last executing test programs: 11.671279509s ago: executing program 0 (id=2330): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000001240)='4', 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000d79e04b6571e4dfa08000300", @ANYRES32=r4], 0x24}, 0x1, 0x1400, 0x0, 0x80}, 0x20000084) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) setsockopt$auto_SO_DOMAIN(r0, 0xffffff7f, 0x27, &(0x7f0000000140)='U@\xcc\x9c\xad\x8b![\x19O\xfd\"\t.H\xbb8\x84 \x17\x1f\x1d\xc9\xe3\x86\x00*\xdf\x06\xf3\x11Y\x7f\x81\xebO\x12\xd79\x84\x87\xd9\x89\xae\xad\x84\x05Hx3\x96z?\x9b}\x0eBy2', 0x1ff) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) r7 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r7, 0x40096101, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x5b, 0xf, 0x0, 0x0) 10.311074722s ago: executing program 0 (id=2326): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) socket(0xa, 0x3, 0x3a) epoll_create$auto(0x2) r1 = epoll_create$auto(0x2) epoll_pwait2$auto(r1, 0x0, 0x8, &(0x7f0000002780)={0x6, 0x5}, 0x0, 0x8) sysfs$auto(0x2, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r2, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f0000000100)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r3, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) open(0x0, 0x22240, 0x154) kexec_load$auto(0x200000000007, 0x1, &(0x7f0000000040)={@kbuf=0x0, 0x2aaa, 0x6c0000c000, 0xc000}, 0x4) ioctl$auto_FIONREAD(r0, 0x541b, 0x7) mmap$auto(0xa, 0x400008, 0x0, 0x17, r2, 0x8000) 8.962494489s ago: executing program 0 (id=2327): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000400), 0xffffffffffffffff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0xc0501, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) io_uring_setup$auto(0x5, 0x0) socket(0x10, 0x2, 0x8) socket(0x10, 0x2, 0x9) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) settimeofday$auto(&(0x7f0000000180)={0xfffffffd, 0x100000000001}, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x5}, 0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MM_GET(r0, 0x0, 0x4044001) r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/mem\x00', 0x401, 0x0) socket(0xa, 0x3, 0x1) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) futex$auto(0x0, 0x1, 0x40000006, 0x0, 0x0, 0x80000001) socket(0xa, 0x3, 0xff) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8002) write$auto_proc_mem_operations_base(r1, &(0x7f0000001680)="a7", 0xfffffc96) write$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, r3, 0x1, 0x70bd2c, 0x25dfdbf6, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x4}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040084}, 0x48080) 7.98266729s ago: executing program 0 (id=2329): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, 0x0, 0x20000084) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) pwrite64$auto(r0, 0x0, 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) setsockopt$auto_SO_DOMAIN(r0, 0xffffff7f, 0x27, &(0x7f0000000140)='U@\xcc\x9c\xad\x8b![\x19O\xfd\"\t.H\xbb8\x84 \x17\x1f\x1d\xc9\xe3\x86\x00*\xdf\x06\xf3\x11Y\x7f\x81\xebO\x12\xd79\x84\x87\xd9\x89\xae\xad\x84\x05Hx3\x96z?\x9b}\x0eBy2', 0x1ff) readv$auto(0x3, 0x0, 0x1) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) r4 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, 0x0, 0x20140, 0x0) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r4, 0x40096101, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x2) getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x5b, 0xf, 0x0, 0x0) 7.600065943s ago: executing program 3 (id=2331): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x3c, 0x0) shmctl$auto(0x6, 0x3, &(0x7f00000000c0)={{0xfff, 0xffffffffffffffff, 0x0, 0x81, 0xa, 0x5, 0xd52}, 0x5, 0x7, 0x2, 0x4, @inferred, @raw=0x5, 0x7, 0x0, &(0x7f0000000000)="d717f34b31c4ce1c4a4a59a1244278", &(0x7f0000000680)="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"}) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f00000004c0)={0x4, 0xb5, 0x4, 0x100000000, 0x6, 0x0}) msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000001c0)={{0x6, 0xee01, 0xee01, 0x6, 0x0, 0x1, 0x5}, &(0x7f0000000140)=0x9, &(0x7f0000000480)=0x6, 0x0, 0xfffffffffffffffc, 0x5, 0x6, 0x200, 0x400, 0x1, 0xa, @inferred=r2, @raw=0x9}) r4 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) wait4$auto(r4, 0x0, 0x80000001, 0x0) shmctl$auto_SHM_UNLOCK(0x1fac, 0xc, &(0x7f0000000400)={{0x9, r0, r1, 0x1003, 0x10004, 0x9, 0x200}, 0x400, 0xffffffff7fffffff, 0xffffffffffffffcb, 0x7ff, @inferred=r4, @inferred=r3, 0x9, 0x0, &(0x7f0000000800)="9221de957ba7a7d0b9768ee9b5cda221b149db3a6a58cb2d9ac5d11ed2fb25676521611f2df42a0581037e7a59a56eb50bc22e907b15e38430f097faa600e6248b44d64b62df42091a77820a2bda9ed28e7a635f10b1dbd4291d91353052bd60383b9573ee6a1ba8fd982c36136070949db7789d145c78bb279a7a82", &(0x7f0000000300)="f55e2daefcfb7ed63920176b62f222dd5f5d8598671ca2b7a00164017a338738dae6e40f6de7d1b726883452b1bb20674eec752d790e9056aaa78efbf7bccea5fa4e446ed49c8dc4b3e4b2c47043fdfd081d0b5e13e017b6b5c6efd17640a77a71b11faefa53578eff7415efc345dedef2bd3587fcb7e916546366d12106b0691c101f48ce6b3c1f93d728863cdc4712bfe49f2c908c416d19316b631c037d6fc819f5de9f241bac347796df5a6d58f2317638853c64e0cea7ad6f496750cb24ae4b0372c08895634dd825e7667b23e0b074d9260bb38e5b3809dba5aa150a3c5551172ca706fa8421e890a9b0042733488b0d8b7ba71ec1"}) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0) sendfile$auto(r5, r5, 0x0, 0x3) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r6) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80000, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf25030000000400080008000380090012"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_steam/parameters/lizard_mode\x00', 0xc0481, 0x0) write$auto(r7, &(0x7f0000000000)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e) write$auto(r7, &(0x7f00000001c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!#\xack\xcf\xe9\x9d\xa6\xbc\x17o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf4\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\xa4\xc3\xfe\xa7\x80r\xd9\xe5uE\xcf\x843RG\x84\x9d\x9eE\xd7\xa0\x19\xa3\xc5\xb2o\xe8\xa3K-\x9aO%8\x1e\xba\xca\x85\xd7Q-v\xbf\x1c\xe0\xeeA\xf0ju\xac\xb2\a\x8cU\xae\xed\x1c\xc61\x94\xbb\xe1\x10TY\x06\xe0]j\ac\x87\xf6\xb5\b\x00\x00\x00\x00\x00\x00\x00\xab\xa1\r<=\x1e\x9f\x037\xbd\x16\xdb\x00\x00\x00\x00\x00\x00\x00\xaa\xf9k\xd1\xca2\xf8U\xac\xfctH\b\x03', 0x11) r8 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r8, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100200400f) 7.34469706s ago: executing program 1 (id=2332): socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/sctp/assocs\x00', 0x101080, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) writev$auto(r0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r2 = epoll_create$auto(0x70c) epoll_ctl$auto(r2, 0x1, r1, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x40006) arch_prctl$auto_ARCH_MAP_VDSO_64(0x2003, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2ac842, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xd17d7845b8089d8, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0xffffffffffffffff, 0x4b47, 0x1) msgctl$auto(0x4, 0x10000, &(0x7f00000002c0)={{0x2, 0xffffffffffffffff, 0xffffffffffffffff, 0x7, 0x1, 0x4}, &(0x7f0000000240)=0x9, &(0x7f0000000280), 0x25, 0x553, 0x9, 0xf41, 0x2, 0xffff, 0x6, 0x3, @raw=0xe, @raw=0x59}) 6.827289776s ago: executing program 2 (id=2333): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000400), 0xffffffffffffffff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0xc0501, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) io_uring_setup$auto(0x5, 0x0) socket(0x10, 0x2, 0x8) socket(0x10, 0x2, 0x9) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) settimeofday$auto(&(0x7f0000000180)={0xfffffffd, 0x100000000001}, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x5}, 0x5) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MM_GET(r2, 0x0, 0x4044001) r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/mem\x00', 0x401, 0x0) socket(0xa, 0x3, 0x1) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) futex$auto(0x0, 0x1, 0x40000006, 0x0, 0x0, 0x80000001) socket(0xa, 0x3, 0xff) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8002) write$auto_proc_mem_operations_base(r3, &(0x7f0000001680)="a7", 0xfffffc96) write$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x2c, 0x0, 0x1, 0x70bd2c, 0x25dfdbf6, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x4}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040084}, 0x48080) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000000300)={0x0, 0xa6, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r1, 0x305, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x4040008) 6.410824837s ago: executing program 3 (id=2334): socket(0xa, 0x801, 0x84) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) r0 = fanotify_init$auto(0xc00, 0x2000000000002) fanotify_mark$auto(r0, 0x5, 0x10000008, 0x4, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) bpf$auto(0x0, 0x0, 0x10) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x10, 0x2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyc1\x00', 0x0, 0x0) r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r2, 0x0, 0x9) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv6/conf/gretap0/accept_ra_min_lft\x00', 0x20180, 0x0) read$auto(r3, 0x0, 0x6) write$auto(0x3, 0x0, 0x1) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/admmidi2\x00', 0x1, 0x0) select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0) r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002040)='/dev/binderfs/binder1\x00', 0x80000, 0x0) ioctl$auto_BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) 6.314774261s ago: executing program 2 (id=2335): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000001240)='4', 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000d79e04b6571e4dfa08000300", @ANYRES32=r4], 0x24}, 0x1, 0x1400, 0x0, 0x80}, 0x20000084) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) pwrite64$auto(r0, 0x0, 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) setsockopt$auto_SO_DOMAIN(r0, 0xffffff7f, 0x27, &(0x7f0000000140)='U@\xcc\x9c\xad\x8b![\x19O\xfd\"\t.H\xbb8\x84 \x17\x1f\x1d\xc9\xe3\x86\x00*\xdf\x06\xf3\x11Y\x7f\x81\xebO\x12\xd79\x84\x87\xd9\x89\xae\xad\x84\x05Hx3\x96z?\x9b}\x0eBy2', 0x1ff) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) r7 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r7, 0x40096101, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x5b, 0xf, 0x0, 0x0) 6.264759069s ago: executing program 0 (id=2336): mmap$auto(0x0, 0x400008, 0xdf, 0x20000000009b72, 0x2, 0x240000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f00000014c0)={0x3, 0x3000005, 0x1, 0xffffefff, 0xffffffff}) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r4, 0x4b49, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x47, 0x4a}) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) sysfs$auto(0x2, 0x4c, 0x0) fsopen$auto(0x0, 0x1) write$auto(r3, 0x0, 0x1000082) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6e642, 0x0) prctl$auto(0x36, 0x1, 0x0, 0x1, 0x400100000000) mmap$auto(0x0, 0x2020009, 0x6, 0x800000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r6 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) tee$auto(r0, r6, 0x1, 0x5) init_module$auto(0x0, 0x96b5, 0x0) tee$auto(r5, r5, 0x6, 0x0) 5.314260502s ago: executing program 2 (id=2337): openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040)) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop6/integrity/read_verify\x00', 0x2262, 0x0) write$auto(r2, &(0x7f0000000080)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xfc\xb2\x00\x00\x00\x00y\x113!\x05\xa7\xd6M\xce\xd6\'\xdf@\x9f\xf5 \x8b_hw\x8em\xd0\b\xe7~1\xf5\xf8\x93*jH\x85H\x05\xae\xdf\xf0\x15A\xdb$\'\x87', 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) sendmsg$auto_NFC_CMD_STOP_POLL(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x5c, 0x0, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [@NFC_ATTR_LLC_PARAM_MIUX={0x6}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x3}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x2}, @NFC_ATTR_LLC_SDP={0x10, 0x13, 0x0, 0x1, [@typed={0xc, 0xc8, 0x0, 0x0, @u64=0x78}]}, @NFC_ATTR_DEVICE_NAME={0x8, 0x2, ']()*'}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x7}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0xf}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x9}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8004}, 0x8000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x84, 0x16, 0xfffffffffffffffd, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0) write$auto(r5, &(0x7f0000000100)='d>*\xd2x\xc7\xbf\xff\x9a\xc01(\x00iM\x9c\bAa\x9e\xe98\xee\x15\xd3\xc5v\x99\f|\xe3\xbf\xd9\xf4C\x14A\xe6k\x105\xee\xc5\xaa$\x16\t?g\xb8b\x12\v*\xf9@B\xd0\xd2\x99{\x8b^\xff@\x83\x02Tvt\xc1_\x98\x9f\x16\xd5Is', 0x100000a3da) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0) 5.310603566s ago: executing program 1 (id=2338): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x3c, 0x0) shmctl$auto(0x6, 0x3, &(0x7f00000000c0)={{0xfff, 0xffffffffffffffff, 0x0, 0x81, 0xa, 0x5, 0xd52}, 0x5, 0x7, 0x2, 0x4, @inferred, @raw=0x5, 0x7, 0x0, &(0x7f0000000000)="d717f34b31c4ce1c4a4a59a1244278", &(0x7f0000000680)="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"}) ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f00000004c0)={0x4, 0xb5, 0x4, 0x100000000, 0x6, 0x0}) msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f00000001c0)={{0x6, 0xee01, 0xee01, 0x6, 0x0, 0x1, 0x5}, &(0x7f0000000140)=0x9, &(0x7f0000000480)=0x6, 0x0, 0xfffffffffffffffc, 0x5, 0x6, 0x200, 0x400, 0x1, 0xa, @inferred=r2, @raw=0x9}) r4 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) wait4$auto(r4, 0x0, 0x80000001, 0x0) shmctl$auto_SHM_UNLOCK(0x1fac, 0xc, &(0x7f0000000400)={{0x9, r0, r1, 0x1003, 0x10004, 0x9, 0x200}, 0x400, 0xffffffff7fffffff, 0xffffffffffffffcb, 0x7ff, @inferred=r4, @inferred=r3, 0x9, 0x0, &(0x7f0000000800)="9221de957ba7a7d0b9768ee9b5cda221b149db3a6a58cb2d9ac5d11ed2fb25676521611f2df42a0581037e7a59a56eb50bc22e907b15e38430f097faa600e6248b44d64b62df42091a77820a2bda9ed28e7a635f10b1dbd4291d91353052bd60383b9573ee6a1ba8fd982c36136070949db7789d145c78bb279a7a82ebaa769041d4969365383789a09a8d538542cd85e2d632efc0decfdc424b0a0393015b9c7afb4b34d06deb50c3b937b06e5c2f1f064bedca44fe272f58da98cdc5c361b778572496e292d6af4db6227b7091216cd2eca694653cad30fe0393d8e6e5f5680a758855f0f5929f01", &(0x7f0000000300)="f55e2daefcfb7ed63920176b62f222dd5f5d8598671ca2b7a00164017a338738dae6e40f6de7d1b726883452b1bb20674eec752d790e9056aaa78efbf7bccea5fa4e446ed49c8dc4b3e4b2c47043fdfd081d0b5e13e017b6b5c6efd17640a77a71b11faefa53578eff7415efc345dedef2bd3587fcb7e916546366d12106b0691c101f48ce6b3c1f93d728863cdc4712bfe49f2c908c416d19316b631c037d6fc819f5de9f241bac347796df5a6d58f2317638853c64e0cea7ad6f496750cb24ae4b0372c08895634dd825e7667b23e0b074d9260bb38e5b3809dba5aa150a3c5551172ca706fa8421e890a9b0042733488b0d8b7ba71ec1"}) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0) sendfile$auto(r5, r5, 0x0, 0x3) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r6) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80000, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf25030000000400080008000380090012"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_steam/parameters/lizard_mode\x00', 0xc0481, 0x0) write$auto(r7, &(0x7f0000000000)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e) write$auto(r7, &(0x7f00000001c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!#\xack\xcf\xe9\x9d\xa6\xbc\x17o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf4\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\xa4\xc3\xfe\xa7\x80r\xd9\xe5uE\xcf\x843RG\x84\x9d\x9eE\xd7\xa0\x19\xa3\xc5\xb2o\xe8\xa3K-\x9aO%8\x1e\xba\xca\x85\xd7Q-v\xbf\x1c\xe0\xeeA\xf0ju\xac\xb2\a\x8cU\xae\xed\x1c\xc61\x94\xbb\xe1\x10TY\x06\xe0]j\ac\x87\xf6\xb5\b\x00\x00\x00\x00\x00\x00\x00\xab\xa1\r<=\x1e\x9f\x037\xbd\x16\xdb\x00\x00\x00\x00\x00\x00\x00\xaa\xf9k\xd1\xca2\xf8U\xac\xfctH\b\x03', 0x11) r8 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r8, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100200400f) 4.974973712s ago: executing program 3 (id=2339): mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x7, 0x7352, 0x36, 0x65f, 0x80000001, 0x7, 0x3, 0x2, 0x7, 0x7, 0x4, 0x10000004, 0xb4, 0x3, 0x9, 0x10003, 0x80, 0x8, 0x0, 0x7, 0x2000, 0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x8, [0xc, 0xb6, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4, 0xfffffffffffffffd, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x40000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x1df, 0xeb1, 0x40000000000a5, 0x200000000008000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socketpair$auto(0x1f, 0x4000400, 0x3, 0x0) setreuid$auto(0x80000000, 0x7fffffffffffffff) socket(0x1e, 0x4, 0x0) socket(0x1d, 0x2, 0x7) r0 = socket(0x2, 0x801, 0x106) getsockopt$auto(r0, 0x6, 0x2, 0x0, 0x0) setsockopt$auto(0x3, 0x6b, 0x4, 0x0, 0x4) socket(0x2, 0x801, 0x84) r1 = socket(0x2, 0x3, 0x1) connect$auto(r1, &(0x7f0000000040)=@hci={0x1f, 0x4, 0x4}, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x2, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x64842, 0x0) socket(0x2a, 0x0, 0x0) socket(0x2, 0x1, 0x106) getsockopt$auto(0x4, 0x6, 0x4, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0x5}, 0x2, 0x0, 0x7, 0xa505}, 0x2}, 0x7, 0x4008) 4.29427121s ago: executing program 1 (id=2340): socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/sctp/assocs\x00', 0x101080, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) writev$auto(r0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1e, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r2 = epoll_create$auto(0x70c) epoll_ctl$auto(r2, 0x1, r1, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x40006) arch_prctl$auto_ARCH_MAP_VDSO_64(0x2003, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2ac842, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xd17d7845b8089d8, 0x0) writev$auto(r3, &(0x7f0000000080)={0x0, 0x1000}, 0x3) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(0xffffffffffffffff, 0x0, 0x30004850) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) ioctl$auto(0xffffffffffffffff, 0x4b47, 0x1) msgctl$auto(0x4, 0x10000, &(0x7f00000002c0)={{0x2, 0xffffffffffffffff, 0xffffffffffffffff, 0x7, 0x1, 0x4}, &(0x7f0000000240)=0x9, &(0x7f0000000280), 0x25, 0x553, 0x9, 0xf41, 0x2, 0xffff, 0x6, 0x3, @raw=0xe, @raw=0x59}) 3.256574597s ago: executing program 3 (id=2341): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) epoll_create$auto(0x3e) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = socket(0x18, 0x3, 0x2) setsockopt$auto_SO_LINGER(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000180)='(,\x00:\x00\\\xb3\xc7\xaf\x19\xadz\xbf3\xc5S\x13+', 0x9) bind$auto(r1, &(0x7f0000000180)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x100000000000028, 0x0) r2 = fsopen$auto(0x0, 0x1) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) mq_notify$auto(0xffffffffffffffff, &(0x7f00000000c0)={@sival_ptr=0x0, @raw=0x3, 0x2, @_sigev_thread={0x0, 0x0}}) connect$auto(0x3, &(0x7f00000000c0)=@hci={0x1f, 0x2}, 0x55) close_range$auto(r0, 0xffffffffffffffff, 0x0) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/v4l-touch6\x00', 0x8a300, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ioctl$auto(0xffffffffffffffff, 0x545c, 0xffffffffffffffff) sysfs$auto(0xe, 0x2, 