last executing test programs: 4.292106107s ago: executing program 2 (id=2156): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x82, 0x0, 0x8) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.21977749s ago: executing program 1 (id=2158): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) statx$auto(r0, 0x0, 0x1003, 0x4005, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x20008, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x6, 0x7bd6, 0x0) 4.017164074s ago: executing program 1 (id=2161): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80000, 0x300) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x2001, 0x8) mmap$auto(0x0, 0x4, 0xdf, 0x80000000000eb1, 0x3, 0x0) sysfs$auto(0x2, 0x4, 0x0) r2 = socket(0xa, 0x5, 0x0) getsockopt$auto(r2, 0x84, 0x12, 0x0, 0x0) r3 = getuid() r4 = getegid() setregid$auto(r4, r4) statx$auto(r1, &(0x7f0000001100)='./file0\x00', 0x0, 0x1, &(0x7f0000001140)={0x1, 0x6, 0x9, 0x8, r3, r4, 0x6, 0x3, 0x1025, 0xffff, 0x8, 0xfffffffffffffffd, {0xc, 0x7}, {0x1, 0x2}, {0x5, 0x8001}, {0x8, 0x101}, 0x7e05b10f, 0x7, 0x7b6, 0x1, 0x4, 0x7, 0x40000a, 0x1, 0x5, 0x3, 0xd, 0x1c5, [0x3ff, 0x84, 0x80000001, 0x8, 0x96, 0x0, 0x20, 0x0, 0x1]}) r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) futimesat$auto(0xffffffffffffffff, 0x0, &(0x7f0000001240)={0x8, 0x2}) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400", @ANYRES16=r6, @ANYBLOB="01002bbd7000fbdbdf250100000031208be8a5b4f52d83483e5c2d79da46e337d98473588f99774c7eb4868b973c1cef8187525db7b5b4e78678eb59512dbc7b11f4e29c29e3273c870a9555cf469e67e8886341e84d38edd658cf267f92e1e785a50fe500fbc125a65f8a4e5aa458a90f3d87fc71eca6309fc0ee1724cea121a7c96dbba43270448ec20cd22915c1cfa658b316e773d1eff747e371aace10d66450a3666b7be9754bde44d1"], 0x14}, 0x1, 0x0, 0x0, 0x4014}, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_FLUSH(r7, &(0x7f0000001040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20004005}, 0x40008c4) semctl$auto(0x7, 0x2, 0x13, 0x1) r8 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0xfffffffffffffffe, 0x9e, 0x12, 0x20eb1, 0x40000000000a5, 0x8004) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r9 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r9, 0x0) ioctl$auto_UI_DEV_SETUP(r8, 0x405c5503, &(0x7f00000012c0)={{0x9, 0xf2cf, 0x3, 0x8001}, "6a034a07c7b80000000039e32576f893fba86c9dd051a0094a3836d61c9100fefbbabe86ef9368881e5af109f83839d4992f726b0a6c36b0b2fd1678e816203cf562367fe6596824588a2e3d84ba165f", 0x9}) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x200, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r10, &(0x7f0000000600)="de91b83a075ce51fff544f85b0b6d328f3beb9b8634fd16bf2701cb13a2d93abd4142a449aa0cac9a1586e4fbc7b163c42c4adfad8824de8783614b2dcf995a43c8cf63d2e2facaebb7019f67c4241ee77139ef43eacde5fcb4ca071ad7ecd284cb135be34415cca234d6a11827fe881a06111504ccdbebb0a6ee4a2e2a62fc7c8", 0x81) ioctl$auto_UI_DEV_CREATE(r8, 0x5501, 0x0) 3.909935235s ago: executing program 2 (id=2162): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80000, 0x300) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x2001, 0x8) mmap$auto(0x0, 0x4, 0xdf, 0x80000000000eb1, 0x3, 0x0) sysfs$auto(0x2, 0x4, 0x0) r2 = socket(0xa, 0x5, 0x0) getsockopt$auto(r2, 0x84, 0x12, 0x0, 0x0) r3 = getuid() r4 = getegid() setregid$auto(r4, r4) statx$auto(r1, &(0x7f0000001100)='./file0\x00', 0x0, 0x1, &(0x7f0000001140)={0x1, 0x6, 0x9, 0x8, r3, r4, 0x6, 0x3, 0x1025, 0xffff, 0x8, 0xfffffffffffffffd, {0xc, 0x7}, {0x1, 0x2}, {0x5, 0x8001}, {0x8, 0x101}, 0x7e05b10f, 0x7, 0x7b6, 0x1, 0x4, 0x7, 0x40000a, 0x1, 0x5, 0x3, 0xd, 0x1c5, [0x3ff, 0x84, 0x80000001, 0x8, 0x96, 0x0, 0x20, 0x0, 0x1]}) r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) futimesat$auto(0xffffffffffffffff, 0x0, &(0x7f0000001240)={0x8, 0x2}) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fbdbdf250100000031208be8a5b4f52d83483e5c2d79da46e337d98473588f99774c7eb4868b973c1cef8187525db7b5b4e78678eb59512dbc7b11f4e29c29e3273c870a9555cf469e67e8886341e84d38edd658cf267f92e1e785a50fe500fbc125a65f8a4e5aa458a90f3d87fc71eca6309fc0ee1724cea121a7c96dbba43270448ec20cd22915c1cfa658b316e773d1eff747e371aace10d66450a3666b7be9754bde44d1"], 0x14}, 0x1, 0x0, 0x0, 0x4014}, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_FLUSH(r7, &(0x7f0000001040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004005}, 0x40008c4) semctl$auto(0x7, 0x2, 0x13, 0x1) r8 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0xfffffffffffffffe, 0x9e, 0x12, 0x20eb1, 0x40000000000a5, 0x8004) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r9 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r9, 0x0) ioctl$auto_UI_DEV_SETUP(r8, 0x405c5503, &(0x7f00000012c0)={{0x9, 0xf2cf, 0x3, 0x8001}, "6a034a07c7b80000000039e32576f893fba86c9dd051a0094a3836d61c9100fefbbabe86ef9368881e5af109f83839d4992f726b0a6c36b0b2fd1678e816203cf562367fe6596824588a2e3d84ba165f", 0x9}) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x200, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r10, &(0x7f0000000600)="de91b83a075ce51fff544f85b0b6d328f3beb9b8634fd16bf2701cb13a2d93abd4142a449aa0cac9a1586e4fbc7b163c42c4adfad8824de8783614b2dcf995a43c8cf63d2e2facaebb7019f67c4241ee77139ef43eacde5fcb4ca071ad7ecd284cb135be34415cca234d6a11827fe881a06111504ccdbebb0a6ee4a2e2a62fc7c8", 0x81) ioctl$auto_UI_DEV_CREATE(r8, 0x5501, 0x0) 3.788635218s ago: executing program 1 (id=2163): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x2, 0x0) socket(0xa, 0x3, 0x3a) r0 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x4, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0xf) r3 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x40) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xc) select$auto(0x6, &(0x7f0000000000)={[0x5, 0x4, 0x4, 0xa, 0xccf9, 0x9, 0xffffffffffffffff, 0x3, 0xb, 0x1, 0x100000000000000, 0x3, 0xfffffffffffffe8f, 0x3, 0x10001, 0xfffffffffffffff5]}, &(0x7f0000000100)={[0x8, 0x200000000005, 0x7, 0x7, 0x8, 0x80000004, 0xc, 0x6, 0x8fc, 0xb80, 0xe34d, 0x9, 0x3, 0xfffffffffffff954, 0xfffffffffffffffc, 0xfff]}, 0x0, 0x0) 3.768866021s ago: executing program 0 (id=2164): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x2c42, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_XFS_IOC_FD_TO_HANDLE(0xffffffffffffffff, 0xc038586a, &(0x7f00000002c0)={0xffffffffffffffff, &(0x7f00000000c0)="72596b0434f2c620", 0x2, &(0x7f0000000180)="5c0897c9dcc8e6e255a1fdce09f7e75a60ab3b5771fccf70cb7cd678e27cd7290258b699cb42d1e7591ac9fd1fe05a38a8d3e3f9721fcae1c7e410f908c7aea83b56e8d0483bdae44fd9d139e56dd82e9e2bfc6c070b130a79f7e826d41dd214db351e325478be01483b38d4e92848f5945f172863a4114feebfb0365da7027a917c9bd3c36776609ed1bee28feafe3539bb42019dcf3b62cae60e15ccffe3cd45f4cbfcd4a77fab1b510cdd80ac3a0e99ca8e64521d5aaa422d0a39", 0xca5, &(0x7f0000000240)="a495c7ebbfe789173d6afde1c28451ef3b8e94e01f31b13654eb4ed28c0a45b5a3ac3ed11d4ada2e0d4e28", &(0x7f0000000280)=0xd8}) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video47\x00', 0x80, 0x0) read$auto(0x3, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)={0x20, r1, 0x27c9d9d5b13b6c03, 0x70bd25, 0x25dfdbfe, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x2}, @HWSIM_ATTR_MULTI_RADIO={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) 3.674764017s ago: executing program 2 (id=2165): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xade, 0x0) bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f00000000c0)=@test={0xffffffffffffffff, 0x400, 0x4, 0x4, 0x101, 0x200, 0x2, 0x1, 0x8001, 0x30c, 0x8001, 0x9, 0x40000, 0x80, 0x8d8}, 0xa) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x248300, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0x4000009, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdf, 0x0, [{0x40000020, 0x3ff, 0x2}]}) 3.549685187s ago: executing program 1 (id=2166): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vidtv.0/i2c-0/dvb/dvb0.dvr0/uevent\x00', 0x183800, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) listen$auto(0x3, 0x83) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) close_range$auto(0xffffffffffffffff, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000003d40), 0xffffffffffffffff) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) msgrcv$auto(0x0, 0x0, 0x4, 0x9, 0x3) msgctl$auto(0x0, 0x1, 0x0) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/178, 0xb2) 3.469501414s ago: executing program 2 (id=2167): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x480c1, 0x0) epoll_ctl$auto_EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20804, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f0000000200)={[0x80000000008, 0xffffffffffffff4b, 0x100000001, 0x15, 0x8001, 0x1, 0x9, 0x5, 0x8, 0x40000000000000, 0x3, 0x8000000008, 0xfffffffffffffffa, 0xab, 0x2, 0x9]}, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x74c) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0x2, 0x400000000009b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/shmem_enabled\x00', 0xc8002, 0x0) writev$auto(r0, &(0x7f0000000080)={0x0, 0x9}, 0x4) syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0) 3.235814289s ago: executing program 0 (id=2169): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2002, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48442, 0x0) read$auto(r0, 0x0, 0x9a28) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000140)={0x0, 0x7}, 0x3) write$auto_snd_pcm_f_ops_pcm(0xffffffffffffffff, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0) sendfile$auto(r2, r2, 0x0, 0x3) write$auto(0xca, &(0x7f0000000280)='\x04>V\x1b\x89\x0e\x82\xd5\x99\xb6\x00\xeb\xbc(ex\x8c6\x9aK\x13\xa9m\xa5\vL\x00\x00\x00\x00\x00o\x9eR_\x03\x82]\xdc\a\b\xda\xe2\xadi\xf0\xa6\x068\xdb\xb12k\r\xd7\fC\b\f\x9fA>\xb3/\x0f\xc3\f\xf3\x95-\xc9\xe2\x84+O\x922+\b\a\xf4S\xab\x9a8\xa8\xa2\xf6$^N\xb5.\xc5%m\xaeeP\xd7M\xe0\xfb\x86\xcd\xf9\x844\xa5H\xf9\xf2e\n\xc0\x11_T\x16*p\xcf\x7f\xc3\x94\xdb_\x9d\xe5\xd5\xc4\xf0\xc2<\xb0\xb4\xc9\xf2\xdd+\xe3\xb5)&[\x7f\xb2R\x11o8\xb6\xc0\x80?b\xa7\x03=E\x98\xd5\xa2Z\x8e-\xc2J\xaaM\xe10Dh\x143\x02V\xec\xce\x9cD\xff\x85=\x82g\xfe\xc8\xfa\xecK\xc1\x8c\x8cA\f\xfe', 0x80) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) 3.088752948s ago: executing program 3 (id=2170): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r1 = socket(0xa, 0x1, 0x84) recvmmsg$auto(0x3, 0x0, 0xfffc, 0x0, 0x0) gettid() r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(0xffffffffffffffff, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000003a00)={0x34, r2, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1c, 0x1, 0x0, 0x1, [@nested={0x15, 0x139, 0x0, 0x1, [@nested={0x4, 0xeb}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x801, 0x106) getsockopt$auto(0x100000006, 0x0, 0x21, 0xfffffffffffffffe, 0x0) sendmsg$auto_NL80211_CMD_DEL_PMK(0xffffffffffffffff, 0x0, 0x20008000) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000200) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x3, 0x0) fcntl$auto_F_NOTIFY(r1, 0x402, 0x8) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) mremap$auto(0x110c231000, 0x4, 0x4, 0x7, 0x100000000) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r3, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x200000000000404, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0x123001, 0x0) write$auto(r4, 0x0, 0x9) read$auto(r0, &(0x7f0000000000)='*`@\\!#.\\\x00', 0x3) 2.998461517s ago: executing program 2 (id=2171): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) connect$auto(r0, 0x0, 0x58) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) listen$auto(0x3, 0x83) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) close_range$auto(0xffffffffffffffff, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000003d40), 0xffffffffffffffff) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) msgrcv$auto(0x0, 0x0, 0x4, 0x9, 0x3) msgctl$auto(0x0, 0x1, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) 2.9152607s ago: executing program 0 (id=2172): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80000, 0x300) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x2001, 0x8) mmap$auto(0x0, 0x4, 0xdf, 0x80000000000eb1, 0x3, 0x0) sysfs$auto(0x2, 0x4, 0x0) r2 = socket(0xa, 0x5, 0x0) getsockopt$auto(r2, 0x84, 0x12, 0x0, 0x0) r3 = getuid() r4 = getegid() setregid$auto(r4, r4) statx$auto(r1, &(0x7f0000001100)='./file0\x00', 0x0, 0x1, &(0x7f0000001140)={0x1, 0x6, 0x9, 0x8, r3, r4, 0x6, 0x3, 0x1025, 0xffff, 0x8, 0xfffffffffffffffd, {0xc, 0x7}, {0x1, 0x2}, {0x5, 0x8001}, {0x8, 0x101}, 0x7e05b10f, 0x7, 0x7b6, 0x1, 0x4, 0x7, 0x40000a, 0x1, 0x5, 0x3, 0xd, 0x1c5, [0x3ff, 0x84, 0x80000001, 0x8, 0x96, 0x0, 0x20, 0x0, 0x1]}) r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) futimesat$auto(0xffffffffffffffff, 0x0, &(0x7f0000001240)={0x8, 0x2}) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400", @ANYRES16=r6, @ANYBLOB="01002bbd7000fbdbdf250100000031208be8a5b4f52d83483e5c2d79da46e337d98473588f99774c7eb4868b973c1cef8187525db7b5b4e78678eb59512dbc7b11f4e29c29e3273c870a9555cf469e67e8886341e84d38edd658cf267f92e1e785a50fe500fbc125a65f8a4e5aa458a90f3d87fc71eca6309fc0ee1724cea121a7c96dbba43270448ec20cd22915c1cfa658b316e773d1eff747e371aace10d66450a3666b7be9754bde44d1"], 0x14}, 0x1, 0x0, 0x0, 0x4014}, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_FLUSH(r7, &(0x7f0000001040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20004005}, 0x40008c4) semctl$auto(0x7, 0x2, 0x13, 0x1) r8 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0xfffffffffffffffe, 0x9e, 0x12, 0x20eb1, 0x40000000000a5, 0x8004) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r9 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r9, 0x0) ioctl$auto_UI_DEV_SETUP(r8, 0x405c5503, &(0x7f00000012c0)={{0x9, 0xf2cf, 0x3, 0x8001}, "6a034a07c7b80000000039e32576f893fba86c9dd051a0094a3836d61c9100fefbbabe86ef9368881e5af109f83839d4992f726b0a6c36b0b2fd1678e816203cf562367fe6596824588a2e3d84ba165f", 0x9}) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x200, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r10, &(0x7f0000000600)="de91b83a075ce51fff544f85b0b6d328f3beb9b8634fd16bf2701cb13a2d93abd4142a449aa0cac9a1586e4fbc7b163c42c4adfad8824de8783614b2dcf995a43c8cf63d2e2facaebb7019f67c4241ee77139ef43eacde5fcb4ca071ad7ecd284cb135be34415cca234d6a11827fe881a06111504ccdbebb0a6ee4a2e2a62fc7c8", 0x81) ioctl$auto_UI_DEV_CREATE(r8, 0x5501, 0x0) 2.620956939s ago: executing program 0 (id=2173): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="010027bd7000fddbdf251900000210000000000000de1390000200776c616e"], 0x34}, 0x1, 0x0, 0x0, 0x20040840}, 0x40000) r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) ioctl$auto(r1, 0x3b8f, 0x38) 2.389776517s ago: executing program 0 (id=2174): socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x28002, 0x0) openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000640)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x40, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/nr_hugepages\x00', 0x642, 0x0) socketpair$auto(0x1e, 0x5, 0x8, 0x0) write$auto_uhid_fops_uhid(r0, 0x0, 0xfccd) 2.348804014s ago: executing program 3 (id=2175): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r0, 0x0) r2 = socket(0x10, 0x2, 0x4) bpf$auto(0x11, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x1, 0xffffffffffffffff, 0xa, 0x6}, 0xcf) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) r3 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 2.038446545s ago: executing program 3 (id=2176): openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x301, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) select$auto(0x6, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x4, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5a, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x35]}, 0x0) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x20480, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r1, 0x1, 0x7ff) ptrace$auto_PTRACE_SECCOMP_GET_METADATA(0x420d, r1, 0x62, 0x27dd) ptrace$auto_PTRACE_GET_RSEQ_CONFIGURATION(0x420f, r1, 0x1000, 0xfff) r2 = socket(0x9, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_DUMPHMAC(r3, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x20008804) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000280)=0x0) sendto$auto(r3, &(0x7f0000000180)="b03188399fe6c630a0e6e9b47e7cdf95ed6db3740c77c6e4de1bba028e746f6e53b45fe99e1671935cd1bf714c986cf5e0b12652266aaeb0a487c221e7a3986a1335b52576ce78ed4aac413528c30f05de3e549aa4743b3599b036e373822e6f7d1bd0e621f1d1", 0x8000000000000000, 0x7, &(0x7f0000000300)=@nfc={0x27, r4, 0x0, 0x1}, 0x5) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x121802, 0x0) read$auto(r5, &(0x7f0000000480)='N\xd5\f\xb9GC*(,\x80\xc4bAL\xa3`\xb1\xf2\xe7\xc0/\xff', 0x100000001) r6 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/block/nbd13/hctx0/cpu1/default_rq_list\x00', 0x169100, 0x0) pread64$auto(r6, 0x0, 0x1000f42d, 0x100) getsockopt$auto_SO_TIMESTAMPING_NEW(r6, 0x9, 0x41, &(0x7f0000000140)='SEG6\x00', &(0x7f0000000380)=0xdc) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02002cbd7000fbdbdf25020001000800030080004000080002"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="723419d5f222397e0cb0da4df5d13600", @ANYRES32=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f00000012c0)={{@raw=0x3, 0x1, 0x6d2e99e8, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26fddb7b62b67bd764f9", @inferred=r1}, 0x0, @integer64=@value_ptr=0x0, "72ad000cac2d45bdaacfc82245992af763188bf00ab57d5d73b094925a872f57fd2f672f85343275f80200000000000000ab45f7259ed959a79a789527277d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8188ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c200"}) 1.933152664s ago: executing program 0 (id=2177): mmap$auto(0x100000000, 0x2000d, 0x1, 0xeb1, 0xffffffffffffffff, 0x100000000) sysfs$auto(0x2, 0x5, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) semget$auto(0x0, 0x13c, 0x1ff) recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffd}, 0x8}, 0x3, 0x1, 0x0) semtimedop$auto(0x0, &(0x7f0000000140)={0x7, 0x81, 0x70}, 0x1f4, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r1, 0x80045105, 0x0) r2 = socket(0xec76ec07a7dca0b6, 0xa, 0x9) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0) r4 = ioctl$auto_TUNSETDEBUG(0xffffffffffffffff, 0x400454c9, &(0x7f0000000180)=0x10) write$auto_dev_fops_plock(r4, &(0x7f0000000200)="ea579eafbef6a78ace20c66c3ed28a307811ba5a77e0d6f20eee070874ce267321ef2da8ccef77a2a57912658cfac38b23199ba898ef2c29ea039494e108e23fc3d3de801c6cdb8c585be1ec026d327ad05a0c7812805bb6d050f902f2e77e549ec276c282a2bb8c2847f2e7105018d493a4a1dc", 