last executing test programs: 10m40.944728675s ago: executing program 3 (id=1371): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x8006, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="a8000000", @ANYRES16=r3, @ANYBLOB="01002cbd7000fddbdf2502000000810004006e66736600d8efe42d133772f30c54315aa74a5b8107cf2ddf901f8fc81365e252374483326ace7da356b7a16f5ce613bc0ce3aeb87ed3d22b4a27c3ecc90c70c861befe60a7a9414b446427a001f61379e8caf4519e032a5dda1e1174e2d5756a2b93fc046cd3a674866b80d91473ece248c03d28f9398a63a785998700000008000300850000000800010002000000"], 0xa8}, 0x1, 0xf4ffffffffffffff}, 0x4000) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) r4 = pipe$auto(0x0) r5 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r5, 0x0, 0x3) read$auto(r4, 0x0, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x5, 0x2, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x3f, 0x3, 0x6ec) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="3facfb2c7e1b12975c47006bebf4b434c436156ab10811c02816adfe46babd9248ab1f0d11e2"], 0xd4}, 0x1, 0x0, 0x0, 0x20000880}, 0x40015) 10m39.478347712s ago: executing program 3 (id=1375): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/devices/virtual/net/bond0/bonding/arp_ip_target\x00', 0xa0002, 0x0) write$auto(0x3, 0x0, 0xfffffdef) socket(0x26, 0x5, 0x8c68) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x111e41, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) setrlimit$auto(0x8, 0x0) io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0) ioctl$auto(r2, 0x8004510b, 0x3) r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x404008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x40a02, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1800"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x0, 0x0) ioctl$auto_TCFLSH2(r4, 0x5453, 0x0) ioctl$auto_VHOST_SET_FEATURES2(r3, 0x4008af00, 0x0) 10m38.467509005s ago: executing program 3 (id=1378): syslog$auto(0x3, 0x0, 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, 0x0, 0x8800, 0x0) pread64$auto(r0, 0x0, 0x80000002, 0x40) openat$auto_hwsim_fops_rx_rssi_(0xffffffffffffff9c, 0x0, 0x206200, 0x0) mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffc) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) fsconfig$auto_JFFS2_COMPR_MODE_FORCEZLIB(r0, 0x9, &(0x7f0000000000)='[\x00', &(0x7f00000000c0)="2ce2517d686fe2c5f48ead6ba74f2af419bc2ded340a44ffa8395822ef368395cecbf26b5e18378411ab492d0c1b3ac83ae29d3ab1d3060f9adfe92518506d512f54b7357eb169c80f774e63fc8d5ba7e173836f7ba48de396e91bfa7fdf1ebc861f1c7acfb0348707d2ad483aa401c55ebdf1ea05f41a94b4e5adfeec2a6c8403d673c4691aae20d004fdc630a736dc4dd8d06934291e88d498f8d249a95ab2db8eee3eee32b5d124d9fb194bc2b8e122c2cce94e418e1820fd1ba6ed1ef2d820e17682bd2bf0aaf76c9a91e0b010b110fd00", 0x5) 10m38.163907228s ago: executing program 3 (id=1381): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/scsi/sg/debug\x00', 0x1c3c03, 0x0) lseek$auto(0x3, 0x8, 0x3) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="000126bd7000fbdbdf2502000000080001"], 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x8080) openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim2/ports/1/bpf_offloaded_id\x00', 0x0, 0x0) r1 = socket(0x10, 0x2, 0x0) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) bpf$auto(0x10, &(0x7f0000001700)=@link_update={r1, @new_map_fd=r2, 0x6, @old_prog_fd=r0}, 0x63a) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="06000000", @ANYRES16=0x0, @ANYBLOB="0100"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0xa505}, 0x9}, 0x7, 0x4008) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop2/queue/max_sectors_kb\x00', 0x8100, 0x0) 10m37.822432325s ago: executing program 3 (id=1383): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0xd, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) close_range$auto(0x2, 0x8, 0x0) kexec_load$auto(0x200000000007, 0x1, 0x0, 0x4) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, 0x0, 0x109100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) memfd_secret$auto(0x0) mmap$auto(0x0, 0x1, 0x18e, 0x8000000000000011, 0xffffffffffffffff, 0x9) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) syz_genetlink_get_family_id$auto_tipcv2(0x0, r0) prctl$auto(0x1, 0x6, 0x0, 0xb117, 0x9) sendmsg$auto_TIPC_NL_BEARER_ADD(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048804}, 0x4000) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x25, 0x5, 0x2) r1 = socket(0x848000000015, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000240)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}, 0x6b) connect$auto(0x3, &(0x7f00000002c0)=@generic={0xa, "5457c29004e0b991da88f70ef61b"}, 0x55) sendmsg$auto_NL80211_CMD_GET_MPATH(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20004000}, 0x100000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0xe73c3, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7) close_range$auto(0x2, 0x8, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) 10m35.004484473s ago: executing program 3 (id=1392): mmap$auto(0x0, 0x402000b, 0x7, 0xeb4, 0x401, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x0) io_uring_setup$auto(0x7, 0x0) (async) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) (async) mmap$auto(0x4, 0x2, 0x80000000df, 0x14, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) capget$auto(0x0, 0xfffffffffffffffe) (async) r0 = epoll_create$auto(0x4) (async) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video31\x00', 0x5aa0c1, 0x0) epoll_ctl$auto(r0, 0x1, r1, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147) ppoll$auto(&(0x7f0000000240)={r2, 0x2, 0x8100}, 0x3, 0x0, 0x0, 0x8) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) move_pages$auto(0x0, 0x2000000020009, 0x0, 0x0, 0x0, 0x2) (async) sendmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000028, 0x0, 0x1, 0x3e0}, 0x800}, 0x4, 0x4008) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x68001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x14be02, 0x0) (async) fallocate$auto(0x8000000000000003, 0x40, 0x9, 0x4cbd5d) (async) socket(0x9, 0x5, 0x2) (async) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x509a40, 0x0) (async) select$auto(0x8059, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x37, 0xa, 0x1, 0x5, 0x6, 0x15f4da0a, 0x7, 0x3, 0x800, 0x80000023, 0x200000000000007, 0x6d42, 0xa, 0x2495dae0, 0x52]}, 0x0) (async) execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5') (async) futex$auto(&(0x7f00000000c0)=0xffffffff, 0x5, 0x2, 0x0, 0x0, 0xfffffff8) futex$auto(&(0x7f0000000080)=0xfffffffa, 0x5, 0x4005, 0x0, 0x0, 0x9) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/dummy0/name_assign_type\x00', 0x0, 0x0) 10m19.837861458s ago: executing program 32 (id=1392): mmap$auto(0x0, 0x402000b, 0x7, 0xeb4, 0x401, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x0) io_uring_setup$auto(0x7, 0x0) (async) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) (async) mmap$auto(0x4, 0x2, 0x80000000df, 0x14, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) capget$auto(0x0, 0xfffffffffffffffe) (async) r0 = epoll_create$auto(0x4) (async) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video31\x00', 0x5aa0c1, 0x0) epoll_ctl$auto(r0, 0x1, r1, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147) ppoll$auto(&(0x7f0000000240)={r2, 0x2, 0x8100}, 0x3, 0x0, 0x0, 0x8) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) move_pages$auto(0x0, 0x2000000020009, 0x0, 0x0, 0x0, 0x2) (async) sendmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000028, 0x0, 0x1, 0x3e0}, 0x800}, 0x4, 0x4008) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x68001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x14be02, 0x0) (async) fallocate$auto(0x8000000000000003, 0x40, 0x9, 0x4cbd5d) (async) socket(0x9, 0x5, 0x2) (async) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x509a40, 0x0) (async) select$auto(0x8059, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x37, 0xa, 0x1, 0x5, 0x6, 0x15f4da0a, 0x7, 0x3, 0x800, 0x80000023, 0x200000000000007, 0x6d42, 0xa, 0x2495dae0, 0x52]}, 0x0) (async) execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5') (async) futex$auto(&(0x7f00000000c0)=0xffffffff, 0x5, 0x2, 0x0, 0x0, 0xfffffff8) futex$auto(&(0x7f0000000080)=0xfffffffa, 0x5, 0x4005, 0x0, 0x0, 0x9) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/dummy0/name_assign_type\x00', 0x0, 0x0) 9.503805783s ago: executing program 1 (id=3418): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) set_mempolicy$auto(0x6, &(0x7f0000000240)=0x7fffffffffffffff, 0xcd9) get_mempolicy$auto(0x0, 0x0, 0x400, 0x0, 0x0) write$auto(0x1, 0x0, 0x80000000) unshare$auto(0x4000007c) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) mmap$auto(0x1002, 0x9, 0x4, 0x200000eb0, 0x401, 0x6) (async, rerun: 64) unshare$auto(0x7) (rerun: 64) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/enabled\x00', 0x22b42, 0x0) read$auto_ptdump_fops_(0xffffffffffffffff, &(0x7f00000000c0)=""/32, 0x20) sendfile$auto(r0, r0, 0x0, 0x6) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x5, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x0, 0x7, 0xfff, 0x948b, 0x0, 0x15f4da0a, 0x3, 0x402, 0x62, 0x6, 0x4, 0x6d41, 0x8, 0xa, 0xfffffffffffffdfa]}, 0x0) write$auto(r1, &(0x7f0000000400), 0x100000a3d9) (async, rerun: 64) socketpair$auto(0x1, 0x2, 0x10000000, 0x0) (rerun: 64) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/sctp/eps\x00', 0x181800, 0x0) pread64$auto(r2, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) (async, rerun: 64) r3 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x20, 0x0) (rerun: 64) ioctl$auto_I2C_RDWR(r3, 0x707, &(0x7f0000000180)="e123297c") (async) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00', 0xc0a00, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000e80)=""/215, 0xd7) (async) close_range$auto(0x2, 0x8, 0x0) (async) r5 = open(0x0, 0x163340, 0x12d) (async) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0xc) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2b, 0x1, 0x0) (async) setsockopt$auto(r5, 0x3, 0x9, 0x0, 0x1002) 8.401297876s ago: executing program 1 (id=3422): mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) sendmmsg$auto(0x3, 0x0, 0xffffffff, 0xb00) close_range$auto(0x2, 0x8, 0x0) 7.277043537s ago: executing program 0 (id=3426): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r1, r1, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000540)='/dev/v4l-touch7\x00', 0x2aa01, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x802, 0x9, 0x63, 0x0, 0x0, 0x0, 0x7, 0x7ff, 0x800000000100002, 0x0, 0x2, 0xc, 0x40, 0x1c, 0x20000000009, 0xb}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a0001"], 0x6c}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0) getdents64$auto(r0, &(0x7f0000000300)={0x3, 0x2, 0x4f9f, 0x5e, "a0ee5f8f30a2cc00b6caeadf23744e956648139777802699f77b53c5d5f7716e3e138c0e3c853b67cd344d3bdd23e78020d79c9a171b615c07be1a6a2d29920fae6b07c6379cb30302749106c6ee08b5f797cd19648fcaee4a1557ef75ef1af9a10c0847e6333b07543d3cc5b864ae6b98b7bf6b42de0adc3f0000000000"}, 0xff) read$auto(r3, 0x0, 0x20) ioctl$auto(r2, 0xc0585611, r2) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(r4, &(0x7f0000000040)='/dev/dsp\x00', 0x1) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, 0x0, 0xa000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) write$auto(0x3, 0x0, 0xfffffdef) clone$auto(0x1, 0x8, 0x0, 0x0, 0x9) 6.906379901s ago: executing program 0 (id=3427): socket(0x11, 0x3, 0xe) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x30, r0, 0x6) socket(0x23, 0x805, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/modalias\x00', 0x80500, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) prctl$auto(0x7, 0xe000400008000, 0x0, 0x8000000001, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto_SO_RCVLOWAT(r1, 0x1, 0x12, &(0x7f0000000ac0)='\'!\x00', &(0x7f0000000b00)=0x80) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x80044944, 0x0) r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) read$auto_mon_fops_binary_mon_bin(r2, 0x0, 0x0) ioctl$auto_MON_IOCG_STATS(r2, 0x80089203, 0x0) 6.441213561s ago: executing program 1 (id=3430): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x8006, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="a8000000", @ANYRES16=r3, @ANYBLOB="01002cbd7000fddbdf2502000000810004006e66736600d8efe42d133772f30c54315aa74a5b8107cf2ddf901f8fc81365e252374483326ace7da356b7a16f5ce613bc0ce3aeb87ed3d22b4a27c3ecc90c70c861befe60a7a9414b446427a001f61379e8caf4519e032a5dda1e1174e2d5756a2b93fc046cd3a674866b80d91473ece248c03d28f9398a63a785998700000008000300850000000800010002000000"], 0xa8}}, 0x40f5) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) r4 = pipe$auto(0x0) r5 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r5, 0x0, 0x3) read$auto(r4, 0x0, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x5, 0x2, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x3f, 0x3, 0x6ec) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="3facfb2c7e1b12975c47006bebf4b434c436156ab10811c02816adfe46babd9248ab1f0d11e2"], 0xd4}, 0x1, 0x0, 0x0, 0x20000880}, 0x40015) 5.330153589s ago: executing program 1 (id=3432): mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x595042, 0x508) write$auto(r0, 0x0, 0xfffffdf1) linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) sysfs$auto(0x2, 0x23, 0x0) open(0x0, 0x22040, 0x75) fallocate$auto(r0, 0x9, 0x2, 0xd) utimes$auto(0x0, 0x0) clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2) mprotect$auto(0x0, 0x8000000000000001, 0x8) socket(0x5, 0x801, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, 0x0, 0x9) listen$auto(0x3, 0xffffff39) r2 = openat$auto_rfcomm_sock_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0) lseek$auto(r2, 0x8001, 0x1) mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 5.197999022s ago: executing program 2 (id=3433): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000004c0)='B', 0x1) openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim7/health/break_health\x00', 0x10000, 0x0) 4.928848514s ago: executing program 2 (id=3434): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) bpf$auto(0x0, &(0x7f0000000380)=@enable_stats={0x4}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = open(&(0x7f0000000040)='./file0\x00', 0x6041, 0x131) fsetxattr$auto(r0, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1) write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)="205c7820027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19) gettid() ioctl$auto_FS_IOC_SETFLAGS2(r0, 0x40086602, 0x0) mprotect$auto(0x0, 0x8000000000800001, 0x8) 4.614981949s ago: executing program 4 (id=3436): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x0, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x1}, 0xd21, 0x5, 0x8000000000000000, 0x1, @raw=0x30de, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64"}) process_mrelease$auto(0xffffffffffffffff, 0xa) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r1, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000340)=ANY=[], 0xac}, 0x1, 0x0, 0x0, 0x24000056}, 0x40) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x20881, 0x0) write$auto(r3, &(0x7f0000000040)='/dev/input/event1\x00', 0x10001) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000001c80)='\\\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffc) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x4a42, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) mmap$auto(0x401000000000, 0x1, 0x5, 0x4000009b73, r2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x3, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) readv$auto(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x400}, 0x7f) 4.579128475s ago: executing program 0 (id=3437): r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) mmap$auto(0x4, 0x80, 0xdf, 0x100000010, r0, 0x1eac) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r0, 0x8000) r1 = socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, 0x0, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rxrpc/peers\x00', 0x101000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x400, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f4) mmap$auto(0x0, 0x6, 0x10000000000, 0x11, 0x3, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) pread64$auto(r2, 0x0, 0x80, 0xffff) pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/dummy0/ifalias\x00', 0x8041, 0x0) write$auto(r3, &(0x7f0000000500)='%[\x05\x00`T\n&\xc1\x1e\xae\xb8\xd7\x95\x17\xa3\x7f\xa31T\x9fQG0\xe8\xd1\xd7m\xafF\x04\"h\xe6\x10\f)\x7f\x83\xcc\xb4\xa4:R\f\xe7\xe6\xb1I\x03\x9a\xca\x8f\x8c\xbb\xe1*\x9d\x11\x9a\x04F9\"\xe3\xc2\x0f\xc5\xcf\x0f\xb1,w\xfe\x06h\xff\x03\xfd\xffE\x8b}\xa2\xb9g\xa3\xbe|l3\xda\x9bzl\x8c\x8b\xce\x12*=`\x11\xef2\xf3 \xec\xbe:h\x9e\xc8\xf1\x15\xfa\x90\x9d\xeec\xbf\xf9\xf2\xcc\xf5\xa3F\xc2', 0x7) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) getsockopt$auto_SO_RCVMARK(0xffffffffffffffff, 0x0, 0x4b, &(0x7f0000000000)='}\'.^\x00', 0x0) shutdown$auto(0x200000003, 0x400002) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) prctl$auto(0x43, 0xe, 0x0, 0x0, 0x0) mlockall$auto(0x7) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 4.562022125s ago: executing program 2 (id=3438): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async) socket(0xa, 0x1, 0x84) (async) openat$auto_clear_warn_once_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async) r0 = socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYBLOB='^\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) r2 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000080)={0x1, "36a2662b59209f6bd4aafa4ed15fdb9c791daf044ae6ff089930def80ce28999", @inferred=0xffffffffffffffff}) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), r2) (async) ppoll$auto(&(0x7f00000001c0)={r3, 0x2fc, 0x4}, 0x9, 0x0, 0x0, 0x8) ioctl$auto_SW_SYNC_IOC_INC(r1, 0x40045701, &(0x7f0000000040)=0x8) (async) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) open(&(0x7f00000000c0)='./file0\x00', 0x563c00, 0x1f6) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000780)='/dev/dsp1\x00', 0x480, 0x0) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x5) (async) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x60142, 0x134) unlink$auto(&(0x7f0000000380)='./file0\x00') 4.238833491s ago: executing program 1 (id=3439): r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x244000, 0x0) mmap$auto(0xfffffffffffffffe, 0x20009, 0x4080000000df, 0xeb1, r0, 0x7ffd) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022dbd7000fbdbdf781d250200"], 0x24}, 0x1, 0x0, 0x0, 0x400c0}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x20000092) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x404c804}, 0x800) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/9p/caches\x00', 0x103280, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000006380), 0x101101, 0x0) socket(0x2, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(r3, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x5c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'veth0_to_hsr\x00'}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x8}, @NL80211_ATTR_FILS_KEK={0x1e, 0xf2, "67e3a61f09a1581f57ff50f36715af4acae78e2f884fdb4888fb"}]}, 0x5c}}, 0x40) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010300000000ffdbdf250100000008000300", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x0) r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000002c0)={0x14, r5, 0x1, 0x70bd29, 0x25dfdc00}, 0x14}, 0x1, 0x0, 0x0, 0x4000060}, 0x0) read$auto(r1, &(0x7f00000004c0)=':)%-\x00', 0x1) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x8, 0x0, 0x8, 0x9}, 0x7}, 0x3, 0x8) 3.625185756s ago: executing program 0 (id=3440): socket(0x11, 0x3, 0xe) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x30, 0xffffffffffffffff, 0x6) accept$auto(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/modalias\x00', 0x80500, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) prctl$auto(0x7, 0xe000400008000, 0x0, 0x8000000001, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto_SO_RCVLOWAT(r0, 0x1, 0x12, &(0x7f0000000ac0)='\'!