last executing test programs: 12.795070294s ago: executing program 0 (id=964): openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/trace_marker\x00', 0x43, 0x0) memfd_secret$auto(0x0) setsockopt$auto_SO_RCVBUFFORCE(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000180)='&+#\x00', 0x4) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ppoll$auto(&(0x7f0000000040)={r0, 0x6, 0x101}, 0x9, &(0x7f0000000080)={0x3, 0x5}, &(0x7f00000001c0)={0x3}, 0x8) fstatfs$auto(r1, &(0x7f0000000380)={0xa38e, 0x38, 0x4, 0x8, 0x9, 0x0, 0x80000000, {[0x3, 0xd]}, 0xfffffffffffffffd, 0xff, 0x4, [0x1, 0x0, 0x465, 0x3]}) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) futex_waitv$auto(&(0x7f0000000300)={0x0, 0x4, 0x2}, 0x1, 0x0, &(0x7f0000000340)={0x225c17d03, 0x800006}, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) socket(0x2b, 0x1, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mlock$auto(0x112, 0x80006) mlockall$auto(0x800000000000005) madvise$auto(0x0, 0x200007, 0x19) 12.794157336s ago: executing program 3 (id=966): socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0xa, 0x106) pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x06\x01e\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14N\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xd4f, 0x3) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x200000001000000, 0xfffff7fffffffff7, 0x3ee) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xe4, 0x9b72, 0x2, 0x400) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2) mprotect$auto(0x0, 0x806121, 0x6) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) r0 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r0, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x100, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x123901, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) 10.519929622s ago: executing program 2 (id=970): mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000) madvise$auto(0x0, 0x200007, 0x8) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) mmap$auto(0x0, 0x1, 0xfd5, 0x12, r2, 0x0) ioctl$auto_v4l2_fops_v4l2_dev(r2, 0x5, &(0x7f0000000340)="40dc60009b5d008a4725fa4009e8d1e33a66f1dc492da0b120cbf11cebdb0ba0a2b2a99f00379b48b690facff4d24c28d3f90bf880e8233a827dfee73b46816a1f3386d1668b7f2306") bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a) r3 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000440), 0x20201, 0x0) writev$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000), 0x7}, 0x7) ioctl$auto_I2C_RDWR(r3, 0x707, &(0x7f0000000180)) ioctl$auto(0xc8, 0x800454d4, 0xffffffffffffffff) shmctl$auto(0x5, 0x0, &(0x7f0000000180)={{0x858, 0xffffffffffffffff, 0xee00, 0x3, 0x6, 0x7, 0x1}, 0x9, 0x3, 0xffffffffffffffc6, 0xd, @inferred, @raw=0x8, 0x5, 0x0, &(0x7f0000000000)="e18e2577c6734905ae76b5536cd25a1d7201c3b058e3b82aaabefa7dc488f0f2b69ebabdecf2f773276d654888e5fd8ad6fb6458368faa8e789c1aefa8ded855e85ee2f5670350b1588646a971", &(0x7f0000000080)="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"}) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f0000000200)=@enable_stats={0xfffffffd}, 0xfffffffe) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) mmap$auto(0x0, 0x803, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r5, 0xfff7, 0x9816}, 0x7f, 0x9) r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r8, 0x0, 0x20) writev$auto(r7, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x0) timer_settime$auto(0x0, 0x801, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0) timer_delete$auto(0x0) r9 = socket(0x21, 0x2, 0x2) setsockopt$auto(r9, 0x1000000110, 0x0, 0xffffffffffffffff, 0x3) ioprio_set$auto(0x6, r4, 0x2) 10.519784563s ago: executing program 3 (id=971): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/nfs/net/nfs_client/identifier\x00', 0x82942, 0x0) alarm$auto(0xe4a) r0 = ioctl$auto_TUNGETIFF2(0xffffffffffffffff, 0x800454d2, &(0x7f0000000000)=0x1ff) mmap$auto(0x0, 0x1, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x200000000008000) setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0) mbind$auto(0x7, 0x100000004, 0xfffffffd, 0x0, 0xa, 0x2) getitimer$auto_ITIMER_PROF(0x2, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x2400, 0x0) unshare$auto(0x40000080) socket(0x23, 0x800, 0xfffff000) bpf$auto(0x34, &(0x7f00000002c0)=@bpf_attr_11={0x4, 0x3fd, 0x0, 0x1006af, 0x8000, 0x1ff, 0xa, r0}, 0x7) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) setsockopt$auto(r1, 0x6, 0x1f, 0x0, 0x3a) sendmsg$auto_NETDEV_CMD_BIND_RX(r1, 0x0, 0x24008000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x2, 0x0, 0x1, 0x1) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACETEARDOWN(r3, 0x1276, 0x0) ioctl$auto_BLKTRACETEARDOWN(r3, 0x1276, 0x0) madvise$auto(0x0, 0x240007, 0x19) madvise$auto(0x0, 0xffffffffffff0005, 0x19) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) 9.453133988s ago: executing program 0 (id=972): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000004c0)={0x0}, 0x1, 0x0, 0x0, 0x24044085}, 0x0) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000002b00)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x20900, 0x0) openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000180), 0x200, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x20004, 0x20d3e, 0x1, 0x6, 0x100000003, 0x800295f4da0d, 0x5, 0x3, 0x62, 0x80000001, 0x50a7, 0xc2, 0x6, 0xfffffffffffffff8, 0x3]}, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x61, 0x10001, 0xfa31, 0x400, 0x8000) mremap$auto(0x0, 0x1, 0x3fd6, 0x0, 0x28) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) mremap$auto(0x2, 0x600, 0x6, 0xecc8, 0x3) r2 = socket(0x2, 0x2, 0x1) connect$auto(r2, 0x0, 0x55) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2800, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon32\x00', 0x80440, 0x0) ioctl$auto_MON_IOCX_GET(r3, 0x40189206, 0x0) ioctl$auto_MON_IOCQ_RING_SIZE(r3, 0x9205, 0x0) close_range$auto(0x2, 0x8, 0x0) 9.031388286s ago: executing program 1 (id=973): socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad}) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x2, 0x8, 0x0) shmget$auto(0x8, 0x10565, 0x7ff) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) sync_file_range$auto(r0, 0xfffffffffffffe95, 0x9, 0x9) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x80100, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2) ptrace$auto(0x30, r1, 0x4, 0x7ff) prctl$auto(0x1, 0x1, r1, 0x8, 0xffffffffffffff4e) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto_SO_DEBUG(r2, 0x6, 0x1, 0x0, 0xda3) sendmsg$auto_NL802154_CMD_SET_ACKREQ_DEFAULT(r2, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000004c0)={0x0}}, 0x6e947269ec182c07) ioctl$auto_BLKTRACESETUP32(0xffffffffffffffff, 0xc0401273, &(0x7f0000000200)={"31e6ab74dc10bd4021e429e869018611815dffff2b4f4265d1263e2076464a94", 0x3f9, 0x3c, 0x5, 0x16000000, 0x6, r1}) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0xfffffffb) 9.010524784s ago: executing program 2 (id=974): unshare$auto(0x2) io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x8000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x88, 0x1, 0x80000000, 0x10000100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x10000052, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}}) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x8e1775a98c704b81, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) r3 = prctl$auto_PR_SCHED_CORE_GET(0x476, 0x0, 0x0, 0x5, 0x7) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r4, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000600)='/dev/snd/controlC1\x00', 0x82200, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r5, 0xc4c85512, &(0x7f00000006c0)={{@raw=0x9, 0x2, 0x2, 0x1, "162629e6b2259bee9878f8e7b039aa20b33e487d34917b4a9acce903cb72dd4cd8dde6d41c914d63af7a9de9"}, 0x0, @integer=@value=[0x400000000006, 0x12d800000000000, 0x179, 0xfffffffffffff8ad, 0x5, 0x7, 0x4, 0x8, 0x80000000004, 0x7, 0x15b61f2, 0x7, 0x100000001, 0x3, 0x9, 0x5, 0x7f, 0x9f, 0x8, 0x9, 0xb1, 0x0, 0x3, 0x8, 0xffffffff, 0x10001, 0x1, 0x80000000, 0x8000, 0x9, 0x0, 0x80000000, 0xf, 0xfffffffffffffffe, 0x4, 0x1, 0x3, 0x0, 0x800, 0x3638, 0x3, 0x4f3, 0xc, 0x4, 0x7, 0x0, 0xe4, 0x5, 0x6, 0x81, 0x401, 0x400000000084, 0xa, 0xfffffffbfffffffd, 0x6, 0x800, 0xfffffffffffffffd, 0x7, 0x101, 0x82, 0xc9d, 0x3fe, 0x9, 0x8, 0x640c, 0x3, 0x1000, 0x6, 0x201, 0x0, 0xec31, 0x9, 0x1fd, 0x0, 0xfff0000000000000, 0x4, 0xbd2a, 0x903, 0x80007, 0x7fffffffffffffff, 0x5, 0x1, 0xfffffffffffffffe, 0x0, 0x7eda8566, 0x800000007, 0x8000000000000001, 0x9, 0x401, 0xfffffffffffffff7, 0x9, 0x14000000000000, 0x6, 0xfffffffffffffffe, 0x0, 0x1, 0x8008000000000001, 0x5, 0x1ff, 0xf057, 0x40, 0x5, 0x7, 0x2, 0x8, 0x8, 0x1f, 0x8001, 0xc13, 0x6, 0xbf6, 0x2, 0xff, 0x7, 0xf, 0xe0, 0x3, 0x5, 0x3, 0x80000000, 0x6, 0x2, 0x1, 0xa, 0x5, 0x2, 0x100, 0xffff], "54a5f1d1dd2f17b169e8263c3a740d6611142f4b3c69d0f6e967c91125d235ac53e1b00d9fddc53d8f56969329274a57d5f4213fb46616a4faa700873d91426befc561500a5391d522c480bd37f8e7f0050cedfc627c6702978a8f018ad9a7b04711dc3a5c6a755e7a506645ea28e2baa4a6786ca43b3d5d976157eb07c3cdb8"}) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x668381, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, 0x0) shmctl$auto_SHM_STAT(0x15f, 0xd, &(0x7f0000000140)={{0x10001, 0x0, 0x0, 0xc, 0x3, 0x3, 0x6}, 0x5, 0x9, 0x1, 0xa, @raw=0x4, @inferred, 0x0, 0x0, &(0x7f0000000000)="a92cc5b95cbadeeec0c80a78f129b552aff38f501076b376c850e3181d7ab078b9c2a74d949545259b5a23079c5ddb423ec48eaac2ce48768e1e", &(0x7f00000001c0)="899f6eff"}) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) setregid$auto(r6, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x12000000000, 0x9e, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8002) write$auto(r3, &(0x7f0000000080)='$$\x00', 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) timer_create$auto(0x9, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) 7.511029051s ago: executing program 3 (id=975): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x2, 0x0) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x8800, 0x0) ioctl$auto_BTRFS_IOC_DEVICES_READY(r1, 0x90009427, 0x0) read$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x80000000008000) write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fallocate$auto(0xffffffffffffffff, 0x1, 0x8000000000000000, 0xfffffffffffffffa) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x103742, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r3, r3, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x1) 7.510888824s ago: executing program 0 (id=976): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x29, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmsg$auto_NL80211_CMD_DEL_MPATH(r0, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400c2c2", @ANYRES16=0x0, @ANYBLOB="000129bd7000fddbdf2518000000"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) ioctl$auto(r0, 0x8922, 0x24) socket(0x1d, 0x2, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, 0x0, 0x55) r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) pread64$auto(r2, 0x0, 0x0, 0x9) read$auto_mon_fops_text_t_mon_text(r2, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x0, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), 0xffffffffffffffff) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x1dfbdb30) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/2t\x00', 0xb00, 0x0) r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) lseek$auto(r4, 0x5, 0x0) getdents$auto(r4, &(0x7f00000004c0)={0x600, 0x7fffffffffffffff, 0x4}, 0x62d4) r5 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x646502, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x100242, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram14\x00', 0x44ee02, 0x0) fsconfig$auto_HIDEPID_NO_ACCESS(r5, 0x6, &(0x7f0000000280)='/dev/snd/midiC2D0\x00', &(0x7f00000002c0)="e74d92f191b485eaf56ee335d933ef7cbd3dbf36456cd078243f1b6e5160a9031e1c8af79af3cbea78a1ff5ba6afae2a91b9d2df1482c6432d26fb20f6ec7137643c7ffdfa3a94019487165a574501a05f40ac9d574a1b8f9d67febe6f6913071e923fbaa138e157790feedaf9c0e90db128174544136ea20dc18d2f1bba543dafdaa7cd7ac8d94f7427870702d4654f3002c9d38a015f34edd563d6f16fde3ef35831ac801174487a", 0x1) 6.84331983s ago: executing program 1 (id=977): r0 = openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x202, 0x0) readv$auto(r0, &(0x7f00000000c0)={&(0x7f0000000000)="7fdf050d89c0575355055578d7ef6ca46bbfa0cd1e1fd71ce052ebde96b8b46168ec83bdcbf584deaef0445cc7830cca8d5793c1219981f7f6c25ecbad916851c9aa52c3d2306d79a36405dc4edaafc3b8ea464d8d6889cc2cf75f2f4d0f6b50878dc0e7a8676c3ce52d1413ecdfdc70b6536cce328d83a7bdbd0b404a75862871fb40c41082221d75c5165f66d4550969f4650cd8b4a433ec606c8111bae04ef2619a0ef3138cda7b1289c38f", 0x6}, 0x2) socket(0xa, 0x3, 0x3a) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mmap$auto(0x0, 0x400005, 0x100000df, 0x9b72, 0x2, 0x8000) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x10000, 0x7, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x200000001000000, 0xfffff7fffffffff7, 0x3ee) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xe4, 0x9b72, 0x2, 0x400) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2) mprotect$auto(0x0, 0x806121, 0x6) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) r1 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r1, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x100, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) 6.459010443s ago: executing program 2 (id=978): mmap$auto(0x0, 0x9, 0x3, 0x800019b72, 0x9, 0x8000000000008000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) mincore$auto(0x0, 0x10000, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_NEW_MPATH(r1, 0x0, 0x20080055) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x942, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0xbc3, 0x800, 0x3, 0x8, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x6, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socketpair$auto(0x1, 0x6, 0x8000000000000000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3) sendmsg$auto_IEEE802154_SCAN_REQ(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x54, 0x0, 0x10, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x7}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x77d}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x6}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, 0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x9}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0xf}]}, 0x54}}, 0x40844) 5.234694586s ago: executing program 1 (id=979): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) mmap$auto(0x0, 0x28009, 0x4000000000df, 0xeb2, 0x401, 0x8000) r0 = io_uring_setup$auto(0x1, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xa) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = socket(0x2, 0x1, 0x106) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) unshare$auto(0x40000080) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/geneve0/disable_policy\x00', 0x40180, 0x0) close_range$auto(r2, 0xffffffffffffffff, 0x8) semctl$auto(0xa, 0x2, 0x13, 0xde) r3 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0) write$auto(r2, 0x0, 0x5) r4 = socket(0x11, 0xa, 0x9) bind$auto(r4, &(0x7f0000000140)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x38}}, 0x9) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) sendmsg$auto_OVS_FLOW_CMD_SET(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64=r0, @ANYRES64=r5, @ANYRES32=r3, @ANYRES8=r0], 0x24}, 0x1, 0x0, 0x0, 0x90}, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_generic(0xffffffffffffff9c, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007) ioprio_set$auto(0x2, 0x800000000, 0x8) ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, 0x0) 5.233966879s ago: executing program 2 (id=980): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) r0 = openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci1/force_wakeup\x00', 0x101200, 0x0) read$auto_force_wakeup_fops_hci_vhci(r0, 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/enabled\x00', 0x501, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000200)="34ae", 0x2) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60142, 0x130) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x101101, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio0\x00', 0x1600, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-subdev0\x00', 0x0, 0x0) openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/admmidi2\x00', 0x400000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(0x3, 0x0, 0x7fffffff) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) unshare$auto(0x40000080) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.3/usb4/busnum\x00', 0x0, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) 5.233866338s ago: executing program 3 (id=981): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x5, 0x4, 0x7) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x42800, 0x0) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x200, 0x0) read$auto_proc_mem_operations_base(r0, &(0x7f0000000200)=""/81, 0x51) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x5, 0x0) r1 = io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x80) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) io_uring_enter$auto(r1, 0x7, 0x7ffffffb, 0x3, 0x0, 0x3) move_pages$auto(0x0, 0xa, 0x0, 0x0, 0x0, 0x2) writev$auto(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040), 0xfff}, 0x3) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0) write$auto(r2, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) io_setup$auto(0xe, &(0x7f0000000080)) 5.149903083s ago: executing program 0 (id=982): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) getdents64$auto(0xffffffffffffffff, &(0x7f0000001b00)={0x5, 0x2, 0x5, 0x10}, 0x1) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) unshare$auto(0x40000080) write$auto(0xca, 0x0, 0x7f) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101840, 0x0) ioctl$auto(r0, 0x5427, 0xffffffffffffffff) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x282, 0x0) read$auto_event_trigger_fops_trace(r1, 0x0, 0x0) socket(0x18, 0xa, 0x1) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd5, 0x948b, 0x3, 0x15f4da0a, 0x4, 0x3, 0x62, 0x80000002, 0x7, 0x1, 0x9, 0x3, 0xfffffffffefffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd40, 0x1, 0x948f, 0x5, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0xa, 0x8, 0x6]}, 0x0) 2.637388038s ago: executing program 3 (id=983): unshare$auto(0x40000080) r0 = socket(0xa, 0x5, 0x0) mmap$auto(0x4, 0xa020009, 0x3, 0xeb1, r0, 0x7ffe) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x802, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000640)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\xff\x7f\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc:\xfa\x01\xd1\xa3\xb5\xc2B\xa5\xac:woR^a\xb9}\xe7\xbd\xe1\xf77.\xa3\xd8\xc2T\x95\x13\x91\xb6p\xf3\xb2w\xe6\xd7\x94DW\x97\x90a\xe6c\xfb\x88x\xd5L\xa9\xe4\x82\x04\xb1\x8b\r\xcaP\\\x1aVP\xc9\xa4`\xfd\v\x94\f\xc1\x0fQ\xc9\xdcL\x03\x9c\xbfk\xa6\xb1\xb0\xa1\xeeJ\xd8\xef\xc8t\x9d\x1e=J\x91W\xc6AuJ\xb9Q\xed\xd1\a\x05\x9d\x85\xb7b#r\xcd\xaf\xb7\x9f\xf7\xd2\xae\x0f\x98\xa9&\xb6~\xd4\xbd\xbbr\xb9\xc3\xacH!\xc1\x90K2\x05K@\xee\xac\xe8\xc7\t\xab\xbf\xa3\xedb\xd7\xb5\xd7\x83&\x95\xb2?