0x3) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_udc.5/udc/dummy_udc.5/srp\x00', 0x60301, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)='\x00\a', 0x2) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40440, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f00000001c0)) readv$auto(r5, &(0x7f0000000200)={0x0, 0xfffc}, 0x3) ioctl$auto_USBDEVFS_BULK32(r0, 0xc0105502, &(0x7f0000000140)={0x4, 0xfffffff9, 0x2d, 0x9}) ioctl$auto(r3, 0xc058560f, r3) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 3.222268939s ago: executing program 1 (id=2342): read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_clone3(0x0, 0x0) syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) kill$auto(0x0, 0x21) statmount$auto(0x0, 0x0, 0x1fe, 0x200a) rt_sigprocmask$auto(0x0, 0x0, 0x0, 0x8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/vhci_hcd.0/usb10/power/runtime_active_time\x00', 0x1, 0x0) read$auto(r4, 0x0, 0x20) writev$auto(r3, &(0x7f0000000200)={0x0, 0x3}, 0x3) bind$auto(0x3, 0x0, 0x9) close_range$auto(0x2, 0xa, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/netfs/requests\x00', 0x40080, 0x0) pread64$auto(r5, 0x0, 0x8100000041, 0x413e) waitid$auto_P_PIDFD(0x3, r1, &(0x7f0000000040)={@siginfo_0_0={0x2, 0x8, 0xf8, @_rt={0xffffffffffffffff, 0x0, @sival_ptr=&(0x7f0000000280)="79ca6170c72c9b5affac767c0127e58e38f3f407303ed544651fc514ea2bf3"}}}, 0x20f5, &(0x7f0000000440)={{0x0, 0x82}, {0x8, 0x2}, 0xc2, 0xfffffffffffffff1, 0x80000004, 0x9, 0x1, 0x3, 0x3, 0x502, 0xfff, 0x0, 0x3, 0x9, 0xc, 0xfffffffffffffffa}) 2.566682516s ago: executing program 2 (id=2343): socket(0xa, 0x801, 0x84) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) r0 = fanotify_init$auto(0xc00, 0x2000000000002) fanotify_mark$auto(r0, 0x5, 0x10000008, 0x4, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) bpf$auto(0x0, 0x0, 0x10) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x10, 0x2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x100000009b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyc1\x00', 0x0, 0x0) r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r2, 0x0, 0x9) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv6/conf/gretap0/accept_ra_min_lft\x00', 0x20180, 0x0) read$auto(r3, 0x0, 0x6) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/admmidi2\x00', 0x1, 0x0) select$auto(0x7, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x0, 0xfffffffffffffff6, 0x7, 0xfffffffffffdffff, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x1e, 0x7, 0x3, 0x200, 0x1, 0x9]}, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002040)='/dev/binderfs/binder1\x00', 0x80000, 0x0) ioctl$auto_BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) 2.274939735s ago: executing program 3 (id=2344): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) epoll_create$auto(0x3e) r0 = socket(0x18, 0x3, 0x2) bind$auto(r0, 0x0, 0x6a) mq_notify$auto(0xffffffffffffffff, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@hci={0x1f, 0x2}, 0x55) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0xa200, 0x0) ioctl$auto(0xffffffffffffffff, 0x545c, 0xffffffffffffffff) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x60301, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)='\x00', 0x1) migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40440, 0x0) ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0)) readv$auto(r2, &(0x7f0000000200)={0x0, 0xfffc}, 0x3) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f00000001c0)="35ee0278e8b567286a320d7031580158c72a68615e6fd18698") r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x80a00, 0x0) ioctl$auto(r4, 0x800064b9, 0x1e6) 1.597524005s ago: executing program 3 (id=2345): mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000001080)="7a47301037954c081c9a0bb04ef84993eab91abe1686f43e43d786e91365f04455bd620de9f3fb6d25e6c078c1a672c549dbc7876cb528ba081a81d884bfc00dd4eef57cedc0cc3756ff6a5b0aa8ba9511fe2b07c6e7f4732fe36ba259b12a0db9acf178c9182899f8360960a04ab85d23de405dad1c35058e30a98cc936ec82e442659cbfa3d11ff0a4e108dcfd7cec18e4f0c89ece6879d06808e003d602efa44c84360582e36aac42dab90d72") read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) fallocate$auto(r2, 0x1, 0x7, 0xe) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880) ioctl$auto(0xc8, 0x800454e1, 0x5c8d) mkdir$auto(&(0x7f0000000040)='./cgroup/../file0\x00', 0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) r5 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) umount2$auto(&(0x7f0000001180)='/dev/ttyS0\x00', 0x8) read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000040)=""/4096, 0xfffffe82) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001140)={0x1c, r4, 0xb01, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x30008008) inotify_add_watch$auto(r3, &(0x7f0000000000)='./cgroup/../file0\x00', 0x0) read$auto(0x3, 0x0, 0x8080) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000001040)='/dev/ttyy5\x00', 0x400, 0x0) write$auto(0x3, 0x0, 0x100082) 1.367532754s ago: executing program 2 (id=2346): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000001240)='4', 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000d79e04b6571e4dfa08000300", @ANYRES32=r4], 0x24}, 0x1, 0x1400, 0x0, 0x80}, 0x20000084) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) pwrite64$auto(r0, 0x0, 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) setsockopt$auto_SO_DOMAIN(r0, 0xffffff7f, 0x27, &(0x7f0000000140)='U@\xcc\x9c\xad\x8b![\x19O\xfd\"\t.H\xbb8\x84 \x17\x1f\x1d\xc9\xe3\x86\x00*\xdf\x06\xf3\x11Y\x7f\x81\xebO\x12\xd79\x84\x87\xd9\x89\xae\xad\x84\x05Hx3\x96z?\x9b}\x0eBy2', 0x1ff) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) r7 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r7, 0x40096101, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000) getsockopt$auto_SO_REUSEPORT(0xffffffffffffffff, 0x5b, 0xf, 0x0, 0x0) 551.680612ms ago: executing program 0 (id=2347): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, 0x0, 0x20000084) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000000)='\"\x81=\xe2\xad\xff\xf1y\xb3\x1d]\n\xcf\xfa\xee@\"', 0x81) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x610600, 0x0) pwrite64$auto(r0, 0x0, 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) setsockopt$auto_SO_DOMAIN(r0, 0xffffff7f, 0x27, 0x0, 0x1ff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x40000008000) getcwd$auto(0x0, 0x80) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) mmap$auto(0x0, 0xfff, 0x80000000000000df, 0xeb1, 0x401, 0x8000) adjtimex$auto(0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0) readv$auto(0x3, 0x0, 0x1) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x105000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 369.939157ms ago: executing program 1 (id=2348): r0 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0) getsockopt$auto_SO_MEMINFO(r0, 0x0, 0x37, &(0x7f0000000040)='-!\x00', &(0x7f0000000080)=0x191c) r1 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci4\x00', 0x4001, 0x0) ioctl$auto_BTRFS_IOC_SEND(r1, 0x40489426, &(0x7f0000000140)={@raw=0x4, 0x5, &(0x7f0000000100)=0x4, 0x6, 0x0, 0x2, "37d6f6f9221287785d3db1d55976d079d51594226601d8c1ae9b5457"}) r2 = socket(0x28, 0x80000, 0x80000000) epoll_ctl$auto(r0, 0x7, r0, &(0x7f00000001c0)={0x4}) io_uring_enter$auto(r2, 0x8001, 0xb000, 0x3, &(0x7f0000000200)="bb710f67171637e593377e5c6a49a5e8c7d21293c8d2ba3bb55f154088cca3d80f00d3039caa2e9f19391202ffa9b24157c1e51e15ff246b0c1774c9a7e5d1358b0950d65c2446072390caaaa7aaa229bdd99e3a72e926e4d6f89ecb6268da742c88a10181d6646c0f0f2eda1476260043df86904fef81daad8e276ef63beff234344a559746dec3470134135d065056c47a4d9227c65df9432847515cb20f0aa8d11a743b016b0b29d39c8c0a3d6e51b9f409602788422dd669a21bd1b94c50ce0585aa4197fba7af931b6011f6ba4c4c", 0xfffffffffffffff8) ioctl$auto_SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0, 0x0) setsockopt$auto_SO_RCVMARK(r2, 0x9, 0x4b, &(0x7f0000000300)='/sys/devices/virtual/bluetooth/hci4\x00', 0x7) r3 = socket(0x21, 0x1, 0x100) r4 = getsockopt$auto(r0, 0x7, 0xc7, &(0x7f0000000340)='-!\x00', &(0x7f0000000380)=0xe) sendmsg$auto_NL80211_CMD_GET_SCAN(r3, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0xa0, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_BSSID={0x8a, 0xf5, "d46feb97e3ddc99b7be5795fa6aea90a6194fe521d36926053859b5472fda027bd8a2322461747685464c879a857e1c7e79001fbfb13dc058589b1db03ed0ca0d32ac7d8e99d63ca5c1bd65f63c05c153e49dee11e13de2ccaf861b33bffa1d3b062095725d98a2b6195daa79cad28ce068dc251476e0315c26262effb8ba9cb777500784ab7"}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4}, 0x4) sendmsg$auto_OVS_METER_CMD_DEL(r2, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x5c, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@OVS_METER_ATTR_USED={0xc, 0x5, 0x2}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0x80000001, 0x3}}, @OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0xf}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x1d}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x6}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_CLEAR={0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4804}, 0x4800) ioctl$auto_XFS_IOC_ERROR_CLEARALL(r4, 0x40085875, &(0x7f00000006c0)={0xffffffffffffffff, 0x8}) write$auto_proc_clear_refs_operations_internal(0xffffffffffffffff, &(0x7f0000000700)="36c0e5a21d61d9a98cc5bd805688d200edaee9c8b8875ba8238842649f8e1d7ca91e838d3b169d", 0x27) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000740)='/proc/asound/card1/pcm0p/sub2/status\x00', 0x402, 0x0) r7 = semctl$auto_GETPID(0x1, 0x1, 0xb, 0x0) process_vm_readv$auto(r7, &(0x7f0000000840)={&(0x7f0000000780)="f353ba5aedce8dbbaef33df59a9e845d400751a70fd625953bce4efb6982c30da8c3459393630a6b1678f3377819b7020702c8c449d157ca4634a4598a41080075618be823ad61dcdc5914fe3a9627b073278c2e9066d4485d9375e6635391cf035d79ce27746f004c33d579018f7fb24a11ac5ef61e0c96d5ceca2278a28243fb67e5d4ee81b3a3de190f762a", 0x8000}, 0x0, &(0x7f00000008c0)={&(0x7f0000000880)="14ddc3f5ca03a418acb9a50138aee7f702a8e52d781ca0c0a0f67726196b2cfe197a47cbd5e0cb", 0x2f07}, 0x3, 0x1) r8 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000940), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, r8, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x10) ioctl$auto_BLKTRACESETUP2(r5, 0xc0481273, &(0x7f0000000a40)={"540039ab83fd99afa526ec6ab1145ecaa234f57255164d970af867c3e80ab07d", 0xb, 0x5, 0x3, 0x0, 0x7, r7}) capset$auto(&(0x7f0000000ac0)={0x7ff, r7}, &(0x7f0000000b00)={0x400, 0x8, 0x3}) lstat$auto(&(0x7f0000000b40)='./file0\x00', &(0x7f0000000b80)={0x8, 0x9, 0x7, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x3, 0x2, 0xfffffffffffffffe, 0x8, 0x6, 0xfffffffffffffff9, 0x1, 0x7fff, 0xf13}) rt_tgsigqueueinfo$auto(r9, r7, 0x7cc, &(0x7f0000000c40)={@siginfo_0_0={0x69, 0x0, 0x1, @_sigchld={r10, r11, 0x1, 0x2, 0xfffffffffffffcd3}}}) writev$auto(r6, &(0x7f0000000dc0)={&(0x7f0000000cc0)="d720e4e0b62ec87a6f498b5214de834add589587b0cd43e5da53b8eba4b983a834dba3fa51563b11a51f5065a8e515bf797644f1d0e7576a785c858e2d6ed33ae281f344abd7fda07b6f4a64e8ce960038340d37588a09afe5c9d9eebd5a53558a4c1458beaa4a70fe3b5ef64212bc5e3acbcaed52c0aba6d7ecc622144f8d2006ae4a7cf993c1f98de2b0711aa6753db7b4ff766f6faf3defa6777d8ed77f5a74268187e1ffb6f914b0cc2e08ca690fbe23d088afee460510eb89bf7ab899502e2bd7faff835e", 0x8000000000000000}, 0x3) acct$auto(&(0x7f0000000e00)='/sys/kernel/debug/tracing/available_events\x00') sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r3, &(0x7f0000000fc0)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x44, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_PLCA_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffff}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x9}]}, @ETHTOOL_A_PLCA_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x7ff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x80) inotify_rm_watch$auto(r5, 0x40) 333.682929ms ago: executing program 2 (id=2349): openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) socket(0xa, 0x801, 0x84) msgctl$auto_MSG_STAT(0x0, 0xb, &(0x7f0000004500)={{0x0, 0x0, 0x0, 0x8, 0x3, 0x8000, 0x1}, 0x0, 0x0, 0x8000000000000001, 0xac6, 0xffffffffffff966c, 0x0, 0x8, 0xbaa, 0x7, 0x8, @inferred, @raw=0xd}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x40, 0x942, 0x1fee0, 0x3, 0x6, 0xfffffffffffffffe, 0x1ff, 0x5, 0x8005, 0x7, 0xb0, 0x9, 0x5, 0x2000003, 0x8, 0x4, 0x10, 0xb65, 0x0, 0x0, 0x0, 0x0, 0x63e7, 0xfffffffd, 0x800, 0x0, 0x0, [0x2, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0, 0x2d24, 0x9, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffffffff, 0x9, 0x0, 0x0, 0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xffffffffffffffff]}, 0x1fe, 0x82) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) getsockopt$auto(r0, 0x11e, 0x1, 0xfffffffffffffffe, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, r1, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x40002, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa0102, 0x0) socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) sendmsg$auto_ILA_CMD_ADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002bbd7000fbdbdf250100000031208be8a5b4f52d83483e5c2d79da46e337d98473588f99774c7eb4868b973c1cef8187525db7b5b4e78678eb59512dbc7b11f4e29c29e3273c870a9555cf469e67e8886341e84d38edd658cf267f92e1e785a50fe500fbc125a65f8a4e5aa458a90f3d87fc71eca6309fc0ee1724cea121a7c96dbba43270448ec20cd22915c1cfa658b316e773d1eff747e371aace10d66450a3666b7be9754bde44d1"], 0x14}, 0x1, 0x0, 0x0, 0x4014}, 0x0) sendmsg$auto_ILA_CMD_FLUSH(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x40008c4) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x20020000) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, 0x0, 0x400c1) read$auto(0x3, 0x0, 0x80) 0s ago: executing program 1 (id=2350): mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880) ioctl$auto(0xc8, 0x800454e1, 0x5c8d) mkdir$auto(&(0x7f0000000040)='./cgroup/../file0\x00', 0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) ioctl$auto(r5, 0x540a, 0x0) unshare$auto(0x40000080) read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) r6 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r6, &(0x7f0000000040)=""/4096, 0xfffffe82) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x1c, r4, 0xb01, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4000084) inotify_add_watch$auto(r3, &(0x7f0000000000)='./cgroup/../file0\x00', 0x0) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, 0x0, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000001040)='/dev/ttyy5\x00', 0x400, 0x0) write$auto(0x3, 0x0, 0x100082) kernel console output (not intermixed with test programs): fffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 560.821483][T14376] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 560.821492][T14376] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 560.821500][T14376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.821509][T14376] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 560.821528][T14376] [ 562.122016][T14371] kexec: Could not allocate control_code_buffer [ 562.362879][T14394] FAULT_INJECTION: forcing a failure. [ 562.362879][T14394] name failslab, interval 1, probability 0, space 0, times 0 [ 562.430576][T14394] CPU: 0 UID: 0 PID: 14394 Comm: syz.1.1798 Tainted: G L syzkaller #0 PREEMPT(full) [ 562.430603][T14394] Tainted: [L]=SOFTLOCKUP [ 562.430609][T14394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 562.430618][T14394] Call Trace: [ 562.430623][T14394] [ 562.430630][T14394] dump_stack_lvl+0x100/0x190 [ 562.430659][T14394] should_fail_ex.cold+0x5/0xa [ 562.430678][T14394] should_failslab+0xc2/0x120 [ 562.430697][T14394] __kmalloc_cache_noprof+0x7a/0x6f0 [ 562.430719][T14394] ? binder_open+0x126/0xdd0 [ 562.430737][T14394] binder_open+0x126/0xdd0 [ 562.430753][T14394] ? __pfx_apparmor_file_open+0x10/0x10 [ 562.430778][T14394] ? __pfx_binder_open+0x10/0x10 [ 562.430793][T14394] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 562.430816][T14394] do_dentry_open+0x6d8/0x1660 [ 562.430834][T14394] ? __pfx_binder_open+0x10/0x10 [ 562.430853][T14394] vfs_open+0x82/0x3f0 [ 562.430876][T14394] path_openat+0x208c/0x31a0 [ 562.430900][T14394] ? __pfx_path_openat+0x10/0x10 [ 562.430924][T14394] do_file_open+0x20e/0x430 [ 562.430943][T14394] ? __pfx_do_file_open+0x10/0x10 [ 562.430979][T14394] ? alloc_fd+0x476/0x790 [ 562.430999][T14394] ? do_getname+0x191/0x390 [ 562.431023][T14394] do_sys_openat2+0x10d/0x1e0 [ 562.431045][T14394] ? __pfx_do_sys_openat2+0x10/0x10 [ 562.431069][T14394] ? __fget_files+0x21f/0x3d0 [ 562.431089][T14394] __x64_sys_openat+0x12d/0x210 [ 562.431111][T14394] ? __pfx___x64_sys_openat+0x10/0x10 [ 562.431137][T14394] ? rcu_is_watching+0x12/0xc0 [ 562.431154][T14394] do_syscall_64+0x10b/0xf80 [ 562.431169][T14394] ? clear_bhb_loop+0x40/0x90 [ 562.431187][T14394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 562.431202][T14394] RIP: 0033:0x7f583299c819 [ 562.431216][T14394] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 562.431231][T14394] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 562.431245][T14394] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 562.431255][T14394] RDX: 0000000000008882 RSI: 0000200000002340 RDI: ffffffffffffff9c [ 562.431264][T14394] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 562.431273][T14394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 562.431281][T14394] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 562.431300][T14394] [ 563.180197][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.188604][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.206949][T14412] FAULT_INJECTION: forcing a failure. [ 563.206949][T14412] name failslab, interval 1, probability 0, space 0, times 0 [ 563.231220][T14412] CPU: 0 UID: 0 PID: 14412 Comm: syz.2.1805 Tainted: G L syzkaller #0 PREEMPT(full) [ 563.231247][T14412] Tainted: [L]=SOFTLOCKUP [ 563.231252][T14412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 563.231262][T14412] Call Trace: [ 563.231267][T14412] [ 563.231274][T14412] dump_stack_lvl+0x100/0x190 [ 563.231302][T14412] should_fail_ex.cold+0x5/0xa [ 563.231322][T14412] ? ops_init+0x77/0x5f0 [ 563.231336][T14412] should_failslab+0xc2/0x120 [ 563.231355][T14412] __kmalloc_noprof+0xe0/0x850 [ 563.231372][T14412] ? nfsd_net_init+0x2b4/0x3d0 [ 563.231395][T14412] ops_init+0x77/0x5f0 [ 563.231411][T14412] setup_net+0x118/0x3a0 [ 563.231426][T14412] ? __pfx_setup_net+0x10/0x10 [ 563.231440][T14412] ? lockdep_init_map_type+0x5c/0x250 [ 563.231465][T14412] ? mutex_init_lockdep+0xf1/0x120 [ 563.231489][T14412] copy_net_ns+0x46f/0x7c0 [ 563.231508][T14412] create_new_namespaces+0x3ea/0xac0 [ 563.231529][T14412] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 563.231548][T14412] ksys_unshare+0x473/0xad0 [ 563.231569][T14412] ? __pfx_ksys_unshare+0x10/0x10 [ 563.231587][T14412] ? xfd_validate_state+0x129/0x190 [ 563.231616][T14412] __x64_sys_unshare+0x31/0x40 [ 563.231635][T14412] do_syscall_64+0x10b/0xf80 [ 563.231649][T14412] ? clear_bhb_loop+0x40/0x90 [ 563.231667][T14412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 563.231682][T14412] RIP: 0033:0x7f5158d9c819 [ 563.231695][T14412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 563.231710][T14412] RSP: 002b:00007f5159d0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 563.231726][T14412] RAX: ffffffffffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 563.231735][T14412] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 