0 [ 86.347617][ T5985] ? stashed_dentry_get+0x10a/0x2c0 [ 86.347641][ T5985] alloc_inode+0x183/0x250 [ 86.347656][ T5985] path_from_stashed+0x25b/0x750 [ 86.347676][ T5985] ? do_raw_spin_unlock+0x145/0x1e0 [ 86.347700][ T5985] ns_get_path+0x60/0x80 [ 86.347721][ T5985] proc_ns_get_link+0x121/0x230 [ 86.347735][ T5985] ? __pfx_proc_ns_get_link+0x10/0x10 [ 86.347752][ T5985] ? atime_needs_update+0x8b/0x6b0 [ 86.347770][ T5985] pick_link+0xd17/0x13c0 [ 86.347787][ T5985] ? __pfx_proc_ns_get_link+0x10/0x10 [ 86.347804][ T5985] step_into_slowpath+0x9ba/0xf90 [ 86.347827][ T5985] ? __pfx_step_into_slowpath+0x10/0x10 [ 86.347846][ T5985] ? find_held_lock+0x2b/0x80 [ 86.347873][ T5985] path_openat+0xf95/0x31a0 [ 86.347899][ T5985] ? __pfx_path_openat+0x10/0x10 [ 86.347926][ T5985] do_file_open+0x20e/0x430 [ 86.347948][ T5985] ? __pfx_do_file_open+0x10/0x10 [ 86.347981][ T5985] ? alloc_fd+0x476/0x790 [ 86.348003][ T5985] ? do_getname+0x191/0x390 [ 86.348019][ T5985] do_sys_openat2+0x10d/0x1e0 [ 86.348034][ T5985] ? __pfx_do_sys_openat2+0x10/0x10 [ 86.348051][ T5985] ? __fget_files+0x21f/0x3d0 [ 86.348074][ T5985] __x64_sys_openat+0x12d/0x210 [ 86.348100][ T5985] ? __pfx___x64_sys_openat+0x10/0x10 [ 86.348123][ T5985] do_syscall_64+0x106/0xf80 [ 86.348140][ T5985] ? clear_bhb_loop+0x40/0x90 [ 86.348158][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.348173][ T5985] RIP: 0033:0x7fc666f5c84e [ 86.348187][ T5985] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 86.348201][ T5985] RSP: 002b:00007fc667e3cec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 86.348215][ T5985] RAX: ffffffffffffffda RBX: 00007fc667e3d6c0 RCX: 00007fc666f5c84e [ 86.348224][ T5985] RDX: 0000000000000002 RSI: 00007fc667e3cf90 RDI: ffffffffffffff9c [ 86.348233][ T5985] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 86.348242][ T5985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 86.348251][ T5985] R13: 00007fc667216038 R14: 00007fc667215fa0 R15: 00007ffd2de173d8 [ 86.348270][ T5985] [ 87.412508][ T6012] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 87.601230][ T6017] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 88.126811][ T6024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.34'. [ 88.208764][ T6024] netlink: 'syz.3.34': attribute type 1 has an invalid length. [ 88.296148][ T6024] netlink: 13 bytes leftover after parsing attributes in process `syz.3.34'. [ 88.914447][ T6056] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 88.932377][ T6054] FAULT_INJECTION: forcing a failure. [ 88.932377][ T6054] name failslab, interval 1, probability 0, space 0, times 0 [ 88.989553][ T6054] CPU: 0 UID: 0 PID: 6054 Comm: syz.3.41 Not tainted syzkaller #0 PREEMPT(full) [ 88.989576][ T6054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 88.989585][ T6054] Call Trace: [ 88.989590][ T6054] [ 88.989596][ T6054] dump_stack_lvl+0x100/0x190 [ 88.989624][ T6054] should_fail_ex.cold+0x5/0xa [ 88.989642][ T6054] ? snd_pcm_plugin_build+0x434/0x650 [ 88.989674][ T6054] should_failslab+0xc2/0x120 [ 88.989697][ T6054] __kmalloc_noprof+0xe0/0x850 [ 88.989720][ T6054] snd_pcm_plugin_build+0x434/0x650 [ 88.989745][ T6054] snd_pcm_plugin_build_rate+0x27c/0x760 [ 88.989763][ T6054] ? __pfx_snd_pcm_plugin_build_rate+0x10/0x10 [ 88.989780][ T6054] ? snd_pcm_hw_params+0x262/0x1cb0 [ 88.989798][ T6054] snd_pcm_plug_format_plugins+0x788/0x1430 [ 88.989823][ T6054] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 88.989848][ T6054] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 88.989875][ T6054] snd_pcm_oss_change_params_locked+0x2e3c/0x39f0 [ 88.989905][ T6054] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 88.989926][ T6054] ? __pfx___mutex_lock+0x10/0x10 [ 88.989956][ T6054] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 88.989981][ T6054] snd_pcm_oss_ioctl+0x1c08/0x3720 [ 88.990002][ T6054] ? __fget_files+0x215/0x3d0 [ 88.990022][ T6054] ? hook_file_ioctl_common+0x146/0x410 [ 88.990046][ T6054] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 88.990069][ T6054] ? __fget_files+0x21f/0x3d0 [ 88.990091][ T6054] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 88.990113][ T6054] __x64_sys_ioctl+0x18e/0x210 [ 88.990132][ T6054] do_syscall_64+0x106/0xf80 [ 88.990146][ T6054] ? clear_bhb_loop+0x40/0x90 [ 88.990165][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 88.990179][ T6054] RIP: 0033:0x7fd9d039bf79 [ 88.990193][ T6054] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 88.990207][ T6054] RSP: 002b:00007fd9d1171028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 88.990221][ T6054] RAX: ffffffffffffffda RBX: 00007fd9d0615fa0 RCX: 00007fd9d039bf79 [ 88.990231][ T6054] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 88.990239][ T6054] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 88.990247][ T6054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 88.990255][ T6054] R13: 00007fd9d0616038 R14: 00007fd9d0615fa0 R15: 00007ffeddcdbc58 [ 88.990274][ T6054] [ 90.804011][ T6079] mmap: syz.3.46 (6079) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 90.885682][ T6077] process 'syz.2.48' launched './file0' with NULL argv: empty string added [ 90.907802][ T6081] FAULT_INJECTION: forcing a failure. [ 90.907802][ T6081] name failslab, interval 1, probability 0, space 0, times 0 [ 90.968564][ T6081] CPU: 0 UID: 0 PID: 6081 Comm: syz.0.50 Not tainted syzkaller #0 PREEMPT(full) [ 90.968591][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 90.968601][ T6081] Call Trace: [ 90.968606][ T6081] [ 90.968613][ T6081] dump_stack_lvl+0x100/0x190 [ 90.968640][ T6081] should_fail_ex.cold+0x5/0xa [ 90.968657][ T6081] ? vhost_dev_set_owner+0x287/0xa30 [ 90.968676][ T6081] should_failslab+0xc2/0x120 [ 90.968699][ T6081] __kmalloc_noprof+0xe0/0x850 [ 90.968722][ T6081] vhost_dev_set_owner+0x287/0xa30 [ 90.968747][ T6081] vhost_dev_ioctl+0x521/0xe20 [ 90.968765][ T6081] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 90.968789][ T6081] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 90.968814][ T6081] vhost_vsock_dev_ioctl+0x320/0xb60 [ 90.968832][ T6081] ? __fget_files+0x215/0x3d0 [ 90.968850][ T6081] ? hook_file_ioctl_common+0x146/0x410 [ 90.968874][ T6081] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 90.968894][ T6081] ? __fget_files+0x21f/0x3d0 [ 90.968916][ T6081] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 90.968935][ T6081] __x64_sys_ioctl+0x18e/0x210 [ 90.968954][ T6081] do_syscall_64+0x106/0xf80 [ 90.968970][ T6081] ? clear_bhb_loop+0x40/0x90 [ 90.968989][ T6081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.969005][ T6081] RIP: 0033:0x7ff633f9bf79 [ 90.969019][ T6081] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 90.969032][ T6081] RSP: 002b:00007ff634d8e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 90.969047][ T6081] RAX: ffffffffffffffda RBX: 00007ff634215fa0 RCX: 00007ff633f9bf79 [ 90.969056][ T6081] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000003 [ 90.969064][ T6081] RBP: 00007ff6340327e0 R08: 0000000000000000 R09: 0000000000000000 [ 90.969073][ T6081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 90.969081][ T6081] R13: 00007ff634216038 R14: 00007ff634215fa0 R15: 00007ffc07b83848 [ 90.969100][ T6081] [ 91.878053][ T6097] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 92.128351][ T6089] netlink: 24 bytes leftover after parsing attributes in process `syz.0.52'. [ 92.289173][ T6097] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 92.991765][ T6115] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 syzkaller syzkaller login: [ 93.295528][ T6121] netlink: 8 bytes leftover after parsing attributes in process `syz.2.61'. [ 94.494796][ T6149] bridge0: port 3(gretap0) entered blocking state [ 94.522361][ T6149] bridge0: port 3(gretap0) entered disabled state [ 94.549918][ T6149] gretap0: entered allmulticast mode [ 94.578830][ T6149] FAULT_INJECTION: forcing a failure. [ 94.578830][ T6149] name failslab, interval 1, probability 0, space 0, times 0 [ 94.630120][ T6149] CPU: 0 UID: 0 PID: 6149 Comm: syz.1.66 Not tainted syzkaller #0 PREEMPT(full) [ 94.630146][ T6149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 94.630156][ T6149] Call Trace: [ 94.630162][ T6149] [ 94.630169][ T6149] dump_stack_lvl+0x100/0x190 [ 94.630195][ T6149] should_fail_ex.cold+0x5/0xa [ 94.630213][ T6149] should_failslab+0xc2/0x120 [ 94.630235][ T6149] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 94.630255][ T6149] ? __kernfs_new_node+0xd2/0x960 [ 94.630280][ T6149] __kernfs_new_node+0xd2/0x960 [ 94.630298][ T6149] ? __pfx___kernfs_new_node+0x10/0x10 [ 94.630318][ T6149] ? find_held_lock+0x2b/0x80 [ 94.630340][ T6149] ? kernfs_root+0xee/0x2a0 [ 94.630354][ T6149] ? kernfs_root+0xee/0x2a0 [ 94.630373][ T6149] kernfs_new_node+0x11b/0x1a0 [ 94.630393][ T6149] __kernfs_create_file+0x53/0x350 [ 94.630416][ T6149] sysfs_add_file_mode_ns+0x207/0x3c0 [ 94.630443][ T6149] sysfs_create_file_ns+0x145/0x1e0 [ 94.630466][ T6149] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 94.630487][ T6149] ? kernfs_create_link+0x1bd/0x240 [ 94.630508][ T6149] ? kernfs_put+0x3f/0x60 [ 94.630522][ T6149] ? sysfs_do_create_link_sd+0xbb/0x140 [ 94.630540][ T6149] br_sysfs_addif+0xe4/0x210 [ 94.630559][ T6149] br_add_if+0x701/0x1b40 [ 94.630575][ T6149] ? security_capable+0x80/0x260 [ 94.630598][ T6149] add_del_if+0x114/0x160 [ 94.630615][ T6149] br_dev_siocdevprivate+0x8ac/0x1650 [ 94.630632][ T6149] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 94.630655][ T6149] ? lock_acquire+0x1cf/0x380 [ 94.630679][ T6149] ? netdev_name_node_lookup+0x107/0x150 [ 94.630700][ T6149] ? __mutex_lock+0x26a/0x1b90 [ 94.630719][ T6149] dev_ifsioc+0xc1e/0x1e90 [ 94.630735][ T6149] ? __pfx_dev_ifsioc+0x10/0x10 [ 94.630747][ T6149] ? __pfx___mutex_lock+0x10/0x10 [ 94.630769][ T6149] ? dev_load+0x8e/0x240 [ 94.630799][ T6149] ? dev_load+0x8e/0x240 [ 94.630825][ T6149] dev_ioctl+0x70e/0x1070 [ 94.630841][ T6149] sock_ioctl+0x494/0x6b0 [ 94.630862][ T6149] ? __pfx_sock_ioctl+0x10/0x10 [ 94.630881][ T6149] ? hook_file_ioctl_common+0x146/0x410 [ 94.630907][ T6149] ? __fget_files+0x21f/0x3d0 [ 94.630929][ T6149] ? __pfx_sock_ioctl+0x10/0x10 [ 94.630950][ T6149] __x64_sys_ioctl+0x18e/0x210 [ 94.630969][ T6149] do_syscall_64+0x106/0xf80 [ 94.630984][ T6149] ? clear_bhb_loop+0x40/0x90 [ 94.631002][ T6149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 94.631017][ T6149] RIP: 0033:0x7fc46e99bf79 [ 94.631031][ T6149] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 94.631045][ T6149] RSP: 002b:00007fc46f914028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 94.631059][ T6149] RAX: ffffffffffffffda RBX: 00007fc46ec16090 RCX: 00007fc46e99bf79 [ 94.631069][ T6149] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 94.631077][ T6149] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 94.631086][ T6149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 94.631094][ T6149] R13: 00007fc46ec16128 R14: 00007fc46ec16090 R15: 00007ffd11a6ccb8 [ 94.631114][ T6149] [ 94.942832][ T6149] gretap0: left allmulticast mode [ 95.221862][ T6141] netlink: 24 bytes leftover after parsing attributes in process `syz.0.65'. syzkaller syzkaller login: [ 96.480939][ T6146] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 96.537863][ T6146] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 96.638100][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 96.704307][ T6146] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 96.738681][ T6146] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 96.768045][ T6146] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 96.810513][ T6146] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 96.850711][ T6146] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 96.882459][ T6146] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 96.915612][ T6146] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 96.946962][ T6146] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 96.986783][ T6146] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 97.035377][ T6146] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 98.415483][ T6205] netlink: 24 bytes leftover after parsing attributes in process `syz.3.77'. [ 98.716499][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 98.724948][ T6229] bridge0: port 