\x0e\x85\xaaIGu\xd6$\xeb\xb6\xdd\a\x121\a\xac\x1bx#\x87\xa9\x10\x9b\xf8YD\x04ZL\xca\x99]\x8f[\x90[\xa8\xbf\x98\xa6\xe50(zC\xe84*w\x13\x96\xd5\xd0\x877\x12\xbc\xa1\xd0h@|\xf9\xfa\x9b\x17\x94\xb9\xe7\xf3\x15\x05\x91\xe8\x98p\x7f:\xd7s\xd9wo\x82\xda\xec\x91\xb7\xd9;H\x8a\b\x00\x00\x00\x00\x00\x00\x00\x8aZ\x94\x14$X7\xaeW6=^I\x9fQ\r5c\x81\xca]\x97m\x89o\x8f\xd8}P>I\xd0\xb3\x88C\xd7', 0x100000a3d9) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) close_range$auto(0x2, r2, 0x401) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r3 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x80000, 0x0) poll$auto(&(0x7f0000000180)={r3, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x0) r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) ioctl$auto_UBI_IOCDET(r5, 0x40046f41, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f00000000c0)=0x52a6, &(0x7f0000000140)=0x2) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0x4004af07, &(0x7f00000003c0)) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) unshare$auto(0x2) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0) splice$auto(r6, &(0x7f0000000040)=0x7, r5, &(0x7f0000000080)=0x4, 0x26c4, 0x895) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0xfdd5, 0xd, 0x378, 0x9) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) 2.636377719s ago: executing program 1 (id=991): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x3, 0x4) socket(0x10, 0x3, 0x6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20000081) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/pagemap\x00', 0x80800, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={&(0x7f0000000000), 0x55}, 0x6, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3) socket(0x2, 0x80802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x103280, 0x0) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) io_uring_setup$auto(0x14f, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) 2.277179581s ago: executing program 2 (id=984): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0_to_team\x00'}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) ioctl$auto(r0, 0x2, r0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, &(0x7f0000000100)=0xa) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) mmap$auto(0x9, 0x280009, 0x7, 0x8000000008011, r2, 0x4) preadv2$auto(r1, &(0x7f0000000280)={0x0, 0x8000001f}, 0x6, 0x3, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000540)={0xfff, &(0x7f0000000180)="f2e37aa851f172bd24308737938225756749a2cd058f981d81224e731c1514b4fd0290f2fb02e666a68c1d72ad5615b16c73b5c0cedf17801dfece4a243f6e3a47ecc1c5db92b3500cefe0e7c269c25cd32701679442d287388dedeedd83d20b9d079d0a971a993bfa4a4499f8631caa1722a7a93bf39c2535ea752a9b05e21efeebdeaa71269153bdd6ba4fac9b230a6653e8cbaf66e11ea7c105"}) rseq$auto(&(0x7f0000000580)={0x5, 0x8, 0x9416, 0x2000004, 0xe, 0x6, "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"}, 0x80000002, 0x8, 0x400fd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0xffffffffffffffff, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0) open(&(0x7f0000000000)='./file1\x00', 0x151341, 0x112) rt_sigsuspend$auto(0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event0\x00', 0x40, 0x0) ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105}) socket(0x9, 0x2, 0x7) ioctl$auto(0x3, 0x80004509, 0x10000000000402) ioctl$auto(0x3, 0x800005411, 0x38) mbind$auto(0xfffffffffffff9a1, 0x800605, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0xa) futex_wake$auto(0x0, 0x1, 0x2, 0xa) 1.553315838s ago: executing program 0 (id=985): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0xfc000000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x2, 0x42000000) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) waitid$auto_P_PID(0x1, 0x0, 0x0, 0x0, &(0x7f0000000240)={{0x2, 0x34}, {0x9c, 0x3}, 0x779c, 0x3ff, 0x2, 0x0, 0x8, 0x8a, 0x3, 0x1, 0x100, 0x6, 0x5, 0x47, 0x80000000, 0x40000}) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0xff) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) setgroups$auto(0xe32, 0x0) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0xffffffffffffffff, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) 1.348225391s ago: executing program 1 (id=986): sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x2) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xc0}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0) ioctl$auto_KVM_GET_SUPPORTED_CPUID(r2, 0xc008ae05, &(0x7f0000000280)={0x85, 0x0, [{0xf, 0xffffffff, 0xa73, 0x6, 0xd, 0x7fff, 0x3}, {0xfffeffff, 0x6, 0x9, 0x2, 0x2, 0x4, 0x6}, {0xe, 0x5, 0x9, 0x8, 0x6, 0x1, 0x401}, {0xe, 0x3ff, 0x0, 0x1, 0x7b64, 0x8c53, 0x4}, {0x13, 0xb, 0x0, 0x4, 0x3f, 0x5, 0x7fff}]}) ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000000)=0xfffffff8) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000005840), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x60042, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0005, 0x19) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r3 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) close_range$auto(r0, 0x8, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) brk$auto(0x40008000) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'ip6tnl0\x00'}) 1.046590556s ago: executing program 2 (id=987): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0xfffffffffffffffe, 0x10004, 0x9, 0x7ffffbffffffffff, 0x401, 0x300000000000) timer_gettime$auto(0x0, &(0x7f0000001f80)={{0x9, 0x100000001}, {0x9f9a, 0x401}}) sched_setattr$auto(0x0, 0x0, 0x7b) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) madvise$auto(0x0, 0xffffffffffff0005, 0x19) statmount$auto(0x0, &(0x7f0000000180)={0x7, 0x1, 0x9, 0x7, 0x5, 0x6, 0x8, 0x4, 0x3, 0x9, 0x9, 0xffff, 0x4, 0x200000000001, 0xb6, 0xb, 0x9, 0x7, 0x7, 0x10001000000, 0x0, 0x3, 0x22000, 0x203, 0x9, 0x84, 0x0, 0x4, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x7fffffff, 0x80, 0x7, 0x6, 0x200, 0x8, 0x8, 0x3, 0x0, 0x20000000005, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x800000000000000, 0x90600000, 0x12a7, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x2, 0x2, 0x72ddf787, 0x0, 0x7, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, 0x0, 0x0, 0xffffffffffffffff]}, 0x81, 0x968c) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1441, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xffff6888, 0x0, 0x0, 0xfffffffffffffffd, 0x4ea, 0x1, 0x6, 0x0, 0x1, 0x0, 0x962, {0x2000100000000, 0x10000}, 0x5, 0x6, 0xffffffffffeffffb, 0x6, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0x20000a747, 0xdeb1, 0x804}) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/stat\x00', 0x2, 0x0) write$auto_tomoyo_operations_securityfs_if(r3, 0x0, 0x0) fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x9, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x408) close_range$auto(0x2, 0x8, 0x0) 162.090019ms ago: executing program 1 (id=988): r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x2, 0x0) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x8800, 0x0) ioctl$auto_BTRFS_IOC_DEVICES_READY(r1, 0x90009427, 0x0) read$auto(0x3, 0x0, 0xfdef) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x80000000008000) write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) fallocate$auto(0xffffffffffffffff, 0x1, 0x8000000000000000, 0xfffffffffffffffa) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x103742, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r3, r3, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r3, 0x1) 156.240899ms ago: executing program 3 (id=997): mmap$auto(0x0, 0x20009, 0x7, 0x19, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0, @raw=0x2}}) write$auto(0x3, 0x0, 0xfdef) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000000), 0x406a37, 0x0, 0x4, 0x0, 0x3, 0x5}, 0x8}, 0xb, 0xdb22, 0x0) mmap$auto(0x0, 0x400008, 0xa, 0xfffffffffffffffe, 0xffffffffffffffff, 0x7ffb) r1 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000002240)='/proc/thread-self/environ\x00', 0x8400, 0x0) read$auto_proc_environ_operations_base(r1, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/power/runtime_suspended_time\x00', 0x200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)=""/247, 0xe5) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r3 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r3, 0x29, 0x48, &(0x7f0000000040)='\x15\xbe\x9f)\xe3\x98\x8eB\xb5\x8b,\xfc\xa5!\xa8^./\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xfe\xdaN2\xfc\x89G\x85\xa7\x81\xe4\xe6zD\x96I\x18\xc8@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x92,\xe2=y\x9bR\xbcf\xa0c\x16~\x86_\r\x05\xe1G\x111\xe8\x8e\xcb\xed\x8f\xdf\xeeDX\xccm\xc6Mne=\x18\'\x97\x00\xc2\x01VQ\xb86\x03\xff\x88\x03\xd7\bX\xd4>\x91\x1eV-\x92\xa7\xb2\x1b(q\v\xd2\x1f\x9a\x14O\xf6\x18\x84\xe9Z\x80\xf3\x05\x12-\x8c\x8b;%Z\xdaX$K\xb6\xa6\xda\xa1B\xe0\x85\x15\xf0\xa7T\x01[\x8d\xc6\xcc\xb4\x16\xb3\x0eG\xa2\xa5\xa3\x1f\x0e\x89\x871O:c\xd9\x8d\x7f\x86\x9b\xfd@\x959\xbd\x18\xb9\xe7;\xb7\xa9P\x15\xdc\x9b\xce6\xb6\x16\x117\n\x95\xb2f\x10\x14e\xba2M\x8a^\x10\xee*\xbf\xac\x99\x9d\x12\x86\xcc\xb8\x8d\xc2\x06?\xc6\xc7\xad\x10\x97P:\xbf\x1c\xd7]\xfd\xf8\xeeb\xf2\xa0\xf1\xb1\x03\x10\xe3\xb6\xc3ASU\xa4*G;8\xfa\xd3\xaf\x99\xda4\xf7', 0x10000110) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xfe\x80\x12\x00\x00\x00\x00\x00\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) r4 = io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) write$auto_dfs_global_fops_debug(r4, 0x0, 0x0) msgget$auto(0x0, 0x5) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x7) msgsnd$auto(0x0, &(0x7f0000000040)={0x40000007fc, 0x7}, 0x400, 0x2) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r4) mmap$auto(0xab5, 0x2, 0xdf, 0xeb0, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unlink$auto(0x0) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r3, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="1800000031ae703e13642e104269ca3cc5162b00e9deb7365daecb037ced7012ddb20207d42cb491b5c8ef7ec1be8fcec96d92dfd79b49808e66976e7b744ec3d7b7f7a59388eef07d7c1f033fd919889fcfa13863dba46dccd4fce08236e1f75b58cfde35d8eee4b745ddbeb67b3b4baf73769a665d8b9366f692aaf8cae736b504de66efa3f344f9be2290580a362bacccd9e74207ba6c3a626f6647367957ac87ead6a69a5288c1518b7d1d9290bed95e075c2e4467295082b647b5746fec5cfb238f69c7268b70b44634a277e25987fcfb8ba7f61935feaa9023b15d5c3aa0097b44908ef3089b2c784cb221f22171f56203c696d567da76ce0d8e77d1243238ea28365d06a3707be192b84a264fd402d94f0446b8ea4b1838c499d6b84930a336cfdc11e827e9b21da2308dde8a8def75288ba57ebf618358b77ca110a1c916c31c220ba7f09d100195f68fdae82b792282ffe5f0e41f00733e371d183925ebb7fd00ccdeefcd894ed566f42d681901aec8e6ae5f540b306bc6e52e8a28254c9ccf1412c5e928f8ef9da7173fc2381898d4e610aa1f1013e6b4e1f798938ee77ad4143bf6cbb9615e27e5e79bbed273fbfc83d2e1aabeca3c290649c551e4a187a5e4fe9af2a7b2f490604cd06f4c8d745511584d1a11940c7a66e9c604c98b6fe21f8675d81c3242fc17f566ce5cd9e7e749bc7389a6fae40b0c049bf46ad9893894f749e9208fe140f672744c9361851447b170fb3d2e339f42b13e5ec5a79ec9a5158232dd8bfbaef43ede272e6638a8daf78cb334a5c5f031c3a18a35bab7772bd8a6006a53ba18bab07430a638f8a524f18f4e83e9c4a71b7d0389645efd2f9be9d4027a1363d2a9efeddb35bebf5bacb83b1b2eac023eaef67f981d445afc222cc32810596e1c2b4d89f799270182bcac8e0c1478571cf1a17a68fdc5eabae67c5dd3c5398b8f76417a2dd8f98d42732f25c805a6f54db91760c3a9a318a92c3faa878a61510533ffb1bd0a75caa5458f91dde57e8c3c0419f3f9d71434d22429742fd3a65c7633fdc4462b736fbb034ea3738460ed98c1465119a1cd0e24348ec34c50", @ANYRES16=r5, @ANYBLOB="150625bd7000fedb914046c1881aa6974701"], 0x18}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004014) msgrcv$auto(0x0, 0x0, 0x4bd, 0x40000007fc, 0xf1) 0s ago: executing program 0 (id=989): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000007c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057\x1c&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\x7f\x00\x00\x00AN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81.f\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00\x00\x00\xec\xbd_r\xf16\xec\xf3\xbb[.\xf3\xef\xf8\x16x\x9e\xb3*:/L\xa0Kg\xf0\xa2\x84\xa3o\xcc\x9e\xd3\xeb\xd3(\xaa\x93g~\x01\x81\x1eV\xf1L\xfc\xad\xa9#O\xe4\x12\xd3\xbda\xbc\x9a\x9f+9\'\xc4\x13\xf0\xc88\x1d80?\xc2\a\af\xdc?-&\xedAd\x9c\xe5&\xb9\x14\xe1\x85 \xbf\x18\xfc:#\xcf\x7ffT\xefPb\xe1\xfa]\xcc\x8a\xe3\x99\x98u\x9bj>\x9d\xc2\x1fk\x87\x92\xfb(U\xa8\xcd4+\xf6e5],\xec\x84 \x1b\x10d\x1b@\x84X\xa1\xa8\xd7\xccO\xb0Qq\x1a\xa4<\\\x0e\xa4\x7f^\x1a|\xfd\xe6#\x00\x9e\x1d\x00k\x84\x1b\xa3\xb1O\xe0IzJRO\xf4,\xe5\xdb\x03CA\x13Q\x84\xbb\x88\xb4\xe3\xba\xf0/\xd0\x04\ny\a\x8d\x12h\xe22\xcb\"\xce\x00\x00', 0x5) ioctl$auto_USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) kernel console output (not intermixed with test programs): RAX: 0000000000000000 RBX: 00007f8baf815fa0 RCX: 00007f8baf59c799 [ 263.530769][ T8116] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 263.530789][ T8116] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 263.530809][ T8116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.530829][ T8116] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 263.530876][ T8116] [ 264.208508][ T8112] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 264.217019][ T8112] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 264.223523][ T8112] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 264.240236][ T8112] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 264.624726][ T8136] FAULT_INJECTION: forcing a failure. [ 264.624726][ T8136] name failslab, interval 1, probability 0, space 0, times 0 [ 264.641147][ T8136] CPU: 0 UID: 0 PID: 8136 Comm: syz.2.515 Tainted: G L syzkaller #0 PREEMPT(full) [ 264.641201][ T8136] Tainted: [L]=SOFTLOCKUP [ 264.641214][ T8136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 264.641234][ T8136] Call Trace: [ 264.641245][ T8136] [ 264.641257][ T8136] dump_stack_lvl+0x100/0x190 [ 264.641315][ T8136] should_fail_ex.cold+0x5/0xa [ 264.641357][ T8136] ? kobject_get_path+0xcf/0x2c0 [ 264.641403][ T8136] should_failslab+0xc2/0x120 [ 264.641439][ T8136] __kmalloc_noprof+0xe0/0x850 [ 264.641503][ T8136] kobject_get_path+0xcf/0x2c0 [ 264.641557][ T8136] kobject_uevent_env+0x287/0x18b0 [ 264.641626][ T8136] drm_sysfs_lease_event+0x108/0x160 [ 264.641672][ T8136] ? __pfx_drm_sysfs_lease_event+0x10/0x10 [ 264.641724][ T8136] drm_lease_destroy+0x377/0x530 [ 264.641766][ T8136] drm_master_destroy+0xcc/0x160 [ 264.641819][ T8136] drm_master_release+0x26b/0x610 [ 264.641869][ T8136] drm_file_free.part.0+0x9c5/0xcc0 [ 264.641912][ T8136] ? __pfx___fsnotify_parent+0x10/0x10 [ 264.641954][ T8136] drm_close_helper.isra.0+0x186/0x200 [ 264.641997][ T8136] drm_release+0x1ab/0x360 [ 264.642035][ T8136] ? __pfx_drm_release+0x10/0x10 [ 264.642072][ T8136] __fput+0x3ff/0xb40 [ 264.642122][ T8136] task_work_run+0x150/0x240 [ 264.642175][ T8136] ? __pfx_task_work_run+0x10/0x10 [ 264.642255][ T8136] exit_to_user_mode_loop+0x100/0x4a0 [ 264.642308][ T8136] do_syscall_64+0x668/0xf80 [ 264.642349][ T8136] ? clear_bhb_loop+0x40/0x90 [ 264.642391][ T8136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 264.642427][ T8136] RIP: 0033:0x7fad7179c799 [ 264.642455][ T8136] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 264.642488][ T8136] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 264.642521][ T8136] RAX: 0000000000000000 RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 264.642543][ T8136] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 264.642563][ T8136] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 264.642584][ T8136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 264.642604][ T8136] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 264.642649][ T8136] [ 265.557275][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 265.638008][ T8149] netlink: 12 bytes leftover after parsing attributes in process `syz.0.518'. [ 266.266927][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 266.267161][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout [ 266.273541][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 266.641919][ T8173] FAULT_INJECTION: forcing a failure. [ 266.641919][ T8173] name failslab, interval 1, probability 0, space 0, times 0 [ 266.730056][ T8173] CPU: 0 UID: 0 PID: 8173 Comm: syz.2.524 Tainted: G L syzkaller #0 PREEMPT(full) [ 266.730094][ T8173] Tainted: [L]=SOFTLOCKUP [ 266.730103][ T8173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 266.730117][ T8173] Call Trace: [ 266.730125][ T8173] [ 266.730135][ T8173] dump_stack_lvl+0x100/0x190 [ 266.730176][ T8173] should_fail_ex.cold+0x5/0xa [ 266.730205][ T8173] should_failslab+0xc2/0x120 [ 266.730230][ T8173] __kmalloc_cache_noprof+0x7a/0x6f0 [ 266.730262][ T8173] ? usbdev_open+0x9d/0x870 [ 266.730304][ T8173] usbdev_open+0x9d/0x870 [ 266.730341][ T8173] ? do_raw_spin_lock+0x128/0x260 [ 266.730378][ T8173] ? __pfx_usbdev_open+0x10/0x10 [ 266.730412][ T8173] ? chrdev_open+0x589/0x6a0 [ 266.730436][ T8173] ? chrdev_open+0x589/0x6a0 [ 266.730463][ T8173] ? __pfx_usbdev_open+0x10/0x10 [ 266.730499][ T8173] chrdev_open+0x234/0x6a0 [ 266.730524][ T8173] ? __pfx_chrdev_open+0x10/0x10 [ 266.730550][ T8173] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 266.730581][ T8173] do_dentry_open+0x6d8/0x1660 [ 266.730604][ T8173] ? __pfx_chrdev_open+0x10/0x10 [ 266.730635][ T8173] vfs_open+0x82/0x3f0 [ 266.730668][ T8173] path_openat+0x208c/0x31a0 [ 266.730702][ T8173] ? __pfx_path_openat+0x10/0x10 [ 266.730737][ T8173] do_file_open+0x20e/0x430 [ 266.730763][ T8173] ? __pfx_do_file_open+0x10/0x10 [ 266.730808][ T8173] ? alloc_fd+0x476/0x790 [ 266.730834][ T8173] ? do_getname+0x191/0x390 [ 266.730867][ T8173] do_sys_openat2+0x10d/0x1e0 [ 266.730898][ T8173] ? __pfx_do_sys_openat2+0x10/0x10 [ 266.730941][ T8173] ? __fget_files+0x21f/0x3d0 [ 266.730970][ T8173] __x64_sys_openat+0x12d/0x210 [ 266.731002][ T8173] ? __pfx___x64_sys_openat+0x10/0x10 [ 266.731046][ T8173] do_syscall_64+0x106/0xf80 [ 266.731075][ T8173] ? clear_bhb_loop+0x40/0x90 [ 266.731105][ T8173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.731130][ T8173] RIP: 0033:0x7fad7179c799 [ 266.731150][ T8173] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.731173][ T8173] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 266.731196][ T8173] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 266.731212][ T8173] RDX: 0000000000000100 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 266.731227][ T8173] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 266.731242][ T8173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 266.731256][ T8173] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 266.731286][ T8173] [ 267.241111][ T8145] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(7.0.0), cmd(2) [ 267.284046][ T8182] FAULT_INJECTION: forcing a failure. [ 267.284046][ T8182] name failslab, interval 1, probability 0, space 0, times 0 [ 267.302906][ T8182] CPU: 0 UID: 0 PID: 8182 Comm: syz.1.525 Tainted: G L syzkaller #0 PREEMPT(full) [ 267.302963][ T8182] Tainted: [L]=SOFTLOCKUP [ 267.302975][ T8182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 267.302995][ T8182] Call Trace: [ 267.303009][ T8182] [ 267.303022][ T8182] dump_stack_lvl+0x100/0x190 [ 267.303076][ T8182] should_fail_ex.cold+0x5/0xa [ 267.303117][ T8182] ? kobject_get_path+0xcf/0x2c0 [ 267.303161][ T8182] should_failslab+0xc2/0x120 [ 267.303196][ T8182] __kmalloc_noprof+0xe0/0x850 [ 267.303256][ T8182] kobject_get_path+0xcf/0x2c0 [ 267.303310][ T8182] kobject_uevent_env+0x287/0x18b0 [ 267.303377][ T8182] drm_sysfs_lease_event+0x108/0x160 [ 267.303421][ T8182] ? __pfx_drm_sysfs_lease_event+0x10/0x10 [ 267.303471][ T8182] drm_lease_destroy+0x377/0x530 [ 267.303512][ T8182] drm_master_destroy+0xcc/0x160 [ 267.303552][ T8182] drm_master_release+0x26b/0x610 [ 267.303599][ T8182] drm_file_free.part.0+0x9c5/0xcc0 [ 267.303639][ T8182] ? __pfx___fsnotify_parent+0x10/0x10 [ 267.303678][ T8182] drm_close_helper.isra.0+0x186/0x200 [ 267.303720][ T8182] drm_release+0x1ab/0x360 [ 267.303758][ T8182] ? __pfx_drm_release+0x10/0x10 [ 267.303794][ T8182] __fput+0x3ff/0xb40 [ 267.303855][ T8182] task_work_run+0x150/0x240 [ 267.303906][ T8182] ? __pfx_task_work_run+0x10/0x10 [ 267.303968][ T8182] exit_to_user_mode_loop+0x100/0x4a0 [ 267.304016][ T8182] do_syscall_64+0x668/0xf80 [ 267.304056][ T8182] ? clear_bhb_loop+0x40/0x90 [ 267.304097][ T8182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.304131][ T8182] RIP: 0033:0x7f2e3d39c799 [ 267.304157][ T8182] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 267.304192][ T8182] RSP: 002b:00007f2e3e20e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 267.304226][ T8182] RAX: 0000000000000000 RBX: 00007f2e3d615fa0 RCX: 00007f2e3d39c799 [ 267.304249][ T8182] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 267.304268][ T8182] RBP: 00007f2e3d432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 267.304288][ T8182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.304307][ T8182] R13: 00007f2e3d616038 R14: 00007f2e3d615fa0 R15: 00007ffc47febf38 [ 267.304348][ T8182] [ 267.801543][ T8188] FAULT_INJECTION: forcing a failure. [ 267.801543][ T8188] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 267.815168][ T8188] CPU: 0 UID: 0 PID: 8188 Comm: syz.0.528 Tainted: G L syzkaller #0 PREEMPT(full) [ 267.815220][ T8188] Tainted: [L]=SOFTLOCKUP [ 267.815234][ T8188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 267.815254][ T8188] Call Trace: [ 267.815265][ T8188] [ 267.815277][ T8188] dump_stack_lvl+0x100/0x190 [ 267.815336][ T8188] should_fail_ex.cold+0x5/0xa [ 267.815369][ T8188] ? prepare_alloc_pages+0x16d/0x5f0 [ 267.815411][ T8188] should_fail_alloc_page+0xeb/0x140 [ 267.815450][ T8188] prepare_alloc_pages+0x1f0/0x5f0 [ 267.815493][ T8188] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 267.815548][ T8188] ? __pfx_futex_wake_mark+0x10/0x10 [ 267.815607][ T8188] ? find_held_lock+0x2b/0x80 [ 267.815652][ T8188] ? futex_wake+0x456/0x530 [ 267.815705][ T8188] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 267.815762][ T8188] ? futex_wait+0x125/0x380 [ 267.815814][ T8188] ? __pfx_futex_wait+0x10/0x10 [ 267.815875][ T8188] ? vfs_write+0x15d/0x1070 [ 267.815926][ T8188] ? __pfx_sock_write_iter+0x10/0x10 [ 267.815977][ T8188] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 267.816036][ T8188] ? policy_nodemask+0xed/0x4f0 [ 267.816073][ T8188] alloc_pages_mpol+0x1fb/0x550 [ 267.816111][ T8188] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 267.816150][ T8188] ? __x64_sys_futex+0x34f/0x4d0 [ 267.816191][ T8188] ? __x64_sys_futex+0x358/0x4d0 [ 267.816240][ T8188] alloc_pages_noprof+0x131/0x390 [ 267.816278][ T8188] get_free_pages_noprof+0x10/0xb0 [ 267.816314][ T8188] __do_sys_mincore+0xf7/0x610 [ 267.816370][ T8188] do_syscall_64+0x106/0xf80 [ 267.816412][ T8188] ? clear_bhb_loop+0x40/0x90 [ 267.816453][ T8188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.816489][ T8188] RIP: 0033:0x7f4f5019c799 [ 267.816518][ T8188] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 267.816575][ T8188] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 267.816612][ T8188] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 267.816641][ T8188] RDX: 0000000000000000 RSI: 0000000004000000 RDI: 0000000000001000 [ 267.816661][ T8188] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 267.816679][ T8188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 267.816699][ T8188] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 267.816742][ T8188] [ 268.409817][ T8191] netlink: 4 bytes leftover after parsing attributes in process `syz.2.530'. [ 268.468816][ T8191] netlink: 354 bytes leftover after parsing attributes in process `syz.2.530'. [ 268.713750][ T8184] netlink: 12 bytes leftover after parsing attributes in process `syz.3.527'. [ 269.294672][ T8186] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 269.435514][ T8211] netlink: 12 bytes leftover after parsing attributes in process `syz.1.535'. [ 269.786554][ T8218] serio: Serial port ttyS2 [ 270.137933][ T8227] random: crng reseeded on system resumption [ 270.474421][ T8232] Unrecognized hibernate image header format! [ 270.480885][ T8232] PM: hibernation: Image mismatch: architecture specific data [ 270.499262][ T8234] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input19 [ 270.614170][ T8238] FAULT_INJECTION: forcing a failure. [ 270.614170][ T8238] name failslab, interval 1, probability 0, space 0, times 0 [ 270.665019][ T8238] CPU: 0 UID: 0 PID: 8238 Comm: syz.2.542 Tainted: G L syzkaller #0 PREEMPT(full) [ 270.665060][ T8238] Tainted: [L]=SOFTLOCKUP [ 270.665068][ T8238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 270.665083][ T8238] Call Trace: [ 270.665091][ T8238] [ 270.665100][ T8238] dump_stack_lvl+0x100/0x190 [ 270.665141][ T8238] should_fail_ex.cold+0x5/0xa [ 270.665171][ T8238] should_failslab+0xc2/0x120 [ 270.665196][ T8238] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 270.665234][ T8238] ? __kernfs_new_node+0xd2/0x960 [ 270.665274][ T8238] __kernfs_new_node+0xd2/0x960 [ 270.665313][ T8238] ? __pfx___kernfs_new_node+0x10/0x10 [ 270.665354][ T8238] ? find_held_lock+0x2b/0x80 [ 270.665376][ T8238] ? kernfs_root+0xee/0x2a0 [ 270.665413][ T8238] ? kernfs_root+0xee/0x2a0 [ 270.665453][ T8238] kernfs_new_node+0x11b/0x1a0 [ 270.665495][ T8238] __kernfs_create_file+0x53/0x350 [ 270.665526][ T8238] sysfs_add_file_mode_ns+0x207/0x3c0 [ 270.665566][ T8238] internal_create_group+0x593/0xf40 [ 270.665608][ T8238] ? __pfx_internal_create_group+0x10/0x10 [ 270.665649][ T8238] ? kernfs_create_link+0x1bd/0x240 [ 270.665693][ T8238] internal_create_groups+0x9d/0x150 [ 270.665731][ T8238] device_add+0x7c8/0x1950 [ 270.665774][ T8238] ? __pfx_device_add+0x10/0x10 [ 270.665798][ T8238] ? lockdep_init_map_type+0x5c/0x250 [ 270.665831][ T8238] ? __init_waitqueue_head+0xca/0x150 [ 270.665874][ T8238] netdev_register_kobject+0x1a9/0x3d0 [ 270.665914][ T8238] register_netdevice+0x12e0/0x2210 [ 270.665950][ T8238] ? idr_alloc+0xdd/0x130 [ 270.665978][ T8238] ? __pfx_register_netdevice+0x10/0x10 [ 270.666008][ T8238] ? net_generic+0xea/0x2a0 [ 270.666045][ T8238] ppp_dev_configure+0x986/0xcb0 [ 270.666080][ T8238] ppp_ioctl+0x985/0x2800 [ 270.666111][ T8238] ? find_held_lock+0x2b/0x80 [ 270.666134][ T8238] ? __pfx_ppp_ioctl+0x10/0x10 [ 270.666168][ T8238] ? __fget_files+0x21f/0x3d0 [ 270.666194][ T8238] ? __pfx_ppp_ioctl+0x10/0x10 [ 270.666223][ T8238] __x64_sys_ioctl+0x18e/0x210 [ 270.666260][ T8238] do_syscall_64+0x106/0xf80 [ 270.666289][ T8238] ? clear_bhb_loop+0x40/0x90 [ 270.666319][ T8238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.666344][ T8238] RIP: 0033:0x7fad7179c799 [ 270.666364][ T8238] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 270.666389][ T8238] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 270.666413][ T8238] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 270.666429][ T8238] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 270.666444][ T8238] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 270.666458][ T8238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.666472][ T8238] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 270.666503][ T8238] [ 271.278008][ T8241] FAULT_INJECTION: forcing a failure. [ 271.278008][ T8241] name failslab, interval 1, probability 0, space 0, times 0 [ 271.291544][ T8241] CPU: 0 UID: 0 PID: 8241 Comm: syz.3.543 Tainted: G L syzkaller #0 PREEMPT(full) [ 271.291606][ T8241] Tainted: [L]=SOFTLOCKUP [ 271.291619][ T8241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 271.291640][ T8241] Call Trace: [ 271.291651][ T8241] [ 271.291663][ T8241] dump_stack_lvl+0x100/0x190 [ 271.291723][ T8241] should_fail_ex.cold+0x5/0xa [ 271.291764][ T8241] should_failslab+0xc2/0x120 [ 271.291798][ T8241] __kmalloc_cache_noprof+0x7a/0x6f0 [ 271.291845][ T8241] ? dummy_hrtimer_create+0x45/0x170 [ 271.291889][ T8241] dummy_hrtimer_create+0x45/0x170 [ 271.291921][ T8241] ? __pfx_dummy_hrtimer_create+0x10/0x10 [ 271.291950][ T8241] dummy_pcm_open+0xc1/0x5b0 [ 271.291997][ T8241] snd_pcm_open_substream+0xa76/0x1850 [ 271.292034][ T8241] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 271.292071][ T8241] ? rcu_is_watching+0x12/0xc0 [ 271.292120][ T8241] snd_pcm_open+0x2a3/0x710 [ 271.292157][ T8241] ? __pfx_snd_pcm_open+0x10/0x10 [ 271.292194][ T8241] ? __pfx_default_wake_function+0x10/0x10 [ 271.292234][ T8241] ? __pfx_snd_pcm_playback_open+0x10/0x10 [ 271.292268][ T8241] snd_pcm_playback_open+0x86/0xe0 [ 271.292303][ T8241] snd_open+0x22d/0x4c0 [ 271.292348][ T8241] ? __pfx_snd_open+0x10/0x10 [ 271.292389][ T8241] chrdev_open+0x234/0x6a0 [ 271.292417][ T8241] ? __pfx_apparmor_file_open+0x10/0x10 [ 271.292460][ T8241] ? __pfx_chrdev_open+0x10/0x10 [ 271.292491][ T8241] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 271.292528][ T8241] do_dentry_open+0x6d8/0x1660 [ 271.292555][ T8241] ? __pfx_chrdev_open+0x10/0x10 [ 271.292598][ T8241] vfs_open+0x82/0x3f0 [ 271.292637][ T8241] path_openat+0x208c/0x31a0 [ 271.292679][ T8241] ? __pfx_path_openat+0x10/0x10 [ 271.292721][ T8241] do_file_open+0x20e/0x430 [ 271.292753][ T8241] ? __pfx_do_file_open+0x10/0x10 [ 271.292806][ T8241] ? alloc_fd+0x476/0x790 [ 271.292836][ T8241] ? do_getname+0x191/0x390 [ 271.292874][ T8241] do_sys_openat2+0x10d/0x1e0 [ 271.292911][ T8241] ? __pfx_do_sys_openat2+0x10/0x10 [ 271.292961][ T8241] __x64_sys_openat+0x12d/0x210 [ 271.293000][ T8241] ? __pfx___x64_sys_openat+0x10/0x10 [ 271.293050][ T8241] do_syscall_64+0x106/0xf80 [ 271.293084][ T8241] ? clear_bhb_loop+0x40/0x90 [ 271.293119][ T8241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.293153][ T8241] RIP: 0033:0x7f8baf59c799 [ 271.293177][ T8241] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 271.293206][ T8241] RSP: 002b:00007f8bb0423028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 271.293233][ T8241] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59c799 [ 271.293253][ T8241] RDX: 0000000000040002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 271.293271][ T8241] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 271.293289][ T8241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.293306][ T8241] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 271.293343][ T8241] [ 271.753166][ T8246] FAULT_INJECTION: forcing a failure. [ 271.753166][ T8246] name failslab, interval 1, probability 0, space 0, times 0 [ 271.809162][ T8246] CPU: 1 UID: 0 PID: 8246 Comm: syz.2.545 Tainted: G L syzkaller #0 PREEMPT(full) [ 271.809222][ T8246] Tainted: [L]=SOFTLOCKUP [ 271.809235][ T8246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 271.809256][ T8246] Call Trace: [ 271.809268][ T8246] [ 271.809282][ T8246] dump_stack_lvl+0x100/0x190 [ 271.809339][ T8246] should_fail_ex.cold+0x5/0xa [ 271.809381][ T8246] should_failslab+0xc2/0x120 [ 271.809418][ T8246] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 271.809474][ T8246] ? snd_pcm_hw_rule_add+0x3b3/0x510 [ 271.809537][ T8246] krealloc_node_align_noprof+0x30a/0x3e0 [ 271.809608][ T8246] ? __split_page_owner+0x1f9/0x350 [ 271.809648][ T8246] snd_pcm_hw_rule_add+0x3b3/0x510 [ 271.809703][ T8246] ? __pfx_snd_pcm_hw_rule_format+0x10/0x10 [ 271.809743][ T8246] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 271.809797][ T8246] ? mutex_init_lockep+0x110/0x150 [ 271.809845][ T8246] ? snd_pcm_attach_substream+0x29b/0xd60 [ 271.809899][ T8246] snd_pcm_open_substream+0x54a/0x1850 [ 271.809947][ T8246] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 271.810000][ T8246] snd_pcm_oss_open+0x735/0x1390 [ 271.810074][ T8246] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 271.810130][ T8246] ? __lock_acquire+0x4a5/0x2630 [ 271.810175][ T8246] ? __pfx_default_wake_function+0x10/0x10 [ 271.810215][ T8246] ? __lock_acquire+0x4a5/0x2630 [ 271.810267][ T8246] ? do_raw_spin_lock+0x128/0x260 [ 271.810320][ T8246] ? soundcore_open+0x231/0x5a0 [ 271.810374][ T8246] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 271.810430][ T8246] soundcore_open+0x2e3/0x5a0 [ 271.810482][ T8246] ? __pfx_soundcore_open+0x10/0x10 [ 271.810533][ T8246] chrdev_open+0x234/0x6a0 [ 271.810615][ T8246] ? __pfx_apparmor_file_open+0x10/0x10 [ 271.810675][ T8246] ? __pfx_chrdev_open+0x10/0x10 [ 271.810712][ T8246] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 271.810759][ T8246] do_dentry_open+0x6d8/0x1660 [ 271.810793][ T8246] ? __pfx_chrdev_open+0x10/0x10 [ 271.810839][ T8246] vfs_open+0x82/0x3f0 [ 271.810897][ T8246] path_openat+0x208c/0x31a0 [ 271.810949][ T8246] ? __pfx_path_openat+0x10/0x10 [ 271.811002][ T8246] do_file_open+0x20e/0x430 [ 271.811040][ T8246] ? __pfx_do_file_open+0x10/0x10 [ 271.811109][ T8246] ? alloc_fd+0x476/0x790 [ 271.811148][ T8246] ? do_getname+0x191/0x390 [ 271.811195][ T8246] do_sys_openat2+0x10d/0x1e0 [ 271.811241][ T8246] ? __pfx_do_sys_openat2+0x10/0x10 [ 271.811291][ T8246] ? __fget_files+0x21f/0x3d0 [ 271.811332][ T8246] __x64_sys_openat+0x12d/0x210 [ 271.811380][ T8246] ? __pfx___x64_sys_openat+0x10/0x10 [ 271.811443][ T8246] do_syscall_64+0x106/0xf80 [ 271.811484][ T8246] ? clear_bhb_loop+0x40/0x90 [ 271.811528][ T8246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.811576][ T8246] RIP: 0033:0x7fad7179c799 [ 271.811607][ T8246] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 271.811643][ T8246] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 271.811677][ T8246] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 271.811700][ T8246] RDX: 0000000000000200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 271.811722][ T8246] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 271.811743][ T8246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.811764][ T8246] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 271.811811][ T8246] [ 274.408584][ T8290] FAULT_INJECTION: forcing a failure. [ 274.408584][ T8290] name failslab, interval 1, probability 0, space 0, times 0 [ 274.447375][ T8290] CPU: 1 UID: 0 PID: 8290 Comm: syz.1.558 Tainted: G L syzkaller #0 PREEMPT(full) [ 274.447428][ T8290] Tainted: [L]=SOFTLOCKUP [ 274.447440][ T8290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 274.447459][ T8290] Call Trace: [ 274.447471][ T8290] [ 274.447483][ T8290] dump_stack_lvl+0x100/0x190 [ 274.447539][ T8290] should_fail_ex.cold+0x5/0xa [ 274.447578][ T8290] should_failslab+0xc2/0x120 [ 274.447615][ T8290] __kmalloc_cache_noprof+0x7a/0x6f0 [ 274.447660][ T8290] ? snd_timer_instance_new+0x47/0x2e0 [ 274.447733][ T8290] snd_timer_instance_new+0x47/0x2e0 [ 274.447787][ T8290] snd_seq_timer_open+0x1d4/0x600 [ 274.447835][ T8290] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 274.447890][ T8290] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 274.447929][ T8290] ? lockdep_hardirqs_on+0x78/0x100 [ 274.447968][ T8290] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 274.448011][ T8290] queue_use+0xdc/0x1f0 [ 274.448045][ T8290] snd_seq_queue_alloc+0x2e5/0x590 [ 274.448087][ T8290] snd_seq_ioctl_create_queue+0xa9/0x370 [ 274.448134][ T8290] call_seq_client_ctl+0xa3/0x130 [ 274.448182][ T8290] snd_seq_kernel_client_ctl+0x77/0xd0 [ 274.448233][ T8290] alloc_seq_queue+0xdb/0x180 [ 274.448283][ T8290] ? __pfx_alloc_seq_queue+0x10/0x10 [ 274.448354][ T8290] ? mark_held_locks+0x40/0x70 [ 274.448399][ T8290] ? _raw_spin_unlock_irq+0x23/0x50 [ 274.448428][ T8290] ? lockdep_hardirqs_on+0x78/0x100 [ 274.448463][ T8290] snd_seq_oss_open+0x2b2/0xa10 [ 274.448509][ T8290] odev_open+0x79/0xc0 [ 274.448544][ T8290] ? __pfx_odev_open+0x10/0x10 [ 274.448581][ T8290] soundcore_open+0x2e3/0x5a0 [ 274.448623][ T8290] ? __pfx_soundcore_open+0x10/0x10 [ 274.448665][ T8290] chrdev_open+0x234/0x6a0 [ 274.448691][ T8290] ? __pfx_apparmor_file_open+0x10/0x10 [ 274.448733][ T8290] ? __pfx_chrdev_open+0x10/0x10 [ 274.448764][ T8290] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 274.448802][ T8290] do_dentry_open+0x6d8/0x1660 [ 274.448831][ T8290] ? __pfx_chrdev_open+0x10/0x10 [ 274.448868][ T8290] vfs_open+0x82/0x3f0 [ 274.448908][ T8290] path_openat+0x208c/0x31a0 [ 274.448963][ T8290] ? __pfx_path_openat+0x10/0x10 [ 274.449006][ T8290] do_file_open+0x20e/0x430 [ 274.449041][ T8290] ? __pfx_do_file_open+0x10/0x10 [ 274.449100][ T8290] ? alloc_fd+0x476/0x790 [ 274.449136][ T8290] ? do_getname+0x191/0x390 [ 274.449176][ T8290] do_sys_openat2+0x10d/0x1e0 [ 274.449218][ T8290] ? __pfx_do_sys_openat2+0x10/0x10 [ 274.449264][ T8290] ? __fget_files+0x21f/0x3d0 [ 274.449303][ T8290] __x64_sys_openat+0x12d/0x210 [ 274.449346][ T8290] ? __pfx___x64_sys_openat+0x10/0x10 [ 274.449416][ T8290] do_syscall_64+0x106/0xf80 [ 274.449456][ T8290] ? clear_bhb_loop+0x40/0x90 [ 274.449498][ T8290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.449535][ T8290] RIP: 0033:0x7f2e3d39c799 [ 274.449565][ T8290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 274.449599][ T8290] RSP: 002b:00007f2e3e20e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 274.449633][ T8290] RAX: ffffffffffffffda RBX: 00007f2e3d615fa0 RCX: 00007f2e3d39c799 [ 274.449656][ T8290] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 274.449677][ T8290] RBP: 00007f2e3d432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 274.449697][ T8290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.449718][ T8290] R13: 00007f2e3d616038 R14: 00007f2e3d615fa0 R15: 00007ffc47febf38 [ 274.449762][ T8290] [ 274.956482][ T30] audit: type=1804 audit(1773113668.487:35): pid=8292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.560" name="/newroot/129/file0" dev="tmpfs" ino=681 res=1 errno=0 [ 275.047922][ T30] audit: type=1804 audit(1773113668.537:36): pid=8292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.560" name="/newroot/129/file0" dev="tmpfs" ino=681 res=1 errno=0 [ 276.745446][ T8333] FAULT_INJECTION: forcing a failure. [ 276.745446][ T8333] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 276.779002][ T8333] CPU: 1 UID: 0 PID: 8333 Comm: syz.0.571 Tainted: G L syzkaller #0 PREEMPT(full) [ 276.779054][ T8333] Tainted: [L]=SOFTLOCKUP [ 276.779065][ T8333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 276.779083][ T8333] Call Trace: [ 276.779094][ T8333] [ 276.779106][ T8333] dump_stack_lvl+0x100/0x190 [ 276.779156][ T8333] should_fail_ex.cold+0x5/0xa [ 276.779185][ T8333] ? prepare_alloc_pages+0x16d/0x5f0 [ 276.779223][ T8333] should_fail_alloc_page+0xeb/0x140 [ 276.779255][ T8333] prepare_alloc_pages+0x1f0/0x5f0 [ 276.779295][ T8333] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 276.779345][ T8333] ? rcu_is_watching+0x12/0xc0 [ 276.779389][ T8333] ? trace_mm_page_alloc+0x17a/0x1d0 [ 276.779422][ T8333] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 276.779472][ T8333] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 276.779516][ T8333] ? stack_trace_save+0x8e/0xc0 [ 276.779547][ T8333] ? stack_depot_save_flags+0x27/0x9d0 [ 276.779577][ T8333] ? is_bpf_text_address+0x8a/0x1a0 [ 276.779621][ T8333] ? is_bpf_text_address+0x8a/0x1a0 [ 276.779668][ T8333] ? kasan_save_stack+0x3f/0x50 [ 276.779711][ T8333] ? kasan_save_track+0x14/0x30 [ 276.779754][ T8333] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 276.779796][ T8333] ? alloc_vmap_area+0x640/0x2bd0 [ 276.779823][ T8333] ? __get_vm_area_node+0x1ca/0x330 [ 276.779853][ T8333] ? __vmalloc_node_range_noprof+0x213/0x1530 [ 276.779888][ T8333] ? __kvmalloc_node_noprof+0x3de/0xa00 [ 276.779947][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 276.779989][ T8333] ? do_syscall_64+0x106/0xf80 [ 276.780025][ T8333] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.780066][ T8333] alloc_pages_bulk_noprof+0x782/0x1490 [ 276.780124][ T8333] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 276.780183][ T8333] ? alloc_pages_noprof+0x233/0x390 [ 276.780217][ T8333] __kasan_populate_vmalloc+0xf0/0x210 [ 276.780268][ T8333] alloc_vmap_area+0x95d/0x2bd0 [ 276.780312][ T8333] ? __pfx_alloc_vmap_area+0x10/0x10 [ 276.780351][ T8333] __get_vm_area_node+0x1ca/0x330 [ 276.780391][ T8333] __vmalloc_node_range_noprof+0x213/0x1530 [ 276.780428][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 276.780474][ T8333] ? try_to_wake_up+0x644/0x1a80 [ 276.780505][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 276.780559][ T8333] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 276.780602][ T8333] ? rcu_is_watching+0x12/0xc0 [ 276.780652][ T8333] __kvmalloc_node_noprof+0x3de/0xa00 [ 276.780699][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 276.780740][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 276.780782][ T8333] ? _copy_from_user+0x59/0xd0 [ 276.780810][ T8333] ? copy_mnt_id_req+0x1b1/0x350 [ 276.780851][ T8333] __do_sys_listmount+0x289/0xee0 [ 276.780900][ T8333] ? __pfx_do_futex+0x10/0x10 [ 276.780942][ T8333] ? __fget_files+0x21f/0x3d0 [ 276.780970][ T8333] ? __pfx___do_sys_listmount+0x10/0x10 [ 276.781038][ T8333] do_syscall_64+0x106/0xf80 [ 276.781072][ T8333] ? clear_bhb_loop+0x40/0x90 [ 276.781107][ T8333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.781137][ T8333] RIP: 0033:0x7f4f5019c799 [ 276.781163][ T8333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.781192][ T8333] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 276.781220][ T8333] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 276.781239][ T8333] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 276.781256][ T8333] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 276.781274][ T8333] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 276.781290][ T8333] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 276.781327][ T8333] [ 276.786284][ T8333] syz.0.571: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 277.652248][ T8333] CPU: 1 UID: 0 PID: 8333 Comm: syz.0.571 Tainted: G L syzkaller #0 PREEMPT(full) [ 277.652304][ T8333] Tainted: [L]=SOFTLOCKUP [ 277.652316][ T8333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 277.652337][ T8333] Call Trace: [ 277.652349][ T8333] [ 277.652363][ T8333] dump_stack_lvl+0x100/0x190 [ 277.652420][ T8333] warn_alloc.cold+0x95/0x1c1 [ 277.652478][ T8333] ? __pfx_warn_alloc+0x10/0x10 [ 277.652522][ T8333] ? lockdep_hardirqs_on+0x78/0x100 [ 277.652567][ T8333] ? __get_vm_area_node+0x2c5/0x330 [ 277.652614][ T8333] ? __get_vm_area_node+0x208/0x330 [ 277.652660][ T8333] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 277.652702][ T8333] ? try_to_wake_up+0x644/0x1a80 [ 277.652742][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 277.652806][ T8333] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 277.652866][ T8333] ? rcu_is_watching+0x12/0xc0 [ 277.652926][ T8333] __kvmalloc_node_noprof+0x3de/0xa00 [ 277.652981][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 277.653029][ T8333] ? __do_sys_listmount+0x289/0xee0 [ 277.653075][ T8333] ? _copy_from_user+0x59/0xd0 [ 277.653108][ T8333] ? copy_mnt_id_req+0x1b1/0x350 [ 277.653155][ T8333] __do_sys_listmount+0x289/0xee0 [ 277.653204][ T8333] ? __pfx_do_futex+0x10/0x10 [ 277.653251][ T8333] ? __fget_files+0x21f/0x3d0 [ 277.653283][ T8333] ? __pfx___do_sys_listmount+0x10/0x10 [ 277.653362][ T8333] do_syscall_64+0x106/0xf80 [ 277.653401][ T8333] ? clear_bhb_loop+0x40/0x90 [ 277.653442][ T8333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.653475][ T8333] RIP: 0033:0x7f4f5019c799 [ 277.653503][ T8333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 277.653536][ T8333] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 277.653569][ T8333] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 277.653591][ T8333] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 277.653611][ T8333] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 277.653631][ T8333] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 277.653651][ T8333] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 277.653694][ T8333] [ 277.653706][ T8333] Mem-Info: [ 278.063599][ T8333] active_anon:14370 inactive_anon:5302 isolated_anon:0 [ 278.063599][ T8333] active_file:6118 inactive_file:49514 isolated_file:0 [ 278.063599][ T8333] unevictable:768 dirty:440 writeback:25 [ 278.063599][ T8333] slab_reclaimable:10744 slab_unreclaimable:92476 [ 278.063599][ T8333] mapped:27445 shmem:1370 pagetables:1176 [ 278.063599][ T8333] sec_pagetables:0 bounce:0 [ 278.063599][ T8333] kernel_misc_reclaimable:0 [ 278.063599][ T8333] free:1312803 free_pcp:14625 free_cma:0 [ 278.145251][ T8342] FAULT_INJECTION: forcing a failure. [ 278.145251][ T8342] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 278.166263][ T8333] Node 0 active_anon:57480kB inactive_anon:19308kB active_file:26516kB inactive_file:199972kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:109880kB dirty:3652kB writeback:300kB shmem:3944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11552kB pagetables:4584kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 278.193436][ T8342] CPU: 0 UID: 0 PID: 8342 Comm: syz.1.573 Tainted: G L syzkaller #0 PREEMPT(full) [ 278.193581][ T8342] Tainted: [L]=SOFTLOCKUP [ 278.193612][ T8342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 278.193665][ T8342] Call Trace: [ 278.193690][ T8342] [ 278.193759][ T8342] dump_stack_lvl+0x100/0x190 [ 278.193813][ T8342] should_fail_ex.cold+0x5/0xa [ 278.193902][ T8342] _copy_to_iter+0x1f3/0x1720 [ 278.194105][ T8342] ? __pfx___skb_try_recv_datagram+0x10/0x10 [ 278.194210][ T8342] ? __pfx__copy_to_iter+0x10/0x10 [ 278.194370][ T8342] ? __skb_recv_datagram+0x1b2/0x220 [ 278.194477][ T8342] simple_copy_to_iter+0x46/0x90 [ 278.194616][ T8342] __skb_datagram_iter+0x129/0x900 [ 278.194766][ T8342] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 278.194939][ T8342] ? skb_recv_datagram+0x88/0xc0 [ 278.195052][ T8342] skb_copy_datagram_iter+0xa1/0x270 [ 278.195195][ T8342] netlink_recvmsg+0x27e/0xa90 [ 278.195312][ T8342] ? __pfx_netlink_recvmsg+0x10/0x10 [ 278.195417][ T8342] ? __fget_files+0x215/0x3d0 [ 278.195491][ T8342] ? __fget_files+0x215/0x3d0 [ 278.195580][ T8342] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 278.195711][ T8342] ? __pfx_netlink_recvmsg+0x10/0x10 [ 278.195875][ T8342] sock_recvmsg+0x1a4/0x1f0 [ 278.196007][ T8342] __sys_recvfrom+0x200/0x300 [ 278.196117][ T8342] ? __pfx___sys_recvfrom+0x10/0x10 [ 278.196248][ T8342] ? fd_install+0x223/0x580 [ 278.196374][ T8342] ? __pfx___sys_socket+0x10/0x10 [ 278.196508][ T8342] __x64_sys_recvfrom+0xe0/0x1c0 [ 278.196615][ T8342] ? do_syscall_64+0x95/0xf80 [ 278.196721][ T8342] ? lockdep_hardirqs_on+0x78/0x100 [ 278.196824][ T8342] do_syscall_64+0x106/0xf80 [ 278.196923][ T8342] ? clear_bhb_loop+0x40/0x90 [ 278.197037][ T8342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.197127][ T8342] RIP: 0033:0x7f2e3d35cfce [ 278.197212][ T8342] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 278.197299][ T8342] RSP: 002b:00007f2e3e20cee8 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 278.197383][ T8342] RAX: ffffffffffffffda RBX: 00007f2e3e20e6c0 RCX: 00007f2e3d35cfce [ 278.197446][ T8342] RDX: 0000000000001000 RSI: 00007f2e3e20d000 RDI: 000000000000000e [ 278.197499][ T8342] RBP: 000000000000000e R08: 0000000000000000 R09: 0000000000000000 [ 278.197547][ T8342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000040 [ 278.197600][ T8342] R13: 00007f2e3e20cfb0 R14: 000000000000000c R15: 0000000000000000 [ 278.197707][ T8342] [ 278.554353][ T8333] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:120kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 278.668910][ T8333] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 278.731253][ T8339] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 278.746595][ T8333] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 278.800585][ T8333] Node 0 DMA32 free:1316400kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:57480kB inactive_anon:20536kB active_file:24468kB inactive_file:197924kB unevictable:1536kB writepending:392kB zspages:4kB present:3129332kB managed:2537428kB mlocked:0kB bounce:0kB free_pcp:35836kB local_pcp:16484kB free_cma:0kB [ 278.951704][ T8333] lowmem_reserve[]: 0 0 1 1 1 [ 278.966775][ T8333] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 279.063824][ T8333] lowmem_reserve[]: 0 0 0 0 0 [ 279.088966][ T8333] Node 1 Normal free:3925100kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:17320kB local_pcp:17320kB free_cma:0kB [ 279.139282][ T8333] lowmem_reserve[]: 0 0 0 0 0 [ 279.148568][ T8333] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 279.170398][ T8333] Node 0 DMA32: 3725*4kB (UM) 2236*8kB (UME) 1175*16kB (UME) 350*32kB (UME) 464*64kB (UME) 353*128kB (UME) 224*256kB (UME) 102*512kB (UM) 66*1024kB (UM) 9*2048kB (UME) 240*4096kB (M) = 1316292kB [ 279.271280][ T8333] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 279.322529][ T8333] Node 1 Normal: 5*4kB (UM) 15*8kB (UM) 12*16kB (UM) 13*32kB (UM) 10*64kB (UM) 8*128kB (UM) 7*256kB (M) 4*512kB (M) 1*1024kB (M) 1*2048kB (U) 956*4096kB (M) = 3925100kB [ 279.404668][ T8333] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 279.427564][ T8333] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 279.529390][ T8333] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 279.542404][ T8333] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 279.553933][ T8333] 56999 total pagecache pages [ 279.559056][ T8333] 1 pages in swap cache [ 279.563597][ T8333] Free swap = 124992kB [ 279.568100][ T8333] Total swap = 124996kB [ 279.572302][ T8333] 2097051 pages RAM [ 279.576438][ T8333] 0 pages HighMem/MovableOnly [ 279.638531][ T8333] 430814 pages reserved [ 279.642844][ T8333] 0 pages cma reserved [ 279.945759][ T30] audit: type=1804 audit(1773113673.537:37): pid=8372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.583" name="/newroot/132/file0" dev="tmpfs" ino=697 res=1 errno=0 [ 280.003886][ T30] audit: type=1804 audit(1773113673.597:38): pid=8369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.583" name="/newroot/132/file0" dev="tmpfs" ino=697 res=1 errno=0 [ 280.447246][ T8383] random: crng reseeded on system resumption [ 280.769648][ T8391] Unrecognized hibernate image header format! [ 280.787466][ T8391] PM: hibernation: Image mismatch: architecture specific data [ 280.991695][ T8394] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input20 [ 281.419243][ T30] audit: type=1804 audit(1773113675.017:39): pid=8414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.594" name="/newroot/160/file0" dev="tmpfs" ino=834 res=1 errno=0 [ 281.482308][ T30] audit: type=1804 audit(1773113675.057:40): pid=8410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.594" name="/newroot/160/file0" dev="tmpfs" ino=834 res=1 errno=0 [ 282.607066][ T8429] FAULT_INJECTION: forcing a failure. [ 282.607066][ T8429] name failslab, interval 1, probability 0, space 0, times 0 [ 282.663088][ T8429] CPU: 0 UID: 0 PID: 8429 Comm: syz.3.598 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.663156][ T8429] Tainted: [L]=SOFTLOCKUP [ 282.663168][ T8429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 282.663188][ T8429] Call Trace: [ 282.663200][ T8429] [ 282.663212][ T8429] dump_stack_lvl+0x100/0x190 [ 282.663273][ T8429] should_fail_ex.cold+0x5/0xa [ 282.663316][ T8429] should_failslab+0xc2/0x120 [ 282.663359][ T8429] __kmalloc_cache_noprof+0x7a/0x6f0 [ 282.663407][ T8429] ? snd_seq_timer_new+0x44/0x1b0 [ 282.663461][ T8429] snd_seq_timer_new+0x44/0x1b0 [ 282.663506][ T8429] snd_seq_queue_alloc+0x177/0x590 [ 282.663551][ T8429] snd_seq_ioctl_create_queue+0xa9/0x370 [ 282.663601][ T8429] call_seq_client_ctl+0xa3/0x130 [ 282.663653][ T8429] snd_seq_kernel_client_ctl+0x77/0xd0 [ 282.663705][ T8429] alloc_seq_queue+0xdb/0x180 [ 282.663766][ T8429] ? __pfx_alloc_seq_queue+0x10/0x10 [ 282.663841][ T8429] ? mark_held_locks+0x40/0x70 [ 282.663884][ T8429] ? _raw_spin_unlock_irq+0x23/0x50 [ 282.663921][ T8429] ? lockdep_hardirqs_on+0x78/0x100 [ 282.663968][ T8429] snd_seq_oss_open+0x2b2/0xa10 [ 282.664028][ T8429] odev_open+0x79/0xc0 [ 282.664073][ T8429] ? __pfx_odev_open+0x10/0x10 [ 282.664119][ T8429] soundcore_open+0x2e3/0x5a0 [ 282.664171][ T8429] ? __pfx_soundcore_open+0x10/0x10 [ 282.664218][ T8429] chrdev_open+0x234/0x6a0 [ 282.664253][ T8429] ? __pfx_apparmor_file_open+0x10/0x10 [ 282.664305][ T8429] ? __pfx_chrdev_open+0x10/0x10 [ 282.664356][ T8429] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 282.664404][ T8429] do_dentry_open+0x6d8/0x1660 [ 282.664437][ T8429] ? __pfx_chrdev_open+0x10/0x10 [ 282.664487][ T8429] vfs_open+0x82/0x3f0 [ 282.664535][ T8429] path_openat+0x208c/0x31a0 [ 282.664586][ T8429] ? __pfx_path_openat+0x10/0x10 [ 282.664638][ T8429] do_file_open+0x20e/0x430 [ 282.664678][ T8429] ? __pfx_do_file_open+0x10/0x10 [ 282.664753][ T8429] ? alloc_fd+0x476/0x790 [ 282.664797][ T8429] ? do_getname+0x191/0x390 [ 282.664845][ T8429] do_sys_openat2+0x10d/0x1e0 [ 282.664891][ T8429] ? __pfx_do_sys_openat2+0x10/0x10 [ 282.664940][ T8429] ? __fget_files+0x21f/0x3d0 [ 282.664981][ T8429] __x64_sys_openat+0x12d/0x210 [ 282.665030][ T8429] ? __pfx___x64_sys_openat+0x10/0x10 [ 282.665091][ T8429] do_syscall_64+0x106/0xf80 [ 282.665133][ T8429] ? clear_bhb_loop+0x40/0x90 [ 282.665178][ T8429] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.665214][ T8429] RIP: 0033:0x7f8baf59c799 [ 282.665243][ T8429] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.665277][ T8429] RSP: 002b:00007f8bb0423028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 282.665311][ T8429] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59c799 [ 282.665334][ T8429] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 282.665355][ T8429] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 282.665375][ T8429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.665396][ T8429] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 282.665442][ T8429] [ 284.578856][ T8455] FAULT_INJECTION: forcing a failure. [ 284.578856][ T8455] name failslab, interval 1, probability 0, space 0, times 0 [ 284.597768][ T8455] CPU: 1 UID: 0 PID: 8455 Comm: syz.2.607 Tainted: G L syzkaller #0 PREEMPT(full) [ 284.597827][ T8455] Tainted: [L]=SOFTLOCKUP [ 284.597839][ T8455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 284.597859][ T8455] Call Trace: [ 284.597869][ T8455] [ 284.597882][ T8455] dump_stack_lvl+0x100/0x190 [ 284.597939][ T8455] should_fail_ex.cold+0x5/0xa [ 284.597979][ T8455] should_failslab+0xc2/0x120 [ 284.598015][ T8455] __kmalloc_cache_noprof+0x7a/0x6f0 [ 284.598059][ T8455] ? snd_card_file_add+0x52/0x340 [ 284.598123][ T8455] snd_card_file_add+0x52/0x340 [ 284.598190][ T8455] snd_pcm_oss_open+0x1c2/0x1390 [ 284.598245][ T8455] ? kasan_quarantine_put+0x104/0x240 [ 284.598303][ T8455] ? lockdep_hardirqs_on+0x78/0x100 [ 284.598348][ T8455] ? find_held_lock+0x2b/0x80 [ 284.598381][ T8455] ? tomoyo_check_open_permission+0x1db/0x3c0 [ 284.598442][ T8455] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 284.598497][ T8455] ? __lock_acquire+0x4a5/0x2630 [ 284.598546][ T8455] ? __lock_acquire+0x4a5/0x2630 [ 284.598598][ T8455] ? do_raw_spin_lock+0x128/0x260 [ 284.598650][ T8455] ? soundcore_open+0x231/0x5a0 [ 284.598702][ T8455] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 284.598758][ T8455] soundcore_open+0x2e3/0x5a0 [ 284.598810][ T8455] ? __pfx_soundcore_open+0x10/0x10 [ 284.598859][ T8455] chrdev_open+0x234/0x6a0 [ 284.598893][ T8455] ? __pfx_apparmor_file_open+0x10/0x10 [ 284.598944][ T8455] ? __pfx_chrdev_open+0x10/0x10 [ 284.598980][ T8455] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 284.599025][ T8455] do_dentry_open+0x6d8/0x1660 [ 284.599058][ T8455] ? __pfx_chrdev_open+0x10/0x10 [ 284.599104][ T8455] vfs_open+0x82/0x3f0 [ 284.599150][ T8455] path_openat+0x208c/0x31a0 [ 284.599199][ T8455] ? __pfx_path_openat+0x10/0x10 [ 284.599250][ T8455] do_file_open+0x20e/0x430 [ 284.599287][ T8455] ? __pfx_do_file_open+0x10/0x10 [ 284.599359][ T8455] ? alloc_fd+0x476/0x790 [ 284.599397][ T8455] ? do_getname+0x191/0x390 [ 284.599443][ T8455] do_sys_openat2+0x10d/0x1e0 [ 284.599487][ T8455] ? __pfx_do_sys_openat2+0x10/0x10 [ 284.599532][ T8455] ? find_held_lock+0x2b/0x80 [ 284.599565][ T8455] ? __fget_files+0x215/0x3d0 [ 284.599604][ T8455] __x64_sys_openat+0x12d/0x210 [ 284.599650][ T8455] ? __pfx___x64_sys_openat+0x10/0x10 [ 284.599712][ T8455] do_syscall_64+0x106/0xf80 [ 284.599751][ T8455] ? clear_bhb_loop+0x40/0x90 [ 284.599795][ T8455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.599829][ T8455] RIP: 0033:0x7fad7179c799 [ 284.599858][ T8455] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 284.599893][ T8455] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 284.599927][ T8455] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 284.599949][ T8455] RDX: 0000000000020342 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 284.599971][ T8455] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 284.599992][ T8455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.600011][ T8455] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 284.600055][ T8455] [ 285.319705][ T8470] FAULT_INJECTION: forcing a failure. [ 285.319705][ T8470] name fail_futex, interval 1, probability 0, space 0, times 0 [ 285.370375][ T8470] CPU: 0 UID: 0 PID: 8470 Comm: syz.2.612 Tainted: G L syzkaller #0 PREEMPT(full) [ 285.370430][ T8470] Tainted: [L]=SOFTLOCKUP [ 285.370442][ T8470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 285.370462][ T8470] Call Trace: [ 285.370473][ T8470] [ 285.370485][ T8470] dump_stack_lvl+0x100/0x190 [ 285.370554][ T8470] should_fail_ex.cold+0x5/0xa [ 285.370594][ T8470] get_futex_key+0x1d2/0x1620 [ 285.370641][ T8470] ? __pfx_get_futex_key+0x10/0x10 [ 285.370698][ T8470] futex_wake+0xea/0x530 [ 285.370753][ T8470] ? __pfx_futex_wake+0x10/0x10 [ 285.370808][ T8470] ? putname+0xb1/0x110 [ 285.370842][ T8470] ? kmem_cache_free+0x124/0x6a0 [ 285.370897][ T8470] do_futex+0x32b/0x350 [ 285.370942][ T8470] ? __pfx_do_futex+0x10/0x10 [ 285.370983][ T8470] ? __pfx_do_sys_openat2+0x10/0x10 [ 285.371031][ T8470] ? __fget_files+0x21f/0x3d0 [ 285.371068][ T8470] __x64_sys_futex+0x34f/0x4d0 [ 285.371114][ T8470] ? __x64_sys_openat+0x12d/0x210 [ 285.371159][ T8470] ? __pfx___x64_sys_futex+0x10/0x10 [ 285.371220][ T8470] do_syscall_64+0x106/0xf80 [ 285.371261][ T8470] ? clear_bhb_loop+0x40/0x90 [ 285.371303][ T8470] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.371338][ T8470] RIP: 0033:0x7fad7179c799 [ 285.371365][ T8470] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 285.371399][ T8470] RSP: 002b:00007fad726630e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 285.371433][ T8470] RAX: ffffffffffffffda RBX: 00007fad71a15fa8 RCX: 00007fad7179c799 [ 285.371455][ T8470] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fad71a15fac [ 285.371476][ T8470] RBP: 00007fad71a15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 285.371504][ T8470] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000 [ 285.371525][ T8470] R13: 00007fad71a16038 R14: 00007ffede925340 R15: 00007ffede925428 [ 285.371571][ T8470] [ 286.389900][ T8483] FAULT_INJECTION: forcing a failure. [ 286.389900][ T8483] name failslab, interval 1, probability 0, space 0, times 0 [ 286.411655][ T8483] CPU: 0 UID: 0 PID: 8483 Comm: syz.2.617 Tainted: G L syzkaller #0 PREEMPT(full) [ 286.411705][ T8483] Tainted: [L]=SOFTLOCKUP [ 286.411715][ T8483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 286.411733][ T8483] Call Trace: [ 286.411742][ T8483] [ 286.411753][ T8483] dump_stack_lvl+0x100/0x190 [ 286.411804][ T8483] should_fail_ex.cold+0x5/0xa [ 286.411839][ T8483] should_failslab+0xc2/0x120 [ 286.411871][ T8483] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 286.411917][ T8483] ? alloc_inode+0x183/0x250 [ 286.411963][ T8483] alloc_inode+0x183/0x250 [ 286.412002][ T8483] alloc_anon_inode+0x2a/0x3e0 [ 286.412035][ T8483] dma_buf_export+0x267/0xcb0 [ 286.412077][ T8483] ? sg_alloc_table+0x4c/0x1c0 [ 286.412121][ T8483] system_heap_allocate+0xb5e/0x1170 [ 286.412194][ T8483] ? __pfx_system_heap_allocate+0x10/0x10 [ 286.412256][ T8483] ? rep_movs_alternative+0x4a/0x90 [ 286.412313][ T8483] dma_heap_ioctl+0x37f/0x5e0 [ 286.412361][ T8483] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 286.412404][ T8483] ? find_held_lock+0x2b/0x80 [ 286.412455][ T8483] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 286.412504][ T8483] __x64_sys_ioctl+0x18e/0x210 [ 286.412556][ T8483] do_syscall_64+0x106/0xf80 [ 286.412594][ T8483] ? clear_bhb_loop+0x40/0x90 [ 286.412635][ T8483] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.412669][ T8483] RIP: 0033:0x7fad7179c799 [ 286.412697][ T8483] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 286.412730][ T8483] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.412763][ T8483] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 286.412784][ T8483] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 286.412804][ T8483] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 286.412825][ T8483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 286.412844][ T8483] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 286.412889][ T8483] [ 286.944229][ T8468] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 288.009415][ T8517] raw_sendmsg: syz.1.629 forgot to set AF_INET. Fix it! [ 288.320375][ T8525] FAULT_INJECTION: forcing a failure. [ 288.320375][ T8525] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 288.334143][ T8525] CPU: 1 UID: 0 PID: 8525 Comm: syz.3.632 Tainted: G L syzkaller #0 PREEMPT(full) [ 288.334196][ T8525] Tainted: [L]=SOFTLOCKUP [ 288.334208][ T8525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 288.334227][ T8525] Call Trace: [ 288.334238][ T8525] [ 288.334258][ T8525] dump_stack_lvl+0x100/0x190 [ 288.334324][ T8525] should_fail_ex.cold+0x5/0xa [ 288.334366][ T8525] _copy_from_user+0x2e/0xd0 [ 288.334401][ T8525] restore_sigcontext+0xcd/0x6a0 [ 288.334445][ T8525] ? __pfx_restore_sigcontext+0x10/0x10 [ 288.334516][ T8525] ? __pfx_restore_altstack+0x10/0x10 [ 288.334566][ T8525] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.334603][ T8525] ? lockdep_hardirqs_on+0x78/0x100 [ 288.334650][ T8525] __do_sys_rt_sigreturn+0x229/0x2c0 [ 288.334692][ T8525] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 288.334748][ T8525] do_syscall_64+0x106/0xf80 [ 288.334787][ T8525] ? clear_bhb_loop+0x40/0x90 [ 288.334829][ T8525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.334863][ T8525] RIP: 0033:0x7f8baf53db19 [ 288.334892][ T8525] Code: 11 06 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 0c 25 [ 288.334926][ T8525] RSP: 002b:00007f8bb0422a80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f [ 288.334959][ T8525] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf53db19 [ 288.335000][ T8525] RDX: 00007f8bb0422a80 RSI: 00007f8bb0422bb0 RDI: 0000000000000011 [ 288.335021][ T8525] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 288.335042][ T8525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.335070][ T8525] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 288.335114][ T8525] [ 288.560707][ T8522] netlink: 334 bytes leftover after parsing attributes in process `syz.1.631'. [ 288.890804][ T8529] FAULT_INJECTION: forcing a failure. [ 288.890804][ T8529] name failslab, interval 1, probability 0, space 0, times 0 [ 288.890898][ T8529] CPU: 0 UID: 0 PID: 8529 Comm: syz.1.633 Tainted: G L syzkaller #0 PREEMPT(full) [ 288.890946][ T8529] Tainted: [L]=SOFTLOCKUP [ 288.890957][ T8529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 288.890985][ T8529] Call Trace: [ 288.890994][ T8529] [ 288.891004][ T8529] dump_stack_lvl+0x100/0x190 [ 288.891062][ T8529] should_fail_ex.cold+0x5/0xa [ 288.891101][ T8529] should_failslab+0xc2/0x120 [ 288.891136][ T8529] __kmalloc_cache_noprof+0x7a/0x6f0 [ 288.891177][ T8529] ? user_buffer_init+0x40f/0x6d0 [ 288.891237][ T8529] user_buffer_init+0x40f/0x6d0 [ 288.891294][ T8529] tracing_mark_open+0x1b7/0x240 [ 288.891351][ T8529] do_dentry_open+0x6d8/0x1660 [ 288.891383][ T8529] ? __pfx_tracing_mark_open+0x10/0x10 [ 288.891447][ T8529] vfs_open+0x82/0x3f0 [ 288.891492][ T8529] path_openat+0x208c/0x31a0 [ 288.891536][ T8529] ? __pfx_path_openat+0x10/0x10 [ 288.891582][ T8529] do_file_open+0x20e/0x430 [ 288.891615][ T8529] ? __pfx_do_file_open+0x10/0x10 [ 288.891672][ T8529] ? alloc_fd+0x476/0x790 [ 288.891704][ T8529] ? do_getname+0x191/0x390 [ 288.891745][ T8529] do_sys_openat2+0x10d/0x1e0 [ 288.891784][ T8529] ? __pfx_do_sys_openat2+0x10/0x10 [ 288.891826][ T8529] ? __fget_files+0x21f/0x3d0 [ 288.891867][ T8529] __x64_sys_openat+0x12d/0x210 [ 288.891913][ T8529] ? __pfx___x64_sys_openat+0x10/0x10 [ 288.891982][ T8529] do_syscall_64+0x106/0xf80 [ 288.892019][ T8529] ? clear_bhb_loop+0x40/0x90 [ 288.892057][ T8529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.892088][ T8529] RIP: 0033:0x7f2e3d39c799 [ 288.892113][ T8529] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 288.892144][ T8529] RSP: 002b:00007f2e3e20e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 288.892177][ T8529] RAX: ffffffffffffffda RBX: 00007f2e3d615fa0 RCX: 00007f2e3d39c799 [ 288.892199][ T8529] RDX: 0000000000109c00 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 288.892220][ T8529] RBP: 00007f2e3d432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 288.892240][ T8529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 