563.231744][T14412] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 563.231753][T14412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 563.231761][T14412] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 563.231782][T14412] [ 563.553703][T14415] netlink: 138 bytes leftover after parsing attributes in process `syz.0.1806'. [ 565.088307][T14455] FAULT_INJECTION: forcing a failure. [ 565.088307][T14455] name failslab, interval 1, probability 0, space 0, times 0 [ 565.125482][T14455] CPU: 0 UID: 0 PID: 14455 Comm: syz.3.1817 Tainted: G L syzkaller #0 PREEMPT(full) [ 565.125508][T14455] Tainted: [L]=SOFTLOCKUP [ 565.125514][T14455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 565.125523][T14455] Call Trace: [ 565.125528][T14455] [ 565.125535][T14455] dump_stack_lvl+0x100/0x190 [ 565.125564][T14455] should_fail_ex.cold+0x5/0xa [ 565.125583][T14455] should_failslab+0xc2/0x120 [ 565.125603][T14455] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 565.125621][T14455] ? xfrm_sysctl_init+0x10a/0x2d0 [ 565.125651][T14455] kmemdup_noprof+0x29/0x60 [ 565.125668][T14455] xfrm_sysctl_init+0x10a/0x2d0 [ 565.125691][T14455] xfrm_net_init+0x856/0xcf0 [ 565.125715][T14455] ? __pfx_xfrm_net_init+0x10/0x10 [ 565.125733][T14455] ops_init+0x1e2/0x5f0 [ 565.125751][T14455] setup_net+0x118/0x3a0 [ 565.125766][T14455] ? __pfx_setup_net+0x10/0x10 [ 565.125780][T14455] ? lockdep_init_map_type+0x5c/0x250 [ 565.125801][T14455] ? mutex_init_lockdep+0xf1/0x120 [ 565.125826][T14455] copy_net_ns+0x46f/0x7c0 [ 565.125844][T14455] create_new_namespaces+0x3ea/0xac0 [ 565.125865][T14455] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 565.125884][T14455] ksys_unshare+0x473/0xad0 [ 565.125905][T14455] ? __pfx_ksys_unshare+0x10/0x10 [ 565.125922][T14455] ? xfd_validate_state+0x129/0x190 [ 565.125951][T14455] __x64_sys_unshare+0x31/0x40 [ 565.125970][T14455] do_syscall_64+0x10b/0xf80 [ 565.125985][T14455] ? clear_bhb_loop+0x40/0x90 [ 565.126003][T14455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.126019][T14455] RIP: 0033:0x7fe0f119c819 [ 565.126032][T14455] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 565.126046][T14455] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 565.126061][T14455] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 565.126071][T14455] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 565.126079][T14455] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 565.126088][T14455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 565.126097][T14455] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 565.126117][T14455] [ 565.443848][T14459] FAULT_INJECTION: forcing a failure. [ 565.443848][T14459] name failslab, interval 1, probability 0, space 0, times 0 [ 565.456571][T14459] CPU: 0 UID: 0 PID: 14459 Comm: syz.3.1818 Tainted: G L syzkaller #0 PREEMPT(full) [ 565.456597][T14459] Tainted: [L]=SOFTLOCKUP [ 565.456608][T14459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 565.456618][T14459] Call Trace: [ 565.456624][T14459] [ 565.456631][T14459] dump_stack_lvl+0x100/0x190 [ 565.456659][T14459] should_fail_ex.cold+0x5/0xa [ 565.456679][T14459] should_failslab+0xc2/0x120 [ 565.456698][T14459] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 565.456714][T14459] ? __proc_create+0x2cb/0x8c0 [ 565.456736][T14459] __proc_create+0x2cb/0x8c0 [ 565.456754][T14459] ? __pfx___proc_create+0x10/0x10 [ 565.456775][T14459] ? _raw_write_unlock+0x28/0x50 [ 565.456793][T14459] proc_create_reg+0x75/0x170 [ 565.456814][T14459] proc_create_data+0x86/0x110 [ 565.456833][T14459] ? __pfx_proc_create_data+0x10/0x10 [ 565.456852][T14459] ? cache_register_net+0x137/0x5e0 [ 565.456868][T14459] ? cache_register_net+0x137/0x5e0 [ 565.456888][T14459] cache_register_net+0x1e0/0x5e0 [ 565.456906][T14459] nfsd_idmap_init+0x16e/0x250 [ 565.456922][T14459] ? __pfx_nfsd_net_init+0x10/0x10 [ 565.456942][T14459] nfsd_net_init+0x69/0x3d0 [ 565.456963][T14459] ? __pfx_nfsd_net_init+0x10/0x10 [ 565.456984][T14459] ops_init+0x1e2/0x5f0 [ 565.457001][T14459] setup_net+0x118/0x3a0 [ 565.457016][T14459] ? __pfx_setup_net+0x10/0x10 [ 565.457029][T14459] ? lockdep_init_map_type+0x5c/0x250 [ 565.457052][T14459] ? mutex_init_lockdep+0xf1/0x120 [ 565.457075][T14459] copy_net_ns+0x46f/0x7c0 [ 565.457093][T14459] create_new_namespaces+0x3ea/0xac0 [ 565.457115][T14459] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 565.457133][T14459] ksys_unshare+0x473/0xad0 [ 565.457154][T14459] ? __pfx_ksys_unshare+0x10/0x10 [ 565.457171][T14459] ? xfd_validate_state+0x129/0x190 [ 565.457200][T14459] __x64_sys_unshare+0x31/0x40 [ 565.457219][T14459] do_syscall_64+0x10b/0xf80 [ 565.457234][T14459] ? clear_bhb_loop+0x40/0x90 [ 565.457252][T14459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.457267][T14459] RIP: 0033:0x7fe0f119c819 [ 565.457281][T14459] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 565.457295][T14459] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 565.457310][T14459] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 565.457319][T14459] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 565.457328][T14459] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 565.457338][T14459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 565.457347][T14459] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 565.457366][T14459] [ 566.137977][T14473] QAT: Device 57 not found [ 566.315938][T14480] QAT: Device 49 not found [ 566.663187][T14483] syz.1.1824 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 566.684694][T14483] FAULT_INJECTION: forcing a failure. [ 566.684694][T14483] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 566.719397][T14483] CPU: 0 UID: 0 PID: 14483 Comm: syz.1.1824 Tainted: G L syzkaller #0 PREEMPT(full) [ 566.719424][T14483] Tainted: [L]=SOFTLOCKUP [ 566.719430][T14483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 566.719439][T14483] Call Trace: [ 566.719445][T14483] [ 566.719451][T14483] dump_stack_lvl+0x100/0x190 [ 566.719480][T14483] should_fail_ex.cold+0x5/0xa [ 566.719496][T14483] ? prepare_alloc_pages+0x16d/0x5f0 [ 566.719518][T14483] should_fail_alloc_page+0xeb/0x140 [ 566.719538][T14483] prepare_alloc_pages+0x1f0/0x5f0 [ 566.719561][T14483] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 566.719581][T14483] ? __lock_acquire+0x4a5/0x2630 [ 566.719603][T14483] ? __lock_acquire+0x4a5/0x2630 [ 566.719624][T14483] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 566.719640][T14483] ? __lock_acquire+0x4a5/0x2630 [ 566.719669][T14483] ? find_held_lock+0x2b/0x80 [ 566.719683][T14483] ? is_bpf_text_address+0x8a/0x1a0 [ 566.719698][T14483] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 566.719716][T14483] ? policy_nodemask+0xed/0x4f0 [ 566.719744][T14483] alloc_pages_mpol+0x1fb/0x550 [ 566.719765][T14483] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 566.719783][T14483] ? arch_stack_walk+0xa6/0xf0 [ 566.719806][T14483] folio_alloc_mpol_noprof+0x36/0x340 [ 566.719829][T14483] shmem_alloc_folio+0x135/0x160 [ 566.719851][T14483] shmem_alloc_and_add_folio+0x371/0xd40 [ 566.719872][T14483] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 566.719890][T14483] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 566.719910][T14483] shmem_get_folio_gfp+0x6ab/0x1900 [ 566.719930][T14483] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 566.719946][T14483] ? filemap_map_pages+0xe4c/0x1ff0 [ 566.719965][T14483] shmem_fault+0x1f9/0xa20 [ 566.719980][T14483] ? __lock_acquire+0x4a5/0x2630 [ 566.719999][T14483] ? __pfx_shmem_fault+0x10/0x10 [ 566.720016][T14483] ? rcu_is_watching+0x12/0xc0 [ 566.720030][T14483] ? __pfx_filemap_map_pages+0x10/0x10 [ 566.720051][T14483] __do_fault+0x10d/0x550 [ 566.720070][T14483] do_fault+0xabb/0x18e0 [ 566.720089][T14483] ? __pmd_alloc+0x3fb/0x950 [ 566.720110][T14483] __handle_mm_fault+0x1815/0x2b60 [ 566.720136][T14483] ? mt_find+0x45e/0x8e0 [ 566.720153][T14483] ? __pfx___handle_mm_fault+0x10/0x10 [ 566.720174][T14483] ? __pfx_mt_find+0x10/0x10 [ 566.720201][T14483] ? find_vma+0xbf/0x140 [ 566.720218][T14483] ? __pfx_find_vma+0x10/0x10 [ 566.720237][T14483] handle_mm_fault+0x36d/0xa20 [ 566.720264][T14483] do_user_addr_fault+0x74c/0x12f0 [ 566.720284][T14483] ? trace_page_fault_kernel+0x7a/0x200 [ 566.720302][T14483] exc_page_fault+0x6f/0xd0 [ 566.720317][T14483] asm_exc_page_fault+0x26/0x30 [ 566.720332][T14483] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 566.720352][T14483] Code: 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 0f 9d 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 566.720367][T14483] RSP: 0018:ffffc90003d67cc8 EFLAGS: 00050202 [ 566.720383][T14483] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000078 [ 566.720392][T14483] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc90003d67db0 [ 566.720401][T14483] RBP: 0000000000000078 R08: 0000000000000001 R09: fffff520007acfc4 [ 566.720410][T14483] R10: ffffc90003d67e27 R11: 0000000000000000 R12: 0000000000000000 [ 566.720419][T14483] R13: ffffc90003d67db0 R14: 0000000000000000 R15: dffffc0000000000 [ 566.720438][T14483] _copy_from_user+0x98/0xd0 [ 566.720456][T14483] io_uring_setup+0xc0/0x160 [ 566.720476][T14483] ? ksys_write+0x190/0x250 [ 566.720494][T14483] ? __pfx_io_uring_setup+0x10/0x10 [ 566.720514][T14483] ? do_futex+0x192/0x350 [ 566.720535][T14483] ? __pfx_do_futex+0x10/0x10 [ 566.720564][T14483] ? xfd_validate_state+0x129/0x190 [ 566.720585][T14483] ? ksys_write+0x1ac/0x250 [ 566.720606][T14483] __x64_sys_io_uring_setup+0xc2/0x170 [ 566.720626][T14483] do_syscall_64+0x10b/0xf80 [ 566.720640][T14483] ? clear_bhb_loop+0x40/0x90 [ 566.720658][T14483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.720672][T14483] RIP: 0033:0x7f583299c819 [ 566.720686][T14483] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 566.720700][T14483] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 566.720713][T14483] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 566.720723][T14483] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 566.720738][T14483] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 566.720747][T14483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.720756][T14483] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 566.720777][T14483] [ 568.517664][T14501] QAT: Device 57 not found [ 569.286244][T14509] FAULT_INJECTION: forcing a failure. [ 569.286244][T14509] name failslab, interval 1, probability 0, space 0, times 0 [ 569.323426][T14506] netlink: 138 bytes leftover after parsing attributes in process `syz.2.1831'. [ 569.336799][T14509] CPU: 0 UID: 0 PID: 14509 Comm: syz.0.1829 Tainted: G L syzkaller #0 PREEMPT(full) [ 569.336827][T14509] Tainted: [L]=SOFTLOCKUP [ 569.336833][T14509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 569.336842][T14509] Call Trace: [ 569.336847][T14509] [ 569.336854][T14509] dump_stack_lvl+0x100/0x190 [ 569.336883][T14509] should_fail_ex.cold+0x5/0xa [ 569.336902][T14509] should_failslab+0xc2/0x120 [ 569.336921][T14509] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 569.336936][T14509] ? __proc_create+0x2cb/0x8c0 [ 569.336959][T14509] __proc_create+0x2cb/0x8c0 [ 569.336978][T14509] ? __pfx___proc_create+0x10/0x10 [ 569.336998][T14509] ? _raw_write_unlock+0x28/0x50 [ 569.337014][T14509] ? proc_register+0x559/0x8a0 [ 569.337034][T14509] proc_create_reg+0x75/0x170 [ 569.337054][T14509] proc_create_data+0x86/0x110 [ 569.337073][T14509] ? __pfx_proc_create_data+0x10/0x10 [ 569.337092][T14509] ? cache_register_net+0x137/0x5e0 [ 569.337109][T14509] ? cache_register_net+0x137/0x5e0 [ 569.337129][T14509] cache_register_net+0x25a/0x5e0 [ 569.337147][T14509] nfsd_idmap_init+0xb6/0x250 [ 569.337172][T14509] ? __pfx_nfsd_net_init+0x10/0x10 [ 569.337194][T14509] nfsd_net_init+0x69/0x3d0 [ 569.337215][T14509] ? __pfx_nfsd_net_init+0x10/0x10 [ 569.337236][T14509] ops_init+0x1e2/0x5f0 [ 569.337254][T14509] setup_net+0x118/0x3a0 [ 569.337269][T14509] ? __pfx_setup_net+0x10/0x10 [ 569.337282][T14509] ? lockdep_init_map_type+0x5c/0x250 [ 569.337305][T14509] ? mutex_init_lockdep+0xf1/0x120 [ 569.337329][T14509] copy_net_ns+0x46f/0x7c0 [ 569.337347][T14509] create_new_namespaces+0x3ea/0xac0 [ 569.337369][T14509] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 569.337387][T14509] ksys_unshare+0x473/0xad0 [ 569.337408][T14509] ? __pfx_ksys_unshare+0x10/0x10 [ 569.337425][T14509] ? xfd_validate_state+0x129/0x190 [ 569.337454][T14509] __x64_sys_unshare+0x31/0x40 [ 569.337472][T14509] do_syscall_64+0x10b/0xf80 [ 569.337487][T14509] ? clear_bhb_loop+0x40/0x90 [ 569.337505][T14509] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.337521][T14509] RIP: 0033:0x7fb33739c819 [ 569.337534][T14509] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 569.337549][T14509] RSP: 002b:00007fb338291028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 569.337564][T14509] RAX: ffffffffffffffda RBX: 00007fb337615fa0 RCX: 00007fb33739c819 [ 569.337573][T14509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 569.337582][T14509] RBP: 00007fb337432c91 R08: 0000000000000000 R09: 0000000000000000 [ 569.337591][T14509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.337599][T14509] R13: 00007fb337616038 R14: 00007fb337615fa0 R15: 00007ffcee9db588 [ 569.337619][T14509] [ 569.691337][T14513] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1833'. [ 569.700523][T14513] team_slave_0: entered allmulticast mode [ 570.109684][T14525] QAT: Device 50 not found [ 570.145107][T14526] QAT: Device 49 not found [ 570.863206][T14543] QAT: Device 53 not found [ 571.159065][ T7475] Bluetooth: hci3: unexpected event 0x09 length: 435 > 3 [ 572.018787][T14581] QAT: Device 53 not found [ 572.156979][T14585] QAT: Device 57 not found [ 572.963501][T14598] QAT: Device 53 not found [ 573.866309][T14618] QAT: Device 53 not found [ 575.389913][T14650] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1864'. [ 575.429491][T14650] netlink: 294 bytes leftover after parsing attributes in process `syz.3.1864'. [ 575.818962][T14661] vhci_hcd vhci_hcd.0: default hub control req: 0000 v0000 i0000 l0 [ 576.222234][T14671] QAT: Device 53 not found syzkaller syzkaller login: [ 577.367687][T14696] QAT: Device 57 not found [ 577.560376][T14694] zswap: compressor not available [ 577.743410][T14689] FAULT_INJECTION: forcing a failure. [ 577.743410][T14689] name failslab, interval 1, probability 0, space 0, times 0 [ 577.756613][T14689] CPU: 0 UID: 0 PID: 14689 Comm: syz.2.1874 Tainted: G L syzkaller #0 PREEMPT(full) [ 577.756639][T14689] Tainted: [L]=SOFTLOCKUP [ 577.756644][T14689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 577.756654][T14689] Call Trace: [ 577.756659][T14689] [ 577.756664][T14689] dump_stack_lvl+0x100/0x190 [ 577.756695][T14689] should_fail_ex.cold+0x5/0xa [ 577.756715][T14689] should_failslab+0xc2/0x120 [ 577.756734][T14689] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 577.756750][T14689] ? alloc_io_context+0x21/0x2f0 [ 577.756765][T14689] ? set_task_ioprio+0x48f/0x670 [ 577.756784][T14689] alloc_io_context+0x21/0x2f0 [ 577.756799][T14689] set_task_ioprio+0x49e/0x670 [ 577.756816][T14689] __do_sys_ioprio_set+0x74c/0xb40 [ 577.756841][T14689] ? rcu_is_watching+0x12/0xc0 [ 577.756858][T14689] do_syscall_64+0x10b/0xf80 [ 577.756873][T14689] ? clear_bhb_loop+0x40/0x90 [ 577.756890][T14689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.756905][T14689] RIP: 0033:0x7f5158d9c819 [ 577.756918][T14689] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 577.756933][T14689] RSP: 002b:00007f5159d0e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb [ 577.756947][T14689] RAX: ffffffffffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 577.756957][T14689] RDX: 0000000000000008 RSI: 0000000800000000 RDI: 0000000000000002 [ 577.756966][T14689] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 577.756974][T14689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.756983][T14689] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 577.757002][T14689] [ 578.158430][T14717] FAULT_INJECTION: forcing a failure. [ 578.158430][T14717] name failslab, interval 1, probability 0, space 0, times 0 [ 578.175966][T14715] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1879'. [ 578.188808][T14717] CPU: 0 UID: 0 PID: 14717 Comm: syz.2.1878 Tainted: G L syzkaller #0 PREEMPT(full) [ 578.188834][T14717] Tainted: [L]=SOFTLOCKUP [ 578.188840][T14717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 578.188849][T14717] Call Trace: [ 578.188854][T14717] [ 578.188860][T14717] dump_stack_lvl+0x100/0x190 [ 578.188889][T14717] should_fail_ex.cold+0x5/0xa [ 578.188910][T14717] should_failslab+0xc2/0x120 [ 578.188929][T14717] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 578.188945][T14717] ? security_inode_alloc+0x3b/0x2c0 [ 578.188968][T14717] ? lockdep_init_map_type+0x5c/0x250 [ 578.188993][T14717] security_inode_alloc+0x3b/0x2c0 [ 578.189016][T14717] inode_init_always_gfp+0xcc0/0x1000 [ 578.189037][T14717] alloc_inode+0x8e/0x250 [ 578.189059][T14717] path_from_stashed+0x25b/0x750 [ 578.189078][T14717] ? do_raw_spin_unlock+0x145/0x1e0 [ 578.189103][T14717] ns_get_path+0x60/0x80 [ 578.189122][T14717] proc_ns_get_link+0x121/0x230 [ 578.189138][T14717] ? __pfx_proc_ns_get_link+0x10/0x10 [ 578.189155][T14717] ? atime_needs_update+0x8b/0x6b0 [ 578.189171][T14717] pick_link+0xd17/0x13c0 [ 578.189185][T14717] ? __pfx_proc_ns_get_link+0x10/0x10 [ 578.189203][T14717] step_into_slowpath+0x9ba/0xf90 [ 578.189222][T14717] ? __pfx_step_into_slowpath+0x10/0x10 [ 578.189238][T14717] ? __pfx___up_read+0x10/0x10 [ 578.189259][T14717] ? path_openat+0x1508/0x31a0 [ 578.189276][T14717] ? lookup_fast+0x2da/0x600 [ 578.189293][T14717] path_openat+0xf95/0x31a0 [ 578.189321][T14717] ? __pfx_path_openat+0x10/0x10 [ 578.189360][T14717] do_file_open+0x20e/0x430 [ 578.189381][T14717] ? __pfx_do_file_open+0x10/0x10 [ 578.189413][T14717] ? alloc_fd+0x476/0x790 [ 578.189432][T14717] ? do_getname+0x191/0x390 [ 578.189456][T14717] do_sys_openat2+0x10d/0x1e0 [ 578.189479][T14717] ? __pfx_do_sys_openat2+0x10/0x10 [ 578.189502][T14717] ? __fget_files+0x21f/0x3d0 [ 578.189527][T14717] __x64_sys_openat+0x12d/0x210 [ 578.189549][T14717] ? __pfx___x64_sys_openat+0x10/0x10 [ 578.189574][T14717] ? rcu_is_watching+0x12/0xc0 [ 578.189592][T14717] do_syscall_64+0x10b/0xf80 [ 578.189607][T14717] ? clear_bhb_loop+0x40/0x90 [ 578.189626][T14717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.189641][T14717] RIP: 0033:0x7f5158d9c819 [ 578.189655][T14717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 578.189669][T14717] RSP: 002b:00007f5159d0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 578.189684][T14717] RAX: ffffffffffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 578.189694][T14717] RDX: 0000000000000080 RSI: 0000200000000300 RDI: ffffffffffffff9c [ 578.189704][T14717] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 578.189713][T14717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 578.189722][T14717] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 578.189742][T14717] [ 578.630752][T14723] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1880'. [ 578.932311][T14727] FAULT_INJECTION: forcing a failure. [ 578.932311][T14727] name failslab, interval 1, probability 0, space 0, times 0 [ 579.015837][T14727] CPU: 0 UID: 0 PID: 14727 Comm: syz.1.1882 Tainted: G L syzkaller #0 PREEMPT(full) [ 579.015864][T14727] Tainted: [L]=SOFTLOCKUP [ 579.015870][T14727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 