0x74) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x16, 0x21, 0x6, 0xfffffffffffffffe, 0x5) sendfile$auto(r5, r3, 0x0, 0x10000) sendfile$auto(r1, r2, &(0x7f0000000100)=0x2, 0x4de7c78d) close_range$auto(0x2, 0x8, 0x0) semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4) write$auto_tty_fops_tty_io(r0, 0x0, 0x0) io_uring_setup$auto(0x4bf15e08, 0x0) bpf$auto(0x12, &(0x7f0000000040)=@enable_stats={0x1}, 0x26) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0xffffffffffffffff, 0x0, 0x1, 0x84a) 1.612590253s ago: executing program 3 (id=2178): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) shmctl$auto_IPC_SET(0x6, 0x1, &(0x7f00000003c0)={{0x5, 0x0, 0x0, 0x2f1e, 0x100, 0x5, 0x5}, 0x0, 0x400, 0x4, 0x9, @raw=0x1, @inferred, 0xb95d, 0x0, 0x0, &(0x7f00000004c0)}) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0x9, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4400ae8f, &(0x7f00000000c0)={0xdd}) 870.701267ms ago: executing program 1 (id=2179): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0) mmap$auto(0x0, 0x8, 0x1000000016, 0x13, 0x3, 0x400180000000) write$auto(0x3, 0x0, 0x5c8) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008411, 0x3, 0x0) 679.404598ms ago: executing program 1 (id=2180): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) connect$auto(r0, 0x0, 0x58) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) listen$auto(0x3, 0x83) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) close_range$auto(0xffffffffffffffff, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000003d40), 0xffffffffffffffff) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) msgrcv$auto(0x0, 0x0, 0x4, 0x9, 0x3) msgctl$auto(0x0, 0x1, 0x0) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) 655.189534ms ago: executing program 3 (id=2181): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x11, 0x80000, 0x300) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x2001, 0x8) mmap$auto(0x0, 0x4, 0xdf, 0x80000000000eb1, 0x3, 0x0) sysfs$auto(0x2, 0x4, 0x0) r2 = socket(0xa, 0x5, 0x0) getsockopt$auto(r2, 0x84, 0x12, 0x0, 0x0) r3 = getuid() r4 = getegid() setregid$auto(r4, r4) statx$auto(r1, &(0x7f0000001100)='./file0\x00', 0x0, 0x1, &(0x7f0000001140)={0x1, 0x6, 0x9, 0x8, r3, r4, 0x6, 0x3, 0x1025, 0xffff, 0x8, 0xfffffffffffffffd, {0xc, 0x7}, {0x1, 0x2}, {0x5, 0x8001}, {0x8, 0x101}, 0x7e05b10f, 0x7, 0x7b6, 0x1, 0x4, 0x7, 0x40000a, 0x1, 0x5, 0x3, 0xd, 0x1c5, [0x3ff, 0x84, 0x80000001, 0x8, 0x96, 0x0, 0x20, 0x0, 0x1]}) r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) futimesat$auto(0xffffffffffffffff, 0x0, &(0x7f0000001240)={0x8, 0x2}) r6 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fbdbdf250100000031208be8a5b4f52d83483e5c2d79da46e337d98473588f99774c7eb4868b973c1cef8187525db7b5b4e78678eb59512dbc7b11f4e29c29e3273c870a9555cf469e67e8886341e84d38edd658cf267f92e1e785a50fe500fbc125a65f8a4e5aa458a90f3d87fc71eca6309fc0ee1724cea121a7c96dbba43270448ec20cd22915c1cfa658b316e773d1eff747e371aace10d66450a3666b7be9754bde44d1"], 0x14}, 0x1, 0x0, 0x0, 0x4014}, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ILA_CMD_FLUSH(r7, &(0x7f0000001040)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20004005}, 0x40008c4) semctl$auto(0x7, 0x2, 0x13, 0x1) r8 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0xfffffffffffffffe, 0x9e, 0x12, 0x20eb1, 0x40000000000a5, 0x8004) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r9 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_notify$auto(r9, 0x0) ioctl$auto_UI_DEV_SETUP(r8, 0x405c5503, &(0x7f00000012c0)={{0x9, 0xf2cf, 0x3, 0x8001}, "6a034a07c7b80000000039e32576f893fba86c9dd051a0094a3836d61c9100fefbbabe86ef9368881e5af109f83839d4992f726b0a6c36b0b2fd1678e816203cf562367fe6596824588a2e3d84ba165f", 0x9}) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x200, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r10, &(0x7f0000000600)="de91b83a075ce51fff544f85b0b6d328f3beb9b8634fd16bf2701cb13a2d93abd4142a449aa0cac9a1586e4fbc7b163c42c4adfad8824de8783614b2dcf995a43c8cf63d2e2facaebb7019f67c4241ee77139ef43eacde5fcb4ca071ad7ecd284cb135be34415cca234d6a11827fe881a06111504ccdbebb0a6ee4a2e2a62fc7c8", 0x81) ioctl$auto_UI_DEV_CREATE(r8, 0x5501, 0x0) 313.489452ms ago: executing program 2 (id=2182): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d) listen$auto(0x3, 0x81) r1 = socket(0x2b, 0x1, 0x0) sendmmsg$auto(r1, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x24, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0) poll$auto(&(0x7f0000000080)={0x3, 0x1, 0xa}, 0x5, 0x108) 0s ago: executing program 3 (id=2183): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0xe) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b40, 0x1) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r0, 0x540a, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000080)) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x2, 0x84) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4) kernel console output (not intermixed with test programs): 0/0x10 [ 98.848216][ T5937] ? __asan_memcpy+0x3c/0x60 [ 98.848267][ T5937] ? __pfx_unix_net_init+0x10/0x10 [ 98.848314][ T5937] ? __pfx_unix_net_init+0x10/0x10 [ 98.848365][ T5937] unix_net_init+0xb7/0x350 [ 98.848409][ T5937] ? __pfx_unix_net_init+0x10/0x10 [ 98.848450][ T5937] ops_init+0x1e2/0x5f0 [ 98.848498][ T5937] setup_net+0x118/0x3a0 [ 98.848543][ T5937] ? __pfx_setup_net+0x10/0x10 [ 98.848584][ T5937] ? lockdep_init_map_type+0x5c/0x250 [ 98.848629][ T5937] ? mutex_init_lockep+0x110/0x150 [ 98.848681][ T5937] copy_net_ns+0x46f/0x7c0 [ 98.848732][ T5937] create_new_namespaces+0x3ea/0xac0 [ 98.848777][ T5937] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 98.848818][ T5937] ksys_unshare+0x473/0xad0 [ 98.848862][ T5937] ? __pfx_ksys_unshare+0x10/0x10 [ 98.848920][ T5937] __x64_sys_unshare+0x31/0x40 [ 98.848961][ T5937] do_syscall_64+0x106/0xf80 [ 98.849000][ T5937] ? clear_bhb_loop+0x40/0x90 [ 98.849042][ T5937] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.849076][ T5937] RIP: 0033:0x7f84e899c799 [ 98.849103][ T5937] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 98.849135][ T5937] RSP: 002b:00007f84e97fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 98.849166][ T5937] RAX: ffffffffffffffda RBX: 00007f84e8c16090 RCX: 00007f84e899c799 [ 98.849187][ T5937] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 98.849206][ T5937] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 98.849226][ T5937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 98.849246][ T5937] R13: 00007f84e8c16128 R14: 00007f84e8c16090 R15: 00007ffea61eeff8 [ 98.849291][ T5937] [ 99.108589][ T0] NOHZ tick-stop error: local softirq work is pending, handler #1c2!!! [ 99.313316][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 99.403147][ T5826] Bluetooth: hci0: command tx timeout [ 99.409171][ T5826] Bluetooth: hci1: command tx timeout [ 99.410981][ T5834] Bluetooth: hci2: command tx timeout [ 99.414641][ T5826] Bluetooth: hci3: command tx timeout [ 100.388406][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 100.588559][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 100.643904][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 101.735952][ T5942] kexec: Could not allocate control_code_buffer [ 101.759316][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.871468][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 101.880763][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 102.385109][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 102.398840][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 103.622761][ T5996] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 104.087894][ T6006] zram: Added device: zram1 [ 104.215238][ T6006] mmap: syz.1.17 (6006) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 105.449088][ T6015] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 106.746117][ T6034] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 106.753178][ T6034] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 106.792908][ T6034] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 106.813900][ T6034] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 106.830331][ T6034] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 106.901309][ T6034] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 106.927923][ T6034] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 106.938475][ T6034] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 107.113441][ T6034] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 107.170697][ T6034] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 107.186031][ T6034] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 107.273067][ T6034] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 108.662350][ T6054] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 108.788618][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout [ 108.878451][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 108.950456][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout [ 109.188717][ T5144] Bluetooth: hci3: command 0x0c1a tx timeout [ 109.751263][ T6067] FAULT_INJECTION: forcing a failure. [ 109.751263][ T6067] name failslab, interval 1, probability 0, space 0, times 0 [ 109.824622][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.0.26 Not tainted syzkaller #0 PREEMPT(full) [ 109.824654][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 109.824669][ T6067] Call Trace: [ 109.824676][ T6067] [ 109.824685][ T6067] dump_stack_lvl+0x100/0x190 [ 109.824726][ T6067] should_fail_ex.cold+0x5/0xa [ 109.824754][ T6067] should_failslab+0xc2/0x120 [ 109.824779][ T6067] __kmalloc_cache_noprof+0x7a/0x6f0 [ 109.824812][ T6067] ? p9_client_create+0xaf/0xd40 [ 109.824849][ T6067] p9_client_create+0xaf/0xd40 [ 109.824882][ T6067] ? __pfx_p9_client_create+0x10/0x10 [ 109.824922][ T6067] ? lockdep_init_map_type+0x5c/0x250 [ 109.824954][ T6067] ? __raw_spin_lock_init+0x3a/0x110 [ 109.824994][ T6067] v9fs_session_init+0x40/0xce0 [ 109.825024][ T6067] ? kasan_save_track+0x14/0x30 [ 109.825067][ T6067] v9fs_get_tree+0xb8/0xb50 [ 109.825099][ T6067] ? rcu_is_watching+0x12/0xc0 [ 109.825137][ T6067] ? __pfx_v9fs_get_tree+0x10/0x10 [ 109.825173][ T6067] ? bpf_lsm_capable+0x9/0x10 [ 109.825197][ T6067] ? security_capable+0x80/0x260 [ 109.825232][ T6067] vfs_get_tree+0x92/0x320 [ 109.825266][ T6067] vfs_cmd_create+0xd7/0x2a0 [ 109.825331][ T6067] __do_sys_fsconfig+0x55a/0xcb0 [ 109.825378][ T6067] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 109.825440][ T6067] do_syscall_64+0x106/0xf80 [ 109.825468][ T6067] ? clear_bhb_loop+0x40/0x90 [ 109.825498][ T6067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.825522][ T6067] RIP: 0033:0x7f32cbd9c799 [ 109.825570][ T6067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.825593][ T6067] RSP: 002b:00007f32ccbc3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 109.825615][ T6067] RAX: ffffffffffffffda RBX: 00007f32cc016180 RCX: 00007f32cbd9c799 [ 109.825630][ T6067] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005 [ 109.825644][ T6067] RBP: 00007f32cbe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 109.825658][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.825672][ T6067] R13: 00007f32cc016218 R14: 00007f32cc016180 R15: 00007ffddb2fe398 [ 109.825702][ T6067] [ 110.869545][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout [ 110.949625][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 111.038447][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout [ 111.114248][ T6088] ======================================================= [ 111.114248][ T6088] WARNING: The mand mount option has been deprecated and [ 111.114248][ T6088] and is ignored by this kernel. Remove the mand [ 111.114248][ T6088] option from the mount to silence this warning. [ 111.114248][ T6088] ======================================================= [ 111.162425][ T6089] usb usb37: usbfs: process 6089 (syz.0.28) did not claim interface 0 before use [ 111.269175][ T5144] Bluetooth: hci3: command 0x0c1a tx timeout [ 111.962979][ T6103] random: crng reseeded on system resumption [ 112.184897][ T6103] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 112.299295][ T6111] netlink: 4 bytes leftover after parsing attributes in process `syz.0.34'. [ 112.320319][ T6111] netlink: 25 bytes leftover after parsing attributes in process `syz.0.34'. [ 112.948392][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout [ 113.039960][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 113.113015][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout [ 113.348646][ T5144] Bluetooth: hci3: command 0x0c1a tx timeout [ 113.792865][ T6135] FAULT_INJECTION: forcing a failure. [ 113.792865][ T6135] name failslab, interval 1, probability 0, space 0, times 0 [ 113.792924][ T6135] CPU: 1 UID: 0 PID: 6135 Comm: syz.1.39 Not tainted syzkaller #0 PREEMPT(full) [ 113.792962][ T6135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 113.792982][ T6135] Call Trace: [ 113.792993][ T6135] [ 113.793005][ T6135] dump_stack_lvl+0x100/0x190 [ 113.793073][ T6135] should_fail_ex.cold+0x5/0xa [ 113.793113][ T6135] should_failslab+0xc2/0x120 [ 113.793148][ T6135] __kmalloc_cache_noprof+0x7a/0x6f0 [ 113.793193][ T6135] ? p9_client_create+0xaf/0xd40 [ 113.793246][ T6135] p9_client_create+0xaf/0xd40 [ 113.793294][ T6135] ? __pfx_p9_client_create+0x10/0x10 [ 113.793349][ T6135] ? lockdep_init_map_type+0x5c/0x250 [ 113.793396][ T6135] ? __raw_spin_lock_init+0x3a/0x110 [ 113.793453][ T6135] v9fs_session_init+0x40/0xce0 [ 113.793497][ T6135] ? kasan_save_track+0x14/0x30 [ 113.793553][ T6135] v9fs_get_tree+0xb8/0xb50 [ 113.793597][ T6135] ? rcu_is_watching+0x12/0xc0 [ 113.793651][ T6135] ? __pfx_v9fs_get_tree+0x10/0x10 [ 113.793702][ T6135] ? bpf_lsm_capable+0x9/0x10 [ 113.793737][ T6135] ? security_capable+0x80/0x260 [ 113.793788][ T6135] vfs_get_tree+0x92/0x320 [ 113.793836][ T6135] vfs_cmd_create+0xd7/0x2a0 [ 113.793888][ T6135] __do_sys_fsconfig+0x55a/0xcb0 [ 113.793936][ T6135] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 113.794002][ T6135] do_syscall_64+0x106/0xf80 [ 113.794059][ T6135] ? clear_bhb_loop+0x40/0x90 [ 113.794103][ T6135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.794138][ T6135] RIP: 0033:0x7fea7b39c799 [ 113.794166][ T6135] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 113.794198][ T6135] RSP: 002b:00007fea7c283028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 113.794230][ T6135] RAX: ffffffffffffffda RBX: 00007fea7b616180 RCX: 00007fea7b39c799 [ 113.794253][ T6135] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005 [ 113.794272][ T6135] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 113.794291][ T6135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.794310][ T6135] R13: 00007fea7b616218 R14: 00007fea7b616180 R15: 00007fffbd4caa08 [ 113.794353][ T6135] [ 115.508599][ T5144] Bluetooth: hci0: command 0x0c1a tx timeout [ 115.567914][ T6126] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 116.933918][ T6126] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 116.999002][ T6126] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 117.025801][ T6126] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 117.838477][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 119.028589][ T5144] Bluetooth: hci3: command 0x0c1a tx timeout [ 119.034730][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout [ 122.260825][ T6202] vhci_hcd vhci_hcd.2: invalid port number 16 [ 122.374125][ T6202] vhci_hcd vhci_hcd.2: invalid port number 16 [ 122.903303][ T6199] vhci_hcd: not connected 4 [ 124.300988][ T6218] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 125.642296][ T6263] usb usb37: usbfs: process 6263 (syz.1.57) did not claim interface 0 before use [ 126.825481][ T6273] process 'syz.0.59' launched '/dev/fd/4' with NULL argv: empty string added [ 129.059851][ T6313] FAULT_INJECTION: forcing a failure. [ 129.059851][ T6313] name failslab, interval 1, probability 0, space 0, times 0 [ 129.158755][ T6313] CPU: 1 UID: 0 PID: 6313 Comm: syz.3.65 Not tainted syzkaller #0 PREEMPT(full) [ 129.158797][ T6313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 129.158816][ T6313] Call Trace: [ 129.158826][ T6313] [ 129.158838][ T6313] dump_stack_lvl+0x100/0x190 [ 129.158909][ T6313] should_fail_ex.cold+0x5/0xa [ 129.158948][ T6313] should_failslab+0xc2/0x120 [ 129.158984][ T6313] __kmalloc_cache_noprof+0x7a/0x6f0 [ 129.159028][ T6313] ? kstrdup_quotable_cmdline+0x52/0x210 [ 129.159068][ T6313] ? get_cmdline+0x86/0x360 [ 129.159112][ T6313] kstrdup_quotable_cmdline+0x52/0x210 [ 129.159158][ T6313] __report_access+0x77/0x230 [ 129.159196][ T6313] ? _raw_spin_unlock_irq+0x23/0x50 [ 129.159237][ T6313] task_work_run+0x150/0x240 [ 129.159290][ T6313] ? __pfx_task_work_run+0x10/0x10 [ 129.159338][ T6313] ? xfd_validate_state+0x129/0x190 [ 129.159395][ T6313] exit_to_user_mode_loop+0x100/0x4a0 [ 129.159444][ T6313] do_syscall_64+0x668/0xf80 [ 129.159482][ T6313] ? clear_bhb_loop+0x40/0x90 [ 129.159523][ T6313] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.159558][ T6313] RIP: 0033:0x7f84e899c799 [ 129.159594][ T6313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 129.159625][ T6313] RSP: 002b:00007f84e981c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000137 [ 129.159658][ T6313] RAX: ffffffffffffffff RBX: 00007f84e8c15fa0 RCX: 00007f84e899c799 [ 129.159679][ T6313] RDX: 0000000000000012 RSI: 0000200000002980 RDI: 0000000000000001 [ 129.159706][ T6313] RBP: 00007f84e8a32c99 R08: 0000000000000004 R09: 0000000000000000 [ 129.159726][ T6313] R10: 0000200000002a40 R11: 0000000000000246 R12: 0000000000000000 [ 129.159747][ T6313] R13: 00007f84e8c16038 R14: 00007f84e8c15fa0 R15: 00007ffea61eeff8 [ 129.159832][ T6313] [ 129.163816][ T6313] ptrace attach of "./syz-executor exec"[5835] was attempted by "(null)"[6313] [ 130.160193][ T6318] FAULT_INJECTION: forcing a failure. [ 130.160193][ T6318] name failslab, interval 1, probability 0, space 0, times 0 [ 130.218264][ T6318] CPU: 1 UID: 0 PID: 6318 Comm: syz.2.67 Not tainted syzkaller #0 PREEMPT(full) [ 130.218309][ T6318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 130.218328][ T6318] Call Trace: [ 130.218339][ T6318] [ 130.218352][ T6318] dump_stack_lvl+0x100/0x190 [ 130.218412][ T6318] should_fail_ex.cold+0x5/0xa [ 130.218441][ T6318] should_failslab+0xc2/0x120 [ 130.218467][ T6318] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 130.218503][ T6318] ? __pmd_alloc+0xbf/0x950 [ 130.218536][ T6318] __pmd_alloc+0xbf/0x950 [ 130.218566][ T6318] __handle_mm_fault+0xa99/0x2b60 [ 130.218605][ T6318] ? mt_find+0x45e/0x8e0 [ 130.218639][ T6318] ? __pfx___handle_mm_fault+0x10/0x10 [ 130.218670][ T6318] ? __pfx_mt_find+0x10/0x10 [ 130.218717][ T6318] ? find_vma+0xbf/0x140 [ 130.218738][ T6318] ? __pfx_find_vma+0x10/0x10 [ 130.218764][ T6318] handle_mm_fault+0x36d/0xa20 [ 130.218802][ T6318] do_user_addr_fault+0x74c/0x12f0 [ 130.218850][ T6318] exc_page_fault+0x6f/0xd0 [ 130.218880][ T6318] asm_exc_page_fault+0x26/0x30 [ 130.218903][ T6318] RIP: 0010:__put_user_4+0xd/0x20 [ 130.218932][ T6318] Code: 66 89 01 31 c9 0f 01 ca e9 c0 d0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 d0 03 00 0f 1f 80 00 00 00 00 90 90 90 [ 130.218954][ T6318] RSP: 0018:ffffc9000520fc88 EFLAGS: 00050246 [ 130.218973][ T6318] RAX: 0000000000000053 RBX: 0000000000000000 RCX: 0000000000000000 [ 130.218987][ T6318] RDX: 1ffff92000a41fbf RSI: ffffffff8255fed1 RDI: ffffc9000520fdf8 [ 130.219002][ T6318] RBP: ffff88801f30bd00 R08: 0000000000000001 R09: 00000000000001c9 [ 130.219017][ T6318] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000002360400 [ 130.219031][ T6318] R13: 1ffff92000a41f96 R14: ffff88807c11cf00 R15: 0000000000000000 [ 130.219054][ T6318] ? __might_fault+0x111/0x140 [ 130.219092][ T6318] kernel_clone+0x6b1/0x9a0 [ 130.219130][ T6318] ? __pfx_kernel_clone+0x10/0x10 [ 130.219175][ T6318] __do_sys_clone+0xd9/0x120 [ 130.219204][ T6318] ? __pfx___do_sys_clone+0x10/0x10 [ 130.219256][ T6318] do_syscall_64+0x106/0xf80 [ 130.219284][ T6318] ? clear_bhb_loop+0x40/0x90 [ 130.219314][ T6318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.219338][ T6318] RIP: 0033:0x7f9f2759c799 [ 130.219357][ T6318] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 130.219379][ T6318] RSP: 002b:00007f9f284b5fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 130.219399][ T6318] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 130.219415][ T6318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 130.219428][ T6318] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 130.219444][ T6318] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 130.219458][ T6318] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 130.219488][ T6318] [ 131.187481][ T6344] FAULT_INJECTION: forcing a failure. [ 131.187481][ T6344] name failslab, interval 1, probability 0, space 0, times 0 [ 131.272361][ T6344] CPU: 0 UID: 0 PID: 6344 Comm: syz.2.70 Not tainted syzkaller #0 PREEMPT(full) [ 131.272404][ T6344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 131.272424][ T6344] Call Trace: [ 131.272435][ T6344] [ 131.272447][ T6344] dump_stack_lvl+0x100/0x190 [ 131.272504][ T6344] should_fail_ex.cold+0x5/0xa [ 131.272544][ T6344] should_failslab+0xc2/0x120 [ 131.272582][ T6344] __kmalloc_cache_noprof+0x7a/0x6f0 [ 131.272628][ T6344] ? p9_client_create+0xaf/0xd40 [ 131.272682][ T6344] p9_client_create+0xaf/0xd40 [ 131.272730][ T6344] ? __pfx_p9_client_create+0x10/0x10 [ 131.272782][ T6344] ? lockdep_init_map_type+0x5c/0x250 [ 131.272830][ T6344] ? __raw_spin_lock_init+0x3a/0x110 [ 131.272887][ T6344] v9fs_session_init+0x40/0xce0 [ 131.272929][ T6344] ? kasan_save_track+0x14/0x30 [ 131.272986][ T6344] v9fs_get_tree+0xb8/0xb50 [ 131.273032][ T6344] ? rcu_is_watching+0x12/0xc0 [ 131.273085][ T6344] ? __pfx_v9fs_get_tree+0x10/0x10 [ 131.273142][ T6344] ? bpf_lsm_capable+0x9/0x10 [ 131.273176][ T6344] ? security_capable+0x80/0x260 [ 131.273229][ T6344] vfs_get_tree+0x92/0x320 [ 131.273299][ T6344] vfs_cmd_create+0xd7/0x2a0 [ 131.273347][ T6344] __do_sys_fsconfig+0x55a/0xcb0 [ 131.273394][ T6344] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 131.273461][ T6344] do_syscall_64+0x106/0xf80 [ 131.273502][ T6344] ? clear_bhb_loop+0x40/0x90 [ 131.273546][ T6344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.273581][ T6344] RIP: 0033:0x7f9f2759c799 [ 131.273610][ T6344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 131.273641][ T6344] RSP: 002b:00007f9f28474028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 131.273675][ T6344] RAX: ffffffffffffffda RBX: 00007f9f27816180 RCX: 00007f9f2759c799 [ 131.273697][ T6344] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005 [ 131.273716][ T6344] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 131.273735][ T6344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.273755][ T6344] R13: 00007f9f27816218 R14: 00007f9f27816180 R15: 00007ffdf86c8438 [ 131.273799][ T6344] [ 131.785090][ T6349] futex_wake_op: syz.0.72 tries to shift op by -2048; fix this program [ 131.802425][ T6346] [U]  [ 131.845412][ T6349] random: crng reseeded on system resumption [ 132.959619][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.970028][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.308430][ T5144] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 135.044504][ T6370] Invalid ELF header magic: != ELF [ 135.453947][ T6378] FAULT_INJECTION: forcing a failure. [ 135.453947][ T6378] name failslab, interval 1, probability 0, space 0, times 0 [ 135.468582][ T6378] CPU: 0 UID: 0 PID: 6378 Comm: syz.2.76 Tainted: G L syzkaller #0 PREEMPT(full) [ 135.468620][ T6378] Tainted: [L]=SOFTLOCKUP [ 135.468628][ T6378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 135.468642][ T6378] Call Trace: [ 135.468649][ T6378] [ 135.468676][ T6378] dump_stack_lvl+0x100/0x190 [ 135.468719][ T6378] should_fail_ex.cold+0x5/0xa [ 135.468747][ T6378] should_failslab+0xc2/0x120 [ 135.468772][ T6378] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 135.468809][ T6378] ? security_inode_alloc+0x3b/0x2c0 [ 135.468845][ T6378] ? lockdep_init_map_type+0x5c/0x250 [ 135.468881][ T6378] security_inode_alloc+0x3b/0x2c0 [ 135.468924][ T6378] inode_init_always_gfp+0xced/0x1040 [ 135.468953][ T6378] alloc_inode+0x8e/0x250 [ 135.468985][ T6378] sock_alloc+0x44/0x280 [ 135.469015][ T6378] ? security_socket_create+0x7f/0x250 [ 135.469051][ T6378] __sock_create+0xc2/0x860 [ 135.469094][ T6378] __sys_socket+0x14d/0x260 [ 135.469116][ T6378] ? __pfx___sys_socket+0x10/0x10 [ 135.469146][ T6378] __x64_sys_socket+0x72/0xb0 [ 135.469167][ T6378] ? lockdep_hardirqs_on+0x78/0x100 [ 135.469196][ T6378] do_syscall_64+0x106/0xf80 [ 135.469234][ T6378] ? clear_bhb_loop+0x40/0x90 [ 135.469264][ T6378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.469288][ T6378] RIP: 0033:0x7f9f2759c799 [ 135.469308][ T6378] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 135.469331][ T6378] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 135.469353][ T6378] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 135.469369][ T6378] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 135.469383][ T6378] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 135.469397][ T6378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 135.469411][ T6378] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 135.469441][ T6378] [ 135.469481][ T6378] socket: no more sockets [ 135.938618][ T6383] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 138.581704][ T6416] FAULT_INJECTION: forcing a failure. [ 138.581704][ T6416] name failslab, interval 1, probability 0, space 0, times 0 [ 138.595989][ T6416] CPU: 1 UID: 0 PID: 6416 Comm: syz.0.82 Tainted: G L syzkaller #0 PREEMPT(full) [ 138.596044][ T6416] Tainted: [L]=SOFTLOCKUP [ 138.596056][ T6416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 138.596076][ T6416] Call Trace: [ 138.596087][ T6416] [ 138.596100][ T6416] dump_stack_lvl+0x100/0x190 [ 138.596159][ T6416] should_fail_ex.cold+0x5/0xa [ 138.596199][ T6416] ? drm_atomic_state_init+0xf4/0x490 [ 138.596234][ T6416] should_failslab+0xc2/0x120 [ 138.596270][ T6416] __kmalloc_noprof+0xe0/0x850 [ 138.596331][ T6416] drm_atomic_state_init+0xf4/0x490 [ 138.596366][ T6416] ? kasan_save_track+0x14/0x30 [ 138.596421][ T6416] drm_atomic_state_alloc+0xd3/0x120 [ 138.596467][ T6416] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 138.596512][ T6416] ? trace_contention_end+0x140/0x180 [ 138.596562][ T6416] ? __mutex_lock+0x26a/0x1b90 [ 138.596606][ T6416] ? __mutex_lock+0x26a/0x1b90 [ 138.596649][ T6416] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 138.596694][ T6416] ? drm_master_internal_acquire+0x21/0x80 [ 138.596774][ T6416] drm_client_modeset_commit_locked+0x14d/0x580 [ 138.596825][ T6416] drm_client_modeset_commit+0x4f/0x80 [ 138.596885][ T6416] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 138.596934][ T6416] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 138.596982][ T6416] drm_fbdev_client_restore+0x1b/0x30 [ 138.597037][ T6416] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 138.597093][ T6416] drm_client_dev_restore+0x205/0x2a0 [ 138.597142][ T6416] drm_release+0x2c6/0x360 [ 138.597180][ T6416] ? __pfx_drm_release+0x10/0x10 [ 138.597217][ T6416] __fput+0x3ff/0xb40 [ 138.597268][ T6416] task_work_run+0x150/0x240 [ 138.597319][ T6416] ? __pfx_task_work_run+0x10/0x10 [ 138.597382][ T6416] exit_to_user_mode_loop+0x100/0x4a0 [ 138.597446][ T6416] do_syscall_64+0x668/0xf80 [ 138.597486][ T6416] ? clear_bhb_loop+0x40/0x90 [ 138.597529][ T6416] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.597564][ T6416] RIP: 0033:0x7f32cbd9c799 [ 138.597593][ T6416] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.597624][ T6416] RSP: 002b:00007f32ccba2028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 138.597656][ T6416] RAX: 0000000000000000 RBX: 00007f32cc016270 RCX: 00007f32cbd9c799 [ 138.597677][ T6416] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 138.597697][ T6416] RBP: 00007f32cbe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 138.597716][ T6416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.597735][ T6416] R13: 00007f32cc016308 R14: 00007f32cc016270 R15: 00007ffddb2fe398 [ 138.597781][ T6416] [ 139.632351][ T6415] syz.1.85 (6415) used greatest stack depth: 19672 bytes left [ 140.331556][ T6435] FAULT_INJECTION: forcing a failure. [ 140.331556][ T6435] name failslab, interval 1, probability 0, space 0, times 0 [ 140.345481][ T6435] CPU: 1 UID: 0 PID: 6435 Comm: syz.1.86 Tainted: G L syzkaller #0 PREEMPT(full) [ 140.345531][ T6435] Tainted: [L]=SOFTLOCKUP [ 140.345542][ T6435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 140.345561][ T6435] Call Trace: [ 140.345572][ T6435] [ 140.345584][ T6435] dump_stack_lvl+0x100/0x190 [ 140.345641][ T6435] should_fail_ex.cold+0x5/0xa [ 140.345683][ T6435] should_failslab+0xc2/0x120 [ 140.345720][ T6435] __kmalloc_cache_noprof+0x7a/0x6f0 [ 140.345777][ T6435] ? vidtv_psi_service_desc_init+0x93/0x4c0 [ 140.345825][ T6435] vidtv_psi_service_desc_init+0x93/0x4c0 [ 140.345868][ T6435] vidtv_psi_desc_clone+0x496/0x5d0 [ 140.345909][ T6435] vidtv_channel_si_init+0x4b8/0x18d0 [ 140.345967][ T6435] vidtv_mux_init+0x526/0xbf0 [ 140.346017][ T6435] vidtv_start_feed+0x33e/0x4c0 [ 140.346072][ T6435] ? __pfx_vidtv_start_feed+0x10/0x10 [ 140.346127][ T6435] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 140.346202][ T6435] ? __pfx_vidtv_start_feed+0x10/0x10 [ 140.346253][ T6435] dmx_ts_feed_start_filtering+0xf6/0x220 [ 140.346293][ T6435] dvb_dmxdev_start_feed+0x273/0x3f0 [ 140.346350][ T6435] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 140.346407][ T6435] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 140.346462][ T6435] dvb_demux_do_ioctl+0xe64/0x1200 [ 140.346527][ T6435] dvb_usercopy+0x167/0x340 [ 140.346572][ T6435] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 140.346627][ T6435] ? __pfx_dvb_usercopy+0x10/0x10 [ 140.346691][ T6435] ? __fget_files+0x21f/0x3d0 [ 140.346733][ T6435] dvb_demux_ioctl+0x29/0x40 [ 140.346789][ T6435] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 140.346839][ T6435] __x64_sys_ioctl+0x18e/0x210 [ 140.346892][ T6435] do_syscall_64+0x106/0xf80 [ 140.346933][ T6435] ? clear_bhb_loop+0x40/0x90 [ 140.346977][ T6435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.347011][ T6435] RIP: 0033:0x7fea7b39c799 [ 140.347040][ T6435] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 140.347070][ T6435] RSP: 002b:00007fea7c2c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.347103][ T6435] RAX: ffffffffffffffda RBX: 00007fea7b615fa0 RCX: 00007fea7b39c799 [ 140.347125][ T6435] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 140.347145][ T6435] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 140.347164][ T6435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.347182][ T6435] R13: 00007fea7b616038 R14: 00007fea7b615fa0 R15: 00007fffbd4caa08 [ 140.347228][ T6435] [ 140.700119][ T6441] netlink: 4 bytes leftover after parsing attributes in process `syz.0.87'. [ 140.750759][ T6444] netlink: 25 bytes leftover after parsing attributes in process `syz.0.87'. [ 142.985822][ T30] audit: type=1800 audit(1773315184.363:2): pid=6480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.94" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 143.664563][ T6487] FAULT_INJECTION: forcing a failure. [ 143.664563][ T6487] name fail_futex, interval 1, probability 0, space 0, times 1 [ 143.693453][ T6487] CPU: 1 UID: 0 PID: 6487 Comm: syz.0.95 Tainted: G L syzkaller #0 PREEMPT(full) [ 143.693491][ T6487] Tainted: [L]=SOFTLOCKUP [ 143.693498][ T6487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 143.693512][ T6487] Call Trace: [ 143.693519][ T6487] [ 143.693531][ T6487] dump_stack_lvl+0x100/0x190 [ 143.693569][ T6487] should_fail_ex.cold+0x5/0xa [ 143.693591][ T6487] ? kernel_text_address+0x8d/0x100 [ 143.693631][ T6487] get_futex_key+0x1d2/0x1620 [ 143.693661][ T6487] ? __pfx_get_futex_key+0x10/0x10 [ 143.693686][ T6487] ? lock_acquire+0x1cf/0x380 [ 143.693724][ T6487] futex_wake+0xea/0x530 [ 143.693761][ T6487] ? __pfx_futex_wake+0x10/0x10 [ 143.693795][ T6487] ? exit_mm_release+0x19/0x30 [ 143.693830][ T6487] do_futex+0x32b/0x350 [ 143.693860][ T6487] ? __pfx_do_futex+0x10/0x10 [ 143.693887][ T6487] ? __might_fault+0xc5/0x140 [ 143.693927][ T6487] mm_release+0x24a/0x2f0 [ 143.693950][ T6487] do_exit+0x704/0x2b60 [ 143.693984][ T6487] ? __pfx_do_exit+0x10/0x10 [ 143.694013][ T6487] ? do_raw_spin_lock+0x128/0x260 [ 143.694046][ T6487] ? find_held_lock+0x2b/0x80 [ 143.694066][ T6487] ? get_signal+0x7e0/0x21e0 [ 143.694092][ T6487] do_group_exit+0xd5/0x2a0 [ 143.694132][ T6487] get_signal+0x1ec7/0x21e0 [ 143.694162][ T6487] ? ksys_write+0x190/0x250 [ 143.694185][ T6487] ? __pfx_get_signal+0x10/0x10 [ 143.694209][ T6487] ? __mutex_unlock_slowpath+0x15c/0x790 [ 143.694245][ T6487] arch_do_signal_or_restart+0x91/0x770 [ 143.694274][ T6487] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 143.694311][ T6487] ? ksys_write+0x1ac/0x250 [ 143.694337][ T6487] exit_to_user_mode_loop+0x86/0x4a0 [ 143.694369][ T6487] do_syscall_64+0x668/0xf80 [ 143.694432][ T6487] ? clear_bhb_loop+0x40/0x90 [ 143.694471][ T6487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.694503][ T6487] RIP: 0033:0x7f32cbd9c799 [ 143.694527][ T6487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 143.694554][ T6487] RSP: 002b:00007f32ccbe4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 143.694581][ T6487] RAX: fffffffffffffe00 RBX: 00007f32cc016090 RCX: 00007f32cbd9c799 [ 143.694599][ T6487] RDX: 0000000000000081 RSI: 0000200000000140 RDI: 0000000000000003 [ 143.694616][ T6487] RBP: 00007f32cbe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 143.694634][ T6487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 143.694650][ T6487] R13: 00007f32cc016128 R14: 00007f32cc016090 R15: 00007ffddb2fe398 [ 143.694686][ T6487] [ 145.157062][ T6500] zswap: compressor û not available [ 146.438987][ T6523] netlink: 4 bytes leftover after parsing attributes in process `syz.0.101'. [ 146.506106][ T6529] netlink: 354 bytes leftover after parsing attributes in process `syz.0.101'. [ 146.547667][ T6513] FAULT_INJECTION: forcing a failure. [ 146.547667][ T6513] name fail_futex, interval 1, probability 0, space 0, times 0 [ 146.583419][ T6513] CPU: 0 UID: 0 PID: 6513 Comm: syz.3.100 Tainted: G L syzkaller #0 PREEMPT(full) [ 146.583466][ T6513] Tainted: [L]=SOFTLOCKUP [ 146.583476][ T6513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 146.583493][ T6513] Call Trace: [ 146.583503][ T6513] [ 146.583514][ T6513] dump_stack_lvl+0x100/0x190 [ 146.583564][ T6513] should_fail_ex.cold+0x5/0xa [ 146.583601][ T6513] get_futex_key+0x1d2/0x1620 [ 146.583643][ T6513] ? __pfx_get_futex_key+0x10/0x10 [ 146.583678][ T6513] ? lock_acquire+0x1cf/0x380 [ 146.583743][ T6513] futex_wake+0xea/0x530 [ 146.583796][ T6513] ? __pfx_futex_wake+0x10/0x10 [ 146.583845][ T6513] ? exit_mm_release+0x19/0x30 [ 146.583897][ T6513] do_futex+0x32b/0x350 [ 146.583939][ T6513] ? __pfx_do_futex+0x10/0x10 [ 146.583977][ T6513] ? __might_fault+0xc5/0x140 [ 146.584034][ T6513] mm_release+0x24a/0x2f0 [ 146.584067][ T6513] do_exit+0x704/0x2b60 [ 146.584115][ T6513] ? __pfx_do_exit+0x10/0x10 [ 146.584157][ T6513] ? do_raw_spin_lock+0x128/0x260 [ 146.584202][ T6513] ? find_held_lock+0x2b/0x80 [ 146.584231][ T6513] ? get_signal+0x7e0/0x21e0 [ 146.584268][ T6513] do_group_exit+0xd5/0x2a0 [ 146.584314][ T6513] get_signal+0x1ec7/0x21e0 [ 146.584362][ T6513] ? __pfx_get_signal+0x10/0x10 [ 146.584397][ T6513] ? do_futex+0x192/0x350 [ 146.584443][ T6513] arch_do_signal_or_restart+0x91/0x770 [ 146.584486][ T6513] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 146.584539][ T6513] ? __pfx___x64_sys_futex+0x10/0x10 [ 146.584591][ T6513] exit_to_user_mode_loop+0x86/0x4a0 [ 146.584639][ T6513] do_syscall_64+0x668/0xf80 [ 146.584677][ T6513] ? clear_bhb_loop+0x40/0x90 [ 146.584724][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.584758][ T6513] RIP: 0033:0x7f84e899c799 [ 146.584784][ T6513] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 146.584813][ T6513] RSP: 002b:00007f84e981c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 146.584843][ T6513] RAX: 0000000000000001 RBX: 00007f84e8c15fa8 RCX: 00007f84e899c799 [ 146.584863][ T6513] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f84e8c15fac [ 146.584882][ T6513] RBP: 00007f84e8c15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 146.584900][ T6513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.584918][ T6513] R13: 00007f84e8c16038 R14: 00007ffea61eef10 R15: 00007ffea61eeff8 [ 146.584957][ T6513] [ 148.159221][ T6548] [U]  [ 150.512073][ T6551] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 