\x00', &(0x7f0000000b00)=0x80) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x80044944, 0x0) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) read$auto_mon_fops_binary_mon_bin(r1, 0x0, 0x0) ioctl$auto_MON_IOCG_STATS(r1, 0x80089203, 0x0) 3.449038189s ago: executing program 2 (id=3441): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = clone3$auto(&(0x7f0000000180)={0x6, 0x9, 0xa5e7, 0x10000, 0x3, 0x8000000000000000, 0x10, 0x5, 0x10003, 0x1ff, 0x5185}, 0x3ff) r2 = prctl$auto(0x3e, 0x1, r1, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x424102, 0x0) ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r3, 0xc0045004, &(0x7f0000000000)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0xe) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b40, 0x1) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0xa, 0x5, 0x84) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS2\x00', 0x101000, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'ip6_vti0\x00'}) sendmsg$auto_NETDEV_CMD_DEV_GET(r2, &(0x7f0000000480)={&(0x7f00000000c0), 0xc, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x800) ioctl$auto_TIOCMSET2(r5, 0x5418, &(0x7f00000001c0)="6ab1") madvise$auto(0xfffffffffffffffe, 0x240007, 0x17) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x8) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x400004, 0x603b, 0x9b72, r4, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mlockall$auto(0x7) mmap$auto(0x0, 0x1, 0x1, 0x44eb2, 0x3, 0x300000000000) 3.441812702s ago: executing program 4 (id=3442): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) open(&(0x7f0000000040)='./file1\x00', 0x165a42, 0x151) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptycf\x00', 0x800, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0x1d, 0x2, 0x7) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000100)='.\x00', 0x0, 0x44c) io_uring_setup$auto(0x6, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1aa, 0x0, 0x6, 0x0, 0x5, 0x1001}, 0x5}, 0x2, 0x100) bpf$auto(0x9, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x71c, 0xfaae, 0x468, 0x2, 0x8000000000000001, 0x10000080, 0x7, 0x1, 0x1fc, 0xff, 0xb5, 0x4, 0x40004, 0xd9ee}, 0xe3) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x200) 2.491111763s ago: executing program 4 (id=3443): mmap$auto(0x0, 0x40006, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x23, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) ioctl$auto(r0, 0x2, 0x6) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000004c0)='B', 0x1) 2.192821369s ago: executing program 4 (id=3444): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000940)={'batadv0\x00'}) sendmsg$auto_BATADV_CMD_TP_METER(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x80) 2.134273898s ago: executing program 1 (id=3445): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/module/ib_iser/parameters/max_sectors\x00', 0x20a42, 0x0) r1 = fcntl$auto_F_GETOWN(r0, 0x9, 0x4) bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f00000000c0)=@task_fd_query={r1, r0, 0xad, 0x6, 0x2, 0x8000, r0, 0x8000000000000000, 0x1}, 0x137) sendfile$auto(r0, r0, 0x0, 0x4f64a1d2) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x43d, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="05082dbd0508fbdbff257e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram14\x00', 0x200080, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video50\x00', 0xad4001, 0x0) r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r4, 0x0, 0x400018) ioctl$auto(0x3, 0x4020565a, 0x38) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r5, 0x0, 0x9000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r6, &(0x7f0000003900)='\t', 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r0, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) faccessat2$auto(0x1, 0x0, 0x4, 0x1200) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/nr_hugepages\x00', 0x642, 0x0) pwrite64$auto(r7, &(0x7f0000001340)='\x00', 0xf6, 0x8) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x4) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000700), 0xffffffffffffffff) 1.978215575s ago: executing program 4 (id=3446): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) madvise$auto(0x3, 0x6, 0x101) (async) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) inotify_init1$auto(0x3000000000000) openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) 1.026275256s ago: executing program 0 (id=3447): sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf250200000008001a000008000008001200050022694ead2604681cfe990000"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008010) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004c18}, 0x810) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x2c005090}, 0x4004810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/fs/ocfs2/max_locking_protocol\x00', 0xa2500, 0x0) socket(0xa, 0x2, 0x3a) setsockopt$auto(0x3, 0x1, 0x35, 0x0, 0x9) mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) pread64$auto(r0, 0x0, 0x8, 0x6) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/adsp1\x00', 0x2002, 0x0) ioctl$auto_SNDCTL_DSP_GETIPTR(r1, 0x800c5011, &(0x7f0000000240)) 724.957286ms ago: executing program 4 (id=3448): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/module/ib_iser/parameters/max_sectors\x00', 0x20a42, 0x0) r1 = fcntl$auto_F_GETOWN(r0, 0x9, 0x4) bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f00000000c0)=@task_fd_query={r1, r0, 0xad, 0x6, 0x2, 0x8000, r0, 0x8000000000000000, 0x1}, 0x137) sendfile$auto(r0, r0, 0x0, 0x4f64a1d2) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x43d, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="05082dbd0508fbdbff257e000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram14\x00', 0x200080, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video50\x00', 0xad4001, 0x0) r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r4, 0x0, 0x400018) ioctl$auto(0x3, 0x4020565a, 0x38) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r5, 0x0, 0x9000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r6, &(0x7f0000003900)='\t', 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r0, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) faccessat2$auto(0x1, 0x0, 0x4, 0x1200) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/nr_hugepages\x00', 0x642, 0x0) pwrite64$auto(r7, &(0x7f0000001340)='\x00', 0xf6, 0x8) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x4) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000700), 0xffffffffffffffff) 700.956791ms ago: executing program 2 (id=3449): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r1, r1, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000540)='/dev/v4l-touch7\x00', 0x2aa01, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x802, 0x9, 0x63, 0x0, 0x0, 0x0, 0x7, 0x7ff, 0x800000000100002, 0x0, 0x2, 0xc, 0x40, 0x1c, 0x20000000009, 0xb}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="24051c27c100dedbdf250307cc00", @ANYRES32=0x0, @ANYBLOB="060007000080000006000700050000000a00050000000000000000000a00010000000000000000000a0001000000000000000000060006000d00000006000600070000000a0001"], 0x6c}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0) getdents64$auto(r0, &(0x7f0000000300)={0x3, 0x2, 0x4f9f, 0x5e, "a0ee5f8f30a2cc00b6caeadf23744e956648139777802699f77b53c5d5f7716e3e138c0e3c853b67cd344d3bdd23e78020d79c9a171b615c07be1a6a2d29920fae6b07c6379cb30302749106c6ee08b5f797cd19648fcaee4a1557ef75ef1af9a10c0847e6333b07543d3cc5b864ae6b98b7bf6b42de0adc3f0000000000"}, 0xff) read$auto(r3, 0x0, 0x20) ioctl$auto(r2, 0xc0585611, r2) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(r4, &(0x7f0000000040)='/dev/dsp\x00', 0x1) openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, 0x0, 0xa000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) write$auto(0x3, 0x0, 0xfffffdef) clone$auto(0x1, 0x8, 0x0, 0x0, 0x9) 288.912449ms ago: executing program 2 (id=3450): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) select$auto(0x4, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1000000000000004, 0x15f4da0a, 0x39, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x2480, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0) syz_clone(0x4000, &(0x7f00000002c0)="f03f0b0be4f2597d8b11ed14dfa636bad65cae9c0d21", 0x16, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lapb5/broadcast\x00', 0x800, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8981, 0x0) sendfile$auto(r1, r1, &(0x7f0000000000)=0xfff, 0x6f36) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r5 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f0000000300)=@bpf_attr_4={0x6, r4, 0x10000, r0}, 0x9) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r5}, 0x6f4) read$auto(r4, 0x0, 0x20) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x841, 0x0) sethostname$auto(0x0, 0x1) write$auto(r6, 0x0, 0x6) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r2, r7, 0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) 0s ago: executing program 0 (id=3451): syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nullb0/queue/virt_boundary_mask\x00', 0x101000, 0x0) (async) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nullb0/queue/virt_boundary_mask\x00', 0x101000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000003c0)=""/251, 0xfb) (async) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000003c0)=""/251, 0xfb) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ip_vs_app\x00', 0xc80, 0x0) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ip_vs_app\x00', 0xc80, 0x0) r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x5512c0, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef) (async) write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef) socket(0xa, 0x4, 0x6) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) madvise$auto(0x110c230000, 0x1, 0x9) memfd_create$auto(&(0x7f00000000c0)='\x00', 0x4e) (async) memfd_create$auto(&(0x7f00000000c0)='\x00', 0x4e) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) getrandom$auto(0x0, 0x3, 0x80000001) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x864, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x7, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xab, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x2, 0x4b, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x8000000000, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) (async) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x864, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x7, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xab, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x2, 0x4b, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x8000000000, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd0c, &(0x7f00000001c0)) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) mmap$auto(0x0, 0x6, 0x2, 0xeb9, r2, 0x8000) close_range$auto(0x2, 0x8, 0x0) remap_file_pages$auto(0x7, 0xff9, 0xa0, 0xffff, 0x1000) socket(0x23, 0x80002, 0x8) (async) socket(0x23, 0x80002, 0x8) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) (async) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) msync$auto(0x110c230000, 0x200001, 0x6) getrlimit$auto(0xfffffffa, &(0x7f0000000000)={0x0, 0x80}) kernel console output (not intermixed with test programs): 91.779876][T18856] __mm_populate+0x107/0x3a0 [ 891.779893][T18856] ? __pfx___mm_populate+0x10/0x10 [ 891.779911][T18856] ? up_write+0x290/0x4f0 [ 891.779932][T18856] vm_mmap_pgoff+0x37f/0x470 [ 891.779951][T18856] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 891.779969][T18856] ? do_futex+0x192/0x350 [ 891.779987][T18856] ? __pfx_do_futex+0x10/0x10 [ 891.780008][T18856] ksys_mmap_pgoff+0xe1/0x650 [ 891.780024][T18856] ? __x64_sys_futex+0x34f/0x4d0 [ 891.780041][T18856] ? __x64_sys_futex+0x358/0x4d0 [ 891.780059][T18856] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 891.780074][T18856] ? xfd_validate_state+0x129/0x190 [ 891.780098][T18856] __x64_sys_mmap+0x125/0x190 [ 891.780121][T18856] do_syscall_64+0x106/0xf80 [ 891.780140][T18856] ? clear_bhb_loop+0x40/0x90 [ 891.780159][T18856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 891.780174][T18856] RIP: 0033:0x7f4191f9c799 [ 891.780188][T18856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 891.780203][T18856] RSP: 002b:00007f4192f19028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 891.780218][T18856] RAX: ffffffffffffffda RBX: 00007f4192216090 RCX: 00007f4191f9c799 [ 891.780228][T18856] RDX: 0000000000000002 RSI: 0000000000400008 RDI: 0000000000000000 [ 891.780237][T18856] RBP: 00007f4192032c99 R08: 0000000000000002 R09: 0000000000008000 [ 891.780246][T18856] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 891.780256][T18856] R13: 00007f4192216128 R14: 00007f4192216090 R15: 00007ffd071165f8 [ 891.780275][T18856] [ 892.856240][T15908] Bluetooth: hci1: unexpected event 0x06 length: 440 > 3 [ 893.057055][T18872] zswap: compressor not available [ 893.822624][T18866] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 893.840735][T18879] bond0: invalid ARP target specified [ 893.862886][T18866] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 893.932064][T18866] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 894.433295][T18894] binder: 18893:18894 ioctl c0046209 ffffffffffffffff returned -22 [ 894.767580][T18899] FAULT_INJECTION: forcing a failure. [ 894.767580][T18899] name fail_futex, interval 1, probability 0, space 0, times 0 [ 894.918337][T18899] CPU: 0 UID: 0 PID: 18899 Comm: syz.2.2696 Tainted: G U L syzkaller #0 PREEMPT(full) [ 894.918366][T18899] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 894.918373][T18899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 894.918383][T18899] Call Trace: [ 894.918388][T18899] [ 894.918395][T18899] dump_stack_lvl+0x100/0x190 [ 894.918424][T18899] should_fail_ex.cold+0x5/0xa [ 894.918442][T18899] get_futex_key+0x1d2/0x1620 [ 894.918462][T18899] ? __pfx_get_futex_key+0x10/0x10 [ 894.918482][T18899] ? kasan_quarantine_put+0x104/0x240 [ 894.918505][T18899] ? lockdep_hardirqs_on+0x78/0x100 [ 894.918529][T18899] futex_wake+0xea/0x530 [ 894.918549][T18899] ? find_held_lock+0x2b/0x80 [ 894.918565][T18899] ? __pfx_futex_wake+0x10/0x10 [ 894.918589][T18899] ? ksys_write+0x190/0x250 [ 894.918603][T18899] ? ksys_write+0x190/0x250 [ 894.918619][T18899] do_futex+0x32b/0x350 [ 894.918638][T18899] ? __pfx_do_futex+0x10/0x10 [ 894.918662][T18899] __x64_sys_futex+0x34f/0x4d0 [ 894.918682][T18899] ? fput+0x79/0x100 [ 894.918698][T18899] ? __pfx___x64_sys_futex+0x10/0x10 [ 894.918715][T18899] ? ksys_write+0x1ac/0x250 [ 894.918728][T18899] ? __pfx_ksys_write+0x10/0x10 [ 894.918751][T18899] do_syscall_64+0x106/0xf80 [ 894.918775][T18899] ? clear_bhb_loop+0x40/0x90 [ 894.918793][T18899] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 894.918808][T18899] RIP: 0033:0x7f8bbbb9c799 [ 894.918821][T18899] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 894.918835][T18899] RSP: 002b:00007f8bbcaa50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 894.918850][T18899] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa8 RCX: 00007f8bbbb9c799 [ 894.918859][T18899] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8bbbe15fac [ 894.918868][T18899] RBP: 00007f8bbbe15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 894.918877][T18899] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 894.918886][T18899] R13: 00007f8bbbe16038 R14: 00007ffe4edc0a00 R15: 00007ffe4edc0ae8 [ 894.918905][T18899] [ 895.549957][T18908] NFSD: Failed to start, no listeners configured. [ 895.724320][T15908] Bluetooth: hci1: unexpected event 0x06 length: 440 > 3 [ 897.675759][T18945] zswap: compressor not available [ 897.941598][T15908] Bluetooth: hci1: unexpected event 0x05 length: 440 > 4 [ 898.492867][T18973] NFSD: Failed to start, no listeners configured. [ 898.673846][T15908] Bluetooth: hci2: unexpected event 0x07 length: 440 > 255 [ 898.966400][T18987] netlink: 326 bytes leftover after parsing attributes in process `syz.0.2714'. [ 899.332395][T18992] bond0: invalid ARP target specified [ 899.882471][T18992] FAULT_INJECTION: forcing a failure. [ 899.882471][T18992] name failslab, interval 1, probability 0, space 0, times 0 [ 900.228639][T18992] CPU: 0 UID: 0 PID: 18992 Comm: syz.4.2716 Tainted: G U L syzkaller #0 PREEMPT(full) [ 900.228668][T18992] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 900.228675][T18992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 900.228685][T18992] Call Trace: [ 900.228691][T18992] [ 900.228698][T18992] dump_stack_lvl+0x100/0x190 [ 900.228726][T18992] should_fail_ex.cold+0x5/0xa [ 900.228745][T18992] ? usb_hcd_submit_urb+0x601/0x2150 [ 900.228762][T18992] should_failslab+0xc2/0x120 [ 900.228778][T18992] __kmalloc_noprof+0xe0/0x850 [ 900.228800][T18992] ? mark_held_locks+0x40/0x70 [ 900.228821][T18992] usb_hcd_submit_urb+0x601/0x2150 [ 900.228847][T18992] usb_submit_urb+0x8aa/0x1910 [ 900.228867][T18992] ? __init_swait_queue_head+0xca/0x150 [ 900.228890][T18992] usb_start_wait_urb+0x10e/0x580 [ 900.228909][T18992] ? __pfx_usb_start_wait_urb+0x10/0x10 [ 900.228943][T18992] ? __asan_memset+0x23/0x50 [ 900.228968][T18992] usb_control_msg+0x328/0x4b0 [ 900.228992][T18992] ? __pfx_usb_control_msg+0x10/0x10 [ 900.229027][T18992] hub_ext_port_status+0x152/0x600 [ 900.229051][T18992] hub_activate+0x6d8/0x1d50 [ 900.229075][T18992] ? __pfx_hub_activate+0x10/0x10 [ 900.229092][T18992] ? find_held_lock+0x2b/0x80 [ 900.229106][T18992] ? usb_generic_driver_resume+0x70/0xa0 [ 900.229123][T18992] ? usb_generic_driver_resume+0x70/0xa0 [ 900.229146][T18992] hub_resume+0xb0/0x400 [ 900.229164][T18992] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 900.229186][T18992] ? __pfx_hub_resume+0x10/0x10 [ 900.229204][T18992] ? __pfx_hcd_bus_resume+0x10/0x10 [ 900.229222][T18992] usb_resume_interface.isra.0+0x2ce/0x3d0 [ 900.229248][T18992] usb_resume_both+0x237/0x9a0 [ 900.229271][T18992] ? __pfx_usb_resume_both+0x10/0x10 [ 900.229291][T18992] ? __rpm_callback+0x272/0x620 [ 900.229315][T18992] ? __pfx_usb_runtime_resume+0x10/0x10 [ 900.229329][T18992] ? rcu_is_watching+0x12/0xc0 [ 900.229351][T18992] ? __pfx_usb_runtime_resume+0x10/0x10 [ 900.229367][T18992] __rpm_callback+0xc8/0x620 [ 900.229387][T18992] ? read_tsc+0x9/0x20 [ 900.229402][T18992] ? ktime_get_mono_fast_ns+0x1be/0x3c0 [ 900.229421][T18992] ? __pfx_usb_runtime_resume+0x10/0x10 [ 900.229440][T18992] rpm_callback+0x16a/0x1b0 [ 900.229461][T18992] ? __pfx_usb_runtime_resume+0x10/0x10 [ 900.229477][T18992] rpm_resume+0xd3e/0x1350 [ 900.229502][T18992] ? __pfx_rpm_resume+0x10/0x10 [ 900.229522][T18992] ? do_raw_spin_lock+0x128/0x260 [ 900.229543][T18992] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 900.229565][T18992] ? _raw_spin_lock_irqsave+0x52/0x60 [ 900.229587][T18992] __pm_runtime_resume+0xb6/0x170 [ 900.229603][T18992] usb_autoresume_device+0x23/0xe0 [ 900.229619][T18992] usbdev_open+0x228/0x870 [ 900.229635][T18992] ? kobject_get_unless_zero+0x156/0x200 [ 900.229658][T18992] ? __pfx_usbdev_open+0x10/0x10 [ 900.229672][T18992] ? chrdev_open+0x10b/0x6a0 [ 900.229686][T18992] ? chrdev_open+0x10b/0x6a0 [ 900.229703][T18992] ? __pfx_usbdev_open+0x10/0x10 [ 900.229717][T18992] chrdev_open+0x234/0x6a0 [ 900.229731][T18992] ? __pfx_apparmor_file_open+0x10/0x10 [ 900.229755][T18992] ? __pfx_chrdev_open+0x10/0x10 [ 900.229770][T18992] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 900.229790][T18992] do_dentry_open+0x6d8/0x1660 [ 900.229805][T18992] ? __pfx_chrdev_open+0x10/0x10 [ 900.229825][T18992] vfs_open+0x82/0x3f0 [ 900.229845][T18992] path_openat+0x208c/0x31a0 [ 900.229866][T18992] ? __pfx_path_openat+0x10/0x10 [ 900.229887][T18992] do_file_open+0x20e/0x430 [ 900.229904][T18992] ? __pfx_do_file_open+0x10/0x10 [ 900.229941][T18992] ? alloc_fd+0x476/0x790 [ 900.229958][T18992] ? do_getname+0x191/0x390 [ 900.229979][T18992] do_sys_openat2+0x10d/0x1e0 [ 900.229999][T18992] ? __pfx_do_sys_openat2+0x10/0x10 [ 900.230018][T18992] ? snd_seq_oss_ioctl+0x320/0xd90 [ 900.230041][T18992] __x64_sys_openat+0x12d/0x210 [ 900.230060][T18992] ? __pfx___x64_sys_openat+0x10/0x10 [ 900.230086][T18992] do_syscall_64+0x106/0xf80 [ 900.230105][T18992] ? clear_bhb_loop+0x40/0x90 [ 900.230123][T18992] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 900.230138][T18992] RIP: 0033:0x7fd638d9c799 [ 900.230153][T18992] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 900.230168][T18992] RSP: 002b:00007fd639b81028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 900.230184][T18992] RAX: ffffffffffffffda RBX: 00007fd639015fa0 RCX: 00007fd638d9c799 [ 900.230195][T18992] RDX: 0000000000040a02 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 900.230205][T18992] RBP: 00007fd638e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 