last executing test programs: 6m34.935854576s ago: executing program 3 (id=1225): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, 0x0, 0x40) mincore$auto(0x1000, 0x8001, 0x0) r0 = timerfd_create$auto(0x9, 0x0) timerfd_gettime$auto(r0, &(0x7f0000000080)={{0x1, 0xc8}, {0x7, 0x1}}) fcntl$auto(0x8000000000000001, 0x7, 0x8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x42a81, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) fcntl$auto(0x0, 0x407, 0x8100000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x4002, 0x0) ioctl$auto_SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000040)="81bda5a8db09ec4596f0a262327f0c9108a104e1cca363a5188904beac9d37fab25d1e1e7c9355f4da10cc2461c315c8bb36b3e7c0eb57e8ba5c110041ad530f249db102c11205409f8c269811e6b39b5db034ba0cc80bea42545c89eb8199ad8dbdfa7ae33af0874f036cb1b781e9b806eff11b571cf752454151a4c5b8187b280dc64df0c81f70834afa9a48526d210f5500e54688fbc05b") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x20582, 0x0) write$auto(r2, 0x0, 0x9) fdatasync$auto(r2) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000840)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) fanotify_init$auto(0x200, 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 6m33.581808735s ago: executing program 3 (id=1230): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x2841, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSCOMPRESS(r0, 0x4010744d, &(0x7f00000001c0)={0x0, 0x8, 0x80}) 6m31.367346736s ago: executing program 3 (id=1235): mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/macsec0/base_reachable_time_ms\x00', 0x141241, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/queues/tx-0/byte_queue_limits/stall_cnt\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) write$auto(0x3, 0x0, 0xfdef) 6m30.849116089s ago: executing program 3 (id=1236): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, 0x0, 0x40) mincore$auto(0x1000, 0x8001, 0x0) r0 = timerfd_create$auto(0x9, 0x0) timerfd_gettime$auto(r0, &(0x7f0000000080)={{0x1, 0xc8}, {0x7, 0x1}}) fcntl$auto(0x8000000000000001, 0x7, 0x8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x42a81, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) fcntl$auto(0x0, 0x407, 0x8100000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x4002, 0x0) ioctl$auto_SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000040)="81bda5a8db09ec4596f0a262327f0c9108a104e1cca363a5188904beac9d37fab25d1e1e7c9355f4da10cc2461c315c8bb36b3e7c0eb57e8ba5c110041ad530f249db102c11205409f8c269811e6b39b5db034ba0cc80bea42545c89eb8199ad8dbdfa7ae33af0874f036cb1b781e9b806eff11b571cf752454151a4c5b8187b280dc64df0c81f70834afa9a48526d210f5500e54688fbc05b11115939") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x20582, 0x0) write$auto(r2, 0x0, 0x9) fdatasync$auto(r2) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000840)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) fanotify_init$auto(0x200, 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 6m28.924457989s ago: executing program 3 (id=1246): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) mmap$auto(0x0, 0x28009, 0x4000000000df, 0xeb2, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xa) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) unshare$auto(0x40000080) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/geneve0/disable_policy\x00', 0x40180, 0x0) close_range$auto(0x2, 0x8, 0x0) semctl$auto(0xa, 0x2, 0x13, 0xde) r2 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0) write$auto(r1, 0x0, 0x5) r3 = socket(0x11, 0xa, 0x9) bind$auto(r3, &(0x7f0000000140)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x38}}, 0x9) sendmsg$auto_OVS_FLOW_CMD_SET(r2, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x90}, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007) ioprio_set$auto(0x2, 0x800000000, 0x8) ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) pipe2$auto(0x0, 0x80) 6m19.976380562s ago: executing program 3 (id=1276): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, 0x0, 0x40) mincore$auto(0x1000, 0x8001, 0x0) r0 = timerfd_create$auto(0x9, 0x0) timerfd_gettime$auto(r0, &(0x7f0000000080)={{0x1, 0xc8}, {0x7, 0x1}}) fcntl$auto(0x8000000000000001, 0x7, 0x8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x42a81, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) fcntl$auto(0x0, 0x407, 0x8100000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x4002, 0x0) ioctl$auto_SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000040)="81bda5a8db09ec4596f0a262327f0c9108a104e1cca363a5188904beac9d37fab25d1e1e7c9355f4da10cc2461c315c8bb36b3e7c0eb57e8ba5c110041ad530f249db102c11205409f8c269811e6b39b5db034ba0cc80bea42545c89eb8199ad8dbdfa7ae33af0874f036cb1b781e9b806eff11b571cf752454151a4c5b8187b280dc64df0c81f70834afa9a48526d210f5500e54688fbc05b1111") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x20582, 0x0) write$auto(r2, 0x0, 0x9) fdatasync$auto(r2) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000840)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) fanotify_init$auto(0x200, 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 6m4.873497227s ago: executing program 32 (id=1276): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2a6300, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x10000008, 0x0, 0x0, 0x5) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, 0x0, 0x40) mincore$auto(0x1000, 0x8001, 0x0) r0 = timerfd_create$auto(0x9, 0x0) timerfd_gettime$auto(r0, &(0x7f0000000080)={{0x1, 0xc8}, {0x7, 0x1}}) fcntl$auto(0x8000000000000001, 0x7, 0x8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x42a81, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) fcntl$auto(0x0, 0x407, 0x8100000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg/1:0:0:0\x00', 0x4002, 0x0) ioctl$auto_SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000040)="81bda5a8db09ec4596f0a262327f0c9108a104e1cca363a5188904beac9d37fab25d1e1e7c9355f4da10cc2461c315c8bb36b3e7c0eb57e8ba5c110041ad530f249db102c11205409f8c269811e6b39b5db034ba0cc80bea42545c89eb8199ad8dbdfa7ae33af0874f036cb1b781e9b806eff11b571cf752454151a4c5b8187b280dc64df0c81f70834afa9a48526d210f5500e54688fbc05b1111") r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x20582, 0x0) write$auto(r2, 0x0, 0x9) fdatasync$auto(r2) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000840)) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) fanotify_init$auto(0x200, 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 7.879956083s ago: executing program 4 (id=2688): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x1, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xe, 0x5}, 0x7) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)={0x30, r3, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}, @NBD_ATTR_DEVICE_LIST={0x4}, @NBD_ATTR_INDEX={0x8, 0x1, 0x400}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d18073", 0x3) r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x22001, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, &(0x7f0000000140)) madvise$auto(0x0, 0xffffffffffff0001, 0x15) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, 0x0) 7.571356458s ago: executing program 0 (id=2689): r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f0000000080)={0x0, 0x1ff}, 0x6, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) lsm_list_modules$auto(0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000000c0), r0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, 0x0) r2 = socket(0x11, 0x2, 0x9) write$auto(0xca, &(0x7f0000000000)='\x043\x01\x01\x00\x00\x00\x00 \x00\x96\b\'\x02\xb0\x93l\xeb\x05\xf5\x02\x00\x9d\xed\xf3\xf1\x9c\xeb\xb6,N\x8eQ9|\xd2l\x9f\xca\xac6S\xa2(Q\xcc\x7f\x14Qv\xa4\x12B\x9e\xcc\x00\x03\xdf\x9f\xb9B\xf4\xfa\xf1R\x012\f39\x9e\x8c\xdd\x97\x1fv\xb1\xd7\f\xda|\x85H \x00\xd9<\xe0C9\xb5\x8d\xe5\xf7\xbeV\x9f\x12x7\x12\x02\x00\xe4Ba\x17k\x1e\xfcEoR\xf8\xe5\x85\xc6\xc2\x80\x14\x90\"\xc0\xffZ\x103\x12\xf6a\xb4#\x93E\xd8g\xe9\xc4ij:\xed?\xc6|\xe8\x81', 0x7f) capset$auto(0x0, &(0x7f0000000000)={0x7, 0x10000006, 0x48}) prctl$auto(0x59616d61, 0xffffffffffffffff, 0x1, 0x1004, 0xfffffffffffffffb) r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r2) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/sctp/rto_min\x00', 0x202, 0x0) sendfile$auto(r4, r4, 0x0, 0x1) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)={0x104, r3, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0xf5}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x10001}, @NL802154_ATTR_SEC_DEVICE={0xde, 0x2e, 0x0, 0x1, [@generic="272fad793f90625e80a23e0d7271f0aaa7515eb644988826b0424881bcdea47181e36f245688017fd694510a8817d48cac7acc7713ea0bcddedb455d60464258873006b13603f50a507289de5e63c31496fd81c788823f29ad6a22ccd7a0c60923d4bf7fa49803f8883586651855ebe959913f2d5d7ee83b3a3570e4e03707c391bc74e02419ec7035c40c20e2540c1b872fc2d70e82f0b6230f3d7531753123ce8f6875076df3e2610e0c5504024c7339af7106a22c110d993c2a6fb0a1fce84c833cc05b790b04b0916237b6ab2417e3c3", @typed={0x8, 0x39, 0x0, 0x0, @fd=r4}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x1}, 0x44) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/query\x00', 0x40482, 0x0) write$auto_tomoyo_operations_securityfs_if(r5, &(0x7f0000000440)="adcf5fa4e2abf25f84761928907ddcfd7863550e28ebcc19720a", 0x1a) syz_clone(0xac2e4500, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = socket(0x29, 0x2, 0x0) setsockopt$auto(r6, 0x119, 0x1, 0x0, 0x1) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x29, 0x2, 0x0) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/self/net/kcm_stats\x00', 0x8282, 0x0) read$auto_proc_reg_file_ops_compat_inode(r7, &(0x7f0000000180)=""/8, 0x8) adjtimex$auto(0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) close_range$auto(0x2, 0x8, 0x0) 6.615496999s ago: executing program 4 (id=2692): mmap$auto(0xffffffffffffffff, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x10, 0x3, 0xa) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x101400, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x2440, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1a000, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmsg$auto_NL80211_CMD_SET_STATION(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x40080c0) pwrite64$auto(0xc8, 0x0, 0xfdf0, 0x39) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) clock_nanosleep$auto(0xb, 0xa000001c, 0x0, 0xffffffffffffffff) 6.441525425s ago: executing program 0 (id=2693): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000080)={0x1, "36a2662b59209f6bd4aafa4ed15fdb9c791daf044ae6ff089930def80ce28999"}) ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8) ioctl$auto_SW_SYNC_IOC_INC(r0, 0x40045701, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.3/usb4/avoid_reset_quirk\x00', 0x129302, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r3, 0x560a, r4) ioctl$auto(r1, 0x541c, r2) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) 5.591729794s ago: executing program 4 (id=2696): keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0) sched_setaffinity$auto(0x0, 0x100, &(0x7f0000000200)=0x2) keyctl$auto(0x8, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6) socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000800df, 0x40000000000eb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0xffffffff, 0xa, 0x0, 0x2) mremap$auto(0x110c230000, 0x0, 0x2000101, 0x3, 0xf000) bpf$auto(0x0, 0x0, 0x10) r0 = bpf$auto(0x1a, 0x0, 0x92) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendto$auto(r0, &(0x7f0000000000)="6e8aa8abfa2ef41c4fcaa61fd0cc7f9b57acb7b5b8f042de816c2442ba71ed09a8fddfc3f7c7aaa9e7c6a4b7448a767562b697abb98d63539d6385fa44bcd2738adf38057fc30908f9e3a90581db63a94ff108bb695586e82173dc19816ed1e606a2891a28684451038c3814487f37df7580d928da4701040554f455650289288025016f2dc25e8d42e3598340e5c3fd6cf848e74834807ebbe70ae939746fb1ab55daa7a48d69c3a8df1b21d67228211147be6e", 