last executing test programs: 10.959460372s ago: executing program 0 (id=821): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x10, 0x2, 0x0) (async) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r2, 0x8008700b, 0x0) (async) ioctl$auto_RTC_IRQP_READ(r2, 0x8008700b, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) getsockopt$auto_SO_RCVTIMEO_OLD(r1, 0xffffffff, 0x14, &(0x7f00000003c0)='\x00\x00+\xa2\xc7\x92\x00\x00\x00\x00\x00\x00\x03\x90\xf9\xe8\x11\x80\a :w\xac[\xbb\xac\xe3\xe0\xff8g:\x04\x00\x00\x00\x00\x00\x00\x00=r\x03\x95\x87\xbaM\xd80=\x81\x8ez\xab\xc3^\xb0\x03Ijj\xc4\xf9\xe6\x84P\x15q\xaa\xc8\x03\xba\x8c\xe3\xc3r\xb8\x1b\x98\xe8\xbc\x11.\xd9A\xb3P\xfa\x04\x95\xfc*\v\xb8\xc5\x16Z\xb7\x82\xbc\x96o\xd2G\xf8\x0f`\xa1\x1f\xc6\xd6\xc5\xdcM\x17\x11\xd2\x12\x988\xa3`\xad[UI\xf7\xc7\xcc\x13XH\xc1\x02\x84$\x97;\xebM`\x7f\xe4\x8dbe\xd8\x901\x8e\'\x10\xf6`^\xd28Xk\x03\x8d\b\xbd\xe2d\\\x11w(\xc7D!,6\x01\x00\x9f\x8bxg\xe2\xfc~\x006\x17\x9b9?,\xd8\n\x82r\x12\xa9\xfd@\x90&\xd3l\xa7[\x9bx\xf7\xb9[m\x9a\xee\"\x9e\x81|\xa4\x8f5\xea\t\x02Axu\xe9io`\x81\xb5\x89\x01\xa0\xa8~]\xd8]\x14}\x8c\xacRc\r\xb7.\x7f\xb3\x85\xff\xf5\xb0\x11/\x80{\xab)\x05\xb3HHU\xcb\x00', 0x0) write$auto(r1, &(0x7f00000000c0)='\x00', 0xb) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x6, 0xd, 0x0) (async) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x6, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) (async) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) read$auto(r0, 0x0, 0x80) mmap$auto(0x8f, 0x400008, 0xdf, 0x59, r0, 0x8002) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x20020000) (async) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0x100000000) (async) write$auto(0x3, 0x0, 0x100000000) socket(0x2, 0x1, 0x106) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0) openat$auto_o2hb_debug_fops_heartbeat(0xffffffffffffff9c, 0x0, 0xa040, 0x0) socket(0xa, 0x3, 0xff) (async) socket(0xa, 0x3, 0xff) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) shutdown$auto(0x200000003, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="3ee8a56da66793a44aaea411e5a1fe805f90834321de47c0d6d14640d7373ca968f767cdc85b8876f772a2602449df097ace39022413e50cc4144cd45fe0e2e0e121350f53a2fdca8c64d50f0e1f1aa6ec479d3d312fad743e2d8f74daa2f0855980dcd71813b96fdf66510cbd8fd5eb15b7154042a6a0935b7d2d51408ec5c77aade43b3e0c314e9a12a6ab5735c8d8869ffa13b7d959b388d4cf55d7ef7e22b6f0f82a8fe7d0810b841031126cf63c7dccb2e5f893440000a6040e90000000000000008970207a96932b17ff4484191cd86c4b427a998bbc0933efa580f1f02bda6d3a63022eab64212c233f70aecd74da6a1c8c2d70eaca3286e3fa38af9100c0b49aa70093a305f203000000000000fc1663f30b3833de324415315bca19659286c6", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) 9.769353815s ago: executing program 0 (id=823): mmap$auto(0xfffffffffffffff7, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) unshare$auto(0x40000080) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) (async) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x622840, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) 7.545107391s ago: executing program 0 (id=830): openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/trace_marker\x00', 0x43, 0x0) memfd_secret$auto(0x0) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = socket(0x1a, 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) socket(0x2b, 0x1, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) madvise$auto(0x0, 0x200007, 0x19) sendmsg$auto_IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0x4b4, 0x0, 0xa06, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x48f, 0x3, 0x0, 0x1, [@nested={0x173, 0x2c, 0x0, 0x1, [@nested={0x4, 0xbc}, @generic="87ae9e807c28508db55a4201ed2eb41a059e51f897ccddf1fa775462ef2cc6afc58f62faac09e21265d79524a83c6bd8b827b5fc93d84a6049f83a37ee32ad24765e689a0f81b7c6942f4ae682b540ad761c56ef48eb31fa3f68c0348d7ad5b338e38251f4a38e5aed23f8250a0a858ae63581449b6b0f2b1a790b8629cbabf80bd69be6f8ee514b8535b4f6160eb1cc164c0b2174fe2e015dd8ba0fdfe9f71b8f34db56b6f3b4ac2a9b18f2d8eb415d0949", @generic="e18e530bd314632fab6d3628648e9a51619360d342d97b09dc2a70c66d2caab70080eb4dcf11f1cc955116eb2259617e0d8df195a77191efae603240e56c452c57d634af46f760b91f290e843bff05716f", @generic="158c1093366900d81f829704c3564c216000aa1e4a9948d8392dde039116cf973eec9fc1ef5a4f19366c91d69082cbc7e1912a844fb704ce1d160ffda223debafbf4be5039aeefcdf2edf6c483952fba868a63b08abd302ab49fdfb8bb54eacc3d235335808a12d7"]}, @generic="e86e651a5fce78e64fb34b0ccf79b5cf7af976e245129e35345f410dfcb665b18d1ddb330cd470627c19dc12cf9bbad62f8d2c41e4dd474b", @nested={0x59, 0x7a, 0x0, 0x1, [@generic="ecd899ebec88afea9d37c178261b412e6276022f57c5d3c2b55c72ce07beb75c1110f860", @generic="e32c6861558a732535250264501bfd878b4eb71cbb78c7639cc2c3d0ac", @typed={0x14, 0xcd, 0x0, 0x0, @ipv6=@local}]}, @typed={0x8, 0xc, 0x0, 0x0, @fd=r0}, @generic="71fff4c1f1dbd29a8e5dc5ed88ff6f1e415e417bb6c1c5266860b43562ed07e9b6d48fac30160cf931a57df1ae94444b69e13c19137f8f02a60ebdd22f90eb369e6c736a1e14114a89fd88789164a5c3cf7cad36ac96ac4e6121a0127ffb2f50a139a3504f2b629dbf038ac29b39509e7769489fa8c316197234add177bfc3ab92c8db1d7d6d2b45bd68c1b6c1141ed9996fcb", @generic="b515974d61ce5eb2fa84a0fe0615b44c2c34a02a4af7e31e76d2bd312e38a3d0a340954cb58b41ae28639b6fa9ad4bc4198df36b53271faa2dd9682805a1668f57e84cdf4505eb5b6baa3163e205aad167a2627c8f9baf11097def6bcc904119cfe12cd28b188a4ddedc65418753072e05fedfe1261deb67a321009eaaacc271c71f699f4e9182da165b409abfc08843b25bcdd9f1a3e3c31f47cf2319bb03064bbc3f29063610d7a3c88668e6ad88a013f818321f51099890c4552003772e756033ab8aa7a7c22bad7dfdfd", @nested={0x3a, 0xda, 0x0, 0x1, [@typed={0x4, 0x78}, @generic="533e1fbc8d794542cca2d11466f2fd0b25ae", @nested={0x4, 0xdf}, @nested={0x4, 0xc9}, @typed={0x16, 0xda, 0x0, 0x0, @str='/dev/snd/midiC2D0\x00'}]}, @nested={0xc5, 0x8b, 0x0, 0x1, [@nested={0x4, 0x9c}, @nested={0x4, 0x5c}, @nested={0x4, 0x104}, @generic="7af7a05b3cbee4148dc4224c3718e85f5174a1d7f14e9ac74f5528879b9ab9678ca28e08673510108e488e48e213b19e1a9df9220fecbc5af1f21f7dae83c0052d060b014de5ec558fa2b2e29dd79ee78f51dc7b000b16f8909dc14f576929da0e83a438d95f09e42908e6ddc4d856b6870e8251b33d1ca32c425c85642c01c44ae1f552000fee90707730a73249eedc3f7810738ee9cda44184234e0ac3011c15bbfc91edcb29d0fc43dca3569ea701f8a68cc5d2"]}, @typed={0x8, 0x5d, 0x0, 0x0, @uid=0xffffffffffffffff}, @nested={0x10, 0x77, 0x0, 0x1, [@nested={0x4, 0xae}, @typed={0x8, 0x123, 0x0, 0x0, @u32=0x2}]}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10}]}, 0x4b4}, 0x1, 0x0, 0x0, 0x20004810}, 0x8000) msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r5, &(0x7f0000000000)="4c91f2c388274610e12c861bb2bfd9800e9b394b", 0x14) msgsnd$auto(0x0, &(0x7f0000000000)={0x40, 0x5}, 0x8, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r6 = socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(r6, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 6.156657598s ago: executing program 3 (id=835): socket(0x23, 0x800, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000000140)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/ueagle_atm/parameters/cmv_file\x00', 0x82942, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0xa, 0x1, 0x84) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x14) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cec2\x00', 0x40, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000340)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa5663248ff0945dd2e405e0d37", 0x99) socket(0x1e, 0x2, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x2, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) memfd_create$auto(0x0, 0x6) socket(0x10, 0x2, 0x14) socket(0x22, 0x2, 0x4) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x3, 0x5, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) sendfile$auto(r1, r1, 0x0, 0x200) mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000) 5.564008065s ago: executing program 1 (id=838): mmap$auto(0xfffffffffffffffe, 0x400005, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x1b) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r0 = openat$auto_clk_summary_fops_(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/clk/clk_orphan_summary\x00', 0x2, 0x0) read$auto_clk_summary_fops_(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, 0x0, 0x40) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) socket(0x2, 0x80002, 0x73) remap_file_pages$auto(0x7, 0x9ca4, 0x1, 0x3, 0xfffffffffffffe00) bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, 0xffffffffffffffff, 0xffffffff}, 0xa) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, 0x0, 0x200e01, 0x0) mmap$auto(0x0, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) readv$auto(0x4, &(0x7f0000000100)={0x0, 0x1000}, 0x8) close_range$auto(0x2, 0xffffffffffffffff, 0x0) memfd_create$auto(0x0, 0x80000004) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = epoll_create$auto(0x1) capset$auto(0x0, 0x0) epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0) madvise$auto(0x0, 0xffffffffffff0101, 0x15) mbind$auto(0xf4000000, 0x2, 0x2, &(0x7f0000002100)=0x4, 0x7, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x222c0, 0x20) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) 5.04326303s ago: executing program 3 (id=840): r0 = socket(0xa, 0x2, 0x0) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x2000000) ioctl$auto_VHOST_SET_VRING_CALL2(r1, 0x4008af21, &(0x7f0000000040)={0x6, r0}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x7, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x181902, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1e, &(0x7f0000000180), 0x1) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/bus/usb/drivers/powerz/unbind\x00', 0xc2481, 0x0) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) r4 = socket(0x1d, 0x5, 0x0) syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r4, 0x0, 0x30004850) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b47, 0x1) mmap$auto(0x0, 0x404008, 0xdf, 0x9b72, 0x2, 0x8000) r6 = open(&(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x80400, 0xb5d1af1605322ddc) r7 = open_by_handle_at$auto(r6, &(0x7f0000001280)={0x0, 0x2}, 0x6) sendfile$auto(r7, r6, 0x0, 0x2) 4.292861725s ago: executing program 2 (id=842): socket(0x27, 0x2, 0xc) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mmap$auto(0xfffffffffffffffe, 0x4, 0x4000000000de, 0x1fd, 0x402, 0x0) keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x400, 0x1, 0x401, 0x8) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x878) socket(0x26, 0x4, 0x0) socket(0x10, 0x2, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0) socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x420009, 0xfff, 0xeb1, 0x401, 0x7ffd) r0 = bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x1, 0xfffffeff) r4 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x600301, 0x0) pread64$auto(r4, 0x0, 0x2, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\x97U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0) ioctl$auto_BLKALIGNOFF(r2, 0x127a, 0x0) sched_setattr$auto(r1, 0x0, 0x3) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x1000000009, r0, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000540)={0x0, 0xffffffffffffffef, 0x0, 0x1, 0x0, 0x0, 0xc050}, 0x8040) writev$auto(0xffffffffffffffff, 0x0, 0x8) 3.49257009s ago: executing program 0 (id=843): openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/trace_marker\x00', 0x43, 0x0) memfd_secret$auto(0xfffffffc) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = socket(0x8, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x41143, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400005, 0x40000000df, 0x9b72, 0x2, 0x8000) (async) mmap$auto(0x0, 0x400005, 0x40000000df, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) socket(0x2b, 0x1, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) exit$auto(0xffffff9f) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_taskstats(0x0, r3) getpgrp(0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x5, 0x2020009, 0x20000000200003, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001bc0)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x178401, 0x0) (async) r4 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001bc0)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x178401, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001e40)="2e271caeedc13d69b4fc13780654c968af9f176b5bbf60445af0b193e8756a01222effbf37f05a957cb25aa6ff48fc0f820814b41e96d12cf8677427b39d1d0c92c87beaf864f5f006a2bd510c18feaf2fec4e848ef5f5f0cba87d0fa2d929", 0x5f) (async) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001e40)="2e271caeedc13d69b4fc13780654c968af9f176b5bbf60445af0b193e8756a01222effbf37f05a957cb25aa6ff48fc0f820814b41e96d12cf8677427b39d1d0c92c87beaf864f5f006a2bd510c18feaf2fec4e848ef5f5f0cba87d0fa2d929", 0x5f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r0, 0x8000) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r0, 0x8000) close_range$auto(0x2, 0x8000, 0x0) (async) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x23, &(0x7f0000000080)='\b', 0x0) (async) io_uring_register$auto(0x2, 0x23, &(0x7f0000000080)='\b', 0x0) writev$auto(0x3, 0x0, 0x1b) (async) writev$auto(0x3, 0x0, 0x1b) unshare$auto(0x40000080) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x401, 0xffff) (async) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x401, 0xffff) 3.468433444s ago: executing program 1 (id=844): mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) close_range$auto(0x2, 0xa, 0x0) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000ffdbdf25050000000c00010002000000000000000c00010004"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0xd0) ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f0000000640)={{0xffffffffffffffff, &(0x7f0000000380)="f8304685cb20f7bdb13ed7cf209595d5cfeca0a36bee65fb1f2f765097704c3c4428b76aa6a672f18edcdcb919115536b56cfedc6d6e0be92b63e97fb9e6d0ade9649c66c8054c8694536052f1d5c0960fc9ce4452ed0e53be5f793ed67a1be2c3eb2d28d0275d6ae7e56dcec1251eec4573463aa56a1a8602b0a9f2ed8176c2774d9f6b9f446aae2ec17d88e2763e88fb87436f768957", 0x5381584f, &(0x7f0000000440)="bb553bc30b218f598d5f333418d5010e68b457cdd864c0aec0969027ad97c60ed494fd4a28b7d91b02a474b4df79047454aa333cac3942dbb6e742c57ed7da167a6dfb6684df", 0x40, &(0x7f00000004c0)="b205e06925e13d17fdfca41c470869ccbb724a2214d62a554cb12890807fd8b094c5fc25ac673a9e4394ba9d01f238e6148cae4652bd2ebcd3bf1414f5c67e41ff9bec0e0f8c17b95b5e4c7635f7a9e15109273aa7ae552581db472b622ab63f640ed7ab23bfb7ad0a89736dcd51c9445149c07fdd0960c9c03472a4ff37a11e0a94a97c", &(0x7f0000000280)=0x1}, {[0x400, 0x8, 0x3, 0x9]}, 0x9, 0x7, &(0x7f0000000580)="e8451932918022810a72a152b5763813b1a5224a06c95261316a67985ac1ad5110971435b597a52edcfdfe1a25614a68c08c11b5d6c22d3bcde16238c61d8dd22e9c5425da35ce1e2bfaa4c19b364cd5f08fbe77b55a949e37ccbd949c429f14f6e20d5cdcf23e636d9dfb9c2790635ee4a0ab8c05db47ba56aa29317875a3d533ebe48e8c6b68892ded8be8b2b41733675b250fbbe936c766400ddd73eab5cd56c40964f54e42"}) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)={0x28, r2, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_SCAN_SSIDS={0xc, 0x2d, 0x0, 0x1, [@typed={0x8, 0xeb, 0x0, 0x0, @uid}]}]}, 0x28}}, 0x4000000) r4 = ioctl$auto_NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) r5 = openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r0, &(0x7f0000001240)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001200)={&(0x7f0000000740)={0xa80, r2, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x7}, @NL80211_ATTR_PEER_MEASUREMENTS={0xa64, 0x111, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0xa60, 0x5, 0x0, 0x1, [{0xa58, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x948, 0x2, 0x0, 0x1, [@NL80211_ATTR_PROBE_RESP={0x57d, 0x91, "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"}, @NL80211_ATTR_MAC_HINT={0x3f, 0xc8, "0fa6fa2f91b0813d5fda76fa34e33e93fefca8ac8286601df7663ee0dac7f053f9a4f52ccf81a3194b03ea67ac8df91f91d297c01a637a79434a1c"}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa0d8}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x10}, @NL80211_ATTR_IE_RIC={0x348, 0xb2, "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"}, @NL80211_ATTR_MBSSID_ELEMS={0x14, 0x133, 0x0, 0x1, [@typed={0x8, 0x5a, 0x0, 0x0, @fd=r4}, @typed={0x8, 0x11b, 0x0, 0x0, @fd=r5}]}, @NL80211_ATTR_KEY_DATA={0x16, 0x7, "04c546ed91531284136285e13a458542714c"}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x2a, 0x1, "0d1efe4665765140d7f1b5d4061e48e888b5b39a3a9b58a3e15d389050033a5cf0bc4f92cea3"}, @NL80211_PMSR_PEER_ATTR_REQ={0xe0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x7c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BSS_COLOR={0x5, 0xd, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0xeced73b3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BSS_COLOR={0x5, 0xd, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x4}]}]}]}, 0xa80}, 0x1, 0x0, 0x0, 0x40004800}, 0x44) r6 = socket(0x2, 0x3, 0x100) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYRES8=r6, @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRESHEX=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x5, 0x9}, 0x7}, 0x3, 0x0) 3.033902947s ago: executing program 1 (id=845): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) setgroups$auto(0x0, &(0x7f0000000040)=0x1) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2) mprotect$auto(0x0, 0x806121, 0x8) 2.936441789s ago: executing program 3 (id=846): mmap$auto(0x100000000000, 0x2020008, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x802, 0x9, 0x63, 0x0, 0x0, 0x0, 0x7, 0x7ff, 0x800000000100002, 0x0, 0x2, 0x5, 0x40, 0x1c, 0x20000000009, 0xb}) mmap$auto(0x0, 0x20009, 0x2, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r0, 0x9000643b, 0xcd) r1 = socket(0x1d, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_udc.0/udc/dummy_udc.0/maximum_speed\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000140)=""/55, 0x37) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) futex$auto(0x0, 0x0, 0x38, 0x0, 0x0, 0x80810005) r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0) ioctl$auto_BLKPG2(r3, 0x1269, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r1, 0x8000) socket(0xa, 0x2, 0x0) sendmmsg$auto(r1, 0x0, 0x9a8, 0x7fffffe) r4 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/mem\x00', 0x20401, 0x0) write$auto_proc_mem_operations_base(r4, &(0x7f0000001680)="a7", 0x80000) syz_clone3(0x0, 0xffffffffffffff49) madvise$auto(0x1ffff000, 0x7, 0x100000000) sysfs$auto(0x2, 0x20, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) io_uring_setup$auto(0x4, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) 2.917847105s ago: executing program 2 (id=847): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r0 = socket(0xa, 0x1, 0x84) setsockopt$auto(r0, 0x0, 0x60, 0x0, 0x4f) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x409f3486, 0x2000b, 0xe3, 0xeb1, 0x401, 0x8000) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) getsockopt$auto(0x4, 0x9fb, 0x2, 0xfffffffffffffffc, 0x0) socket(0xa, 0x1, 0x84) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) fcntl$auto_F_SETSIG(0xffffffffffffffff, 0xa, 0x0) unshare$auto(0x40000080) pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3) close_range$auto(0x2, 0x8, 0x6) socket(0x10, 0x2, 0xc) socket(0xa, 0x3, 0x3a) r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) close_range$auto(0x2, 0x8, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x7, 0x1, 0x9, 0x7, 0x5, 0x6, 0x8, 0x4, 0x3, 0x9, 0x9, 0xffff, 0x4, 0x200000000001, 0xb6, 0xb, 0x9, 0x7, 0x7, 0x10000000000, 0x10000000, 0x3, 0x22000, 0x203, 0x9, 0x84, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x7fffffff, 0x80, 0x7, 0x6, 0x200, 0x8, 0x8, 0x3, 0x0, 0x20000000005, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x800000000000000, 0x90600000, 0x12a7, 0xffffffffffffffff, 0x5f4, 0xfffffffffffffffd, 0x2, 0x2, 0x72ddf787, 0x0, 0x7, 0x2, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, 0x0, 0x0, 0xffffffffffffffff]}, 0x81, 0x968c) r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1441, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r2, 0xffbffffffffffd0e, &(0x7f00000001c0)) mmap$auto(0x0, 0x202000c, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x64220b40f1085712, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vivid.0/video4linux/vbi1/dev\x00', 0x189c01, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socketpair$auto(0x3, 0xd, 0x8dc2, 0x0) close_range$auto(0x2, 0x8000, 0x0) 2.165476929s ago: executing program 3 (id=848): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/module/ib_srp/parameters/reconnect_delay\x00', 0x40004, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) (async, rerun: 32) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32) mmap$auto(0x0, 0x1, 0xfd5, 0x12, 0xffffffffffffffff, 0x3) (async, rerun: 32) mmap$auto(0x9, 0x1ff, 0x4, 0x14, 0x3, 0x0) (async) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) (async, rerun: 64) sendfile$auto(r0, r0, 0x0, 0x2683) (rerun: 64) 1.807255462s ago: executing program 1 (id=849): r0 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40000d, 0x10400, 0x6, 0x4, 0x3, 0xffffffffffffffff, [], {0x7, 0x200004, 0x7, 0x2a3, 0x100, 0x3, 0x40100101, 0x6}, {0xf8, 0x4, 0x9, 0x1, 0x3, 0x40, 0xcc, 0x8, 0x100000000}}) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) socketpair$auto(0x6, 0x2, 0x20000007, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = epoll_create$auto(0x1) capset$auto(0x0, 0x0) epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0) mremap$auto(0x110c230000, 0x0, 0x101, 0x3, 0x0) pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) io_uring_enter$auto(0x3, 0x4, 0xffffffff, 0x6, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="44010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x144}, 0x1, 0x0, 0x0, 0x1}, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82902, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f0000000100)=r1) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r4) close_range$auto(0x2, 0x8, 0x0) r5 = socketcall$auto(0xa, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) write$auto(r7, 0x0, 0x6) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000002c0)={{0x0, 0x9, &(0x7f0000000080)={&(0x7f0000000180)="cb7978ababe605edf078e6f2726ae03e663c080c0d6c169eec931ca2ea579299bf44495b1fe078f2e9c5586ae69caa8135493b", 0x1}, 0xfffffffffffffff7, 0x0, 0x5, 0x24b}, 0x800}, 0x8, 0xff) ioctl$auto(0x3, 0xae41, r5) ioctl$auto_KVM_GET_MSRS(r3, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) ioctl$auto_KVM_CREATE_VM(r3, 0xae80, 0x0) select$auto(0x5, 0x0, &(0x7f0000000140)={[0x9, 0x8, 0x3, 0x10, 0x3, 0x9, 0x9, 0xff, 0x3, 0x2, 0x2, 0x7, 0x100000001, 0x8000000000000001, 0x4, 0x9]}, 0x0, 0x0) 1.406304433s ago: executing program 2 (id=850): setsockopt$auto_SO_BROADCAST(0xffffffffffffffff, 0x8, 0x6, &(0x7f0000000000)='!