900.230214][T18992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 900.230223][T18992] R13: 00007fd639016038 R14: 00007fd639015fa0 R15: 00007ffd5f224a08 [ 900.230243][T18992] [ 900.232677][T18992] hub 37-0:1.0: hub_ext_port_status failed (err = -12) [ 900.916328][T19003] [U] [ 900.919457][T19003] [U] [ 900.922142][T19003] [U] [ 900.924862][T19003] [U] [ 900.955583][T19003] [U] [ 900.958304][T19003] [U] [ 900.960988][T19003] [U] [ 900.963661][T19003] [U] [ 900.996709][T19003] [U] [ 900.999464][T19003] [U] [ 901.002142][T19003] [U] [ 901.004819][T19003] [U] [ 901.029597][T19003] [U] [ 901.032312][T19003] [U] [ 901.035075][T19003] [U] [ 901.037749][T19003] [U] [ 901.067207][T19003] [U] [ 901.070009][T19003] [U] [ 901.072685][T19003] [U] [ 901.075357][T19003] [U] [ 901.130292][T19003] [U] [ 901.133024][T19003] [U] [ 901.135708][T19003] [U] [ 901.138384][T19003] [U] [ 901.182623][T19003] [U] [ 901.185357][T19003] [U] [ 901.188032][T19003] [U] [ 901.190712][T19003] [U] [ 901.224394][T19003] [U] [ 901.227120][T19003] [U] [ 901.229796][T19003] [U] [ 901.232503][T19003] [U] [ 901.255807][T19003] [U] [ 901.691473][T15908] Bluetooth: hci1: unexpected event 0x05 length: 440 > 4 [ 901.889979][T15908] Bluetooth: hci2: unexpected event 0x07 length: 440 > 255 [ 902.341981][T19032] FAULT_INJECTION: forcing a failure. [ 902.341981][T19032] name fail_futex, interval 1, probability 0, space 0, times 0 [ 902.389407][T19034] netlink: 326 bytes leftover after parsing attributes in process `syz.1.2724'. [ 902.420466][T19032] CPU: 0 UID: 0 PID: 19032 Comm: syz.2.2723 Tainted: G U L syzkaller #0 PREEMPT(full) [ 902.420496][T19032] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 902.420502][T19032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 902.420512][T19032] Call Trace: [ 902.420518][T19032] [ 902.420524][T19032] dump_stack_lvl+0x100/0x190 [ 902.420552][T19032] should_fail_ex.cold+0x5/0xa [ 902.420569][T19032] get_futex_key+0x1d2/0x1620 [ 902.420599][T19032] ? __pfx_get_futex_key+0x10/0x10 [ 902.420617][T19032] ? kernfs_fop_write_iter+0x1df/0x5f0 [ 902.420633][T19032] ? kasan_save_stack+0x3f/0x50 [ 902.420654][T19032] ? kasan_save_stack+0x30/0x50 [ 902.420673][T19032] ? kasan_save_track+0x14/0x30 [ 902.420694][T19032] ? kasan_save_free_info+0x3b/0x70 [ 902.420712][T19032] ? __kasan_slab_free+0x5f/0x80 [ 902.420726][T19032] ? kfree+0x1f6/0x6b0 [ 902.420742][T19032] ? kernfs_fop_write_iter+0x1df/0x5f0 [ 902.420759][T19032] futex_wait_setup+0x83/0x510 [ 902.420785][T19032] __futex_wait+0x19f/0x300 [ 902.420807][T19032] ? __pfx___futex_wait+0x10/0x10 [ 902.420830][T19032] ? __pfx_futex_wake_mark+0x10/0x10 [ 902.420853][T19032] ? futex_hash+0x2c5/0x380 [ 902.420875][T19032] futex_wait+0xed/0x380 [ 902.420895][T19032] ? __pfx_futex_wait+0x10/0x10 [ 902.420920][T19032] ? ksys_write+0x190/0x250 [ 902.420933][T19032] ? ksys_write+0x190/0x250 [ 902.420949][T19032] do_futex+0x1ef/0x350 [ 902.420968][T19032] ? __pfx_do_futex+0x10/0x10 [ 902.420991][T19032] __x64_sys_futex+0x34f/0x4d0 [ 902.421012][T19032] ? __pfx___x64_sys_futex+0x10/0x10 [ 902.421036][T19032] do_syscall_64+0x106/0xf80 [ 902.421056][T19032] ? clear_bhb_loop+0x40/0x90 [ 902.421073][T19032] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 902.421095][T19032] RIP: 0033:0x7f8bbbb9c799 [ 902.421109][T19032] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 902.421124][T19032] RSP: 002b:00007f8bbca840e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 902.421138][T19032] RAX: ffffffffffffffda RBX: 00007f8bbbe16098 RCX: 00007f8bbbb9c799 [ 902.421148][T19032] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8bbbe16098 [ 902.421157][T19032] RBP: 00007f8bbbe16090 R08: 0000000000000000 R09: 0000000000000000 [ 902.421166][T19032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 902.421175][T19032] R13: 00007f8bbbe16128 R14: 00007ffe4edc0a00 R15: 00007ffe4edc0ae8 [ 902.421195][T19032] [ 903.737980][T19053] FAULT_INJECTION: forcing a failure. [ 903.737980][T19053] name failslab, interval 1, probability 0, space 0, times 0 [ 903.815989][T19053] CPU: 0 UID: 0 PID: 19053 Comm: syz.2.2730 Tainted: G U L syzkaller #0 PREEMPT(full) [ 903.816018][T19053] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 903.816025][T19053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 903.816034][T19053] Call Trace: [ 903.816040][T19053] [ 903.816047][T19053] dump_stack_lvl+0x100/0x190 [ 903.816075][T19053] should_fail_ex.cold+0x5/0xa [ 903.816094][T19053] should_failslab+0xc2/0x120 [ 903.816113][T19053] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 903.816136][T19053] ? __alloc_skb+0x140/0x710 [ 903.816155][T19053] ? _copy_from_iter+0x270/0x1690 [ 903.816176][T19053] __alloc_skb+0x140/0x710 [ 903.816195][T19053] ? __pfx___alloc_skb+0x10/0x10 [ 903.816215][T19053] ? skb_page_frag_refill+0x2fc/0x5b0 [ 903.816233][T19053] tcp_stream_alloc_skb+0x34/0x660 [ 903.816252][T19053] tcp_sendmsg_locked+0x1396/0x45e0 [ 903.816279][T19053] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 903.816296][T19053] ? do_raw_spin_lock+0x128/0x260 [ 903.816317][T19053] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 903.816341][T19053] ? __local_bh_enable_ip+0x9e/0x120 [ 903.816359][T19053] tcp_sendmsg+0x2e/0x50 [ 903.816373][T19053] ? __pfx_tcp_sendmsg+0x10/0x10 [ 903.816387][T19053] inet_sendmsg+0xb9/0x140 [ 903.816404][T19053] sock_write_iter+0x4ea/0x5a0 [ 903.816419][T19053] ? __pfx_inet_sendmsg+0x10/0x10 [ 903.816434][T19053] ? __pfx_sock_write_iter+0x10/0x10 [ 903.816455][T19053] ? bpf_lsm_file_permission+0x9/0x10 [ 903.816477][T19053] ? security_file_permission+0x76/0x210 [ 903.816496][T19053] ? rw_verify_area+0xce/0x6d0 [ 903.816518][T19053] vfs_write+0x6ac/0x1070 [ 903.816532][T19053] ? __pfx_sock_write_iter+0x10/0x10 [ 903.816549][T19053] ? __pfx_vfs_write+0x10/0x10 [ 903.816569][T19053] ? find_held_lock+0x2b/0x80 [ 903.816594][T19053] ksys_write+0x1f8/0x250 [ 903.816607][T19053] ? __pfx_ksys_write+0x10/0x10 [ 903.816626][T19053] do_syscall_64+0x106/0xf80 [ 903.816646][T19053] ? clear_bhb_loop+0x40/0x90 [ 903.816674][T19053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 903.816690][T19053] RIP: 0033:0x7f8bbbb9c799 [ 903.816705][T19053] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 903.816719][T19053] RSP: 002b:00007f8bbcaa5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 903.816734][T19053] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa0 RCX: 00007f8bbbb9c799 [ 903.816744][T19053] RDX: 000000000000fdf3 RSI: 0000000000000000 RDI: 0000000000000003 [ 903.816753][T19053] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 903.816762][T19053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 903.816772][T19053] R13: 00007f8bbbe16038 R14: 00007f8bbbe15fa0 R15: 00007ffe4edc0ae8 [ 903.816792][T19053] [ 904.815934][T15908] Bluetooth: hci4: unexpected event 0x05 length: 440 > 4 [ 905.161744][T19071] bond0: invalid ARP target specified [ 905.228566][T19074] FAULT_INJECTION: forcing a failure. [ 905.228566][T19074] name failslab, interval 1, probability 0, space 0, times 0 [ 905.318468][T19076] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2736'. [ 905.359740][T19074] CPU: 0 UID: 0 PID: 19074 Comm: syz.0.2733 Tainted: G U L syzkaller #0 PREEMPT(full) [ 905.359769][T19074] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 905.359775][T19074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 905.359785][T19074] Call Trace: [ 905.359791][T19074] [ 905.359797][T19074] dump_stack_lvl+0x100/0x190 [ 905.359826][T19074] should_fail_ex.cold+0x5/0xa [ 905.359844][T19074] should_failslab+0xc2/0x120 [ 905.359861][T19074] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 905.359882][T19074] ? security_file_alloc+0x34/0x2c0 [ 905.359900][T19074] ? trace_kmem_cache_alloc+0xf3/0x120 [ 905.359918][T19074] security_file_alloc+0x34/0x2c0 [ 905.359936][T19074] init_file+0x95/0x480 [ 905.359953][T19074] alloc_empty_file+0x73/0x1c0 [ 905.359971][T19074] path_openat+0xe8/0x31a0 [ 905.359985][T19074] ? kasan_save_stack+0x3f/0x50 [ 905.360006][T19074] ? kasan_save_stack+0x30/0x50 [ 905.360025][T19074] ? kasan_save_track+0x14/0x30 [ 905.360045][T19074] ? __kasan_slab_alloc+0x89/0x90 [ 905.360058][T19074] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 905.360077][T19074] ? do_getname+0x35/0x390 [ 905.360093][T19074] ? do_sys_openat2+0xc5/0x1e0 [ 905.360111][T19074] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 905.360129][T19074] ? __pfx_path_openat+0x10/0x10 [ 905.360150][T19074] do_file_open+0x20e/0x430 [ 905.360166][T19074] ? __pfx_do_file_open+0x10/0x10 [ 905.360193][T19074] ? alloc_fd+0x476/0x790 [ 905.360209][T19074] ? do_getname+0x191/0x390 [ 905.360228][T19074] do_sys_openat2+0x10d/0x1e0 [ 905.360247][T19074] ? __pfx_do_sys_openat2+0x10/0x10 [ 905.360272][T19074] __x64_sys_openat+0x12d/0x210 [ 905.360298][T19074] ? __pfx___x64_sys_openat+0x10/0x10 [ 905.360327][T19074] do_syscall_64+0x106/0xf80 [ 905.360348][T19074] ? clear_bhb_loop+0x40/0x90 [ 905.360375][T19074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 905.360392][T19074] RIP: 0033:0x7fb2a819c799 [ 905.360406][T19074] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 905.360421][T19074] RSP: 002b:00007fb2a90db028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 905.360436][T19074] RAX: ffffffffffffffda RBX: 00007fb2a8416090 RCX: 00007fb2a819c799 [ 905.360451][T19074] RDX: 0000000000040a02 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 905.360467][T19074] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 905.360479][T19074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 905.360493][T19074] R13: 00007fb2a8416128 R14: 00007fb2a8416090 R15: 00007fff82891898 [ 905.360518][T19074] [ 906.066365][T19084] FAULT_INJECTION: forcing a failure. [ 906.066365][T19084] name failslab, interval 1, probability 0, space 0, times 0 [ 906.095680][T19084] CPU: 0 UID: 0 PID: 19084 Comm: syz.2.2737 Tainted: G U L syzkaller #0 PREEMPT(full) [ 906.095711][T19084] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 906.095717][T19084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 906.095728][T19084] Call Trace: [ 906.095735][T19084] [ 906.095741][T19084] dump_stack_lvl+0x100/0x190 [ 906.095769][T19084] should_fail_ex.cold+0x5/0xa [ 906.095787][T19084] should_failslab+0xc2/0x120 [ 906.095803][T19084] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 906.095826][T19084] ? sock_alloc_inode+0x25/0x1c0 [ 906.095842][T19084] ? __pfx_sock_alloc_inode+0x10/0x10 [ 906.095857][T19084] sock_alloc_inode+0x25/0x1c0 [ 906.095870][T19084] alloc_inode+0x68/0x250 [ 906.095890][T19084] sock_alloc+0x44/0x280 [ 906.095910][T19084] ? security_socket_create+0x7f/0x250 [ 906.095935][T19084] __sock_create+0xc2/0x860 [ 906.095953][T19084] __sys_socket+0x14d/0x260 [ 906.095969][T19084] ? __pfx___sys_socket+0x10/0x10 [ 906.095990][T19084] __x64_sys_socket+0x72/0xb0 [ 906.096005][T19084] ? lockdep_hardirqs_on+0x78/0x100 [ 906.096026][T19084] do_syscall_64+0x106/0xf80 [ 906.096044][T19084] ? clear_bhb_loop+0x40/0x90 [ 906.096062][T19084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 906.096077][T19084] RIP: 0033:0x7f8bbbb9c799 [ 906.096091][T19084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 906.096106][T19084] RSP: 002b:00007f8bbca84028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 906.096120][T19084] RAX: ffffffffffffffda RBX: 00007f8bbbe16090 RCX: 00007f8bbbb9c799 [ 906.096130][T19084] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 906.096139][T19084] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 906.096148][T19084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 906.096156][T19084] R13: 00007f8bbbe16128 R14: 00007f8bbbe16090 R15: 00007ffe4edc0ae8 [ 906.096176][T19084] [ 906.096185][T19084] socket: no more sockets [ 906.708076][T19090] NFSD: Failed to start, no listeners configured. [ 906.727754][T19095] FAULT_INJECTION: forcing a failure. [ 906.727754][T19095] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 906.768343][T19095] CPU: 0 UID: 0 PID: 19095 Comm: syz.0.2742 Tainted: G U L syzkaller #0 PREEMPT(full) [ 906.768369][T19095] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 906.768374][T19095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 906.768383][T19095] Call Trace: [ 906.768399][T19095] [ 906.768405][T19095] dump_stack_lvl+0x100/0x190 [ 906.768431][T19095] should_fail_ex.cold+0x5/0xa [ 906.768449][T19095] _copy_to_iter+0x1f3/0x1720 [ 906.768467][T19095] ? stable_pages_required_show+0x25/0x50 [ 906.768490][T19095] ? __pfx__copy_to_iter+0x10/0x10 [ 906.768505][T19095] ? kernfs_seq_stop+0xcd/0x120 [ 906.768523][T19095] ? kernfs_put_active+0x93/0xe0 [ 906.768545][T19095] seq_read_iter+0xdab/0x1270 [ 906.768573][T19095] kernfs_fop_read_iter+0x46c/0x610 [ 906.768589][T19095] ? rw_verify_area+0xce/0x6d0 [ 906.768607][T19095] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 906.768624][T19095] vfs_read+0x825/0xb30 [ 906.768646][T19095] ? __pfx_vfs_read+0x10/0x10 [ 906.768678][T19095] ksys_read+0x12a/0x250 [ 906.768690][T19095] ? __pfx_ksys_read+0x10/0x10 [ 906.768708][T19095] do_syscall_64+0x106/0xf80 [ 906.768727][T19095] ? clear_bhb_loop+0x40/0x90 [ 906.768744][T19095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 906.768759][T19095] RIP: 0033:0x7fb2a819c799 [ 906.768771][T19095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 906.768785][T19095] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 906.768799][T19095] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 906.768809][T19095] RDX: 00000000000000f7 RSI: 0000200000000080 RDI: 0000000000000003 [ 906.768817][T19095] RBP: 00007fb2a90fc090 R08: 0000000000000000 R09: 0000000000000000 [ 906.768826][T19095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 906.768834][T19095] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 906.768853][T19095] [ 907.763195][T15908] Bluetooth: hci2: unexpected event 0x16 length: 440 > 6 [ 908.106502][T19105] zswap: compressor not available [ 909.370087][T15908] Bluetooth: hci2: unexpected event 0x07 length: 440 > 255 [ 909.539102][T19140] FAULT_INJECTION: forcing a failure. [ 909.539102][T19140] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 909.635558][T19140] CPU: 0 UID: 0 PID: 19140 Comm: syz.2.2752 Tainted: G U L syzkaller #0 PREEMPT(full) [ 909.635585][T19140] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 909.635591][T19140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 909.635600][T19140] Call Trace: [ 909.635606][T19140] [ 909.635612][T19140] dump_stack_lvl+0x100/0x190 [ 909.635638][T19140] should_fail_ex.cold+0x5/0xa [ 909.635656][T19140] _copy_to_iter+0x1f3/0x1720 [ 909.635674][T19140] ? stable_pages_required_show+0x25/0x50 [ 909.635697][T19140] ? __pfx__copy_to_iter+0x10/0x10 [ 909.635712][T19140] ? kernfs_seq_stop+0xcd/0x120 [ 909.635731][T19140] ? kernfs_put_active+0x93/0xe0 [ 909.635753][T19140] seq_read_iter+0xdab/0x1270 [ 909.635781][T19140] kernfs_fop_read_iter+0x46c/0x610 [ 909.635796][T19140] ? rw_verify_area+0xce/0x6d0 [ 909.635815][T19140] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 909.635831][T19140] vfs_read+0x825/0xb30 [ 909.635854][T19140] ? __pfx_vfs_read+0x10/0x10 [ 909.635886][T19140] ksys_read+0x12a/0x250 [ 909.635899][T19140] ? __pfx_ksys_read+0x10/0x10 [ 909.635916][T19140] do_syscall_64+0x106/0xf80 [ 909.635935][T19140] ? clear_bhb_loop+0x40/0x90 [ 909.635953][T19140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 909.635967][T19140] RIP: 0033:0x7f8bbbb9c799 [ 909.635980][T19140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 909.635994][T19140] RSP: 002b:00007f8bbcaa5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 909.636008][T19140] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa0 RCX: 00007f8bbbb9c799 [ 909.636018][T19140] RDX: 00000000000000f7 RSI: 0000200000000080 RDI: 0000000000000003 [ 909.636026][T19140] RBP: 00007f8bbcaa5090 R08: 0000000000000000 R09: 0000000000000000 [ 909.636035][T19140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 909.636043][T19140] R13: 00007f8bbbe16038 R14: 00007f8bbbe15fa0 R15: 00007ffe4edc0ae8 [ 909.636062][T19140] [ 909.861260][T19143] ALSA: mixer_oss: invalid OSS volume '' [ 909.868360][T19143] ALSA: mixer_oss: invalid OSS volume '' [ 911.737669][T19168] FAULT_INJECTION: forcing a failure. [ 911.737669][T19168] name failslab, interval 1, probability 0, space 0, times 0 [ 911.768970][T19142] kexec: Could not allocate control_code_buffer [ 911.807406][T19168] CPU: 0 UID: 0 PID: 19168 Comm: syz.0.2759 Tainted: G U L syzkaller #0 PREEMPT(full) [ 911.807435][T19168] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 911.807442][T19168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 911.807452][T19168] Call Trace: [ 911.807458][T19168] [ 911.807465][T19168] dump_stack_lvl+0x100/0x190 [ 911.807493][T19168] should_fail_ex.cold+0x5/0xa [ 911.807512][T19168] should_failslab+0xc2/0x120 [ 911.807528][T19168] __kmalloc_cache_noprof+0x7a/0x6f0 [ 911.807547][T19168] ? snd_seq_port_connect+0x61/0x560 [ 911.807562][T19168] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 911.807584][T19168] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 911.807609][T19168] snd_seq_port_connect+0x61/0x560 [ 911.807623][T19168] ? _raw_read_unlock+0x28/0x50 [ 911.807644][T19168] ? check_subscription_permission.isra.0+0x146/0x240 [ 911.807671][T19168] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 911.807689][T19168] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 911.807714][T19168] call_seq_client_ctl+0xa3/0x130 [ 911.807736][T19168] snd_seq_kernel_client_ctl+0x77/0xd0 [ 911.807760][T19168] snd_seq_oss_midi_open+0x5ad/0x6b0 [ 911.807779][T19168] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 911.807797][T19168] ? find_held_lock+0x2b/0x80 [ 911.807815][T19168] ? lockdep_hardirqs_on+0x78/0x100 [ 911.807834][T19168] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 911.807853][T19168] ? get_mididev+0x115/0x160 [ 911.807871][T19168] snd_seq_oss_synth_setup_midi+0x131/0x590 [ 911.807894][T19168] snd_seq_oss_open+0x82e/0xa10 [ 911.807912][T19168] odev_open+0x79/0xc0 [ 911.807924][T19168] ? __pfx_odev_open+0x10/0x10 [ 911.807937][T19168] soundcore_open+0x2e3/0x5a0 [ 911.807960][T19168] ? __pfx_soundcore_open+0x10/0x10 [ 911.807975][T19168] chrdev_open+0x234/0x6a0 [ 911.807990][T19168] ? __pfx_apparmor_file_open+0x10/0x10 [ 911.808014][T19168] ? __pfx_chrdev_open+0x10/0x10 [ 911.808029][T19168] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 911.808049][T19168] do_dentry_open+0x6d8/0x1660 [ 911.808064][T19168] ? __pfx_chrdev_open+0x10/0x10 [ 911.808084][T19168] vfs_open+0x82/0x3f0 [ 911.808104][T19168] path_openat+0x208c/0x31a0 [ 911.808126][T19168] ? __pfx_path_openat+0x10/0x10 [ 911.808148][T19168] do_file_open+0x20e/0x430 [ 911.808165][T19168] ? __pfx_do_file_open+0x10/0x10 [ 911.808193][T19168] ? alloc_fd+0x476/0x790 [ 911.808209][T19168] ? do_getname+0x191/0x390 [ 911.808228][T19168] do_sys_openat2+0x10d/0x1e0 [ 911.808247][T19168] ? __pfx_do_sys_openat2+0x10/0x10 [ 911.808272][T19168] __x64_sys_openat+0x12d/0x210 [ 911.808292][T19168] ? __pfx___x64_sys_openat+0x10/0x10 [ 911.808318][T19168] do_syscall_64+0x106/0xf80 [ 911.808336][T19168] ? clear_bhb_loop+0x40/0x90 [ 911.808354][T19168] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 911.808369][T19168] RIP: 0033:0x7fb2a819c799 [ 911.808383][T19168] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 911.808398][T19168] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 911.808413][T19168] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 911.808423][T19168] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 911.808433][T19168] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 911.808442][T19168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 911.808451][T19168] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 911.808471][T19168] [ 912.424620][T19175] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2760'. [ 912.435227][T19175] ipvlan0: entered promiscuous mode [ 912.440735][T19175] ipvlan0: entered allmulticast mode [ 912.446252][T19175] veth0_vlan: entered allmulticast mode [ 912.534737][T15908] Bluetooth: hci0: unexpected event 0x07 length: 440 > 255 [ 912.565276][T19180] FAULT_INJECTION: forcing a failure. [ 912.565276][T19180] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 912.645132][T19180] CPU: 0 UID: 0 PID: 19180 Comm: syz.4.2763 Tainted: G U L syzkaller #0 PREEMPT(full) [ 