579.015879][T14727] Call Trace: [ 579.015885][T14727] [ 579.015891][T14727] dump_stack_lvl+0x100/0x190 [ 579.015919][T14727] should_fail_ex.cold+0x5/0xa [ 579.015938][T14727] ? snd_pcm_plugin_build+0x434/0x650 [ 579.015959][T14727] should_failslab+0xc2/0x120 [ 579.015977][T14727] __kmalloc_noprof+0xe0/0x850 [ 579.016003][T14727] snd_pcm_plugin_build+0x434/0x650 [ 579.016025][T14727] ? snd_pcm_plugin_build+0x4b7/0x650 [ 579.016048][T14727] snd_pcm_plugin_build_linear+0x254/0x850 [ 579.016074][T14727] ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10 [ 579.016099][T14727] ? snd_pcm_hw_params+0x241/0x1bf0 [ 579.016124][T14727] snd_pcm_plug_format_plugins+0x536/0x1430 [ 579.016147][T14727] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 579.016171][T14727] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 579.016197][T14727] snd_pcm_oss_change_params_locked+0x2e3c/0x39f0 [ 579.016225][T14727] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 579.016245][T14727] ? __pfx___mutex_lock+0x10/0x10 [ 579.016276][T14727] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 579.016299][T14727] snd_pcm_oss_ioctl+0x1bf1/0x3700 [ 579.016320][T14727] ? __fget_files+0x215/0x3d0 [ 579.016336][T14727] ? hook_file_ioctl_common+0x149/0x410 [ 579.016352][T14727] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 579.016373][T14727] ? __fget_files+0x21f/0x3d0 [ 579.016392][T14727] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 579.016413][T14727] __x64_sys_ioctl+0x18e/0x210 [ 579.016430][T14727] do_syscall_64+0x10b/0xf80 [ 579.016445][T14727] ? clear_bhb_loop+0x40/0x90 [ 579.016462][T14727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.016477][T14727] RIP: 0033:0x7f583299c819 [ 579.016490][T14727] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 579.016504][T14727] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 579.016519][T14727] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 579.016532][T14727] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 579.016541][T14727] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 579.016550][T14727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.016558][T14727] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 579.016578][T14727] [ 579.427267][T14737] FAULT_INJECTION: forcing a failure. [ 579.427267][T14737] name failslab, interval 1, probability 0, space 0, times 0 [ 579.440151][T14737] CPU: 0 UID: 0 PID: 14737 Comm: syz.1.1885 Tainted: G L syzkaller #0 PREEMPT(full) [ 579.440177][T14737] Tainted: [L]=SOFTLOCKUP [ 579.440183][T14737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 579.440193][T14737] Call Trace: [ 579.440200][T14737] [ 579.440207][T14737] dump_stack_lvl+0x100/0x190 [ 579.440236][T14737] should_fail_ex.cold+0x5/0xa [ 579.440257][T14737] should_failslab+0xc2/0x120 [ 579.440276][T14737] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 579.440292][T14737] ? mempool_init_node+0x2f7/0x6e0 [ 579.440311][T14737] ? lockdep_init_map_type+0x11/0x250 [ 579.440333][T14737] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 579.440353][T14737] mempool_init_node+0x2f7/0x6e0 [ 579.440375][T14737] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 579.440392][T14737] ? __pfx_mempool_free_slab+0x10/0x10 [ 579.440410][T14737] mempool_init_noprof+0x3a/0x50 [ 579.440431][T14737] bioset_init+0x37e/0x8a0 [ 579.440454][T14737] ? __pfx_bioset_init+0x10/0x10 [ 579.440485][T14737] __alloc_disk_node+0x83/0x6b0 [ 579.440511][T14737] __blk_alloc_disk+0xd2/0x170 [ 579.440533][T14737] ? __pfx___blk_alloc_disk+0x10/0x10 [ 579.440566][T14737] ? __pfx_idr_alloc+0x10/0x10 [ 579.440580][T14737] ? lockdep_init_map_type+0x5c/0x250 [ 579.440600][T14737] ? __raw_spin_lock_init+0x3a/0x110 [ 579.440624][T14737] ? __pfx_hot_add_show+0x10/0x10 [ 579.440644][T14737] zram_add+0x1bf/0x610 [ 579.440663][T14737] ? __pfx_zram_add+0x10/0x10 [ 579.440694][T14737] ? find_held_lock+0x2b/0x80 [ 579.440709][T14737] ? sysfs_file_kobj+0xe4/0x290 [ 579.440735][T14737] ? __pfx_hot_add_show+0x10/0x10 [ 579.440755][T14737] hot_add_show+0x21/0x80 [ 579.440774][T14737] class_attr_show+0x72/0xa0 [ 579.440792][T14737] ? __pfx_class_attr_show+0x10/0x10 [ 579.440808][T14737] sysfs_kf_seq_show+0x217/0x3a0 [ 579.440835][T14737] seq_read_iter+0x32f/0x1270 [ 579.440850][T14737] ? lock_acquire+0x1b1/0x370 [ 579.440877][T14737] kernfs_fop_read_iter+0x46c/0x610 [ 579.440898][T14737] ? rw_verify_area+0xce/0x6d0 [ 579.440912][T14737] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 579.440974][T14737] vfs_read+0x825/0xb30 [ 579.440994][T14737] ? __pfx_vfs_read+0x10/0x10 [ 579.441023][T14737] ksys_read+0x12a/0x250 [ 579.441039][T14737] ? __pfx_ksys_read+0x10/0x10 [ 579.441057][T14737] ? rcu_is_watching+0x12/0xc0 [ 579.441074][T14737] do_syscall_64+0x10b/0xf80 [ 579.441089][T14737] ? clear_bhb_loop+0x40/0x90 [ 579.441107][T14737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 579.441123][T14737] RIP: 0033:0x7f583299c819 [ 579.441138][T14737] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 579.441154][T14737] RSP: 002b:00007f58338a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 579.441170][T14737] RAX: ffffffffffffffda RBX: 00007f5832c16090 RCX: 00007f583299c819 [ 579.441180][T14737] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005 [ 579.441190][T14737] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 579.441199][T14737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 579.441209][T14737] R13: 00007f5832c16128 R14: 00007f5832c16090 R15: 00007fff3e1eade8 [ 579.441230][T14737] [ 580.309179][T14737] zram: Error allocating disk structure for device 0 [ 580.351749][T14743] QAT: Device 57 not found [ 580.552395][T14749] FAULT_INJECTION: forcing a failure. [ 580.552395][T14749] name failslab, interval 1, probability 0, space 0, times 0 [ 580.640648][T14749] CPU: 0 UID: 0 PID: 14749 Comm: syz.2.1886 Tainted: G L syzkaller #0 PREEMPT(full) [ 580.640676][T14749] Tainted: [L]=SOFTLOCKUP [ 580.640682][T14749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 580.640692][T14749] Call Trace: [ 580.640696][T14749] [ 580.640710][T14749] dump_stack_lvl+0x100/0x190 [ 580.640739][T14749] should_fail_ex.cold+0x5/0xa [ 580.640760][T14749] should_failslab+0xc2/0x120 [ 580.640778][T14749] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 580.640794][T14749] ? __proc_create+0x2cb/0x8c0 [ 580.640817][T14749] __proc_create+0x2cb/0x8c0 [ 580.640836][T14749] ? __pfx___proc_create+0x10/0x10 [ 580.640856][T14749] ? _raw_write_unlock+0x28/0x50 [ 580.640870][T14749] ? proc_register+0x559/0x8a0 [ 580.640890][T14749] proc_create_reg+0x75/0x170 [ 580.640910][T14749] proc_create_seq_private+0x8e/0x180 [ 580.640935][T14749] ? __pfx_proc_create_seq_private+0x10/0x10 [ 580.640958][T14749] ? timer_init_key+0x155/0x330 [ 580.640975][T14749] ? __pfx_nl_fib_input+0x10/0x10 [ 580.640993][T14749] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 580.641010][T14749] ip_rt_do_proc_init+0xb2/0x1d0 [ 580.641027][T14749] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 580.641042][T14749] ops_init+0x1e2/0x5f0 [ 580.641061][T14749] setup_net+0x118/0x3a0 [ 580.641076][T14749] ? __pfx_setup_net+0x10/0x10 [ 580.641089][T14749] ? lockdep_init_map_type+0x5c/0x250 [ 580.641110][T14749] ? mutex_init_lockdep+0xf1/0x120 [ 580.641133][T14749] copy_net_ns+0x46f/0x7c0 [ 580.641151][T14749] create_new_namespaces+0x3ea/0xac0 [ 580.641172][T14749] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 580.641194][T14749] ksys_unshare+0x473/0xad0 [ 580.641215][T14749] ? __pfx_ksys_unshare+0x10/0x10 [ 580.641233][T14749] ? xfd_validate_state+0x129/0x190 [ 580.641263][T14749] __x64_sys_unshare+0x31/0x40 [ 580.641282][T14749] do_syscall_64+0x10b/0xf80 [ 580.641297][T14749] ? clear_bhb_loop+0x40/0x90 [ 580.641315][T14749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.641329][T14749] RIP: 0033:0x7f5158d9c819 [ 580.641343][T14749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 580.641357][T14749] RSP: 002b:00007f5159d0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 580.641373][T14749] RAX: ffffffffffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 580.641383][T14749] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 580.641393][T14749] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 580.641402][T14749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 580.641411][T14749] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 580.641431][T14749] [ 581.188081][T14762] ubi0: attaching mtd0 [ 581.193592][T14762] ubi0: scanning is finished [ 581.199951][T14762] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 581.708129][T14762] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 581.827953][T14773] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1894'. [ 581.941449][T14777] QAT: Device 54 not found [ 581.995061][T14779] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1894'. [ 582.680636][T14792] QAT: Device 57 not found [ 582.761129][T14793] QAT: Device 0 not found [ 582.938012][T14802] QAT: Device 55 not found [ 583.419397][T14807] FAULT_INJECTION: forcing a failure. [ 583.419397][T14807] name failslab, interval 1, probability 0, space 0, times 0 [ 583.446401][T14807] CPU: 0 UID: 0 PID: 14807 Comm: syz.0.1900 Tainted: G L syzkaller #0 PREEMPT(full) [ 583.446437][T14807] Tainted: [L]=SOFTLOCKUP [ 583.446445][T14807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 583.446455][T14807] Call Trace: [ 583.446460][T14807] [ 583.446466][T14807] dump_stack_lvl+0x100/0x190 [ 583.446497][T14807] should_fail_ex.cold+0x5/0xa [ 583.446517][T14807] should_failslab+0xc2/0x120 [ 583.446535][T14807] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 583.446551][T14807] ? __proc_create+0x2cb/0x8c0 [ 583.446573][T14807] __proc_create+0x2cb/0x8c0 [ 583.446592][T14807] ? __pfx___proc_create+0x10/0x10 [ 583.446613][T14807] ? _raw_write_unlock+0x28/0x50 [ 583.446627][T14807] ? proc_register+0x559/0x8a0 [ 583.446647][T14807] proc_create_reg+0x75/0x170 [ 583.446668][T14807] proc_create_seq_private+0x8e/0x180 [ 583.446688][T14807] ? __pfx_proc_create_seq_private+0x10/0x10 [ 583.446709][T14807] ? timer_init_key+0x155/0x330 [ 583.446727][T14807] ? __pfx_nl_fib_input+0x10/0x10 [ 583.446745][T14807] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 583.446762][T14807] ip_rt_do_proc_init+0xb2/0x1d0 [ 583.446779][T14807] ? __pfx_ip_rt_do_proc_init+0x10/0x10 [ 583.446794][T14807] ops_init+0x1e2/0x5f0 [ 583.446813][T14807] setup_net+0x118/0x3a0 [ 583.446828][T14807] ? __pfx_setup_net+0x10/0x10 [ 583.446842][T14807] ? lockdep_init_map_type+0x5c/0x250 [ 583.446862][T14807] ? mutex_init_lockdep+0xf1/0x120 [ 583.446886][T14807] copy_net_ns+0x46f/0x7c0 [ 583.446904][T14807] create_new_namespaces+0x3ea/0xac0 [ 583.446926][T14807] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 583.446944][T14807] ksys_unshare+0x473/0xad0 [ 583.446964][T14807] ? __pfx_ksys_unshare+0x10/0x10 [ 583.446983][T14807] ? xfd_validate_state+0x129/0x190 [ 583.447012][T14807] __x64_sys_unshare+0x31/0x40 [ 583.447030][T14807] do_syscall_64+0x10b/0xf80 [ 583.447045][T14807] ? clear_bhb_loop+0x40/0x90 [ 583.447063][T14807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.447078][T14807] RIP: 0033:0x7fb33739c819 [ 583.447092][T14807] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 583.447106][T14807] RSP: 002b:00007fb338291028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 583.447121][T14807] RAX: ffffffffffffffda RBX: 00007fb337615fa0 RCX: 00007fb33739c819 [ 583.447131][T14807] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 583.447140][T14807] RBP: 00007fb337432c91 R08: 0000000000000000 R09: 0000000000000000 [ 583.447149][T14807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 583.447158][T14807] R13: 00007fb337616038 R14: 00007fb337615fa0 R15: 00007ffcee9db588 [ 583.447178][T14807] [ 584.606358][T14826] can: request_module (can-proto-5) failed. [ 584.628033][T14826] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1905'. [ 585.636095][T14851] QAT: Device 55 not found [ 585.897742][T14855] netlink: 'syz.3.1912': attribute type 4 has an invalid length. [ 585.933199][T14860] netlink: 'syz.0.1913': attribute type 29 has an invalid length. [ 585.946508][T14855] netlink: 'syz.3.1912': attribute type 5 has an invalid length. [ 585.988138][T14860] netlink: 'syz.0.1913': attribute type 30 has an invalid length. [ 585.997423][T14855] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1912'. [ 586.044711][T14860] netlink: 'syz.0.1913': attribute type 31 has an invalid length. [ 586.084781][T14860] netlink: 'syz.0.1913': attribute type 32 has an invalid length. [ 586.131422][T14860] netlink: 'syz.0.1913': attribute type 33 has an invalid length. [ 586.183122][T14860] netlink: 'syz.0.1913': attribute type 35 has an invalid length. [ 586.236713][T14860] netlink: 'syz.0.1913': attribute type 37 has an invalid length. [ 586.276496][T14860] netlink: 18 bytes leftover after parsing attributes in process `syz.0.1913'. [ 586.592680][T14864] zswap: compressor not available syzkaller syzkaller login: [ 586.918881][T14883] FAULT_INJECTION: forcing a failure. [ 586.918881][T14883] name failslab, interval 1, probability 0, space 0, times 0 [ 587.043513][T14883] CPU: 0 UID: 0 PID: 14883 Comm: syz.2.1917 Tainted: G L syzkaller #0 PREEMPT(full) [ 587.043541][T14883] Tainted: [L]=SOFTLOCKUP [ 587.043546][T14883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 587.043556][T14883] Call Trace: [ 587.043562][T14883] [ 587.043569][T14883] dump_stack_lvl+0x100/0x190 [ 587.043598][T14883] should_fail_ex.cold+0x5/0xa [ 587.043618][T14883] should_failslab+0xc2/0x120 [ 587.043636][T14883] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 587.043656][T14883] ? __d_alloc+0x34/0xa80 [ 587.043675][T14883] ? __pfx_inode_set_ctime_to_ts+0x10/0x10 [ 587.043694][T14883] ? lockdep_hardirqs_on+0x78/0x100 [ 587.043712][T14883] __d_alloc+0x34/0xa80 [ 587.043733][T14883] d_alloc+0x4a/0x1e0 [ 587.043754][T14883] d_alloc_name+0x83/0xb0 [ 587.043772][T14883] ? __pfx_d_alloc_name+0x10/0x10 [ 587.043792][T14883] ? dput.part.0+0xdd/0x570 [ 587.043816][T14883] simple_fill_super+0x4c3/0x680 [ 587.043838][T14883] ? __pfx_nfsd_fill_super+0x10/0x10 [ 587.043860][T14883] nfsd_fill_super+0x98/0x560 [ 587.043883][T14883] ? __pfx_nfsd_fill_super+0x10/0x10 [ 587.043904][T14883] get_tree_keyed+0x10e/0x1d0 [ 587.043922][T14883] vfs_get_tree+0x92/0x320 [ 587.043936][T14883] path_mount+0x7d0/0x23d0 [ 587.043959][T14883] ? __pfx_path_mount+0x10/0x10 [ 587.043978][T14883] ? lockdep_hardirqs_on+0x78/0x100 [ 587.044003][T14883] ? putname+0xb1/0x110 [ 587.044022][T14883] ? kmem_cache_free+0x124/0x690 [ 587.044053][T14883] ? __x64_sys_mount+0x293/0x310 [ 587.044073][T14883] __x64_sys_mount+0x293/0x310 [ 587.044094][T14883] ? __pfx___x64_sys_mount+0x10/0x10 [ 587.044116][T14883] ? rcu_is_watching+0x12/0xc0 [ 587.044132][T14883] do_syscall_64+0x10b/0xf80 [ 587.044152][T14883] ? clear_bhb_loop+0x40/0x90 [ 587.044170][T14883] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.044184][T14883] RIP: 0033:0x7f5158d9c819 [ 587.044198][T14883] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 587.044213][T14883] RSP: 002b:00007f5159d0e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 587.044228][T14883] RAX: ffffffffffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 587.044239][T14883] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 587.044248][T14883] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 587.044257][T14883] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000 [ 587.044266][T14883] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 587.044286][T14883] syzkaller syzkaller login: [ 589.174759][T14919] QAT: Device 48 not found [ 589.934287][T14936] FAULT_INJECTION: forcing a failure. [ 589.934287][T14936] name failslab, interval 1, probability 0, space 0, times 0 [ 589.979830][T14936] CPU: 0 UID: 0 PID: 14936 Comm: syz.3.1931 Tainted: G L syzkaller #0 PREEMPT(full) [ 589.979861][T14936] Tainted: [L]=SOFTLOCKUP [ 589.979867][T14936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 589.979876][T14936] Call Trace: [ 589.979882][T14936] [ 589.979888][T14936] dump_stack_lvl+0x100/0x190 [ 589.979917][T14936] should_fail_ex.cold+0x5/0xa [ 589.979937][T14936] ? snd_pcm_plugin_build+0x64/0x650 [ 589.979958][T14936] should_failslab+0xc2/0x120 [ 589.979977][T14936] __kmalloc_noprof+0xe0/0x850 [ 589.979993][T14936] ? snd_pcm_hw_params+0x241/0x1bf0 [ 589.980018][T14936] snd_pcm_plugin_build+0x64/0x650 [ 589.980040][T14936] snd_pcm_plugin_build_io+0x207/0x5f0 [ 589.980063][T14936] ? __pfx_snd_pcm_plugin_build_io+0x10/0x10 [ 589.980085][T14936] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 589.980110][T14936] snd_pcm_oss_change_params_locked+0x2eb3/0x39f0 [ 589.980139][T14936] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 589.980173][T14936] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 589.980196][T14936] snd_pcm_oss_ioctl+0x1bf1/0x3700 [ 589.980217][T14936] ? __fget_files+0x215/0x3d0 [ 589.980233][T14936] ? hook_file_ioctl_common+0x149/0x410 [ 589.980249][T14936] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 589.980271][T14936] ? __fget_files+0x21f/0x3d0 [ 589.980290][T14936] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 589.980310][T14936] __x64_sys_ioctl+0x18e/0x210 [ 589.980326][T14936] do_syscall_64+0x10b/0xf80 [ 589.980342][T14936] ? clear_bhb_loop+0x40/0x90 [ 589.980360][T14936] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.980375][T14936] RIP: 0033:0x7fe0f119c819 [ 589.980388][T14936] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 589.980404][T14936] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 589.980419][T14936] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 589.980428][T14936] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 589.980437][T14936] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 589.980446][T14936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 589.980454][T14936] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 589.980474][T14936] [ 590.701212][T14944] FAULT_INJECTION: forcing a failure. [ 590.701212][T14944] name failslab, interval 1, probability 0, space 0, times 0 [ 590.770963][T14944] CPU: 0 UID: 0 PID: 14944 Comm: syz.1.1934 Tainted: G L syzkaller #0 PREEMPT(full) [ 590.770990][T14944] Tainted: [L]=SOFTLOCKUP [ 590.770995][T14944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 590.771005][T14944] Call Trace: [ 590.771010][T14944] [ 590.771017][T14944] dump_stack_lvl+0x100/0x190 [ 590.771046][T14944] should_fail_ex.cold+0x5/0xa [ 590.771066][T14944] should_failslab+0xc2/0x120 [ 590.771085][T14944] __kvmalloc_node_noprof+0xfa/0xa00 [ 590.771101][T14944] ? seq_read_iter+0x819/0x1270 [ 590.771123][T14944] seq_read_iter+0x819/0x1270 [ 590.771148][T14944] proc_reg_read_iter+0x220/0x310 [ 590.771165][T14944] ? __pfx_proc_reg_read_iter+0x10/0x10 [ 590.771183][T14944] vfs_read+0x825/0xb30 [ 590.771202][T14944] ? __pfx_vfs_read+0x10/0x10 [ 590.771231][T14944] ksys_read+0x12a/0x250 [ 590.771248][T14944] ? __pfx_ksys_read+0x10/0x10 [ 590.771265][T14944] ? rcu_is_watching+0x12/0xc0 [ 590.771283][T14944] do_syscall_64+0x10b/0xf80 [ 590.771297][T14944] ? clear_bhb_loop+0x40/0x90 [ 590.771315][T14944] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 590.771331][T14944] RIP: 0033:0x7f583299c819 [ 590.771344][T14944] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 