\xb4{\\@].2+*^^#\x00', 0x1) r0 = socketcall$auto_SYS_ACCEPT(0x5, &(0x7f0000000040)=0xf) ioctl$auto_FBIOGET_VSCREENINFO(r0, 0x4600, &(0x7f0000000080)="b6fadfa0f8ee45c459612862de42cbe61c1a75e706c7d982fd2d0bbe61ea455fda42b07458066804201c629428828fb18ca7474dab5af9ffbec1beadd00689893e6f8e308b6a8d5314d70f0d03302ce735d431ec2818a5b3ed316936b8829a2edd9980de00e1ea795dc92735d68fddf2b97647e01bc000bea0bb4540b9ea2569386071c40e3d6bdf1ec9698ced8fe2c98aa3628099492ae693b714e90b6ee24cce11f373c1574720af41e8605d") rt_sigqueueinfo$auto(0xffffffffffffffff, 0x3, &(0x7f0000000380)={@siginfo_0_0={0x2, 0x3, 0x1, @_sigfault={&(0x7f0000000140)="f3e4c3e23c3d8413c3177dd84059e9596f1fda89607de52305bd7c9191b973b85eff20bd2591ce062b8090ebb0b38186ee09ada3d3f067a4cf023ef9a8c4791d1b490d9031eb71c6f3bc9ff6da91acbb22a535e8e5a2ac1742cb5720bdd63292b6bed7401cce40bef8e24134a2121aa388ef17862919113b9b04b4d89cbdc23e95916fc1667ae9f586764c3da85bff600b9d80e3ecec5143539e3b74fc2ad389ad8865c625d7dea6bb3569e871877e847bf8f4e7e9ec9c5ec11faa030ef0f1f720c9f31f0021291563f0fc6286ff3ba2a94c3699e11c9ce7efed20e30682bdb2022b7a9359def57855", @_addr_bnd={"071338b18ccc9010", &(0x7f0000000240)="fe8657d4a554b762b4d9119a0d41aa94fcd5206bbee0737de06cd9bec44fdfce96b765e4a7cfbdbe056abb51a03f0ce13371bd8ba203a3ff925469f8daa0cde659b47b3a99206d7a0012be5f5ecbc4213d31bbbdd5d91316533d3bf9afe69f66190c03", &(0x7f00000002c0)="5a1385f24354d02bd1ba4a5715aadfa3abac0fe82a661d140a6ca642c0768c7ee4bfd7e63acd1a113c45fd9a94b78f3de1da7a43486aa00772d73b4bcfae660b39412cf2ba9a59d4f3191cd69c697fbb8bbdce0c63a7769a30e40fbf55864a06b000142c859c2f3697f658c1de6bc1bbc0f780a90763ae31ad94a3b704d47193036ccf91820bcace44b58da2da514d3c"}}}}) ioctl$auto_FBIO_CURSOR(r0, 0xc0684608, &(0x7f0000000580)={0x0, 0x0, 0x401, &(0x7f0000000400)='!\xb4{\\@].2+*^^#\x00', {0x7, 0xc2b1}, {0x0, 0x92f4, 0x8, 0x8, 0xb, 0x8, 0x6, &(0x7f0000000440)='\x00', {0x1ff, 0x5, &(0x7f0000000480)=0x2, &(0x7f00000004c0)=0x10, &(0x7f0000000500), &(0x7f0000000540)=0x4}}}) ioctl$auto_BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000600)={0x9, 0x55, 0xb, 0x4, {0xfd56, 0x9, 0x6, 0x0, 0x4, 0x8000, 0x100000000, 0x3, 0x5, 0xfc35, 0xfffffffffffffffb, 0x5, 0x9, 0x8, 0x8}}) r1 = openat$auto_fops_init_pkru_pkeys(0xffffffffffffff9c, &(0x7f0000000a00), 0x204000, 0x0) r2 = fcntl$auto_F_WRLCK(r1, 0x8, 0x1) ioctl$auto_FBIOGET_VSCREENINFO(r2, 0x4600, &(0x7f0000000a40)="27340aeff4ac2f71f40f0a4f746ff81c129854c817d77c21c5e7c9b3f72febf2de9a0cccb759145c00599b0a8b2f2f744fa0800ec035030bdc2e6a7b3d129435e7b3d8fc3e7ae910ee774f9644d899be2cd8161960519fb643dd561be591ab3a8c56edec096706863b12a9bf2e7b84978e956c93a2f26b2926d969ed12111f5dbd419d10f76d41d5b0a474d5d5e4c81602901ae37b8b126299ef34eeb11ce2de98824835528cab0651ee5e152880f0c5d175ea6871c891978805e586e5e8d881a3f23e03f968158f1faf3a5f818361f478e7729826333a9a264b4e2ab5abcc0fc0378efa1ed6fdea5e5d2aa70c69948023fe6c87c780767d23821f2bf8cdc0f2876fcd8fc329b80a5f7499d15a0c764f6f627fda9d5bb769b32001c5eace43eb352f6ef031969207de93f42c5a6dc91bd6ed5961530260c45d148520a6ba66c76aa7615e7a82f1c3025dd872deeb4441ca8a6adcd0af0eec7dbe08d1a20fa7de73b97af16bae8ddaf7910e602ff9c98a10ee26d578e7e2e32950b6ef02066c63f7f35394a6bdd779caaef67b5f1ee36f45bd1d92faccb90ed8104e6b52f629b13ffb0d6501731ced8e3b416dbbf62fe342c1d56a33c68f0c23448dc9d71fab87ab0e42377fe38bb627647de96498111d49937eed645b9ad9961bc65ad8b7b75b56f67e56dccc0e24655aabcace87611be638fe77a182285af4098dd0f70454b0b610359af8f18e7c50ec07a938b54f76ffcfaa61cb3f32140783fc6e4caf1e45b5043dc184de6e7ec59a82dc6527d430211aa4654a7148df495b3940acd12421449e3e4d5aec670bfe4e3f38d05cfcd8fa66b3fbd9a306eb198b4d43e1bc836b75d5795f89002003fc880d7d419a2bba76c78292c8e8cf53c1c044068f1aeca7241cbbde2f8c44e23cc45a411e317abb03780113caa9c8b4a8352a348df354ca231dba5b0de3dda78628a79244ecb4568956156eb6a12960cbe55727fe6730bb3a2faddfd1394cca1ecc03bb445cb73a1d18a1e529eb0db28f91518ffb84f6cf5ee6a4765aa6314b7d0af09c3fa1cdbaec71daf9e2ee2fa81399485ce6b165f99d2f6d50034c887949521fb550e7c92626a179a662898816813673ec921036f2693ed3a4c9e1ce51c342e27df1ada3972c279c64f5be7894c914c5388732379467af14c33b485ba63d740246aa41514820b12605cdd1698a8d1d793805904e8348c8f5762592ae655fb35da750580bf3cef4af17ba416ad324fd4ef74b848661e9e5b7b4285bf0aee6b6ec9f745835c3957e7e0ee08f51a1f7c2e401fb85f8e56365d77c96bb6dcb1280a80920d1341e548ef98b0b1cd05b658efa49a1ebca28100447811c437b20f2da458620c8f141aa610526c6b41d751bd4bc05c2b1bfaf2d70ac48a20165d760860cb1aedef43b8c7b799f4314b40a5bcc76429369520cb5fad6db6cffdcbde3550603521595a7bb7399a0169258acbed61bf6d5fc6f743469d9f98aee40b07bff20d785a42e7f85e72b38ff64ba656d899dbb35a908fa8dab7e783003e2ddee74de94bfe94d1dcc6526b64564a250b0cb44fa4afff20859554b1ef65c4dba7795c7b1ed55074e53f229c0b657a6b5e85b21a9576e9dc0f70bb633f529bf2f6ea6dab41f20b5a77b8d4b0225703b3a0920f7997098797a61d3cbd8fa479a4fef36fab45df85ef34b1660b0209ca686575fc48ac5a33daaf4ceee838c2c1fcce4730c3be4cda541ef92961069ec973de137e0d4a00d6f155d663f34b20a9659397616db363c6dc3272f8476f26bb60d0d8bba9aa502a8185947d7868220bb3b32035eba2e48c0dc62cb688c7c9660a7a33b7c056a83d1d0d768526bda635d7778c19260528c378d8dd64e02e497a0cf42cc8f1b5c7b738c662a5e86de31af38705d25dd5c0363f56b68a461675fabf67737d1c44525e2eb4d3ab62a03ceddeba2cf8095e1142618aad2fcaea87f72cff0ea8159c22447708c2796f3a284a969f8cbd91356fb05c9e8946fabf26ebd894434de62e656b51c579051864b811778ae0b67a1dac2e19a2b87d899a964d2286d696f0045ac7ba6bb418d8643ce020539b50714e2d1960b9fa3e6a9c4f6ff44ca326b58c06a2e8f26a647bf6c599a7df3cdd6542dd6d00493dc741fc304ac8d1c1e7712602e22d028feac1a325f37c88db695da6cda21fda653d2e2a2527c21c92d4d00a5f970d0e1aa4c85d0f8b75381e8c19ccd5cc47c31dc8e191ff8d9794c35c65411123b65fe3a1ff004496f01554f7e3df950b60007e0c9a19a933b0a04e6a0b846ae1019ef42431161441d8f4b7e3b24dadacd9e5ee6dacdbd5c7a9cc2bec6569251895b8183cb869de830edce11c206fdf0a4cd58b85f96575dea16f395870ebc5ff59375670da0aed44cacfe22c89e4b337481827e4796ebedd1c743f206b1a1cccb3af077a5cff5f71f49bd341a5c564dfacf99e50243ddea84eb615a5e5f8280918e1655d6dcd283256eeaa4e68a787512aa1c71a96c30a793a39eea6747eda65131d75fb46f675e539cc417d3d50abe216de789afccb7d9e68e2851415a7da98415cc95d65e0ec21f6094d66831cd4b3a5f6278bbb5716735988a62bd62aa3d7221e270104124b65213ef6210fd907fd5639582b1125bba567c8d0fe92340a2680f47df664cc256ce6e0e63a0ce00068b73e458cec0a8c1ecc0cac783a6a7acaaa406b152b5311bd3f35d541e19e2c9de1632d085b01d3db872ba5e2c1e82707c0bf7b63e3ec706955a731972e312205461fb19c875ff5acbc3e4cfe70dc32e1fc1bb39a84a64c9d97497c487e7c6c8e4750cec264e4e68c610343f8edc819dbd86f630d8a4c886537cb73a6eb55a884a7a228600c84b900c6aa2c907cce12d92693b6ef8f4ee471f41af068c4109cf417db8b0f85ed43987c105331819818564ddaf740ff29abade1f433066242b14b523b9b23e9a540e06e993ff2e289cfcda6106aa37270f0ce5286661b7ea397a4205fe5790d445d0436e326774702cb350fe61419de3719282e43322ea56fd62a00f621ac1089f3e77989b5b6346c870d76c1d31dd9fb85f146ea98c6451026b28db8195ca71ad0a94202824a8302b1e2edc5051c18af98c3f0ec1389b266e387184ebc158d9d10311994113d1b992223943a33f2b2ab91cea17411ff3c2e890cc7ea8960665a6df659c325d1a19394f2366f8d872c3377e559521f6468bcd266a163f56c63001b39d47113e492a14501bbfe12f26af9d973d0a8d6b68520055af14e88204e3e2bf0f6334b5b82e0dd50931f55e7fed55f48344f51f906e667b55fec3b1b8ecdc1fa6407aa28fe8a4bda2cc788f8f101e7a7df08e798aa69eaea6f7d2af1767cea2af8413cda8a5918aac1965b3c7f733996c0885053c7f2f4e213787110d54bc5821ab36747c67ff81776da43978d0cbbe9f0c6e048c309203cf3ae4d9e74f06edf89fd066ee0e8e748d0b4c91d6ee27ff1e8483382239af0181c35f01631d445009cc1eab5cdcc9d748b863510d1a2fa0711ffce2e2d2c01d951e9b72ffd3eba6ddb5dec5c59a6e9235d32ffa4c38817ad2c2f05176fde3176555377e889001eff010f34e14c8fc4a3162cd7d948e37960d106084215b4b68b117d8aaa4260a695b21da74782b8120166b4d91cc69acbc34a628bb9d7ef6f24a151e1badce551c04b78484fc110b24024b2e9c558173309b5d7be857e971ee38c4527958daa02be41fba95466bd33018e165cba405afeee35e8aa00fb274d20865ca5d119c31ba5a723c9e1fbd05942cd0ac9604a80f9b7765db9c99a87cb5a5311fe2d3cddfd1a8320c9c2d282d6d64d6e41b01f65bec165f0088502789d07a8b63dc661cbf6b6e50ebf8a94eecffffe305fce5d5b0c7353dee0801593e69e6abd2255aad58a7380d7a6029ab43978ab34f7911b833001486414316c705976eb669fa6bfa43159afae79881a21c12f4b5a7f808821d40feb2498f7483016dce1d242557669248304f24323db47d84ac555603d55e43f4809c40cd3661bc4e9ebe0254f673481158660442d5d6cd1a5942ee90dfe44cabb226aeca10ca38763a41a1f4cc56341077ad9bc5136b398cad1af47928f671dd36718b22e847c1834500646aaf86c5bf52181442cf1c877d04fdc3494a6790b5ff5092cc0c85395a92ef816583e0c7b5dcf1086a853d661e811dc0aef3f1485cc236ab9743cbd7d3653785fb83d0980b702a2ca82de2b235eadf3e2ad49ab62b74f4562877d99d0d3786f51351a12dd1726bb26b6f01dbb6d68be44bf5256bf8b3a7110790bbae13d16e8c36c918a62ba0e5ec3052a53c93a2bb4840e893fa619a1e3309d231a39ed553b70b154dd3260d1c5da56b3d5b4a26326f313f860704682c310704fdd113a248c755d7c00420aa5e620668a5f4f122ceb84e8d78ed1bd448b77b40b9ee327090c07621e0d43dbba574c3930d1469d807bf368303ed4221d831bd215ed4eba386c5999f325fccfe10e6044e6967d7ee939131d45b43f9667ad3b1c0c50fd19322197118a083956d84d58fde18a93ca5c08cd6e6f711631257da5f54f62c9ee3d4971989941d2d7c7ccbf20217fcf0b5cb022a0033be7c69fbcb3c5aa1b5bb9ab43c50c60654109eb09275e67c6dc9dee31df9bc603da5374e074b14ecb680e7f66eb819d5f7132ac0443e30bd2912e9b58a8d2c2405bd8aa06d3d58db76b61e0597af5ca7ff68b28616dd58bf30a281db4f9ce1c5140864fc245fffaaa742f6f958cadf982e4011e38c5ab248945bc6f2c1d90e0ac118a6eca278cd6d3c63a88bc82449d08d8816bce1391d5ccbe2e81788c9f83e21d2f00535e846947be386fc2c179d154c1d92460a6e729fe28141fa8a9af7e227df693fde1d650ab80696f0e888a41d6d9b606abda9888ddf681481b3f855654b35bb1b4fe559168ee37e47b5582d1b088910ae1cedcb8e83d9b8d74dbf10fa71539f079fb33ac39a41f11935b1b0c5f211947e3d9a58e11fb9b85efe87b757bb5461307c9efa20d600b95f48a0da831619973fb98c887a0a379ea8a561aa6131b94ad657880a08918e4a6fb00e5dc53076e7b7489a200b1060955d306b4912d3735c08ae8eb6f5cd682977eea13e0f97877316679460da607ecddb454def4b90e2e723ea1d16605b65ca52298bf2b43561fd931cf41e0901df1ef1cbb0b8433228a649c5b46ac1faa1369f239e16cc652eee4daaa026a2dfa115f52e6c9da419b44ac34d0f6c43b285c90850615bfc02d23ecb4546c259fcdad44f3f7500913842e417e6fd6277c04ff9d5f8d4d829a207db2fdee2f26d8067eb3e7e385c1a5e2a61416c3d4ba07a27607d70ecf26fc77063850bed1da29b89d4834a090df4bf598c6830fe6068b3b3dcd1cf16273bec28d836bf5bb6a45c7cc145352f98ebe62870719f0d83b419ed0b35c22ef5c78fad3515c85a9f06f847594c99b1411c419a71b3f3a33cd5c6ab15d2adf7719d237123ef7d950a24bfab4b4670aa017bb4cfd57a617c80165a48753b935e22e65ebba22c621bdb3f73451b55e055b0f771c0026bd175cf94bf1fe5b5a02858b7ace4aebd261e739b637c7c853c04632bd4c92a13acaa4acee4d59b6dbf0e05cce42b98d71eff57009f78788be25e6c1c14a9bee04413b3ffbca5669d7388468e194effc65103592e59a867819ef113f9fc930c101825776d51066417551b4ea838f1706cafdedd2e21bb21eb1768cf1a4f31b041a370f8d6a8317abc0bee267b901fc44912b88b40d1c7358f") r3 = socketpair$auto(0x64, 0x8, 0xffff, &(0x7f0000001a40)=0x7) r4 = prctl$auto_PR_SET_MM_START_CODE(0x7, 0x1, 0xffffffffffffffff, 0xe0, 0x3) ioctl$auto_BTRFS_IOC_ENCODED_WRITE(r4, 0x40809440, &(0x7f0000001b40)={&(0x7f0000001b00)={&(0x7f0000001a80)="855c8f7e091459654e2df285a1a08d78b5e124780a94e74a2e17944b0f8e07eaf68b4ef8f01b9d3ec0549fa991fab46c236dcdbdb4cb633d1ae06d59784b06f180e0f5557d1621e93a2c2a08", 0x4}, 0x1000, 0x2a5e, 0x2, 0x4, 0x1, 0x6, 0x5, 0x3, "123cdbd4631db5dfda96314e2ccc78b6bf98c57abbc553cf8f488a20b5bd7828ebe0b7b13ec8560f67fc9284f3bf685d82b4bd7b1b228fb4eac4714d7364d2ec"}) ioctl$auto_FBIOGET_CON2FBMAP(r3, 0x460f, &(0x7f0000001bc0)="81b9320c805fbe7537aa4675304b90ca9c2d64a24e1e7a4dd7220a0e86f1ac731942affa7daacad63843cbaa0b162eef4f3546e742f1d87eb4bfc2e7a5b9c31d6cab980c3e368eba3e48adaeb5380f6b50d82b81a13b55cbbb61fb441c115ee5bd40c47f35154005bdae9c8a9f0f785a2db24a93054f01d5be5a545473") read$auto_snapshot_fops_user(r0, &(0x7f0000001c40)=""/92, 0x5c) bind$auto(r0, &(0x7f0000001cc0)=@phonet={0x23, 0x9, 0x6, 0x4}, 0xffff6e62) prctl$auto_PR_RISCV_V_GET_CONTROL(0x46, 0x7, 0x4, 0x10, 0xfffffffffffffc45) r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001d40), r2) sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r3, &(0x7f0000001e00)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001dc0)={&(0x7f0000001d80)={0x1c, r5, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000) r6 = openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000001e40)='/sys/kernel/debug/ieee80211/phy8/hwsim/ps\x00', 0x200080, 0x0) close_range$auto(r1, r3, 0x1ff) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000001e80), r2) sendmsg$auto_IEEE802154_LLSEC_SETPARAMS(r3, &(0x7f0000001f80)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001f40)={&(0x7f0000001f00)={0x2c, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x7}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x81}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xcb}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000804) sendmmsg$auto(r6, &(0x7f00000031c0)={{&(0x7f0000001fc0)="5cc079e33fed86e2a737254bf5e3baad43408913d916c92c05b372d7e4dd8b8200333660e24bac1ec23e4190ac4d22e811a739dcdacc84fed184ec3251dbb11f94d20d8149c2c89cf72e59b5c3b63cfea27f92d923e5a69be6a7595edc8b906cf91f6d70e27850081d86832cd2ce8d7be25b0e8bb88644a526f04461304869210ef152594682b64473f472193c826cf0", 0x5, &(0x7f0000003080)={&(0x7f0000002080)="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", 0x1}, 0x5, &(0x7f00000030c0)="41b1605c842f3cc4e1157c3680360e4d03984ec04ac46c528eea43425c7760490d9b05f7839dc8bcb1ad20e8705e8684002d464dc251cdb6188e8c8cc9f1792f26171cf77d78c56583839d5c50f059db142f7e3ca94aa068a791d2a8e478539d47dae3a5b122939d1aa12b12b6fc8cc92b0f1cda8002e5864356be49dd86359731141b4c4afc5fa5196facc5d986ec6c45eb04b30fb065bb6a91ba2b1530c8f033c242831de125cc9e0b0179be180bb20935da7842dc8b0d8f1c51454f136941abf56d13770c6c975cda9e10b8c4405df91317df511fd13d40694b9173345b0787265bcce0b14278844e6025614a4f3f", 0x5f, 0x40}, 0x1}, 0x4, 0x7ff) madvise$auto(0xfffffffffffffffe, 0x6, 0x0) r7 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000003240), r1) r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000003280)='./file0\x00', 0x600000, 0x140) sendmsg$auto_CGROUPSTATS_CMD_GET(r4, &(0x7f0000003340)={&(0x7f0000003200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000003300)={&(0x7f00000032c0)={0x1c, r7, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0x880) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000003380), 0x2c22c0, 0x0) sendmmsg$auto(r4, &(0x7f00000034c0)={{&(0x7f00000033c0)="ba40b133d897d2b74d3278a1e56792467a12294c645bfc8617e8c3b3be2f588aa772cff860e66153f2adf23875c88a71f75c70ff2a", 0xd, &(0x7f0000003440)={&(0x7f0000003400)="9c0d04a9d74d82023341c2d9e6d22e9ac11f69ef835dfddbe4f1457d721645dff00b9b7c18656ad4608a2244321e7349c7b4f3fa0098daf3764cccb909"}, 0x8896, &(0x7f0000003480)="fd3c4a89ed265967182c04786e0cdd504326dd1773d704be51bbffd2318b967bcb5c337f38b936e47b48", 0x8, 0xf35}}, 0xe, 0xb) read$auto_fops_init_pkru_pkeys(r3, &(0x7f0000003500)=""/125, 0x7d) 1.181579331s ago: executing program 0 (id=851): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/batman_adv/parameters/routing_algo\x00', 0x5c1102, 0x0) sendfile$auto(r0, r0, 0x0, 0x2001) 1.045907128s ago: executing program 2 (id=852): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mount$auto(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040)='n&sd\x00\xee\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Xi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\x8d\x18k\x05\xd1:Q\xf7\x8f\xa7\xe9@\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x14\x85\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xda\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\x01\x00\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xca1\x88m\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oiL\tM|d\xba\xdbK\x04\xc1\x9f:\x0e]\xaf\xe6&^\xc6\xd9\xccI+\xab*\x9cw\xa2B\xa9V\xaa\x03\xc7\xa8\t\x94[\x1c\x02\x96\x9c\xce\xdb\xc0$\xbe\x12\v\xbb\x97\xc4\x81\xb5V\x04\x93\xe4\xd0:J}2C\x0f\xb4i1{R;\xc5\xf5\x05\x03\x88\a\x81\xd4\x1b\xca\x84\xf5\x14\xa7\xea`\xf51^9\xca$$R\xaa\at\xb6\xbe\xc4\xfc\x837\xaf\xa8?\xd7)\xe9\x04\xea\xa2XX\xde*\xfa:\xbb\xfc\x98\f~v\xa9\xed\xc96\xdbi\xf9\xbb\x81\x00\xb5-\xee\xb1\x93\xb5n\xceB\x93\xd6\xfc\x9c\v\xbc\x7f7\xeb\xf6\xdep3\b\xd3\x04\xacS\xca\b\xcd\xdf^\x9f/\x99\xbf\xed\xe3\xf1b@*\x95\xe3\f#\xe8\xe3\xa5\xee8Yb\t\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oiL\tM|d\xba\xdbK\x04\xc1\x9f:\x0e]\xaf\xe6&^\xc6\xd9\xccI+\xab*\x9cw\xa2B\xa9V\xaa\x03\xc7\xa8\t\x94[\x1c\x02\x96\x9c\xce\xdb\xc0$\xbe\x12\v\xbb\x97\xc4\x81\xb5V\x04\x93\xe4\xd0:J}2C\x0f\xb4i1{R;\xc5\xf5\x05\x03\x88\a\x81\xd4\x1b\xca\x84\xf5\x14\xa7\xea`\xf51^9\xca$$R\xaa\at\xb6\xbe\xc4\xfc\x837\xaf\xa8?\xd7)\xe9\x04\xea\xa2XX\xde*\xfa:\xbb\xfc\x98\f~v\xa9\xed\xc96\xdbi\xf9\xbb\x81\x00\xb5-\xee\xb1\x93\xb5n\xceB\x93\xd6\xfc\x9c\v\xbc\x7f7\xeb\xf6\xdep3\b\xd3\x04\xacS\xca\b\xcd\xdf^\x9f/\x99\xbf\xed\xe3\xf1b@*\x95\xe3\f#\xe8\xe3\xa5\xee8Yb\tf\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, r4, 0x401) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x80000, 0x0) poll$auto(&(0x7f0000000180)={r5, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x0) r7 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) ioctl$auto_UBI_IOCDET(r7, 0x40046f41, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f00000000c0)=0x52a6, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(r5, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) unshare$auto(0x2) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0) splice$auto(r8, &(0x7f0000000040)=0x7, r7, &(0x7f0000000080)=0x4, 0x26c4, 0x895) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0xfdd5, 0xd, 0x378, 0x9) 769.938762ms ago: executing program 3 (id=855): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) r1 = socket(0x15, 0x5, 0x0) getsockopt$auto(r1, 0x114, 0x2716, 0xfffffffffffffffc, 0x0) sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x7fc, 0x0, 0x8, 0x0, 0x200, 0x4}, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311) (fail_nth: 5) 656.927351ms ago: executing program 2 (id=856): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty38\x00', 0x301, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fd9b5d0f", 0x26) mmap$auto(0x8, 0x1a4, 0x5, 0xeb1, 0xffffffffffffffff, 0x59) mq_notify$auto(0x4, &(0x7f0000000040)={@sival_int=0x7, @inferred, 0x7, @_sigev_thread={&(0x7f0000000180)=0x0, 0x0}}) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040), 0xc, 0x0}, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0x0) migrate_pages$auto(0x0, 0x9, 0x0, &(0x7f0000000040)=0x101) socket(0x1e, 0x3, 0xa) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(r1, &(0x7f00000000c0)={{0x0, 0x6, 0x0, 0xa4, &(0x7f0000000040), 0x8000, 0x2}, 0x8}, 0x1, 0x5e0c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) io_uring_setup$auto(0x100009, 0x0) open(0x0, 0x64842, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x28, 0x1, 0x0) timer_create$auto(0xfffffffd, 0x0, 0x0) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0x10080c, 0x18007}, {0x8}}, 0x0) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) mprotect$auto(0x110c230000, 0x2000a588, 0x5) timer_gettime$auto(0x0, 0x0) getsockopt$auto(r2, 0x28, 0x2, 0x0, 0x0) io_uring_register$auto(0x2, 0x14, 0x0, 0x3) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto_TUNSETOFFLOAD2(0xffffffffffffffff, 0x400454d0, &(0x7f0000000000)=0x7) r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(r3, 0xc0105702, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000100)={0x137, "350cf73b130676fadb3178a8d16f94206370eb4bc03865c986244be4162d8427"}) listmount$auto(&(0x7f0000000140)={0x5, @raw=0xac, 0x4, 0xae}, &(0x7f0000000200)=0x8000000000000008, 0xffffffff80000000, 0x2) 353.141917ms ago: executing program 3 (id=857): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) getrlimit$auto(0x3, 0x0) ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) finit_module$auto(r1, 0x0, 0x3) ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffff4ed5, &(0x7f0000000080)="d249f4af797c93b14f0ce12d28fbad26734016363e4d43ae2ff4") ioctl$auto_BLKPG(r4, 