912.645159][T19180] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 912.645165][T19180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 912.645174][T19180] Call Trace: [ 912.645180][T19180] [ 912.645186][T19180] dump_stack_lvl+0x100/0x190 [ 912.645212][T19180] should_fail_ex.cold+0x5/0xa [ 912.645230][T19180] _copy_from_user+0x2e/0xd0 [ 912.645254][T19180] kstrtouint_from_user+0xd6/0x1d0 [ 912.645274][T19180] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 912.645293][T19180] ? __lock_acquire+0x4a5/0x2630 [ 912.645315][T19180] ? lock_acquire+0x1cf/0x380 [ 912.645335][T19180] proc_fail_nth_write+0x83/0x220 [ 912.645357][T19180] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 912.645379][T19180] vfs_write+0x2aa/0x1070 [ 912.645393][T19180] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 912.645411][T19180] ? __pfx_vfs_write+0x10/0x10 [ 912.645432][T19180] ? __fget_files+0x215/0x3d0 [ 912.645449][T19180] ? __fget_files+0x21f/0x3d0 [ 912.645467][T19180] ksys_write+0x12a/0x250 [ 912.645480][T19180] ? __pfx_ksys_write+0x10/0x10 [ 912.645498][T19180] do_syscall_64+0x106/0xf80 [ 912.645526][T19180] ? clear_bhb_loop+0x40/0x90 [ 912.645543][T19180] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 912.645557][T19180] RIP: 0033:0x7fd638d5cfce [ 912.645570][T19180] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 912.645583][T19180] RSP: 002b:00007fd639b80fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 912.645597][T19180] RAX: ffffffffffffffda RBX: 00007fd639b816c0 RCX: 00007fd638d5cfce [ 912.645607][T19180] RDX: 0000000000000001 RSI: 00007fd639b810a0 RDI: 0000000000000004 [ 912.645615][T19180] RBP: 00007fd639b81090 R08: 0000000000000000 R09: 0000000000000000 [ 912.645623][T19180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 912.645631][T19180] R13: 00007fd639016038 R14: 00007fd639015fa0 R15: 00007ffd5f224a08 [ 912.645650][T19180] [ 912.972538][T19190] FAULT_INJECTION: forcing a failure. [ 912.972538][T19190] name fail_futex, interval 1, probability 0, space 0, times 0 [ 912.987267][T19190] CPU: 0 UID: 0 PID: 19190 Comm: syz.2.2766 Tainted: G U L syzkaller #0 PREEMPT(full) [ 912.987295][T19190] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 912.987301][T19190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 912.987310][T19190] Call Trace: [ 912.987316][T19190] [ 912.987322][T19190] dump_stack_lvl+0x100/0x190 [ 912.987350][T19190] should_fail_ex.cold+0x5/0xa [ 912.987368][T19190] get_futex_key+0x1d2/0x1620 [ 912.987389][T19190] ? __pfx_get_futex_key+0x10/0x10 [ 912.987407][T19190] ? kasan_quarantine_put+0x104/0x240 [ 912.987429][T19190] ? lockdep_hardirqs_on+0x78/0x100 [ 912.987452][T19190] futex_wake+0xea/0x530 [ 912.987476][T19190] ? find_held_lock+0x2b/0x80 [ 912.987491][T19190] ? __pfx_futex_wake+0x10/0x10 [ 912.987514][T19190] ? ksys_write+0x190/0x250 [ 912.987526][T19190] ? ksys_write+0x190/0x250 [ 912.987543][T19190] do_futex+0x32b/0x350 [ 912.987561][T19190] ? __pfx_do_futex+0x10/0x10 [ 912.987587][T19190] __x64_sys_futex+0x34f/0x4d0 [ 912.987606][T19190] ? fput+0x79/0x100 [ 912.987622][T19190] ? __pfx___x64_sys_futex+0x10/0x10 [ 912.987639][T19190] ? ksys_write+0x1ac/0x250 [ 912.987652][T19190] ? __pfx_ksys_write+0x10/0x10 [ 912.987671][T19190] do_syscall_64+0x106/0xf80 [ 912.987690][T19190] ? clear_bhb_loop+0x40/0x90 [ 912.987707][T19190] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 912.987723][T19190] RIP: 0033:0x7f8bbbb9c799 [ 912.987737][T19190] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 912.987752][T19190] RSP: 002b:00007f8bbca840e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 912.987767][T19190] RAX: ffffffffffffffda RBX: 00007f8bbbe16098 RCX: 00007f8bbbb9c799 [ 912.987776][T19190] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8bbbe1609c [ 912.987785][T19190] RBP: 00007f8bbbe16090 R08: 0000000000000000 R09: 0000000000000000 [ 912.987794][T19190] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 912.987803][T19190] R13: 00007f8bbbe16128 R14: 00007ffe4edc0a00 R15: 00007ffe4edc0ae8 [ 912.987822][T19190] [ 913.211016][T19191] netlink: 146 bytes leftover after parsing attributes in process `syz.0.2764'. [ 913.956358][T19217] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2771'. [ 914.597410][T15908] Bluetooth: hci0: unexpected event 0x07 length: 440 > 255 [ 914.640200][T19227] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2774'. [ 916.269761][T15908] Bluetooth: hci4: unexpected event 0x07 length: 440 > 255 [ 916.435176][T15908] Bluetooth: hci4: unexpected event 0x06 length: 440 > 3 [ 918.031521][ T29] audit: type=1326 audit(2147484408.690:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19294 comm="syz.0.2793" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb2a819c799 code=0x0 [ 919.129786][T19335] Invalid ELF header magic: != ELF [ 922.356424][T19391] FAULT_INJECTION: forcing a failure. [ 922.356424][T19391] name failslab, interval 1, probability 0, space 0, times 0 [ 922.578657][T19391] CPU: 0 UID: 0 PID: 19391 Comm: syz.2.2813 Tainted: G U L syzkaller #0 PREEMPT(full) [ 922.578686][T19391] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 922.578692][T19391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 922.578703][T19391] Call Trace: [ 922.578708][T19391] [ 922.578715][T19391] dump_stack_lvl+0x100/0x190 [ 922.578743][T19391] should_fail_ex.cold+0x5/0xa [ 922.578762][T19391] should_failslab+0xc2/0x120 [ 922.578779][T19391] __kmalloc_cache_noprof+0x7a/0x6f0 [ 922.578797][T19391] ? v4l2_fh_open+0x4c/0xa0 [ 922.578947][T19391] v4l2_fh_open+0x4c/0xa0 [ 922.578970][T19391] v4l2_open+0x1d2/0x490 [ 922.579015][T19391] ? __pfx_v4l2_open+0x10/0x10 [ 922.579038][T19391] chrdev_open+0x234/0x6a0 [ 922.579053][T19391] ? __pfx_apparmor_file_open+0x10/0x10 [ 922.579077][T19391] ? __pfx_chrdev_open+0x10/0x10 [ 922.579092][T19391] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 922.579112][T19391] do_dentry_open+0x6d8/0x1660 [ 922.579128][T19391] ? __pfx_chrdev_open+0x10/0x10 [ 922.579147][T19391] vfs_open+0x82/0x3f0 [ 922.579167][T19391] path_openat+0x208c/0x31a0 [ 922.579188][T19391] ? __pfx_path_openat+0x10/0x10 [ 922.579209][T19391] do_file_open+0x20e/0x430 [ 922.579225][T19391] ? __pfx_do_file_open+0x10/0x10 [ 922.579252][T19391] ? alloc_fd+0x476/0x790 [ 922.579269][T19391] ? do_getname+0x191/0x390 [ 922.579288][T19391] do_sys_openat2+0x10d/0x1e0 [ 922.579306][T19391] ? __pfx_do_sys_openat2+0x10/0x10 [ 922.579325][T19391] ? __fget_files+0x21f/0x3d0 [ 922.579342][T19391] __x64_sys_openat+0x12d/0x210 [ 922.579361][T19391] ? __pfx___x64_sys_openat+0x10/0x10 [ 922.579386][T19391] do_syscall_64+0x106/0xf80 [ 922.579406][T19391] ? clear_bhb_loop+0x40/0x90 [ 922.579424][T19391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 922.579438][T19391] RIP: 0033:0x7f8bbbb9c799 [ 922.579452][T19391] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 922.579467][T19391] RSP: 002b:00007f8bbcaa5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 922.579482][T19391] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa0 RCX: 00007f8bbbb9c799 [ 922.579493][T19391] RDX: 000000000000a242 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 922.579502][T19391] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 922.579512][T19391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 922.579520][T19391] R13: 00007f8bbbe16038 R14: 00007f8bbbe15fa0 R15: 00007ffe4edc0ae8 [ 922.579540][T19391] [ 924.494327][T15908] Bluetooth: hci4: unexpected event 0x16 length: 440 > 6 [ 924.656732][T19409] zswap: compressor not available [ 925.119163][T19436] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 925.562467][T19446] ima: policy update failed [ 925.577100][ T29] audit: type=1802 audit(2147484416.230:17): pid=19446 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2828" res=0 errno=0 [ 925.930052][T19452] FAULT_INJECTION: forcing a failure. [ 925.930052][T19452] name failslab, interval 1, probability 0, space 0, times 0 [ 926.245563][T19452] CPU: 0 UID: 0 PID: 19452 Comm: syz.4.2830 Tainted: G U L syzkaller #0 PREEMPT(full) [ 926.245609][T19452] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 926.245616][T19452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 926.245625][T19452] Call Trace: [ 926.245633][T19452] [ 926.245640][T19452] dump_stack_lvl+0x100/0x190 [ 926.245669][T19452] should_fail_ex.cold+0x5/0xa [ 926.245688][T19452] should_failslab+0xc2/0x120 [ 926.245704][T19452] __kmalloc_cache_noprof+0x7a/0x6f0 [ 926.245723][T19452] ? snd_seq_port_connect+0x61/0x560 [ 926.245738][T19452] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 926.245759][T19452] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 926.245783][T19452] snd_seq_port_connect+0x61/0x560 [ 926.245797][T19452] ? _raw_read_unlock+0x28/0x50 [ 926.245816][T19452] ? check_subscription_permission.isra.0+0x146/0x240 [ 926.245842][T19452] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 926.245861][T19452] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 926.245885][T19452] call_seq_client_ctl+0xa3/0x130 [ 926.245909][T19452] snd_seq_kernel_client_ctl+0x77/0xd0 [ 926.245934][T19452] snd_seq_oss_midi_open+0x5ad/0x6b0 [ 926.245953][T19452] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 926.245971][T19452] ? find_held_lock+0x2b/0x80 [ 926.245989][T19452] ? lockdep_hardirqs_on+0x78/0x100 [ 926.246014][T19452] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 926.246032][T19452] ? get_mididev+0x115/0x160 [ 926.246051][T19452] snd_seq_oss_synth_setup_midi+0x131/0x590 [ 926.246074][T19452] snd_seq_oss_open+0x82e/0xa10 [ 926.246093][T19452] odev_open+0x79/0xc0 [ 926.246105][T19452] ? __pfx_odev_open+0x10/0x10 [ 926.246117][T19452] soundcore_open+0x2e3/0x5a0 [ 926.246134][T19452] ? __pfx_soundcore_open+0x10/0x10 [ 926.246148][T19452] chrdev_open+0x234/0x6a0 [ 926.246163][T19452] ? __pfx_apparmor_file_open+0x10/0x10 [ 926.246186][T19452] ? __pfx_chrdev_open+0x10/0x10 [ 926.246202][T19452] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 926.246222][T19452] do_dentry_open+0x6d8/0x1660 [ 926.246237][T19452] ? __pfx_chrdev_open+0x10/0x10 [ 926.246256][T19452] vfs_open+0x82/0x3f0 [ 926.246276][T19452] path_openat+0x208c/0x31a0 [ 926.246297][T19452] ? __pfx_path_openat+0x10/0x10 [ 926.246319][T19452] do_file_open+0x20e/0x430 [ 926.246335][T19452] ? __pfx_do_file_open+0x10/0x10 [ 926.246371][T19452] ? alloc_fd+0x476/0x790 [ 926.246388][T19452] ? do_getname+0x191/0x390 [ 926.246409][T19452] do_sys_openat2+0x10d/0x1e0 [ 926.246429][T19452] ? __pfx_do_sys_openat2+0x10/0x10 [ 926.246455][T19452] __x64_sys_openat+0x12d/0x210 [ 926.246474][T19452] ? __pfx___x64_sys_openat+0x10/0x10 [ 926.246500][T19452] do_syscall_64+0x106/0xf80 [ 926.246519][T19452] ? clear_bhb_loop+0x40/0x90 [ 926.246537][T19452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 926.246554][T19452] RIP: 0033:0x7fd638d9c799 [ 926.246568][T19452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 926.246583][T19452] RSP: 002b:00007fd639b81028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 926.246599][T19452] RAX: ffffffffffffffda RBX: 00007fd639015fa0 RCX: 00007fd638d9c799 [ 926.246608][T19452] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 926.246617][T19452] RBP: 00007fd638e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 926.246627][T19452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 926.246637][T19452] R13: 00007fd639016038 R14: 00007fd639015fa0 R15: 00007ffd5f224a08 [ 926.246664][T19452] [ 929.599871][T19480] NFSD: Failed to start, no listeners configured. [ 931.607335][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.613660][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 932.917499][T15908] Bluetooth: hci4: unexpected event 0x06 length: 440 > 3 [ 934.562300][T19565] FAULT_INJECTION: forcing a failure. [ 934.562300][T19565] name failslab, interval 1, probability 0, space 0, times 0 [ 934.698296][T19565] CPU: 0 UID: 0 PID: 19565 Comm: syz.0.2856 Tainted: G U L syzkaller #0 PREEMPT(full) [ 934.698326][T19565] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 934.698332][T19565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 934.698342][T19565] Call Trace: [ 934.698348][T19565] [ 934.698355][T19565] dump_stack_lvl+0x100/0x190 [ 934.698382][T19565] should_fail_ex.cold+0x5/0xa [ 934.698401][T19565] should_failslab+0xc2/0x120 [ 934.698417][T19565] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 934.698438][T19565] ? security_file_alloc+0x34/0x2c0 [ 934.698456][T19565] ? trace_kmem_cache_alloc+0xf3/0x120 [ 934.698474][T19565] security_file_alloc+0x34/0x2c0 [ 934.698492][T19565] init_file+0x95/0x480 [ 934.698510][T19565] alloc_empty_file+0x73/0x1c0 [ 934.698528][T19565] path_openat+0xe8/0x31a0 [ 934.698542][T19565] ? kasan_save_stack+0x3f/0x50 [ 934.698562][T19565] ? kasan_save_stack+0x30/0x50 [ 934.698587][T19565] ? kasan_save_track+0x14/0x30 [ 934.698607][T19565] ? __kasan_slab_alloc+0x89/0x90 [ 934.698620][T19565] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 934.698641][T19565] ? do_getname+0x35/0x390 [ 934.698658][T19565] ? do_sys_openat2+0xc5/0x1e0 [ 934.698677][T19565] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 934.698695][T19565] ? __pfx_path_openat+0x10/0x10 [ 934.698717][T19565] do_file_open+0x20e/0x430 [ 934.698733][T19565] ? __pfx_do_file_open+0x10/0x10 [ 934.698763][T19565] ? alloc_fd+0x476/0x790 [ 934.698780][T19565] ? do_getname+0x191/0x390 [ 934.698798][T19565] do_sys_openat2+0x10d/0x1e0 [ 934.698817][T19565] ? __pfx_do_sys_openat2+0x10/0x10 [ 934.698836][T19565] ? find_held_lock+0x2b/0x80 [ 934.698854][T19565] __x64_sys_openat+0x12d/0x210 [ 934.698880][T19565] ? __pfx___x64_sys_openat+0x10/0x10 [ 934.698907][T19565] do_syscall_64+0x106/0xf80 [ 934.698929][T19565] ? clear_bhb_loop+0x40/0x90 [ 934.698947][T19565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 934.698962][T19565] RIP: 0033:0x7fb2a819c799 [ 934.698975][T19565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 934.698993][T19565] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 934.699009][T19565] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 934.699019][T19565] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 934.699028][T19565] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 934.699038][T19565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 934.699047][T19565] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 934.699066][T19565] [ 935.812173][T15908] Bluetooth: hci2: unexpected event 0x06 length: 440 > 3 [ 935.852129][T15908] Bluetooth: hci1: unexpected event 0x07 length: 440 > 255 [ 936.320377][T19592] zswap: compressor not available [ 936.541053][T15908] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 936.541080][T15908] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 936.561354][T15908] Bluetooth: hci0: Dropping invalid advertising data [ 936.568132][T15908] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 936.568154][T15908] Bluetooth: hci0: Dropping invalid advertising data [ 936.583118][T15908] Bluetooth: hci0: Malformed LE Event: 0x02 [ 936.604903][T19593] zswap: compressor not available [ 937.458263][T19607] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 937.512970][T19607] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 937.560881][T19607] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 937.617767][T19607] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 938.113416][T19628] NFSD: Failed to start, no listeners configured. [ 938.548590][T15908] Bluetooth: hci0: unexpected event 0x07 length: 440 > 255 [ 938.946571][T15908] Bluetooth: hci4: command 0x0c1a tx timeout [ 939.505870][T15908] Bluetooth: hci1: command 0x0c1a tx timeout [ 939.585493][T15908] Bluetooth: hci0: command 0x0c1a tx timeout [ 939.672121][T15908] Bluetooth: hci2: command 0x0c1a tx timeout [ 940.092156][T15908] Bluetooth: hci4: unexpected event 0x07 length: 440 > 255 [ 941.079188][T19695] NFSD: Failed to start, no listeners configured. [ 942.154331][T19718] zswap: compressor not available [ 942.616633][T15908] Bluetooth: hci0: unexpected event 0x07 length: 440 > 255 [ 943.064011][T19741] ptp ptp0: new virtual clock ptp1 [ 943.160762][T19741] ptp ptp0: new virtual clock ptp2 [ 943.219713][T19741] ptp ptp0: new virtual clock ptp3 [ 943.244114][T19741] ptp ptp0: guarantee physical clock free running [ 943.875525][T19754] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 943.977290][T19754] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 944.028374][T19754] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 944.060021][T19754] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 944.080854][ T51] Bluetooth: hci1: unexpected event 0x14 length: 440 > 6 [ 945.107680][T15908] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 945.666008][T15908] Bluetooth: hci4: command 0x0c1a tx timeout [ 945.987448][T15908] Bluetooth: hci0: command 0x0c1a tx timeout [ 945.993566][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 946.052015][T19808] zswap: compressor not available [ 946.065453][T15908] Bluetooth: hci2: command 0x0c1a tx timeout [ 948.302588][T19845] zswap: compressor not available [ 948.314651][T19852] NFSD: Failed to start, no listeners configured. [ 949.772372][T19883] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 950.568840][T19905] NFSD: Failed to start, no listeners configured. [ 951.525156][T19931] ubi3: attaching mtd1 [ 951.976561][T19938] ERROR: Out of memory at tomoyo_memory_ok. [ 952.760177][T19964] NFSD: Failed to start, no listeners configured. [ 953.236501][T19974] bridge0: port 4(gretap0) entered blocking state [ 953.277752][T19974] bridge0: port 4(gretap0) entered disabled state [ 953.316591][T19974] gretap0: entered allmulticast mode [ 953.365195][T19974] FAULT_INJECTION: forcing a failure. [ 953.365195][T19974] name failslab, interval 1, probability 0, space 0, times 0 [ 953.440361][T19974] CPU: 0 UID: 0 PID: 19974 Comm: syz.4.2944 Tainted: G U L syzkaller #0 PREEMPT(full) [ 953.440391][T19974] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 953.440403][T19974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 953.440413][T19974] Call Trace: [ 953.440419][T19974] [ 953.440426][T19974] dump_stack_lvl+0x100/0x190 [ 953.440455][T19974] should_fail_ex.cold+0x5/0xa [ 953.440474][T19974] should_failslab+0xc2/0x120 [ 953.440490][T19974] __kmalloc_cache_noprof+0x7a/0x6f0 [ 953.440509][T19974] ? __netdev_adjacent_dev_insert+0x22b/0xbf0 [ 953.440529][T19974] ? __pfx_ib_device_get_by_netdev+0x10/0x10 [ 953.440637][T19974] __netdev_adjacent_dev_insert+0x22b/0xbf0 [ 953.440658][T19974] ? ip6_route_dev_notify+0xe4/0x750 [ 953.440717][T19974] ? ndisc_netdev_event+0xa1/0x560 [ 953.440778][T19974] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 953.440798][T19974] ? notifier_call_chain+0x34c/0x420 [ 953.440824][T19974] __netdev_upper_dev_link+0x3d8/0x7e0 [ 953.440843][T19974] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 953.440858][T19974] ? kernfs_root+0xf8/0x2a0 [ 953.440880][T19974] ? kernfs_add_one+0x214/0x850 [ 953.440906][T19974] netdev_master_upper_dev_link+0x9f/0xd0 [ 953.440922][T19974] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 953.440939][T19974] ? lockdep_rtnl_is_held+0x26/0x40 [ 953.440956][T19974] ? netdev_is_rx_handler_busy+0x83/0x140 [ 953.440980][T19974] br_add_if+0x9fd/0x1b40 [ 953.441001][T19974] ? security_capable+0x80/0x260 [ 953.441026][T19974] add_del_if+0x114/0x160 [ 953.441045][T19974] br_dev_siocdevprivate+0x8ac/0x1650 [ 953.441067][T19974] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 953.441094][T19974] ? lock_acquire+0x1cf/0x380 [ 953.441118][T19974] ? netdev_name_node_lookup+0x107/0x150 [ 953.441135][T19974] ? __mutex_lock+0x26a/0x1b90 [ 953.441157][T19974] dev_ifsioc+0xc1e/0x1e90 [ 953.441178][T19974] ? __pfx_dev_ifsioc+0x10/0x10 [ 953.441194][T19974] ? __pfx___mutex_lock+0x10/0x10 [ 953.441220][T19974] ? dev_load+0x8e/0x240 [ 953.441236][T19974] ? dev_load+0x8e/0x240 [ 953.441257][T19974] dev_ioctl+0x70e/0x1070 [ 953.441277][T19974] sock_ioctl+0x494/0x6b0 [ 953.441294][T19974] ? __pfx_sock_ioctl+0x10/0x10 [ 953.441308][T19974] ? hook_file_ioctl_common+0x146/0x410 [ 953.441329][T19974] ? __fget_files+0x21f/0x3d0 [ 953.441345][T19974] ? __pfx_sock_ioctl+0x10/0x10 [ 953.441362][T19974] __x64_sys_ioctl+0x18e/0x210 [ 953.441384][T19974] do_syscall_64+0x106/0xf80 [ 953.441416][T19974] ? clear_bhb_loop+0x40/0x90 [ 953.441435][T19974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 