288.892260][ T8529] R13: 00007f2e3d616038 R14: 00007f2e3d615fa0 R15: 00007ffc47febf38 [ 288.892304][ T8529] [ 289.697538][ T8540] zswap: compressor 000 not available [ 290.008526][ T8555] FAULT_INJECTION: forcing a failure. [ 290.008526][ T8555] name failslab, interval 1, probability 0, space 0, times 0 [ 290.096808][ T8555] CPU: 0 UID: 0 PID: 8555 Comm: syz.0.641 Tainted: G L syzkaller #0 PREEMPT(full) [ 290.096865][ T8555] Tainted: [L]=SOFTLOCKUP [ 290.096877][ T8555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 290.096898][ T8555] Call Trace: [ 290.096909][ T8555] [ 290.096922][ T8555] dump_stack_lvl+0x100/0x190 [ 290.096995][ T8555] should_fail_ex.cold+0x5/0xa [ 290.097038][ T8555] should_failslab+0xc2/0x120 [ 290.097075][ T8555] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 290.097128][ T8555] ? __kernfs_iattrs+0x126/0x400 [ 290.097196][ T8555] __kernfs_iattrs+0x126/0x400 [ 290.097244][ T8555] ? __pfx___kernfs_iattrs+0x10/0x10 [ 290.097293][ T8555] ? inode_newsize_ok+0x13d/0x200 [ 290.097349][ T8555] __kernfs_setattr+0x4d/0x3c0 [ 290.097399][ T8555] kernfs_iop_setattr+0xda/0x130 [ 290.097460][ T8555] ? __pfx_kernfs_iop_setattr+0x10/0x10 [ 290.097507][ T8555] notify_change+0xb25/0x1330 [ 290.097576][ T8555] do_truncate+0x1df/0x240 [ 290.097615][ T8555] ? __pfx_do_truncate+0x10/0x10 [ 290.097671][ T8555] path_openat+0x2a55/0x31a0 [ 290.097720][ T8555] ? __pfx_path_openat+0x10/0x10 [ 290.097772][ T8555] do_file_open+0x20e/0x430 [ 290.097811][ T8555] ? __pfx_do_file_open+0x10/0x10 [ 290.097880][ T8555] ? alloc_fd+0x476/0x790 [ 290.097919][ T8555] ? do_getname+0x191/0x390 [ 290.097967][ T8555] do_sys_openat2+0x10d/0x1e0 [ 290.098012][ T8555] ? __pfx_do_sys_openat2+0x10/0x10 [ 290.098060][ T8555] ? __fget_files+0x21f/0x3d0 [ 290.098102][ T8555] __x64_sys_openat+0x12d/0x210 [ 290.098149][ T8555] ? __pfx___x64_sys_openat+0x10/0x10 [ 290.098228][ T8555] do_syscall_64+0x106/0xf80 [ 290.098270][ T8555] ? clear_bhb_loop+0x40/0x90 [ 290.098314][ T8555] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.098352][ T8555] RIP: 0033:0x7f4f5019c799 [ 290.098382][ T8555] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 290.098416][ T8555] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 290.098449][ T8555] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 290.098473][ T8555] RDX: 00000000000c2700 RSI: 0000200000001040 RDI: ffffffffffffff9c [ 290.098495][ T8555] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 290.098516][ T8555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.098537][ T8555] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 290.098583][ T8555] [ 291.344226][ T8561] FAULT_INJECTION: forcing a failure. [ 291.344226][ T8561] name failslab, interval 1, probability 0, space 0, times 0 [ 291.360626][ T8561] CPU: 0 UID: 0 PID: 8561 Comm: syz.3.643 Tainted: G L syzkaller #0 PREEMPT(full) [ 291.360666][ T8561] Tainted: [L]=SOFTLOCKUP [ 291.360675][ T8561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 291.360689][ T8561] Call Trace: [ 291.360697][ T8561] [ 291.360707][ T8561] dump_stack_lvl+0x100/0x190 [ 291.360749][ T8561] should_fail_ex.cold+0x5/0xa [ 291.360778][ T8561] should_failslab+0xc2/0x120 [ 291.360804][ T8561] __kvmalloc_node_noprof+0xfa/0xa00 [ 291.360842][ T8561] ? sbitmap_init_node+0x1cc/0x720 [ 291.360882][ T8561] sbitmap_init_node+0x1cc/0x720 [ 291.360918][ T8561] sbitmap_queue_init_node+0x40/0x4a0 [ 291.360956][ T8561] blk_mq_init_tags+0x184/0x300 [ 291.360996][ T8561] blk_mq_alloc_map_and_rqs+0x218/0xeb0 [ 291.361047][ T8561] blk_mq_alloc_sched_tags+0x1de/0x350 [ 291.361082][ T8561] blk_mq_alloc_sched_res+0x8e/0x250 [ 291.361115][ T8561] elevator_change+0x136/0x530 [ 291.361145][ T8561] elv_iosched_store+0x3be/0x460 [ 291.361173][ T8561] ? __pfx_elv_iosched_store+0x10/0x10 [ 291.361198][ T8561] ? kasan_save_track+0x14/0x30 [ 291.361249][ T8561] ? __pfx_elv_iosched_store+0x10/0x10 [ 291.361280][ T8561] queue_attr_store+0x25f/0x2f0 [ 291.361320][ T8561] ? __pfx_queue_attr_store+0x10/0x10 [ 291.361357][ T8561] ? __lock_acquire+0x4a5/0x2630 [ 291.361400][ T8561] ? find_held_lock+0x2b/0x80 [ 291.361421][ T8561] ? sysfs_file_kobj+0xe4/0x290 [ 291.361449][ T8561] ? sysfs_file_kobj+0xe4/0x290 [ 291.361481][ T8561] ? __pfx_queue_attr_store+0x10/0x10 [ 291.361518][ T8561] sysfs_kf_write+0xf2/0x150 [ 291.361549][ T8561] kernfs_fop_write_iter+0x3e0/0x5f0 [ 291.361573][ T8561] ? __pfx_sysfs_kf_write+0x10/0x10 [ 291.361606][ T8561] iter_file_splice_write+0x830/0x10a0 [ 291.361646][ T8561] ? __pfx_iter_file_splice_write+0x10/0x10 [ 291.361676][ T8561] ? __pfx_copy_splice_read+0x10/0x10 [ 291.361731][ T8561] ? __pfx_iter_file_splice_write+0x10/0x10 [ 291.361758][ T8561] direct_splice_actor+0x192/0x6c0 [ 291.361801][ T8561] splice_direct_to_actor+0x345/0xa30 [ 291.361827][ T8561] ? __pfx_direct_splice_actor+0x10/0x10 [ 291.361873][ T8561] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 291.361906][ T8561] do_splice_direct+0x174/0x240 [ 291.361930][ T8561] ? __pfx_do_splice_direct+0x10/0x10 [ 291.361955][ T8561] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 291.361999][ T8561] ? rw_verify_area+0xce/0x6d0 [ 291.362044][ T8561] do_sendfile+0xadc/0xe20 [ 291.362087][ T8561] ? __pfx_do_sendfile+0x10/0x10 [ 291.362129][ T8561] ? __x64_sys_futex+0x34f/0x4d0 [ 291.362160][ T8561] ? __x64_sys_futex+0x358/0x4d0 [ 291.362195][ T8561] __x64_sys_sendfile64+0x1d8/0x220 [ 291.362223][ T8561] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 291.362260][ T8561] do_syscall_64+0x106/0xf80 [ 291.362289][ T8561] ? clear_bhb_loop+0x40/0x90 [ 291.362319][ T8561] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.362345][ T8561] RIP: 0033:0x7f8baf59c799 [ 291.362365][ T8561] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 291.362388][ T8561] RSP: 002b:00007f8bb0423028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 291.362411][ T8561] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59c799 [ 291.362427][ T8561] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 291.362441][ T8561] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 291.362456][ T8561] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000 [ 291.362471][ T8561] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 291.362502][ T8561] [ 292.419012][ T8591] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 292.472097][ T8591] netlink: 4 bytes leftover after parsing attributes in process `syz.2.654'. [ 292.944608][ T8608] FAULT_INJECTION: forcing a failure. [ 292.944608][ T8608] name failslab, interval 1, probability 0, space 0, times 0 [ 292.996847][ T8608] CPU: 0 UID: 0 PID: 8608 Comm: syz.0.659 Tainted: G L syzkaller #0 PREEMPT(full) [ 292.996902][ T8608] Tainted: [L]=SOFTLOCKUP [ 292.996914][ T8608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 292.996944][ T8608] Call Trace: [ 292.996956][ T8608] [ 292.996969][ T8608] dump_stack_lvl+0x100/0x190 [ 292.997029][ T8608] should_fail_ex.cold+0x5/0xa [ 292.997070][ T8608] should_failslab+0xc2/0x120 [ 292.997108][ T8608] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 292.997164][ T8608] ? devinet_init_net+0xa3/0x8d0 [ 292.997218][ T8608] ? __pfx_devinet_init_net+0x10/0x10 [ 292.997265][ T8608] kmemdup_noprof+0x29/0x60 [ 292.997319][ T8608] devinet_init_net+0xa3/0x8d0 [ 292.997370][ T8608] ? __pfx_devinet_init_net+0x10/0x10 [ 292.997414][ T8608] ops_init+0x1e2/0x5f0 [ 292.997460][ T8608] setup_net+0x118/0x3a0 [ 292.997502][ T8608] ? __pfx_setup_net+0x10/0x10 [ 292.997542][ T8608] ? lockdep_init_map_type+0x5c/0x250 [ 292.997588][ T8608] ? mutex_init_lockep+0x110/0x150 [ 292.997641][ T8608] copy_net_ns+0x46f/0x7c0 [ 292.997694][ T8608] create_new_namespaces+0x3ea/0xac0 [ 292.997739][ T8608] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 292.997780][ T8608] ksys_unshare+0x473/0xad0 [ 292.997825][ T8608] ? __pfx_ksys_unshare+0x10/0x10 [ 292.997882][ T8608] __x64_sys_unshare+0x31/0x40 [ 292.997924][ T8608] do_syscall_64+0x106/0xf80 [ 292.997974][ T8608] ? clear_bhb_loop+0x40/0x90 [ 292.998018][ T8608] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.998054][ T8608] RIP: 0033:0x7f4f5019c799 [ 292.998083][ T8608] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 292.998116][ T8608] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 292.998148][ T8608] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 292.998175][ T8608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 292.998195][ T8608] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 292.998215][ T8608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.998236][ T8608] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 292.998281][ T8608] [ 294.911413][ T8642] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.668: iget: checksum invalid [ 294.957384][ T8642] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 294.970460][ T8642] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.668: iget: checksum invalid [ 294.988980][ T8642] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 295.001630][ T8642] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.668: iget: checksum invalid [ 295.020768][ T8642] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 295.032436][ T8642] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.668: iget: checksum invalid [ 295.071143][ T8642] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 295.116529][ T8642] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 295.147254][ T8642] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 295.489132][ T8655] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 295.496249][ T8655] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 295.507657][ T8655] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 295.518292][ T8655] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 295.564851][ T8650] ima: policy update failed [ 295.693285][ T30] audit: type=1802 audit(1773113689.277:41): pid=8650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.672" res=0 errno=0 [ 296.389030][ T30] audit: type=1804 audit(1773113689.987:42): pid=8678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.678" name="/newroot/163/file0" dev="tmpfs" ino=853 res=1 errno=0 [ 296.536798][ T30] audit: type=1804 audit(1773113690.077:43): pid=8682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.678" name="/newroot/163/file0" dev="tmpfs" ino=853 res=1 errno=0 [ 297.475479][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 297.546789][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 297.553064][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 297.555997][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout [ 297.703035][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.074395][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.092417][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.147951][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.189701][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.224558][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.277068][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.315245][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.355444][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.369992][ T8726] FAULT_INJECTION: forcing a failure. [ 298.369992][ T8726] name failslab, interval 1, probability 0, space 0, times 0 [ 298.397458][ T8714] netlink: 62 bytes leftover after parsing attributes in process `syz.0.685'. [ 298.423567][ T8726] CPU: 1 UID: 0 PID: 8726 Comm: syz.2.688 Tainted: G L syzkaller #0 PREEMPT(full) [ 298.423623][ T8726] Tainted: [L]=SOFTLOCKUP [ 298.423636][ T8726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 298.423657][ T8726] Call Trace: [ 298.423668][ T8726] [ 298.423681][ T8726] dump_stack_lvl+0x100/0x190 [ 298.423739][ T8726] should_fail_ex.cold+0x5/0xa [ 298.423779][ T8726] should_failslab+0xc2/0x120 [ 298.423814][ T8726] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 298.423864][ T8726] ? __kernfs_new_node+0xd2/0x960 [ 298.423922][ T8726] __kernfs_new_node+0xd2/0x960 [ 298.423975][ T8726] ? __pfx___kernfs_new_node+0x10/0x10 [ 298.424033][ T8726] ? find_held_lock+0x2b/0x80 [ 298.424064][ T8726] ? kernfs_root+0xee/0x2a0 [ 298.424109][ T8726] ? kernfs_root+0xee/0x2a0 [ 298.424165][ T8726] kernfs_new_node+0x11b/0x1a0 [ 298.424234][ T8726] __kernfs_create_file+0x53/0x350 [ 298.424279][ T8726] sysfs_add_file_mode_ns+0x207/0x3c0 [ 298.424335][ T8726] internal_create_group+0x593/0xf40 [ 298.424399][ T8726] ? __pfx_internal_create_group+0x10/0x10 [ 298.424467][ T8726] sysfs_slab_add+0x1a4/0x1f0 [ 298.424505][ T8726] do_kmem_cache_create+0x472/0x540 [ 298.424548][ T8726] __kmem_cache_create_args+0x386/0x420 [ 298.424603][ T8726] mon_text_open+0x333/0x510 [ 298.424655][ T8726] ? __pfx_mon_text_open+0x10/0x10 [ 298.424707][ T8726] ? __pfx_mon_text_ctor+0x10/0x10 [ 298.424754][ T8726] ? find_held_lock+0x2b/0x80 [ 298.424785][ T8726] ? __pfx_apparmor_file_open+0x10/0x10 [ 298.424832][ T8726] ? lockdown_is_locked_down+0x3d/0x140 [ 298.424877][ T8726] ? bpf_lsm_locked_down+0x9/0x10 [ 298.424918][ T8726] ? __pfx_mon_text_open+0x10/0x10 [ 298.424965][ T8726] full_proxy_open_regular+0x1b6/0x370 [ 298.425018][ T8726] do_dentry_open+0x6d8/0x1660 [ 298.425051][ T8726] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 298.425110][ T8726] vfs_open+0x82/0x3f0 [ 298.425157][ T8726] path_openat+0x208c/0x31a0 [ 298.425208][ T8726] ? __pfx_path_openat+0x10/0x10 [ 298.425267][ T8726] do_file_open+0x20e/0x430 [ 298.425307][ T8726] ? __pfx_do_file_open+0x10/0x10 [ 298.425375][ T8726] ? alloc_fd+0x476/0x790 [ 298.425412][ T8726] ? do_getname+0x191/0x390 [ 298.425459][ T8726] do_sys_openat2+0x10d/0x1e0 [ 298.425503][ T8726] ? __pfx_do_sys_openat2+0x10/0x10 [ 298.425564][ T8726] __x64_sys_openat+0x12d/0x210 [ 298.425610][ T8726] ? __pfx___x64_sys_openat+0x10/0x10 [ 298.425672][ T8726] do_syscall_64+0x106/0xf80 [ 298.425711][ T8726] ? clear_bhb_loop+0x40/0x90 [ 298.425754][ T8726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.425789][ T8726] RIP: 0033:0x7fad7179c799 [ 298.425817][ T8726] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.425853][ T8726] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 298.425887][ T8726] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 298.425909][ T8726] RDX: 0000000000022202 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 298.425932][ T8726] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 298.425952][ T8726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.425971][ T8726] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 298.426018][ T8726] [ 298.691539][ T8726] SLUB: Unable to add cache mon_text_ffff88807c668c00 to sysfs [ 299.295005][ T30] audit: type=1804 audit(1773113692.877:44): pid=8740 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.691" name="/newroot/157/file0" dev="tmpfs" ino=826 res=1 errno=0 [ 299.366076][ T30] audit: type=1804 audit(1773113692.957:45): pid=8741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.691" name="/newroot/157/file0" dev="tmpfs" ino=826 res=1 errno=0 [ 301.980660][ T8780] FAULT_INJECTION: forcing a failure. [ 301.980660][ T8780] name failslab, interval 1, probability 0, space 0, times 0 [ 302.057157][ T8780] CPU: 0 UID: 0 PID: 8780 Comm: syz.3.703 Tainted: G L syzkaller #0 PREEMPT(full) [ 302.057211][ T8780] Tainted: [L]=SOFTLOCKUP [ 302.057230][ T8780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 302.057249][ T8780] Call Trace: [ 302.057260][ T8780] [ 302.057273][ T8780] dump_stack_lvl+0x100/0x190 [ 302.057331][ T8780] should_fail_ex.cold+0x5/0xa [ 302.057370][ T8780] should_failslab+0xc2/0x120 [ 302.057407][ T8780] __kmalloc_cache_noprof+0x7a/0x6f0 [ 302.057451][ T8780] ? trace_pid_list_alloc+0x232/0x480 [ 302.057514][ T8780] trace_pid_list_alloc+0x232/0x480 [ 302.057573][ T8780] trace_pid_write+0x110/0x460 [ 302.057629][ T8780] ? __pfx_trace_pid_write+0x10/0x10 [ 302.057710][ T8780] event_pid_write.isra.0+0x1e4/0x800 [ 302.057772][ T8780] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 302.057862][ T8780] vfs_write+0x2aa/0x1070 [ 302.057917][ T8780] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 302.057975][ T8780] ? __pfx_vfs_write+0x10/0x10 [ 302.058026][ T8780] ? __fget_files+0x215/0x3d0 [ 302.058069][ T8780] ? __fget_files+0x21f/0x3d0 [ 302.058112][ T8780] ksys_write+0x12a/0x250 [ 302.058143][ T8780] ? __pfx_ksys_write+0x10/0x10 [ 302.058192][ T8780] do_syscall_64+0x106/0xf80 [ 302.058243][ T8780] ? clear_bhb_loop+0x40/0x90 [ 302.058286][ T8780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.058322][ T8780] RIP: 0033:0x7f8baf59c799 [ 302.058348][ T8780] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 302.058381][ T8780] RSP: 002b:00007f8bb0423028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 302.058415][ T8780] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59c799 [ 302.058437][ T8780] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 302.058455][ T8780] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 302.058476][ T8780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.058496][ T8780] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 302.058543][ T8780] [ 303.295893][ T8796] zswap: compressor not available [ 304.706742][ T30] audit: type=1804 audit(1773113698.297:46): pid=8828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.714" name="/newroot/185/file0" dev="tmpfs" ino=973 res=1 errno=0 [ 304.789356][ T30] audit: type=1804 audit(1773113698.387:47): pid=8831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.714" name="/newroot/185/file0" dev="tmpfs" ino=973 res=1 errno=0 [ 307.278663][ T8870] __nla_validate_parse: 9 callbacks suppressed [ 307.278693][ T8870] netlink: 62 bytes leftover after parsing attributes in process `syz.2.725'. [ 308.939036][ T8898] FAULT_INJECTION: forcing a failure. [ 308.939036][ T8898] name failslab, interval 1, probability 0, space 0, times 0 [ 309.026786][ T8898] CPU: 1 UID: 0 PID: 8898 Comm: syz.3.734 Tainted: G L syzkaller #0 PREEMPT(full) [ 309.026845][ T8898] Tainted: [L]=SOFTLOCKUP [ 309.026857][ T8898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 309.026878][ T8898] Call Trace: [ 309.026889][ T8898] [ 309.026901][ T8898] dump_stack_lvl+0x100/0x190 [ 309.026960][ T8898] should_fail_ex.cold+0x5/0xa [ 309.027003][ T8898] ? __register_sysctl_table+0xac/0x1650 [ 309.027059][ T8898] should_failslab+0xc2/0x120 [ 309.027095][ T8898] __kmalloc_noprof+0xe0/0x850 [ 309.027156][ T8898] __register_sysctl_table+0xac/0x1650 [ 309.027244][ T8898] ? is_module_address+0x5f/0xf0 [ 309.027297][ T8898] ? __pfx___register_sysctl_table+0x10/0x10 [ 309.027353][ T8898] ? is_module_address+0x69/0xf0 [ 309.027395][ T8898] ? register_net_sysctl_sz+0x222/0x430 [ 309.027454][ T8898] __devinet_sysctl_register+0x1b9/0x360 [ 309.027505][ T8898] ? trace_kmalloc+0x101/0x130 [ 309.027540][ T8898] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 309.027605][ T8898] ? __asan_memcpy+0x3c/0x60 [ 309.027658][ T8898] devinet_init_net+0x303/0x8d0 [ 309.027711][ T8898] ? __pfx_devinet_init_net+0x10/0x10 [ 309.027764][ T8898] ops_init+0x1e2/0x5f0 [ 309.027812][ T8898] setup_net+0x118/0x3a0 [ 309.027859][ T8898] ? __pfx_setup_net+0x10/0x10 [ 309.027900][ T8898] ? lockdep_init_map_type+0x5c/0x250 [ 309.027948][ T8898] ? mutex_init_lockep+0x110/0x150 [ 309.027999][ T8898] copy_net_ns+0x46f/0x7c0 [ 309.028049][ T8898] create_new_namespaces+0x3ea/0xac0 [ 309.028093][ T8898] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 309.028134][ T8898] ksys_unshare+0x473/0xad0 [ 309.028184][ T8898] ? __pfx_ksys_unshare+0x10/0x10 [ 309.028245][ T8898] __x64_sys_unshare+0x31/0x40 [ 309.028288][ T8898] do_syscall_64+0x106/0xf80 [ 309.028329][ T8898] ? clear_bhb_loop+0x40/0x90 [ 309.028372][ T8898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.028407][ T8898] RIP: 0033:0x7f8baf59c799 [ 309.028435][ T8898] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 309.028468][ T8898] RSP: 002b:00007f8bb0423028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 309.028502][ T8898] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59c799 [ 309.028524][ T8898] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 309.028544][ T8898] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 309.028565][ T8898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 309.028584][ T8898] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 309.028630][ T8898] [ 311.008636][ T8924] FAULT_INJECTION: forcing a failure. [ 311.008636][ T8924] name failslab, interval 1, probability 0, space 0, times 0 [ 311.023391][ T8924] CPU: 1 UID: 0 PID: 8924 Comm: syz.2.741 Tainted: G L syzkaller #0 PREEMPT(full) [ 311.023442][ T8924] Tainted: [L]=SOFTLOCKUP [ 311.023454][ T8924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 311.023473][ T8924] Call Trace: [ 311.023484][ T8924] [ 311.023496][ T8924] dump_stack_lvl+0x100/0x190 [ 311.023562][ T8924] should_fail_ex.cold+0x5/0xa [ 311.023600][ T8924] ? vhost_dev_set_owner+0x190/0xa30 [ 311.023639][ T8924] should_failslab+0xc2/0x120 [ 311.023671][ T8924] __kmalloc_noprof+0xe0/0x850 [ 311.023728][ T8924] vhost_dev_set_owner+0x190/0xa30 [ 311.023785][ T8924] vhost_net_ioctl+0xfa3/0x1910 [ 311.023827][ T8924] ? do_vfs_ioctl+0x226/0x13e0 [ 311.023877][ T8924] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 311.023924][ T8924] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 311.023976][ T8924] ? find_held_lock+0x2b/0x80 [ 311.024006][ T8924] ? __fget_files+0x215/0x3d0 [ 311.024035][ T8924] ? hook_file_ioctl_common+0x146/0x410 [ 311.024099][ T8924] ? __fget_files+0x21f/0x3d0 [ 311.024135][ T8924] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 311.024181][ T8924] __x64_sys_ioctl+0x18e/0x210 [ 311.024232][ T8924] do_syscall_64+0x106/0xf80 [ 311.024279][ T8924] ? clear_bhb_loop+0x40/0x90 [ 311.024323][ T8924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.024358][ T8924] RIP: 0033:0x7fad7179c799 [ 311.024385][ T8924] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 311.024418][ T8924] RSP: 002b:00007fad72642028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.024449][ T8924] RAX: ffffffffffffffda RBX: 00007fad71a16090 RCX: 00007fad7179c799 [ 311.024471][ T8924] RDX: 0000000000000005 RSI: 000000000000af01 RDI: 0000000000000007 [ 311.024491][ T8924] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 311.024512][ T8924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.024540][ T8924] R13: 00007fad71a16128 R14: 00007fad71a16090 R15: 00007ffede925428 [ 311.024580][ T8924] [ 311.618757][ T8934] FAULT_INJECTION: forcing a failure. [ 311.618757][ T8934] name failslab, interval 1, probability 0, space 0, times 0 [ 311.699929][ T8934] CPU: 0 UID: 0 PID: 8934 Comm: syz.3.743 Tainted: G L syzkaller #0 PREEMPT(full) [ 311.699985][ T8934] Tainted: [L]=SOFTLOCKUP [ 311.699997][ T8934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 311.700017][ T8934] Call Trace: [ 311.700028][ T8934] [ 311.700040][ T8934] dump_stack_lvl+0x100/0x190 [ 311.700098][ T8934] should_fail_ex.cold+0x5/0xa [ 311.700136][ T8934] should_failslab+0xc2/0x120 [ 311.700172][ T8934] __kmalloc_cache_noprof+0x7a/0x6f0 [ 311.700217][ T8934] ? kvm_set_irq_routing+0x24f/0x960 [ 311.700268][ T8934] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 311.700333][ T8934] kvm_set_irq_routing+0x24f/0x960 [ 311.700396][ T8934] kvm_arch_vm_ioctl+0xf08/0x18d0 [ 311.700447][ T8934] ? __pfx_kvm_arch_vm_ioctl+0x10/0x10 [ 311.700509][ T8934] ? __lock_acquire+0x4a5/0x2630 [ 311.700560][ T8934] ? __lock_acquire+0x4a5/0x2630 [ 311.700612][ T8934] ? __lock_acquire+0x4a5/0x2630 [ 311.700664][ T8934] ? __lock_acquire+0x4a5/0x2630 [ 311.700733][ T8934] ? is_bpf_text_address+0x8a/0x1a0 [ 311.700785][ T8934] ? bpf_ksym_find+0x124/0x1c0 [ 311.700826][ T8934] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 311.700863][ T8934] ? is_bpf_text_address+0x94/0x1a0 [ 311.700913][ T8934] ? kernel_text_address+0x8d/0x100 [ 311.700965][ T8934] ? __kernel_text_address+0xd/0x30 [ 311.701013][ T8934] ? unwind_get_return_address+0x59/0xa0 [ 311.701048][ T8934] ? arch_stack_walk+0xa6/0xf0 [ 311.701092][ T8934] ? tomoyo_path_number_perm+0x46d/0x580 [ 311.701148][ T8934] ? stack_trace_save+0x8e/0xc0 [ 311.701181][ T8934] ? __pfx_stack_trace_save+0x10/0x10 [ 311.701216][ T8934] ? stack_depot_save_flags+0x27/0x9d0 [ 311.701255][ T8934] ? __lock_acquire+0x4a5/0x2630 [ 311.701298][ T8934] ? tomoyo_path_number_perm+0x46d/0x580 [ 311.701354][ T8934] ? kasan_save_stack+0x3f/0x50 [ 311.701405][ T8934] ? kasan_save_stack+0x30/0x50 [ 311.701455][ T8934] ? kasan_save_track+0x14/0x30 [ 311.701516][ T8934] ? kasan_save_free_info+0x3b/0x70 [ 311.701559][ T8934] ? __kasan_slab_free+0x5f/0x80 [ 311.701595][ T8934] kvm_vm_ioctl+0x1564/0x4080 [ 311.701647][ T8934] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 311.701709][ T8934] ? tomoyo_path_number_perm+0x46d/0x580 [ 311.701768][ T8934] ? kasan_quarantine_put+0x104/0x240 [ 311.701819][ T8934] ? lockdep_hardirqs_on+0x78/0x100 [ 311.701864][ T8934] ? find_held_lock+0x2b/0x80 [ 311.701895][ T8934] ? tomoyo_path_number_perm+0x28f/0x580 [ 311.701950][ T8934] ? tomoyo_path_number_perm+0x28f/0x580 [ 311.702012][ T8934] ? tomoyo_path_number_perm+0x188/0x580 [ 311.702068][ T8934] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 311.702122][ T8934] ? futex_wait+0x125/0x380 [ 311.702186][ T8934] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 311.702246][ T8934] ? do_vfs_ioctl+0x226/0x13e0 [ 311.702295][ T8934] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 311.702354][ T8934] ? find_held_lock+0x2b/0x80 [ 311.702386][ T8934] ? __fget_files+0x215/0x3d0 [ 311.702417][ T8934] ? hook_file_ioctl_common+0x146/0x410 [ 311.702492][ T8934] ? __fget_files+0x21f/0x3d0 [ 311.702530][ T8934] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 311.702569][ T8934] __x64_sys_ioctl+0x18e/0x210 [ 311.702621][ T8934] do_syscall_64+0x106/0xf80 [ 311.702662][ T8934] ? clear_bhb_loop+0x40/0x90 [ 311.702704][ T8934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.702739][ T8934] RIP: 0033:0x7f8baf59c799 [ 311.702768][ T8934] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 311.702802][ T8934] RSP: 002b:00007f8bb0402028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.702835][ T8934] RAX: ffffffffffffffda RBX: 00007f8baf816090 RCX: 00007f8baf59c799 [ 311.702857][ T8934] RDX: 0010000000000402 RSI: 000000000000ae60 RDI: 0000000000000003 [ 311.702878][ T8934] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 311.702899][ T8934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.702918][ T8934] R13: 00007f8baf816128 R14: 00007f8baf816090 R15: 00007ffe3bcd74b8 [ 311.702963][ T8934] [ 313.413206][ T8959] FAULT_INJECTION: forcing a failure. [ 313.413206][ T8959] name failslab, interval 1, probability 0, space 0, times 0 [ 313.533840][ T8959] CPU: 0 UID: 0 PID: 8959 Comm: syz.0.751 Tainted: G L syzkaller #0 PREEMPT(full) [ 313.533897][ T8959] Tainted: [L]=SOFTLOCKUP [ 313.533910][ T8959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 313.533930][ T8959] Call Trace: [ 313.533941][ T8959] [ 313.533953][ T8959] dump_stack_lvl+0x100/0x190 [ 313.534012][ T8959] should_fail_ex.cold+0x5/0xa [ 313.534051][ T8959] should_failslab+0xc2/0x120 [ 313.534086][ T8959] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 313.534145][ T8959] ? alloc_empty_file+0x55/0x1c0 [ 313.534187][ T8959] ? __pfx_stack_trace_save+0x10/0x10 [ 313.534227][ T8959] alloc_empty_file+0x55/0x1c0 [ 313.534270][ T8959] path_openat+0xe8/0x31a0 [ 313.534301][ T8959] ? kasan_save_stack+0x3f/0x50 [ 313.534349][ T8959] ? kasan_save_stack+0x30/0x50 [ 313.534398][ T8959] ? kasan_save_track+0x14/0x30 [ 313.534446][ T8959] ? __kasan_slab_alloc+0x89/0x90 [ 313.534476][ T8959] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 313.534525][ T8959] ? do_getname+0x35/0x390 [ 313.534565][ T8959] ? do_sys_openat2+0xc5/0x1e0 [ 313.534607][ T8959] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.534648][ T8959] ? __pfx_path_openat+0x10/0x10 [ 313.534702][ T8959] do_file_open+0x20e/0x430 [ 313.534740][ T8959] ? __pfx_do_file_open+0x10/0x10 [ 313.534803][ T8959] ? alloc_fd+0x476/0x790 [ 313.534840][ T8959] ? do_getname+0x191/0x390 [ 313.534886][ T8959] do_sys_openat2+0x10d/0x1e0 [ 313.534930][ T8959] ? __pfx_do_sys_openat2+0x10/0x10 [ 313.534977][ T8959] ? find_held_lock+0x2b/0x80 [ 313.535018][ T8959] __x64_sys_openat+0x12d/0x210 [ 313.535065][ T8959] ? __pfx___x64_sys_openat+0x10/0x10 [ 313.535134][ T8959] do_syscall_64+0x106/0xf80 [ 313.535175][ T8959] ? clear_bhb_loop+0x40/0x90 [ 313.535215][ T8959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.535249][ T8959] RIP: 0033:0x7f4f5019c799 [ 313.535275][ T8959] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.535310][ T8959] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 313.535343][ T8959] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 313.535366][ T8959] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 313.535387][ T8959] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 313.535407][ T8959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.535427][ T8959] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 313.535471][ T8959] [ 316.322043][ T9007] netlink: 25 bytes leftover after parsing attributes in process `syz.1.762'. [ 316.380017][ T9005] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 316.764246][ T5831] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 317.550719][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.557239][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.797625][ T9026] netlink: 334 bytes leftover after parsing attributes in process `syz.3.766'. [ 321.485456][ T9072] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input24 [ 322.512695][ T9091] device-mapper: ioctl: Unable to rename non-existent device,  to [ 323.305959][ T9106] FAULT_INJECTION: forcing a failure. [ 323.305959][ T9106] name failslab, interval 1, probability 0, space 0, times 0 [ 323.336811][ T9106] CPU: 0 UID: 0 PID: 9106 Comm: syz.2.784 Tainted: G L syzkaller #0 PREEMPT(full) [ 323.336864][ T9106] Tainted: [L]=SOFTLOCKUP [ 323.336877][ T9106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 323.336896][ T9106] Call Trace: [ 323.336907][ T9106] [ 323.336920][ T9106] dump_stack_lvl+0x100/0x190 [ 323.336977][ T9106] should_fail_ex.cold+0x5/0xa [ 323.337016][ T9106] should_failslab+0xc2/0x120 [ 323.337052][ T9106] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 323.337102][ T9106] ? security_file_alloc+0x34/0x2c0 [ 323.337137][ T9106] ? trace_kmem_cache_alloc+0xf3/0x120 [ 323.337181][ T9106] security_file_alloc+0x34/0x2c0 [ 323.337218][ T9106] init_file+0x95/0x480 [ 323.337259][ T9106] alloc_empty_file+0x73/0x1c0 [ 323.337302][ T9106] alloc_file_pseudo+0x13a/0x230 [ 323.337346][ T9106] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 323.337391][ T9106] ? alloc_fd+0x476/0x790 [ 323.337430][ T9106] sock_alloc_file+0x50/0x210 [ 323.337480][ T9106] __sys_socket+0x1c0/0x260 [ 323.337513][ T9106] ? __pfx___sys_socket+0x10/0x10 [ 323.337557][ T9106] __x64_sys_socket+0x72/0xb0 [ 323.337586][ T9106] ? lockdep_hardirqs_on+0x78/0x100 [ 323.337627][ T9106] do_syscall_64+0x106/0xf80 [ 323.337707][ T9106] ? clear_bhb_loop+0x40/0x90 [ 323.337750][ T9106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 323.337785][ T9106] RIP: 0033:0x7fad7179e007 [ 323.337811][ T9106] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 323.337845][ T9106] RSP: 002b:00007fad72661f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 323.337878][ T9106] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179e007 [ 323.337900][ T9106] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 323.337920][ T9106] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 323.337940][ T9106] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 323.337962][ T9106] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 323.338006][ T9106] [ 324.066964][ T9117] binder: 9114:9117 ioctl c018620c 0 returned -1 [ 325.748658][ T9144] netlink: 25 bytes leftover after parsing attributes in process `syz.2.799'. [ 326.082278][ T9158] device-mapper: ioctl: Unable to rename non-existent device,  to [ 327.014387][ T9171] FAULT_INJECTION: forcing a failure. [ 327.014387][ T9171] name failslab, interval 1, probability 0, space 0, times 0 [ 327.087069][ T9171] CPU: 0 UID: 0 PID: 9171 Comm: syz.3.795 Tainted: G L syzkaller #0 PREEMPT(full) [ 327.087120][ T9171] Tainted: [L]=SOFTLOCKUP [ 327.087131][ T9171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 327.087151][ T9171] Call Trace: [ 327.087162][ T9171] [ 327.087175][ T9171] dump_stack_lvl+0x100/0x190 [ 327.087231][ T9171] should_fail_ex.cold+0x5/0xa [ 327.087271][ T9171] ? lsm_blob_alloc+0x68/0x90 [ 327.087312][ T9171] should_failslab+0xc2/0x120 [ 327.087349][ T9171] __kmalloc_noprof+0xe0/0x850 [ 327.087428][ T9171] ? trace_kmalloc+0x101/0x130 [ 327.087469][ T9171] lsm_blob_alloc+0x68/0x90 [ 327.087510][ T9171] security_sk_alloc+0x2d/0x290 [ 327.087563][ T9171] sk_prot_alloc+0x12a/0x2a0 [ 327.087615][ T9171] sk_alloc+0x36/0xe80 [ 327.087654][ T9171] __netlink_create+0x5e/0x2c0 [ 327.087689][ T9171] ? __wake_up+0x3f/0x60 [ 327.087729][ T9171] netlink_create+0x293/0x610 [ 327.087768][ T9171] ? __pfx_genl_bind+0x10/0x10 [ 327.087815][ T9171] ? __pfx_genl_unbind+0x10/0x10 [ 327.087861][ T9171] ? __pfx_genl_release+0x10/0x10 [ 327.087915][ T9171] __sock_create+0x339/0x860 [ 327.087976][ T9171] __sys_socket+0x14d/0x260 [ 327.088007][ T9171] ? __pfx___sys_socket+0x10/0x10 [ 327.088051][ T9171] __x64_sys_socket+0x72/0xb0 [ 327.088087][ T9171] ? lockdep_hardirqs_on+0x78/0x100 [ 327.088130][ T9171] do_syscall_64+0x106/0xf80 [ 327.088169][ T9171] ? clear_bhb_loop+0x40/0x90 [ 327.088212][ T9171] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.088247][ T9171] RIP: 0033:0x7f8baf59e007 [ 327.088275][ T9171] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 327.088309][ T9171] RSP: 002b:00007f8bb0421f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 327.088342][ T9171] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59e007 [ 327.088371][ T9171] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 327.088393][ T9171] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 327.088414][ T9171] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 327.088433][ T9171] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 327.088475][ T9171] [ 328.020114][ T9179] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input25 [ 329.463089][ T9201] FAULT_INJECTION: forcing a failure. [ 329.463089][ T9201] name failslab, interval 1, probability 0, space 0, times 0 [ 329.505560][ T9201] CPU: 0 UID: 0 PID: 9201 Comm: syz.0.804 Tainted: G L syzkaller #0 PREEMPT(full) [ 329.505619][ T9201] Tainted: [L]=SOFTLOCKUP [ 329.505632][ T9201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 329.505653][ T9201] Call Trace: [ 329.505664][ T9201] [ 329.505678][ T9201] dump_stack_lvl+0x100/0x190 [ 329.505739][ T9201] should_fail_ex.cold+0x5/0xa [ 329.505785][ T9201] ? sk_prot_alloc+0x10b/0x2a0 [ 329.505831][ T9201] should_failslab+0xc2/0x120 [ 329.505865][ T9201] __kmalloc_noprof+0xe0/0x850 [ 329.505929][ T9201] sk_prot_alloc+0x10b/0x2a0 [ 329.505983][ T9201] sk_alloc+0x36/0xe80 [ 329.506019][ T9201] packet_create+0x127/0x8e0 [ 329.506182][ T9201] __sock_create+0x339/0x860 [ 329.506252][ T9201] __sys_socket+0x14d/0x260 [ 329.506286][ T9201] ? __pfx___sys_socket+0x10/0x10 [ 329.506326][ T9201] __x64_sys_socket+0x72/0xb0 [ 329.506359][ T9201] ? lockdep_hardirqs_on+0x78/0x100 [ 329.506408][ T9201] do_syscall_64+0x106/0xf80 [ 329.506451][ T9201] ? clear_bhb_loop+0x40/0x90 [ 329.506494][ T9201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.506530][ T9201] RIP: 0033:0x7f4f5019c799 [ 329.506561][ T9201] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 329.506595][ T9201] RSP: 002b:00007f4f510ff028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 329.506626][ T9201] RAX: ffffffffffffffda RBX: 00007f4f50415fa0 RCX: 00007f4f5019c799 [ 329.506647][ T9201] RDX: 0000000000000300 RSI: 0000000000080003 RDI: 0000000000000011 [ 329.506668][ T9201] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 329.506689][ T9201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 329.506709][ T9201] R13: 00007f4f50416038 R14: 00007f4f50415fa0 R15: 00007ffd774ef0c8 [ 329.506754][ T9201] [ 330.873694][ T9212] FAULT_INJECTION: forcing a failure. [ 330.873694][ T9212] name failslab, interval 1, probability 0, space 0, times 0 [ 330.933579][ T9212] CPU: 0 UID: 0 PID: 9212 Comm: syz.1.806 Tainted: G L syzkaller #0 PREEMPT(full) [ 330.933637][ T9212] Tainted: [L]=SOFTLOCKUP [ 330.933649][ T9212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 330.933669][ T9212] Call Trace: [ 330.933680][ T9212] [ 330.933693][ T9212] dump_stack_lvl+0x100/0x190 [ 330.933754][ T9212] should_fail_ex.cold+0x5/0xa [ 330.933804][ T9212] should_failslab+0xc2/0x120 [ 330.933840][ T9212] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 330.933892][ T9212] ? security_file_alloc+0x34/0x2c0 [ 330.933927][ T9212] ? trace_kmem_cache_alloc+0xf3/0x120 [ 330.933970][ T9212] security_file_alloc+0x34/0x2c0 [ 330.934006][ T9212] init_file+0x95/0x480 [ 330.934046][ T9212] alloc_empty_file+0x73/0x1c0 [ 330.934090][ T9212] alloc_file_pseudo+0x13a/0x230 [ 330.934135][ T9212] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 330.934177][ T9212] ? alloc_fd+0x476/0x790 [ 330.934223][ T9212] sock_alloc_file+0x50/0x210 [ 330.934272][ T9212] __sys_socket+0x1c0/0x260 [ 330.934305][ T9212] ? __pfx___sys_socket+0x10/0x10 [ 330.934354][ T9212] __x64_sys_socket+0x72/0xb0 [ 330.934384][ T9212] ? lockdep_hardirqs_on+0x78/0x100 [ 330.934432][ T9212] do_syscall_64+0x106/0xf80 [ 330.934471][ T9212] ? clear_bhb_loop+0x40/0x90 [ 330.934516][ T9212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.934551][ T9212] RIP: 0033:0x7f2e3d39e007 [ 330.934580][ T9212] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 330.934614][ T9212] RSP: 002b:00007f2e3e20cf98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 330.934647][ T9212] RAX: ffffffffffffffda RBX: 00007f2e3d615fa0 RCX: 00007f2e3d39e007 [ 330.934669][ T9212] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 330.934690][ T9212] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 330.934710][ T9212] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 330.934731][ T9212] R13: 00007f2e3d616038 R14: 00007f2e3d615fa0 R15: 00007ffc47febf38 [ 330.934775][ T9212] syzkaller syzkaller login: [ 331.811018][ T9225] FAULT_INJECTION: forcing a failure. [ 331.811018][ T9225] name failslab, interval 1, probability 0, space 0, times 0 [ 331.952177][ T9225] CPU: 0 UID: 0 PID: 9225 Comm: syz.1.810 Tainted: G L syzkaller #0 PREEMPT(full) [ 331.952247][ T9225] Tainted: [L]=SOFTLOCKUP [ 331.952259][ T9225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 331.952281][ T9225] Call Trace: [ 331.952300][ T9225] [ 331.952313][ T9225] dump_stack_lvl+0x100/0x190 [ 331.952371][ T9225] should_fail_ex.cold+0x5/0xa [ 331.952413][ T9225] should_failslab+0xc2/0x120 [ 331.952460][ T9225] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 331.952511][ T9225] ? do_getname+0x35/0x390 [ 331.952559][ T9225] do_getname+0x35/0x390 [ 331.952602][ T9225] user_path_at+0x26/0x60 [ 331.952655][ T9225] __x64_sys_mount+0x1fb/0x310 [ 331.952695][ T9225] ? __pfx___x64_sys_mount+0x10/0x10 [ 331.952744][ T9225] do_syscall_64+0x106/0xf80 [ 331.952784][ T9225] ? clear_bhb_loop+0x40/0x90 [ 331.952823][ T9225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.952857][ T9225] RIP: 0033:0x7f2e3d39c799 [ 331.952883][ T9225] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 331.952916][ T9225] RSP: 002b:00007f2e3e20e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 331.952961][ T9225] RAX: ffffffffffffffda RBX: 00007f2e3d615fa0 RCX: 00007f2e3d39c799 [ 331.952982][ T9225] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 331.953003][ T9225] RBP: 00007f2e3d432bd9 R08: 0000200000000280 R09: 0000000000000000 [ 331.953023][ T9225] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 331.953043][ T9225] R13: 00007f2e3d616038 R14: 00007f2e3d615fa0 R15: 00007ffc47febf38 [ 331.953082][ T9225] [ 332.819815][ T9250] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 335.002428][ T9292] netlink: 4 bytes leftover after parsing attributes in process `syz.2.818'. [ 335.017437][ T9292] netlink: 25 bytes leftover after parsing attributes in process `syz.2.818'. [ 335.540464][ T9303] netlink: 4 bytes leftover after parsing attributes in process `syz.3.822'. [ 335.606524][ T9303] netlink: 5 bytes leftover after parsing attributes in process `syz.3.822'. [ 336.262621][ T9308] input: f as /devices/virtual/input/input26 [ 336.637492][ T9320] random: crng reseeded on system resumption [ 338.376707][ T30] audit: type=1804 audit(1773113731.967:48): pid=9333 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.829" name="/newroot/190/file0" dev="tmpfs" ino=998 res=1 errno=0 [ 340.771877][ T9368] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 342.432528][ T9397] FAULT_INJECTION: forcing a failure. [ 342.432528][ T9397] name failslab, interval 1, probability 0, space 0, times 0 [ 342.445492][ T9397] CPU: 0 UID: 0 PID: 9397 Comm: syz.2.841 Tainted: G L syzkaller #0 PREEMPT(full) [ 342.445541][ T9397] Tainted: [L]=SOFTLOCKUP [ 342.445553][ T9397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 342.445572][ T9397] Call Trace: [ 342.445582][ T9397] [ 342.445595][ T9397] dump_stack_lvl+0x100/0x190 [ 342.445649][ T9397] should_fail_ex.cold+0x5/0xa [ 342.445688][ T9397] should_failslab+0xc2/0x120 [ 342.445723][ T9397] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 342.445771][ T9397] ? security_file_alloc+0x34/0x2c0 [ 342.445807][ T9397] ? trace_kmem_cache_alloc+0xf3/0x120 [ 342.445849][ T9397] security_file_alloc+0x34/0x2c0 [ 342.445885][ T9397] init_file+0x95/0x480 [ 342.445935][ T9397] alloc_empty_file+0x73/0x1c0 [ 342.445979][ T9397] alloc_file_pseudo+0x13a/0x230 [ 342.446025][ T9397] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 342.446068][ T9397] ? alloc_fd+0x476/0x790 [ 342.446107][ T9397] sock_alloc_file+0x50/0x210 [ 342.446153][ T9397] __sys_socket+0x1c0/0x260 [ 