0x1269, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) lseek$auto(0x3, 0x0, 0xfffffff9) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x84) 92.255822ms ago: executing program 2 (id=858): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r1 = socket(0x29, 0x2, 0x401) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x7fff}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b) madvise$auto(0x0, 0x5, 0x15) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptyu7\x00', 0x103040, 0x0) ioctl$auto(0x3, 0x540f, 0xffffffffffffffff) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, r2, 0x8000) mmap$auto(0xffffffffffffff82, 0x20000a00004, 0x400002, 0x15, 0x602, 0x5) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x96141, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0x80100, 0x0) r4 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'ip6_vti0\x00'}) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000b00), r4) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000140)=""/122, 0x7a) write$auto(0xffffffffffffffff, 0x0, 0x80000000) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) fsetxattr$auto(0x1, 0x0, 0x0, 0x4, 0x6) write$auto(r5, 0x0, 0x100000a3d9) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) keyctl$auto_KEYCTL_INSTANTIATE_IOV(0x14, 0x0, 0x8, 0x34d, 0x7fffffff) 0s ago: executing program 1 (id=859): unshare$auto(0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) prctl$auto_PR_SCHED_CORE_GET(0x476, 0x0, 0x0, 0x5, 0x7) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x80000001, 0xdf, 0xeb1, 0x401, 0x8000) pipe$auto(0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x4) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001900)=ANY=[@ANYBLOB="54997c50", @ANYRESDEC=r0, @ANYBLOB="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"], 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) ioctl$auto(r4, 0x540a, 0x0) unshare$auto(0x40000080) read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) kernel console output (not intermixed with test programs): 882][ T7050] ? __pfx_futex_wake+0x10/0x10 [ 147.259943][ T7050] do_futex+0x32b/0x350 [ 147.259983][ T7050] ? __pfx_do_futex+0x10/0x10 [ 147.260018][ T7050] ? do_raw_spin_lock+0x128/0x260 [ 147.260059][ T7050] ? find_held_lock+0x2b/0x80 [ 147.260085][ T7050] ? __x64_sys_close_range+0x2d9/0x5d0 [ 147.260124][ T7050] __x64_sys_futex+0x34f/0x4d0 [ 147.260165][ T7050] ? __x64_sys_close_range+0x30f/0x5d0 [ 147.260196][ T7050] ? __pfx___x64_sys_futex+0x10/0x10 [ 147.260233][ T7050] ? __pfx___x64_sys_close_range+0x10/0x10 [ 147.260277][ T7050] do_syscall_64+0x106/0xf80 [ 147.260311][ T7050] ? clear_bhb_loop+0x40/0x90 [ 147.260354][ T7050] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.260386][ T7050] RIP: 0033:0x7f128579c799 [ 147.260411][ T7050] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 147.260438][ T7050] RSP: 002b:00007f128670e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 147.260468][ T7050] RAX: ffffffffffffffda RBX: 00007f1285a16098 RCX: 00007f128579c799 [ 147.260486][ T7050] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1285a1609c [ 147.260503][ T7050] RBP: 00007f1285a16090 R08: 0000000000000000 R09: 0000000000000000 [ 147.260519][ T7050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.260538][ T7050] R13: 00007f1285a16128 R14: 00007ffcef80fba0 R15: 00007ffcef80fc88 [ 147.260576][ T7050] [ 149.375009][ T7073] FAULT_INJECTION: forcing a failure. [ 149.375009][ T7073] name failslab, interval 1, probability 0, space 0, times 0 [ 149.388577][ T7073] CPU: 1 UID: 0 PID: 7073 Comm: syz.3.241 Tainted: G L syzkaller #0 PREEMPT(full) [ 149.388623][ T7073] Tainted: [L]=SOFTLOCKUP [ 149.388633][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 149.388649][ T7073] Call Trace: [ 149.388658][ T7073] [ 149.388669][ T7073] dump_stack_lvl+0x100/0x190 [ 149.388713][ T7073] should_fail_ex.cold+0x5/0xa [ 149.388745][ T7073] ? cache_create_net+0xa2/0x1f0 [ 149.388787][ T7073] should_failslab+0xc2/0x120 [ 149.388816][ T7073] __kmalloc_noprof+0xe0/0x850 [ 149.388865][ T7073] cache_create_net+0xa2/0x1f0 [ 149.388897][ T7073] ? __pfx_nfsd_net_init+0x10/0x10 [ 149.388950][ T7073] nfsd_export_init+0x62/0x250 [ 149.388992][ T7073] ? __pfx_nfsd_net_init+0x10/0x10 [ 149.389030][ T7073] nfsd_net_init+0x33/0x3d0 [ 149.389071][ T7073] ? __pfx_nfsd_net_init+0x10/0x10 [ 149.389111][ T7073] ops_init+0x1e2/0x5f0 [ 149.389150][ T7073] setup_net+0x118/0x3a0 [ 149.389185][ T7073] ? __pfx_setup_net+0x10/0x10 [ 149.389215][ T7073] ? lockdep_init_map_type+0x5c/0x250 [ 149.389251][ T7073] ? mutex_init_lockep+0x110/0x150 [ 149.389291][ T7073] copy_net_ns+0x46f/0x7c0 [ 149.389330][ T7073] create_new_namespaces+0x3ea/0xac0 [ 149.389367][ T7073] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 149.389408][ T7073] ksys_unshare+0x473/0xad0 [ 149.389443][ T7073] ? __pfx_ksys_unshare+0x10/0x10 [ 149.389512][ T7073] __x64_sys_unshare+0x31/0x40 [ 149.389548][ T7073] do_syscall_64+0x106/0xf80 [ 149.389584][ T7073] ? clear_bhb_loop+0x40/0x90 [ 149.389623][ T7073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 149.389652][ T7073] RIP: 0033:0x7f8da0d9c799 [ 149.389677][ T7073] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 149.389701][ T7073] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 149.389728][ T7073] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 149.389746][ T7073] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 149.389770][ T7073] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 149.389786][ T7073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 149.389803][ T7073] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 149.389844][ T7073] [ 150.247470][ T7091] no more MTRRs available [ 150.445921][ T7096] no more MTRRs available [ 150.875987][ T7109] FAULT_INJECTION: forcing a failure. [ 150.875987][ T7109] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 150.941931][ T7109] CPU: 1 UID: 0 PID: 7109 Comm: syz.0.249 Tainted: G L syzkaller #0 PREEMPT(full) [ 150.941976][ T7109] Tainted: [L]=SOFTLOCKUP [ 150.941986][ T7109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 150.942001][ T7109] Call Trace: [ 150.942010][ T7109] [ 150.942020][ T7109] dump_stack_lvl+0x100/0x190 [ 150.942064][ T7109] should_fail_ex.cold+0x5/0xa [ 150.942086][ T7109] _copy_from_user+0x2e/0xd0 [ 150.942104][ T7109] copy_msghdr_from_user+0x9f/0x4f0 [ 150.942135][ T7109] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 150.942168][ T7109] ? rcu_is_watching+0x12/0xc0 [ 150.942196][ T7109] ? ___sys_sendmsg+0x19d/0x1e0 [ 150.942224][ T7109] ? kfree+0x2ec/0x6b0 [ 150.942250][ T7109] ___sys_sendmsg+0x106/0x1e0 [ 150.942281][ T7109] ? __pfx____sys_sendmsg+0x10/0x10 [ 150.942330][ T7109] ? __pfx___might_resched+0x10/0x10 [ 150.942361][ T7109] __sys_sendmmsg+0x205/0x430 [ 150.942387][ T7109] ? __pfx___sys_sendmmsg+0x10/0x10 [ 150.942425][ T7109] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 150.942458][ T7109] ? fput+0x79/0x100 [ 150.942479][ T7109] ? ksys_write+0x1ac/0x250 [ 150.942495][ T7109] ? __pfx_ksys_write+0x10/0x10 [ 150.942515][ T7109] __x64_sys_sendmmsg+0x9c/0x100 [ 150.942537][ T7109] ? lockdep_hardirqs_on+0x78/0x100 [ 150.942559][ T7109] do_syscall_64+0x106/0xf80 [ 150.942581][ T7109] ? clear_bhb_loop+0x40/0x90 [ 150.942603][ T7109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.942622][ T7109] RIP: 0033:0x7f128579c799 [ 150.942637][ T7109] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 150.942654][ T7109] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 150.942672][ T7109] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 150.942683][ T7109] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 150.942694][ T7109] RBP: 00007f128672f090 R08: 0000000000000000 R09: 0000000000000000 [ 150.942704][ T7109] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001 [ 150.942714][ T7109] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 150.942737][ T7109] [ 151.819832][ T7126] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string [ 152.153277][ T7136] random: crng reseeded on system resumption [ 152.275571][ T29] audit: type=1800 audit(1773339247.146:3): pid=7133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.255" name="discovery_nqn" dev="configfs" ino=14873 res=0 errno=0 [ 152.317927][ T7138] sp0: Synchronizing with TNC [ 153.259124][ T7163] futex_wake_op: syz.1.261 tries to shift op by -2048; fix this program [ 153.307320][ T7163] futex_wake_op: syz.1.261 tries to shift op by -2048; fix this program [ 153.309940][ T7171] misc userio: No port type given on /dev/userio [ 153.324022][ T7171] misc userio: No port type given on /dev/userio [ 153.330396][ T7171] misc userio: No port type given on /dev/userio [ 153.336917][ T7171] misc userio: No port type given on /dev/userio [ 153.345860][ T7171] misc userio: No port type given on /dev/userio [ 153.352576][ T7171] misc userio: No port type given on /dev/userio [ 153.375299][ T7171] misc userio: No port type given on /dev/userio [ 153.382167][ T7171] misc userio: No port type given on /dev/userio [ 153.388782][ T7171] misc userio: No port type given on /dev/userio [ 153.399312][ T7171] misc userio: No port type given on /dev/userio [ 153.406575][ T7171] misc userio: No port type given on /dev/userio [ 153.413807][ T7171] misc userio: No port type given on /dev/userio [ 153.420225][ T7171] misc userio: No port type given on /dev/userio [ 153.435326][ T7171] misc userio: No port type given on /dev/userio [ 153.454314][ T7171] misc userio: No port type given on /dev/userio [ 153.486185][ T7171] misc userio: No port type given on /dev/userio [ 153.505584][ T7171] misc userio: No port type given on /dev/userio [ 153.546426][ T7171] misc userio: No port type given on /dev/userio [ 153.671877][ T7171] misc userio: No port type given on /dev/userio [ 153.678318][ T7171] misc userio: No port type given on /dev/userio [ 153.818945][ T7171] misc userio: No port type given on /dev/userio [ 153.921004][ T7171] misc userio: No port type given on /dev/userio [ 153.927442][ T7171] misc userio: No port type given on /dev/userio [ 153.981014][ T7171] misc userio: No port type given on /dev/userio [ 153.987453][ T7171] misc userio: No port type given on /dev/userio [ 154.086401][ T7163] : Can't lookup blockdev [ 154.088670][ T7171] misc userio: No port type given on /dev/userio [ 154.198540][ T7171] misc userio: No port type given on /dev/userio [ 154.308817][ T7192] FAULT_INJECTION: forcing a failure. [ 154.308817][ T7192] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 154.325117][ T7192] CPU: 0 UID: 0 PID: 7192 Comm: syz.0.267 Tainted: G L syzkaller #0 PREEMPT(full) [ 154.325160][ T7192] Tainted: [L]=SOFTLOCKUP [ 154.325169][ T7192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 154.325191][ T7192] Call Trace: [ 154.325197][ T7192] [ 154.325204][ T7192] dump_stack_lvl+0x100/0x190 [ 154.325237][ T7192] should_fail_ex.cold+0x5/0xa [ 154.325259][ T7192] _copy_from_user+0x2e/0xd0 [ 154.325277][ T7192] mtrr_ioctl+0x350/0xcf0 [ 154.325303][ T7192] ? __pfx_mtrr_ioctl+0x10/0x10 [ 154.325332][ T7192] ? find_held_lock+0x2b/0x80 [ 154.325356][ T7192] ? __fget_files+0x21f/0x3d0 [ 154.325373][ T7192] ? __pfx_mtrr_ioctl+0x10/0x10 [ 154.325397][ T7192] proc_reg_unlocked_ioctl+0x229/0x320 [ 154.325425][ T7192] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 154.325456][ T7192] __x64_sys_ioctl+0x18e/0x210 [ 154.325484][ T7192] do_syscall_64+0x106/0xf80 [ 154.325506][ T7192] ? clear_bhb_loop+0x40/0x90 [ 154.325529][ T7192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.325548][ T7192] RIP: 0033:0x7f128579c799 [ 154.325564][ T7192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 154.325581][ T7192] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 154.325599][ T7192] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 154.325610][ T7192] RDX: 0000000000000005 RSI: 0000000040104d06 RDI: 0000000000000003 [ 154.325620][ T7192] RBP: 00007f128672f090 R08: 0000000000000000 R09: 0000000000000000 [ 154.325631][ T7192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 154.325641][ T7192] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 154.325664][ T7192] [ 155.167027][ T7194] sp0: Synchronizing with TNC [ 155.765073][ T7213] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.783431][ T7215] bridge0: port 3(dummy0) entered blocking state [ 155.790503][ T7215] bridge0: port 3(dummy0) entered disabled state [ 155.799739][ T7215] dummy0: entered allmulticast mode [ 155.872848][ T7215] dummy0: entered promiscuous mode [ 155.900530][ T7215] bridge0: port 3(dummy0) entered blocking state [ 155.907323][ T7215] bridge0: port 3(dummy0) entered forwarding state [ 156.254993][ T7226] no more MTRRs available [ 156.259400][ T7226] FAULT_INJECTION: forcing a failure. [ 156.259400][ T7226] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 156.321145][ T7226] CPU: 1 UID: 0 PID: 7226 Comm: syz.3.277 Tainted: G L syzkaller #0 PREEMPT(full) [ 156.321190][ T7226] Tainted: [L]=SOFTLOCKUP [ 156.321199][ T7226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 156.321215][ T7226] Call Trace: [ 156.321224][ T7226] [ 156.321235][ T7226] dump_stack_lvl+0x100/0x190 [ 156.321282][ T7226] should_fail_ex.cold+0x5/0xa [ 156.321317][ T7226] _copy_to_user+0x32/0xd0 [ 156.321349][ T7226] simple_read_from_buffer+0xcb/0x170 [ 156.321394][ T7226] proc_fail_nth_read+0x1af/0x230 [ 156.321429][ T7226] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 156.321466][ T7226] ? rw_verify_area+0xce/0x6d0 [ 156.321505][ T7226] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 156.321538][ T7226] vfs_read+0x1e4/0xb30 [ 156.321584][ T7226] ? __pfx_vfs_read+0x10/0x10 [ 156.321626][ T7226] ? __fget_files+0x215/0x3d0 [ 156.321661][ T7226] ? __fget_files+0x21f/0x3d0 [ 156.321699][ T7226] ksys_read+0x12a/0x250 [ 156.321741][ T7226] ? __pfx_ksys_read+0x10/0x10 [ 156.321795][ T7226] do_syscall_64+0x106/0xf80 [ 156.321829][ T7226] ? clear_bhb_loop+0x40/0x90 [ 156.321866][ T7226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.321896][ T7226] RIP: 0033:0x7f8da0d5cfce [ 156.321920][ T7226] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 156.321945][ T7226] RSP: 002b:00007f8da1cfefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 156.321972][ T7226] RAX: ffffffffffffffda RBX: 00007f8da1cff6c0 RCX: 00007f8da0d5cfce [ 156.321990][ T7226] RDX: 000000000000000f RSI: 00007f8da1cff0a0 RDI: 0000000000000004 [ 156.322006][ T7226] RBP: 00007f8da1cff090 R08: 0000000000000000 R09: 0000000000000000 [ 156.322022][ T7226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 156.322038][ T7226] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 156.322078][ T7226] [ 156.868584][ T7228] FAULT_INJECTION: forcing a failure. [ 156.868584][ T7228] name failslab, interval 1, probability 0, space 0, times 0 [ 156.941140][ T7228] CPU: 1 UID: 0 PID: 7228 Comm: syz.2.276 Tainted: G L syzkaller #0 PREEMPT(full) [ 156.941190][ T7228] Tainted: [L]=SOFTLOCKUP [ 156.941199][ T7228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 156.941216][ T7228] Call Trace: [ 156.941227][ T7228] [ 156.941239][ T7228] dump_stack_lvl+0x100/0x190 [ 156.941290][ T7228] should_fail_ex.cold+0x5/0xa [ 156.941325][ T7228] ? x509_fabricate_name.isra.0+0x5ea/0xa10 [ 156.941361][ T7228] should_failslab+0xc2/0x120 [ 156.941393][ T7228] __kmalloc_noprof+0xe0/0x850 [ 156.941434][ T7228] ? __asan_memcpy+0x3c/0x60 [ 156.941481][ T7228] x509_fabricate_name.isra.0+0x5ea/0xa10 [ 156.941526][ T7228] asn1_ber_decoder+0xd0c/0x2170 [ 156.941579][ T7228] ? __pfx_asn1_ber_decoder+0x10/0x10 [ 156.941644][ T7228] x509_cert_parse+0x1c9/0x910 [ 156.941675][ T7228] ? kasan_save_stack+0x3f/0x50 [ 156.941718][ T7228] ? kasan_save_stack+0x30/0x50 [ 156.941760][ T7228] ? kasan_save_track+0x14/0x30 [ 156.941808][ T7228] pkcs7_extract_cert+0xa4/0x380 [ 156.941851][ T7228] asn1_ber_decoder+0x12b3/0x2170 [ 156.941904][ T7228] ? __pfx_asn1_ber_decoder+0x10/0x10 [ 156.941970][ T7228] pkcs7_parse_message+0x289/0x870 [ 156.942015][ T7228] verify_pkcs7_signature+0x30/0xa0 [ 156.942068][ T7228] valid_regdb+0x211/0x590 [ 156.942107][ T7228] ? __pfx___nla_validate_parse+0x10/0x10 [ 156.942160][ T7228] ? __pfx_valid_regdb+0x10/0x10 [ 156.942195][ T7228] ? rcu_is_watching+0x12/0xc0 [ 156.942250][ T7228] reg_reload_regdb+0x11a/0x460 [ 156.942296][ T7228] ? __pfx_reg_reload_regdb+0x10/0x10 [ 156.942339][ T7228] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 156.942365][ T7228] ? nl80211_pre_doit+0x19a/0xae0 [ 156.942397][ T7228] genl_family_rcv_msg_doit+0x214/0x300 [ 156.942446][ T7228] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 156.942489][ T7228] ? genl_get_cmd+0x3ef/0x720 [ 156.942542][ T7228] ? bpf_lsm_capable+0x9/0x10 [ 156.942571][ T7228] ? security_capable+0x80/0x260 [ 156.942617][ T7228] genl_rcv_msg+0x560/0x800 [ 156.942664][ T7228] ? __pfx_genl_rcv_msg+0x10/0x10 [ 156.942707][ T7228] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 156.942734][ T7228] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 156.942772][ T7228] ? __pfx_nl80211_post_doit+0x10/0x10 [ 156.942817][ T7228] netlink_rcv_skb+0x159/0x420 [ 156.942880][ T7228] ? __pfx_genl_rcv_msg+0x10/0x10 [ 156.942928][ T7228] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 156.942982][ T7228] ? netlink_deliver_tap+0x1ae/0xcc0 [ 156.943025][ T7228] genl_rcv+0x28/0x40 [ 156.943063][ T7228] netlink_unicast+0x5aa/0x870 [ 156.943109][ T7228] ? __pfx_netlink_unicast+0x10/0x10 [ 156.943157][ T7228] ? __pfx_netlink_broadcast_filtered+0x10/0x10 [ 156.943210][ T7228] netlink_sendmsg+0x8b0/0xda0 [ 156.943258][ T7228] ? __pfx_netlink_sendmsg+0x10/0x10 [ 156.943296][ T7228] ? __import_iovec+0x1d2/0x640 [ 156.943332][ T7228] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 156.943378][ T7228] ____sys_sendmsg+0x9e1/0xb70 [ 156.943417][ T7228] ? __pfx_netlink_sendmsg+0x10/0x10 [ 156.943459][ T7228] ? __pfx_____sys_sendmsg+0x10/0x10 [ 156.943509][ T7228] ? try_to_wake_up+0x644/0x1a80 [ 156.943547][ T7228] ___sys_sendmsg+0x190/0x1e0 [ 156.943596][ T7228] ? __pfx____sys_sendmsg+0x10/0x10 [ 156.943644][ T7228] ? futex_private_hash_put+0x107/0x1c0 [ 156.943728][ T7228] __sys_sendmsg+0x170/0x220 [ 156.943766][ T7228] ? __pfx___sys_sendmsg+0x10/0x10 [ 156.943802][ T7228] ? __x64_sys_futex+0x34f/0x4d0 [ 156.943864][ T7228] do_syscall_64+0x106/0xf80 [ 156.943897][ T7228] ? clear_bhb_loop+0x40/0x90 [ 156.943931][ T7228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.943962][ T7228] RIP: 0033:0x7f793879c799 [ 156.943988][ T7228] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 156.944015][ T7228] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 156.944044][ T7228] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 156.944063][ T7228] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000006 [ 156.944080][ T7228] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 156.944097][ T7228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 156.944114][ T7228] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 156.944165][ T7228] [ 158.061928][ T7240] can: request_module (can-proto-0) failed. [ 158.421452][ T7249] FAULT_INJECTION: forcing a failure. [ 158.421452][ T7249] name failslab, interval 1, probability 0, space 0, times 0 [ 158.434203][ T7249] CPU: 1 UID: 0 PID: 7249 Comm: syz.3.282 Tainted: G L syzkaller #0 PREEMPT(full) [ 158.434234][ T7249] Tainted: [L]=SOFTLOCKUP [ 158.434240][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 158.434250][ T7249] Call Trace: [ 158.434258][ T7249] [ 158.434266][ T7249] dump_stack_lvl+0x100/0x190 [ 158.434297][ T7249] should_fail_ex.cold+0x5/0xa [ 158.434319][ T7249] should_failslab+0xc2/0x120 [ 158.434339][ T7249] __kmalloc_cache_noprof+0x7a/0x6f0 [ 158.434363][ T7249] ? loop_add+0xb9/0xb60 [ 158.434386][ T7249] loop_add+0xb9/0xb60 [ 158.434406][ T7249] ? __pfx_loop_add+0x10/0x10 [ 158.434440][ T7249] ? find_held_lock+0x2b/0x80 [ 158.434456][ T7249] ? __fget_files+0x215/0x3d0 [ 158.434476][ T7249] loop_control_ioctl+0xae/0x620 [ 158.434498][ T7249] ? __pfx_loop_control_ioctl+0x10/0x10 [ 158.434523][ T7249] ? __pfx_loop_control_ioctl+0x10/0x10 [ 158.434545][ T7249] __x64_sys_ioctl+0x18e/0x210 [ 158.434574][ T7249] do_syscall_64+0x106/0xf80 [ 158.434595][ T7249] ? clear_bhb_loop+0x40/0x90 [ 158.434628][ T7249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.434646][ T7249] RIP: 0033:0x7f8da0d9c799 [ 158.434663][ T7249] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 158.434680][ T7249] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 158.434698][ T7249] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 158.434710][ T7249] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 158.434720][ T7249] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 158.434731][ T7249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 158.434741][ T7249] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 158.434764][ T7249] [ 159.805928][ T7273] syz.2.287 uses obsolete (PF_INET,SOCK_PACKET) [ 160.986583][ T29] audit: type=1800 audit(1773339255.856:4): pid=7284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.290" name="trace_marker" dev="tracefs" ino=3167 res=0 errno=0 [ 161.016114][ T7303] no more MTRRs available [ 161.209437][ T7308] sctp: [Deprecated]: syz.2.296 (pid 7308) Use of int in max_burst socket option. [ 161.209437][ T7308] Use struct sctp_assoc_value instead [ 161.278822][ T7312] no more MTRRs available [ 161.331597][ T7308] FAULT_INJECTION: forcing a failure. [ 161.331597][ T7308] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 161.331701][ T7308] CPU: 1 UID: 0 PID: 7308 Comm: syz.2.296 Tainted: G L syzkaller #0 PREEMPT(full) [ 161.331745][ T7308] Tainted: [L]=SOFTLOCKUP [ 161.331754][ T7308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 161.331770][ T7308] Call Trace: [ 161.331780][ T7308] [ 161.331791][ T7308] dump_stack_lvl+0x100/0x190 [ 161.331839][ T7308] should_fail_ex.cold+0x5/0xa [ 161.331868][ T7308] ? prepare_alloc_pages+0x16d/0x5f0 [ 161.331904][ T7308] should_fail_alloc_page+0xeb/0x140 [ 161.331938][ T7308] prepare_alloc_pages+0x1f0/0x5f0 [ 161.331977][ T7308] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 161.332020][ T7308] ? xa_load+0x153/0x2c0 [ 161.332057][ T7308] ? __pfx_xa_load+0x10/0x10 [ 161.332103][ T7308] ? __lock_acquire+0x4a5/0x2630 [ 161.332141][ T7308] ? workingset_refault+0x477/0xf60 [ 161.332184][ T7308] ? workingset_refault+0x477/0xf60 [ 161.332228][ T7308] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 161.332294][ T7308] ? __lock_acquire+0x4a5/0x2630 [ 161.332345][ T7308] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 161.332395][ T7308] ? policy_nodemask+0xed/0x4f0 [ 161.332429][ T7308] alloc_pages_mpol+0x1fb/0x550 [ 161.332459][ T7308] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 161.332490][ T7308] ? swap_entry_swapped+0x1ff/0x2b0 [ 161.332519][ T7308] ? __pfx_swap_entry_swapped+0x10/0x10 [ 161.332554][ T7308] folio_alloc_mpol_noprof+0x36/0x340 [ 161.332599][ T7308] swap_cache_alloc_folio+0x1a8/0x300 [ 161.332643][ T7308] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 161.332684][ T7308] ? __pfx_get_swap_device+0x10/0x10 [ 161.332713][ T7308] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 161.332759][ T7308] read_swap_cache_async+0xd9/0x480 [ 161.332804][ T7308] ? __pfx_read_swap_cache_async+0x10/0x10 [ 161.332846][ T7308] ? find_held_lock+0x2b/0x80 [ 161.332872][ T7308] ? find_held_lock+0x2b/0x80 [ 161.332898][ T7308] ? swapin_walk_pmd_entry+0x2d9/0x640 [ 161.332932][ T7308] ? swapin_walk_pmd_entry+0x2d9/0x640 [ 161.332973][ T7308] swapin_walk_pmd_entry+0x2fd/0x640 [ 161.333013][ T7308] ? __pfx_swapin_walk_pmd_entry+0x10/0x10 [ 161.333060][ T7308] ? __pfx_swapin_walk_pmd_entry+0x10/0x10 [ 161.333096][ T7308] walk_pgd_range+0xc04/0x1eb0 [ 161.333169][ T7308] ? __pfx_walk_pgd_range+0x10/0x10 [ 161.333216][ T7308] ? update_cfs_rq_load_avg+0x51/0x550 [ 161.333267][ T7308] __walk_page_range+0x163/0x820 [ 161.333318][ T7308] ? set_next_entity+0x11e/0x9c0 [ 161.333368][ T7308] walk_page_range_vma_unsafe+0x209/0x8f0 [ 161.333421][ T7308] ? __pfx_walk_page_range_vma_unsafe+0x10/0x10 [ 161.333468][ T7308] ? kvm_sched_clock_read+0x11/0x20 [ 161.333510][ T7308] ? lock_acquire+0x1cf/0x380 [ 161.333547][ T7308] ? find_held_lock+0x2b/0x80 [ 161.333579][ T7308] walk_page_range_vma+0x63/0x90 [ 161.333629][ T7308] madvise_vma_behavior+0x1e14/0x3050 [ 161.333671][ T7308] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 161.333707][ T7308] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 161.333749][ T7308] ? mas_prev+0x9b/0xf0 [ 161.333784][ T7308] ? __pfx_mas_prev+0x10/0x10 [ 161.333833][ T7308] ? find_vma_prev+0xd8/0x150 [ 161.333867][ T7308] ? __pfx_find_vma_prev+0x10/0x10 [ 161.333899][ T7308] ? __pfx___schedule+0x10/0x10 [ 161.333953][ T7308] madvise_walk_vmas+0x2fe/0xa90 [ 161.333995][ T7308] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 161.334042][ T7308] madvise_do_behavior+0x1ea/0x510 [ 161.334075][ T7308] ? futex_private_hash_put+0x107/0x1c0 [ 161.334112][ T7308] ? __pfx_madvise_do_behavior+0x10/0x10 [ 161.334147][ T7308] ? down_read+0x13b/0x460 [ 161.334202][ T7308] do_madvise+0x195/0x240 [ 161.334237][ T7308] ? __pfx_do_madvise+0x10/0x10 [ 161.334281][ T7308] ? do_futex+0x192/0x350 [ 161.334327][ T7308] ? __fget_files+0x21f/0x3d0 [ 161.334383][ T7308] __x64_sys_madvise+0xa9/0x110 [ 161.334418][ T7308] ? lockdep_hardirqs_on+0x78/0x100 [ 161.334454][ T7308] do_syscall_64+0x106/0xf80 [ 161.334488][ T7308] ? clear_bhb_loop+0x40/0x90 [ 161.334524][ T7308] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.334555][ T7308] RIP: 0033:0x7f793879c799 [ 161.334580][ T7308] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 161.334608][ T7308] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 161.334637][ T7308] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 161.334654][ T7308] RDX: 0000000100000003 RSI: 0000000001010001 RDI: 0000000000000000 [ 161.334671][ T7308] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 161.334687][ T7308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 161.334702][ T7308] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 161.334743][ T7308] [ 161.389005][ T7314] netlink: 28 bytes leftover after parsing attributes in process `syz.2.296'. [ 162.138020][ T7327] program syz.3.301 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 162.145906][ T7327] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 163.682695][ T7359] netlink: 'syz.2.309': attribute type 11 has an invalid length. [ 165.698817][ T7410] FAULT_INJECTION: forcing a failure. [ 165.698817][ T7410] name failslab, interval 1, probability 0, space 0, times 0 [ 165.713861][ T7410] CPU: 0 UID: 0 PID: 7410 Comm: syz.2.321 Tainted: G L syzkaller #0 PREEMPT(full) [ 165.713909][ T7410] Tainted: [L]=SOFTLOCKUP [ 165.713920][ T7410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 165.713937][ T7410] Call Trace: [ 165.713947][ T7410] [ 165.713956][ T7410] dump_stack_lvl+0x100/0x190 [ 165.714004][ T7410] should_fail_ex.cold+0x5/0xa [ 165.714038][ T7410] should_failslab+0xc2/0x120 [ 165.714070][ T7410] __kvmalloc_node_noprof+0xfa/0xa00 [ 165.714114][ T7410] ? proc_sys_call_handler+0x2c7/0x5a0 [ 165.714169][ T7410] proc_sys_call_handler+0x2c7/0x5a0 [ 165.714219][ T7410] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 165.714256][ T7410] vfs_write+0x6ac/0x1070 [ 165.714285][ T7410] ? __pfx_proc_sys_write+0x10/0x10 [ 165.714316][ T7410] ? __pfx_vfs_write+0x10/0x10 [ 165.714360][ T7410] ksys_write+0x12a/0x250 [ 165.714376][ T7410] ? __pfx_ksys_write+0x10/0x10 [ 165.714400][ T7410] do_syscall_64+0x106/0xf80 [ 165.714421][ T7410] ? clear_bhb_loop+0x40/0x90 [ 165.714444][ T7410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.714462][ T7410] RIP: 0033:0x7f793879c799 [ 165.714486][ T7410] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 165.714510][ T7410] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 165.714538][ T7410] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 165.714557][ T7410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 165.714651][ T7410] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 165.714669][ T7410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.714686][ T7410] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 165.714712][ T7410] [ 166.007375][ T7413] netlink: 28 bytes leftover after parsing attributes in process `syz.2.322'. [ 166.018324][ T7413] veth1_vlan: entered allmulticast mode [ 167.147268][ T7438] zram: Added device: zram1 [ 167.203141][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.218960][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.254123][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.277707][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.294497][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.336225][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.366768][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.381131][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.408635][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.426795][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.446452][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.481147][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.510799][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.531186][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.579996][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.625000][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.639287][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.650405][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.685154][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.705177][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.735189][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.750169][ T7461] netlink: 28 bytes leftover after parsing attributes in process `syz.0.334'. [ 167.760173][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.767590][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.775434][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.783390][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.788857][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.846493][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 167.860336][ T7444] sd 0:0:1:0: PR command failed: 1026 [ 167.871441][ T7444] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 167.926819][ T7444] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 169.006364][ T7477] futex_wake_op: syz.0.336 tries to shift op by -2048; fix this program [ 169.690320][ T7488] no more MTRRs available [ 169.710337][ T7479] bond0: option slaves: interface -Âô does not exist! [ 170.026814][ T7498] netlink: 'syz.2.342': attribute type 27 has an invalid length. [ 170.041318][ T7497] netlink: 'syz.2.342': attribute type 27 has an invalid length. [ 170.050597][ T7497] netlink: 146 bytes leftover after parsing attributes in process `syz.2.342'. [ 170.060452][ T7498] netlink: 146 bytes leftover after parsing attributes in process `syz.2.342'. [ 170.074597][ T7501] netlink: 'syz.1.341': attribute type 4 has an invalid length. [ 170.094343][ T7501] netlink: 314 bytes leftover after parsing attributes in process `syz.1.341'. [ 172.530225][ T7541] FAULT_INJECTION: forcing a failure. [ 172.530225][ T7541] name failslab, interval 1, probability 0, space 0, times 0 [ 172.625887][ T7541] CPU: 0 UID: 0 PID: 7541 Comm: syz.0.352 Tainted: G L syzkaller #0 PREEMPT(full) [ 172.625935][ T7541] Tainted: [L]=SOFTLOCKUP [ 172.625944][ T7541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 172.625970][ T7541] Call Trace: [ 172.625981][ T7541] [ 172.625992][ T7541] dump_stack_lvl+0x100/0x190 [ 172.626041][ T7541] should_fail_ex.cold+0x5/0xa [ 172.626076][ T7541] should_failslab+0xc2/0x120 [ 172.626108][ T7541] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 172.626153][ T7541] ? __alloc_skb+0x140/0x710 [ 172.626194][ T7541] __alloc_skb+0x140/0x710 [ 172.626225][ T7541] ? __alloc_skb+0x5b7/0x710 [ 172.626257][ T7541] ? __pfx___alloc_skb+0x10/0x10 [ 172.626288][ T7541] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 172.626343][ T7541] sock_wmalloc+0xd4/0x120 [ 172.626377][ T7541] l2tp_ip_sendmsg+0x1b6/0x1920 [ 172.626407][ T7541] ? __import_iovec+0x1d2/0x640 [ 172.626442][ T7541] ? __pfx_l2tp_ip_sendmsg+0x10/0x10 [ 172.626476][ T7541] inet_sendmsg+0x11c/0x140 [ 172.626522][ T7541] ____sys_sendmsg+0x98d/0xb70 [ 172.626564][ T7541] ? __pfx_inet_sendmsg+0x10/0x10 [ 172.626612][ T7541] ? __pfx_____sys_sendmsg+0x10/0x10 [ 172.626661][ T7541] ? rcu_is_watching+0x12/0xc0 [ 172.626705][ T7541] ? ___sys_sendmsg+0x19d/0x1e0 [ 172.626747][ T7541] ? kfree+0x2ec/0x6b0 [ 172.626792][ T7541] ___sys_sendmsg+0x190/0x1e0 [ 172.626842][ T7541] ? __pfx____sys_sendmsg+0x10/0x10 [ 172.626926][ T7541] ? __pfx___might_resched+0x10/0x10 [ 172.626987][ T7541] __sys_sendmmsg+0x205/0x430 [ 172.627030][ T7541] ? __pfx___sys_sendmmsg+0x10/0x10 [ 172.627080][ T7541] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 172.627135][ T7541] ? fput+0x79/0x100 [ 172.627170][ T7541] ? ksys_write+0x1ac/0x250 [ 172.627195][ T7541] ? __pfx_ksys_write+0x10/0x10 [ 172.627230][ T7541] __x64_sys_sendmmsg+0x9c/0x100 [ 172.627265][ T7541] ? lockdep_hardirqs_on+0x78/0x100 [ 172.627301][ T7541] do_syscall_64+0x106/0xf80 [ 172.627335][ T7541] ? clear_bhb_loop+0x40/0x90 [ 172.627372][ T7541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.627402][ T7541] RIP: 0033:0x7f128579c799 [ 172.627426][ T7541] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 172.627453][ T7541] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 172.627481][ T7541] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 172.627499][ T7541] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 172.627516][ T7541] RBP: 00007f128672f090 R08: 0000000000000000 R09: 0000000000000000 [ 172.627534][ T7541] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002 [ 172.627550][ T7541] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 172.627591][ T7541] [ 173.294358][ T7552] netlink: 326 bytes leftover after parsing attributes in process `syz.3.354'. [ 174.717150][ T7564] netlink: 28 bytes leftover after parsing attributes in process `syz.1.359'. [ 174.743426][ T7564] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.822049][ T7564] bridge_slave_1 (unregistering): left allmulticast mode [ 174.856402][ T7564] bridge_slave_1 (unregistering): left promiscuous mode [ 174.901043][ T7564] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.661846][ T7616] no more MTRRs available [ 181.014255][ T29] audit: type=1800 audit(1773339275.886:5): pid=7665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.381" name="lu_gp_id" dev="configfs" ino=18061 res=0 errno=0 [ 182.320086][ T7686] FAULT_INJECTION: forcing a failure. [ 182.320086][ T7686] name failslab, interval 1, probability 0, space 0, times 0 [ 182.378880][ T7686] CPU: 0 UID: 0 PID: 7686 Comm: syz.3.387 Tainted: G L syzkaller #0 PREEMPT(full) [ 182.378928][ T7686] Tainted: [L]=SOFTLOCKUP [ 182.378938][ T7686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 182.378953][ T7686] Call Trace: [ 182.378963][ T7686] [ 182.378974][ T7686] dump_stack_lvl+0x100/0x190 [ 182.379023][ T7686] should_fail_ex.cold+0x5/0xa [ 182.379051][ T7686] ? group_cpus_evenly+0xec/0x660 [ 182.379074][ T7686] should_failslab+0xc2/0x120 [ 182.379093][ T7686] __kmalloc_noprof+0xe0/0x850 [ 182.379124][ T7686] group_cpus_evenly+0xec/0x660 [ 182.379151][ T7686] ? __pfx_group_cpus_evenly+0x10/0x10 [ 182.379184][ T7686] blk_mq_map_queues+0x9d/0x430 [ 182.379205][ T7686] ? __pfx_blk_mq_map_queues+0x10/0x10 [ 182.379224][ T7686] ? rcu_is_watching+0x12/0xc0 [ 182.379251][ T7686] ? trace_kmalloc+0x101/0x130 [ 182.379269][ T7686] ? __kasan_kmalloc+0xaa/0xb0 [ 182.379300][ T7686] blk_mq_update_queue_map+0x305/0x3a0 [ 182.379331][ T7686] blk_mq_alloc_tag_set+0x660/0x1330 [ 182.379355][ T7686] ? idr_alloc+0x77/0x130 [ 182.379392][ T7686] loop_add+0x3b7/0xb60 [ 182.379413][ T7686] ? __pfx_loop_add+0x10/0x10 [ 182.379447][ T7686] ? find_held_lock+0x2b/0x80 [ 182.379463][ T7686] ? __fget_files+0x215/0x3d0 [ 182.379483][ T7686] loop_control_ioctl+0xae/0x620 [ 182.379505][ T7686] ? __pfx_loop_control_ioctl+0x10/0x10 [ 182.379531][ T7686] ? __pfx_loop_control_ioctl+0x10/0x10 [ 182.379554][ T7686] __x64_sys_ioctl+0x18e/0x210 [ 182.379582][ T7686] do_syscall_64+0x106/0xf80 [ 182.379602][ T7686] ? clear_bhb_loop+0x40/0x90 [ 182.379625][ T7686] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.379643][ T7686] RIP: 0033:0x7f8da0d9c799 [ 182.379659][ T7686] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 182.379675][ T7686] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 182.379693][ T7686] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 182.379704][ T7686] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 182.379715][ T7686] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 182.379725][ T7686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 182.379735][ T7686] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 182.379757][ T7686] [ 183.141238][ T7694] netlink: 146 bytes leftover after parsing attributes in process `syz.1.390'. [ 183.201429][ T7692] no more MTRRs available [ 184.423160][ T7737] FAULT_INJECTION: forcing a failure. [ 184.423160][ T7737] name failslab, interval 1, probability 0, space 0, times 0 [ 184.435989][ T7737] CPU: 1 UID: 0 PID: 7737 Comm: syz.0.397 Tainted: G L syzkaller #0 PREEMPT(full) [ 184.436040][ T7737] Tainted: [L]=SOFTLOCKUP [ 184.436049][ T7737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 184.436062][ T7737] Call Trace: [ 184.436072][ T7737] [ 184.436083][ T7737] dump_stack_lvl+0x100/0x190 [ 184.436124][ T7737] should_fail_ex.cold+0x5/0xa [ 184.436151][ T7737] should_failslab+0xc2/0x120 [ 184.436177][ T7737] __kmalloc_node_noprof+0xe6/0x850 [ 184.436212][ T7737] ? blk_mq_alloc_tag_set+0x477/0x1330 [ 184.436243][ T7737] ? __raw_spin_lock_init+0x3a/0x110 [ 184.436283][ T7737] blk_mq_alloc_tag_set+0x477/0x1330 [ 184.436315][ T7737] ? idr_alloc+0xdd/0x130 [ 184.436341][ T7737] ? __pfx_idr_alloc+0x10/0x10 [ 184.436385][ T7737] loop_add+0x3b7/0xb60 [ 184.436413][ T7737] ? __pfx_loop_add+0x10/0x10 [ 184.436459][ T7737] ? find_held_lock+0x2b/0x80 [ 184.436480][ T7737] ? __fget_files+0x215/0x3d0 [ 184.436505][ T7737] loop_control_ioctl+0xae/0x620 [ 184.436536][ T7737] ? __pfx_loop_control_ioctl+0x10/0x10 [ 184.436569][ T7737] ? __pfx_loop_control_ioctl+0x10/0x10 [ 184.436599][ T7737] __x64_sys_ioctl+0x18e/0x210 [ 184.436635][ T7737] do_syscall_64+0x106/0xf80 [ 184.436663][ T7737] ? clear_bhb_loop+0x40/0x90 [ 184.436693][ T7737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.436718][ T7737] RIP: 0033:0x7f128579c799 [ 184.436738][ T7737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 184.436759][ T7737] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 184.436782][ T7737] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 184.436797][ T7737] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 184.436811][ T7737] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 184.436825][ T7737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 184.436838][ T7737] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 184.436868][ T7737] [ 184.839036][ T51] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 185.170149][ T7751] FAULT_INJECTION: forcing a failure. [ 185.170149][ T7751] name failslab, interval 1, probability 0, space 0, times 0 [ 185.232805][ T7757] random: crng reseeded on system resumption [ 185.261079][ T7751] CPU: 0 UID: 0 PID: 7751 Comm: syz.2.400 Tainted: G L syzkaller #0 PREEMPT(full) [ 185.261126][ T7751] Tainted: [L]=SOFTLOCKUP [ 185.261136][ T7751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 185.261152][ T7751] Call Trace: [ 185.261162][ T7751] [ 185.261173][ T7751] dump_stack_lvl+0x100/0x190 [ 185.261222][ T7751] should_fail_ex.cold+0x5/0xa [ 185.261257][ T7751] should_failslab+0xc2/0x120 [ 185.261288][ T7751] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 185.261330][ T7751] ? do_getname+0x35/0x390 [ 185.261373][ T7751] do_getname+0x35/0x390 [ 185.261413][ T7751] do_sys_openat2+0xc5/0x1e0 [ 185.261452][ T7751] ? __pfx_do_sys_openat2+0x10/0x10 [ 185.261504][ T7751] __x64_sys_openat+0x12d/0x210 [ 185.261542][ T7751] ? __pfx___x64_sys_openat+0x10/0x10 [ 185.261595][ T7751] do_syscall_64+0x106/0xf80 [ 185.261629][ T7751] ? clear_bhb_loop+0x40/0x90 [ 185.261666][ T7751] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.261695][ T7751] RIP: 0033:0x7f793879c799 [ 185.261720][ T7751] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 185.261746][ T7751] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 185.261775][ T7751] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 185.261795][ T7751] RDX: 0000000000048041 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 185.261813][ T7751] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 185.261829][ T7751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.261845][ T7751] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 185.261885][ T7751] [ 186.981250][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 189.034488][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 189.227528][ T7836] netlink: 'syz.1.419': attribute type 4 has an invalid length. [ 189.279098][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.419'. [ 190.108216][ T7865] FAULT_INJECTION: forcing a failure. [ 190.108216][ T7865] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 190.219973][ T7865] CPU: 1 UID: 0 PID: 7865 Comm: syz.2.427 Tainted: G L syzkaller #0 PREEMPT(full) [ 190.220018][ T7865] Tainted: [L]=SOFTLOCKUP [ 190.220026][ T7865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 190.220042][ T7865] Call Trace: [ 190.220050][ T7865] [ 190.220060][ T7865] dump_stack_lvl+0x100/0x190 [ 190.220105][ T7865] should_fail_ex.cold+0x5/0xa [ 190.220136][ T7865] _copy_from_user+0x2e/0xd0 [ 190.220163][ T7865] get_user_ifreq+0x77/0x1c0 [ 190.220200][ T7865] sock_do_ioctl+0x16e/0x280 [ 190.220236][ T7865] ? __pfx_sock_do_ioctl+0x10/0x10 [ 190.220281][ T7865] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 190.220325][ T7865] sock_ioctl+0x599/0x6b0 [ 190.220366][ T7865] ? __pfx_sock_ioctl+0x10/0x10 [ 190.220402][ T7865] ? hook_file_ioctl_common+0x146/0x410 [ 190.220452][ T7865] ? __fget_files+0x21f/0x3d0 [ 190.220481][ T7865] ? __pfx_sock_ioctl+0x10/0x10 [ 190.220522][ T7865] __x64_sys_ioctl+0x18e/0x210 [ 190.220569][ T7865] do_syscall_64+0x106/0xf80 [ 190.220599][ T7865] ? clear_bhb_loop+0x40/0x90 [ 190.220632][ T7865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.220659][ T7865] RIP: 0033:0x7f793879c799 [ 190.220681][ T7865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 190.220704][ T7865] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 190.220730][ T7865] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 190.220747][ T7865] RDX: 0000200000000100 RSI: 0000000000008933 RDI: 0000000000000004 [ 190.220762][ T7865] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 190.220777][ T7865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.220801][ T7865] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 190.220838][ T7865] [ 193.082539][ T7906] [ 193.211866][ T7911] no more MTRRs available [ 193.449184][ T7915] netlink: 20 bytes leftover after parsing attributes in process `syz.2.439'. [ 194.716307][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.723545][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.029264][ T7956] netlink: 354 bytes leftover after parsing attributes in process `syz.3.449'. [ 195.262355][ T7968] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 195.279354][ T7968] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 195.304557][ T7968] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 195.350241][ T7968] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 196.752851][ T7994] QAT: Stopping all acceleration devices. [ 196.947870][ T8000] ptp ptp0: new virtual clock ptp1 [ 196.961390][ T8000] ptp ptp0: new virtual clock ptp2 [ 197.228917][ T8000] ptp ptp0: new virtual clock ptp3 [ 197.234321][ T8000] ptp ptp0: guarantee physical clock free running [ 197.290394][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 197.351364][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 197.351379][ T5143] Bluetooth: hci3: command 0x0c1a tx timeout [ 197.363684][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 198.862363][ T8037] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 200.345949][ T8053] netlink: 12 bytes leftover after parsing attributes in process `syz.3.473'. [ 201.610347][ T8102] netlink: 326 bytes leftover after parsing attributes in process `syz.2.484'. [ 202.028258][ T8111] FAULT_INJECTION: forcing a failure. [ 202.028258][ T8111] name failslab, interval 1, probability 0, space 0, times 0 [ 202.042969][ T8111] CPU: 0 UID: 0 PID: 8111 Comm: syz.2.486 Tainted: G L syzkaller #0 PREEMPT(full) [ 202.043007][ T8111] Tainted: [L]=SOFTLOCKUP [ 202.043016][ T8111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 202.043032][ T8111] Call Trace: [ 202.043040][ T8111] [ 202.043051][ T8111] dump_stack_lvl+0x100/0x190 [ 202.043097][ T8111] should_fail_ex.cold+0x5/0xa [ 202.043130][ T8111] should_failslab+0xc2/0x120 [ 202.043160][ T8111] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 202.043219][ T8111] ? create_new_namespaces+0x30/0xac0 [ 202.043249][ T8111] ? rcu_is_watching+0x12/0xc0 [ 202.043290][ T8111] create_new_namespaces+0x30/0xac0 [ 202.043315][ T8111] ? bpf_lsm_capable+0x9/0x10 [ 202.043344][ T8111] ? security_capable+0x80/0x260 [ 202.043389][ T8111] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 202.043421][ T8111] ksys_unshare+0x473/0xad0 [ 202.043458][ T8111] ? __pfx_ksys_unshare+0x10/0x10 [ 202.043501][ T8111] __x64_sys_unshare+0x31/0x40 [ 202.043529][ T8111] do_syscall_64+0x106/0xf80 [ 202.043558][ T8111] ? clear_bhb_loop+0x40/0x90 [ 202.043592][ T8111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.043619][ T8111] RIP: 0033:0x7f793879c799 [ 202.043642][ T8111] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 202.043669][ T8111] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 202.043696][ T8111] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 202.043713][ T8111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 202.043728][ T8111] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 202.043745][ T8111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.043759][ T8111] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 202.043795][ T8111] [ 202.287213][ T8111] FAULT_INJECTION: forcing a failure. [ 202.287213][ T8111] name failslab, interval 1, probability 0, space 0, times 0 [ 202.304868][ T8111] CPU: 0 UID: 0 PID: 8111 Comm: syz.2.486 Tainted: G L syzkaller #0 PREEMPT(full) [ 202.304915][ T8111] Tainted: [L]=SOFTLOCKUP [ 202.304924][ T8111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 202.304941][ T8111] Call Trace: [ 202.304950][ T8111] [ 202.304961][ T8111] dump_stack_lvl+0x100/0x190 [ 202.305008][ T8111] should_fail_ex.cold+0x5/0xa [ 202.305042][ T8111] ? tomoyo_open_control+0x618/0xa20 [ 202.305076][ T8111] should_failslab+0xc2/0x120 [ 202.305108][ T8111] __kmalloc_noprof+0xe0/0x850 [ 202.305151][ T8111] ? lockdep_init_map_type+0x5c/0x250 [ 202.305208][ T8111] tomoyo_open_control+0x618/0xa20 [ 202.305252][ T8111] do_dentry_open+0x6d8/0x1660 [ 202.305281][ T8111] ? __pfx_tomoyo_open+0x10/0x10 [ 202.305325][ T8111] vfs_open+0x82/0x3f0 [ 202.305366][ T8111] path_openat+0x208c/0x31a0 [ 202.305409][ T8111] ? __pfx_path_openat+0x10/0x10 [ 202.305456][ T8111] do_file_open+0x20e/0x430 [ 202.305490][ T8111] ? __pfx_do_file_open+0x10/0x10 [ 202.305549][ T8111] ? alloc_fd+0x476/0x790 [ 202.305584][ T8111] ? do_getname+0x191/0x390 [ 202.305625][ T8111] do_sys_openat2+0x10d/0x1e0 [ 202.305664][ T8111] ? __pfx_do_sys_openat2+0x10/0x10 [ 202.305704][ T8111] ? __fget_files+0x21f/0x3d0 [ 202.305742][ T8111] __x64_sys_openat+0x12d/0x210 [ 202.305781][ T8111] ? __pfx___x64_sys_openat+0x10/0x10 [ 202.305837][ T8111] do_syscall_64+0x106/0xf80 [ 202.305873][ T8111] ? clear_bhb_loop+0x40/0x90 [ 202.305910][ T8111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.305940][ T8111] RIP: 0033:0x7f793879c799 [ 202.305965][ T8111] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 202.305991][ T8111] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 202.306021][ T8111] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 202.306039][ T8111] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 202.306057][ T8111] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 202.306072][ T8111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.306088][ T8111] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 202.306127][ T8111] [ 204.388577][ T8147] FAULT_INJECTION: forcing a failure. [ 204.388577][ T8147] name failslab, interval 1, probability 0, space 0, times 0 [ 204.442453][ T8147] CPU: 1 UID: 0 PID: 8147 Comm: syz.2.494 Tainted: G L syzkaller #0 PREEMPT(full) [ 204.442499][ T8147] Tainted: [L]=SOFTLOCKUP [ 204.442508][ T8147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 204.442523][ T8147] Call Trace: [ 204.442533][ T8147] [ 204.442544][ T8147] dump_stack_lvl+0x100/0x190 [ 204.442591][ T8147] should_fail_ex.cold+0x5/0xa [ 204.442625][ T8147] should_failslab+0xc2/0x120 [ 204.442675][ T8147] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 204.442715][ T8147] ? __d_alloc+0x34/0xa80 [ 204.442745][ T8147] ? lockdep_init_map_type+0x5c/0x250 [ 204.442787][ T8147] __d_alloc+0x34/0xa80 [ 204.442821][ T8147] d_alloc_pseudo+0x1c/0xc0 [ 204.442859][ T8147] alloc_file_pseudo+0xcf/0x230 [ 204.442896][ T8147] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 204.442936][ T8147] ? alloc_fd+0x476/0x790 [ 204.442970][ T8147] sock_alloc_file+0x50/0x210 [ 204.443009][ T8147] __sys_socket+0x1c0/0x260 [ 204.443036][ T8147] ? __pfx___sys_socket+0x10/0x10 [ 204.443073][ T8147] __x64_sys_socket+0x72/0xb0 [ 204.443094][ T8147] ? lockdep_hardirqs_on+0x78/0x100 [ 204.443128][ T8147] do_syscall_64+0x106/0xf80 [ 204.443160][ T8147] ? clear_bhb_loop+0x40/0x90 [ 204.443196][ T8147] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.443224][ T8147] RIP: 0033:0x7f793879c799 [ 204.443247][ T8147] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 204.443272][ T8147] RSP: 002b:00007f7939631028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 204.443298][ T8147] RAX: ffffffffffffffda RBX: 00007f7938a16090 RCX: 00007f793879c799 [ 204.443316][ T8147] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 204.443331][ T8147] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 204.443348][ T8147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 204.443364][ T8147] R13: 00007f7938a16128 R14: 00007f7938a16090 R15: 00007ffdef435078 [ 204.443401][ T8147] [ 207.092800][ T8188] netlink: 206 bytes leftover after parsing attributes in process `syz.0.503'. [ 207.273811][ T8190] bdi 43:192: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead. [ 207.695165][ T29] audit: type=1800 audit(1773339302.566:6): pid=8199 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.507" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 207.706074][ T8199] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 207.731213][ T8199] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 207.754128][ T8199] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 207.891321][ T8199] syz.3.507 (8199) used greatest stack depth: 19296 bytes left [ 209.154576][ T8222] [U] ^@ [ 210.122278][ T8253] netlink: 16 bytes leftover after parsing attributes in process `syz.3.520'. [ 210.333890][ T8251] netlink: 504 bytes leftover after parsing attributes in process `syz.1.519'. [ 210.363791][ T8251] netlink: 350 bytes leftover after parsing attributes in process `syz.1.519'. [ 213.943623][ T8304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.531'. [ 215.723391][ T8333] FAULT_INJECTION: forcing a failure. [ 215.723391][ T8333] name failslab, interval 1, probability 0, space 0, times 0 [ 215.769471][ T8333] CPU: 1 UID: 0 PID: 8333 Comm: syz.0.539 Tainted: G L syzkaller #0 PREEMPT(full) [ 215.769522][ T8333] Tainted: [L]=SOFTLOCKUP [ 215.769532][ T8333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 215.769549][ T8333] Call Trace: [ 215.769558][ T8333] [ 215.769569][ T8333] dump_stack_lvl+0x100/0x190 [ 215.769620][ T8333] should_fail_ex.cold+0x5/0xa [ 215.769657][ T8333] should_failslab+0xc2/0x120 [ 215.769690][ T8333] __kmalloc_cache_noprof+0x7a/0x6f0 [ 215.769729][ T8333] ? loop_add+0xb9/0xb60 [ 215.769768][ T8333] loop_add+0xb9/0xb60 [ 215.769803][ T8333] ? __pfx_loop_add+0x10/0x10 [ 215.769863][ T8333] ? find_held_lock+0x2b/0x80 [ 215.769892][ T8333] ? __fget_files+0x215/0x3d0 [ 215.769925][ T8333] loop_control_ioctl+0xae/0x620 [ 215.769963][ T8333] ? __pfx_loop_control_ioctl+0x10/0x10 [ 215.770006][ T8333] ? __pfx_loop_control_ioctl+0x10/0x10 [ 215.770054][ T8333] __x64_sys_ioctl+0x18e/0x210 [ 215.770101][ T8333] do_syscall_64+0x106/0xf80 [ 215.770137][ T8333] ? clear_bhb_loop+0x40/0x90 [ 215.770175][ T8333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.770208][ T8333] RIP: 0033:0x7f128579c799 [ 215.770235][ T8333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 215.770262][ T8333] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 215.770293][ T8333] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 215.770312][ T8333] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 215.770331][ T8333] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 215.770349][ T8333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 215.770366][ T8333] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 215.770406][ T8333] [ 216.271129][ T8335] FAULT_INJECTION: forcing a failure. [ 216.271129][ T8335] name failslab, interval 1, probability 0, space 0, times 0 [ 216.290985][ T8335] CPU: 0 UID: 0 PID: 8335 Comm: syz.3.540 Tainted: G L syzkaller #0 PREEMPT(full) [ 216.291037][ T8335] Tainted: [L]=SOFTLOCKUP [ 216.291048][ T8335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 216.291066][ T8335] Call Trace: [ 216.291076][ T8335] [ 216.291088][ T8335] dump_stack_lvl+0x100/0x190 [ 216.291138][ T8335] should_fail_ex.cold+0x5/0xa [ 216.291174][ T8335] should_failslab+0xc2/0x120 [ 216.291206][ T8335] __kmalloc_cache_noprof+0x7a/0x6f0 [ 216.291244][ T8335] ? loop_add+0xb9/0xb60 [ 216.291282][ T8335] loop_add+0xb9/0xb60 [ 216.291316][ T8335] ? __pfx_loop_add+0x10/0x10 [ 216.291378][ T8335] ? find_held_lock+0x2b/0x80 [ 216.291406][ T8335] ? __fget_files+0x215/0x3d0 [ 216.291440][ T8335] loop_control_ioctl+0xae/0x620 [ 216.291479][ T8335] ? __pfx_loop_control_ioctl+0x10/0x10 [ 216.291523][ T8335] ? __pfx_loop_control_ioctl+0x10/0x10 [ 216.291561][ T8335] __x64_sys_ioctl+0x18e/0x210 [ 216.291608][ T8335] do_syscall_64+0x106/0xf80 [ 216.291654][ T8335] ? clear_bhb_loop+0x40/0x90 [ 216.291693][ T8335] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.291725][ T8335] RIP: 0033:0x7f8da0d9c799 [ 216.291752][ T8335] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 216.291781][ T8335] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 216.291812][ T8335] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 216.291832][ T8335] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 216.291851][ T8335] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 216.291870][ T8335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.291888][ T8335] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 216.291930][ T8335] [ 217.655136][ T5836] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 217.663708][ T5836] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 219.678199][ T8381] netlink: 330 bytes leftover after parsing attributes in process `syz.0.549'. [ 219.708127][ T8381] –õ\­: renamed from lo (while UP) [ 220.560558][ T8408] FAULT_INJECTION: forcing a failure. [ 220.560558][ T8408] name failslab, interval 1, probability 0, space 0, times 0 [ 220.560607][ T8408] CPU: 1 UID: 0 PID: 8408 Comm: syz.2.556 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.560648][ T8408] Tainted: [L]=SOFTLOCKUP [ 220.560658][ T8408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 220.560675][ T8408] Call Trace: [ 220.560685][ T8408] [ 220.560696][ T8408] dump_stack_lvl+0x100/0x190 [ 220.560745][ T8408] should_fail_ex.cold+0x5/0xa [ 220.560782][ T8408] should_failslab+0xc2/0x120 [ 220.560814][ T8408] __kmalloc_node_noprof+0xe6/0x850 [ 220.560859][ T8408] ? blk_mq_alloc_tag_set+0x57a/0x1330 [ 220.560901][ T8408] ? rt_mutex_debug_task_free+0x140/0x1e0 [ 220.560953][ T8408] blk_mq_alloc_tag_set+0x57a/0x1330 [ 220.560991][ T8408] ? idr_alloc+0x77/0x130 [ 220.561040][ T8408] loop_add+0x3b7/0xb60 [ 220.561075][ T8408] ? __pfx_loop_add+0x10/0x10 [ 220.561135][ T8408] ? find_held_lock+0x2b/0x80 [ 220.561171][ T8408] ? __fget_files+0x215/0x3d0 [ 220.561203][ T8408] loop_control_ioctl+0xae/0x620 [ 220.561242][ T8408] ? __pfx_loop_control_ioctl+0x10/0x10 [ 220.561285][ T8408] ? __pfx_loop_control_ioctl+0x10/0x10 [ 220.561324][ T8408] __x64_sys_ioctl+0x18e/0x210 [ 220.561367][ T8408] do_syscall_64+0x106/0xf80 [ 220.561401][ T8408] ? clear_bhb_loop+0x40/0x90 [ 220.561438][ T8408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.561470][ T8408] RIP: 0033:0x7f793879c799 [ 220.561495][ T8408] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.561522][ T8408] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.561553][ T8408] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 220.561573][ T8408] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 220.561592][ T8408] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 220.561610][ T8408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.561627][ T8408] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 220.561666][ T8408] [ 220.842406][ T8414] FAULT_INJECTION: forcing a failure. [ 220.842406][ T8414] name failslab, interval 1, probability 0, space 0, times 0 [ 220.842455][ T8414] CPU: 1 UID: 0 PID: 8414 Comm: syz.0.557 Tainted: G L syzkaller #0 PREEMPT(full) [ 220.842492][ T8414] Tainted: [L]=SOFTLOCKUP [ 220.842499][ T8414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 220.842509][ T8414] Call Trace: [ 220.842516][ T8414] [ 220.842523][ T8414] dump_stack_lvl+0x100/0x190 [ 220.842555][ T8414] should_fail_ex.cold+0x5/0xa [ 220.842577][ T8414] should_failslab+0xc2/0x120 [ 220.842596][ T8414] __kmalloc_cache_noprof+0x7a/0x6f0 [ 220.842620][ T8414] ? loop_add+0xb9/0xb60 [ 220.842643][ T8414] loop_add+0xb9/0xb60 [ 220.842663][ T8414] ? __pfx_loop_add+0x10/0x10 [ 220.842698][ T8414] ? find_held_lock+0x2b/0x80 [ 220.842714][ T8414] ? __fget_files+0x215/0x3d0 [ 220.842733][ T8414] loop_control_ioctl+0xae/0x620 [ 220.842755][ T8414] ? __pfx_loop_control_ioctl+0x10/0x10 [ 220.842780][ T8414] ? __pfx_loop_control_ioctl+0x10/0x10 [ 220.842802][ T8414] __x64_sys_ioctl+0x18e/0x210 [ 220.842829][ T8414] do_syscall_64+0x106/0xf80 [ 220.842851][ T8414] ? clear_bhb_loop+0x40/0x90 [ 220.842873][ T8414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.842891][ T8414] RIP: 0033:0x7f128579c799 [ 220.842906][ T8414] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.842922][ T8414] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.842940][ T8414] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 220.842951][ T8414] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 220.842961][ T8414] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 220.842972][ T8414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.842982][ T8414] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 220.843007][ T8414] [ 223.963150][ T8451] FAULT_INJECTION: forcing a failure. [ 223.963150][ T8451] name failslab, interval 1, probability 0, space 0, times 0 [ 224.001257][ T8451] CPU: 0 UID: 0 PID: 8451 Comm: syz.0.566 Tainted: G L syzkaller #0 PREEMPT(full) [ 224.001288][ T8451] Tainted: [L]=SOFTLOCKUP [ 224.001296][ T8451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 224.001306][ T8451] Call Trace: [ 224.001313][ T8451] [ 224.001321][ T8451] dump_stack_lvl+0x100/0x190 [ 224.001353][ T8451] should_fail_ex.cold+0x5/0xa [ 224.001375][ T8451] should_failslab+0xc2/0x120 [ 224.001394][ T8451] __kmalloc_node_noprof+0xe6/0x850 [ 224.001421][ T8451] ? blk_mq_alloc_tag_set+0x477/0x1330 [ 224.001446][ T8451] ? __raw_spin_lock_init+0x3a/0x110 [ 224.001479][ T8451] blk_mq_alloc_tag_set+0x477/0x1330 [ 224.001503][ T8451] ? idr_alloc+0xdd/0x130 [ 224.001524][ T8451] ? __pfx_idr_alloc+0x10/0x10 [ 224.001551][ T8451] loop_add+0x3b7/0xb60 [ 224.001572][ T8451] ? __pfx_loop_add+0x10/0x10 [ 224.001606][ T8451] ? find_held_lock+0x2b/0x80 [ 224.001622][ T8451] ? __fget_files+0x215/0x3d0 [ 224.001642][ T8451] loop_control_ioctl+0xae/0x620 [ 224.001664][ T8451] ? __pfx_loop_control_ioctl+0x10/0x10 [ 224.001690][ T8451] ? __pfx_loop_control_ioctl+0x10/0x10 [ 224.001713][ T8451] __x64_sys_ioctl+0x18e/0x210 [ 224.001740][ T8451] do_syscall_64+0x106/0xf80 [ 224.001762][ T8451] ? clear_bhb_loop+0x40/0x90 [ 224.001784][ T8451] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 224.001802][ T8451] RIP: 0033:0x7f128579c799 [ 224.001819][ T8451] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 224.001835][ T8451] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 224.001853][ T8451] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 224.001864][ T8451] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 224.001875][ T8451] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 224.001885][ T8451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 224.001895][ T8451] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 224.001917][ T8451] [ 227.660434][ T8476] FAULT_INJECTION: forcing a failure. [ 227.660434][ T8476] name failslab, interval 1, probability 0, space 0, times 0 [ 227.675633][ T8476] CPU: 1 UID: 0 PID: 8476 Comm: syz.2.572 Tainted: G L syzkaller #0 PREEMPT(full) [ 227.675682][ T8476] Tainted: [L]=SOFTLOCKUP [ 227.675692][ T8476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 227.675705][ T8476] Call Trace: [ 227.675712][ T8476] [ 227.675719][ T8476] dump_stack_lvl+0x100/0x190 [ 227.675753][ T8476] should_fail_ex.cold+0x5/0xa [ 227.675775][ T8476] should_failslab+0xc2/0x120 [ 227.675795][ T8476] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 227.675825][ T8476] ? sysctl_core_net_init+0x42/0x290 [ 227.675859][ T8476] kmemdup_noprof+0x29/0x60 [ 227.675888][ T8476] sysctl_core_net_init+0x42/0x290 [ 227.675921][ T8476] ? __pfx_sysctl_core_net_init+0x10/0x10 [ 227.675950][ T8476] ops_init+0x1e2/0x5f0 [ 227.675975][ T8476] setup_net+0x118/0x3a0 [ 227.675998][ T8476] ? __pfx_setup_net+0x10/0x10 [ 227.676020][ T8476] ? lockdep_init_map_type+0x5c/0x250 [ 227.676045][ T8476] ? mutex_init_lockep+0x110/0x150 [ 227.676073][ T8476] copy_net_ns+0x46f/0x7c0 [ 227.676100][ T8476] create_new_namespaces+0x3ea/0xac0 [ 227.676125][ T8476] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 227.676146][ T8476] ksys_unshare+0x473/0xad0 [ 227.676180][ T8476] ? __pfx_ksys_unshare+0x10/0x10 [ 227.676230][ T8476] __x64_sys_unshare+0x31/0x40 [ 227.676263][ T8476] do_syscall_64+0x106/0xf80 [ 227.676284][ T8476] ? clear_bhb_loop+0x40/0x90 [ 227.676307][ T8476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.676325][ T8476] RIP: 0033:0x7f793879c799 [ 227.676341][ T8476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.676357][ T8476] RSP: 002b:00007f7939610028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 227.676375][ T8476] RAX: ffffffffffffffda