953.441451][T19974] RIP: 0033:0x7fd638d9c799 [ 953.441465][T19974] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 953.441480][T19974] RSP: 002b:00007fd639b81028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 953.441497][T19974] RAX: ffffffffffffffda RBX: 00007fd639015fa0 RCX: 00007fd638d9c799 [ 953.441507][T19974] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 000000000000000a [ 953.441516][T19974] RBP: 00007fd638e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 953.441526][T19974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 953.441536][T19974] R13: 00007fd639016038 R14: 00007fd639015fa0 R15: 00007ffd5f224a08 [ 953.441555][T19974] [ 954.442785][T19976] zswap: compressor not available [ 954.451672][T19974] gretap0: left allmulticast mode [ 955.470348][T20024] NFSD: Failed to start, no listeners configured. [ 956.732000][T20055] FAULT_INJECTION: forcing a failure. [ 956.732000][T20055] name failslab, interval 1, probability 0, space 0, times 0 [ 956.789702][T20052] NFSD: Failed to start, no listeners configured. [ 956.813080][T20055] CPU: 0 UID: 0 PID: 20055 Comm: syz.0.2959 Tainted: G U L syzkaller #0 PREEMPT(full) [ 956.813108][T20055] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 956.813121][T20055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 956.813131][T20055] Call Trace: [ 956.813136][T20055] [ 956.813143][T20055] dump_stack_lvl+0x100/0x190 [ 956.813172][T20055] should_fail_ex.cold+0x5/0xa [ 956.813190][T20055] should_failslab+0xc2/0x120 [ 956.813206][T20055] __kmalloc_cache_noprof+0x7a/0x6f0 [ 956.813225][T20055] ? tomoyo_init_log+0x1a0/0x20c0 [ 956.813249][T20055] tomoyo_init_log+0x1a0/0x20c0 [ 956.813267][T20055] ? __pfx_format_decode+0x10/0x10 [ 956.813302][T20055] ? number+0x983/0xc90 [ 956.813317][T20055] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 956.813346][T20055] ? __pfx_tomoyo_init_log+0x10/0x10 [ 956.813369][T20055] tomoyo_write_log2+0x2ed/0xbc0 [ 956.813391][T20055] tomoyo_supervisor+0x15e/0x1340 [ 956.813415][T20055] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 956.813445][T20055] ? tomoyo_realpath_from_path+0x19c/0x690 [ 956.813467][T20055] ? tomoyo_check_path_number_acl+0x1e6/0x2f0 [ 956.813489][T20055] tomoyo_path_number_perm+0x445/0x580 [ 956.813506][T20055] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 956.813521][T20055] ? find_held_lock+0x2b/0x80 [ 956.813535][T20055] ? rcu_read_unlock+0x17/0x60 [ 956.813555][T20055] ? do_raw_spin_lock+0x128/0x260 [ 956.813574][T20055] ? find_held_lock+0x2b/0x80 [ 956.813597][T20055] ? __pfx_d_add+0x10/0x10 [ 956.813614][T20055] ? d_alloc+0x176/0x1e0 [ 956.813629][T20055] ? current_check_access_path+0x281/0x460 [ 956.813651][T20055] ? simple_lookup+0x105/0x1d0 [ 956.813672][T20055] ? lookup_one_qstr_excl+0xb3/0x250 [ 956.813693][T20055] tomoyo_path_mkdir+0x9b/0xe0 [ 956.813713][T20055] ? __pfx_tomoyo_path_mkdir+0x10/0x10 [ 956.813738][T20055] security_path_mkdir+0x154/0x2e0 [ 956.813758][T20055] filename_mkdirat+0x168/0x5e0 [ 956.813785][T20055] ? __pfx_filename_mkdirat+0x10/0x10 [ 956.813802][T20055] ? strncpy_from_user+0x19d/0x2d0 [ 956.813821][T20055] ? do_getname+0x191/0x390 [ 956.813841][T20055] __x64_sys_mkdir+0x6b/0x90 [ 956.813858][T20055] do_syscall_64+0x106/0xf80 [ 956.813878][T20055] ? clear_bhb_loop+0x40/0x90 [ 956.813896][T20055] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 956.813911][T20055] RIP: 0033:0x7fb2a819c799 [ 956.813925][T20055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 956.813939][T20055] RSP: 002b:00007fb2a90db028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 956.813955][T20055] RAX: ffffffffffffffda RBX: 00007fb2a8416090 RCX: 00007fb2a819c799 [ 956.813965][T20055] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000200000000100 [ 956.813975][T20055] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 956.813984][T20055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 956.813993][T20055] R13: 00007fb2a8416128 R14: 00007fb2a8416090 R15: 00007fff82891898 [ 956.814014][T20055] [ 959.186031][T20080] zswap: compressor not available [ 959.684806][T20089] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2967'. [ 960.113390][T20089] bridge_slave_1 (unregistering): left allmulticast mode [ 960.217921][T20092] NFSD: Failed to start, no listeners configured. [ 960.288980][T20089] bridge_slave_1 (unregistering): left promiscuous mode [ 960.407380][T20089] bridge0: port 2(bridge_slave_1) entered disabled state [ 961.839146][T20104] ERROR: Out of memory at tomoyo_memory_ok. [ 961.981797][T20097] ERROR: Out of memory at tomoyo_memory_ok. [ 962.842418][T20123] ERROR: Out of memory at tomoyo_memory_ok. [ 964.325863][ T9] usb usb40-port2: attempt power cycle [ 964.906258][ T9] usb usb40-port2: unable to enumerate USB device [ 965.649209][T20156] bridge0: port 4(team0) entered blocking state [ 965.722064][T20156] bridge0: port 4(team0) entered disabled state [ 965.798328][T20156] team0: entered allmulticast mode [ 965.803569][T20156] team_slave_0: entered allmulticast mode [ 965.954695][T20156] team_slave_1: entered allmulticast mode [ 966.059938][T20156] team0: entered promiscuous mode [ 966.098545][T20156] team_slave_0: entered promiscuous mode [ 966.118278][T20163] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input24 [ 966.165182][T20156] team_slave_1: entered promiscuous mode [ 967.218756][T20180] NFSD: Failed to start, no listeners configured. [ 967.884755][T20185] zswap: compressor not available [ 967.956480][T15908] Bluetooth: hci2: unexpected event 0x06 length: 440 > 3 [ 968.606342][T20203] bridge0: port 3(gretap0) entered blocking state [ 968.672015][T20203] bridge0: port 3(gretap0) entered disabled state [ 968.695630][T20203] gretap0: entered allmulticast mode [ 968.722044][T20203] FAULT_INJECTION: forcing a failure. [ 968.722044][T20203] name failslab, interval 1, probability 0, space 0, times 0 [ 968.762386][T20203] CPU: 0 UID: 0 PID: 20203 Comm: syz.2.2991 Tainted: G U L syzkaller #0 PREEMPT(full) [ 968.762415][T20203] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 968.762422][T20203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 968.762432][T20203] Call Trace: [ 968.762438][T20203] [ 968.762444][T20203] dump_stack_lvl+0x100/0x190 [ 968.762474][T20203] should_fail_ex.cold+0x5/0xa [ 968.762494][T20203] should_failslab+0xc2/0x120 [ 968.762529][T20203] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 968.762552][T20203] ? __kernfs_new_node+0xd2/0x960 [ 968.762579][T20203] __kernfs_new_node+0xd2/0x960 [ 968.762601][T20203] ? __pfx___kernfs_new_node+0x10/0x10 [ 968.762625][T20203] ? find_held_lock+0x2b/0x80 [ 968.762639][T20203] ? kernfs_root+0xee/0x2a0 [ 968.762657][T20203] ? kernfs_root+0xee/0x2a0 [ 968.762681][T20203] kernfs_new_node+0x11b/0x1a0 [ 968.762705][T20203] __kernfs_create_file+0x53/0x350 [ 968.762724][T20203] sysfs_add_file_mode_ns+0x207/0x3c0 [ 968.762747][T20203] sysfs_create_file_ns+0x145/0x1e0 [ 968.762765][T20203] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 968.762783][T20203] ? kernfs_create_link+0x1bd/0x240 [ 968.762800][T20203] ? kernfs_put+0x3f/0x60 [ 968.762819][T20203] ? sysfs_do_create_link_sd+0xbb/0x140 [ 968.762841][T20203] br_sysfs_addif+0xe4/0x210 [ 968.762940][T20203] br_add_if+0x701/0x1b40 [ 968.762961][T20203] ? security_capable+0x80/0x260 [ 968.762986][T20203] add_del_if+0x114/0x160 [ 968.763006][T20203] br_dev_siocdevprivate+0x8ac/0x1650 [ 968.763025][T20203] ? __lock_acquire+0x4a5/0x2630 [ 968.763044][T20203] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 968.763071][T20203] ? do_raw_spin_lock+0x128/0x260 [ 968.763095][T20203] ? mark_held_locks+0x40/0x70 [ 968.763115][T20203] ? netdev_name_node_lookup+0x107/0x150 [ 968.763135][T20203] ? __mutex_lock+0x26a/0x1b90 [ 968.763158][T20203] dev_ifsioc+0xc1e/0x1e90 [ 968.763179][T20203] ? __pfx_dev_ifsioc+0x10/0x10 [ 968.763196][T20203] ? __pfx___mutex_lock+0x10/0x10 [ 968.763222][T20203] ? dev_load+0x8e/0x240 [ 968.763238][T20203] ? dev_load+0x8e/0x240 [ 968.763259][T20203] dev_ioctl+0x70e/0x1070 [ 968.763279][T20203] sock_ioctl+0x494/0x6b0 [ 968.763305][T20203] ? __pfx_sock_ioctl+0x10/0x10 [ 968.763320][T20203] ? hook_file_ioctl_common+0x146/0x410 [ 968.763342][T20203] ? __fget_files+0x21f/0x3d0 [ 968.763360][T20203] ? __pfx_sock_ioctl+0x10/0x10 [ 968.763377][T20203] __x64_sys_ioctl+0x18e/0x210 [ 968.763400][T20203] do_syscall_64+0x106/0xf80 [ 968.763422][T20203] ? clear_bhb_loop+0x40/0x90 [ 968.763440][T20203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 968.763455][T20203] RIP: 0033:0x7f8bbbb9c799 [ 968.763470][T20203] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 968.763485][T20203] RSP: 002b:00007f8bbca84028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 968.763501][T20203] RAX: ffffffffffffffda RBX: 00007f8bbbe16090 RCX: 00007f8bbbb9c799 [ 968.763511][T20203] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 000000000000000a [ 968.763521][T20203] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 968.763531][T20203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 968.763540][T20203] R13: 00007f8bbbe16128 R14: 00007f8bbbe16090 R15: 00007ffe4edc0ae8 [ 968.763560][T20203] [ 969.113446][T20203] gretap0: left allmulticast mode [ 969.816989][T15908] Bluetooth: hci2: unexpected event 0x14 length: 440 > 6 [ 970.698181][T20229] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2997'. [ 971.815639][T20246] phram: not enough arguments [ 971.892866][T20247] bridge0: port 3(gretap0) entered blocking state [ 971.986261][T20247] bridge0: port 3(gretap0) entered disabled state [ 972.048163][T20247] gretap0: entered allmulticast mode [ 972.092523][T20247] FAULT_INJECTION: forcing a failure. [ 972.092523][T20247] name failslab, interval 1, probability 0, space 0, times 0 [ 972.159400][T20247] CPU: 0 UID: 0 PID: 20247 Comm: syz.1.3001 Tainted: G U L syzkaller #0 PREEMPT(full) [ 972.159451][T20247] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 972.159464][T20247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 972.159483][T20247] Call Trace: [ 972.159495][T20247] [ 972.159506][T20247] dump_stack_lvl+0x100/0x190 [ 972.159538][T20247] should_fail_ex.cold+0x5/0xa [ 972.159564][T20247] should_failslab+0xc2/0x120 [ 972.159580][T20247] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 972.159601][T20247] ? __kernfs_new_node+0xd2/0x960 [ 972.159625][T20247] __kernfs_new_node+0xd2/0x960 [ 972.159647][T20247] ? __pfx___kernfs_new_node+0x10/0x10 [ 972.159672][T20247] ? find_held_lock+0x2b/0x80 [ 972.159685][T20247] ? kernfs_root+0xee/0x2a0 [ 972.159703][T20247] ? kernfs_root+0xee/0x2a0 [ 972.159726][T20247] kernfs_new_node+0x11b/0x1a0 [ 972.159751][T20247] __kernfs_create_file+0x53/0x350 [ 972.159769][T20247] sysfs_add_file_mode_ns+0x207/0x3c0 [ 972.159792][T20247] sysfs_create_file_ns+0x145/0x1e0 [ 972.159811][T20247] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 972.159829][T20247] ? kernfs_create_link+0x1bd/0x240 [ 972.159845][T20247] ? kernfs_put+0x3f/0x60 [ 972.159865][T20247] ? sysfs_do_create_link_sd+0xbb/0x140 [ 972.159886][T20247] br_sysfs_addif+0xe4/0x210 [ 972.159909][T20247] br_add_if+0x701/0x1b40 [ 972.159929][T20247] ? security_capable+0x80/0x260 [ 972.159954][T20247] add_del_if+0x114/0x160 [ 972.159978][T20247] br_dev_siocdevprivate+0x8ac/0x1650 [ 972.159998][T20247] ? __lock_acquire+0x4a5/0x2630 [ 972.160016][T20247] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 972.160041][T20247] ? do_raw_spin_lock+0x128/0x260 [ 972.160068][T20247] ? mark_held_locks+0x40/0x70 [ 972.160088][T20247] ? netdev_name_node_lookup+0x107/0x150 [ 972.160106][T20247] ? __mutex_lock+0x26a/0x1b90 [ 972.160132][T20247] dev_ifsioc+0xc1e/0x1e90 [ 972.160152][T20247] ? __pfx_dev_ifsioc+0x10/0x10 [ 972.160169][T20247] ? __pfx___mutex_lock+0x10/0x10 [ 972.160195][T20247] ? dev_load+0x8e/0x240 [ 972.160211][T20247] ? dev_load+0x8e/0x240 [ 972.160232][T20247] dev_ioctl+0x70e/0x1070 [ 972.160251][T20247] sock_ioctl+0x494/0x6b0 [ 972.160272][T20247] ? __pfx_sock_ioctl+0x10/0x10 [ 972.160288][T20247] ? hook_file_ioctl_common+0x146/0x410 [ 972.160310][T20247] ? __fget_files+0x21f/0x3d0 [ 972.160326][T20247] ? __pfx_sock_ioctl+0x10/0x10 [ 972.160343][T20247] __x64_sys_ioctl+0x18e/0x210 [ 972.160365][T20247] do_syscall_64+0x106/0xf80 [ 972.160383][T20247] ? clear_bhb_loop+0x40/0x90 [ 972.160401][T20247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 972.160416][T20247] RIP: 0033:0x7f4191f9c799 [ 972.160434][T20247] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 972.160450][T20247] RSP: 002b:00007f4192f19028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 972.160466][T20247] RAX: ffffffffffffffda RBX: 00007f4192216090 RCX: 00007f4191f9c799 [ 972.160476][T20247] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 000000000000000a [ 972.160486][T20247] RBP: 00007f4192032c99 R08: 0000000000000000 R09: 0000000000000000 [ 972.160496][T20247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 972.160505][T20247] R13: 00007f4192216128 R14: 00007f4192216090 R15: 00007ffd071165f8 [ 972.160525][T20247] [ 972.161123][T20247] gretap0: left allmulticast mode [ 972.560846][T20251] zswap: compressor not available [ 972.747317][T20259] zswap: compressor not available [ 973.314419][T15908] Bluetooth: hci2: unexpected event 0x14 length: 440 > 6 [ 974.239363][T20289] netlink: 346 bytes leftover after parsing attributes in process `syz.4.3009'. [ 974.322099][T20290] netlink: 346 bytes leftover after parsing attributes in process `syz.4.3009'. [ 975.554383][T20324] phram: not enough arguments [ 976.203083][T20329] zswap: compressor not available [ 978.286169][T20378] sd 0:0:1:0: PR command failed: 1026 [ 978.316622][T20378] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 978.380290][T20378] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 978.711954][T20391] NFSD: Failed to start, no listeners configured. [ 980.190852][T20413] FAULT_INJECTION: forcing a failure. [ 980.190852][T20413] name failslab, interval 1, probability 0, space 0, times 0 [ 980.262554][T20413] CPU: 0 UID: 0 PID: 20413 Comm: syz.4.3034 Tainted: G U L syzkaller #0 PREEMPT(full) [ 980.262585][T20413] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 980.262592][T20413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 980.262602][T20413] Call Trace: [ 980.262608][T20413] [ 980.262614][T20413] dump_stack_lvl+0x100/0x190 [ 980.262643][T20413] should_fail_ex.cold+0x5/0xa [ 980.262660][T20413] should_failslab+0xc2/0x120 [ 980.262676][T20413] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 980.262698][T20413] ? security_inode_alloc+0x3b/0x2c0 [ 980.262714][T20413] ? lockdep_init_map_type+0x5c/0x250 [ 980.262736][T20413] security_inode_alloc+0x3b/0x2c0 [ 980.262751][T20413] inode_init_always_gfp+0xced/0x1040 [ 980.262769][T20413] alloc_inode+0x8e/0x250 [ 980.262787][T20413] sock_alloc+0x44/0x280 [ 980.262810][T20413] ? security_socket_create+0x7f/0x250 [ 980.262832][T20413] __sock_create+0xc2/0x860 [ 980.262851][T20413] __sys_socket+0x14d/0x260 [ 980.262869][T20413] ? __pfx___sys_socket+0x10/0x10 [ 980.262890][T20413] __x64_sys_socket+0x72/0xb0 [ 980.262905][T20413] ? lockdep_hardirqs_on+0x78/0x100 [ 980.262926][T20413] do_syscall_64+0x106/0xf80 [ 980.262945][T20413] ? clear_bhb_loop+0x40/0x90 [ 980.262962][T20413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 980.262977][T20413] RIP: 0033:0x7fd638d9c799 [ 980.262990][T20413] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 980.263004][T20413] RSP: 002b:00007fd639b81028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 980.263020][T20413] RAX: ffffffffffffffda RBX: 00007fd639015fa0 RCX: 00007fd638d9c799 [ 980.263030][T20413] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 980.263038][T20413] RBP: 00007fd638e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 980.263047][T20413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 980.263056][T20413] R13: 00007fd639016038 R14: 00007fd639015fa0 R15: 00007ffd5f224a08 [ 980.263084][T20413] [ 980.263112][T20413] socket: no more sockets [ 981.053845][T20443] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.1.3039: 7 [ 981.065322][ T10] usb usb40-port2: attempt power cycle [ 981.646369][ T10] usb usb40-port2: unable to enumerate USB device [ 981.957742][T20460] zswap: compressor not available [ 982.303814][T20478] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3047'. [ 983.104789][T15908] Bluetooth: hci2: unexpected event 0x06 length: 440 > 3 [ 983.811660][T20512] FAULT_INJECTION: forcing a failure. [ 983.811660][T20512] name failslab, interval 1, probability 0, space 0, times 0 [ 984.015745][T20512] CPU: 0 UID: 0 PID: 20512 Comm: syz.0.3053 Tainted: G U L syzkaller #0 PREEMPT(full) [ 984.015773][T20512] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 984.015779][T20512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 984.015789][T20512] Call Trace: [ 984.015794][T20512] [ 984.015802][T20512] dump_stack_lvl+0x100/0x190 [ 984.015830][T20512] should_fail_ex.cold+0x5/0xa [ 984.015850][T20512] should_failslab+0xc2/0x120 [ 984.015866][T20512] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 984.015888][T20512] ? security_inode_alloc+0x3b/0x2c0 [ 984.015913][T20512] ? lockdep_init_map_type+0x5c/0x250 [ 984.015936][T20512] security_inode_alloc+0x3b/0x2c0 [ 984.015952][T20512] inode_init_always_gfp+0xced/0x1040 [ 984.015971][T20512] alloc_inode+0x8e/0x250 [ 984.015989][T20512] sock_alloc+0x44/0x280 [ 984.016011][T20512] ? security_socket_create+0x7f/0x250 [ 984.016033][T20512] __sock_create+0xc2/0x860 [ 984.016052][T20512] __sys_socket+0x14d/0x260 [ 984.016069][T20512] ? __pfx___sys_socket+0x10/0x10 [ 984.016090][T20512] __x64_sys_socket+0x72/0xb0 [ 984.016105][T20512] ? lockdep_hardirqs_on+0x78/0x100 [ 984.016126][T20512] do_syscall_64+0x106/0xf80 [ 984.016145][T20512] ? clear_bhb_loop+0x40/0x90 [ 984.016162][T20512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 984.016177][T20512] RIP: 0033:0x7fb2a819c799 [ 984.016191][T20512] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 984.016206][T20512] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 984.016223][T20512] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 984.016235][T20512] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 984.016244][T20512] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 984.016252][T20512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 984.016260][T20512] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 984.016279][T20512] [ 984.016300][T20512] socket: no more sockets [ 985.364496][T20525] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 985.371298][T20525] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 985.398974][T20525] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 985.428079][T20525] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 986.785449][T15908] Bluetooth: hci4: command 0x0c1a tx timeout [ 987.064549][T20560] zswap: compressor not available [ 987.255799][T15908] Bluetooth: hci2: unexpected event 0x06 length: 440 > 3 [ 987.307158][T20570] NFSD: Failed to start, no listeners configured. [ 987.429485][T15908] Bluetooth: hci0: command 0x0c1a tx timeout [ 987.437417][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 987.505388][T15908] Bluetooth: hci2: command 0x0c1a tx timeout [ 988.551835][T20596] NFSD: Failed to start, no listeners configured. [ 988.964686][T20610] FAULT_INJECTION: forcing a failure. [ 988.964686][T20610] name failslab, interval 1, probability 0, space 0, times 0 [ 989.058381][T20610] CPU: 0 UID: 0 PID: 20610 Comm: syz.0.3077 Tainted: G U L syzkaller #0 PREEMPT(full) [ 989.058410][T20610] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 989.058416][T20610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 989.058426][T20610] Call Trace: [ 989.058432][T20610] [ 989.058438][T20610] dump_stack_lvl+0x100/0x190 [ 989.058475][T20610] should_fail_ex.cold+0x5/0xa [ 989.058494][T20610] ? tomoyo_realpath_from_path+0xb6/0x690 [ 989.058514][T20610] should_failslab+0xc2/0x120 [ 989.058530][T20610] __kmalloc_noprof+0xe0/0x850 [ 989.058556][T20610] tomoyo_realpath_from_path+0xb6/0x690 [ 989.058579][T20610] tomoyo_path_perm+0x276/0x460 [ 989.058593][T20610] ? tomoyo_path_perm+0x262/0x460 [ 989.058610][T20610] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 989.058632][T20610] ? __lock_acquire+0x4a5/0x2630 [ 989.058650][T20610] ? current_check_access_path+0x281/0x460 [ 989.058678][T20610] ? mnt_get_write_access+0x52/0x2f0 [ 989.058698][T20610] ? mnt_get_write_access+0x1e9/0x2f0 [ 989.058719][T20610] security_path_truncate+0x138/0x280 [ 989.058735][T20610] vfs_truncate+0x4ab/0x720 [ 989.058751][T20610] ? __pfx_vfs_truncate+0x10/0x10 [ 989.058771][T20610] do_sys_truncate+0xee/0x190 [ 989.058786][T20610] ? __pfx_do_sys_truncate+0x10/0x10 [ 989.058806][T20610] __x64_sys_truncate+0x54/0x80 [ 989.058821][T20610] do_syscall_64+0x106/0xf80 [ 989.058840][T20610] ? clear_bhb_loop+0x40/0x90 [ 989.058857][T20610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 989.058872][T20610] RIP: 0033:0x7fb2a819c799 [ 989.058885][T20610] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 989.058900][T20610] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 989.058914][T20610] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 989.058924][T20610] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000200000000040 [ 989.058933][T20610] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 989.058942][T20610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 989.058950][T20610] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 989.058969][T20610] [ 989.058977][T20610] ERROR: Out of memory at tomoyo_realpath_from_path. [ 989.297218][T20615] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3079'. [ 989.801944][T20625] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3082'. [ 990.456141][T15908] Bluetooth: hci1: unexpected event 0x3e length: 722 > 260 [ 990.456179][T15908] Bluetooth: hci1: unexpected subevent 0x0e length: 721 > 15 [ 990.473962][T15908] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 990.924884][T20634] NFSD: Failed to start, no listeners configured. [ 991.230462][T20639] zswap: compressor not available [ 991.831016][T20657] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3089'. [ 993.030559][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.037043][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 994.208690][T20692] FAULT_INJECTION: forcing a failure. [ 994.208690][T20692] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 994.295759][T20692] CPU: 0 UID: 0 PID: 20692 Comm: syz.1.3098 Tainted: G U L syzkaller #0 PREEMPT(full) [ 994.295785][T20692] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 994.295790][T20692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 994.295798][T20692] Call Trace: [ 994.295803][T20692] [ 994.295810][T20692] dump_stack_lvl+0x100/0x190 [ 994.295836][T20692] should_fail_ex.cold+0x5/0xa [ 994.295852][T20692] _copy_from_user+0x2e/0xd0 [ 994.295870][T20692] ____sys_sendmsg+0x1d1/0xb70 [ 994.295888][T20692] ? __pfx_____sys_sendmsg+0x10/0x10 [ 994.295905][T20692] ? __pfx__kstrtoull+0x10/0x10 [ 994.295927][T20692] ___sys_sendmsg+0x190/0x1e0 [ 994.295944][T20692] ? __pfx____sys_sendmsg+0x10/0x10 [ 994.295974][T20692] ? find_held_lock+0x2b/0x80 [ 994.295999][T20692] __sys_sendmmsg+0x205/0x430 [ 994.296020][T20692] ? __pfx___sys_sendmmsg+0x10/0x10 [ 994.296045][T20692] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 994.296073][T20692] ? fput+0x79/0x100 [ 994.296089][T20692] ? ksys_write+0x1ac/0x250 [ 994.296102][T20692] ? __pfx_ksys_write+0x10/0x10 [ 994.296117][T20692] __x64_sys_sendmmsg+0x9c/0x100 [ 994.296136][T20692] ? lockdep_hardirqs_on+0x78/0x100 [ 994.296154][T20692] do_syscall_64+0x106/0xf80 [ 994.296171][T20692] ? clear_bhb_loop+0x40/0x90 [ 994.296188][T20692] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 994.296202][T20692] RIP: 0033:0x7f4191f9c799 [ 994.296214][T20692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 994.296228][T20692] RSP: 002b:00007f4192f3a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 994.296242][T20692] RAX: ffffffffffffffda RBX: 00007f4192215fa0 RCX: 00007f4191f9c799 [ 994.296251][T20692] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 994.296259][T20692] RBP: 00007f4192f3a090 R08: 0000000000000000 R09: 0000000000000000 [ 994.296268][T20692] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 994.296276][T20692] R13: 00007f4192216038 R14: 00007f4192215fa0 R15: 00007ffd071165f8 [ 994.296294][T20692] [ 994.987595][T20704] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3100'. [ 995.005491][T15908] Bluetooth: hci0: unexpected event 0x16 length: 440 > 6 [ 995.058450][T20704] bridge0: port 2(bridge_slave_1) entered disabled state [ 995.073299][T20704] bridge0: port 1(bridge_slave_0) entered disabled state [ 995.355978][T20710] FAULT_INJECTION: forcing a failure. [ 995.355978][T20710] name failslab, interval 1, probability 0, space 0, times 0 [ 995.418571][T20710] CPU: 0 UID: 0 PID: 20710 Comm: syz.0.3101 Tainted: G U L syzkaller #0 PREEMPT(full) [ 995.418598][T20710] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 995.418605][T20710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 995.418614][T20710] Call Trace: [ 995.418620][T20710] [ 995.418627][T20710] dump_stack_lvl+0x100/0x190 [ 995.418654][T20710] should_fail_ex.cold+0x5/0xa [ 995.418672][T20710] should_failslab+0xc2/0x120 [ 995.418687][T20710] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 995.418709][T20710] ? security_inode_alloc+0x3b/0x2c0 [ 995.418724][T20710] ? lockdep_init_map_type+0x5c/0x250 [ 995.418746][T20710] security_inode_alloc+0x3b/0x2c0 [ 995.418761][T20710] inode_init_always_gfp+0xced/0x1040 [ 995.418780][T20710] alloc_inode+0x8e/0x250 [ 995.418798][T20710] sock_alloc+0x44/0x280 [ 995.418819][T20710] ? security_socket_create+0x7f/0x250 [ 995.418841][T20710] __sock_create+0xc2/0x860 [ 995.418859][T20710] __sys_socket+0x14d/0x260 [ 995.418876][T20710] ? __pfx___sys_socket+0x10/0x10 [ 995.418897][T20710] __x64_sys_socket+0x72/0xb0 [ 995.418913][T20710] ? lockdep_hardirqs_on+0x78/0x100 [ 995.418934][T20710] do_syscall_64+0x106/0xf80 [ 995.418952][T20710] ? clear_bhb_loop+0x40/0x90 [ 995.418969][T20710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 995.418984][T20710] RIP: 0033:0x7fb2a819c799 [ 995.418997][T20710] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 995.419012][T20710] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 995.419027][T20710] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 995.419037][T20710] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 995.419045][T20710] RBP: 00007fb2a8232c99 R08: 0000000000000000 R09: 0000000000000000 [ 995.419054][T20710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 995.419063][T20710] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 995.419083][T20710] [ 995.419108][T20710] socket: no more sockets [ 996.863358][T20729] NFSD: Failed to start, no listeners configured. [ 997.096331][T20732] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3107'. [ 998.366517][ T51] Bluetooth: hci2: unexpected event 0x16 length: 440 > 6 [ 998.449384][T20756] FAULT_INJECTION: forcing a failure. [ 998.449384][T20756] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 998.492917][T20754] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3112'. [ 998.601661][T20752] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3111'. [ 998.610994][T20756] CPU: 0 UID: 0 PID: 20756 Comm: syz.0.3113 Tainted: G U L syzkaller #0 PREEMPT(full) [ 998.611022][T20756] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 998.611027][T20756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 998.611036][T20756] Call Trace: [ 998.611041][T20756] [ 998.611046][T20756] dump_stack_lvl+0x100/0x190 [ 998.611073][T20756] should_fail_ex.cold+0x5/0xa [ 998.611087][T20756] ? prepare_alloc_pages+0x16d/0x5f0 [ 998.611105][T20756] should_fail_alloc_page+0xeb/0x140 [ 998.611121][T20756] prepare_alloc_pages+0x1f0/0x5f0 [ 998.611147][T20756] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 998.611169][T20756] ? bpf_ksym_find+0x124/0x1c0 [ 998.611187][T20756] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 998.611204][T20756] ? is_bpf_text_address+0x94/0x1a0 [ 998.611224][T20756] ? kernel_text_address+0x8d/0x100 [ 998.611244][T20756] ? __kernel_text_address+0xd/0x30 [ 998.611262][T20756] ? unwind_get_return_address+0x59/0xa0 [ 998.611280][T20756] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 998.611305][T20756] ? tomoyo_check_open_permission+0x1a2/0x3c0 [ 998.611325][T20756] ? look_up_lock_class+0x55/0x120 [ 998.611346][T20756] ? register_lock_class+0x40/0x560 [ 998.611363][T20756] ? find_held_lock+0x2b/0x80 [ 998.611376][T20756] ? ima_match_policy+0x8c4/0x2350 [ 998.611459][T20756] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 998.611483][T20756] ? policy_nodemask+0xed/0x4f0 [ 998.611500][T20756] alloc_pages_mpol+0x1fb/0x550 [ 998.611516][T20756] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 998.611535][T20756] alloc_pages_noprof+0x131/0x390 [ 998.611551][T20756] __pmd_alloc+0x3b/0x950 [ 998.611569][T20756] __handle_mm_fault+0xa99/0x2b60 [ 998.611590][T20756] ? mt_find+0x45e/0x8e0 [ 998.611611][T20756] ? __pfx___handle_mm_fault+0x10/0x10 [ 998.611631][T20756] ? __pfx_mt_find+0x10/0x10 [ 998.611661][T20756] ? find_vma+0xbf/0x140 [ 998.611673][T20756] ? __pfx_find_vma+0x10/0x10 [ 998.611688][T20756] handle_mm_fault+0x36d/0xa20 [ 998.611710][T20756] do_user_addr_fault+0x74c/0x12f0 [ 998.611737][T20756] exc_page_fault+0x6f/0xd0 [ 998.611756][T20756] asm_exc_page_fault+0x26/0x30 [ 998.611770][T20756] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 998.611787][T20756] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 998.611801][T20756] RSP: 0018:ffffc900001f79b0 EFLAGS: 00050246 [ 998.611813][T20756] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000008 [ 998.611822][T20756] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffc900001f7a38 [ 998.611830][T20756] RBP: 0000000000000008 R08: 0000000000000001 R09: fffff5200003ef47 [ 998.611839][T20756] R10: ffffc900001f7a3f R11: 0000000000000000 R12: 0000000000000000 [ 998.611847][T20756] R13: ffffc900001f7a38 R14: 1ffff9200003ef41 R15: ffffc900001f7d6c [ 998.611866][T20756] _copy_from_user+0x98/0xd0 [ 998.611883][T20756] ____sys_sendmsg+0x1d1/0xb70 [ 998.611901][T20756] ? __pfx_____sys_sendmsg+0x10/0x10 [ 998.611918][T20756] ? __pfx__kstrtoull+0x10/0x10 [ 998.611941][T20756] ___sys_sendmsg+0x190/0x1e0 [ 998.611957][T20756] ? __pfx____sys_sendmsg+0x10/0x10 [ 998.611981][T20756] ? find_held_lock+0x2b/0x80 [ 998.612006][T20756] __sys_sendmmsg+0x205/0x430 [ 998.612027][T20756] ? __pfx___sys_sendmmsg+0x10/0x10 [ 998.612052][T20756] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 998.612079][T20756] ? fput+0x79/0x100 [ 998.612095][T20756] ? ksys_write+0x1ac/0x250 [ 998.612107][T20756] ? __pfx_ksys_write+0x10/0x10 [ 998.612129][T20756] __x64_sys_sendmmsg+0x9c/0x100 [ 998.612148][T20756] ? lockdep_hardirqs_on+0x78/0x100 [ 998.612166][T20756] do_syscall_64+0x106/0xf80 [ 998.612183][T20756] ? clear_bhb_loop+0x40/0x90 [ 998.612200][T20756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 998.612214][T20756] RIP: 0033:0x7fb2a819c799 [ 998.612226][T20756] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 998.612240][T20756] RSP: 002b:00007fb2a90fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 998.612253][T20756] RAX: ffffffffffffffda RBX: 00007fb2a8415fa0 RCX: 00007fb2a819c799 [ 998.612262][T20756] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 998.612270][T20756] RBP: 00007fb2a90fc090 R08: 0000000000000000 R09: 0000000000000000 [ 998.612279][T20756] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 998.612287][T20756] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 998.612305][T20756] [ 999.526585][T20758] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3111'. [ 999.687657][T20761] FAULT_INJECTION: forcing a failure. [ 999.687657][T20761] name fail_futex, interval 1, probability 0, space 0, times 0 [ 999.715539][T20761] CPU: 0 UID: 0 PID: 20761 Comm: syz.2.3114 Tainted: G U L syzkaller #0 PREEMPT(full) [ 999.715569][T20761] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 999.715575][T20761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 999.715585][T20761] Call Trace: [ 999.715591][T20761] [ 999.715598][T20761] dump_stack_lvl+0x100/0x190 [ 999.715627][T20761] should_fail_ex.cold+0x5/0xa [ 999.715646][T20761] get_futex_key+0x1d2/0x1620 [ 999.715665][T20761] ? __pfx_get_futex_key+0x10/0x10 [ 999.715684][T20761] ? kasan_quarantine_put+0x104/0x240 [ 999.715705][T20761] ? lockdep_hardirqs_on+0x78/0x100 [ 999.715729][T20761] futex_wake+0xea/0x530 [ 999.715750][T20761] ? find_held_lock+0x2b/0x80 [ 999.715765][T20761] ? __pfx_futex_wake+0x10/0x10 [ 999.715789][T20761] ? ksys_write+0x190/0x250 [ 999.715802][T20761] ? ksys_write+0x190/0x250 [ 999.715818][T20761] do_futex+0x32b/0x350 [ 999.715836][T20761] ? __pfx_do_futex+0x10/0x10 [ 999.715858][T20761] __x64_sys_futex+0x34f/0x4d0 [ 999.715877][T20761] ? fput+0x79/0x100 [ 999.715892][T20761] ? __pfx___x64_sys_futex+0x10/0x10 [ 999.715910][T20761] ? ksys_write+0x1ac/0x250 [ 999.715923][T20761] ? __pfx_ksys_write+0x10/0x10 [ 999.715942][T20761] do_syscall_64+0x106/0xf80 [ 999.715966][T20761] ? clear_bhb_loop+0x40/0x90 [ 999.715984][T20761] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 999.715999][T20761] RIP: 0033:0x7f8bbbb9c799 [ 999.716012][T20761] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 999.716032][T20761] RSP: 002b:00007f8bbcaa50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 999.716047][T20761] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa8 RCX: 00007f8bbbb9c799 [ 999.716058][T20761] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8bbbe15fac [ 999.716068][T20761] RBP: 00007f8bbbe15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 999.716078][T20761] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 999.716087][T20761] R13: 00007f8bbbe16038 R14: 00007ffe4edc0a00 R15: 00007ffe4edc0ae8 [ 999.716107][T20761] [ 1000.396028][T20767] ptrace attach of "./syz-executor exec"[17311] was attempted by ""[20767] [ 1000.425571][T20765] ptrace attach of "./syz-executor exec"[17311] was attempted by ""[20765] [ 1000.548981][T20765] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3116'. [ 1000.666023][T20767] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3116'. [ 1001.207503][T20786] zswap: compressor not available [ 1002.961371][ T51] Bluetooth: hci4: unexpected event 0x05 length: 440 > 4 [ 1003.600367][T20803] NFSD: Failed to start, no listeners configured. [ 1006.031421][T20838] FAULT_INJECTION: forcing a failure. [ 1006.031421][T20838] name failslab, interval 1, probability 0, space 0, times 0 [ 1006.083051][T20836] NFSD: Failed to start, no listeners configured. [ 1006.099922][T20838] CPU: 0 UID: 0 PID: 20838 Comm: syz.2.3130 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1006.099951][T20838] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1006.099957][T20838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1006.099967][T20838] Call Trace: [ 1006.099975][T20838] [ 1006.099982][T20838] dump_stack_lvl+0x100/0x190 [ 1006.100009][T20838] should_fail_ex.cold+0x5/0xa [ 1006.100027][T20838] ? tomoyo_realpath_from_path+0xb6/0x690 [ 1006.100047][T20838] should_failslab+0xc2/0x120 [ 1006.100063][T20838] __kmalloc_noprof+0xe0/0x850 [ 1006.100097][T20838] tomoyo_realpath_from_path+0xb6/0x690 [ 1006.100121][T20838] tomoyo_path_perm+0x276/0x460 [ 1006.100137][T20838] ? tomoyo_path_perm+0x262/0x460 [ 1006.100154][T20838] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 1006.100177][T20838] ? __lock_acquire+0x4a5/0x2630 [ 1006.100195][T20838] ? current_check_access_path+0x281/0x460 [ 1006.100223][T20838] ? mnt_get_write_access+0x52/0x2f0 [ 1006.100243][T20838] ? mnt_get_write_access+0x1e9/0x2f0 [ 1006.100263][T20838] security_path_truncate+0x138/0x280 [ 1006.100279][T20838] vfs_truncate+0x4ab/0x720 [ 1006.100295][T20838] ? __pfx_vfs_truncate+0x10/0x10 [ 1006.100315][T20838] do_sys_truncate+0xee/0x190 [ 1006.100330][T20838] ? __pfx_do_sys_truncate+0x10/0x10 [ 1006.100350][T20838] __x64_sys_truncate+0x54/0x80 [ 1006.100365][T20838] do_syscall_64+0x106/0xf80 [ 1006.100385][T20838] ? clear_bhb_loop+0x40/0x90 [ 1006.100403][T20838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1006.100418][T20838] RIP: 0033:0x7f8bbbb9c799 [ 1006.100432][T20838] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1006.100446][T20838] RSP: 002b:00007f8bbcaa5028 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 1006.100460][T20838] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa0 RCX: 00007f8bbbb9c799 [ 1006.100470][T20838] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000200000000040 [ 1006.100479][T20838] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 1006.100488][T20838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1006.100496][T20838] R13: 00007f8bbbe16038 R14: 00007f8bbbe15fa0 R15: 00007ffe4edc0ae8 [ 1006.100515][T20838] [ 1006.100523][T20838] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1007.550912][T20855] NFSD: Failed to start, no listeners configured. [ 1007.634599][T20861] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3135'. [ 1007.836340][T20857] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3140'. [ 1008.070751][T20873] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1008.573086][ T51] Bluetooth: hci4: ACL packet for unknown connection handle 0 [ 1008.912424][T20887] NFSD: Failed to start, no listeners configured. [ 1008.973919][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1009.020871][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1009.065603][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1009.102934][ T9] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1009.142316][ T9] rtc rtc0: __rtc_set_alarm: err=-22 [ 1009.357182][T20891] NFSD: Failed to start, no listeners configured. [ 1012.004256][T20956] NFSD: Failed to start, no listeners configured. [ 1012.598735][T20975] openvswitch: netlink: Message has 4 unknown bytes. [ 1012.930754][T20980] netlink: 326 bytes leftover after parsing attributes in process `syz.4.3161'. [ 1013.969239][T21004] FAULT_INJECTION: forcing a failure. [ 1013.969239][T21004] name failslab, interval 1, probability 0, space 0, times 0 [ 1014.062219][T21004] CPU: 0 UID: 0 PID: 21004 Comm: syz.1.3167 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1014.062249][T21004] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1014.062255][T21004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1014.062264][T21004] Call Trace: [ 1014.062271][T21004] [ 1014.062278][T21004] dump_stack_lvl+0x100/0x190 [ 1014.062305][T21004] should_fail_ex.cold+0x5/0xa [ 1014.062323][T21004] should_failslab+0xc2/0x120 [ 1014.062339][T21004] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1014.062360][T21004] ? security_inode_alloc+0x3b/0x2c0 [ 1014.062375][T21004] ? lockdep_init_map_type+0x5c/0x250 [ 1014.062398][T21004] security_inode_alloc+0x3b/0x2c0 [ 1014.062413][T21004] inode_init_always_gfp+0xced/0x1040 [ 1014.062431][T21004] alloc_inode+0x8e/0x250 [ 1014.062450][T21004] sock_alloc+0x44/0x280 [ 1014.062471][T21004] ? security_socket_create+0x7f/0x250 [ 1014.062494][T21004] __sock_create+0xc2/0x860 [ 1014.062512][T21004] __sys_socket+0x14d/0x260 [ 1014.062536][T21004] ? __pfx___sys_socket+0x10/0x10 [ 1014.062559][T21004] __x64_sys_socket+0x72/0xb0 [ 1014.062575][T21004] ? lockdep_hardirqs_on+0x78/0x100 [ 1014.062597][T21004] do_syscall_64+0x106/0xf80 [ 1014.062616][T21004] ? clear_bhb_loop+0x40/0x90 [ 1014.062635][T21004] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1014.062651][T21004] RIP: 0033:0x7f4191f9c799 [ 1014.062664][T21004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1014.062679][T21004] RSP: 002b:00007f4192f3a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1014.062694][T21004] RAX: ffffffffffffffda RBX: 00007f4192215fa0 RCX: 00007f4191f9c799 [ 1014.062704][T21004] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1014.062713][T21004] RBP: 00007f4192032c99 R08: 0000000000000000 R09: 0000000000000000 [ 1014.062722][T21004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1014.062731][T21004] R13: 00007f4192216038 R14: 00007f4192215fa0 R15: 00007ffd071165f8 [ 1014.062750][T21004] [ 1014.062777][T21004] socket: no more sockets [ 1015.255486][T21023] zswap: compressor not available [ 1015.326994][T21032] NFSD: Failed to start, no listeners configured. [ 1016.275039][T21050] binder: BINDER_SET_CONTEXT_MGR already set [ 1016.309905][T21050] binder: 21049:21050 ioctl 4018620d 2000000027c0 returned -16 [ 1018.399910][T21099] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3186'. [ 