0x0, 0x2, &(0x7f00000000c0)=@rc={0x1f, @any, 0x7}, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) 5.591116561s ago: executing program 0 (id=2704): fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x5, 0x8, 0x5, 0x4]}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xe) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) sendfile$auto(0x3, r1, 0x0, 0x400000000006) mmap$auto(0x0, 0x2020009, 0x7, 0x2000000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x240000d1}, 0x80c0) close_range$auto(0x0, 0x5, 0x0) 4.923074653s ago: executing program 2 (id=2698): r0 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000140)='/dev/media3\x00', 0x40, 0x0) mmap$auto(0x3, 0xfffffffffffffffb, 0xdf, 0x16, r0, 0x8000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event2\x00', 0x20881, 0x0) waitid$auto(0x7, 0xffffffffffffffff, &(0x7f00000001c0)={@siginfo_0_0={0xe, 0xdf, 0x200, @_timer={0xffffffffffffffff, 0x97fe, @sival_int=0x7, 0x80000000}}}, 0xa8, &(0x7f0000000280)={{0xa59, 0x1fffe00000000}, {0x2, 0x5}, 0x2, 0xa000000000, 0xe87, 0x7d, 0x0, 0x80, 0x6, 0x1ff, 0x2, 0x70000000, 0x9, 0xb7, 0xf2c, 0x4}) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x407ffff000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x10001) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000240)={0x0, 0x7}, 0x2) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/zram-control/hot_add\x00', 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x0, 0x0) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_STOP_BEACONS(r5, 0x0, 0x40100) sendmsg$auto_NL802154_CMD_SET_CHANNEL(r4, 0x0, 0x8084) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000ec0)=""/4096, 0x1000) 4.66496216s ago: executing program 4 (id=2699): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) socket(0x2c, 0x1, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200)=&(0x7f00000001c0)='*(]\xb1/#*,\\\x00', &(0x7f0000000280)=&(0x7f0000000240)='-(^\xce(^#/\x00') ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000040)=[{0x5, 0xc, 0x800}, {0x6, 0x1, 0xf9fe}, {0x8, 0x8, 0xc39}]) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 4.5323804s ago: executing program 2 (id=2700): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x11, 0x3, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) open(0x0, 0x4142, 0x1) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0) ioctl$auto(0x3, 0x402c542d, r1) write$auto(0x3, 0x0, 0xfffffdef) 3.466456784s ago: executing program 2 (id=2701): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x1, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xe, 0x5}, 0x7) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)={0x30, r3, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}, @NBD_ATTR_DEVICE_LIST={0x4}, @NBD_ATTR_INDEX={0x8, 0x1, 0x400}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d18073", 0x3) r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x22001, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, &(0x7f0000000140)) madvise$auto(0x0, 0xffffffffffff0001, 0x15) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, 0x0) 3.465154234s ago: executing program 0 (id=2710): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdd, 0x9b72, 0x2, 0x20000000008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x3a, 0x1, 0x4, 0x5, 0x9) mmap$auto(0x0, 0x20009, 0x81004000000008dd, 0x1000000eb1, r0, 0x0) unshare$auto(0x40000080) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x200000001000000, 0xfffff7fffffffff7, 0x3ee) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xe4, 0x9b72, 0x2, 0x400) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8003, 0x80000001) mprotect$auto(0x0, 0x806121, 0x6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x100, 0x0) close_range$auto(0x2, 0xa, 0x0) 3.350285946s ago: executing program 4 (id=2703): mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) futex$auto(0x0, 0x1, 0x40000006, 0x0, 0x0, 0x80000001) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r1 = socket(0xa, 0x3, 0xff) connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) shmget$auto(0x8, 0x10563, 0x568d1af2) write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0xfffffc96) mmap$auto(0x0, 0x400, 0xfffffffffffffffa, 0xeb1, 0x401, 0x8000) madvise$auto(0x4, 0x2004, 0x15) 2.403781698s ago: executing program 1 (id=2705): read$auto(0x3, 0x0, 0x80) 2.192149958s ago: executing program 1 (id=2706): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x120003b) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x1ff, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000002340), 0xffffffffffffffff) unshare$auto(0x40000080) mmap$auto(0xfffffffffffffffc, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40e00, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x8281, 0x0) ioctl$auto_PPPIOCATTACH(r1, 0x4004743d, 0x0) acct$auto(&(0x7f0000000280)='/sys/devices/virtual/mtd/mtd0/size\x00') openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad}) close_range$auto(0x2, 0x8, 0x0) shmget$auto(0x8, 0x10565, 0x7ff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_NEW_MPATH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="aba5a072", @ANYRES16, @ANYBLOB="000128bd7000ffdbdf25170000007900d7008aa0504116713414a71dbb64cf979a276d1f6643fe066f96bfc3f2edb3a5c9a77e047a667b65107d234a3ebc81db0c7c3cdcd55ad3eb101ed0f3bd0e9f4e305aa7a3357659f40bba7f30ba224344898b9be45f2cd0"], 0x12f8}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000801) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[@ANYBLOB="a00100"], 0x1a0}, 0x1, 0x0, 0x0, 0x24004000}, 0x40000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000040), r2) fcntl$auto_F_OFD_GETLK(r2, 0x24, 0x7e) sendmsg$auto_WG_CMD_SET_DEVICE(r2, &(0x7f00000028c0)={0x0, 0x700, &(0x7f0000002880)={&(0x7f0000002900)={0x30, r3, 0x1, 0x70bd27, 0x25dfdc00, {}, [@WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}}, 0xc0) r4 = socket(0xa, 0x1, 0x84) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000080)={0x0, 0x100fff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000400), 0x40000000001243}, 0xa, 0x0) setsockopt$auto(r4, 0x0, 0x60, 0x0, 0x6f7250c4) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) shmctl$auto(0x0, 0x0, 0xfffffffffffffffd) 1.843088702s ago: executing program 1 (id=2707): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0x3, 0x2) openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000000040), 0x101400, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x73) pipe2$auto(0x0, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) fanotify_init$auto(0x5, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x40401, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x540b, 0x0) 1.842880772s ago: executing program 2 (id=2708): getcwd$auto(0x0, 0x7) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) mmap$auto(0x0, 0x2021009, 0x3, 0x375, 0xfffffffffffffffa, 0x400008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/ep_81/type\x00', 0x20880, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffffff, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty51\x00', 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.434115015s ago: executing program 2 (id=2709): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) setresuid$auto(0x0, 0x0, 0x0) r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000) ioctl$auto_BTRFS_IOC_SCAN_DEV(0xffffffffffffffff, 0x50009404, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000280)='/dev/adsp1\x00', 0x4000, 0x0) ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r3, 0xc0045004, &(0x7f0000001080)="cf6fb530227394cfc7074e23395026247ae78fd8feca8156fe5f75a98156970bc3c23662ebf8e85c62aae7590d6a89f9e5667cc39fdeb8abce20639da53ecb95707c1a3f2d6242d2d1fab849d35466a78b0897f0f758e7b4dbc63bc289bcbe4b7c9a5248227e67503207477edcf190d3e6a81a64453e4bb7dc294a016fc45ba2acee2bf9d3be7ffc99377b4ce444a6c9bf12fecb1d24a3357b81a7992ff83bba663c115d65f1ffb4306bf0fa78d5a140bf99211802c86fd47fdac6b0f6d5d17ed3b716d923cc3e6087ce7d2784beaf71ceb8cfbb82db15fc8af332ff38b3c732a5975f2653f764ae0d81cf5c53c79443818aad8021789170c8fbbe391a8c68158a054386c9cf11284f7ca96f34342f93a000ca0a82ad409720c3b78577d46d2bcadd7050adf3f00fe8afef62ad93fa1117bc8b25bbc813bddce79f63fdbd58566a46fd444956c8e1d88d04ecc6b3fce589f67071a908aaa49be48d8184176425b1ea6754d8ddf33e04ee00d3ea792b2f9aff7ba6f2302085a309bfcae55e11ad107d75965e7772538a16b8a31a0253151098a9943eb611be1c5e63cd2bc5e5972256dee5bc81a9b324d7dbbb3e1e3f2895a217ea81df31e2ef911cf2036ec0ca9680666ee546ce7ed755726d8a0c2aefda120ada13600c0344bc1498816481670a24ce2ffd5fb84df0013541bd6569a4c8857bb0435a0ce012d4491f5f4b3e958877f8447d47495a70ab4dd1b41e69d14527f4c9cc18965126f9f265a68c5025bc781370e06a562d8c344ec6cb280bc7136f72b4e271a1c44ecda655c6c8470755067ddfa2235e21c58e6c4a0552144fdba5b154c0f74ab701ed27f5d26c9dcb543f2693e53ed871ace907c7d1aa3cdf0c41c3651f5a34f29d7a9882298284eef1d061669eda8d832f8a63cc346f57f7138c41157516224074eeb45ee1e597c3922ad7d6f78189e3b9d4a83722916c70a0ba46d63da435857960996477fd6abbc3e7eb3968e93064e93710f9e49341a772b1e4acad30feaaa82256e231e6aed7dd050cde99935da53bbf08f9dd272d407a09efec54a19434cf989a6539f81fcfe1d9e2e1a1430f3d4b03cec1f5008bfe2eaa8ffa0ced1bc934375b44a7859d3d885b0018960b791e20a321772355fe1fdd8b34954cf667e121bf33867a935ab05e7296c6ab4620af461e2afa1c5b0cc99103879f573494261d83c787d76e689e541e2c7a23d11f9a34aa5c5b2a02ff3dcc1e49a94125d6f935636e7f9c3fd606bd7d917158106a1ca18cdc461624939bab7df61d2eb198696acfee608a8cc5c23e10d18b6b3df8fbce78db7a12ddca21ba039c81dfa12524c846552c4e86b71e5b070e1fb431e23a747a3483dda32c04bb3e8ddd6a896ed36da901f558f5405225e84843231f8489c160c570e485fbbe70869a4b95aa5179049f8c33bec2be509758efac6dfe54b90baa53d9847921b572f9c464c0d325fecf68f5d12fb6cb227f95187541da6bf31ea7a4e650d174775092361478a20fbdda343ca2dba4bd0943acba31f5054357e25600f0ebe3372236da22d921b82632838f3e89455bf09440894704e7a18e04d26a547ca5413fadc649e8f993ba234593260f03e87b27bbb6df8f2a149753622d842a3aa7a706ea76303274e2fad4b8ea48e1a20e5e2be9a2295c99418cd35ef8d71af4b39fdca068f0649182b6f5f9e8f56eade6afa91e61e19681c0b813d20ed00e27d78a65c45f1f6c2e79e82380b40cfd5e0562921dd51da42bb8f80d9e5ed0763664b0ed54de66fdbd5a4660f97775bfa7567c488de9485d91cc1f8e0a4eacd6afc52b335f0add2e2d50a383ce19a40fcbd7ee35e49c5d332c4df0370f35df61da65715d3ed46341c6a63f8514167589d6ccfea9517d5c71cfa7d5484b7de32d19ca09e5371233990ed2893913f07dbc3ae90bb218fc18bbc41d30f672365150338ad0591f3fd08354f1036ac33b2eaefc01427fc809c6617e050cd843e9b49e3259e69a0447ea74db207b787421600aa4cd0258655d0cf6deba02a91ad71443fefe1a27bdec29c8b4cdd6b3f0e1bf5ef2621b3d31bf956b8863a25029a4445198afe6ed753daa8bd8a796b149357d4faa66ae912342f190c53ee304c50c9053148299fe3d9acc3ad3dd5162776e4c3101c32a722c64b0f269fb53412e7252f0d184209e039086c93d33f2445651a3d924357c4a8f6619fde25e33def8484d28ec6f04f3f022293b9db6bcc4a4b936d4bacfa6c383261ca764e52bc94775dce66e5bc8bd1ad817a7067af94f4cea0a16ecdc89597d9002e0060d274344bd435740b30ac02411c07c7c97422ec5da2c2380ea55f3d8b45846c42f5df6896ae014fece75bacf5b3fdbda2114cab27726577ad716efddb0021c6ae064d35bcb2151f68705258e3f80e61797e1352daa159d8859efaf6846342daf555bda855a363c0434a2c8037aa88efe4286e7e450b3483914d6a2a354ccd59f6ffaf8decd5fb7f7526d980753746573c0139cef0eee336172ae83a066f7657c60b1af5a4f8940e4a09fcbdb1cc942741ff04c2924e000d7802d3fffe4270889f546c452275fcbb1af9b41aaaed34776ca82b3920546ac2d4f0122c80dc755f496c35a22752f6d396abdfaa2e924da02ab462441bd34833ceba455a76236a8732509049df8c1b9dc1710e8635bbe2f31aa91f55ce9cd0f2e2ee8ee5d8244edca6ccf5264a43c0688f24893c73cf51eec04b5710dfef4b6e1fd77c7372bcc0f83b0695f4795a5402183bd4e02114a11eff31a77c3d9875b3a02391d21a7fa4403488d536b7efa492759b20eee38ca891fb3c01e16b309323d47b36bd1cadc26940b1ac9d199eee6a120aedbe98ec9a8f61ae86e193fd80384faabd2f513495220756a2d730351ed327c9a6b6fca2fab325213a1911aad7ca300ddd08b708752a516701af16e7578b0be