last executing test programs: 1m23.812141575s ago: executing program 3 (id=434): r0 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000040), 0x19, 0x0, 0x0, &(0x7f0000000040), 0x2, 0x80008003}, 0x8}, 0x5, 0x1c) pwrite64$auto(0xc8, &(0x7f0000000000)='\xfc\xff\xff\xff\xff\xff\xff\xffRN8\x99\x88\xf5s\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\xae\x18\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\xdac$w\x883\xac\xcd\x96\xc2\x93\x0e\x12/v0\x90\x915?', 0x4c, 0x9) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex, 0x7f, 0x99, 0x9, 0x1, @relative_fd, 0xd}, 0x96) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,v\xf58\x83\xcf\xc5D\xcc', 0x100000a3d9) recvmmsg$auto(r2, &(0x7f0000000240)={{&(0x7f0000000340)="be9c33df5c8c353735ae9f0e59896ce734a2947de470705514969d5d39224c22b3e740f3eb49f4caac69d2876cd1c27ee4a8a6f1800b38e925041b8cb1a698e738fa874547d44e0a4a5cb5a7cfae9a5940c7d0294ba5e07d0a0e1fc49e31effbba8d3c76977c377b68625c5c083983cea5848d796d3750d2e377f50dc4ba84f2caaf4671479d7a71b3b55e199e5ff2087b65c2b199790755090b2b12d6840f477217e38e8b56e7b514fc90e0538050", 0x7, &(0x7f0000000200)={&(0x7f00000001c0)="76afa3c1fd10f38db0dd5c8d0e58ae3a6495bcaad4f3c263d15f2b932ecf25bf0b87101b7f7a715a9184db333d581b", 0x2}, 0x80000001, 0x0, 0x7, 0x2}}, 0x7, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000140)=@ax25={0x3, @bcast}, 0x7) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x200000008000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xffff7fff, 0x4, 0x80000001, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, 0x0) mmap$auto(0x2, 0x66f088a5, 0x1, 0x17, r1, 0x0) connect$auto(r0, 0x0, 0x83) mmap$auto(0x3ff, 0x8000000802000c, 0x4, 0x12, 0x40000000000a5, 0x1) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) pread64$auto(r4, 0x0, 0x100000001, 0x100) open(&(0x7f0000000100)='./file0\x00', 0x1313c2, 0x112) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x8001}, 0x24048004) 1m21.857697907s ago: executing program 3 (id=446): r0 = socket(0xa, 0x3, 0x5) sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000040), 0x19, 0x0, 0x0, &(0x7f0000000040), 0x2, 0x80008003}, 0x8}, 0x5, 0x1c) pwrite64$auto(0xc8, &(0x7f0000000000)='\xfc\xff\xff\xff\xff\xff\xff\xffRN8\x99\x88\xf5s\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\xae\x18\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\xdac$w\x883\xac\xcd\x96\xc2\x93\x0e\x12/v0\x90\x915?', 0x4c, 0x9) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex, 0x7f, 0x99, 0x9, 0x1, @relative_fd, 0xd}, 0x96) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/admmidi2\x00', 0x440001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,v\xf58\x83\xcf\xc5D\xcc', 0x100000a3d9) recvmmsg$auto(r2, &(0x7f0000000240)={{&(0x7f0000000340)="be9c33df5c8c353735ae9f0e59896ce734a2947de470705514969d5d39224c22b3e740f3eb49f4caac69d2876cd1c27ee4a8a6f1800b38e925041b8cb1a698e738fa874547d44e0a4a5cb5a7cfae9a5940c7d0294ba5e07d0a0e1fc49e31effbba8d3c76977c377b68625c5c083983cea5848d796d3750d2e377f50dc4ba84f2caaf4671479d7a71b3b55e199e5ff2087b65c2b199790755090b2b12d6840f477217e38e8b56e7b514fc90e0538050", 0x7, &(0x7f0000000200)={&(0x7f00000001c0)="76afa3c1fd10f38db0dd5c8d0e58ae3a6495bcaad4f3c263d15f2b932ecf25bf0b87101b7f7a715a9184db333d581b", 0x2}, 0x80000001, 0x0, 0x7, 0x2}}, 0x7, 0x7, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x200000008000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xffff7fff, 0x4, 0x80000001, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, 0x0) mmap$auto(0x2, 0x66f088a5, 0x1, 0x17, r1, 0x0) connect$auto(r0, 0x0, 0x83) mmap$auto(0x3ff, 0x8000000802000c, 0x4, 0x12, 0x40000000000a5, 0x1) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) pread64$auto(r4, 0x0, 0x100000001, 0x100) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x8001}, 0x24048004) 1m21.315426727s ago: executing program 3 (id=449): mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) r1 = memfd_secret$auto(0x80000000) faccessat$auto(r1, &(0x7f0000000040)='./file0\x00', 0x7f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x400000000008000) writev$auto(r0, &(0x7f0000000000)={0x0, 0x407114}, 0x8) 1m19.960238276s ago: executing program 3 (id=453): io_pgetevents$auto(0xe7, 0x8, 0x200000000000000, 0x0, &(0x7f00000000c0)={0x1, 0xb0}, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0xffffffffffffffff, 0x20009, 0x4000000000df, 0xeb5, 0x401, 0x8000) getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0) write$auto(0x3, 0x0, 0xffd8) socket(0x2, 0x1, 0x106) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto(r2, 0x2284, r1) 1m17.922719621s ago: executing program 3 (id=456): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x1014, r0, 0x4, 0x8002) ptrace$auto_PTRACE_PEEKSIGINFO(0x4209, r0, 0x8, 0x6) r1 = setfsuid$auto(0xee00) r2 = setfsuid$auto(0xee01) setresuid$auto(r1, r2, r1) rt_tgsigqueueinfo$auto(0x3, r0, 0x803, &(0x7f0000000180)={@siginfo_0_0={0x89, 0x101, 0x401, @_rt={r0, r2, @sival_int=0x4}}}) waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000000)={@siginfo_0_0={0x1007ff, 0x4, 0xa4, @_sigchld={r0, r2, 0x80, 0x400000001, 0x2}}}, 0x81, &(0x7f0000000080)={{0x6, 0x6}, {0xc26b}, 0x7, 0x20051d7, 0x5, 0x400, 0x10001, 0xf156, 0x8, 0x9, 0xe0e, 0xa, 0xffffffff7fffffff, 0xa0f, 0x357, 0x7ff}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x0) io_uring_setup$auto(0x6, 0x0) syz_clone3(&(0x7f00000001c0)={0x200, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = socket$nl_generic(0x10, 0x3, 0x10) poll$auto(&(0x7f0000003640)={r3, 0x7, 0x9}, 0x4, 0x3) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r3) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r4, &(0x7f00000039c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0xc4) pipe$auto(&(0x7f0000001480)=0xffffffffffffffff) readv$auto(0x3, 0x0, 0x3) vmsplice$auto(r5, &(0x7f0000000000)={0x0, 0x7}, 0x5, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask_requested\x00', 0x0, 0x0) r6 = openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r3, 0x8000) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/alloc_sleep_millisecs\x00', 0x20681, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.pressure\x00', 0x42802, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000000c0)='5', 0x1) write$auto(0x3, 0x0, 0x100082) sendfile$auto(r5, r6, 0x0, 0x4) 1m15.744143742s ago: executing program 3 (id=465): r0 = accept$auto(0xffffffffffffffff, &(0x7f00000000c0)=@xdp={0x2c, 0x0, 0x0, 0x31}, 0x0) close_range$auto(r0, r0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) bind$auto(r1, &(0x7f0000000700)=@vsock={0x28, 0x0, 0x2710, @my=0x1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NFC_CMD_GET_TARGET(r2, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000001380)=ANY=[], 0x58}, 0x1, 0x0, 0x0, 0x4404}, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) sendmsg$auto_NL80211_CMD_NEW_STATION(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x14}}, 0x48844) execve$auto(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)=&(0x7f00000001c0)=')@\x00', 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r3, &(0x7f0000000080)={0x0, 0x80000000}, 0xb, 0xfffffffffffffffe, 0x4, 0x2f) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000100)={{@raw=0xb, 0x3, 0xcf, 0x8, "16a0d89bf208384515b5375a677609aa1bc737276563c3d5a2fca999d5797ab7a10a4d2bc341c4bd369ae535", @raw=0x1}, 0x1, @integer=@value=[0x6d, 0x7, 0x0, 0xbb, 0x4, 0x80000000, 0x1, 0x10001, 0x1, 0x400000000009, 0xc4, 0x9, 0x6, 0x4, 0x3, 0x6, 0x1, 0x3, 0x4, 0x401, 0x1000000000000006, 0x0, 0xa3, 0x5, 0x2, 0x3, 0x5, 0x6, 0x8, 0x1, 0x8, 0x7f, 0xffffffffffffdb75, 0x100000000, 0x3, 0x7, 0x7fffffffffffffff, 0x1, 0xd, 0x1, 0x71, 0x0, 0x8, 0x2, 0x3, 0x3, 0x2d7, 0x1, 0x1, 0x6, 0x3, 0x800000001, 0x6, 0x7, 0x0, 0x6, 0x4, 0x3, 0x40a, 0xd, 0x3fd, 0x8, 0x7, 0xffff, 0x50ce0883, 0xbd9, 0x1, 0x2, 0xd8f, 0x80000000, 0x0, 0x7, 0x46e, 0xa5cf, 0x8, 0x7, 0xc16b, 0x6, 0x9, 0x6, 0x8000002, 0x6, 0x1, 0x3, 0x8e, 0xfffffffffffff16a, 0x6, 0xffffffffffff0001, 0x100000000, 0x2, 0x8, 0x4, 0x2, 0x3, 0xfffffffffffffffe, 0x20007cf9, 0x40, 0x2, 0x17, 0x100, 0x14b, 0x2, 0x45f3, 0x8, 0x100000001, 0x4, 0x0, 0x8001, 0x0, 0x1, 0x7, 0xcf4, 0x1, 0x3, 0x0, 0x4, 0x7, 0x6, 0x25e2, 0xc9a, 0xd09, 0x40, 0x2, 0xffffffffffffff00, 0x7, 0x9, 0xfffffffffffffff8, 0x40], "f3fadb90a56b67d92a5b28b4b23f332550b1e5454e2027fb1a37efe81bbc27deaf7c3100aab088cdb3b40dad335c9174f18934845ac3152fef1e0f42b42471efc0225ace8f1a82ff9dec6c288f431cb7005b85ca8633c55d49bbdf4bd9cac1046064001bca7ba37e4b5eacf1940c9a7800"}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x0, 0x1, 0x9, 0x210001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x3], {0x9, 0x3, 0x6, 0x0, 0x4, 0x895, 0x3fdc, 0x6, 0x5}, {0x2, 0x1d11, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0xb}}) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="000329bd7000fedbdf250900000008000c000100008008000300", @ANYRES32, @ANYBLOB="08002c000001000008001d"], 0x3c}, 0x1, 0x0, 0x0, 0x20000828}, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/tracing/tracing_on\x00', 0x5b9040, 0x0) open(0x0, 0x22040, 0x75) socket(0x10, 0x2, 0x0) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16, @ANYBLOB="01e9175e5042aebc347f818baee16a5570eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) link$auto(&(0x7f0000000640)='./file0/../file0\x00', &(0x7f0000000680)='./file0\x00') 1m0.447592647s ago: executing program 32 (id=465): r0 = accept$auto(0xffffffffffffffff, &(0x7f00000000c0)=@xdp={0x2c, 0x0, 0x0, 0x31}, 0x0) close_range$auto(r0, r0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) bind$auto(r1, &(0x7f0000000700)=@vsock={0x28, 0x0, 0x2710, @my=0x1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmsg$auto_NFC_CMD_GET_TARGET(r2, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000001380)=ANY=[], 0x58}, 0x1, 0x0, 0x0, 0x4404}, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) sendmsg$auto_NL80211_CMD_NEW_STATION(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x14}}, 0x48844) execve$auto(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)=&(0x7f00000001c0)=')@\x00', 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r3, &(0x7f0000000080)={0x0, 0x80000000}, 0xb, 0xfffffffffffffffe, 0x4, 0x2f) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000100)={{@raw=0xb, 0x3, 0xcf, 0x8, "16a0d89bf208384515b5375a677609aa1bc737276563c3d5a2fca999d5797ab7a10a4d2bc341c4bd369ae535", @raw=0x1}, 0x1, @integer=@value=[0x6d, 0x7, 0x0, 0xbb, 0x4, 0x80000000, 0x1, 0x10001, 0x1, 0x400000000009, 0xc4, 0x9, 0x6, 0x4, 0x3, 0x6, 0x1, 0x3, 0x4, 0x401, 0x1000000000000006, 0x0, 0xa3, 0x5, 0x2, 0x3, 0x5, 0x6, 0x8, 0x1, 0x8, 0x7f, 0xffffffffffffdb75, 0x100000000, 0x3, 0x7, 0x7fffffffffffffff, 0x1, 0xd, 0x1, 0x71, 0x0, 0x8, 0x2, 0x3, 0x3, 0x2d7, 0x1, 0x1, 0x6, 0x3, 0x800000001, 0x6, 0x7, 0x0, 0x6, 0x4, 0x3, 0x40a, 0xd, 0x3fd, 0x8, 0x7, 0xffff, 0x50ce0883, 0xbd9, 0x1, 0x2, 0xd8f, 0x80000000, 0x0, 0x7, 0x46e, 0xa5cf, 0x8, 0x7, 0xc16b, 0x6, 0x9, 0x6, 0x8000002, 0x6, 0x1, 0x3, 0x8e, 0xfffffffffffff16a, 0x6, 0xffffffffffff0001, 0x100000000, 0x2, 0x8, 0x4, 0x2, 0x3, 0xfffffffffffffffe, 0x20007cf9, 0x40, 0x2, 0x17, 0x100, 0x14b, 0x2, 0x45f3, 0x8, 0x100000001, 0x4, 0x0, 0x8001, 0x0, 0x1, 0x7, 0xcf4, 0x1, 0x3, 0x0, 0x4, 0x7, 0x6, 0x25e2, 0xc9a, 0xd09, 0x40, 0x2, 0xffffffffffffff00, 0x7, 0x9, 0xfffffffffffffff8, 0x40], "f3fadb90a56b67d92a5b28b4b23f332550b1e5454e2027fb1a37efe81bbc27deaf7c3100aab088cdb3b40dad335c9174f18934845ac3152fef1e0f42b42471efc0225ace8f1a82ff9dec6c288f431cb7005b85ca8633c55d49bbdf4bd9cac1046064001bca7ba37e4b5eacf1940c9a7800"}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x0, 0x1, 0x9, 0x210001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x3], {0x9, 0x3, 0x6, 0x0, 0x4, 0x895, 0x3fdc, 0x6, 0x5}, {0x2, 0x1d11, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0xb}}) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="000329bd7000fedbdf250900000008000c000100008008000300", @ANYRES32, @ANYBLOB="08002c000001000008001d"], 0x3c}, 0x1, 0x0, 0x0, 0x20000828}, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/tracing/tracing_on\x00', 0x5b9040, 0x0) open(0x0, 0x22040, 0x75) socket(0x10, 0x2, 0x0) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16, @ANYBLOB="01e9175e5042aebc347f818baee16a5570eb"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) link$auto(&(0x7f0000000640)='./file0/../file0\x00', &(0x7f0000000680)='./file0\x00') 8.763853751s ago: executing program 2 (id=662): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="100000"], 0x14}}, 0x4000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x60641, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r1 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0xa45550f34ee12711, 0x0) write$auto_lowpan_enable_fops_(r1, &(0x7f00000000c0)='3', 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) io_uring_setup$auto(0x2, 0x0) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x52) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) 8.735713723s ago: executing program 1 (id=663): mmap$auto(0x2, 0x400008, 0x4000004, 0x9b72, 0xffffffffffffffff, 0x0) vmsplice$auto(0x2, &(0x7f00000000c0)={0x0}, 0x7ff, 0x6) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = fanotify_init$auto(0x5, 0x0) fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r2) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000080)={0x1c, r3, 0x201, 0x70bd28, 0x25dfdbff, {}, [@ILA_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x38) splice$auto(r1, &(0x7f0000000000)=0x5, r2, &(0x7f0000000040)=0x100000001, 0x16a, 0xf) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x191}, 0x4000084) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r4) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) r5 = socket(0xa, 0x3, 0x3a) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00') setsockopt$auto(r5, 0x8, 0xfffffffc, &(0x7f0000000040)=',%\x00', 0xfffffffc) add_key$auto(&(0x7f0000000740)='#)-\\&[}\x00', &(0x7f0000000780)='.\\@&\x00', 0x0, 0x5, 0x9) 8.307614486s ago: executing program 1 (id=667): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x80442, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f0000000540)='eI\f/', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setns$auto(0x0, 0xb) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) 7.554176407s ago: executing program 2 (id=668): sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES64, @ANYBLOB="010037bd70f4fe000cdd018000010000bc3d4d0102493a03d100223cd01389a48d7921874670454645819f61ec855a7b5895ad734dcfe47bba7d39673e32372e33d535f46dfbce9f874f52c6225f67b81767f0383f16e78b439267028c97b623e95aa0f5bc027a37c5a8de8ce98d829713b0490826b54b28dc1e69b432260020399eb29b5c3f98d22474c9243e5cd7835f93267c4585b2a32d", @ANYRES32=0x0, @ANYBLOB="a15c43c46527ce"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000) (async) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES64, @ANYBLOB="010037bd70f4fe000cdd018000010000bc3d4d0102493a03d100223cd01389a48d7921874670454645819f61ec855a7b5895ad734dcfe47bba7d39673e32372e33d535f46dfbce9f874f52c6225f67b81767f0383f16e78b439267028c97b623e95aa0f5bc027a37c5a8de8ce98d829713b0490826b54b28dc1e69b432260020399eb29b5c3f98d22474c9243e5cd7835f93267c4585b2a32d", @ANYRES32=0x0, @ANYBLOB="a15c43c46527ce"], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYRESHEX], 0x14}, 0x1, 0x0, 0x0, 0x404c045}, 0x200040c0) (async) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYRESHEX], 0x14}, 0x1, 0x0, 0x0, 0x404c045}, 0x200040c0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = socket(0x28, 0x3, 0x9) socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000600)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="100a761c8665c695daec4fd8b8b3d72df27fc131f42a8113eab4459dec38540012bed648ee02e41ca8efff961d1767e839efc0eff3e283edefba9d367ec7fb564f5543ad2a4b5fc6dbf5f575f3d53f7b110466f00015b74efad331b3c66c374d9a426d4eb6d985069207cfff1b0954377c7a76ff415b1168a3ab8a6005a7ca3663ea8426c9c06accd20ee93cab72adf05907eaca7ad9dccfc2a5973c1437e9596d8a4706460a633d", @ANYRES64], 0x20}, 0x1, 0x0, 0x0, 0x20000004}, 0x20000853) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00"], 0x1ac}}, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00"], 0x1ac}}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc1}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x100, 0x0) socket(0x10, 0x2, 0x4) (async) r2 = socket(0x10, 0x2, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/watchdog_cpumask\x00', 0x141241, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x9) r4 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRESDEC=r1, @ANYRES32=r1, @ANYRES32=0x0, @ANYBLOB="0a000500000000000000000a000100006b000000000000080004001000000008000300050000000a000100000000000000000000000000000000794b06e3ccd83585243f033c000000000000255687847029b51a91fa2ae0ae43aef382efb4bd59726cfba2e18270499a6479a2edf4ba95222756c1b4a5469e7e8291a791", @ANYRESDEC=r4, @ANYRES32=r0, @ANYRES64=0x0], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40080) (async) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRESDEC=r1, @ANYRES32=r1, @ANYRES32=0x0, @ANYBLOB="0a000500000000000000000a000100006b000000000000080004001000000008000300050000000a000100000000000000000000000000000000794b06e3ccd83585243f033c000000000000255687847029b51a91fa2ae0ae43aef382efb4bd59726cfba2e18270499a6479a2edf4ba95222756c1b4a5469e7e8291a791", @ANYRESDEC=r4, @ANYRES32=r0, @ANYRES64=0x0], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40080) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio1\x00', 0x14040, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f0000000500)="c45dcadf79febe58bd93534b8e6dd12824354035605eeee905192bf874c7805fe041d42424731690a9490cab5fbaa7a3c941473e30a502b758ed682a1c4b74efe4050f7894f264c84637a1f400c5be458b8d5717f4bc0127ae6e144218ebf6891f354a51086a7db5b649367e7e2b71a1e7ccf00b352fb9bfbcaf7c1e500e086ffa57e89306096c4c87028e9fd6ba09d53db8825d384b422b8716ad633dde25ac47b01a57a2bbc2b3a361b1ff3378c7045f54bead5663af489441018e1186f665bd1fc0f6") sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) write$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) r6 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYRES32=r0, @ANYRES8=r1, @ANYRES8=r6], 0x18}, 0x1, 0x0, 0x0, 0x60008044}, 0x20008000) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 7.267462662s ago: executing program 2 (id=670): r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/pagemap\x00', 0x80240, 0x0) ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000000)={0x60, 0x2, 0x100000, 0x7fffffffeffb, 0x100000000000002, 0x0, 0x0, 0x50b301a, 0x87, 0x2c, 0x4, 0x3}) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4800000000, 0xdf, 0xfffffffffffffffd, 0x2, 0x8002) r1 = socket(0x2, 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000001480)='/proc/thread-self/gid_map\x00', 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r2 = socket(0x2b, 0x1, 0x1) r3 = socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x89a0, 0x4) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x8) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x4a801, 0x0) sendto$auto(0x3, 0x0, 0x100000000, 0x40000008, 0x0, 0x19) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nvme_core/parameters/max_retries\x00', 0x101142, 0x0) sendfile$auto(r4, 0x3, 0x0, 0xc01) r5 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/environ\x00', 0x80000, 0x0) ioctl$auto_TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000000180)={0x6, &(0x7f00000000c0)={0x35, 0x2, 0x7f, @inferred=r5}}) 7.226003991s ago: executing program 1 (id=672): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = bpf$auto(0x8000000, 0x0, 0x800) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa2\x9aSVd\x1d\xac\xe8\x90e\x9d\x03\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfa', 0x100000a3da) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000001bc0), 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x202003, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r1, 0x0, 0x800) socket(0x2, 0x1, 0x106) socket(0x2, 0x3, 0xa) setsockopt$auto(0x4, 0x9, 0x2, &(0x7f0000000040)='!