1019.128816][T21116] FAULT_INJECTION: forcing a failure. [ 1019.128816][T21116] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.261529][T21116] CPU: 0 UID: 0 PID: 21116 Comm: syz.0.3191 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1019.261556][T21116] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1019.261562][T21116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1019.261571][T21116] Call Trace: [ 1019.261577][T21116] [ 1019.261583][T21116] dump_stack_lvl+0x100/0x190 [ 1019.261608][T21116] should_fail_ex.cold+0x5/0xa [ 1019.261625][T21116] should_failslab+0xc2/0x120 [ 1019.261647][T21116] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1019.261666][T21116] ? __anon_vma_prepare+0xae/0x5e0 [ 1019.261688][T21116] __anon_vma_prepare+0xae/0x5e0 [ 1019.261708][T21116] __vmf_anon_prepare+0x11f/0x250 [ 1019.261726][T21116] do_anonymous_page+0x552/0x1fb0 [ 1019.261744][T21116] ? __handle_mm_fault+0x17a4/0x2b60 [ 1019.261766][T21116] __handle_mm_fault+0x1d42/0x2b60 [ 1019.261791][T21116] ? __pfx___handle_mm_fault+0x10/0x10 [ 1019.261810][T21116] ? pte_offset_map_lock+0x174/0x320 [ 1019.261824][T21116] ? find_held_lock+0x2b/0x80 [ 1019.261843][T21116] ? follow_page_pte+0x5b3/0x1400 [ 1019.261863][T21116] handle_mm_fault+0x36d/0xa20 [ 1019.261884][T21116] __get_user_pages+0xf9c/0x34d0 [ 1019.261906][T21116] ? __pfx___get_user_pages+0x10/0x10 [ 1019.261926][T21116] populate_vma_page_range+0x267/0x3f0 [ 1019.261944][T21116] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1019.261960][T21116] ? __pfx_find_vma_intersection+0x10/0x10 [ 1019.261975][T21116] ? do_mmap+0x93f/0x12f0 [ 1019.261992][T21116] __mm_populate+0x107/0x3a0 [ 1019.262008][T21116] ? __pfx___mm_populate+0x10/0x10 [ 1019.262026][T21116] ? up_write+0x290/0x4f0 [ 1019.262046][T21116] vm_mmap_pgoff+0x37f/0x470 [ 1019.262064][T21116] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1019.262080][T21116] ? do_futex+0x192/0x350 [ 1019.262098][T21116] ? __pfx_do_futex+0x10/0x10 [ 1019.262117][T21116] ksys_mmap_pgoff+0xe1/0x650 [ 1019.262132][T21116] ? __x64_sys_futex+0x34f/0x4d0 [ 1019.262148][T21116] ? __x64_sys_futex+0x358/0x4d0 [ 1019.262165][T21116] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1019.262179][T21116] ? xfd_validate_state+0x129/0x190 [ 1019.262203][T21116] __x64_sys_mmap+0x125/0x190 [ 1019.262224][T21116] do_syscall_64+0x106/0xf80 [ 1019.262243][T21116] ? clear_bhb_loop+0x40/0x90 [ 1019.262260][T21116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1019.262275][T21116] RIP: 0033:0x7fb2a819c799 [ 1019.262288][T21116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1019.262301][T21116] RSP: 002b:00007fb2a9099028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1019.262315][T21116] RAX: ffffffffffffffda RBX: 00007fb2a8416270 RCX: 00007fb2a819c799 [ 1019.262325][T21116] RDX: 0000000000000007 RSI: 0000000000040009 RDI: 0000000000000000 [ 1019.262333][T21116] RBP: 00007fb2a8232c99 R08: 0000000000000007 R09: 0000000000028000 [ 1019.262342][T21116] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1019.262350][T21116] R13: 00007fb2a8416308 R14: 00007fb2a8416270 R15: 00007fff82891898 [ 1019.262369][T21116] [ 1019.903786][T21113] zswap: compressor  not available [ 1020.129475][T21126] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3192'. [ 1020.282926][T21114] kexec: Could not allocate control_code_buffer [ 1021.147477][T21140] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1021.880994][T21151] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3199'. [ 1021.975513][T16860] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1021.991131][T16860] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1022.037494][T16860] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1022.092289][T16860] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1022.136773][T16860] rtc rtc0: __rtc_set_alarm: err=-22 [ 1022.912087][T21183] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1022.942896][T21183] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1023.629190][ T51] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 1023.946864][ T29] audit: type=1800 audit(2147484514.610:18): pid=21218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3214" name="lu_gp_id" dev="configfs" ino=297925 res=0 errno=0 [ 1023.995505][T21218] nbd: must specify an index to disconnect [ 1027.223090][T21275] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1027.256813][T21275] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1027.294313][T21275] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1027.335649][T21275] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1027.751288][T21298] FAULT_INJECTION: forcing a failure. [ 1027.751288][T21298] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1027.832109][T21298] CPU: 0 UID: 0 PID: 21298 Comm: syz.4.3231 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1027.832139][T21298] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1027.832146][T21298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1027.832155][T21298] Call Trace: [ 1027.832161][T21298] [ 1027.832168][T21298] dump_stack_lvl+0x100/0x190 [ 1027.832196][T21298] should_fail_ex.cold+0x5/0xa [ 1027.832214][T21298] get_futex_key+0x1d2/0x1620 [ 1027.832235][T21298] ? __pfx_get_futex_key+0x10/0x10 [ 1027.832253][T21298] ? kasan_quarantine_put+0x104/0x240 [ 1027.832275][T21298] ? lockdep_hardirqs_on+0x78/0x100 [ 1027.832299][T21298] futex_wake+0xea/0x530 [ 1027.832320][T21298] ? find_held_lock+0x2b/0x80 [ 1027.832334][T21298] ? __pfx_futex_wake+0x10/0x10 [ 1027.832358][T21298] ? ksys_write+0x190/0x250 [ 1027.832372][T21298] ? ksys_write+0x190/0x250 [ 1027.832388][T21298] do_futex+0x32b/0x350 [ 1027.832411][T21298] ? __pfx_do_futex+0x10/0x10 [ 1027.832433][T21298] __x64_sys_futex+0x34f/0x4d0 [ 1027.832453][T21298] ? fput+0x79/0x100 [ 1027.832469][T21298] ? __pfx___x64_sys_futex+0x10/0x10 [ 1027.832486][T21298] ? ksys_write+0x1ac/0x250 [ 1027.832500][T21298] ? __pfx_ksys_write+0x10/0x10 [ 1027.832519][T21298] do_syscall_64+0x106/0xf80 [ 1027.832538][T21298] ? clear_bhb_loop+0x40/0x90 [ 1027.832566][T21298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1027.832583][T21298] RIP: 0033:0x7fd638d9c799 [ 1027.832597][T21298] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1027.832613][T21298] RSP: 002b:00007fd639b810e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1027.832628][T21298] RAX: ffffffffffffffda RBX: 00007fd639015fa8 RCX: 00007fd638d9c799 [ 1027.832639][T21298] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd639015fac [ 1027.832648][T21298] RBP: 00007fd639015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1027.832657][T21298] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 1027.832666][T21298] R13: 00007fd639016038 R14: 00007ffd5f224920 R15: 00007ffd5f224a08 [ 1027.832686][T21298] [ 1028.625462][ T51] Bluetooth: hci4: command 0x0c1a tx timeout [ 1029.265472][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 1029.351613][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 1029.357772][T15908] Bluetooth: hci0: command 0x0c1a tx timeout [ 1031.162538][T21365] random: crng reseeded on system resumption [ 1032.050803][T21383] FAULT_INJECTION: forcing a failure. [ 1032.050803][T21383] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1032.093376][T21383] CPU: 0 UID: 0 PID: 21383 Comm: syz.0.3250 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1032.093405][T21383] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1032.093411][T21383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1032.093421][T21383] Call Trace: [ 1032.093427][T21383] [ 1032.093433][T21383] dump_stack_lvl+0x100/0x190 [ 1032.093461][T21383] should_fail_ex.cold+0x5/0xa [ 1032.093480][T21383] get_futex_key+0x1d2/0x1620 [ 1032.093500][T21383] ? __pfx_get_futex_key+0x10/0x10 [ 1032.093519][T21383] ? kasan_quarantine_put+0x104/0x240 [ 1032.093540][T21383] ? lockdep_hardirqs_on+0x78/0x100 [ 1032.093563][T21383] futex_wake+0xea/0x530 [ 1032.093593][T21383] ? find_held_lock+0x2b/0x80 [ 1032.093609][T21383] ? __pfx_futex_wake+0x10/0x10 [ 1032.093633][T21383] ? ksys_write+0x190/0x250 [ 1032.093647][T21383] ? ksys_write+0x190/0x250 [ 1032.093663][T21383] do_futex+0x32b/0x350 [ 1032.093682][T21383] ? __pfx_do_futex+0x10/0x10 [ 1032.093709][T21383] __x64_sys_futex+0x34f/0x4d0 [ 1032.093729][T21383] ? fput+0x79/0x100 [ 1032.093752][T21383] ? __pfx___x64_sys_futex+0x10/0x10 [ 1032.093770][T21383] ? ksys_write+0x1ac/0x250 [ 1032.093783][T21383] ? __pfx_ksys_write+0x10/0x10 [ 1032.093802][T21383] do_syscall_64+0x106/0xf80 [ 1032.093823][T21383] ? clear_bhb_loop+0x40/0x90 [ 1032.093840][T21383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1032.093855][T21383] RIP: 0033:0x7fb2a819c799 [ 1032.093869][T21383] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1032.093883][T21383] RSP: 002b:00007fb2a90fc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1032.093898][T21383] RAX: ffffffffffffffda RBX: 00007fb2a8415fa8 RCX: 00007fb2a819c799 [ 1032.093908][T21383] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb2a8415fac [ 1032.093917][T21383] RBP: 00007fb2a8415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.093925][T21383] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 1032.093934][T21383] R13: 00007fb2a8416038 R14: 00007fff828917b0 R15: 00007fff82891898 [ 1032.093952][T21383] [ 1032.939859][T21389] No such timeout policy "" [ 1032.944878][T21389] netlink: Failed to associated timeout policy '' [ 1033.327681][T21399] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3255'. [ 1035.354985][T21432] zswap: compressor not available [ 1036.216862][T21457] FAULT_INJECTION: forcing a failure. [ 1036.216862][T21457] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1036.292343][T21457] CPU: 0 UID: 0 PID: 21457 Comm: syz.1.3267 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1036.292372][T21457] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1036.292378][T21457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1036.292388][T21457] Call Trace: [ 1036.292393][T21457] [ 1036.292400][T21457] dump_stack_lvl+0x100/0x190 [ 1036.292436][T21457] should_fail_ex.cold+0x5/0xa [ 1036.292455][T21457] get_futex_key+0x1d2/0x1620 [ 1036.292477][T21457] ? __pfx_get_futex_key+0x10/0x10 [ 1036.292495][T21457] ? putname+0xb1/0x110 [ 1036.292511][T21457] ? kasan_save_stack+0x3f/0x50 [ 1036.292532][T21457] ? kasan_save_stack+0x30/0x50 [ 1036.292552][T21457] ? kasan_save_track+0x14/0x30 [ 1036.292572][T21457] ? kasan_save_free_info+0x3b/0x70 [ 1036.292589][T21457] ? __kasan_slab_free+0x5f/0x80 [ 1036.292601][T21457] ? kmem_cache_free+0x124/0x6a0 [ 1036.292622][T21457] futex_wake+0xea/0x530 [ 1036.292644][T21457] ? __pfx_futex_wake+0x10/0x10 [ 1036.292672][T21457] do_futex+0x32b/0x350 [ 1036.292691][T21457] ? __pfx_do_futex+0x10/0x10 [ 1036.292713][T21457] __x64_sys_futex+0x34f/0x4d0 [ 1036.292734][T21457] ? __pfx___x64_sys_futex+0x10/0x10 [ 1036.292759][T21457] do_syscall_64+0x106/0xf80 [ 1036.292779][T21457] ? clear_bhb_loop+0x40/0x90 [ 1036.292797][T21457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1036.292812][T21457] RIP: 0033:0x7f4191f9c799 [ 1036.292825][T21457] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1036.292840][T21457] RSP: 002b:00007f4192f3a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1036.292855][T21457] RAX: ffffffffffffffda RBX: 00007f4192215fa8 RCX: 00007f4191f9c799 [ 1036.292865][T21457] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4192215fac [ 1036.292874][T21457] RBP: 00007f4192215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1036.292883][T21457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1036.292892][T21457] R13: 00007f4192216038 R14: 00007ffd07116510 R15: 00007ffd071165f8 [ 1036.292912][T21457] [ 1036.972901][T21453] zswap: compressor 000 not available [ 1037.451723][T21480] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1037.507619][ T29] audit: type=1326 audit(2147484528.170:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21478 comm="syz.0.3271" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb2a819c799 code=0x0 [ 1038.341330][T21491] bridge_slave_1: left allmulticast mode [ 1038.382615][T21491] bridge_slave_1: left promiscuous mode [ 1038.428670][T21491] bridge0: port 2(bridge_slave_1) entered disabled state [ 1039.510603][T21503] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1039.561752][T21503] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1039.809167][T21518] futex_wake_op: syz.2.3280 tries to shift op by -2048; fix this program [ 1039.850094][T21518] futex_wake_op: syz.2.3280 tries to shift op by -2048; fix this program [ 1040.206756][ T51] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 1041.437907][T21534] NFSD: Failed to start, no listeners configured. [ 1042.225470][T21528] Bluetooth: hci4: command 0x0c1a tx timeout [ 1043.012788][T21567] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1043.046562][T21567] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1044.305520][T21528] Bluetooth: hci4: command 0x0c1a tx timeout [ 1044.513883][T21606] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3297'. [ 1044.547783][T21590] zswap: compressor 000 not available [ 1044.807611][T21610] FAULT_INJECTION: forcing a failure. [ 1044.807611][T21610] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1044.856737][T21610] CPU: 0 UID: 0 PID: 21610 Comm: syz.4.3299 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1044.856766][T21610] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1044.856773][T21610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1044.856783][T21610] Call Trace: [ 1044.856789][T21610] [ 1044.856795][T21610] dump_stack_lvl+0x100/0x190 [ 1044.856823][T21610] should_fail_ex.cold+0x5/0xa [ 1044.856841][T21610] get_futex_key+0x1d2/0x1620 [ 1044.856861][T21610] ? __pfx_get_futex_key+0x10/0x10 [ 1044.856880][T21610] ? kasan_quarantine_put+0x104/0x240 [ 1044.856901][T21610] ? lockdep_hardirqs_on+0x78/0x100 [ 1044.856924][T21610] futex_wake+0xea/0x530 [ 1044.856946][T21610] ? find_held_lock+0x2b/0x80 [ 1044.856961][T21610] ? __pfx_futex_wake+0x10/0x10 [ 1044.856984][T21610] ? ksys_write+0x190/0x250 [ 1044.857018][T21610] ? ksys_write+0x190/0x250 [ 1044.857036][T21610] do_futex+0x32b/0x350 [ 1044.857056][T21610] ? __pfx_do_futex+0x10/0x10 [ 1044.857079][T21610] __x64_sys_futex+0x34f/0x4d0 [ 1044.857100][T21610] ? fput+0x79/0x100 [ 1044.857117][T21610] ? __pfx___x64_sys_futex+0x10/0x10 [ 1044.857135][T21610] ? ksys_write+0x1ac/0x250 [ 1044.857148][T21610] ? __pfx_ksys_write+0x10/0x10 [ 1044.857166][T21610] do_syscall_64+0x106/0xf80 [ 1044.857185][T21610] ? clear_bhb_loop+0x40/0x90 [ 1044.857203][T21610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1044.857218][T21610] RIP: 0033:0x7fd638d9c799 [ 1044.857231][T21610] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1044.857246][T21610] RSP: 002b:00007fd639b810e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1044.857260][T21610] RAX: ffffffffffffffda RBX: 00007fd639015fa8 RCX: 00007fd638d9c799 [ 1044.857270][T21610] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd639015fac [ 1044.857279][T21610] RBP: 00007fd639015fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1044.857288][T21610] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 1044.857297][T21610] R13: 00007fd639016038 R14: 00007ffd5f224920 R15: 00007ffd5f224a08 [ 1044.857323][T21610] [ 1046.125813][T21639] Console: switching to colour VGA+ 80x25 [ 1046.551240][T21654] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 1047.333804][T21662] FAULT_INJECTION: forcing a failure. [ 1047.333804][T21662] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1047.422839][T21662] CPU: 0 UID: 0 PID: 21662 Comm: syz.1.3317 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1047.422869][T21662] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1047.422876][T21662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1047.422886][T21662] Call Trace: [ 1047.422892][T21662] [ 1047.422898][T21662] dump_stack_lvl+0x100/0x190 [ 1047.422927][T21662] should_fail_ex.cold+0x5/0xa [ 1047.422945][T21662] get_futex_key+0x1d2/0x1620 [ 1047.422965][T21662] ? __pfx_get_futex_key+0x10/0x10 [ 1047.422984][T21662] ? kasan_quarantine_put+0x104/0x240 [ 1047.423007][T21662] ? lockdep_hardirqs_on+0x78/0x100 [ 1047.423031][T21662] futex_wake+0xea/0x530 [ 1047.423051][T21662] ? find_held_lock+0x2b/0x80 [ 1047.423067][T21662] ? __pfx_futex_wake+0x10/0x10 [ 1047.423090][T21662] ? ksys_write+0x190/0x250 [ 1047.423103][T21662] ? ksys_write+0x190/0x250 [ 1047.423120][T21662] do_futex+0x32b/0x350 [ 1047.423149][T21662] ? __pfx_do_futex+0x10/0x10 [ 1047.423172][T21662] __x64_sys_futex+0x34f/0x4d0 [ 1047.423194][T21662] ? __pfx___x64_sys_futex+0x10/0x10 [ 1047.423220][T21662] do_syscall_64+0x106/0xf80 [ 1047.423239][T21662] ? clear_bhb_loop+0x40/0x90 [ 1047.423257][T21662] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1047.423272][T21662] RIP: 0033:0x7f4191f9c799 [ 1047.423285][T21662] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1047.423299][T21662] RSP: 002b:00007f4192f3a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1047.423313][T21662] RAX: ffffffffffffffda RBX: 00007f4192215fa8 RCX: 00007f4191f9c799 [ 1047.423323][T21662] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4192215fac [ 1047.423332][T21662] RBP: 00007f4192215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.423341][T21662] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000000 [ 1047.423349][T21662] R13: 00007f4192216038 R14: 00007ffd07116510 R15: 00007ffd071165f8 [ 1047.423368][T21662] [ 1048.952959][T21699] FAULT_INJECTION: forcing a failure. [ 1048.952959][T21699] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1049.013442][T21699] CPU: 0 UID: 0 PID: 21699 Comm: syz.1.3318 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1049.013473][T21699] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1049.013479][T21699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1049.013489][T21699] Call Trace: [ 1049.013496][T21699] [ 1049.013503][T21699] dump_stack_lvl+0x100/0x190 [ 1049.013531][T21699] should_fail_ex.cold+0x5/0xa [ 1049.013549][T21699] _copy_to_user+0x32/0xd0 [ 1049.013569][T21699] io_uring_setup.cold+0x1560/0x1d79 [ 1049.013593][T21699] ? __pfx_io_uring_setup+0x10/0x10 [ 1049.013617][T21699] ? __pfx_do_futex+0x10/0x10 [ 1049.013635][T21699] ? __pfx_do_sys_openat2+0x10/0x10 [ 1049.013662][T21699] ? xfd_validate_state+0x129/0x190 [ 1049.013689][T21699] __x64_sys_io_uring_setup+0xc2/0x170 [ 1049.013708][T21699] do_syscall_64+0x106/0xf80 [ 1049.013728][T21699] ? clear_bhb_loop+0x40/0x90 [ 1049.013746][T21699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1049.013762][T21699] RIP: 0033:0x7f4191f9c799 [ 1049.013776][T21699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1049.013791][T21699] RSP: 002b:00007f4192f3a028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 1049.013805][T21699] RAX: ffffffffffffffda RBX: 00007f4192215fa0 RCX: 00007f4191f9c799 [ 1049.013814][T21699] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 1049.013822][T21699] RBP: 00007f4192032c99 R08: 0000000000000000 R09: 0000000000000000 [ 1049.013831][T21699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1049.013839][T21699] R13: 00007f4192216038 R14: 00007f4192215fa0 R15: 00007ffd071165f8 [ 1049.013859][T21699] [ 1049.541923][T21714] NFSD: Failed to start, no listeners configured. [ 1051.661910][T21751] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1051.698032][T21751] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1054.476141][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.482455][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 1055.315468][T21791] zswap: compressor not available [ 1055.633393][T21804] FAULT_INJECTION: forcing a failure. [ 1055.633393][T21804] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1055.677583][T21804] CPU: 0 UID: 0 PID: 21804 Comm: syz.1.3344 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1055.677609][T21804] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1055.677615][T21804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1055.677623][T21804] Call Trace: [ 1055.677628][T21804] [ 1055.677634][T21804] dump_stack_lvl+0x100/0x190 [ 1055.677661][T21804] should_fail_ex.cold+0x5/0xa [ 1055.677675][T21804] ? rcu_is_watching+0x12/0xc0 [ 1055.677705][T21804] get_futex_key+0x1d2/0x1620 [ 