6ea37caa70ffaf1fa790f9cf770a315f40be839c3f99855acf47c023585a2ec74d3ebc95489b3345f93bc86ea6313064dcea5f52db8dd655ed749693ad05085d89a7e62d2b74dc66695f5541d2e5ef58629f4e7d58a18e6488893eaa11b97e3221d91187bde2a38630740b9b79f7d62eb5cbbae4e35a0318cdfce6eae46211a9ba91a04ed3d2897dffb54a52ac921daadc3ade04f1511e16365e350730c70f45c35e2fe12476dc4577522e97a27b337c4c8bc3467e8fb87da94989f6c70801b30182c611a6b747a8d6cd41f7f068bdb80f8c8cebab33895aee44393b90cf8b891f3a1275f961e901ab97d788a0d946212b02b2a4f7df018e2d98fcc856b2b046c9e14b33ff86942bfe556aa4b6af8c866012f7497f0f6faa18855e59866e5c9ff84711f701b25998f6bf55af57bacddc4aeea5b4fac5fbe4f5538a51af8bd1cf2fb806299450adc6a2179877948486369c888c0d36b569232abb87b40c83948a9a0c4d21c4ce6c10171b8f84563f097f54eae6d9ddb27967e153e93a08b361932957b5debee5064a3d0eba1b6d214db5ff62f4d7f746f792819dae0b0b88a92d9240959d3422fbaf0b934802175ff5f83420e074cfeee3ac97dbf76b9d2a6d7b1014c7b9646b936eefb7477dada905787b38ae92202a67b1081e63e63811eb7b07129dd6fc9a27a3d2b11dc197cbd1c4a740e10cbafcaa77551616d2d2c733f930193b7d2d1792c1ad444b05fb93f964b19bab28599392aff4d0ee598a58cf3b624aa0c1f1752a581832c5365c0b690771ee5a5b4a2227c4c669c2a69c89366748bab8d4602d180f85876e38cd538caf9fba288e7b3a671ee193850ef04442f5d91832fc0de5d511b3238afebe3de3d4491da88cbb4a283b58d83fe7df850656be117f2f7510f872a2a9c1906b38173e7d88aa916c953bf3bed4a26721757ed65de5901f4bd3ad60f2d6de80f1fae10bcce1bded3ec3868438493e59bc969217d146a89e5773751420a377716373592246cbf8ab146883616bd6a12ce0be52c00a1b878164aaa767665270107855bcc8b5e6178f271bb15e0208b94d88a7109523d7220683974221ca84adb84e05448085f460b90ce6943c0a363b130dfc47fae778ac51dfa13b687c36c7dfc24810dfc8ee364bf57ad0189c526e5505e7958842836454bd3424d25b9ef26280e3ab616afa5eb0b361bb45a78250c4ea7e995590eaed27140f6565734b373cbe7dcba307d161b10c7c8fee96117c116d1bdcdb1c5b15aa3e15e31ffaad8796a1ac61504564c67af471f5edc62dfb711c3d0746f684b13fe11a5bdd0a574b36eca7ab1a5fe9f3c6d5b5f6d71c7a8bea0485857b181a0381bcaad49ea0c8ce9499c515e701b81f8551d1da56670add7f24c407827afba9b7911ab2c17025f10f4d2d745222fef27ec85c3d2804145e7c9822824f084a834bb223cabcf14a0ad0ac7e9f44b6044cf1f56743dafdc2f04be3bb8155944cadc425a05483f352b4e8bc1375c233950acd7b46524486e01c00f1adc317f166c533e61c1ea2cab9140521d7ac3cc923901e5167ab7ae97171c42ab4dddc7ba5788cc746236889f3884c58e3e34bf13c1247baa6bf5a3562a5c2948eb82deda892532736d4a8205b48d91cd6234ec976b660cc66d9aa88bd542420d813a90afd3926a80c807b753465c9c5a9eca7011f122c7948383d7090663b7b2f9d853291e601abaac6aafaa7784a28e75ace99c0a7becce5e62c77dfafad199f1cd4f981e7959649437d00299b49b83c02850b258d164ccc0d7195128d1285cb04d138b21e3e5275bd30ffe2954f767a2e4e30c638c20f38a703062fa4c7663e95718a5ea3a3646a7b637d743353bf3ddec8208cf8c12ca902c059957e94a70fd380ddba176f7823aeb997f7f09555ad7678fd08f5ec4e977a20aa83079cac316cd014eb2914b5938875fe9729bfca6f3462d0db5e84725c822d9fc40796499fdecac39e8ef2e9f60f3b90fd41670aa46d801c24f387cdf74f71fb8eb14ec1b15e65d22dcb7395f13934487b20d507cb397da469aded88645228fdc6f850475ffe7d91ef47273cdfaeac89a8cc25b846d3a4569443f27d3b985dbc77b8e56505c27729af6ae6d3af04e1d9fe7651597bf06238bffcdc068b3709abfb9ab886bf83f909bc656e30a8aa18c8e04979ba30e663bb2b78f4f3494cdaaa8bcd99d5fcf646693348f56de3d748cbd4c43d8d7c269729aae3f4743fc1e26d5bf45818c6bf59c4ca448adbdf6a72e54ba4cbc11b62f57fd039dfccb54bb2cef57389b8d7fc7fc38154a70f18546c6bb554b31a4c7523d460dd1e7bf96d8638efe20d7b4bc4c9af7da08425c7df768053adc4a9bf611160ce6b0a393c3b961cadfd3215cebc5fe6e157daa4ec9a1a2a0f94d2266eee2788624c1cdb406b22a5ba3f4a89e5a7b5231cf57533acccdc1c851251342aaaf0baa43602cefb39e30e2e6a61b37174c14ce9e76a2952e4b9b80451d5bb89548ceee00f374dac5a8d9f2e2396296d25fb5f72e6a4e98706ac3e10c45f61736684191ce9deb768e51ba82f1bc4a957b518f4a12d249fb9f3478122d5f58130ca900710f114da540f4e277a82deddaa511f18113f7a3db8bdc10b09a4ac941b4bcb7e51e09056e950ff85725d2997c5ed9aa79d0e8b5589e54b956444e903e7262c45fc4363e0b71c5b9c0f7cbaf2b0bd008177044289f65cebfa6b43a24a5a14e555a73fcd2d2788390bfee754d37c3f3fcc783de32de7f5d28d0c4353e08b46b968dccea5721f0c449e31ac4104923e0213b27702af64b66abacf7a0ababe47789182a1") sendmsg$auto_NL80211_CMD_DEL_PMK(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x80) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r1, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) msgget$auto(0x5, 0x7fd5) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r2, 0x8000) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x6, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x3, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) 1.433979392s ago: executing program 4 (id=2711): fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x5, 0x8, 0x5, 0x4]}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xe) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x11f, 0x0, 0xfffffffffffffffd) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) sendfile$auto(0x3, r1, 0x0, 0x400000000006) mmap$auto(0x0, 0x2020009, 0x7, 0x2000000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x240000d1}, 0x80c0) close_range$auto(0x0, 0x5, 0x0) 1.433109677s ago: executing program 1 (id=2718): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) flock$auto(0xffffffffffffffff, 0x1) rt_tgsigqueueinfo$auto(0x0, 0x0, 0x21, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x942, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r2) r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x20000, 0x0) ioctl$auto_SG_GET_SCSI_ID(r3, 0x2276, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000740)={'wlan1\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x801) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r1, 0x0, 0x8001) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0xbc3, 0x800, 0x3, 0x8, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x6, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0) poll$auto(0x0, 0xa, 0x4) close_range$auto(0x2, 0x8, 0x0) 1.419775255s ago: executing program 0 (id=2712): getcwd$auto(0x0, 0x7) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) mmap$auto(0x0, 0x2021009, 0x3, 0x375, 0xfffffffffffffffa, 0x400008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/ep_81/type\x00', 0x20880, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffffff, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty51\x00', 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) read$auto(r0, 0x0, 0x6) 297.123393ms ago: executing program 0 (id=2713): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x11, 0x3, 0x2) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) open(0x0, 0x4142, 0x1) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0) ioctl$auto(0x3, 0x402c542d, r1) write$auto(0x3, 0x0, 0xfffffdef) 244.902165ms ago: executing program 2 (id=2714): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r0, &(0x7f00000007c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057\x1c&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\x7f\x00\x00\x00AN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81.f\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00\x00\x00\xec\xbd_r\xf16\xec\xf3\xbb[.\xf3\xef\xf8\x16x\x9e\xb3*:/L\xa0Kg\xf0\xa2\x84\xa3o\xcc\x9e\xd3\xeb\xd3(\xaa\x93g~\x01\x81\x1eV\xf1L\xfc\xad\xa9#O\xe4\x12\xd3\xbda\xbc\x9a\x9f+9\'\xc4\x13\xf0\xc88\x1d80?\xc2\a\af\xdc?-&\xedAd\x9c\xe5&\xb9\x14\xe1\x85 \xbf\x18\xfc:#\xcf\x7ffT\xefPb\xe1\xfa]\xcc\x8a\xe3\x99\x98u\x9bj>\x9d\xc2\x1fk\x87\x92\xfb(U\xa8\xcd4+\xf6e5],\xec\x84 \x1b\x10d\x1b@\x84X\xa1\xa8\xd7\xccO\xb0Qq\x1a\xa4<\\\x0e\xa4\x7f^\x1a|\xfd\xe6#\x00\x9e\x1d\x00k\x84\x1b\xa3\xb1O\xe0IzJRO\xf4,\xe5\xdb\x03CA\x13Q\x84\xbb\x88\xb4\xe3\xba\xf0/\xd0\x04\ny\a\x8d\x12h\xe22\xcb\"\xce\x00\x00', 0x5) ioctl$auto_USBDEVFS_CLAIMINTERFACE(0xffffffffffffffff, 0x8004550f, 0x0) sysfs$auto(0xc7, 0x8, 0x400) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyc7\x00', 0x101601, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket(0x10, 0x2, 0x0) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/input/event0\x00', 0x0, 0x0) ioctl$auto_EVIOCGVERSION(r3, 0x80044501, &(0x7f0000000240)=0xb20) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3ff, 0x2, 0x7, 0x48, 0x7ff, 0x5, 0x7, 0x4, 0x6, 0x8, 0x3, 0x5, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x800000, 0x7, 0x8, 0x200, 0xfffffffd, 0x84, 0x0, 0x6, 0x2, 0x0, 0x0, [0x0, 0x1ff, 0x1, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8003, 0x4000000, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x0, 0x20000000000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xec4e, 0x0, 0x8000000000000001, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x24, 0x4008) read$auto(r1, 0x0, 0x1f40) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) 195.754949ms ago: executing program 1 (id=2715): read$auto(0x3, 0x0, 0x80) 0s ago: executing program 1 (id=2716): r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) mmap$auto(0x0, 0xaaf, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x89a, 0x5, 0xd, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/tty44\x00', 0x0, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyeb\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) unshare$auto(0x40000080) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0x400caed0, r5) ioctl$auto_BLKTRACESETUP32(r2, 0xc0401273, &(0x7f0000000100)={"b05e5c5443957e90cc358aa47f273719612b76cf6483855efa48f1700b09e2b7", 0x4, 0x6, 0x5, 0x6, 0x7fffffff, 0x0}) sendmsg$auto_TIPC_NL_BEARER_GET(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000001300)={0x4f8, r4, 0x9d0da3446261172d, 0x70bd2d, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x1e3, 0x6, 0x0, 0x1, [@nested={0x14a, 0x28, 0x0, 0x1, [@nested={0xc, 0x25, 0x0, 0x1, [@typed={0x8, 0x138, 0x0, 0x0, @fd=r1}]}, @nested={0x5c, 0xb4, 0x0, 0x1, [@nested={0x4, 0x52}, @nested={0x4, 0x4e}, @typed={0x37, 0x25, 0x0, 0x0, @binary="56d4b66b19d40bafc9441340d6ad13bd4b69fd9991d0afddcdfd0a17c08d08b45c23cb024f6a3f1e0ba3297e4ff3d7b93c7c00"}, @nested={0x4, 0x34}, @typed={0xf, 0xaa, 0x0, 0x0, @str='/dev/tty44\x00'}, @typed={0x4, 0x28}]}, @typed={0x8, 0x137, 0x0, 0x0, @pid=r7}, @generic="6e9f6247e9384a03ad29a084e3d0eb3f7a197302e7b9f23f51c5579df8802cefa36abbb20a057aeaf6d765797291e000c24375a45e4a5641f6c261578d04da9b9d3ad31c91daa4d6b06f4bf00308215fa89d838343ced0221fc78a5d76d277b6e31258f73b1cde3c9511b50e0710081c051db4994c3b0f06855d179e60ce2b46de36e9346dea6b3939557cada3549ddb95aa81b029994a106f209a2937704e45cbceafe7000375de8df18c15f80d7f5f5a728c705435ba39aa01afae1ff9da580029edd66cd3", @typed={0x8, 0xea, 0x0, 0x0, @u32=0x9}, @typed={0x8, 0x6e, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}]}, @generic="0bbdf04b0454301b4847ed", @generic="15e4ca73ece49e156edc46ca56c6bfe26b664625a39f10a9168c501995fc66a728abc2e61f8526a1ffa7578d415cad47cc73890a891433564c16e8e05cd650b8c17be904d285c0be737920989d4ecdfde42103fdd8acf1f066822c8d7ee3450ea35c6184be5745ea218a61fd05891fbf902ac8d2f64124f96d2b62572baa82631bfe7c2cd4c5497b"]}, @TIPC_NLA_PUBL={0x1a8, 0x3, 0x0, 0x1, [@nested={0x1a3, 0x88, 0x0, 0x1, [@generic="562a440e4dee75c15640595d49f8b7657f5b053d693ec4e3ead1d8c31ba210612160ff4f9ce046a1a81e22620b8343a8c5e447751ac080e81afe52ab98a22e5ae0ebd856404890fe4b5fda61c12fbac7add514a1b4466802ad3317dfe6f569d00addb3482a04c088940fc2a7d598d05c2e8e13c94f1e131045d87b35c268b4c3b38d50beec4ecceea83dae9a876e46f8ed9f2009c477618a6fad455d0938c9ad20744f93c0bbf1f224f9903c105702a8127f1a0c380eb13fda14ccbf2b3b2824e6ddd9806ea6", @generic="958d7c717ff33e939bd5ba94b867a2f2a167c7664099b55502a39c654d62824d6e5f5cc57b80d62ab011a71be59431956df0a4d386a44ee4952c369b8493c65696848cb265ba0e4ee484566035522294c3bbdc18367da99c02395236d150298f06091f6ec084858f03c6", @generic="1a478c66344da1bbed3e0fcd6f323b870cd70ac8a78578bfcdb99c2fdf420d28da1fe02735dc4b3332572f28bc1f2c8b5461c0ca893771c8686a486c0cd8f626746014b3b05806acde295ce29fc28907b3fdbe44e58b4d729bd612fd146beb059ce9620dc9ddcb", @nested={0x4, 0x8a}, @typed={0x4, 0x145}]}]}, @TIPC_NLA_NODE={0x158, 