RBX: 00007f7938a16180 RCX: 00007f793879c799 [ 227.676386][ T8476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 227.676396][ T8476] RBP: 00007f7938832c99 R08: 0000000000000000 R09: 0000000000000000 [ 227.676407][ T8476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 227.676425][ T8476] R13: 00007f7938a16218 R14: 00007f7938a16180 R15: 00007ffdef435078 [ 227.676449][ T8476] [ 228.264622][ T8484] FAULT_INJECTION: forcing a failure. [ 228.264622][ T8484] name failslab, interval 1, probability 0, space 0, times 0 [ 228.379727][ T8484] CPU: 0 UID: 0 PID: 8484 Comm: syz.0.574 Tainted: G L syzkaller #0 PREEMPT(full) [ 228.379778][ T8484] Tainted: [L]=SOFTLOCKUP [ 228.379788][ T8484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 228.379805][ T8484] Call Trace: [ 228.379816][ T8484] [ 228.379827][ T8484] dump_stack_lvl+0x100/0x190 [ 228.379879][ T8484] should_fail_ex.cold+0x5/0xa [ 228.379927][ T8484] ? tomoyo_realpath_from_path+0xb6/0x690 [ 228.379963][ T8484] should_failslab+0xc2/0x120 [ 228.379995][ T8484] __kmalloc_noprof+0xe0/0x850 [ 228.380049][ T8484] tomoyo_realpath_from_path+0xb6/0x690 [ 228.380093][ T8484] tomoyo_check_open_permission+0x2af/0x3c0 [ 228.380145][ T8484] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 228.380233][ T8484] ? do_raw_spin_lock+0x128/0x260 [ 228.380281][ T8484] ? path_get+0x61/0x80 [ 228.380320][ T8484] tomoyo_file_open+0x6b/0x90 [ 228.380361][ T8484] security_file_open+0xb5/0x1e0 [ 228.380396][ T8484] do_dentry_open+0x5aa/0x1660 [ 228.380427][ T8484] ? security_inode_permission+0xbf/0x250 [ 228.380482][ T8484] vfs_open+0x82/0x3f0 [ 228.380531][ T8484] path_openat+0x208c/0x31a0 [ 228.380577][ T8484] ? __pfx_path_openat+0x10/0x10 [ 228.380624][ T8484] do_file_open+0x20e/0x430 [ 228.380658][ T8484] ? __pfx_do_file_open+0x10/0x10 [ 228.380719][ T8484] ? alloc_fd+0x476/0x790 [ 228.380754][ T8484] ? do_getname+0x191/0x390 [ 228.380794][ T8484] do_sys_openat2+0x10d/0x1e0 [ 228.380829][ T8484] ? __pfx_do_sys_openat2+0x10/0x10 [ 228.380881][ T8484] __x64_sys_openat+0x12d/0x210 [ 228.380928][ T8484] ? __pfx___x64_sys_openat+0x10/0x10 [ 228.380979][ T8484] do_syscall_64+0x106/0xf80 [ 228.381012][ T8484] ? clear_bhb_loop+0x40/0x90 [ 228.381049][ T8484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.381080][ T8484] RIP: 0033:0x7f128579c799 [ 228.381106][ T8484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 228.381131][ T8484] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 228.381159][ T8484] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 228.381176][ T8484] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 228.381193][ T8484] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 228.381209][ T8484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 228.381226][ T8484] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 228.381265][ T8484] [ 229.063437][ T8484] ERROR: Out of memory at tomoyo_realpath_from_path. [ 229.971836][ T8506] netlink: 20 bytes leftover after parsing attributes in process `syz.1.578'. [ 230.227096][ T8506] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 230.257829][ T29] audit: type=1800 audit(1773339325.096:7): pid=8506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.578" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 230.291254][ T8506] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 230.371235][ T8506] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 234.572683][ T8578] netlink: NAT attribute has 18 unknown bytes [ 235.381690][ T8591] mkiss: ax0: crc mode is auto. [ 235.597644][ T8600] netlink: 326 bytes leftover after parsing attributes in process `syz.1.600'. [ 237.697423][ T8617] FAULT_INJECTION: forcing a failure. [ 237.697423][ T8617] name failslab, interval 1, probability 0, space 0, times 0 [ 237.885456][ T8617] CPU: 0 UID: 0 PID: 8617 Comm: syz.3.605 Tainted: G L syzkaller #0 PREEMPT(full) [ 237.885507][ T8617] Tainted: [L]=SOFTLOCKUP [ 237.885517][ T8617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 237.885544][ T8617] Call Trace: [ 237.885583][ T8617] [ 237.885595][ T8617] dump_stack_lvl+0x100/0x190 [ 237.885709][ T8617] should_fail_ex.cold+0x5/0xa [ 237.885779][ T8617] should_failslab+0xc2/0x120 [ 237.885851][ T8617] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 237.885915][ T8617] ? __proc_create+0x2cb/0x8c0 [ 237.886022][ T8617] __proc_create+0x2cb/0x8c0 [ 237.886071][ T8617] ? __pfx___proc_create+0x10/0x10 [ 237.886127][ T8617] ? _raw_write_unlock+0x28/0x50 [ 237.886256][ T8617] ? proc_register+0x559/0x8a0 [ 237.886289][ T8617] proc_create_reg+0x75/0x170 [ 237.886325][ T8617] proc_create_net_data+0x8e/0x1c0 [ 237.886374][ T8617] ? __pfx_proc_create_net_data+0x10/0x10 [ 237.886435][ T8617] ? __pfx_kcm_proc_init_net+0x10/0x10 [ 237.886597][ T8617] kcm_proc_init_net+0xa3/0x120 [ 237.886630][ T8617] ops_init+0x1e2/0x5f0 [ 237.886745][ T8617] setup_net+0x118/0x3a0 [ 237.886788][ T8617] ? __pfx_setup_net+0x10/0x10 [ 237.886826][ T8617] ? lockdep_init_map_type+0x5c/0x250 [ 237.886894][ T8617] ? mutex_init_lockep+0x110/0x150 [ 237.886951][ T8617] copy_net_ns+0x46f/0x7c0 [ 237.886999][ T8617] create_new_namespaces+0x3ea/0xac0 [ 237.887051][ T8617] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 237.887086][ T8617] ksys_unshare+0x473/0xad0 [ 237.887144][ T8617] ? __pfx_ksys_unshare+0x10/0x10 [ 237.887199][ T8617] __x64_sys_unshare+0x31/0x40 [ 237.887236][ T8617] do_syscall_64+0x106/0xf80 [ 237.887299][ T8617] ? clear_bhb_loop+0x40/0x90 [ 237.887351][ T8617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.887383][ T8617] RIP: 0033:0x7f8da0d9c799 [ 237.887410][ T8617] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 237.887437][ T8617] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 237.887506][ T8617] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 237.887526][ T8617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 237.887544][ T8617] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 237.887562][ T8617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 237.887580][ T8617] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 237.887622][ T8617] [ 246.242125][ T8712] FAULT_INJECTION: forcing a failure. [ 246.242125][ T8712] name failslab, interval 1, probability 0, space 0, times 0 [ 246.351146][ T8712] CPU: 0 UID: 0 PID: 8712 Comm: syz.3.618 Tainted: G L syzkaller #0 PREEMPT(full) [ 246.351197][ T8712] Tainted: [L]=SOFTLOCKUP [ 246.351208][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 246.351224][ T8712] Call Trace: [ 246.351233][ T8712] [ 246.351244][ T8712] dump_stack_lvl+0x100/0x190 [ 246.351292][ T8712] should_fail_ex.cold+0x5/0xa [ 246.351328][ T8712] should_failslab+0xc2/0x120 [ 246.351361][ T8712] __kmalloc_cache_noprof+0x7a/0x6f0 [ 246.351401][ T8712] ? loop_add+0xb9/0xb60 [ 246.351547][ T8712] loop_add+0xb9/0xb60 [ 246.351581][ T8712] ? __pfx_loop_add+0x10/0x10 [ 246.351635][ T8712] ? find_held_lock+0x2b/0x80 [ 246.351663][ T8712] ? __fget_files+0x215/0x3d0 [ 246.351712][ T8712] loop_control_ioctl+0xae/0x620 [ 246.351757][ T8712] ? __pfx_loop_control_ioctl+0x10/0x10 [ 246.351799][ T8712] ? __pfx_loop_control_ioctl+0x10/0x10 [ 246.351840][ T8712] __x64_sys_ioctl+0x18e/0x210 [ 246.351895][ T8712] do_syscall_64+0x106/0xf80 [ 246.351931][ T8712] ? clear_bhb_loop+0x40/0x90 [ 246.351969][ T8712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.352000][ T8712] RIP: 0033:0x7f8da0d9c799 [ 246.352024][ T8712] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 246.352049][ T8712] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 246.352076][ T8712] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 246.352095][ T8712] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 246.352112][ T8712] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 246.352128][ T8712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.352144][ T8712] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 246.352184][ T8712] [ 247.157842][ T8729] FAULT_INJECTION: forcing a failure. [ 247.157842][ T8729] name failslab, interval 1, probability 0, space 0, times 0 [ 247.200620][ T8729] CPU: 0 UID: 0 PID: 8729 Comm: syz.0.623 Tainted: G L syzkaller #0 PREEMPT(full) [ 247.200652][ T8729] Tainted: [L]=SOFTLOCKUP [ 247.200658][ T8729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 247.200668][ T8729] Call Trace: [ 247.200675][ T8729] [ 247.200682][ T8729] dump_stack_lvl+0x100/0x190 [ 247.200714][ T8729] should_fail_ex.cold+0x5/0xa [ 247.200740][ T8729] should_failslab+0xc2/0x120 [ 247.200760][ T8729] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 247.200787][ T8729] ? bdev_alloc_inode+0x26/0x90 [ 247.200884][ T8729] ? rcu_is_watching+0x12/0xc0 [ 247.200947][ T8729] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 247.200977][ T8729] bdev_alloc_inode+0x26/0x90 [ 247.201003][ T8729] ? __pfx_bdev_alloc_inode+0x10/0x10 [ 247.201030][ T8729] alloc_inode+0x68/0x250 [ 247.201071][ T8729] new_inode+0x22/0x1c0 [ 247.201114][ T8729] bdev_alloc+0x2b/0x420 [ 247.201141][ T8729] ? bdi_init+0x3f4/0x5b0 [ 247.201179][ T8729] ? bdi_init+0x49f/0x5b0 [ 247.201212][ T8729] __alloc_disk_node+0x116/0x6b0 [ 247.201309][ T8729] __blk_mq_alloc_disk+0x89/0x120 [ 247.201374][ T8729] loop_add+0x498/0xb60 [ 247.201410][ T8729] ? __pfx_loop_add+0x10/0x10 [ 247.201473][ T8729] ? find_held_lock+0x2b/0x80 [ 247.201503][ T8729] ? __fget_files+0x215/0x3d0 [ 247.201536][ T8729] loop_control_ioctl+0xae/0x620 [ 247.201574][ T8729] ? __pfx_loop_control_ioctl+0x10/0x10 [ 247.201616][ T8729] ? __pfx_loop_control_ioctl+0x10/0x10 [ 247.201655][ T8729] __x64_sys_ioctl+0x18e/0x210 [ 247.201702][ T8729] do_syscall_64+0x106/0xf80 [ 247.201737][ T8729] ? clear_bhb_loop+0x40/0x90 [ 247.201776][ T8729] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.201809][ T8729] RIP: 0033:0x7f128579c799 [ 247.201836][ T8729] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 247.201865][ T8729] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 247.201894][ T8729] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 247.201915][ T8729] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 247.201934][ T8729] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 247.201952][ T8729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 247.201987][ T8729] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 247.202028][ T8729] [ 247.862687][ T8731] can: request_module (can-proto-0) failed. [ 250.154650][ T8762] program syz.0.629 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 251.927475][ T8786] FAULT_INJECTION: forcing a failure. [ 251.927475][ T8786] name failslab, interval 1, probability 0, space 0, times 0 [ 251.975494][ T8787] Zero length message leads to an empty skb [ 252.014888][ T8786] CPU: 1 UID: 0 PID: 8786 Comm: syz.3.636 Tainted: G L syzkaller #0 PREEMPT(full) [ 252.014940][ T8786] Tainted: [L]=SOFTLOCKUP [ 252.014950][ T8786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 252.014969][ T8786] Call Trace: [ 252.014979][ T8786] [ 252.014991][ T8786] dump_stack_lvl+0x100/0x190 [ 252.015045][ T8786] should_fail_ex.cold+0x5/0xa [ 252.015082][ T8786] should_failslab+0xc2/0x120 [ 252.015116][ T8786] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 252.015165][ T8786] ? alloc_unbound_pwq+0x3ff/0xdd0 [ 252.015202][ T8786] alloc_unbound_pwq+0x3ff/0xdd0 [ 252.015247][ T8786] apply_wqattrs_prepare+0x3aa/0xbb0 [ 252.015287][ T8786] ? kasan_save_track+0x14/0x30 [ 252.015337][ T8786] ? __pfx_wq_cpumask_store+0x10/0x10 [ 252.015366][ T8786] apply_workqueue_attrs_locked+0x64/0xe0 [ 252.015399][ T8786] wq_cpumask_store+0xf7/0x190 [ 252.015433][ T8786] dev_attr_store+0x58/0x80 [ 252.015574][ T8786] ? __pfx_dev_attr_store+0x10/0x10 [ 252.015629][ T8786] sysfs_kf_write+0xf2/0x150 [ 252.015679][ T8786] kernfs_fop_write_iter+0x3e0/0x5f0 [ 252.015712][ T8786] ? __pfx_sysfs_kf_write+0x10/0x10 [ 252.015755][ T8786] vfs_write+0x6ac/0x1070 [ 252.015805][ T8786] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 252.015840][ T8786] ? __pfx_vfs_write+0x10/0x10 [ 252.015915][ T8786] ksys_write+0x12a/0x250 [ 252.015944][ T8786] ? __pfx_ksys_write+0x10/0x10 [ 252.015987][ T8786] do_syscall_64+0x106/0xf80 [ 252.016023][ T8786] ? clear_bhb_loop+0x40/0x90 [ 252.016062][ T8786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.016094][ T8786] RIP: 0033:0x7f8da0d9c799 [ 252.016122][ T8786] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 252.016150][ T8786] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 252.016182][ T8786] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 252.016202][ T8786] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 252.016220][ T8786] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 252.016237][ T8786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 252.016254][ T8786] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 252.016297][ T8786] [ 252.582734][ T8792] can0: slcan on ttyS2. [ 253.211318][ T8788] can0 (unregistered): slcan off ttyS2. [ 253.732350][ T8808] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 254.302283][ T8818] netlink: 350 bytes leftover after parsing attributes in process `syz.0.642'. [ 255.022811][ T8827] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79000 [ 255.061400][ T8827] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 255.161784][ T8827] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 255.367632][ T8827] page_type: f5(slab) [ 255.410005][ T8827] raw: 00fff00000000040 ffff88813fe54500 dead000000000100 dead000000000122 [ 255.481135][ T8827] raw: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000 [ 255.552513][ T8827] head: 00fff00000000040 ffff88813fe54500 dead000000000100 dead000000000122 [ 255.664429][ T8827] head: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000 [ 255.725567][ T8827] head: 00fff00000000003 ffffea0001e40001 00000000ffffffff 00000000ffffffff [ 255.764751][ T8827] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 255.806324][ T8827] page dumped because: unmovable page [ 255.861293][ T8827] page_owner tracks the page as allocated [ 255.867345][ T8827] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd60c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5822, tgid 5822 (syz-executor), ts 89047757658, free_ts 29009463581 [ 256.051268][ T8827] post_alloc_hook+0x153/0x170 [ 256.079316][ T8827] get_page_from_freelist+0x111d/0x3140 [ 256.120973][ T8827] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 256.155411][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.166000][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.192783][ T8827] new_slab+0xa6/0x6c0 [ 256.221007][ T8827] refill_objects+0x26b/0x400 [ 256.261001][ T8827] __pcs_replace_empty_main+0x1ab/0x600 [ 256.320943][ T8827] __kvmalloc_node_noprof+0x7da/0xa00 [ 256.368950][ T8827] alloc_netdev_mqs+0xd7/0x14f0 [ 256.421013][ T8827] rtnl_create_link+0xc13/0xf80 [ 256.426167][ T8827] rtnl_newlink+0x13b8/0x2380 [ 256.473334][ T8827] rtnetlink_rcv_msg+0x95e/0xe90 [ 256.478468][ T8827] netlink_rcv_skb+0x159/0x420 [ 256.522565][ T8827] netlink_unicast+0x5aa/0x870 [ 256.545473][ T8827] netlink_sendmsg+0x8b0/0xda0 [ 256.570825][ T8827] __sys_sendto+0x468/0x4b0 [ 256.585579][ T8827] __x64_sys_sendto+0xe0/0x1c0 [ 256.590474][ T8827] page last free pid 1 tgid 1 stack trace: [ 256.653636][ T8827] __free_frozen_pages+0x7e1/0x10d0 [ 256.696174][ T8827] free_contig_range+0xde/0x1d0 [ 256.749067][ T8827] destroy_args+0xa8/0x7a0 [ 256.786681][ T8827] debug_vm_pgtable+0x1b66/0x34c0 [ 256.816203][ T8827] do_one_initcall+0x11d/0x760 [ 256.870945][ T8827] kernel_init_freeable+0x6e5/0x7a0 [ 256.876321][ T8827] kernel_init+0x1f/0x1e0 [ 256.910478][ T8827] ret_from_fork+0x754/0xd80 [ 256.946415][ T8827] ret_from_fork_asm+0x1a/0x30 [ 257.633580][ T8861] process 'syz.1.648' launched '/dev/fd/3' with NULL argv: empty string added [ 260.835015][ T8902] netlink: 28 bytes leftover after parsing attributes in process `syz.1.656'. [ 262.092439][ T8920] FAULT_INJECTION: forcing a failure. [ 262.092439][ T8920] name failslab, interval 1, probability 0, space 0, times 0 [ 262.201468][ T8920] CPU: 1 UID: 0 PID: 8920 Comm: syz.0.659 Tainted: G L syzkaller #0 PREEMPT(full) [ 262.201518][ T8920] Tainted: [L]=SOFTLOCKUP [ 262.201530][ T8920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 262.201547][ T8920] Call Trace: [ 262.201558][ T8920] [ 262.201581][ T8920] dump_stack_lvl+0x100/0x190 [ 262.201633][ T8920] should_fail_ex.cold+0x5/0xa [ 262.201668][ T8920] should_failslab+0xc2/0x120 [ 262.201702][ T8920] __kmalloc_cache_noprof+0x7a/0x6f0 [ 262.201739][ T8920] ? loop_add+0xb9/0xb60 [ 262.201779][ T8920] loop_add+0xb9/0xb60 [ 262.201835][ T8920] ? __pfx_loop_add+0x10/0x10 [ 262.201895][ T8920] ? find_held_lock+0x2b/0x80 [ 262.201923][ T8920] ? __fget_files+0x215/0x3d0 [ 262.201955][ T8920] loop_control_ioctl+0xae/0x620 [ 262.201993][ T8920] ? __pfx_loop_control_ioctl+0x10/0x10 [ 262.202036][ T8920] ? __pfx_loop_control_ioctl+0x10/0x10 [ 262.202074][ T8920] __x64_sys_ioctl+0x18e/0x210 [ 262.202120][ T8920] do_syscall_64+0x106/0xf80 [ 262.202156][ T8920] ? clear_bhb_loop+0x40/0x90 [ 262.202195][ T8920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.202226][ T8920] RIP: 0033:0x7f128579c799 [ 262.202252][ T8920] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.202281][ T8920] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 262.202310][ T8920] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 262.202329][ T8920] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 262.202346][ T8920] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 262.202364][ T8920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.202381][ T8920] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 262.202422][ T8920] [ 263.190116][ T8942] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 263.910110][ T8957] netlink: 8 bytes leftover after parsing attributes in process `syz.3.664'. [ 264.497886][ T8960] netlink: 16 bytes leftover after parsing attributes in process `syz.1.660'. [ 268.113467][ T8986] capability: warning: `syz.0.666' uses 32-bit capabilities (legacy support in use) [ 269.306795][ T51] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 269.762937][ T9004] random: crng reseeded on system resumption [ 269.837290][ T9007] netlink: 'syz.2.670': attribute type 2 has an invalid length. [ 269.858464][ T9004] Restarting kernel threads ... [ 269.894245][ T9004] Done restarting kernel threads. [ 273.361012][ T9045] sd 0:0:1:0: PR command failed: 1026 [ 273.361077][ T9045] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 273.361135][ T9045] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 274.056371][ T9063] netlink: 40 bytes leftover after parsing attributes in process `syz.1.682'. [ 275.186387][ T9088] capability: warning: `syz.1.688' uses deprecated v2 capabilities in a way that may be insecure [ 279.441012][ T9132] FAULT_INJECTION: forcing a failure. [ 279.441012][ T9132] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 279.541491][ T9132] CPU: 0 UID: 0 PID: 9132 Comm: syz.2.699 Tainted: G L syzkaller #0 PREEMPT(full) [ 279.541543][ T9132] Tainted: [L]=SOFTLOCKUP [ 279.541554][ T9132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 279.541573][ T9132] Call Trace: [ 279.541583][ T9132] [ 279.541595][ T9132] dump_stack_lvl+0x100/0x190 [ 279.541661][ T9132] should_fail_ex.cold+0x5/0xa [ 279.541696][ T9132] _copy_from_iter+0x1f4/0x1690 [ 279.541812][ T9132] ? __asan_memset+0x23/0x50 [ 279.541857][ T9132] ? __pfx__copy_from_iter+0x10/0x10 [ 279.541887][ T9132] ? __pfx___alloc_skb+0x10/0x10 [ 279.541966][ T9132] netlink_sendmsg+0x808/0xda0 [ 279.542016][ T9132] ? __pfx_netlink_sendmsg+0x10/0x10 [ 279.542064][ T9132] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 279.542154][ T9132] __sys_sendto+0x468/0x4b0 [ 279.542183][ T9132] ? __pfx_netlink_sendmsg+0x10/0x10 [ 279.542225][ T9132] ? __pfx___sys_sendto+0x10/0x10 [ 279.542273][ T9132] ? fd_install+0x223/0x580 [ 279.542318][ T9132] ? __pfx___sys_socket+0x10/0x10 [ 279.542355][ T9132] __x64_sys_sendto+0xe0/0x1c0 [ 279.542387][ T9132] ? do_syscall_64+0x95/0xf80 [ 279.542435][ T9132] ? lockdep_hardirqs_on+0x78/0x100 [ 279.542472][ T9132] do_syscall_64+0x106/0xf80 [ 279.542507][ T9132] ? clear_bhb_loop+0x40/0x90 [ 279.542546][ T9132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.542578][ T9132] RIP: 0033:0x7f793875cfce [ 279.542604][ T9132] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 279.542634][ T9132] RSP: 002b:00007f793962fe88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 279.542664][ T9132] RAX: ffffffffffffffda RBX: 00007f79396316c0 RCX: 00007f793875cfce [ 279.542684][ T9132] RDX: 0000000000000020 RSI: 00007f7939630000 RDI: 0000000000000009 [ 279.542720][ T9132] RBP: 0000000000000000 R08: 00007f793962ff04 R09: 000000000000000c [ 279.542738][ T9132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000009 [ 279.542757][ T9132] R13: 00007f793962ff58 R14: 00007f7939630000 R15: 0000000000000000 [ 279.542798][ T9132] [ 282.278294][ T9170] FAULT_INJECTION: forcing a failure. [ 282.278294][ T9170] name fail_futex, interval 1, probability 0, space 0, times 0 [ 282.331067][ T9170] CPU: 0 UID: 0 PID: 9170 Comm: syz.2.708 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.331120][ T9170] Tainted: [L]=SOFTLOCKUP [ 282.331132][ T9170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 282.331150][ T9170] Call Trace: [ 282.331162][ T9170] [ 282.331174][ T9170] dump_stack_lvl+0x100/0x190 [ 282.331231][ T9170] should_fail_ex.cold+0x5/0xa [ 282.331266][ T9170] ? __kernel_text_address+0xd/0x30 [ 282.331320][ T9170] get_futex_key+0x1d2/0x1620 [ 282.331383][ T9170] ? __pfx_get_futex_key+0x10/0x10 [ 282.331423][ T9170] ? putname+0xb1/0x110 [ 282.331462][ T9170] ? stack_trace_save+0x8e/0xc0 [ 282.331503][ T9170] ? __pfx_stack_trace_save+0x10/0x10 [ 282.331539][ T9170] futex_wait_setup+0x83/0x510 [ 282.331598][ T9170] __futex_wait+0x19f/0x300 [ 282.331651][ T9170] ? __pfx___futex_wait+0x10/0x10 [ 282.331705][ T9170] ? __pfx_futex_wake_mark+0x10/0x10 [ 282.331759][ T9170] ? futex_hash+0x2c5/0x380 [ 282.331809][ T9170] futex_wait+0xed/0x380 [ 282.331857][ T9170] ? __pfx_futex_wait+0x10/0x10 [ 282.331924][ T9170] ? putname+0xb1/0x110 [ 282.331955][ T9170] ? kmem_cache_free+0x124/0x6a0 [ 282.332005][ T9170] do_futex+0x1ef/0x350 [ 282.332043][ T9170] ? __pfx_do_futex+0x10/0x10 [ 282.332078][ T9170] ? __pfx_do_sys_openat2+0x10/0x10 [ 282.332130][ T9170] __x64_sys_futex+0x34f/0x4d0 [ 282.332170][ T9170] ? __x64_sys_openat+0x12d/0x210 [ 282.332211][ T9170] ? __pfx___x64_sys_futex+0x10/0x10 [ 282.332265][ T9170] do_syscall_64+0x106/0xf80 [ 282.332305][ T9170] ? clear_bhb_loop+0x40/0x90 [ 282.332344][ T9170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.332374][ T9170] RIP: 0033:0x7f793879c799 [ 282.332401][ T9170] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.332430][ T9170] RSP: 002b:00007f79396310e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 282.332461][ T9170] RAX: ffffffffffffffda RBX: 00007f7938a16098 RCX: 00007f793879c799 [ 282.332478][ T9170] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f7938a16098 [ 282.332494][ T9170] RBP: 00007f7938a16090 R08: 0000000000000000 R09: 0000000000000000 [ 282.332512][ T9170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.332528][ T9170] R13: 00007f7938a16128 R14: 00007ffdef434f90 R15: 00007ffdef435078 [ 282.332567][ T9170] [ 282.782896][ T9178] FAULT_INJECTION: forcing a failure. [ 282.782896][ T9178] name failslab, interval 1, probability 0, space 0, times 0 [ 282.782950][ T9178] CPU: 1 UID: 0 PID: 9178 Comm: syz.0.710 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.782992][ T9178] Tainted: [L]=SOFTLOCKUP [ 282.783002][ T9178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 282.783019][ T9178] Call Trace: [ 282.783029][ T9178] [ 282.783041][ T9178] dump_stack_lvl+0x100/0x190 [ 282.783093][ T9178] should_fail_ex.cold+0x5/0xa [ 282.783131][ T9178] should_failslab+0xc2/0x120 [ 282.783166][ T9178] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 282.783209][ T9178] ? posix_lock_inode+0x427/0x2440 [ 282.783269][ T9178] ? locks_get_lock_context+0x34f/0x640 [ 282.783319][ T9178] posix_lock_inode+0x427/0x2440 [ 282.783367][ T9178] ? __pfx_posix_lock_inode+0x10/0x10 [ 282.783409][ T9178] vfs_lock_file+0xfb/0x150 [ 282.783445][ T9178] fcntl_setlk+0x782/0xe40 [ 282.783484][ T9178] ? __pfx_fcntl_setlk+0x10/0x10 [ 282.783538][ T9178] ? rep_movs_alternative+0x30/0x90 [ 282.783642][ T9178] do_fcntl+0xf39/0x1670 [ 282.783686][ T9178] ? __pfx_do_fcntl+0x10/0x10 [ 282.783724][ T9178] ? __fget_files+0x215/0x3d0 [ 282.783770][ T9178] ? tomoyo_file_fcntl+0x6c/0xc0 [ 282.783855][ T9178] __x64_sys_fcntl+0x163/0x200 [ 282.783935][ T9178] do_syscall_64+0x106/0xf80 [ 282.783970][ T9178] ? clear_bhb_loop+0x40/0x90 [ 282.784010][ T9178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.784043][ T9178] RIP: 0033:0x7f128579c799 [ 282.784070][ T9178] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.784099][ T9178] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 282.784131][ T9178] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 282.784152][ T9178] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 0000000000000007 [ 282.784171][ T9178] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 282.784190][ T9178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.784208][ T9178] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 282.784250][ T9178] [ 283.229622][ T9184] futex_wake_op: syz.3.712 tries to shift op by -2048; fix this program [ 283.229791][ T9184] futex_wake_op: syz.3.712 tries to shift op by -2048; fix this program [ 283.262026][ T9184] 0x000000000001-0x000000020000 : "" [ 283.269133][ T9184] ftl_cs: FTL header corrupt! [ 286.138418][ T51] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 286.138463][ T51] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 286.155790][ T51] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 286.155854][ T51] Bluetooth: hci3: adv larger than maximum supported [ 286.163347][ T51] Bluetooth: hci3: adv larger than maximum supported [ 286.170719][ T51] Bluetooth: hci3: Malformed LE Event: 0x0d [ 286.196292][ T9210] FAULT_INJECTION: forcing a failure. [ 286.196292][ T9210] name failslab, interval 1, probability 0, space 0, times 0 [ 286.348210][ T9210] CPU: 1 UID: 0 PID: 9210 Comm: syz.0.719 Tainted: G L syzkaller #0 PREEMPT(full) [ 286.348265][ T9210] Tainted: [L]=SOFTLOCKUP [ 286.348274][ T9210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 286.348289][ T9210] Call Trace: [ 286.348295][ T9210] [ 286.348303][ T9210] dump_stack_lvl+0x100/0x190 [ 286.348338][ T9210] should_fail_ex.cold+0x5/0xa [ 286.348360][ T9210] should_failslab+0xc2/0x120 [ 286.348380][ T9210] __kmalloc_cache_noprof+0x7a/0x6f0 [ 286.348405][ T9210] ? snd_seq_timer_new+0x44/0x1b0 [ 286.348512][ T9210] snd_seq_timer_new+0x44/0x1b0 [ 286.348536][ T9210] snd_seq_queue_alloc+0x177/0x590 [ 286.348560][ T9210] snd_seq_ioctl_create_queue+0xa9/0x370 [ 286.348602][ T9210] call_seq_client_ctl+0xa3/0x130 [ 286.348629][ T9210] snd_seq_kernel_client_ctl+0x77/0xd0 [ 286.348656][ T9210] alloc_seq_queue+0xdb/0x180 [ 286.348683][ T9210] ? __pfx_alloc_seq_queue+0x10/0x10 [ 286.348723][ T9210] ? mark_held_locks+0x40/0x70 [ 286.348746][ T9210] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.348767][ T9210] ? lockdep_hardirqs_on+0x78/0x100 [ 286.348791][ T9210] snd_seq_oss_open+0x2b2/0xa10 [ 286.348823][ T9210] odev_open+0x79/0xc0 [ 286.348853][ T9210] ? __pfx_odev_open+0x10/0x10 [ 286.348879][ T9210] soundcore_open+0x2e3/0x5a0 [ 286.348933][ T9210] ? __pfx_soundcore_open+0x10/0x10 [ 286.348959][ T9210] chrdev_open+0x234/0x6a0 [ 286.348978][ T9210] ? __pfx_apparmor_file_open+0x10/0x10 [ 286.349006][ T9210] ? __pfx_chrdev_open+0x10/0x10 [ 286.349026][ T9210] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 286.349050][ T9210] do_dentry_open+0x6d8/0x1660 [ 286.349068][ T9210] ? __pfx_chrdev_open+0x10/0x10 [ 286.349092][ T9210] vfs_open+0x82/0x3f0 [ 286.349116][ T9210] path_openat+0x208c/0x31a0 [ 286.349147][ T9210] ? __pfx_path_openat+0x10/0x10 [ 286.349178][ T9210] do_file_open+0x20e/0x430 [ 286.349199][ T9210] ? __pfx_do_file_open+0x10/0x10 [ 286.349234][ T9210] ? alloc_fd+0x476/0x790 [ 286.349254][ T9210] ? do_getname+0x191/0x390 [ 286.349278][ T9210] do_sys_openat2+0x10d/0x1e0 [ 286.349302][ T9210] ? __pfx_do_sys_openat2+0x10/0x10 [ 286.349328][ T9210] ? __fget_files+0x21f/0x3d0 [ 286.349353][ T9210] __x64_sys_openat+0x12d/0x210 [ 286.349377][ T9210] ? __pfx___x64_sys_openat+0x10/0x10 [ 286.349410][ T9210] do_syscall_64+0x106/0xf80 [ 286.349431][ T9210] ? clear_bhb_loop+0x40/0x90 [ 286.349454][ T9210] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.349473][ T9210] RIP: 0033:0x7f128579c799 [ 286.349491][ T9210] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 286.349508][ T9210] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 286.349526][ T9210] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 286.349538][ T9210] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 286.349549][ T9210] RBP: 00007f1285832c99 R08: 0000000000000000 R09: 0000000000000000 [ 286.349559][ T9210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 286.349570][ T9210] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 286.349593][ T9210] [ 286.842149][ T9220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.720'. [ 287.459453][ T9228] Console: switching to colour VGA+ 80x25 [ 288.293083][ T9241] FAULT_INJECTION: forcing a failure. [ 288.293083][ T9241] name failslab, interval 1, probability 0, space 0, times 0 [ 288.365281][ T9241] CPU: 0 UID: 0 PID: 9241 Comm: syz.3.726 Tainted: G L syzkaller #0 PREEMPT(full) [ 288.365342][ T9241] Tainted: [L]=SOFTLOCKUP [ 288.365354][ T9241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 288.365371][ T9241] Call Trace: [ 288.365383][ T9241] [ 288.365395][ T9241] dump_stack_lvl+0x100/0x190 [ 288.365448][ T9241] should_fail_ex.cold+0x5/0xa [ 288.365485][ T9241] should_failslab+0xc2/0x120 [ 288.365517][ T9241] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 288.365561][ T9241] ? sctp_sysctl_net_register+0x30/0x200 [ 288.365707][ T9241] ? __pfx_sctp_defaults_init+0x10/0x10 [ 288.365769][ T9241] kmemdup_noprof+0x29/0x60 [ 288.365822][ T9241] sctp_sysctl_net_register+0x30/0x200 [ 288.365864][ T9241] ? __pfx_sctp_defaults_init+0x10/0x10 [ 288.365901][ T9241] sctp_defaults_init+0x6d2/0xd90 [ 288.365942][ T9241] ? __pfx_sctp_defaults_init+0x10/0x10 [ 288.365978][ T9241] ops_init+0x1e2/0x5f0 [ 288.366025][ T9241] setup_net+0x118/0x3a0 [ 288.366067][ T9241] ? __pfx_setup_net+0x10/0x10 [ 288.366104][ T9241] ? lockdep_init_map_type+0x5c/0x250 [ 288.366146][ T9241] ? mutex_init_lockep+0x110/0x150 [ 288.366195][ T9241] copy_net_ns+0x46f/0x7c0 [ 288.366242][ T9241] create_new_namespaces+0x3ea/0xac0 [ 288.366282][ T9241] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 288.366337][ T9241] ksys_unshare+0x473/0xad0 [ 288.366379][ T9241] ? __pfx_ksys_unshare+0x10/0x10 [ 288.366434][ T9241] __x64_sys_unshare+0x31/0x40 [ 288.366473][ T9241] do_syscall_64+0x106/0xf80 [ 288.366508][ T9241] ? clear_bhb_loop+0x40/0x90 [ 288.366543][ T9241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.366575][ T9241] RIP: 0033:0x7f8da0d9c799 [ 288.366604][ T9241] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 288.366633][ T9241] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 288.366663][ T9241] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 288.366684][ T9241] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 288.366702][ T9241] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 288.366720][ T9241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.366739][ T9241] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 288.366782][ T9241] [ 289.629372][ T9262] FAULT_INJECTION: forcing a failure. [ 289.629372][ T9262] name failslab, interval 1, probability 0, space 0, times 0 [ 289.721788][ T9262] CPU: 1 UID: 0 PID: 9262 Comm: syz.1.730 Tainted: G L syzkaller #0 PREEMPT(full) [ 289.721850][ T9262] Tainted: [L]=SOFTLOCKUP [ 289.721861][ T9262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 289.721879][ T9262] Call Trace: [ 289.721889][ T9262] [ 289.721902][ T9262] dump_stack_lvl+0x100/0x190 [ 289.721955][ T9262] should_fail_ex.cold+0x5/0xa [ 289.721991][ T9262] should_failslab+0xc2/0x120 [ 289.722023][ T9262] __kmalloc_cache_noprof+0x7a/0x6f0 [ 289.722063][ T9262] ? snd_card_file_add+0x52/0x340 [ 289.722117][ T9262] ? __pfx_snd_pcm_capture_open+0x10/0x10 [ 289.722212][ T9262] snd_card_file_add+0x52/0x340 [ 289.722263][ T9262] ? __pfx_snd_pcm_capture_open+0x10/0x10 [ 289.722298][ T9262] snd_pcm_open+0xf1/0x710 [ 289.722330][ T9262] ? __mutex_unlock_slowpath+0x15c/0x790 [ 289.722375][ T9262] ? __pfx_snd_pcm_open+0x10/0x10 [ 289.722430][ T9262] ? __pfx_snd_pcm_capture_open+0x10/0x10 [ 289.722468][ T9262] snd_pcm_capture_open+0x89/0xe0 [ 289.722504][ T9262] snd_open+0x22d/0x4c0 [ 289.722549][ T9262] ? __pfx_snd_open+0x10/0x10 [ 289.722592][ T9262] chrdev_open+0x234/0x6a0 [ 289.722626][ T9262] ? __pfx_chrdev_open+0x10/0x10 [ 289.722660][ T9262] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 289.722701][ T9262] do_dentry_open+0x6d8/0x1660 [ 289.722729][ T9262] ? __pfx_chrdev_open+0x10/0x10 [ 289.722770][ T9262] vfs_open+0x82/0x3f0 [ 289.722822][ T9262] path_openat+0x208c/0x31a0 [ 289.722869][ T9262] ? __pfx_path_openat+0x10/0x10 [ 289.722917][ T9262] do_file_open+0x20e/0x430 [ 289.722954][ T9262] ? __pfx_do_file_open+0x10/0x10 [ 289.723014][ T9262] ? alloc_fd+0x476/0x790 [ 289.723048][ T9262] ? do_getname+0x191/0x390 [ 289.723090][ T9262] do_sys_openat2+0x10d/0x1e0 [ 289.723129][ T9262] ? __pfx_do_sys_openat2+0x10/0x10 [ 289.723172][ T9262] ? __fget_files+0x21f/0x3d0 [ 289.723210][ T9262] __x64_sys_openat+0x12d/0x210 [ 289.723250][ T9262] ? __pfx___x64_sys_openat+0x10/0x10 [ 289.723305][ T9262] do_syscall_64+0x106/0xf80 [ 289.723341][ T9262] ? clear_bhb_loop+0x40/0x90 [ 289.723379][ T9262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.723411][ T9262] RIP: 0033:0x7f9cce39c799 [ 289.723440][ T9262] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 289.723470][ T9262] RSP: 002b:00007f9ccf1fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 289.723501][ T9262] RAX: ffffffffffffffda RBX: 00007f9cce616090 RCX: 00007f9cce39c799 [ 289.723522][ T9262] RDX: 0000000000080042 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 289.723541][ T9262] RBP: 00007f9cce432c99 R08: 0000000000000000 R09: 0000000000000000 [ 289.723560][ T9262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.723578][ T9262] R13: 00007f9cce616128 R14: 00007f9cce616090 R15: 00007fffa00273c8 [ 289.723620][ T9262] [ 291.226448][ T9288] mmap: syz.1.736 (9288) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 295.128342][ T9315] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 295.585617][ T9343] syz.0.743 uses obsolete (PF_INET,SOCK_PACKET) [ 297.733292][ T9377] vivid-007: ================= START STATUS ================= [ 297.811071][ T9377] vivid-007: Generate PTS: true [ 297.831528][ T9377] vivid-007: Generate SCR: true [ 297.891308][ T9377] tpg source WxH: 320x240 (Y'CbCr) [ 297.896482][ T9377] tpg field: 1 [ 297.899857][ T9377] tpg crop: (0,0)/320x240 [ 297.951640][ T9377] tpg compose: (0,0)/320x240 [ 297.956404][ T9377] tpg colorspace: 8 [ 297.984094][ T9377] tpg transfer function: 0/0 [ 298.052225][ T9377] tpg Y'CbCr encoding: 0/0 [ 298.096389][ T9377] tpg quantization: 0/0 [ 298.100744][ T9377] tpg RGB range: 0/2 [ 298.148741][ T9377] vivid-007: ================== END STATUS ================== [ 298.322693][ T9360] Invalid ELF header magic: != ELF [ 298.425543][ T9361] Invalid ELF header magic: != ELF [ 301.119601][ T9427] futex_wake_op: syz.0.760 tries to shift op by -2048; fix this program [ 301.128868][ T9420] netlink: 4 bytes leftover after parsing attributes in process `syz.1.759'. [ 303.459290][ T9448] netlink: 342 bytes leftover after parsing attributes in process `syz.3.765'. [ 303.765560][ T9448] netlink: 134 bytes leftover after parsing attributes in process `syz.3.765'. [ 305.102852][ T9460] can: request_module (can-proto-0) failed. [ 309.062467][ T9513] sd 0:0:1:0: PR command failed: 1026 [ 309.089583][ T9513] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 309.110147][ T9513] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 309.994839][ T9520] FAULT_INJECTION: forcing a failure. [ 309.994839][ T9520] name failslab, interval 1, probability 0, space 0, times 0 [ 310.113282][ T9520] CPU: 1 UID: 0 PID: 9520 Comm: syz.3.778 Tainted: G L syzkaller #0 PREEMPT(full) [ 310.113332][ T9520] Tainted: [L]=SOFTLOCKUP [ 310.113342][ T9520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 310.113360][ T9520] Call Trace: [ 310.113371][ T9520] [ 310.113383][ T9520] dump_stack_lvl+0x100/0x190 [ 310.113436][ T9520] should_fail_ex.cold+0x5/0xa [ 310.113472][ T9520] should_failslab+0xc2/0x120 [ 310.113506][ T9520] __kvmalloc_node_noprof+0xfa/0xa00 [ 310.113554][ T9520] ? shrinker_alloc+0x601/0xbc0 [ 310.113623][ T9520] shrinker_alloc+0x601/0xbc0 [ 310.113679][ T9520] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 310.113723][ T9520] ? __pfx_shrinker_alloc+0x10/0x10 [ 310.113778][ T9520] ? lockdep_init_map_type+0x5c/0x250 [ 310.113819][ T9520] ? lockdep_init_map_type+0x5c/0x250 [ 310.113861][ T9520] ? __raw_spin_lock_init+0x3a/0x110 [ 310.113906][ T9520] ? __init_rwsem+0x12d/0x1b0 [ 310.113954][ T9520] alloc_super+0x7c7/0xd20 [ 310.114005][ T9520] ? __pfx_mqueue_fill_super+0x10/0x10 [ 310.114131][ T9520] sget_fc+0x117/0xc70 [ 310.114177][ T9520] ? __pfx_set_anon_super_fc+0x10/0x10 [ 310.114225][ T9520] ? __pfx_mqueue_fill_super+0x10/0x10 [ 310.114263][ T9520] get_tree_nodev+0x28/0x190 [ 310.114317][ T9520] mqueue_get_tree+0xf1/0x130 [ 310.114356][ T9520] vfs_get_tree+0x92/0x320 [ 310.114399][ T9520] fc_mount_longterm+0x1a/0x270 [ 310.114446][ T9520] mq_init_ns+0x482/0x820 [ 310.114494][ T9520] copy_ipcs+0x3dd/0x7e0 [ 310.114543][ T9520] create_new_namespaces+0x20a/0xac0 [ 310.114575][ T9520] ? security_capable+0x80/0x260 [ 310.114674][ T9520] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 310.114712][ T9520] ksys_unshare+0x473/0xad0 [ 310.114754][ T9520] ? __pfx_ksys_unshare+0x10/0x10 [ 310.114808][ T9520] __x64_sys_unshare+0x31/0x40 [ 310.114844][ T9520] do_syscall_64+0x106/0xf80 [ 310.114881][ T9520] ? clear_bhb_loop+0x40/0x90 [ 310.114920][ T9520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.114952][ T9520] RIP: 0033:0x7f8da0d9c799 [ 310.114977][ T9520] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 310.115006][ T9520] RSP: 002b:00007f8da1cff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 310.115037][ T9520] RAX: ffffffffffffffda RBX: 00007f8da1015fa0 RCX: 00007f8da0d9c799 [ 310.115057][ T9520] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 310.115075][ T9520] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 310.115093][ T9520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.115109][ T9520] R13: 00007f8da1016038 R14: 00007f8da1015fa0 R15: 00007ffd13bfa138 [ 310.115152][ T9520] [ 312.591470][ T9541] ======================================================= [ 312.591470][ T9541] WARNING: The mand mount option has been deprecated and [ 312.591470][ T9541] and is ignored by this kernel. Remove the mand [ 312.591470][ T9541] option from the mount to silence this warning. [ 312.591470][ T9541] ======================================================= [ 313.863021][ T9552] netlink: 48 bytes leftover after parsing attributes in process `syz.1.785'. [ 313.881712][ T9551] netlink: 48 bytes leftover after parsing attributes in process `syz.1.785'. [ 317.605179][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.611759][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.111912][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 319.130302][ T42] Bluetooth: hci2: Opcode 0x0c1a failed: -110 [ 319.448194][ T9601] netlink: 28 bytes leftover after parsing attributes in process `syz.0.797'. [ 319.501044][ T9601] ipvlan0: entered promiscuous mode [ 319.531086][ T9601] ipvlan0: entered allmulticast mode [ 319.559235][ T9601] veth0_vlan: entered allmulticast mode [ 319.998566][ T9618] FAULT_INJECTION: forcing a failure. [ 319.998566][ T9618] name failslab, interval 1, probability 0, space 0, times 0 [ 320.043853][ T9618] CPU: 0 UID: 0 PID: 9618 Comm: syz.1.798 Tainted: G L syzkaller #0 PREEMPT(full) [ 320.043903][ T9618] Tainted: [L]=SOFTLOCKUP [ 320.043914][ T9618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 320.043933][ T9618] Call Trace: [ 320.043943][ T9618] [ 320.043956][ T9618] dump_stack_lvl+0x100/0x190 [ 320.044007][ T9618] should_fail_ex.cold+0x5/0xa [ 320.044038][ T9618] should_failslab+0xc2/0x120 [ 320.044058][ T9618] __kmalloc_cache_noprof+0x7a/0x6f0 [ 320.044083][ T9618] ? snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 320.044177][ T9618] snd_pcm_oss_change_params_locked+0x247/0x39f0 [ 320.044214][ T9618] ? __mutex_lock+0x26a/0x1b90 [ 320.044241][ T9618] ? snd_pcm_oss_sync+0x243/0x840 [ 320.044258][ T9618] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 320.044292][ T9618] ? __pfx___mutex_lock+0x10/0x10 [ 320.044320][ T9618] ? __fsnotify_parent+0x2b4/0xca0 [ 320.044345][ T9618] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 320.044377][ T9618] snd_pcm_oss_sync+0x265/0x840 [ 320.044398][ T9618] snd_pcm_oss_release+0x238/0x300 [ 320.044416][ T9618] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 320.044435][ T9618] __fput+0x3ff/0xb40 [ 320.044462][ T9618] task_work_run+0x150/0x240 [ 320.044490][ T9618] ? __pfx_task_work_run+0x10/0x10 [ 320.044530][ T9618] exit_to_user_mode_loop+0x100/0x4a0 [ 320.044558][ T9618] do_syscall_64+0x668/0xf80 [ 320.044579][ T9618] ? clear_bhb_loop+0x40/0x90 [ 320.044602][ T9618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.044621][ T9618] RIP: 0033:0x7f9cce39c799 [ 320.044637][ T9618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 320.044655][ T9618] RSP: 002b:00007f9ccf199028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 320.044674][ T9618] RAX: 0000000000000000 RBX: 00007f9cce616360 RCX: 00007f9cce39c799 [ 320.044685][ T9618] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 320.044695][ T9618] RBP: 00007f9cce432c99 R08: 0000000000000000 R09: 0000000000000000 [ 320.044705][ T9618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.044716][ T9618] R13: 00007f9cce6163f8 R14: 