150.555439][ T6551] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 150.578654][ T6551] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 150.598667][ T6551] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 150.711723][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout [ 151.724148][ T30] audit: type=1800 audit(1773315193.113:3): pid=6571 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.108" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 152.628763][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.628776][ T5834] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.628818][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 152.709636][ T5144] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 156.682381][ T6635] nbd: socks must be embedded in a SOCK_ITEM attr [ 156.691185][ T6635] block nbd0: shutting down sockets [ 157.504499][ T6621] FAULT_INJECTION: forcing a failure. [ 157.504499][ T6621] name failslab, interval 1, probability 0, space 0, times 0 [ 157.550305][ T6621] CPU: 0 UID: 0 PID: 6621 Comm: syz.2.117 Tainted: G L syzkaller #0 PREEMPT(full) [ 157.550359][ T6621] Tainted: [L]=SOFTLOCKUP [ 157.550378][ T6621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 157.550398][ T6621] Call Trace: [ 157.550409][ T6621] [ 157.550422][ T6621] dump_stack_lvl+0x100/0x190 [ 157.550482][ T6621] should_fail_ex.cold+0x5/0xa [ 157.550523][ T6621] ? memcg_list_lru_alloc+0x4ec/0x740 [ 157.550574][ T6621] should_failslab+0xc2/0x120 [ 157.550611][ T6621] __kmalloc_noprof+0xe0/0x850 [ 157.550662][ T6621] ? ipcget+0xee/0xf50 [ 157.550704][ T6621] memcg_list_lru_alloc+0x4ec/0x740 [ 157.550766][ T6621] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 157.550822][ T6621] ? rcu_read_unlock+0x17/0x60 [ 157.550870][ T6621] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 157.550924][ T6621] __memcg_slab_post_alloc_hook+0x130/0x990 [ 157.550973][ T6621] ? kasan_save_track+0x14/0x30 [ 157.551032][ T6621] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 157.551083][ T6621] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 157.551127][ T6621] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 157.551161][ T6621] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 157.551197][ T6621] alloc_inode+0x68/0x250 [ 157.551243][ T6621] new_inode+0x22/0x1c0 [ 157.551291][ T6621] hugetlbfs_get_inode+0x313/0x750 [ 157.551333][ T6621] hugetlb_file_setup+0x3cc/0x5b0 [ 157.551385][ T6621] newseg+0xabb/0xed0 [ 157.551429][ T6621] ? __pfx_newseg+0x10/0x10 [ 157.551466][ T6621] ? down_write+0x146/0x1f0 [ 157.551515][ T6621] ? ksys_write+0x190/0x250 [ 157.551545][ T6621] ? ksys_write+0x190/0x250 [ 157.551581][ T6621] ipcget+0xee/0xf50 [ 157.551617][ T6621] ? do_futex+0x192/0x350 [ 157.551677][ T6621] ? __pfx_do_futex+0x10/0x10 [ 157.551728][ T6621] ? __pfx_ipcget+0x10/0x10 [ 157.551775][ T6621] ? __x64_sys_futex+0x34f/0x4d0 [ 157.551817][ T6621] ? __x64_sys_futex+0x358/0x4d0 [ 157.551868][ T6621] __x64_sys_shmget+0x13b/0x1b0 [ 157.551908][ T6621] ? __pfx___x64_sys_shmget+0x10/0x10 [ 157.551958][ T6621] do_syscall_64+0x106/0xf80 [ 157.551998][ T6621] ? clear_bhb_loop+0x40/0x90 [ 157.552041][ T6621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.552077][ T6621] RIP: 0033:0x7f9f2759c799 [ 157.552106][ T6621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 157.552138][ T6621] RSP: 002b:00007f9f28474028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 157.552170][ T6621] RAX: ffffffffffffffda RBX: 00007f9f27816180 RCX: 00007f9f2759c799 [ 157.552193][ T6621] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 157.552213][ T6621] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 157.552233][ T6621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 157.552253][ T6621] R13: 00007f9f27816218 R14: 00007f9f27816180 R15: 00007ffdf86c8438 [ 157.552298][ T6621] [ 158.952929][ T6657] NFSD: Failed to start, no listeners configured. [ 160.793028][ T6693] FAULT_INJECTION: forcing a failure. [ 160.793028][ T6693] name failslab, interval 1, probability 0, space 0, times 0 [ 160.828575][ T6693] CPU: 1 UID: 0 PID: 6693 Comm: syz.1.129 Tainted: G L syzkaller #0 PREEMPT(full) [ 160.828627][ T6693] Tainted: [L]=SOFTLOCKUP [ 160.828638][ T6693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 160.828657][ T6693] Call Trace: [ 160.828668][ T6693] [ 160.828681][ T6693] dump_stack_lvl+0x100/0x190 [ 160.828741][ T6693] should_fail_ex.cold+0x5/0xa [ 160.828781][ T6693] should_failslab+0xc2/0x120 [ 160.828819][ T6693] __kmalloc_cache_noprof+0x7a/0x6f0 [ 160.828865][ T6693] ? trace_pid_list_alloc+0x232/0x480 [ 160.828927][ T6693] trace_pid_list_alloc+0x232/0x480 [ 160.828984][ T6693] trace_pid_write+0x110/0x460 [ 160.829048][ T6693] ? __pfx_trace_pid_write+0x10/0x10 [ 160.829127][ T6693] event_pid_write.isra.0+0x1e4/0x800 [ 160.829186][ T6693] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 160.829255][ T6693] vfs_write+0x2aa/0x1070 [ 160.829309][ T6693] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 160.829369][ T6693] ? __pfx_vfs_write+0x10/0x10 [ 160.829420][ T6693] ? __fget_files+0x215/0x3d0 [ 160.829461][ T6693] ? __fget_files+0x21f/0x3d0 [ 160.829505][ T6693] ksys_write+0x12a/0x250 [ 160.829536][ T6693] ? __pfx_ksys_write+0x10/0x10 [ 160.829579][ T6693] do_syscall_64+0x106/0xf80 [ 160.829618][ T6693] ? clear_bhb_loop+0x40/0x90 [ 160.829660][ T6693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.829696][ T6693] RIP: 0033:0x7fea7b39c799 [ 160.829723][ T6693] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 160.829755][ T6693] RSP: 002b:00007fea7c2c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 160.829786][ T6693] RAX: ffffffffffffffda RBX: 00007fea7b615fa0 RCX: 00007fea7b39c799 [ 160.829807][ T6693] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 160.829826][ T6693] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 160.829845][ T6693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.829865][ T6693] R13: 00007fea7b616038 R14: 00007fea7b615fa0 R15: 00007fffbd4caa08 [ 160.829910][ T6693] [ 163.404064][ T6723] netlink: 4 bytes leftover after parsing attributes in process `syz.1.141'. [ 163.447470][ T6723] netlink: 5 bytes leftover after parsing attributes in process `syz.1.141'. [ 168.299234][ T6805] netlink: 4 bytes leftover after parsing attributes in process `syz.3.146'. [ 168.420770][ T6809] netlink: 5 bytes leftover after parsing attributes in process `syz.3.146'. [ 169.154207][ T6804] Invalid ELF header magic: != ELF [ 177.308527][ T6926] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub [ 177.466752][ T6922] FAULT_INJECTION: forcing a failure. [ 177.466752][ T6922] name failslab, interval 1, probability 0, space 0, times 0 [ 177.480693][ T6922] CPU: 0 UID: 0 PID: 6922 Comm: syz.2.162 Tainted: G L syzkaller #0 PREEMPT(full) [ 177.480756][ T6922] Tainted: [L]=SOFTLOCKUP [ 177.480768][ T6922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 177.480794][ T6922] Call Trace: [ 177.480805][ T6922] [ 177.480818][ T6922] dump_stack_lvl+0x100/0x190 [ 177.480878][ T6922] should_fail_ex.cold+0x5/0xa [ 177.480932][ T6922] should_failslab+0xc2/0x120 [ 177.480969][ T6922] __kmalloc_cache_noprof+0x7a/0x6f0 [ 177.481014][ T6922] ? trace_pid_list_alloc+0x232/0x480 [ 177.481074][ T6922] trace_pid_list_alloc+0x232/0x480 [ 177.481133][ T6922] trace_pid_write+0x110/0x460 [ 177.481188][ T6922] ? __pfx_trace_pid_write+0x10/0x10 [ 177.481267][ T6922] event_pid_write.isra.0+0x1e4/0x800 [ 177.481327][ T6922] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 177.481396][ T6922] vfs_write+0x2aa/0x1070 [ 177.481451][ T6922] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 177.481513][ T6922] ? __pfx_vfs_write+0x10/0x10 [ 177.481566][ T6922] ? __fget_files+0x215/0x3d0 [ 177.481607][ T6922] ? __fget_files+0x21f/0x3d0 [ 177.481650][ T6922] ksys_write+0x12a/0x250 [ 177.481681][ T6922] ? __pfx_ksys_write+0x10/0x10 [ 177.481737][ T6922] do_syscall_64+0x106/0xf80 [ 177.481779][ T6922] ? clear_bhb_loop+0x40/0x90 [ 177.481821][ T6922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.481856][ T6922] RIP: 0033:0x7f9f2759c799 [ 177.481884][ T6922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 177.481916][ T6922] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 177.481949][ T6922] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 177.481970][ T6922] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 177.481989][ T6922] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 177.482009][ T6922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.482028][ T6922] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 177.482082][ T6922] [ 177.909647][ T6928] nbd: socks must be embedded in a SOCK_ITEM attr [ 177.926373][ T6928] block nbd0: shutting down sockets [ 179.741402][ T6946] GUP no longer grows the stack in syz.1.168 (6946): 14000-401000 (4000) [ 179.765269][ T6946] CPU: 0 UID: 0 PID: 6946 Comm: syz.1.168 Tainted: G L syzkaller #0 PREEMPT(full) [ 179.765313][ T6946] Tainted: [L]=SOFTLOCKUP [ 179.765321][ T6946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 179.765339][ T6946] Call Trace: [ 179.765347][ T6946] [ 179.765356][ T6946] dump_stack_lvl+0x100/0x190 [ 179.765396][ T6946] gup_vma_lookup.cold+0x83/0x96 [ 179.765433][ T6946] __get_user_pages+0x241/0x34d0 [ 179.765469][ T6946] ? down_read_killable+0x30e/0x4c0 [ 179.765503][ T6946] ? __lock_acquire+0x4a5/0x2630 [ 179.765573][ T6946] ? __pfx___get_user_pages+0x10/0x10 [ 179.765609][ T6946] __gup_longterm_locked+0x87d/0x16f0 [ 179.765646][ T6946] ? __pfx___gup_longterm_locked+0x10/0x10 [ 179.765720][ T6946] ? try_get_folio+0x262/0x750 [ 179.765744][ T6946] ? find_held_lock+0x2b/0x80 [ 179.765766][ T6946] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 179.765804][ T6946] gup_fast_fallback+0x18c6/0x2460 [ 179.765872][ T6946] ? __pfx_gup_fast_fallback+0x10/0x10 [ 179.765901][ T6946] ? __lock_acquire+0x4a5/0x2630 [ 179.765938][ T6946] ? bio_associate_blkg_from_css+0xe33/0x13f0 [ 179.765966][ T6946] ? bio_associate_blkg+0x10c/0x2a0 [ 179.765994][ T6946] ? pcpu_block_update+0x20b/0x690 [ 179.766029][ T6946] pin_user_pages_fast+0xa7/0xf0 [ 179.766057][ T6946] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 179.766086][ T6946] ? find_held_lock+0x2b/0x80 [ 179.766107][ T6946] ? __debug_object_init+0x2de/0x3d0 [ 179.766141][ T6946] ? __debug_object_init+0x2de/0x3d0 [ 179.766178][ T6946] iov_iter_extract_pages+0xa0d/0x1ef0 [ 179.766210][ T6946] ? __lock_acquire+0x4a5/0x2630 [ 179.766240][ T6946] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 179.766270][ T6946] ? __lock_acquire+0x4a5/0x2630 [ 179.766305][ T6946] iov_iter_extract_bvecs+0x10e/0xf40 [ 179.766336][ T6946] ? find_held_lock+0x2b/0x80 [ 179.766357][ T6946] ? bio_associate_blkg_from_css+0x394/0x13f0 [ 179.766387][ T6946] ? __pfx_iov_iter_extract_bvecs+0x10/0x10 [ 179.766414][ T6946] ? bio_associate_blkg_from_css+0x550/0x13f0 [ 179.766449][ T6946] bio_iov_iter_get_pages+0x26a/0x970 [ 179.766498][ T6946] __blkdev_direct_IO_simple+0x3a7/0x890 [ 179.766536][ T6946] ? __pfx___blkdev_direct_IO_simple+0x10/0x10 [ 179.766591][ T6946] ? __lock_acquire+0x4a5/0x2630 [ 179.766628][ T6946] blkdev_direct_IO+0xc76/0x1fb0 [ 179.766671][ T6946] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 179.766701][ T6946] ? rcu_is_watching+0x12/0xc0 [ 179.766738][ T6946] ? __mark_inode_dirty+0x55c/0x1790 [ 179.766772][ T6946] ? filemap_check_errors+0xa9/0x150 [ 179.766806][ T6946] blkdev_write_iter+0x703/0xd70 [ 179.766842][ T6946] vfs_write+0x6ac/0x1070 [ 179.766882][ T6946] ? __pfx_blkdev_write_iter+0x10/0x10 [ 179.766915][ T6946] ? __pfx_vfs_write+0x10/0x10 [ 179.766961][ T6946] ? find_held_lock+0x2b/0x80 [ 179.767002][ T6946] ksys_write+0x12a/0x250 [ 179.767023][ T6946] ? __pfx_ksys_write+0x10/0x10 [ 179.767053][ T6946] do_syscall_64+0x106/0xf80 [ 179.767082][ T6946] ? clear_bhb_loop+0x40/0x90 [ 179.767111][ T6946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.767135][ T6946] RIP: 0033:0x7fea7b39c799 [ 179.767155][ T6946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 179.767177][ T6946] RSP: 002b:00007fea7c2c5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 179.767199][ T6946] RAX: ffffffffffffffda RBX: 00007fea7b615fa0 RCX: 00007fea7b39c799 [ 179.767215][ T6946] RDX: 000000000010007c RSI: 0000000000000000 RDI: 0000000000000004 [ 179.767229][ T6946] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 179.767243][ T6946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.767257][ T6946] R13: 00007fea7b616038 R14: 00007fea7b615fa0 R15: 00007fffbd4caa08 [ 179.767287][ T6946] [ 181.136625][ T6965] Invalid ELF header magic: != ELF [ 181.668523][ T5144] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 189.165873][ T7054] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 190.880061][ T7105] FAULT_INJECTION: forcing a failure. [ 190.880061][ T7105] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 190.893828][ T7105] CPU: 1 UID: 0 PID: 7105 Comm: syz.0.193 Tainted: G L syzkaller #0 PREEMPT(full) [ 190.893864][ T7105] Tainted: [L]=SOFTLOCKUP [ 190.893872][ T7105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 190.893886][ T7105] Call Trace: [ 190.893893][ T7105] [ 190.893902][ T7105] dump_stack_lvl+0x100/0x190 [ 190.893949][ T7105] should_fail_ex.cold+0x5/0xa [ 190.893973][ T7105] ? prepare_alloc_pages+0x16d/0x5f0 [ 190.894003][ T7105] should_fail_alloc_page+0xeb/0x140 [ 190.894030][ T7105] prepare_alloc_pages+0x1f0/0x5f0 [ 190.894057][ T7105] ? __pfx_mas_wr_bnode+0x10/0x10 [ 190.894094][ T7105] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 190.894136][ T7105] ? mas_ascend+0x53d/0xb30 [ 190.894166][ T7105] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 190.894208][ T7105] ? mas_next_node+0x7f8/0xf30 [ 190.894236][ T7105] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 190.894278][ T7105] ? mt_validate_nulls+0x1b3/0x9c0 [ 190.894316][ T7105] ? __pfx_mt_validate_nulls+0x10/0x10 [ 190.894353][ T7105] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 190.894395][ T7105] ? policy_nodemask+0xed/0x4f0 [ 190.894421][ T7105] alloc_pages_mpol+0x1fb/0x550 [ 190.894447][ T7105] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 190.894474][ T7105] ? __lock_acquire+0x4a5/0x2630 [ 190.894508][ T7105] folio_alloc_mpol_noprof+0x36/0x340 [ 190.894540][ T7105] alloc_migration_target_by_mpol+0x2c1/0x650 [ 190.894580][ T7105] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 190.894617][ T7105] ? __pfx___might_resched+0x10/0x10 [ 190.894652][ T7105] ? is_bpf_text_address+0x8a/0x1a0 [ 190.894694][ T7105] migrate_pages_batch+0x4f2/0x4530 [ 190.894723][ T7105] ? kernel_text_address+0x70/0x100 [ 190.894759][ T7105] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 190.894792][ T7105] ? arch_stack_walk+0xa6/0xf0 [ 190.894823][ T7105] ? __pfx_migrate_pages_batch+0x10/0x10 [ 190.894853][ T7105] ? __pfx_stack_trace_save+0x10/0x10 [ 190.894877][ T7105] ? stack_depot_save_flags+0x27/0x9d0 [ 190.894903][ T7105] ? __split_vma+0x392/0xd90 [ 190.894939][ T7105] ? kasan_save_stack+0x3f/0x50 [ 190.894974][ T7105] ? kasan_save_stack+0x30/0x50 [ 190.895010][ T7105] ? kasan_save_track+0x14/0x30 [ 190.895045][ T7105] ? __kasan_slab_alloc+0x89/0x90 [ 190.895066][ T7105] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 190.895102][ T7105] ? __mpol_dup+0x74/0x370 [ 190.895127][ T7105] ? mbind_range+0x2ad/0x550 [ 190.895159][ T7105] migrate_pages_sync+0x12c/0x880 [ 190.895188][ T7105] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 190.895232][ T7105] ? __pfx_migrate_pages_sync+0x10/0x10 [ 190.895264][ T7105] ? __lock_acquire+0x4a5/0x2630 [ 190.895301][ T7105] migrate_pages+0x1aae/0x28a0 [ 190.895334][ T7105] ? __pfx_alloc_migration_target_by_mpol+0x10/0x10 [ 190.895373][ T7105] ? __pfx_migrate_pages+0x10/0x10 [ 190.895405][ T7105] ? find_held_lock+0x2b/0x80 [ 190.895427][ T7105] ? do_mbind+0x557/0xfd0 [ 190.895461][ T7105] ? up_write+0x290/0x4f0 [ 190.895497][ T7105] do_mbind+0x5a6/0xfd0 [ 190.895534][ T7105] ? __pfx_do_mbind+0x10/0x10 [ 190.895569][ T7105] ? __lock_acquire+0x4a5/0x2630 [ 190.895613][ T7105] ? __pfx_get_nodes+0x10/0x10 [ 190.895649][ T7105] ? find_held_lock+0x2b/0x80 [ 190.895678][ T7105] kernel_mbind+0x1b7/0x200 [ 190.895710][ T7105] ? __pfx_kernel_mbind+0x10/0x10 [ 190.895749][ T7105] do_syscall_64+0x106/0xf80 [ 190.895778][ T7105] ? clear_bhb_loop+0x40/0x90 [ 190.895807][ T7105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.895832][ T7105] RIP: 0033:0x7f32cbd9c799 [ 190.895853][ T7105] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 190.895875][ T7105] RSP: 002b:00007f32ccc05028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed [ 190.895898][ T7105] RAX: ffffffffffffffda RBX: 00007f32cc015fa0 RCX: 00007f32cbd9c799 [ 190.895913][ T7105] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000 [ 190.895927][ T7105] RBP: 00007f32cbe32c99 R08: 0000000000000006 R09: 0000000000000002 [ 190.895942][ T7105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.895955][ T7105] R13: 00007f32cc016038 R14: 00007f32cc015fa0 R15: 00007ffddb2fe398 [ 190.895986][ T7105] [ 191.650738][ T7094] can: request_module (can-proto-0) failed. [ 192.483350][ T7124] FAULT_INJECTION: forcing a failure. [ 192.483350][ T7124] name failslab, interval 1, probability 0, space 0, times 0 [ 192.500114][ T7124] CPU: 1 UID: 0 PID: 7124 Comm: syz.0.195 Tainted: G L syzkaller #0 PREEMPT(full) [ 192.500163][ T7124] Tainted: [L]=SOFTLOCKUP [ 192.500179][ T7124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 192.500192][ T7124] Call Trace: [ 192.500200][ T7124] [ 192.500208][ T7124] dump_stack_lvl+0x100/0x190 [ 192.500247][ T7124] should_fail_ex.cold+0x5/0xa [ 192.500275][ T7124] should_failslab+0xc2/0x120 [ 192.500299][ T7124] __kmalloc_cache_noprof+0x7a/0x6f0 [ 192.500329][ T7124] ? trace_pid_list_alloc+0x232/0x480 [ 192.500371][ T7124] trace_pid_list_alloc+0x232/0x480 [ 192.500411][ T7124] trace_pid_write+0x110/0x460 [ 192.500450][ T7124] ? __pfx_trace_pid_write+0x10/0x10 [ 192.500503][ T7124] event_pid_write.isra.0+0x1e4/0x800 [ 192.500543][ T7124] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 192.500591][ T7124] vfs_write+0x2aa/0x1070 [ 192.500628][ T7124] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 192.500670][ T7124] ? __pfx_vfs_write+0x10/0x10 [ 192.500706][ T7124] ? __fget_files+0x215/0x3d0 [ 192.500734][ T7124] ? __fget_files+0x21f/0x3d0 [ 192.500762][ T7124] ksys_write+0x12a/0x250 [ 192.500782][ T7124] ? __pfx_ksys_write+0x10/0x10 [ 192.500812][ T7124] do_syscall_64+0x106/0xf80 [ 192.500839][ T7124] ? clear_bhb_loop+0x40/0x90 [ 192.500868][ T7124] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.500892][ T7124] RIP: 0033:0x7f32cbd9c799 [ 192.500910][ T7124] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 192.500937][ T7124] RSP: 002b:00007f32ccc05028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 192.500959][ T7124] RAX: ffffffffffffffda RBX: 00007f32cc015fa0 RCX: 00007f32cbd9c799 [ 192.500975][ T7124] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 192.500988][ T7124] RBP: 00007f32cbe32c99 R08: 0000000000000000 R09: 0000000000000000 [ 192.501002][ T7124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.501015][ T7124] R13: 00007f32cc016038 R14: 00007f32cc015fa0 R15: 00007ffddb2fe398 [ 192.501045][ T7124] [ 194.394545][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.404214][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.636691][ T7169] Invalid ELF header magic: != ELF [ 197.755766][ T7189] zswap: compressor not available [ 198.512877][ T7209] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 199.899652][ T7226] can: request_module (can-proto-0) failed. [ 206.711901][ T7320] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 211.481674][ T7398] NFSD: Failed to start, no listeners configured. [ 215.112314][ T7419] FAULT_INJECTION: forcing a failure. [ 215.112314][ T7419] name failslab, interval 1, probability 0, space 0, times 0 [ 215.182510][ T7419] CPU: 0 UID: 0 PID: 7419 Comm: syz.2.239 Tainted: G L syzkaller #0 PREEMPT(full) [ 215.182566][ T7419] Tainted: [L]=SOFTLOCKUP [ 215.182578][ T7419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 215.182597][ T7419] Call Trace: [ 215.182609][ T7419] [ 215.182621][ T7419] dump_stack_lvl+0x100/0x190 [ 215.182679][ T7419] should_fail_ex.cold+0x5/0xa [ 215.182718][ T7419] ? memcg_list_lru_alloc+0x4ec/0x740 [ 215.182767][ T7419] should_failslab+0xc2/0x120 [ 215.182801][ T7419] __kmalloc_noprof+0xe0/0x850 [ 215.182852][ T7419] ? ipcget+0xee/0xf50 [ 215.182894][ T7419] memcg_list_lru_alloc+0x4ec/0x740 [ 215.183082][ T7419] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 215.183135][ T7419] ? rcu_read_unlock+0x17/0x60 [ 215.183183][ T7419] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 215.183239][ T7419] __memcg_slab_post_alloc_hook+0x130/0x990 [ 215.183288][ T7419] ? kasan_save_track+0x14/0x30 [ 215.183345][ T7419] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 215.183396][ T7419] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 215.183438][ T7419] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 215.183471][ T7419] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 215.183506][ T7419] alloc_inode+0x68/0x250 [ 215.183551][ T7419] new_inode+0x22/0x1c0 [ 215.183598][ T7419] hugetlbfs_get_inode+0x313/0x750 [ 215.183639][ T7419] hugetlb_file_setup+0x3cc/0x5b0 [ 215.183680][ T7419] newseg+0xabb/0xed0 [ 215.183723][ T7419] ? __pfx_newseg+0x10/0x10 [ 215.183757][ T7419] ? down_write+0x146/0x1f0 [ 215.183804][ T7419] ? ksys_write+0x190/0x250 [ 215.183832][ T7419] ? ksys_write+0x190/0x250 [ 215.183868][ T7419] ipcget+0xee/0xf50 [ 215.183921][ T7419] ? do_futex+0x192/0x350 [ 215.183966][ T7419] ? __pfx_do_futex+0x10/0x10 [ 215.184017][ T7419] ? __pfx_ipcget+0x10/0x10 [ 215.184057][ T7419] ? __x64_sys_futex+0x34f/0x4d0 [ 215.184099][ T7419] ? __x64_sys_futex+0x358/0x4d0 [ 215.184149][ T7419] __x64_sys_shmget+0x13b/0x1b0 [ 215.184188][ T7419] ? __pfx___x64_sys_shmget+0x10/0x10 [ 215.184238][ T7419] do_syscall_64+0x106/0xf80 [ 215.184278][ T7419] ? clear_bhb_loop+0x40/0x90 [ 215.184323][ T7419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.184358][ T7419] RIP: 0033:0x7f9f2759c799 [ 215.184387][ T7419] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 215.184420][ T7419] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 215.184453][ T7419] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 215.184475][ T7419] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 215.184495][ T7419] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 215.184514][ T7419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 215.184534][ T7419] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 215.184578][ T7419] [ 223.212657][ T7504] binder: 7499:7504 ioctl c018620c 0 returned -1 [ 223.250422][ T7505] netlink: 8 bytes leftover after parsing attributes in process `syz.1.253'. [ 224.866207][ T7517] bond0: invalid ARP target specified [ 224.883082][ T7517] netlink: 28 bytes leftover after parsing attributes in process `syz.3.255'. [ 224.892303][ T7517] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 224.899797][ T7517] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.926640][ T7517] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 224.941094][ T7517] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 224.973048][ T7520] FAULT_INJECTION: forcing a failure. [ 224.973048][ T7520] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 225.011184][ T7520] CPU: 1 UID: 0 PID: 7520 Comm: syz.3.255 Tainted: G L syzkaller #0 PREEMPT(full) [ 225.011238][ T7520] Tainted: [L]=SOFTLOCKUP [ 225.011250][ T7520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 225.011267][ T7520] Call Trace: [ 225.011278][ T7520] [ 225.011291][ T7520] dump_stack_lvl+0x100/0x190 [ 225.011350][ T7520] should_fail_ex.cold+0x5/0xa [ 225.011383][ T7520] ? prepare_alloc_pages+0x16d/0x5f0 [ 225.011425][ T7520] should_fail_alloc_page+0xeb/0x140 [ 225.011462][ T7520] prepare_alloc_pages+0x1f0/0x5f0 [ 225.011506][ T7520] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 225.011559][ T7520] ? __lock_acquire+0x4a5/0x2630 [ 225.011628][ T7520] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 225.011681][ T7520] ? do_raw_spin_lock+0x128/0x260 [ 225.011729][ T7520] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 225.011775][ T7520] ? find_held_lock+0x2b/0x80 [ 225.011817][ T7520] ? __lock_acquire+0x4a5/0x2630 [ 225.011856][ T7520] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 225.011913][ T7520] ? policy_nodemask+0xed/0x4f0 [ 225.011950][ T7520] alloc_pages_mpol+0x1fb/0x550 [ 225.011986][ T7520] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 225.012021][ T7520] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 225.012074][ T7520] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 225.012147][ T7520] folio_alloc_mpol_noprof+0x36/0x340 [ 225.012190][ T7520] shmem_alloc_folio+0x135/0x160 [ 225.012234][ T7520] shmem_alloc_and_add_folio+0x371/0xd40 [ 225.012291][ T7520] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 225.012337][ T7520] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 225.012388][ T7520] shmem_get_folio_gfp+0x6ab/0x1900 [ 225.012438][ T7520] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 225.012486][ T7520] ? filemap_map_pages+0xe69/0x2020 [ 225.012541][ T7520] shmem_fault+0x1f9/0xa20 [ 225.012597][ T7520] ? __lock_acquire+0x4a5/0x2630 [ 225.012660][ T7520] ? __pfx_shmem_fault+0x10/0x10 [ 225.012716][ T7520] ? __pfx_filemap_map_pages+0x10/0x10 [ 225.012777][ T7520] __do_fault+0x10d/0x550 [ 225.012812][ T7520] do_fault+0xabb/0x1990 [ 225.012855][ T7520] __handle_mm_fault+0x180f/0x2b60 [ 225.012908][ T7520] ? mt_find+0x45e/0x8e0 [ 225.012953][ T7520] ? __pfx___handle_mm_fault+0x10/0x10 [ 225.012995][ T7520] ? __pfx_mt_find+0x10/0x10 [ 225.013061][ T7520] ? find_vma+0xbf/0x140 [ 225.013091][ T7520] ? __pfx_find_vma+0x10/0x10 [ 225.013128][ T7520] handle_mm_fault+0x36d/0xa20 [ 225.013183][ T7520] do_user_addr_fault+0x74c/0x12f0 [ 225.013248][ T7520] exc_page_fault+0x6f/0xd0 [ 225.013290][ T7520] asm_exc_page_fault+0x26/0x30 [ 225.013324][ T7520] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 225.013377][ T7520] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 225.013409][ T7520] RSP: 0018:ffffc900036b7d30 EFLAGS: 00050206 [ 225.013434][ T7520] RAX: 0000000000000001 RBX: 0000000000001fe4 RCX: 0000000000003b84 [ 225.013453][ T7520] RDX: 0000000000000001 RSI: 0000000000006000 RDI: ffffc9000300407c [ 225.013473][ T7520] RBP: 0000000000007ba0 R08: 0000000000000001 R09: fffff52000600f7f [ 225.013492][ T7520] R10: ffffc90003007bff R11: 0000000000000000 R12: 0000000000000000 [ 225.013512][ T7520] R13: ffffc90003000060 R14: 0000000000007ba0 R15: ffffc90003000060 [ 225.013554][ T7520] _copy_from_user+0x98/0xd0 [ 225.013598][ T7520] bpf_prog_create_from_user+0x109/0x2f0 [ 225.013649][ T7520] ? __pfx_seccomp_check_filter+0x10/0x10 [ 225.013696][ T7520] do_seccomp+0x7f7/0x2740 [ 225.013749][ T7520] ? __pfx_do_seccomp+0x10/0x10 [ 225.013791][ T7520] ? __x64_sys_openat+0x12d/0x210 [ 225.013837][ T7520] ? xfd_validate_state+0x129/0x190 [ 225.013899][ T7520] do_syscall_64+0x106/0xf80 [ 225.013938][ T7520] ? clear_bhb_loop+0x40/0x90 [ 225.013979][ T7520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.014011][ T7520] RIP: 0033:0x7f84e899c799 [ 225.014037][ T7520] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 225.014070][ T7520] RSP: 002b:00007f84e97fb028 EFLAGS: 00000246 ORIG_RAX: 000000000000013d [ 225.014103][ T7520] RAX: ffffffffffffffda RBX: 00007f84e8c16090 RCX: 00007f84e899c799 [ 225.014125][ T7520] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000001 [ 225.014145][ T7520] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 225.014165][ T7520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.014185][ T7520] R13: 00007f84e8c16128 R14: 00007f84e8c16090 R15: 00007ffea61eeff8 [ 225.014230][ T7520] [ 225.628092][ T7523] FAULT_INJECTION: forcing a failure. [ 225.628092][ T7523] name failslab, interval 1, probability 0, space 0, times 0 [ 225.654463][ T7523] CPU: 0 UID: 0 PID: 7523 Comm: syz.2.257 Tainted: G L syzkaller #0 PREEMPT(full) [ 225.654500][ T7523] Tainted: [L]=SOFTLOCKUP [ 225.654509][ T7523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 225.654522][ T7523] Call Trace: [ 225.654530][ T7523] [ 225.654541][ T7523] dump_stack_lvl+0x100/0x190 [ 225.654581][ T7523] should_fail_ex.cold+0x5/0xa [ 225.654609][ T7523] should_failslab+0xc2/0x120 [ 225.654634][ T7523] __kmalloc_cache_noprof+0x7a/0x6f0 [ 225.654666][ T7523] ? copy_time_ns+0xf6/0x800 [ 225.654695][ T7523] copy_time_ns+0xf6/0x800 [ 225.654717][ T7523] ? copy_cgroup_ns+0x71/0x970 [ 225.654747][ T7523] create_new_namespaces+0x48a/0xac0 [ 225.654779][ T7523] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 225.654807][ T7523] ksys_unshare+0x473/0xad0 [ 225.654839][ T7523] ? __pfx_ksys_unshare+0x10/0x10 [ 225.654880][ T7523] __x64_sys_unshare+0x31/0x40 [ 225.654910][ T7523] do_syscall_64+0x106/0xf80 [ 225.654938][ T7523] ? clear_bhb_loop+0x40/0x90 [ 225.654967][ T7523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.654992][ T7523] RIP: 0033:0x7f9f2759c799 [ 225.655011][ T7523] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 225.655033][ T7523] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 225.655061][ T7523] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 225.655077][ T7523] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 225.655091][ T7523] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 225.655105][ T7523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.655119][ T7523] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 225.655149][ T7523] [ 226.332821][ T7535] syz.3.260 uses obsolete (PF_INET,SOCK_PACKET) [ 228.550740][ T7569] binder: 7562:7569 ioctl c018620c 0 returned -1 [ 228.981954][ T7575] netlink: 28 bytes leftover after parsing attributes in process `syz.0.266'. [ 229.241087][ T7579] netlink: 4 bytes leftover after parsing attributes in process `syz.3.267'. [ 229.297216][ T7575] team0: Port device team_slave_0 removed [ 232.494629][ T7612] FAULT_INJECTION: forcing a failure. [ 232.494629][ T7612] name failslab, interval 1, probability 0, space 0, times 0 [ 232.621166][ T7612] CPU: 0 UID: 0 PID: 7612 Comm: syz.2.273 Tainted: G L syzkaller #0 PREEMPT(full) [ 232.621216][ T7612] Tainted: [L]=SOFTLOCKUP [ 232.621228][ T7612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 232.621247][ T7612] Call Trace: [ 232.621257][ T7612] [ 232.621269][ T7612] dump_stack_lvl+0x100/0x190 [ 232.621327][ T7612] should_fail_ex.cold+0x5/0xa [ 232.621371][ T7612] should_failslab+0xc2/0x120 [ 232.621406][ T7612] __kmalloc_cache_noprof+0x7a/0x6f0 [ 232.621450][ T7612] ? vkms_plane_duplicate_state+0x87/0x130 [ 232.621522][ T7612] vkms_plane_duplicate_state+0x87/0x130 [ 232.621582][ T7612] drm_atomic_get_plane_state+0x279/0x760 [ 232.621645][ T7612] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 232.621692][ T7612] ? trace_contention_end+0x140/0x180 [ 232.621747][ T7612] ? __mutex_lock+0x26a/0x1b90 [ 232.621793][ T7612] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 232.621837][ T7612] ? drm_master_internal_acquire+0x21/0x80 [ 232.621917][ T7612] drm_client_modeset_commit_locked+0x14d/0x580 [ 232.621969][ T7612] drm_client_modeset_commit+0x4f/0x80 [ 232.622013][ T7612] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 232.622061][ T7612] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 232.622107][ T7612] drm_fbdev_client_restore+0x1b/0x30 [ 232.622162][ T7612] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 232.622215][ T7612] drm_client_dev_restore+0x205/0x2a0 [ 232.622265][ T7612] drm_release+0x2c6/0x360 [ 232.622303][ T7612] ? __pfx_drm_release+0x10/0x10 [ 232.622340][ T7612] __fput+0x3ff/0xb40 [ 232.622391][ T7612] task_work_run+0x150/0x240 [ 232.622444][ T7612] ? __pfx_task_work_run+0x10/0x10 [ 232.622517][ T7612] exit_to_user_mode_loop+0x100/0x4a0 [ 232.622568][ T7612] do_syscall_64+0x668/0xf80 [ 232.622609][ T7612] ? clear_bhb_loop+0x40/0x90 [ 232.622653][ T7612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.622689][ T7612] RIP: 0033:0x7f9f2759c799 [ 232.622717][ T7612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 232.622751][ T7612] RSP: 002b:00007f9f28453028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 232.622784][ T7612] RAX: 0000000000000000 RBX: 00007f9f27816270 RCX: 00007f9f2759c799 [ 232.622805][ T7612] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 232.622823][ T7612] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 232.622842][ T7612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.622861][ T7612] R13: 00007f9f27816308 R14: 00007f9f27816270 R15: 00007ffdf86c8438 [ 232.622906][ T7612] [ 233.772944][ T7622] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 234.772114][ T7643] netlink: 4 bytes leftover after parsing attributes in process `syz.1.278'. [ 234.821442][ T7643] netlink: 'syz.1.278': attribute type 1 has an invalid length. [ 234.848857][ T7643] netlink: 5 bytes leftover after parsing attributes in process `syz.1.278'. [ 235.820963][ T7632] FAULT_INJECTION: forcing a failure. [ 235.820963][ T7632] name failslab, interval 1, probability 0, space 0, times 0 [ 235.833748][ T7632] CPU: 0 UID: 0 PID: 7632 Comm: syz.3.277 Tainted: G L syzkaller #0 PREEMPT(full) [ 235.833799][ T7632] Tainted: [L]=SOFTLOCKUP [ 235.833811][ T7632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 235.833829][ T7632] Call Trace: [ 235.833840][ T7632] [ 235.833853][ T7632] dump_stack_lvl+0x100/0x190 [ 235.833912][ T7632] should_fail_ex.cold+0x5/0xa [ 235.833951][ T7632] ? memcg_list_lru_alloc+0x4ec/0x740 [ 235.834008][ T7632] should_failslab+0xc2/0x120 [ 235.834044][ T7632] __kmalloc_noprof+0xe0/0x850 [ 235.834103][ T7632] ? ipcget+0xee/0xf50 [ 235.834145][ T7632] memcg_list_lru_alloc+0x4ec/0x740 [ 235.834207][ T7632] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 235.834265][ T7632] ? rcu_read_unlock+0x17/0x60 [ 235.834315][ T7632] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 235.834371][ T7632] __memcg_slab_post_alloc_hook+0x130/0x990 [ 235.834420][ T7632] ? kasan_save_track+0x14/0x30 [ 235.834479][ T7632] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 235.834531][ T7632] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 235.834576][ T7632] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 235.834609][ T7632] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 235.834644][ T7632] alloc_inode+0x68/0x250 [ 235.834689][ T7632] new_inode+0x22/0x1c0 [ 235.834738][ T7632] hugetlbfs_get_inode+0x313/0x750 [ 235.834781][ T7632] hugetlb_file_setup+0x3cc/0x5b0 [ 235.834824][ T7632] newseg+0xabb/0xed0 [ 235.834867][ T7632] ? __pfx_newseg+0x10/0x10 [ 235.834903][ T7632] ? down_write+0x146/0x1f0 [ 235.834951][ T7632] ? ksys_write+0x190/0x250 [ 235.834980][ T7632] ? ksys_write+0x190/0x250 [ 235.835017][ T7632] ipcget+0xee/0xf50 [ 235.835053][ T7632] ? do_futex+0x192/0x350 [ 235.835097][ T7632] ? __pfx_do_futex+0x10/0x10 [ 235.835148][ T7632] ? __pfx_ipcget+0x10/0x10 [ 235.835187][ T7632] ? __x64_sys_futex+0x34f/0x4d0 [ 235.835227][ T7632] ? __x64_sys_futex+0x358/0x4d0 [ 235.835285][ T7632] __x64_sys_shmget+0x13b/0x1b0 [ 235.835326][ T7632] ? __pfx___x64_sys_shmget+0x10/0x10 [ 235.835378][ T7632] do_syscall_64+0x106/0xf80 [ 235.835419][ T7632] ? clear_bhb_loop+0x40/0x90 [ 235.835461][ T7632] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.835496][ T7632] RIP: 0033:0x7f84e899c799 [ 235.835525][ T7632] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 235.835557][ T7632] RSP: 002b:00007f84e981c028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 235.835589][ T7632] RAX: ffffffffffffffda RBX: 00007f84e8c15fa0 RCX: 00007f84e899c799 [ 235.835611][ T7632] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 235.835632][ T7632] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 235.835652][ T7632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 235.835672][ T7632] R13: 00007f84e8c16038 R14: 00007f84e8c15fa0 R15: 00007ffea61eeff8 [ 235.835715][ T7632] [ 236.498450][ T7658] FAULT_INJECTION: forcing a failure. [ 236.498450][ T7658] name failslab, interval 1, probability 0, space 0, times 0 [ 236.530408][ T7658] CPU: 1 UID: 0 PID: 7658 Comm: syz.2.276 Tainted: G L syzkaller #0 PREEMPT(full) [ 236.530466][ T7658] Tainted: [L]=SOFTLOCKUP [ 236.530478][ T7658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 236.530499][ T7658] Call Trace: [ 236.530510][ T7658] [ 236.530523][ T7658] dump_stack_lvl+0x100/0x190 [ 236.530580][ T7658] should_fail_ex.cold+0x5/0xa [ 236.530647][ T7658] should_failslab+0xc2/0x120 [ 236.530683][ T7658] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 236.530737][ T7658] ? security_inode_alloc+0x3b/0x2c0 [ 236.530804][ T7658] ? lockdep_init_map_type+0x5c/0x250 [ 236.530858][ T7658] security_inode_alloc+0x3b/0x2c0 [ 236.530912][ T7658] inode_init_always_gfp+0xced/0x1040 [ 236.530953][ T7658] alloc_inode+0x8e/0x250 [ 236.530998][ T7658] new_inode+0x22/0x1c0 [ 236.531047][ T7658] hugetlbfs_get_inode+0x313/0x750 [ 236.531090][ T7658] hugetlb_file_setup+0x3cc/0x5b0 [ 236.531132][ T7658] newseg+0xabb/0xed0 [ 236.531176][ T7658] ? __pfx_newseg+0x10/0x10 [ 236.531212][ T7658] ? down_write+0x146/0x1f0 [ 236.531259][ T7658] ? ksys_write+0x190/0x250 [ 236.531288][ T7658] ? ksys_write+0x190/0x250 [ 236.531325][ T7658] ipcget+0xee/0xf50 [ 236.531361][ T7658] ? do_futex+0x192/0x350 [ 236.531405][ T7658] ? __pfx_do_futex+0x10/0x10 [ 236.531457][ T7658] ? __pfx_ipcget+0x10/0x10 [ 236.531495][ T7658] ? __x64_sys_futex+0x34f/0x4d0 [ 236.531538][ T7658] ? __x64_sys_futex+0x358/0x4d0 [ 236.531588][ T7658] __x64_sys_shmget+0x13b/0x1b0 [ 236.531634][ T7658] ? __pfx___x64_sys_shmget+0x10/0x10 [ 236.531685][ T7658] do_syscall_64+0x106/0xf80 [ 236.531724][ T7658] ? clear_bhb_loop+0x40/0x90 [ 236.531767][ T7658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.531802][ T7658] RIP: 0033:0x7f9f2759c799 [ 236.531830][ T7658] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 236.531863][ T7658] RSP: 002b:00007f9f28432028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 236.531896][ T7658] RAX: ffffffffffffffda RBX: 00007f9f27816360 RCX: 00007f9f2759c799 [ 236.531918][ T7658] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 236.531938][ T7658] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 236.531959][ T7658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 236.531978][ T7658] R13: 00007f9f278163f8 R14: 00007f9f27816360 R15: 00007ffdf86c8438 [ 236.532023][ T7658] [ 238.061882][ T7673] netlink: zone id is out of range [ 238.082482][ T7673] netlink: zone id is out of range [ 238.087637][ T7673] netlink: zone id is out of range [ 238.120677][ T7675] netlink: zone id is out of range [ 238.125977][ T7675] netlink: zone id is out of range [ 238.148348][ T7675] netlink: zone id is out of range [ 238.158734][ T7675] netlink: zone id is out of range [ 238.163904][ T7675] netlink: zone id is out of range [ 238.169790][ T7673] netlink: zone id is out of range [ 238.177398][ T7673] netlink: zone id is out of range [ 239.252775][ T7674] NFSD: Failed to start, no listeners configured. [ 239.881432][ T7693] vivid-007: ================= START STATUS ================= [ 239.912539][ T7693] vivid-007: Generate PTS: true [ 239.917640][ T7693] vivid-007: Generate SCR: true [ 239.982254][ T7691] can: request_module (can-proto-0) failed. [ 240.029693][ T7693] tpg source WxH: 320x240 (Y'CbCr) [ 240.098483][ T7693] tpg field: 1 [ 240.198438][ T7693] tpg crop: (0,0)/320x240 [ 240.202836][ T7693] tpg compose: (0,0)/320x240 [ 240.268419][ T7693] tpg colorspace: 8 [ 240.272305][ T7693] tpg transfer function: 0/0 [ 240.298411][ T7693] tpg Y'CbCr encoding: 0/0 [ 240.311011][ T7693] tpg quantization: 0/0 [ 240.327651][ T7693] tpg RGB range: 0/2 [ 240.352352][ T7693] vivid-007: ================== END STATUS ================== [ 241.247218][ T7700] tipc: Started in network mode [ 241.278609][ T7700] tipc: Node identity ee00, cluster identity 4711 [ 241.340933][ T7700] tipc: Node number set to 60928 [ 242.133953][ T7708] FAULT_INJECTION: forcing a failure. [ 242.133953][ T7708] name failslab, interval 1, probability 0, space 0, times 0 [ 242.146819][ T7708] CPU: 0 UID: 0 PID: 7708 Comm: syz.3.288 Tainted: G L syzkaller #0 PREEMPT(full) [ 242.146872][ T7708] Tainted: [L]=SOFTLOCKUP [ 242.146884][ T7708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 242.146905][ T7708] Call Trace: [ 242.146915][ T7708] [ 242.146927][ T7708] dump_stack_lvl+0x100/0x190 [ 242.146986][ T7708] should_fail_ex.cold+0x5/0xa [ 242.147026][ T7708] ? memcg_list_lru_alloc+0x4ec/0x740 [ 242.147077][ T7708] should_failslab+0xc2/0x120 [ 242.147112][ T7708] __kmalloc_noprof+0xe0/0x850 [ 242.147164][ T7708] ? ipcget+0xee/0xf50 [ 242.147207][ T7708] memcg_list_lru_alloc+0x4ec/0x740 [ 242.147269][ T7708] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 242.147350][ T7708] ? rcu_read_unlock+0x17/0x60 [ 242.147399][ T7708] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 242.147456][ T7708] __memcg_slab_post_alloc_hook+0x130/0x990 [ 242.147505][ T7708] ? kasan_save_track+0x14/0x30 [ 242.147563][ T7708] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 242.147614][ T7708] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 242.147666][ T7708] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 242.147699][ T7708] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 242.147734][ T7708] alloc_inode+0x68/0x250 [ 242.147780][ T7708] new_inode+0x22/0x1c0 [ 242.147826][ T7708] hugetlbfs_get_inode+0x313/0x750 [ 242.147868][ T7708] hugetlb_file_setup+0x3cc/0x5b0 [ 242.147943][ T7708] newseg+0xabb/0xed0 [ 242.147987][ T7708] ? __pfx_newseg+0x10/0x10 [ 242.148024][ T7708] ? down_write+0x146/0x1f0 [ 242.148090][ T7708] ? ksys_write+0x190/0x250 [ 242.148120][ T7708] ? ksys_write+0x190/0x250 [ 242.148158][ T7708] ipcget+0xee/0xf50 [ 242.148195][ T7708] ? do_futex+0x192/0x350 [ 242.148241][ T7708] ? __pfx_do_futex+0x10/0x10 [ 242.148300][ T7708] ? __pfx_ipcget+0x10/0x10 [ 242.148340][ T7708] ? __x64_sys_futex+0x34f/0x4d0 [ 242.148383][ T7708] ? __x64_sys_futex+0x358/0x4d0 [ 242.148434][ T7708] __x64_sys_shmget+0x13b/0x1b0 [ 242.148473][ T7708] ? __pfx___x64_sys_shmget+0x10/0x10 [ 242.148524][ T7708] do_syscall_64+0x106/0xf80 [ 242.148562][ T7708] ? clear_bhb_loop+0x40/0x90 [ 242.148605][ T7708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.148648][ T7708] RIP: 0033:0x7f84e899c799 [ 242.148677][ T7708] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 242.148710][ T7708] RSP: 002b:00007f84e97fb028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 242.148742][ T7708] RAX: ffffffffffffffda RBX: 00007f84e8c16090 RCX: 00007f84e899c799 [ 242.148765][ T7708] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 242.148785][ T7708] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 242.148806][ T7708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.148826][ T7708] R13: 00007f84e8c16128 R14: 00007f84e8c16090 R15: 00007ffea61eeff8 [ 242.148871][ T7708] [ 248.140688][ T7794] input: jJǸ as /devices/virtual/input/input13 [ 254.134915][ T7870] FAULT_INJECTION: forcing a failure. [ 254.134915][ T7870] name failslab, interval 1, probability 0, space 0, times 0 [ 254.149626][ T7870] CPU: 0 UID: 0 PID: 7870 Comm: syz.2.328 Tainted: G L syzkaller #0 PREEMPT(full) [ 254.149678][ T7870] Tainted: [L]=SOFTLOCKUP [ 254.149690][ T7870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 254.149709][ T7870] Call Trace: [ 254.149727][ T7870] [ 254.149740][ T7870] dump_stack_lvl+0x100/0x190 [ 254.149799][ T7870] should_fail_ex.cold+0x5/0xa [ 254.149840][ T7870] should_failslab+0xc2/0x120 [ 254.149876][ T7870] __kmalloc_cache_noprof+0x7a/0x6f0 [ 254.149921][ T7870] ? vkms_plane_duplicate_state+0x87/0x130 [ 254.149984][ T7870] vkms_plane_duplicate_state+0x87/0x130 [ 254.150038][ T7870] drm_atomic_get_plane_state+0x279/0x760 [ 254.150101][ T7870] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 254.150147][ T7870] ? trace_contention_end+0x140/0x180 [ 254.150201][ T7870] ? __mutex_lock+0x26a/0x1b90 [ 254.150245][ T7870] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 254.150290][ T7870] ? drm_master_internal_acquire+0x21/0x80 [ 254.150371][ T7870] drm_client_modeset_commit_locked+0x14d/0x580 [ 254.150423][ T7870] drm_client_modeset_commit+0x4f/0x80 [ 254.150466][ T7870] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 254.150515][ T7870] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 254.150563][ T7870] drm_fbdev_client_restore+0x1b/0x30 [ 254.150617][ T7870] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 254.150671][ T7870] drm_client_dev_restore+0x205/0x2a0 [ 254.150730][ T7870] drm_release+0x2c6/0x360 [ 254.150770][ T7870] ? __pfx_drm_release+0x10/0x10 [ 254.150809][ T7870] __fput+0x3ff/0xb40 [ 254.150860][ T7870] task_work_run+0x150/0x240 [ 254.150913][ T7870] ? __pfx_task_work_run+0x10/0x10 [ 254.150975][ T7870] exit_to_user_mode_loop+0x100/0x4a0 [ 254.151025][ T7870] do_syscall_64+0x668/0xf80 [ 254.151065][ T7870] ? clear_bhb_loop+0x40/0x90 [ 254.151111][ T7870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.151147][ T7870] RIP: 0033:0x7f9f2759c799 [ 254.151176][ T7870] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 254.151208][ T7870] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 254.151240][ T7870] RAX: 0000000000000000 RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 254.151261][ T7870] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 254.151281][ T7870] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 254.151300][ T7870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.151320][ T7870] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 254.151366][ T7870] [ 254.242672][ T7884] FAULT_INJECTION: forcing a failure. [ 254.242672][ T7884] name failslab, interval 1, probability 0, space 0, times 0 [ 254.441219][ T7884] CPU: 1 UID: 0 PID: 7884 Comm: syz.1.321 Tainted: G L syzkaller #0 PREEMPT(full) [ 254.441266][ T7884] Tainted: [L]=SOFTLOCKUP [ 254.441276][ T7884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 254.441294][ T7884] Call Trace: [ 254.441304][ T7884] [ 254.441316][ T7884] dump_stack_lvl+0x100/0x190 [ 254.441370][ T7884] should_fail_ex.cold+0x5/0xa [ 254.441408][ T7884] should_failslab+0xc2/0x120 [ 254.441442][ T7884] __kmalloc_cache_noprof+0x7a/0x6f0 [ 254.441484][ T7884] ? vkms_plane_duplicate_state+0x87/0x130 [ 254.441542][ T7884] vkms_plane_duplicate_state+0x87/0x130 [ 254.441612][ T7884] drm_atomic_get_plane_state+0x279/0x760 [ 254.441672][ T7884] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 254.441718][ T7884] ? trace_contention_end+0x140/0x180 [ 254.441770][ T7884] ? __mutex_lock+0x26a/0x1b90 [ 254.441811][ T7884] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 254.441854][ T7884] ? drm_master_internal_acquire+0x21/0x80 [ 254.441932][ T7884] drm_client_modeset_commit_locked+0x14d/0x580 [ 254.441983][ T7884] drm_client_modeset_commit+0x4f/0x80 [ 254.442026][ T7884] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 254.442073][ T7884] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 254.442120][ T7884] drm_fbdev_client_restore+0x1b/0x30 [ 254.442174][ T7884] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 254.442236][ T7884] drm_client_dev_restore+0x205/0x2a0 [ 254.442280][ T7884] drm_release+0x2c6/0x360 [ 254.442317][ T7884] ? __pfx_drm_release+0x10/0x10 [ 254.442354][ T7884] __fput+0x3ff/0xb40 [ 254.442403][ T7884] task_work_run+0x150/0x240 [ 254.442455][ T7884] ? __pfx_task_work_run+0x10/0x10 [ 254.442515][ T7884] exit_to_user_mode_loop+0x100/0x4a0 [ 254.442563][ T7884] do_syscall_64+0x668/0xf80 [ 254.442603][ T7884] ? clear_bhb_loop+0x40/0x90 [ 254.442646][ T7884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.442681][ T7884] RIP: 0033:0x7fea7b39c799 [ 254.442708][ T7884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 254.442739][ T7884] RSP: 002b:00007fea7c283028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 254.442771][ T7884] RAX: 0000000000000000 RBX: 00007fea7b616180 RCX: 00007fea7b39c799 [ 254.442789][ T7884] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 254.442806][ T7884] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 254.442823][ T7884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.442839][ T7884] R13: 00007fea7b616218 R14: 00007fea7b616180 R15: 00007fffbd4caa08 [ 254.442879][ T7884] [ 255.841923][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.848417][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.726927][ T7991] random: crng reseeded on system resumption [ 261.014529][ T7980] FAULT_INJECTION: forcing a failure. [ 261.014529][ T7980] name failslab, interval 1, probability 0, space 0, times 0 [ 261.041881][ T7980] CPU: 1 UID: 0 PID: 7980 Comm: syz.1.335 Tainted: G L syzkaller #0 PREEMPT(full) [ 261.041934][ T7980] Tainted: [L]=SOFTLOCKUP [ 261.041946][ T7980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 261.041964][ T7980] Call Trace: [ 261.041976][ T7980] [ 261.041989][ T7980] dump_stack_lvl+0x100/0x190 [ 261.042047][ T7980] should_fail_ex.cold+0x5/0xa [ 261.042088][ T7980] should_failslab+0xc2/0x120 [ 261.042126][ T7980] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 261.042177][ T7980] ? security_inode_alloc+0x3b/0x2c0 [ 261.042229][ T7980] ? lockdep_init_map_type+0x5c/0x250 [ 261.042280][ T7980] security_inode_alloc+0x3b/0x2c0 [ 261.042334][ T7980] inode_init_always_gfp+0xced/0x1040 [ 261.042375][ T7980] alloc_inode+0x8e/0x250 [ 261.042419][ T7980] new_inode+0x22/0x1c0 [ 261.042467][ T7980] hugetlbfs_get_inode+0x313/0x750 [ 261.042509][ T7980] hugetlb_file_setup+0x3cc/0x5b0 [ 261.042551][ T7980] newseg+0xabb/0xed0 [ 261.042603][ T7980] ? __pfx_newseg+0x10/0x10 [ 261.042640][ T7980] ? down_write+0x146/0x1f0 [ 261.042687][ T7980] ? ksys_write+0x190/0x250 [ 261.042717][ T7980] ? ksys_write+0x190/0x250 [ 261.042754][ T7980] ipcget+0xee/0xf50 [ 261.042791][ T7980] ? do_futex+0x192/0x350 [ 261.042836][ T7980] ? __pfx_do_futex+0x10/0x10 [ 261.042887][ T7980] ? __pfx_ipcget+0x10/0x10 [ 261.042924][ T7980] ? __x64_sys_futex+0x34f/0x4d0 [ 261.042965][ T7980] ? __x64_sys_futex+0x358/0x4d0 [ 261.043014][ T7980] __x64_sys_shmget+0x13b/0x1b0 [ 261.043053][ T7980] ? __pfx___x64_sys_shmget+0x10/0x10 [ 261.043105][ T7980] do_syscall_64+0x106/0xf80 [ 261.043145][ T7980] ? clear_bhb_loop+0x40/0x90 [ 261.043188][ T7980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.043223][ T7980] RIP: 0033:0x7fea7b39c799 [ 261.043251][ T7980] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 261.043283][ T7980] RSP: 002b:00007fea7c2c5028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 261.043315][ T7980] RAX: ffffffffffffffda RBX: 00007fea7b615fa0 RCX: 00007fea7b39c799 [ 261.043337][ T7980] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 261.043357][ T7980] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 261.043376][ T7980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 261.043396][ T7980] R13: 00007fea7b616038 R14: 00007fea7b615fa0 R15: 00007fffbd4caa08 [ 261.043440][ T7980] [ 262.280613][ T7994] FAULT_INJECTION: forcing a failure. [ 262.280613][ T7994] name failslab, interval 1, probability 0, space 0, times 0 [ 262.308635][ T7994] CPU: 1 UID: 0 PID: 7994 Comm: syz.3.336 Tainted: G L syzkaller #0 PREEMPT(full) [ 262.308696][ T7994] Tainted: [L]=SOFTLOCKUP [ 262.308708][ T7994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 262.308727][ T7994] Call Trace: [ 262.308738][ T7994] [ 262.308751][ T7994] dump_stack_lvl+0x100/0x190 [ 262.308799][ T7994] should_fail_ex.cold+0x5/0xa [ 262.308827][ T7994] should_failslab+0xc2/0x120 [ 262.308852][ T7994] __kmalloc_cache_noprof+0x7a/0x6f0 [ 262.308885][ T7994] ? vkms_plane_duplicate_state+0x87/0x130 [ 262.308929][ T7994] vkms_plane_duplicate_state+0x87/0x130 [ 262.308967][ T7994] drm_atomic_get_plane_state+0x279/0x760 [ 262.309012][ T7994] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 262.309044][ T7994] ? trace_contention_end+0x140/0x180 [ 262.309081][ T7994] ? __mutex_lock+0x26a/0x1b90 [ 262.309112][ T7994] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 262.309144][ T7994] ? drm_master_internal_acquire+0x21/0x80 [ 262.309199][ T7994] drm_client_modeset_commit_locked+0x14d/0x580 [ 262.309235][ T7994] drm_client_modeset_commit+0x4f/0x80 [ 262.309265][ T7994] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 262.309299][ T7994] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 262.309332][ T7994] drm_fbdev_client_restore+0x1b/0x30 [ 262.309371][ T7994] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 262.309416][ T7994] drm_client_dev_restore+0x205/0x2a0 [ 262.309452][ T7994] drm_release+0x2c6/0x360 [ 262.309479][ T7994] ? __pfx_drm_release+0x10/0x10 [ 262.309505][ T7994] __fput+0x3ff/0xb40 [ 262.309540][ T7994] task_work_run+0x150/0x240 [ 262.309577][ T7994] ? __pfx_task_work_run+0x10/0x10 [ 262.309620][ T7994] exit_to_user_mode_loop+0x100/0x4a0 [ 262.309655][ T7994] do_syscall_64+0x668/0xf80 [ 262.309683][ T7994] ? clear_bhb_loop+0x40/0x90 [ 262.309713][ T7994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.309738][ T7994] RIP: 0033:0x7f84e899c799 [ 262.309758][ T7994] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.309780][ T7994] RSP: 002b:00007f84e97da028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 262.309803][ T7994] RAX: 0000000000000000 RBX: 00007f84e8c16180 RCX: 00007f84e899c799 [ 262.309818][ T7994] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 262.309831][ T7994] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 262.309845][ T7994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.309859][ T7994] R13: 00007f84e8c16218 R14: 00007f84e8c16180 R15: 00007ffea61eeff8 [ 262.309891][ T7994] [ 263.679541][ T8018] random: crng reseeded on system resumption [ 264.128378][ T8018] hub 1-0:1.0: USB hub found [ 264.213124][ T8018] hub 1-0:1.0: 1 port detected [ 266.526464][ T8038] FAULT_INJECTION: forcing a failure. [ 266.526464][ T8038] name failslab, interval 1, probability 0, space 0, times 0 [ 266.568421][ T8038] CPU: 0 UID: 0 PID: 8038 Comm: syz.3.346 Tainted: G L syzkaller #0 PREEMPT(full) [ 266.568472][ T8038] Tainted: [L]=SOFTLOCKUP [ 266.568484][ T8038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 266.568504][ T8038] Call Trace: [ 266.568514][ T8038] [ 266.568526][ T8038] dump_stack_lvl+0x100/0x190 [ 266.568585][ T8038] should_fail_ex.cold+0x5/0xa [ 266.568635][ T8038] ? memcg_list_lru_alloc+0x4ec/0x740 [ 266.568687][ T8038] should_failslab+0xc2/0x120 [ 266.568722][ T8038] __kmalloc_noprof+0xe0/0x850 [ 266.568774][ T8038] ? ipcget+0xee/0xf50 [ 266.568815][ T8038] memcg_list_lru_alloc+0x4ec/0x740 [ 266.568878][ T8038] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 266.568930][ T8038] ? rcu_read_unlock+0x17/0x60 [ 266.568978][ T8038] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 266.569034][ T8038] __memcg_slab_post_alloc_hook+0x130/0x990 [ 266.569083][ T8038] ? kasan_save_track+0x14/0x30 [ 266.569140][ T8038] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 266.569193][ T8038] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 266.569237][ T8038] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 266.569271][ T8038] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 