0x6, 0x0, 0x1, [@nested={0x38, 0xd2, 0x0, 0x1, [@generic="472d888e6c3e90382d8d1a967f8fac31d2203ce01364d8c0eced0840400ce2440049ad1ad50c58f873901bc896be0a0c", @nested={0x4, 0x4f}]}, @generic="7b049968b5ca546e317ea2cb3c3bdc63689b6ed9ae83188212210358080b9a08c372f5627af161fd4b44682eafe8e72e711a", @generic="0795fcc7267ae83b06e905000000412dc40d1fd1f070c6", @generic="888df6da7fa9d56c9f22855043dff9123a45a775effc6ddf9eb52adde00fbe0fb29f5b70db77d3355ad050826f7c6003c91158a6d08851366a4c7e48375ef24e96b36381fac196bf1df0d82ff6314887ae19e00e0dfc3dd95cfb8dbd403d27ecd78f904a219dc0d88d195871d9c2d62417269003dc9e9fdb4a21578d032450eb947e131c31cb1ad818a773860736a09971a833abac8d59c1e2f9b69a29b490a0a3fff23bd1136548685076382e48b0cb431a9838aebbdcdac57c9e8978d7f7efebd89d0a91d34b58d0e0b171e05fd81096f720"]}]}, 0x4f8}, 0x1, 0xa6ffffffffffffff, 0x0, 0x2400f000}, 0x20008080) write$auto(0x3, 0x0, 0xfffffdef) r8 = ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)) getsockopt$auto_SO_TIMESTAMP_OLD(r0, 0x1, 0x1d, &(0x7f0000000000)='%%\x00', &(0x7f0000000040)=0x8a9) r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/raw\x00', 0x60080, 0x0) openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/gid_map\x00', 0x20e000, 0x0) pread64$auto(r9, 0x0, 0x8, 0xffff) ioctl$auto_dvb_demux_fops_dmxdev(r8, 0x8, &(0x7f00000002c0)="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") kernel console output (not intermixed with test programs): ksys_write+0x12a/0x250 [ 723.030670][T14159] ? __pfx_ksys_write+0x10/0x10 [ 723.030694][T14159] do_syscall_64+0x106/0xf80 [ 723.030720][T14159] ? clear_bhb_loop+0x40/0x90 [ 723.030744][T14159] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 723.030763][T14159] RIP: 0033:0x7efcac19c799 [ 723.030779][T14159] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 723.030798][T14159] RSP: 002b:00007efcad039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 723.030816][T14159] RAX: ffffffffffffffda RBX: 00007efcac415fa0 RCX: 00007efcac19c799 [ 723.030828][T14159] RDX: 000000000000cd04 RSI: 0000000000000000 RDI: 0000000000000004 [ 723.030839][T14159] RBP: 00007efcac232c99 R08: 0000000000000000 R09: 0000000000000000 [ 723.030850][T14159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 723.030861][T14159] R13: 00007efcac416038 R14: 00007efcac415fa0 R15: 00007ffc7f3fd6c8 [ 723.030885][T14159] [ 724.019831][T14156] [U] [ 724.022568][T14156] [U] [ 724.025255][T14156] [U] [ 724.027941][T14156] [U] [ 724.069832][T14156] [U] [ 724.072563][T14156] [U] [ 724.075264][T14156] [U] [ 724.077954][T14156] [U] [ 724.169558][T14156] [U] [ 724.172412][T14156] [U] [ 724.175128][T14156] [U] [ 724.177825][T14156] [U] [ 724.226897][T14156] [U] [ 724.229655][T14156] [U] [ 724.232363][T14156] [U] [ 724.235136][T14156] [U] [ 724.280789][T14156] [U] [ 724.283519][T14156] [U] [ 724.286205][T14156] [U] [ 724.288893][T14156] [U] [ 724.331500][T14156] [U] [ 724.552984][T14188] sysfs_service_op_store: Client not running :-5: [ 726.095969][ T8595] Bluetooth: hci2: unexpected event 0x33 length: 124 > 10 [ 726.694363][T14219] FAULT_INJECTION: forcing a failure. [ 726.694363][T14219] name fail_futex, interval 1, probability 0, space 0, times 0 [ 726.893970][T14219] CPU: 0 UID: 0 PID: 14219 Comm: syz.1.2078 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 726.894015][T14219] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 726.894026][T14219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 726.894038][T14219] Call Trace: [ 726.894045][T14219] [ 726.894053][T14219] dump_stack_lvl+0x100/0x190 [ 726.894085][T14219] should_fail_ex.cold+0x5/0xa [ 726.894106][T14219] get_futex_key+0x1d2/0x1620 [ 726.894142][T14219] ? __pfx_get_futex_key+0x10/0x10 [ 726.894165][T14219] ? __lock_acquire+0x4a5/0x2630 [ 726.894194][T14219] futex_wake+0xea/0x530 [ 726.894224][T14219] ? reacquire_held_locks+0xce/0x1e0 [ 726.894250][T14219] ? __pfx_futex_wake+0x10/0x10 [ 726.894278][T14219] ? sctp_bind+0xbb/0x130 [ 726.894297][T14219] ? sctp_bind+0xbb/0x130 [ 726.894314][T14219] ? __local_bh_enable_ip+0x9e/0x120 [ 726.894337][T14219] do_futex+0x32b/0x350 [ 726.894361][T14219] ? __pfx_do_futex+0x10/0x10 [ 726.894385][T14219] ? __sys_bind+0x1c7/0x260 [ 726.894410][T14219] __x64_sys_futex+0x34f/0x4d0 [ 726.894437][T14219] ? __pfx___x64_sys_futex+0x10/0x10 [ 726.894470][T14219] do_syscall_64+0x106/0xf80 [ 726.894496][T14219] ? clear_bhb_loop+0x40/0x90 [ 726.894518][T14219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.894537][T14219] RIP: 0033:0x7f45cbb9c799 [ 726.894555][T14219] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 726.894573][T14219] RSP: 002b:00007f45cc9a60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 726.894591][T14219] RAX: ffffffffffffffda RBX: 00007f45cbe15fa8 RCX: 00007f45cbb9c799 [ 726.894603][T14219] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f45cbe15fac [ 726.894614][T14219] RBP: 00007f45cbe15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 726.894625][T14219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 726.894636][T14219] R13: 00007f45cbe16038 R14: 00007ffd364f6cd0 R15: 00007ffd364f6db8 [ 726.894658][T14219] [ 729.740426][T14247] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2083'. [ 729.845793][T14251] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2083'. [ 731.509453][T14276] [U]  [ 731.512281][T14276] [U] [ 731.514973][T14276] [U] [ 731.517726][T14276] [U] [ 731.570533][T14276] [U] [ 731.573268][T14276] [U] [ 731.575957][T14276] [U] [ 731.578646][T14276] [U] [ 731.607962][T14276] [U] [ 731.610694][T14276] [U] [ 731.613404][T14276] [U] [ 731.616094][T14276] [U] [ 731.691558][T14276] [U] [ 731.694288][T14276] [U] [ 731.696981][T14276] [U] [ 731.699793][T14276] [U] [ 731.746800][T14276] [U] [ 731.749560][T14276] [U] [ 731.752267][T14276] [U] [ 731.754963][T14276] [U] [ 731.785318][T14276] [U] [ 731.788052][T14276] [U] [ 731.790749][T14276] [U] [ 731.793439][T14276] [U] [ 731.840076][T14276] [U] [ 731.842822][T14276] [U] [ 731.845508][T14276] [U] [ 731.848195][T14276] [U] [ 731.900486][T14276] [U] [ 731.903218][T14276] [U] [ 731.905909][T14276] [U] [ 731.908598][T14276] [U] [ 731.940022][T14276] [U] [ 731.942845][T14276] [U] [ 731.945546][T14276] [U] [ 731.948237][T14276] [U] [ 732.001093][T14276] [U] [ 732.003826][T14276] [U] [ 732.006522][T14276] [U] [ 732.009211][T14276] [U] [ 732.044503][T14276] [U] [ 732.047334][T14276] [U] [ 732.050052][T14276] [U] [ 732.052741][T14276] [U] [ 732.099328][T14276] [U] [ 732.102095][T14276] [U] [ 732.104804][T14276] [U] [ 732.107528][T14276] [U] [ 732.154093][T14276] [U] [ 732.156821][T14276] [U] [ 732.159640][T14276] [U] [ 732.162332][T14276] [U] [ 732.221386][T14276] [U] [ 732.224133][T14276] [U] [ 732.226872][T14276] [U] [ 732.229693][T14276] [U] [ 732.314164][T14276] [U] [ 732.316961][T14276] [U] [ 732.319663][T14276] [U] [ 732.322350][T14276] [U] [ 732.403299][T14276] [U] [ 732.406024][T14276] [U] [ 732.408711][T14276] [U] [ 732.411394][T14276] [U] [ 732.472527][T14276] [U] [ 732.475260][T14276] [U] [ 732.477959][T14276] [U] [ 732.481255][T14276] [U] [ 732.537220][T14276] [U] [ 732.540059][T14276] [U] [ 732.542754][T14276] [U] [ 732.545437][T14276] [U] [ 732.616309][T14276] [U] [ 733.907695][T14305] size and base must be multiples of 4 kiB [ 733.924636][T14305] CPU: 0 UID: 0 PID: 14305 Comm: syz.0.2099 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 733.924677][T14305] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 733.924688][T14305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 733.924699][T14305] Call Trace: [ 733.924706][T14305] [ 733.924715][T14305] dump_stack_lvl+0x100/0x190 [ 733.924746][T14305] mtrr_add.cold+0x74/0x87 [ 733.924768][T14305] mtrr_ioctl+0x25a/0xcf0 [ 733.924794][T14305] ? __pfx_mtrr_ioctl+0x10/0x10 [ 733.924824][T14305] ? find_held_lock+0x2b/0x80 [ 733.924847][T14305] ? __fget_files+0x21f/0x3d0 [ 733.924865][T14305] ? __pfx_mtrr_ioctl+0x10/0x10 [ 733.924890][T14305] proc_reg_unlocked_ioctl+0x229/0x320 [ 733.924918][T14305] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 733.924949][T14305] __x64_sys_ioctl+0x18e/0x210 [ 733.924977][T14305] do_syscall_64+0x106/0xf80 [ 733.925003][T14305] ? clear_bhb_loop+0x40/0x90 [ 733.925025][T14305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 733.925045][T14305] RIP: 0033:0x7f62cf19c799 [ 733.925061][T14305] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 733.925079][T14305] RSP: 002b:00007f62d001d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 733.925098][T14305] RAX: ffffffffffffffda RBX: 00007f62cf416090 RCX: 00007f62cf19c799 [ 733.925111][T14305] RDX: 000000000000000b RSI: 00000000400c4d01 RDI: 000000000000000b [ 733.925122][T14305] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 733.925134][T14305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 733.925145][T14305] R13: 00007f62cf416128 R14: 00007f62cf416090 R15: 00007fff28f3ff58 [ 733.925168][T14305] [ 734.780306][T14314] FAULT_INJECTION: forcing a failure. [ 734.780306][T14314] name failslab, interval 1, probability 0, space 0, times 0 [ 734.861093][T14314] CPU: 0 UID: 0 PID: 14314 Comm: syz.4.2101 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 734.861137][T14314] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 734.861148][T14314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 734.861160][T14314] Call Trace: [ 734.861166][T14314] [ 734.861175][T14314] dump_stack_lvl+0x100/0x190 [ 734.861206][T14314] should_fail_ex.cold+0x5/0xa [ 734.861229][T14314] should_failslab+0xc2/0x120 [ 734.861249][T14314] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 734.861278][T14314] ? pidfs_register_pid+0x97/0x200 [ 734.861307][T14314] ? __pfx___might_resched+0x10/0x10 [ 734.861339][T14314] pidfs_register_pid+0x97/0x200 [ 734.861370][T14314] unix_socketpair+0xda/0x8c0 [ 734.861393][T14314] __sys_socketpair+0x2f7/0x5b0 [ 734.861417][T14314] ? __pfx___sys_socketpair+0x10/0x10 [ 734.861441][T14314] ? xfd_validate_state+0x129/0x190 [ 734.861473][T14314] __x64_sys_socketpair+0x96/0x100 [ 734.861494][T14314] ? lockdep_hardirqs_on+0x78/0x100 [ 734.861521][T14314] do_syscall_64+0x106/0xf80 [ 734.861547][T14314] ? clear_bhb_loop+0x40/0x90 [ 734.861570][T14314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.861590][T14314] RIP: 0033:0x7fb21f79c799 [ 734.861607][T14314] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 734.861625][T14314] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 734.861643][T14314] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 734.861656][T14314] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 734.861667][T14314] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 734.861678][T14314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 734.861689][T14314] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 734.861711][T14314] [ 736.981854][T14336] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2108'. [ 737.453539][T14341] zswap: compressor  not available [ 737.481117][T14351] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 740.355849][T14384] input: f as /devices/virtual/input/input13 [ 740.411951][T14384] FAULT_INJECTION: forcing a failure. [ 740.411951][T14384] name failslab, interval 1, probability 0, space 0, times 0 [ 740.600851][T14384] CPU: 0 UID: 0 PID: 14384 Comm: syz.4.2121 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 740.600894][T14384] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 740.600905][T14384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 740.600915][T14384] Call Trace: [ 740.600922][T14384] [ 740.600931][T14384] dump_stack_lvl+0x100/0x190 [ 740.600964][T14384] should_fail_ex.cold+0x5/0xa [ 740.600987][T14384] should_failslab+0xc2/0x120 [ 740.601008][T14384] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 740.601037][T14384] ? __kernfs_new_node+0xd2/0x960 [ 740.601075][T14384] __kernfs_new_node+0xd2/0x960 [ 740.601104][T14384] ? __pfx___kernfs_new_node+0x10/0x10 [ 740.601136][T14384] ? find_held_lock+0x2b/0x80 [ 740.601154][T14384] ? kernfs_root+0xee/0x2a0 [ 740.601179][T14384] ? kernfs_root+0xee/0x2a0 [ 740.601210][T14384] kernfs_new_node+0x11b/0x1a0 [ 740.601242][T14384] __kernfs_create_file+0x53/0x350 [ 740.601268][T14384] sysfs_add_file_mode_ns+0x207/0x3c0 [ 740.601300][T14384] sysfs_create_file_ns+0x145/0x1e0 [ 740.601326][T14384] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 740.601354][T14384] ? mark_held_locks+0x40/0x70 [ 740.601382][T14384] device_create_file+0xf2/0x1d0 [ 740.601410][T14384] device_add+0xa74/0x1950 [ 740.601434][T14384] ? __pfx_device_add+0x10/0x10 [ 740.601460][T14384] ? kobject_get+0xbb/0x150 [ 740.601491][T14384] cdev_device_add+0x12b/0x270 [ 740.601512][T14384] evdev_connect+0x3a8/0x4b0 [ 740.601545][T14384] input_attach_handler.isra.0+0x177/0x1e0 [ 740.601576][T14384] input_register_device.cold+0x139/0x375 [ 740.601603][T14384] uinput_ioctl_handler.isra.0+0x8d8/0x1d10 [ 740.601627][T14384] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 740.601653][T14384] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 740.601681][T14384] ? find_held_lock+0x2b/0x80 [ 740.601698][T14384] ? __fget_files+0x215/0x3d0 [ 740.601726][T14384] ? __pfx_uinput_ioctl+0x10/0x10 [ 740.601749][T14384] __x64_sys_ioctl+0x18e/0x210 [ 740.601777][T14384] do_syscall_64+0x106/0xf80 [ 740.601803][T14384] ? clear_bhb_loop+0x40/0x90 [ 740.601826][T14384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 740.601845][T14384] RIP: 0033:0x7fb21f79c799 [ 740.601863][T14384] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 740.601887][T14384] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 740.601907][T14384] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 740.601920][T14384] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000005 [ 740.601932][T14384] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 740.601944][T14384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 740.601955][T14384] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 740.601979][T14384] [ 741.255662][T14384] input: failed to attach handler evdev to device input13, error: -12 [ 741.429356][T14397] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2126'. [ 741.445624][T14398] FAULT_INJECTION: forcing a failure. [ 741.445624][T14398] name failslab, interval 1, probability 0, space 0, times 0 [ 741.482175][T14398] CPU: 0 UID: 0 PID: 14398 Comm: syz.1.2125 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 741.482222][T14398] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 741.482233][T14398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 741.482245][T14398] Call Trace: [ 741.482252][T14398] [ 741.482261][T14398] dump_stack_lvl+0x100/0x190 [ 741.482294][T14398] should_fail_ex.cold+0x5/0xa [ 741.482316][T14398] should_failslab+0xc2/0x120 [ 741.482336][T14398] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 741.482363][T14398] ? pidfs_register_pid+0x97/0x200 [ 741.482391][T14398] ? __pfx___might_resched+0x10/0x10 [ 741.482422][T14398] pidfs_register_pid+0x97/0x200 [ 741.482458][T14398] unix_socketpair+0xda/0x8c0 [ 741.482482][T14398] __sys_socketpair+0x2f7/0x5b0 [ 741.482506][T14398] ? __pfx___sys_socketpair+0x10/0x10 [ 741.482529][T14398] ? xfd_validate_state+0x129/0x190 [ 741.482560][T14398] __x64_sys_socketpair+0x96/0x100 [ 741.482583][T14398] ? lockdep_hardirqs_on+0x78/0x100 [ 741.482610][T14398] do_syscall_64+0x106/0xf80 [ 741.482639][T14398] ? clear_bhb_loop+0x40/0x90 [ 741.482665][T14398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 741.482685][T14398] RIP: 0033:0x7f45cbb9c799 [ 741.482701][T14398] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 741.482721][T14398] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 741.482740][T14398] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 741.482752][T14398] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 741.482764][T14398] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 741.482775][T14398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 741.482786][T14398] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 741.482810][T14398] [ 743.603275][T14422] FAULT_INJECTION: forcing a failure. [ 743.603275][T14422] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 743.662679][T14422] CPU: 0 UID: 0 PID: 14422 Comm: syz.0.2134 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 743.662720][T14422] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 743.662731][T14422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 743.662742][T14422] Call Trace: [ 743.662750][T14422] [ 743.662757][T14422] dump_stack_lvl+0x100/0x190 [ 743.662789][T14422] should_fail_ex.cold+0x5/0xa [ 743.662808][T14422] ? prepare_alloc_pages+0x16d/0x5f0 [ 743.662832][T14422] should_fail_alloc_page+0xeb/0x140 [ 743.662853][T14422] prepare_alloc_pages+0x1f0/0x5f0 [ 743.662875][T14422] ? unwind_get_return_address+0x59/0xa0 [ 743.662898][T14422] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 743.662934][T14422] ? stack_trace_save+0x8e/0xc0 [ 743.662953][T14422] ? __pfx_stack_trace_save+0x10/0x10 [ 743.662970][T14422] ? __pfx_stack_trace_save+0x10/0x10 [ 743.662988][T14422] ? stack_depot_save_flags+0x27/0x9d0 [ 743.663022][T14422] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 743.663052][T14422] ? kasan_save_stack+0x3f/0x50 [ 743.663080][T14422] ? kasan_save_track+0x14/0x30 [ 743.663107][T14422] ? __kasan_kmalloc+0xaa/0xb0 [ 743.663134][T14422] ? snd_pcm_attach_substream+0x451/0xd60 [ 743.663161][T14422] ? snd_pcm_open_substream+0x90/0x1850 [ 743.663186][T14422] ? snd_pcm_oss_open+0x735/0x1390 [ 743.663206][T14422] ? soundcore_open+0x2e3/0x5a0 [ 743.663222][T14422] ? chrdev_open+0x234/0x6a0 [ 743.663240][T14422] ? do_dentry_open+0x6d8/0x1660 [ 743.663257][T14422] ? vfs_open+0x82/0x3f0 [ 743.663280][T14422] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 743.663305][T14422] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 743.663337][T14422] ? policy_nodemask+0xed/0x4f0 [ 743.663358][T14422] alloc_pages_mpol+0x1fb/0x550 [ 743.663379][T14422] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 743.663404][T14422] alloc_pages_noprof+0x131/0x390 [ 743.663426][T14422] alloc_pages_exact_noprof+0x32/0xf0 [ 743.663450][T14422] snd_pcm_attach_substream+0x478/0xd60 [ 743.663487][T14422] snd_pcm_open_substream+0x90/0x1850 [ 743.663515][T14422] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 743.663540][T14422] ? lockdep_init_map_type+0x5c/0x250 [ 743.663567][T14422] ? lockdep_init_map_type+0x5c/0x250 [ 743.663595][T14422] snd_pcm_oss_open+0x735/0x1390 [ 743.663624][T14422] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 743.663646][T14422] ? __lock_acquire+0x4a5/0x2630 [ 743.663670][T14422] ? __pfx_default_wake_function+0x10/0x10 [ 743.663691][T14422] ? __lock_acquire+0x4a5/0x2630 [ 743.663720][T14422] ? do_raw_spin_lock+0x128/0x260 [ 743.663748][T14422] ? soundcore_open+0x231/0x5a0 [ 743.663768][T14422] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 743.663790][T14422] soundcore_open+0x2e3/0x5a0 [ 743.663810][T14422] ? __pfx_soundcore_open+0x10/0x10 [ 743.663829][T14422] chrdev_open+0x234/0x6a0 [ 743.663847][T14422] ? __pfx_apparmor_file_open+0x10/0x10 [ 743.663866][T14422] ? __pfx_chrdev_open+0x10/0x10 [ 743.663887][T14422] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 743.663912][T14422] do_dentry_open+0x6d8/0x1660 [ 743.663930][T14422] ? __pfx_chrdev_open+0x10/0x10 [ 743.663955][T14422] vfs_open+0x82/0x3f0 [ 743.663982][T14422] path_openat+0x208c/0x31a0 [ 743.664015][T14422] ? __pfx_path_openat+0x10/0x10 [ 743.664043][T14422] do_file_open+0x20e/0x430 [ 743.664064][T14422] ? __pfx_do_file_open+0x10/0x10 [ 743.664101][T14422] ? alloc_fd+0x476/0x790 [ 743.664122][T14422] ? do_getname+0x191/0x390 [ 743.664147][T14422] do_sys_openat2+0x10d/0x1e0 [ 743.664172][T14422] ? __pfx_do_sys_openat2+0x10/0x10 [ 743.664206][T14422] __x64_sys_openat+0x12d/0x210 [ 743.664231][T14422] ? __pfx___x64_sys_openat+0x10/0x10 [ 743.664266][T14422] do_syscall_64+0x106/0xf80 [ 743.664292][T14422] ? clear_bhb_loop+0x40/0x90 [ 743.664314][T14422] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 743.664334][T14422] RIP: 0033:0x7f62cf19c799 [ 743.664350][T14422] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 743.664369][T14422] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 743.664388][T14422] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 743.664400][T14422] RDX: 0000000000020002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 743.664412][T14422] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 743.664423][T14422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 743.664434][T14422] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 743.664458][T14422] [ 744.276719][T14427] FAULT_INJECTION: forcing a failure. [ 744.276719][T14427] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 744.290814][T14427] CPU: 0 UID: 0 PID: 14427 Comm: syz.4.2137 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 744.290857][T14427] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 744.290868][T14427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 744.290879][T14427] Call Trace: [ 744.290886][T14427] [ 744.290894][T14427] dump_stack_lvl+0x100/0x190 [ 744.290926][T14427] should_fail_ex.cold+0x5/0xa [ 744.290945][T14427] ? prepare_alloc_pages+0x16d/0x5f0 [ 744.290970][T14427] should_fail_alloc_page+0xeb/0x140 [ 744.291002][T14427] prepare_alloc_pages+0x1f0/0x5f0 [ 744.291027][T14427] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 744.291061][T14427] ? rcu_is_watching+0x12/0xc0 [ 744.291090][T14427] ? trace_mm_page_alloc+0x17a/0x1d0 [ 744.291112][T14427] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 744.291145][T14427] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 744.291178][T14427] ? find_held_lock+0x2b/0x80 [ 744.291196][T14427] ? is_bpf_text_address+0x8a/0x1a0 [ 744.291224][T14427] ? is_bpf_text_address+0x8a/0x1a0 [ 744.291254][T14427] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 744.291274][T14427] ? is_bpf_text_address+0x94/0x1a0 [ 744.291303][T14427] ? kernel_text_address+0x8d/0x100 [ 744.291330][T14427] ? __kernel_text_address+0xd/0x30 [ 744.291357][T14427] ? unwind_get_return_address+0x59/0xa0 [ 744.291383][T14427] alloc_pages_bulk_noprof+0x782/0x1490 [ 744.291419][T14427] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 744.291450][T14427] ? kasan_save_stack+0x30/0x50 [ 744.291482][T14427] ? alloc_pages_noprof+0x233/0x390 [ 744.291505][T14427] __kasan_populate_vmalloc+0xf0/0x210 [ 744.291537][T14427] alloc_vmap_area+0x95d/0x2bd0 [ 744.291565][T14427] ? __pfx_alloc_vmap_area+0x10/0x10 [ 744.291590][T14427] __get_vm_area_node+0x1ca/0x330 [ 744.291616][T14427] __vmalloc_node_range_noprof+0x213/0x1530 [ 744.291640][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.291660][T14427] ? find_held_lock+0x2b/0x80 [ 744.291677][T14427] ? local_lock_release+0x99/0x130 [ 744.291698][T14427] ? local_lock_release+0x99/0x130 [ 744.291723][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.291745][T14427] ? find_held_lock+0x2b/0x80 [ 744.291761][T14427] ? rcu_read_unlock+0x17/0x60 [ 744.291781][T14427] ? rcu_read_unlock+0x17/0x60 [ 744.291802][T14427] ? obj_cgroup_charge_account+0x46d/0x640 [ 744.291823][T14427] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 744.291848][T14427] ? __memcg_slab_post_alloc_hook+0x51b/0x990 [ 744.291872][T14427] ? rcu_is_watching+0x12/0xc0 [ 744.291900][T14427] ? trace_kmem_cache_alloc+0xf3/0x120 [ 744.291922][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.291942][T14427] __vmalloc_node_noprof+0xad/0xf0 [ 