last executing test programs: 15.004979977s ago: executing program 0 (id=1165): setsockopt$auto_SO_KEEPALIVE(0xffffffffffffffff, 0x1, 0x9, &(0x7f0000000080)='%&+#*%-\xfc\x00', 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x5, 0x80000001, 0x40, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) 12.219617738s ago: executing program 0 (id=1161): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_MEDIA_GET(r0, &(0x7f0000001c00)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x18, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x240088d4}, 0x2000c880) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0x2, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/conf/netdevsim1/router_solicitations\x00', 0x100000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) prctl$auto_SIGCONT(0x8, 0x12, 0xffffffffffffffff, 0x8000000000000000, 0x10) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000200)='/dev/fb0\x00', 0x1, 0x0) accept4$auto(0xffffffffffffffff, &(0x7f0000000100)=@in={0x2, 0x4e20, @remote}, &(0x7f0000000140)=0x6, 0x9) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="c80d1b5d399b58", 0x7) io_uring_setup$auto(0x1, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) r5 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101802, 0x0) write$auto(r5, 0x0, 0x7) ppoll$auto(&(0x7f0000000000)={r5, 0x6, 0x6}, 0x8, &(0x7f0000000040)={0x4, 0xf}, &(0x7f00000000c0)={0x3}, 0x8) 11.143713699s ago: executing program 0 (id=1164): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) listen$auto(0x3, 0x81) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x5, 0x84) getsockopt$auto(r2, 0x84, 0x1f, 0x0, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, 0x0, 0x24048004) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r4, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}}, 0x4000) sendmsg$auto_NFSD_CMD_VERSION_GET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x404001, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x2, 0x3, 0xa) 9.91243782s ago: executing program 2 (id=1174): socket(0x11, 0x80003, 0x300) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x18, 0x3, 0x2) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) fcntl$auto(0x0, 0x408, 0x100000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x4, 0xdf, 0x9b72, 0x2, 0x8000) vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8) 8.283988805s ago: executing program 1 (id=1168): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) write$auto_force_wakeup_fops_hci_vhci(0xffffffffffffffff, &(0x7f0000000080)="305b0a8f", 0x4) rseq$auto(0x0, 0x8000, 0x0, 0x9) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x3, 0x3a) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="17000000", @ANYBLOB='U'], 0x1ac}, 0x1, 0x0, 0x0, 0x663e94553c5db1d5}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x6, &(0x7f0000000100)={0x0, 0x1}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x5, 0x4000a98) rseq$auto(0x0, 0x8000, 0x0, 0x6) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x2, 0x1, 0x0) r2 = socket(0xa, 0x3, 0x3a) r3 = epoll_create$auto(0x2) epoll_pwait2$auto(r3, 0x0, 0x8, 0x0, 0x0, 0x8) sysfs$auto(0x2, 0x0, 0x0) close_range$auto(r1, r2, 0x3) r4 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r4, 0x0) 7.575784392s ago: executing program 0 (id=1170): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='%\x00\x00\x00', @ANYRESHEX=r1, @ANYBLOB="01002bbd7000ffdbdf250200000008000100fcffffff08000100ffff0000"], 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) socketpair$auto(0xffffffff, 0x400002, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xfffffffffffffffd, 0x8, 0x1, 0x2, 0xffff, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2c, 0x4, 0x3) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(0x0, 0x0, 0x0) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) mmap$auto(0x0, 0x2020009, 0x8003, 0xeb1, 0xfffffffffffffffa, 0x8000000000008000) link$auto(&(0x7f0000000940)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2DW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xea\xa5\xff \xec\xe8\xca\xbf\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\v\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4N\xbb\xc2\xf8\x9c\xd0+t\x87r\x02\x05\xdb\xe4\xde\xed\x02\x00\x00\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00M\x83\xdb\xaf\xc4\xf23l\xae\xc5\x1d\xc4\xb0\x06\xd06\x1dX\x03\xe3\x9e\xd3\xd96\xcf\xd9\xa3\xcb\xd6B\xc3\x0f#\xd2\x1a\xf9L\xf5\x87My\xce\x19*\xde\x8d+#\x13\x15\xd3Y\x98\xe1\xc3@\x0e\x9c\xc2\xf8\b\xaf\x89\xe5\x00\x89-pWD\xb5&\xc9\x8e\x8d,\xb7}1\x84U\x18y\xa90\xf5\x80\x981U\x17\x14]\xc56j\xe7\x0e\xecBr\xa9]\"\xd36^m\x12\xb6\xbc\x80\xa4h{\xde\xcf\xf7d\x87rl\x11\xf7\x15\xcb~\xb9\x01\x0e\xd7O_\x91\xe1\xead\xee\xed]/p\xd6\xff\x17\xe4\aV\"I\xca\x90\xc7i\'\xa3R\x81\xf1}4\xbeU\x00\xa4\x1d\xea!Z\xd4|\xbe\x987\n!\x9b?\xb9l_\xd8$av\xfe%\xa2\xda\x82\x14\xc311;\xa4ob\x87\xdbY\xe2\x00', &(0x7f0000000b40)='./file0\x00') rename$auto(&(0x7f0000000680)=':,\x00', &(0x7f0000000480)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2DW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xea\xa5\xff \xec\xe8\xca\xbf\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\v\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4N\xbb\xc2\xf8\x9c\xd0+t\x87r\x02\x05\xdb\xe4\xde\xed\x02\x00\x00\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00M\x83\xdb\xaf\xc4\xf23l\xae\xc5\x1d\xc4\xb0\x06\xd06\x1dX\x03\xe3\x9e\xd3\xd96\xcf\xd9\xa3\xcb\xd6B\xc3\x0f#\xd2\x1a\xf9L\xf5\x87My\xce\x19*\xde\x8d+#\x13\x15\xd3Y\x98\xe1\xc3@\x0e\x9c\xc2\xf8\b\xaf\x89\xe5\x00\x89-pWD\xb5&\xc9\x8e\x8d,\xb7}1\x84U\x18y\xa90\xf5\x80\x981U\x17\x14]\xc56j\xe7\x0e\xecBr\xa9]\"\xd36^m\x12\xb6\xbc\x80\xa4h{\xde\xcf\xf7d\x87rl\x11\xf7\x15\xcb~\xb9\x01\x0e\xd7O_\x91\xe1\xead\xee\xed]/p\xd6\xff\x17\xe4\aV\"I\xca\x90\xc7i\'\xa3R\x81\xf1}4\xbeU\x00\xa4\x1d\xea!Z\xd4|\xbe\x987\n!\x9b?\xb9l_\xd8$av\xfe%\xa2\xda\x82\x14\xc311;\xa4ob\x87\xdbY\xe2\x00') 7.296220302s ago: executing program 3 (id=1171): arch_prctl$auto(0x1012, 0x400000000001000) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) modify_ldt$auto(0x1, 0x0, 0x10) open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x181080, 0x18) prctl$auto_PR_SET_VMA(0x53564d41, 0xd38f, 0x400000000000800, 0x8003, 0x5) openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000100)={0x20041, 0x9, 0x2}, 0x18) socket(0x2c, 0x1, 0x6) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b74, 0x7, 0xfffffffffffffff8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) r1 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x24041, 0x0) ioctl$auto_UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000040)={r1, 0x5, 0x7, 0x4}) modify_ldt$auto(0x1, 0x0, 0x10) 7.294629044s ago: executing program 2 (id=1180): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) socket(0x2, 0x1, 0x106) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/vlan/config\x00', 0xc0000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/user/max_fanotify_groups\x00', 0x181b42, 0x0) signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x4079, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socketpair$auto(0x4004, 0xf, 0x4, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto_TCFLSH2(r1, 0x400455c8, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) 6.990596327s ago: executing program 1 (id=1172): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x7ffe) keyctl$auto(0x3, 0xfffffffffffffffd, 0x0, 0x0, 0xff7) msgsnd$auto(0xfffffffc, 0x0, 0x1, 0x963) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, 0x0) r0 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) execveat$auto(r0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0) listmount$auto(0x0, 0x0, 0xf4240, 0x0) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) ioctl$auto_BTRFS_IOC_SCAN_DEV(r1, 0x50009404, 0x0) unshare$auto(0x40000080) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) ioctl$auto(0xffffffffffffffff, 0x2, 0xffffffffffffffff) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/free_buffer\x00', 0x4c000, 0xebff) 6.322310855s ago: executing program 0 (id=1173): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/devices/virtual/net/bpq0/duplex\x00', 0x40280, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/4118, 0x1016) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket(0xa, 0x801, 0x84) getsockopt$auto(r2, 0x84, 0x6f, 0x0, &(0x7f0000000000)=0x9000c) statx$auto(r1, 0x0, 0x1003, 0x4005, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendmmsg$auto(r1, 0x0, 0x0, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x11, 0x0) sysfs$auto(0x1, 0x0, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) 6.282661213s ago: executing program 1 (id=1175): mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0xffffffffffffffff, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0x81, 0x0) mmap$auto(0x0, 0x20005, 0xa, 0x200eb1, 0x401, 0x8000) sysinfo$auto(&(0x7f0000000080)={0x1, [0xa3e, 0x5, 0x101], 0xc50, 0xb36, 0x6, 0x3ff, 0x74, 0x5, 0x2, 0x0, 0x12000000, 0x3, 0x5}) socket(0xa, 0x2, 0x0) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x42800, 0x0) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r1, 0x7a4, 0x0) getsockopt$auto(r0, 0x2000080, 0x3d, 0x0, 0x0) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(r2, 0x400454ca, r2) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) io_uring_setup$auto(0x6, 0x0) socket(0x2, 0x2, 0x1) msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x80000001, 0x9, 0x8, 0xffffffff, 0xfffffffffffffffe, 0x7fff, 0xfc2, 0x27f, @inferred=0xffffffffffffffff, @raw}) setresgid$auto(0xffffffffffffffff, 0xffffffffffffffff, r3) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x67}, 0x6a) 5.47483426s ago: executing program 3 (id=1176): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_UI_SET_ABSBIT(r1, 0x40045567, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045035, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) mount$auto(&(0x7f0000000000)='veth1_vlan\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='hfs\x00\x81\xe2\xde\xa8\xb7\xc4G[*}\xaa{\xf1\x86\xf7d@\xe8Y\xea\xb1H\x01\xff\"^\'6\xba\xa9s\x1d\xf4\xe1i\xc5\xb6_B\xa7KFS\xc1\xa7\x8e*h\xe3\x8b\x7f\xca\xfcNEi\x84?\x82\xff\xf2\xac\xd1\xee\xf4\x9a?\xac\x11\x88\aO\x84\xe6k\a\x9bY\xddx\xb8\xdf\vHv\xb5\f\xbc\b\xc0\xfa\xc0\xfe\xa6\xce\xbd\x03\x00\x93\xdc4\x97\xce\xd5&\x93\xae\x05q\xe9\xa8?\x00\xbdi\x88q\xd0w\xfd@\r\xce\xe4\xadrt`\xf8`b\xbf\xeci\x93a\xc6o\x9ej\xe4\xa3\x9d\xaa\xe1\xe1N\n\xbcq\n[\"5\xd4\xa6\x96#).\xbd\x8aD\x88>8J\v\xb5\x99H\xc5\a\xc9\xcf\xbc\x85\xbf\x85\x81\x0f\x7f8\x11\xdbK\xf3\xc2#\x18 \xdf\x05\xcd\xbb\xc03_\xb7Q@\xf2G', 0x7, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000180)={0xf, 0x40, 0x6, 0x81, 0x3, 0x8, 0x0}) socket(0x15, 0x5, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) socket(0xa, 0x5, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) getpeername$auto(0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000000c0)=""/255, 0xff) 4.6889124s ago: executing program 3 (id=1177): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2c, 0x3, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) clone$auto(0x20003b4a, 0x8, 0x0, 0x0, 0x2) pidfd_getfd$auto(0x3, 0x1, 0x100000000) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r2, r1, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc) bpf$auto(0x1, &(0x7f0000000380)=@raw_tracepoint={0x5, r0, 0x0, 0x6}, 0xc) 4.558965293s ago: executing program 2 (id=1178): mmap$auto(0x0, 0x4, 0x10000, 0x40eb3, 0x401, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/gid_map\x00', 0xd8180, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = socket(0x2b, 0x1, 0x1) socketpair$auto(0xfffffffe, 0x1, 0x8000000000000000, 0x0) ioctl$auto(r1, 0x89a0, 0x4) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x8) unshare$auto(0x40000080) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x4a801, 0x0) sendto$auto(0x3, 0x0, 0x100000000, 0x40000008, 0x0, 0x19) lstat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000440)={0x4, 0x8000000000000001, 0x21, 0x2, 0xffffffffffffffff, 0xee01, 0x0, 0x0, 0x9, 0xdae, 0x9, 0x1000, 0xffffffffffffffff, 0x7, 0x9, 0xff, 0x3}) 2.835077401s ago: executing program 0 (id=1179): socket(0x2, 0x3, 0xa) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0) setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000080)={{0x7, 0x3076000000000000}, {0x10, 0x401}}, 0x0) prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x1ff, 0x2, 0xffffffffffffffff, 0x8, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4040aea0, &(0x7f0000000080)={0x2}) ioctl$auto(r0, 0x541b, 0xffffffffffffffff) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0x200007, 0x8) 2.834826111s ago: executing program 1 (id=1181): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/irq/default_smp_affinity\x00', 0x84002, 0x0) readv$auto(0x3, &(0x7f0000000080)={0x0, 0xa}, 0x1) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000140)='-$!\x00\xfa\xef\t\xa4\xe9\xb2r\x8cQ \xa6\xb7v\x93\xb6\b\xba\xfe\x1e\xab\xe7KC6z\x1a\xf0\x83~\xcd\x9a\x83\b\xb6\xb2\xd6PR\xbe\xec\xea\t\xde.\xc6%\x16\xc8\\\xb2\xe86\xe1\x84k\xa8\x02\xcb\xc9 \x1flY\xcb\xfa\xd9\xe0\xb8\x93\x12\xbc\xcf\xc2\'\x90\x9d\x1c\xb0\x1d\xb8\x80\xb4V\x9c\xf6J\xe8\"\xef@\xcd t\xe8\xe9Ip\xa74\x82\xb0\x9a\xecj\x9f\x8f\x9a\xe22\x8e\xce1\x9d\x0fW\xe7\xfb\"[\x17\x83\xfc}\xc7\xab\x93\xe4\x1ekP1\x01\bB\xbf*a\x93\xbd\xa7\xc8', 0x5, 0x4) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="f4ffffff", @ANYBLOB="01002b"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380), 0x7b2}, 0x2, &(0x7f0000000340), 0x7, 0xa505}, 0x800}, 0x7, 0x8) r1 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/set_event_pid\x00', 0xc00, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x3, 0x100) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x121482, 0x0) io_uring_setup$auto(0x8, &(0x7f0000000140)={0xa80, 0x4, 0x12, 0x8, 0x0, 0x5, r3, [0x7fff, 0x6, 0x1], {0xe, 0x4, 0x1, 0x5, 0xb0, 0x100, 0x9, 0x5, 0x81}, {0x2, 0x40, 0x1ad, 0x1ff, 0x9810, 0x2, 0x4, 0x4}}) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/ping_group_range\x00', 0x202, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r4, 0x0, 0x20) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto(r1, 0x0, 0x0) 2.834636022s ago: executing program 2 (id=1182): futex_wait$auto(0x0, 0x5, 0x21b1, 0x80, 0x0, 0x3) r0 = open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x0) semget$auto(0x0, 0x13c, 0x1ff) semtimedop$auto(0x0, &(0x7f0000000000)={0x3, 0x8000, 0x36ec}, 0x1, 0x0) mmap$auto(0x7fffffff9000, 0x1, 0x7ffffffdfffffffb, 0x3132, 0xffffffffffffffff, 0xffffffffffffdffe) mmap$auto(0x7fffffffa000, 0x5, 0x7fffffffffffffff, 0x3132, 0x8d73, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c2b02, 0x0) socket(0x8, 0x80805, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_FS_IOC_ENABLE_VERITY(r0, 0x40806685, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x109101, 0x0) semget$auto(0x2, 0x5, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) ioctl$auto_RTC_PARAM_SET(0xffffffffffffffff, 0x40187014, 0x0) write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(0x3, 0x0, 0xc) semctl$auto_SETVAL(0x0, 0x7, 0x10, 0xfff) 2.834490356s ago: executing program 3 (id=1183): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) sendto$auto(r0, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can, 0x36) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r3 = socket(0x1d, 0x2, 0x7) r4 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r3, &(0x7f0000000000)=@can={0x1d, r5}, 0x6a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r6}, 0x18) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.539727973s ago: executing program 1 (id=1184): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_show_traces_fops_trace(0xffffffffffffff9c, 0x0, 0x826c0, 0x0) writev$auto(0xffffffffffffffff, 0x0, 0x3) socket(0x10, 0x2, 0xff) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) modify_ldt$auto(0x3, 0x0, 0x80) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x40100, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000040)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) 1.729380596s ago: executing program 2 (id=1185): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) setregid$auto(0xffffffffffffffff, 0xfffe) setresgid$auto(0xffffffffffffffff, 0x0, 0x0) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000024c0)="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", 0xfff) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x929, 0x4001, 0x7, 0x5, 0x100717e, 0x3, 0x7, 0x6, 0x7ff, 0xfffffffe, 0x80000001, 0x4, 0x200000000001, 0x1, 0xfffffffffffffffb, 0x8, 0x0, 0x2, 0x2, 0x864, 0xe, 0x22000, 0x200, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, [0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffff4f3, 0x0, 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffffc]}, 0xa, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r2 = socket(0x10, 0x2, 0x0) bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x400000000005}, 0x3fc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x803}, 0x2004, 0x8) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) write$auto_proc_clear_refs_operations_internal(r0, &(0x7f0000000000)="73d6cc4fdf406742386dd72ff1428a506f5cd946a3", 0x15) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffff7effffd01, &(0x7f00000001c0)) 1.505625534s ago: executing program 1 (id=1186): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x4a801, 0x0) socket(0x28, 0x5, 0x4) close_range$auto(0x2, 0x8, 0x0) setresgid$auto(0x0, 0xffffffffffffffff, 0xffffffffffffffff) r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2000000080000001, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x91e4) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x82, 0x0) sendfile$auto(r1, r1, 0x0, 0x7dfff001) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x2000, 0x0) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x364f9cefc8a0a83, 0x0) ioctl$auto_tracing_buffers_fops_trace(r2, 0x5220, 0x0) 1.492525091s ago: executing program 3 (id=1187): mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x11, 0xa, 0x300) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0) socket(0x2, 0x2, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x20000000001ff, 0x7, 0xd3e, 0x1, 0x3a00000000000, 0x6, 0x8000000000000001, 0xfffffffffffffffd, 0x10001, 