3(gretap0) entered blocking state [ 98.797925][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 98.858161][ T6229] bridge0: port 3(gretap0) entered disabled state [ 98.876556][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 98.945960][ T6229] gretap0: entered allmulticast mode [ 98.957417][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 99.031007][ T6229] FAULT_INJECTION: forcing a failure. [ 99.031007][ T6229] name failslab, interval 1, probability 0, space 0, times 0 [ 99.171108][ T6229] CPU: 0 UID: 0 PID: 6229 Comm: syz.2.79 Not tainted syzkaller #0 PREEMPT(full) [ 99.171132][ T6229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 99.171144][ T6229] Call Trace: [ 99.171150][ T6229] [ 99.171156][ T6229] dump_stack_lvl+0x100/0x190 [ 99.171183][ T6229] should_fail_ex.cold+0x5/0xa [ 99.171202][ T6229] should_failslab+0xc2/0x120 [ 99.171224][ T6229] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 99.171242][ T6229] ? __kernfs_new_node+0xd2/0x960 [ 99.171257][ T6229] ? kstrdup+0xb3/0xe0 [ 99.171279][ T6229] __kernfs_new_node+0xd2/0x960 [ 99.171297][ T6229] ? __pfx___kernfs_new_node+0x10/0x10 [ 99.171317][ T6229] ? find_held_lock+0x2b/0x80 [ 99.171338][ T6229] ? kernfs_root+0xee/0x2a0 [ 99.171351][ T6229] ? kernfs_root+0xee/0x2a0 [ 99.171370][ T6229] kernfs_new_node+0x11b/0x1a0 [ 99.171390][ T6229] kernfs_create_link+0xcc/0x240 [ 99.171412][ T6229] sysfs_do_create_link_sd+0x90/0x140 [ 99.171428][ T6229] sysfs_create_link+0x61/0xc0 [ 99.171443][ T6229] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 99.171470][ T6229] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 99.171501][ T6229] __netdev_upper_dev_link+0x413/0x7e0 [ 99.171524][ T6229] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 99.171543][ T6229] ? kernfs_root+0xf8/0x2a0 [ 99.171559][ T6229] ? kernfs_add_one+0x214/0x850 [ 99.171580][ T6229] netdev_master_upper_dev_link+0x9f/0xd0 [ 99.171600][ T6229] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 99.171622][ T6229] ? lockdep_rtnl_is_held+0x26/0x40 [ 99.171641][ T6229] ? netdev_is_rx_handler_busy+0x83/0x140 [ 99.171660][ T6229] br_add_if+0x9fd/0x1b40 [ 99.171677][ T6229] ? security_capable+0x80/0x260 [ 99.171699][ T6229] add_del_if+0x114/0x160 [ 99.171715][ T6229] br_dev_siocdevprivate+0x8ac/0x1650 [ 99.171733][ T6229] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 99.171757][ T6229] ? lock_acquire+0x1cf/0x380 [ 99.171781][ T6229] ? netdev_name_node_lookup+0x107/0x150 [ 99.171802][ T6229] ? __mutex_lock+0x26a/0x1b90 [ 99.171820][ T6229] dev_ifsioc+0xc1e/0x1e90 [ 99.171836][ T6229] ? __pfx_dev_ifsioc+0x10/0x10 [ 99.171848][ T6229] ? __pfx___mutex_lock+0x10/0x10 [ 99.171871][ T6229] ? dev_load+0x8e/0x240 [ 99.171891][ T6229] ? dev_load+0x8e/0x240 [ 99.171916][ T6229] dev_ioctl+0x70e/0x1070 [ 99.171931][ T6229] sock_ioctl+0x494/0x6b0 [ 99.171952][ T6229] ? __pfx_sock_ioctl+0x10/0x10 [ 99.171970][ T6229] ? hook_file_ioctl_common+0x146/0x410 [ 99.171997][ T6229] ? __fget_files+0x21f/0x3d0 [ 99.172029][ T6229] ? __pfx_sock_ioctl+0x10/0x10 [ 99.172050][ T6229] __x64_sys_ioctl+0x18e/0x210 [ 99.172071][ T6229] do_syscall_64+0x106/0xf80 [ 99.172090][ T6229] ? clear_bhb_loop+0x40/0x90 [ 99.172108][ T6229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 99.172124][ T6229] RIP: 0033:0x7fc666f9bf79 [ 99.172138][ T6229] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 99.172152][ T6229] RSP: 002b:00007fc667dfb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 99.172166][ T6229] RAX: ffffffffffffffda RBX: 00007fc667216180 RCX: 00007fc666f9bf79 [ 99.172176][ T6229] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 99.172184][ T6229] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 99.172193][ T6229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 99.172202][ T6229] R13: 00007fc667216218 R14: 00007fc667216180 R15: 00007ffd2de173d8 [ 99.172222][ T6229] [ 100.091855][ T6229] gretap0: left allmulticast mode syzkaller syzkaller login: [ 100.765778][ T6251] No such timeout policy "" [ 100.780523][ T6251] netlink: Failed to associated timeout policy '' [ 100.796440][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 100.878415][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 100.957142][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 101.038304][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 101.179296][ T6261] FAULT_INJECTION: forcing a failure. [ 101.179296][ T6261] name failslab, interval 1, probability 0, space 0, times 0 [ 101.250553][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.3.86 Not tainted syzkaller #0 PREEMPT(full) [ 101.250577][ T6261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 101.250587][ T6261] Call Trace: [ 101.250593][ T6261] [ 101.250599][ T6261] dump_stack_lvl+0x100/0x190 [ 101.250626][ T6261] should_fail_ex.cold+0x5/0xa [ 101.250645][ T6261] should_failslab+0xc2/0x120 [ 101.250667][ T6261] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 101.250686][ T6261] ? do_getname+0x35/0x390 [ 101.250704][ T6261] do_getname+0x35/0x390 [ 101.250721][ T6261] do_sys_openat2+0xc5/0x1e0 [ 101.250737][ T6261] ? __pfx_do_sys_openat2+0x10/0x10 [ 101.250759][ T6261] __x64_sys_openat+0x12d/0x210 [ 101.250775][ T6261] ? __pfx___x64_sys_openat+0x10/0x10 [ 101.250798][ T6261] do_syscall_64+0x106/0xf80 [ 101.250814][ T6261] ? clear_bhb_loop+0x40/0x90 [ 101.250831][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.250846][ T6261] RIP: 0033:0x7fd9d039bf79 [ 101.250859][ T6261] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 101.250873][ T6261] RSP: 002b:00007fd9d1171028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 101.250887][ T6261] RAX: ffffffffffffffda RBX: 00007fd9d0615fa0 RCX: 00007fd9d039bf79 [ 101.250897][ T6261] RDX: 0000000000080080 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 101.250914][ T6261] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 101.250923][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 101.250931][ T6261] R13: 00007fd9d0616038 R14: 00007fd9d0615fa0 R15: 00007ffeddcdbc58 [ 101.250950][ T6261] syzkaller syzkaller login: [ 102.648843][ T6287] bridge0: port 3(gretap0) entered blocking state [ 102.722976][ T6287] bridge0: port 3(gretap0) entered disabled state [ 102.795357][ T6287] gretap0: entered allmulticast mode [ 102.874232][ T6287] FAULT_INJECTION: forcing a failure. [ 102.874232][ T6287] name failslab, interval 1, probability 0, space 0, times 0 [ 102.957175][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 103.038853][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 103.095651][ T6287] CPU: 0 UID: 0 PID: 6287 Comm: syz.1.91 Not tainted syzkaller #0 PREEMPT(full) [ 103.095674][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 103.095683][ T6287] Call Trace: [ 103.095688][ T6287] [ 103.095694][ T6287] dump_stack_lvl+0x100/0x190 [ 103.095721][ T6287] should_fail_ex.cold+0x5/0xa [ 103.095739][ T6287] should_failslab+0xc2/0x120 [ 103.095769][ T6287] __kmalloc_cache_noprof+0x7a/0x6f0 [ 103.095787][ T6287] ? __netdev_adjacent_dev_insert+0x22b/0xbf0 [ 103.095815][ T6287] ? __pfx_ib_device_get_by_netdev+0x10/0x10 [ 103.095836][ T6287] __netdev_adjacent_dev_insert+0x22b/0xbf0 [ 103.095861][ T6287] ? ip6_route_dev_notify+0xe4/0x750 [ 103.095876][ T6287] ? ndisc_netdev_event+0xa1/0x560 [ 103.095897][ T6287] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 103.095920][ T6287] ? notifier_call_chain+0x34c/0x420 [ 103.095945][ T6287] __netdev_upper_dev_link+0x3d8/0x7e0 [ 103.095966][ T6287] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 103.095987][ T6287] ? kernfs_root+0xf8/0x2a0 [ 103.096004][ T6287] ? kernfs_add_one+0x214/0x850 [ 103.096025][ T6287] netdev_master_upper_dev_link+0x9f/0xd0 [ 103.096045][ T6287] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 103.096066][ T6287] ? lockdep_rtnl_is_held+0x26/0x40 [ 103.096086][ T6287] ? netdev_is_rx_handler_busy+0x83/0x140 [ 103.096106][ T6287] br_add_if+0x9fd/0x1b40 [ 103.096122][ T6287] ? security_capable+0x80/0x260 [ 103.096147][ T6287] add_del_if+0x114/0x160 [ 103.096163][ T6287] br_dev_siocdevprivate+0x8ac/0x1650 [ 103.096181][ T6287] ? __lock_acquire+0x4a5/0x2630 [ 103.096206][ T6287] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 103.096228][ T6287] ? do_raw_spin_lock+0x128/0x260 [ 103.096252][ T6287] ? mark_held_locks+0x40/0x70 [ 103.096272][ T6287] ? netdev_name_node_lookup+0x107/0x150 [ 103.096293][ T6287] ? __mutex_lock+0x26a/0x1b90 [ 103.096313][ T6287] dev_ifsioc+0xc1e/0x1e90 [ 103.096329][ T6287] ? __pfx_dev_ifsioc+0x10/0x10 [ 103.096349][ T6287] ? __pfx___mutex_lock+0x10/0x10 [ 103.096377][ T6287] ? dev_load+0x8e/0x240 [ 103.096399][ T6287] ? dev_load+0x8e/0x240 [ 103.096427][ T6287] dev_ioctl+0x70e/0x1070 [ 103.096444][ T6287] sock_ioctl+0x494/0x6b0 [ 103.096465][ T6287] ? __pfx_sock_ioctl+0x10/0x10 [ 103.096486][ T6287] ? hook_file_ioctl_common+0x146/0x410 [ 103.096517][ T6287] ? __fget_files+0x21f/0x3d0 [ 103.096542][ T6287] ? __pfx_sock_ioctl+0x10/0x10 [ 103.096563][ T6287] __x64_sys_ioctl+0x18e/0x210 [ 103.096585][ T6287] do_syscall_64+0x106/0xf80 [ 103.096607][ T6287] ? clear_bhb_loop+0x40/0x90 [ 103.096628][ T6287] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 103.096644][ T6287] RIP: 0033:0x7fc46e99bf79 [ 103.096661][ T6287] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 103.096675][ T6287] RSP: 002b:00007fc46f8f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 103.096692][ T6287] RAX: ffffffffffffffda RBX: 00007fc46ec16180 RCX: 00007fc46e99bf79 [ 103.096702][ T6287] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 103.096710][ T6287] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 103.096719][ T6287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 103.096727][ T6287] R13: 00007fc46ec16218 R14: 00007fc46ec16180 R15: 00007ffd11a6ccb8 [ 103.096746][ T6287] [ 103.563082][ T51] Bluetooth: hci3: command 0x0c1a tx timeout syzkaller syzkaller login: [ 104.010229][ T6287] gretap0: left allmulticast mode [ 104.400903][ T6310] bridge0: port 3(gretap0) entered blocking state [ 104.413049][ T6310] bridge0: port 3(gretap0) entered disabled state [ 104.447272][ T6310] gretap0: entered allmulticast mode [ 104.472525][ T6310] FAULT_INJECTION: forcing a failure. [ 104.472525][ T6310] name failslab, interval 1, probability 0, space 0, times 0 [ 104.524381][ T6310] CPU: 0 UID: 0 PID: 6310 Comm: syz.1.94 Not tainted syzkaller #0 PREEMPT(full) [ 104.524405][ T6310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 104.524414][ T6310] Call Trace: [ 104.524420][ T6310] [ 104.524427][ T6310] dump_stack_lvl+0x100/0x190 [ 104.524454][ T6310] should_fail_ex.cold+0x5/0xa [ 104.524472][ T6310] should_failslab+0xc2/0x120 [ 104.524494][ T6310] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 104.524515][ T6310] ? kstrdup_const+0x63/0x80 [ 104.524539][ T6310] kstrdup+0x51/0xe0 [ 104.524558][ T6310] kstrdup_const+0x63/0x80 [ 104.524577][ T6310] __kernfs_new_node+0x9b/0x960 [ 104.524606][ T6310] ? __pfx___kernfs_new_node+0x10/0x10 [ 104.524627][ T6310] ? find_held_lock+0x2b/0x80 [ 104.524649][ T6310] ? kernfs_root+0xee/0x2a0 [ 104.524663][ T6310] ? kernfs_root+0xee/0x2a0 [ 104.524682][ T6310] kernfs_new_node+0x11b/0x1a0 [ 104.524703][ T6310] kernfs_create_link+0xcc/0x240 [ 104.524726][ T6310] sysfs_do_create_link_sd+0x90/0x140 [ 104.524742][ T6310] sysfs_create_link+0x61/0xc0 [ 104.524756][ T6310] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 104.524783][ T6310] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 104.524814][ T6310] __netdev_upper_dev_link+0x3d8/0x7e0 [ 104.524837][ T6310] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 104.524856][ T6310] ? kernfs_root+0xf8/0x2a0 [ 104.524871][ T6310] ? kernfs_add_one+0x214/0x850 [ 104.524893][ T6310] netdev_master_upper_dev_link+0x9f/0xd0 [ 104.524913][ T6310] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 104.524934][ T6310] ? lockdep_rtnl_is_held+0x26/0x40 [ 104.524954][ T6310] ? netdev_is_rx_handler_busy+0x83/0x140 [ 104.524972][ T6310] br_add_if+0x9fd/0x1b40 [ 104.524989][ T6310] ? security_capable+0x80/0x260 [ 104.525013][ T6310] add_del_if+0x114/0x160 [ 104.525029][ T6310] br_dev_siocdevprivate+0x8ac/0x1650 [ 104.525044][ T6310] ? __lock_acquire+0x4a5/0x2630 [ 104.525062][ T6310] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 104.525085][ T6310] ? do_raw_spin_lock+0x128/0x260 [ 104.525109][ T6310] ? mark_held_locks+0x40/0x70 [ 104.525129][ T6310] ? netdev_name_node_lookup+0x107/0x150 [ 104.525150][ T6310] ? __mutex_lock+0x26a/0x1b90 [ 104.525169][ T6310] dev_ifsioc+0xc1e/0x1e90 [ 104.525185][ T6310] ? __pfx_dev_ifsioc+0x10/0x10 [ 104.525197][ T6310] ? __pfx___mutex_lock+0x10/0x10 [ 104.525219][ T6310] ? dev_load+0x8e/0x240 [ 104.525239][ T6310] ? dev_load+0x8e/0x240 [ 104.525265][ T6310] dev_ioctl+0x70e/0x1070 [ 104.525282][ T6310] sock_ioctl+0x494/0x6b0 [ 104.525303][ T6310] ? __pfx_sock_ioctl+0x10/0x10 [ 104.525321][ T6310] ? hook_file_ioctl_common+0x146/0x410 [ 104.525348][ T6310] ? __fget_files+0x21f/0x3d0 [ 104.525370][ T6310] ? __pfx_sock_ioctl+0x10/0x10 [ 104.525391][ T6310] __x64_sys_ioctl+0x18e/0x210 [ 104.525410][ T6310] do_syscall_64+0x106/0xf80 [ 104.525425][ T6310] ? clear_bhb_loop+0x40/0x90 [ 104.525443][ T6310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 104.525459][ T6310] RIP: 0033:0x7fc46e99bf79 [ 104.525473][ T6310] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 104.525487][ T6310] RSP: 002b:00007fc46f914028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 104.525502][ T6310] RAX: ffffffffffffffda RBX: 00007fc46ec16090 RCX: 00007fc46e99bf79 [ 104.525512][ T6310] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 104.525521][ T6310] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 104.525529][ T6310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 104.525538][ T6310] R13: 00007fc46ec16128 R14: 00007fc46ec16090 R15: 00007ffd11a6ccb8 [ 104.525558][ T6310] [ 105.004500][ T6310] gretap0: left allmulticast mode [ 105.450577][ T6301] No such timeout policy "" [ 105.455556][ T6301] netlink: Failed to associated timeout policy '' syzkaller syzkaller login: syzkaller syzkaller login: [ 109.149185][ T6379] netlink: 4 bytes leftover after parsing attributes in process `syz.3.108'. [ 109.213029][ T6379] netlink: 25 bytes leftover after parsing attributes in process `syz.3.108'. [ 109.474880][ T6387] bridge0: port 3(gretap0) entered blocking state [ 109.489009][ T6376] No such timeout policy "" [ 109.556651][ T6387] bridge0: port 3(gretap0) entered disabled state [ 109.568867][ T6376] netlink: Failed to associated timeout policy '' [ 109.633801][ T6387] gretap0: entered allmulticast mode [ 109.702999][ T6387] FAULT_INJECTION: forcing a failure. [ 109.702999][ T6387] name failslab, interval 1, probability 0, space 0, times 0 [ 109.854575][ T6387] CPU: 0 UID: 0 PID: 6387 Comm: syz.1.109 Not tainted syzkaller #0 PREEMPT(full) [ 109.854597][ T6387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 109.854607][ T6387] Call Trace: [ 109.854612][ T6387] [ 109.854618][ T6387] dump_stack_lvl+0x100/0x190 [ 109.854644][ T6387] should_fail_ex.cold+0x5/0xa [ 109.854662][ T6387] should_failslab+0xc2/0x120 [ 109.854684][ T6387] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 109.854703][ T6387] ? __kernfs_new_node+0xd2/0x960 [ 109.854718][ T6387] ? kstrdup+0xb3/0xe0 [ 109.854739][ T6387] __kernfs_new_node+0xd2/0x960 [ 109.854756][ T6387] ? __pfx___kernfs_new_node+0x10/0x10 [ 109.854775][ T6387] ? find_held_lock+0x2b/0x80 [ 109.854797][ T6387] ? kernfs_root+0xee/0x2a0 [ 109.854810][ T6387] ? kernfs_root+0xee/0x2a0 [ 109.854828][ T6387] kernfs_new_node+0x11b/0x1a0 [ 109.854848][ T6387] kernfs_create_link+0xcc/0x240 [ 109.854870][ T6387] sysfs_do_create_link_sd+0x90/0x140 [ 109.854886][ T6387] sysfs_create_link+0x61/0xc0 [ 109.854901][ T6387] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 109.854927][ T6387] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 109.854958][ T6387] __netdev_upper_dev_link+0x3d8/0x7e0 [ 109.854980][ T6387] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 109.854999][ T6387] ? kernfs_root+0xf8/0x2a0 [ 109.855015][ T6387] ? kernfs_add_one+0x214/0x850 [ 109.855036][ T6387] netdev_master_upper_dev_link+0x9f/0xd0 [ 109.855056][ T6387] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 109.855077][ T6387] ? lockdep_rtnl_is_held+0x26/0x40 [ 109.855097][ T6387] ? netdev_is_rx_handler_busy+0x83/0x140 [ 109.855115][ T6387] br_add_if+0x9fd/0x1b40 [ 109.855132][ T6387] ? security_capable+0x80/0x260 [ 109.855154][ T6387] add_del_if+0x114/0x160 [ 109.855170][ T6387] br_dev_siocdevprivate+0x8ac/0x1650 [ 109.855186][ T6387] ? __lock_acquire+0x4a5/0x2630 [ 109.855203][ T6387] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 109.855225][ T6387] ? do_raw_spin_lock+0x128/0x260 [ 109.855248][ T6387] ? mark_held_locks+0x40/0x70 [ 109.855271][ T6387] ? netdev_name_node_lookup+0x107/0x150 [ 109.855293][ T6387] ? __mutex_lock+0x26a/0x1b90 [ 109.855321][ T6387] dev_ifsioc+0xc1e/0x1e90 [ 109.855338][ T6387] ? __pfx_dev_ifsioc+0x10/0x10 [ 109.855350][ T6387] ? __pfx___mutex_lock+0x10/0x10 [ 109.855373][ T6387] ? dev_load+0x8e/0x240 [ 109.855394][ T6387] ? dev_load+0x8e/0x240 [ 109.855423][ T6387] dev_ioctl+0x70e/0x1070 [ 109.855439][ T6387] sock_ioctl+0x494/0x6b0 [ 109.855459][ T6387] ? __pfx_sock_ioctl+0x10/0x10 [ 109.855478][ T6387] ? hook_file_ioctl_common+0x146/0x410 [ 109.855505][ T6387] ? __fget_files+0x21f/0x3d0 [ 109.855529][ T6387] ? __pfx_sock_ioctl+0x10/0x10 [ 109.855549][ T6387] __x64_sys_ioctl+0x18e/0x210 [ 109.855568][ T6387] do_syscall_64+0x106/0xf80 [ 109.855583][ T6387] ? clear_bhb_loop+0x40/0x90 [ 109.855601][ T6387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.855615][ T6387] RIP: 0033:0x7fc46e99bf79 [ 109.855629][ T6387] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.855643][ T6387] RSP: 002b:00007fc46f8f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 109.855657][ T6387] RAX: ffffffffffffffda RBX: 00007fc46ec16180 RCX: 00007fc46e99bf79 [ 109.855667][ T6387] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 109.855676][ T6387] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 109.855685][ T6387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.855694][ T6387] R13: 00007fc46ec16218 R14: 00007fc46ec16180 R15: 00007ffd11a6ccb8 [ 109.855714][ T6387] [ 110.472963][ T6387] gretap0: left allmulticast mode syzkaller syzkaller login: [ 111.475952][ T6419] __vm_enough_memory: pid: 6419, comm: syz.3.116, bytes: 4398046511104 not enough memory for the allocation [ 112.353998][ T6432] bridge0: port 3(gretap0) entered blocking state [ 112.423850][ T6432] bridge0: port 3(gretap0) entered disabled state [ 112.504280][ T6432] gretap0: entered allmulticast mode [ 112.601254][ T6432] FAULT_INJECTION: forcing a failure. [ 112.601254][ T6432] name failslab, interval 1, probability 0, space 0, times 0 [ 112.661731][ T6441] input: jJǸ-9%vJ86 as /devices/virtual/input/input5 [ 112.774564][ T6432] CPU: 0 UID: 0 PID: 6432 Comm: syz.2.118 Not tainted syzkaller #0 PREEMPT(full) [ 112.774588][ T6432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 112.774597][ T6432] Call Trace: [ 112.774603][ T6432] [ 112.774609][ T6432] dump_stack_lvl+0x100/0x190 [ 112.774635][ T6432] should_fail_ex.cold+0x5/0xa [ 112.774652][ T6432] should_failslab+0xc2/0x120 [ 112.774675][ T6432] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 112.774693][ T6432] ? __kernfs_new_node+0xd2/0x960 [ 112.774708][ T6432] ? kstrdup+0xb3/0xe0 [ 112.774729][ T6432] __kernfs_new_node+0xd2/0x960 [ 112.774743][ T6432] ? up_write+0x290/0x4f0 [ 112.774763][ T6432] ? __pfx___kernfs_new_node+0x10/0x10 [ 112.774783][ T6432] ? find_held_lock+0x2b/0x80 [ 112.774804][ T6432] ? kernfs_root+0xee/0x2a0 [ 112.774817][ T6432] ? kernfs_root+0xee/0x2a0 [ 112.774835][ T6432] kernfs_new_node+0x11b/0x1a0 [ 112.774855][ T6432] kernfs_create_link+0xcc/0x240 [ 112.774877][ T6432] sysfs_do_create_link_sd+0x90/0x140 [ 112.774893][ T6432] sysfs_create_link+0x61/0xc0 [ 112.774907][ T6432] br_sysfs_addif+0x1ae/0x210 [ 112.774926][ T6432] br_add_if+0x701/0x1b40 [ 112.774942][ T6432] ? security_capable+0x80/0x260 [ 112.774964][ T6432] add_del_if+0x114/0x160 [ 112.774979][ T6432] br_dev_siocdevprivate+0x8ac/0x1650 [ 112.774995][ T6432] ? __lock_acquire+0x4a5/0x2630 [ 112.775013][ T6432] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 112.775036][ T6432] ? do_raw_spin_lock+0x128/0x260 [ 112.775060][ T6432] ? mark_held_locks+0x40/0x70 [ 112.775079][ T6432] ? netdev_name_node_lookup+0x107/0x150 [ 112.775101][ T6432] ? __mutex_lock+0x26a/0x1b90 [ 112.775131][ T6432] dev_ifsioc+0xc1e/0x1e90 [ 112.775148][ T6432] ? __pfx_dev_ifsioc+0x10/0x10 [ 112.775161][ T6432] ? __pfx___mutex_lock+0x10/0x10 [ 112.775184][ T6432] ? dev_load+0x8e/0x240 [ 112.775205][ T6432] ? dev_load+0x8e/0x240 [ 112.775231][ T6432] dev_ioctl+0x70e/0x1070 [ 112.775246][ T6432] sock_ioctl+0x494/0x6b0 [ 112.775267][ T6432] ? __pfx_sock_ioctl+0x10/0x10 [ 112.775285][ T6432] ? hook_file_ioctl_common+0x146/0x410 [ 112.775312][ T6432] ? __fget_files+0x21f/0x3d0 [ 112.775334][ T6432] ? __pfx_sock_ioctl+0x10/0x10 [ 112.775355][ T6432] __x64_sys_ioctl+0x18e/0x210 [ 112.775374][ T6432] do_syscall_64+0x106/0xf80 [ 112.775389][ T6432] ? clear_bhb_loop+0x40/0x90 [ 112.775410][ T6432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.775425][ T6432] RIP: 0033:0x7fc666f9bf79 [ 112.775439][ T6432] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.775454][ T6432] RSP: 002b:00007fc667dfb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 112.775470][ T6432] RAX: ffffffffffffffda RBX: 00007fc667216180 RCX: 00007fc666f9bf79 [ 112.775479][ T6432] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 112.775488][ T6432] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 112.775496][ T6432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.775505][ T6432] R13: 00007fc667216218 R14: 00007fc667216180 R15: 00007ffd2de173d8 [ 112.775525][ T6432] [ 113.183246][ T6432] gretap0: left allmulticast mode syzkaller syzkaller login: [ 116.318658][ T6488] bridge0: port 3(gretap0) entered blocking state [ 116.350104][ T6488] bridge0: port 3(gretap0) entered disabled state [ 116.390188][ T6488] gretap0: entered allmulticast mode [ 116.417405][ T6488] FAULT_INJECTION: forcing a failure. [ 116.417405][ T6488] name failslab, interval 1, probability 0, space 0, times 0 [ 116.483211][ T6488] CPU: 0 UID: 0 PID: 6488 Comm: syz.2.128 Not tainted syzkaller #0 PREEMPT(full) [ 116.483234][ T6488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 116.483243][ T6488] Call Trace: [ 116.483249][ T6488] [ 116.483256][ T6488] dump_stack_lvl+0x100/0x190 [ 116.483283][ T6488] should_fail_ex.cold+0x5/0xa [ 116.483301][ T6488] should_failslab+0xc2/0x120 [ 116.483324][ T6488] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 116.483344][ T6488] ? __kernfs_new_node+0xd2/0x960 [ 116.483362][ T6488] __kernfs_new_node+0xd2/0x960 [ 116.483379][ T6488] ? __pfx___kernfs_new_node+0x10/0x10 [ 116.483399][ T6488] ? find_held_lock+0x2b/0x80 [ 116.483421][ T6488] ? kernfs_root+0xee/0x2a0 [ 116.483435][ T6488] ? kernfs_root+0xee/0x2a0 [ 116.483455][ T6488] kernfs_new_node+0x11b/0x1a0 [ 116.483475][ T6488] kernfs_create_link+0xcc/0x240 [ 116.483497][ T6488] sysfs_do_create_link_sd+0x90/0x140 [ 116.483513][ T6488] sysfs_create_link+0x61/0xc0 [ 116.483528][ T6488] __netdev_adjacent_dev_insert+0x43e/0xbf0 [ 116.483554][ T6488] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 116.483587][ T6488] __netdev_upper_dev_link+0x3d8/0x7e0 [ 116.483609][ T6488] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 116.483627][ T6488] ? kernfs_root+0xf8/0x2a0 [ 116.483644][ T6488] ? kernfs_add_one+0x214/0x850 [ 116.483665][ T6488] netdev_master_upper_dev_link+0x9f/0xd0 [ 116.483685][ T6488] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 116.483706][ T6488] ? lockdep_rtnl_is_held+0x26/0x40 [ 116.483726][ T6488] ? netdev_is_rx_handler_busy+0x83/0x140 [ 116.483745][ T6488] br_add_if+0x9fd/0x1b40 [ 116.483762][ T6488] ? security_capable+0x80/0x260 [ 116.483789][ T6488] add_del_if+0x114/0x160 [ 116.483858][ T6488] br_dev_siocdevprivate+0x8ac/0x1650 [ 116.483878][ T6488] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 116.483902][ T6488] ? lock_acquire+0x1cf/0x380 [ 116.483927][ T6488] ? netdev_name_node_lookup+0x107/0x150 [ 116.483949][ T6488] ? __mutex_lock+0x26a/0x1b90 [ 116.483967][ T6488] dev_ifsioc+0xc1e/0x1e90 [ 116.483983][ T6488] ? __pfx_dev_ifsioc+0x10/0x10 [ 116.483995][ T6488] ? __pfx___mutex_lock+0x10/0x10 [ 116.484018][ T6488] ? dev_load+0x8e/0x240 [ 116.484038][ T6488] ? dev_load+0x8e/0x240 [ 116.484064][ T6488] dev_ioctl+0x70e/0x1070 [ 116.484079][ T6488] sock_ioctl+0x494/0x6b0 [ 116.484100][ T6488] ? __pfx_sock_ioctl+0x10/0x10 [ 116.484118][ T6488] ? hook_file_ioctl_common+0x146/0x410 [ 116.484145][ T6488] ? __fget_files+0x21f/0x3d0 [ 116.484168][ T6488] ? __pfx_sock_ioctl+0x10/0x10 [ 116.484188][ T6488] __x64_sys_ioctl+0x18e/0x210 [ 116.484208][ T6488] do_syscall_64+0x106/0xf80 [ 116.484222][ T6488] ? clear_bhb_loop+0x40/0x90 [ 116.484240][ T6488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.484256][ T6488] RIP: 0033:0x7fc666f9bf79 [ 116.484270][ T6488] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 116.484284][ T6488] RSP: 002b:00007fc667e1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 116.484298][ T6488] RAX: ffffffffffffffda RBX: 00007fc667216090 RCX: 00007fc666f9bf79 [ 116.484308][ T6488] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 116.484316][ T6488] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 116.484325][ T6488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.484333][ T6488] R13: 00007fc667216128 R14: 00007fc667216090 R15: 00007ffd2de173d8 [ 116.484353][ T6488] [ 118.111700][ T6488] gretap0: left allmulticast mode [ 118.211034][ T6498] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 118.298721][ T6499] futex_wake_op: syz.3.131 tries to shift op by -2048; fix this program [ 118.386301][ T6498] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 118.422901][ T6498] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 118.454689][ T6499] futex_wake_op: syz.3.131 tries to shift op by -2048; fix this program [ 118.496708][ T6498] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 119.058225][ T6519] Invalid ELF header magic: != ELF [ 119.086778][ T6504] netlink: 44 bytes leftover after parsing attributes in process `syz.2.134'. [ 119.238568][ T6514] No such timeout policy "" [ 119.243198][ T6514] netlink: Failed to associated timeout policy '' [ 119.416593][ T6524] FAULT_INJECTION: forcing a failure. [ 119.416593][ T6524] name failslab, interval 1, probability 0, space 0, times 0 [ 119.479054][ T6524] CPU: 0 UID: 0 PID: 6524 Comm: syz.2.137 Not tainted syzkaller #0 PREEMPT(full) [ 119.479093][ T6524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 119.479103][ T6524] Call Trace: [ 119.479109][ T6524] [ 119.479116][ T6524] dump_stack_lvl+0x100/0x190 [ 119.479157][ T6524] should_fail_ex.cold+0x5/0xa [ 119.479174][ T6524] should_failslab+0xc2/0x120 [ 119.479196][ T6524] __kmalloc_cache_noprof+0x7a/0x6f0 [ 119.479213][ T6524] ? io_wq_create+0x6a/0x9a0 [ 119.479232][ T6524] io_wq_create+0x6a/0x9a0 [ 119.479249][ T6524] io_uring_alloc_task_context+0x2db/0x54b [ 119.479275][ T6524] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 119.479298][ T6524] ? alloc_file_pseudo+0x1a5/0x230 [ 119.479317][ T6524] __io_uring_add_tctx_node.cold+0x10/0x195 [ 119.479339][ T6524] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 119.479363][ T6524] ? __anon_inode_getfile+0x17c/0x280 [ 119.479388][ T6524] io_uring_setup.cold+0x1a25/0x1d09 [ 119.479411][ T6524] ? __pfx_io_uring_setup+0x10/0x10 [ 119.479431][ T6524] ? __pfx_do_futex+0x10/0x10 [ 119.479458][ T6524] ? xfd_validate_state+0x129/0x190 [ 119.479483][ T6524] __x64_sys_io_uring_setup+0xc2/0x170 [ 119.479500][ T6524] do_syscall_64+0x106/0xf80 [ 119.479516][ T6524] ? clear_bhb_loop+0x40/0x90 [ 119.479534][ T6524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 119.479549][ T6524] RIP: 0033:0x7fc666f9bf79 [ 119.479574][ T6524] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 119.479601][ T6524] RSP: 002b:00007fc667e3d028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 119.479620][ T6524] RAX: ffffffffffffffda RBX: 00007fc667215fa0 RCX: 00007fc666f9bf79 [ 119.479630][ T6524] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 119.479638][ T6524] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 119.479647][ T6524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 119.479656][ T6524] R13: 00007fc667216038 R14: 00007fc667215fa0 R15: 00007ffd2de173d8 [ 119.479676][ T6524] syzkaller syzkaller login: [ 120.257176][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 120.402261][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 120.409575][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 120.556661][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 121.175880][ T6552] bridge0: port 3(gretap0) entered blocking state [ 121.216483][ T6552] bridge0: port 3(gretap0) entered disabled state [ 121.223056][ T6552] gretap0: entered allmulticast mode [ 121.265690][ T6552] FAULT_INJECTION: forcing a failure. [ 121.265690][ T6552] name failslab, interval 1, probability 0, space 0, times 0 [ 121.336822][ T6552] CPU: 0 UID: 0 PID: 6552 Comm: syz.3.142 Not tainted syzkaller #0 PREEMPT(full) [ 121.336844][ T6552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 121.336854][ T6552] Call Trace: [ 121.336860][ T6552] [ 121.336866][ T6552] dump_stack_lvl+0x100/0x190 [ 121.336893][ T6552] should_fail_ex.cold+0x5/0xa [ 121.336911][ T6552] should_failslab+0xc2/0x120 [ 121.336932][ T6552] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 121.336950][ T6552] ? __kernfs_new_node+0xd2/0x960 [ 121.336966][ T6552] ? kstrdup+0xb3/0xe0 [ 121.336987][ T6552] __kernfs_new_node+0xd2/0x960 [ 121.337004][ T6552] ? __pfx___kernfs_new_node+0x10/0x10 [ 121.337023][ T6552] ? find_held_lock+0x2b/0x80 [ 121.337044][ T6552] ? kernfs_root+0xee/0x2a0 [ 121.337057][ T6552] ? kernfs_root+0xee/0x2a0 [ 121.337076][ T6552] kernfs_new_node+0x11b/0x1a0 [ 121.337096][ T6552] kernfs_create_link+0xcc/0x240 [ 121.337118][ T6552] sysfs_do_create_link_sd+0x90/0x140 [ 121.337134][ T6552] sysfs_create_link+0x61/0xc0 [ 121.337148][ T6552] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 121.337176][ T6552] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 121.337206][ T6552] __netdev_upper_dev_link+0x3d8/0x7e0 [ 121.337229][ T6552] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 121.337248][ T6552] ? kernfs_root+0xf8/0x2a0 [ 121.337264][ T6552] ? kernfs_add_one+0x214/0x850 [ 121.337285][ T6552] netdev_master_upper_dev_link+0x9f/0xd0 [ 121.337306][ T6552] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 121.337327][ T6552] ? lockdep_rtnl_is_held+0x26/0x40 [ 121.337346][ T6552] ? netdev_is_rx_handler_busy+0x83/0x140 [ 121.337365][ T6552] br_add_if+0x9fd/0x1b40 [ 121.337382][ T6552] ? security_capable+0x80/0x260 [ 121.337405][ T6552] add_del_if+0x114/0x160 [ 121.337421][ T6552] br_dev_siocdevprivate+0x8ac/0x1650 [ 121.337439][ T6552] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 121.337463][ T6552] ? lock_acquire+0x1cf/0x380 [ 121.337496][ T6552] ? netdev_name_node_lookup+0x107/0x150 [ 121.337518][ T6552] ? __mutex_lock+0x26a/0x1b90 [ 121.337537][ T6552] dev_ifsioc+0xc1e/0x1e90 [ 121.337554][ T6552] ? __pfx_dev_ifsioc+0x10/0x10 [ 121.337566][ T6552] ? __pfx___mutex_lock+0x10/0x10 [ 121.337588][ T6552] ? dev_load+0x8e/0x240 [ 121.337608][ T6552] ? dev_load+0x8e/0x240 [ 121.337634][ T6552] dev_ioctl+0x70e/0x1070 [ 121.337649][ T6552] sock_ioctl+0x494/0x6b0 [ 121.337670][ T6552] ? __pfx_sock_ioctl+0x10/0x10 [ 121.337689][ T6552] ? hook_file_ioctl_common+0x146/0x410 [ 121.337716][ T6552] ? __fget_files+0x21f/0x3d0 [ 121.337738][ T6552] ? __pfx_sock_ioctl+0x10/0x10 [ 121.337759][ T6552] __x64_sys_ioctl+0x18e/0x210 [ 121.337778][ T6552] do_syscall_64+0x106/0xf80 [ 121.337793][ T6552] ? clear_bhb_loop+0x40/0x90 [ 121.337811][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.337825][ T6552] RIP: 0033:0x7fd9d039bf79 [ 121.337839][ T6552] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 121.337859][ T6552] RSP: 002b:00007fd9ce5f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 121.337876][ T6552] RAX: ffffffffffffffda RBX: 00007fd9d0616090 RCX: 00007fd9d039bf79 [ 121.337886][ T6552] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 121.337895][ T6552] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 121.337903][ T6552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 121.337912][ T6552] R13: 00007fd9d0616128 R14: 00007fd9d0616090 R15: 00007ffeddcdbc58 [ 121.337932][ T6552] [ 121.344231][ T6552] gretap0: left allmulticast mode [ 122.325706][ T6558] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input6 [ 122.734202][ T6566] __vm_enough_memory: pid: 6566, comm: syz.0.146, bytes: 4398046511104 not enough memory for the allocation [ 123.082458][ T6564] FAULT_INJECTION: forcing a failure. [ 123.082458][ T6564] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 123.167860][ T6564] CPU: 0 UID: 0 PID: 6564 Comm: syz.2.145 Not tainted syzkaller #0 PREEMPT(full) [ 123.167881][ T6564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 123.167890][ T6564] Call Trace: [ 123.167901][ T6564] [ 123.167907][ T6564] dump_stack_lvl+0x100/0x190 [ 123.167932][ T6564] should_fail_ex.cold+0x5/0xa [ 123.167946][ T6564] ? prepare_alloc_pages+0x16d/0x5f0 [ 123.167971][ T6564] should_fail_alloc_page+0xeb/0x140 [ 123.167994][ T6564] prepare_alloc_pages+0x1f0/0x5f0 [ 123.168019][ T6564] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 123.168039][ T6564] ? __pfx_css_rstat_updated+0x10/0x10 [ 123.168054][ T6564] ? __pfx_css_rstat_updated+0x10/0x10 [ 123.168074][ T6564] ? rcu_is_watching+0x12/0xc0 [ 123.168095][ T6564] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 123.168118][ T6564] ? lru_gen_add_folio+0x20f/0x13e0 [ 123.168142][ T6564] ? lock_acquire+0x1cf/0x380 [ 123.168160][ T6564] ? find_held_lock+0x2b/0x80 [ 123.168181][ T6564] ? page_table_check_set+0x49a/0xa10 [ 123.168201][ T6564] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 123.168224][ T6564] ? policy_nodemask+0xed/0x4f0 [ 123.168247][ T6564] alloc_pages_mpol+0x1fb/0x550 [ 123.168268][ T6564] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 123.168295][ T6564] folio_alloc_mpol_noprof+0x36/0x340 [ 123.168310][ T6564] vma_alloc_folio_noprof+0xed/0x1d0 [ 123.168325][ T6564] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 123.168346][ T6564] do_anonymous_page+0xb3a/0x1fb0 [ 123.168374][ T6564] __handle_mm_fault+0x1d42/0x2b60 [ 123.168396][ T6564] ? __pfx___handle_mm_fault+0x10/0x10 [ 123.168414][ T6564] ? pte_offset_map_lock+0x174/0x320 [ 123.168435][ T6564] ? find_held_lock+0x2b/0x80 [ 123.168466][ T6564] ? follow_page_pte+0x5b3/0x1400 [ 123.168492][ T6564] handle_mm_fault+0x36d/0xa20 [ 123.168512][ T6564] __get_user_pages+0xf9c/0x34d0 [ 123.168542][ T6564] ? __pfx___get_user_pages+0x10/0x10 [ 123.168569][ T6564] populate_vma_page_range+0x267/0x3f0 [ 123.168585][ T6564] ? __pfx_populate_vma_page_range+0x10/0x10 [ 123.168599][ T6564] ? __pfx_find_vma_intersection+0x10/0x10 [ 123.168626][ T6564] __mm_populate+0x107/0x3a0 [ 123.168641][ T6564] ? __pfx___mm_populate+0x10/0x10 [ 123.168656][ T6564] ? up_write+0x406/0x4f0 [ 123.168682][ T6564] vm_mmap_pgoff+0x37f/0x470 [ 123.168708][ T6564] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 123.168735][ T6564] ? __x64_sys_futex+0x34f/0x4d0 [ 123.168751][ T6564] ? __x64_sys_futex+0x358/0x4d0 [ 123.168770][ T6564] ksys_mmap_pgoff+0x7d/0x5b0 [ 123.168794][ T6564] __x64_sys_mmap+0x125/0x190 [ 123.168817][ T6564] do_syscall_64+0x106/0xf80 [ 123.168833][ T6564] ? clear_bhb_loop+0x40/0x90 [ 123.168851][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.168865][ T6564] RIP: 0033:0x7fc666f9bf79 [ 123.168886][ T6564] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 123.168900][ T6564] RSP: 002b:00007fc667e1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 123.168914][ T6564] RAX: ffffffffffffffda RBX: 00007fc667216090 RCX: 00007fc666f9bf79 [ 123.168924][ T6564] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 123.168932][ T6564] RBP: 00007fc6670327e0 R08: ffffffffffffffff R09: 0000000000000000 [ 123.168941][ T6564] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 123.168949][ T6564] R13: 00007fc667216128 R14: 00007fc667216090 R15: 00007ffd2de173d8 [ 123.168968][ T6564] [ 125.516963][ T6606] bridge0: port 3(gretap0) entered blocking state [ 125.523566][ T6606] bridge0: port 3(gretap0) entered disabled state [ 125.601670][ T6606] gretap0: entered allmulticast mode [ 125.660685][ T6606] FAULT_INJECTION: forcing a failure. [ 125.660685][ T6606] name failslab, interval 1, probability 0, space 0, times 0 [ 125.739183][ T6606] CPU: 0 UID: 0 PID: 6606 Comm: syz.2.152 Not