266.569305][ T8038] alloc_inode+0x68/0x250 [ 266.569350][ T8038] new_inode+0x22/0x1c0 [ 266.569398][ T8038] hugetlbfs_get_inode+0x313/0x750 [ 266.569440][ T8038] hugetlb_file_setup+0x3cc/0x5b0 [ 266.569483][ T8038] newseg+0xabb/0xed0 [ 266.569527][ T8038] ? __pfx_newseg+0x10/0x10 [ 266.569562][ T8038] ? down_write+0x146/0x1f0 [ 266.569616][ T8038] ? ksys_write+0x190/0x250 [ 266.569647][ T8038] ? ksys_write+0x190/0x250 [ 266.569683][ T8038] ipcget+0xee/0xf50 [ 266.569721][ T8038] ? do_futex+0x192/0x350 [ 266.569766][ T8038] ? __pfx_do_futex+0x10/0x10 [ 266.569817][ T8038] ? __pfx_ipcget+0x10/0x10 [ 266.569856][ T8038] ? __x64_sys_futex+0x34f/0x4d0 [ 266.569898][ T8038] ? __x64_sys_futex+0x358/0x4d0 [ 266.569948][ T8038] __x64_sys_shmget+0x13b/0x1b0 [ 266.569988][ T8038] ? __pfx___x64_sys_shmget+0x10/0x10 [ 266.570038][ T8038] do_syscall_64+0x106/0xf80 [ 266.570077][ T8038] ? clear_bhb_loop+0x40/0x90 [ 266.570120][ T8038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.570155][ T8038] RIP: 0033:0x7f84e899c799 [ 266.570183][ T8038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.570215][ T8038] RSP: 002b:00007f84e97fb028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 266.570247][ T8038] RAX: ffffffffffffffda RBX: 00007f84e8c16090 RCX: 00007f84e899c799 [ 266.570270][ T8038] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 266.570294][ T8038] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 266.570314][ T8038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.570334][ T8038] R13: 00007f84e8c16128 R14: 00007f84e8c16090 R15: 00007ffea61eeff8 [ 266.570378][ T8038] [ 274.251595][ T8116] FAULT_INJECTION: forcing a failure. [ 274.251595][ T8116] name fail_futex, interval 1, probability 0, space 0, times 0 [ 274.330553][ T8116] CPU: 0 UID: 0 PID: 8116 Comm: syz.1.359 Tainted: G L syzkaller #0 PREEMPT(full) [ 274.330611][ T8116] Tainted: [L]=SOFTLOCKUP [ 274.330623][ T8116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 274.330643][ T8116] Call Trace: [ 274.330654][ T8116] [ 274.330667][ T8116] dump_stack_lvl+0x100/0x190 [ 274.330725][ T8116] should_fail_ex.cold+0x5/0xa [ 274.330765][ T8116] get_futex_key+0x1d2/0x1620 [ 274.330813][ T8116] ? __pfx_get_futex_key+0x10/0x10 [ 274.330867][ T8116] ? trace_pid_list_is_set+0x22c/0x390 [ 274.330926][ T8116] futex_wait_setup+0x83/0x510 [ 274.330998][ T8116] __futex_wait+0x19f/0x300 [ 274.331054][ T8116] ? __pfx___futex_wait+0x10/0x10 [ 274.331104][ T8116] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 274.331142][ T8116] ? lockdep_hardirqs_on+0x78/0x100 [ 274.331195][ T8116] ? __pfx_futex_wake_mark+0x10/0x10 [ 274.331256][ T8116] ? find_held_lock+0x2b/0x80 [ 274.331288][ T8116] ? futex_wake+0x456/0x530 [ 274.331348][ T8116] futex_wait+0xed/0x380 [ 274.331410][ T8116] ? __pfx_futex_wait+0x10/0x10 [ 274.331475][ T8116] ? up_write+0x290/0x4f0 [ 274.331529][ T8116] do_futex+0x1ef/0x350 [ 274.331598][ T8116] ? __pfx_do_futex+0x10/0x10 [ 274.331661][ T8116] __x64_sys_futex+0x34f/0x4d0 [ 274.331709][ T8116] ? __pfx___x64_sys_futex+0x10/0x10 [ 274.331742][ T8116] ? __pfx___x64_sys_shmget+0x10/0x10 [ 274.331778][ T8116] do_syscall_64+0x106/0xf80 [ 274.331807][ T8116] ? clear_bhb_loop+0x40/0x90 [ 274.331836][ T8116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.331861][ T8116] RIP: 0033:0x7fea7b39c799 [ 274.331883][ T8116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 274.331905][ T8116] RSP: 002b:00007fea7c2830e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 274.331928][ T8116] RAX: ffffffffffffffda RBX: 00007fea7b616188 RCX: 00007fea7b39c799 [ 274.331944][ T8116] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fea7b616188 [ 274.331958][ T8116] RBP: 00007fea7b616180 R08: 0000000000000000 R09: 0000000000000000 [ 274.331972][ T8116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.331987][ T8116] R13: 00007fea7b616218 R14: 00007fffbd4ca920 R15: 00007fffbd4caa08 [ 274.332022][ T8116] [ 276.139906][ T8142] FAULT_INJECTION: forcing a failure. [ 276.139906][ T8142] name failslab, interval 1, probability 0, space 0, times 0 [ 276.170827][ T8142] CPU: 1 UID: 0 PID: 8142 Comm: syz.1.365 Tainted: G L syzkaller #0 PREEMPT(full) [ 276.170880][ T8142] Tainted: [L]=SOFTLOCKUP [ 276.170892][ T8142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 276.170911][ T8142] Call Trace: [ 276.170922][ T8142] [ 276.170935][ T8142] dump_stack_lvl+0x100/0x190 [ 276.170994][ T8142] should_fail_ex.cold+0x5/0xa [ 276.171035][ T8142] should_failslab+0xc2/0x120 [ 276.171071][ T8142] __kmalloc_cache_noprof+0x7a/0x6f0 [ 276.171116][ T8142] ? vkms_plane_duplicate_state+0x87/0x130 [ 276.171178][ T8142] vkms_plane_duplicate_state+0x87/0x130 [ 276.171234][ T8142] drm_atomic_get_plane_state+0x279/0x760 [ 276.171279][ T8142] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 276.171312][ T8142] ? trace_contention_end+0x140/0x180 [ 276.171350][ T8142] ? __mutex_lock+0x26a/0x1b90 [ 276.171380][ T8142] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 276.171412][ T8142] ? drm_master_internal_acquire+0x21/0x80 [ 276.171467][ T8142] drm_client_modeset_commit_locked+0x14d/0x580 [ 276.171502][ T8142] drm_client_modeset_commit+0x4f/0x80 [ 276.171533][ T8142] __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160 [ 276.171567][ T8142] drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0 [ 276.171600][ T8142] drm_fbdev_client_restore+0x1b/0x30 [ 276.171639][ T8142] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 276.171678][ T8142] drm_client_dev_restore+0x205/0x2a0 [ 276.171715][ T8142] drm_release+0x2c6/0x360 [ 276.171741][ T8142] ? __pfx_drm_release+0x10/0x10 [ 276.171767][ T8142] __fput+0x3ff/0xb40 [ 276.171802][ T8142] task_work_run+0x150/0x240 [ 276.171838][ T8142] ? __pfx_task_work_run+0x10/0x10 [ 276.171882][ T8142] exit_to_user_mode_loop+0x100/0x4a0 [ 276.171917][ T8142] do_syscall_64+0x668/0xf80 [ 276.171946][ T8142] ? clear_bhb_loop+0x40/0x90 [ 276.171976][ T8142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.172000][ T8142] RIP: 0033:0x7fea7b39c799 [ 276.172020][ T8142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.172043][ T8142] RSP: 002b:00007fea7c2c5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 276.172066][ T8142] RAX: 0000000000000000 RBX: 00007fea7b615fa0 RCX: 00007fea7b39c799 [ 276.172080][ T8142] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 276.172094][ T8142] RBP: 00007fea7b432c99 R08: 0000000000000000 R09: 0000000000000000 [ 276.172108][ T8142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.172122][ T8142] R13: 00007fea7b616038 R14: 00007fea7b615fa0 R15: 00007fffbd4caa08 [ 276.172153][ T8142] [ 277.690462][ T8149] FAULT_INJECTION: forcing a failure. [ 277.690462][ T8149] name fail_futex, interval 1, probability 0, space 0, times 0 [ 277.806797][ T8149] CPU: 1 UID: 0 PID: 8149 Comm: syz.2.367 Tainted: G L syzkaller #0 PREEMPT(full) [ 277.806852][ T8149] Tainted: [L]=SOFTLOCKUP [ 277.806864][ T8149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 277.806884][ T8149] Call Trace: [ 277.806896][ T8149] [ 277.806908][ T8149] dump_stack_lvl+0x100/0x190 [ 277.806964][ T8149] should_fail_ex.cold+0x5/0xa [ 277.807004][ T8149] get_futex_key+0x1d2/0x1620 [ 277.807051][ T8149] ? __pfx_get_futex_key+0x10/0x10 [ 277.807096][ T8149] ? trace_pid_list_is_set+0x22c/0x390 [ 277.807157][ T8149] futex_wait_setup+0x83/0x510 [ 277.807231][ T8149] __futex_wait+0x19f/0x300 [ 277.807288][ T8149] ? __pfx___futex_wait+0x10/0x10 [ 277.807339][ T8149] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 277.807375][ T8149] ? lockdep_hardirqs_on+0x78/0x100 [ 277.807420][ T8149] ? __pfx_futex_wake_mark+0x10/0x10 [ 277.807480][ T8149] ? find_held_lock+0x2b/0x80 [ 277.807510][ T8149] ? futex_wake+0x456/0x530 [ 277.807570][ T8149] futex_wait+0xed/0x380 [ 277.807622][ T8149] ? __pfx_futex_wait+0x10/0x10 [ 277.807687][ T8149] ? io_uring_setup+0xd7/0x160 [ 277.807727][ T8149] ? ksys_write+0x190/0x250 [ 277.807766][ T8149] do_futex+0x1ef/0x350 [ 277.807811][ T8149] ? __pfx_do_futex+0x10/0x10 [ 277.807866][ T8149] __x64_sys_futex+0x34f/0x4d0 [ 277.807916][ T8149] ? __pfx___x64_sys_futex+0x10/0x10 [ 277.807978][ T8149] do_syscall_64+0x106/0xf80 [ 277.808019][ T8149] ? clear_bhb_loop+0x40/0x90 [ 277.808060][ T8149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.808095][ T8149] RIP: 0033:0x7f9f2759c799 [ 277.808123][ T8149] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 277.808155][ T8149] RSP: 002b:00007f9f284b60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 277.808195][ T8149] RAX: ffffffffffffffda RBX: 00007f9f27815fa8 RCX: 00007f9f2759c799 [ 277.808217][ T8149] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9f27815fa8 [ 277.808237][ T8149] RBP: 00007f9f27815fa0 R08: 0000000000000000 R09: 0000000000000000 [ 277.808258][ T8149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.808277][ T8149] R13: 00007f9f27816038 R14: 00007ffdf86c8350 R15: 00007ffdf86c8438 [ 277.808320][ T8149] [ 280.592296][ T8203] netlink: 342 bytes leftover after parsing attributes in process `syz.2.373'. [ 285.195684][ T8248] tipc: Started in network mode [ 285.227462][ T8248] tipc: Node identity ee00, cluster identity 4711 [ 285.268600][ T8248] tipc: Node number set to 60928 [ 289.923860][ T8324] net_ratelimit: 10 callbacks suppressed [ 289.923880][ T8324] netlink: zone id is out of range [ 294.409164][ T8363] FAULT_INJECTION: forcing a failure. [ 294.409164][ T8363] name failslab, interval 1, probability 0, space 0, times 0 [ 294.547032][ T8363] CPU: 1 UID: 0 PID: 8363 Comm: syz.3.402 Tainted: G L syzkaller #0 PREEMPT(full) [ 294.547084][ T8363] Tainted: [L]=SOFTLOCKUP [ 294.547097][ T8363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 294.547115][ T8363] Call Trace: [ 294.547126][ T8363] [ 294.547137][ T8363] dump_stack_lvl+0x100/0x190 [ 294.547195][ T8363] should_fail_ex.cold+0x5/0xa [ 294.547224][ T8363] should_failslab+0xc2/0x120 [ 294.547250][ T8363] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 294.547286][ T8363] ? security_inode_alloc+0x3b/0x2c0 [ 294.547323][ T8363] ? lockdep_init_map_type+0x5c/0x250 [ 294.547361][ T8363] security_inode_alloc+0x3b/0x2c0 [ 294.547399][ T8363] inode_init_always_gfp+0xced/0x1040 [ 294.547428][ T8363] alloc_inode+0x8e/0x250 [ 294.547460][ T8363] new_inode+0x22/0x1c0 [ 294.547493][ T8363] hugetlbfs_get_inode+0x313/0x750 [ 294.547523][ T8363] hugetlb_file_setup+0x3cc/0x5b0 [ 294.547553][ T8363] newseg+0xabb/0xed0 [ 294.547583][ T8363] ? __pfx_newseg+0x10/0x10 [ 294.547608][ T8363] ? down_write+0x146/0x1f0 [ 294.547648][ T8363] ? ksys_write+0x190/0x250 [ 294.547670][ T8363] ? ksys_write+0x190/0x250 [ 294.547695][ T8363] ipcget+0xee/0xf50 [ 294.547720][ T8363] ? do_futex+0x192/0x350 [ 294.547752][ T8363] ? __pfx_do_futex+0x10/0x10 [ 294.547788][ T8363] ? __pfx_ipcget+0x10/0x10 [ 294.547815][ T8363] ? __x64_sys_futex+0x34f/0x4d0 [ 294.547844][ T8363] ? __x64_sys_futex+0x358/0x4d0 [ 294.547880][ T8363] __x64_sys_shmget+0x13b/0x1b0 [ 294.547907][ T8363] ? __pfx___x64_sys_shmget+0x10/0x10 [ 294.547943][ T8363] do_syscall_64+0x106/0xf80 [ 294.547971][ T8363] ? clear_bhb_loop+0x40/0x90 [ 294.548000][ T8363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.548025][ T8363] RIP: 0033:0x7f84e899c799 [ 294.548044][ T8363] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 294.548066][ T8363] RSP: 002b:00007f84e97da028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 294.548089][ T8363] RAX: ffffffffffffffda RBX: 00007f84e8c16180 RCX: 00007f84e899c799 [ 294.548104][ T8363] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 294.548118][ T8363] RBP: 00007f84e8a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 294.548132][ T8363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.548148][ T8363] R13: 00007f84e8c16218 R14: 00007f84e8c16180 R15: 00007ffea61eeff8 [ 294.548179][ T8363] [ 296.307660][ T8400] zswap: compressor not available [ 299.728595][ T8449] FAULT_INJECTION: forcing a failure. [ 299.728595][ T8449] name failslab, interval 1, probability 0, space 0, times 0 [ 299.769141][ T8449] CPU: 1 UID: 0 PID: 8449 Comm: syz.2.418 Tainted: G L syzkaller #0 PREEMPT(full) [ 299.769192][ T8449] Tainted: [L]=SOFTLOCKUP [ 299.769204][ T8449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 299.769223][ T8449] Call Trace: [ 299.769242][ T8449] [ 299.769256][ T8449] dump_stack_lvl+0x100/0x190 [ 299.769312][ T8449] should_fail_ex.cold+0x5/0xa [ 299.769352][ T8449] should_failslab+0xc2/0x120 [ 299.769388][ T8449] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 299.769441][ T8449] ? __d_alloc+0x34/0xa80 [ 299.769476][ T8449] ? lockdep_init_map_type+0x5c/0x250 [ 299.769525][ T8449] __d_alloc+0x34/0xa80 [ 299.769566][ T8449] d_alloc_pseudo+0x1c/0xc0 [ 299.769613][ T8449] alloc_file_pseudo+0xcf/0x230 [ 299.769658][ T8449] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 299.769702][ T8449] ? alloc_fd+0x476/0x790 [ 299.769742][ T8449] sock_alloc_file+0x50/0x210 [ 299.769788][ T8449] __sys_socket+0x1c0/0x260 [ 299.769820][ T8449] ? __pfx___sys_socket+0x10/0x10 [ 299.769862][ T8449] __x64_sys_socket+0x72/0xb0 [ 299.769892][ T8449] ? lockdep_hardirqs_on+0x78/0x100 [ 299.769933][ T8449] do_syscall_64+0x106/0xf80 [ 299.769971][ T8449] ? clear_bhb_loop+0x40/0x90 [ 299.770014][ T8449] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.770048][ T8449] RIP: 0033:0x7f9f2759c799 [ 299.770074][ T8449] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 299.770104][ T8449] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 299.770137][ T8449] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 299.770159][ T8449] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 299.770179][ T8449] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 299.770200][ T8449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.770219][ T8449] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 299.770271][ T8449] [ 304.309081][ T8507] FAULT_INJECTION: forcing a failure. [ 304.309081][ T8507] name failslab, interval 1, probability 0, space 0, times 0 [ 304.403301][ T8507] CPU: 1 UID: 0 PID: 8507 Comm: syz.2.429 Tainted: G L syzkaller #0 PREEMPT(full) [ 304.403354][ T8507] Tainted: [L]=SOFTLOCKUP [ 304.403365][ T8507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 304.403397][ T8507] Call Trace: [ 304.403407][ T8507] [ 304.403419][ T8507] dump_stack_lvl+0x100/0x190 [ 304.403476][ T8507] should_fail_ex.cold+0x5/0xa [ 304.403516][ T8507] should_failslab+0xc2/0x120 [ 304.403552][ T8507] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 304.403606][ T8507] ? security_inode_alloc+0x3b/0x2c0 [ 304.403659][ T8507] ? lockdep_init_map_type+0x5c/0x250 [ 304.403711][ T8507] security_inode_alloc+0x3b/0x2c0 [ 304.403766][ T8507] inode_init_always_gfp+0xced/0x1040 [ 304.403808][ T8507] alloc_inode+0x8e/0x250 [ 304.403854][ T8507] new_inode+0x22/0x1c0 [ 304.403902][ T8507] hugetlbfs_get_inode+0x313/0x750 [ 304.403945][ T8507] hugetlb_file_setup+0x3cc/0x5b0 [ 304.403988][ T8507] newseg+0xabb/0xed0 [ 304.404033][ T8507] ? __pfx_newseg+0x10/0x10 [ 304.404069][ T8507] ? down_write+0x146/0x1f0 [ 304.404120][ T8507] ? ksys_write+0x190/0x250 [ 304.404162][ T8507] ipcget+0xee/0xf50 [ 304.404198][ T8507] ? lockdep_hardirqs_on+0x78/0x100 [ 304.404240][ T8507] ? irqentry_exit+0x180/0x670 [ 304.404292][ T8507] ? __pfx_ipcget+0x10/0x10 [ 304.404334][ T8507] ? __x64_sys_shmget+0x64/0x1b0 [ 304.404377][ T8507] __x64_sys_shmget+0x13b/0x1b0 [ 304.404425][ T8507] ? __pfx___x64_sys_shmget+0x10/0x10 [ 304.404477][ T8507] do_syscall_64+0x106/0xf80 [ 304.404517][ T8507] ? clear_bhb_loop+0x40/0x90 [ 304.404559][ T8507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.404595][ T8507] RIP: 0033:0x7f9f2759c799 [ 304.404625][ T8507] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 304.404658][ T8507] RSP: 002b:00007f9f284b6028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 304.404700][ T8507] RAX: ffffffffffffffda RBX: 00007f9f27815fa0 RCX: 00007f9f2759c799 [ 304.404723][ T8507] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 304.404745][ T8507] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 304.404765][ T8507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.404785][ T8507] R13: 00007f9f27816038 R14: 00007f9f27815fa0 R15: 00007ffdf86c8438 [ 304.404831][ T8507] [ 312.465068][ T8646] netlink: zone id is out of range [ 316.787921][ T8698] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 700000007 [ 317.287544][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.293881][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 320.226356][ T8752] FAULT_INJECTION: forcing a failure. [ 320.226356][ T8752] name failslab, interval 1, probability 0, space 0, times 0 [ 320.341566][ T8752] CPU: 1 UID: 0 PID: 8752 Comm: syz.2.472 Tainted: G L syzkaller #0 PREEMPT(full) [ 320.341621][ T8752] Tainted: [L]=SOFTLOCKUP [ 320.341633][ T8752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 320.341653][ T8752] Call Trace: [ 320.341664][ T8752] [ 320.341678][ T8752] dump_stack_lvl+0x100/0x190 [ 320.341738][ T8752] should_fail_ex.cold+0x5/0xa [ 320.341779][ T8752] should_failslab+0xc2/0x120 [ 320.341816][ T8752] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 320.341867][ T8752] ? security_inode_alloc+0x3b/0x2c0 [ 320.341919][ T8752] ? lockdep_init_map_type+0x5c/0x250 [ 320.341969][ T8752] security_inode_alloc+0x3b/0x2c0 [ 320.342024][ T8752] inode_init_always_gfp+0xced/0x1040 [ 320.342066][ T8752] alloc_inode+0x8e/0x250 [ 320.342111][ T8752] new_inode+0x22/0x1c0 [ 320.342159][ T8752] hugetlbfs_get_inode+0x313/0x750 [ 320.342202][ T8752] hugetlb_file_setup+0x3cc/0x5b0 [ 320.342246][ T8752] newseg+0xabb/0xed0 [ 320.342290][ T8752] ? __pfx_newseg+0x10/0x10 [ 320.342326][ T8752] ? down_write+0x146/0x1f0 [ 320.342381][ T8752] ? ksys_write+0x190/0x250 [ 320.342412][ T8752] ? ksys_write+0x190/0x250 [ 320.342459][ T8752] ipcget+0xee/0xf50 [ 320.342497][ T8752] ? do_futex+0x192/0x350 [ 320.342542][ T8752] ? __pfx_do_futex+0x10/0x10 [ 320.342594][ T8752] ? __pfx_ipcget+0x10/0x10 [ 320.342633][ T8752] ? __x64_sys_futex+0x34f/0x4d0 [ 320.342676][ T8752] ? __x64_sys_futex+0x358/0x4d0 [ 320.342725][ T8752] __x64_sys_shmget+0x13b/0x1b0 [ 320.342766][ T8752] ? __pfx___x64_sys_shmget+0x10/0x10 [ 320.342817][ T8752] do_syscall_64+0x106/0xf80 [ 320.342857][ T8752] ? clear_bhb_loop+0x40/0x90 [ 320.342899][ T8752] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.342935][ T8752] RIP: 0033:0x7f9f2759c799 [ 320.342964][ T8752] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 