590.771358][T14944] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 590.771373][T14944] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 590.771383][T14944] RDX: 0000000000008000 RSI: 0000200000000000 RDI: 0000000000000006 [ 590.771392][T14944] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 590.771401][T14944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 590.771409][T14944] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 590.771429][T14944] [ 591.535645][T14958] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1937'. [ 591.899352][T14941] QAT: Device 48 not found [ 592.215207][T14968] QAT: Device 50 not found [ 593.197515][T14984] QAT: Device 50 not found [ 594.630264][T15006] Console: switching to colour VGA+ 80x25 [ 595.188104][T15008] Process accounting resumed [ 595.459803][T15023] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1949'. [ 595.624031][T15025] QAT: Device 53 not found [ 596.445673][T15042] FAULT_INJECTION: forcing a failure. [ 596.445673][T15042] name failslab, interval 1, probability 0, space 0, times 0 [ 596.553752][T15042] CPU: 0 UID: 0 PID: 15042 Comm: syz.1.1954 Tainted: G L syzkaller #0 PREEMPT(full) [ 596.553782][T15042] Tainted: [L]=SOFTLOCKUP [ 596.553788][T15042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 596.553798][T15042] Call Trace: [ 596.553804][T15042] [ 596.553810][T15042] dump_stack_lvl+0x100/0x190 [ 596.553846][T15042] should_fail_ex.cold+0x5/0xa [ 596.553866][T15042] ? lsm_blob_alloc+0x68/0x90 [ 596.553884][T15042] should_failslab+0xc2/0x120 [ 596.553904][T15042] __kmalloc_noprof+0xe0/0x850 [ 596.553920][T15042] ? down_write_nested+0x14f/0x200 [ 596.553946][T15042] lsm_blob_alloc+0x68/0x90 [ 596.553964][T15042] security_sb_alloc+0x25/0x240 [ 596.553985][T15042] alloc_super+0x24c/0xd20 [ 596.554004][T15042] ? __pfx_mqueue_fill_super+0x10/0x10 [ 596.554024][T15042] sget_fc+0x117/0xc70 [ 596.554039][T15042] ? __pfx_set_anon_super_fc+0x10/0x10 [ 596.554055][T15042] ? __pfx_mqueue_fill_super+0x10/0x10 [ 596.554074][T15042] get_tree_nodev+0x28/0x190 [ 596.554091][T15042] mqueue_get_tree+0xf1/0x130 [ 596.554110][T15042] vfs_get_tree+0x92/0x320 [ 596.554125][T15042] fc_mount_longterm+0x1a/0x270 [ 596.554144][T15042] mq_init_ns+0x482/0x820 [ 596.554168][T15042] copy_ipcs+0x3dd/0x7e0 [ 596.554191][T15042] create_new_namespaces+0x20a/0xac0 [ 596.554209][T15042] ? security_capable+0x80/0x260 [ 596.554232][T15042] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 596.554251][T15042] ksys_unshare+0x473/0xad0 [ 596.554272][T15042] ? __pfx_ksys_unshare+0x10/0x10 [ 596.554290][T15042] ? xfd_validate_state+0x129/0x190 [ 596.554318][T15042] __x64_sys_unshare+0x31/0x40 [ 596.554337][T15042] do_syscall_64+0x10b/0xf80 [ 596.554352][T15042] ? clear_bhb_loop+0x40/0x90 [ 596.554370][T15042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 596.554385][T15042] RIP: 0033:0x7f583299c819 [ 596.554399][T15042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 596.554413][T15042] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 596.554428][T15042] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 596.554437][T15042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 596.554446][T15042] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 596.554455][T15042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 596.554464][T15042] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 596.554484][T15042] [ 597.451275][T15048] FAULT_INJECTION: forcing a failure. [ 597.451275][T15048] name failslab, interval 1, probability 0, space 0, times 0 [ 597.495893][T15048] CPU: 0 UID: 0 PID: 15048 Comm: syz.3.1957 Tainted: G L syzkaller #0 PREEMPT(full) [ 597.495921][T15048] Tainted: [L]=SOFTLOCKUP [ 597.495927][T15048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 597.495936][T15048] Call Trace: [ 597.495941][T15048] [ 597.495948][T15048] dump_stack_lvl+0x100/0x190 [ 597.495977][T15048] should_fail_ex.cold+0x5/0xa [ 597.495998][T15048] should_failslab+0xc2/0x120 [ 597.496017][T15048] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 597.496032][T15048] ? skb_clone+0x190/0x400 [ 597.496051][T15048] skb_clone+0x190/0x400 [ 597.496065][T15048] netlink_deliver_tap+0xaed/0xcc0 [ 597.496085][T15048] netlink_unicast+0x70c/0x870 [ 597.496105][T15048] ? __pfx_netlink_unicast+0x10/0x10 [ 597.496120][T15048] ? idr_get_next+0xec/0x150 [ 597.496141][T15048] ctrl_getfamily+0x417/0x550 [ 597.496160][T15048] ? __pfx_ctrl_getfamily+0x10/0x10 [ 597.496179][T15048] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 597.496198][T15048] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 597.496221][T15048] genl_family_rcv_msg_doit+0x214/0x300 [ 597.496242][T15048] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 597.496260][T15048] ? genl_get_cmd+0x3ef/0x720 [ 597.496282][T15048] ? __dev_queue_xmit+0x5af/0x47e0 [ 597.496301][T15048] ? __radix_tree_lookup+0x217/0x2b0 [ 597.496325][T15048] genl_rcv_msg+0x560/0x800 [ 597.496345][T15048] ? __pfx_genl_rcv_msg+0x10/0x10 [ 597.496363][T15048] ? __pfx_ctrl_getfamily+0x10/0x10 [ 597.496424][T15048] netlink_rcv_skb+0x159/0x420 [ 597.496441][T15048] ? __pfx_genl_rcv_msg+0x10/0x10 [ 597.496460][T15048] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 597.496485][T15048] ? netlink_deliver_tap+0x1ae/0xcc0 [ 597.496502][T15048] genl_rcv+0x28/0x40 [ 597.496518][T15048] netlink_unicast+0x5aa/0x870 [ 597.496537][T15048] ? __pfx_netlink_unicast+0x10/0x10 [ 597.496560][T15048] netlink_sendmsg+0x8b0/0xda0 [ 597.496578][T15048] ? __pfx_netlink_sendmsg+0x10/0x10 [ 597.496597][T15048] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 597.496621][T15048] __sys_sendto+0x468/0x4b0 [ 597.496642][T15048] ? __pfx_netlink_sendmsg+0x10/0x10 [ 597.496658][T15048] ? __pfx___sys_sendto+0x10/0x10 [ 597.496694][T15048] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 597.496715][T15048] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 597.496747][T15048] __x64_sys_sendto+0xe0/0x1c0 [ 597.496768][T15048] ? do_syscall_64+0x90/0xf80 [ 597.496783][T15048] ? lockdep_hardirqs_on+0x78/0x100 [ 597.496798][T15048] do_syscall_64+0x10b/0xf80 [ 597.496812][T15048] ? clear_bhb_loop+0x40/0x90 [ 597.496830][T15048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.496845][T15048] RIP: 0033:0x7fe0f115d04e [ 597.496859][T15048] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 597.496873][T15048] RSP: 002b:00007fe0f20bae88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 597.496888][T15048] RAX: ffffffffffffffda RBX: 00007fe0f20bc6c0 RCX: 00007fe0f115d04e [ 597.496897][T15048] RDX: 0000000000000028 RSI: 00007fe0f20bb000 RDI: 0000000000000005 [ 597.496907][T15048] RBP: 0000000000000000 R08: 00007fe0f20baf04 R09: 000000000000000c [ 597.496916][T15048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 597.496925][T15048] R13: 00007fe0f20baf58 R14: 00007fe0f20bb000 R15: 0000000000000000 [ 597.496945][T15048] [ 597.843319][T15054] QAT: Device 48 not found [ 599.390833][T15071] FAULT_INJECTION: forcing a failure. [ 599.390833][T15071] name failslab, interval 1, probability 0, space 0, times 0 [ 599.480417][T15071] CPU: 0 UID: 0 PID: 15071 Comm: syz.0.1962 Tainted: G L syzkaller #0 PREEMPT(full) [ 599.480445][T15071] Tainted: [L]=SOFTLOCKUP [ 599.480450][T15071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 599.480460][T15071] Call Trace: [ 599.480465][T15071] [ 599.480471][T15071] dump_stack_lvl+0x100/0x190 [ 599.480505][T15071] should_fail_ex.cold+0x5/0xa [ 599.480525][T15071] should_failslab+0xc2/0x120 [ 599.480545][T15071] __kmalloc_cache_noprof+0x7a/0x6f0 [ 599.480566][T15071] ? init_srcu_struct_fields+0xa69/0xfa0 [ 599.480591][T15071] init_srcu_struct_fields+0xa69/0xfa0 [ 599.480613][T15071] blk_mq_alloc_tag_set+0x3cc/0x1330 [ 599.480634][T15071] ? idr_alloc+0xdd/0x130 [ 599.480649][T15071] ? __pfx_idr_alloc+0x10/0x10 [ 599.480669][T15071] loop_add+0x3b7/0xb60 [ 599.480690][T15071] ? __pfx_loop_add+0x10/0x10 [ 599.480721][T15071] ? find_held_lock+0x2b/0x80 [ 599.480737][T15071] ? __fget_files+0x215/0x3d0 [ 599.480756][T15071] loop_control_ioctl+0xae/0x620 [ 599.480778][T15071] ? __pfx_loop_control_ioctl+0x10/0x10 [ 599.480802][T15071] ? __pfx_loop_control_ioctl+0x10/0x10 [ 599.480823][T15071] __x64_sys_ioctl+0x18e/0x210 [ 599.480839][T15071] do_syscall_64+0x10b/0xf80 [ 599.480854][T15071] ? clear_bhb_loop+0x40/0x90 [ 599.480872][T15071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 599.480887][T15071] RIP: 0033:0x7fb33739c819 [ 599.480901][T15071] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 599.480915][T15071] RSP: 002b:00007fb338291028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 599.480930][T15071] RAX: ffffffffffffffda RBX: 00007fb337615fa0 RCX: 00007fb33739c819 [ 599.480939][T15071] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009 [ 599.480949][T15071] RBP: 00007fb337432c91 R08: 0000000000000000 R09: 0000000000000000 [ 599.480957][T15071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 599.480966][T15071] R13: 00007fb337616038 R14: 00007fb337615fa0 R15: 00007ffcee9db588 [ 599.480986][T15071] [ 600.412953][T15077] QAT: Device 53 not found [ 603.572086][T15135] bridge0: port 3(netdevsim2) entered blocking state [ 603.610321][T15135] bridge0: port 3(netdevsim2) entered disabled state [ 603.650751][T15135] netdevsim netdevsim3 netdevsim2: entered allmulticast mode [ 603.703390][T15135] netdevsim netdevsim3 netdevsim2: entered promiscuous mode [ 603.741979][T15135] bridge0: port 3(netdevsim2) entered blocking state [ 603.748847][T15135] bridge0: port 3(netdevsim2) entered forwarding state [ 604.319591][T15148] QAT: Device 50 not found [ 604.432627][T15150] QAT: Device 48 not found [ 605.104022][T15161] QAT: Device 55 not found [ 605.390607][T15170] __vm_enough_memory: pid: 15170, comm: syz.0.1984, bytes: 4398046511104 not enough memory for the allocation [ 605.452075][T15163] FAULT_INJECTION: forcing a failure. [ 605.452075][T15163] name failslab, interval 1, probability 0, space 0, times 0 [ 605.464988][T15163] CPU: 0 UID: 0 PID: 15163 Comm: syz.2.1983 Tainted: G L syzkaller #0 PREEMPT(full) [ 605.465016][T15163] Tainted: [L]=SOFTLOCKUP [ 605.465022][T15163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 605.465031][T15163] Call Trace: [ 605.465038][T15163] [ 605.465044][T15163] dump_stack_lvl+0x100/0x190 [ 605.465072][T15163] should_fail_ex.cold+0x5/0xa [ 605.465092][T15163] should_failslab+0xc2/0x120 [ 605.465111][T15163] __kmalloc_cache_noprof+0x7a/0x6f0 [ 605.465133][T15163] ? snd_ctl_notify+0x38a/0x6b0 [ 605.465151][T15163] snd_ctl_notify+0x38a/0x6b0 [ 605.465171][T15163] snd_ctl_notify_one+0x15a/0x250 [ 605.465187][T15163] ? __pfx_snd_ctl_notify_one+0x10/0x10 [ 605.465207][T15163] ? mark_held_locks+0x40/0x70 [ 605.465231][T15163] __snd_ctl_add_replace+0x5f3/0x830 [ 605.465251][T15163] ? __pfx___snd_ctl_add_replace+0x10/0x10 [ 605.465270][T15163] ? __kmalloc_noprof+0x320/0x850 [ 605.465285][T15163] ? snd_ctl_new+0x13c/0x1a0 [ 605.465301][T15163] snd_ctl_elem_add+0x832/0x1350 [ 605.465321][T15163] ? __might_fault+0xc5/0x140 [ 605.465335][T15163] ? __might_fault+0xc5/0x140 [ 605.465350][T15163] ? __pfx_snd_ctl_elem_add+0x10/0x10 [ 605.465371][T15163] snd_ctl_elem_add_user+0xc5/0x170 [ 605.465387][T15163] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 605.465403][T15163] ? find_held_lock+0x2b/0x80 [ 605.465433][T15163] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 605.465451][T15163] ? do_vfs_ioctl+0x226/0x13e0 [ 605.465468][T15163] snd_ctl_ioctl+0xb68/0x1290 [ 605.465484][T15163] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 605.465503][T15163] ? find_held_lock+0x2b/0x80 [ 605.465517][T15163] ? __fget_files+0x215/0x3d0 [ 605.465533][T15163] ? hook_file_ioctl_common+0x149/0x410 [ 605.465552][T15163] ? __fget_files+0x21f/0x3d0 [ 605.465571][T15163] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 605.465588][T15163] __x64_sys_ioctl+0x18e/0x210 [ 605.465604][T15163] do_syscall_64+0x10b/0xf80 [ 605.465619][T15163] ? clear_bhb_loop+0x40/0x90 [ 605.465637][T15163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 605.465653][T15163] RIP: 0033:0x7f5158d9c819 [ 605.465667][T15163] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 605.465681][T15163] RSP: 002b:00007f5159d0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 605.465705][T15163] RAX: ffffffffffffffda RBX: 00007f5159015fa0 RCX: 00007f5158d9c819 [ 605.465715][T15163] RDX: 0000200000000580 RSI: 00000000c1105517 RDI: 0000000000000009 [ 605.465730][T15163] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 605.465739][T15163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 605.465748][T15163] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 605.465769][T15163] [ 605.465789][T15163] snd_virmidi snd_virmidi.0: No memory available to allocate event [ 606.200026][T15172] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1985'. [ 606.661216][T15184] QAT: Device 56 not found [ 607.181876][T15187] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1988'. [ 607.267712][T15187] netlink: 'syz.0.1988': attribute type 3 has an invalid length. [ 607.308097][T15187] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1988'. [ 607.460655][T15195] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1990'. [ 607.565394][T15199] vivid-007: ================= START STATUS ================= [ 607.601423][T15199] vivid-007: Generate PTS: true [ 607.633342][T15199] vivid-007: Generate SCR: true [ 607.659080][T15199] tpg source WxH: 320x240 (Y'CbCr) [ 607.681220][T15199] tpg field: 1 [ 607.699707][T15199] tpg crop: (0,0)/320x240 [ 607.722015][T15199] tpg compose: (0,0)/320x240 [ 607.743915][T15199] tpg colorspace: 8 [ 607.767337][T15199] tpg transfer function: 0/0 [ 607.807307][T15199] tpg Y'CbCr encoding: 0/0 [ 607.832974][T15199] tpg quantization: 0/0 [ 607.885661][T15199] tpg RGB range: 0/2 [ 607.914096][T15199] vivid-007: ================== END STATUS ================== [ 610.331308][T15251] QAT: Device 53 not found [ 610.877890][T15261] sg_write: data in/out 262108/65454 bytes for SCSI command 0x0-- guessing data in; [ 610.877890][T15261] program syz.3.2002 not setting count and/or reply_len properly [ 611.244847][T15264] syz.0.2003 uses obsolete (PF_INET,SOCK_PACKET) [ 611.277965][T15264] FAULT_INJECTION: forcing a failure. [ 611.277965][T15264] name failslab, interval 1, probability 0, space 0, times 0 [ 611.298033][T15269] QAT: Device 53 not found [ 611.328213][T15264] CPU: 0 UID: 0 PID: 15264 Comm: syz.0.2003 Tainted: G L syzkaller #0 PREEMPT(full) [ 611.328240][T15264] Tainted: [L]=SOFTLOCKUP [ 611.328245][T15264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 611.328254][T15264] Call Trace: [ 611.328260][T15264] [ 611.328266][T15264] dump_stack_lvl+0x100/0x190 [ 611.328295][T15264] should_fail_ex.cold+0x5/0xa [ 611.328315][T15264] should_failslab+0xc2/0x120 [ 611.328335][T15264] __kmalloc_cache_node_noprof+0x7d/0x770 [ 611.328352][T15264] ? __get_vm_area_node+0x101/0x330 [ 611.328375][T15264] __get_vm_area_node+0x101/0x330 [ 611.328396][T15264] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 611.328416][T15264] get_vm_area_caller+0x71/0xa0 [ 611.328435][T15264] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 611.328455][T15264] vmap+0x131/0x2f0 [ 611.328474][T15264] ? __pfx_vmap+0x10/0x10 [ 611.328497][T15264] ringbuf_map_alloc+0x3a1/0x8b0 [ 611.328520][T15264] ? __pfx_ringbuf_map_mem_usage+0x10/0x10 [ 611.328539][T15264] map_create+0x84e/0x2ba0 [ 611.328555][T15264] ? __pfx_event_filter_pid_sched_wakeup_probe_post+0x10/0x10 [ 611.328575][T15264] ? preempt_schedule_thunk+0x16/0x30 [ 611.328600][T15264] ? __pfx_map_create+0x10/0x10 [ 611.328615][T15264] ? __might_fault+0xc5/0x140 [ 611.328629][T15264] ? __might_fault+0xc5/0x140 [ 611.328650][T15264] __sys_bpf+0x2091/0x4b90 [ 611.328668][T15264] ? futex_private_hash_put+0x107/0x1c0 [ 611.328689][T15264] ? __pfx___sys_bpf+0x10/0x10 [ 611.328710][T15264] ? __pfx_futex_wake+0x10/0x10 [ 611.328727][T15264] ? errseq_sample+0x51/0x70 [ 611.328743][T15264] ? file_init_path+0x48e/0x670 [ 611.328765][T15264] ? do_futex+0x192/0x350 [ 611.328795][T15264] ? xfd_validate_state+0x129/0x190 [ 611.328824][T15264] __x64_sys_bpf+0x7b/0xc0 [ 611.328844][T15264] ? lockdep_hardirqs_on+0x78/0x100 [ 611.328860][T15264] do_syscall_64+0x10b/0xf80 [ 611.328874][T15264] ? clear_bhb_loop+0x40/0x90 [ 611.328893][T15264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 611.328908][T15264] RIP: 0033:0x7fb33739c819 [ 611.328921][T15264] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 611.328936][T15264] RSP: 002b:00007fb338291028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 611.328951][T15264] RAX: ffffffffffffffda RBX: 00007fb337615fa0 RCX: 00007fb33739c819 [ 611.328961][T15264] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 611.328970][T15264] RBP: 00007fb337432c91 R08: 0000000000000000 R09: 0000000000000000 [ 611.328979][T15264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 611.328988][T15264] R13: 00007fb337616038 R14: 00007fb337615fa0 R15: 00007ffcee9db588 [ 611.329008][T15264] [ 611.796122][T15275] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2006'. [ 611.816281][T15275] bond0: (slave bond_slave_0): Releasing backup interface [ 612.030687][T15277] QAT: Device 53 not found [ 612.440149][T15293] QAT: Device 48 not found [ 612.818761][T15299] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2012'. [ 613.426460][T15322] QAT: Device 48 not found [ 616.558832][T15365] QAT: Device 49 not found [ 617.220853][T15374] QAT: Device 53 not found [ 617.313617][T15379] FAULT_INJECTION: forcing a failure. [ 617.313617][T15379] name failslab, interval 1, probability 0, space 0, times 0 [ 617.370743][T15379] CPU: 0 UID: 0 PID: 15379 Comm: syz.0.2028 Tainted: G L syzkaller #0 PREEMPT(full) [ 617.370771][T15379] Tainted: [L]=SOFTLOCKUP [ 617.370777][T15379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 617.370786][T15379] Call Trace: [ 617.370792][T15379] [ 617.370798][T15379] dump_stack_lvl+0x100/0x190 [ 617.370827][T15379] should_fail_ex.cold+0x5/0xa [ 617.370847][T15379] should_failslab+0xc2/0x120 [ 617.370866][T15379] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 617.370884][T15379] ? alloc_inode+0x183/0x250 [ 617.370910][T15379] alloc_inode+0x183/0x250 [ 617.370931][T15379] new_inode+0x22/0x1c0 [ 617.370965][T15379] ? dput.part.0+0xdd/0x570 [ 617.370991][T15379] simple_fill_super+0x2d9/0x680 [ 617.371013][T15379] ? __pfx_nfsd_fill_super+0x10/0x10 [ 617.371044][T15379] nfsd_fill_super+0x98/0x560 [ 617.371066][T15379] ? __pfx_set_anon_super_fc+0x10/0x10 [ 617.371082][T15379] ? __pfx_nfsd_fill_super+0x10/0x10 [ 617.371104][T15379] get_tree_keyed+0x10e/0x1d0 [ 617.371121][T15379] vfs_get_tree+0x92/0x320 [ 617.371136][T15379] path_mount+0x7d0/0x23d0 [ 617.371159][T15379] ? __pfx_path_mount+0x10/0x10 [ 617.371177][T15379] ? lockdep_hardirqs_on+0x78/0x100 [ 617.371195][T15379] ? putname+0xb1/0x110 [ 617.371212][T15379] ? kmem_cache_free+0x124/0x690 [ 617.371240][T15379] ? __x64_sys_mount+0x293/0x310 [ 617.371258][T15379] __x64_sys_mount+0x293/0x310 [ 617.371279][T15379] ? __pfx___x64_sys_mount+0x10/0x10 [ 617.371301][T15379] ? rcu_is_watching+0x12/0xc0 [ 617.371318][T15379] do_syscall_64+0x10b/0xf80 [ 617.371332][T15379] ? clear_bhb_loop+0x40/0x90 [ 617.371350][T15379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 617.371365][T15379] RIP: 0033:0x7fb33739c819 [ 617.371379][T15379] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 617.371393][T15379] RSP: 