tainted syzkaller #0 PREEMPT(full) [ 125.739207][ T6606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 125.739216][ T6606] Call Trace: [ 125.739221][ T6606] [ 125.739228][ T6606] dump_stack_lvl+0x100/0x190 [ 125.739255][ T6606] should_fail_ex.cold+0x5/0xa [ 125.739273][ T6606] should_failslab+0xc2/0x120 [ 125.739295][ T6606] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 125.739316][ T6606] ? kstrdup_const+0x63/0x80 [ 125.739339][ T6606] kstrdup+0x51/0xe0 [ 125.739359][ T6606] kstrdup_const+0x63/0x80 [ 125.739378][ T6606] __kernfs_new_node+0x9b/0x960 [ 125.739396][ T6606] ? __pfx___kernfs_new_node+0x10/0x10 [ 125.739416][ T6606] ? find_held_lock+0x2b/0x80 [ 125.739437][ T6606] ? kernfs_root+0xee/0x2a0 [ 125.739450][ T6606] ? kernfs_root+0xee/0x2a0 [ 125.739470][ T6606] kernfs_new_node+0x11b/0x1a0 [ 125.739491][ T6606] kernfs_create_link+0xcc/0x240 [ 125.739514][ T6606] sysfs_do_create_link_sd+0x90/0x140 [ 125.739530][ T6606] sysfs_create_link+0x61/0xc0 [ 125.739545][ T6606] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 125.739572][ T6606] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 125.739603][ T6606] __netdev_upper_dev_link+0x3d8/0x7e0 [ 125.739624][ T6606] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 125.739643][ T6606] ? kernfs_root+0xf8/0x2a0 [ 125.739660][ T6606] ? kernfs_add_one+0x214/0x850 [ 125.739683][ T6606] netdev_master_upper_dev_link+0x9f/0xd0 [ 125.739703][ T6606] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 125.739724][ T6606] ? lockdep_rtnl_is_held+0x26/0x40 [ 125.739744][ T6606] ? netdev_is_rx_handler_busy+0x83/0x140 [ 125.739763][ T6606] br_add_if+0x9fd/0x1b40 [ 125.739780][ T6606] ? security_capable+0x80/0x260 [ 125.739806][ T6606] add_del_if+0x114/0x160 [ 125.739823][ T6606] br_dev_siocdevprivate+0x8ac/0x1650 [ 125.739842][ T6606] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 125.739865][ T6606] ? lock_acquire+0x1cf/0x380 [ 125.739889][ T6606] ? netdev_name_node_lookup+0x107/0x150 [ 125.739911][ T6606] ? __mutex_lock+0x26a/0x1b90 [ 125.739930][ T6606] dev_ifsioc+0xc1e/0x1e90 [ 125.739946][ T6606] ? __pfx_dev_ifsioc+0x10/0x10 [ 125.739958][ T6606] ? __pfx___mutex_lock+0x10/0x10 [ 125.739980][ T6606] ? dev_load+0x8e/0x240 [ 125.740000][ T6606] ? dev_load+0x8e/0x240 [ 125.740026][ T6606] dev_ioctl+0x70e/0x1070 [ 125.740041][ T6606] sock_ioctl+0x494/0x6b0 [ 125.740062][ T6606] ? __pfx_sock_ioctl+0x10/0x10 [ 125.740080][ T6606] ? hook_file_ioctl_common+0x146/0x410 [ 125.740107][ T6606] ? __fget_files+0x21f/0x3d0 [ 125.740130][ T6606] ? __pfx_sock_ioctl+0x10/0x10 [ 125.740151][ T6606] __x64_sys_ioctl+0x18e/0x210 [ 125.740178][ T6606] do_syscall_64+0x106/0xf80 [ 125.740194][ T6606] ? clear_bhb_loop+0x40/0x90 [ 125.740214][ T6606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.740229][ T6606] RIP: 0033:0x7fc666f9bf79 [ 125.740244][ T6606] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 125.740258][ T6606] RSP: 002b:00007fc667e1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 125.740273][ T6606] RAX: ffffffffffffffda RBX: 00007fc667216090 RCX: 00007fc666f9bf79 [ 125.740283][ T6606] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 125.740292][ T6606] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 125.740301][ T6606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.740310][ T6606] R13: 00007fc667216128 R14: 00007fc667216090 R15: 00007ffd2de173d8 [ 125.740330][ T6606] [ 125.741065][ T6606] gretap0: left allmulticast mode [ 126.431013][ T5831] Bluetooth: hci3: Unexpected cc 0x7c89 with no status [ 126.514272][ T6595] rtc_cmos 00:00: Alarms can be up to one day in the future [ 126.696809][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 126.705846][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 126.727355][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 126.746824][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 126.763270][ T9] rtc rtc0: __rtc_set_alarm: err=-22 [ 127.087662][ T6619] bridge0: port 3(gretap0) entered blocking state [ 127.111509][ T6619] bridge0: port 3(gretap0) entered disabled state [ 127.178274][ T6619] gretap0: entered allmulticast mode [ 127.224924][ T6619] FAULT_INJECTION: forcing a failure. [ 127.224924][ T6619] name failslab, interval 1, probability 0, space 0, times 0 [ 127.290143][ T6619] CPU: 0 UID: 0 PID: 6619 Comm: syz.1.155 Not tainted syzkaller #0 PREEMPT(full) [ 127.290167][ T6619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 127.290177][ T6619] Call Trace: [ 127.290182][ T6619] [ 127.290188][ T6619] dump_stack_lvl+0x100/0x190 [ 127.290216][ T6619] should_fail_ex.cold+0x5/0xa [ 127.290234][ T6619] should_failslab+0xc2/0x120 [ 127.290256][ T6619] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 127.290275][ T6619] ? __kernfs_new_node+0xd2/0x960 [ 127.290290][ T6619] ? kstrdup+0xb3/0xe0 [ 127.290311][ T6619] __kernfs_new_node+0xd2/0x960 [ 127.290328][ T6619] ? __pfx___kernfs_new_node+0x10/0x10 [ 127.290348][ T6619] ? find_held_lock+0x2b/0x80 [ 127.290369][ T6619] ? kernfs_root+0xee/0x2a0 [ 127.290382][ T6619] ? kernfs_root+0xee/0x2a0 [ 127.290401][ T6619] kernfs_new_node+0x11b/0x1a0 [ 127.290426][ T6619] kernfs_create_link+0xcc/0x240 [ 127.290449][ T6619] sysfs_do_create_link_sd+0x90/0x140 [ 127.290466][ T6619] sysfs_create_link+0x61/0xc0 [ 127.290481][ T6619] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 127.290508][ T6619] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 127.290540][ T6619] __netdev_upper_dev_link+0x3d8/0x7e0 [ 127.290563][ T6619] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 127.290581][ T6619] ? kernfs_root+0xf8/0x2a0 [ 127.290597][ T6619] ? kernfs_add_one+0x214/0x850 [ 127.290619][ T6619] netdev_master_upper_dev_link+0x9f/0xd0 [ 127.290639][ T6619] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 127.290660][ T6619] ? lockdep_rtnl_is_held+0x26/0x40 [ 127.290680][ T6619] ? netdev_is_rx_handler_busy+0x83/0x140 [ 127.290698][ T6619] br_add_if+0x9fd/0x1b40 [ 127.290715][ T6619] ? security_capable+0x80/0x260 [ 127.290737][ T6619] add_del_if+0x114/0x160 [ 127.290753][ T6619] br_dev_siocdevprivate+0x8ac/0x1650 [ 127.290769][ T6619] ? __lock_acquire+0x4a5/0x2630 [ 127.290786][ T6619] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 127.290808][ T6619] ? do_raw_spin_lock+0x128/0x260 [ 127.290832][ T6619] ? mark_held_locks+0x40/0x70 [ 127.290855][ T6619] ? netdev_name_node_lookup+0x107/0x150 [ 127.290876][ T6619] ? __mutex_lock+0x26a/0x1b90 [ 127.290895][ T6619] dev_ifsioc+0xc1e/0x1e90 [ 127.290910][ T6619] ? __pfx_dev_ifsioc+0x10/0x10 [ 127.290923][ T6619] ? __pfx___mutex_lock+0x10/0x10 [ 127.290945][ T6619] ? dev_load+0x8e/0x240 [ 127.290965][ T6619] ? dev_load+0x8e/0x240 [ 127.290991][ T6619] dev_ioctl+0x70e/0x1070 [ 127.291006][ T6619] sock_ioctl+0x494/0x6b0 [ 127.291027][ T6619] ? __pfx_sock_ioctl+0x10/0x10 [ 127.291045][ T6619] ? hook_file_ioctl_common+0x146/0x410 [ 127.291082][ T6619] ? __fget_files+0x21f/0x3d0 [ 127.291105][ T6619] ? __pfx_sock_ioctl+0x10/0x10 [ 127.291127][ T6619] __x64_sys_ioctl+0x18e/0x210 [ 127.291148][ T6619] do_syscall_64+0x106/0xf80 [ 127.291163][ T6619] ? clear_bhb_loop+0x40/0x90 [ 127.291181][ T6619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.291196][ T6619] RIP: 0033:0x7fc46e99bf79 [ 127.291210][ T6619] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 127.291224][ T6619] RSP: 002b:00007fc46f8f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 127.291238][ T6619] RAX: ffffffffffffffda RBX: 00007fc46ec16180 RCX: 00007fc46e99bf79 [ 127.291248][ T6619] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 127.291258][ T6619] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 127.291267][ T6619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 127.291275][ T6619] R13: 00007fc46ec16218 R14: 00007fc46ec16180 R15: 00007ffd11a6ccb8 [ 127.291295][ T6619] [ 127.932642][ T6636] FAULT_INJECTION: forcing a failure. [ 127.932642][ T6636] name failslab, interval 1, probability 0, space 0, times 0 [ 127.945704][ T6636] CPU: 0 UID: 60928 PID: 6636 Comm: syz.3.160 Not tainted syzkaller #0 PREEMPT(full) [ 127.945726][ T6636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 127.945735][ T6636] Call Trace: [ 127.945740][ T6636] [ 127.945746][ T6636] dump_stack_lvl+0x100/0x190 [ 127.945772][ T6636] should_fail_ex.cold+0x5/0xa [ 127.945791][ T6636] should_failslab+0xc2/0x120 [ 127.945812][ T6636] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 127.945831][ T6636] ? __kernfs_new_node+0xd2/0x960 [ 127.945851][ T6636] __kernfs_new_node+0xd2/0x960 [ 127.945868][ T6636] ? __pfx___kernfs_new_node+0x10/0x10 [ 127.945888][ T6636] ? find_held_lock+0x2b/0x80 [ 127.945909][ T6636] ? kernfs_root+0xee/0x2a0 [ 127.945923][ T6636] ? kernfs_root+0xee/0x2a0 [ 127.945942][ T6636] kernfs_new_node+0x11b/0x1a0 [ 127.945962][ T6636] __kernfs_create_file+0x53/0x350 [ 127.945984][ T6636] sysfs_add_file_mode_ns+0x207/0x3c0 [ 127.946012][ T6636] internal_create_group+0x593/0xf40 [ 127.946033][ T6636] ? __pfx_internal_create_group+0x10/0x10 [ 127.946052][ T6636] ? kernfs_create_link+0x1bd/0x240 [ 127.946075][ T6636] internal_create_groups+0x9d/0x150 [ 127.946092][ T6636] device_add+0x77a/0x1950 [ 127.946119][ T6636] ? __pfx_device_add+0x10/0x10 [ 127.946141][ T6636] __add_disk+0x518/0xe40 [ 127.946163][ T6636] ? find_held_lock+0x2b/0x80 [ 127.946190][ T6636] add_disk_fwnode+0x3d4/0x5c0 [ 127.946214][ T6636] zram_add+0x4d2/0x610 [ 127.946230][ T6636] ? __pfx_zram_add+0x10/0x10 [ 127.946258][ T6636] ? find_held_lock+0x2b/0x80 [ 127.946278][ T6636] ? sysfs_file_kobj+0xe4/0x290 [ 127.946302][ T6636] ? __pfx_hot_add_show+0x10/0x10 [ 127.946319][ T6636] hot_add_show+0x21/0x80 [ 127.946336][ T6636] class_attr_show+0x72/0xa0 [ 127.946358][ T6636] ? __pfx_class_attr_show+0x10/0x10 [ 127.946379][ T6636] sysfs_kf_seq_show+0x217/0x3a0 [ 127.946404][ T6636] seq_read_iter+0x32f/0x1270 [ 127.946432][ T6636] kernfs_fop_read_iter+0x46c/0x610 [ 127.946452][ T6636] ? rw_verify_area+0xce/0x6d0 [ 127.946469][ T6636] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 127.946490][ T6636] vfs_read+0x825/0xb30 [ 127.946511][ T6636] ? __pfx_vfs_read+0x10/0x10 [ 127.946543][ T6636] ksys_read+0x12a/0x250 [ 127.946562][ T6636] ? __pfx_ksys_read+0x10/0x10 [ 127.946587][ T6636] do_syscall_64+0x106/0xf80 [ 127.946603][ T6636] ? clear_bhb_loop+0x40/0x90 [ 127.946621][ T6636] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.946636][ T6636] RIP: 0033:0x7fd9d039bf79 [ 127.946650][ T6636] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 127.946664][ T6636] RSP: 002b:00007fd9ce5d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 127.946679][ T6636] RAX: ffffffffffffffda RBX: 00007fd9d0616180 RCX: 00007fd9d039bf79 [ 127.946688][ T6636] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000007 [ 127.946697][ T6636] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 127.946706][ T6636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 127.946714][ T6636] R13: 00007fd9d0616218 R14: 00007fd9d0616180 R15: 00007ffeddcdbc58 [ 127.946735][ T6636] [ 128.301841][ T6619] gretap0: left allmulticast mode [ 129.417402][ T6658] FAULT_INJECTION: forcing a failure. [ 129.417402][ T6658] name failslab, interval 1, probability 0, space 0, times 0 [ 129.484398][ T6658] CPU: 0 UID: 0 PID: 6658 Comm: syz.0.165 Not tainted syzkaller #0 PREEMPT(full) [ 129.484421][ T6658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 129.484430][ T6658] Call Trace: [ 129.484438][ T6658] [ 129.484445][ T6658] dump_stack_lvl+0x100/0x190 [ 129.484473][ T6658] should_fail_ex.cold+0x5/0xa [ 129.484491][ T6658] should_failslab+0xc2/0x120 [ 129.484515][ T6658] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 129.484535][ T6658] ? locks_get_lock_context+0x94/0x640 [ 129.484551][ T6658] ? aa_file_perm+0x277/0x1530 [ 129.484571][ T6658] locks_get_lock_context+0x94/0x640 [ 129.484589][ T6658] posix_lock_inode+0xcc/0x2440 [ 129.484615][ T6658] ? __pfx_posix_lock_inode+0x10/0x10 [ 129.484636][ T6658] ? common_file_perm+0x1ab/0x4f0 [ 129.484653][ T6658] vfs_lock_file+0xfb/0x150 [ 129.484673][ T6658] fcntl_setlk+0x782/0xe40 [ 129.484696][ T6658] ? __pfx_fcntl_setlk+0x10/0x10 [ 129.484723][ T6658] ? rep_movs_alternative+0x30/0x90 [ 129.484747][ T6658] do_fcntl+0xf39/0x1670 [ 129.484763][ T6658] ? __pfx_do_fcntl+0x10/0x10 [ 129.484777][ T6658] ? __fget_files+0x215/0x3d0 [ 129.484804][ T6658] ? tomoyo_file_fcntl+0x6c/0xc0 [ 129.484826][ T6658] __x64_sys_fcntl+0x163/0x200 [ 129.484849][ T6658] do_syscall_64+0x106/0xf80 [ 129.484865][ T6658] ? clear_bhb_loop+0x40/0x90 [ 129.484883][ T6658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.484900][ T6658] RIP: 0033:0x7ff633f9bf79 [ 129.484914][ T6658] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 129.484928][ T6658] RSP: 002b:00007ff634d8e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 129.484943][ T6658] RAX: ffffffffffffffda RBX: 00007ff634215fa0 RCX: 00007ff633f9bf79 [ 129.484952][ T6658] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 0000000000000003 [ 129.484961][ T6658] RBP: 00007ff6340327e0 R08: 0000000000000000 R09: 0000000000000000 [ 129.484969][ T6658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.484978][ T6658] R13: 00007ff634216038 R14: 00007ff634215fa0 R15: 00007ffc07b83848 [ 129.485036][ T6658] [ 130.438553][ T6668] netlink: 24 bytes leftover after parsing attributes in process `syz.0.169'. [ 130.498759][ T6666] Invalid ELF header magic: != ELF [ 131.857363][ T30] audit: type=1326 audit(1771054643.094:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6682 comm="syz.0.172" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff633f9bf79 code=0x0 [ 131.994624][ T6687] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 131.994624][ T6687] The task syz.0.172 (6687) triggered the difference, watch for misbehavior. syzkaller syzkaller login: [ 132.366419][ T6697] FAULT_INJECTION: forcing a failure. [ 132.366419][ T6697] name failslab, interval 1, probability 0, space 0, times 0 [ 132.523259][ T6697] CPU: 0 UID: 0 PID: 6697 Comm: syz.3.173 Not tainted syzkaller #0 PREEMPT(full) [ 132.523283][ T6697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 132.523292][ T6697] Call Trace: [ 132.523297][ T6697] [ 132.523304][ T6697] dump_stack_lvl+0x100/0x190 [ 132.523331][ T6697] should_fail_ex.cold+0x5/0xa [ 132.523350][ T6697] should_failslab+0xc2/0x120 [ 132.523372][ T6697] __kmalloc_cache_noprof+0x7a/0x6f0 [ 132.523388][ T6697] ? pagemap_read+0x225/0x830 [ 132.523409][ T6697] ? security_capable+0xbd/0x260 [ 132.523431][ T6697] pagemap_read+0x225/0x830 [ 132.523454][ T6697] ? common_file_perm+0x1ab/0x4f0 [ 132.523468][ T6697] ? __pfx_pagemap_read+0x10/0x10 [ 132.523494][ T6697] ? rw_verify_area+0xce/0x6d0 [ 132.523511][ T6697] ? __pfx_pagemap_read+0x10/0x10 [ 132.523533][ T6697] vfs_read+0x1e4/0xb30 [ 132.523555][ T6697] ? __pfx_vfs_read+0x10/0x10 [ 132.523574][ T6697] ? __fget_files+0x215/0x3d0 [ 132.523598][ T6697] ? __fget_files+0x21f/0x3d0 [ 132.523622][ T6697] ksys_read+0x12a/0x250 [ 132.523641][ T6697] ? __pfx_ksys_read+0x10/0x10 [ 132.523665][ T6697] do_syscall_64+0x106/0xf80 [ 132.523681][ T6697] ? clear_bhb_loop+0x40/0x90 [ 132.523698][ T6697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.523713][ T6697] RIP: 0033:0x7fd9d039bf79 [ 132.523727][ T6697] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 132.523741][ T6697] RSP: 002b:00007fd9ce5f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 132.523755][ T6697] RAX: ffffffffffffffda RBX: 00007fd9d0616090 RCX: 00007fd9d039bf79 [ 132.523773][ T6697] RDX: 00000000000039b8 RSI: 0000000000000000 RDI: 0000000000000004 [ 132.523781][ T6697] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 132.523790][ T6697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 132.523799][ T6697] R13: 00007fd9d0616128 R14: 00007fd9d0616090 R15: 00007ffeddcdbc58 [ 132.523819][ T6697] [ 133.026939][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.033470][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.529923][ T30] audit: type=1800 audit(1771054644.764:3): pid=6697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.173" name="lu_gp_id" dev="configfs" ino=12133 res=0 errno=0 [ 135.026429][ T6736] random: crng reseeded on system resumption [ 135.237551][ T6740] netlink: 8 bytes leftover after parsing attributes in process `syz.3.183'. [ 135.543761][ T6747] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 136.443737][ T6764] FAULT_INJECTION: forcing a failure. [ 136.443737][ T6764] name failslab, interval 1, probability 0, space 0, times 0 [ 136.498493][ T6764] CPU: 0 UID: 0 PID: 6764 Comm: syz.2.188 Not tainted syzkaller #0 PREEMPT(full) [ 136.498517][ T6764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 136.498532][ T6764] Call Trace: [ 136.498538][ T6764] [ 136.498544][ T6764] dump_stack_lvl+0x100/0x190 [ 136.498572][ T6764] should_fail_ex.cold+0x5/0xa [ 136.498590][ T6764] ? snd_midi_event_new+0xa1/0x210 [ 136.498608][ T6764] should_failslab+0xc2/0x120 [ 136.498630][ T6764] __kmalloc_noprof+0xe0/0x850 [ 136.498653][ T6764] snd_midi_event_new+0xa1/0x210 [ 136.498671][ T6764] snd_virmidi_output_open+0x106/0x670 [ 136.498693][ T6764] open_substream+0x480/0x9e0 [ 136.498717][ T6764] rawmidi_open_priv+0x595/0x6f0 [ 136.498733][ T6764] snd_rawmidi_open+0x4c9/0xba0 [ 136.498751][ T6764] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 136.498766][ T6764] ? __pfx_default_wake_function+0x10/0x10 [ 136.498792][ T6764] ? kobject_get_unless_zero+0x156/0x200 [ 136.498812][ T6764] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 136.498826][ T6764] snd_open+0x22d/0x4c0 [ 136.498846][ T6764] ? __pfx_snd_open+0x10/0x10 [ 136.498864][ T6764] chrdev_open+0x234/0x6a0 [ 136.498885][ T6764] ? __pfx_apparmor_file_open+0x10/0x10 [ 136.498906][ T6764] ? __pfx_chrdev_open+0x10/0x10 [ 136.498928][ T6764] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 136.498953][ T6764] do_dentry_open+0x6d8/0x1660 [ 136.498973][ T6764] ? __pfx_chrdev_open+0x10/0x10 [ 136.498998][ T6764] vfs_open+0x82/0x3f0 [ 136.499015][ T6764] path_openat+0x208c/0x31a0 [ 136.499042][ T6764] ? __pfx_path_openat+0x10/0x10 [ 136.499070][ T6764] do_file_open+0x20e/0x430 [ 136.499092][ T6764] ? __pfx_do_file_open+0x10/0x10 [ 136.499126][ T6764] ? alloc_fd+0x476/0x790 [ 136.499148][ T6764] ? do_getname+0x191/0x390 [ 136.499164][ T6764] do_sys_openat2+0x10d/0x1e0 [ 136.499180][ T6764] ? __pfx_do_sys_openat2+0x10/0x10 [ 136.499197][ T6764] ? __fget_files+0x21f/0x3d0 [ 136.499220][ T6764] __x64_sys_openat+0x12d/0x210 [ 136.499236][ T6764] ? __pfx___x64_sys_openat+0x10/0x10 [ 136.499259][ T6764] do_syscall_64+0x106/0xf80 [ 136.499274][ T6764] ? clear_bhb_loop+0x40/0x90 [ 136.499292][ T6764] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.499307][ T6764] RIP: 0033:0x7fc666f9bf79 [ 136.499320][ T6764] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 136.499335][ T6764] RSP: 002b:00007fc667e3d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 136.499350][ T6764] RAX: ffffffffffffffda RBX: 00007fc667215fa0 RCX: 00007fc666f9bf79 [ 136.499360][ T6764] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 136.499369][ T6764] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 136.499377][ T6764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.499385][ T6764] R13: 00007fc667216038 R14: 00007fc667215fa0 R15: 00007ffd2de173d8 [ 136.499405][ T6764] [ 138.039303][ T6755] bond0: invalid ARP target specified [ 138.197860][ T6774] rtc_cmos 00:00: Alarms can be up to one day in the future [ 138.695621][ T5825] rtc_cmos 00:00: Alarms can be up to one day in the future [ 138.716674][ T5825] rtc_cmos 00:00: Alarms can be up to one day in the future [ 138.754669][ T5825] rtc_cmos 00:00: Alarms can be up to one day in the future [ 138.827456][ T5825] rtc_cmos 00:00: Alarms can be up to one day in the future [ 138.834745][ T5825] rtc rtc0: __rtc_set_alarm: err=-22 [ 138.878533][ T6798] netlink: 8 bytes leftover after parsing attributes in process `syz.3.196'. syzkaller syzkaller login: [ 139.672967][ T6803] netlink: 24 bytes leftover after parsing attributes in process `syz.0.197'. [ 139.746881][ T6813] netlink: 28 bytes leftover after parsing attributes in process `syz.2.199'. syzkaller syzkaller login: [ 140.921407][ T5831] Bluetooth: hci1: Malformed LE Event: 0x0b [ 142.490107][ T6854] netlink: 8 bytes leftover after parsing attributes in process `syz.1.208'. syzkaller syzkaller login: [ 144.955145][ T5831] Bluetooth: hci2: Malformed LE Event: 0x0b syzkaller syzkaller login: [ 145.780744][ T6922] netlink: 8 bytes leftover after parsing attributes in process `syz.3.221'. [ 147.293801][ T6958] netlink: 24 bytes leftover after parsing attributes in process `syz.1.227'. syzkaller syzkaller login: [ 149.801765][ T7009] netlink: 24 bytes leftover after parsing attributes in process `syz.1.240'. [ 150.366832][ T7015] netlink: 24 bytes leftover after parsing attributes in process `syz.2.241'. syzkaller syzkaller login: [ 153.461419][ T7068] bridge0: port 3(gretap0) entered blocking state [ 153.537436][ T7068] bridge0: port 3(gretap0) entered disabled state [ 153.595465][ T7068] gretap0: entered allmulticast mode [ 153.653130][ T7068] FAULT_INJECTION: forcing a failure. [ 153.653130][ T7068] name failslab, interval 1, probability 0, space 0, times 0 [ 153.797389][ T7068] CPU: 0 UID: 0 PID: 7068 Comm: syz.3.256 Not tainted syzkaller #0 PREEMPT(full) [ 153.797413][ T7068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 153.797422][ T7068] Call Trace: [ 153.797427][ T7068] [ 153.797433][ T7068] dump_stack_lvl+0x100/0x190 [ 153.797461][ T7068] should_fail_ex.cold+0x5/0xa [ 153.797479][ T7068] should_failslab+0xc2/0x120 [ 153.797508][ T7068] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 153.797527][ T7068] ? __kernfs_new_node+0xd2/0x960 [ 153.797547][ T7068] __kernfs_new_node+0xd2/0x960 [ 153.797571][ T7068] ? __pfx___kernfs_new_node+0x10/0x10 [ 153.797591][ T7068] ? find_held_lock+0x2b/0x80 [ 153.797614][ T7068] ? kernfs_root+0xee/0x2a0 [ 153.797627][ T7068] ? kernfs_root+0xee/0x2a0 [ 153.797646][ T7068] kernfs_new_node+0x11b/0x1a0 [ 153.797666][ T7068] kernfs_create_link+0xcc/0x240 [ 153.797691][ T7068] sysfs_do_create_link_sd+0x90/0x140 [ 153.797708][ T7068] sysfs_create_link+0x61/0xc0 [ 153.797722][ T7068] __netdev_adjacent_dev_insert+0x43e/0xbf0 [ 153.797750][ T7068] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 153.797781][ T7068] __netdev_upper_dev_link+0x3d8/0x7e0 [ 153.797804][ T7068] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 153.797822][ T7068] ? kernfs_root+0xf8/0x2a0 [ 153.797838][ T7068] ? kernfs_add_one+0x214/0x850 [ 153.797860][ T7068] netdev_master_upper_dev_link+0x9f/0xd0 [ 153.797880][ T7068] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 153.797901][ T7068] ? lockdep_rtnl_is_held+0x26/0x40 [ 153.797921][ T7068] ? netdev_is_rx_handler_busy+0x83/0x140 [ 153.797940][ T7068] br_add_if+0x9fd/0x1b40 [ 153.797957][ T7068] ? security_capable+0x80/0x260 [ 153.797980][ T7068] add_del_if+0x114/0x160 [ 153.797995][ T7068] br_dev_siocdevprivate+0x8ac/0x1650 [ 153.798014][ T7068] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 153.798038][ T7068] ? lock_acquire+0x1cf/0x380 [ 153.798062][ T7068] ? netdev_name_node_lookup+0x107/0x150 [ 153.798084][ T7068] ? __mutex_lock+0x26a/0x1b90 [ 153.798103][ T7068] dev_ifsioc+0xc1e/0x1e90 [ 153.798119][ T7068] ? __pfx_dev_ifsioc+0x10/0x10 [ 153.798131][ T7068] ? __pfx___mutex_lock+0x10/0x10 [ 153.798153][ T7068] ? dev_load+0x8e/0x240 [ 153.798173][ T7068] ? dev_load+0x8e/0x240 [ 153.798199][ T7068] dev_ioctl+0x70e/0x1070 [ 153.798214][ T7068] sock_ioctl+0x494/0x6b0 [ 153.798235][ T7068] ? __pfx_sock_ioctl+0x10/0x10 [ 153.798253][ T7068] ? hook_file_ioctl_common+0x146/0x410 [ 153.798281][ T7068] ? __fget_files+0x21f/0x3d0 [ 153.798303][ T7068] ? __pfx_sock_ioctl+0x10/0x10 [ 153.798323][ T7068] __x64_sys_ioctl+0x18e/0x210 [ 153.798351][ T7068] do_syscall_64+0x106/0xf80 [ 153.798367][ T7068] ? clear_bhb_loop+0x40/0x90 [ 153.798387][ T7068] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 153.798403][ T7068] RIP: 0033:0x7fd9d039bf79 [ 153.798416][ T7068] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 153.798430][ T7068] RSP: 002b:00007fd9ce5d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 153.798446][ T7068] RAX: ffffffffffffffda RBX: 00007fd9d0616180 RCX: 00007fd9d039bf79 [ 153.798456][ T7068] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 153.798464][ T7068] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 153.798473][ T7068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 153.798482][ T7068] R13: 00007fd9d0616218 R14: 00007fd9d0616180 