1055.677724][T21804] ? __pfx_get_futex_key+0x10/0x10 [ 1055.677738][T21804] ? lock_acquire+0x1cf/0x380 [ 1055.677762][T21804] futex_wake+0xea/0x530 [ 1055.677783][T21804] ? __pfx_futex_wake+0x10/0x10 [ 1055.677802][T21804] ? exit_mm_release+0x19/0x30 [ 1055.677824][T21804] do_futex+0x32b/0x350 [ 1055.677842][T21804] ? __pfx_do_futex+0x10/0x10 [ 1055.677857][T21804] ? __might_fault+0xc5/0x140 [ 1055.677881][T21804] mm_release+0x24a/0x2f0 [ 1055.677896][T21804] do_exit+0x704/0x2b60 [ 1055.677916][T21804] ? __pfx_do_exit+0x10/0x10 [ 1055.677933][T21804] ? do_raw_spin_lock+0x128/0x260 [ 1055.677951][T21804] ? find_held_lock+0x2b/0x80 [ 1055.677964][T21804] ? get_signal+0x7e0/0x21e0 [ 1055.677980][T21804] do_group_exit+0xd5/0x2a0 [ 1055.677999][T21804] get_signal+0x1ec7/0x21e0 [ 1055.678017][T21804] ? ksys_write+0x190/0x250 [ 1055.678032][T21804] ? __pfx_get_signal+0x10/0x10 [ 1055.678047][T21804] ? do_futex+0x192/0x350 [ 1055.678066][T21804] arch_do_signal_or_restart+0x91/0x770 [ 1055.678084][T21804] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1055.678106][T21804] ? __pfx___x64_sys_futex+0x10/0x10 [ 1055.678127][T21804] exit_to_user_mode_loop+0x86/0x4a0 [ 1055.678146][T21804] do_syscall_64+0x668/0xf80 [ 1055.678174][T21804] ? clear_bhb_loop+0x40/0x90 [ 1055.678191][T21804] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1055.678206][T21804] RIP: 0033:0x7f4191f9c799 [ 1055.678219][T21804] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1055.678233][T21804] RSP: 002b:00007f4192f190e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1055.678247][T21804] RAX: fffffffffffffe00 RBX: 00007f4192216098 RCX: 00007f4191f9c799 [ 1055.678257][T21804] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4192216098 [ 1055.678265][T21804] RBP: 00007f4192216090 R08: 0000000000000000 R09: 0000000000000000 [ 1055.678274][T21804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1055.678282][T21804] R13: 00007f4192216128 R14: 00007ffd07116510 R15: 00007ffd071165f8 [ 1055.678300][T21804] [ 1056.879933][T21818] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3348'. [ 1056.957917][T21818] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3348'. [ 1058.276685][T21836] FAULT_INJECTION: forcing a failure. [ 1058.276685][T21836] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1058.414152][T21836] CPU: 0 UID: 0 PID: 21836 Comm: syz.0.3355 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1058.414177][T21836] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1058.414183][T21836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1058.414192][T21836] Call Trace: [ 1058.414197][T21836] [ 1058.414203][T21836] dump_stack_lvl+0x100/0x190 [ 1058.414229][T21836] should_fail_ex.cold+0x5/0xa [ 1058.414246][T21836] _copy_to_user+0x32/0xd0 [ 1058.414265][T21836] simple_read_from_buffer+0xcb/0x170 [ 1058.414294][T21836] proc_fail_nth_read+0x1af/0x230 [ 1058.414313][T21836] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1058.414330][T21836] ? rw_verify_area+0xce/0x6d0 [ 1058.414349][T21836] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1058.414365][T21836] vfs_read+0x1e4/0xb30 [ 1058.414388][T21836] ? __pfx_vfs_read+0x10/0x10 [ 1058.414410][T21836] ? __fget_files+0x215/0x3d0 [ 1058.414427][T21836] ? __fget_files+0x21f/0x3d0 [ 1058.414445][T21836] ksys_read+0x12a/0x250 [ 1058.414457][T21836] ? __pfx_ksys_read+0x10/0x10 [ 1058.414475][T21836] do_syscall_64+0x106/0xf80 [ 1058.414494][T21836] ? clear_bhb_loop+0x40/0x90 [ 1058.414510][T21836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1058.414525][T21836] RIP: 0033:0x7fb2a815cfce [ 1058.414537][T21836] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1058.414551][T21836] RSP: 002b:00007fb2a90fbfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1058.414565][T21836] RAX: ffffffffffffffda RBX: 00007fb2a90fc6c0 RCX: 00007fb2a815cfce [ 1058.414574][T21836] RDX: 000000000000000f RSI: 00007fb2a90fc0a0 RDI: 0000000000000004 [ 1058.414583][T21836] RBP: 00007fb2a90fc090 R08: 0000000000000000 R09: 0000000000000000 [ 1058.414591][T21836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1058.414599][T21836] R13: 00007fb2a8416038 R14: 00007fb2a8415fa0 R15: 00007fff82891898 [ 1058.414618][T21836] [ 1060.557618][T21881] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3365'. [ 1061.286602][T21886] zswap: compressor not available [ 1062.919913][T21909] NFSD: Failed to start, no listeners configured. [ 1067.276298][T21982] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1067.311834][T21982] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1067.860082][T21991] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1067.888555][T21991] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1068.194986][T21999] NFSD: Failed to start, no listeners configured. [ 1068.602374][ T51] Bluetooth: hci1: unexpected event 0x07 length: 440 > 255 [ 1068.608516][T22007] zswap: compressor not available [ 1069.859040][T22032] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1069.993913][T22032] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1070.508372][T22046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3401'. [ 1070.646833][T22046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3401'. [ 1071.180698][T22062] NFSD: Failed to start, no listeners configured. [ 1071.810963][T22069] NFSD: Failed to start, no listeners configured. [ 1073.348287][T22108] ERROR: Out of memory at tomoyo_memory_ok. [ 1073.407448][T22105] ERROR: Out of memory at tomoyo_memory_ok. [ 1073.460440][T22108] ERROR: Out of memory at tomoyo_memory_ok. [ 1074.252883][T22119] zswap: compressor not available [ 1076.040862][T22156] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1076.085731][T22156] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1076.706922][T22168] NFSD: Failed to start, no listeners configured. [ 1078.861777][T22209] FAULT_INJECTION: forcing a failure. [ 1078.861777][T22209] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.935463][T22209] CPU: 0 UID: 0 PID: 22209 Comm: syz.2.3438 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1078.935490][T22209] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1078.935496][T22209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1078.935506][T22209] Call Trace: [ 1078.935512][T22209] [ 1078.935518][T22209] dump_stack_lvl+0x100/0x190 [ 1078.935546][T22209] should_fail_ex.cold+0x5/0xa [ 1078.935562][T22209] should_failslab+0xc2/0x120 [ 1078.935578][T22209] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1078.935598][T22209] ? do_getname+0x35/0x390 [ 1078.935615][T22209] ? xfd_validate_state+0x129/0x190 [ 1078.935636][T22209] do_getname+0x35/0x390 [ 1078.935654][T22209] __x64_sys_unlink+0x36/0x70 [ 1078.935670][T22209] do_syscall_64+0x106/0xf80 [ 1078.935688][T22209] ? clear_bhb_loop+0x40/0x90 [ 1078.935705][T22209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1078.935720][T22209] RIP: 0033:0x7f8bbbb9c799 [ 1078.935733][T22209] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1078.935747][T22209] RSP: 002b:00007f8bbcaa5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 1078.935761][T22209] RAX: ffffffffffffffda RBX: 00007f8bbbe15fa0 RCX: 00007f8bbbb9c799 [ 1078.935770][T22209] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000380 [ 1078.935778][T22209] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 1078.935786][T22209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1078.935794][T22209] R13: 00007f8bbbe16038 R14: 00007f8bbbe15fa0 R15: 00007ffe4edc0ae8 [ 1078.935812][T22209] [ 1081.571246][T22252] zswap: compressor not available [ 1082.769030][T22261] zswap: compressor not available [ 1083.903163][T22278] ================================================================== [ 1083.903209][T22278] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60 [ 1083.903262][T22278] Read of size 256 at addr ffff88805d5d6860 by task syz.2.3450/22278 [ 1083.903275][T22278] [ 1083.903287][T22278] CPU: 0 UID: 0 PID: 22278 Comm: syz.2.3450 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1083.903310][T22278] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1083.903316][T22278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1083.903326][T22278] Call Trace: [ 1083.903332][T22278] [ 1083.903338][T22278] dump_stack_lvl+0x100/0x190 [ 1083.903361][T22278] print_report+0x156/0x4c9 [ 1083.903382][T22278] ? __virt_addr_valid+0x81/0x620 [ 1083.903400][T22278] ? __phys_addr+0xe8/0x180 [ 1083.903417][T22278] ? fbcon_prepare_logo+0x94e/0xc60 [ 1083.903431][T22278] kasan_report+0xdf/0x1e0 [ 1083.903447][T22278] ? fbcon_prepare_logo+0x94e/0xc60 [ 1083.903464][T22278] kasan_check_range+0x10f/0x1e0 [ 1083.903481][T22278] __asan_memcpy+0x23/0x60 [ 1083.903506][T22278] fbcon_prepare_logo+0x94e/0xc60 [ 1083.903526][T22278] fbcon_init+0x10a0/0x1820 [ 1083.903544][T22278] visual_init+0x320/0x620 [ 1083.903588][T22278] do_bind_con_driver.isra.0+0x636/0x9c0 [ 1083.903610][T22278] store_bind+0x609/0x730 [ 1083.903632][T22278] ? __pfx_store_bind+0x10/0x10 [ 1083.903649][T22278] dev_attr_store+0x58/0x80 [ 1083.903667][T22278] ? __pfx_dev_attr_store+0x10/0x10 [ 1083.903682][T22278] sysfs_kf_write+0xf2/0x150 [ 1083.903700][T22278] kernfs_fop_write_iter+0x3e0/0x5f0 [ 1083.903714][T22278] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1083.903732][T22278] iter_file_splice_write+0x830/0x10a0 [ 1083.903751][T22278] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1083.903767][T22278] ? __pfx_copy_splice_read+0x10/0x10 [ 1083.903784][T22278] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1083.903799][T22278] direct_splice_actor+0x192/0x6c0 [ 1083.903815][T22278] splice_direct_to_actor+0x345/0xa30 [ 1083.903830][T22278] ? __pfx_direct_splice_actor+0x10/0x10 [ 1083.903853][T22278] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1083.903869][T22278] do_splice_direct+0x174/0x240 [ 1083.903883][T22278] ? __pfx_do_splice_direct+0x10/0x10 [ 1083.903896][T22278] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1083.903919][T22278] ? rw_verify_area+0xce/0x6d0 [ 1083.903938][T22278] do_sendfile+0xadc/0xe20 [ 1083.903960][T22278] ? __pfx_do_sendfile+0x10/0x10 [ 1083.903981][T22278] ? __x64_sys_futex+0x34f/0x4d0 [ 1083.903998][T22278] ? __x64_sys_futex+0x358/0x4d0 [ 1083.904016][T22278] __x64_sys_sendfile64+0x1d8/0x220 [ 1083.904033][T22278] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1083.904051][T22278] do_syscall_64+0x106/0xf80 [ 1083.904070][T22278] ? clear_bhb_loop+0x40/0x90 [ 1083.904086][T22278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.904101][T22278] RIP: 0033:0x7f8bbbb9c799 [ 1083.904114][T22278] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1083.904129][T22278] RSP: 002b:00007f8bbca63028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1083.904144][T22278] RAX: ffffffffffffffda RBX: 00007f8bbbe16180 RCX: 00007f8bbbb9c799 [ 1083.904155][T22278] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000006 [ 1083.904164][T22278] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 1083.904174][T22278] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 1083.904184][T22278] R13: 00007f8bbbe16218 R14: 00007f8bbbe16180 R15: 00007ffe4edc0ae8 [ 1083.904198][T22278] [ 1083.904204][T22278] [ 1083.904208][T22278] Allocated by task 22246: [ 1083.904216][T22278] kasan_save_stack+0x30/0x50 [ 1083.904238][T22278] kasan_save_track+0x14/0x30 [ 1083.904258][T22278] __kasan_kmalloc+0xaa/0xb0 [ 1083.904278][T22278] __kmalloc_node_track_caller_noprof+0x304/0x850 [ 1083.904301][T22278] kmalloc_reserve+0xe8/0x350 [ 1083.904315][T22278] __alloc_skb+0x185/0x710 [ 1083.904331][T22278] rtmsg_ifinfo_build_skb+0x81/0x260 [ 1083.904352][T22278] unregister_netdevice_many_notify+0x12b6/0x2580 [ 1083.904373][T22278] ops_undo_list+0x8ff/0xab0 [ 1083.904391][T22278] setup_net+0x1fa/0x3a0 [ 1083.904408][T22278] copy_net_ns+0x46f/0x7c0 [ 1083.904419][T22278] create_new_namespaces+0x3ea/0xac0 [ 1083.904434][T22278] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1083.904448][T22278] ksys_unshare+0x473/0xad0 [ 1083.904463][T22278] __x64_sys_unshare+0x31/0x40 [ 1083.904479][T22278] do_syscall_64+0x106/0xf80 [ 1083.904505][T22278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.904520][T22278] [ 1083.904524][T22278] Freed by task 22246: [ 1083.904531][T22278] kasan_save_stack+0x30/0x50 [ 1083.904551][T22278] kasan_save_track+0x14/0x30 [ 1083.904572][T22278] kasan_save_free_info+0x3b/0x70 [ 1083.904589][T22278] __kasan_slab_free+0x5f/0x80 [ 1083.904602][T22278] kfree+0x1f6/0x6b0 [ 1083.904618][T22278] skb_free_head+0x119/0x220 [ 1083.904633][T22278] skb_release_data+0x79b/0x9d0 [ 1083.904650][T22278] consume_skb+0xc4/0x110 [ 1083.904668][T22278] netlink_broadcast_filtered+0x3cc/0xf50 [ 1083.904689][T22278] nlmsg_notify+0xb1/0x290 [ 1083.904707][T22278] unregister_netdevice_many_notify+0x175e/0x2580 [ 1083.904727][T22278] ops_undo_list+0x8ff/0xab0 [ 1083.904749][T22278] setup_net+0x1fa/0x3a0 [ 1083.904767][T22278] copy_net_ns+0x46f/0x7c0 [ 1083.904778][T22278] create_new_namespaces+0x3ea/0xac0 [ 1083.904790][T22278] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1083.904804][T22278] ksys_unshare+0x473/0xad0 [ 1083.904819][T22278] __x64_sys_unshare+0x31/0x40 [ 1083.904835][T22278] do_syscall_64+0x106/0xf80 [ 1083.904852][T22278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.904865][T22278] [ 1083.904869][T22278] The buggy address belongs to the object at ffff88805d5d6000 [ 1083.904869][T22278] which belongs to the cache kmalloc-2k of size 2048 [ 1083.904880][T22278] The buggy address is located 96 bytes to the right of [ 1083.904880][T22278] allocated 2048-byte region [ffff88805d5d6000, ffff88805d5d6800) [ 1083.904895][T22278] [ 1083.904899][T22278] The buggy address belongs to the physical page: [ 1083.904906][T22278] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5d5d0 [ 1083.904919][T22278] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1083.904931][T22278] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1083.904945][T22278] page_type: f5(slab) [ 1083.904959][T22278] raw: 00fff00000000040 ffff88813fe3d000 dead000000000100 dead000000000122 [ 1083.904973][T22278] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 1083.904986][T22278] head: 00fff00000000040 ffff88813fe3d000 dead000000000100 dead000000000122 [ 1083.904999][T22278] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000 [ 1083.905012][T22278] head: 00fff00000000003 ffffea0001757401 00000000ffffffff 00000000ffffffff [ 1083.905025][T22278] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1083.905034][T22278] page dumped because: kasan: bad access detected [ 1083.905042][T22278] page_owner tracks the page as allocated [ 1083.905048][T22278] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5824, tgid 5824 (syz-executor), ts 82314995741, free_ts 22313478793 [ 1083.905073][T22278] post_alloc_hook+0x153/0x170 [ 1083.905090][T22278] get_page_from_freelist+0x111d/0x3140 [ 1083.905109][T22278] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 1083.905128][T22278] new_slab+0xa6/0x6b0 [ 1083.905143][T22278] refill_objects+0x26b/0x400 [ 1083.905160][T22278] __pcs_replace_empty_main+0x1ab/0x660 [ 1083.905179][T22278] __kmalloc_cache_noprof+0x493/0x6f0 [ 1083.905196][T22278] psi_cgroup_alloc+0x52/0x2d0 [ 1083.905210][T22278] cgroup_mkdir+0x620/0x1330 [ 1083.905230][T22278] kernfs_iop_mkdir+0x111/0x190 [ 1083.905250][T22278] vfs_mkdir+0x361/0x850 [ 1083.905266][T22278] filename_mkdirat+0x48b/0x5e0 [ 1083.905280][T22278] __x64_sys_mkdirat+0x89/0xc0 [ 1083.905294][T22278] do_syscall_64+0x106/0xf80 [ 1083.905311][T22278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.905324][T22278] page last free pid 1 tgid 1 stack trace: [ 1083.905332][T22278] __free_frozen_pages+0x7e1/0x10d0 [ 1083.905347][T22278] free_contig_range+0xde/0x1d0 [ 1083.905363][T22278] destroy_args+0xa8/0x7a0 [ 1083.905457][T22278] debug_vm_pgtable+0x1b66/0x34c0 [ 1083.905471][T22278] do_one_initcall+0x11d/0x760 [ 1083.905485][T22278] kernel_init_freeable+0x6e5/0x7a0 [ 1083.905533][T22278] kernel_init+0x1f/0x1e0 [ 1083.905547][T22278] ret_from_fork+0x754/0xd80 [ 1083.905567][T22278] ret_from_fork_asm+0x1a/0x30 [ 1083.905581][T22278] [ 1083.905585][T22278] Memory state around the buggy address: [ 1083.905592][T22278] ffff88805d5d6700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1083.905603][T22278] ffff88805d5d6780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1083.905613][T22278] >ffff88805d5d6800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1083.905621][T22278] ^ [ 1083.905629][T22278] ffff88805d5d6880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1083.905639][T22278] ffff88805d5d6900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 1083.905647][T22278] ================================================================== [ 1083.934580][T22278] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 1083.934599][T22278] CPU: 0 UID: 0 PID: 22278 Comm: syz.2.3450 Tainted: G U L syzkaller #0 PREEMPT(full) [ 1083.934624][T22278] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 1083.934630][T22278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1083.934639][T22278] Call Trace: [ 1083.934645][T22278] [ 1083.934652][T22278] dump_stack_lvl+0x100/0x190 [ 1083.934678][T22278] vpanic+0x552/0x970 [ 1083.934692][T22278] ? __pfx_vpanic+0x10/0x10 [ 1083.934708][T22278] ? fbcon_prepare_logo+0x94e/0xc60 [ 1083.934724][T22278] panic+0xd1/0xe0 [ 1083.934737][T22278] ? __pfx_panic+0x10/0x10 [ 1083.934754][T22278] ? fbcon_prepare_logo+0x94e/0xc60 [ 1083.934769][T22278] ? preempt_schedule_common+0x42/0xc0 [ 1083.934791][T22278] check_panic_on_warn.cold+0x19/0x34 [ 1083.934807][T22278] end_report.part.0+0x3a/0x90 [ 1083.934827][T22278] kasan_report.cold+0xe/0x18 [ 1083.934846][T22278] ? fbcon_prepare_logo+0x94e/0xc60 [ 1083.934863][T22278] kasan_check_range+0x10f/0x1e0 [ 1083.934881][T22278] __asan_memcpy+0x23/0x60 [ 1083.934900][T22278] fbcon_prepare_logo+0x94e/0xc60 [ 1083.934918][T22278] fbcon_init+0x10a0/0x1820 [ 1083.934934][T22278] visual_init+0x320/0x620 [ 1083.934952][T22278] do_bind_con_driver.isra.0+0x636/0x9c0 [ 1083.934973][T22278] store_bind+0x609/0x730 [ 1083.934993][T22278] ? __pfx_store_bind+0x10/0x10 [ 1083.935010][T22278] dev_attr_store+0x58/0x80 [ 1083.935027][T22278] ? __pfx_dev_attr_store+0x10/0x10 [ 1083.935043][T22278] sysfs_kf_write+0xf2/0x150 [ 1083.935060][T22278] kernfs_fop_write_iter+0x3e0/0x5f0 [ 1083.935075][T22278] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1083.935092][T22278] iter_file_splice_write+0x830/0x10a0 [ 1083.935112][T22278] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1083.935129][T22278] ? __pfx_copy_splice_read+0x10/0x10 [ 1083.935147][T22278] ? __pfx_iter_file_splice_write+0x10/0x10 [ 1083.935162][T22278] direct_splice_actor+0x192/0x6c0 [ 1083.935177][T22278] splice_direct_to_actor+0x345/0xa30 [ 1083.935191][T22278] ? __pfx_direct_splice_actor+0x10/0x10 [ 1083.935215][T22278] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1083.935235][T22278] do_splice_direct+0x174/0x240 [ 1083.935249][T22278] ? __pfx_do_splice_direct+0x10/0x10 [ 1083.935263][T22278] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1083.935286][T22278] ? rw_verify_area+0xce/0x6d0 [ 1083.935307][T22278] do_sendfile+0xadc/0xe20 [ 1083.935330][T22278] ? __pfx_do_sendfile+0x10/0x10 [ 1083.935351][T22278] ? __x64_sys_futex+0x34f/0x4d0 [ 1083.935369][T22278] ? __x64_sys_futex+0x358/0x4d0 [ 1083.935387][T22278] __x64_sys_sendfile64+0x1d8/0x220 [ 1083.935403][T22278] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1083.935422][T22278] do_syscall_64+0x106/0xf80 [ 1083.935441][T22278] ? clear_bhb_loop+0x40/0x90 [ 1083.935457][T22278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1083.935473][T22278] RIP: 0033:0x7f8bbbb9c799 [ 1083.935486][T22278] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1083.935509][T22278] RSP: 002b:00007f8bbca63028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1083.935525][T22278] RAX: ffffffffffffffda RBX: 00007f8bbbe16180 RCX: 00007f8bbbb9c799 [ 1083.935536][T22278] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000006 [ 1083.935546][T22278] RBP: 00007f8bbbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 1083.935556][T22278] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 1083.935565][T22278] R13: 00007f8bbbe16218 R14: 00007f8bbbe16180 R15: 00007ffe4edc0ae8 [ 1083.935581][T22278] [ 1083.935642][T22278] Kernel Offset: disabled