744.291965][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.291995][T14427] copy_process+0x5ec/0x7a40 [ 744.292018][T14427] ? __pfx___futex_wait+0x10/0x10 [ 744.292045][T14427] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 744.292069][T14427] ? lockdep_hardirqs_on+0x78/0x100 [ 744.292102][T14427] ? __pfx_copy_process+0x10/0x10 [ 744.292125][T14427] ? find_held_lock+0x2b/0x80 [ 744.292151][T14427] kernel_clone+0xfc/0x9a0 [ 744.292172][T14427] ? __pfx_futex_wait+0x10/0x10 [ 744.292201][T14427] ? __pfx_kernel_clone+0x10/0x10 [ 744.292227][T14427] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 744.292256][T14427] __do_sys_clone+0xd9/0x120 [ 744.292279][T14427] ? __pfx___do_sys_clone+0x10/0x10 [ 744.292301][T14427] ? fd_install+0x24f/0x580 [ 744.292334][T14427] do_syscall_64+0x106/0xf80 [ 744.292366][T14427] ? clear_bhb_loop+0x40/0x90 [ 744.292390][T14427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.292409][T14427] RIP: 0033:0x7fb21f79c799 [ 744.292427][T14427] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 744.292446][T14427] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 744.292465][T14427] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 744.292478][T14427] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000008 [ 744.292490][T14427] RBP: 00007fb21f832c99 R08: 0000000000000002 R09: 0000000000000000 [ 744.292502][T14427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 744.292513][T14427] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 744.292536][T14427] [ 744.292739][T14427] syz.4.2137: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 744.870456][T14427] CPU: 0 UID: 0 PID: 14427 Comm: syz.4.2137 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 744.870498][T14427] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 744.870509][T14427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 744.870520][T14427] Call Trace: [ 744.870527][T14427] [ 744.870534][T14427] dump_stack_lvl+0x100/0x190 [ 744.870566][T14427] warn_alloc.cold+0x95/0x1c1 [ 744.870598][T14427] ? __pfx_warn_alloc+0x10/0x10 [ 744.870623][T14427] ? lockdep_hardirqs_on+0x78/0x100 [ 744.870652][T14427] ? __get_vm_area_node+0x2c5/0x330 [ 744.870677][T14427] ? __get_vm_area_node+0x208/0x330 [ 744.870702][T14427] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 744.870725][T14427] ? find_held_lock+0x2b/0x80 [ 744.870742][T14427] ? local_lock_release+0x99/0x130 [ 744.870763][T14427] ? local_lock_release+0x99/0x130 [ 744.870787][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.870810][T14427] ? find_held_lock+0x2b/0x80 [ 744.870826][T14427] ? rcu_read_unlock+0x17/0x60 [ 744.870846][T14427] ? rcu_read_unlock+0x17/0x60 [ 744.870866][T14427] ? obj_cgroup_charge_account+0x46d/0x640 [ 744.870887][T14427] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 744.870912][T14427] ? __memcg_slab_post_alloc_hook+0x51b/0x990 [ 744.870937][T14427] ? rcu_is_watching+0x12/0xc0 [ 744.870964][T14427] ? trace_kmem_cache_alloc+0xf3/0x120 [ 744.870986][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.871006][T14427] __vmalloc_node_noprof+0xad/0xf0 [ 744.871028][T14427] ? kernel_clone+0xfc/0x9a0 [ 744.871051][T14427] copy_process+0x5ec/0x7a40 [ 744.871080][T14427] ? __pfx___futex_wait+0x10/0x10 [ 744.871107][T14427] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 744.871132][T14427] ? lockdep_hardirqs_on+0x78/0x100 [ 744.871170][T14427] ? __pfx_copy_process+0x10/0x10 [ 744.871191][T14427] ? find_held_lock+0x2b/0x80 [ 744.871216][T14427] kernel_clone+0xfc/0x9a0 [ 744.871235][T14427] ? __pfx_futex_wait+0x10/0x10 [ 744.871264][T14427] ? __pfx_kernel_clone+0x10/0x10 [ 744.871290][T14427] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 744.871318][T14427] __do_sys_clone+0xd9/0x120 [ 744.871340][T14427] ? __pfx___do_sys_clone+0x10/0x10 [ 744.871361][T14427] ? fd_install+0x24f/0x580 [ 744.871394][T14427] do_syscall_64+0x106/0xf80 [ 744.871418][T14427] ? clear_bhb_loop+0x40/0x90 [ 744.871441][T14427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.871460][T14427] RIP: 0033:0x7fb21f79c799 [ 744.871477][T14427] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 744.871501][T14427] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 744.871519][T14427] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 744.871531][T14427] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000008 [ 744.871541][T14427] RBP: 00007fb21f832c99 R08: 0000000000000002 R09: 0000000000000000 [ 744.871552][T14427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 744.871562][T14427] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 744.871586][T14427] [ 744.871639][T14427] Mem-Info: [ 746.036611][T14427] active_anon:18069 inactive_anon:1673 isolated_anon:0 [ 746.036611][T14427] active_file:17693 inactive_file:38699 isolated_file:0 [ 746.036611][T14427] unevictable:768 dirty:476 writeback:0 [ 746.036611][T14427] slab_reclaimable:13094 slab_unreclaimable:105174 [ 746.036611][T14427] mapped:25351 shmem:1755 pagetables:1293 [ 746.036611][T14427] sec_pagetables:0 bounce:0 [ 746.036611][T14427] kernel_misc_reclaimable:0 [ 746.036611][T14427] free:1296895 free_pcp:11061 free_cma:0 [ 746.220718][T14427] Node 0 active_anon:72284kB inactive_anon:8800kB active_file:70768kB inactive_file:154604kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101860kB dirty:1904kB writeback:0kB shmem:6592kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11200kB pagetables:5032kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 746.345583][T14427] Node 1 active_anon:0kB inactive_anon:0kB active_file:12kB inactive_file:192kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 746.521021][T14427] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 746.655767][T14427] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 746.697845][T14427] Node 0 DMA32 free:1249012kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:72284kB inactive_anon:6200kB active_file:70820kB inactive_file:155592kB unevictable:1536kB writepending:2164kB zspages:568kB present:3129332kB managed:2537380kB mlocked:0kB bounce:0kB free_pcp:38496kB local_pcp:38496kB free_cma:0kB [ 746.904774][T14427] lowmem_reserve[]: 0 0 1 1 1 [ 746.915280][T14427] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 747.008031][T14427] lowmem_reserve[]: 0 0 0 0 0 [ 747.028578][T14427] Node 1 Normal free:3922112kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:12kB inactive_file:192kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:6712kB local_pcp:6712kB free_cma:0kB [ 747.124749][T14427] lowmem_reserve[]: 0 0 0 0 0 [ 747.134849][T14427] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 747.174502][T14427] Node 0 DMA32: 12601*4kB (UME) 7244*8kB (UME) 4011*16kB (UME) 1632*32kB (UME) 1120*64kB (UME) 835*128kB (UME) 557*256kB (UME) 275*512kB (UME) 112*1024kB (UM) 25*2048kB (UME) 97*4096kB (UM) = 1249908kB [ 747.255614][T14427] Node 0 Normal: 3*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 747.374263][T14427] Node 1 Normal: 5*4kB (U) 11*8kB (U) 6*16kB (UM) 1*32kB (U) 8*64kB (U) 8*128kB (UM) 4*256kB (UM) 3*512kB (UM) 0*1024kB 1*2048kB (U) 956*4096kB (UM) = 3922156kB [ 747.469733][T14427] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 747.522595][T14427] Node 0 hugepages_total=8 hugepages_free=7 hugepages_surp=0 hugepages_size=2048kB [ 747.568915][T14427] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 747.616308][T14427] Node 1 hugepages_total=7 hugepages_free=7 hugepages_surp=0 hugepages_size=2048kB [ 747.651630][T14427] 61696 total pagecache pages [ 747.674220][T14427] 3 pages in swap cache [ 747.692716][T14427] Free swap = 124708kB [ 747.711886][T14427] Total swap = 124996kB [ 747.731442][T14427] 2097051 pages RAM [ 747.757540][T14427] 0 pages HighMem/MovableOnly [ 747.774899][T14427] 430826 pages reserved [ 747.793071][T14427] 0 pages cma reserved [ 747.864066][T14469] sp0: Synchronizing with TNC [ 750.398637][T14498] FAULT_INJECTION: forcing a failure. [ 750.398637][T14498] name failslab, interval 1, probability 0, space 0, times 0 [ 750.462539][T14498] CPU: 0 UID: 0 PID: 14498 Comm: syz.0.2156 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 750.462584][T14498] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 750.462595][T14498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 750.462607][T14498] Call Trace: [ 750.462614][T14498] [ 750.462623][T14498] dump_stack_lvl+0x100/0x190 [ 750.462656][T14498] should_fail_ex.cold+0x5/0xa [ 750.462679][T14498] should_failslab+0xc2/0x120 [ 750.462700][T14498] __kmalloc_cache_noprof+0x7a/0x6f0 [ 750.462725][T14498] ? nfc_llcp_register_device+0x4b/0xa60 [ 750.462756][T14498] nfc_llcp_register_device+0x4b/0xa60 [ 750.462784][T14498] nfc_register_device+0x6d/0x3e0 [ 750.462811][T14498] nci_register_device+0x7f1/0xb80 [ 750.462834][T14498] ? __pfx_nci_register_device+0x10/0x10 [ 750.462859][T14498] ? lockdep_init_map_type+0x5c/0x250 [ 750.462889][T14498] virtual_ncidev_open+0x141/0x220 [ 750.462915][T14498] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 750.462941][T14498] misc_open+0x26d/0x450 [ 750.462971][T14498] ? __pfx_misc_open+0x10/0x10 [ 750.462992][T14498] chrdev_open+0x234/0x6a0 [ 750.463011][T14498] ? __pfx_apparmor_file_open+0x10/0x10 [ 750.463031][T14498] ? __pfx_chrdev_open+0x10/0x10 [ 750.463052][T14498] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 750.463078][T14498] do_dentry_open+0x6d8/0x1660 [ 750.463097][T14498] ? __pfx_chrdev_open+0x10/0x10 [ 750.463122][T14498] vfs_open+0x82/0x3f0 [ 750.463148][T14498] path_openat+0x208c/0x31a0 [ 750.463175][T14498] ? __pfx_path_openat+0x10/0x10 [ 750.463202][T14498] do_file_open+0x20e/0x430 [ 750.463223][T14498] ? __pfx_do_file_open+0x10/0x10 [ 750.463259][T14498] ? alloc_fd+0x476/0x790 [ 750.463280][T14498] ? do_getname+0x191/0x390 [ 750.463305][T14498] do_sys_openat2+0x10d/0x1e0 [ 750.463334][T14498] ? __pfx_do_sys_openat2+0x10/0x10 [ 750.463368][T14498] __x64_sys_openat+0x12d/0x210 [ 750.463393][T14498] ? __pfx___x64_sys_openat+0x10/0x10 [ 750.463427][T14498] do_syscall_64+0x106/0xf80 [ 750.463453][T14498] ? clear_bhb_loop+0x40/0x90 [ 750.463476][T14498] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 750.463495][T14498] RIP: 0033:0x7f62cf19c799 [ 750.463511][T14498] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 750.463530][T14498] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 750.463549][T14498] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 750.463561][T14498] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 750.463573][T14498] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 750.463584][T14498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 750.463595][T14498] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 750.463619][T14498] [ 750.464346][T14498] nfc: nfc_register_device: Could not register llcp device [ 751.790381][T14498] llcp: nfc_llcp_remove_local: Shutting down device not found [ 756.308167][ T8595] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 757.013237][T14572] kexec: Could not allocate control_code_buffer [ 760.196164][T14638] FAULT_INJECTION: forcing a failure. [ 760.196164][T14638] name fail_futex, interval 1, probability 0, space 0, times 0 [ 760.209173][T14638] CPU: 0 UID: 0 PID: 14638 Comm: syz.4.2193 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 760.209214][T14638] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 760.209225][T14638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 760.209236][T14638] Call Trace: [ 760.209243][T14638] [ 760.209251][T14638] dump_stack_lvl+0x100/0x190 [ 760.209282][T14638] should_fail_ex.cold+0x5/0xa [ 760.209305][T14638] should_fail_futex+0x4c/0x60 [ 760.209328][T14638] futex_lock_pi_atomic+0xe7/0xaf0 [ 760.209366][T14638] futex_lock_pi+0x246/0x7b0 [ 760.209396][T14638] ? __pfx_futex_lock_pi+0x10/0x10 [ 760.209425][T14638] ? __pfx___futex_wait+0x10/0x10 [ 760.209475][T14638] ? __pfx_futex_wake_mark+0x10/0x10 [ 760.209509][T14638] ? ksys_write+0x190/0x250 [ 760.209525][T14638] ? ksys_write+0x190/0x250 [ 760.209546][T14638] do_futex+0x18a/0x350 [ 760.209570][T14638] ? __pfx_do_futex+0x10/0x10 [ 760.209600][T14638] __x64_sys_futex+0x34f/0x4d0 [ 760.209628][T14638] ? __pfx___x64_sys_futex+0x10/0x10 [ 760.209660][T14638] do_syscall_64+0x106/0xf80 [ 760.209686][T14638] ? clear_bhb_loop+0x40/0x90 [ 760.209709][T14638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 760.209728][T14638] RIP: 0033:0x7fb21f79c799 [ 760.209744][T14638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 760.209762][T14638] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 760.209781][T14638] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 760.209795][T14638] RDX: 0000000000000001 RSI: 0000000000000006 RDI: 0000200000000080 [ 760.209807][T14638] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 00000000fffffffa [ 760.209819][T14638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 760.209830][T14638] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 760.209854][T14638] [ 761.594193][T14648] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2196'. [ 761.671703][T14648] bridge0: port 2(bridge_slave_1) entered disabled state [ 761.752826][T14648] bridge_slave_1 (unregistering): left allmulticast mode [ 761.762148][T14648] bridge_slave_1 (unregistering): left promiscuous mode [ 761.797044][T14648] bridge0: port 2(bridge_slave_1) entered disabled state [ 762.003189][T14651] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input14 [ 762.705184][T14664] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2209'. [ 762.759911][T14664] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2209'. [ 764.240137][T14684] random: crng reseeded on system resumption [ 766.238780][T14721] FAULT_INJECTION: forcing a failure. [ 766.238780][T14721] name failslab, interval 1, probability 0, space 0, times 0 [ 766.303358][T14721] CPU: 0 UID: 0 PID: 14721 Comm: syz.1.2217 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 766.303400][T14721] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 766.303412][T14721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 766.303423][T14721] Call Trace: [ 766.303431][T14721] [ 766.303439][T14721] dump_stack_lvl+0x100/0x190 [ 766.303472][T14721] should_fail_ex.cold+0x5/0xa [ 766.303495][T14721] should_failslab+0xc2/0x120 [ 766.303515][T14721] __kmalloc_cache_noprof+0x7a/0x6f0 [ 766.303540][T14721] ? trace_pid_list_alloc+0x232/0x480 [ 766.303573][T14721] trace_pid_list_alloc+0x232/0x480 [ 766.303604][T14721] trace_pid_write+0x110/0x460 [ 766.303635][T14721] ? __pfx_trace_pid_write+0x10/0x10 [ 766.303678][T14721] event_pid_write.isra.0+0x1e4/0x800 [ 766.303710][T14721] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 766.303748][T14721] vfs_write+0x2aa/0x1070 [ 766.303766][T14721] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 766.303799][T14721] ? __pfx_vfs_write+0x10/0x10 [ 766.303816][T14721] ? __fget_files+0x215/0x3d0 [ 766.303846][T14721] ? __fget_files+0x21f/0x3d0 [ 766.303870][T14721] ksys_write+0x12a/0x250 [ 766.303887][T14721] ? __pfx_ksys_write+0x10/0x10 [ 766.303911][T14721] do_syscall_64+0x106/0xf80 [ 766.303938][T14721] ? clear_bhb_loop+0x40/0x90 [ 766.303962][T14721] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 766.303982][T14721] RIP: 0033:0x7f45cbb9c799 [ 766.303999][T14721] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 766.304016][T14721] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 766.304035][T14721] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 766.304048][T14721] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 766.304059][T14721] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 766.304071][T14721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 766.304082][T14721] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 766.304106][T14721] [ 767.013584][T14734] FAULT_INJECTION: forcing a failure. [ 767.013584][T14734] name failslab, interval 1, probability 0, space 0, times 0 [ 767.053813][T14734] CPU: 0 UID: 0 PID: 14734 Comm: syz.0.2221 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 767.053865][T14734] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 767.053875][T14734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 767.053887][T14734] Call Trace: [ 767.053894][T14734] [ 767.053903][T14734] dump_stack_lvl+0x100/0x190 [ 767.053935][T14734] should_fail_ex.cold+0x5/0xa [ 767.053959][T14734] should_failslab+0xc2/0x120 [ 767.053980][T14734] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 767.054009][T14734] ? blk_alloc_queue+0x31/0x790 [ 767.054036][T14734] blk_alloc_queue+0x31/0x790 [ 767.054063][T14734] blk_mq_alloc_queue+0x174/0x290 [ 767.054092][T14734] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 767.054133][T14734] ? blk_mq_alloc_tag_set+0xe2c/0x1330 [ 767.054168][T14734] __blk_mq_alloc_disk+0x29/0x120 [ 767.054199][T14734] loop_add+0x498/0xb60 [ 767.054224][T14734] ? __pfx_loop_add+0x10/0x10 [ 767.054262][T14734] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 767.054296][T14734] loop_control_ioctl+0xae/0x620 [ 767.054323][T14734] ? __pfx_loop_control_ioctl+0x10/0x10 [ 767.054349][T14734] ? xfd_validate_state+0x129/0x190 [ 767.054378][T14734] ? __pfx_loop_control_ioctl+0x10/0x10 [ 767.054406][T14734] __x64_sys_ioctl+0x18e/0x210 [ 767.054435][T14734] do_syscall_64+0x106/0xf80 [ 767.054461][T14734] ? clear_bhb_loop+0x40/0x90 [ 767.054484][T14734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 767.054504][T14734] RIP: 0033:0x7f62cf19c799 [ 767.054520][T14734] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 767.054538][T14734] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 767.054556][T14734] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 767.054568][T14734] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000002 [ 767.054580][T14734] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 767.054592][T14734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 767.054603][T14734] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 767.054626][T14734] [ 768.522919][T14760] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2228'. [ 768.584417][T14760] veth1_macvtap: left promiscuous mode [ 769.438723][T14772] FAULT_INJECTION: forcing a failure. [ 769.438723][T14772] name failslab, interval 1, probability 0, space 0, times 0 [ 769.487180][T14772] CPU: 0 UID: 0 PID: 14772 Comm: syz.1.2232 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 769.487223][T14772] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 769.487233][T14772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 769.487244][T14772] Call Trace: [ 769.487252][T14772] [ 769.487260][T14772] dump_stack_lvl+0x100/0x190 [ 769.487293][T14772] should_fail_ex.cold+0x5/0xa [ 769.487316][T14772] should_failslab+0xc2/0x120 [ 769.487337][T14772] __kmalloc_cache_noprof+0x7a/0x6f0 [ 769.487361][T14772] ? init_srcu_struct_fields+0x9a2/0xe30 [ 769.487391][T14772] init_srcu_struct_fields+0x9a2/0xe30 [ 769.487418][T14772] blk_mq_alloc_tag_set+0x3cc/0x1330 [ 769.487447][T14772] ? idr_alloc+0xdd/0x130 [ 769.487475][T14772] ? __pfx_idr_alloc+0x10/0x10 [ 769.487506][T14772] loop_add+0x3b7/0xb60 [ 769.487532][T14772] ? __pfx_loop_add+0x10/0x10 [ 769.487571][T14772] ? find_held_lock+0x2b/0x80 [ 769.487589][T14772] ? __fget_files+0x215/0x3d0 [ 769.487610][T14772] loop_control_ioctl+0xae/0x620 [ 769.487637][T14772] ? __pfx_loop_control_ioctl+0x10/0x10 [ 769.487667][T14772] ? __pfx_loop_control_ioctl+0x10/0x10 [ 769.487695][T14772] __x64_sys_ioctl+0x18e/0x210 [ 769.487725][T14772] do_syscall_64+0x106/0xf80 [ 769.487750][T14772] ? clear_bhb_loop+0x40/0x90 [ 769.487773][T14772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 769.487792][T14772] RIP: 0033:0x7f45cbb9c799 [ 769.487809][T14772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 769.487827][T14772] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 769.487845][T14772] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 769.487857][T14772] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000004 [ 769.487869][T14772] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 769.487879][T14772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 769.487890][T14772] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 769.487913][T14772] [ 770.005108][ T29] audit: type=1800 audit(4294967579.942:19): pid=14777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2234" name="discovery_nqn" dev="configfs" ino=61908 res=0 errno=0 [ 770.052261][T14777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2234'. [ 770.063435][T14780] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2236'. [ 770.083511][T14777] netlink: 'syz.1.2234': attribute type 1 has an invalid length. [ 770.120630][T14777] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2234'. [ 771.847242][T14808] netlink: 'syz.1.2251': attribute type 1 has an invalid length. [ 771.877100][T14809] FAULT_INJECTION: forcing a failure. [ 771.877100][T14809] name failslab, interval 1, probability 0, space 0, times 0 [ 771.897888][T14808] netlink: 13 bytes leftover after parsing attributes in process `syz.1.2251'. [ 771.941076][T14809] CPU: 0 UID: 0 PID: 14809 Comm: syz.0.2243 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 771.941119][T14809] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 771.941130][T14809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 771.941142][T14809] Call Trace: [ 771.941149][T14809] [ 771.941156][T14809] dump_stack_lvl+0x100/0x190 [ 771.941187][T14809] should_fail_ex.cold+0x5/0xa [ 771.941209][T14809] should_failslab+0xc2/0x120 [ 771.941230][T14809] __kmalloc_cache_noprof+0x7a/0x6f0 [ 771.941255][T14809] ? loop_add+0xb9/0xb60 [ 771.941283][T14809] loop_add+0xb9/0xb60 [ 771.941308][T14809] ? __pfx_loop_add+0x10/0x10 [ 771.941346][T14809] ? find_held_lock+0x2b/0x80 [ 771.941364][T14809] ? __fget_files+0x215/0x3d0 [ 771.941384][T14809] loop_control_ioctl+0xae/0x620 [ 771.941411][T14809] ? __pfx_loop_control_ioctl+0x10/0x10 [ 771.941441][T14809] ? __pfx_loop_control_ioctl+0x10/0x10 [ 771.941470][T14809] __x64_sys_ioctl+0x18e/0x210 [ 771.941498][T14809] do_syscall_64+0x106/0xf80 [ 771.941524][T14809] ? clear_bhb_loop+0x40/0x90 [ 771.941547][T14809] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 771.941566][T14809] RIP: 0033:0x7f62cf19c799 [ 771.941582][T14809] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 771.941599][T14809] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 771.941618][T14809] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 771.941630][T14809] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000004 [ 771.941642][T14809] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 771.941653][T14809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 771.941664][T14809] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 771.941688][T14809] [ 772.854760][T14825] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2246'. [ 773.055898][T14828] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2247'. [ 773.087595][T14828] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2247'. [ 776.167751][T14858] FAULT_INJECTION: forcing a failure. [ 776.167751][T14858] name failslab, interval 1, probability 0, space 0, times 0 [ 776.243227][T14862] FAULT_INJECTION: forcing a failure. [ 776.243227][T14862] name failslab, interval 1, probability 0, space 0, times 0 [ 776.295690][T14858] CPU: 0 UID: 0 PID: 14858 Comm: syz.2.2253 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 776.295732][T14858] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 776.295742][T14858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 