R15: 00007ffeddcdbc58 [ 153.798502][ T7068] [ 154.319532][ T7068] gretap0: left allmulticast mode [ 155.223124][ T7093] FAULT_INJECTION: forcing a failure. [ 155.223124][ T7093] name failslab, interval 1, probability 0, space 0, times 0 [ 155.366926][ T7093] CPU: 0 UID: 0 PID: 7093 Comm: syz.0.263 Not tainted syzkaller #0 PREEMPT(full) [ 155.366949][ T7093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 155.366959][ T7093] Call Trace: [ 155.366965][ T7093] [ 155.366972][ T7093] dump_stack_lvl+0x100/0x190 [ 155.366999][ T7093] should_fail_ex.cold+0x5/0xa [ 155.367017][ T7093] should_failslab+0xc2/0x120 [ 155.367040][ T7093] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 155.367060][ T7093] ? vidtv_psi_short_event_desc_init+0x429/0x5f0 [ 155.367087][ T7093] kstrdup+0x51/0xe0 [ 155.367108][ T7093] vidtv_psi_short_event_desc_init+0x429/0x5f0 [ 155.367134][ T7093] vidtv_psi_desc_clone+0x33f/0x5d0 [ 155.367159][ T7093] vidtv_channel_si_init+0x764/0x18d0 [ 155.367182][ T7093] vidtv_mux_init+0x526/0xbf0 [ 155.367200][ T7093] vidtv_start_feed+0x33e/0x4c0 [ 155.367220][ T7093] ? __pfx_vidtv_start_feed+0x10/0x10 [ 155.367241][ T7093] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 155.367284][ T7093] ? mark_held_locks+0x40/0x70 [ 155.367308][ T7093] ? __pfx_vidtv_start_feed+0x10/0x10 [ 155.367328][ T7093] dmx_ts_feed_start_filtering+0xf6/0x220 [ 155.367354][ T7093] dvb_dmxdev_start_feed+0x273/0x3f0 [ 155.367376][ T7093] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 155.367397][ T7093] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 155.367419][ T7093] dvb_demux_do_ioctl+0xe64/0x1200 [ 155.367444][ T7093] dvb_usercopy+0x167/0x340 [ 155.367461][ T7093] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 155.367482][ T7093] ? __pfx_dvb_usercopy+0x10/0x10 [ 155.367507][ T7093] ? __fget_files+0x21f/0x3d0 [ 155.367530][ T7093] dvb_demux_ioctl+0x29/0x40 [ 155.367547][ T7093] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 155.367565][ T7093] __x64_sys_ioctl+0x18e/0x210 [ 155.367585][ T7093] do_syscall_64+0x106/0xf80 [ 155.367600][ T7093] ? clear_bhb_loop+0x40/0x90 [ 155.367619][ T7093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.367635][ T7093] RIP: 0033:0x7ff633f9bf79 [ 155.367648][ T7093] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 155.367662][ T7093] RSP: 002b:00007ff6321f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 155.367676][ T7093] RAX: ffffffffffffffda RBX: 00007ff634216090 RCX: 00007ff633f9bf79 [ 155.367686][ T7093] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 155.367694][ T7093] RBP: 00007ff6340327e0 R08: 0000000000000000 R09: 0000000000000000 [ 155.367703][ T7093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.367711][ T7093] R13: 00007ff634216128 R14: 00007ff634216090 R15: 00007ffc07b83848 [ 155.367730][ T7093] [ 155.667168][ T7104] No such timeout policy "" [ 155.667208][ T7104] netlink: Failed to associated timeout policy '' [ 157.001143][ T7120] bridge0: port 3(gretap0) entered blocking state [ 157.097550][ T7120] bridge0: port 3(gretap0) entered disabled state [ 157.151431][ T7120] gretap0: entered allmulticast mode [ 157.221803][ T7120] FAULT_INJECTION: forcing a failure. [ 157.221803][ T7120] name failslab, interval 1, probability 0, space 0, times 0 [ 157.357343][ T7120] CPU: 0 UID: 0 PID: 7120 Comm: syz.1.267 Not tainted syzkaller #0 PREEMPT(full) [ 157.357367][ T7120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 157.357376][ T7120] Call Trace: [ 157.357382][ T7120] [ 157.357388][ T7120] dump_stack_lvl+0x100/0x190 [ 157.357414][ T7120] should_fail_ex.cold+0x5/0xa [ 157.357433][ T7120] should_failslab+0xc2/0x120 [ 157.357455][ T7120] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 157.357473][ T7120] ? __kernfs_new_node+0xd2/0x960 [ 157.357489][ T7120] ? kstrdup+0xb3/0xe0 [ 157.357512][ T7120] __kernfs_new_node+0xd2/0x960 [ 157.357525][ T7120] ? up_write+0x290/0x4f0 [ 157.357547][ T7120] ? __pfx___kernfs_new_node+0x10/0x10 [ 157.357567][ T7120] ? find_held_lock+0x2b/0x80 [ 157.357587][ T7120] ? kernfs_root+0xee/0x2a0 [ 157.357600][ T7120] ? kernfs_root+0xee/0x2a0 [ 157.357619][ T7120] kernfs_new_node+0x11b/0x1a0 [ 157.357639][ T7120] kernfs_create_link+0xcc/0x240 [ 157.357661][ T7120] sysfs_do_create_link_sd+0x90/0x140 [ 157.357677][ T7120] sysfs_create_link+0x61/0xc0 [ 157.357691][ T7120] br_sysfs_addif+0x1ae/0x210 [ 157.357711][ T7120] br_add_if+0x701/0x1b40 [ 157.357727][ T7120] ? security_capable+0x80/0x260 [ 157.357750][ T7120] add_del_if+0x114/0x160 [ 157.357766][ T7120] br_dev_siocdevprivate+0x8ac/0x1650 [ 157.357784][ T7120] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 157.357808][ T7120] ? lock_acquire+0x1cf/0x380 [ 157.357832][ T7120] ? netdev_name_node_lookup+0x107/0x150 [ 157.357853][ T7120] ? __mutex_lock+0x26a/0x1b90 [ 157.357872][ T7120] dev_ifsioc+0xc1e/0x1e90 [ 157.357887][ T7120] ? __pfx_dev_ifsioc+0x10/0x10 [ 157.357900][ T7120] ? __pfx___mutex_lock+0x10/0x10 [ 157.357922][ T7120] ? dev_load+0x8e/0x240 [ 157.357946][ T7120] ? dev_load+0x8e/0x240 [ 157.357972][ T7120] dev_ioctl+0x70e/0x1070 [ 157.357987][ T7120] sock_ioctl+0x494/0x6b0 [ 157.358009][ T7120] ? __pfx_sock_ioctl+0x10/0x10 [ 157.358028][ T7120] ? hook_file_ioctl_common+0x146/0x410 [ 157.358055][ T7120] ? __fget_files+0x21f/0x3d0 [ 157.358078][ T7120] ? __pfx_sock_ioctl+0x10/0x10 [ 157.358098][ T7120] __x64_sys_ioctl+0x18e/0x210 [ 157.358117][ T7120] do_syscall_64+0x106/0xf80 [ 157.358141][ T7120] ? clear_bhb_loop+0x40/0x90 [ 157.358160][ T7120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.358176][ T7120] RIP: 0033:0x7fc46e99bf79 [ 157.358191][ T7120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 157.358205][ T7120] RSP: 002b:00007fc46f8f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 157.358219][ T7120] RAX: ffffffffffffffda RBX: 00007fc46ec16180 RCX: 00007fc46e99bf79 [ 157.358229][ T7120] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 157.358238][ T7120] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 157.358246][ T7120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 157.358255][ T7120] R13: 00007fc46ec16218 R14: 00007fc46ec16180 R15: 00007ffd11a6ccb8 [ 157.358275][ T7120] [ 157.738524][ T7120] gretap0: left allmulticast mode [ 160.357414][ T7153] No such timeout policy "" [ 160.362037][ T7153] netlink: Failed to associated timeout policy '' syzkaller syzkaller login: [ 162.204925][ T7189] No such timeout policy "" [ 162.223623][ T7189] netlink: Failed to associated timeout policy '' [ 163.295012][ T7221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.299'. syzkaller syzkaller login: [ 164.009223][ T7237] bridge0: port 3(gretap0) entered blocking state [ 164.107581][ T7237] bridge0: port 3(gretap0) entered disabled state [ 164.169162][ T7237] gretap0: entered allmulticast mode [ 164.239774][ T7237] FAULT_INJECTION: forcing a failure. [ 164.239774][ T7237] name failslab, interval 1, probability 0, space 0, times 0 [ 164.360868][ T7237] CPU: 0 UID: 0 PID: 7237 Comm: syz.1.302 Not tainted syzkaller #0 PREEMPT(full) [ 164.360890][ T7237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 164.360899][ T7237] Call Trace: [ 164.360904][ T7237] [ 164.360911][ T7237] dump_stack_lvl+0x100/0x190 [ 164.360946][ T7237] should_fail_ex.cold+0x5/0xa [ 164.360964][ T7237] should_failslab+0xc2/0x120 [ 164.360987][ T7237] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 164.361007][ T7237] ? kstrdup_const+0x63/0x80 [ 164.361030][ T7237] kstrdup+0x51/0xe0 [ 164.361050][ T7237] kstrdup_const+0x63/0x80 [ 164.361070][ T7237] __kernfs_new_node+0x9b/0x960 [ 164.361089][ T7237] ? __pfx___kernfs_new_node+0x10/0x10 [ 164.361108][ T7237] ? find_held_lock+0x2b/0x80 [ 164.361130][ T7237] ? kernfs_root+0xee/0x2a0 [ 164.361148][ T7237] ? kernfs_root+0xee/0x2a0 [ 164.361171][ T7237] kernfs_new_node+0x11b/0x1a0 [ 164.361191][ T7237] kernfs_create_link+0xcc/0x240 [ 164.361214][ T7237] sysfs_do_create_link_sd+0x90/0x140 [ 164.361231][ T7237] sysfs_create_link+0x61/0xc0 [ 164.361246][ T7237] __netdev_adjacent_dev_insert+0x819/0xbf0 [ 164.361273][ T7237] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 164.361303][ T7237] __netdev_upper_dev_link+0x413/0x7e0 [ 164.361325][ T7237] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 164.361344][ T7237] ? kernfs_root+0xf8/0x2a0 [ 164.361360][ T7237] ? kernfs_add_one+0x214/0x850 [ 164.361382][ T7237] netdev_master_upper_dev_link+0x9f/0xd0 [ 164.361402][ T7237] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 164.361423][ T7237] ? lockdep_rtnl_is_held+0x26/0x40 [ 164.361443][ T7237] ? netdev_is_rx_handler_busy+0x83/0x140 [ 164.361462][ T7237] br_add_if+0x9fd/0x1b40 [ 164.361478][ T7237] ? security_capable+0x80/0x260 [ 164.361507][ T7237] add_del_if+0x114/0x160 [ 164.361524][ T7237] br_dev_siocdevprivate+0x8ac/0x1650 [ 164.361542][ T7237] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 164.361566][ T7237] ? lock_acquire+0x1cf/0x380 [ 164.361591][ T7237] ? netdev_name_node_lookup+0x107/0x150 [ 164.361611][ T7237] ? __mutex_lock+0x26a/0x1b90 [ 164.361630][ T7237] dev_ifsioc+0xc1e/0x1e90 [ 164.361646][ T7237] ? __pfx_dev_ifsioc+0x10/0x10 [ 164.361658][ T7237] ? __pfx___mutex_lock+0x10/0x10 [ 164.361680][ T7237] ? dev_load+0x8e/0x240 [ 164.361700][ T7237] ? dev_load+0x8e/0x240 [ 164.361725][ T7237] dev_ioctl+0x70e/0x1070 [ 164.361740][ T7237] sock_ioctl+0x494/0x6b0 [ 164.361761][ T7237] ? __pfx_sock_ioctl+0x10/0x10 [ 164.361779][ T7237] ? hook_file_ioctl_common+0x146/0x410 [ 164.361806][ T7237] ? __fget_files+0x21f/0x3d0 [ 164.361828][ T7237] ? __pfx_sock_ioctl+0x10/0x10 [ 164.361849][ T7237] __x64_sys_ioctl+0x18e/0x210 [ 164.361868][ T7237] do_syscall_64+0x106/0xf80 [ 164.361883][ T7237] ? clear_bhb_loop+0x40/0x90 [ 164.361901][ T7237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.361923][ T7237] RIP: 0033:0x7fc46e99bf79 [ 164.361936][ T7237] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 164.361951][ T7237] RSP: 002b:00007fc46f8f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.361967][ T7237] RAX: ffffffffffffffda RBX: 00007fc46ec16180 RCX: 00007fc46e99bf79 [ 164.361977][ T7237] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 164.361987][ T7237] RBP: 00007fc46ea327e0 R08: 0000000000000000 R09: 0000000000000000 [ 164.361995][ T7237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.362004][ T7237] R13: 00007fc46ec16218 R14: 00007fc46ec16180 R15: 00007ffd11a6ccb8 [ 164.362024][ T7237] [ 164.855751][ T7237] gretap0: left allmulticast mode [ 166.696079][ T7281] bridge0: port 3(gretap0) entered blocking state [ 166.798205][ T7281] bridge0: port 3(gretap0) entered disabled state [ 166.873992][ T7281] gretap0: entered allmulticast mode [ 166.960108][ T7281] FAULT_INJECTION: forcing a failure. [ 166.960108][ T7281] name failslab, interval 1, probability 0, space 0, times 0 [ 167.085742][ T7281] CPU: 0 UID: 0 PID: 7281 Comm: syz.3.316 Not tainted syzkaller #0 PREEMPT(full) [ 167.085764][ T7281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 167.085773][ T7281] Call Trace: [ 167.085779][ T7281] [ 167.085785][ T7281] dump_stack_lvl+0x100/0x190 [ 167.085812][ T7281] should_fail_ex.cold+0x5/0xa [ 167.085830][ T7281] should_failslab+0xc2/0x120 [ 167.085852][ T7281] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 167.085872][ T7281] ? __kernfs_new_node+0xd2/0x960 [ 167.085891][ T7281] __kernfs_new_node+0xd2/0x960 [ 167.085908][ T7281] ? __pfx___kernfs_new_node+0x10/0x10 [ 167.085927][ T7281] ? find_held_lock+0x2b/0x80 [ 167.085950][ T7281] ? kernfs_root+0xee/0x2a0 [ 167.085964][ T7281] ? kernfs_root+0xee/0x2a0 [ 167.085983][ T7281] kernfs_new_node+0x11b/0x1a0 [ 167.086002][ T7281] kernfs_create_link+0xcc/0x240 [ 167.086024][ T7281] sysfs_do_create_link_sd+0x90/0x140 [ 167.086040][ T7281] sysfs_create_link+0x61/0xc0 [ 167.086055][ T7281] __netdev_adjacent_dev_insert+0x43e/0xbf0 [ 167.086081][ T7281] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 167.086112][ T7281] __netdev_upper_dev_link+0x3d8/0x7e0 [ 167.086134][ T7281] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 167.086157][ T7281] ? kernfs_root+0xf8/0x2a0 [ 167.086173][ T7281] ? kernfs_add_one+0x214/0x850 [ 167.086194][ T7281] netdev_master_upper_dev_link+0x9f/0xd0 [ 167.086215][ T7281] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 167.086237][ T7281] ? lockdep_rtnl_is_held+0x26/0x40 [ 167.086257][ T7281] ? netdev_is_rx_handler_busy+0x83/0x140 [ 167.086276][ T7281] br_add_if+0x9fd/0x1b40 [ 167.086293][ T7281] ? security_capable+0x80/0x260 [ 167.086315][ T7281] add_del_if+0x114/0x160 [ 167.086331][ T7281] br_dev_siocdevprivate+0x8ac/0x1650 [ 167.086350][ T7281] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 167.086375][ T7281] ? lock_acquire+0x1cf/0x380 [ 167.086406][ T7281] ? netdev_name_node_lookup+0x107/0x150 [ 167.086429][ T7281] ? __mutex_lock+0x26a/0x1b90 [ 167.086448][ T7281] dev_ifsioc+0xc1e/0x1e90 [ 167.086465][ T7281] ? __pfx_dev_ifsioc+0x10/0x10 [ 167.086477][ T7281] ? __pfx___mutex_lock+0x10/0x10 [ 167.086500][ T7281] ? dev_load+0x8e/0x240 [ 167.086520][ T7281] ? dev_load+0x8e/0x240 [ 167.086546][ T7281] dev_ioctl+0x70e/0x1070 [ 167.086561][ T7281] sock_ioctl+0x494/0x6b0 [ 167.086582][ T7281] ? __pfx_sock_ioctl+0x10/0x10 [ 167.086600][ T7281] ? hook_file_ioctl_common+0x146/0x410 [ 167.086627][ T7281] ? __fget_files+0x21f/0x3d0 [ 167.086649][ T7281] ? __pfx_sock_ioctl+0x10/0x10 [ 167.086669][ T7281] __x64_sys_ioctl+0x18e/0x210 [ 167.086688][ T7281] do_syscall_64+0x106/0xf80 [ 167.086703][ T7281] ? clear_bhb_loop+0x40/0x90 [ 167.086721][ T7281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.086736][ T7281] RIP: 0033:0x7fd9d039bf79 [ 167.086749][ T7281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.086764][ T7281] RSP: 002b:00007fd9ce5d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 167.086778][ T7281] RAX: ffffffffffffffda RBX: 00007fd9d0616180 RCX: 00007fd9d039bf79 [ 167.086788][ T7281] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 167.086797][ T7281] RBP: 00007fd9d04327e0 R08: 0000000000000000 R09: 0000000000000000 [ 167.086806][ T7281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.086815][ T7281] R13: 00007fd9d0616218 R14: 00007fd9d0616180 R15: 00007ffeddcdbc58 [ 167.086834][ T7281] syzkaller syzkaller login: [ 167.879607][ T7281] gretap0: left allmulticast mode [ 169.135714][ T7330] bridge0: port 3(gretap0) entered blocking state [ 169.193049][ T7330] bridge0: port 3(gretap0) entered disabled state [ 169.270421][ T7330] gretap0: entered allmulticast mode [ 169.364397][ T7330] gretap0: entered promiscuous mode [ 169.421341][ T7330] bridge0: port 3(gretap0) entered blocking state [ 169.428048][ T7330] bridge0: port 3(gretap0) entered forwarding state [ 170.008132][ T7343] FAULT_INJECTION: forcing a failure. [ 170.008132][ T7343] name failslab, interval 1, probability 0, space 0, times 0 [ 170.159879][ T7343] CPU: 0 UID: 0 PID: 7343 Comm: syz.2.334 Not tainted syzkaller #0 PREEMPT(full) [ 170.159907][ T7343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 170.159916][ T7343] Call Trace: [ 170.159921][ T7343] [ 170.159928][ T7343] dump_stack_lvl+0x100/0x190 [ 170.159955][ T7343] should_fail_ex.cold+0x5/0xa [ 170.159973][ T7343] should_failslab+0xc2/0x120 [ 170.159995][ T7343] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 170.160016][ T7343] ? vidtv_psi_desc_clone+0x3aa/0x5d0 [ 170.160045][ T7343] kmemdup_noprof+0x29/0x60 [ 170.160067][ T7343] vidtv_psi_desc_clone+0x3aa/0x5d0 [ 170.160092][ T7343] vidtv_channel_si_init+0x12ef/0x18d0 [ 170.160115][ T7343] vidtv_mux_init+0x526/0xbf0 [ 170.160134][ T7343] vidtv_start_feed+0x33e/0x4c0 [ 170.160159][ T7343] ? __pfx_vidtv_start_feed+0x10/0x10 [ 170.160180][ T7343] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 170.160204][ T7343] ? mark_held_locks+0x40/0x70 [ 170.160225][ T7343] ? __pfx_vidtv_start_feed+0x10/0x10 [ 170.160253][ T7343] dmx_ts_feed_start_filtering+0xf6/0x220 [ 170.160281][ T7343] dvb_dmxdev_start_feed+0x273/0x3f0 [ 170.160305][ T7343] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 170.160328][ T7343] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 170.160350][ T7343] dvb_demux_do_ioctl+0xe64/0x1200 [ 170.160376][ T7343] dvb_usercopy+0x167/0x340 [ 170.160392][ T7343] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 170.160413][ T7343] ? __pfx_dvb_usercopy+0x10/0x10 [ 170.160438][ T7343] ? __fget_files+0x21f/0x3d0 [ 170.160461][ T7343] dvb_demux_ioctl+0x29/0x40 [ 170.160478][ T7343] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 170.160496][ T7343] __x64_sys_ioctl+0x18e/0x210 [ 170.160516][ T7343] do_syscall_64+0x106/0xf80 [ 170.160531][ T7343] ? clear_bhb_loop+0x40/0x90 [ 170.160550][ T7343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.160565][ T7343] RIP: 0033:0x7fc666f9bf79 [ 170.160579][ T7343] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 170.160593][ T7343] RSP: 002b:00007fc667e1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.160607][ T7343] RAX: ffffffffffffffda RBX: 00007fc667216090 RCX: 00007fc666f9bf79 [ 170.160617][ T7343] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 170.160625][ T7343] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 170.160634][ T7343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.160642][ T7343] R13: 00007fc667216128 R14: 00007fc667216090 R15: 00007ffd2de173d8 [ 170.160662][ T7343] [ 171.939176][ T7388] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 syzkaller syzkaller login: [ 176.464441][ T7491] netlink: 8 bytes leftover after parsing attributes in process `syz.0.378'. syzkaller syzkaller login: [ 180.521960][ T7569] FAULT_INJECTION: forcing a failure. [ 180.521960][ T7569] name failslab, interval 1, probability 0, space 0, times 0 [ 180.683405][ T7569] CPU: 0 UID: 0 PID: 7569 Comm: syz.2.397 Not tainted syzkaller #0 PREEMPT(full) [ 180.683429][ T7569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 180.683439][ T7569] Call Trace: [ 180.683446][ T7569] [ 180.683452][ T7569] dump_stack_lvl+0x100/0x190 [ 180.683480][ T7569] should_fail_ex.cold+0x5/0xa [ 180.683498][ T7569] should_failslab+0xc2/0x120 [ 180.683521][ T7569] __kmalloc_cache_noprof+0x7a/0x6f0 [ 180.683539][ T7569] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 180.683563][ T7569] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 180.683584][ T7569] vidtv_mux_init+0x8a6/0xbf0 [ 180.683611][ T7569] vidtv_start_feed+0x33e/0x4c0 [ 180.683633][ T7569] ? __pfx_vidtv_start_feed+0x10/0x10 [ 180.683655][ T7569] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 180.683680][ T7569] ? mark_held_locks+0x40/0x70 [ 180.683701][ T7569] ? __pfx_vidtv_start_feed+0x10/0x10 [ 180.683721][ T7569] dmx_ts_feed_start_filtering+0xf6/0x220 [ 180.683746][ T7569] dvb_dmxdev_start_feed+0x273/0x3f0 [ 180.683769][ T7569] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 180.683791][ T7569] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 180.683812][ T7569] dvb_demux_do_ioctl+0xe64/0x1200 [ 180.683839][ T7569] dvb_usercopy+0x167/0x340 [ 180.683857][ T7569] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 180.683878][ T7569] ? __pfx_dvb_usercopy+0x10/0x10 [ 180.683903][ T7569] ? __fget_files+0x21f/0x3d0 [ 180.683926][ T7569] dvb_demux_ioctl+0x29/0x40 [ 180.683943][ T7569] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 180.683961][ T7569] __x64_sys_ioctl+0x18e/0x210 [ 180.683981][ T7569] do_syscall_64+0x106/0xf80 [ 180.683996][ T7569] ? clear_bhb_loop+0x40/0x90 [ 180.684014][ T7569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.684029][ T7569] RIP: 0033:0x7fc666f9bf79 [ 180.684043][ T7569] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 180.684056][ T7569] RSP: 002b:00007fc667dfb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 180.684071][ T7569] RAX: ffffffffffffffda RBX: 00007fc667216180 RCX: 00007fc666f9bf79 [ 180.684081][ T7569] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 180.684089][ T7569] RBP: 00007fc6670327e0 R08: 0000000000000000 R09: 0000000000000000 [ 180.684098][ T7569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.684106][ T7569] R13: 00007fc667216218 R14: 00007fc667216180 R15: 00007ffd2de173d8 [ 180.684126][ T7569] [ 180.941645][ T5909] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 180.953643][ T5909] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 180.962057][ T5909] CPU: 0 UID: 0 PID: 5909 Comm: kworker/0:5 Not tainted syzkaller #0 PREEMPT(full) [ 180.971414][ T5909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 180.981564][ T5909] Workqueue: events vidtv_mux_tick [ 180.986708][ T5909] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 180.993291][ T5909] Code: fc 83 de f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 181.012890][ T5909] RSP: 0018:ffffc900042f73f8 EFLAGS: 00010202 [ 181.018951][ T5909] RAX: 0000000000000002 RBX: ffffc900042f7678 RCX: 0000000000000002 [ 181.026908][ T5909] RDX: 0000000000000000 RSI: ffffffff882963e4 RDI: ffff888063ea0000 [ 181.034863][ T5909] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 181.042819][ T5909] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900042f7698 [ 181.050781][ T5909] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 181.058736][ T5909] FS: 0000000000000000(0000) GS:ffff88812435f000(0000) knlGS:0000000000000000 [ 181.067655][ T5909] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 181.074228][ T5909] CR2: 000000110c2ff224 CR3: 0000000036daa000 CR4: 00000000003526f0 [ 181.082199][ T5909] Call Trace: [ 181.085560][ T5909] [ 181.088517][ T5909] ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10 [ 181.094853][ T5909] vidtv_psi_pmt_write_into+0x3b2/0xa70 [ 181.100404][ T5909] ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10 [ 181.106468][ T5909] ? vidtv_psi_pat_write_into+0x56a/0x690 [ 181.112180][ T5909] ? __pfx_vidtv_psi_pat_write_into+0x10/0x10 [ 181.118242][ T5909] ? unwind_next_frame+0x3be/0x1ea0 [ 181.123435][ T5909] ? unwind_next_frame+0x3be/0x1ea0 [ 181.128622][ T5909] ? unwind_next_frame+0x3c8/0x1ea0 [ 181.133807][ T5909] ? ret_from_fork_asm+0x1a/0x30 [ 181.138733][ T5909] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 181.144883][ T5909] ? arch_stack_walk+0x94/0xf0 [ 181.149706][ T5909] vidtv_mux_push_si+0x932/0xe80 [ 181.154636][ T5909] ? __pfx_vidtv_mux_push_si+0x10/0x10 [ 181.160109][ T5909] ? stack_depot_save_flags+0x27/0x9d0 [ 181.165560][ T5909] ? __pfx_vidtv_ts_pcr_write_into+0x10/0x10 [ 181.171547][ T5909] vidtv_mux_tick+0xe9b/0x1480 [ 181.176306][ T5909] ? __lock_acquire+0x4a5/0x2630 [ 181.181241][ T5909] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 181.186430][ T5909] ? __lock_acquire+0x4a5/0x2630 [ 181.191370][ T5909] ? debug_object_deactivate+0x2e4/0x3b0 [ 181.197085][ T5909] ? rcu_is_watching+0x12/0xc0 [ 181.201927][ T5909] process_one_work+0x9d7/0x1920 [ 181.206863][ T5909] ? __pfx_process_one_work+0x10/0x10 [ 181.212231][ T5909] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 181.217601][ T5909] worker_thread+0x5da/0xe40 [ 181.222187][ T5909] ? __pfx_worker_thread+0x10/0x10 [ 181.227295][ T5909] ? kthread+0x13a/0x450 [ 181.231660][ T5909] ? __pfx_worker_thread+0x10/0x10 [ 181.236763][ T5909] kthread+0x370/0x450 [ 181.240826][ T5909] ? __pfx_kthread+0x10/0x10 [ 181.245409][ T5909] ret_from_fork+0x754/0xd80 [ 181.249998][ T5909] ? __pfx_ret_from_fork+0x10/0x10 [ 181.255106][ T5909] ? __switch_to+0x7b4/0x1120 [ 181.259782][ T5909] ? __pfx_kthread+0x10/0x10 [ 181.264450][ T5909] ret_from_fork_asm+0x1a/0x30 [ 181.269204][ T5909] [ 181.272209][ T5909] Modules linked in: [ 181.277184][ T5909] ---[ end trace 0000000000000000 ]--- [ 181.342102][ T5909] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 181.355000][ T5909] Code: fc 83 de f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 181.396242][ T5909] RSP: 0018:ffffc900042f73f8 EFLAGS: 00010202 [ 181.402340][ T5909] RAX: 0000000000000002 RBX: ffffc900042f7678 RCX: 0000000000000002 [ 181.425834][ T5909] RDX: 0000000000000000 RSI: ffffffff882963e4 RDI: ffff888063ea0000 [ 181.441155][ T5909] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 181.450308][ T5909] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900042f7698 [ 181.458363][ T5909] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 181.467740][ T5909] FS: 0000000000000000(0000) GS:ffff88812435f000(0000) knlGS:0000000000000000 [ 181.476737][ T5909] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 181.483523][ T5909] CR2: 00007fc46e9e96c0 CR3: 000000007a7a8000 CR4: 00000000003526f0 [ 181.491782][ T5909] Kernel panic - not syncing: Fatal exception [ 181.497995][ T5909] Kernel Offset: disabled [ 181.502307][ T5909] Rebooting in 86400 seconds..