/*:(*\'\x00', 0xfffffffe) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xcb, 0x0) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) ioctl$auto_BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r4, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto(r3, 0x8925, r3) io_uring_setup$auto(0x8008, 0x0) 5.605789271s ago: executing program 4 (id=676): mmap$auto(0x2, 0x400008, 0x4000004, 0x9b72, 0xffffffffffffffff, 0x0) vmsplice$auto(0x2, &(0x7f00000000c0)={0x0}, 0x7ff, 0x6) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = fanotify_init$auto(0x5, 0x0) fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r2) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000080)={0x1c, r3, 0x201, 0x70bd28, 0x25dfdbff, {}, [@ILA_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x38) splice$auto(r1, &(0x7f0000000000)=0x5, r2, &(0x7f0000000040)=0x100000001, 0x16a, 0xf) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x191}, 0x4000084) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r4) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) r5 = socket(0xa, 0x3, 0x3a) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00') setsockopt$auto(r5, 0x8, 0xfffffffc, &(0x7f0000000040)=',%\x00', 0xfffffffc) add_key$auto(&(0x7f0000000740)='#)-\\&[}\x00', &(0x7f0000000780)='.\\@&\x00', 0x0, 0x5, 0x9) 4.70380828s ago: executing program 4 (id=677): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="100000"], 0x14}}, 0x4000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x60641, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r1 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0xa45550f34ee12711, 0x0) write$auto_lowpan_enable_fops_(r1, &(0x7f00000000c0)='3', 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) io_uring_setup$auto(0x2, 0x0) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x52) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) 4.698257707s ago: executing program 1 (id=678): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x800, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0x11, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f00000001c0)="624d1bfe595046ab5c98199adf260600de16baef6176e6021e1dce210500e8fdffff0000000000fffffffe00a7ed73de11691c13403c82be", 0x7b) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0x100082) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x26, 0x2, 0x4b4) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, 0x0, 0x0) bind$auto(r1, &(0x7f0000000000)=@in={0x2, 0x3, @multicast1}, 0x6a) ioctl$auto(0x3, 0x80000541b, 0x38) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NET_DM_CMD_CONFIG_GET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="2000002cea88ba66520792d7d600", @ANYRES16=0x0, @ANYBLOB="000426bd7000fedbdf2506000000040014000700000078e7d200"], 0x20}, 0x1, 0x0, 0x0, 0x5}, 0x4890) socketpair$auto(0xfffffffb, 0x1, 0x8000000000000000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r3) 4.525787719s ago: executing program 2 (id=679): close_range$auto(0x2, 0x8, 0x0) r0 = memfd_secret$auto(0x0) ioctl$auto_SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, 0x0) socket$nl_generic(0x10, 0x3, 0x10) keyctl$auto(0xe, 0x1, 0x0, 0x5eaf, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x40009, 0x4, 0x9b72, 0x7, 0x28000) r1 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408) write$auto(r1, 0x0, 0xfffffdf1) fallocate$auto(r1, 0x3, 0x8, 0x9) linkat$auto(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mprotect$auto(0x8000000000000000, 0x8000000000000001, 0x7fffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000080)={0x40001, "3aa2662b59209f6bd4aafa4ed15fdb9c799900000800"}) ioctl$auto_SW_SYNC_IOC_INC(0xffffffffffffffff, 0x40045701, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x808882, 0x0) write$auto(0x3, 0x0, 0xfdef) socket(0xa, 0x800, 0x3) socket(0x1d, 0x2, 0x7) unshare$auto(0x40000080) ioctl$auto_MEMGETREGIONCOUNT(0xffffffffffffffff, 0x80044d07, &(0x7f0000000000)=0x379) setsockopt$auto(0xffffffffffffffff, 0x147d, 0x3, &(0x7f0000000040)='$\x00', 0x4) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) 3.809739435s ago: executing program 4 (id=680): io_pgetevents$auto(0xe7, 0x8, 0x200000000000000, 0x0, &(0x7f00000000c0)={0x1, 0xb0}, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0xffffffffffffffff, 0x20009, 0x4000000000df, 0xeb5, 0x401, 0x8000) getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0) write$auto(0x3, 0x0, 0xffd8) close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x1, 0x106) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto(r2, 0x2284, r1) 3.313051457s ago: executing program 1 (id=682): mmap$auto(0x6, 0x3, 0xdf, 0x91, 0xffffffffffffffff, 0x5) (async, rerun: 32) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) (rerun: 32) r0 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000200), 0x480, 0x0) (async) r1 = openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/cec/cec6/status\x00', 0x100, 0x0) pread64$auto(r1, 0x0, 0x9, 0x1800) mmap$auto(0x0, 0x8000000500008, 0x4, 0x40009b71, r0, 0x10) (async, rerun: 64) r2 = io_uring_setup$auto(0x89, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async, rerun: 32) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x472740, 0x0) (async, rerun: 64) write$auto(0x3, 0x0, 0x7fffffff) (rerun: 64) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r4, 0x0, 0x20000000001, 0x7fff) (async, rerun: 32) ioctl$auto(r2, 0x100, 0x0) (async, rerun: 32) mmap$auto(0x6, 0x20400008, 0x4e9, 0x16, r3, 0x8000) (async) sysfs$auto(0x2, 0xe, 0x0) (async) lsm_list_modules$auto(0x0, 0x0, 0x0) (async, rerun: 64) r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) (rerun: 64) ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40146f2c, 0x0) r6 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80180, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r6, 0x40146f2c, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) write$auto(r2, 0x0, 0x80000003) (async, rerun: 32) socket(0x2a, 0xe, 0x1) (rerun: 32) mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xffffffffffffffff, 0x8000) (async) unshare$auto(0x40000080) (async) close_range$auto(0x2, 0x8, 0x0) 2.807276843s ago: executing program 4 (id=684): madvise$auto(0x8, 0x8, 0x7fff) socket(0x28, 0x1, 0x0) r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0xc0000103, 0x400, 0xffffffffffffffff}]}) unshare$auto(0x20000080) syz_clone3(&(0x7f0000000300)={0x28020400, 0x0, 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0}, 0x58) 2.766780177s ago: executing program 2 (id=685): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dri/card0\x00', 0x0, 0x0) (async, rerun: 64) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (rerun: 64) ioctl$auto_SOUND_PCM_READ_BITS(r0, 0x80045005, &(0x7f0000000040)) (async) ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f00000001c0)="19d23b486ae27a9ec3a7f781e9c477b8778e5700df5210fd4d838706ef1ee9462af89ee07971fde31c5ef481") r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x0, 0x0) ioctl$auto(r1, 0xc0c0128e, r1) (async) ioctl$auto(r0, 0x900064b5, r0) (async) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/kernel/perf_cpu_time_max_percent\x00', 0xa042, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) socket(0x2, 0x1, 0x0) (async, rerun: 32) r3 = socket(0x1e, 0x1, 0x0) (rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x2c, 0x3, 0x0) (async) mmap$auto(0x9, 0x8, 0x1000000004, 0x833, r3, 0x17fffffff) (async, rerun: 64) dup2$auto(r2, r2) (async, rerun: 64) write$auto_proc_sys_file_operations_proc_sysctl(r2, &(0x7f00000002c0)="81", 0x1) 2.327612392s ago: executing program 0 (id=686): mmap$auto(0x2, 0x400008, 0x4000004, 0x9b72, 0xffffffffffffffff, 0x0) vmsplice$auto(0x2, &(0x7f00000000c0)={0x0}, 0x7ff, 0x6) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = fanotify_init$auto(0x5, 0x0) fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/adsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r2) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000080)={0x1c, r3, 0x201, 0x70bd28, 0x25dfdbff, {}, [@ILA_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8080}, 0x38) splice$auto(r1, &(0x7f0000000000)=0x5, r2, &(0x7f0000000040)=0x100000001, 0x16a, 0xf) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x11e4}, 0x1, 0x0, 0x0, 0x191}, 0x4000084) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r4) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) r5 = socket(0xa, 0x3, 0x3a) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) acct$auto(&(0x7f0000000000)='/sys/devices/platform/i8042/serio1/resync_time\x00') setsockopt$auto(r5, 0x8, 0xfffffffc, &(0x7f0000000040)=',%\x00', 0xfffffffc) add_key$auto(&(0x7f0000000740)='#)-\\&[}\x00', &(0x7f0000000780)='.\\@&\x00', 0x0, 0x5, 0x9) 2.267835831s ago: executing program 2 (id=687): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = bpf$auto(0x8000000, 0x0, 0x800) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa2\x9aSVd\x1d\xac\xe8\x90e\x9d\x03\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfa', 0x100000a3da) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000001bc0), 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x202003, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, 0x0, 0x200440c0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xcb, 0x0) io_uring_register$auto(0x2, 0xe, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) ioctl$auto_BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) io_uring_setup$auto(0x8008, 0x0) close_range$auto(0x2, 0x8, 0x0) clock_nanosleep$auto(0x2, 0x6, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 2.153272085s ago: executing program 4 (id=688): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4000000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x3, 0x5) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) r2 = socketcall$auto_SYS_SOCKET(0x1, &(0x7f00000001c0)=0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) close_range$auto(0x2, 0xa, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r3 = socket(0xa, 0x801, 0x84) getsockopt$auto(r3, 0x84, 0x6f, 0x0, &(0x7f0000000000)=0x9000c) sendmsg$auto_NL80211_CMD_GET_MPP(r0, &(0x7f0000001a00)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400800}, 0xc, &(0x7f00000019c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="0400440104001601cc009d00f878441c95994897f0fe042e6ba938ddc7715a1f72c664d4d2f12c37caf49776d51162fc7602931a0fc9d1c17f40b4854d0cd6f4213af1696ed2b4f59e76d9ee6370f20c1ed54c638678c8e365da09f8e0af2c594d85e60c231a42532db76741a8cb329b072fc51e4a67adaa1ea85f971cb6c2ae3cf652bdf09ba58ba1cb83ba4e1f3909aaabd6b88b94f13e4c9a2ef68c07b17e8b230d6dde5ab8257f783c9c7ea5847cb1a3e5797322c89117615f9e36dc724ecd851abca331055ae311482b9cbef4c9956027fc"], 0x7c0}, 0x1, 0x0, 0x0, 0x4004000}, 0x4001) r4 = socket(0x2, 0x1, 0x0) bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x6a) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0xb, 0x10, 0x9, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c00, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x3, 0x0) setsockopt$auto(0x3, 0x1, 0x5, 0x0, 0xb) epoll_create$auto(0x4e86) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) bpf$auto(0x0, 0x0, 0x92) rt_sigprocmask$auto(0x0, 0x0, 0x0, 0x8) gettid() r5 = socket(0x2, 0x1, 0x106) setsockopt$auto(r5, 0x6, 0x2, &(0x7f0000000080)='\x00\x00C\x80\'\xf9\xc4\xf5W_\xa2\x00\x05\x00\x00\x00\f\x8a\x7f\xcf\x9d\xc4ZrAF\xc7\xeeV\xda\x8ex\x1d\xddzL\xba\xc11\xc6\x1c\xe2\xe9\xbb,\x80\xd3\xcc\xf8\xd5h\xf7S\x81r[\xc8\xf1w \x95V?K\xf2\xd0\x02A\xf020\xe1\xd5^\xa8\xa9\xa0\xd5\xfa\x17I\x17\xf5\xdc\xb8\x1bt\xfc\xd9Ei5l\xef\xfbs\x04\xa0\xd8\x94E\b~\xd9\xbb\xeb\xc7\xfe\xe7\xde)\xc4r\x89\x03\xe0;\xa7\x1d+\xd5\x94N\xf4>-\xe3\xd3\x8d\xc7\xa4*\x96\xf7', 0x9) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto(0x3, 0x0, 0x1) 2.147031279s ago: executing program 0 (id=689): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="100000"], 0x14}}, 0x4000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x60641, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) r1 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0xa45550f34ee12711, 0x0) write$auto_lowpan_enable_fops_(r1, &(0x7f00000000c0)='3', 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) io_uring_setup$auto(0x2, 0x0) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x52) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) io_uring_setup$auto(0x6, 0x0) ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x1, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) 1.781651565s ago: executing program 4 (id=690): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8740, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000240)={0x50, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}, @HWSIM_ATTR_PMSR_SUPPORT={0xc, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x387}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800) sendmsg$auto_THERMAL_GENL_CMD_CDEV_GET(r0, &(0x7f0000000540)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000500)={&(0x7f00000002c0)={0x214, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {}, [@THERMAL_GENL_ATTR_CPU_CAPABILITY_EFFICIENCY={0x8, 0x17, 0x3}, @THERMAL_GENL_ATTR_CDEV_CUR_STATE={0x8, 0x10, 0xfd}, @THERMAL_GENL_ATTR_TZ_TRIP={0x1e8, 0x4, 0x0, 0x1, [@nested={0x1ce, 0x145, 0x0, 0x1, [@typed={0x8, 0x8a, 0x0, 0x0, @u32=0x4}, @generic="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", @nested={0x4, 0x16}, @typed={0xa7, 0xfa, 0x0, 0x0, @str='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc'}, @generic="495a0d7a6e1cb0d1ea3c6d262f", @nested={0x4, 0xcd}, @typed={0x8, 0x121, 0x0, 0x0, @u32=0x350c}]}, @typed={0x14, 0xa7, 0x0, 0x0, @ipv6=@empty}]}, @THERMAL_GENL_ATTR_THRESHOLD_DIRECTION={0x8, 0x1a, 0x6}]}, 0x214}, 0x1, 0x0, 0x0, 0x4000}, 0x4000) unshare$auto(0x40000080) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) pread64$auto(r2, 0x0, 0x0, 0x9) read$auto_mon_fops_text_t_mon_text(r2, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x0, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) 1.435160304s ago: executing program 0 (id=691): socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3b) mmap$auto(0xfffffffffffffffc, 0x9, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) socket(0x2a, 0x2, 0x1) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) socket(0xf, 0x3, 0x2) r0 = set_tid_address$auto(&(0x7f00000000c0)=0x1) ptrace$auto_PTRACE_GETSIGMASK(0x420a, r0, 0x7fffffff, 0x5) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, 0x0, 0x8a141, 0x0) socketpair$auto(0x1, 0x4, 0x10010000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statx$auto(r2, 0x0, 0x401006, 0x4015, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, 0x0) 1.219741427s ago: executing program 0 (id=692): r0 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x80442, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r0, &(0x7f0000000540)='eI\f/', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setns$auto(0x0, 0xb) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) 967.257272ms ago: executing program 0 (id=693): io_pgetevents$auto(0xe7, 0x8, 0x200000000000000, 0x0, &(0x7f00000000c0)={0x1, 0xb0}, 0x0) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0xffffffffffffffff, 0x20009, 0x4000000000df, 0xeb5, 0x401, 0x8000) getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2100, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/extra\x00', 0xa142, 0x0) write$auto(0x3, 0x0, 0xffd8) close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x1, 0x106) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/handlers\x00', 0x200, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto(r2, 0x2284, r1) 39.812303ms ago: executing program 1 (id=694): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/zram0/mem_used_max\x00', 0xa081, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x20008, 0x10000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x1, 0x106) newfstatat$auto(0xffffffffffffff9c, 0x0, 0x0, 0x1000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d) listen$auto(0x3, 0x81) r1 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x3, 0x0, 0x2, 0x4}, 0x8}, 0x5, 0x24020000) mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x999, 0x0) ustat$auto(0x801, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x5, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8800, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r2) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000240)=ANY=[@ANYBLOB="700000ff", @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf25040000002d0011002f50136a450cf972f5a3d28479f92a9b221ca46c2d19fda4f47902c296fa844c12cd83f712d3c41e5d0000002c001a800800010087030000200004801c000180050007000900000004000a00040004000400020004000400"], 0x70}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800) sendmsg$auto_THERMAL_GENL_CMD_CDEV_GET(r2, &(0x7f0000000540)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000500)={&(0x7f00000002c0)={0x214, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {}, [@THERMAL_GENL_ATTR_CPU_CAPABILITY_EFFICIENCY={0x8, 0x17, 0x3}, @THERMAL_GENL_ATTR_CDEV_CUR_STATE={0x8, 0x10, 0xfd}, @THERMAL_GENL_ATTR_TZ_TRIP={0x1e8, 0x4, 0x0, 0x1, [@nested={0x1ce, 0x145, 0x0, 0x1, [@typed={0x8, 0x8a, 0x0, 0x0, @u32=0x4}, @generic="45977c8c39b253ade7b8717f9f6b0181d13715a2ebd5d7bbaa3a15b646fce0a7bac662a3b1782b36c2ceb58af8dce5999cd670e6e62a1a143fb12e84a2268c37e1ca55ff2ed100f1cf537c48a735d4721be79277a6d1baa3f93656b347455c36728642f7a6a8de4f4e6d2c01c827122397244c59756dce6505d1ad492e7a0ba37a242944ec4731da56e5b5afb3e45a560bc9a7fbbc4cf811666c305fffc1d0b1adf8674c49a6a513141f5f4880b7146152583d838e1a88ce72316b3294f9f2c2759a78f91d60928419b4f5bee26644cb7821cd8735bf2c13898d36d51ec28a234e72bc5379b95cfd74d37444e8f87275d1a26c92ed2489d39cd219a1ea", @nested={0x4, 0x16}, @typed={0xa7, 0xfa, 0x0, 0x0, @str='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc'}, @generic="495a0d7a6e1cb0d1ea3c6d262f", @nested={0x4, 0xcd}, @typed={0x8, 0x121, 0x0, 0x0, @u32=0x350c}]}, @typed={0x14, 0xa7, 0x0, 0x0, @ipv6=@empty}]}, @THERMAL_GENL_ATTR_THRESHOLD_DIRECTION={0x8, 0x1a, 0x6}]}, 0x214}, 0x1, 0x0, 0x0, 0x4000}, 0x4000) sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000) unshare$auto(0x40000080) 0s ago: executing program 0 (id=695): openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd5/queue/write_zeroes_max_bytes\x00', 0x0, 0x0) openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b4d", 0x7) select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0x7, 0x2, 0x3, 0xe, 0xa657, 0x203, 0xd3, 0x1]}, 0x0, 0x0, 0x0) socket(0x10, 0x5, 0x6) socket(0x11, 0x80003, 0x300) socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram1\x00', 0x200401, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c05, 0xfffffffffffffffd) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000080)="baba") signalfd$auto(r1, &(0x7f0000000100)={0x7}, 0x101) socket(0x23, 0x4, 0x3) kernel console output (not intermixed with test programs): 9] kmem_cache_alloc_noprof+0x83/0x770 [ 168.516461][ T6669] ? ptlock_alloc+0x1f/0x70 [ 168.516488][ T6669] ? ptlock_alloc+0x1f/0x70 [ 168.516515][ T6669] ptlock_alloc+0x1f/0x70 [ 168.516538][ T6669] pte_alloc_one+0x84/0x3d0 [ 168.516571][ T6669] do_fault+0x8b8/0x1ad0 [ 168.516605][ T6669] ? __pfx_filemap_map_pages+0x10/0x10 [ 168.516632][ T6669] ? __pmd_alloc+0x6aa/0x9c0 [ 168.516671][ T6669] __handle_mm_fault+0x1919/0x2bb0 [ 168.516704][ T6669] ? __pfx___handle_mm_fault+0x10/0x10 [ 168.516745][ T6669] ? find_vma+0xbf/0x140 [ 168.516776][ T6669] ? __pfx_find_vma+0x10/0x10 [ 168.516812][ T6669] handle_mm_fault+0x3fe/0xad0 [ 168.516842][ T6669] do_user_addr_fault+0x7a6/0x1370 [ 168.516873][ T6669] ? rcu_is_watching+0x12/0xc0 [ 168.516910][ T6669] exc_page_fault+0x64/0xc0 [ 168.516946][ T6669] asm_exc_page_fault+0x26/0x30 [ 168.516969][ T6669] RIP: 0010:__get_user_4+0x14/0x20 [ 168.516997][ T6669] Code: 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca e9 90 79 04 00 90 90 90 90 90 90 90 90 90 90 [ 168.517019][ T6669] RSP: 0018:ffffc9001973fe78 EFLAGS: 00050287 [ 168.517038][ T6669] RAX: 0000000000000000 RBX: 0000000080044940 RCX: ffffc9001973fe1c [ 168.517053][ T6669] RDX: 00007ffffffff000 RSI: ffffffff885b3c4e RDI: ffffffff8bf2b600 [ 168.517068][ T6669] RBP: ffff88807d4b9881 R08: 00000000c8c104ba R09: 00000000ac8c104b [ 168.517083][ T6669] R10: 0000000000000001 R11: ffff888031ba4830 R12: ffff888030d80800 [ 168.517097][ T6669] R13: ffff88807d4b9880 R14: 0000000000000000 R15: 0000000000000003 [ 168.517120][ T6669] ? mISDN_ioctl+0x39e/0xa30 [ 168.517154][ T6669] mISDN_ioctl+0x3a7/0xa30 [ 168.517184][ T6669] ? __pfx_mISDN_ioctl+0x10/0x10 [ 168.517215][ T6669] __x64_sys_ioctl+0x18e/0x210 [ 168.517246][ T6669] do_syscall_64+0xcd/0xf80 [ 168.517283][ T6669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.517305][ T6669] RIP: 0033:0x7f130658f7c9 [ 168.517324][ T6669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.517345][ T6669] RSP: 002b:00007f1307447038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 168.517365][ T6669] RAX: ffffffffffffffda RBX: 00007f13067e6090 RCX: 00007f130658f7c9 [ 168.517380][ T6669] RDX: 0000000000000000 RSI: 0000000080044940 RDI: 0000000000000003 [ 168.517394][ T6669] RBP: 00007f1307447090 R08: 0000000000000000 R09: 0000000000000000 [ 168.517407][ T6669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 168.517421][ T6669] R13: 00007f13067e6128 R14: 00007f13067e6090 R15: 00007ffe289a1c18 [ 168.517451][ T6669] [ 168.941046][ T6641] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 169.817758][ T6678] FAULT_INJECTION: forcing a failure. [ 169.817758][ T6678] name failslab, interval 1, probability 0, space 0, times 0 [ 169.935831][ T6678] CPU: 0 UID: 0 PID: 6678 Comm: syz.1.164 Not tainted syzkaller #0 PREEMPT(full) [ 169.935875][ T6678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 169.935894][ T6678] Call Trace: [ 169.935905][ T6678] [ 169.935917][ T6678] dump_stack_lvl+0x16c/0x1f0 [ 169.935974][ T6678] should_fail_ex+0x512/0x640 [ 169.936010][ T6678] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 169.936057][ T6678] should_failslab+0xc2/0x120 [ 169.936108][ T6678] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 169.936148][ T6678] ? __d_lookup+0x25c/0x4a0 [ 169.936187][ T6678] ? __d_alloc+0x35/0xa80 [ 169.936221][ T6678] ? __d_alloc+0x35/0xa80 [ 169.936246][ T6678] __d_alloc+0x35/0xa80 [ 169.936280][ T6678] d_alloc+0x4a/0x1e0 [ 169.936312][ T6678] lookup_one_qstr_excl+0x175/0x250 [ 169.936354][ T6678] start_dirop+0x59/0xb0 [ 169.936400][ T6678] simple_start_creating+0xf4/0x100 [ 169.936461][ T6678] ? __pfx_simple_start_creating+0x10/0x10 [ 169.936512][ T6678] ? dput.part.0+0xd8/0x570 [ 169.936554][ T6678] rpc_new_dir+0x27/0x430 [ 169.936587][ T6678] rpc_populate.constprop.0+0x51/0x1d0 [ 169.936621][ T6678] ? __pfx_rpc_fill_super+0x10/0x10 [ 169.936651][ T6678] rpc_fill_super+0x2b9/0x4f0 [ 169.936684][ T6678] ? __pfx_rpc_fill_super+0x10/0x10 [ 169.936714][ T6678] get_tree_keyed+0x10e/0x1d0 [ 169.936750][ T6678] vfs_get_tree+0x8e/0x330 [ 169.936778][ T6678] vfs_cmd_create+0xd7/0x2a0 [ 169.936807][ T6678] __do_sys_fsconfig+0x7b8/0xbe0 [ 169.936838][ T6678] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 169.936881][ T6678] do_syscall_64+0xcd/0xf80 [ 169.936921][ T6678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.936945][ T6678] RIP: 0033:0x7f130658f7c9 [ 169.936964][ T6678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.936988][ T6678] RSP: 002b:00007f1307468038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 169.937010][ T6678] RAX: ffffffffffffffda RBX: 00007f13067e5fa0 RCX: 00007f130658f7c9 [ 169.937026][ T6678] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 169.937040][ T6678] RBP: 00007f1306613f91 R08: 0000000000000000 R09: 0000000000000000 [ 169.937054][ T6678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 169.937068][ T6678] R13: 00007f13067e6038 R14: 00007f13067e5fa0 R15: 00007ffe289a1c18 [ 169.937099][ T6678] [ 169.941537][ T6678] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 170.923563][ T6691] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 172.135757][ T6695] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 172.771121][ T6712] FAULT_INJECTION: forcing a failure. [ 172.771121][ T6712] name failslab, interval 1, probability 0, space 0, times 0 [ 172.790872][ T6712] CPU: 1 UID: 0 PID: 6712 Comm: syz.0.172 Not tainted syzkaller #0 PREEMPT(full) [ 172.790912][ T6712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 172.790930][ T6712] Call Trace: [ 172.790940][ T6712] [ 172.790952][ T6712] dump_stack_lvl+0x16c/0x1f0 [ 172.791004][ T6712] should_fail_ex+0x512/0x640 [ 172.791038][ T6712] ? fs_reclaim_acquire+0xae/0x150 [ 172.791091][ T6712] should_failslab+0xc2/0x120 [ 172.791139][ T6712] __kmalloc_noprof+0xeb/0x910 [ 172.791173][ T6712] ? tomoyo_encode2+0x100/0x3e0 [ 172.791222][ T6712] ? tomoyo_encode2+0x100/0x3e0 [ 172.791264][ T6712] tomoyo_encode2+0x100/0x3e0 [ 172.791312][ T6712] tomoyo_encode+0x29/0x50 [ 172.791353][ T6712] tomoyo_realpath_from_path+0x18f/0x6e0 [ 172.791418][ T6712] tomoyo_check_open_permission+0x2ab/0x3c0 [ 172.791455][ T6712] ? alloc_empty_file+0x73/0x1e0 [ 172.791489][ T6712] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 172.791525][ T6712] ? __x64_sys_ioctl+0x18e/0x210 [ 172.791602][ T6712] ? do_raw_spin_lock+0x12c/0x2b0 [ 172.791650][ T6712] tomoyo_file_open+0x6b/0x90 [ 172.791702][ T6712] security_file_open+0x84/0x1e0 [ 172.791745][ T6712] do_dentry_open+0x597/0x1590 [ 172.791802][ T6712] ? lockdep_init_map_type+0x5c/0x270 [ 172.791839][ T6712] vfs_open+0x82/0x3f0 [ 172.791875][ T6712] dentry_open+0x71/0xd0 [ 172.791910][ T6712] ptm_open_peer+0x1c2/0x360 [ 172.791950][ T6712] ? __pfx_ptm_open_peer+0x10/0x10 [ 172.792002][ T6712] tty_ioctl+0x1173/0x1650 [ 172.792049][ T6712] ? __pfx_tty_ioctl+0x10/0x10 [ 172.792104][ T6712] ? find_held_lock+0x2b/0x80 [ 172.792153][ T6712] ? hook_file_ioctl_common+0x144/0x410 [ 172.792201][ T6712] ? __fget_files+0x20e/0x3c0 [ 172.792252][ T6712] ? __pfx_tty_ioctl+0x10/0x10 [ 172.792309][ T6712] __x64_sys_ioctl+0x18e/0x210 [ 172.792350][ T6712] do_syscall_64+0xcd/0xf80 [ 172.792407][ T6712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.792439][ T6712] RIP: 0033:0x7f64c278f7c9 [ 172.792483][ T6712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 172.792512][ T6712] RSP: 002b:00007f64c3559038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 172.792541][ T6712] RAX: ffffffffffffffda RBX: 00007f64c29e5fa0 RCX: 00007f64c278f7c9 [ 172.792563][ T6712] RDX: 0000000000000000 RSI: 0000000000005441 RDI: 0000000000000003 [ 172.792581][ T6712] RBP: 00007f64c3559090 R08: 0000000000000000 R09: 0000000000000000 [ 172.792599][ T6712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 172.792618][ T6712] R13: 00007f64c29e6038 R14: 00007f64c29e5fa0 R15: 00007ffd5bb73008 [ 172.792661][ T6712] [ 173.142404][ T6712] ERROR: Out of memory at tomoyo_realpath_from_path. [ 173.417327][ T6699] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 174.980299][ T6729] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 175.012561][ T6731] FAULT_INJECTION: forcing a failure. [ 175.012561][ T6731] name failslab, interval 1, probability 0, space 0, times 0 [ 175.037011][ T6731] CPU: 1 UID: 0 PID: 6731 Comm: syz.0.178 Not tainted syzkaller #0 PREEMPT(full) [ 175.037055][ T6731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 175.037076][ T6731] Call Trace: [ 175.037088][ T6731] [ 175.037106][ T6731] dump_stack_lvl+0x16c/0x1f0 [ 175.037166][ T6731] should_fail_ex+0x512/0x640 [ 175.037203][ T6731] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 175.037249][ T6731] should_failslab+0xc2/0x120 [ 175.037299][ T6731] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 175.037344][ T6731] ? __d_lookup+0x25c/0x4a0 [ 175.037373][ T6731] ? __d_alloc+0x35/0xa80 [ 175.037398][ T6731] ? __d_alloc+0x35/0xa80 [ 175.037416][ T6731] __d_alloc+0x35/0xa80 [ 175.037440][ T6731] d_alloc+0x4a/0x1e0 [ 175.037463][ T6731] lookup_one_qstr_excl+0x175/0x250 [ 175.037494][ T6731] start_dirop+0x59/0xb0 [ 175.037528][ T6731] simple_start_creating+0xf4/0x100 [ 175.037563][ T6731] ? __pfx_simple_start_creating+0x10/0x10 [ 175.037596][ T6731] ? dput+0x1f/0x30 [ 175.037626][ T6731] rpc_new_dir+0x27/0x430 [ 175.037658][ T6731] rpc_fill_super+0x30c/0x4f0 [ 175.037689][ T6731] ? __pfx_rpc_fill_super+0x10/0x10 [ 175.037720][ T6731] get_tree_keyed+0x10e/0x1d0 [ 175.037755][ T6731] vfs_get_tree+0x8e/0x330 [ 175.037783][ T6731] vfs_cmd_create+0xd7/0x2a0 [ 175.037812][ T6731] __do_sys_fsconfig+0x7b8/0xbe0 [ 175.037843][ T6731] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 175.037886][ T6731] do_syscall_64+0xcd/0xf80 [ 175.037931][ T6731] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.037955][ T6731] RIP: 0033:0x7f64c278f7c9 [ 175.037973][ T6731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.037996][ T6731] RSP: 002b:00007f64c3559038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 175.038017][ T6731] RAX: ffffffffffffffda RBX: 00007f64c29e5fa0 RCX: 00007f64c278f7c9 [ 175.038033][ T6731] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 175.038047][ T6731] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 175.038061][ T6731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 175.038075][ T6731] R13: 00007f64c29e6038 R14: 00007f64c29e5fa0 R15: 00007ffd5bb73008 [ 175.038105][ T6731] [ 176.786749][ T6732] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 177.444464][ T6630] Process accounting resumed [ 178.220999][ T6767] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 179.094922][ T6768] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 179.298587][ T6781] zswap: compressor not available [ 179.742106][ T6789] zswap: compressor not available [ 179.937888][ T6770] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37 [ 180.518326][ T6784] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 180.575250][ T6784] CPU: 0 UID: 0 PID: 6784 Comm: syz.2.189 Not tainted syzkaller #0 PREEMPT(full) [ 180.575314][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 180.575334][ T6784] Call Trace: [ 180.575344][ T6784] [ 180.575356][ T6784] dump_stack_lvl+0x16c/0x1f0 [ 180.575413][ T6784] sysfs_warn_dup+0x7f/0xa0 [ 180.575451][ T6784] sysfs_do_create_link_sd+0x124/0x140 [ 180.575493][ T6784] sysfs_create_link+0x61/0xc0 [ 180.575532][ T6784] device_add+0x652/0x1980 [ 180.575590][ T6784] ? __pfx_device_add+0x10/0x10 [ 180.575634][ T6784] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 180.575688][ T6784] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 180.575755][ T6784] wiphy_register+0x1ea1/0x2cc0 [ 180.575787][ T6784] ? __rtnl_unlock+0x68/0xf0 [ 180.575852][ T6784] ? napi_set_threaded+0xa0/0x4c0 [ 180.575903][ T6784] ? __pfx_wiphy_register+0x10/0x10 [ 180.575936][ T6784] ? __asan_memset+0x23/0x50 [ 180.575989][ T6784] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 180.576055][ T6784] ieee80211_register_hw+0x2bb2/0x4160 [ 180.576105][ T6784] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 180.576137][ T6784] ? __pfx___debug_object_init+0x10/0x10 [ 180.576204][ T6784] ? find_held_lock+0x2b/0x80 [ 180.576248][ T6784] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 180.576301][ T6784] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 180.576350][ T6784] ? __hrtimer_setup+0x176/0x280 [ 180.576396][ T6784] mac80211_hwsim_new_radio+0x3323/0x5150 [ 180.576461][ T6784] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 180.576514][ T6784] hwsim_new_radio_nl+0xba2/0x1330 [ 180.576557][ T6784] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 180.576611][ T6784] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 180.576669][ T6784] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 180.576750][ T6784] genl_family_rcv_msg_doit+0x209/0x2f0 [ 180.576810][ T6784] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 180.576865][ T6784] ? genl_get_cmd+0x194/0x580 [ 180.576924][ T6784] ? bpf_lsm_capable+0x9/0x10 [ 180.576972][ T6784] ? security_capable+0x7e/0x260 [ 180.577026][ T6784] ? ns_capable+0xd7/0x110 [ 180.577077][ T6784] genl_rcv_msg+0x55c/0x800 [ 180.577109][ T6784] ? __pfx_genl_rcv_msg+0x10/0x10 [ 180.577143][ T6784] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 180.577195][ T6784] netlink_rcv_skb+0x158/0x420 [ 180.577244][ T6784] ? __pfx_genl_rcv_msg+0x10/0x10 [ 180.577274][ T6784] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 180.577332][ T6784] ? netlink_deliver_tap+0x1ae/0xd30 [ 180.577378][ T6784] genl_rcv+0x28/0x40 [ 180.577421][ T6784] netlink_unicast+0x5aa/0x870 [ 180.577468][ T6784] ? __pfx_netlink_unicast+0x10/0x10 [ 180.577512][ T6784] ? __pfx___might_resched+0x10/0x10 [ 180.577551][ T6784] ? __lock_acquire+0x436/0x2890 [ 180.577587][ T6784] netlink_sendmsg+0x8c8/0xdd0 [ 180.577637][ T6784] ? __pfx_netlink_sendmsg+0x10/0x10 [ 180.577685][ T6784] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 180.577747][ T6784] ____sys_sendmsg+0xa5d/0xc30 [ 180.577796][ T6784] ? copy_msghdr_from_user+0x10a/0x160 [ 180.577835][ T6784] ? __pfx_____sys_sendmsg+0x10/0x10 [ 180.577891][ T6784] ? __pfx_futex_wake_mark+0x10/0x10 [ 180.577938][ T6784] ___sys_sendmsg+0x134/0x1d0 [ 180.577979][ T6784] ? __pfx____sys_sendmsg+0x10/0x10 [ 180.578024][ T6784] ? futex_private_hash_put+0x160/0x1b0 [ 180.578097][ T6784] __sys_sendmsg+0x16d/0x220 [ 180.578137][ T6784] ? __pfx___sys_sendmsg+0x10/0x10 [ 180.578175][ T6784] ? __x64_sys_futex+0x1e0/0x4c0 [ 180.578231][ T6784] do_syscall_64+0xcd/0xf80 [ 180.578281][ T6784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.578310][ T6784] RIP: 0033:0x7f22b718f7c9 [ 180.578332][ T6784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.578361][ T6784] RSP: 002b:00007f22b53b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 180.578388][ T6784] RAX: ffffffffffffffda RBX: 00007f22b73e6180 RCX: 00007f22b718f7c9 [ 180.578407][ T6784] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000007 [ 180.578424][ T6784] RBP: 00007f22b7213f91 R08: 0000000000000000 R09: 0000000000000000 [ 180.578441][ T6784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.578458][ T6784] R13: 00007f22b73e6218 R14: 00007f22b73e6180 R15: 00007ffefb3cc318 [ 180.578497][ T6784] [ 184.155975][ T6834] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 184.693759][ T6841] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39 [ 185.676727][ T6843] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 185.974685][ T6834] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 187.182112][ T6895] zswap: compressor not available [ 187.663349][ T6905] FAULT_INJECTION: forcing a failure. [ 187.663349][ T6905] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 187.801333][ T6905] CPU: 0 UID: 0 PID: 6905 Comm: syz.1.209 Not tainted syzkaller #0 PREEMPT(full) [ 187.801373][ T6905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 187.801392][ T6905] Call Trace: [ 187.801402][ T6905] [ 187.801414][ T6905] dump_stack_lvl+0x16c/0x1f0 [ 187.801467][ T6905] should_fail_ex+0x512/0x640 [ 187.801508][ T6905] _copy_to_user+0x32/0xd0 [ 187.801545][ T6905] simple_read_from_buffer+0xcb/0x170 [ 187.801592][ T6905] proc_fail_nth_read+0x197/0x240 [ 187.801646][ T6905] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 187.801702][ T6905] ? rw_verify_area+0xcf/0x6c0 [ 187.801744][ T6905] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 187.801811][ T6905] vfs_read+0x1e4/0xcf0 [ 187.801862][ T6905] ? __pfx___mutex_lock+0x10/0x10 [ 187.801918][ T6905] ? __pfx_vfs_read+0x10/0x10 [ 187.801975][ T6905] ? __fget_files+0x20e/0x3c0 [ 187.802033][ T6905] ksys_read+0x12a/0x250 [ 187.802079][ T6905] ? __pfx_ksys_read+0x10/0x10 [ 187.802126][ T6905] ? fput+0x70/0xf0 [ 187.802162][ T6905] do_syscall_64+0xcd/0xf80 [ 187.802213][ T6905] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.802244][ T6905] RIP: 0033:0x7f130658e1dc [ 187.802268][ T6905] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 187.802299][ T6905] RSP: 002b:00007f1307468030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 187.802328][ T6905] RAX: ffffffffffffffda RBX: 00007f13067e5fa0 RCX: 00007f130658e1dc [ 187.802348][ T6905] RDX: 000000000000000f RSI: 00007f13074680a0 RDI: 0000000000000004 [ 187.802367][ T6905] RBP: 00007f1307468090 R08: 0000000000000000 R09: 0000000000000000 [ 187.802386][ T6905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 187.802405][ T6905] R13: 00007f13067e6038 R14: 00007f13067e5fa0 R15: 00007ffe289a1c18 [ 187.802448][ T6905] [ 188.216199][ T6908] sp0: Synchronizing with TNC [ 188.257318][ T6906] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 188.269548][ T6906] CPU: 0 UID: 0 PID: 6906 Comm: syz.0.208 Not tainted syzkaller #0 PREEMPT(full) [ 188.269586][ T6906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 188.269605][ T6906] Call Trace: [ 188.269615][ T6906] [ 188.269626][ T6906] dump_stack_lvl+0x16c/0x1f0 [ 188.269678][ T6906] sysfs_warn_dup+0x7f/0xa0 [ 188.269714][ T6906] sysfs_do_create_link_sd+0x124/0x140 [ 188.269752][ T6906] sysfs_create_link+0x61/0xc0 [ 188.269786][ T6906] device_add+0x652/0x1980 [ 188.269832][ T6906] ? __pfx_device_add+0x10/0x10 [ 188.269872][ T6906] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 188.269922][ T6906] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 188.269982][ T6906] wiphy_register+0x1ea1/0x2cc0 [ 188.270010][ T6906] ? __rtnl_unlock+0x68/0xf0 [ 188.270054][ T6906] ? napi_set_threaded+0xa0/0x4c0 [ 188.270099][ T6906] ? __pfx_wiphy_register+0x10/0x10 [ 188.270129][ T6906] ? __asan_memset+0x23/0x50 [ 188.270196][ T6906] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 188.270252][ T6906] ieee80211_register_hw+0x2bb2/0x4160 [ 188.270299][ T6906] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 188.270329][ T6906] ? __pfx___debug_object_init+0x10/0x10 [ 188.270387][ T6906] ? find_held_lock+0x2b/0x80 [ 188.270428][ T6906] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 188.270476][ T6906] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 188.270531][ T6906] ? __hrtimer_setup+0x176/0x280 [ 188.270573][ T6906] mac80211_hwsim_new_radio+0x3323/0x5150 [ 188.270628][ T6906] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 188.270676][ T6906] hwsim_new_radio_nl+0xba2/0x1330 [ 188.270715][ T6906] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 188.270762][ T6906] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 188.270816][ T6906] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 188.270877][ T6906] genl_family_rcv_msg_doit+0x209/0x2f0 [ 188.270931][ T6906] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 188.270989][ T6906] ? genl_get_cmd+0x194/0x580 [ 188.271048][ T6906] ? bpf_lsm_capable+0x9/0x10 [ 188.271088][ T6906] ? security_capable+0x7e/0x260 [ 188.271138][ T6906] ? ns_capable+0xd7/0x110 [ 188.271180][ T6906] genl_rcv_msg+0x55c/0x800 [ 188.271213][ T6906] ? __pfx_genl_rcv_msg+0x10/0x10 [ 188.271243][ T6906] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 188.271291][ T6906] netlink_rcv_skb+0x158/0x420 [ 188.271336][ T6906] ? __pfx_genl_rcv_msg+0x10/0x10 [ 188.271367][ T6906] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 188.271428][ T6906] ? netlink_deliver_tap+0x1ae/0xd30 [ 188.271477][ T6906] genl_rcv+0x28/0x40 [ 188.271521][ T6906] netlink_unicast+0x5aa/0x870 [ 188.271572][ T6906] ? __pfx_netlink_unicast+0x10/0x10 [ 188.271616][ T6906] ? __pfx___might_resched+0x10/0x10 [ 188.271658][ T6906] ? __lock_acquire+0x436/0x2890 [ 188.271695][ T6906] netlink_sendmsg+0x8c8/0xdd0 [ 188.271747][ T6906] ? __pfx_netlink_sendmsg+0x10/0x10 [ 188.271802][ T6906] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 188.271863][ T6906] ____sys_sendmsg+0xa5d/0xc30 [ 188.271914][ T6906] ? copy_msghdr_from_user+0x10a/0x160 [ 188.271962][ T6906] ? __pfx_____sys_sendmsg+0x10/0x10 [ 188.272006][ T6906] ? preempt_schedule_thunk+0x16/0x30 [ 188.272043][ T6906] ? try_to_wake_up+0xa67/0x1860 [ 188.272090][ T6906] ___sys_sendmsg+0x134/0x1d0 [ 188.272130][ T6906] ? __pfx____sys_sendmsg+0x10/0x10 [ 188.272168][ T6906] ? futex_private_hash_put+0x160/0x1b0 [ 188.272243][ T6906] __sys_sendmsg+0x16d/0x220 [ 188.272282][ T6906] ? __pfx___sys_sendmsg+0x10/0x10 [ 188.272321][ T6906] ? __x64_sys_futex+0x1e0/0x4c0 [ 188.272388][ T6906] do_syscall_64+0xcd/0xf80 [ 188.272434][ T6906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.272462][ T6906] RIP: 0033:0x7f64c278f7c9 [ 188.272484][ T6906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.272511][ T6906] RSP: 002b:00007f64c09d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 188.272537][ T6906] RAX: ffffffffffffffda RBX: 00007f64c29e6180 RCX: 00007f64c278f7c9 [ 188.272555][ T6906] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000007 [ 188.272572][ T6906] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 188.272588][ T6906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.272605][ T6906] R13: 00007f64c29e6218 R14: 00007f64c29e6180 R15: 00007ffd5bb73008 [ 188.272643][ T6906] [ 189.110727][ T6922] zswap: compressor not available [ 189.685539][ T6931] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 189.928944][ T6931] CPU: 1 UID: 0 PID: 6931 Comm: syz.1.213 Not tainted syzkaller #0 PREEMPT(full) [ 189.929020][ T6931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 189.929038][ T6931] Call Trace: [ 189.929048][ T6931] [ 189.929060][ T6931] dump_stack_lvl+0x16c/0x1f0 [ 189.929115][ T6931] sysfs_warn_dup+0x7f/0xa0 [ 189.929151][ T6931] sysfs_do_create_link_sd+0x124/0x140 [ 189.929193][ T6931] sysfs_create_link+0x61/0xc0 [ 189.929230][ T6931] device_add+0x652/0x1980 [ 189.929280][ T6931] ? __pfx_device_add+0x10/0x10 [ 189.929322][ T6931] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 189.929376][ T6931] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 