00007f9cce616360 R15: 00007fffa00273c8 [ 320.044739][ T9618] [ 320.225749][ T5831] usb usb40-port2: attempt power cycle [ 321.156570][ T5831] usb usb40-port2: unable to enumerate USB device [ 321.561464][ T9645] netlink: 4 bytes leftover after parsing attributes in process `syz.0.804'. [ 321.854312][ T29] audit: type=1800 audit(1773339416.696:8): pid=9654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.806" name="lu_gp_id" dev="configfs" ino=107530 res=0 errno=0 [ 323.233964][ T9658] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 323.344836][ T9658] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 323.404638][ T9658] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 323.564309][ T9674] NFSD: Failed to start, no listeners configured. [ 323.991238][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 324.653416][ T9691] FAULT_INJECTION: forcing a failure. [ 324.653416][ T9691] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 324.718047][ T9691] CPU: 1 UID: 0 PID: 9691 Comm: syz.0.816 Tainted: G L syzkaller #0 PREEMPT(full) [ 324.718093][ T9691] Tainted: [L]=SOFTLOCKUP [ 324.718103][ T9691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 324.718120][ T9691] Call Trace: [ 324.718129][ T9691] [ 324.718138][ T9691] dump_stack_lvl+0x100/0x190 [ 324.718188][ T9691] should_fail_ex.cold+0x5/0xa [ 324.718222][ T9691] _copy_from_user+0x2e/0xd0 [ 324.718325][ T9691] copy_msghdr_from_user+0x9f/0x4f0 [ 324.718400][ T9691] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 324.718452][ T9691] ? __pfx__kstrtoull+0x10/0x10 [ 324.718506][ T9691] ___sys_sendmsg+0x106/0x1e0 [ 324.718553][ T9691] ? __pfx____sys_sendmsg+0x10/0x10 [ 324.718615][ T9691] ? find_held_lock+0x2b/0x80 [ 324.718668][ T9691] __sys_sendmmsg+0x205/0x430 [ 324.718707][ T9691] ? __pfx___sys_sendmmsg+0x10/0x10 [ 324.718754][ T9691] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 324.718808][ T9691] ? fput+0x79/0x100 [ 324.718840][ T9691] ? ksys_write+0x1ac/0x250 [ 324.718865][ T9691] ? __pfx_ksys_write+0x10/0x10 [ 324.718899][ T9691] __x64_sys_sendmmsg+0x9c/0x100 [ 324.718934][ T9691] ? lockdep_hardirqs_on+0x78/0x100 [ 324.718978][ T9691] do_syscall_64+0x106/0xf80 [ 324.719011][ T9691] ? clear_bhb_loop+0x40/0x90 [ 324.719047][ T9691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.719076][ T9691] RIP: 0033:0x7f128579c799 [ 324.719101][ T9691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 324.719129][ T9691] RSP: 002b:00007f128672f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 324.719157][ T9691] RAX: ffffffffffffffda RBX: 00007f1285a15fa0 RCX: 00007f128579c799 [ 324.719175][ T9691] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000003 [ 324.719192][ T9691] RBP: 00007f128672f090 R08: 0000000000000000 R09: 0000000000000000 [ 324.719209][ T9691] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 324.719226][ T9691] R13: 00007f1285a16038 R14: 00007f1285a15fa0 R15: 00007ffcef80fc88 [ 324.719265][ T9691] [ 325.250904][ T29] audit: type=1800 audit(1773339420.086:9): pid=9695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.817" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 325.351135][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 325.431532][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 326.199136][ T9706] futex_wake_op: syz.1.820 tries to shift op by -2048; fix this program [ 326.262023][ T9706] 0x000000000001-0x000010b959e9 : "" [ 326.267807][ T9706] mtd: partition "" extends beyond the end of device "mtdram test device" -- size truncated to 0x1ffff [ 326.442124][ T9706] ftl_cs: FTL header corrupt! [ 328.092837][ T9744] FAULT_INJECTION: forcing a failure. [ 328.092837][ T9744] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 328.143510][ T9744] CPU: 1 UID: 0 PID: 9744 Comm: syz.1.826 Tainted: G L syzkaller #0 PREEMPT(full) [ 328.143558][ T9744] Tainted: [L]=SOFTLOCKUP [ 328.143569][ T9744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 328.143585][ T9744] Call Trace: [ 328.143595][ T9744] [ 328.143607][ T9744] dump_stack_lvl+0x100/0x190 [ 328.143656][ T9744] should_fail_ex.cold+0x5/0xa [ 328.143692][ T9744] _copy_from_user+0x2e/0xd0 [ 328.143721][ T9744] move_addr_to_kernel+0x65/0x170 [ 328.143768][ T9744] copy_msghdr_from_user+0x417/0x4f0 [ 328.143814][ T9744] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 328.143867][ T9744] ? __pfx__kstrtoull+0x10/0x10 [ 328.143910][ T9744] ___sys_sendmsg+0x106/0x1e0 [ 328.143956][ T9744] ? __pfx____sys_sendmsg+0x10/0x10 [ 328.144019][ T9744] ? find_held_lock+0x2b/0x80 [ 328.144072][ T9744] __sys_sendmmsg+0x205/0x430 [ 328.144112][ T9744] ? __pfx___sys_sendmmsg+0x10/0x10 [ 328.144161][ T9744] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 328.144216][ T9744] ? fput+0x79/0x100 [ 328.144248][ T9744] ? ksys_write+0x1ac/0x250 [ 328.144273][ T9744] ? __pfx_ksys_write+0x10/0x10 [ 328.144306][ T9744] __x64_sys_sendmmsg+0x9c/0x100 [ 328.144340][ T9744] ? lockdep_hardirqs_on+0x78/0x100 [ 328.144375][ T9744] do_syscall_64+0x106/0xf80 [ 328.144408][ T9744] ? clear_bhb_loop+0x40/0x90 [ 328.144453][ T9744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.144483][ T9744] RIP: 0033:0x7f9cce39c799 [ 328.144505][ T9744] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 328.144532][ T9744] RSP: 002b:00007f9ccf21d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 328.144560][ T9744] RAX: ffffffffffffffda RBX: 00007f9cce615fa0 RCX: 00007f9cce39c799 [ 328.144580][ T9744] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000003 [ 328.144598][ T9744] RBP: 00007f9ccf21d090 R08: 0000000000000000 R09: 0000000000000000 [ 328.144615][ T9744] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 328.144632][ T9744] R13: 00007f9cce616038 R14: 00007f9cce615fa0 R15: 00007fffa00273c8 [ 328.144672][ T9744] [ 330.252124][ T51] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 330.290176][ T51] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 330.298553][ T51] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:0' [ 330.309523][ T51] CPU: 0 UID: 0 PID: 51 Comm: kworker/u9:0 Tainted: G L syzkaller #0 PREEMPT(full) [ 330.309572][ T51] Tainted: [L]=SOFTLOCKUP [ 330.309583][ T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 330.309626][ T51] Workqueue: hci0 hci_rx_work [ 330.309703][ T51] Call Trace: [ 330.309713][ T51] [ 330.309725][ T51] dump_stack_lvl+0x100/0x190 [ 330.309773][ T51] sysfs_warn_dup.cold+0x1c/0x28 [ 330.309828][ T51] sysfs_create_dir_ns+0x24b/0x2b0 [ 330.309872][ T51] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 330.309911][ T51] ? find_held_lock+0x2b/0x80 [ 330.309940][ T51] ? kobject_add_internal+0x25f/0x930 [ 330.310033][ T51] ? kobject_add_internal+0x25f/0x930 [ 330.310079][ T51] ? do_raw_spin_unlock+0x145/0x1e0 [ 330.310127][ T51] kobject_add_internal+0x2c8/0x930 [ 330.310179][ T51] kobject_add+0x16a/0x1e0 [ 330.310223][ T51] ? __pfx_kobject_add+0x10/0x10 [ 330.310263][ T51] ? class_to_subsys+0x10f/0x150 [ 330.310334][ T51] ? kobject_put+0xb9/0x640 [ 330.310374][ T51] ? _raw_spin_unlock+0x28/0x50 [ 330.310420][ T51] device_add+0x294/0x1950 [ 330.310483][ T51] ? __pfx_dev_set_name+0x10/0x10 [ 330.310519][ T51] ? __pfx_device_add+0x10/0x10 [ 330.310551][ T51] ? mgmt_send_event_skb+0x2fb/0x460 [ 330.310633][ T51] hci_conn_add_sysfs+0x1a3/0x260 [ 330.310696][ T51] le_conn_complete_evt+0x11cb/0x1f40 [ 330.310763][ T51] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 330.310791][ T51] ? __pfx_bt_warn+0x10/0x10 [ 330.310860][ T51] hci_le_conn_complete_evt+0x23c/0x3a0 [ 330.310891][ T51] ? skb_pull_data+0x15f/0x1e0 [ 330.310940][ T51] hci_le_meta_evt+0x34a/0x5f0 [ 330.310997][ T51] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 330.311033][ T51] hci_event_packet+0x682/0x11c0 [ 330.311062][ T51] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 330.311098][ T51] ? __pfx_hci_event_packet+0x10/0x10 [ 330.311134][ T51] ? kcov_remote_start+0x374/0x660 [ 330.311182][ T51] ? lockdep_hardirqs_on+0x78/0x100 [ 330.311226][ T51] hci_rx_work+0x451/0xfc0 [ 330.311268][ T51] process_one_work+0x9d7/0x1920 [ 330.311332][ T51] ? __pfx_process_one_work+0x10/0x10 [ 330.311391][ T51] ? __pfx_hci_rx_work+0x10/0x10 [ 330.311427][ T51] worker_thread+0x5da/0xe40 [ 330.311497][ T51] ? kthread+0x13a/0x450 [ 330.311535][ T51] ? __pfx_worker_thread+0x10/0x10 [ 330.311575][ T51] kthread+0x370/0x450 [ 330.311615][ T51] ? __pfx_kthread+0x10/0x10 [ 330.311659][ T51] ret_from_fork+0x754/0xd80 [ 330.311710][ T51] ? __pfx_ret_from_fork+0x10/0x10 [ 330.311759][ T51] ? __switch_to+0x7b4/0x1120 [ 330.311792][ T51] ? __pfx_kthread+0x10/0x10 [ 330.311837][ T51] ret_from_fork_asm+0x1a/0x30 [ 330.311893][ T51] [ 330.608433][ T51] kobject: kobject_add_internal failed for hci0:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 330.622459][ T51] Bluetooth: hci0: failed to register connection device [ 330.726241][ T9770] futex_wake_op: syz.3.832 tries to shift op by -2048; fix this program [ 330.881667][ T9770] futex_wake_op: syz.3.832 tries to shift op by -2048; fix this program [ 331.302017][ T9779] FAULT_INJECTION: forcing a failure. [ 331.302017][ T9779] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 331.396683][ T9779] CPU: 1 UID: 0 PID: 9779 Comm: syz.2.836 Tainted: G L syzkaller #0 PREEMPT(full) [ 331.396730][ T9779] Tainted: [L]=SOFTLOCKUP [ 331.396740][ T9779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 331.396756][ T9779] Call Trace: [ 331.396765][ T9779] [ 331.396776][ T9779] dump_stack_lvl+0x100/0x190 [ 331.396826][ T9779] should_fail_ex.cold+0x5/0xa [ 331.396861][ T9779] _copy_from_user+0x2e/0xd0 [ 331.396903][ T9779] ____sys_sendmsg+0x1d1/0xb70 [ 331.396949][ T9779] ? __pfx_____sys_sendmsg+0x10/0x10 [ 331.396997][ T9779] ? __pfx__kstrtoull+0x10/0x10 [ 331.397041][ T9779] ___sys_sendmsg+0x190/0x1e0 [ 331.397087][ T9779] ? __pfx____sys_sendmsg+0x10/0x10 [ 331.397151][ T9779] ? find_held_lock+0x2b/0x80 [ 331.397203][ T9779] __sys_sendmmsg+0x205/0x430 [ 331.397244][ T9779] ? __pfx___sys_sendmmsg+0x10/0x10 [ 331.397292][ T9779] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 331.397347][ T9779] ? fput+0x79/0x100 [ 331.397380][ T9779] ? ksys_write+0x1ac/0x250 [ 331.397404][ T9779] ? __pfx_ksys_write+0x10/0x10 [ 331.397437][ T9779] __x64_sys_sendmmsg+0x9c/0x100 [ 331.397472][ T9779] ? lockdep_hardirqs_on+0x78/0x100 [ 331.397506][ T9779] do_syscall_64+0x106/0xf80 [ 331.397540][ T9779] ? clear_bhb_loop+0x40/0x90 [ 331.397576][ T9779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.397606][ T9779] RIP: 0033:0x7f793879c799 [ 331.397630][ T9779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 331.397657][ T9779] RSP: 002b:00007f7939652028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 331.397684][ T9779] RAX: ffffffffffffffda RBX: 00007f7938a15fa0 RCX: 00007f793879c799 [ 331.397704][ T9779] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000003 [ 331.397721][ T9779] RBP: 00007f7939652090 R08: 0000000000000000 R09: 0000000000000000 [ 331.397738][ T9779] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001 [ 331.397755][ T9779] R13: 00007f7938a16038 R14: 00007f7938a15fa0 R15: 00007ffdef435078 [ 331.397795][ T9779] [ 332.048206][ T9780] zswap: compressor not available [ 332.632774][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 333.442057][ T9797] can: request_module (can-proto-0) failed. [ 334.712048][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 334.865328][ T9833] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 700000007 [ 337.347909][ T9875] ================================================================== [ 337.347942][ T9875] BUG: KASAN: slab-use-after-free in fbcon_prepare_logo+0x94e/0xc60 [ 337.348043][ T9875] Read of size 8 at addr ffff88802d239980 by task syz.3.857/9875 [ 337.348058][ T9875] [ 337.348071][ T9875] CPU: 0 UID: 0 PID: 9875 Comm: syz.3.857 Tainted: G L syzkaller #0 PREEMPT(full) [ 337.348096][ T9875] Tainted: [L]=SOFTLOCKUP [ 337.348102][ T9875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 337.348114][ T9875] Call Trace: [ 337.348120][ T9875] [ 337.348127][ T9875] dump_stack_lvl+0x100/0x190 [ 337.348153][ T9875] print_report+0x156/0x4c9 [ 337.348179][ T9875] ? __virt_addr_valid+0x81/0x620 [ 337.348202][ T9875] ? __phys_addr+0xe8/0x180 [ 337.348224][ T9875] ? fbcon_prepare_logo+0x94e/0xc60 [ 337.348252][ T9875] kasan_report+0xdf/0x1e0 [ 337.348270][ T9875] ? fbcon_prepare_logo+0x94e/0xc60 [ 337.348300][ T9875] kasan_check_range+0x10f/0x1e0 [ 337.348322][ T9875] __asan_memcpy+0x23/0x60 [ 337.348354][ T9875] fbcon_prepare_logo+0x94e/0xc60 [ 337.348385][ T9875] fbcon_init+0x10a0/0x1820 [ 337.348415][ T9875] visual_init+0x320/0x620 [ 337.348469][ T9875] do_bind_con_driver.isra.0+0x636/0x9c0 [ 337.348494][ T9875] store_bind+0x609/0x730 [ 337.348516][ T9875] ? __pfx_store_bind+0x10/0x10 [ 337.348536][ T9875] dev_attr_store+0x58/0x80 [ 337.348564][ T9875] ? __pfx_dev_attr_store+0x10/0x10 [ 337.348594][ T9875] sysfs_kf_write+0xf2/0x150 [ 337.348616][ T9875] kernfs_fop_write_iter+0x3e0/0x5f0 [ 337.348634][ T9875] ? __pfx_sysfs_kf_write+0x10/0x10 [ 337.348656][ T9875] vfs_write+0x6ac/0x1070 [ 337.348683][ T9875] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 337.348702][ T9875] ? __pfx_vfs_write+0x10/0x10 [ 337.348736][ T9875] ksys_write+0x12a/0x250 [ 337.348751][ T9875] ? __pfx_ksys_write+0x10/0x10 [ 337.348770][ T9875] do_syscall_64+0x106/0xf80 [ 337.348791][ T9875] ? clear_bhb_loop+0x40/0x90 [ 337.348811][ T9875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.348830][ T9875] RIP: 0033:0x7f8da0d9c799 [ 337.348844][ T9875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.348862][ T9875] RSP: 002b:00007f8da1cbd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 337.348879][ T9875] RAX: ffffffffffffffda RBX: 00007f8da1016180 RCX: 00007f8da0d9c799 [ 337.348892][ T9875] RDX: 0000000000000084 RSI: 0000200000000040 RDI: 0000000000000003 [ 337.348902][ T9875] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 337.348914][ T9875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.348925][ T9875] R13: 00007f8da1016218 R14: 00007f8da1016180 R15: 00007ffd13bfa138 [ 337.348942][ T9875] [ 337.348949][ T9875] [ 337.348954][ T9875] Allocated by task 5193: [ 337.348964][ T9875] kasan_save_stack+0x30/0x50 [ 337.348989][ T9875] kasan_save_track+0x14/0x30 [ 337.349015][ T9875] __kasan_kmalloc+0xaa/0xb0 [ 337.349039][ T9875] __kmalloc_noprof+0x301/0x850 [ 337.349064][ T9875] tomoyo_encode2+0xfb/0x3c0 [ 337.349082][ T9875] tomoyo_encode+0x29/0x50 [ 337.349099][ T9875] tomoyo_realpath_from_path+0x18c/0x690 [ 337.349119][ T9875] tomoyo_path_perm+0x276/0x460 [ 337.349163][ T9875] security_inode_getattr+0x116/0x280 [ 337.349191][ T9875] vfs_fstat+0x4b/0xe0 [ 337.349209][ T9875] __do_sys_newfstat+0x8b/0x110 [ 337.349228][ T9875] do_syscall_64+0x106/0xf80 [ 337.349247][ T9875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.349265][ T9875] [ 337.349269][ T9875] Freed by task 5193: [ 337.349277][ T9875] kasan_save_stack+0x30/0x50 [ 337.349303][ T9875] kasan_save_track+0x14/0x30 [ 337.349336][ T9875] kasan_save_free_info+0x3b/0x70 [ 337.349357][ T9875] __kasan_slab_free+0x5f/0x80 [ 337.349372][ T9875] kfree+0x1f6/0x6b0 [ 337.349391][ T9875] tomoyo_path_perm+0x29c/0x460 [ 337.349417][ T9875] security_inode_getattr+0x116/0x280 [ 337.349445][ T9875] vfs_fstat+0x4b/0xe0 [ 337.349463][ T9875] __do_sys_newfstat+0x8b/0x110 [ 337.349483][ T9875] do_syscall_64+0x106/0xf80 [ 337.349502][ T9875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.349520][ T9875] [ 337.349524][ T9875] The buggy address belongs to the object at ffff88802d239980 [ 337.349524][ T9875] which belongs to the cache kmalloc-64 of size 64 [ 337.349539][ T9875] The buggy address is located 0 bytes inside of [ 337.349539][ T9875] freed 64-byte region [ffff88802d239980, ffff88802d2399c0) [ 337.349557][ T9875] [ 337.349562][ T9875] The buggy address belongs to the physical page: [ 337.349570][ T9875] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2d239 [ 337.349587][ T9875] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 337.349601][ T9875] page_type: f5(slab) [ 337.349616][ T9875] raw: 00fff00000000000 ffff88813fe3c8c0 dead000000000100 dead000000000122 [ 337.349634][ T9875] raw: 0000000000000000 0000000800200020 00000000f5000000 0000000000000000 [ 337.349644][ T9875] page dumped because: kasan: bad access detected [ 337.349653][ T9875] page_owner tracks the page as allocated [ 337.349659][ T9875] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 16755570248, free_ts 16700197835 [ 337.349689][ T9875] post_alloc_hook+0x153/0x170 [ 337.349711][ T9875] get_page_from_freelist+0x111d/0x3140 [ 337.349735][ T9875] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 337.349761][ T9875] new_slab+0xa6/0x6c0 [ 337.349780][ T9875] refill_objects+0x26b/0x400 [ 337.349803][ T9875] __pcs_replace_empty_main+0x1ab/0x600 [ 337.349828][ T9875] __kmalloc_cache_noprof+0x493/0x6f0 [ 337.349850][ T9875] __component_add+0x51/0x610 [ 337.349876][ T9875] usb_hub_create_port_device+0x486/0xd90 [ 337.349933][ T9875] hub_probe.cold+0x2974/0x2ed5 [ 337.349968][ T9875] usb_probe_interface+0x303/0x8f0 [ 337.350020][ T9875] really_probe+0x241/0xa60 [ 337.350043][ T9875] __driver_probe_device+0x1de/0x400 [ 337.350067][ T9875] driver_probe_device+0x4c/0x1b0 [ 337.350092][ T9875] __device_attach_driver+0x1df/0x340 [ 337.350117][ T9875] bus_for_each_drv+0x159/0x1e0 [ 337.350136][ T9875] page last free pid 42 tgid 42 stack trace: [ 337.350147][ T9875] __free_frozen_pages+0x7e1/0x10d0 [ 337.350168][ T9875] vfree.part.0+0x12b/0x9d0 [ 337.350187][ T9875] delayed_vfree_work+0x8e/0xd0 [ 337.350206][ T9875] process_one_work+0x9d7/0x1920 [ 337.350229][ T9875] worker_thread+0x5da/0xe40 [ 337.350252][ T9875] kthread+0x370/0x450 [ 337.350273][ T9875] ret_from_fork+0x754/0xd80 [ 337.350297][ T9875] ret_from_fork_asm+0x1a/0x30 [ 337.350314][ T9875] [ 337.350318][ T9875] Memory state around the buggy address: [ 337.350334][ T9875] ffff88802d239880: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc [ 337.350347][ T9875] ffff88802d239900: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 337.350359][ T9875] >ffff88802d239980: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 337.350369][ T9875] ^ [ 337.350378][ T9875] ffff88802d239a00: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc [ 337.350391][ T9875] ffff88802d239a80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 337.350400][ T9875] ================================================================== [ 337.350419][ T9875] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 337.350433][ T9875] CPU: 0 UID: 0 PID: 9875 Comm: syz.3.857 Tainted: G L syzkaller #0 PREEMPT(full) [ 337.350458][ T9875] Tainted: [L]=SOFTLOCKUP [ 337.350465][ T9875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 337.350476][ T9875] Call Trace: [ 337.350482][ T9875] [ 337.350489][ T9875] dump_stack_lvl+0x100/0x190 [ 337.350515][ T9875] vpanic+0x552/0x970 [ 337.350532][ T9875] ? __pfx_vpanic+0x10/0x10 [ 337.350550][ T9875] ? __pfx_vprintk_emit+0x10/0x10 [ 337.350569][ T9875] ? fbcon_prepare_logo+0x94e/0xc60 [ 337.350597][ T9875] panic+0xd1/0xe0 [ 337.350613][ T9875] ? __pfx_panic+0x10/0x10 [ 337.350637][ T9875] ? fbcon_prepare_logo+0x94e/0xc60 [ 337.350667][ T9875] check_panic_on_warn.cold+0x19/0x34 [ 337.350687][ T9875] end_report.part.0+0x3a/0x90 [ 337.350712][ T9875] kasan_report.cold+0xe/0x18 [ 337.350737][ T9875] ? fbcon_prepare_logo+0x94e/0xc60 [ 337.350768][ T9875] kasan_check_range+0x10f/0x1e0 [ 337.350789][ T9875] __asan_memcpy+0x23/0x60 [ 337.350821][ T9875] fbcon_prepare_logo+0x94e/0xc60 [ 337.350865][ T9875] fbcon_init+0x10a0/0x1820 [ 337.350908][ T9875] visual_init+0x320/0x620 [ 337.350931][ T9875] do_bind_con_driver.isra.0+0x636/0x9c0 [ 337.350955][ T9875] store_bind+0x609/0x730 [ 337.350977][ T9875] ? __pfx_store_bind+0x10/0x10 [ 337.350997][ T9875] dev_attr_store+0x58/0x80 [ 337.351025][ T9875] ? __pfx_dev_attr_store+0x10/0x10 [ 337.351054][ T9875] sysfs_kf_write+0xf2/0x150 [ 337.351076][ T9875] kernfs_fop_write_iter+0x3e0/0x5f0 [ 337.351094][ T9875] ? __pfx_sysfs_kf_write+0x10/0x10 [ 337.351117][ T9875] vfs_write+0x6ac/0x1070 [ 337.351145][ T9875] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 337.351165][ T9875] ? __pfx_vfs_write+0x10/0x10 [ 337.351199][ T9875] ksys_write+0x12a/0x250 [ 337.351214][ T9875] ? __pfx_ksys_write+0x10/0x10 [ 337.351233][ T9875] do_syscall_64+0x106/0xf80 [ 337.351254][ T9875] ? clear_bhb_loop+0x40/0x90 [ 337.351274][ T9875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.351293][ T9875] RIP: 0033:0x7f8da0d9c799 [ 337.351307][ T9875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.351332][ T9875] RSP: 002b:00007f8da1cbd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 337.351350][ T9875] RAX: ffffffffffffffda RBX: 00007f8da1016180 RCX: 00007f8da0d9c799 [ 337.351362][ T9875] RDX: 0000000000000084 RSI: 0000200000000040 RDI: 0000000000000003 [ 337.351374][ T9875] RBP: 00007f8da0e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 337.351385][ T9875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.351397][ T9875] R13: 00007f8da1016218 R14: 00007f8da1016180 R15: 00007ffd13bfa138 [ 337.351414][ T9875] [ 337.351716][ T9875] Kernel Offset: disabled