002b:00007fb338291028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 617.371408][T15379] RAX: ffffffffffffffda RBX: 00007fb337615fa0 RCX: 00007fb33739c819 [ 617.371417][T15379] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 617.371426][T15379] RBP: 00007fb337432c91 R08: 0000000000000000 R09: 0000000000000000 [ 617.371435][T15379] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000 [ 617.371443][T15379] R13: 00007fb337616038 R14: 00007fb337615fa0 R15: 00007ffcee9db588 [ 617.371471][T15379] [ 617.894504][T15395] ubi0: attaching mtd0 [ 617.911674][T15395] ubi0: scanning is finished [ 617.928022][T15395] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 618.147545][T15395] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 619.237351][T15418] QAT: Device 52 not found [ 619.650254][T15427] QAT: Device 56 not found [ 620.074670][T15434] FAULT_INJECTION: forcing a failure. [ 620.074670][T15434] name failslab, interval 1, probability 0, space 0, times 0 [ 620.888302][T15434] CPU: 0 UID: 0 PID: 15434 Comm: syz.1.2040 Tainted: G L syzkaller #0 PREEMPT(full) [ 620.888329][T15434] Tainted: [L]=SOFTLOCKUP [ 620.888335][T15434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 620.888344][T15434] Call Trace: [ 620.888349][T15434] [ 620.888356][T15434] dump_stack_lvl+0x100/0x190 [ 620.888385][T15434] should_fail_ex.cold+0x5/0xa [ 620.888405][T15434] should_failslab+0xc2/0x120 [ 620.888425][T15434] __kmalloc_node_noprof+0xe6/0x850 [ 620.888440][T15434] ? blk_mq_alloc_tag_set+0x57a/0x1330 [ 620.888464][T15434] ? rt_mutex_debug_task_free+0x1a0/0x1e0 [ 620.888492][T15434] blk_mq_alloc_tag_set+0x57a/0x1330 [ 620.888511][T15434] ? idr_alloc+0x77/0x130 [ 620.888534][T15434] loop_add+0x3b7/0xb60 [ 620.888555][T15434] ? __pfx_loop_add+0x10/0x10 [ 620.888588][T15434] ? find_held_lock+0x2b/0x80 [ 620.888603][T15434] ? __fget_files+0x215/0x3d0 [ 620.888623][T15434] loop_control_ioctl+0xae/0x620 [ 620.888645][T15434] ? __pfx_loop_control_ioctl+0x10/0x10 [ 620.888668][T15434] ? __pfx_loop_control_ioctl+0x10/0x10 [ 620.888690][T15434] __x64_sys_ioctl+0x18e/0x210 [ 620.888706][T15434] do_syscall_64+0x10b/0xf80 [ 620.888721][T15434] ? clear_bhb_loop+0x40/0x90 [ 620.888739][T15434] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 620.888754][T15434] RIP: 0033:0x7f583299c819 [ 620.888767][T15434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 620.888781][T15434] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 620.888796][T15434] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 620.888806][T15434] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000009 [ 620.888823][T15434] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 620.888833][T15434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 620.888842][T15434] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 620.888862][T15434] [ 621.353546][T15453] __vm_enough_memory: pid: 15453, comm: syz.3.2043, bytes: 4398046511104 not enough memory for the allocation [ 621.746340][T15455] FAULT_INJECTION: forcing a failure. [ 621.746340][T15455] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 621.778563][T15455] CPU: 0 UID: 0 PID: 15455 Comm: syz.3.2044 Tainted: G L syzkaller #0 PREEMPT(full) [ 621.778592][T15455] Tainted: [L]=SOFTLOCKUP [ 621.778603][T15455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 621.778613][T15455] Call Trace: [ 621.778618][T15455] [ 621.778625][T15455] dump_stack_lvl+0x100/0x190 [ 621.778654][T15455] should_fail_ex.cold+0x5/0xa [ 621.778671][T15455] ? prepare_alloc_pages+0x16d/0x5f0 [ 621.778693][T15455] should_fail_alloc_page+0xeb/0x140 [ 621.778721][T15455] prepare_alloc_pages+0x1f0/0x5f0 [ 621.778745][T15455] __alloc_frozen_pages_noprof+0x19a/0x2bd0 [ 621.778771][T15455] ? stack_trace_save+0x8e/0xc0 [ 621.778788][T15455] ? __pfx_stack_trace_save+0x10/0x10 [ 621.778807][T15455] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 621.778823][T15455] ? stack_depot_save_flags+0x27/0x9d0 [ 621.778845][T15455] ? kasan_save_stack+0x3f/0x50 [ 621.778861][T15455] ? kasan_save_stack+0x30/0x50 [ 621.778875][T15455] ? kasan_save_track+0x14/0x30 [ 621.778890][T15455] ? __kasan_kmalloc+0xaa/0xb0 [ 621.778906][T15455] ? do_file_open+0x20e/0x430 [ 621.778923][T15455] ? do_sys_openat2+0x10d/0x1e0 [ 621.778945][T15455] ? __x64_sys_openat+0x12d/0x210 [ 621.778974][T15455] ? do_syscall_64+0x10b/0xf80 [ 621.778989][T15455] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.779007][T15455] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 621.779026][T15455] ? policy_nodemask+0xed/0x4f0 [ 621.779046][T15455] alloc_pages_mpol+0x1fb/0x550 [ 621.779065][T15455] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 621.779089][T15455] alloc_pages_noprof+0x136/0x390 [ 621.779108][T15455] get_zeroed_page_noprof+0x18/0xb0 [ 621.779127][T15455] mon_alloc_buff+0xce/0x1b0 [ 621.779144][T15455] ? kasan_save_track+0x14/0x30 [ 621.779161][T15455] mon_bin_open+0x207/0x470 [ 621.779184][T15455] ? __pfx_mon_bin_open+0x10/0x10 [ 621.779209][T15455] chrdev_open+0x234/0x6a0 [ 621.779230][T15455] ? __pfx_chrdev_open+0x10/0x10 [ 621.779249][T15455] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 621.779272][T15455] do_dentry_open+0x6d8/0x1660 [ 621.779289][T15455] ? __pfx_chrdev_open+0x10/0x10 [ 621.779312][T15455] vfs_open+0x82/0x3f0 [ 621.779338][T15455] path_openat+0x208c/0x31a0 [ 621.779363][T15455] ? __pfx_path_openat+0x10/0x10 [ 621.779381][T15455] ? __pfx_clockevents_program_event+0x10/0x10 [ 621.779404][T15455] ? find_held_lock+0x2b/0x80 [ 621.779419][T15455] ? __hrtimer_rearm_deferred+0x24d/0x740 [ 621.779438][T15455] do_file_open+0x20e/0x430 [ 621.779457][T15455] ? __pfx_do_file_open+0x10/0x10 [ 621.779475][T15455] ? lockdep_hardirqs_on+0x78/0x100 [ 621.779507][T15455] ? alloc_fd+0x476/0x790 [ 621.779528][T15455] ? do_getname+0x191/0x390 [ 621.779551][T15455] do_sys_openat2+0x10d/0x1e0 [ 621.779585][T15455] ? __pfx_do_sys_openat2+0x10/0x10 [ 621.779611][T15455] ? __fget_files+0x21f/0x3d0 [ 621.779632][T15455] __x64_sys_openat+0x12d/0x210 [ 621.779655][T15455] ? __pfx___x64_sys_openat+0x10/0x10 [ 621.779682][T15455] ? rcu_is_watching+0x12/0xc0 [ 621.779699][T15455] do_syscall_64+0x10b/0xf80 [ 621.779722][T15455] ? clear_bhb_loop+0x40/0x90 [ 621.779747][T15455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 621.779763][T15455] RIP: 0033:0x7fe0f119c819 [ 621.779777][T15455] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 621.779791][T15455] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 621.779806][T15455] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 621.779817][T15455] RDX: 0000000000121200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 621.779827][T15455] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 621.779836][T15455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 621.779845][T15455] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 621.779865][T15455] [ 622.868651][T15464] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2046'. [ 623.510435][T15476] QAT: Device 49 not found [ 623.797059][T15482] QAT: Device 48 not found [ 624.519808][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.526707][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.489946][T15502] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 625.595065][T15502] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 625.826974][T15520] vivid-007: ================= START STATUS ================= [ 625.919032][T15502] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 625.943895][T15520] vivid-007: Generate PTS: true [ 625.975073][T15502] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 625.996148][T15520] vivid-007: Generate SCR: true [ 626.066319][T15520] tpg source WxH: 320x240 (Y'CbCr) [ 626.074535][T15502] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 626.127557][T15502] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 626.166785][T15520] tpg field: 1 [ 626.205829][T15520] tpg crop: (0,0)/320x240 [ 626.243995][T15520] tpg compose: (0,0)/320x240 [ 626.257700][T15502] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 626.288130][T15520] tpg colorspace: 8 [ 626.318233][T15502] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 626.334559][T15520] tpg transfer function: 0/0 [ 626.379596][T15520] tpg Y'CbCr encoding: 0/0 [ 626.419252][T15520] tpg quantization: 0/0 [ 626.463052][T15520] tpg RGB range: 0/2 [ 626.500366][T15520] vivid-007: ================== END STATUS ================== [ 626.531421][T15502] Process accounting paused [ 626.939206][ T30] audit: type=1107 audit(4294967359.550:7): pid=15525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 627.046039][ T30] audit: type=1107 audit(4294967359.660:8): pid=15525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 627.886429][T15532] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 627.953912][ T7475] Bluetooth: hci1: command 0x0406 tx timeout [ 628.020497][T15532] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 628.099870][T15532] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 628.142231][T15545] FAULT_INJECTION: forcing a failure. [ 628.142231][T15545] name failslab, interval 1, probability 0, space 0, times 0 [ 628.196927][T15532] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 628.203203][T15545] CPU: 0 UID: 0 PID: 15545 Comm: syz.1.2065 Tainted: G L syzkaller #0 PREEMPT(full) [ 628.203229][T15545] Tainted: [L]=SOFTLOCKUP [ 628.203235][T15545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 628.203245][T15545] Call Trace: [ 628.203252][T15545] [ 628.203258][T15545] dump_stack_lvl+0x100/0x190 [ 628.203288][T15545] should_fail_ex.cold+0x5/0xa [ 628.203308][T15545] should_failslab+0xc2/0x120 [ 628.203338][T15545] __kmalloc_cache_noprof+0x7a/0x6f0 [ 628.203361][T15545] ? usbdev_open+0x9d/0x870 [ 628.203381][T15545] usbdev_open+0x9d/0x870 [ 628.203398][T15545] ? kobject_get_unless_zero+0x156/0x200 [ 628.203417][T15545] ? __pfx_usbdev_open+0x10/0x10 [ 628.203432][T15545] ? chrdev_open+0x10b/0x6a0 [ 628.203450][T15545] ? chrdev_open+0x10b/0x6a0 [ 628.203471][T15545] ? __pfx_usbdev_open+0x10/0x10 [ 628.203487][T15545] chrdev_open+0x234/0x6a0 [ 628.203506][T15545] ? __pfx_apparmor_file_open+0x10/0x10 [ 628.203528][T15545] ? __pfx_chrdev_open+0x10/0x10 [ 628.203547][T15545] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 628.203570][T15545] do_dentry_open+0x6d8/0x1660 [ 628.203588][T15545] ? __pfx_chrdev_open+0x10/0x10 [ 628.203614][T15545] vfs_open+0x82/0x3f0 [ 628.203637][T15545] path_openat+0x208c/0x31a0 [ 628.203662][T15545] ? __pfx_path_openat+0x10/0x10 [ 628.203687][T15545] do_file_open+0x20e/0x430 [ 628.203707][T15545] ? __pfx_do_file_open+0x10/0x10 [ 628.203738][T15545] ? alloc_fd+0x476/0x790 [ 628.203757][T15545] ? do_getname+0x191/0x390 [ 628.203778][T15545] do_sys_openat2+0x10d/0x1e0 [ 628.203808][T15545] ? __pfx_do_sys_openat2+0x10/0x10 [ 628.203832][T15545] ? __fget_files+0x21f/0x3d0 [ 628.203853][T15545] __x64_sys_openat+0x12d/0x210 [ 628.203876][T15545] ? __pfx___x64_sys_openat+0x10/0x10 [ 628.203902][T15545] ? rcu_is_watching+0x12/0xc0 [ 628.203918][T15545] do_syscall_64+0x10b/0xf80 [ 628.203933][T15545] ? clear_bhb_loop+0x40/0x90 [ 628.203951][T15545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 628.203966][T15545] RIP: 0033:0x7f583299c819 [ 628.203986][T15545] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 628.204001][T15545] RSP: 002b:00007f58338a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 628.204017][T15545] RAX: ffffffffffffffda RBX: 00007f5832c16090 RCX: 00007f583299c819 [ 628.204027][T15545] RDX: 0000000000040101 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 628.204037][T15545] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 628.204046][T15545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 628.204055][T15545] R13: 00007f5832c16128 R14: 00007f5832c16090 R15: 00007fff3e1eade8 [ 628.204075][T15545] [ 629.380234][ T7475] Bluetooth: hci0: command 0x0406 tx timeout [ 630.039134][ T7475] Bluetooth: hci1: command 0x0406 tx timeout [ 630.113911][ T7475] Bluetooth: hci2: command 0x0406 tx timeout [ 630.274628][ T7475] Bluetooth: hci3: command 0x0406 tx timeout [ 630.379540][T15566] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2069'. [ 630.430997][T15566] netlink: 'syz.1.2069': attribute type 3 has an invalid length. [ 630.462880][T15566] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2069'. [ 631.394294][ T7475] Bluetooth: hci0: command 0x0406 tx timeout [ 631.460522][T15568] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2070'. [ 631.666895][T15587] QAT: Device 50 not found [ 632.194157][ T7475] Bluetooth: hci2: command 0x0406 tx timeout [ 632.227899][T15600] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2076'. [ 632.354128][ T7475] Bluetooth: hci3: command 0x0406 tx timeout [ 632.388947][T15600] bond0: (slave bond_slave_0): Releasing backup interface [ 632.430395][T15600] bond_slave_0 (unregistering): left promiscuous mode [ 633.750510][T15627] netlink: 'syz.0.2082': attribute type 1 has an invalid length. [ 633.824929][T15627] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2082'. [ 634.646016][T15645] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2083'. [ 635.250504][T15637] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2083'. [ 636.018842][T15665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2086'. [ 637.549298][T15697] ubi0: attaching mtd0 [ 637.630444][T15697] FAULT_INJECTION: forcing a failure. [ 637.630444][T15697] name failslab, interval 1, probability 0, space 0, times 0 [ 637.783624][T15697] CPU: 0 UID: 0 PID: 15697 Comm: syz.0.2092 Tainted: G L syzkaller #0 PREEMPT(full) [ 637.783651][T15697] Tainted: [L]=SOFTLOCKUP [ 637.783657][T15697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 637.783667][T15697] Call Trace: [ 637.783673][T15697] [ 637.783679][T15697] dump_stack_lvl+0x100/0x190 [ 637.783708][T15697] should_fail_ex.cold+0x5/0xa [ 637.783728][T15697] should_failslab+0xc2/0x120 [ 637.783747][T15697] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 637.783762][T15697] ? __kernfs_new_node+0xd2/0x9f0 [ 637.783787][T15697] __kernfs_new_node+0xd2/0x9f0 [ 637.783805][T15697] ? __pfx___kernfs_new_node+0x10/0x10 [ 637.783834][T15697] ? find_held_lock+0x2b/0x80 [ 637.783850][T15697] ? kernfs_root+0xee/0x2a0 [ 637.783865][T15697] ? kernfs_root+0xee/0x2a0 [ 637.783886][T15697] kernfs_new_node+0x11b/0x1a0 [ 637.783908][T15697] __kernfs_create_file+0x53/0x350 [ 637.783932][T15697] sysfs_add_file_mode_ns+0x207/0x3c0 [ 637.783953][T15697] internal_create_group+0x593/0xf40 [ 637.783975][T15697] ? __pfx_internal_create_group+0x10/0x10 [ 637.783991][T15697] ? kernfs_remove_by_name_ns+0xdf/0x120 [ 637.784017][T15697] sysfs_slab_add+0x1a4/0x1f0 [ 637.784036][T15697] do_kmem_cache_create+0x472/0x540 [ 637.784057][T15697] __kmem_cache_create_args+0x386/0x420 [ 637.784074][T15697] ubi_attach+0x32a/0x4d30 [ 637.784096][T15697] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 637.784118][T15697] ? ubi_msg+0x114/0x159 [ 637.784132][T15697] ? __pfx_ubi_msg+0x10/0x10 [ 637.784150][T15697] ? __pfx_ubi_attach+0x10/0x10 [ 637.784163][T15697] ? lockdep_init_map_type+0x5c/0x250 [ 637.784185][T15697] ? ubi_attach_mtd_dev+0x1353/0x32a0 [ 637.784200][T15697] ? __vmalloc_node_noprof+0xad/0xf0 [ 637.784220][T15697] ? ubi_attach_mtd_dev+0x1353/0x32a0 [ 637.784237][T15697] ubi_attach_mtd_dev+0x139f/0x32a0 [ 637.784261][T15697] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 637.784275][T15697] ? __pfx_get_mtd_device+0x10/0x10 [ 637.784300][T15697] ctrl_cdev_ioctl+0x36a/0x400 [ 637.784315][T15697] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 637.784336][T15697] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 637.784352][T15697] __x64_sys_ioctl+0x18e/0x210 [ 637.784369][T15697] do_syscall_64+0x10b/0xf80 [ 637.784384][T15697] ? clear_bhb_loop+0x40/0x90 [ 637.784402][T15697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 637.784418][T15697] RIP: 0033:0x7fb33739c819 [ 637.784432][T15697] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 637.784446][T15697] RSP: 002b:00007fb338291028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 637.784461][T15697] RAX: ffffffffffffffda RBX: 00007fb337615fa0 RCX: 00007fb33739c819 [ 637.784471][T15697] RDX: 0000000000000000 RSI: 0000000040186f40 RDI: 0000000000000005 [ 637.784481][T15697] RBP: 00007fb337432c91 R08: 0000000000000000 R09: 0000000000000000 [ 637.784490][T15697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 637.784499][T15697] R13: 00007fb337616038 R14: 00007fb337615fa0 R15: 00007ffcee9db588 [ 637.784519][T15697] [ 638.391856][T15711] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2095'. [ 639.084194][T15727] QAT: Device 52 not found [ 640.981098][T15697] SLUB: Unable to add cache ubi_aeb_slab_cache to sysfs [ 641.016826][T15697] ubi0: scanning is finished [ 641.054331][T15697] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 641.254268][T15697] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 641.437729][T15770] FAULT_INJECTION: forcing a failure. [ 641.437729][T15770] name failslab, interval 1, probability 0, space 0, times 0 [ 641.494636][T15770] CPU: 0 UID: 0 PID: 15770 Comm: syz.3.2101 Tainted: G L syzkaller #0 PREEMPT(full) [ 641.494664][T15770] Tainted: [L]=SOFTLOCKUP [ 641.494670][T15770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 641.494679][T15770] Call Trace: [ 641.494684][T15770] [ 641.494691][T15770] dump_stack_lvl+0x100/0x190 [ 641.494720][T15770] should_fail_ex.cold+0x5/0xa [ 641.494740][T15770] should_failslab+0xc2/0x120 [ 641.494759][T15770] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 641.494774][T15770] ? security_inode_alloc+0x3b/0x2c0 [ 641.494797][T15770] ? lockdep_init_map_type+0x5c/0x250 [ 641.494821][T15770] security_inode_alloc+0x3b/0x2c0 [ 641.494845][T15770] inode_init_always_gfp+0xcc0/0x1000 [ 641.494866][T15770] alloc_inode+0x8e/0x250 [ 641.494887][T15770] path_from_stashed+0x25b/0x750 [ 641.494906][T15770] ? do_raw_spin_unlock+0x145/0x1e0 [ 641.494933][T15770] ns_get_path+0x60/0x80 [ 641.494951][T15770] proc_ns_get_link+0x121/0x230 [ 641.494967][T15770] ? __pfx_proc_ns_get_link+0x10/0x10 [ 641.494985][T15770] ? atime_needs_update+0x8b/0x6b0 [ 641.495001][T15770] pick_link+0xd17/0x13c0 [ 641.495015][T15770] ? __pfx_proc_ns_get_link+0x10/0x10 [ 641.495032][T15770] step_into_slowpath+0x9ba/0xf90 [ 641.495052][T15770] ? __pfx_step_into_slowpath+0x10/0x10 [ 641.495067][T15770] ? find_held_lock+0x2b/0x80 [ 641.495088][T15770] path_openat+0xf95/0x31a0 [ 641.495111][T15770] ? __pfx_path_openat+0x10/0x10 [ 641.495136][T15770] do_file_open+0x20e/0x430 [ 641.495155][T15770] ? __pfx_do_file_open+0x10/0x10 [ 641.495186][T15770] ? alloc_fd+0x476/0x790 [ 641.495205][T15770] ? do_getname+0x191/0x390 [ 641.495226][T15770] do_sys_openat2+0x10d/0x1e0 [ 641.495249][T15770] ? __pfx_do_sys_openat2+0x10/0x10 [ 641.495271][T15770] ? __fget_files+0x21f/0x3d0 [ 641.495291][T15770] __x64_sys_openat+0x12d/0x210 [ 641.495313][T15770] ? __pfx___x64_sys_openat+0x10/0x10 [ 641.495338][T15770] ? rcu_is_watching+0x12/0xc0 [ 641.495355][T15770] do_syscall_64+0x10b/0xf80 [ 641.495369][T15770] ? clear_bhb_loop+0x40/0x90 [ 641.495395][T15770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.495411][T15770] RIP: 0033:0x7fe0f115d04e [ 641.495425][T15770] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 641.495439][T15770] RSP: 002b:00007fe0f20bbec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 