342.446186][ T9397] ? __pfx___sys_socket+0x10/0x10 [ 342.446229][ T9397] __x64_sys_socket+0x72/0xb0 [ 342.446259][ T9397] ? lockdep_hardirqs_on+0x78/0x100 [ 342.446301][ T9397] do_syscall_64+0x106/0xf80 [ 342.446342][ T9397] ? clear_bhb_loop+0x40/0x90 [ 342.446385][ T9397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.446420][ T9397] RIP: 0033:0x7fad7179e007 [ 342.446449][ T9397] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 342.446482][ T9397] RSP: 002b:00007fad72661f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 342.446521][ T9397] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179e007 [ 342.446543][ T9397] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 342.446565][ T9397] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 342.446584][ T9397] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 342.446603][ T9397] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 342.446645][ T9397] [ 343.244649][ T9410] futex_wake_op: syz.1.845 tries to shift op by -2048; fix this program [ 343.254068][ T9410] futex_wake_op: syz.1.845 tries to shift op by -2048; fix this program [ 343.269303][ T9410] 0x000000000001-0x000000020000 : "" [ 343.323611][ T9410] ftl_cs: FTL header corrupt! [ 347.256086][ T9465] FAULT_INJECTION: forcing a failure. [ 347.256086][ T9465] name failslab, interval 1, probability 0, space 0, times 0 [ 347.282426][ T9465] CPU: 1 UID: 0 PID: 9465 Comm: syz.3.853 Tainted: G L syzkaller #0 PREEMPT(full) [ 347.282481][ T9465] Tainted: [L]=SOFTLOCKUP [ 347.282494][ T9465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 347.282514][ T9465] Call Trace: [ 347.282524][ T9465] [ 347.282535][ T9465] dump_stack_lvl+0x100/0x190 [ 347.282592][ T9465] should_fail_ex.cold+0x5/0xa [ 347.282633][ T9465] should_failslab+0xc2/0x120 [ 347.282668][ T9465] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 347.282718][ T9465] ? alloc_empty_file+0x55/0x1c0 [ 347.282778][ T9465] alloc_empty_file+0x55/0x1c0 [ 347.282820][ T9465] alloc_file_pseudo+0x13a/0x230 [ 347.282863][ T9465] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 347.282907][ T9465] ? alloc_fd+0x476/0x790 [ 347.282946][ T9465] sock_alloc_file+0x50/0x210 [ 347.282994][ T9465] __sys_socket+0x1c0/0x260 [ 347.283026][ T9465] ? __pfx___sys_socket+0x10/0x10 [ 347.283068][ T9465] __x64_sys_socket+0x72/0xb0 [ 347.283097][ T9465] ? lockdep_hardirqs_on+0x78/0x100 [ 347.283139][ T9465] do_syscall_64+0x106/0xf80 [ 347.283179][ T9465] ? clear_bhb_loop+0x40/0x90 [ 347.283220][ T9465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.283255][ T9465] RIP: 0033:0x7f8baf59e007 [ 347.283282][ T9465] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 347.283316][ T9465] RSP: 002b:00007f8bb0421f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 347.283346][ T9465] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59e007 [ 347.283367][ T9465] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 347.283387][ T9465] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 347.283406][ T9465] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 347.283427][ T9465] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 347.283471][ T9465] [ 348.528553][ T9489] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 348.617649][ T9489] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 348.685543][ T9489] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 348.706027][ T9489] page_type: f5(slab) [ 348.723745][ T9489] raw: 00fff00000000040 ffff88813fe3d140 dead000000000100 dead000000000122 [ 348.784710][ T9497] netlink: 8 bytes leftover after parsing attributes in process `syz.1.860'. [ 348.803536][ T9489] raw: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000 [ 348.843837][ T9489] head: 00fff00000000040 ffff88813fe3d140 dead000000000100 dead000000000122 [ 348.913824][ T9489] head: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000 [ 348.963429][ T9489] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 348.982801][ T9489] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 349.097490][ T9489] page dumped because: unmovable page [ 349.103012][ T9489] page_owner tracks the page as allocated [ 349.139002][ T9503] ubi0: attaching mtd0 [ 349.156946][ T9503] ubi0: scanning is finished [ 349.161676][ T9503] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 349.186649][ T9489] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 8497, tgid 8496 (syz.3.623), ts 287104112642, free_ts 287068380959 [ 349.210801][ T9489] post_alloc_hook+0x153/0x170 [ 349.216160][ T9489] get_page_from_freelist+0x111d/0x3140 [ 349.224027][ T9489] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 349.235917][ T9489] new_slab+0xa6/0x6c0 [ 349.253336][ T9489] refill_objects+0x26b/0x400 [ 349.258471][ T9489] __pcs_replace_empty_main+0x1ab/0x600 [ 349.264984][ T9489] __kmalloc_noprof+0x688/0x850 [ 349.274301][ T9489] tomoyo_realpath_from_path+0xb6/0x690 [ 349.280357][ T9489] tomoyo_path_number_perm+0x23c/0x580 [ 349.293296][ T9489] security_file_ioctl+0xd3/0x230 [ 349.298516][ T9489] __x64_sys_ioctl+0xb7/0x210 [ 349.305851][ T9489] do_syscall_64+0x106/0xf80 [ 349.310733][ T9489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.317275][ T9489] page last free pid 5812 tgid 5812 stack trace: [ 349.323998][ T9489] __free_frozen_pages+0x7e1/0x10d0 [ 349.338825][ T9489] __folio_put+0x3b4/0x540 [ 349.343763][ T9489] skb_release_data+0x667/0x9d0 [ 349.351046][ T9489] __kfree_skb+0x4f/0x70 [ 349.356502][ T9489] tcp_ack+0x2072/0x74f0 [ 349.362030][ T9489] tcp_rcv_established+0x1175/0x3980 [ 349.368681][ T9489] tcp_v4_do_rcv+0xc87/0x10d0 [ 349.377639][ T9489] __release_sock+0x35a/0x440 [ 349.382488][ T9489] release_sock+0x5a/0x220 [ 349.403272][ T9489] tcp_sendmsg+0x38/0x50 [ 349.407649][ T9489] inet_sendmsg+0xb9/0x140 [ 349.412567][ T9489] sock_write_iter+0x4ea/0x5a0 [ 349.443297][ T9489] vfs_write+0x6ac/0x1070 [ 349.452355][ T9489] ksys_write+0x1f8/0x250 [ 349.483229][ T9489] do_syscall_64+0x106/0xf80 [ 349.488041][ T9489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.630836][ T30] audit: type=1800 audit(4294967304.193:49): pid=9511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.862" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 349.869477][ T9503] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 350.229494][ T9519] FAULT_INJECTION: forcing a failure. [ 350.229494][ T9519] name failslab, interval 1, probability 0, space 0, times 0 [ 350.283685][ T9519] CPU: 0 UID: 0 PID: 9519 Comm: syz.3.864 Tainted: G L syzkaller #0 PREEMPT(full) [ 350.283724][ T9519] Tainted: [L]=SOFTLOCKUP [ 350.283733][ T9519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 350.283747][ T9519] Call Trace: [ 350.283754][ T9519] [ 350.283763][ T9519] dump_stack_lvl+0x100/0x190 [ 350.283803][ T9519] should_fail_ex.cold+0x5/0xa [ 350.283831][ T9519] should_failslab+0xc2/0x120 [ 350.283856][ T9519] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 350.283893][ T9519] ? alloc_empty_file+0x55/0x1c0 [ 350.283928][ T9519] alloc_empty_file+0x55/0x1c0 [ 350.283959][ T9519] alloc_file_pseudo+0x13a/0x230 [ 350.283991][ T9519] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 350.284022][ T9519] ? alloc_fd+0x476/0x790 [ 350.284049][ T9519] sock_alloc_file+0x50/0x210 [ 350.284083][ T9519] __sys_socket+0x1c0/0x260 [ 350.284105][ T9519] ? __pfx___sys_socket+0x10/0x10 [ 350.284135][ T9519] __x64_sys_socket+0x72/0xb0 [ 350.284156][ T9519] ? lockdep_hardirqs_on+0x78/0x100 [ 350.284186][ T9519] do_syscall_64+0x106/0xf80 [ 350.284215][ T9519] ? clear_bhb_loop+0x40/0x90 [ 350.284244][ T9519] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.284269][ T9519] RIP: 0033:0x7f8baf59e007 [ 350.284304][ T9519] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 350.284328][ T9519] RSP: 002b:00007f8bb0421f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 350.284351][ T9519] RAX: ffffffffffffffda RBX: 00007f8baf815fa0 RCX: 00007f8baf59e007 [ 350.284367][ T9519] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 350.284382][ T9519] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 350.284397][ T9519] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 350.284412][ T9519] R13: 00007f8baf816038 R14: 00007f8baf815fa0 R15: 00007ffe3bcd74b8 [ 350.284443][ T9519] [ 350.704282][ T5831] Bluetooth: hci1: unexpected event 0x33 length: 124 > 10 [ 352.236435][ T5831] Bluetooth: hci2: ACL packet for unknown connection handle 0 syzkaller syzkaller login: [ 355.418567][ T9588] netlink: 4 bytes leftover after parsing attributes in process `syz.2.878'. [ 356.874408][ T9614] netlink: 93 bytes leftover after parsing attributes in process `syz.1.881'. [ 356.955992][ T9612] netlink: 93 bytes leftover after parsing attributes in process `syz.1.881'. [ 357.225598][ T9623] smpboot: CPU 1 is now offline [ 358.093459][ T9627] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 358.144636][ T9627] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 358.175451][ T9627] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 358.202725][ T9627] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 358.439645][ T9626] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 359.552658][ T9659] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input28 [ 360.033751][ T9666] zswap: compressor not available [ 360.045165][ T9674] futex_wake_op: syz.1.891 tries to shift op by -2048; fix this program [ 360.054796][ T9674] futex_wake_op: syz.1.891 tries to shift op by -2048; fix this program [ 360.079885][ T9674] 0x000000000001-0x000000020000 : "" [ 360.114439][ T5831] Bluetooth: hci0: command 0x0c1a tx timeout [ 360.130369][ T9674] ftl_cs: FTL header corrupt! [ 360.183081][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout [ 360.183092][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 360.262972][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout [ 361.012830][ T30] audit: type=1804 audit(4294967315.578:50): pid=9689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.892" name="/newroot/205/file0" dev="tmpfs" ino=1076 res=1 errno=0 [ 363.151711][ T9712] zswap: compressor not available [ 363.162922][ T9738] binder: 9736:9738 ioctl 4 ffffffffffffffff returned -22 [ 364.167183][ T9715] FAULT_INJECTION: forcing a failure. [ 364.167183][ T9715] name failslab, interval 1, probability 0, space 0, times 0 [ 364.388507][ T9715] CPU: 0 UID: 0 PID: 9715 Comm: syz.0.902 Tainted: G L syzkaller #0 PREEMPT(full) [ 364.388546][ T9715] Tainted: [L]=SOFTLOCKUP [ 364.388554][ T9715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 364.388573][ T9715] Call Trace: [ 364.388582][ T9715] [ 364.388591][ T9715] dump_stack_lvl+0x100/0x190 [ 364.388634][ T9715] should_fail_ex.cold+0x5/0xa [ 364.388663][ T9715] should_failslab+0xc2/0x120 [ 364.388689][ T9715] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 364.388727][ T9715] ? alloc_inode+0x183/0x250 [ 364.388759][ T9715] ? ioctx_alloc+0x427/0x21d0 [ 364.388789][ T9715] alloc_inode+0x183/0x250 [ 364.388822][ T9715] alloc_anon_inode+0x2a/0x3e0 [ 364.388848][ T9715] ioctx_alloc+0x4dc/0x21d0 [ 364.388883][ T9715] ? find_held_lock+0x2b/0x80 [ 364.388906][ T9715] ? __pfx_ioctx_alloc+0x10/0x10 [ 364.388940][ T9715] __x64_sys_io_setup+0xc9/0x220 [ 364.388969][ T9715] do_syscall_64+0x106/0xf80 [ 364.388998][ T9715] ? clear_bhb_loop+0x40/0x90 [ 364.389028][ T9715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.389053][ T9715] RIP: 0033:0x7f4f5019c799 [ 364.389073][ T9715] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 364.389097][ T9715] RSP: 002b:00007f4f510de028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 364.389124][ T9715] RAX: ffffffffffffffda RBX: 00007f4f50416090 RCX: 00007f4f5019c799 [ 364.389140][ T9715] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 000000000000000e [ 364.389154][ T9715] RBP: 00007f4f50232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 364.389169][ T9715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 364.389205][ T9715] R13: 00007f4f50416128 R14: 00007f4f50416090 R15: 00007ffd774ef0c8 [ 364.389236][ T9715] [ 368.473421][ T9834] can: request_module (can-proto-0) failed. [ 368.845733][ T9836] netlink: 'syz.2.908': attribute type 11 has an invalid length. [ 368.877542][ T9836] netlink: 'syz.2.908': attribute type 11 has an invalid length. [ 368.938670][ T9836] netlink: 'syz.2.908': attribute type 11 has an invalid length. [ 368.976466][ T9836] netlink: 'syz.2.908': attribute type 11 has an invalid length. [ 370.222454][ T9855] random: crng reseeded on system resumption [ 370.242119][ T30] audit: type=1800 audit(4294967324.798:51): pid=9857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.922" name="members" dev="configfs" ino=27772 res=0 errno=0 [ 371.990824][ T5831] Bluetooth: hci3: unexpected event 0x33 length: 124 > 10 [ 374.894010][ T9919] netlink: 93 bytes leftover after parsing attributes in process `syz.0.924'. [ 374.979779][ T9916] netlink: 93 bytes leftover after parsing attributes in process `syz.0.924'. [ 375.185350][ T30] audit: type=1804 audit(4294967329.747:52): pid=9924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.926" name="/newroot/243/file0" dev="tmpfs" ino=1262 res=1 errno=0 [ 375.286143][ T30] audit: type=1804 audit(4294967329.837:53): pid=9922 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.926" name="/newroot/243/file0" dev="tmpfs" ino=1262 res=1 errno=0 [ 375.824176][ T9930] zswap: compressor not available [ 377.258541][ T30] audit: type=1804 audit(4294967331.817:54): pid=9965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.933" name="/newroot/214/file0" dev="tmpfs" ino=1123 res=1 errno=0 [ 377.326905][ T30] audit: type=1804 audit(4294967331.887:55): pid=9963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.933" name="/newroot/214/file0" dev="tmpfs" ino=1123 res=1 errno=0 syzkaller syzkaller login: [ 377.709710][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 377.720183][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.427633][ T9997] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input30 [ 381.720740][ T30] audit: type=1804 audit(4294967336.277:56): pid=10029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.943" name="/newroot/230/file0" dev="tmpfs" ino=1200 res=1 errno=0 [ 381.782501][ T30] audit: type=1804 audit(4294967336.307:57): pid=10031 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.943" name="/newroot/230/file0" dev="tmpfs" ino=1200 res=1 errno=0 [ 381.924196][ T30] audit: type=1800 audit(4294967336.477:58): pid=10036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.945" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 383.622481][ T5831] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 384.892701][ T30] audit: type=1804 audit(4294967339.447:59): pid=10069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.950" name="/newroot/219/file0" dev="tmpfs" ino=1149 res=1 errno=0 [ 384.958495][ T30] audit: type=1804 audit(4294967339.487:60): pid=10071 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.950" name="/newroot/219/file0" dev="tmpfs" ino=1149 res=1 errno=0 [ 385.553772][T10076] smpboot: CPU 1 is now offline [ 385.687903][T10080] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 385.954150][T10075] netlink: 50 bytes leftover after parsing attributes in process `syz.3.952'. [ 387.255085][T10075] zswap: compressor not available [ 387.378541][ T5831] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 387.570688][T10106] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub [ 389.391050][ T30] audit: type=1804 audit(4294967343.937:61): pid=10132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.961" name="/newroot/250/file0" dev="tmpfs" ino=1299 res=1 errno=0 [ 389.457995][ T30] audit: type=1804 audit(4294967343.947:62): pid=10138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.961" name="/newroot/250/file0" dev="tmpfs" ino=1299 res=1 errno=0 [ 393.941892][ T5831] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 394.359331][T10183] FAULT_INJECTION: forcing a failure. [ 394.359331][T10183] name failslab, interval 1, probability 0, space 0, times 0 [ 394.402815][T10183] CPU: 1 UID: 0 PID: 10183 Comm: syz.2.970 Tainted: G L syzkaller #0 PREEMPT(full) [ 394.402870][T10183] Tainted: [L]=SOFTLOCKUP [ 394.402882][T10183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 394.402902][T10183] Call Trace: [ 394.402912][T10183] [ 394.402923][T10183] dump_stack_lvl+0x100/0x190 [ 394.402980][T10183] should_fail_ex.cold+0x5/0xa [ 394.403021][T10183] ? vhost_dev_set_owner+0x3b2/0xa30 [ 394.403064][T10183] should_failslab+0xc2/0x120 [ 394.403099][T10183] __kmalloc_noprof+0xe0/0x850 [ 394.403159][T10183] vhost_dev_set_owner+0x3b2/0xa30 [ 394.403217][T10183] vhost_dev_ioctl+0x521/0xe20 [ 394.403277][T10183] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 394.403341][T10183] ? __pfx_vhost_dev_ioctl+0x10/0x10 [ 394.403406][T10183] vhost_vsock_dev_ioctl+0x320/0xb60 [ 394.403453][T10183] ? __fget_files+0x215/0x3d0 [ 394.403483][T10183] ? hook_file_ioctl_common+0x146/0x410 [ 394.403540][T10183] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 394.403595][T10183] ? __fget_files+0x21f/0x3d0 [ 394.403633][T10183] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 394.403685][T10183] __x64_sys_ioctl+0x18e/0x210 [ 394.403738][T10183] do_syscall_64+0x106/0xf80 [ 394.403778][T10183] ? clear_bhb_loop+0x40/0x90 [ 394.403819][T10183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.403855][T10183] RIP: 0033:0x7fad7179c799 [ 394.403884][T10183] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 394.403918][T10183] RSP: 002b:00007fad72663028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 394.403949][T10183] RAX: ffffffffffffffda RBX: 00007fad71a15fa0 RCX: 00007fad7179c799 [ 394.403971][T10183] RDX: 0000000000000000 RSI: 000000000000af01 RDI: 0000000000000005 [ 394.403990][T10183] RBP: 00007fad71832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 394.404018][T10183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.404038][T10183] R13: 00007fad71a16038 R14: 00007fad71a15fa0 R15: 00007ffede925428 [ 394.404084][T10183] [ 395.415307][ T30] audit: type=1800 audit(4294967349.977:63): pid=10202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.973" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 399.479737][ T5831] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 400.555797][T10258] FAULT_INJECTION: forcing a failure. [ 400.555797][T10258] name failslab, interval 1, probability 0, space 0, times 0 [ 400.568945][T10258] CPU: 1 UID: 0 PID: 10258 Comm: syz.3.981 Tainted: G L syzkaller #0 PREEMPT(full) [ 400.569000][T10258] Tainted: [L]=SOFTLOCKUP [ 400.569013][T10258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 400.569034][T10258] Call Trace: [ 400.569045][T10258] [ 400.569058][T10258] dump_stack_lvl+0x100/0x190 [ 400.569117][T10258] should_fail_ex.cold+0x5/0xa [ 400.569159][T10258] should_failslab+0xc2/0x120 [ 400.569195][T10258] __kmalloc_cache_noprof+0x7a/0x6f0 [ 400.569240][T10258] ? percpu_ref_init+0xec/0x3f0 [ 400.569294][T10258] ? __pfx_free_ioctx_reqs+0x10/0x10 [ 400.569328][T10258] percpu_ref_init+0xec/0x3f0 [ 400.569373][T10258] ? __init_waitqueue_head+0xca/0x150 [ 400.569430][T10258] ioctx_alloc+0x3ee/0x21d0 [ 400.569481][T10258] ? find_held_lock+0x2b/0x80 [ 400.569515][T10258] ? __pfx_ioctx_alloc+0x10/0x10 [ 400.569565][T10258] __x64_sys_io_setup+0xc9/0x220 [ 400.569606][T10258] do_syscall_64+0x106/0xf80 [ 400.569654][T10258] ? clear_bhb_loop+0x40/0x90 [ 400.569700][T10258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.569737][T10258] RIP: 0033:0x7f8baf59c799 [ 400.569774][T10258] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 400.569810][T10258] RSP: 002b:00007f8bb03c0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 400.569845][T10258] RAX: ffffffffffffffda RBX: 00007f8baf816270 RCX: 00007f8baf59c799 [ 400.569868][T10258] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 000000000000000e [ 400.569889][T10258] RBP: 00007f8baf632bd9 R08: 0000000000000000 R09: 0000000000000000 [ 400.569911][T10258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 400.569931][T10258] R13: 00007f8baf816308 R14: 00007f8baf816270 R15: 00007ffe3bcd74b8 [ 400.569976][T10258] [ 401.914815][T10270] can: request_module (can-proto-4) failed. [ 404.358631][T10303] smpboot: CPU 1 is now offline [ 404.465942][T10305] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 404.512759][T10294] ------------[ cut here ]------------ [ 404.514165][T10294] [ 404.514176][T10294] ====================================================== [ 404.514187][T10294] WARNING: possible circular locking dependency detected [ 404.514202][T10294] syzkaller #0 Tainted: G L [ 404.514218][T10294] ------------------------------------------------------ [ 404.514227][T10294] syz.2.987/10294 is trying to acquire lock: [ 404.514250][T10294] ffffffff8e6f35c0 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 404.514333][T10294] [ 404.514333][T10294] but task is already holding lock: [ 404.514342][T10294] ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 404.514402][T10294] [ 404.514402][T10294] which lock already depends