0xaa9, 0x10007ffffffd, 0x3, 0x6d3f, 0x2000009, 0x2, 0xfffffffffffffffa]}, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x7, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x8640, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) preadv$auto(0x3, 0x0, 0x3, 0x3, 0x10) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x60482, 0x0) write$auto(0x3, 0x0, 0x5) 166.580919ms ago: executing program 2 (id=1188): mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r1 = socket(0x11, 0xa, 0x300) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x88000, 0x0) getsockname$auto(r1, &(0x7f0000000980)=@nfc={0x27, 0x0, 0xffffffffffffffff, 0x5}, &(0x7f00000009c0)=0x5) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0) pselect6$auto(0x5, &(0x7f0000000400)={[0x8, 0x5, 0x0, 0x5, 0x8001, 0x6, 0xac, 0x2000009, 0x3, 0xffffffff, 0x7fffffffffffffff, 0x0, 0x1000, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x101202, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c00, 0x0) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f00000000c0)="4c2a28c58ff9e9995b91a7d23b2a5a2f88", 0x11) socket(0x848000000015, 0x805, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x240042, 0x0) ioctl$auto_KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000080)={0xe, 0x0, [{0x40000, 0x5, 0x71}, {0x200, 0x9, 0x1ff}, {0x4, 0x10000, 0x7b3c}, {0x0, 0x7, 0xfffffffffffffff8}, {0x7, 0x5, 0x48e000000}, {0x80000001, 0x0, 0x4}]}) r5 = epoll_create$auto(0x8800001) epoll_ctl$auto(r5, 0x1, r0, 0x0) 0s ago: executing program 3 (id=1189): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r0 = socket(0x2, 0x5, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r2, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x9, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4788, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908286dd"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x20009, 0x6, 0xfffffffffffffffe, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r5 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/mem\x00', 0x924c3, 0x0) write$auto_proc_mem_operations_base(r5, &(0x7f0000001100)="a7c1f7", 0x3) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0xfff, &(0x7f00000000c0)={0x0, 0x1feff}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311) kernel console output (not intermixed with test programs): ugfs+0x10/0x10 [ 348.968548][ T9077] ? lockdep_init_map_type+0x5c/0x270 [ 348.968586][ T9077] preinit_net.part.0+0x24e/0x8f0 [ 348.968630][ T9077] copy_net_ns+0x4cd/0x7c0 [ 348.968660][ T9077] create_new_namespaces+0x3ea/0xab0 [ 348.968718][ T9077] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 348.968761][ T9077] ksys_unshare+0x45b/0xa40 [ 348.968790][ T9077] ? __pfx_ksys_unshare+0x10/0x10 [ 348.968833][ T9077] ? ksys_write+0x1ac/0x250 [ 348.968888][ T9077] __x64_sys_unshare+0x31/0x40 [ 348.968914][ T9077] do_syscall_64+0xcd/0xf80 [ 348.968944][ T9077] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.968973][ T9077] RIP: 0033:0x7feb5c38f7c9 [ 348.968998][ T9077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.969027][ T9077] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 348.969054][ T9077] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 348.969073][ T9077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 348.969090][ T9077] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 348.969105][ T9077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.969119][ T9077] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 348.969157][ T9077] [ 349.405585][ T9087] Invalid ELF header magic: != ELF [ 349.946234][ T9087] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input15 [ 349.976888][ T9087] FAULT_INJECTION: forcing a failure. [ 349.976888][ T9087] name failslab, interval 1, probability 0, space 0, times 0 [ 349.989801][ T9087] CPU: 0 UID: 0 PID: 9087 Comm: syz.1.745 Tainted: G L syzkaller #0 PREEMPT(full) [ 349.989847][ T9087] Tainted: [L]=SOFTLOCKUP [ 349.989857][ T9087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 349.989876][ T9087] Call Trace: [ 349.989885][ T9087] [ 349.989897][ T9087] dump_stack_lvl+0x16c/0x1f0 [ 349.989949][ T9087] should_fail_ex+0x512/0x640 [ 349.989983][ T9087] ? __kmalloc_cache_noprof+0x5f/0x800 [ 349.990022][ T9087] should_failslab+0xc2/0x120 [ 349.990066][ T9087] __kmalloc_cache_noprof+0x80/0x800 [ 349.990100][ T9087] ? kobject_uevent_env+0x265/0x1920 [ 349.990141][ T9087] ? kobject_uevent_env+0x265/0x1920 [ 349.990175][ T9087] kobject_uevent_env+0x265/0x1920 [ 349.990209][ T9087] ? __pfx_dev_uevent_name+0x10/0x10 [ 349.990243][ T9087] ? kernfs_put+0x35/0x60 [ 349.990277][ T9087] ? sysfs_do_create_link_sd+0xbb/0x140 [ 349.990308][ T9087] ? bus_to_subsys+0x131/0x160 [ 349.990342][ T9087] device_add+0x1103/0x1980 [ 349.990388][ T9087] ? __pfx_device_add+0x10/0x10 [ 349.990431][ T9087] ? __pfx_exact_lock+0x10/0x10 [ 349.990480][ T9087] ? kobject_get+0xbb/0x150 [ 349.990513][ T9087] cdev_device_add+0x12b/0x270 [ 349.990558][ T9087] evdev_connect+0x3a4/0x4c0 [ 349.990604][ T9087] input_attach_handler.isra.0+0x176/0x250 [ 349.990650][ T9087] input_register_device+0xab9/0x11b0 [ 349.990689][ T9087] ? input_ff_create+0x201/0x350 [ 349.990723][ T9087] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 349.990759][ T9087] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 349.990802][ T9087] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 349.990846][ T9087] ? find_held_lock+0x2b/0x80 [ 349.990901][ T9087] ? __pfx_uinput_ioctl+0x10/0x10 [ 349.990928][ T9087] __x64_sys_ioctl+0x18e/0x210 [ 349.990965][ T9087] do_syscall_64+0xcd/0xf80 [ 349.990993][ T9087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.991021][ T9087] RIP: 0033:0x7fba3a98f7c9 [ 349.991042][ T9087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.991065][ T9087] RSP: 002b:00007fba3b82d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 349.991091][ T9087] RAX: ffffffffffffffda RBX: 00007fba3abe5fa0 RCX: 00007fba3a98f7c9 [ 349.991110][ T9087] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 349.991125][ T9087] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 349.991140][ T9087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 349.991155][ T9087] R13: 00007fba3abe6038 R14: 00007fba3abe5fa0 R15: 00007ffe162bc458 [ 349.991195][ T9087] [ 351.695182][ T9110] binder: 9109:9110 ioctl 4018620d 9 returned -22 [ 352.695251][ T9120] FAULT_INJECTION: forcing a failure. [ 352.695251][ T9120] name failslab, interval 1, probability 0, space 0, times 0 [ 352.708546][ T9120] CPU: 0 UID: 0 PID: 9120 Comm: syz.2.752 Tainted: G L syzkaller #0 PREEMPT(full) [ 352.708594][ T9120] Tainted: [L]=SOFTLOCKUP [ 352.708603][ T9120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 352.708612][ T9120] Call Trace: [ 352.708620][ T9120] [ 352.708627][ T9120] dump_stack_lvl+0x16c/0x1f0 [ 352.708660][ T9120] should_fail_ex+0x512/0x640 [ 352.708680][ T9120] ? kmem_cache_alloc_noprof+0x62/0x770 [ 352.708710][ T9120] should_failslab+0xc2/0x120 [ 352.708739][ T9120] kmem_cache_alloc_noprof+0x83/0x770 [ 352.708759][ T9120] ? __kernfs_new_node+0xd2/0x9b0 [ 352.708784][ T9120] ? __kernfs_new_node+0xd2/0x9b0 [ 352.708802][ T9120] __kernfs_new_node+0xd2/0x9b0 [ 352.708821][ T9120] ? find_held_lock+0x2b/0x80 [ 352.708844][ T9120] ? kernfs_add_one+0x37d/0x840 [ 352.708865][ T9120] ? __pfx___kernfs_new_node+0x10/0x10 [ 352.708890][ T9120] ? find_held_lock+0x2b/0x80 [ 352.708912][ T9120] ? kernfs_root+0xee/0x2a0 [ 352.708935][ T9120] kernfs_new_node+0x13c/0x1e0 [ 352.708962][ T9120] __kernfs_create_file+0x53/0x350 [ 352.708991][ T9120] sysfs_add_file_mode_ns+0x207/0x3c0 [ 352.709015][ T9120] sysfs_create_file_ns+0x13d/0x1d0 [ 352.709033][ T9120] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 352.709050][ T9120] ? down_read+0x13d/0x460 [ 352.709068][ T9120] ? __pfx___up_read+0x10/0x10 [ 352.709086][ T9120] ? acpi_device_notify+0x351/0x4d0 [ 352.709108][ T9120] device_create_file+0xf2/0x1e0 [ 352.709126][ T9120] device_add+0x2bf/0x1980 [ 352.709150][ T9120] ? alloc_workqueue_noprof+0x192/0x200 [ 352.709177][ T9120] ? __pfx_device_add+0x10/0x10 [ 352.709209][ T9120] nfc_register_device+0x41/0x410 [ 352.709238][ T9120] nci_register_device+0x7f1/0xb80 [ 352.709260][ T9120] ? __pfx_nci_register_device+0x10/0x10 [ 352.709285][ T9120] ? lockdep_init_map_type+0x5c/0x270 [ 352.709306][ T9120] virtual_ncidev_open+0x141/0x220 [ 352.709324][ T9120] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 352.709341][ T9120] misc_open+0x26d/0x450 [ 352.709362][ T9120] ? __pfx_misc_open+0x10/0x10 [ 352.709381][ T9120] chrdev_open+0x234/0x6a0 [ 352.709406][ T9120] ? __pfx_apparmor_file_open+0x10/0x10 [ 352.709424][ T9120] ? __pfx_chrdev_open+0x10/0x10 [ 352.709450][ T9120] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 352.709490][ T9120] do_dentry_open+0x748/0x1590 [ 352.709513][ T9120] ? __pfx_chrdev_open+0x10/0x10 [ 352.709545][ T9120] vfs_open+0x82/0x3f0 [ 352.709567][ T9120] path_openat+0x2078/0x3140 [ 352.709600][ T9120] ? __pfx_path_openat+0x10/0x10 [ 352.709633][ T9120] do_filp_open+0x20b/0x470 [ 352.709659][ T9120] ? __pfx_do_filp_open+0x10/0x10 [ 352.709700][ T9120] ? alloc_fd+0x471/0x7d0 [ 352.709733][ T9120] do_sys_openat2+0x121/0x290 [ 352.709752][ T9120] ? __pfx_do_sys_openat2+0x10/0x10 [ 352.709772][ T9120] ? __fput+0x68d/0xb70 [ 352.709793][ T9120] __x64_sys_openat+0x174/0x210 [ 352.709813][ T9120] ? __pfx___x64_sys_openat+0x10/0x10 [ 352.709842][ T9120] do_syscall_64+0xcd/0xf80 [ 352.709860][ T9120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.709877][ T9120] RIP: 0033:0x7f2a2b58f7c9 [ 352.709892][ T9120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 352.709908][ T9120] RSP: 002b:00007f2a2c4bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 352.709925][ T9120] RAX: ffffffffffffffda RBX: 00007f2a2b7e6090 RCX: 00007f2a2b58f7c9 [ 352.709936][ T9120] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 352.709946][ T9120] RBP: 00007f2a2b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 352.709956][ T9120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.709966][ T9120] R13: 00007f2a2b7e6128 R14: 00007f2a2b7e6090 R15: 00007ffd7e6fa6f8 [ 352.709988][ T9120] [ 354.804451][ T5831] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 354.928379][ T5831] CPU: 1 UID: 0 PID: 5831 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 354.928410][ T5831] Tainted: [L]=SOFTLOCKUP [ 354.928416][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 354.928426][ T5831] Call Trace: [ 354.928432][ T5831] [ 354.928446][ T5831] dump_stack_lvl+0x16c/0x1f0 [ 354.928479][ T5831] dump_header+0x101/0x960 [ 354.928501][ T5831] oom_kill_process+0x176/0x910 [ 354.928522][ T5831] out_of_memory+0x350/0x1700 [ 354.928541][ T5831] ? __lock_acquire+0x436/0x2890 [ 354.928560][ T5831] ? __pfx_out_of_memory+0x10/0x10 [ 354.928585][ T5831] mem_cgroup_out_of_memory+0x118/0x130 [ 354.928611][ T5831] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 354.928637][ T5831] ? do_raw_spin_unlock+0x172/0x230 [ 354.928661][ T5831] try_charge_memcg+0x695/0xd30 [ 354.928695][ T5831] ? __pfx_try_charge_memcg+0x10/0x10 [ 354.928728][ T5831] ? find_held_lock+0x2b/0x80 [ 354.928754][ T5831] charge_memcg+0x8a/0x230 [ 354.928781][ T5831] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 354.928802][ T5831] __read_swap_cache_async+0x397/0x500 [ 354.928827][ T5831] ? __pfx___read_swap_cache_async+0x10/0x10 [ 354.928847][ T5831] ? finish_task_switch.isra.0+0x207/0xbd0 [ 354.928871][ T5831] ? lockdep_hardirqs_on+0x7c/0x110 [ 354.928889][ T5831] ? rcu_is_watching+0x12/0xc0 [ 354.928916][ T5831] swap_cluster_readahead+0x432/0x770 [ 354.928943][ T5831] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 354.928967][ T5831] ? __lock_acquire+0x436/0x2890 [ 354.928992][ T5831] ? get_vma_policy+0x242/0x3c0 [ 354.929011][ T5831] swapin_readahead+0x160/0x1220 [ 354.929042][ T5831] ? __pfx_swapin_readahead+0x10/0x10 [ 354.929064][ T5831] ? find_held_lock+0x2b/0x80 [ 354.929085][ T5831] ? swap_cache_get_folio+0x267/0x8e0 [ 354.929104][ T5831] ? swap_cache_get_folio+0x267/0x8e0 [ 354.929123][ T5831] ? swap_cache_get_folio+0x267/0x8e0 [ 354.929144][ T5831] ? swap_cache_get_folio+0x267/0x8e0 [ 354.929164][ T5831] ? swap_cache_get_folio+0x293/0x8e0 [ 354.929185][ T5831] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 354.929204][ T5831] ? __pfx_get_swap_device+0x10/0x10 [ 354.929228][ T5831] ? rcu_read_unlock+0x2d/0xb0 [ 354.929252][ T5831] ? do_swap_page+0x962/0x64a0 [ 354.929268][ T5831] do_swap_page+0x962/0x64a0 [ 354.929288][ T5831] ? __lock_acquire+0x436/0x2890 [ 354.929310][ T5831] ? __pfx_do_swap_page+0x10/0x10 [ 354.929329][ T5831] ? __pfx_default_wake_function+0x10/0x10 [ 354.929355][ T5831] ? rcu_is_watching+0x12/0xc0 [ 354.929377][ T5831] ? __free_object+0x286/0x410 [ 354.929405][ T5831] ? rcu_is_watching+0x12/0xc0 [ 354.929428][ T5831] ? ___pte_offset_map+0x175/0x380 [ 354.929461][ T5831] __handle_mm_fault+0x19cb/0x2bb0 [ 354.929484][ T5831] ? reacquire_held_locks+0xcd/0x1f0 [ 354.929502][ T5831] ? __pfx___handle_mm_fault+0x10/0x10 [ 354.929524][ T5831] ? lock_vma_under_rcu+0x176/0x580 [ 354.929549][ T5831] ? get_timespec64+0x136/0x1b0 [ 354.929572][ T5831] handle_mm_fault+0x3fe/0xad0 [ 354.929595][ T5831] do_user_addr_fault+0x60c/0x1370 [ 354.929618][ T5831] ? rcu_is_watching+0x12/0xc0 [ 354.929644][ T5831] exc_page_fault+0x64/0xc0 [ 354.929671][ T5831] asm_exc_page_fault+0x26/0x30 [ 354.929687][ T5831] RIP: 0033:0x7fba3a9b75f0 [ 354.929703][ T5831] Code: 48 8b 3c 25 00 03 00 00 e8 1d 13 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 e7 02 74 0b c3 66 2e 0f 1f 84 00 00 00 00 00 <64> 48 8b 04 25 10 00 00 00 8b 90 08 03 00 00 48 8d b8 08 03 00 00 [ 354.929720][ T5831] RSP: 002b:00007ffe162bc768 EFLAGS: 00010246 [ 354.929735][ T5831] RAX: 0000000000000000 RBX: 000000000000028e RCX: 00007fba3a9c2085 [ 354.929746][ T5831] RDX: 00007ffe162bc7b0 RSI: 0000000000000000 RDI: 0000000000000000 [ 354.929756][ T5831] RBP: 00007ffe162bc81c R08: 0000000000000000 R09: 0000000000000000 [ 354.929766][ T5831] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388 [ 354.929776][ T5831] R13: 00000000000927c0 R14: 0000000000056814 R15: 00007ffe162bc870 [ 354.929798][ T5831] [ 354.929819][ T5831] memory: usage 2032kB, limit 3072kB, failcnt 69456 [ 355.377671][ T5831] memory+swap: usage 1156kB, limit 9007199254740988kB, failcnt 0 [ 355.400783][ T5831] kmem: usage 692kB, limit 9007199254740988kB, failcnt 0 [ 355.416348][ T5831] Memory cgroup stats for /syz1: [ 355.416539][ T5831] cache 0 [ 355.440377][ T5831] rss 24576 [ 355.443616][ T5831] rss_huge 0 [ 355.466205][ T5831] shmem 0 [ 355.477708][ T5831] mapped_file 0 [ 355.487122][ T5831] dirty 0 [ 355.490720][ T5831] writeback 0 [ 355.501580][ T5831] workingset_refault_anon 13500 [ 355.515435][ T5831] workingset_refault_file 27093 [ 355.538608][ T5831] swap 167936 [ 355.549926][ T5831] swapcached 53248 [ 355.564884][ T5831] pgpgin 223597 [ 355.577123][ T5831] pgpgout 223581 [ 355.594777][ T5831] pgfault 178362 [ 355.606927][ T5831] pgmajfault 4609 [ 355.712769][ T5831] inactive_anon 0 [ 355.716655][ T5831] active_anon 53248 [ 355.729172][ T9159] block nbd0: Unsupported socket: should be TCP or UNIX. [ 355.742958][ T5831] inactive_file 0 [ 355.746886][ T5831] active_file 0 [ 355.750690][ T5831] unevictable 0 [ 355.754158][ T5831] hierarchical_memory_limit 3145728 [ 355.768896][ T9161] netlink: 4 bytes leftover after parsing attributes in process `syz.2.764'. [ 355.778561][ T5831] hierarchical_memsw_limit 9223372036854771712 [ 355.784748][ T5831] total_cache 0 [ 355.820836][ T5831] total_rss 24576 [ 355.824534][ T5831] total_rss_huge 0 [ 355.848036][ T9161] netlink: 'syz.2.764': attribute type 1 has an invalid length. [ 355.855754][ T9161] netlink: 13 bytes leftover after parsing attributes in process `syz.2.764'. [ 355.870942][ T5831] total_shmem 0 [ 355.874462][ T5831] total_mapped_file 0 [ 355.888371][ T5831] total_dirty 0 [ 355.901007][ T5831] total_writeback 0 [ 355.904870][ T5831] total_workingset_refault_anon 13500 [ 355.927611][ T5831] total_workingset_refault_file 27093 [ 355.934372][ T5831] total_swap 167936 [ 355.947595][ T5831] total_swapcached 53248 [ 355.952134][ T5831] total_pgpgin 223597 [ 355.968607][ T5831] total_pgpgout 223581 [ 355.983292][ T5831] total_pgfault 178362 [ 355.987398][ T5831] total_pgmajfault 4609 [ 356.001874][ T5831] total_inactive_anon 0 [ 356.010638][ T5831] total_active_anon 53248 [ 356.015003][ T5831] total_inactive_file 0 [ 356.027631][ T5831] total_active_file 0 [ 356.031666][ T5831] total_unevictable 0 [ 356.035691][ T5831] anon_cost 0 [ 356.056263][ T5831] file_cost 0 [ 356.060483][ T5831] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.759,pid=9138,uid=0 [ 356.109394][ T5831] Memory cgroup out of memory: Killed process 9138 (syz.1.759) total-vm:104476kB, anon-rss:1140kB, file-rss:22908kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000 [ 357.242864][ T9173] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 357.265115][ T9173] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 357.282697][ T9173] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 357.297978][ T9173] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 358.509709][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 358.533693][ T9203] kvm: kvm [9196]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x2 [ 359.307646][ T5149] Bluetooth: hci2: command 0x0c1a tx timeout [ 359.308490][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 359.314657][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 359.588000][ T9216] FAULT_INJECTION: forcing a failure. [ 359.588000][ T9216] name failslab, interval 1, probability 0, space 0, times 0 [ 359.600726][ T9216] CPU: 0 UID: 0 PID: 9216 Comm: syz.0.776 Tainted: G L syzkaller #0 PREEMPT(full) [ 359.600755][ T9216] Tainted: [L]=SOFTLOCKUP [ 359.600761][ T9216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 359.600771][ T9216] Call Trace: [ 359.600777][ T9216] [ 359.600785][ T9216] dump_stack_lvl+0x16c/0x1f0 [ 359.600816][ T9216] should_fail_ex+0x512/0x640 [ 359.600837][ T9216] ? __kmalloc_noprof+0xca/0x910 [ 359.600858][ T9216] should_failslab+0xc2/0x120 [ 359.600884][ T9216] __kmalloc_noprof+0xeb/0x910 [ 359.600902][ T9216] ? __register_sysctl_table+0xb3/0x1900 [ 359.600929][ T9216] ? __register_sysctl_table+0xb3/0x1900 [ 359.600951][ T9216] __register_sysctl_table+0xb3/0x1900 [ 359.600973][ T9216] ? is_module_address+0x5f/0xf0 [ 359.600996][ T9216] ? __pfx___register_sysctl_table+0x10/0x10 [ 359.601018][ T9216] ? is_module_address+0x69/0xf0 [ 359.601037][ T9216] ? register_net_sysctl_sz+0x222/0x450 [ 359.601057][ T9216] ? __asan_memcpy+0x3c/0x60 [ 359.601079][ T9216] __ip_vs_lblc_init+0x159/0x340 [ 359.601104][ T9216] ? __pfx___ip_vs_lblc_init+0x10/0x10 [ 359.601126][ T9216] ops_init+0x1e2/0x5f0 [ 359.601153][ T9216] setup_net+0x11d/0x3a0 [ 359.601177][ T9216] ? __pfx_setup_net+0x10/0x10 [ 359.601200][ T9216] ? lockdep_init_map_type+0x5c/0x270 [ 359.601217][ T9216] ? mutex_init_lockep+0x110/0x150 [ 359.601237][ T9216] copy_net_ns+0x351/0x7c0 [ 359.601254][ T9216] create_new_namespaces+0x3ea/0xab0 [ 359.601282][ T9216] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 359.601307][ T9216] ksys_unshare+0x45b/0xa40 [ 359.601323][ T9216] ? __pfx_ksys_unshare+0x10/0x10 [ 359.601349][ T9216] ? xfd_validate_state+0x61/0x180 [ 359.601372][ T9216] __x64_sys_unshare+0x31/0x40 [ 359.601386][ T9216] do_syscall_64+0xcd/0xf80 [ 359.601403][ T9216] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.601420][ T9216] RIP: 0033:0x7fbe2118f7c9 [ 359.601434][ T9216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.601459][ T9216] RSP: 002b:00007fbe2210c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 359.601476][ T9216] RAX: ffffffffffffffda RBX: 00007fbe213e5fa0 RCX: 00007fbe2118f7c9 [ 359.601486][ T9216] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 359.601496][ T9216] RBP: 00007fbe21213f91 R08: 0000000000000000 R09: 0000000000000000 [ 359.601506][ T9216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.601516][ T9216] R13: 00007fbe213e6038 R14: 00007fbe213e5fa0 R15: 00007ffc3686bee8 [ 359.601538][ T9216] [ 366.430711][ T9282] netlink: 4 bytes leftover after parsing attributes in process `syz.0.792'. [ 366.465372][ T9282] netlink: 'syz.0.792': attribute type 1 has an invalid length. [ 366.493444][ T9282] netlink: 13 bytes leftover after parsing attributes in process `syz.0.792'. [ 369.028721][ T9306] Invalid ELF header magic: != ELF [ 370.252105][ T9330] kvm: kvm [9329]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x2 [ 373.034643][ T9350] syz.1.809 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 373.081206][ T9350] CPU: 1 UID: 0 PID: 9350 Comm: syz.1.809 Tainted: G L syzkaller #0 PREEMPT(full) [ 373.081237][ T9350] Tainted: [L]=SOFTLOCKUP [ 373.081243][ T9350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 373.081253][ T9350] Call Trace: [ 373.081259][ T9350] [ 373.081266][ T9350] dump_stack_lvl+0x16c/0x1f0 [ 373.081299][ T9350] dump_header+0x101/0x960 [ 373.081321][ T9350] oom_kill_process+0x176/0x910 [ 373.081342][ T9350] out_of_memory+0x350/0x1700 [ 373.081362][ T9350] ? __lock_acquire+0x436/0x2890 [ 373.081381][ T9350] ? __pfx_out_of_memory+0x10/0x10 [ 373.081406][ T9350] mem_cgroup_out_of_memory+0x118/0x130 [ 373.081427][ T9350] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 373.081453][ T9350] ? do_raw_spin_unlock+0x172/0x230 [ 373.081477][ T9350] try_charge_memcg+0x695/0xd30 [ 373.081508][ T9350] ? __pfx_try_charge_memcg+0x10/0x10 [ 373.081539][ T9350] ? find_held_lock+0x2b/0x80 [ 373.081565][ T9350] charge_memcg+0x8a/0x230 [ 373.081592][ T9350] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 373.081613][ T9350] __read_swap_cache_async+0x397/0x500 [ 373.081638][ T9350] ? __pfx___read_swap_cache_async+0x10/0x10 [ 373.081660][ T9350] ? mlock_drain_local+0x170/0x4e0 [ 373.081687][ T9350] swap_cluster_readahead+0x432/0x770 [ 373.081714][ T9350] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 373.081738][ T9350] ? __lock_acquire+0x436/0x2890 [ 373.081770][ T9350] ? get_vma_policy+0x242/0x3c0 [ 373.081793][ T9350] swapin_readahead+0x160/0x1220 [ 373.081822][ T9350] ? __pfx_swapin_readahead+0x10/0x10 [ 373.081844][ T9350] ? find_held_lock+0x2b/0x80 [ 373.081865][ T9350] ? swap_cache_get_folio+0x267/0x8e0 [ 373.081884][ T9350] ? swap_cache_get_folio+0x267/0x8e0 [ 373.081903][ T9350] ? swap_cache_get_folio+0x267/0x8e0 [ 373.081924][ T9350] ? swap_cache_get_folio+0x267/0x8e0 [ 373.081944][ T9350] ? swap_cache_get_folio+0x293/0x8e0 [ 373.081965][ T9350] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 373.081984][ T9350] ? __pfx_get_swap_device+0x10/0x10 [ 373.082009][ T9350] ? rcu_read_unlock+0x2d/0xb0 [ 373.082032][ T9350] ? do_swap_page+0x962/0x64a0 [ 373.082048][ T9350] do_swap_page+0x962/0x64a0 [ 373.082068][ T9350] ? __lock_acquire+0x436/0x2890 [ 373.082090][ T9350] ? __pfx_do_swap_page+0x10/0x10 [ 373.082110][ T9350] ? __pfx_default_wake_function+0x10/0x10 [ 373.082140][ T9350] ? rcu_is_watching+0x12/0xc0 [ 373.082163][ T9350] ? ___pte_offset_map+0x175/0x380 [ 373.082191][ T9350] __handle_mm_fault+0x19cb/0x2bb0 [ 373.082213][ T9350] ? reacquire_held_locks+0xcd/0x1f0 [ 373.082230][ T9350] ? __pfx___handle_mm_fault+0x10/0x10 [ 373.082251][ T9350] ? lock_vma_under_rcu+0x176/0x580 [ 373.082276][ T9350] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 373.082306][ T9350] handle_mm_fault+0x3fe/0xad0 [ 373.082329][ T9350] do_user_addr_fault+0x60c/0x1370 [ 373.082353][ T9350] ? rcu_is_watching+0x12/0xc0 [ 373.082379][ T9350] exc_page_fault+0x64/0xc0 [ 373.082406][ T9350] asm_exc_page_fault+0x26/0x30 [ 373.082423][ T9350] RIP: 0033:0x7fba3a86eff4 [ 373.082438][ T9350] Code: 82 b5 03 00 00 c6 44 24 1e 01 45 31 ff 45 31 f6 44 0f b6 e6 85 c0 0f 84 9e 00 00 00 44 89 f9 49 8b 50 40 4c 89 f0 49 03 14 ca <80> 3d ad 8d 37 00 00 49 89 d6 48 89 d5 74 28 25 ff 0f 00 00 83 f0 [ 373.082455][ T9350] RSP: 002b:00007ffe162bc4e0 EFLAGS: 00010282 [ 373.082470][ T9350] RAX: ffffffff8b6e023d RBX: 00007fba3b715720 RCX: 0000000000077b0d [ 373.082481][ T9350] RDX: ffffffff8b6e0267 RSI: ffffffff8b6e0301 RDI: 000000000000000b [ 373.082491][ T9350] RBP: ffffffff8b6e0301 R08: 00007fba3abe6038 R09: 00007fba3abd2000 [ 373.082502][ T9350] R10: 00007fba3a3ff008 R11: 000000000000000b R12: 000000000000000b [ 373.082512][ T9350] R13: 00000000000005cd R14: ffffffff8b6e023d R15: 0000000000077b0d [ 373.082523][ T9350] ? mtree_load+0x4ed/0xa30 [ 373.082538][ T9350] ? mtree_load+0x5b1/0xa30 [ 373.082555][ T9350] ? mtree_load+0x4ed/0xa30 [ 373.082569][ T9350] ? mtree_load+0x517/0xa30 [ 373.082582][ T9350] ? mtree_load+0x5b1/0xa30 [ 373.082600][ T9350] [ 373.087307][ T9350] memory: usage 3072kB, limit 3072kB, failcnt 78346 [ 373.577722][ T9350] memory+swap: usage 5388kB, limit 9007199254740988kB, failcnt 0 [ 373.588130][ T9350] kmem: usage 964kB, limit 9007199254740988kB, failcnt 0 [ 373.647216][ T9350] Memory cgroup stats for /syz1: [ 373.657631][ T9350] cache 2134016 [ 373.674717][ T9350] rss 0 [ 373.857721][ T9350] rss_huge 0 [ 373.869061][ T9350] shmem 2134016 [ 373.872620][ T9350] mapped_file 2134016 [ 373.876603][ T9350] dirty 0 [ 373.949920][ T9350] writeback 0 [ 373.957918][ T9350] workingset_refault_anon 13849 [ 373.963329][ T9350] workingset_refault_file 27352 [ 373.972682][ T9350] swap 2371584 [ 373.981824][ T9350] swapcached 24576 [ 373.985582][ T9350] pgpgin 237201 [ 374.004166][ T9350] pgpgout 236674 [ 374.013080][ T9350] pgfault 191176 [ 374.016638][ T9350] pgmajfault 4829 [ 374.025305][ T9350] inactive_anon 20480 [ 374.047337][ T9379] input: jJǸ-9%vJ86 as /devices/virtual/input/input17 [ 374.112854][ T9350] active_anon 4096 [ 374.124206][ T9350] inactive_file 0 [ 374.131845][ T9350] active_file 0 [ 374.137285][ T9350] unevictable 2134016 [ 374.145866][ T9350] hierarchical_memory_limit 3145728 [ 374.167636][ T9350] hierarchical_memsw_limit 9223372036854771712 [ 374.173831][ T9350] total_cache 2134016 [ 374.187637][ T9350] total_rss 0 [ 374.205267][ T9350] total_rss_huge 0 [ 374.214762][ T9350] total_shmem 2134016 [ 374.219077][ T9350] total_mapped_file 2134016 [ 374.227077][ T9350] total_dirty 0 [ 374.232407][ T9350] total_writeback 0 [ 374.237192][ T9350] total_workingset_refault_anon 13849 [ 374.242983][ T9350] total_workingset_refault_file 27352 [ 374.248597][ T9350] total_swap 2371584 [ 374.252500][ T9350] total_swapcached 24576 [ 374.267698][ T9350] total_pgpgin 237201 [ 374.271720][ T9350] total_pgpgout 236674 [ 374.287635][ T9350] total_pgfault 191176 [ 374.291757][ T9350] total_pgmajfault 4829 [ 374.299208][ T9350] total_inactive_anon 20480 [ 374.303722][ T9350] total_active_anon 4096 [ 374.317566][ T9350] total_inactive_file 0 [ 374.321816][ T9350] total_active_file 0 [ 374.330042][ T9382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.815'. [ 374.337571][ T9350] total_unevictable 2134016 [ 374.343652][ T9350] anon_cost 0 [ 374.346941][ T9350] file_cost 0 [ 374.351994][ T9350] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.809,pid=9350,uid=0 [ 374.366886][ T9350] Memory cgroup out of memory: Killed process 9350 (syz.1.809) total-vm:137244kB, anon-rss:1268kB, file-rss:22876kB, shmem-rss:1920kB, UID:0 pgtables:136kB oom_score_adj:1000 [ 374.401952][ T9382] netlink: 'syz.2.815': attribute type 2 has an invalid length. [ 374.477740][ T9382] netlink: 'syz.2.815': attribute type 3 has an invalid length. [ 374.485548][ T9382] netlink: 20232 bytes leftover after parsing attributes in process `syz.2.815'. [ 376.212515][ T9408] netlink: 8 bytes leftover after parsing attributes in process `syz.0.820'. [ 377.162090][ T9407] FAULT_INJECTION: forcing a failure. [ 377.162090][ T9407] name failslab, interval 1, probability 0, space 0, times 0 [ 377.187923][ T9407] CPU: 1 UID: 60929 PID: 9407 Comm: syz.1.819 Tainted: G L syzkaller #0 PREEMPT(full) [ 377.187974][ T9407] Tainted: [L]=SOFTLOCKUP [ 377.187985][ T9407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 377.188002][ T9407] Call Trace: [ 377.188013][ T9407] [ 377.188025][ T9407] dump_stack_lvl+0x16c/0x1f0 [ 377.188077][ T9407] should_fail_ex+0x512/0x640 [ 377.188111][ T9407] ? kmem_cache_alloc_noprof+0x62/0x770 [ 377.188151][ T9407] should_failslab+0xc2/0x120 [ 377.188196][ T9407] kmem_cache_alloc_noprof+0x83/0x770 [ 377.188230][ T9407] ? __proc_create+0x2c8/0x8d0 [ 377.188276][ T9407] ? __proc_create+0x2c8/0x8d0 [ 377.188311][ T9407] __proc_create+0x2c8/0x8d0 [ 377.188352][ T9407] ? __pfx___proc_create+0x10/0x10 [ 377.188397][ T9407] ? __pfx_netdev_run_todo+0x10/0x10 [ 377.188446][ T9407] proc_create_reg+0x7d/0x180 [ 377.188485][ T9407] ? __pfx_psched_show+0x10/0x10 [ 377.188513][ T9407] proc_create_single_data+0x86/0x130 [ 377.188554][ T9407] ? __pfx_proc_create_single_data+0x10/0x10 [ 377.188593][ T9407] ? __pfx_netdev_debug_event+0x10/0x10 [ 377.188640][ T9407] ? __pfx_psched_net_init+0x10/0x10 [ 377.188693][ T9407] psched_net_init+0x4a/0x70 [ 377.188718][ T9407] ops_init+0x1e2/0x5f0 [ 377.188763][ T9407] setup_net+0x11d/0x3a0 [ 377.188805][ T9407] ? __pfx_setup_net+0x10/0x10 [ 377.188843][ T9407] ? lockdep_init_map_type+0x5c/0x270 [ 377.188874][ T9407] ? mutex_init_lockep+0x110/0x150 [ 377.188909][ T9407] copy_net_ns+0x351/0x7c0 [ 377.188941][ T9407] create_new_namespaces+0x3ea/0xab0 [ 377.188989][ T9407] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 377.189032][ T9407] ksys_unshare+0x45b/0xa40 [ 377.189059][ T9407] ? __pfx_ksys_unshare+0x10/0x10 [ 377.189105][ T9407] ? xfd_validate_state+0x61/0x180 [ 377.189144][ T9407] __x64_sys_unshare+0x31/0x40 [ 377.189169][ T9407] do_syscall_64+0xcd/0xf80 [ 377.189201][ T9407] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.189230][ T9407] RIP: 0033:0x7fba3a98f7c9 [ 377.189254][ T9407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.189281][ T9407] RSP: 002b:00007fba3b82d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 377.189309][ T9407] RAX: ffffffffffffffda RBX: 00007fba3abe5fa0 RCX: 00007fba3a98f7c9 [ 377.189329][ T9407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 377.189346][ T9407] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 377.189363][ T9407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.189380][ T9407] R13: 00007fba3abe6038 R14: 00007fba3abe5fa0 R15: 00007ffe162bc458 [ 377.189421][ T9407] [ 378.156092][ T9419] netlink: 330 bytes leftover after parsing attributes in process `syz.1.823'. [ 378.217305][ T9419] : renamed from bond_slave_0 (while UP) [ 378.333788][ T9419] netlink: 330 bytes leftover after parsing attributes in process `syz.1.823'. [ 379.297449][ T9423] netlink: 8 bytes leftover after parsing attributes in process `syz.1.824'. [ 382.272838][ T9475] binder: 9470:9475 ioctl 400c620e 0 returned -22 [ 383.876179][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.882821][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.386614][ T9495] FAULT_INJECTION: forcing a failure. [ 384.386614][ T9495] name failslab, interval 1, probability 0, space 0, times 0 [ 384.417717][ T9495] CPU: 0 UID: 0 PID: 9495 Comm: syz.0.842 Tainted: G L syzkaller #0 PREEMPT(full) [ 384.417767][ T9495] Tainted: [L]=SOFTLOCKUP [ 384.417776][ T9495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 384.417792][ T9495] Call Trace: [ 384.417802][ T9495] [ 384.417814][ T9495] dump_stack_lvl+0x16c/0x1f0 [ 384.417865][ T9495] should_fail_ex+0x512/0x640 [ 384.417899][ T9495] ? __kmalloc_cache_noprof+0x5f/0x800 [ 384.417934][ T9495] should_failslab+0xc2/0x120 [ 384.417974][ T9495] __kmalloc_cache_noprof+0x80/0x800 [ 384.418007][ T9495] ? kvm_dev_ioctl+0x158a/0x1a80 [ 384.418053][ T9495] ? kvm_dev_ioctl+0x158a/0x1a80 [ 384.418090][ T9495] kvm_dev_ioctl+0x158a/0x1a80 [ 384.418141][ T9495] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 384.418193][ T9495] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 384.418233][ T9495] __x64_sys_ioctl+0x18e/0x210 [ 384.418272][ T9495] do_syscall_64+0xcd/0xf80 [ 384.418303][ T9495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.418332][ T9495] RIP: 0033:0x7fbe2118f7c9 [ 384.418355][ T9495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 384.418384][ T9495] RSP: 002b:00007fbe220eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 384.418412][ T9495] RAX: ffffffffffffffda RBX: 00007fbe213e6090 RCX: 00007fbe2118f7c9 [ 384.418444][ T9495] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000004 [ 384.418462][ T9495] RBP: 00007fbe21213f91 R08: 0000000000000000 R09: 0000000000000000 [ 384.418479][ T9495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.418496][ T9495] R13: 00007fbe213e6128 R14: 00007fbe213e6090 R15: 00007ffc3686bee8 [ 384.418537][ T9495] [ 386.341271][ T9523] FAULT_INJECTION: forcing a failure. [ 386.341271][ T9523] name fail_futex, interval 1, probability 0, space 0, times 1 [ 386.354765][ T9523] CPU: 1 UID: 0 PID: 9523 Comm: syz.2.847 Tainted: G L syzkaller #0 PREEMPT(full) [ 386.354793][ T9523] Tainted: [L]=SOFTLOCKUP [ 386.354799][ T9523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 386.354809][ T9523] Call Trace: [ 386.354814][ T9523] [ 386.354821][ T9523] dump_stack_lvl+0x16c/0x1f0 [ 386.354853][ T9523] should_fail_ex+0x512/0x640 [ 386.354876][ T9523] get_futex_key+0x1d0/0x15f0 [ 386.354895][ T9523] ? kasan_save_free_info+0x3b/0x60 [ 386.354913][ T9523] ? __kasan_slab_free+0x5f/0x80 [ 386.354936][ T9523] ? __pfx_get_futex_key+0x10/0x10 [ 386.354951][ T9523] ? __x64_sys_ioctl+0x18e/0x210 [ 386.354971][ T9523] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.354994][ T9523] futex_wait_setup+0x9d/0x570 [ 386.355024][ T9523] __futex_wait+0x193/0x2f0 [ 386.355047][ T9523] ? __pfx___futex_wait+0x10/0x10 [ 386.355073][ T9523] ? __pfx_futex_wake_mark+0x10/0x10 [ 386.355098][ T9523] ? futex_hash+0x2c5/0x380 [ 386.355117][ T9523] ? futex_private_hash_put+0x160/0x1b0 [ 386.355136][ T9523] futex_wait+0xe8/0x380 [ 386.355159][ T9523] ? __pfx_futex_wait+0x10/0x10 [ 386.355191][ T9523] do_futex+0x229/0x350 [ 386.355210][ T9523] ? __pfx_do_futex+0x10/0x10 [ 386.355230][ T9523] ? find_held_lock+0x2b/0x80 [ 386.355254][ T9523] __x64_sys_futex+0x1e0/0x4c0 [ 386.355275][ T9523] ? __pfx_loop_control_ioctl+0x10/0x10 [ 386.355292][ T9523] ? __pfx___x64_sys_futex+0x10/0x10 [ 386.355314][ T9523] ? fput+0x70/0xf0 [ 386.355333][ T9523] do_syscall_64+0xcd/0xf80 [ 386.355350][ T9523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.355366][ T9523] RIP: 0033:0x7f2a2b58f7c9 [ 386.355381][ T9523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.355397][ T9523] RSP: 002b:00007f2a2c4e00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 386.355414][ T9523] RAX: ffffffffffffffda RBX: 00007f2a2b7e5fa8 RCX: 00007f2a2b58f7c9 [ 386.355424][ T9523] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2a2b7e5fa8 [ 386.355434][ T9523] RBP: 00007f2a2b7e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 386.355444][ T9523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.355453][ T9523] R13: 00007f2a2b7e6038 R14: 00007ffd7e6fa610 R15: 00007ffd7e6fa6f8 [ 386.355499][ T9523] [ 390.980888][ T30] audit: type=1800 audit(4294967614.464:8): pid=9589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.856" name="lu_gp_id" dev="configfs" ino=25293 res=0 errno=0 [ 391.035173][ T9588] FAULT_INJECTION: forcing a failure. [ 391.035173][ T9588] name failslab, interval 1, probability 0, space 0, times 0 [ 391.067814][ T9588] CPU: 0 UID: 0 PID: 9588 Comm: syz.2.857 Tainted: G L syzkaller #0 PREEMPT(full) [ 391.067862][ T9588] Tainted: [L]=SOFTLOCKUP [ 391.067872][ T9588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 391.067888][ T9588] Call Trace: [ 391.067899][ T9588] [ 391.067910][ T9588] dump_stack_lvl+0x16c/0x1f0 [ 391.067960][ T9588] should_fail_ex+0x512/0x640 [ 391.068003][ T9588] should_failslab+0xc2/0x120 [ 391.068047][ T9588] kmem_cache_alloc_node_noprof+0x86/0x800 [ 391.068083][ T9588] ? percpu_ref_put_many.constprop.0+0xc4/0x2a0 [ 391.068115][ T9588] ? zswap_store+0x850/0x2800 [ 391.068154][ T9588] ? zswap_store+0x850/0x2800 [ 391.068181][ T9588] zswap_store+0x850/0x2800 [ 391.068231][ T9588] ? __pfx_zswap_store+0x10/0x10 [ 391.068264][ T9588] ? folio_free_swap+0x229/0x740 [ 391.068309][ T9588] ? do_raw_spin_unlock+0x172/0x230 [ 391.068345][ T9588] ? _raw_spin_unlock+0x28/0x50 [ 391.068385][ T9588] ? folio_free_swap+0x285/0x740 [ 391.068422][ T9588] ? rcu_is_watching+0x12/0xc0 [ 391.068468][ T9588] swap_writeout+0x3f4/0x1090 [ 391.068498][ T9588] ? _raw_spin_unlock_irq+0x23/0x50 [ 391.068542][ T9588] shmem_writeout+0xc21/0x1140 [ 391.068579][ T9588] ? __pfx_shmem_writeout+0x10/0x10 [ 391.068616][ T9588] ? inode_to_bdi+0x9e/0x160 [ 391.068652][ T9588] ? folio_clear_dirty_for_io+0x112/0x6b0 [ 391.068704][ T9588] shrink_folio_list+0x3003/0x4a70 [ 391.068748][ T9588] ? __pfx_shrink_folio_list+0x10/0x10 [ 391.068774][ T9588] ? find_held_lock+0x2b/0x80 [ 391.068823][ T9588] ? __lock_acquire+0x436/0x2890 [ 391.068854][ T9588] ? __lock_acquire+0x436/0x2890 [ 391.068926][ T9588] reclaim_folio_list+0xda/0x5a0 [ 391.068958][ T9588] ? __pfx_reclaim_folio_list+0x10/0x10 [ 391.068999][ T9588] ? lru_gen_update_size+0x543/0xe10 [ 391.069048][ T9588] ? lru_gen_del_folio+0x32b/0x540 [ 391.069090][ T9588] reclaim_pages+0x3ec/0x570 [ 391.069123][ T9588] ? __pfx_reclaim_pages+0x10/0x10 [ 391.069147][ T9588] ? find_held_lock+0x2b/0x80 [ 391.069183][ T9588] ? madvise_cold_or_pageout_pte_range+0x739/0x2100 [ 391.069221][ T9588] madvise_cold_or_pageout_pte_range+0x1624/0x2100 [ 391.069269][ T9588] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 391.069299][ T9588] ? __lock_acquire+0x436/0x2890 [ 391.069323][ T9588] ? stack_trace_save+0x8e/0xc0 [ 391.069364][ T9588] ? stack_depot_save_flags+0x29/0x9b0 [ 391.069399][ T9588] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 391.069429][ T9588] walk_pgd_range+0xc10/0x1f80 [ 391.069490][ T9588] ? __pfx_walk_pgd_range+0x10/0x10 [ 391.069527][ T9588] ? folios_put_refs+0x51d/0x750 [ 391.069562][ T9588] __walk_page_range+0x163/0x820 [ 391.069616][ T9588] walk_page_range_vma_unsafe+0x23f/0x9e0 [ 391.069658][ T9588] ? __pfx_walk_page_range_vma_unsafe+0x10/0x10 [ 391.069707][ T9588] ? find_held_lock+0x2b/0x80 [ 391.069740][ T9588] ? mlock_drain_local+0x22d/0x4e0 [ 391.069778][ T9588] walk_page_range_vma+0x63/0x90 [ 391.069814][ T9588] madvise_pageout+0x257/0x540 [ 391.069855][ T9588] ? __pfx_madvise_pageout+0x10/0x10 [ 391.069922][ T9588] madvise_vma_behavior+0x912/0x29e0 [ 391.069950][ T9588] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 391.069990][ T9588] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 391.070017][ T9588] ? mas_prev+0x9b/0xf0 [ 391.070040][ T9588] ? __pfx_mas_prev+0x10/0x10 [ 391.070070][ T9588] ? find_vma_prev+0xd3/0x150 [ 391.070099][ T9588] ? find_held_lock+0x2b/0x80 [ 391.070125][ T9588] ? __pfx_find_vma_prev+0x10/0x10 [ 391.070173][ T9588] ? __futex_wait+0x24b/0x2f0 [ 391.070212][ T9588] madvise_walk_vmas+0x31f/0xac0 [ 391.070247][ T9588] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 391.070285][ T9588] madvise_do_behavior+0x1e2/0x530 [ 391.070309][ T9588] ? futex_private_hash_put+0x160/0x1b0 [ 391.070342][ T9588] ? __pfx_madvise_do_behavior+0x10/0x10 [ 391.070372][ T9588] ? down_read+0x13d/0x460 [ 391.070417][ T9588] do_madvise+0x176/0x240 [ 391.070440][ T9588] ? __pfx_do_madvise+0x10/0x10 [ 391.070464][ T9588] ? do_futex+0x122/0x350 [ 391.070521][ T9588] ? xfd_validate_state+0x61/0x180 [ 391.070556][ T9588] __x64_sys_madvise+0xa9/0x110 [ 391.070583][ T9588] ? lockdep_hardirqs_on+0x7c/0x110 [ 391.070609][ T9588] do_syscall_64+0xcd/0xf80 [ 391.070637][ T9588] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 391.070672][ T9588] RIP: 0033:0x7f2a2b58f7c9 [ 391.070697][ T9588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 391.070725][ T9588] RSP: 002b:00007f2a2c4e0038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 391.070754][ T9588] RAX: ffffffffffffffda RBX: 00007f2a2b7e5fa0 RCX: 00007f2a2b58f7c9 [ 391.070772][ T9588] RDX: 0000000000000015 RSI: 00000000002003f0 RDI: 0000000000000000 [ 391.070788][ T9588] RBP: 00007f2a2b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 391.070804][ T9588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 391.070820][ T9588] R13: 00007f2a2b7e6038 R14: 00007f2a2b7e5fa0 R15: 00007ffd7e6fa6f8 [ 391.070860][ T9588] [ 392.510905][ T9600] netlink: zone id is out of range [ 392.516145][ T9600] netlink: zone id is out of range [ 392.537660][ T9600] netlink: zone id is out of range [ 392.542794][ T9600] netlink: zone id is out of range [ 392.555567][ T9600] netlink: zone id is out of range [ 392.560879][ T9600] netlink: zone id is out of range [ 392.567372][ T9600] netlink: zone id is out of range [ 392.577002][ T9600] netlink: zone id is out of range [ 392.583645][ T9600] netlink: zone id is out of range [ 392.591493][ T9600] netlink: zone id is out of range [ 393.671742][ T9609] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 393.671742][ T9609] M' is too long [ 393.807932][ T9609] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 393.807932][ T9609] W ' is too long [ 396.917069][ T9654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.874'. [ 399.885986][ T9683] FAULT_INJECTION: forcing a failure. [ 399.885986][ T9683] name failslab, interval 1, probability 0, space 0, times 0 [ 399.910142][ T9683] CPU: 1 UID: 0 PID: 9683 Comm: syz.3.880 Tainted: G L syzkaller #0 PREEMPT(full) [ 399.910191][ T9683] Tainted: [L]=SOFTLOCKUP [ 399.910201][ T9683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 399.910211][ T9683] Call Trace: [ 399.910217][ T9683] [ 399.910224][ T9683] dump_stack_lvl+0x16c/0x1f0 [ 399.910256][ T9683] should_fail_ex+0x512/0x640 [ 399.910276][ T9683] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 399.910303][ T9683] should_failslab+0xc2/0x120 [ 399.910329][ T9683] __kmalloc_cache_node_noprof+0x83/0x830 [ 399.910353][ T9683] ? __alloc_workqueue+0x801/0x1810 [ 399.910383][ T9683] ? __alloc_workqueue+0x801/0x1810 [ 399.910406][ T9683] __alloc_workqueue+0x801/0x1810 [ 399.910446][ T9683] alloc_workqueue_noprof+0xd2/0x200 [ 399.910471][ T9683] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 399.910508][ T9683] nci_register_device+0x511/0xb80 [ 399.910532][ T9683] ? __pfx_nci_register_device+0x10/0x10 [ 399.910557][ T9683] ? lockdep_init_map_type+0x5c/0x270 [ 399.910578][ T9683] virtual_ncidev_open+0x141/0x220 [ 399.910597][ T9683] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 399.910614][ T9683] misc_open+0x26d/0x450 [ 399.910635][ T9683] ? __pfx_misc_open+0x10/0x10 [ 399.910654][ T9683] chrdev_open+0x234/0x6a0 [ 399.910682][ T9683] ? __pfx_apparmor_file_open+0x10/0x10 [ 399.910701][ T9683] ? __pfx_chrdev_open+0x10/0x10 [ 399.910727][ T9683] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 399.910757][ T9683] do_dentry_open+0x748/0x1590 [ 399.910781][ T9683] ? __pfx_chrdev_open+0x10/0x10 [ 399.910811][ T9683] vfs_open+0x82/0x3f0 [ 399.910832][ T9683] path_openat+0x2078/0x3140 [ 399.910863][ T9683] ? __pfx_path_openat+0x10/0x10 [ 399.910897][ T9683] do_filp_open+0x20b/0x470 [ 399.910922][ T9683] ? __pfx_do_filp_open+0x10/0x10 [ 399.910962][ T9683] ? alloc_fd+0x471/0x7d0 [ 399.910992][ T9683] do_sys_openat2+0x121/0x290 [ 399.911011][ T9683] ? __pfx_do_sys_openat2+0x10/0x10 [ 399.911031][ T9683] ? __fput+0x68d/0xb70 [ 399.911051][ T9683] __x64_sys_openat+0x174/0x210 [ 399.911071][ T9683] ? __pfx___x64_sys_openat+0x10/0x10 [ 399.911098][ T9683] do_syscall_64+0xcd/0xf80 [ 399.911115][ T9683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.911132][ T9683] RIP: 0033:0x7feb5c38f7c9 [ 399.911147][ T9683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.911168][ T9683] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 399.911185][ T9683] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 399.911196][ T9683] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 399.911206][ T9683] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 399.911216][ T9683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 399.911226][ T9683] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 399.911250][ T9683] [ 401.071166][ T9689] FAULT_INJECTION: forcing a failure. [ 401.071166][ T9689] name failslab, interval 1, probability 0, space 0, times 0 [ 401.117696][ T9689] CPU: 1 UID: 0 PID: 9689 Comm: syz.3.882 Tainted: G L syzkaller #0 PREEMPT(full) [ 401.117745][ T9689] Tainted: [L]=SOFTLOCKUP [ 401.117755][ T9689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 401.117772][ T9689] Call Trace: [ 401.117782][ T9689] [ 401.117794][ T9689] dump_stack_lvl+0x16c/0x1f0 [ 401.117845][ T9689] should_fail_ex+0x512/0x640 [ 401.117879][ T9689] ? __kmalloc_noprof+0xca/0x910 [ 401.117917][ T9689] should_failslab+0xc2/0x120 [ 401.117961][ T9689] __kmalloc_noprof+0xeb/0x910 [ 401.117992][ T9689] ? __asan_memcpy+0x3c/0x60 [ 401.118024][ T9689] ? handler_new_ref+0x1b0/0xc60 [ 401.118060][ T9689] ? handler_new_ref+0x1b0/0xc60 [ 401.118086][ T9689] handler_new_ref+0x1b0/0xc60 [ 401.118126][ T9689] v4l2_ctrl_new+0x196c/0x2190 [ 401.118168][ T9689] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 401.118193][ T9689] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 401.118221][ T9689] v4l2_ctrl_new_std+0x1be/0x290 [ 401.118244][ T9689] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 401.118263][ T9689] ? trace_kmalloc+0x2b/0xb0 [ 401.118289][ T9689] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 401.118318][ T9689] ? media_request_object_init+0x100/0x180 [ 401.118344][ T9689] vicodec_open+0x1b2/0xf70 [ 401.118365][ T9689] ? kobject_get_unless_zero+0x156/0x1e0 [ 401.118387][ T9689] v4l2_open+0x1d2/0x5e0 [ 401.118413][ T9689] ? __pfx_v4l2_open+0x10/0x10 [ 401.118436][ T9689] chrdev_open+0x234/0x6a0 [ 401.118461][ T9689] ? __pfx_apparmor_file_open+0x10/0x10 [ 401.118479][ T9689] ? __pfx_chrdev_open+0x10/0x10 [ 401.118506][ T9689] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 401.118536][ T9689] do_dentry_open+0x748/0x1590 [ 401.118559][ T9689] ? __pfx_chrdev_open+0x10/0x10 [ 401.118591][ T9689] vfs_open+0x82/0x3f0 [ 401.118611][ T9689] path_openat+0x2078/0x3140 [ 401.118644][ T9689] ? __pfx_path_openat+0x10/0x10 [ 401.118684][ T9689] do_filp_open+0x20b/0x470 [ 401.118709][ T9689] ? __pfx_do_filp_open+0x10/0x10 [ 401.118749][ T9689] ? alloc_fd+0x471/0x7d0 [ 401.118779][ T9689] do_sys_openat2+0x121/0x290 [ 401.118798][ T9689] ? __pfx_do_sys_openat2+0x10/0x10 [ 401.118826][ T9689] __x64_sys_openat+0x174/0x210 [ 401.118847][ T9689] ? __pfx___x64_sys_openat+0x10/0x10 [ 401.118875][ T9689] do_syscall_64+0xcd/0xf80 [ 401.118899][ T9689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 401.118916][ T9689] RIP: 0033:0x7feb5c38f7c9 [ 401.118931][ T9689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 401.118947][ T9689] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 401.118964][ T9689] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 401.118975][ T9689] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 401.118985][ T9689] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 401.118994][ T9689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 401.119004][ T9689] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 401.119027][ T9689] [ 402.204722][ T9708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.887'. [ 402.242917][ T9708] netlink: 'syz.3.887': attribute type 1 has an invalid length. [ 402.254129][ T9708] netlink: 5 bytes leftover after parsing attributes in process `syz.3.887'. [ 402.265961][ T9708] netlink: 'syz.3.887': attribute type 1 has an invalid length. [ 403.061522][ T9714] FAULT_INJECTION: forcing a failure. [ 403.061522][ T9714] name failslab, interval 1, probability 0, space 0, times 0 [ 403.075614][ T9714] CPU: 1 UID: 0 PID: 9714 Comm: syz.2.890 Tainted: G L syzkaller #0 PREEMPT(full) [ 403.075662][ T9714] Tainted: [L]=SOFTLOCKUP [ 403.075681][ T9714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 403.075709][ T9714] Call Trace: [ 403.075719][ T9714] [ 403.075730][ T9714] dump_stack_lvl+0x16c/0x1f0 [ 403.075778][ T9714] should_fail_ex+0x512/0x640 [ 403.075811][ T9714] ? fs_reclaim_acquire+0xae/0x150 [ 403.075858][ T9714] should_failslab+0xc2/0x120 [ 403.075897][ T9714] __kmalloc_noprof+0xeb/0x910 [ 403.075927][ T9714] ? security_inode_init_security+0x113/0x370 [ 403.075976][ T9714] ? security_inode_init_security+0x113/0x370 [ 403.076014][ T9714] security_inode_init_security+0x113/0x370 [ 403.076055][ T9714] ? __pfx_shmem_initxattrs+0x10/0x10 [ 403.076092][ T9714] ? __pfx_security_inode_init_security+0x10/0x10 [ 403.076145][ T9714] shmem_mknod+0x229/0x3b0 [ 403.076201][ T9714] shmem_mkdir+0x31/0x80 [ 403.076241][ T9714] vfs_mkdir+0x731/0xb60 [ 403.076281][ T9714] do_mkdirat+0x442/0x5e0 [ 403.076325][ T9714] ? __pfx_do_mkdirat+0x10/0x10 [ 403.076364][ T9714] ? strncpy_from_user+0x203/0x2e0 [ 403.076399][ T9714] ? getname_flags.part.0+0x1c5/0x550 [ 403.076433][ T9714] __x64_sys_mkdir+0xef/0x140 [ 403.076472][ T9714] do_syscall_64+0xcd/0xf80 [ 403.076499][ T9714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.076525][ T9714] RIP: 0033:0x7f2a2b58f7c9 [ 403.076554][ T9714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.076578][ T9714] RSP: 002b:00007f2a2c4e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 403.076604][ T9714] RAX: ffffffffffffffda RBX: 00007f2a2b7e5fa0 RCX: 00007f2a2b58f7c9 [ 403.076621][ T9714] RDX: 0000000000000000 RSI: 000000000000007e RDI: 0000000000000000 [ 403.076637][ T9714] RBP: 00007f2a2b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 403.076654][ T9714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 403.076670][ T9714] R13: 00007f2a2b7e6038 R14: 00007f2a2b7e5fa0 R15: 00007ffd7e6fa6f8 [ 403.076717][ T9714] [ 403.101096][ T9716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.888'. [ 406.093444][ T9738] netlink: 4 bytes leftover after parsing attributes in process `syz.3.895'. [ 406.169797][ T9738] netlink: 25 bytes leftover after parsing attributes in process `syz.3.895'. [ 406.352824][ T9746] binder: 9745:9746 ioctl 4018620d 9 returned -22 [ 406.442823][ T9740] netlink: 28 bytes leftover after parsing attributes in process `syz.0.894'. [ 409.799941][ T9784] FAULT_INJECTION: forcing a failure. [ 409.799941][ T9784] name failslab, interval 1, probability 0, space 0, times 0 [ 409.839257][ T9784] CPU: 0 UID: 0 PID: 9784 Comm: syz.3.904 Tainted: G L syzkaller #0 PREEMPT(full) [ 409.839299][ T9784] Tainted: [L]=SOFTLOCKUP [ 409.839309][ T9784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 409.839325][ T9784] Call Trace: [ 409.839335][ T9784] [ 409.839346][ T9784] dump_stack_lvl+0x16c/0x1f0 [ 409.839395][ T9784] should_fail_ex+0x512/0x640 [ 409.839426][ T9784] ? __kmalloc_noprof+0xca/0x910 [ 409.839460][ T9784] should_failslab+0xc2/0x120 [ 409.839503][ T9784] __kmalloc_noprof+0xeb/0x910 [ 409.839534][ T9784] ? dma_buf_export+0x38b/0xa90 [ 409.839572][ T9784] ? dma_buf_export+0x38b/0xa90 [ 409.839599][ T9784] dma_buf_export+0x38b/0xa90 [ 409.839632][ T9784] ? sg_alloc_table+0x4c/0x1c0 [ 409.839692][ T9784] system_heap_allocate+0xb03/0x10a0 [ 409.839735][ T9784] ? __pfx_system_heap_allocate+0x10/0x10 [ 409.839780][ T9784] ? rep_movs_alternative+0x4a/0x90 [ 409.839814][ T9784] dma_heap_ioctl+0x385/0x610 [ 409.839843][ T9784] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 409.839884][ T9784] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 409.839917][ T9784] __x64_sys_ioctl+0x18e/0x210 [ 409.839954][ T9784] do_syscall_64+0xcd/0xf80 [ 409.839982][ T9784] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.840009][ T9784] RIP: 0033:0x7feb5c38f7c9 [ 409.840032][ T9784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 409.840057][ T9784] RSP: 002b:00007feb5d28d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 409.840085][ T9784] RAX: ffffffffffffffda RBX: 00007feb5c5e6090 RCX: 00007feb5c38f7c9 [ 409.840104][ T9784] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000001 [ 409.840122][ T9784] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 409.840139][ T9784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 409.840156][ T9784] R13: 00007feb5c5e6128 R14: 00007feb5c5e6090 R15: 00007ffc3ba3c488 [ 409.840197][ T9784] [ 410.163307][ T9784] usb usb15: usbfs: process 9784 (syz.3.904) did not claim interface 0 before use [ 411.578189][ T9780] syz.0.900 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 411.664355][ T9780] CPU: 1 UID: 0 PID: 9780 Comm: syz.0.900 Tainted: G L syzkaller #0 PREEMPT(full) [ 411.664385][ T9780] Tainted: [L]=SOFTLOCKUP [ 411.664392][ T9780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 411.664401][ T9780] Call Trace: [ 411.664408][ T9780] [ 411.664416][ T9780] dump_stack_lvl+0x16c/0x1f0 [ 411.664450][ T9780] dump_header+0x101/0x960 [ 411.664474][ T9780] oom_kill_process+0x176/0x910 [ 411.664496][ T9780] out_of_memory+0x350/0x1700 [ 411.664520][ T9780] ? __pfx_out_of_memory+0x10/0x10 [ 411.664545][ T9780] mem_cgroup_out_of_memory+0x118/0x130 [ 411.664566][ T9780] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 411.664592][ T9780] ? do_raw_spin_unlock+0x172/0x230 [ 411.664616][ T9780] try_charge_memcg+0x695/0xd30 [ 411.664648][ T9780] ? __pfx_try_charge_memcg+0x10/0x10 [ 411.664675][ T9780] ? __print_lock_name+0x31/0xe0 [ 411.664698][ T9780] ? rcu_read_unlock+0x17/0x60 [ 411.664728][ T9780] charge_memcg+0x8a/0x230 [ 411.664755][ T9780] __mem_cgroup_charge+0x2b/0x1e0 [ 411.664785][ T9780] shmem_alloc_and_add_folio+0x50c/0xc20 [ 411.664810][ T9780] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 411.664832][ T9780] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 411.664857][ T9780] shmem_get_folio_gfp+0x67f/0x1610 [ 411.664881][ T9780] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 411.664902][ T9780] ? filemap_map_pages+0x12dd/0x1e00 [ 411.664932][ T9780] shmem_fault+0x1fe/0xa00 [ 411.664980][ T9780] ? __pfx_shmem_fault+0x10/0x10 [ 411.665019][ T9780] ? __pfx_filemap_map_pages+0x10/0x10 [ 411.665064][ T9780] ? __pfx_filemap_map_pages+0x10/0x10 [ 411.665094][ T9780] __do_fault+0x10d/0x490 [ 411.665132][ T9780] ? __pfx_filemap_map_pages+0x10/0x10 [ 411.665164][ T9780] do_fault+0xae4/0x1ad0 [ 411.665206][ T9780] ? __pfx_filemap_map_pages+0x10/0x10 [ 411.665247][ T9780] __handle_mm_fault+0x1919/0x2bb0 [ 411.665291][ T9780] ? __pfx___handle_mm_fault+0x10/0x10 [ 411.665327][ T9780] ? __pte_offset_map_lock+0x174/0x310 [ 411.665370][ T9780] ? find_held_lock+0x2b/0x80 [ 411.665421][ T9780] ? follow_page_pte+0x5cf/0x1390 [ 411.665481][ T9780] handle_mm_fault+0x3fe/0xad0 [ 411.665521][ T9780] __get_user_pages+0x54e/0x3590 [ 411.665580][ T9780] ? register_lock_class+0x41/0x4b0 [ 411.665618][ T9780] ? __pfx___get_user_pages+0x10/0x10 [ 411.665675][ T9780] __gup_longterm_locked+0xa92/0x17e0 [ 411.665730][ T9780] ? __lock_acquire+0x436/0x2890 [ 411.665766][ T9780] ? __pfx___gup_longterm_locked+0x10/0x10 [ 411.665834][ T9780] pin_user_pages_remote+0xed/0x140 [ 411.665882][ T9780] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 411.665924][ T9780] ? mm_access+0x22d/0x2e0 [ 411.665982][ T9780] process_vm_rw_core.constprop.0+0x41b/0x970 [ 411.666040][ T9780] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 411.666108][ T9780] ? iovec_from_user+0xbb/0x140 [ 411.666149][ T9780] process_vm_rw+0x216/0x2c0 [ 411.666190][ T9780] ? __pfx_process_vm_rw+0x10/0x10 [ 411.666242][ T9780] ? kmem_cache_free+0x171/0x770 [ 411.666294][ T9780] ? __pfx___might_resched+0x10/0x10 [ 411.666358][ T9780] ? xfd_validate_state+0x61/0x180 [ 411.666384][ T9780] ? __task_pid_nr_ns+0x1f5/0x500 [ 411.666418][ T9780] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 411.666457][ T9780] ? do_syscall_64+0x91/0xf80 [ 411.666484][ T9780] ? lockdep_hardirqs_on+0x7c/0x110 [ 411.666512][ T9780] do_syscall_64+0xcd/0xf80 [ 411.666549][ T9780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.666581][ T9780] RIP: 0033:0x7fbe2118f7c9 [ 411.666607][ T9780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 411.666635][ T9780] RSP: 002b:00007fbe220ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 411.666664][ T9780] RAX: ffffffffffffffda RBX: 00007fbe213e6180 RCX: 00007fbe2118f7c9 [ 411.666684][ T9780] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 00000000000002ee [ 411.666701][ T9780] RBP: 00007fbe21213f91 R08: 000000000000000a R09: 0000000000000000 [ 411.666726][ T9780] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000 [ 411.666750][ T9780] R13: 00007fbe213e6218 R14: 00007fbe213e6180 R15: 00007ffc3686bee8 [ 411.666793][ T9780] [ 412.267636][ T9780] memory: usage 3072kB, limit 3072kB, failcnt 96870 [ 412.497586][ T9780] memory+swap: usage 3288kB, limit 9007199254740988kB, failcnt 0 [ 412.546457][ T9780] kmem: usage 1040kB, limit 9007199254740988kB, failcnt 0 [ 412.591833][ T9780] Memory cgroup stats for /syz0: [ 412.592023][ T9780] cache 2068480 [ 412.627373][ T9780] rss 0 [ 412.640297][ T9780] rss_huge 0 [ 412.687894][ T9780] shmem 2068480 [ 412.708546][ T9780] mapped_file 0 [ 412.712046][ T9780] dirty 0 [ 412.714981][ T9780] writeback 0 [ 412.772546][ T9780] workingset_refault_anon 21066 [ 412.777444][ T9780] workingset_refault_file 14168 [ 412.869388][ T9780] swap 221184 [ 412.877801][ T9780] swapcached 12288 [ 412.881586][ T9780] pgpgin 198148 [ 412.889814][ T9780] pgpgout 198662 [ 412.893397][ T9780] pgfault 220871 [ 412.897032][ T9780] pgmajfault 6753 [ 412.937611][ T9780] inactive_anon 1056768 [ 412.941840][ T9780] active_anon 1024000 [ 412.945853][ T9780] inactive_file 0 [ 412.949676][ T9780] active_file 0 [ 412.953151][ T9780] unevictable 0 [ 412.956602][ T9780] hierarchical_memory_limit 3145728 [ 412.976354][ T9780] hierarchical_memsw_limit 9223372036854771712 [ 412.994540][ T9780] total_cache 2068480 [ 413.004675][ T9780] total_rss 0 [ 413.008956][ T9780] total_rss_huge 0 [ 413.012690][ T9780] total_shmem 2068480 [ 413.016662][ T9780] total_mapped_file 0 [ 413.060295][ T9780] total_dirty 0 [ 413.063807][ T9780] total_writeback 0 [ 413.070965][ T9780] total_workingset_refault_anon 21066 [ 413.086861][ T9780] total_workingset_refault_file 14168 [ 413.099411][ T9780] total_swap 221184 [ 413.107602][ T9780] total_swapcached 12288 [ 413.111866][ T9780] total_pgpgin 198148 [ 413.128019][ T9780] total_pgpgout 198662 [ 413.132123][ T9780] total_pgfault 220871 [ 413.136180][ T9780] total_pgmajfault 6753 [ 413.167969][ T9780] total_inactive_anon 1056768 [ 413.172699][ T9780] total_active_anon 1024000 [ 413.177195][ T9780] total_inactive_file 0 [ 413.201728][ T9780] total_active_file 0 [ 413.215948][ T9780] total_unevictable 0 [ 413.230296][ T9780] anon_cost 0 [ 413.233643][ T9780] file_cost 0 [ 413.236925][ T9780] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.900,pid=9773,uid=0 [ 413.281018][ T9780] Memory cgroup out of memory: Killed process 9773 (syz.0.900) total-vm:170012kB, anon-rss:1140kB, file-rss:22892kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000 [ 413.771957][ T9807] FAULT_INJECTION: forcing a failure. [ 413.771957][ T9807] name failslab, interval 1, probability 0, space 0, times 0 [ 413.797554][ T9807] CPU: 1 UID: 0 PID: 9807 Comm: syz.0.909 Tainted: G L syzkaller #0 PREEMPT(full) [ 413.797601][ T9807] Tainted: [L]=SOFTLOCKUP [ 413.797612][ T9807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 413.797628][ T9807] Call Trace: [ 413.797638][ T9807] [ 413.797648][ T9807] dump_stack_lvl+0x16c/0x1f0 [ 413.797698][ T9807] should_fail_ex+0x512/0x640 [ 413.797730][ T9807] ? __kmalloc_cache_noprof+0x5f/0x800 [ 413.797766][ T9807] should_failslab+0xc2/0x120 [ 413.797806][ T9807] __kmalloc_cache_noprof+0x80/0x800 [ 413.797835][ T9807] ? trace_kmalloc+0x2b/0xb0 [ 413.797870][ T9807] ? __kmalloc_noprof+0x35d/0x910 [ 413.797900][ T9807] ? apply_wqattrs_prepare+0x130/0xbd0 [ 413.797943][ T9807] ? apply_wqattrs_prepare+0x130/0xbd0 [ 413.797977][ T9807] apply_wqattrs_prepare+0x130/0xbd0 [ 413.798026][ T9807] apply_workqueue_attrs_locked+0x64/0xe0 [ 413.798063][ T9807] __alloc_workqueue+0xf42/0x1810 [ 413.798118][ T9807] alloc_workqueue_noprof+0xd2/0x200 [ 413.798160][ T9807] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 413.798225][ T9807] nci_register_device+0x511/0xb80 [ 413.798266][ T9807] ? __pfx_nci_register_device+0x10/0x10 [ 413.798309][ T9807] ? lockdep_init_map_type+0x5c/0x270 [ 413.798346][ T9807] virtual_ncidev_open+0x141/0x220 [ 413.798378][ T9807] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 413.798406][ T9807] misc_open+0x26d/0x450 [ 413.798439][ T9807] ? __pfx_misc_open+0x10/0x10 [ 413.798482][ T9807] chrdev_open+0x234/0x6a0 [ 413.798527][ T9807] ? __pfx_apparmor_file_open+0x10/0x10 [ 413.798557][ T9807] ? __pfx_chrdev_open+0x10/0x10 [ 413.798599][ T9807] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 413.798646][ T9807] do_dentry_open+0x748/0x1590 [ 413.798683][ T9807] ? __pfx_chrdev_open+0x10/0x10 [ 413.798731][ T9807] vfs_open+0x82/0x3f0 [ 413.798764][ T9807] path_openat+0x2078/0x3140 [ 413.798814][ T9807] ? __pfx_path_openat+0x10/0x10 [ 413.798872][ T9807] do_filp_open+0x20b/0x470 [ 413.798914][ T9807] ? __pfx_do_filp_open+0x10/0x10 [ 413.798977][ T9807] ? alloc_fd+0x471/0x7d0 [ 413.799024][ T9807] do_sys_openat2+0x121/0x290 [ 413.799056][ T9807] ? __pfx_do_sys_openat2+0x10/0x10 [ 413.799089][ T9807] ? __fput+0x68d/0xb70 [ 413.799122][ T9807] __x64_sys_openat+0x174/0x210 [ 413.799154][ T9807] ? __pfx___x64_sys_openat+0x10/0x10 [ 413.799198][ T9807] do_syscall_64+0xcd/0xf80 [ 413.799226][ T9807] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.799254][ T9807] RIP: 0033:0x7fbe2118f7c9 [ 413.799277][ T9807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.799304][ T9807] RSP: 002b:00007fbe2210c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 413.799331][ T9807] RAX: ffffffffffffffda RBX: 00007fbe213e5fa0 RCX: 00007fbe2118f7c9 [ 413.799351][ T9807] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 413.799368][ T9807] RBP: 00007fbe21213f91 R08: 0000000000000000 R09: 0000000000000000 [ 413.799384][ T9807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.799402][ T9807] R13: 00007fbe213e6038 R14: 00007fbe213e5fa0 R15: 00007ffc3686bee8 [ 413.799445][ T9807] [ 415.962020][ T9843] FAULT_INJECTION: forcing a failure. [ 415.962020][ T9843] name failslab, interval 1, probability 0, space 0, times 0 [ 416.108958][ T9843] CPU: 0 UID: 0 PID: 9843 Comm: syz.3.917 Tainted: G L syzkaller #0 PREEMPT(full) [ 416.108989][ T9843] Tainted: [L]=SOFTLOCKUP [ 416.108995][ T9843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 416.109005][ T9843] Call Trace: [ 416.109011][ T9843] [ 416.109017][ T9843] dump_stack_lvl+0x16c/0x1f0 [ 416.109049][ T9843] should_fail_ex+0x512/0x640 [ 416.109070][ T9843] ? kmem_cache_alloc_noprof+0x62/0x770 [ 416.109093][ T9843] should_failslab+0xc2/0x120 [ 416.109118][ T9843] kmem_cache_alloc_noprof+0x83/0x770 [ 416.109139][ T9843] ? __kernfs_new_node+0xd2/0x9b0 [ 416.109162][ T9843] ? __kernfs_new_node+0xd2/0x9b0 [ 416.109180][ T9843] __kernfs_new_node+0xd2/0x9b0 [ 416.109203][ T9843] ? __pfx___kernfs_new_node+0x10/0x10 [ 416.109229][ T9843] ? find_held_lock+0x2b/0x80 [ 416.109251][ T9843] ? kernfs_root+0xee/0x2a0 [ 416.109274][ T9843] kernfs_new_node+0x13c/0x1e0 [ 416.109300][ T9843] __kernfs_create_file+0x53/0x350 [ 416.109329][ T9843] sysfs_add_file_mode_ns+0x207/0x3c0 [ 416.109352][ T9843] internal_create_group+0x597/0xf70 [ 416.109378][ T9843] ? __pfx_internal_create_group+0x10/0x10 [ 416.109404][ T9843] ? kernfs_create_link+0x1bd/0x240 [ 416.109422][ T9843] internal_create_groups+0x9d/0x150 [ 416.109445][ T9843] device_add+0x6f7/0x1980 [ 416.109472][ T9843] ? __pfx_device_add+0x10/0x10 [ 416.109496][ T9843] ? lockdep_init_map_type+0x5c/0x270 [ 416.109513][ T9843] ? __init_waitqueue_head+0xca/0x150 [ 416.109537][ T9843] netdev_register_kobject+0x1a9/0x3d0 [ 416.109557][ T9843] register_netdevice+0x13c1/0x21e0 [ 416.109587][ T9843] ? __pfx_register_netdevice+0x10/0x10 [ 416.109617][ T9843] ? __pfx_loopback_net_init+0x10/0x10 [ 416.109638][ T9843] register_netdev+0x34/0x50 [ 416.109663][ T9843] loopback_net_init+0x7a/0x170 [ 416.109691][ T9843] ? __pfx_loopback_net_init+0x10/0x10 [ 416.109710][ T9843] ops_init+0x1e2/0x5f0 [ 416.109736][ T9843] setup_net+0x11d/0x3a0 [ 416.109761][ T9843] ? __pfx_setup_net+0x10/0x10 [ 416.109783][ T9843] ? lockdep_init_map_type+0x5c/0x270 [ 416.109800][ T9843] ? mutex_init_lockep+0x110/0x150 [ 416.109821][ T9843] copy_net_ns+0x351/0x7c0 [ 416.109839][ T9843] create_new_namespaces+0x3ea/0xab0 [ 416.109868][ T9843] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 416.109893][ T9843] ksys_unshare+0x45b/0xa40 [ 416.109909][ T9843] ? __pfx_ksys_unshare+0x10/0x10 [ 416.109935][ T9843] ? xfd_validate_state+0x61/0x180 [ 416.109957][ T9843] __x64_sys_unshare+0x31/0x40 [ 416.109972][ T9843] do_syscall_64+0xcd/0xf80 [ 416.109993][ T9843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.110011][ T9843] RIP: 0033:0x7feb5c38f7c9 [ 416.110025][ T9843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.110042][ T9843] RSP: 002b:00007feb5d28d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 416.110058][ T9843] RAX: ffffffffffffffda RBX: 00007feb5c5e6090 RCX: 00007feb5c38f7c9 [ 416.110069][ T9843] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 416.110079][ T9843] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 416.110090][ T9843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 416.110100][ T9843] R13: 00007feb5c5e6128 R14: 00007feb5c5e6090 R15: 00007ffc3ba3c488 [ 416.110124][ T9843] [ 417.853926][ T9864] netlink: 50 bytes leftover after parsing attributes in process `syz.3.924'. [ 418.073095][ T9870] FAULT_INJECTION: forcing a failure. [ 418.073095][ T9870] name failslab, interval 1, probability 0, space 0, times 0 [ 418.086218][ T9870] CPU: 1 UID: 0 PID: 9870 Comm: syz.3.925 Tainted: G L syzkaller #0 PREEMPT(full) [ 418.086265][ T9870] Tainted: [L]=SOFTLOCKUP [ 418.086276][ T9870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 418.086294][ T9870] Call Trace: [ 418.086303][ T9870] [ 418.086315][ T9870] dump_stack_lvl+0x16c/0x1f0 [ 418.086368][ T9870] should_fail_ex+0x512/0x640 [ 418.086402][ T9870] ? fs_reclaim_acquire+0xae/0x150 [ 418.086451][ T9870] should_failslab+0xc2/0x120 [ 418.086504][ T9870] __kmalloc_noprof+0xeb/0x910 [ 418.086536][ T9870] ? security_inode_init_security+0x113/0x370 [ 418.086586][ T9870] ? security_inode_init_security+0x113/0x370 [ 418.086630][ T9870] security_inode_init_security+0x113/0x370 [ 418.086674][ T9870] ? __pfx_shmem_initxattrs+0x10/0x10 [ 418.086717][ T9870] ? __pfx_security_inode_init_security+0x10/0x10 [ 418.086773][ T9870] shmem_mknod+0x229/0x3b0 [ 418.086822][ T9870] shmem_mkdir+0x31/0x80 [ 418.086866][ T9870] vfs_mkdir+0x731/0xb60 [ 418.086907][ T9870] do_mkdirat+0x442/0x5e0 [ 418.086954][ T9870] ? __pfx_do_mkdirat+0x10/0x10 [ 418.086998][ T9870] ? strncpy_from_user+0x203/0x2e0 [ 418.087034][ T9870] ? getname_flags.part.0+0x1c5/0x550 [ 418.087071][ T9870] __x64_sys_mkdir+0xef/0x140 [ 418.087117][ T9870] do_syscall_64+0xcd/0xf80 [ 418.087148][ T9870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.087178][ T9870] RIP: 0033:0x7feb5c38f7c9 [ 418.087202][ T9870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.087230][ T9870] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 418.087259][ T9870] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 418.087279][ T9870] RDX: 0000000000000000 RSI: 000000000000007e RDI: 0000000000000000 [ 418.087296][ T9870] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 418.087313][ T9870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 418.087329][ T9870] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 418.087371][ T9870] [ 419.349242][ T9858] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 419.366388][ T9858] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 419.386786][ T9858] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 419.464478][ T9858] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 420.039679][ T9892] FAULT_INJECTION: forcing a failure. [ 420.039679][ T9892] name failslab, interval 1, probability 0, space 0, times 0 [ 420.053706][ T9892] CPU: 0 UID: 0 PID: 9892 Comm: syz.0.931 Tainted: G L syzkaller #0 PREEMPT(full) [ 420.053751][ T9892] Tainted: [L]=SOFTLOCKUP [ 420.053761][ T9892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 420.053777][ T9892] Call Trace: [ 420.053786][ T9892] [ 420.053797][ T9892] dump_stack_lvl+0x16c/0x1f0 [ 420.053839][ T9892] should_fail_ex+0x512/0x640 [ 420.053860][ T9892] ? __kmalloc_noprof+0xca/0x910 [ 420.053881][ T9892] should_failslab+0xc2/0x120 [ 420.053907][ T9892] __kmalloc_noprof+0xeb/0x910 [ 420.053925][ T9892] ? memcg_list_lru_alloc+0x4e9/0x740 [ 420.053950][ T9892] ? memcg_list_lru_alloc+0x4e9/0x740 [ 420.053969][ T9892] memcg_list_lru_alloc+0x4e9/0x740 [ 420.053994][ T9892] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 420.054021][ T9892] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 420.054046][ T9892] __memcg_slab_post_alloc_hook+0x133/0x880 [ 420.054066][ T9892] ? kasan_save_track+0x14/0x30 [ 420.054090][ T9892] kmem_cache_alloc_lru_noprof+0x58f/0x770 [ 420.054112][ T9892] ? alloc_inode+0xc3/0x240 [ 420.054134][ T9892] ? alloc_inode+0xc3/0x240 [ 420.054150][ T9892] alloc_inode+0xc3/0x240 [ 420.054168][ T9892] alloc_anon_inode+0x28/0x3e0 [ 420.054194][ T9892] dma_buf_export+0x266/0xa90 [ 420.054213][ T9892] ? sg_alloc_table+0x4c/0x1c0 [ 420.054240][ T9892] system_heap_allocate+0xb03/0x10a0 [ 420.054266][ T9892] ? __pfx_system_heap_allocate+0x10/0x10 [ 420.054293][ T9892] ? rep_movs_alternative+0x4a/0x90 [ 420.054317][ T9892] dma_heap_ioctl+0x385/0x610 [ 420.054337][ T9892] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 420.054366][ T9892] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 420.054385][ T9892] __x64_sys_ioctl+0x18e/0x210 [ 420.054416][ T9892] do_syscall_64+0xcd/0xf80 [ 420.054432][ T9892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.054450][ T9892] RIP: 0033:0x7fbe2118f7c9 [ 420.054464][ T9892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 420.054481][ T9892] RSP: 002b:00007fbe220eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 420.054499][ T9892] RAX: ffffffffffffffda RBX: 00007fbe213e6090 RCX: 00007fbe2118f7c9 [ 420.054510][ T9892] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000001 [ 420.054520][ T9892] RBP: 00007fbe21213f91 R08: 0000000000000000 R09: 0000000000000000 [ 420.054530][ T9892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.054541][ T9892] R13: 00007fbe213e6128 R14: 00007fbe213e6090 R15: 00007ffc3686bee8 [ 420.054563][ T9892] [ 421.010007][ T9887] aoe: could not set interface list: too many interfaces [ 421.228028][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 421.402332][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout [ 421.408822][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 421.469228][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 422.213245][ T9893] FAULT_INJECTION: forcing a failure. [ 422.213245][ T9893] name failslab, interval 1, probability 0, space 0, times 0 [ 422.367604][ T9893] CPU: 1 UID: 0 PID: 9893 Comm: syz.1.928 Tainted: G L syzkaller #0 PREEMPT(full) [ 422.367650][ T9893] Tainted: [L]=SOFTLOCKUP [ 422.367660][ T9893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 422.367675][ T9893] Call Trace: [ 422.367686][ T9893] [ 422.367696][ T9893] dump_stack_lvl+0x16c/0x1f0 [ 422.367750][ T9893] should_fail_ex+0x512/0x640 [ 422.367783][ T9893] ? kmem_cache_alloc_noprof+0x62/0x770 [ 422.367822][ T9893] should_failslab+0xc2/0x120 [ 422.367864][ T9893] kmem_cache_alloc_noprof+0x83/0x770 [ 422.367899][ T9893] ? __proc_create+0x2c8/0x8d0 [ 422.367944][ T9893] ? __proc_create+0x2c8/0x8d0 [ 422.367979][ T9893] __proc_create+0x2c8/0x8d0 [ 422.368018][ T9893] ? __pfx___proc_create+0x10/0x10 [ 422.368062][ T9893] ? _raw_write_unlock+0x28/0x50 [ 422.368104][ T9893] ? proc_register+0x559/0x8b0 [ 422.368148][ T9893] proc_create_reg+0x7d/0x180 [ 422.368190][ T9893] ? __pfx_can_reset_stats_proc_show+0x10/0x10 [ 422.368237][ T9893] proc_create_net_single+0x86/0x180 [ 422.368278][ T9893] ? __pfx_proc_create_net_single+0x10/0x10 [ 422.368333][ T9893] can_init_proc+0x112/0x4d0 [ 422.368362][ T9893] can_pernet_init+0x1e4/0x370 [ 422.368415][ T9893] ? __pfx_can_pernet_init+0x10/0x10 [ 422.368455][ T9893] ops_init+0x1e2/0x5f0 [ 422.368502][ T9893] setup_net+0x11d/0x3a0 [ 422.368544][ T9893] ? __pfx_setup_net+0x10/0x10 [ 422.368582][ T9893] ? lockdep_init_map_type+0x5c/0x270 [ 422.368612][ T9893] ? mutex_init_lockep+0x110/0x150 [ 422.368646][ T9893] copy_net_ns+0x351/0x7c0 [ 422.368678][ T9893] create_new_namespaces+0x3ea/0xab0 [ 422.368727][ T9893] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 422.368770][ T9893] ksys_unshare+0x45b/0xa40 [ 422.368798][ T9893] ? __pfx_ksys_unshare+0x10/0x10 [ 422.368845][ T9893] ? xfd_validate_state+0x61/0x180 [ 422.368884][ T9893] __x64_sys_unshare+0x31/0x40 [ 422.368910][ T9893] do_syscall_64+0xcd/0xf80 [ 422.368940][ T9893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 422.368967][ T9893] RIP: 0033:0x7fba3a98f7c9 [ 422.368991][ T9893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 422.369018][ T9893] RSP: 002b:00007fba3b80c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 422.369046][ T9893] RAX: ffffffffffffffda RBX: 00007fba3abe6090 RCX: 00007fba3a98f7c9 [ 422.369065][ T9893] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 422.369082][ T9893] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 422.369099][ T9893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 422.369116][ T9893] R13: 00007fba3abe6128 R14: 00007fba3abe6090 R15: 00007ffe162bc458 [ 422.369157][ T9893] [ 423.491642][ T52] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 423.491696][ T52] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 423.506815][ T52] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 423.506852][ T52] Bluetooth: hci2: adv larger than maximum supported [ 423.514034][ T52] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 423.520818][ T52] Bluetooth: hci2: adv larger than maximum supported [ 423.529005][ T52] Bluetooth: hci2: adv larger than maximum supported [ 423.535740][ T52] Bluetooth: hci2: Malformed LE Event: 0x0d [ 424.996543][ T32] oom_reaper: reaped process 9882 (syz.1.928), now anon-rss:84kB, file-rss:22444kB, shmem-rss:0kB [ 425.541059][ T9893] syz.1.928 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=2, oom_score_adj=1000 [ 425.584431][ T9893] CPU: 1 UID: 0 PID: 9893 Comm: syz.1.928 Tainted: G L syzkaller #0 PREEMPT(full) [ 425.584475][ T9893] Tainted: [L]=SOFTLOCKUP [ 425.584485][ T9893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 425.584498][ T9893] Call Trace: [ 425.584507][ T9893] [ 425.584519][ T9893] dump_stack_lvl+0x16c/0x1f0 [ 425.584566][ T9893] dump_header+0x101/0x960 [ 425.584601][ T9893] oom_kill_process+0x176/0x910 [ 425.584637][ T9893] out_of_memory+0x350/0x1700 [ 425.584667][ T9893] ? __lock_acquire+0x436/0x2890 [ 425.584699][ T9893] ? __pfx_out_of_memory+0x10/0x10 [ 425.584742][ T9893] mem_cgroup_out_of_memory+0x118/0x130 [ 425.584776][ T9893] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 425.584817][ T9893] ? do_raw_spin_unlock+0x172/0x230 [ 425.584857][ T9893] try_charge_memcg+0x695/0xd30 [ 425.584910][ T9893] ? __pfx_try_charge_memcg+0x10/0x10 [ 425.584954][ T9893] ? memory_min_write+0xb1/0xe0 [ 425.584988][ T9893] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 425.585031][ T9893] obj_cgroup_charge_account+0x336/0x670 [ 425.585084][ T9893] __memcg_slab_post_alloc_hook+0x2e3/0x880 [ 425.585127][ T9893] __kmalloc_cache_noprof+0x5cc/0x800 [ 425.585163][ T9893] ? ipv6_add_dev+0x6af/0x15f0 [ 425.585196][ T9893] ? ipv6_add_dev+0x6af/0x15f0 [ 425.585219][ T9893] ipv6_add_dev+0x6af/0x15f0 [ 425.585254][ T9893] addrconf_notify+0x53e/0x19f0 [ 425.585289][ T9893] ? ip6mr_device_event+0x1bc/0x230 [ 425.585334][ T9893] notifier_call_chain+0xbc/0x3e0 [ 425.585379][ T9893] ? __pfx_addrconf_notify+0x10/0x10 [ 425.585435][ T9893] call_netdevice_notifiers_info+0xbe/0x110 [ 425.585470][ T9893] register_netdevice+0x17a7/0x21e0 [ 425.585524][ T9893] ? __pfx_register_netdevice+0x10/0x10 [ 425.585581][ T9893] __ip_tunnel_create+0x540/0x6b0 [ 425.585614][ T9893] ? __pfx___ip_tunnel_create+0x10/0x10 [ 425.585656][ T9893] ip_tunnel_init_net+0x22f/0x7d0 [ 425.585692][ T9893] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 425.585735][ T9893] ? ops_init+0x77/0x5f0 [ 425.585779][ T9893] ? __pfx_erspan_init_net+0x10/0x10 [ 425.585822][ T9893] ops_init+0x1e2/0x5f0 [ 425.585865][ T9893] setup_net+0x11d/0x3a0 [ 425.585905][ T9893] ? __pfx_setup_net+0x10/0x10 [ 425.585944][ T9893] ? lockdep_init_map_type+0x5c/0x270 [ 425.585974][ T9893] ? mutex_init_lockep+0x110/0x150 [ 425.586012][ T9893] copy_net_ns+0x351/0x7c0 [ 425.586043][ T9893] create_new_namespaces+0x3ea/0xab0 [ 425.586093][ T9893] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 425.586137][ T9893] ksys_unshare+0x45b/0xa40 [ 425.586165][ T9893] ? __pfx_ksys_unshare+0x10/0x10 [ 425.586211][ T9893] ? xfd_validate_state+0x61/0x180 [ 425.586252][ T9893] __x64_sys_unshare+0x31/0x40 [ 425.586278][ T9893] do_syscall_64+0xcd/0xf80 [ 425.586309][ T9893] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.586339][ T9893] RIP: 0033:0x7fba3a98f7c9 [ 425.586368][ T9893] Code: Unable to access opcode bytes at 0x7fba3a98f79f. [ 425.586381][ T9893] RSP: 002b:00007fba3b80c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 425.586416][ T9893] RAX: ffffffffffffffda RBX: 00007fba3abe6090 RCX: 00007fba3a98f7c9 [ 425.586434][ T9893] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 425.586450][ T9893] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 425.586466][ T9893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 425.586482][ T9893] R13: 00007fba3abe6128 R14: 00007fba3abe6090 R15: 00007ffe162bc458 [ 425.586523][ T9893] [ 425.586535][ T9893] memory: usage 3072kB, limit 3072kB, failcnt 114252 [ 425.929000][ T9893] memory+swap: usage 99324kB, limit 9007199254740988kB, failcnt 0 [ 425.937886][ T9893] kmem: usage 1712kB, limit 9007199254740988kB, failcnt 0 [ 425.947971][ T9893] Memory cgroup stats for /syz1: [ 425.948228][ T9893] cache 0 [ 425.956142][ T9893] rss 0 [ 425.961627][ T9893] rss_huge 0 [ 425.967811][ T9893] shmem 0 [ 425.971760][ T9893] mapped_file 0 [ 425.975348][ T9893] dirty 0 [ 425.980149][ T9893] writeback 0 [ 425.984301][ T9893] workingset_refault_anon 17898 [ 426.007850][ T9893] workingset_refault_file 35185 [ 426.024431][ T9893] swap 98562048 [ 426.028335][ T9893] swapcached 1392640 [ 426.032234][ T9893] pgpgin 293621 [ 426.047601][ T9893] pgpgout 293281 [ 426.051206][ T9893] pgfault 218498 [ 426.054775][ T9893] pgmajfault 6272 [ 426.080730][ T9893] inactive_anon 606208 [ 426.084860][ T9893] active_anon 524288 [ 426.109858][ T9893] inactive_file 0 [ 426.113650][ T9893] active_file 0 [ 426.117229][ T9893] unevictable 0 [ 426.156361][ T9893] hierarchical_memory_limit 3145728 [ 426.168758][ T9893] hierarchical_memsw_limit 9223372036854771712 [ 426.174955][ T9893] total_cache 0 [ 426.199155][ T9893] total_rss 0 [ 426.207430][ T9893] total_rss_huge 0 [ 426.217563][ T9893] total_shmem 0 [ 426.229013][ T9893] total_mapped_file 0 [ 426.233607][ T9893] total_dirty 0 [ 426.237070][ T9893] total_writeback 0 [ 426.241286][ T9893] total_workingset_refault_anon 17898 [ 426.247144][ T9893] total_workingset_refault_file 35185 [ 426.257562][ T9893] total_swap 98562048 [ 426.268225][ T9893] total_swapcached 1392640 [ 426.278968][ T9893] total_pgpgin 293621 [ 426.287797][ T9893] total_pgpgout 293281 [ 426.295332][ T9893] total_pgfault 218498 [ 426.300416][ T9893] total_pgmajfault 6272 [ 426.304610][ T9893] total_inactive_anon 606208 [ 426.309812][ T9893] total_active_anon 524288 [ 426.314256][ T9893] total_inactive_file 0 [ 426.318887][ T9893] total_active_file 0 [ 426.322903][ T9893] total_unevictable 0 [ 426.326912][ T9893] anon_cost 0 [ 426.330884][ T9893] file_cost 0 [ 426.334512][ T9893] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.818,pid=9403,uid=0 [ 426.355105][ T9893] Memory cgroup out of memory: Killed process 9403 (syz.1.818) total-vm:136980kB, anon-rss:1140kB, file-rss:48624kB, shmem-rss:128kB, UID:0 pgtables:280kB oom_score_adj:1000 [ 429.798080][ T52] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 429.864469][ T52] Bluetooth: hci2: Unable to find connection for big 0xd2 [ 429.876165][ T9978] hub 1-0:1.0: USB hub found [ 429.883872][ T9978] hub 1-0:1.0: 1 port detected [ 432.878671][T10034] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 432.878671][T10034] M' is too long [ 432.893109][T10034] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 432.893109][T10034] W ' is too long [ 434.237615][ T30] audit: type=1800 audit(4294967657.714:9): pid=10050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.968" name="dbroot" dev="configfs" ino=27463 res=0 errno=0 [ 435.703219][T10066] zero sized request [ 435.780788][T10068] Invalid ELF header magic: != ELF [ 436.649590][ T52] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 436.658056][T10081] FAULT_INJECTION: forcing a failure. [ 436.658056][T10081] name failslab, interval 1, probability 0, space 0, times 0 [ 436.705098][T10081] CPU: 1 UID: 0 PID: 10081 Comm: syz.3.976 Tainted: G L syzkaller #0 PREEMPT(full) [ 436.705129][T10081] Tainted: [L]=SOFTLOCKUP [ 436.705135][T10081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 436.705144][T10081] Call Trace: [ 436.705150][T10081] [ 436.705157][T10081] dump_stack_lvl+0x16c/0x1f0 [ 436.705189][T10081] should_fail_ex+0x512/0x640 [ 436.705209][T10081] ? __kmalloc_noprof+0xca/0x910 [ 436.705230][T10081] should_failslab+0xc2/0x120 [ 436.705256][T10081] __kmalloc_noprof+0xeb/0x910 [ 436.705272][T10081] ? __asan_memcpy+0x3c/0x60 [ 436.705291][T10081] ? __alloc_workqueue+0x112/0x1810 [ 436.705320][T10081] ? __alloc_workqueue+0x112/0x1810 [ 436.705344][T10081] __alloc_workqueue+0x112/0x1810 [ 436.705369][T10081] ? __pfx_vsnprintf+0x10/0x10 [ 436.705400][T10081] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 436.705425][T10081] ? lockdep_hardirqs_on+0x7c/0x110 [ 436.705440][T10081] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 436.705473][T10081] alloc_workqueue_noprof+0xd2/0x200 [ 436.705499][T10081] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 436.705538][T10081] nci_register_device+0x511/0xb80 [ 436.705562][T10081] ? __pfx_nci_register_device+0x10/0x10 [ 436.705588][T10081] ? lockdep_init_map_type+0x5c/0x270 [ 436.705610][T10081] virtual_ncidev_open+0x141/0x220 [ 436.705628][T10081] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 436.705645][T10081] misc_open+0x26d/0x450 [ 436.705665][T10081] ? __pfx_misc_open+0x10/0x10 [ 436.705684][T10081] chrdev_open+0x234/0x6a0 [ 436.705709][T10081] ? __pfx_apparmor_file_open+0x10/0x10 [ 436.705727][T10081] ? __pfx_chrdev_open+0x10/0x10 [ 436.705753][T10081] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 436.705783][T10081] do_dentry_open+0x748/0x1590 [ 436.705806][T10081] ? __pfx_chrdev_open+0x10/0x10 [ 436.705837][T10081] vfs_open+0x82/0x3f0 [ 436.705858][T10081] path_openat+0x2078/0x3140 [ 436.705889][T10081] ? __pfx_path_openat+0x10/0x10 [ 436.705922][T10081] do_filp_open+0x20b/0x470 [ 436.705947][T10081] ? __pfx_do_filp_open+0x10/0x10 [ 436.705988][T10081] ? alloc_fd+0x471/0x7d0 [ 436.706018][T10081] do_sys_openat2+0x121/0x290 [ 436.706037][T10081] ? __pfx_do_sys_openat2+0x10/0x10 [ 436.706056][T10081] ? __fput+0x68d/0xb70 [ 436.706078][T10081] __x64_sys_openat+0x174/0x210 [ 436.706097][T10081] ? __pfx___x64_sys_openat+0x10/0x10 [ 436.706125][T10081] do_syscall_64+0xcd/0xf80 [ 436.706142][T10081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.706159][T10081] RIP: 0033:0x7feb5c38f7c9 [ 436.706173][T10081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 436.706189][T10081] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 436.706206][T10081] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 436.706216][T10081] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 436.706227][T10081] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 436.706237][T10081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 436.706246][T10081] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 436.706268][T10081] [ 437.028038][ T52] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 438.668916][T10106] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 438.675040][T10106] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 438.689973][T10106] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 438.744500][T10106] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 438.764805][T10106] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 438.783165][T10106] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 439.469481][T10118] netlink: 9 bytes leftover after parsing attributes in process `syz.1.983'. [ 440.747782][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout [ 440.753886][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 440.760005][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout [ 440.827719][T10136] Bluetooth: hci3: command 0x0c1a tx timeout [ 440.873156][T10133] bridge0: port 2(gretap0) entered blocking state [ 440.884014][T10133] bridge0: port 2(gretap0) entered disabled state [ 440.895118][T10133] gretap0: entered allmulticast mode [ 440.940982][T10133] gretap0: entered promiscuous mode [ 440.978063][T10133] FAULT_INJECTION: forcing a failure. [ 440.978063][T10133] name failslab, interval 1, probability 0, space 0, times 0 [ 441.026750][T10133] CPU: 0 UID: 0 PID: 10133 Comm: syz.0.987 Tainted: G L syzkaller #0 PREEMPT(full) [ 441.026780][T10133] Tainted: [L]=SOFTLOCKUP [ 441.026786][T10133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 441.026797][T10133] Call Trace: [ 441.026803][T10133] [ 441.026809][T10133] dump_stack_lvl+0x16c/0x1f0 [ 441.026841][T10133] should_fail_ex+0x512/0x640 [ 441.026861][T10133] ? __kmalloc_cache_noprof+0x5f/0x800 [ 441.026883][T10133] should_failslab+0xc2/0x120 [ 441.026909][T10133] __kmalloc_cache_noprof+0x80/0x800 [ 441.026928][T10133] ? vlan_vid_add+0x2f3/0x740 [ 441.026957][T10133] ? vlan_vid_add+0x2f3/0x740 [ 441.026981][T10133] vlan_vid_add+0x2f3/0x740 [ 441.027010][T10133] __vlan_add+0x1519/0x2df0 [ 441.027042][T10133] ? __pfx___vlan_add+0x10/0x10 [ 441.027071][T10133] nbp_vlan_add+0x261/0x3f0 [ 441.027097][T10133] nbp_vlan_init+0x373/0x500 [ 441.027121][T10133] ? __pfx_nbp_vlan_init+0x10/0x10 [ 441.027149][T10133] ? __local_bh_enable_ip+0xa4/0x120 [ 441.027173][T10133] ? lockdep_hardirqs_on+0x7c/0x110 [ 441.027189][T10133] ? br_fdb_add_local+0x43/0x60 [ 441.027209][T10133] ? __local_bh_enable_ip+0xa4/0x120 [ 441.027234][T10133] br_add_if+0xfa6/0x1b70 [ 441.027259][T10133] ? __pfx_veth_set_rx_headroom+0x10/0x10 [ 441.027290][T10133] add_del_if+0x114/0x160 [ 441.027317][T10133] br_dev_siocdevprivate+0x908/0x1650 [ 441.027344][T10133] ? __lock_acquire+0x436/0x2890 [ 441.027359][T10133] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 441.027403][T10133] ? do_raw_spin_lock+0x12c/0x2b0 [ 441.027427][T10133] ? mark_held_locks+0x49/0x80 [ 441.027444][T10133] ? netdev_name_node_lookup+0x127/0x180 [ 441.027475][T10133] ? __mutex_lock+0x27b/0x1ca0 [ 441.027505][T10133] dev_ifsioc+0x8ee/0x1ee0 [ 441.027545][T10133] ? __pfx_dev_ifsioc+0x10/0x10 [ 441.027577][T10133] ? __pfx___mutex_lock+0x10/0x10 [ 441.027623][T10133] ? dev_load+0x8e/0x240 [ 441.027655][T10133] dev_ioctl+0x1b2/0x1060 [ 441.027679][T10133] sock_ioctl+0x5b3/0x6b0 [ 441.027697][T10133] ? __pfx_sock_ioctl+0x10/0x10 [ 441.027713][T10133] ? hook_file_ioctl_common+0x144/0x410 [ 441.027739][T10133] ? __fget_files+0x20e/0x3c0 [ 441.027766][T10133] ? __pfx_sock_ioctl+0x10/0x10 [ 441.027784][T10133] __x64_sys_ioctl+0x18e/0x210 [ 441.027807][T10133] do_syscall_64+0xcd/0xf80 [ 441.027824][T10133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.027841][T10133] RIP: 0033:0x7fbe2118f7c9 [ 441.027856][T10133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.027873][T10133] RSP: 002b:00007fbe2210c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 441.027890][T10133] RAX: ffffffffffffffda RBX: 00007fbe213e5fa0 RCX: 00007fbe2118f7c9 [ 441.027901][T10133] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000007 [ 441.027911][T10133] RBP: 00007fbe21213f91 R08: 0000000000000000 R09: 0000000000000000 [ 441.027920][T10133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.027930][T10133] R13: 00007fbe213e6038 R14: 00007fbe213e5fa0 R15: 00007ffc3686bee8 [ 441.027952][T10133] [ 441.420740][T10133] gretap0: failed to initialize vlan filtering on this port [ 441.441941][T10133] gretap0: left allmulticast mode [ 441.516361][T10141] FAULT_INJECTION: forcing a failure. [ 441.516361][T10141] name fail_futex, interval 1, probability 0, space 0, times 0 [ 441.529600][T10141] CPU: 1 UID: 0 PID: 10141 Comm: syz.2.989 Tainted: G L syzkaller #0 PREEMPT(full) [ 441.529646][T10141] Tainted: [L]=SOFTLOCKUP [ 441.529656][T10141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 441.529671][T10141] Call Trace: [ 441.529681][T10141] [ 441.529692][T10141] dump_stack_lvl+0x16c/0x1f0 [ 441.529740][T10141] should_fail_ex+0x512/0x640 [ 441.529780][T10141] should_fail_futex+0x4c/0x60 [ 441.529812][T10141] futex_lock_pi_atomic+0x127/0xc50 [ 441.529857][T10141] futex_lock_pi+0x23f/0x7c0 [ 441.529900][T10141] ? __pfx_futex_lock_pi+0x10/0x10 [ 441.529933][T10141] ? __futex_wait+0x24b/0x2f0 [ 441.529999][T10141] ? futex_private_hash_put+0x160/0x1b0 [ 441.530036][T10141] ? __pfx_futex_wake_mark+0x10/0x10 [ 441.530088][T10141] ? ksys_write+0x190/0x250 [ 441.530133][T10141] do_futex+0x11a/0x350 [ 441.530166][T10141] ? __pfx_do_futex+0x10/0x10 [ 441.530209][T10141] __x64_sys_futex+0x1e0/0x4c0 [ 441.530247][T10141] ? fput+0x70/0xf0 [ 441.530273][T10141] ? __pfx___x64_sys_futex+0x10/0x10 [ 441.530307][T10141] ? xfd_validate_state+0x61/0x180 [ 441.530333][T10141] ? __pfx_ksys_write+0x10/0x10 [ 441.530383][T10141] do_syscall_64+0xcd/0xf80 [ 441.530415][T10141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.530443][T10141] RIP: 0033:0x7f2a2b58f7c9 [ 441.530476][T10141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.530504][T10141] RSP: 002b:00007f2a2c4e0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 441.530532][T10141] RAX: ffffffffffffffda RBX: 00007f2a2b7e5fa0 RCX: 00007f2a2b58f7c9 [ 441.530552][T10141] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 441.530567][T10141] RBP: 00007f2a2b613f91 R08: 0000000000000000 R09: 000000008000fff5 [ 441.530583][T10141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.530599][T10141] R13: 00007f2a2b7e6038 R14: 00007f2a2b7e5fa0 R15: 00007ffd7e6fa6f8 [ 441.530636][T10141] [ 442.328870][T10159] Invalid ELF header magic: != ELF [ 442.838046][T10136] Bluetooth: hci2: command 0x0c1a tx timeout [ 442.838079][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 442.957176][T10166] netlink: 8 bytes leftover after parsing attributes in process `syz.1.995'. [ 443.464278][T10174] FAULT_INJECTION: forcing a failure. [ 443.464278][T10174] name failslab, interval 1, probability 0, space 0, times 0 [ 443.512700][T10174] CPU: 0 UID: 0 PID: 10174 Comm: syz.2.997 Tainted: G L syzkaller #0 PREEMPT(full) [ 443.512747][T10174] Tainted: [L]=SOFTLOCKUP [ 443.512757][T10174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 443.512782][T10174] Call Trace: [ 443.512789][T10174] [ 443.512797][T10174] dump_stack_lvl+0x16c/0x1f0 [ 443.512830][T10174] should_fail_ex+0x512/0x640 [ 443.512851][T10174] ? __kmalloc_noprof+0xca/0x910 [ 443.512872][T10174] should_failslab+0xc2/0x120 [ 443.512897][T10174] __kmalloc_noprof+0xeb/0x910 [ 443.512916][T10174] ? rcu_is_watching+0x12/0xc0 [ 443.512938][T10174] ? eeprom_prepare_data+0x1ce/0x920 [ 443.512968][T10174] ? eeprom_prepare_data+0x1ce/0x920 [ 443.512993][T10174] eeprom_prepare_data+0x1ce/0x920 [ 443.513021][T10174] ? __pfx_eeprom_prepare_data+0x10/0x10 [ 443.513046][T10174] ? __pfx___mutex_lock+0x10/0x10 [ 443.513064][T10174] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 443.513091][T10174] ? skb_put+0x138/0x1b0 [ 443.513118][T10174] ethnl_default_dump_one+0x29b/0xa20 [ 443.513145][T10174] ethnl_default_dumpit+0x28d/0x6c0 [ 443.513174][T10174] ? __pfx_ethnl_default_dumpit+0x10/0x10 [ 443.513204][T10174] genl_dumpit+0x125/0x230 [ 443.513223][T10174] netlink_dump+0x539/0xd30 [ 443.513250][T10174] ? __pfx_netlink_dump+0x10/0x10 [ 443.513273][T10174] ? __pfx_eeprom_parse_request+0x10/0x10 [ 443.513308][T10174] ? __pfx_ethnl_default_start+0x10/0x10 [ 443.513330][T10174] ? genl_start+0x67f/0x980 [ 443.513349][T10174] __netlink_dump_start+0x6d6/0x990 [ 443.513378][T10174] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 443.513398][T10174] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 443.513423][T10174] ? consume_skb+0xcc/0x100 [ 443.513453][T10174] ? __pfx_genl_start+0x10/0x10 [ 443.513468][T10174] ? __pfx_genl_dumpit+0x10/0x10 [ 443.513483][T10174] ? __pfx_genl_done+0x10/0x10 [ 443.513500][T10174] ? bpf_lsm_capable+0x9/0x10 [ 443.513522][T10174] ? security_capable+0x7e/0x260 [ 443.513541][T10174] ? ns_capable+0xd7/0x110 [ 443.513565][T10174] genl_rcv_msg+0x46e/0x800 [ 443.513585][T10174] ? __pfx_genl_rcv_msg+0x10/0x10 [ 443.513603][T10174] ? __pfx_ethnl_default_start+0x10/0x10 [ 443.513624][T10174] ? __pfx_ethnl_default_dumpit+0x10/0x10 [ 443.513647][T10174] ? __pfx_ethnl_default_done+0x10/0x10 [ 443.513676][T10174] netlink_rcv_skb+0x158/0x420 [ 443.513702][T10174] ? __pfx_genl_rcv_msg+0x10/0x10 [ 443.513720][T10174] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 443.513755][T10174] ? netlink_deliver_tap+0x1ae/0xd30 [ 443.513782][T10174] genl_rcv+0x28/0x40 [ 443.513797][T10174] netlink_unicast+0x5aa/0x870 [ 443.513826][T10174] ? __pfx_netlink_unicast+0x10/0x10 [ 443.513860][T10174] netlink_sendmsg+0x8c8/0xdd0 [ 443.513889][T10174] ? __pfx_netlink_sendmsg+0x10/0x10 [ 443.513917][T10174] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 443.513939][T10174] ____sys_sendmsg+0xa5d/0xc30 [ 443.513956][T10174] ? copy_msghdr_from_user+0x10a/0x160 [ 443.513980][T10174] ? __pfx_____sys_sendmsg+0x10/0x10 [ 443.513995][T10174] ? preempt_schedule_thunk+0x16/0x30 [ 443.514015][T10174] ? try_to_wake_up+0xa67/0x1860 [ 443.514041][T10174] ___sys_sendmsg+0x134/0x1d0 [ 443.514066][T10174] ? __pfx____sys_sendmsg+0x10/0x10 [ 443.514088][T10174] ? futex_private_hash_put+0x160/0x1b0 [ 443.514132][T10174] __sys_sendmsg+0x16d/0x220 [ 443.514155][T10174] ? __pfx___sys_sendmsg+0x10/0x10 [ 443.514178][T10174] ? __x64_sys_futex+0x1e0/0x4c0 [ 443.514211][T10174] do_syscall_64+0xcd/0xf80 [ 443.514229][T10174] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.514246][T10174] RIP: 0033:0x7f2a2b58f7c9 [ 443.514261][T10174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.514277][T10174] RSP: 002b:00007f2a2c4e0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 443.514294][T10174] RAX: ffffffffffffffda RBX: 00007f2a2b7e5fa0 RCX: 00007f2a2b58f7c9 [ 443.514305][T10174] RDX: 0000000004004840 RSI: 0000200000001780 RDI: 0000000000000008 [ 443.514315][T10174] RBP: 00007f2a2b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 443.514324][T10174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 443.514334][T10174] R13: 00007f2a2b7e6038 R14: 00007f2a2b7e5fa0 R15: 00007ffd7e6fa6f8 [ 443.514356][T10174] [ 443.976802][T10177] Format for deleting device is "id" (uint). [ 444.408249][T10183] FAULT_INJECTION: forcing a failure. [ 444.408249][T10183] name failslab, interval 1, probability 0, space 0, times 0 [ 444.421646][T10183] CPU: 0 UID: 0 PID: 10183 Comm: syz.3.1000 Tainted: G L syzkaller #0 PREEMPT(full) [ 444.421692][T10183] Tainted: [L]=SOFTLOCKUP [ 444.421702][T10183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 444.421718][T10183] Call Trace: [ 444.421730][T10183] [ 444.421741][T10183] dump_stack_lvl+0x16c/0x1f0 [ 444.421790][T10183] should_fail_ex+0x512/0x640 [ 444.421823][T10183] ? __kmalloc_cache_noprof+0x5f/0x800 [ 444.421861][T10183] should_failslab+0xc2/0x120 [ 444.421900][T10183] __kmalloc_cache_noprof+0x80/0x800 [ 444.421933][T10183] ? snd_pcm_oss_change_params_locked+0x211/0x3ad0 [ 444.421972][T10183] ? snd_pcm_oss_change_params_locked+0x211/0x3ad0 [ 444.422003][T10183] snd_pcm_oss_change_params_locked+0x211/0x3ad0 [ 444.422038][T10183] ? __mutex_lock+0x27b/0x1ca0 [ 444.422071][T10183] ? snd_pcm_oss_make_ready+0xc4/0x1b0 [ 444.422102][T10183] ? stack_depot_save_flags+0x29/0x9b0 [ 444.422148][T10183] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 444.422178][T10183] ? __pfx___mutex_lock+0x10/0x10 [ 444.422209][T10183] ? __lock_acquire+0x436/0x2890 [ 444.422263][T10183] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 444.422299][T10183] snd_pcm_oss_set_trigger.isra.0+0x211/0x6b0 [ 444.422332][T10183] ? lockdep_hardirqs_on+0x7c/0x110 [ 444.422376][T10183] snd_pcm_oss_poll+0x5a5/0xb90 [ 444.422414][T10183] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 444.422443][T10183] ? __fget_files+0x20e/0x3c0 [ 444.422493][T10183] ? __pfx_snd_pcm_oss_poll+0x10/0x10 [ 444.422526][T10183] do_select+0xd3d/0x17e0 [ 444.422603][T10183] ? __pfx_do_select+0x10/0x10 [ 444.422655][T10183] ? __pfx_pollwake+0x10/0x10 [ 444.422760][T10183] ? find_held_lock+0x2b/0x80 [ 444.422792][T10183] ? __might_fault+0xe3/0x190 [ 444.422822][T10183] ? __might_fault+0xe3/0x190 [ 444.422849][T10183] ? __might_fault+0x13b/0x190 [ 444.422891][T10183] ? core_sys_select+0x453/0xc20 [ 444.422918][T10183] core_sys_select+0x453/0xc20 [ 444.422956][T10183] ? __pfx_core_sys_select+0x10/0x10 [ 444.422994][T10183] ? __lock_acquire+0x436/0x2890 [ 444.423037][T10183] ? read_tsc+0x9/0x20 [ 444.423066][T10183] ? ktime_get_ts64+0x256/0x400 [ 444.423097][T10183] kern_select+0x15d/0x1e0 [ 444.423127][T10183] ? __pfx_kern_select+0x10/0x10 [ 444.423161][T10183] ? xfd_validate_state+0x61/0x180 [ 444.423179][T10183] ? __pfx_ksys_write+0x10/0x10 [ 444.423214][T10183] __x64_sys_select+0xbd/0x160 [ 444.423243][T10183] ? do_syscall_64+0x91/0xf80 [ 444.423261][T10183] ? lockdep_hardirqs_on+0x7c/0x110 [ 444.423281][T10183] do_syscall_64+0xcd/0xf80 [ 444.423303][T10183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.423325][T10183] RIP: 0033:0x7feb5c38f7c9 [ 444.423345][T10183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.423376][T10183] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 444.423398][T10183] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 444.423413][T10183] RDX: 0000200000000180 RSI: 0000200000000040 RDI: 0000000000000003 [ 444.423426][T10183] RBP: 00007feb5c413f91 R08: 00002000000000c0 R09: 0000000000000000 [ 444.423439][T10183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.423452][T10183] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 444.423484][T10183] [ 445.313355][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.327799][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.347589][ T5839] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 448.436794][ T5839] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 448.589445][T10136] Bluetooth: hci1: Unable to find connection for big 0xd2 [ 448.871770][ T30] audit: type=1800 audit(4294967672.354:10): pid=10246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1013" name="lu_gp_id" dev="configfs" ino=29704 res=0 errno=0 [ 449.806301][T10261] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 455.000078][T10315] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1025'. [ 455.011397][T10315] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1025'. [ 455.144222][T10318] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1026'. [ 455.230057][T10318] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1026'. [ 456.141028][T10331] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 456.164424][T10331] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 456.174926][T10331] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 456.201255][T10331] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 456.210663][T10331] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 456.698101][T10339] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1029'. [ 458.169617][T10361] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1034'. [ 458.200175][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 458.271134][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 458.271172][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 458.287754][T10136] Bluetooth: hci2: command 0x0c1a tx timeout [ 458.391575][T10361] team0: Port device team_slave_0 removed [ 458.554439][T10364] Invalid ELF header magic: != ELF [ 459.267787][T10364] FAULT_INJECTION: forcing a failure. [ 459.267787][T10364] name failslab, interval 1, probability 0, space 0, times 0 [ 459.298009][T10364] CPU: 0 UID: 0 PID: 10364 Comm: syz.0.1037 Tainted: G L syzkaller #0 PREEMPT(full) [ 459.298056][T10364] Tainted: [L]=SOFTLOCKUP [ 459.298067][T10364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 459.298083][T10364] Call Trace: [ 459.298093][T10364] [ 459.298104][T10364] dump_stack_lvl+0x16c/0x1f0 [ 459.298153][T10364] should_fail_ex+0x512/0x640 [ 459.298186][T10364] ? kmem_cache_alloc_noprof+0x62/0x770 [ 459.298225][T10364] should_failslab+0xc2/0x120 [ 459.298267][T10364] kmem_cache_alloc_noprof+0x83/0x770 [ 459.298299][T10364] ? __kernfs_new_node+0xd2/0x9b0 [ 459.298333][T10364] ? __kernfs_new_node+0xd2/0x9b0 [ 459.298356][T10364] __kernfs_new_node+0xd2/0x9b0 [ 459.298385][T10364] ? __pfx___kernfs_new_node+0x10/0x10 [ 459.298418][T10364] ? find_held_lock+0x2b/0x80 [ 459.298457][T10364] ? kernfs_root+0xee/0x2a0 [ 459.298489][T10364] kernfs_new_node+0x13c/0x1e0 [ 459.298525][T10364] __kernfs_create_file+0x53/0x350 [ 459.298563][T10364] sysfs_add_file_mode_ns+0x207/0x3c0 [ 459.298597][T10364] internal_create_group+0x597/0xf70 [ 459.298633][T10364] ? __pfx_internal_create_group+0x10/0x10 [ 459.298667][T10364] ? kernfs_create_link+0x1bd/0x240 [ 459.298693][T10364] internal_create_groups+0x9d/0x150 [ 459.298722][T10364] device_add+0x757/0x1980 [ 459.298759][T10364] ? __pfx_device_add+0x10/0x10 [ 459.298790][T10364] ? rcu_is_watching+0x12/0xc0 [ 459.298821][T10364] ? lockdep_init_map_type+0x5c/0x270 [ 459.298849][T10364] input_register_device+0x7e8/0x11b0 [ 459.298879][T10364] ? input_ff_create+0x256/0x350 [ 459.298905][T10364] uinput_ioctl_handler.isra.0+0x1357/0x1df0 [ 459.298930][T10364] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 459.298956][T10364] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 459.298988][T10364] ? find_held_lock+0x2b/0x80 [ 459.299031][T10364] ? __pfx_uinput_ioctl+0x10/0x10 [ 459.299056][T10364] __x64_sys_ioctl+0x18e/0x210 [ 459.299084][T10364] do_syscall_64+0xcd/0xf80 [ 459.299108][T10364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.299130][T10364] RIP: 0033:0x7fbe2118f7c9 [ 459.299148][T10364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.299169][T10364] RSP: 002b:00007fbe2210c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 459.299191][T10364] RAX: ffffffffffffffda RBX: 00007fbe213e5fa0 RCX: 00007fbe2118f7c9 [ 459.299205][T10364] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000006 [ 459.299218][T10364] RBP: 00007fbe21213f91 R08: 0000000000000000 R09: 0000000000000000 [ 459.299232][T10364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 459.299245][T10364] R13: 00007fbe213e6038 R14: 00007fbe213e5fa0 R15: 00007ffc3686bee8 [ 459.299278][T10364] [ 459.653235][T10376] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1040'. [ 460.338216][T10382] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 460.349682][T10382] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 460.387904][T10382] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 460.394103][T10382] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 460.769752][T10396] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1043'. [ 460.819266][T10391] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1043'. [ 462.351907][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 462.427624][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 462.433711][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 462.439855][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 463.708991][T10436] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 463.725971][T10436] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 463.755212][T10436] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 463.764298][T10436] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 463.984563][T10429] netlink: 'syz.1.1050': attribute type 2 has an invalid length. [ 463.992432][T10429] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1050'. [ 464.242179][T10445] Invalid ELF header magic: != ELF [ 465.773052][ T30] audit: type=1800 audit(4294967689.261:11): pid=10467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1058" name="lu_gp_id" dev="configfs" ino=30065 res=0 errno=0 [ 465.788132][T10136] Bluetooth: hci3: command 0x0c1a tx timeout [ 465.797729][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 465.799559][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 465.805473][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 465.829338][T10464] FAULT_INJECTION: forcing a failure. [ 465.829338][T10464] name failslab, interval 1, probability 0, space 0, times 0 [ 465.863929][T10464] CPU: 0 UID: 0 PID: 10464 Comm: syz.3.1057 Tainted: G L syzkaller #0 PREEMPT(full) [ 465.863978][T10464] Tainted: [L]=SOFTLOCKUP [ 465.863988][T10464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 465.864006][T10464] Call Trace: [ 465.864015][T10464] [ 465.864026][T10464] dump_stack_lvl+0x16c/0x1f0 [ 465.864078][T10464] should_fail_ex+0x512/0x640 [ 465.864111][T10464] ? kmem_cache_alloc_noprof+0x62/0x770 [ 465.864150][T10464] should_failslab+0xc2/0x120 [ 465.864194][T10464] kmem_cache_alloc_noprof+0x83/0x770 [ 465.864229][T10464] ? __proc_create+0x2c8/0x8d0 [ 465.864275][T10464] ? __proc_create+0x2c8/0x8d0 [ 465.864308][T10464] __proc_create+0x2c8/0x8d0 [ 465.864345][T10464] ? __pfx___proc_create+0x10/0x10 [ 465.864400][T10464] proc_mkdir+0x81/0x170 [ 465.864439][T10464] ? __pfx_proc_mkdir+0x10/0x10 [ 465.864479][T10464] ? cache_register_net+0x137/0x5e0 [ 465.864517][T10464] cache_register_net+0x18f/0x5e0 [ 465.864551][T10464] gss_svc_init_net+0x151/0x660 [ 465.864601][T10464] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 465.864634][T10464] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 465.864678][T10464] ops_init+0x1e2/0x5f0 [ 465.864727][T10464] setup_net+0x11d/0x3a0 [ 465.864770][T10464] ? __pfx_setup_net+0x10/0x10 [ 465.864809][T10464] ? lockdep_init_map_type+0x5c/0x270 [ 465.864840][T10464] ? mutex_init_lockep+0x110/0x150 [ 465.864876][T10464] copy_net_ns+0x351/0x7c0 [ 465.864907][T10464] create_new_namespaces+0x3ea/0xab0 [ 465.864957][T10464] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 465.865001][T10464] ksys_unshare+0x45b/0xa40 [ 465.865028][T10464] ? __pfx_ksys_unshare+0x10/0x10 [ 465.865074][T10464] ? xfd_validate_state+0x61/0x180 [ 465.865113][T10464] __x64_sys_unshare+0x31/0x40 [ 465.865138][T10464] do_syscall_64+0xcd/0xf80 [ 465.865168][T10464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.865196][T10464] RIP: 0033:0x7feb5c38f7c9 [ 465.865219][T10464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.865248][T10464] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 465.865277][T10464] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 465.865297][T10464] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 465.865315][T10464] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 465.865333][T10464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 465.865349][T10464] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 465.865390][T10464] [ 467.868825][T10488] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 467.875583][T10488] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 467.882349][T10488] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 467.910603][T10488] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 467.999539][T10494] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1062'. [ 468.033319][T10494] netlink: 'syz.0.1062': attribute type 1 has an invalid length. [ 468.041626][T10494] netlink: 'syz.0.1062': attribute type 6 has an invalid length. [ 468.179611][T10501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 468.204097][T10502] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1063'. [ 468.208104][T10501] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 468.235072][T10502] veth0_macvtap: left promiscuous mode [ 468.292615][T10502] macvtap0: entered promiscuous mode [ 468.322441][T10502] macvtap0: entered allmulticast mode [ 469.287921][T10517] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1068'. [ 469.548110][T10521] zero sized request [ 469.809066][T10523] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 469.815442][T10523] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 469.822475][T10523] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 469.860519][T10523] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 470.392163][ T30] audit: type=1804 audit(4294967693.881:12): pid=10536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1075" name="/newroot/238/file0" dev="tmpfs" ino=1265 res=1 errno=0 [ 470.440292][ T30] audit: type=1804 audit(4294967693.921:13): pid=10542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1075" name="/newroot/238/file0" dev="tmpfs" ino=1265 res=1 errno=0 [ 470.700098][T10547] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 470.712735][T10547] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 470.729568][T10547] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 470.735824][T10547] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 470.879293][T10554] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 470.898233][T10554] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 471.683347][T10565] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1082'. [ 