189.929432][ T6931] wiphy_register+0x1ea1/0x2cc0 [ 189.929478][ T6931] ? __rtnl_unlock+0x68/0xf0 [ 189.929540][ T6931] ? napi_set_threaded+0xa0/0x4c0 [ 189.929588][ T6931] ? __pfx_wiphy_register+0x10/0x10 [ 189.929620][ T6931] ? __asan_memset+0x23/0x50 [ 189.929670][ T6931] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 189.929714][ T6931] ieee80211_register_hw+0x2bb2/0x4160 [ 189.929748][ T6931] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 189.929771][ T6931] ? __pfx___debug_object_init+0x10/0x10 [ 189.929814][ T6931] ? find_held_lock+0x2b/0x80 [ 189.929850][ T6931] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 189.929887][ T6931] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 189.929923][ T6931] ? __hrtimer_setup+0x176/0x280 [ 189.929956][ T6931] mac80211_hwsim_new_radio+0x3323/0x5150 [ 189.930011][ T6931] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 189.930067][ T6931] hwsim_new_radio_nl+0xba2/0x1330 [ 189.930097][ T6931] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 189.930139][ T6931] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 189.930182][ T6931] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 189.930230][ T6931] genl_family_rcv_msg_doit+0x209/0x2f0 [ 189.930272][ T6931] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 189.930335][ T6931] ? genl_get_cmd+0x194/0x580 [ 189.930396][ T6931] ? bpf_lsm_capable+0x9/0x10 [ 189.930441][ T6931] ? security_capable+0x7e/0x260 [ 189.930499][ T6931] ? ns_capable+0xd7/0x110 [ 189.930544][ T6931] genl_rcv_msg+0x55c/0x800 [ 189.930570][ T6931] ? __pfx_genl_rcv_msg+0x10/0x10 [ 189.930595][ T6931] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 189.930634][ T6931] netlink_rcv_skb+0x158/0x420 [ 189.930668][ T6931] ? __pfx_genl_rcv_msg+0x10/0x10 [ 189.930691][ T6931] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 189.930738][ T6931] ? netlink_deliver_tap+0x1ae/0xd30 [ 189.930775][ T6931] genl_rcv+0x28/0x40 [ 189.930809][ T6931] netlink_unicast+0x5aa/0x870 [ 189.930854][ T6931] ? __pfx_netlink_unicast+0x10/0x10 [ 189.930890][ T6931] ? __pfx___might_resched+0x10/0x10 [ 189.930923][ T6931] ? __lock_acquire+0x436/0x2890 [ 189.930953][ T6931] netlink_sendmsg+0x8c8/0xdd0 [ 189.930993][ T6931] ? __pfx_netlink_sendmsg+0x10/0x10 [ 189.931032][ T6931] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 189.931083][ T6931] ____sys_sendmsg+0xa5d/0xc30 [ 189.931124][ T6931] ? copy_msghdr_from_user+0x10a/0x160 [ 189.931156][ T6931] ? __pfx_____sys_sendmsg+0x10/0x10 [ 189.931202][ T6931] ? __pfx_futex_wake_mark+0x10/0x10 [ 189.931239][ T6931] ___sys_sendmsg+0x134/0x1d0 [ 189.931271][ T6931] ? __pfx____sys_sendmsg+0x10/0x10 [ 189.931302][ T6931] ? futex_private_hash_put+0x160/0x1b0 [ 189.931372][ T6931] __sys_sendmsg+0x16d/0x220 [ 189.931403][ T6931] ? __pfx___sys_sendmsg+0x10/0x10 [ 189.931432][ T6931] ? __x64_sys_futex+0x1e0/0x4c0 [ 189.931476][ T6931] do_syscall_64+0xcd/0xf80 [ 189.931532][ T6931] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.931565][ T6931] RIP: 0033:0x7f130658f7c9 [ 189.931591][ T6931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.931623][ T6931] RSP: 002b:00007f1307426038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 189.931654][ T6931] RAX: ffffffffffffffda RBX: 00007f13067e6180 RCX: 00007f130658f7c9 [ 189.931669][ T6931] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000007 [ 189.931684][ T6931] RBP: 00007f1306613f91 R08: 0000000000000000 R09: 0000000000000000 [ 189.931698][ T6931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.931711][ T6931] R13: 00007f13067e6218 R14: 00007f13067e6180 R15: 00007ffe289a1c18 [ 189.931742][ T6931] [ 190.436340][ T6947] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input42 [ 190.580435][ T6955] Invalid ELF header magic: != ELF [ 193.125034][ T6997] FAULT_INJECTION: forcing a failure. [ 193.125034][ T6997] name failslab, interval 1, probability 0, space 0, times 0 [ 193.138105][ T6997] CPU: 1 UID: 0 PID: 6997 Comm: syz.0.222 Not tainted syzkaller #0 PREEMPT(full) [ 193.138148][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 193.138168][ T6997] Call Trace: [ 193.138178][ T6997] [ 193.138190][ T6997] dump_stack_lvl+0x16c/0x1f0 [ 193.138245][ T6997] should_fail_ex+0x512/0x640 [ 193.138281][ T6997] ? __kmalloc_noprof+0xca/0x910 [ 193.138321][ T6997] should_failslab+0xc2/0x120 [ 193.138373][ T6997] __kmalloc_noprof+0xeb/0x910 [ 193.138406][ T6997] ? __pfx_inc_ucount+0x10/0x10 [ 193.138434][ T6997] ? net_alloc_generic+0x1e/0x70 [ 193.138484][ T6997] ? net_alloc_generic+0x1e/0x70 [ 193.138532][ T6997] net_alloc_generic+0x1e/0x70 [ 193.138575][ T6997] copy_net_ns+0xc6/0x7c0 [ 193.138620][ T6997] ? copy_cgroup_ns+0x71/0x980 [ 193.138667][ T6997] create_new_namespaces+0x3ea/0xab0 [ 193.138716][ T6997] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 193.138762][ T6997] ksys_unshare+0x45b/0xa40 [ 193.138811][ T6997] ? __pfx_ksys_unshare+0x10/0x10 [ 193.138861][ T6997] ? xfd_validate_state+0x61/0x180 [ 193.138899][ T6997] __x64_sys_unshare+0x31/0x40 [ 193.138946][ T6997] do_syscall_64+0xcd/0xf80 [ 193.138995][ T6997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.139025][ T6997] RIP: 0033:0x7f64c278f7c9 [ 193.139047][ T6997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.139076][ T6997] RSP: 002b:00007f64c09f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 193.139104][ T6997] RAX: ffffffffffffffda RBX: 00007f64c29e6090 RCX: 00007f64c278f7c9 [ 193.139123][ T6997] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 193.139141][ T6997] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 193.139159][ T6997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.139176][ T6997] R13: 00007f64c29e6128 R14: 00007f64c29e6090 R15: 00007ffd5bb73008 [ 193.139216][ T6997] [ 194.355127][ T7018] delete_channel: no stack [ 195.877162][ T7042] netlink: 8 bytes leftover after parsing attributes in process `syz.3.236'. [ 196.000111][ T7041] netlink: 8 bytes leftover after parsing attributes in process `syz.3.236'. [ 196.873284][ T7062] device-mapper: ioctl: only supply one of name or uuid, cmd(12) [ 197.023453][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.164917][ T7064] team0 (unregistering): Port device team_slave_0 removed [ 197.179944][ T7064] team0 (unregistering): Port device team_slave_1 removed [ 197.222611][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.232077][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.242039][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.251883][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.263971][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.275017][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.294524][ T7064] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'. [ 197.474136][ T7080] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43 [ 198.593083][ T7102] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 199.137242][ T7107] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input44 [ 199.582008][ T7119] Invalid ELF header magic: != ELF [ 203.674088][ T7196] netlink: 'syz.3.271': attribute type 11 has an invalid length. [ 203.698305][ T7196] __nla_validate_parse: 25 callbacks suppressed [ 203.698324][ T7196] netlink: 28 bytes leftover after parsing attributes in process `syz.3.271'. [ 203.765024][ T7194] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input45 [ 204.300707][ T7198] Invalid ELF header magic: != ELF [ 205.001604][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 205.008234][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.155298][ T5845] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 205.425766][ T7224] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 205.770228][ T7225] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 206.419875][ T7236] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 206.695408][ T7238] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 206.716901][ T7241] netlink: 'syz.1.284': attribute type 11 has an invalid length. [ 206.753946][ T7241] netlink: 28 bytes leftover after parsing attributes in process `syz.1.284'. [ 208.093513][ T7242] Process accounting paused [ 208.684455][ T7272] usb usb36: usbfs: process 7272 (syz.3.292) did not claim interface 0 before use [ 208.747996][ T7279] Invalid ELF header magic: != ELF [ 209.768946][ T7302] zswap: compressor not available [ 209.822491][ T7300] FAULT_INJECTION: forcing a failure. [ 209.822491][ T7300] name fail_futex, interval 1, probability 0, space 0, times 1 [ 209.922970][ T7300] CPU: 1 UID: 0 PID: 7300 Comm: syz.3.298 Not tainted syzkaller #0 PREEMPT(full) [ 209.923010][ T7300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 209.923027][ T7300] Call Trace: [ 209.923036][ T7300] [ 209.923048][ T7300] dump_stack_lvl+0x16c/0x1f0 [ 209.923122][ T7300] should_fail_ex+0x512/0x640 [ 209.923159][ T7300] ? arch_stack_walk+0xa6/0x100 [ 209.923203][ T7300] get_futex_key+0x1d0/0x15f0 [ 209.923244][ T7300] ? __pfx_get_futex_key+0x10/0x10 [ 209.923277][ T7300] ? stack_trace_save+0x8e/0xc0 [ 209.923330][ T7300] ? __pfx_stack_trace_save+0x10/0x10 [ 209.923383][ T7300] ? stack_depot_save_flags+0x29/0x9b0 [ 209.923428][ T7300] futex_wait_setup+0x9d/0x570 [ 209.923486][ T7300] __futex_wait+0x193/0x2f0 [ 209.923534][ T7300] ? __pfx___futex_wait+0x10/0x10 [ 209.923587][ T7300] ? __pfx_futex_wake_mark+0x10/0x10 [ 209.923636][ T7300] ? futex_hash+0x2c5/0x380 [ 209.923676][ T7300] ? futex_private_hash_put+0x160/0x1b0 [ 209.923722][ T7300] futex_wait+0xe8/0x380 [ 209.923769][ T7300] ? __pfx_futex_wait+0x10/0x10 [ 209.923825][ T7300] ? putname+0xf5/0x1a0 [ 209.923865][ T7300] do_futex+0x229/0x350 [ 209.923904][ T7300] ? __pfx_do_futex+0x10/0x10 [ 209.923952][ T7300] __x64_sys_futex+0x1e0/0x4c0 [ 209.923993][ T7300] ? __x64_sys_openat+0x174/0x210 [ 209.924032][ T7300] ? __pfx___x64_sys_futex+0x10/0x10 [ 209.924086][ T7300] do_syscall_64+0xcd/0xf80 [ 209.924141][ T7300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.924174][ T7300] RIP: 0033:0x7f283018f7c9 [ 209.924199][ T7300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.924231][ T7300] RSP: 002b:00007f2830fb80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 209.924262][ T7300] RAX: ffffffffffffffda RBX: 00007f28303e5fa8 RCX: 00007f283018f7c9 [ 209.924283][ T7300] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f28303e5fa8 [ 209.924302][ T7300] RBP: 00007f28303e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 209.924323][ T7300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 209.924342][ T7300] R13: 00007f28303e6038 R14: 00007ffeb317e170 R15: 00007ffeb317e258 [ 209.924387][ T7300] [ 209.924425][ T7313] netlink: 'syz.0.301': attribute type 11 has an invalid length. [ 210.126627][ T7317] netlink: 28 bytes leftover after parsing attributes in process `syz.0.301'. [ 210.491465][ T7311] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 210.505839][ T7311] CPU: 0 UID: 0 PID: 7311 Comm: syz.1.300 Not tainted syzkaller #0 PREEMPT(full) [ 210.505877][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 210.505896][ T7311] Call Trace: [ 210.505906][ T7311] [ 210.505917][ T7311] dump_stack_lvl+0x16c/0x1f0 [ 210.505971][ T7311] sysfs_warn_dup+0x7f/0xa0 [ 210.506008][ T7311] sysfs_do_create_link_sd+0x124/0x140 [ 210.506047][ T7311] sysfs_create_link+0x61/0xc0 [ 210.506082][ T7311] device_add+0x652/0x1980 [ 210.506131][ T7311] ? __pfx_device_add+0x10/0x10 [ 210.506174][ T7311] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 210.506224][ T7311] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 210.506281][ T7311] wiphy_register+0x1ea1/0x2cc0 [ 210.506331][ T7311] ? __rtnl_unlock+0x68/0xf0 [ 210.506380][ T7311] ? napi_set_threaded+0xa0/0x4c0 [ 210.506429][ T7311] ? __pfx_wiphy_register+0x10/0x10 [ 210.506460][ T7311] ? __asan_memset+0x23/0x50 [ 210.506513][ T7311] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 210.506575][ T7311] ieee80211_register_hw+0x2bb2/0x4160 [ 210.506637][ T7311] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 210.506679][ T7311] ? __pfx___debug_object_init+0x10/0x10 [ 210.506740][ T7311] ? find_held_lock+0x2b/0x80 [ 210.506784][ T7311] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 210.506835][ T7311] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 210.506892][ T7311] ? __hrtimer_setup+0x176/0x280 [ 210.506955][ T7311] mac80211_hwsim_new_radio+0x3323/0x5150 [ 210.507017][ T7311] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 210.507075][ T7311] hwsim_new_radio_nl+0xba2/0x1330 [ 210.507116][ T7311] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 210.507167][ T7311] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 210.507227][ T7311] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 210.507296][ T7311] genl_family_rcv_msg_doit+0x209/0x2f0 [ 210.507356][ T7311] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 210.507412][ T7311] ? genl_get_cmd+0x194/0x580 [ 210.507472][ T7311] ? bpf_lsm_capable+0x9/0x10 [ 210.507515][ T7311] ? security_capable+0x7e/0x260 [ 210.507573][ T7311] ? ns_capable+0xd7/0x110 [ 210.507608][ T7311] genl_rcv_msg+0x55c/0x800 [ 210.507634][ T7311] ? __pfx_genl_rcv_msg+0x10/0x10 [ 210.507659][ T7311] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 210.507703][ T7311] netlink_rcv_skb+0x158/0x420 [ 210.507745][ T7311] ? __pfx_genl_rcv_msg+0x10/0x10 [ 210.507769][ T7311] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 210.507817][ T7311] ? netlink_deliver_tap+0x1ae/0xd30 [ 210.507854][ T7311] genl_rcv+0x28/0x40 [ 210.507889][ T7311] netlink_unicast+0x5aa/0x870 [ 210.507928][ T7311] ? __pfx_netlink_unicast+0x10/0x10 [ 210.507962][ T7311] ? __pfx___might_resched+0x10/0x10 [ 210.507994][ T7311] ? __lock_acquire+0x436/0x2890 [ 210.508023][ T7311] netlink_sendmsg+0x8c8/0xdd0 [ 210.508062][ T7311] ? __pfx_netlink_sendmsg+0x10/0x10 [ 210.508100][ T7311] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 210.508145][ T7311] ____sys_sendmsg+0xa5d/0xc30 [ 210.508183][ T7311] ? copy_msghdr_from_user+0x10a/0x160 [ 210.508213][ T7311] ? __pfx_____sys_sendmsg+0x10/0x10 [ 210.508248][ T7311] ? preempt_schedule_thunk+0x16/0x30 [ 210.508276][ T7311] ? try_to_wake_up+0xa67/0x1860 [ 210.508312][ T7311] ___sys_sendmsg+0x134/0x1d0 [ 210.508343][ T7311] ? __pfx____sys_sendmsg+0x10/0x10 [ 210.508373][ T7311] ? futex_private_hash_put+0x160/0x1b0 [ 210.508431][ T7311] __sys_sendmsg+0x16d/0x220 [ 210.508462][ T7311] ? __pfx___sys_sendmsg+0x10/0x10 [ 210.508491][ T7311] ? __x64_sys_futex+0x1e0/0x4c0 [ 210.508536][ T7311] do_syscall_64+0xcd/0xf80 [ 210.508574][ T7311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.508598][ T7311] RIP: 0033:0x7f130658f7c9 [ 210.508617][ T7311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.508639][ T7311] RSP: 002b:00007f1307426038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 210.508676][ T7311] RAX: ffffffffffffffda RBX: 00007f13067e6180 RCX: 00007f130658f7c9 [ 210.508692][ T7311] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 210.508707][ T7311] RBP: 00007f1306613f91 R08: 0000000000000000 R09: 0000000000000000 [ 210.508722][ T7311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.508736][ T7311] R13: 00007f13067e6218 R14: 00007f13067e6180 R15: 00007ffe289a1c18 [ 210.508768][ T7311] [ 212.818642][ T7341] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 213.537155][ T7348] FAULT_INJECTION: forcing a failure. [ 213.537155][ T7348] name failslab, interval 1, probability 0, space 0, times 0 [ 213.704846][ T7350] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 213.723200][ T7348] CPU: 1 UID: 0 PID: 7348 Comm: syz.0.307 Not tainted syzkaller #0 PREEMPT(full) [ 213.723239][ T7348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 213.723257][ T7348] Call Trace: [ 213.723267][ T7348] [ 213.723279][ T7348] dump_stack_lvl+0x16c/0x1f0 [ 213.723332][ T7348] should_fail_ex+0x512/0x640 [ 213.723368][ T7348] ? __kmalloc_noprof+0xca/0x910 [ 213.723416][ T7348] should_failslab+0xc2/0x120 [ 213.723467][ T7348] __kmalloc_noprof+0xeb/0x910 [ 213.723503][ T7348] ? kernfs_fop_write_iter+0x237/0x570 [ 213.723559][ T7348] ? kernfs_fop_write_iter+0x237/0x570 [ 213.723605][ T7348] kernfs_fop_write_iter+0x237/0x570 [ 213.723659][ T7348] vfs_write+0x7d3/0x11d0 [ 213.723706][ T7348] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 213.723758][ T7348] ? __pfx_vfs_write+0x10/0x10 [ 213.723834][ T7348] ksys_write+0x12a/0x250 [ 213.723878][ T7348] ? __pfx_ksys_write+0x10/0x10 [ 213.723936][ T7348] do_syscall_64+0xcd/0xf80 [ 213.723989][ T7348] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.724020][ T7348] RIP: 0033:0x7f64c278f7c9 [ 213.724045][ T7348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.724075][ T7348] RSP: 002b:00007f64c0993038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 213.724104][ T7348] RAX: ffffffffffffffda RBX: 00007f64c29e6360 RCX: 00007f64c278f7c9 [ 213.724124][ T7348] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000002 [ 213.724143][ T7348] RBP: 00007f64c0993090 R08: 0000000000000000 R09: 0000000000000000 [ 213.724162][ T7348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 213.724180][ T7348] R13: 00007f64c29e63f8 R14: 00007f64c29e6360 R15: 00007ffd5bb73008 [ 213.724223][ T7348] [ 214.356892][ T7363] Invalid ELF header magic: != ELF [ 214.367175][ T7353] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 215.008347][ T7368] zswap: compressor not available [ 215.110039][ T7360] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 215.198425][ T7364] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 215.417457][ T7372] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 215.456564][ T7372] CPU: 0 UID: 0 PID: 7372 Comm: syz.2.313 Not tainted syzkaller #0 PREEMPT(full) [ 215.456607][ T7372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 215.456626][ T7372] Call Trace: [ 215.456637][ T7372] [ 215.456649][ T7372] dump_stack_lvl+0x16c/0x1f0 [ 215.456711][ T7372] sysfs_warn_dup+0x7f/0xa0 [ 215.456746][ T7372] sysfs_do_create_link_sd+0x124/0x140 [ 215.456788][ T7372] sysfs_create_link+0x61/0xc0 [ 215.456824][ T7372] device_add+0x652/0x1980 [ 215.456875][ T7372] ? __pfx_device_add+0x10/0x10 [ 215.456920][ T7372] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.456972][ T7372] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 215.457029][ T7372] wiphy_register+0x1ea1/0x2cc0 [ 215.457066][ T7372] ? __rtnl_unlock+0x68/0xf0 [ 215.457123][ T7372] ? napi_set_threaded+0xa0/0x4c0 [ 215.457171][ T7372] ? __pfx_wiphy_register+0x10/0x10 [ 215.457204][ T7372] ? __asan_memset+0x23/0x50 [ 215.457258][ T7372] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 215.457327][ T7372] ieee80211_register_hw+0x2bb2/0x4160 [ 215.457377][ T7372] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 215.457408][ T7372] ? __pfx___debug_object_init+0x10/0x10 [ 215.457469][ T7372] ? find_held_lock+0x2b/0x80 [ 215.457512][ T7372] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.457563][ T7372] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 215.457613][ T7372] ? __hrtimer_setup+0x176/0x280 [ 215.457659][ T7372] mac80211_hwsim_new_radio+0x3323/0x5150 [ 215.457722][ T7372] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 215.457776][ T7372] hwsim_new_radio_nl+0xba2/0x1330 [ 215.457820][ T7372] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 215.457871][ T7372] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 215.457931][ T7372] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 215.457999][ T7372] genl_family_rcv_msg_doit+0x209/0x2f0 [ 215.458079][ T7372] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 215.458136][ T7372] ? genl_get_cmd+0x194/0x580 [ 215.458197][ T7372] ? bpf_lsm_capable+0x9/0x10 [ 215.458242][ T7372] ? security_capable+0x7e/0x260 [ 215.458303][ T7372] ? ns_capable+0xd7/0x110 [ 215.458350][ T7372] genl_rcv_msg+0x55c/0x800 [ 215.458387][ T7372] ? __pfx_genl_rcv_msg+0x10/0x10 [ 215.458419][ T7372] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 215.458473][ T7372] netlink_rcv_skb+0x158/0x420 [ 215.458524][ T7372] ? __pfx_genl_rcv_msg+0x10/0x10 [ 215.458557][ T7372] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 215.458624][ T7372] ? netlink_deliver_tap+0x1ae/0xd30 [ 215.458678][ T7372] genl_rcv+0x28/0x40 [ 215.458726][ T7372] netlink_unicast+0x5aa/0x870 [ 215.458786][ T7372] ? __pfx_netlink_unicast+0x10/0x10 [ 215.458836][ T7372] ? __pfx___might_resched+0x10/0x10 [ 215.458887][ T7372] ? __lock_acquire+0x436/0x2890 [ 215.458929][ T7372] netlink_sendmsg+0x8c8/0xdd0 [ 215.458986][ T7372] ? __pfx_netlink_sendmsg+0x10/0x10 [ 215.459040][ T7372] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 215.459105][ T7372] ____sys_sendmsg+0xa5d/0xc30 [ 215.459159][ T7372] ? copy_msghdr_from_user+0x10a/0x160 [ 215.459198][ T7372] ? __pfx_____sys_sendmsg+0x10/0x10 [ 215.459253][ T7372] ? __pfx_futex_wake_mark+0x10/0x10 [ 215.459307][ T7372] ___sys_sendmsg+0x134/0x1d0 [ 215.459346][ T7372] ? __pfx____sys_sendmsg+0x10/0x10 [ 215.459385][ T7372] ? futex_private_hash_put+0x160/0x1b0 [ 215.459457][ T7372] __sys_sendmsg+0x16d/0x220 [ 215.459496][ T7372] ? __pfx___sys_sendmsg+0x10/0x10 [ 215.459534][ T7372] ? __x64_sys_futex+0x1e0/0x4c0 [ 215.459590][ T7372] do_syscall_64+0xcd/0xf80 [ 215.459638][ T7372] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.459667][ T7372] RIP: 0033:0x7f22b718f7c9 [ 215.459690][ T7372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.459718][ T7372] RSP: 002b:00007f22b53b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 215.459744][ T7372] RAX: ffffffffffffffda RBX: 00007f22b73e6180 RCX: 00007f22b718f7c9 [ 215.459763][ T7372] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 215.459780][ T7372] RBP: 00007f22b7213f91 R08: 0000000000000000 R09: 0000000000000000 [ 215.459797][ T7372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 215.459814][ T7372] R13: 00007f22b73e6218 R14: 00007f22b73e6180 R15: 00007ffefb3cc318 [ 215.459853][ T7372] [ 216.365416][ T7385] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 216.672208][ T7386] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 216.986916][ T7386] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 219.211516][ T7417] Invalid ELF header magic: != ELF [ 219.791630][ T7431] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 219.828796][ T7431] CPU: 0 UID: 0 PID: 7431 Comm: syz.1.327 Not tainted syzkaller #0 PREEMPT(full) [ 219.828837][ T7431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 219.828856][ T7431] Call Trace: [ 219.828866][ T7431] [ 219.828878][ T7431] dump_stack_lvl+0x16c/0x1f0 [ 219.828931][ T7431] sysfs_warn_dup+0x7f/0xa0 [ 219.828964][ T7431] sysfs_do_create_link_sd+0x124/0x140 [ 219.829001][ T7431] sysfs_create_link+0x61/0xc0 [ 219.829033][ T7431] device_add+0x652/0x1980 [ 219.829088][ T7431] ? __pfx_device_add+0x10/0x10 [ 219.829130][ T7431] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 219.829183][ T7431] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 219.829239][ T7431] wiphy_register+0x1ea1/0x2cc0 [ 219.829267][ T7431] ? __rtnl_unlock+0x68/0xf0 [ 219.829312][ T7431] ? napi_set_threaded+0xa0/0x4c0 [ 219.829356][ T7431] ? __pfx_wiphy_register+0x10/0x10 [ 219.829387][ T7431] ? __asan_memset+0x23/0x50 [ 219.829438][ T7431] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 219.829494][ T7431] ieee80211_register_hw+0x2bb2/0x4160 [ 219.829541][ T7431] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 219.829572][ T7431] ? __pfx___debug_object_init+0x10/0x10 [ 219.829631][ T7431] ? find_held_lock+0x2b/0x80 [ 219.829673][ T7431] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 219.829722][ T7431] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 219.829770][ T7431] ? __hrtimer_setup+0x176/0x280 [ 219.829813][ T7431] mac80211_hwsim_new_radio+0x3323/0x5150 [ 219.829873][ T7431] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 219.829925][ T7431] hwsim_new_radio_nl+0xba2/0x1330 [ 219.829966][ T7431] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 219.830019][ T7431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 219.830084][ T7431] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 219.830154][ T7431] genl_family_rcv_msg_doit+0x209/0x2f0 [ 219.830211][ T7431] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 219.830265][ T7431] ? genl_get_cmd+0x194/0x580 [ 219.830322][ T7431] ? bpf_lsm_capable+0x9/0x10 [ 219.830365][ T7431] ? security_capable+0x7e/0x260 [ 219.830417][ T7431] ? ns_capable+0xd7/0x110 [ 219.830460][ T7431] genl_rcv_msg+0x55c/0x800 [ 219.830495][ T7431] ? __pfx_genl_rcv_msg+0x10/0x10 [ 219.830526][ T7431] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 219.830578][ T7431] netlink_rcv_skb+0x158/0x420 [ 219.830624][ T7431] ? __pfx_genl_rcv_msg+0x10/0x10 [ 219.830656][ T7431] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 219.830719][ T7431] ? netlink_deliver_tap+0x1ae/0xd30 [ 219.830768][ T7431] genl_rcv+0x28/0x40 [ 219.830815][ T7431] netlink_unicast+0x5aa/0x870 [ 219.830867][ T7431] ? __pfx_netlink_unicast+0x10/0x10 [ 219.830913][ T7431] ? __pfx___might_resched+0x10/0x10 [ 219.830957][ T7431] ? __lock_acquire+0x436/0x2890 [ 219.830997][ T7431] netlink_sendmsg+0x8c8/0xdd0 [ 219.831057][ T7431] ? __pfx_netlink_sendmsg+0x10/0x10 [ 219.831109][ T7431] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 219.831166][ T7431] ____sys_sendmsg+0xa5d/0xc30 [ 219.831215][ T7431] ? copy_msghdr_from_user+0x10a/0x160 [ 219.831260][ T7431] ? __pfx_____sys_sendmsg+0x10/0x10 [ 219.831308][ T7431] ? preempt_schedule_thunk+0x16/0x30 [ 219.831345][ T7431] ? try_to_wake_up+0xa67/0x1860 [ 219.831394][ T7431] ___sys_sendmsg+0x134/0x1d0 [ 219.831436][ T7431] ? __pfx____sys_sendmsg+0x10/0x10 [ 219.831477][ T7431] ? futex_private_hash_put+0x160/0x1b0 [ 219.831554][ T7431] __sys_sendmsg+0x16d/0x220 [ 219.831595][ T7431] ? __pfx___sys_sendmsg+0x10/0x10 [ 219.831635][ T7431] ? __x64_sys_futex+0x1e0/0x4c0 [ 219.831697][ T7431] do_syscall_64+0xcd/0xf80 [ 219.831749][ T7431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.831781][ T7431] RIP: 0033:0x7f130658f7c9 [ 219.831805][ T7431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.831836][ T7431] RSP: 002b:00007f1307426038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 219.831866][ T7431] RAX: ffffffffffffffda RBX: 00007f13067e6180 RCX: 00007f130658f7c9 [ 219.831887][ T7431] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000006 [ 219.831907][ T7431] RBP: 00007f1306613f91 R08: 0000000000000000 R09: 0000000000000000 [ 219.831926][ T7431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 219.831944][ T7431] R13: 00007f13067e6218 R14: 00007f13067e6180 R15: 00007ffe289a1c18 [ 219.831987][ T7431] [ 221.718010][ T7464] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 222.701630][ T7464] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 223.123050][ T7506] FAULT_INJECTION: forcing a failure. [ 223.123050][ T7506] name failslab, interval 1, probability 0, space 0, times 0 [ 223.158015][ T7506] CPU: 1 UID: 0 PID: 7506 Comm: syz.3.340 Not tainted syzkaller #0 PREEMPT(full) [ 223.158059][ T7506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 223.158079][ T7506] Call Trace: [ 223.158089][ T7506] [ 223.158102][ T7506] dump_stack_lvl+0x16c/0x1f0 [ 223.158157][ T7506] should_fail_ex+0x512/0x640 [ 223.158195][ T7506] ? fs_reclaim_acquire+0xae/0x150 [ 223.158253][ T7506] should_failslab+0xc2/0x120 [ 223.158307][ T7506] __kmalloc_noprof+0xeb/0x910 [ 223.158355][ T7506] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 223.158409][ T7506] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 223.158453][ T7506] tomoyo_realpath_from_path+0xc2/0x6e0 [ 223.158538][ T7506] ? tomoyo_profile+0x47/0x60 [ 223.158594][ T7506] tomoyo_path_number_perm+0x245/0x580 [ 223.158634][ T7506] ? tomoyo_path_number_perm+0x237/0x580 [ 223.158677][ T7506] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 223.158759][ T7506] ? find_held_lock+0x2b/0x80 [ 223.158804][ T7506] ? hook_file_ioctl_common+0x144/0x410 [ 223.158853][ T7506] ? __fget_files+0x20e/0x3c0 [ 223.158908][ T7506] security_file_ioctl+0x9b/0x240 [ 223.158952][ T7506] __x64_sys_ioctl+0xb7/0x210 [ 223.158996][ T7506] do_syscall_64+0xcd/0xf80 [ 223.159052][ T7506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.159085][ T7506] RIP: 0033:0x7f283018f7c9 [ 223.159122][ T7506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 223.159153][ T7506] RSP: 002b:00007f2830f97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.159183][ T7506] RAX: ffffffffffffffda RBX: 00007f28303e6090 RCX: 00007f283018f7c9 [ 223.159205][ T7506] RDX: 0000400000000013 RSI: 00000000c0045878 RDI: 0000000000000002 [ 223.159225][ T7506] RBP: 00007f2830213f91 R08: 0000000000000000 R09: 0000000000000000 [ 223.159245][ T7506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.159264][ T7506] R13: 00007f28303e6128 R14: 00007f28303e6090 R15: 00007ffeb317e258 [ 223.159305][ T7506] [ 223.159317][ T7506] ERROR: Out of memory at tomoyo_realpath_from_path. [ 224.108663][ T7521] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 224.151127][ T7521] CPU: 1 UID: 0 PID: 7521 Comm: syz.3.343 Not tainted syzkaller #0 PREEMPT(full) [ 224.151172][ T7521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 224.151191][ T7521] Call Trace: [ 224.151202][ T7521] [ 224.151213][ T7521] dump_stack_lvl+0x16c/0x1f0 [ 224.151269][ T7521] sysfs_warn_dup+0x7f/0xa0 [ 224.151305][ T7521] sysfs_do_create_link_sd+0x124/0x140 [ 224.151344][ T7521] sysfs_create_link+0x61/0xc0 [ 224.151381][ T7521] device_add+0x652/0x1980 [ 224.151429][ T7521] ? __pfx_device_add+0x10/0x10 [ 224.151481][ T7521] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 224.151533][ T7521] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 224.151591][ T7521] wiphy_register+0x1ea1/0x2cc0 [ 224.151620][ T7521] ? __rtnl_unlock+0x68/0xf0 [ 224.151669][ T7521] ? napi_set_threaded+0xa0/0x4c0 [ 224.151716][ T7521] ? __pfx_wiphy_register+0x10/0x10 [ 224.151747][ T7521] ? __asan_memset+0x23/0x50 [ 224.151800][ T7521] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 224.151946][ T7521] ieee80211_register_hw+0x2bb2/0x4160 [ 224.151997][ T7521] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 224.152029][ T7521] ? __pfx___debug_object_init+0x10/0x10 [ 224.152088][ T7521] ? find_held_lock+0x2b/0x80 [ 224.152132][ T7521] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 224.152185][ T7521] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 224.152233][ T7521] ? __hrtimer_setup+0x176/0x280 [ 224.152278][ T7521] mac80211_hwsim_new_radio+0x3323/0x5150 [ 224.152340][ T7521] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 224.152392][ T7521] hwsim_new_radio_nl+0xba2/0x1330 [ 224.152462][ T7521] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 224.152514][ T7521] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 224.152572][ T7521] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 224.152638][ T7521] genl_family_rcv_msg_doit+0x209/0x2f0 [ 224.152695][ T7521] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 224.152750][ T7521] ? genl_get_cmd+0x194/0x580 [ 224.152821][ T7521] ? bpf_lsm_capable+0x9/0x10 [ 224.152865][ T7521] ? security_capable+0x7e/0x260 [ 224.152920][ T7521] ? ns_capable+0xd7/0x110 [ 224.152966][ T7521] genl_rcv_msg+0x55c/0x800 [ 224.153002][ T7521] ? __pfx_genl_rcv_msg+0x10/0x10 [ 224.153035][ T7521] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 224.153088][ T7521] netlink_rcv_skb+0x158/0x420 [ 224.153136][ T7521] ? __pfx_genl_rcv_msg+0x10/0x10 [ 224.153168][ T7521] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 224.153233][ T7521] ? netlink_deliver_tap+0x1ae/0xd30 [ 224.153285][ T7521] genl_rcv+0x28/0x40 [ 224.153334][ T7521] netlink_unicast+0x5aa/0x870 [ 224.153387][ T7521] ? __pfx_netlink_unicast+0x10/0x10 [ 224.153441][ T7521] ? __pfx___might_resched+0x10/0x10 [ 224.153486][ T7521] ? __lock_acquire+0x436/0x2890 [ 224.153527][ T7521] netlink_sendmsg+0x8c8/0xdd0 [ 224.153585][ T7521] ? __pfx_netlink_sendmsg+0x10/0x10 [ 224.153640][ T7521] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 224.153705][ T7521] ____sys_sendmsg+0xa5d/0xc30 [ 224.153760][ T7521] ? copy_msghdr_from_user+0x10a/0x160 [ 224.153802][ T7521] ? __pfx_____sys_sendmsg+0x10/0x10 [ 224.153865][ T7521] ? __pfx_futex_wake_mark+0x10/0x10 [ 224.153916][ T7521] ___sys_sendmsg+0x134/0x1d0 [ 224.153960][ T7521] ? __pfx____sys_sendmsg+0x10/0x10 [ 224.154001][ T7521] ? futex_private_hash_put+0x160/0x1b0 [ 224.154083][ T7521] __sys_sendmsg+0x16d/0x220 [ 224.154126][ T7521] ? __pfx___sys_sendmsg+0x10/0x10 [ 224.154167][ T7521] ? __x64_sys_futex+0x1e0/0x4c0 [ 224.154230][ T7521] do_syscall_64+0xcd/0xf80 [ 224.154283][ T7521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.154316][ T7521] RIP: 0033:0x7f283018f7c9 [ 224.154343][ T7521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 224.154376][ T7521] RSP: 002b:00007f2830f76038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 224.154409][ T7521] RAX: ffffffffffffffda RBX: 00007f28303e6180 RCX: 00007f283018f7c9 [ 224.154437][ T7521] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000006 [ 224.154457][ T7521] RBP: 00007f2830213f91 R08: 0000000000000000 R09: 0000000000000000 [ 224.154477][ T7521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.154496][ T7521] R13: 00007f28303e6218 R14: 00007f28303e6180 R15: 00007ffeb317e258 [ 224.154541][ T7521] [ 225.525388][ T7551] input input59: cannot allocate more than FF_MAX_EFFECTS effects [ 227.085877][ T7575] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 227.547570][ T5843] Bluetooth: hci0: command 0x0406 tx timeout [ 227.553660][ T5843] Bluetooth: hci3: command 0x0406 tx timeout [ 227.559409][ T52] Bluetooth: hci1: command 0x0406 tx timeout [ 227.562537][ T5845] Bluetooth: hci2: command 0x0406 tx timeout [ 228.052187][ T7591] netlink: 12 bytes leftover after parsing attributes in process `syz.1.356'. [ 228.149243][ T7591] ip6g: entered promiscuous mode [ 228.621310][ T7604] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 228.705152][ T7604] CPU: 0 UID: 0 PID: 7604 Comm: syz.3.358 Not tainted syzkaller #0 PREEMPT(full) [ 228.705199][ T7604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 228.705225][ T7604] Call Trace: [ 228.705235][ T7604] [ 228.705248][ T7604] dump_stack_lvl+0x16c/0x1f0 [ 228.705325][ T7604] sysfs_warn_dup+0x7f/0xa0 [ 228.705364][ T7604] sysfs_do_create_link_sd+0x124/0x140 [ 228.705413][ T7604] sysfs_create_link+0x61/0xc0 [ 228.705452][ T7604] device_add+0x652/0x1980 [ 228.705503][ T7604] ? __pfx_device_add+0x10/0x10 [ 228.705550][ T7604] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 228.705606][ T7604] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 228.705666][ T7604] wiphy_register+0x1ea1/0x2cc0 [ 228.705702][ T7604] ? __rtnl_unlock+0x68/0xf0 [ 228.705754][ T7604] ? napi_set_threaded+0xa0/0x4c0 [ 228.705807][ T7604] ? __pfx_wiphy_register+0x10/0x10 [ 228.705841][ T7604] ? __asan_memset+0x23/0x50 [ 228.705895][ T7604] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 228.705955][ T7604] ieee80211_register_hw+0x2bb2/0x4160 [ 228.706006][ T7604] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 228.706050][ T7604] ? __pfx___debug_object_init+0x10/0x10 [ 228.706114][ T7604] ? find_held_lock+0x2b/0x80 [ 228.706162][ T7604] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 228.706215][ T7604] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 228.706265][ T7604] ? __hrtimer_setup+0x176/0x280 [ 228.706312][ T7604] mac80211_hwsim_new_radio+0x3323/0x5150 [ 228.706374][ T7604] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 228.706427][ T7604] hwsim_new_radio_nl+0xba2/0x1330 [ 228.706470][ T7604] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 228.706522][ T7604] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 228.706587][ T7604] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 228.706655][ T7604] genl_family_rcv_msg_doit+0x209/0x2f0 [ 228.706713][ T7604] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 228.706770][ T7604] ? genl_get_cmd+0x194/0x580 [ 228.706831][ T7604] ? bpf_lsm_capable+0x9/0x10 [ 228.706874][ T7604] ? security_capable+0x7e/0x260 [ 228.706930][ T7604] ? ns_capable+0xd7/0x110 [ 228.706975][ T7604] genl_rcv_msg+0x55c/0x800 [ 228.707013][ T7604] ? __pfx_genl_rcv_msg+0x10/0x10 [ 228.707057][ T7604] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 228.707110][ T7604] netlink_rcv_skb+0x158/0x420 [ 228.707159][ T7604] ? __pfx_genl_rcv_msg+0x10/0x10 [ 228.707194][ T7604] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 228.707262][ T7604] ? netlink_deliver_tap+0x1ae/0xd30 [ 228.707317][ T7604] genl_rcv+0x28/0x40 [ 228.707365][ T7604] netlink_unicast+0x5aa/0x870 [ 228.707421][ T7604] ? __pfx_netlink_unicast+0x10/0x10 [ 228.707469][ T7604] ? __pfx___might_resched+0x10/0x10 [ 228.707516][ T7604] ? __lock_acquire+0x436/0x2890 [ 228.707559][ T7604] netlink_sendmsg+0x8c8/0xdd0 [ 228.707618][ T7604] ? __pfx_netlink_sendmsg+0x10/0x10 [ 228.707675][ T7604] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 228.707752][ T7604] ____sys_sendmsg+0xa5d/0xc30 [ 228.707805][ T7604] ? copy_msghdr_from_user+0x10a/0x160 [ 228.707847][ T7604] ? __pfx_____sys_sendmsg+0x10/0x10 [ 228.707897][ T7604] ? preempt_schedule_thunk+0x16/0x30 [ 228.707937][ T7604] ? try_to_wake_up+0xa67/0x1860 [ 228.707988][ T7604] ___sys_sendmsg+0x134/0x1d0 [ 228.708040][ T7604] ? __pfx____sys_sendmsg+0x10/0x10 [ 228.708083][ T7604] ? futex_private_hash_put+0x160/0x1b0 [ 228.708167][ T7604] __sys_sendmsg+0x16d/0x220 [ 228.708209][ T7604] ? __pfx___sys_sendmsg+0x10/0x10 [ 228.708252][ T7604] ? __x64_sys_futex+0x1e0/0x4c0 [ 228.708334][ T7604] do_syscall_64+0xcd/0xf80 [ 228.708388][ T7604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.708423][ T7604] RIP: 0033:0x7f283018f7c9 [ 228.708449][ T7604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.708482][ T7604] RSP: 002b:00007f2830f76038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 228.708514][ T7604] RAX: ffffffffffffffda RBX: 00007f28303e6180 RCX: 00007f283018f7c9 [ 228.708536][ T7604] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 228.708557][ T7604] RBP: 00007f2830213f91 R08: 0000000000000000 R09: 0000000000000000 [ 228.708578][ T7604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.708598][ T7604] R13: 00007f28303e6218 R14: 00007f28303e6180 R15: 00007ffeb317e258 [ 228.708644][ T7604] [ 231.159731][ T7648] netlink: 330 bytes leftover after parsing attributes in process `syz.0.367'. [ 231.209299][ T7654] netlink: 330 bytes leftover after parsing attributes in process `syz.0.367'. [ 231.400735][ T7657] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 231.446224][ T7657] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input61 [ 231.716973][ T7662] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input62 [ 232.068889][ T7659] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input63 [ 232.357485][ T7663] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input64 [ 234.840130][ T7730] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65 [ 234.914164][ T7732] sp0: Synchronizing with TNC [ 235.316992][ T7734] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 236.016870][ T7734] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67 [ 238.489037][ T7753] Process accounting resumed [ 239.508545][ T7815] netlink: 12 bytes leftover after parsing attributes in process `syz.1.396'. [ 239.578475][ T7815] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 240.296014][ T7815] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 240.311096][ T7815] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 240.362500][ T7815] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 240.398597][ T7815] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 240.788225][ T7815] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 241.089637][ T7815] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 241.096958][ T7815] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 241.233379][ T7815] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 241.243584][ T7815] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 241.517713][ T7846] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68 [ 241.936944][ T5834] Bluetooth: hci0: command 0x0406 tx timeout [ 242.417288][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 243.136285][ T5834] Bluetooth: hci3: command 0x0406 tx timeout [ 243.296523][ T5834] Bluetooth: hci2: command 0x0406 tx timeout [ 244.025925][ T5834] Bluetooth: hci0: command 0x0406 tx timeout [ 244.399494][ T7891] usb usb36: usbfs: process 7891 (syz.2.409) did not claim interface 0 before use [ 244.497393][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 245.215258][ T5834] Bluetooth: hci3: command 0x0406 tx timeout [ 245.375101][ T5834] Bluetooth: hci2: command 0x0406 tx timeout [ 245.606673][ T7915] Invalid ELF header magic: != ELF [ 246.579786][ T5834] Bluetooth: hci1: command 0x0406 tx timeout [ 247.709837][ T7943] capability: warning: `syz.3.418' uses 32-bit capabilities (legacy support in use) [ 248.105720][ T7956] UHID_CREATE from different security context by process 421 (syz.0.422), this is not allowed. [ 