on the new lock. [ 404.514402][T10294] [ 404.514412][T10294] [ 404.514412][T10294] the existing dependency chain (in reverse order) is: [ 404.514421][T10294] [ 404.514421][T10294] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 404.514461][T10294] _raw_spin_lock_nested+0x31/0x40 [ 404.514489][T10294] raw_spin_rq_lock_nested+0x2c/0x140 [ 404.514515][T10294] _task_rq_lock+0xcf/0x490 [ 404.514542][T10294] cgroup_move_task+0x81/0x2b0 [ 404.514571][T10294] css_set_move_task+0x285/0x600 [ 404.514597][T10294] cgroup_post_fork+0x202/0x9b0 [ 404.514622][T10294] copy_process+0x5f26/0x7a10 [ 404.514652][T10294] kernel_clone+0xfc/0x9a0 [ 404.514682][T10294] user_mode_thread+0xcc/0x110 [ 404.514713][T10294] rest_init+0x21/0x260 [ 404.514752][T10294] start_kernel+0x47f/0x480 [ 404.514790][T10294] x86_64_start_reservations+0x24/0x30 [ 404.514830][T10294] x86_64_start_kernel+0x12b/0x130 [ 404.514874][T10294] common_startup_64+0x13e/0x148 [ 404.514902][T10294] [ 404.514902][T10294] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 404.514937][T10294] _raw_spin_lock_irqsave+0x3a/0x60 [ 404.514965][T10294] try_to_wake_up+0xb2/0x1a80 [ 404.514988][T10294] __wake_up_common+0x135/0x1f0 [ 404.515023][T10294] __wake_up+0x31/0x60 [ 404.515051][T10294] pty_close+0x298/0x550 [ 404.515075][T10294] tty_release+0x40e/0x1300 [ 404.515108][T10294] __fput+0x3ff/0xb40 [ 404.515138][T10294] task_work_run+0x150/0x240 [ 404.515176][T10294] exit_to_user_mode_loop+0x100/0x4a0 [ 404.515211][T10294] do_syscall_64+0x668/0xf80 [ 404.515252][T10294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.515282][T10294] [ 404.515282][T10294] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 404.515317][T10294] _raw_spin_lock_irqsave+0x3a/0x60 [ 404.515345][T10294] __wake_up+0x1c/0x60 [ 404.515372][T10294] tty_port_default_wakeup+0x47/0x60 [ 404.515410][T10294] serial8250_tx_chars+0x68f/0x860 [ 404.515447][T10294] serial8250_handle_irq+0x73e/0xcb0 [ 404.515487][T10294] serial8250_default_handle_irq+0x9e/0x270 [ 404.515529][T10294] serial8250_interrupt+0xf8/0x1d0 [ 404.515572][T10294] __handle_irq_event_percpu+0x232/0x8e0 [ 404.515616][T10294] handle_irq_event+0xab/0x1e0 [ 404.515659][T10294] handle_edge_irq+0x375/0x970 [ 404.515699][T10294] __common_interrupt+0xd8/0x2f0 [ 404.515735][T10294] common_interrupt+0xb9/0xe0 [ 404.515776][T10294] asm_common_interrupt+0x26/0x40 [ 404.515804][T10294] pv_native_safe_halt+0xf/0x20 [ 404.515834][T10294] default_idle+0x9/0x10 [ 404.515870][T10294] default_idle_call+0x6c/0xb0 [ 404.515909][T10294] do_idle+0x35b/0x4b0 [ 404.515931][T10294] cpu_startup_entry+0x4f/0x60 [ 404.515955][T10294] rest_init+0x251/0x260 [ 404.515995][T10294] start_kernel+0x47f/0x480 [ 404.516031][T10294] x86_64_start_reservations+0x24/0x30 [ 404.516072][T10294] x86_64_start_kernel+0x12b/0x130 [ 404.516111][T10294] common_startup_64+0x13e/0x148 [ 404.516142][T10294] [ 404.516142][T10294] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 404.516177][T10294] _raw_spin_lock_irqsave+0x3a/0x60 [ 404.516205][T10294] serial8250_console_write+0x17e/0x1900 [ 404.516255][T10294] console_flush_one_record+0x790/0xe50 [ 404.516299][T10294] console_unlock+0x103/0x260 [ 404.516340][T10294] vprintk_emit+0x407/0x6b0 [ 404.516363][T10294] _printk+0xcf/0x110 [ 404.516387][T10294] register_console.cold+0xc0/0x248 [ 404.516416][T10294] univ8250_console_init+0x6f/0x80 [ 404.516445][T10294] console_init+0x423/0x620 [ 404.516468][T10294] start_kernel+0x305/0x480 [ 404.516512][T10294] x86_64_start_reservations+0x24/0x30 [ 404.516553][T10294] x86_64_start_kernel+0x12b/0x130 [ 404.516592][T10294] common_startup_64+0x13e/0x148 [ 404.516618][T10294] [ 404.516618][T10294] -> #0 (console_owner){-.-.}-{0:0}: [ 404.516653][T10294] __lock_acquire+0x14b8/0x2630 [ 404.516687][T10294] lock_acquire+0x1cf/0x380 [ 404.516719][T10294] console_lock_spinning_enable+0x72/0x80 [ 404.516763][T10294] console_flush_one_record+0x739/0xe50 [ 404.516807][T10294] console_unlock+0x103/0x260 [ 404.516849][T10294] vprintk_emit+0x407/0x6b0 [ 404.516871][T10294] _printk+0xcf/0x110 [ 404.516894][T10294] __report_bug.cold+0x15/0x137 [ 404.516931][T10294] report_bug+0xb2/0x220 [ 404.516959][T10294] handle_bug+0x16a/0x2a0 [ 404.516995][T10294] exc_invalid_op+0x17/0x50 [ 404.517032][T10294] asm_exc_invalid_op+0x1a/0x20 [ 404.517058][T10294] update_rq_clock+0x40a/0xd20 [ 404.517084][T10294] __schedule+0x1b7d/0x6120 [ 404.517111][T10294] preempt_schedule_common+0x42/0xc0 [ 404.517141][T10294] preempt_schedule_thunk+0x16/0x30 [ 404.517176][T10294] _raw_spin_unlock+0x3e/0x50 [ 404.517201][T10294] unmap_page_range+0x2564/0x4840 [ 404.517230][T10294] unmap_single_vma+0x153/0x240 [ 404.517264][T10294] unmap_vmas+0x295/0x590 [ 404.517364][T10294] exit_mmap+0x1ef/0xa30 [ 404.517394][T10294] __mmput+0x12a/0x410 [ 404.517422][T10294] mmput+0x67/0x80 [ 404.517448][T10294] do_exit+0x819/0x2b60 [ 404.517487][T10294] do_group_exit+0xd5/0x2a0 [ 404.517523][T10294] get_signal+0x1ec7/0x21e0 [ 404.517550][T10294] arch_do_signal_or_restart+0x91/0x770 [ 404.517591][T10294] exit_to_user_mode_loop+0x86/0x4a0 [ 404.517628][T10294] do_syscall_64+0x668/0xf80 [ 404.517661][T10294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.517695][T10294] [ 404.517695][T10294] other info that might help us debug this: [ 404.517695][T10294] [ 404.517703][T10294] Chain exists of: [ 404.517703][T10294] console_owner --> &p->pi_lock --> &rq->__lock [ 404.517703][T10294] [ 404.517746][T10294] Possible unsafe locking scenario: [ 404.517746][T10294] [ 404.517754][T10294] CPU0 CPU1 [ 404.517761][T10294] ---- ---- [ 404.517768][T10294] lock(&rq->__lock); [ 404.517785][T10294] lock(&p->pi_lock); [ 404.517803][T10294] lock(&rq->__lock); [ 404.517821][T10294] lock(console_owner); [ 404.517838][T10294] [ 404.517838][T10294] *** DEADLOCK *** [ 404.517838][T10294] [ 404.517845][T10294] 5 locks held by syz.2.987/10294: [ 404.517862][T10294] #0: ffff88807f228f80 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x124/0xa30 [ 404.517932][T10294] #1: ffffffff8e7e7420 (rcu_read_lock){....}-{1:3}, at: __pte_offset_map+0x2f/0x310 [ 404.517997][T10294] #2: ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 404.518064][T10294] #3: ffffffff8e7d3a00 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 404.518127][T10294] #4: ffffffff8e7d3a78 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 404.518261][T10294] [ 404.518261][T10294] stack backtrace: [ 404.518280][T10294] CPU: 0 UID: 0 PID: 10294 Comm: syz.2.987 Tainted: G L syzkaller #0 PREEMPT(full) [ 404.518321][T10294] Tainted: [L]=SOFTLOCKUP [ 404.518332][T10294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 404.518350][T10294] Call Trace: [ 404.518362][T10294] [ 404.518375][T10294] dump_stack_lvl+0x100/0x190 [ 404.518501][T10294] print_circular_bug.cold+0x178/0x1c7 [ 404.518555][T10294] check_noncircular+0x146/0x160 [ 404.518595][T10294] __lock_acquire+0x14b8/0x2630 [ 404.518639][T10294] lock_acquire+0x1cf/0x380 [ 404.518673][T10294] ? console_lock_spinning_enable+0x61/0x80 [ 404.518719][T10294] ? console_lock_spinning_enable+0x4a/0x80 [ 404.518769][T10294] console_lock_spinning_enable+0x72/0x80 [ 404.518814][T10294] ? console_lock_spinning_enable+0x61/0x80 [ 404.518860][T10294] console_flush_one_record+0x739/0xe50 [ 404.518911][T10294] ? __pfx_console_flush_one_record+0x10/0x10 [ 404.518964][T10294] ? is_printk_cpu_sync_owner+0x32/0x40 [ 404.518997][T10294] console_unlock+0x103/0x260 [ 404.519043][T10294] ? __pfx_console_unlock+0x10/0x10 [ 404.519094][T10294] ? do_raw_spin_unlock+0x145/0x1e0 [ 404.519202][T10294] ? _printk+0xcf/0x110 [ 404.519233][T10294] vprintk_emit+0x407/0x6b0 [ 404.519261][T10294] ? __pfx_vprintk_emit+0x10/0x10 [ 404.519287][T10294] ? rcu_is_watching+0x12/0xc0 [ 404.519330][T10294] ? trace_sched_exit_tp+0x13a/0x180 [ 404.519366][T10294] ? __schedule+0x1000/0x6120 [ 404.519397][T10294] _printk+0xcf/0x110 [ 404.519426][T10294] ? __pfx__printk+0x10/0x10 [ 404.519455][T10294] ? __lock_acquire+0x4a5/0x2630 [ 404.519494][T10294] ? __report_bug.cold+0x5/0x137 [ 404.519532][T10294] ? __report_bug+0x377/0x3d0 [ 404.519565][T10294] __report_bug.cold+0x15/0x137 [ 404.519604][T10294] ? update_rq_clock+0x40a/0xd20 [ 404.519635][T10294] ? __pfx___report_bug+0x10/0x10 [ 404.519670][T10294] ? __lock_acquire+0x4a5/0x2630 [ 404.519709][T10294] ? update_rq_clock+0x40a/0xd20 [ 404.519738][T10294] report_bug+0xb2/0x220 [ 404.519768][T10294] ? update_rq_clock+0x40a/0xd20 [ 404.519799][T10294] handle_bug+0x16a/0x2a0 [ 404.519846][T10294] exc_invalid_op+0x17/0x50 [ 404.519885][T10294] asm_exc_invalid_op+0x1a/0x20 [ 404.519914][T10294] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 404.519946][T10294] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 404.519977][T10294] RSP: 0018:ffffc900053df2e0 EFLAGS: 00010046 [ 404.520001][T10294] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 404.520020][T10294] RDX: 0000000000000046 RSI: ffffffff8de57654 RDI: ffffffff8c1af920 [ 404.520039][T10294] RBP: ffffc900053df488 R08: 0000000000000001 R09: 0000000000000001 [ 404.520058][T10294] R10: ffffffff90d9ae17 R11: 0000000000000000 R12: ffffffff90d9e1e4 [ 404.520076][T10294] R13: ffff8880b853c0c0 R14: ffff88801e689e80 R15: ffff8880b853b280 [ 404.520109][T10294] __schedule+0x1b7d/0x6120 [ 404.520145][T10294] ? irqentry_exit+0x180/0x670 [ 404.520190][T10294] ? __pfx___schedule+0x10/0x10 [ 404.520226][T10294] ? flush_tlb_mm_range+0x347/0x1710 [ 404.520271][T10294] ? preempt_schedule_thunk+0x16/0x30 [ 404.520310][T10294] preempt_schedule_common+0x42/0xc0 [ 404.520344][T10294] preempt_schedule_thunk+0x16/0x30 [ 404.520383][T10294] _raw_spin_unlock+0x3e/0x50 [ 404.520414][T10294] unmap_page_range+0x2564/0x4840 [ 404.520461][T10294] ? __pfx_unmap_page_range+0x10/0x10 [ 404.520505][T10294] ? mas_next_slot+0x1003/0x18b0 [ 404.520545][T10294] ? uprobe_munmap+0x9e/0x700 [ 404.520592][T10294] unmap_single_vma+0x153/0x240 [ 404.520625][T10294] unmap_vmas+0x295/0x590 [ 404.520657][T10294] ? __pfx_unmap_vmas+0x10/0x10 [ 404.520701][T10294] exit_mmap+0x1ef/0xa30 [ 404.520734][T10294] ? __pfx_exit_mmap+0x10/0x10 [ 404.520766][T10294] ? trace_contention_end+0x140/0x180 [ 404.520810][T10294] ? uprobe_clear_state+0x5f/0x360 [ 404.520854][T10294] ? uprobe_clear_state+0x5f/0x360 [ 404.520902][T10294] ? __lock_acquire+0x4a5/0x2630 [ 404.520946][T10294] ? arch_uprobe_clear_state+0x107/0x150 [ 404.520997][T10294] __mmput+0x12a/0x410 [ 404.521027][T10294] mmput+0x67/0x80 [ 404.521054][T10294] do_exit+0x819/0x2b60 [ 404.521094][T10294] ? __pfx_do_exit+0x10/0x10 [ 404.521130][T10294] ? do_raw_spin_lock+0x128/0x260 [ 404.521181][T10294] ? find_held_lock+0x2b/0x80 [ 404.521207][T10294] ? get_signal+0x7e0/0x21e0 [ 404.521239][T10294] do_group_exit+0xd5/0x2a0 [ 404.521279][T10294] get_signal+0x1ec7/0x21e0 [ 404.521315][T10294] ? __pfx_get_signal+0x10/0x10 [ 404.521344][T10294] ? do_futex+0x192/0x350 [ 404.521384][T10294] arch_do_signal_or_restart+0x91/0x770 [ 404.521420][T10294] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 404.521459][T10294] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 404.521500][T10294] ? __pfx___x64_sys_futex+0x10/0x10 [ 404.521541][T10294] exit_to_user_mode_loop+0x86/0x4a0 [ 404.521581][T10294] do_syscall_64+0x668/0xf80 [ 404.521615][T10294] ? clear_bhb_loop+0x40/0x90 [ 404.521649][T10294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.521680][T10294] RIP: 0033:0x7fad7179c799 [ 404.521702][T10294] Code: Unable to access opcode bytes at 0x7fad7179c76f. [ 404.521716][T10294] RSP: 002b:00007fad726210e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 404.521742][T10294] RAX: fffffffffffffe00 RBX: 00007fad71a16188 RCX: 00007fad7179c799 [ 404.521762][T10294] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fad71a16188 [ 404.521779][T10294] RBP: 00007fad71a16180 R08: 0000000000000000 R09: 0000000000000000 [ 404.521797][T10294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.521814][T10294] R13: 00007fad71a16218 R14: 00007ffede925340 R15: 00007ffede925428 [ 404.521841][T10294] [ 405.843341][T10294] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 405.843375][T10294] WARNING: kernel/sched/sched.h:1600 at update_rq_clock+0x40a/0xd20, CPU#0: syz.2.987/10294 [ 405.861513][T10294] Modules linked in: [ 405.865466][T10294] CPU: 0 UID: 0 PID: 10294 Comm: syz.2.987 Tainted: G L syzkaller #0 PREEMPT(full) [ 405.876710][T10294] Tainted: [L]=SOFTLOCKUP [ 405.881236][T10294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 405.891346][T10294] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 405.896943][T10294] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 405.916812][T10294] RSP: 0018:ffffc900053df2e0 EFLAGS: 00010046 [ 405.923018][T10294] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 405.931036][T10294] RDX: 0000000000000046 RSI: ffffffff8de57654 RDI: ffffffff8c1af920 [ 405.939232][T10294] RBP: ffffc900053df488 R08: 0000000000000001 R09: 0000000000000001 [ 405.947336][T10294] R10: ffffffff90d9ae17 R11: 0000000000000000 R12: ffffffff90d9e1e4 [ 405.955453][T10294] R13: ffff8880b853c0c0 R14: ffff88801e689e80 R15: ffff8880b853b280 [ 405.963565][T10294] FS: 0000000000000000(0000) GS:ffff88812434d000(0000) knlGS:0000000000000000 [ 405.973304][T10294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 405.980295][T10294] CR2: 0000001b30e04ff8 CR3: 000000002cbf2000 CR4: 00000000003526f0 [ 405.988334][T10294] Call Trace: [ 405.991653][T10294] [ 405.994612][T10294] __schedule+0x1b7d/0x6120 [ 405.999256][T10294] ? irqentry_exit+0x180/0x670 [ 406.004160][T10294] ? __pfx___schedule+0x10/0x10 [ 406.009149][T10294] ? flush_tlb_mm_range+0x347/0x1710 [ 406.014589][T10294] ? preempt_schedule_thunk+0x16/0x30 [ 406.020114][T10294] preempt_schedule_common+0x42/0xc0 [ 406.025504][T10294] preempt_schedule_thunk+0x16/0x30 [ 406.030773][T10294] _raw_spin_unlock+0x3e/0x50 [ 406.035528][T10294] unmap_page_range+0x2564/0x4840 [ 406.040803][T10294] ? __pfx_unmap_page_range+0x10/0x10 [ 406.046229][T10294] ? mas_next_slot+0x1003/0x18b0 [ 406.051221][T10294] ? uprobe_munmap+0x9e/0x700 [ 406.056047][T10294] unmap_single_vma+0x153/0x240 [ 406.060952][T10294] unmap_vmas+0x295/0x590 [ 406.065337][T10294] ? __pfx_unmap_vmas+0x10/0x10 [ 406.070268][T10294] exit_mmap+0x1ef/0xa30 [ 406.074560][T10294] ? __pfx_exit_mmap+0x10/0x10 [ 406.079391][T10294] ? trace_contention_end+0x140/0x180 [ 406.084849][T10294] ? uprobe_clear_state+0x5f/0x360 [ 406.090192][T10294] ? uprobe_clear_state+0x5f/0x360 [ 406.095375][T10294] ? __lock_acquire+0x4a5/0x2630 [ 406.100386][T10294] ? arch_uprobe_clear_state+0x107/0x150 [ 406.106093][T10294] __mmput+0x12a/0x410 [ 406.110206][T10294] mmput+0x67/0x80 [ 406.113967][T10294] do_exit+0x819/0x2b60 [ 406.118185][T10294] ? __pfx_do_exit+0x10/0x10 [ 406.122833][T10294] ? do_raw_spin_lock+0x128/0x260 [ 406.127999][T10294] ? find_held_lock+0x2b/0x80 [ 406.132806][T10294] ? get_signal+0x7e0/0x21e0 [ 406.137455][T10294] do_group_exit+0xd5/0x2a0 [ 406.142076][T10294] get_signal+0x1ec7/0x21e0 [ 406.146634][T10294] ? __pfx_get_signal+0x10/0x10 [ 406.151726][T10294] ? do_futex+0x192/0x350 [ 406.156140][T10294] arch_do_signal_or_restart+0x91/0x770 [ 406.161829][T10294] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 406.167949][T10294] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 406.174168][T10294] ? __pfx___x64_sys_futex+0x10/0x10 [ 406.179595][T10294] exit_to_user_mode_loop+0x86/0x4a0 [ 406.185024][T10294] do_syscall_64+0x668/0xf80 [ 406.189676][T10294] ? clear_bhb_loop+0x40/0x90 [ 406.194412][T10294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.200483][T10294] RIP: 0033:0x7fad7179c799 [ 406.205079][T10294] Code: Unable to access opcode bytes at 0x7fad7179c76f. [ 406.212158][T10294] RSP: 002b:00007fad726210e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 406.220931][T10294] RAX: fffffffffffffe00 RBX: 00007fad71a16188 RCX: 00007fad7179c799 [ 406.228973][T10294] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fad71a16188 [ 406.237005][T10294] RBP: 00007fad71a16180 R08: 0000000000000000 R09: 0000000000000000 [ 406.245315][T10294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 406.253452][T10294] R13: 00007fad71a16218 R14: 00007ffede925340 R15: 00007ffede925428 [ 406.261483][T10294] [ 406.264554][T10294] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 406.271867][T10294] CPU: 0 UID: 0 PID: 10294 Comm: syz.2.987 Tainted: G L syzkaller #0 PREEMPT(full) [ 406.282851][T10294] Tainted: [L]=SOFTLOCKUP [ 406.287206][T10294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 406.297389][T10294] Call Trace: [ 406.300705][T10294] [ 406.303708][T10294] dump_stack_lvl+0x100/0x190 [ 406.308453][T10294] vpanic+0x552/0x970 [ 406.312479][T10294] ? __pfx_vpanic+0x10/0x10 [ 406.317236][T10294] ? lock_release+0x263/0x320 [ 406.321972][T10294] panic+0xd1/0xe0 [ 406.325739][T10294] ? __pfx_panic+0x10/0x10 [ 406.330378][T10294] ? check_panic_on_warn+0x1f/0x90 [ 406.335579][T10294] check_panic_on_warn.cold+0x19/0x34 [ 406.341543][T10294] ? update_rq_clock+0x40a/0xd20 [ 406.346528][T10294] __warn.cold+0x191/0x348 [ 406.351000][T10294] __report_bug+0x296/0x3d0 [ 406.355569][T10294] ? update_rq_clock+0x40a/0xd20 [ 406.360725][T10294] ? __pfx___report_bug+0x10/0x10 [ 406.365791][T10294] ? __lock_acquire+0x4a5/0x2630 [ 406.370784][T10294] ? update_rq_clock+0x40a/0xd20 [ 406.375944][T10294] report_bug+0xb2/0x220 [ 406.380423][T10294] ? update_rq_clock+0x40a/0xd20 [ 406.385605][T10294] handle_bug+0x16a/0x2a0 [ 406.390078][T10294] exc_invalid_op+0x17/0x50 [ 406.394692][T10294] asm_exc_invalid_op+0x1a/0x20 [ 406.399867][T10294] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 406.405472][T10294] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 406.425347][T10294] RSP: 0018:ffffc900053df2e0 EFLAGS: 00010046 [ 406.431636][T10294] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 406.439853][T10294] RDX: 0000000000000046 RSI: ffffffff8de57654 RDI: ffffffff8c1af920 [ 406.447873][T10294] RBP: ffffc900053df488 R08: 0000000000000001 R09: 0000000000000001 [ 406.456018][T10294] R10: ffffffff90d9ae17 R11: 0000000000000000 R12: ffffffff90d9e1e4 [ 406.464039][T10294] R13: ffff8880b853c0c0 R14: ffff88801e689e80 R15: ffff8880b853b280 [ 406.472062][T10294] __schedule+0x1b7d/0x6120 [ 406.476622][T10294] ? irqentry_exit+0x180/0x670 [ 406.481449][T10294] ? __pfx___schedule+0x10/0x10 [ 406.486381][T10294] ? flush_tlb_mm_range+0x347/0x1710 [ 406.491722][T10294] ? preempt_schedule_thunk+0x16/0x30 [ 406.497245][T10294] preempt_schedule_common+0x42/0xc0 [ 406.502586][T10294] preempt_schedule_thunk+0x16/0x30 [ 406.508023][T10294] _raw_spin_unlock+0x3e/0x50 [ 406.513110][T10294] unmap_page_range+0x2564/0x4840 [ 406.518461][T10294] ? __pfx_unmap_page_range+0x10/0x10 [ 406.523929][T10294] ? mas_next_slot+0x1003/0x18b0 [ 406.529300][T10294] ? uprobe_munmap+0x9e/0x700 [ 406.534145][T10294] unmap_single_vma+0x153/0x240 [ 406.539040][T10294] unmap_vmas+0x295/0x590 [ 406.543681][T10294] ? __pfx_unmap_vmas+0x10/0x10 [ 406.548771][T10294] exit_mmap+0x1ef/0xa30 [ 406.553089][T10294] ? __pfx_exit_mmap+0x10/0x10 [ 406.558008][T10294] ? trace_contention_end+0x140/0x180 [ 406.563739][T10294] ? uprobe_clear_state+0x5f/0x360 [ 406.569225][T10294] ? uprobe_clear_state+0x5f/0x360 [ 406.574508][T10294] ? __lock_acquire+0x4a5/0x2630 [ 406.579979][T10294] ? arch_uprobe_clear_state+0x107/0x150 [ 406.586109][T10294] __mmput+0x12a/0x410 [ 406.590394][T10294] mmput+0x67/0x80 [ 406.594355][T10294] do_exit+0x819/0x2b60 [ 406.598579][T10294] ? __pfx_do_exit+0x10/0x10 [ 406.603264][T10294] ? do_raw_spin_lock+0x128/0x260 [ 406.608358][T10294] ? find_held_lock+0x2b/0x80 [ 406.613106][T10294] ? get_signal+0x7e0/0x21e0 [ 406.617757][T10294] do_group_exit+0xd5/0x2a0 [ 406.622323][T10294] get_signal+0x1ec7/0x21e0 [ 406.627150][T10294] ? __pfx_get_signal+0x10/0x10 [ 406.632360][T10294] ? do_futex+0x192/0x350 [ 406.636810][T10294] arch_do_signal_or_restart+0x91/0x770 [ 406.642609][T10294] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 406.648751][T10294] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 406.655442][T10294] ? __pfx___x64_sys_futex+0x10/0x10 [ 406.660889][T10294] exit_to_user_mode_loop+0x86/0x4a0 [ 406.666232][T10294] do_syscall_64+0x668/0xf80 [ 406.671240][T10294] ? clear_bhb_loop+0x40/0x90 [ 406.676054][T10294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.682000][T10294] RIP: 0033:0x7fad7179c799 [ 406.686578][T10294] Code: Unable to access opcode bytes at 0x7fad7179c76f. [ 406.693803][T10294] RSP: 002b:00007fad726210e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 406.702351][T10294] RAX: fffffffffffffe00 RBX: 00007fad71a16188 RCX: 00007fad7179c799 [ 406.710536][T10294] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fad71a16188 [ 406.718985][T10294] RBP: 00007fad71a16180 R08: 0000000000000000 R09: 0000000000000000 [ 406.727262][T10294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 406.735554][T10294] R13: 00007fad71a16218 R14: 00007ffede925340 R15: 00007ffede925428 [ 406.743778][T10294] [ 406.747450][T10294] Kernel Offset: disabled [ 406.751824][T10294] Rebooting in 86400 seconds..