641.495454][T15770] RAX: ffffffffffffffda RBX: 00007fe0f20bc6c0 RCX: 00007fe0f115d04e [ 641.495464][T15770] RDX: 0000000000000002 RSI: 00007fe0f20bbf90 RDI: ffffffffffffff9c [ 641.495473][T15770] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 641.495483][T15770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 641.495492][T15770] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 641.495512][T15770] [ 641.870352][T15780] kstrtoul() returned -22 for lu_gp_id [ 642.103753][ T30] audit: type=1800 audit(4294967374.480:9): pid=15780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2105" name="lu_gp_id" dev="configfs" ino=70013 res=0 errno=0 [ 643.074442][T15810] FAULT_INJECTION: forcing a failure. [ 643.074442][T15810] name failslab, interval 1, probability 0, space 0, times 0 [ 643.149196][T15810] CPU: 0 UID: 0 PID: 15810 Comm: syz.3.2111 Tainted: G L syzkaller #0 PREEMPT(full) [ 643.149224][T15810] Tainted: [L]=SOFTLOCKUP [ 643.149230][T15810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 643.149239][T15810] Call Trace: [ 643.149245][T15810] [ 643.149254][T15810] dump_stack_lvl+0x100/0x190 [ 643.149284][T15810] should_fail_ex.cold+0x5/0xa [ 643.149304][T15810] should_failslab+0xc2/0x120 [ 643.149326][T15810] __kmalloc_cache_noprof+0x7a/0x6f0 [ 643.149348][T15810] ? usbdev_open+0x9d/0x870 [ 643.149371][T15810] usbdev_open+0x9d/0x870 [ 643.149388][T15810] ? kobject_get_unless_zero+0x156/0x200 [ 643.149408][T15810] ? __pfx_usbdev_open+0x10/0x10 [ 643.149423][T15810] ? chrdev_open+0x10b/0x6a0 [ 643.149443][T15810] ? chrdev_open+0x10b/0x6a0 [ 643.149463][T15810] ? __pfx_usbdev_open+0x10/0x10 [ 643.149483][T15810] chrdev_open+0x234/0x6a0 [ 643.149508][T15810] ? __pfx_apparmor_file_open+0x10/0x10 [ 643.149538][T15810] ? __pfx_chrdev_open+0x10/0x10 [ 643.149557][T15810] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 643.149584][T15810] do_dentry_open+0x6d8/0x1660 [ 643.149601][T15810] ? __pfx_chrdev_open+0x10/0x10 [ 643.149623][T15810] vfs_open+0x82/0x3f0 [ 643.149649][T15810] path_openat+0x208c/0x31a0 [ 643.149673][T15810] ? __pfx_path_openat+0x10/0x10 [ 643.149698][T15810] do_file_open+0x20e/0x430 [ 643.149717][T15810] ? __pfx_do_file_open+0x10/0x10 [ 643.149747][T15810] ? alloc_fd+0x476/0x790 [ 643.149766][T15810] ? do_getname+0x191/0x390 [ 643.149788][T15810] do_sys_openat2+0x10d/0x1e0 [ 643.149810][T15810] ? __pfx_do_sys_openat2+0x10/0x10 [ 643.149832][T15810] ? __fget_files+0x21f/0x3d0 [ 643.149852][T15810] __x64_sys_openat+0x12d/0x210 [ 643.149874][T15810] ? __pfx___x64_sys_openat+0x10/0x10 [ 643.149899][T15810] ? rcu_is_watching+0x12/0xc0 [ 643.149916][T15810] do_syscall_64+0x10b/0xf80 [ 643.149930][T15810] ? clear_bhb_loop+0x40/0x90 [ 643.149948][T15810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 643.149963][T15810] RIP: 0033:0x7fe0f119c819 [ 643.149977][T15810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 643.149991][T15810] RSP: 002b:00007fe0f209b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 643.150006][T15810] RAX: ffffffffffffffda RBX: 00007fe0f1416090 RCX: 00007fe0f119c819 [ 643.150016][T15810] RDX: 0000000000040101 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 643.150025][T15810] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 643.150034][T15810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 643.150043][T15810] R13: 00007fe0f1416128 R14: 00007fe0f1416090 R15: 00007ffef52c6fd8 [ 643.150062][T15810] Ijn9_UVQ8j@:Un M%Ux[ 644.469211][T15848] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2116'. [ 646.228639][T15877] QAT: Device 50 not found [ 648.149413][T15908] netlink: 'syz.1.2128': attribute type 1 has an invalid length. [ 648.212381][T15908] netlink: 33 bytes leftover after parsing attributes in process `syz.1.2128'. [ 649.259970][T15926] QAT: Device 53 not found [ 651.934538][T15948] TCP: TCP_TX_DELAY enabled [ 652.429997][T15950] kexec: Could not allocate control_code_buffer [ 653.223047][T15969] FAULT_INJECTION: forcing a failure. [ 653.223047][T15969] name failslab, interval 1, probability 0, space 0, times 0 [ 653.419910][T15969] CPU: 0 UID: 0 PID: 15969 Comm: syz.3.2140 Tainted: G L syzkaller #0 PREEMPT(full) [ 653.419936][T15969] Tainted: [L]=SOFTLOCKUP [ 653.419941][T15969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 653.419950][T15969] Call Trace: [ 653.419956][T15969] [ 653.419963][T15969] dump_stack_lvl+0x100/0x190 [ 653.419998][T15969] should_fail_ex.cold+0x5/0xa [ 653.420018][T15969] should_failslab+0xc2/0x120 [ 653.420037][T15969] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 653.420053][T15969] ? alloc_empty_file+0x5b/0x1c0 [ 653.420074][T15969] ? __pfx_stack_trace_save+0x10/0x10 [ 653.420092][T15969] alloc_empty_file+0x5b/0x1c0 [ 653.420113][T15969] path_openat+0xe8/0x31a0 [ 653.420130][T15969] ? kasan_save_stack+0x3f/0x50 [ 653.420145][T15969] ? kasan_save_stack+0x30/0x50 [ 653.420159][T15969] ? kasan_save_track+0x14/0x30 [ 653.420174][T15969] ? __kasan_slab_alloc+0x89/0x90 [ 653.420190][T15969] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 653.420204][T15969] ? do_getname+0x35/0x390 [ 653.420224][T15969] ? do_sys_openat2+0xc5/0x1e0 [ 653.420245][T15969] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.420262][T15969] ? __pfx_path_openat+0x10/0x10 [ 653.420287][T15969] do_file_open+0x20e/0x430 [ 653.420305][T15969] ? __pfx_do_file_open+0x10/0x10 [ 653.420336][T15969] ? alloc_fd+0x476/0x790 [ 653.420355][T15969] ? do_getname+0x191/0x390 [ 653.420377][T15969] do_sys_openat2+0x10d/0x1e0 [ 653.420398][T15969] ? __pfx_do_sys_openat2+0x10/0x10 [ 653.420426][T15969] __x64_sys_openat+0x12d/0x210 [ 653.420449][T15969] ? __pfx___x64_sys_openat+0x10/0x10 [ 653.420469][T15969] ? ksys_write+0x1ac/0x250 [ 653.420488][T15969] ? rcu_is_watching+0x12/0xc0 [ 653.420505][T15969] do_syscall_64+0x10b/0xf80 [ 653.420521][T15969] ? clear_bhb_loop+0x40/0x90 [ 653.420538][T15969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.420553][T15969] RIP: 0033:0x7fe0f119c819 [ 653.420567][T15969] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 653.420581][T15969] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 653.420596][T15969] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 653.420605][T15969] RDX: 0000000000038000 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 653.420614][T15969] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 653.420623][T15969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 653.420632][T15969] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 653.420651][T15969] [ 656.295038][T16010] netlink: 'syz.2.2147': attribute type 1 has an invalid length. [ 656.369485][T16010] netlink: 33 bytes leftover after parsing attributes in process `syz.2.2147'. [ 656.509828][T16004] [U] 5 [ 656.943121][T16023] random: crng reseeded on system resumption [ 657.124687][T16005] Process accounting resumed [ 657.757573][T16037] FAULT_INJECTION: forcing a failure. [ 657.757573][T16037] name failslab, interval 1, probability 0, space 0, times 0 [ 657.830573][T16037] CPU: 0 UID: 0 PID: 16037 Comm: syz.3.2152 Tainted: G L syzkaller #0 PREEMPT(full) [ 657.830600][T16037] Tainted: [L]=SOFTLOCKUP [ 657.830606][T16037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 657.830616][T16037] Call Trace: [ 657.830621][T16037] [ 657.830630][T16037] dump_stack_lvl+0x100/0x190 [ 657.830658][T16037] should_fail_ex.cold+0x5/0xa [ 657.830678][T16037] ? tomoyo_supervisor+0x65d/0x1340 [ 657.830698][T16037] should_failslab+0xc2/0x120 [ 657.830717][T16037] __kmalloc_noprof+0xe0/0x850 [ 657.830737][T16037] tomoyo_supervisor+0x65d/0x1340 [ 657.830760][T16037] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 657.830792][T16037] ? tomoyo_check_path_acl+0x141/0x210 [ 657.830816][T16037] ? tomoyo_check_acl+0x1f7/0x410 [ 657.830840][T16037] tomoyo_path_permission+0x270/0x3b0 [ 657.830865][T16037] tomoyo_check_open_permission+0x34d/0x3c0 [ 657.830881][T16037] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 657.830903][T16037] ? hook_file_open+0x24e/0x7a0 [ 657.830931][T16037] ? path_get+0x61/0x80 [ 657.830952][T16037] tomoyo_file_open+0x6b/0x90 [ 657.830972][T16037] security_file_open+0xb5/0x1e0 [ 657.830989][T16037] do_dentry_open+0x5aa/0x1660 [ 657.831008][T16037] ? security_inode_permission+0xbf/0x250 [ 657.831025][T16037] vfs_open+0x82/0x3f0 [ 657.831048][T16037] path_openat+0x208c/0x31a0 [ 657.831073][T16037] ? __pfx_path_openat+0x10/0x10 [ 657.831097][T16037] do_file_open+0x20e/0x430 [ 657.831116][T16037] ? __pfx_do_file_open+0x10/0x10 [ 657.831148][T16037] ? alloc_fd+0x476/0x790 [ 657.831168][T16037] ? do_getname+0x191/0x390 [ 657.831190][T16037] do_sys_openat2+0x10d/0x1e0 [ 657.831211][T16037] ? __pfx_do_sys_openat2+0x10/0x10 [ 657.831239][T16037] __x64_sys_openat+0x12d/0x210 [ 657.831261][T16037] ? __pfx___x64_sys_openat+0x10/0x10 [ 657.831287][T16037] ? rcu_is_watching+0x12/0xc0 [ 657.831303][T16037] do_syscall_64+0x10b/0xf80 [ 657.831319][T16037] ? clear_bhb_loop+0x40/0x90 [ 657.831343][T16037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 657.831360][T16037] RIP: 0033:0x7fe0f119c819 [ 657.831373][T16037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 657.831389][T16037] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 657.831405][T16037] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 657.831414][T16037] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 657.831423][T16037] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 657.831433][T16037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 657.831442][T16037] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 657.831462][T16037] [ 660.758308][T16074] [U] 5 [ 661.580404][T16092] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2164'. [ 661.615648][T16092] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2164'. [ 664.693341][T16155] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2176'. [ 664.738087][T16155] netlink: 354 bytes leftover after parsing attributes in process `syz.3.2176'. [ 665.312223][T16165] FAULT_INJECTION: forcing a failure. [ 665.312223][T16165] name failslab, interval 1, probability 0, space 0, times 0 [ 665.473220][T16165] CPU: 0 UID: 0 PID: 16165 Comm: syz.1.2179 Tainted: G L syzkaller #0 PREEMPT(full) [ 665.473249][T16165] Tainted: [L]=SOFTLOCKUP [ 665.473255][T16165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 665.473266][T16165] Call Trace: [ 665.473271][T16165] [ 665.473277][T16165] dump_stack_lvl+0x100/0x190 [ 665.473307][T16165] should_fail_ex.cold+0x5/0xa [ 665.473327][T16165] should_failslab+0xc2/0x120 [ 665.473346][T16165] __kmalloc_cache_noprof+0x7a/0x6f0 [ 665.473368][T16165] ? tty_open+0x139/0xfa0 [ 665.473399][T16165] ? __pfx_tty_open+0x10/0x10 [ 665.473420][T16165] tty_open+0x139/0xfa0 [ 665.473445][T16165] ? __pfx_tty_open+0x10/0x10 [ 665.473466][T16165] ? chrdev_open+0x10b/0x6a0 [ 665.473485][T16165] ? chrdev_open+0x10b/0x6a0 [ 665.473505][T16165] ? __pfx_tty_open+0x10/0x10 [ 665.473525][T16165] chrdev_open+0x234/0x6a0 [ 665.473543][T16165] ? __pfx_apparmor_file_open+0x10/0x10 [ 665.473565][T16165] ? __pfx_chrdev_open+0x10/0x10 [ 665.473584][T16165] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 665.473606][T16165] do_dentry_open+0x6d8/0x1660 [ 665.473624][T16165] ? __pfx_chrdev_open+0x10/0x10 [ 665.473647][T16165] vfs_open+0x82/0x3f0 [ 665.473670][T16165] path_openat+0x208c/0x31a0 [ 665.473694][T16165] ? __pfx_path_openat+0x10/0x10 [ 665.473719][T16165] do_file_open+0x20e/0x430 [ 665.473738][T16165] ? __pfx_do_file_open+0x10/0x10 [ 665.473769][T16165] ? alloc_fd+0x476/0x790 [ 665.473791][T16165] ? do_getname+0x191/0x390 [ 665.473814][T16165] do_sys_openat2+0x10d/0x1e0 [ 665.473835][T16165] ? __pfx_do_sys_openat2+0x10/0x10 [ 665.473863][T16165] __x64_sys_openat+0x12d/0x210 [ 665.473886][T16165] ? __pfx___x64_sys_openat+0x10/0x10 [ 665.473912][T16165] ? rcu_is_watching+0x12/0xc0 [ 665.473929][T16165] do_syscall_64+0x10b/0xf80 [ 665.473944][T16165] ? clear_bhb_loop+0x40/0x90 [ 665.473962][T16165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.473977][T16165] RIP: 0033:0x7f583299c819 [ 665.473991][T16165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 665.474005][T16165] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 665.474022][T16165] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 665.474032][T16165] RDX: 0000000000000001 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 665.474041][T16165] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 665.474050][T16165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 665.474060][T16165] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 665.474079][T16165] [ 666.281041][T16175] QAT: Device 50 not found [ 667.341348][T16185] Invalid ELF header magic: != ELF [ 670.089383][T16237] QAT: Device 53 not found [ 670.960082][T16242] FAULT_INJECTION: forcing a failure. [ 670.960082][T16242] name failslab, interval 1, probability 0, space 0, times 0 [ 671.050190][T16242] CPU: 0 UID: 0 PID: 16242 Comm: syz.1.2193 Tainted: G L syzkaller #0 PREEMPT(full) [ 671.050218][T16242] Tainted: [L]=SOFTLOCKUP [ 671.050223][T16242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 671.050233][T16242] Call Trace: [ 671.050238][T16242] [ 671.050245][T16242] dump_stack_lvl+0x100/0x190 [ 671.050273][T16242] should_fail_ex.cold+0x5/0xa [ 671.050293][T16242] should_failslab+0xc2/0x120 [ 671.050312][T16242] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 671.050327][T16242] ? security_inode_alloc+0x3b/0x2c0 [ 671.050351][T16242] ? lockdep_init_map_type+0x5c/0x250 [ 671.050374][T16242] security_inode_alloc+0x3b/0x2c0 [ 671.050397][T16242] inode_init_always_gfp+0xcc0/0x1000 [ 671.050418][T16242] alloc_inode+0x8e/0x250 [ 671.050440][T16242] path_from_stashed+0x25b/0x750 [ 671.050459][T16242] ? do_raw_spin_unlock+0x145/0x1e0 [ 671.050485][T16242] ns_get_path+0x60/0x80 [ 671.050504][T16242] proc_ns_get_link+0x121/0x230 [ 671.050519][T16242] ? __pfx_proc_ns_get_link+0x10/0x10 [ 671.050537][T16242] ? atime_needs_update+0x8b/0x6b0 [ 671.050553][T16242] pick_link+0xd17/0x13c0 [ 671.050567][T16242] ? __pfx_proc_ns_get_link+0x10/0x10 [ 671.050585][T16242] step_into_slowpath+0x9ba/0xf90 [ 671.050603][T16242] ? __pfx_step_into_slowpath+0x10/0x10 [ 671.050618][T16242] ? find_held_lock+0x2b/0x80 [ 671.050639][T16242] path_openat+0xf95/0x31a0 [ 671.050663][T16242] ? __pfx_path_openat+0x10/0x10 [ 671.050688][T16242] do_file_open+0x20e/0x430 [ 671.050707][T16242] ? __pfx_do_file_open+0x10/0x10 [ 671.050737][T16242] ? alloc_fd+0x476/0x790 [ 671.050756][T16242] ? do_getname+0x191/0x390 [ 671.050778][T16242] do_sys_openat2+0x10d/0x1e0 [ 671.050810][T16242] ? __pfx_do_sys_openat2+0x10/0x10 [ 671.050834][T16242] ? __fget_files+0x21f/0x3d0 [ 671.050855][T16242] __x64_sys_openat+0x12d/0x210 [ 671.050878][T16242] ? __pfx___x64_sys_openat+0x10/0x10 [ 671.050904][T16242] ? rcu_is_watching+0x12/0xc0 [ 671.050924][T16242] do_syscall_64+0x10b/0xf80 [ 671.050939][T16242] ? clear_bhb_loop+0x40/0x90 [ 671.050958][T16242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 671.050973][T16242] RIP: 0033:0x7f583295d04e [ 671.050987][T16242] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 671.051002][T16242] RSP: 002b:00007f58338c9ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 671.051017][T16242] RAX: ffffffffffffffda RBX: 00007f58338ca6c0 RCX: 00007f583295d04e [ 671.051026][T16242] RDX: 0000000000000002 RSI: 00007f58338c9f90 RDI: ffffffffffffff9c [ 671.051036][T16242] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 671.051046][T16242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 671.051055][T16242] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 671.051075][T16242] [ 674.270836][T16296] QAT: Device 49 not found [ 674.792156][T16310] ERROR: Out of memory at tomoyo_memory_ok. syzkaller syzkaller login: [ 676.355577][T16335] [U] 5 [ 680.208616][T16412] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2218'. [ 681.632519][T16426] QAT: Device 51 not found [ 681.995064][T16428] FAULT_INJECTION: forcing a failure. [ 681.995064][T16428] name failslab, interval 1, probability 0, space 0, times 0 [ 682.059146][T16428] CPU: 0 UID: 0 PID: 16428 Comm: syz.2.2224 Tainted: G L syzkaller #0 PREEMPT(full) [ 682.059174][T16428] Tainted: [L]=SOFTLOCKUP [ 682.059179][T16428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 682.059189][T16428] Call Trace: [ 682.059194][T16428] [ 682.059201][T16428] dump_stack_lvl+0x100/0x190 [ 682.059234][T16428] should_fail_ex.cold+0x5/0xa [ 682.059255][T16428] should_failslab+0xc2/0x120 [ 682.059273][T16428] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 682.059289][T16428] ? security_inode_alloc+0x3b/0x2c0 [ 682.059312][T16428] ? lockdep_init_map_type+0x5c/0x250 [ 682.059336][T16428] security_inode_alloc+0x3b/0x2c0 [ 682.059360][T16428] inode_init_always_gfp+0xcc0/0x1000 [ 682.059389][T16428] alloc_inode+0x8e/0x250 [ 682.059412][T16428] path_from_stashed+0x25b/0x750 [ 682.059431][T16428] ? do_raw_spin_unlock+0x145/0x1e0 [ 682.059458][T16428] ns_get_path+0x60/0x80 [ 682.059477][T16428] proc_ns_get_link+0x121/0x230 [ 682.059494][T16428] ? __pfx_proc_ns_get_link+0x10/0x10 [ 682.059511][T16428] ? atime_needs_update+0x8b/0x6b0 [ 682.059527][T16428] pick_link+0xd17/0x13c0 [ 682.059541][T16428] ? __pfx_proc_ns_get_link+0x10/0x10 [ 682.059560][T16428] step_into_slowpath+0x9ba/0xf90 [ 682.059580][T16428] ? __pfx_step_into_slowpath+0x10/0x10 [ 682.059595][T16428] ? find_held_lock+0x2b/0x80 [ 682.059616][T16428] path_openat+0xf95/0x31a0 [ 682.059640][T16428] ? __pfx_path_openat+0x10/0x10 [ 682.059665][T16428] do_file_open+0x20e/0x430 [ 682.059684][T16428] ? __pfx_do_file_open+0x10/0x10 [ 682.059714][T16428] ? alloc_fd+0x476/0x790 [ 682.059733][T16428] ? do_getname+0x191/0x390 [ 682.059755][T16428] do_sys_openat2+0x10d/0x1e0 [ 682.059777][T16428] ? __pfx_do_sys_openat2+0x10/0x10 [ 682.059800][T16428] ? __fget_files+0x21f/0x3d0 [ 682.059820][T16428] __x64_sys_openat+0x12d/0x210 [ 682.059843][T16428] ? __pfx___x64_sys_openat+0x10/0x10 [ 682.059868][T16428] ? rcu_is_watching+0x12/0xc0 [ 682.059884][T16428] do_syscall_64+0x10b/0xf80 [ 682.059899][T16428] ? clear_bhb_loop+0x40/0x90 [ 682.059917][T16428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.059935][T16428] RIP: 0033:0x7f5158d5d04e [ 682.059953][T16428] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 682.059968][T16428] RSP: 002b:00007f5159d0dec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 682.059983][T16428] RAX: ffffffffffffffda RBX: 00007f5159d0e6c0 RCX: 00007f5158d5d04e [ 682.059993][T16428] RDX: 0000000000000002 RSI: 00007f5159d0df90 RDI: ffffffffffffff9c [ 682.060003][T16428] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 682.060012][T16428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 682.060020][T16428] R13: 00007f5159016038 R14: 00007f5159015fa0 R15: 00007ffef80def98 [ 682.060039][T16428] [ 683.158001][T16442] QAT: Device 53 not found [ 683.506497][T16448] [U] 5 [ 683.982034][T16467] input: jJǸ-9%vJ86 as /devices/virtual/input/input16 [ 684.371828][T16473] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2233'. [ 685.952927][T16484] [U] 5 [ 685.958680][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.966737][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.488471][T16496] QAT: Device 51 not found [ 687.674607][T16521] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 687.674607][T16521] The task syz.0.2242 (16521) triggered the difference, watch