320.343000][ T8752] RSP: 002b:00007f9f28453028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 320.343033][ T8752] RAX: ffffffffffffffda RBX: 00007f9f27816270 RCX: 00007f9f2759c799 [ 320.343056][ T8752] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 320.343077][ T8752] RBP: 00007f9f27632c99 R08: 0000000000000000 R09: 0000000000000000 [ 320.343097][ T8752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.343118][ T8752] R13: 00007f9f27816308 R14: 00007f9f27816270 R15: 00007ffdf86c8438 [ 320.343163][ T8752] [ 323.414449][ T8799] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 323.414449][ T8799] The task syz.0.482 (8799) triggered the difference, watch for misbehavior. [ 325.857273][ T8815] FAULT_INJECTION: forcing a failure. [ 325.857273][ T8815] name failslab, interval 1, probability 0, space 0, times 0 [ 326.001991][ T8815] CPU: 0 UID: 0 PID: 8815 Comm: syz.2.485 Tainted: G L syzkaller #0 PREEMPT(full) [ 326.002044][ T8815] Tainted: [L]=SOFTLOCKUP [ 326.002056][ T8815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 326.002075][ T8815] Call Trace: [ 326.002085][ T8815] [ 326.002097][ T8815] dump_stack_lvl+0x100/0x190 [ 326.002152][ T8815] should_fail_ex.cold+0x5/0xa [ 326.002193][ T8815] should_failslab+0xc2/0x120 [ 326.002227][ T8815] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 326.002278][ T8815] ? security_file_alloc+0x34/0x2c0 [ 326.002314][ T8815] ? trace_kmem_cache_alloc+0xf3/0x120 [ 326.002358][ T8815] security_file_alloc+0x34/0x2c0 [ 326.002401][ T8815] init_file+0x95/0x480 [ 326.002441][ T8815] alloc_empty_file+0x73/0x1c0 [ 326.002485][ T8815] alloc_file_pseudo+0x13a/0x230 [ 326.002546][ T8815] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 326.002592][ T8815] ? hugetlbfs_get_inode+0x36e/0x750 [ 326.002635][ T8815] hugetlb_file_setup+0x2a8/0x5b0 [ 326.002677][ T8815] ksys_mmap_pgoff+0x232/0x650 [ 326.002718][ T8815] ? __x64_sys_futex+0x358/0x4d0 [ 326.002765][ T8815] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 326.002801][ T8815] ? xfd_validate_state+0x129/0x190 [ 326.002900][ T8815] __x64_sys_mmap+0x125/0x190 [ 326.002953][ T8815] do_syscall_64+0x106/0xf80 [ 326.002993][ T8815] ? clear_bhb_loop+0x40/0x90 [ 326.003035][ T8815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.003069][ T8815] RIP: 0033:0x7f9f2759c799 [ 326.003097][ T8815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 326.003128][ T8815] RSP: 002b:00007f9f28453028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 326.003159][ T8815] RAX: ffffffffffffffda RBX: 00007f9f27816270 RCX: 00007f9f2759c799 [ 326.003186][ T8815] RDX: 0000000000000002 RSI: 0000000000200006 RDI: 0000000000000000 [ 326.003205][ T8815] RBP: 00007f9f27632c99 R08: 0000000000000602 R09: 0000300000000000 [ 326.003226][ T8815] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 326.003244][ T8815] R13: 00007f9f27816308 R14: 00007f9f27816270 R15: 00007ffdf86c8438 [ 326.003288][ T8815] [ 334.254156][ T5144] Bluetooth: hci1: unexpected event 0x34 length: 11 > 6 [ 336.982338][ T8941] netlink: zone id is out of range [ 339.217160][ T8959] netlink: 12 bytes leftover after parsing attributes in process `syz.3.512'. [ 340.179597][ T8999] netlink: zone id is out of range [ 341.492587][ T9035] netlink: zone id is out of range [ 345.157443][ T9090] netlink: zone id is out of range [ 345.372781][ T9079] netlink: 'syz.3.539': attribute type 10 has an invalid length. [ 345.380747][ T9079] netlink: 330 bytes leftover after parsing attributes in process `syz.3.539'. [ 346.836773][ T9115] Invalid ELF header magic: != ELF [ 348.850569][ T9143] can: request_module (can-proto-0) failed. [ 349.886581][ T9159] Invalid ELF header magic: != ELF [ 359.807204][ T9276] netlink: 4 bytes leftover after parsing attributes in process `syz.2.582'. [ 359.848984][ T9276] netlink: 354 bytes leftover after parsing attributes in process `syz.2.582'. [ 361.502688][ T9300] netlink: 12 bytes leftover after parsing attributes in process `syz.1.586'. [ 364.305133][ T9345] netlink: 28 bytes leftover after parsing attributes in process `syz.2.595'. [ 365.496929][ T9353] netlink: 980 bytes leftover after parsing attributes in process `syz.2.598'. [ 368.701649][ T9394] netlink: 342 bytes leftover after parsing attributes in process `syz.2.606'. [ 371.157676][ T9410] netlink: zone id is out of range [ 378.754220][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.760622][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.772076][ T9505] netlink: 'syz.0.631': attribute type 10 has an invalid length. [ 378.783025][ T9505] netlink: 330 bytes leftover after parsing attributes in process `syz.0.631'. [ 379.545154][ T9521] bridge0: port 3(gretap0) entered blocking state [ 379.552314][ T9521] bridge0: port 3(gretap0) entered disabled state [ 379.567151][ T9521] gretap0: entered allmulticast mode [ 379.651757][ T9521] gretap0: entered promiscuous mode [ 379.658156][ T9521] bridge0: port 3(gretap0) entered blocking state [ 379.665031][ T9521] bridge0: port 3(gretap0) entered forwarding state [ 380.758860][ T9548] netlink: zone id is out of range [ 381.966680][ T9557] netlink: 'syz.2.643': attribute type 10 has an invalid length. [ 381.974636][ T9557] netlink: 330 bytes leftover after parsing attributes in process `syz.2.643'. [ 388.609332][ T9665] can: request_module (can-proto-0) failed. [ 389.501626][ T9679] netlink: zone id is out of range [ 395.363348][ T9774] netlink: zone id is out of range [ 396.676478][ T9793] netlink: 12 bytes leftover after parsing attributes in process `syz.0.686'. [ 398.825532][ T9811] netlink: zone id is out of range [ 399.130958][ T9821] netlink: zone id is out of range [ 399.674356][ T9834] netlink: 342 bytes leftover after parsing attributes in process `syz.0.695'. [ 406.835826][ T9936] netlink: zone id is out of range [ 411.503780][ T9957] futex_wake_op: syz.1.720 tries to shift op by -2048; fix this program [ 411.526989][ T9957] futex_wake_op: syz.1.720 tries to shift op by -2048; fix this program [ 417.280029][T10058] bridge0: port 3(gretap0) entered blocking state [ 417.293874][T10058] bridge0: port 3(gretap0) entered disabled state [ 417.323028][T10058] gretap0: entered allmulticast mode [ 417.373768][T10058] gretap0: entered promiscuous mode [ 417.642053][T10058] bridge0: port 3(gretap0) entered blocking state [ 417.648679][T10058] bridge0: port 3(gretap0) entered forwarding state [ 418.319643][T10068] netlink: 12 bytes leftover after parsing attributes in process `syz.2.741'. [ 431.635440][T10241] netlink: zone id is out of range [ 439.286600][T10355] netlink: zone id is out of range [ 440.197942][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.207890][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.178393][T10428] netlink: 28 bytes leftover after parsing attributes in process `syz.0.818'. [ 445.204920][T10428] ipvlan0: entered promiscuous mode [ 445.240802][T10428] ipvlan0: entered allmulticast mode [ 445.275065][T10428] veth0_vlan: entered allmulticast mode [ 448.931662][T10494] netlink: 12 bytes leftover after parsing attributes in process `syz.0.830'. [ 456.782123][T10590] netlink: 4 bytes leftover after parsing attributes in process `syz.0.848'. [ 459.159921][T10617] netlink: 28 bytes leftover after parsing attributes in process `syz.2.852'. [ 463.291846][T10672] futex_wake_op: syz.1.863 tries to shift op by -2048; fix this program [ 463.301129][T10672] futex_wake_op: syz.1.863 tries to shift op by -2048; fix this program [ 465.777717][T10709] netlink: 28 bytes leftover after parsing attributes in process `syz.1.869'. [ 465.836690][T10709] ipvlan0: entered promiscuous mode [ 465.852704][T10709] ipvlan0: entered allmulticast mode [ 465.929320][T10709] veth0_vlan: entered allmulticast mode [ 470.660274][T10773] netlink: 338 bytes leftover after parsing attributes in process `syz.0.879'. [ 470.900025][T10776] netlink: 338 bytes leftover after parsing attributes in process `syz.0.879'. [ 471.022581][T10770] netlink: 4 bytes leftover after parsing attributes in process `syz.0.879'. [ 473.083679][T10808] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 473.364679][T10813] netlink: 146 bytes leftover after parsing attributes in process `syz.1.887'. [ 480.268300][T10901] netlink: 346 bytes leftover after parsing attributes in process `syz.0.905'. [ 485.383810][T10973] netlink: zone id is out of range [ 486.014800][ T30] audit: type=1326 audit(4294967383.800:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10986 comm="syz.2.925" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f2759c799 code=0x0 [ 489.085553][T11027] netlink: zone id is out of range [ 491.401111][T11057] netlink: zone id is out of range [ 498.981453][T11152] netlink: 28 bytes leftover after parsing attributes in process `syz.1.958'. [ 501.655336][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.661752][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.611400][T11332] netlink: ct family unspecified [ 518.451182][T11394] netlink: zone id is out of range [ 521.668118][T11466] netlink: zone id is out of range [ 526.027550][T11576] mmap: syz.3.1084 (11576): VmData 45879296 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 529.896609][T11661] block nbd2: not configured, cannot reconfigure [ 533.364880][T11740] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 538.389010][T11848] netlink: zone id is out of range [ 545.623371][T11977] netlink: zone id is out of range [ 547.599521][T12016] netlink: zone id is out of range [ 552.746121][T12102] futex_wake_op: syz.3.1266 tries to shift op by -2048; fix this program [ 552.801876][T12102] futex_wake_op: syz.3.1266 tries to shift op by -2048; fix this program [ 559.625133][T12217] netlink: zone id is out of range [ 560.040552][T12221] capability: warning: `syz.1.1304' uses 32-bit capabilities (legacy support in use) [ 563.079362][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.086065][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 576.875500][T12534] futex_wake_op: syz.1.1415 tries to shift op by -2048; fix this program [ 579.419952][T12571] netlink: zone id is out of range [ 581.639338][T12621] netlink: zone id is out of range [ 587.673551][T12705] overlayfs: missing 'lowerdir' [ 589.799289][T12741] netlink: zone id is out of range [ 598.871290][T12966] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1552'. [ 605.272592][T13092] netlink: 294 bytes leftover after parsing attributes in process `syz.1.1598'. [ 613.314931][T13210] netlink: 222 bytes leftover after parsing attributes in process `syz.1.1633'. [ 614.587160][T13229] batman_adv: batadv0: adding TT local entry 00:00:03:00:00:00 to non-existent VLAN 16 [ 620.209291][ T5144] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 620.209340][ T5144] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 620.225920][ T5144] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 620.226007][ T5144] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 620.233339][ T5144] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 620.241908][ T5144] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 620.249777][ T5144] Bluetooth: hci0: Unknown advertising packet type: 0x72 [ 620.256949][ T5144] Bluetooth: hci0: Unknown advertising packet type: 0x14 [ 620.286479][ T5144] Bluetooth: hci0: Malformed LE Event: 0x0d [ 624.521437][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.527886][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 628.508769][T13485] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1722'. [ 628.610727][T13485] macsec0: entered promiscuous mode [ 628.619998][T13485] macsec0: entered allmulticast mode [ 628.632406][T13485] veth1_macvtap: entered allmulticast mode [ 648.373329][T13856] nfs: Unknown parameter '£m?¥ŒÁLH>®ï½¢^Ñe„°àko}* ' [ 672.780426][T14295] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1996'. [ 677.334851][T14409] netlink: 'syz.2.2037': attribute type 1 has an invalid length. [ 677.374098][T14409] netlink: 'syz.2.2037': attribute type 6 has an invalid length. [ 681.848464][ T5144] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 683.175911][T14536] netlink: 354 bytes leftover after parsing attributes in process `syz.2.2078'. [ 685.961180][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.967741][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 695.396094][T14739] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2137'. [ 695.720277][T14746] netlink: 318 bytes leftover after parsing attributes in process `syz.3.2138'. [ 698.894049][ T5144] Bluetooth: hci0: Malformed LE Event: 0x1b [ 702.048353][T14869] [ 702.050745][T14869] ====================================================== [ 702.057843][T14869] WARNING: possible circular locking dependency detected [ 702.064874][T14869] syzkaller #0 Tainted: G L [ 702.070860][T14869] ------------------------------------------------------ [ 702.077955][T14869] syz.2.2182/14869 is trying to acquire lock: [ 702.084043][T14869] ffff88805960d568 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0x4ca/0xcb0 [ 702.095654][T14869] [ 702.095654][T14869] but task is already holding lock: [ 702.103025][T14869] ffff888059609b60 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 702.112131][T14869] [ 702.112131][T14869] which lock already depends on the new lock. [ 702.112131][T14869] [ 702.122540][T14869] [ 702.122540][T14869] the existing dependency chain (in reverse order) is: [ 702.131561][T14869] [ 702.131561][T14869] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 702.139407][T14869] lock_sock_nested+0x41/0xf0 [ 702.144696][T14869] smc_listen_out+0x1f5/0x4b0 [ 702.149908][T14869] smc_listen_work+0x4c2/0x50e0 [ 702.155353][T14869] process_one_work+0x9d7/0x1920 [ 702.160847][T14869] worker_thread+0x5da/0xe40 [ 702.166000][T14869] kthread+0x370/0x450 [ 702.170624][T14869] ret_from_fork+0x754/0xd80 [ 702.175808][T14869] ret_from_fork_asm+0x1a/0x30 [ 702.181135][T14869] [ 702.181135][T14869] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 702.191320][T14869] __lock_acquire+0x14b8/0x2630 [ 702.196753][T14869] lock_acquire+0x1cf/0x380 [ 702.201796][T14869] __flush_work+0x4de/0xcb0 [ 702.206855][T14869] cancel_work_sync+0xd1/0xf0 [ 702.212093][T14869] smc_clcsock_release+0x5f/0xe0 [ 702.217643][T14869] __smc_release+0x5c2/0x880 [ 702.222766][T14869] smc_close_non_accepted+0xda/0x200 [ 702.228584][T14869] smc_close_active+0x4ff/0x1070 [ 702.234090][T14869] __smc_release+0x634/0x880 [ 702.239235][T14869] smc_release+0x1fc/0x620 [ 702.244181][T14869] __sock_release+0xb3/0x260 [ 702.249383][T14869] sock_close+0x1c/0x30 [ 702.254090][T14869] __fput+0x3ff/0xb40 [ 702.258642][T14869] task_work_run+0x150/0x240 [ 702.263788][T14869] exit_to_user_mode_loop+0x100/0x4a0 [ 702.269724][T14869] do_syscall_64+0x668/0xf80 [ 702.275029][T14869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 702.281494][T14869] [ 702.281494][T14869] other info that might help us debug this: [ 702.281494][T14869] [ 702.291752][T14869] Possible unsafe locking scenario: [ 702.291752][T14869] [ 702.299226][T14869] CPU0 CPU1 [ 702.304595][T14869] ---- ---- [ 702.309963][T14869] lock(sk_lock-AF_SMC/1); [ 702.314503][T14869] lock((work_completion)(&new_smc->smc_listen_work)); [ 702.323980][T14869] lock(sk_lock-AF_SMC/1); [ 702.331054][T14869] lock((work_completion)(&new_smc->smc_listen_work)); [ 702.338017][T14869] [ 702.338017][T14869] *** DEADLOCK *** [ 702.338017][T14869] [ 702.346191][T14869] 3 locks held by syz.2.2182/14869: [ 702.351417][T14869] #0: ffff888054a52488 (&sb->s_type->i_mutex_key#14){+.+.}-{4:4}, at: __sock_release+0x86/0x260 [ 702.362014][T14869] #1: ffff888059609b60 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 702.371483][T14869] #2: ffffffff8e7e7460 (rcu_read_lock){....}-{1:3}, at: __flush_work+0xfd/0xcb0 [ 702.380668][T14869] [ 702.380668][T14869] stack backtrace: [ 702.386582][T14869] CPU: 0 UID: 0 PID: 14869 Comm: syz.2.2182 Tainted: G L syzkaller #0 PREEMPT(full) [ 702.386615][T14869] Tainted: [L]=SOFTLOCKUP [ 702.386623][T14869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 702.386655][T14869] Call Trace: [ 702.386709][T14869] [ 702.386718][T14869] dump_stack_lvl+0x100/0x190 [ 702.386756][T14869] print_circular_bug.cold+0x178/0x1c7 [ 702.386793][T14869] check_noncircular+0x146/0x160 [ 702.386823][T14869] __lock_acquire+0x14b8/0x2630 [ 702.386857][T14869] lock_acquire+0x1cf/0x380 [ 702.386884][T14869] ? __flush_work+0x4ca/0xcb0 [ 702.386918][T14869] ? mark_held_locks+0x40/0x70 [ 702.386946][T14869] ? __flush_work+0x4ca/0xcb0 [ 702.386978][T14869] __flush_work+0x4de/0xcb0 [ 702.387010][T14869] ? __flush_work+0x4ca/0xcb0 [ 702.387051][T14869] ? __pfx___flush_work+0x10/0x10 [ 702.387085][T14869] ? __pfx_wq_barrier_func+0x10/0x10 [ 702.387115][T14869] ? __pfx___might_resched+0x10/0x10 [ 702.387150][T14869] cancel_work_sync+0xd1/0xf0 [ 702.387172][T14869] smc_clcsock_release+0x5f/0xe0 [ 702.387196][T14869] __smc_release+0x5c2/0x880 [ 702.387218][T14869] ? __pfx_sock_def_readable+0x10/0x10 [ 702.387243][T14869] smc_close_non_accepted+0xda/0x200 [ 702.387268][T14869] smc_close_active+0x4ff/0x1070 [ 702.387293][T14869] __smc_release+0x634/0x880 [ 702.387314][T14869] smc_release+0x1fc/0x620 [ 702.387335][T14869] __sock_release+0xb3/0x260 [ 702.387363][T14869] ? __pfx_sock_close+0x10/0x10 [ 702.387391][T14869] sock_close+0x1c/0x30 [ 702.387418][T14869] __fput+0x3ff/0xb40 [ 702.387445][T14869] ? _raw_spin_unlock_irq+0x23/0x50 [ 702.387496][T14869] task_work_run+0x150/0x240 [ 702.387528][T14869] ? __pfx_task_work_run+0x10/0x10 [ 702.387563][T14869] exit_to_user_mode_loop+0x100/0x4a0 [ 702.387595][T14869] do_syscall_64+0x668/0xf80 [ 702.387621][T14869] ? clear_bhb_loop+0x40/0x90 [ 702.387647][T14869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 702.387671][T14869] RIP: 0033:0x7f9f2759c799 [ 702.387690][T14869] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 702.387713][T14869] RSP: 002b:00007ffdf86c8598 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 702.387761][T14869] RAX: 0000000000000000 RBX: 00007f9f27817da0 RCX: 00007f9f2759c799 [ 702.387777][T14869] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 702.387790][T14869] RBP: 00007f9f27817da0 R08: 00007f9f27816038 R09: 0000000000000000 [ 702.387805][T14869] R10: 00000000003ea140 R11: 0000000000000246 R12: 00000000000ab7d1 [ 702.387820][T14869] R13: 00007f9f27815fac R14: 00000000000ab514 R15: 00007ffdf86c86a0 [ 702.387841][T14869]