248.123434][ T7956] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 251.700136][ T8011] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 251.711761][ T8011] CPU: 0 UID: 0 PID: 8011 Comm: syz.1.431 Not tainted syzkaller #0 PREEMPT(full) [ 251.711790][ T8011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 251.711804][ T8011] Call Trace: [ 251.711811][ T8011] [ 251.711822][ T8011] dump_stack_lvl+0x16c/0x1f0 [ 251.711905][ T8011] sysfs_warn_dup+0x7f/0xa0 [ 251.711942][ T8011] sysfs_do_create_link_sd+0x124/0x140 [ 251.711987][ T8011] sysfs_create_link+0x61/0xc0 [ 251.712015][ T8011] device_add+0x652/0x1980 [ 251.712053][ T8011] ? __pfx_device_add+0x10/0x10 [ 251.712085][ T8011] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 251.712125][ T8011] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 251.712169][ T8011] wiphy_register+0x1ea1/0x2cc0 [ 251.712198][ T8011] ? __rtnl_unlock+0x68/0xf0 [ 251.712236][ T8011] ? napi_set_threaded+0xa0/0x4c0 [ 251.712272][ T8011] ? __pfx_wiphy_register+0x10/0x10 [ 251.712296][ T8011] ? __asan_memset+0x23/0x50 [ 251.712335][ T8011] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 251.712380][ T8011] ieee80211_register_hw+0x2bb2/0x4160 [ 251.712416][ T8011] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 251.712439][ T8011] ? __pfx___debug_object_init+0x10/0x10 [ 251.712484][ T8011] ? find_held_lock+0x2b/0x80 [ 251.712517][ T8011] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 251.712556][ T8011] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 251.712592][ T8011] ? __hrtimer_setup+0x176/0x280 [ 251.712626][ T8011] mac80211_hwsim_new_radio+0x3323/0x5150 [ 251.712671][ T8011] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 251.712708][ T8011] hwsim_new_radio_nl+0xba2/0x1330 [ 251.712740][ T8011] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 251.712777][ T8011] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 251.712821][ T8011] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 251.712871][ T8011] genl_family_rcv_msg_doit+0x209/0x2f0 [ 251.712945][ T8011] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 251.712986][ T8011] ? genl_get_cmd+0x194/0x580 [ 251.713030][ T8011] ? bpf_lsm_capable+0x9/0x10 [ 251.713062][ T8011] ? security_capable+0x7e/0x260 [ 251.713102][ T8011] ? ns_capable+0xd7/0x110 [ 251.713134][ T8011] genl_rcv_msg+0x55c/0x800 [ 251.713163][ T8011] ? __pfx_genl_rcv_msg+0x10/0x10 [ 251.713186][ T8011] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 251.713225][ T8011] netlink_rcv_skb+0x158/0x420 [ 251.713261][ T8011] ? __pfx_genl_rcv_msg+0x10/0x10 [ 251.713285][ T8011] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 251.713334][ T8011] ? netlink_deliver_tap+0x1ae/0xd30 [ 251.713373][ T8011] genl_rcv+0x28/0x40 [ 251.713409][ T8011] netlink_unicast+0x5aa/0x870 [ 251.713449][ T8011] ? __pfx_netlink_unicast+0x10/0x10 [ 251.713484][ T8011] ? __pfx___might_resched+0x10/0x10 [ 251.713518][ T8011] ? __lock_acquire+0x436/0x2890 [ 251.713549][ T8011] netlink_sendmsg+0x8c8/0xdd0 [ 251.713589][ T8011] ? __pfx_netlink_sendmsg+0x10/0x10 [ 251.713629][ T8011] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 251.713676][ T8011] ____sys_sendmsg+0xa5d/0xc30 [ 251.713717][ T8011] ? copy_msghdr_from_user+0x10a/0x160 [ 251.713748][ T8011] ? __pfx_____sys_sendmsg+0x10/0x10 [ 251.713795][ T8011] ? __pfx_futex_wake_mark+0x10/0x10 [ 251.713833][ T8011] ___sys_sendmsg+0x134/0x1d0 [ 251.713867][ T8011] ? __pfx____sys_sendmsg+0x10/0x10 [ 251.713904][ T8011] ? futex_private_hash_put+0x160/0x1b0 [ 251.713964][ T8011] __sys_sendmsg+0x16d/0x220 [ 251.713996][ T8011] ? __pfx___sys_sendmsg+0x10/0x10 [ 251.714027][ T8011] ? __x64_sys_futex+0x1e0/0x4c0 [ 251.714073][ T8011] do_syscall_64+0xcd/0xf80 [ 251.714112][ T8011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.714137][ T8011] RIP: 0033:0x7f130658f7c9 [ 251.714158][ T8011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.714182][ T8011] RSP: 002b:00007f1307426038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 251.714204][ T8011] RAX: ffffffffffffffda RBX: 00007f13067e6180 RCX: 00007f130658f7c9 [ 251.714220][ T8011] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 251.714235][ T8011] RBP: 00007f1306613f91 R08: 0000000000000000 R09: 0000000000000000 [ 251.714250][ T8011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 251.714265][ T8011] R13: 00007f13067e6218 R14: 00007f13067e6180 R15: 00007ffe289a1c18 [ 251.714297][ T8011] [ 254.355566][ T8021] sp0: Synchronizing with TNC [ 256.660118][ T8060] sp0: Synchronizing with TNC [ 257.715439][ T8079] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 257.730864][ T8079] CPU: 1 UID: 0 PID: 8079 Comm: syz.0.447 Not tainted syzkaller #0 PREEMPT(full) [ 257.730906][ T8079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 257.730928][ T8079] Call Trace: [ 257.730938][ T8079] [ 257.730949][ T8079] dump_stack_lvl+0x16c/0x1f0 [ 257.731004][ T8079] sysfs_warn_dup+0x7f/0xa0 [ 257.731039][ T8079] sysfs_do_create_link_sd+0x124/0x140 [ 257.731080][ T8079] sysfs_create_link+0x61/0xc0 [ 257.731117][ T8079] device_add+0x652/0x1980 [ 257.731168][ T8079] ? __pfx_device_add+0x10/0x10 [ 257.731213][ T8079] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 257.731266][ T8079] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 257.731324][ T8079] wiphy_register+0x1ea1/0x2cc0 [ 257.731355][ T8079] ? __rtnl_unlock+0x68/0xf0 [ 257.731407][ T8079] ? napi_set_threaded+0xa0/0x4c0 [ 257.731451][ T8079] ? __pfx_wiphy_register+0x10/0x10 [ 257.731480][ T8079] ? __asan_memset+0x23/0x50 [ 257.731527][ T8079] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 257.731581][ T8079] ieee80211_register_hw+0x2bb2/0x4160 [ 257.731634][ T8079] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 257.731662][ T8079] ? __pfx___debug_object_init+0x10/0x10 [ 257.731716][ T8079] ? find_held_lock+0x2b/0x80 [ 257.731767][ T8079] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 257.731812][ T8079] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 257.731854][ T8079] ? __hrtimer_setup+0x176/0x280 [ 257.731896][ T8079] mac80211_hwsim_new_radio+0x3323/0x5150 [ 257.731949][ T8079] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 257.731992][ T8079] hwsim_new_radio_nl+0xba2/0x1330 [ 257.732029][ T8079] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 257.732072][ T8079] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 257.732124][ T8079] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 257.732182][ T8079] genl_family_rcv_msg_doit+0x209/0x2f0 [ 257.732232][ T8079] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 257.732281][ T8079] ? genl_get_cmd+0x194/0x580 [ 257.732332][ T8079] ? bpf_lsm_capable+0x9/0x10 [ 257.732376][ T8079] ? security_capable+0x7e/0x260 [ 257.732424][ T8079] ? ns_capable+0xd7/0x110 [ 257.732463][ T8079] genl_rcv_msg+0x55c/0x800 [ 257.732493][ T8079] ? __pfx_genl_rcv_msg+0x10/0x10 [ 257.732520][ T8079] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 257.732565][ T8079] netlink_rcv_skb+0x158/0x420 [ 257.732612][ T8079] ? __pfx_genl_rcv_msg+0x10/0x10 [ 257.732641][ T8079] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 257.732697][ T8079] ? netlink_deliver_tap+0x1ae/0xd30 [ 257.732742][ T8079] genl_rcv+0x28/0x40 [ 257.732783][ T8079] netlink_unicast+0x5aa/0x870 [ 257.732830][ T8079] ? __pfx_netlink_unicast+0x10/0x10 [ 257.732872][ T8079] ? __pfx___might_resched+0x10/0x10 [ 257.732911][ T8079] ? __lock_acquire+0x436/0x2890 [ 257.732946][ T8079] netlink_sendmsg+0x8c8/0xdd0 [ 257.732993][ T8079] ? __pfx_netlink_sendmsg+0x10/0x10 [ 257.733040][ T8079] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 257.733094][ T8079] ____sys_sendmsg+0xa5d/0xc30 [ 257.733160][ T8079] ? copy_msghdr_from_user+0x10a/0x160 [ 257.733197][ T8079] ? __pfx_____sys_sendmsg+0x10/0x10 [ 257.733260][ T8079] ? __pfx_futex_wake_mark+0x10/0x10 [ 257.733307][ T8079] ___sys_sendmsg+0x134/0x1d0 [ 257.733348][ T8079] ? __pfx____sys_sendmsg+0x10/0x10 [ 257.733386][ T8079] ? futex_private_hash_put+0x160/0x1b0 [ 257.733458][ T8079] __sys_sendmsg+0x16d/0x220 [ 257.733497][ T8079] ? __pfx___sys_sendmsg+0x10/0x10 [ 257.733535][ T8079] ? __x64_sys_futex+0x1e0/0x4c0 [ 257.733599][ T8079] do_syscall_64+0xcd/0xf80 [ 257.733648][ T8079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.733678][ T8079] RIP: 0033:0x7f64c278f7c9 [ 257.733701][ T8079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.733731][ T8079] RSP: 002b:00007f64c09d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 257.733759][ T8079] RAX: ffffffffffffffda RBX: 00007f64c29e6180 RCX: 00007f64c278f7c9 [ 257.733778][ T8079] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 257.733797][ T8079] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 257.733815][ T8079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.733832][ T8079] R13: 00007f64c29e6218 R14: 00007f64c29e6180 R15: 00007ffd5bb73008 [ 257.733871][ T8079] [ 258.820423][ T8091] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 259.108841][ T8094] netlink: 8 bytes leftover after parsing attributes in process `syz.1.455'. [ 259.520342][ T8092] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input70 [ 260.733390][ T8107] sp0: Synchronizing with TNC [ 262.899955][ T8138] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71 [ 263.440101][ T8141] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input72 [ 266.138803][ T8172] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 266.189609][ T8172] CPU: 1 UID: 0 PID: 8172 Comm: syz.2.468 Not tainted syzkaller #0 PREEMPT(full) [ 266.189655][ T8172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 266.189676][ T8172] Call Trace: [ 266.189687][ T8172] [ 266.189699][ T8172] dump_stack_lvl+0x16c/0x1f0 [ 266.189755][ T8172] sysfs_warn_dup+0x7f/0xa0 [ 266.189799][ T8172] sysfs_do_create_link_sd+0x124/0x140 [ 266.189843][ T8172] sysfs_create_link+0x61/0xc0 [ 266.189879][ T8172] device_add+0x652/0x1980 [ 266.189931][ T8172] ? __pfx_device_add+0x10/0x10 [ 266.189975][ T8172] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 266.190037][ T8172] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 266.190098][ T8172] wiphy_register+0x1ea1/0x2cc0 [ 266.190130][ T8172] ? __rtnl_unlock+0x68/0xf0 [ 266.190181][ T8172] ? napi_set_threaded+0xa0/0x4c0 [ 266.190231][ T8172] ? __pfx_wiphy_register+0x10/0x10 [ 266.190266][ T8172] ? __asan_memset+0x23/0x50 [ 266.190320][ T8172] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 266.190382][ T8172] ieee80211_register_hw+0x2bb2/0x4160 [ 266.190432][ T8172] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 266.190466][ T8172] ? __pfx___debug_object_init+0x10/0x10 [ 266.190528][ T8172] ? find_held_lock+0x2b/0x80 [ 266.190589][ T8172] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 266.190644][ T8172] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 266.190694][ T8172] ? __hrtimer_setup+0x176/0x280 [ 266.190740][ T8172] mac80211_hwsim_new_radio+0x3323/0x5150 [ 266.190804][ T8172] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 266.190863][ T8172] hwsim_new_radio_nl+0xba2/0x1330 [ 266.190906][ T8172] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 266.190984][ T8172] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 266.191041][ T8172] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 266.191114][ T8172] genl_family_rcv_msg_doit+0x209/0x2f0 [ 266.191171][ T8172] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 266.191227][ T8172] ? genl_get_cmd+0x194/0x580 [ 266.191284][ T8172] ? bpf_lsm_capable+0x9/0x10 [ 266.191335][ T8172] ? security_capable+0x7e/0x260 [ 266.191390][ T8172] ? ns_capable+0xd7/0x110 [ 266.191435][ T8172] genl_rcv_msg+0x55c/0x800 [ 266.191472][ T8172] ? __pfx_genl_rcv_msg+0x10/0x10 [ 266.191504][ T8172] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 266.191566][ T8172] netlink_rcv_skb+0x158/0x420 [ 266.191615][ T8172] ? __pfx_genl_rcv_msg+0x10/0x10 [ 266.191648][ T8172] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 266.191715][ T8172] ? netlink_deliver_tap+0x1ae/0xd30 [ 266.191766][ T8172] genl_rcv+0x28/0x40 [ 266.191815][ T8172] netlink_unicast+0x5aa/0x870 [ 266.191869][ T8172] ? __pfx_netlink_unicast+0x10/0x10 [ 266.191917][ T8172] ? __pfx___might_resched+0x10/0x10 [ 266.191962][ T8172] ? __lock_acquire+0x436/0x2890 [ 266.192010][ T8172] netlink_sendmsg+0x8c8/0xdd0 [ 266.192085][ T8172] ? __pfx_netlink_sendmsg+0x10/0x10 [ 266.192142][ T8172] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 266.192207][ T8172] ____sys_sendmsg+0xa5d/0xc30 [ 266.192264][ T8172] ? copy_msghdr_from_user+0x10a/0x160 [ 266.192308][ T8172] ? __pfx_____sys_sendmsg+0x10/0x10 [ 266.192360][ T8172] ? preempt_schedule_thunk+0x16/0x30 [ 266.192401][ T8172] ? try_to_wake_up+0xa67/0x1860 [ 266.192454][ T8172] ___sys_sendmsg+0x134/0x1d0 [ 266.192499][ T8172] ? __pfx____sys_sendmsg+0x10/0x10 [ 266.192543][ T8172] ? futex_private_hash_put+0x160/0x1b0 [ 266.192638][ T8172] __sys_sendmsg+0x16d/0x220 [ 266.192684][ T8172] ? __pfx___sys_sendmsg+0x10/0x10 [ 266.192727][ T8172] ? __x64_sys_futex+0x1e0/0x4c0 [ 266.192793][ T8172] do_syscall_64+0xcd/0xf80 [ 266.192848][ T8172] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.192882][ T8172] RIP: 0033:0x7f22b718f7c9 [ 266.192909][ T8172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 266.192942][ T8172] RSP: 002b:00007f22b53b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 266.192974][ T8172] RAX: ffffffffffffffda RBX: 00007f22b73e6180 RCX: 00007f22b718f7c9 [ 266.192995][ T8172] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005 [ 266.193016][ T8172] RBP: 00007f22b7213f91 R08: 0000000000000000 R09: 0000000000000000 [ 266.193037][ T8172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.193056][ T8172] R13: 00007f22b73e6218 R14: 00007f22b73e6180 R15: 00007ffefb3cc318 [ 266.193102][ T8172] [ 266.421593][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.715046][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 266.742993][ T8171] sp0: Synchronizing with TNC [ 269.724627][ T8218] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 271.329073][ T8219] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input74 [ 271.418325][ T8241] sp0: Synchronizing with TNC [ 275.136003][ T8286] cgroup: fork rejected by pids controller in /syz1 [ 275.450881][ T7776] syz.3.389 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 275.541305][ T7776] CPU: 1 UID: 0 PID: 7776 Comm: syz.3.389 Not tainted syzkaller #0 PREEMPT(full) [ 275.541345][ T7776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 275.541362][ T7776] Call Trace: [ 275.541372][ T7776] [ 275.541383][ T7776] dump_stack_lvl+0x16c/0x1f0 [ 275.541435][ T7776] dump_header+0x101/0x960 [ 275.541473][ T7776] oom_kill_process+0x176/0x910 [ 275.541535][ T7776] out_of_memory+0x350/0x1700 [ 275.541572][ T7776] ? __lock_acquire+0x436/0x2890 [ 275.541610][ T7776] ? __pfx_out_of_memory+0x10/0x10 [ 275.541656][ T7776] mem_cgroup_out_of_memory+0x118/0x130 [ 275.541696][ T7776] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 275.541747][ T7776] ? do_raw_spin_unlock+0x172/0x230 [ 275.541799][ T7776] try_charge_memcg+0x695/0xd30 [ 275.541858][ T7776] ? __pfx_try_charge_memcg+0x10/0x10 [ 275.541910][ T7776] ? find_held_lock+0x11/0x80 [ 275.541954][ T7776] ? rcu_read_unlock+0x17/0x60 [ 275.541995][ T7776] charge_memcg+0x8a/0x230 [ 275.542046][ T7776] __mem_cgroup_charge+0x2b/0x1e0 [ 275.542085][ T7776] shmem_alloc_and_add_folio+0x50c/0xc20 [ 275.542120][ T7776] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 275.542150][ T7776] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 275.542183][ T7776] shmem_get_folio_gfp+0x67f/0x1610 [ 275.542216][ T7776] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 275.542251][ T7776] shmem_write_begin+0x1a4/0x3b0 [ 275.542280][ T7776] ? __pfx_shmem_write_begin+0x10/0x10 [ 275.542308][ T7776] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260 [ 275.542344][ T7776] ? lockdep_hardirqs_on+0x7c/0x110 [ 275.542383][ T7776] generic_perform_write+0x3c4/0x900 [ 275.542431][ T7776] ? __pfx_generic_perform_write+0x10/0x10 [ 275.542474][ T7776] ? file_update_time_flags+0x35c/0x520 [ 275.542503][ T7776] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 275.542534][ T7776] shmem_file_write_iter+0x10e/0x140 [ 275.542568][ T7776] __kernel_write_iter+0x31a/0xb10 [ 275.542605][ T7776] ? __pfx___kernel_write_iter+0x10/0x10 [ 275.542638][ T7776] ? __up_read+0x2d1/0x700 [ 275.542668][ T7776] ? dump_user_range+0x756/0xb70 [ 275.542702][ T7776] ? dump_user_range+0x5d9/0xb70 [ 275.542754][ T7776] dump_user_range+0x413/0xb70 [ 275.542811][ T7776] ? __pfx_dump_user_range+0x10/0x10 [ 275.542847][ T7776] ? elf_coredump_extra_notes_write+0xbd/0x500 [ 275.542878][ T7776] ? __pfx_writenote+0x10/0x10 [ 275.542921][ T7776] elf_core_dump+0x29c3/0x3c10 [ 275.542956][ T7776] ? __pfx_elf_core_dump+0x10/0x10 [ 275.542975][ T7776] ? finish_task_switch.isra.0+0x207/0xbd0 [ 275.543008][ T7776] ? finish_task_switch.isra.0+0x2e0/0xbd0 [ 275.543044][ T7776] ? trace_sched_exit_tp+0xd1/0x110 [ 275.543077][ T7776] ? __schedule+0x10b9/0x6150 [ 275.543129][ T7776] ? 0xffffffffff600000 [ 275.543214][ T7776] ? vfs_coredump+0x2b85/0x55e0 [ 275.543248][ T7776] vfs_coredump+0x2b85/0x55e0 [ 275.543311][ T7776] ? __pfx_vfs_coredump+0x10/0x10 [ 275.543345][ T7776] ? __lock_acquire+0x436/0x2890 [ 275.543373][ T7776] ? __lock_acquire+0x436/0x2890 [ 275.543397][ T7776] ? lock_acquire+0x179/0x330 [ 275.543424][ T7776] ? lock_acquire+0x179/0x330 [ 275.543464][ T7776] ? arch_stack_walk+0xa6/0x100 [ 275.543503][ T7776] ? stack_trace_save+0x8e/0xc0 [ 275.543539][ T7776] ? __pfx_stack_trace_save+0x10/0x10 [ 275.543593][ T7776] ? stack_depot_save_flags+0x29/0x9b0 [ 275.543620][ T7776] ? __lock_acquire+0x436/0x2890 [ 275.543644][ T7776] ? kasan_save_stack+0x42/0x60 [ 275.543719][ T7776] ? proc_coredump_connector+0x2d1/0x4f0 [ 275.543757][ T7776] ? __pfx_proc_coredump_connector+0x10/0x10 [ 275.543806][ T7776] ? rcu_is_watching+0x12/0xc0 [ 275.543841][ T7776] get_signal+0x22e1/0x26d0 [ 275.543879][ T7776] ? lockdep_hardirqs_on+0x7c/0x110 [ 275.543915][ T7776] ? __pfx_get_signal+0x10/0x10 [ 275.543954][ T7776] arch_do_signal_or_restart+0x8f/0x7a0 [ 275.543986][ T7776] ? fixup_iopl_exception+0xaf/0x2e0 [ 275.544018][ T7776] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 275.544059][ T7776] ? cond_local_irq_disable.isra.0+0x4b/0x60 [ 275.544093][ T7776] ? exc_general_protection+0x198/0x230 [ 275.544124][ T7776] irqentry_exit+0x38a/0x8c0 [ 275.544161][ T7776] asm_exc_general_protection+0x26/0x30 [ 275.544183][ T7776] RIP: 0033:0x7f283018f7d1 [ 275.544200][ T7776] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 275.544257][ T7776] RSP: 002b:00002000000000a0 EFLAGS: 00010217 [ 275.544282][ T7776] RAX: 0000000000000000 RBX: 00007f28303e6090 RCX: 00007f283018f7c9 [ 275.544303][ T7776] RDX: 00002000000000c0 RSI: 00002000000000a0 RDI: 0000000000081000 [ 275.544326][ T7776] RBP: 00007f2830213f91 R08: 00002000000001c0 R09: 00002000000001c0 [ 275.544341][ T7776] R10: 0000200000000100 R11: 0000000000000206 R12: 0000000000000000 [ 275.544356][ T7776] R13: 00007f28303e6128 R14: 00007f28303e6090 R15: 00007ffeb317e258 [ 275.544387][ T7776] [ 275.545078][ T7776] memory: usage 307200kB, limit 307200kB, failcnt 22624 [ 276.195424][ T7776] memory+swap: usage 431936kB, limit 9007199254740988kB, failcnt 0 [ 276.757244][ T7776] kmem: usage 3532kB, limit 9007199254740988kB, failcnt 0 [ 276.779495][ T7776] Memory cgroup stats for /syz3: [ 276.779767][ T7776] cache 310444032 [ 276.799811][ T8485] sp0: Synchronizing with TNC [ 277.149224][ T7776] rss 499712 [ 277.152578][ T7776] rss_huge 0 [ 277.155804][ T7776] shmem 310435840 [ 277.171420][ T8498] netlink: 28 bytes leftover after parsing attributes in process `syz.1.492'. [ 277.265472][ T7776] mapped_file 0 [ 277.307905][ T8504] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 277.355018][ T7776] dirty 0 [ 277.391779][ T7776] writeback 0 [ 277.397229][ T7776] workingset_refault_anon 1305 [ 277.419112][ T7776] workingset_refault_file 783 [ 277.441794][ T7776] swap 127782912 [ 277.466821][ T7776] swapcached 57344 [ 277.473116][ T7776] pgpgin 244176 [ 277.488416][ T7776] pgpgout 170303 [ 277.531673][ T7776] pgfault 133179 [ 277.539983][ T7776] pgmajfault 348 [ 277.553873][ T7776] inactive_anon 98287616 [ 277.599179][ T7776] active_anon 212541440 [ 277.603502][ T7776] inactive_file 8192 [ 277.701744][ T7776] active_file 0 [ 277.732531][ T7776] unevictable 0 [ 277.735996][ T7776] hierarchical_memory_limit 314572800 [ 277.829106][ T7776] hierarchical_memsw_limit 