for misbehavior. [ 688.220734][T16532] FAULT_INJECTION: forcing a failure. [ 688.220734][T16532] name failslab, interval 1, probability 0, space 0, times 0 [ 688.498281][T16532] CPU: 0 UID: 0 PID: 16532 Comm: syz.2.2243 Tainted: G L syzkaller #0 PREEMPT(full) [ 688.498309][T16532] Tainted: [L]=SOFTLOCKUP [ 688.498314][T16532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 688.498324][T16532] Call Trace: [ 688.498329][T16532] [ 688.498335][T16532] dump_stack_lvl+0x100/0x190 [ 688.498364][T16532] should_fail_ex.cold+0x5/0xa [ 688.498384][T16532] should_failslab+0xc2/0x120 [ 688.498403][T16532] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 688.498419][T16532] ? copy_fs_struct+0x49/0x340 [ 688.498437][T16532] copy_fs_struct+0x49/0x340 [ 688.498454][T16532] __do_sys_setns+0x516/0x1f30 [ 688.498473][T16532] ? __pfx___do_sys_setns+0x10/0x10 [ 688.498493][T16532] ? rcu_is_watching+0x12/0xc0 [ 688.498509][T16532] do_syscall_64+0x10b/0xf80 [ 688.498524][T16532] ? clear_bhb_loop+0x40/0x90 [ 688.498545][T16532] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 688.498560][T16532] RIP: 0033:0x7f5158d9c819 [ 688.498574][T16532] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 688.498588][T16532] RSP: 002b:00007f5159ccc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000134 [ 688.498603][T16532] RAX: ffffffffffffffda RBX: 00007f5159016180 RCX: 00007f5158d9c819 [ 688.498614][T16532] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 0000000000000002 [ 688.498623][T16532] RBP: 00007f5158e32c91 R08: 0000000000000000 R09: 0000000000000000 [ 688.498632][T16532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 688.498641][T16532] R13: 00007f5159016218 R14: 00007f5159016180 R15: 00007ffef80def98 [ 688.498660][T16532] [ 688.943543][T16520] Process accounting paused [ 691.090453][T16561] vivid-007: ================= START STATUS ================= [ 691.172766][T16561] vivid-007: Generate PTS: true [ 691.224814][T16561] vivid-007: Generate SCR: true [ 691.283351][T16561] tpg source WxH: 320x240 (Y'CbCr) [ 691.330360][T16561] tpg field: 1 [ 691.352600][T16564] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2250'. [ 691.390156][T16561] tpg crop: (0,0)/320x240 [ 691.464869][T16561] tpg compose: (0,0)/320x240 [ 691.507508][T16564] nbd: must specify at least one socket [ 691.574199][T16561] tpg colorspace: 8 [ 691.609544][T16561] tpg transfer function: 0/0 [ 691.659981][T16561] tpg Y'CbCr encoding: 0/0 [ 691.721080][T16561] tpg quantization: 0/0 [ 691.755296][T16561] tpg RGB range: 0/2 [ 691.797414][T16561] vivid-007: ================== END STATUS ================== [ 695.217731][T16627] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 695.920823][ T7475] Bluetooth: hci1: unexpected event 0x3e length: 358 > 260 [ 695.920855][ T7475] Bluetooth: hci1: unexpected subevent 0x1b length: 357 > 260 [ 697.699219][T16678] FAULT_INJECTION: forcing a failure. [ 697.699219][T16678] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 697.967486][T16678] CPU: 0 UID: 0 PID: 16678 Comm: syz.2.2268 Tainted: G L syzkaller #0 PREEMPT(full) [ 697.967523][T16678] Tainted: [L]=SOFTLOCKUP [ 697.967529][T16678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 697.967538][T16678] Call Trace: [ 697.967544][T16678] [ 697.967550][T16678] dump_stack_lvl+0x100/0x190 [ 697.967580][T16678] should_fail_ex.cold+0x5/0xa [ 697.967598][T16678] _copy_from_iter+0x1f4/0x1690 [ 697.967618][T16678] ? __asan_memset+0x23/0x50 [ 697.967633][T16678] ? __pfx__copy_from_iter+0x10/0x10 [ 697.967650][T16678] ? __pfx___alloc_skb+0x10/0x10 [ 697.967679][T16678] netlink_sendmsg+0x808/0xda0 [ 697.967698][T16678] ? __pfx_netlink_sendmsg+0x10/0x10 [ 697.967717][T16678] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 697.967741][T16678] __sys_sendto+0x468/0x4b0 [ 697.967761][T16678] ? __pfx_netlink_sendmsg+0x10/0x10 [ 697.967777][T16678] ? __pfx___sys_sendto+0x10/0x10 [ 697.967803][T16678] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 697.967822][T16678] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 697.967852][T16678] __x64_sys_sendto+0xe0/0x1c0 [ 697.967876][T16678] ? do_syscall_64+0x90/0xf80 [ 697.967892][T16678] ? lockdep_hardirqs_on+0x78/0x100 [ 697.967907][T16678] do_syscall_64+0x10b/0xf80 [ 697.967921][T16678] ? clear_bhb_loop+0x40/0x90 [ 697.967939][T16678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 697.967955][T16678] RIP: 0033:0x7f5158d5d04e [ 697.967969][T16678] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 697.967983][T16678] RSP: 002b:00007f5159ccae88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 697.967997][T16678] RAX: ffffffffffffffda RBX: 00007f5159ccc6c0 RCX: 00007f5158d5d04e [ 697.968008][T16678] RDX: 0000000000000020 RSI: 00007f5159ccb000 RDI: 0000000000000008 [ 697.968017][T16678] RBP: 0000000000000000 R08: 00007f5159ccaf04 R09: 000000000000000c [ 697.968026][T16678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008 [ 697.968035][T16678] R13: 00007f5159ccaf58 R14: 00007f5159ccb000 R15: 0000000000000000 [ 697.968055][T16678] [ 700.013461][T16707] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2271'. [ 703.439567][T16774] QAT: Device 53 not found [ 703.448218][T16758] ecryptfs_miscdev_write: Invalid packet size [192] [ 703.518833][T16769] QAT: Invalid ioctl 44672 [ 706.521400][T16820] QAT: Device 54 not found [ 707.409698][T16835] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2293'. [ 708.120199][T16815] kexec: Could not allocate control_code_buffer [ 708.761614][T16864] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2305'. [ 709.483656][T16880] FAULT_INJECTION: forcing a failure. [ 709.483656][T16880] name fail_futex, interval 1, probability 0, space 0, times 0 [ 709.595653][T16880] CPU: 0 UID: 0 PID: 16880 Comm: syz.2.2297 Tainted: G L syzkaller #0 PREEMPT(full) [ 709.595681][T16880] Tainted: [L]=SOFTLOCKUP [ 709.595686][T16880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 709.595696][T16880] Call Trace: [ 709.595701][T16880] [ 709.595707][T16880] dump_stack_lvl+0x100/0x190 [ 709.595737][T16880] should_fail_ex.cold+0x5/0xa [ 709.595757][T16880] get_futex_key+0x1d2/0x1600 [ 709.595779][T16880] ? __pfx_get_futex_key+0x10/0x10 [ 709.595805][T16880] futex_wait_setup+0x83/0x510 [ 709.595825][T16880] __futex_wait+0x19f/0x300 [ 709.595842][T16880] ? __pfx___futex_wait+0x10/0x10 [ 709.595860][T16880] ? __pfx_futex_wake_mark+0x10/0x10 [ 709.595877][T16880] ? futex_hash+0x2ad/0x370 [ 709.595897][T16880] ? futex_hash+0x141/0x370 [ 709.595918][T16880] futex_wait+0xe6/0x370 [ 709.595933][T16880] ? __pfx_futex_wait+0x10/0x10 [ 709.595952][T16880] ? __lock_acquire+0x4a5/0x2630 [ 709.595972][T16880] ? sg_ioctl+0x96e/0x26c0 [ 709.595989][T16880] do_futex+0x1ef/0x350 [ 709.596009][T16880] ? __pfx_do_futex+0x10/0x10 [ 709.596032][T16880] ? find_held_lock+0x2b/0x80 [ 709.596054][T16880] __x64_sys_futex+0x34f/0x4d0 [ 709.596090][T16880] ? __pfx___x64_sys_futex+0x10/0x10 [ 709.596116][T16880] ? rcu_is_watching+0x12/0xc0 [ 709.596133][T16880] do_syscall_64+0x10b/0xf80 [ 709.596148][T16880] ? clear_bhb_loop+0x40/0x90 [ 709.596166][T16880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.596181][T16880] RIP: 0033:0x7f5158d9c819 [ 709.596194][T16880] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 709.596208][T16880] RSP: 002b:00007f5159d0e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 709.596224][T16880] RAX: ffffffffffffffda RBX: 00007f5159015fa8 RCX: 00007f5158d9c819 [ 709.596234][T16880] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5159015fa8 [ 709.596243][T16880] RBP: 00007f5159015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 709.596252][T16880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 709.596260][T16880] R13: 00007f5159016038 R14: 00007ffef80deeb0 R15: 00007ffef80def98 [ 709.596279][T16880] [ 710.634963][ T30] audit: type=1800 audit(4294967304.920:10): pid=16902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2300" name="sr0" dev="devtmpfs" ino=2880 res=0 errno=0 [ 710.828461][T16904] netlink: 'syz.2.2301': attribute type 1 has an invalid length. [ 716.509032][T16984] QAT: Device 53 not found [ 717.881148][T16995] QAT: Device 0 not found [ 718.699619][T17002] netlink: 'syz.0.2317': attribute type 1 has an invalid length. [ 718.785984][T17002] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2317'. [ 720.240704][T17026] [U] 5 [ 720.353023][T17032] QAT: Device 0 not found [ 720.995361][T17012] Process accounting resumed [ 721.276221][T17042] FAULT_INJECTION: forcing a failure. [ 721.276221][T17042] name failslab, interval 1, probability 0, space 0, times 0 [ 721.403024][T17042] CPU: 0 UID: 0 PID: 17042 Comm: syz.1.2325 Tainted: G L syzkaller #0 PREEMPT(full) [ 721.403053][T17042] Tainted: [L]=SOFTLOCKUP [ 721.403059][T17042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 721.403068][T17042] Call Trace: [ 721.403074][T17042] [ 721.403081][T17042] dump_stack_lvl+0x100/0x190 [ 721.403110][T17042] should_fail_ex.cold+0x5/0xa [ 721.403130][T17042] should_failslab+0xc2/0x120 [ 721.403150][T17042] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 721.403166][T17042] ? alloc_inode+0x183/0x250 [ 721.403187][T17042] ? stashed_dentry_get+0x10a/0x2c0 [ 721.403208][T17042] ? stashed_dentry_get+0x10a/0x2c0 [ 721.403230][T17042] alloc_inode+0x183/0x250 [ 721.403252][T17042] path_from_stashed+0x25b/0x750 [ 721.403274][T17042] pidfs_alloc_file+0xf8/0x290 [ 721.403292][T17042] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 721.403314][T17042] pidfd_prepare+0x10c/0x1b0 [ 721.403333][T17042] __x64_sys_pidfd_open+0x105/0x1a0 [ 721.403355][T17042] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 721.403378][T17042] ? rcu_is_watching+0x12/0xc0 [ 721.403394][T17042] do_syscall_64+0x10b/0xf80 [ 721.403409][T17042] ? clear_bhb_loop+0x40/0x90 [ 721.403426][T17042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 721.403442][T17042] RIP: 0033:0x7f583299c819 [ 721.403455][T17042] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 721.403469][T17042] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 721.403484][T17042] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 721.403494][T17042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 721.403502][T17042] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 721.403511][T17042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 721.403519][T17042] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 721.403539][T17042] [ 723.984024][T17046] kexec: Could not allocate control_code_buffer [ 725.534911][T17090] QAT: Device 0 not found [ 726.882169][T17110] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2339'. [ 728.269567][T17118] Invalid ELF header magic: != ELF [ 729.677691][T17134] [U] 5 [ 730.192290][T17142] FAULT_INJECTION: forcing a failure. [ 730.192290][T17142] name failslab, interval 1, probability 0, space 0, times 0 [ 730.367408][T17142] CPU: 0 UID: 0 PID: 17142 Comm: syz.3.2345 Tainted: G L syzkaller #0 PREEMPT(full) [ 730.367437][T17142] Tainted: [L]=SOFTLOCKUP [ 730.367442][T17142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 730.367452][T17142] Call Trace: [ 730.367457][T17142] [ 730.367463][T17142] dump_stack_lvl+0x100/0x190 [ 730.367492][T17142] should_fail_ex.cold+0x5/0xa [ 730.367528][T17142] ? sk_prot_alloc+0x10b/0x2a0 [ 730.367545][T17142] should_failslab+0xc2/0x120 [ 730.367565][T17142] __kmalloc_noprof+0xe0/0x850 [ 730.367585][T17142] sk_prot_alloc+0x10b/0x2a0 [ 730.367603][T17142] sk_alloc+0x36/0xe80 [ 730.367636][T17142] __netlink_create+0x5e/0x2c0 [ 730.367655][T17142] ? __wake_up+0x3f/0x60 [ 730.367674][T17142] netlink_create+0x298/0x610 [ 730.367696][T17142] ? __pfx_genl_bind+0x10/0x10 [ 730.367712][T17142] ? __pfx_genl_unbind+0x10/0x10 [ 730.367727][T17142] ? __pfx_genl_release+0x10/0x10 [ 730.367745][T17142] __sock_create+0x339/0x860 [ 730.367767][T17142] __sys_socket+0x14d/0x260 [ 730.367786][T17142] ? __pfx___sys_socket+0x10/0x10 [ 730.367803][T17142] ? kmem_cache_free+0x124/0x690 [ 730.367830][T17142] __x64_sys_socket+0x72/0xb0 [ 730.367848][T17142] ? lockdep_hardirqs_on+0x78/0x100 [ 730.367863][T17142] do_syscall_64+0x10b/0xf80 [ 730.367877][T17142] ? clear_bhb_loop+0x40/0x90 [ 730.367895][T17142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 730.367910][T17142] RIP: 0033:0x7fe0f119c819 [ 730.367924][T17142] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 730.367938][T17142] RSP: 002b:00007fe0f20bc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 730.367953][T17142] RAX: ffffffffffffffda RBX: 00007fe0f1415fa0 RCX: 00007fe0f119c819 [ 730.367963][T17142] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 730.367972][T17142] RBP: 00007fe0f1232c91 R08: 0000000000000000 R09: 0000000000000000 [ 730.367981][T17142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 730.367990][T17142] R13: 00007fe0f1416038 R14: 00007fe0f1415fa0 R15: 00007ffef52c6fd8 [ 730.368010][T17142] [ 730.661671][T17147] QAT: Device 51 not found [ 731.380900][ T30] audit: type=1804 audit(4294967325.610:11): pid=17158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2348" name="/newroot/sys/kernel/debug/tracing/available_events" dev="tracefs" ino=23 res=1 errno=0 [ 731.609858][T17165] FAULT_INJECTION: forcing a failure. [ 731.609858][T17165] name failslab, interval 1, probability 0, space 0, times 0 [ 731.682008][T17165] CPU: 0 UID: 0 PID: 17165 Comm: syz.1.2350 Tainted: G L syzkaller #0 PREEMPT(full) [ 731.682034][T17165] Tainted: [L]=SOFTLOCKUP [ 731.682040][T17165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 731.682049][T17165] Call Trace: [ 731.682055][T17165] [ 731.682061][T17165] dump_stack_lvl+0x100/0x190 [ 731.682092][T17165] should_fail_ex.cold+0x5/0xa [ 731.682112][T17165] should_failslab+0xc2/0x120 [ 731.682131][T17165] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 731.682147][T17165] ? security_inode_alloc+0x3b/0x2c0 [ 731.682170][T17165] ? lockdep_init_map_type+0x5c/0x250 [ 731.682193][T17165] security_inode_alloc+0x3b/0x2c0 [ 731.682217][T17165] inode_init_always_gfp+0xcc0/0x1000 [ 731.682237][T17165] alloc_inode+0x8e/0x250 [ 731.682259][T17165] sock_alloc+0x44/0x280 [ 731.682274][T17165] ? security_socket_create+0x7f/0x250 [ 731.682296][T17165] __sock_create+0xc2/0x860 [ 731.682317][T17165] __sys_socket+0x14d/0x260 [ 731.682337][T17165] ? __pfx___sys_socket+0x10/0x10 [ 731.682355][T17165] ? kmem_cache_free+0x124/0x690 [ 731.682389][T17165] __x64_sys_socket+0x72/0xb0 [ 731.682408][T17165] ? lockdep_hardirqs_on+0x78/0x100 [ 731.682425][T17165] do_syscall_64+0x10b/0xf80 [ 731.682439][T17165] ? clear_bhb_loop+0x40/0x90 [ 731.682458][T17165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.682473][T17165] RIP: 0033:0x7f583299c819 [ 731.682487][T17165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 731.682501][T17165] RSP: 002b:00007f58338ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 731.682516][T17165] RAX: ffffffffffffffda RBX: 00007f5832c15fa0 RCX: 00007f583299c819 [ 731.682526][T17165] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 731.682535][T17165] RBP: 00007f5832a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 731.682543][T17165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 731.682552][T17165] R13: 00007f5832c16038 R14: 00007f5832c15fa0 R15: 00007fff3e1eade8 [ 731.682571][T17165] [ 731.682638][T17165] socket: no more sockets [ 731.916670][ T8494] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] SMP KASAN PTI [ 731.928580][ T8494] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [ 731.936980][ T8494] CPU: 0 UID: 0 PID: 8494 Comm: kworker/u10:6 Tainted: G L syzkaller #0 PREEMPT(full) [ 731.948070][ T8494] Tainted: [L]=SOFTLOCKUP [ 731.952372][ T8494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 731.962423][ T8494] Workqueue: netns cleanup_net [ 731.967180][ T8494] RIP: 0010:tipc_conn_close+0x48/0x1d0 [ 731.972633][ T8494] Code: fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 6a 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 08 48 8d 7d 18 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 54 01 00 00 4c 8b 6d 18 49 8d ad f0 03 00 00 48 [ 731.992407][ T8494] RSP: 0000:ffffc900036b7a08 EFLAGS: 00010206 [ 731.998548][ T8494] RAX: dffffc0000000000 RBX: ffff88805ad5f400 RCX: 0000000000000080 [ 732.006607][ T8494] RDX: 0000000000000003 RSI: ffffffff8b304cc4 RDI: 0000000000000018 [ 732.014558][ T8494] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 732.022527][ T8494] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888026e78800 [ 732.030569][ T8494] R13: 0000000000000000 R14: ffff88805ad5f408 R15: ffffed1004dcf113 [ 732.038533][ T8494] FS: 0000000000000000(0000) GS:ffff88812432e000(0000) knlGS:0000000000000000 [ 732.047471][ T8494] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 732.054051][ T8494] CR2: 0000001b30ed6ff8 CR3: 000000003b4a4000 CR4: 00000000003526f0 [ 732.062014][ T8494] Call Trace: [ 732.065284][ T8494] [ 732.068226][ T8494] tipc_topsrv_exit_net+0x211/0x4b0 [ 732.073424][ T8494] ? __pfx_tipc_topsrv_exit_net+0x10/0x10 [ 732.079140][ T8494] ops_undo_list+0x2ee/0xab0 [ 732.083754][ T8494] ? __pfx_ops_undo_list+0x10/0x10 [ 732.088939][ T8494] ? cleanup_net+0x332/0x920 [ 732.093610][ T8494] ? idr_destroy+0x62/0x2e0 [ 732.098105][ T8494] cleanup_net+0x499/0x920 [ 732.102506][ T8494] ? __pfx_cleanup_net+0x10/0x10 [ 732.107439][ T8494] ? rcu_is_watching+0x12/0xc0 [ 732.112201][ T8494] process_one_work+0xa0e/0x1980 [ 732.117144][ T8494] ? __pfx_process_one_work+0x10/0x10 [ 732.122618][ T8494] ? __pfx_cleanup_net+0x10/0x10 [ 732.127568][ T8494] worker_thread+0x5ef/0xe50 [ 732.132187][ T8494] ? __pfx_worker_thread+0x10/0x10 [ 732.137301][ T8494] ? kthread+0x13a/0x450 [ 732.141533][ T8494] ? __pfx_worker_thread+0x10/0x10 [ 732.146654][ T8494] kthread+0x370/0x450 [ 732.150732][ T8494] ? __pfx_kthread+0x10/0x10 [ 732.155336][ T8494] ret_from_fork+0x72b/0xd50 [ 732.159918][ T8494] ? __pfx_ret_from_fork+0x10/0x10 [ 732.165027][ T8494] ? __switch_to+0x800/0x1100 [ 732.169796][ T8494] ? __switch_to_asm+0x39/0x70 [ 732.174554][ T8494] ? __pfx_kthread+0x10/0x10 [ 732.179136][ T8494] ret_from_fork_asm+0x1a/0x30 [ 732.183896][ T8494] [ 732.186994][ T8494] Modules linked in: [ 732.191561][ T8494] ---[ end trace 0000000000000000 ]--- [ 732.739593][ T8494] RIP: 0010:tipc_conn_close+0x48/0x1d0 [ 732.758345][ T8494] Code: fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 6a 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 6b 08 48 8d 7d 18 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 54 01 00 00 4c 8b 6d 18 49 8d ad f0 03 00 00 48 [ 732.823122][ T8494] RSP: 0000:ffffc900036b7a08 EFLAGS: 00010206 [ 732.842109][ T8494] RAX: dffffc0000000000 RBX: ffff88805ad5f400 RCX: 0000000000000080 [ 732.868050][ T8494] RDX: 0000000000000003 RSI: ffffffff8b304cc4 RDI: 0000000000000018 [ 732.892044][ T8494] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 732.921051][ T8494] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888026e78800 [ 732.946831][ T8494] R13: 0000000000000000 R14: ffff88805ad5f408 R15: ffffed1004dcf113 [ 732.973143][ T8494] FS: 0000000000000000(0000) GS:ffff88812432e000(0000) knlGS:0000000000000000 [ 733.002355][ T8494] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 733.031836][ T8494] CR2: 000020000001c000 CR3: 0000000075802000 CR4: 00000000003526f0 [ 733.059179][ T8494] Kernel panic - not syncing: Fatal exception [ 733.065483][ T8494] Kernel Offset: disabled [ 733.069795][ T8494] Rebooting in 86400 seconds..