472.005785][T10568] __vm_enough_memory: pid: 10568, comm: syz.0.1083, bytes: 4398046511104 not enough memory for the allocation [ 472.459466][T10578] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 472.498718][T10578] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 472.542469][T10578] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 472.648920][T10578] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 472.924732][ T52] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 473.298018][ T52] Bluetooth: hci3: Unable to find connection for big 0xd2 [ 474.507720][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout [ 474.513839][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 474.588185][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 474.672639][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 477.627661][ T5149] Bluetooth: hci4: command 0xfc11 tx timeout [ 477.638725][ T52] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 478.670618][T10650] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 478.699460][T10650] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 478.748551][T10650] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 478.810378][T10652] FAULT_INJECTION: forcing a failure. [ 478.810378][T10652] name failslab, interval 1, probability 0, space 0, times 0 [ 478.852524][T10650] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 478.896163][T10650] page dumped because: unmovable page [ 478.918189][T10652] CPU: 0 UID: 0 PID: 10652 Comm: syz.2.1104 Tainted: G L syzkaller #0 PREEMPT(full) [ 478.918237][T10652] Tainted: [L]=SOFTLOCKUP [ 478.918248][T10652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 478.918264][T10652] Call Trace: [ 478.918274][T10652] [ 478.918285][T10652] dump_stack_lvl+0x16c/0x1f0 [ 478.918335][T10652] should_fail_ex+0x512/0x640 [ 478.918365][T10652] ? kmem_cache_alloc_noprof+0x62/0x770 [ 478.918405][T10652] should_failslab+0xc2/0x120 [ 478.918447][T10652] kmem_cache_alloc_noprof+0x83/0x770 [ 478.918481][T10652] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 478.918518][T10652] ? acpi_ut_create_generic_state+0x61/0xc0 [ 478.918558][T10652] ? acpi_ut_create_generic_state+0x61/0xc0 [ 478.918590][T10652] acpi_ut_create_generic_state+0x61/0xc0 [ 478.918624][T10652] acpi_ds_scope_stack_push+0x70/0x790 [ 478.918677][T10652] acpi_ds_init_aml_walk+0x2d8/0x680 [ 478.918720][T10652] acpi_ps_execute_method+0x39d/0xe90 [ 478.918772][T10652] acpi_ns_evaluate+0x98c/0x16d0 [ 478.918825][T10652] acpi_evaluate_object+0x4ca/0xdf0 [ 478.918857][T10652] ? ksys_read+0x12a/0x250 [ 478.918904][T10652] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 478.918942][T10652] ? __pfx___might_resched+0x10/0x10 [ 478.918986][T10652] acpi_evaluate_integer+0xdd/0x230 [ 478.919031][T10652] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 478.919094][T10652] ? __pfx_status_show+0x10/0x10 [ 478.919126][T10652] status_show+0xa0/0x120 [ 478.919158][T10652] ? __pfx_status_show+0x10/0x10 [ 478.919202][T10652] dev_attr_show+0x56/0xe0 [ 478.919243][T10652] ? __pfx_dev_attr_show+0x10/0x10 [ 478.919282][T10652] sysfs_kf_seq_show+0x216/0x3e0 [ 478.919322][T10652] seq_read_iter+0x50e/0x12d0 [ 478.919379][T10652] kernfs_fop_read_iter+0x46c/0x610 [ 478.919420][T10652] ? rw_verify_area+0xcf/0x6c0 [ 478.919457][T10652] vfs_read+0x8bf/0xcf0 [ 478.919502][T10652] ? __pfx_vfs_read+0x10/0x10 [ 478.919565][T10652] ksys_read+0x12a/0x250 [ 478.919601][T10652] ? __pfx_ksys_read+0x10/0x10 [ 478.919645][T10652] do_syscall_64+0xcd/0xf80 [ 478.919682][T10652] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.919709][T10652] RIP: 0033:0x7f2a2b58f7c9 [ 478.919731][T10652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.919757][T10652] RSP: 002b:00007f2a2c4bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 478.919782][T10652] RAX: ffffffffffffffda RBX: 00007f2a2b7e6090 RCX: 00007f2a2b58f7c9 [ 478.919799][T10652] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000006 [ 478.919814][T10652] RBP: 00007f2a2b613f91 R08: 0000000000000000 R09: 0000000000000000 [ 478.919830][T10652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 478.919846][T10652] R13: 00007f2a2b7e6128 R14: 00007f2a2b7e6090 R15: 00007ffd7e6fa6f8 [ 478.919884][T10652] [ 478.925970][T10652] ACPI Error: [ 478.927125][T10650] page_owner info is not present (never set?) [ 479.341830][T10652] ffff88802ba44000 walk still has a scope list (20250807/dswstate-694) [ 481.776050][T10695] zero sized request [ 481.920133][ T30] audit: type=1804 audit(4294967705.411:14): pid=10697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1122" name="/newroot/313/file0" dev="tmpfs" ino=1643 res=1 errno=0 [ 481.987804][ T30] audit: type=1804 audit(4294967705.411:15): pid=10700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1122" name="/newroot/313/file0" dev="tmpfs" ino=1643 res=1 errno=0 [ 483.517206][T10710] zswap: compressor not available [ 484.080624][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1119'. [ 484.105943][T10731] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1119'. [ 486.134007][T10747] Invalid ELF header magic: != ELF [ 486.254573][T10755] bridge0: port 2(dummy0) entered blocking state [ 486.282197][T10755] bridge0: port 2(dummy0) entered disabled state [ 486.297886][T10755] dummy0: entered allmulticast mode [ 486.308380][T10755] dummy0: entered promiscuous mode [ 486.313956][T10755] bridge0: port 2(dummy0) entered blocking state [ 486.320494][T10755] bridge0: port 2(dummy0) entered forwarding state [ 488.211789][ T30] audit: type=1800 audit(4294967711.701:16): pid=10788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1130" name="lu_gp_id" dev="configfs" ino=30708 res=0 errno=0 [ 489.877728][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 491.510430][T10804] random: crng reseeded on system resumption [ 495.318877][T10883] random: crng reseeded on system resumption [ 495.548938][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 499.380830][T10925] nvme_fabrics: unknown parameter or missing value '@' in ctrl creation request [ 501.365118][ T30] audit: type=1800 audit(4294967724.821:17): pid=10937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1165" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 502.915412][ T30] audit: type=1800 audit(4294967726.401:18): pid=10955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1159" name="lu_gp_id" dev="configfs" ino=31737 res=0 errno=0 [ 503.867814][ T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 506.570013][T10996] NFSD: Failed to start, no listeners configured. [ 506.758145][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.764566][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 508.694113][T11039] FAULT_INJECTION: forcing a failure. [ 508.694113][T11039] name failslab, interval 1, probability 0, space 0, times 0 [ 508.722382][T11039] CPU: 1 UID: 0 PID: 11039 Comm: syz.1.1172 Tainted: G L syzkaller #0 PREEMPT(full) [ 508.722423][T11039] Tainted: [L]=SOFTLOCKUP [ 508.722429][T11039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 508.722439][T11039] Call Trace: [ 508.722446][T11039] [ 508.722453][T11039] dump_stack_lvl+0x16c/0x1f0 [ 508.722485][T11039] should_fail_ex+0x512/0x640 [ 508.722505][T11039] ? fs_reclaim_acquire+0xae/0x150 [ 508.722533][T11039] should_failslab+0xc2/0x120 [ 508.722559][T11039] __kmalloc_cache_noprof+0x80/0x800 [ 508.722583][T11039] ? tomoyo_init_log+0x197/0x2140 [ 508.722605][T11039] ? format_decode+0x1a7/0xd00 [ 508.722630][T11039] ? tomoyo_init_log+0x197/0x2140 [ 508.722665][T11039] tomoyo_init_log+0x197/0x2140 [ 508.722702][T11039] ? tomoyo_realpath_from_path+0x19f/0x6e0 [ 508.722742][T11039] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 508.722795][T11039] ? __pfx_tomoyo_init_log+0x10/0x10 [ 508.722818][T11039] ? tomoyo_profile+0x47/0x60 [ 508.722843][T11039] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 508.722866][T11039] tomoyo_supervisor+0x302/0x13b0 [ 508.722885][T11039] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 508.722911][T11039] ? __pfx_vsnprintf+0x10/0x10 [ 508.722936][T11039] ? kasan_quarantine_put+0x10a/0x240 [ 508.722970][T11039] ? tomoyo_encode+0x31/0x50 [ 508.722999][T11039] tomoyo_path_number_perm+0x448/0x580 [ 508.723022][T11039] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 508.723064][T11039] ? find_held_lock+0x2b/0x80 [ 508.723085][T11039] ? hook_file_ioctl_common+0x144/0x410 [ 508.723111][T11039] ? __fget_files+0x20e/0x3c0 [ 508.723138][T11039] security_file_ioctl+0x9b/0x240 [ 508.723160][T11039] __x64_sys_ioctl+0xb7/0x210 [ 508.723181][T11039] do_syscall_64+0xcd/0xf80 [ 508.723198][T11039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.723216][T11039] RIP: 0033:0x7fba3a98f7c9 [ 508.723231][T11039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 508.723248][T11039] RSP: 002b:00007fba3b82d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 508.723265][T11039] RAX: ffffffffffffffda RBX: 00007fba3abe5fa0 RCX: 00007fba3a98f7c9 [ 508.723276][T11039] RDX: 0000000000000000 RSI: 0000000050009404 RDI: 0000000000000005 [ 508.723286][T11039] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 508.723296][T11039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.723305][T11039] R13: 00007fba3abe6038 R14: 00007fba3abe5fa0 R15: 00007ffe162bc458 [ 508.723336][T11039] [ 510.297382][T11049] FAULT_INJECTION: forcing a failure. [ 510.297382][T11049] name failslab, interval 1, probability 0, space 0, times 0 [ 510.310396][T11049] CPU: 0 UID: 0 PID: 11049 Comm: syz.3.1176 Tainted: G L syzkaller #0 PREEMPT(full) [ 510.310442][T11049] Tainted: [L]=SOFTLOCKUP [ 510.310452][T11049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 510.310467][T11049] Call Trace: [ 510.310477][T11049] [ 510.310487][T11049] dump_stack_lvl+0x16c/0x1f0 [ 510.310535][T11049] should_fail_ex+0x512/0x640 [ 510.310564][T11049] ? __kmalloc_noprof+0xca/0x910 [ 510.310598][T11049] should_failslab+0xc2/0x120 [ 510.310646][T11049] __kmalloc_noprof+0xeb/0x910 [ 510.310675][T11049] ? snd_pcm_plugin_build+0x64/0x650 [ 510.310713][T11049] ? snd_pcm_plugin_build+0x64/0x650 [ 510.310742][T11049] ? snd_pcm_plugin_build+0x4b7/0x650 [ 510.310770][T11049] snd_pcm_plugin_build+0x64/0x650 [ 510.310806][T11049] snd_pcm_plugin_build_rate+0x27c/0x760 [ 510.310844][T11049] ? __pfx_snd_pcm_plugin_build_rate+0x10/0x10 [ 510.310883][T11049] ? snd_pcm_hw_params+0xcd/0x1ba0 [ 510.310919][T11049] snd_pcm_plug_format_plugins+0x860/0x1430 [ 510.310954][T11049] ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10 [ 510.310990][T11049] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 510.311032][T11049] snd_pcm_oss_change_params_locked+0x2e38/0x3ad0 [ 510.311078][T11049] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 510.311106][T11049] ? __pfx___mutex_lock+0x10/0x10 [ 510.311131][T11049] ? snd_pcm_oss_ioctl+0x110e/0x37f0 [ 510.311187][T11049] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 510.311223][T11049] snd_pcm_oss_ioctl+0x2212/0x37f0 [ 510.311254][T11049] ? hook_file_ioctl_common+0x144/0x410 [ 510.311288][T11049] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 510.311342][T11049] ? __fget_files+0x20e/0x3c0 [ 510.311382][T11049] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 510.311415][T11049] __x64_sys_ioctl+0x18e/0x210 [ 510.311453][T11049] do_syscall_64+0xcd/0xf80 [ 510.311482][T11049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.311509][T11049] RIP: 0033:0x7feb5c38f7c9 [ 510.311532][T11049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 510.311559][T11049] RSP: 002b:00007feb5d2ae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 510.311587][T11049] RAX: ffffffffffffffda RBX: 00007feb5c5e5fa0 RCX: 00007feb5c38f7c9 [ 510.311613][T11049] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000006 [ 510.311629][T11049] RBP: 00007feb5c413f91 R08: 0000000000000000 R09: 0000000000000000 [ 510.311645][T11049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 510.311661][T11049] R13: 00007feb5c5e6038 R14: 00007feb5c5e5fa0 R15: 00007ffc3ba3c488 [ 510.311702][T11049] [ 510.589666][ T5149] Bluetooth: hci4: command 0x1003 tx timeout [ 510.596383][ T52] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 512.864668][T11064] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1181'. [ 514.412601][T11086] Invalid ELF header magic: != ELF [ 515.680714][T11100] ------------[ cut here ]------------ [ 515.686786][T11100] WARNING: kernel/trace/ring_buffer.c:7363 at ring_buffer_map_get_reader+0x689/0x8d0, CPU#1: syz.1.1186/11100 [ 515.698510][T11100] Modules linked in: [ 515.702803][T11100] CPU: 1 UID: 0 PID: 11100 Comm: syz.1.1186 Tainted: G L syzkaller #0 PREEMPT(full) [ 515.713785][T11100] Tainted: [L]=SOFTLOCKUP [ 515.718144][T11100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 515.728226][T11100] RIP: 0010:ring_buffer_map_get_reader+0x689/0x8d0 [ 515.734769][T11100] Code: 02 00 00 49 8b 0c 24 8b 74 24 44 4c 89 ea 48 c7 c7 00 6c 93 8b e8 a7 5c d9 ff e9 e6 fe ff ff 4c 8b 64 24 60 e8 f8 b3 fb ff 90 <0f> 0b 90 e8 ef b3 fb ff 48 89 df 31 db e8 c5 f9 fd ff 48 8b 74 24 [ 515.754495][T11100] RSP: 0018:ffffc900044ffdb0 EFLAGS: 00010087 [ 515.760602][T11100] RAX: 000000000000079c RBX: ffff88813ff68800 RCX: ffffc9000fd14000 [ 515.768640][T11100] RDX: 0000000000080000 RSI: ffffffff81c2aa88 RDI: 0000000000000007 [ 515.776659][T11100] RBP: dffffc0000000000 R08: 0000000000000007 R09: 0000000000000000 [ 515.784642][T11100] R10: 0000000000000000 R11: ffff88813ff688b0 R12: ffff88813ff68990 [ 515.792630][T11100] R13: 0000000000000000 R14: ffff88813ff688a8 R15: ffff88813ff688b0 [ 515.800626][T11100] FS: 00007fba3b7eb6c0(0000) GS:ffff8881249f6000(0000) knlGS:0000000000000000 [ 515.809575][T11100] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 515.816191][T11100] CR2: 0000001b310dbff8 CR3: 000000005b614000 CR4: 00000000003526f0 [ 515.824196][T11100] Call Trace: [ 515.827495][T11100] [ 515.830464][T11100] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 515.836754][T11100] ? __fget_files+0x20e/0x3c0 [ 515.841475][T11100] tracing_buffers_ioctl+0x2ab/0x360 [ 515.846779][T11100] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 515.852615][T11100] __x64_sys_ioctl+0x18e/0x210 [ 515.857420][T11100] do_syscall_64+0xcd/0xf80 [ 515.861947][T11100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 515.867867][T11100] RIP: 0033:0x7fba3a98f7c9 [ 515.872326][T11100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 515.891976][T11100] RSP: 002b:00007fba3b7eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 515.900427][T11100] RAX: ffffffffffffffda RBX: 00007fba3abe6180 RCX: 00007fba3a98f7c9 [ 515.908426][T11100] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000005 [ 515.916415][T11100] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 515.924405][T11100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 515.932389][T11100] R13: 00007fba3abe6218 R14: 00007fba3abe6180 R15: 00007ffe162bc458 [ 515.940396][T11100] [ 515.943424][T11100] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 515.950715][T11100] CPU: 1 UID: 0 PID: 11100 Comm: syz.1.1186 Tainted: G L syzkaller #0 PREEMPT(full) [ 515.961673][T11100] Tainted: [L]=SOFTLOCKUP [ 515.966003][T11100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 515.976066][T11100] Call Trace: [ 515.979463][T11100] [ 515.982405][T11100] dump_stack_lvl+0x3d/0x1f0 [ 515.987031][T11100] vpanic+0x640/0x6f0 [ 515.991026][T11100] ? ring_buffer_map_get_reader+0x689/0x8d0 [ 515.996952][T11100] panic+0xca/0xd0 [ 516.000690][T11100] ? __pfx_panic+0x10/0x10 [ 516.005142][T11100] check_panic_on_warn+0xab/0xb0 [ 516.010098][T11100] __warn+0x108/0x3c0 [ 516.014097][T11100] __report_bug+0x2a0/0x520 [ 516.018620][T11100] ? ring_buffer_map_get_reader+0x689/0x8d0 [ 516.024538][T11100] ? __pfx___report_bug+0x10/0x10 [ 516.029587][T11100] ? save_trace+0x4e/0x380 [ 516.034027][T11100] ? add_lock_to_list+0x9d/0x130 [ 516.038991][T11100] ? rb_set_head_page+0x1e6/0x2f0 [ 516.044031][T11100] ? ring_buffer_map_get_reader+0x689/0x8d0 [ 516.049947][T11100] report_bug+0xb2/0x220 [ 516.054212][T11100] ? ring_buffer_map_get_reader+0x689/0x8d0 [ 516.060143][T11100] handle_bug+0x127/0x260 [ 516.064513][T11100] exc_invalid_op+0x17/0x50 [ 516.069033][T11100] asm_exc_invalid_op+0x1a/0x20 [ 516.073895][T11100] RIP: 0010:ring_buffer_map_get_reader+0x689/0x8d0 [ 516.080420][T11100] Code: 02 00 00 49 8b 0c 24 8b 74 24 44 4c 89 ea 48 c7 c7 00 6c 93 8b e8 a7 5c d9 ff e9 e6 fe ff ff 4c 8b 64 24 60 e8 f8 b3 fb ff 90 <0f> 0b 90 e8 ef b3 fb ff 48 89 df 31 db e8 c5 f9 fd ff 48 8b 74 24 [ 516.100053][T11100] RSP: 0018:ffffc900044ffdb0 EFLAGS: 00010087 [ 516.106135][T11100] RAX: 000000000000079c RBX: ffff88813ff68800 RCX: ffffc9000fd14000 [ 516.114209][T11100] RDX: 0000000000080000 RSI: ffffffff81c2aa88 RDI: 0000000000000007 [ 516.122277][T11100] RBP: dffffc0000000000 R08: 0000000000000007 R09: 0000000000000000 [ 516.130430][T11100] R10: 0000000000000000 R11: ffff88813ff688b0 R12: ffff88813ff68990 [ 516.138422][T11100] R13: 0000000000000000 R14: ffff88813ff688a8 R15: ffff88813ff688b0 [ 516.146415][T11100] ? ring_buffer_map_get_reader+0x688/0x8d0 [ 516.152389][T11100] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 516.158662][T11100] ? __fget_files+0x20e/0x3c0 [ 516.163406][T11100] tracing_buffers_ioctl+0x2ab/0x360 [ 516.168704][T11100] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 516.174524][T11100] __x64_sys_ioctl+0x18e/0x210 [ 516.179318][T11100] do_syscall_64+0xcd/0xf80 [ 516.183850][T11100] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 516.189940][T11100] RIP: 0033:0x7fba3a98f7c9 [ 516.194389][T11100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 516.214114][T11100] RSP: 002b:00007fba3b7eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 516.222556][T11100] RAX: ffffffffffffffda RBX: 00007fba3abe6180 RCX: 00007fba3a98f7c9 [ 516.230553][T11100] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000005 [ 516.238547][T11100] RBP: 00007fba3aa13f91 R08: 0000000000000000 R09: 0000000000000000 [ 516.246632][T11100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 516.254624][T11100] R13: 00007fba3abe6218 R14: 00007fba3abe6180 R15: 00007ffe162bc458 [ 516.262642][T11100] [ 516.266033][T11100] Kernel Offset: disabled [ 516.270380][T11100] Rebooting in 86400 seconds..