9223372036854771712 [ 277.871866][ T7776] total_cache 310444032 [ 277.941515][ T7776] total_rss 499712 [ 277.980641][ T8505] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input76 [ 277.999339][ T7776] total_rss_huge 0 [ 278.072311][ T5831] Process accounting paused [ 278.258959][ T7776] total_shmem 310435840 [ 278.276978][ T7776] total_mapped_file 0 [ 278.398581][ T7776] total_dirty 0 [ 278.402808][ T7776] total_writeback 0 [ 278.522839][ T7776] total_workingset_refault_anon 1305 [ 278.528206][ T7776] total_workingset_refault_file 783 [ 278.578998][ T7776] total_swap 127782912 [ 278.661518][ T5150] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 278.676848][ T5150] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 278.684812][ T5150] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 278.692992][ T5150] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 278.702612][ T5150] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 278.767549][ T7776] total_swapcached 57344 [ 278.856994][ T7776] total_pgpgin 244176 [ 278.937557][ T7776] total_pgpgout 170303 [ 278.968721][ T7776] total_pgfault 133179 [ 278.980209][ T7776] total_pgmajfault 348 [ 279.060106][ T7776] total_inactive_anon 98287616 [ 279.064999][ T7776] total_active_anon 212541440 [ 279.358413][ T7776] total_inactive_file 8192 [ 279.372445][ T8520] chnl_net:caif_netlink_parms(): no params data found [ 279.389729][ T7776] total_active_file 0 [ 279.403905][ T7776] total_unevictable 0 [ 279.407942][ T7776] anon_cost 0 [ 279.411757][ T7776] file_cost 0 [ 279.428818][ T7776] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.389,pid=7764,uid=0 [ 279.454621][ T7776] Memory cgroup out of memory: OOM victim 7764 (syz.3.389) is already exiting. Skip killing the task [ 279.585005][ T5150] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 280.081129][ T8520] bridge0: port 1(bridge_slave_0) entered blocking state [ 280.089139][ T8520] bridge0: port 1(bridge_slave_0) entered disabled state [ 280.096609][ T8520] bridge_slave_0: entered allmulticast mode [ 280.149172][ T8520] bridge_slave_0: entered promiscuous mode [ 280.174446][ T8520] bridge0: port 2(bridge_slave_1) entered blocking state [ 280.212312][ T8520] bridge0: port 2(bridge_slave_1) entered disabled state [ 280.255371][ T8520] bridge_slave_1: entered allmulticast mode [ 280.292172][ T8520] bridge_slave_1: entered promiscuous mode [ 280.435368][ T8520] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 280.686745][ T8520] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 280.807408][ T5150] Bluetooth: hci4: command tx timeout [ 281.093401][ T8520] team0: Port device team_slave_0 added [ 281.299122][ T8520] team0: Port device team_slave_1 added [ 281.337837][ T8553] sp0: Synchronizing with TNC [ 282.411525][ T8520] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 282.432497][ T8520] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 282.476847][ T8520] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 282.489670][ T8520] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 282.498013][ T8520] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 282.538258][ T8520] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 282.877611][ T5150] Bluetooth: hci4: command tx timeout [ 283.179909][ T8520] hsr_slave_0: entered promiscuous mode [ 283.199654][ T8520] hsr_slave_1: entered promiscuous mode [ 283.216811][ T8520] debugfs: 'hsr0' already exists in 'hsr' [ 283.222643][ T8520] Cannot create hsr debugfs directory [ 283.510243][ T7760] syz.3.389 (7760) used greatest stack depth: 19272 bytes left [ 284.151394][ T8520] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 284.424115][ T7770] syz.3.389 (7770) used greatest stack depth: 17976 bytes left [ 284.538394][ T8520] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 284.659629][ T8520] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 284.691414][ T8520] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 284.702523][ T7766] syz.3.389 (7766) used greatest stack depth: 17672 bytes left [ 284.961081][ T5150] Bluetooth: hci4: command tx timeout [ 284.994416][ T6744] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.260026][ T6744] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.499632][ T8596] sp0: Synchronizing with TNC [ 285.634010][ T6744] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.878533][ T6744] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.087934][ T8520] 8021q: adding VLAN 0 to HW filter on device bond0 [ 286.202300][ T8520] 8021q: adding VLAN 0 to HW filter on device team0 [ 286.257578][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 286.264842][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 286.418612][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 286.425968][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 286.672306][ T6744] bridge_slave_1: left allmulticast mode [ 286.709200][ T6744] bridge_slave_1: left promiscuous mode [ 286.730438][ T6744] bridge0: port 2(bridge_slave_1) entered disabled state [ 286.801292][ T6744] bridge_slave_0: left allmulticast mode [ 286.815925][ T6744] bridge_slave_0: left promiscuous mode [ 286.821802][ T6744] bridge0: port 1(bridge_slave_0) entered disabled state [ 287.034359][ T5150] Bluetooth: hci4: command tx timeout [ 287.625987][ T6744] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 287.638813][ T6744] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 287.651444][ T6744] bond0 (unregistering): Released all slaves [ 287.977173][ T8627] netlink: zone id is out of range [ 288.002802][ T8627] netlink: zone id is out of range [ 288.008607][ T8627] netlink: set zone limit has 4 unknown bytes [ 289.526384][ T8520] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 289.585002][ T6744] hsr_slave_0: left promiscuous mode [ 289.624222][ T6744] hsr_slave_1: left promiscuous mode [ 289.630639][ T6744] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 289.651752][ T6744] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 289.670390][ T6744] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 289.703652][ T6744] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 289.742273][ T6744] veth1_macvtap: left promiscuous mode [ 289.774088][ T6744] veth0_macvtap: left promiscuous mode [ 290.176762][ T6744] team0 (unregistering): Port device team_slave_1 removed [ 290.216883][ T6744] team0 (unregistering): Port device team_slave_0 removed [ 290.571645][ T8655] sp0: Synchronizing with TNC [ 291.269991][ T8520] veth0_vlan: entered promiscuous mode [ 291.347736][ T8520] veth1_vlan: entered promiscuous mode [ 291.590644][ T8520] veth0_macvtap: entered promiscuous mode [ 291.687263][ T8520] veth1_macvtap: entered promiscuous mode [ 291.856000][ T8520] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 291.906374][ T8520] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 291.974198][ T37] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.020049][ T37] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.072130][ T4566] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.116967][ T4566] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 292.378415][ T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 292.423621][ T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 292.515725][ T3514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 292.544421][ T3514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 292.652374][ T8703] sp0: Synchronizing with TNC [ 293.297853][ T8712] bond0: option all_slaves_active: invalid value () [ 293.466303][ T8719] FAULT_INJECTION: forcing a failure. [ 293.466303][ T8719] name failslab, interval 1, probability 0, space 0, times 0 [ 293.528243][ T8719] CPU: 1 UID: 0 PID: 8719 Comm: syz.1.533 Not tainted syzkaller #0 PREEMPT(full) [ 293.528285][ T8719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 293.528303][ T8719] Call Trace: [ 293.528320][ T8719] [ 293.528335][ T8719] dump_stack_lvl+0x16c/0x1f0 [ 293.528389][ T8719] should_fail_ex+0x512/0x640 [ 293.528424][ T8719] ? fs_reclaim_acquire+0xae/0x150 [ 293.528477][ T8719] should_failslab+0xc2/0x120 [ 293.528525][ T8719] __kmalloc_noprof+0xeb/0x910 [ 293.528559][ T8719] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 293.528610][ T8719] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 293.528653][ T8719] tomoyo_realpath_from_path+0xc2/0x6e0 [ 293.528707][ T8719] tomoyo_check_open_permission+0x2ab/0x3c0 [ 293.528748][ T8719] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 293.528825][ T8719] ? do_raw_spin_lock+0x12c/0x2b0 [ 293.528873][ T8719] tomoyo_file_open+0x6b/0x90 [ 293.528927][ T8719] security_file_open+0x84/0x1e0 [ 293.528970][ T8719] do_dentry_open+0x597/0x1590 [ 293.529019][ T8719] ? security_inode_permission+0xbf/0x260 [ 293.529063][ T8719] vfs_open+0x82/0x3f0 [ 293.529102][ T8719] path_openat+0x2078/0x3140 [ 293.529162][ T8719] ? __pfx_path_openat+0x10/0x10 [ 293.529225][ T8719] do_filp_open+0x20b/0x470 [ 293.529274][ T8719] ? __pfx_do_filp_open+0x10/0x10 [ 293.529356][ T8719] ? alloc_fd+0x471/0x7d0 [ 293.529412][ T8719] do_sys_openat2+0x121/0x290 [ 293.529447][ T8719] ? __pfx_do_sys_openat2+0x10/0x10 [ 293.529499][ T8719] __x64_sys_openat+0x174/0x210 [ 293.529534][ T8719] ? __pfx___x64_sys_openat+0x10/0x10 [ 293.529587][ T8719] do_syscall_64+0xcd/0xf80 [ 293.529639][ T8719] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.529669][ T8719] RIP: 0033:0x7f130658f7c9 [ 293.529694][ T8719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.529724][ T8719] RSP: 002b:00007f1307468038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 293.529753][ T8719] RAX: ffffffffffffffda RBX: 00007f13067e5fa0 RCX: 00007f130658f7c9 [ 293.529774][ T8719] RDX: 0000000000000040 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 293.529794][ T8719] RBP: 00007f1306613f91 R08: 0000000000000000 R09: 0000000000000000 [ 293.529812][ T8719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 293.529831][ T8719] R13: 00007f13067e6038 R14: 00007f13067e5fa0 R15: 00007ffe289a1c18 [ 293.529873][ T8719] [ 293.828313][ T8719] ERROR: Out of memory at tomoyo_realpath_from_path. [ 294.087332][ T8734] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77 [ 294.463766][ T8738] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78 [ 294.866117][ T8740] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 295.088980][ T8746] netlink: 330 bytes leftover after parsing attributes in process `syz.1.536'. [ 296.616190][ T8773] sp0: Synchronizing with TNC [ 296.771454][ T8781] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 297.550458][ T8794] netlink: 342 bytes leftover after parsing attributes in process `syz.0.545'. [ 299.501342][ T8843] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 299.682639][ T8847] sp0: Synchronizing with TNC [ 300.737590][ T8863] sp0: Synchronizing with TNC [ 300.751967][ T8863] FAULT_INJECTION: forcing a failure. [ 300.751967][ T8863] name failslab, interval 1, probability 0, space 0, times 0 [ 300.790602][ T8863] CPU: 1 UID: 0 PID: 8863 Comm: syz.4.557 Not tainted syzkaller #0 PREEMPT(full) [ 300.790651][ T8863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 300.790670][ T8863] Call Trace: [ 300.790681][ T8863] [ 300.790694][ T8863] dump_stack_lvl+0x16c/0x1f0 [ 300.790767][ T8863] should_fail_ex+0x512/0x640 [ 300.790803][ T8863] ? fs_reclaim_acquire+0xae/0x150 [ 300.790858][ T8863] should_failslab+0xc2/0x120 [ 300.790906][ T8863] __kmalloc_noprof+0xeb/0x910 [ 300.790941][ T8863] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 300.790993][ T8863] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 300.791038][ T8863] tomoyo_realpath_from_path+0xc2/0x6e0 [ 300.791086][ T8863] ? tomoyo_profile+0x47/0x60 [ 300.791140][ T8863] tomoyo_path_number_perm+0x245/0x580 [ 300.791175][ T8863] ? tomoyo_path_number_perm+0x237/0x580 [ 300.791216][ T8863] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 300.791256][ T8863] ? find_held_lock+0x2b/0x80 [ 300.791332][ T8863] ? find_held_lock+0x2b/0x80 [ 300.791373][ T8863] ? hook_file_ioctl_common+0x144/0x410 [ 300.791421][ T8863] ? __fget_files+0x20e/0x3c0 [ 300.791474][ T8863] security_file_ioctl+0x9b/0x240 [ 300.791516][ T8863] __x64_sys_ioctl+0xb7/0x210 [ 300.791569][ T8863] do_syscall_64+0xcd/0xf80 [ 300.791625][ T8863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.791660][ T8863] RIP: 0033:0x7f540418f7c9 [ 300.791685][ T8863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.791716][ T8863] RSP: 002b:00007f540501f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.791747][ T8863] RAX: ffffffffffffffda RBX: 00007f54043e5fa0 RCX: 00007f540418f7c9 [ 300.791775][ T8863] RDX: 0000200000000080 RSI: 0000000000005412 RDI: 0000000000000007 [ 300.791795][ T8863] RBP: 00007f540501f090 R08: 0000000000000000 R09: 0000000000000000 [ 300.791815][ T8863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 300.791835][ T8863] R13: 00007f54043e6038 R14: 00007f54043e5fa0 R15: 00007ffc0e58f018 [ 300.791879][ T8863] [ 300.793889][ T8863] ERROR: Out of memory at tomoyo_realpath_from_path. [ 301.146796][ T8873] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 301.653055][ T8882] sp0: Synchronizing with TNC [ 302.369432][ T8891] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 302.698717][ T8894] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input82 [ 303.210033][ T8910] FAULT_INJECTION: forcing a failure. [ 303.210033][ T8910] name failslab, interval 1, probability 0, space 0, times 0 [ 303.246732][ T8910] CPU: 0 UID: 0 PID: 8910 Comm: syz.4.569 Not tainted syzkaller #0 PREEMPT(full) [ 303.246774][ T8910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 303.246793][ T8910] Call Trace: [ 303.246804][ T8910] [ 303.246816][ T8910] dump_stack_lvl+0x16c/0x1f0 [ 303.246870][ T8910] should_fail_ex+0x512/0x640 [ 303.246904][ T8910] ? fs_reclaim_acquire+0xae/0x150 [ 303.246960][ T8910] should_failslab+0xc2/0x120 [ 303.247010][ T8910] __kmalloc_noprof+0xeb/0x910 [ 303.247046][ T8910] ? tomoyo_encode2+0x100/0x3e0 [ 303.247101][ T8910] ? tomoyo_encode2+0x100/0x3e0 [ 303.247142][ T8910] tomoyo_encode2+0x100/0x3e0 [ 303.247204][ T8910] tomoyo_encode+0x29/0x50 [ 303.247247][ T8910] tomoyo_realpath_from_path+0x18f/0x6e0 [ 303.247303][ T8910] tomoyo_path_number_perm+0x245/0x580 [ 303.247340][ T8910] ? tomoyo_path_number_perm+0x237/0x580 [ 303.247381][ T8910] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 303.247421][ T8910] ? find_held_lock+0x2b/0x80 [ 303.247501][ T8910] ? find_held_lock+0x2b/0x80 [ 303.247541][ T8910] ? hook_file_ioctl_common+0x144/0x410 [ 303.247589][ T8910] ? __fget_files+0x20e/0x3c0 [ 303.247642][ T8910] security_file_ioctl+0x9b/0x240 [ 303.247684][ T8910] __x64_sys_ioctl+0xb7/0x210 [ 303.247725][ T8910] do_syscall_64+0xcd/0xf80 [ 303.247777][ T8910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.247811][ T8910] RIP: 0033:0x7f540418f7c9 [ 303.247837][ T8910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.247874][ T8910] RSP: 002b:00007f5404ffe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.247909][ T8910] RAX: ffffffffffffffda RBX: 00007f54043e6090 RCX: 00007f540418f7c9 [ 303.247930][ T8910] RDX: 0000200000000080 RSI: 0000000000005412 RDI: 0000000000000007 [ 303.247949][ T8910] RBP: 00007f5404ffe090 R08: 0000000000000000 R09: 0000000000000000 [ 303.247974][ T8910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 303.247998][ T8910] R13: 00007f54043e6128 R14: 00007f54043e6090 R15: 00007ffc0e58f018 [ 303.248041][ T8910] [ 303.249197][ T8910] ERROR: Out of memory at tomoyo_realpath_from_path. [ 303.545438][ T8907] sp0: Synchronizing with TNC [ 303.667701][ T8891] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83 [ 305.199350][ T8953] sp0: Synchronizing with TNC [ 305.915146][ T8971] netlink: 28 bytes leftover after parsing attributes in process `syz.4.580'. [ 305.947112][ T8972] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 306.048955][ T8971] team0: Port device team_slave_1 removed [ 306.669173][ T8980] sp0: Synchronizing with TNC [ 306.682737][ T8980] FAULT_INJECTION: forcing a failure. [ 306.682737][ T8980] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 306.734822][ T8980] CPU: 0 UID: 0 PID: 8980 Comm: syz.4.581 Not tainted syzkaller #0 PREEMPT(full) [ 306.734863][ T8980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 306.734883][ T8980] Call Trace: [ 306.734893][ T8980] [ 306.734904][ T8980] dump_stack_lvl+0x16c/0x1f0 [ 306.734957][ T8980] should_fail_ex+0x512/0x640 [ 306.734998][ T8980] _copy_to_user+0x32/0xd0 [ 306.735036][ T8980] simple_read_from_buffer+0xcb/0x170 [ 306.735084][ T8980] proc_fail_nth_read+0x197/0x240 [ 306.735148][ T8980] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 306.735203][ T8980] ? rw_verify_area+0xcf/0x6c0 [ 306.735244][ T8980] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 306.735295][ T8980] vfs_read+0x1e4/0xcf0 [ 306.735342][ T8980] ? __pfx___mutex_lock+0x10/0x10 [ 306.735397][ T8980] ? __pfx_vfs_read+0x10/0x10 [ 306.735453][ T8980] ? __fget_files+0x20e/0x3c0 [ 306.735512][ T8980] ksys_read+0x12a/0x250 [ 306.735556][ T8980] ? __pfx_ksys_read+0x10/0x10 [ 306.735614][ T8980] do_syscall_64+0xcd/0xf80 [ 306.735665][ T8980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.735698][ T8980] RIP: 0033:0x7f540418e1dc [ 306.735724][ T8980] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 306.735756][ T8980] RSP: 002b:00007f540501f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 306.735786][ T8980] RAX: ffffffffffffffda RBX: 00007f54043e5fa0 RCX: 00007f540418e1dc [ 306.735807][ T8980] RDX: 000000000000000f RSI: 00007f540501f0a0 RDI: 0000000000000008 [ 306.735827][ T8980] RBP: 00007f540501f090 R08: 0000000000000000 R09: 0000000000000000 [ 306.735847][ T8980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 306.735866][ T8980] R13: 00007f54043e6038 R14: 00007f54043e5fa0 R15: 00007ffc0e58f018 [ 306.735910][ T8980] [ 309.172943][ T9026] sp0: Synchronizing with TNC [ 312.158421][ T9105] sp0: Synchronizing with TNC [ 313.336280][ T9142] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input84 [ 313.480224][ T9144] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 315.034317][ T9165] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 315.061661][ T9165] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 315.111319][ T9165] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 315.137591][ T9165] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 315.150806][ T9165] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 315.202717][ T9165] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 316.125417][ T9197] sp0: Synchronizing with TNC [ 316.379623][ T5150] Bluetooth: hci0: command 0x0406 tx timeout [ 317.099375][ T5150] Bluetooth: hci1: command 0x0406 tx timeout [ 317.190984][ T5834] Bluetooth: hci2: command 0x0406 tx timeout [ 317.197154][ T5150] Bluetooth: hci4: command 0x0c1a tx timeout [ 317.207534][ T9230] FAULT_INJECTION: forcing a failure. [ 317.207534][ T9230] name failslab, interval 1, probability 0, space 0, times 0 [ 317.226740][ T9230] CPU: 0 UID: 0 PID: 9230 Comm: syz.2.624 Not tainted syzkaller #0 PREEMPT(full) [ 317.226785][ T9230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 317.226805][ T9230] Call Trace: [ 317.226816][ T9230] [ 317.226829][ T9230] dump_stack_lvl+0x16c/0x1f0 [ 317.226885][ T9230] should_fail_ex+0x512/0x640 [ 317.226937][ T9230] ? kmem_cache_alloc_noprof+0x62/0x770 [ 317.226982][ T9230] should_failslab+0xc2/0x120 [ 317.227035][ T9230] kmem_cache_alloc_noprof+0x83/0x770 [ 317.227075][ T9230] ? security_file_alloc+0x34/0x2b0 [ 317.227126][ T9230] ? security_file_alloc+0x34/0x2b0 [ 317.227166][ T9230] security_file_alloc+0x34/0x2b0 [ 317.227209][ T9230] init_file+0x93/0x4c0 [ 317.227242][ T9230] alloc_empty_file+0x73/0x1e0 [ 317.227291][ T9230] alloc_file_pseudo+0x13a/0x230 [ 317.227326][ T9230] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 317.227361][ T9230] ? security_inode_init_security_anon+0x79/0x240 [ 317.227413][ T9230] __do_sys_memfd_secret+0x11d/0x490 [ 317.227484][ T9230] do_syscall_64+0xcd/0xf80 [ 317.227540][ T9230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.227574][ T9230] RIP: 0033:0x7f22b718f7c9 [ 317.227601][ T9230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 317.227633][ T9230] RSP: 002b:00007f22b53f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf [ 317.227664][ T9230] RAX: ffffffffffffffda RBX: 00007f22b73e5fa0 RCX: 00007f22b718f7c9 [ 317.227686][ T9230] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 317.227706][ T9230] RBP: 00007f22b7213f91 R08: 0000000000000000 R09: 0000000000000000 [ 317.227727][ T9230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 317.227747][ T9230] R13: 00007f22b73e6038 R14: 00007f22b73e5fa0 R15: 00007ffefb3cc318 [ 317.227790][ T9230] [ 318.236873][ T9244] netlink: 338 bytes leftover after parsing attributes in process `syz.2.627'. [ 318.281426][ T9245] netlink: 338 bytes leftover after parsing attributes in process `syz.2.627'. [ 318.315375][ T9244] netlink: 134 bytes leftover after parsing attributes in process `syz.2.627'. [ 318.699996][ T9254] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input85 [ 319.262061][ T5150] Bluetooth: hci4: command 0x0c1a tx timeout [ 319.590312][ T9258] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86 [ 321.332503][ T9289] nvme_fabrics: missing parameter 'transport=%s' [ 321.339374][ T5150] Bluetooth: hci4: command 0x0c1a tx timeout [ 321.408284][ T9289] nvme_fabrics: missing parameter 'nqn=%s' [ 321.743026][ T9301] syz.2.636 (9301) used greatest stack depth: 17576 bytes left [ 322.762224][ T9321] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 322.913001][ T9321] CPU: 0 UID: 0 PID: 9321 Comm: syz.0.639 Not tainted syzkaller #0 PREEMPT(full) [ 322.913051][ T9321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 322.913072][ T9321] Call Trace: [ 322.913082][ T9321] [ 322.913095][ T9321] dump_stack_lvl+0x16c/0x1f0 [ 322.913151][ T9321] sysfs_warn_dup+0x7f/0xa0 [ 322.913188][ T9321] sysfs_do_create_link_sd+0x124/0x140 [ 322.913231][ T9321] sysfs_create_link+0x61/0xc0 [ 322.913267][ T9321] device_add+0x652/0x1980 [ 322.913319][ T9321] ? __pfx_device_add+0x10/0x10 [ 322.913380][ T9321] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.913447][ T9321] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 322.913507][ T9321] wiphy_register+0x1ea1/0x2cc0 [ 322.913540][ T9321] ? __rtnl_unlock+0x68/0xf0 [ 322.913591][ T9321] ? napi_set_threaded+0xa0/0x4c0 [ 322.913640][ T9321] ? __pfx_wiphy_register+0x10/0x10 [ 322.913674][ T9321] ? __asan_memset+0x23/0x50 [ 322.913726][ T9321] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 322.913799][ T9321] ieee80211_register_hw+0x2bb2/0x4160 [ 322.913847][ T9321] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 322.913879][ T9321] ? __pfx___debug_object_init+0x10/0x10 [ 322.913937][ T9321] ? find_held_lock+0x2b/0x80 [ 322.913983][ T9321] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.914034][ T9321] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 322.914084][ T9321] ? __hrtimer_setup+0x176/0x280 [ 322.914128][ T9321] mac80211_hwsim_new_radio+0x3323/0x5150 [ 322.914192][ T9321] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 322.914235][ T9321] ? __asan_memcpy+0x3c/0x60 [ 322.914280][ T9321] hwsim_new_radio_nl+0xba2/0x1330 [ 322.914322][ T9321] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 322.914375][ T9321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 322.914445][ T9321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 322.914513][ T9321] genl_family_rcv_msg_doit+0x209/0x2f0 [ 322.914570][ T9321] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 322.914624][ T9321] ? genl_get_cmd+0x194/0x580 [ 322.914683][ T9321] ? bpf_lsm_capable+0x9/0x10 [ 322.914725][ T9321] ? security_capable+0x7e/0x260 [ 322.914781][ T9321] ? ns_capable+0xd7/0x110 [ 322.914825][ T9321] genl_rcv_msg+0x55c/0x800 [ 322.914860][ T9321] ? __pfx_genl_rcv_msg+0x10/0x10 [ 322.914893][ T9321] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 322.914947][ T9321] netlink_rcv_skb+0x158/0x420 [ 322.914995][ T9321] ? __pfx_genl_rcv_msg+0x10/0x10 [ 322.915029][ T9321] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 322.915095][ T9321] ? netlink_deliver_tap+0x1ae/0xd30 [ 322.915146][ T9321] genl_rcv+0x28/0x40 [ 322.915193][ T9321] netlink_unicast+0x5aa/0x870 [ 322.915246][ T9321] ? __pfx_netlink_unicast+0x10/0x10 [ 322.915292][ T9321] ? __pfx___might_resched+0x10/0x10 [ 322.915335][ T9321] ? __lock_acquire+0x436/0x2890 [ 322.915375][ T9321] netlink_sendmsg+0x8c8/0xdd0 [ 322.915437][ T9321] ? __pfx_netlink_sendmsg+0x10/0x10 [ 322.915496][ T9321] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 322.915578][ T9321] ____sys_sendmsg+0xa5d/0xc30 [ 322.915633][ T9321] ? copy_msghdr_from_user+0x10a/0x160 [ 322.915677][ T9321] ? __pfx_____sys_sendmsg+0x10/0x10 [ 322.915741][ T9321] ? __pfx_futex_wake_mark+0x10/0x10 [ 322.915791][ T9321] ___sys_sendmsg+0x134/0x1d0 [ 322.915834][ T9321] ? __pfx____sys_sendmsg+0x10/0x10 [ 322.915872][ T9321] ? futex_private_hash_put+0x160/0x1b0 [ 322.915947][ T9321] __sys_sendmsg+0x16d/0x220 [ 322.915993][ T9321] ? __pfx___sys_sendmsg+0x10/0x10 [ 322.916037][ T9321] ? __x64_sys_futex+0x1e0/0x4c0 [ 322.916102][ T9321] do_syscall_64+0xcd/0xf80 [ 322.916157][ T9321] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.916192][ T9321] RIP: 0033:0x7f64c278f7c9 [ 322.916219][ T9321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.916253][ T9321] RSP: 002b:00007f64c09d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 322.916287][ T9321] RAX: ffffffffffffffda RBX: 00007f64c29e6180 RCX: 00007f64c278f7c9 [ 322.916309][ T9321] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000004 [ 322.916330][ T9321] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 322.916350][ T9321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.916370][ T9321] R13: 00007f64c29e6218 R14: 00007f64c29e6180 R15: 00007ffd5bb73008 [ 322.916420][ T9321] [ 323.898357][ T9349] sd 0:0:1:0: PR command failed: 1026 [ 323.933785][ T9349] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 323.965027][ T9350] warning: `syz.4.643' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 323.987615][ T9349] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 325.619915][ T9387] syz.1.648 uses obsolete (PF_INET,SOCK_PACKET) [ 325.890999][ T9374] zswap: compressor not available [ 327.707557][ T9430] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input88 [ 327.825698][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.832222][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.196093][ T9432] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89 [ 328.201753][ T9436] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 330.035946][ T9477] zswap: compressor not available [ 330.353383][ T9477] FAULT_INJECTION: forcing a failure. [ 330.353383][ T9477] name failslab, interval 1, probability 0, space 0, times 0 [ 330.398446][ T9477] CPU: 0 UID: 0 PID: 9477 Comm: syz.0.665 Not tainted syzkaller #0 PREEMPT(full) [ 330.398495][ T9477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 330.398516][ T9477] Call Trace: [ 330.398527][ T9477] [ 330.398541][ T9477] dump_stack_lvl+0x16c/0x1f0 [ 330.398599][ T9477] should_fail_ex+0x512/0x640 [ 330.398636][ T9477] ? __kmalloc_noprof+0xca/0x910 [ 330.398676][ T9477] should_failslab+0xc2/0x120 [ 330.398731][ T9477] __kmalloc_noprof+0xeb/0x910 [ 330.398768][ T9477] ? __register_sysctl_table+0xb3/0x1900 [ 330.398822][ T9477] ? __register_sysctl_table+0xb3/0x1900 [ 330.398868][ T9477] __register_sysctl_table+0xb3/0x1900 [ 330.398915][ T9477] ? is_module_address+0x5f/0xf0 [ 330.398960][ T9477] ? __pfx___register_sysctl_table+0x10/0x10 [ 330.399015][ T9477] ? is_module_address+0x69/0xf0 [ 330.399053][ T9477] ? register_net_sysctl_sz+0x222/0x450 [ 330.399090][ T9477] ? __asan_memcpy+0x3c/0x60 [ 330.399133][ T9477] ? __pfx_nf_lwtunnel_net_init+0x10/0x10 [ 330.399197][ T9477] nf_lwtunnel_net_init+0x60/0xf0 [ 330.399248][ T9477] ops_init+0x1e2/0x5f0 [ 330.399296][ T9477] setup_net+0x11d/0x3a0 [ 330.399342][ T9477] ? __pfx_setup_net+0x10/0x10 [ 330.399384][ T9477] ? lockdep_init_map_type+0x5c/0x270 [ 330.399414][ T9477] ? mutex_init_lockep+0x110/0x150 [ 330.399465][ T9477] copy_net_ns+0x351/0x7c0 [ 330.399534][ T9477] create_new_namespaces+0x3ea/0xab0 [ 330.399590][ T9477] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 330.399640][ T9477] ksys_unshare+0x45b/0xa40 [ 330.399693][ T9477] ? __pfx_ksys_unshare+0x10/0x10 [ 330.399748][ T9477] ? xfd_validate_state+0x61/0x180 [ 330.399789][ T9477] __x64_sys_unshare+0x31/0x40 [ 330.399843][ T9477] do_syscall_64+0xcd/0xf80 [ 330.399898][ T9477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.399932][ T9477] RIP: 0033:0x7f64c278f7c9 [ 330.399957][ T9477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.399998][ T9477] RSP: 002b:00007f64c3559038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 330.400031][ T9477] RAX: ffffffffffffffda RBX: 00007f64c29e5fa0 RCX: 00007f64c278f7c9 [ 330.400054][ T9477] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 330.400074][ T9477] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 330.400094][ T9477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 330.400114][ T9477] R13: 00007f64c29e6038 R14: 00007f64c29e5fa0 R15: 00007ffd5bb73008 [ 330.400158][ T9477] [ 331.130517][ T9510] sp0: Synchronizing with TNC [ 331.232392][ T9515] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input90 [ 331.632807][ T9518] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input91 [ 332.659926][ T9537] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' [ 332.726463][ T9537] CPU: 1 UID: 0 PID: 9537 Comm: syz.0.673 Not tainted syzkaller #0 PREEMPT(full) [ 332.726505][ T9537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 332.726525][ T9537] Call Trace: [ 332.726535][ T9537] [ 332.726548][ T9537] dump_stack_lvl+0x16c/0x1f0 [ 332.726602][ T9537] sysfs_warn_dup+0x7f/0xa0 [ 332.726639][ T9537] sysfs_do_create_link_sd+0x124/0x140 [ 332.726680][ T9537] sysfs_create_link+0x61/0xc0 [ 332.726717][ T9537] device_add+0x652/0x1980 [ 332.726775][ T9537] ? __pfx_device_add+0x10/0x10 [ 332.726815][ T9537] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 332.726878][ T9537] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 332.726937][ T9537] wiphy_register+0x1ea1/0x2cc0 [ 332.726967][ T9537] ? __rtnl_unlock+0x68/0xf0 [ 332.727014][ T9537] ? napi_set_threaded+0xa0/0x4c0 [ 332.727063][ T9537] ? __pfx_wiphy_register+0x10/0x10 [ 332.727094][ T9537] ? __asan_memset+0x23/0x50 [ 332.727144][ T9537] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 332.727220][ T9537] ieee80211_register_hw+0x2bb2/0x4160 [ 332.727271][ T9537] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 332.727303][ T9537] ? __pfx___debug_object_init+0x10/0x10 [ 332.727386][ T9537] ? find_held_lock+0x2b/0x80 [ 332.727431][ T9537] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 332.727484][ T9537] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 332.727533][ T9537] ? __hrtimer_setup+0x176/0x280 [ 332.727580][ T9537] mac80211_hwsim_new_radio+0x3323/0x5150 [ 332.727644][ T9537] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 332.727686][ T9537] ? __asan_memcpy+0x3c/0x60 [ 332.727734][ T9537] hwsim_new_radio_nl+0xba2/0x1330 [ 332.727781][ T9537] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 332.727836][ T9537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 332.727896][ T9537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 332.727963][ T9537] genl_family_rcv_msg_doit+0x209/0x2f0 [ 332.728022][ T9537] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 332.728077][ T9537] ? genl_get_cmd+0x194/0x580 [ 332.728141][ T9537] ? bpf_lsm_capable+0x9/0x10 [ 332.728185][ T9537] ? security_capable+0x7e/0x260 [ 332.728251][ T9537] ? ns_capable+0xd7/0x110 [ 332.728302][ T9537] genl_rcv_msg+0x55c/0x800 [ 332.728330][ T9537] ? __pfx_genl_rcv_msg+0x10/0x10 [ 332.728353][ T9537] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 332.728391][ T9537] netlink_rcv_skb+0x158/0x420 [ 332.728426][ T9537] ? __pfx_genl_rcv_msg+0x10/0x10 [ 332.728450][ T9537] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 332.728497][ T9537] ? netlink_deliver_tap+0x1ae/0xd30 [ 332.728548][ T9537] genl_rcv+0x28/0x40 [ 332.728581][ T9537] netlink_unicast+0x5aa/0x870 [ 332.728617][ T9537] ? __pfx_netlink_unicast+0x10/0x10 [ 332.728648][ T9537] ? __pfx___might_resched+0x10/0x10 [ 332.728678][ T9537] ? __lock_acquire+0x436/0x2890 [ 332.728740][ T9537] netlink_sendmsg+0x8c8/0xdd0 [ 332.728789][ T9537] ? __pfx_netlink_sendmsg+0x10/0x10 [ 332.728849][ T9537] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 332.728895][ T9537] ____sys_sendmsg+0xa5d/0xc30 [ 332.728953][ T9537] ? copy_msghdr_from_user+0x10a/0x160 [ 332.728984][ T9537] ? __pfx_____sys_sendmsg+0x10/0x10 [ 332.729036][ T9537] ? __pfx_futex_wake_mark+0x10/0x10 [ 332.729074][ T9537] ___sys_sendmsg+0x134/0x1d0 [ 332.729107][ T9537] ? __pfx____sys_sendmsg+0x10/0x10 [ 332.729138][ T9537] ? futex_private_hash_put+0x160/0x1b0 [ 332.729197][ T9537] __sys_sendmsg+0x16d/0x220 [ 332.729228][ T9537] ? __pfx___sys_sendmsg+0x10/0x10 [ 332.729259][ T9537] ? __x64_sys_futex+0x1e0/0x4c0 [ 332.729304][ T9537] do_syscall_64+0xcd/0xf80 [ 332.729343][ T9537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.729367][ T9537] RIP: 0033:0x7f64c278f7c9 [ 332.729386][ T9537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.729410][ T9537] RSP: 002b:00007f64c09d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 332.729433][ T9537] RAX: ffffffffffffffda RBX: 00007f64c29e6180 RCX: 00007f64c278f7c9 [ 332.729449][ T9537] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000004 [ 332.729464][ T9537] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 332.729478][ T9537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.729492][ T9537] R13: 00007f64c29e6218 R14: 00007f64c29e6180 R15: 00007ffd5bb73008 [ 332.729526][ T9537] [ 336.075558][ T9611] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92 [ 336.778345][ T9612] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93 [ 338.393478][ T9646] ================================================================== [ 338.393503][ T9646] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0 [ 338.393563][ T9646] Write of size 8 at addr ffffc900039e9000 by task syz.0.695/9646 [ 338.393592][ T9646] [ 338.393607][ T9646] CPU: 1 UID: 0 PID: 9646 Comm: syz.0.695 Not tainted syzkaller #0 PREEMPT(full) [ 338.393645][ T9646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.393666][ T9646] Call Trace: [ 338.393676][ T9646] [ 338.393690][ T9646] dump_stack_lvl+0x116/0x1f0 [ 338.393743][ T9646] print_report+0xcd/0x630 [ 338.393801][ T9646] ? __virt_addr_valid+0x81/0x610 [ 338.393862][ T9646] ? sys_fillrect+0x15d4/0x17b0 [ 338.393910][ T9646] kasan_report+0xe0/0x110 [ 338.394020][ T9646] ? sys_fillrect+0x15d4/0x17b0 [ 338.394075][ T9646] sys_fillrect+0x15d4/0x17b0 [ 338.394129][ T9646] ? __pfx_sys_fillrect+0x10/0x10 [ 338.394187][ T9646] ? __pfx_bit_putcs+0x10/0x10 [ 338.394227][ T9646] ? bit_cursor+0xeca/0x17e0 [ 338.394269][ T9646] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 338.394325][ T9646] bit_clear+0x17d/0x220 [ 338.394365][ T9646] ? __pfx_bit_clear+0x10/0x10 [ 338.394405][ T9646] ? fb_get_color_depth+0x120/0x250 [ 338.394440][ T9646] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 338.394495][ T9646] ? __pfx_bit_clear+0x10/0x10 [ 338.394535][ T9646] __fbcon_clear+0x679/0x7d0 [ 338.394577][ T9646] fbcon_scroll+0x48b/0x640 [ 338.394618][ T9646] con_scroll+0x45f/0x690 [ 338.394668][ T9646] do_con_write+0x5565/0x8280 [ 338.394739][ T9646] ? __pfx_do_con_write+0x10/0x10 [ 338.394799][ T9646] con_write+0x23/0xb0 [ 338.394847][ T9646] n_tty_write+0x434/0x1280 [ 338.394890][ T9646] ? __pfx_n_tty_write+0x10/0x10 [ 338.394926][ T9646] ? __pfx_woken_wake_function+0x10/0x10 [ 338.394978][ T9646] ? file_tty_write.constprop.0+0x6f3/0x9b0 [ 338.395033][ T9646] ? __pfx_n_tty_write+0x10/0x10 [ 338.395068][ T9646] file_tty_write.constprop.0+0x503/0x9b0 [ 338.395125][ T9646] redirected_tty_write+0xd4/0x120 [ 338.395176][ T9646] vfs_write+0x7d3/0x11d0 [ 338.395225][ T9646] ? __pfx_redirected_tty_write+0x10/0x10 [ 338.395278][ T9646] ? __pfx_vfs_write+0x10/0x10 [ 338.395324][ T9646] ? find_held_lock+0x2b/0x80 [ 338.395380][ T9646] ksys_write+0x12a/0x250 [ 338.395428][ T9646] ? __pfx_ksys_write+0x10/0x10 [ 338.395483][ T9646] do_syscall_64+0xcd/0xf80 [ 338.395539][ T9646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.395575][ T9646] RIP: 0033:0x7f64c278f7c9 [ 338.395601][ T9646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.395636][ T9646] RSP: 002b:00007f64c3559038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 338.395669][ T9646] RAX: ffffffffffffffda RBX: 00007f64c29e5fa0 RCX: 00007f64c278f7c9 [ 338.395692][ T9646] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000000000000006 [ 338.395714][ T9646] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 338.395735][ T9646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.395756][ T9646] R13: 00007f64c29e6038 R14: 00007f64c29e5fa0 R15: 00007ffd5bb73008 [ 338.395796][ T9646] [ 338.395807][ T9646] [ 338.395816][ T9646] The buggy address belongs to a vmalloc virtual mapping [ 338.395841][ T9646] Memory state around the buggy address: [ 338.395860][ T9646] ffffc900039e8f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 338.395885][ T9646] ffffc900039e8f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 338.395910][ T9646] >ffffc900039e9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 338.395930][ T9646] ^ [ 338.395947][ T9646] ffffc900039e9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 338.395981][ T9646] ffffc900039e9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 338.396001][ T9646] ================================================================== [ 338.408314][ T9646] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 338.408343][ T9646] CPU: 1 UID: 0 PID: 9646 Comm: syz.0.695 Not tainted syzkaller #0 PREEMPT(full) [ 338.408383][ T9646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.408405][ T9646] Call Trace: [ 338.408415][ T9646] [ 338.408428][ T9646] dump_stack_lvl+0x3d/0x1f0 [ 338.408485][ T9646] vpanic+0x640/0x6f0 [ 338.408520][ T9646] panic+0xca/0xd0 [ 338.408552][ T9646] ? __pfx_panic+0x10/0x10 [ 338.408585][ T9646] ? sys_fillrect+0x15d4/0x17b0 [ 338.408635][ T9646] ? preempt_schedule_common+0x44/0xc0 [ 338.408685][ T9646] ? preempt_schedule_thunk+0x16/0x30 [ 338.408724][ T9646] check_panic_on_warn+0xab/0xb0 [ 338.408760][ T9646] end_report+0x107/0x160 [ 338.408810][ T9646] kasan_report+0xee/0x110 [ 338.408862][ T9646] ? sys_fillrect+0x15d4/0x17b0 [ 338.408917][ T9646] sys_fillrect+0x15d4/0x17b0 [ 338.408982][ T9646] ? __pfx_sys_fillrect+0x10/0x10 [ 338.409034][ T9646] ? __pfx_bit_putcs+0x10/0x10 [ 338.409074][ T9646] ? bit_cursor+0xeca/0x17e0 [ 338.409115][ T9646] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 338.409172][ T9646] bit_clear+0x17d/0x220 [ 338.409211][ T9646] ? __pfx_bit_clear+0x10/0x10 [ 338.409251][ T9646] ? fb_get_color_depth+0x120/0x250 [ 338.409287][ T9646] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 338.409343][ T9646] ? __pfx_bit_clear+0x10/0x10 [ 338.409383][ T9646] __fbcon_clear+0x679/0x7d0 [ 338.409424][ T9646] fbcon_scroll+0x48b/0x640 [ 338.409462][ T9646] con_scroll+0x45f/0x690 [ 338.409521][ T9646] do_con_write+0x5565/0x8280 [ 338.409584][ T9646] ? __pfx_do_con_write+0x10/0x10 [ 338.409644][ T9646] con_write+0x23/0xb0 [ 338.409698][ T9646] n_tty_write+0x434/0x1280 [ 338.409743][ T9646] ? __pfx_n_tty_write+0x10/0x10 [ 338.409778][ T9646] ? __pfx_woken_wake_function+0x10/0x10 [ 338.409822][ T9646] ? file_tty_write.constprop.0+0x6f3/0x9b0 [ 338.409877][ T9646] ? __pfx_n_tty_write+0x10/0x10 [ 338.409911][ T9646] file_tty_write.constprop.0+0x503/0x9b0 [ 338.409984][ T9646] redirected_tty_write+0xd4/0x120 [ 338.410035][ T9646] vfs_write+0x7d3/0x11d0 [ 338.410084][ T9646] ? __pfx_redirected_tty_write+0x10/0x10 [ 338.410137][ T9646] ? __pfx_vfs_write+0x10/0x10 [ 338.410185][ T9646] ? find_held_lock+0x2b/0x80 [ 338.410243][ T9646] ksys_write+0x12a/0x250 [ 338.410291][ T9646] ? __pfx_ksys_write+0x10/0x10 [ 338.410344][ T9646] do_syscall_64+0xcd/0xf80 [ 338.410397][ T9646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.410434][ T9646] RIP: 0033:0x7f64c278f7c9 [ 338.410462][ T9646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.410498][ T9646] RSP: 002b:00007f64c3559038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 338.410531][ T9646] RAX: ffffffffffffffda RBX: 00007f64c29e5fa0 RCX: 00007f64c278f7c9 [ 338.410555][ T9646] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000000000000006 [ 338.410577][ T9646] RBP: 00007f64c2813f91 R08: 0000000000000000 R09: 0000000000000000 [ 338.410599][ T9646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.410620][ T9646] R13: 00007f64c29e6038 R14: 00007f64c29e5fa0 R15: 00007ffd5bb73008 [ 338.410654][ T9646] [ 338.410827][ T9646] Kernel Offset: disabled