776.295754][T14858] Call Trace: [ 776.295761][T14858] [ 776.295769][T14858] dump_stack_lvl+0x100/0x190 [ 776.295802][T14858] should_fail_ex.cold+0x5/0xa [ 776.295824][T14858] should_failslab+0xc2/0x120 [ 776.295844][T14858] __kmalloc_cache_noprof+0x7a/0x6f0 [ 776.295877][T14858] ? loop_add+0xb9/0xb60 [ 776.295905][T14858] loop_add+0xb9/0xb60 [ 776.295931][T14858] ? __pfx_loop_add+0x10/0x10 [ 776.295969][T14858] ? find_held_lock+0x2b/0x80 [ 776.295987][T14858] ? __fget_files+0x215/0x3d0 [ 776.296008][T14858] loop_control_ioctl+0xae/0x620 [ 776.296035][T14858] ? __pfx_loop_control_ioctl+0x10/0x10 [ 776.296065][T14858] ? __pfx_loop_control_ioctl+0x10/0x10 [ 776.296092][T14858] __x64_sys_ioctl+0x18e/0x210 [ 776.296120][T14858] do_syscall_64+0x106/0xf80 [ 776.296146][T14858] ? clear_bhb_loop+0x40/0x90 [ 776.296169][T14858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.296188][T14858] RIP: 0033:0x7efcac19c799 [ 776.296205][T14858] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 776.296224][T14858] RSP: 002b:00007efcad039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 776.296242][T14858] RAX: ffffffffffffffda RBX: 00007efcac415fa0 RCX: 00007efcac19c799 [ 776.296254][T14858] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000004 [ 776.296266][T14858] RBP: 00007efcac232c99 R08: 0000000000000000 R09: 0000000000000000 [ 776.296277][T14858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 776.296289][T14858] R13: 00007efcac416038 R14: 00007efcac415fa0 R15: 00007ffc7f3fd6c8 [ 776.296312][T14858] [ 776.492868][T14862] CPU: 0 UID: 0 PID: 14862 Comm: syz.4.2256 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 776.492911][T14862] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 776.492921][T14862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 776.492933][T14862] Call Trace: [ 776.492940][T14862] [ 776.492948][T14862] dump_stack_lvl+0x100/0x190 [ 776.492981][T14862] should_fail_ex.cold+0x5/0xa [ 776.493004][T14862] should_failslab+0xc2/0x120 [ 776.493025][T14862] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 776.493053][T14862] ? acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 776.493105][T14862] ? acpi_ut_trace+0x1d7/0x2a0 [ 776.493131][T14862] acpi_ut_allocate_object_desc_dbg+0x86/0x240 [ 776.493164][T14862] acpi_ut_create_internal_object_dbg+0x51/0x260 [ 776.493198][T14862] acpi_ut_create_integer_object+0x46/0xe0 [ 776.493230][T14862] acpi_ps_execute_method+0x582/0xe90 [ 776.493260][T14862] acpi_ns_evaluate+0x640/0x1670 [ 776.493292][T14862] acpi_evaluate_object+0x420/0xe00 [ 776.493311][T14862] ? kasan_save_stack+0x30/0x50 [ 776.493339][T14862] ? kasan_save_track+0x14/0x30 [ 776.493371][T14862] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 776.493397][T14862] acpi_evaluate_integer+0xdf/0x220 [ 776.493425][T14862] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 776.493462][T14862] ? __pfx_status_show+0x10/0x10 [ 776.493480][T14862] status_show+0xa0/0x120 [ 776.493498][T14862] ? __pfx_status_show+0x10/0x10 [ 776.493522][T14862] dev_attr_show+0x52/0xa0 [ 776.493545][T14862] ? __pfx_dev_attr_show+0x10/0x10 [ 776.493567][T14862] sysfs_kf_seq_show+0x217/0x3a0 [ 776.493596][T14862] seq_read_iter+0x32f/0x1270 [ 776.493634][T14862] kernfs_fop_read_iter+0x46c/0x610 [ 776.493656][T14862] ? rw_verify_area+0xce/0x6d0 [ 776.493682][T14862] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 776.493705][T14862] vfs_read+0x825/0xb30 [ 776.493737][T14862] ? __pfx_vfs_read+0x10/0x10 [ 776.493781][T14862] ksys_read+0x12a/0x250 [ 776.493798][T14862] ? __pfx_ksys_read+0x10/0x10 [ 776.493822][T14862] do_syscall_64+0x106/0xf80 [ 776.493847][T14862] ? clear_bhb_loop+0x40/0x90 [ 776.493871][T14862] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.493890][T14862] RIP: 0033:0x7fb21f79c799 [ 776.493908][T14862] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 776.493931][T14862] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 776.493950][T14862] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 776.493961][T14862] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 776.493973][T14862] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 776.493984][T14862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 776.493995][T14862] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 776.494019][T14862] [ 776.495831][T14862] ACPI Error: Could not allocate an object descriptor (20251212/utobject-180) [ 777.021911][T14862] ACPI Error: ffff88805024c000 walk still has a scope list (20251212/dswstate-694) [ 777.480661][T14859] syz.0.2263 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 778.614448][T14896] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2265'. [ 778.682811][T14897] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2265'. [ 779.525121][T14908] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2270'. [ 779.592556][T14908] netlink: 'syz.4.2270': attribute type 1 has an invalid length. [ 779.636629][T14908] netlink: 13 bytes leftover after parsing attributes in process `syz.4.2270'. [ 779.700694][T14910] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2271'. [ 779.802759][T14910] bond0: (slave bond_slave_0): Releasing backup interface [ 779.896258][T14912] netlink: 354 bytes leftover after parsing attributes in process `syz.4.2272'. [ 780.526360][T14920] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 780.658347][ T5178] ERROR: Out of memory at tomoyo_memory_ok. [ 782.379527][T14965] FAULT_INJECTION: forcing a failure. [ 782.379527][T14965] name failslab, interval 1, probability 0, space 0, times 0 [ 782.469231][T14965] CPU: 0 UID: 0 PID: 14965 Comm: syz.0.2287 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 782.469275][T14965] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 782.469286][T14965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 782.469297][T14965] Call Trace: [ 782.469304][T14965] [ 782.469312][T14965] dump_stack_lvl+0x100/0x190 [ 782.469345][T14965] should_fail_ex.cold+0x5/0xa [ 782.469366][T14965] ? lsm_blob_alloc+0x68/0x90 [ 782.469392][T14965] should_failslab+0xc2/0x120 [ 782.469412][T14965] __kmalloc_noprof+0xe0/0x850 [ 782.469438][T14965] ? trace_kmem_cache_alloc+0xf3/0x120 [ 782.469463][T14965] lsm_blob_alloc+0x68/0x90 [ 782.469490][T14965] security_prepare_creds+0x2d/0x290 [ 782.469516][T14965] prepare_creds+0x5d6/0x950 [ 782.469546][T14965] __do_sys_landlock_restrict_self+0x143/0x9e0 [ 782.469587][T14965] do_syscall_64+0x106/0xf80 [ 782.469613][T14965] ? clear_bhb_loop+0x40/0x90 [ 782.469636][T14965] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 782.469655][T14965] RIP: 0033:0x7f62cf19c799 [ 782.469672][T14965] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 782.469691][T14965] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 782.469710][T14965] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 782.469722][T14965] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000003 [ 782.469733][T14965] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 782.469746][T14965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 782.469757][T14965] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 782.469781][T14965] [ 783.259556][ T8595] Bluetooth: hci4: unexpected event 0x33 length: 124 > 10 [ 784.277931][ T8595] Bluetooth: hci1: unexpected event 0x33 length: 124 > 10 [ 785.837317][T15019] ERROR: Out of memory at tomoyo_memory_ok. [ 786.154319][T15022] busy [ 789.376025][T15063] delete_channel: no stack [ 789.532602][T15069] FAULT_INJECTION: forcing a failure. [ 789.532602][T15069] name fail_futex, interval 1, probability 0, space 0, times 0 [ 789.704431][T15069] CPU: 0 UID: 0 PID: 15069 Comm: syz.1.2310 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 789.704475][T15069] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 789.704485][T15069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 789.704496][T15069] Call Trace: [ 789.704504][T15069] [ 789.704512][T15069] dump_stack_lvl+0x100/0x190 [ 789.704545][T15069] should_fail_ex.cold+0x5/0xa [ 789.704568][T15069] get_futex_key+0x1d2/0x1620 [ 789.704594][T15069] ? __pfx_get_futex_key+0x10/0x10 [ 789.704625][T15069] futex_wake+0xea/0x530 [ 789.704654][T15069] ? __pfx_futex_wake+0x10/0x10 [ 789.704682][T15069] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 789.704715][T15069] do_futex+0x32b/0x350 [ 789.704747][T15069] ? __pfx_do_futex+0x10/0x10 [ 789.704771][T15069] ? __pfx___might_resched+0x10/0x10 [ 789.704798][T15069] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 789.704829][T15069] __x64_sys_futex+0x34f/0x4d0 [ 789.704855][T15069] ? __pfx_task_work_run+0x10/0x10 [ 789.704882][T15069] ? __pfx___x64_sys_futex+0x10/0x10 [ 789.704908][T15069] ? exit_to_user_mode_loop+0xdd/0x4a0 [ 789.704938][T15069] do_syscall_64+0x106/0xf80 [ 789.704963][T15069] ? clear_bhb_loop+0x40/0x90 [ 789.704986][T15069] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 789.705006][T15069] RIP: 0033:0x7f45cbb9c799 [ 789.705022][T15069] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 789.705040][T15069] RSP: 002b:00007f45cc9850e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 789.705059][T15069] RAX: ffffffffffffffda RBX: 00007f45cbe16098 RCX: 00007f45cbb9c799 [ 789.705071][T15069] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f45cbe1609c [ 789.705082][T15069] RBP: 00007f45cbe16090 R08: 0000000000000000 R09: 0000000000000000 [ 789.705093][T15069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 789.705105][T15069] R13: 00007f45cbe16128 R14: 00007ffd364f6cd0 R15: 00007ffd364f6db8 [ 789.705128][T15069] [ 797.815453][ T8595] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 798.650142][T15183] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2341'. [ 801.389072][T15235] FAULT_INJECTION: forcing a failure. [ 801.389072][T15235] name failslab, interval 1, probability 0, space 0, times 0 [ 801.436810][T15235] CPU: 0 UID: 0 PID: 15235 Comm: syz.0.2352 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 801.436852][T15235] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 801.436863][T15235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 801.436874][T15235] Call Trace: [ 801.436882][T15235] [ 801.436890][T15235] dump_stack_lvl+0x100/0x190 [ 801.436923][T15235] should_fail_ex.cold+0x5/0xa [ 801.436946][T15235] should_failslab+0xc2/0x120 [ 801.436966][T15235] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 801.436995][T15235] ? xas_split_alloc+0x11c/0x4a0 [ 801.437026][T15235] xas_split_alloc+0x11c/0x4a0 [ 801.437059][T15235] __folio_split+0x739/0x1b60 [ 801.437092][T15235] ? __pfx___folio_split+0x10/0x10 [ 801.437116][T15235] ? folio_alloc_swap+0xbb0/0x1aa0 [ 801.437133][T15235] ? folio_alloc_swap+0xbb0/0x1aa0 [ 801.437154][T15235] ? folio_alloc_swap+0x1238/0x1aa0 [ 801.437177][T15235] shmem_writeout+0x798/0x1a00 [ 801.437209][T15235] ? __pfx_shmem_writeout+0x10/0x10 [ 801.437235][T15235] ? __pfx_try_to_unmap+0x10/0x10 [ 801.437260][T15235] ? find_held_lock+0x2b/0x80 [ 801.437279][T15235] ? inode_to_bdi+0x9e/0x160 [ 801.437298][T15235] ? folio_clear_dirty_for_io+0x178/0x820 [ 801.437323][T15235] shrink_folio_list+0x3af8/0x6000 [ 801.437358][T15235] ? __pfx_shrink_folio_list+0x10/0x10 [ 801.437386][T15235] ? __lock_acquire+0x4a5/0x2630 [ 801.437412][T15235] ? lock_acquire+0x1cf/0x380 [ 801.437440][T15235] ? lock_acquire+0x1cf/0x380 [ 801.437464][T15235] ? find_held_lock+0x2b/0x80 [ 801.437484][T15235] ? is_bpf_text_address+0x8a/0x1a0 [ 801.437512][T15235] ? is_bpf_text_address+0x8a/0x1a0 [ 801.437564][T15235] reclaim_folio_list+0xdc/0x600 [ 801.437588][T15235] ? find_held_lock+0x2b/0x80 [ 801.437605][T15235] ? is_bpf_text_address+0x8a/0x1a0 [ 801.437632][T15235] ? is_bpf_text_address+0x8a/0x1a0 [ 801.437661][T15235] ? __pfx_reclaim_folio_list+0x10/0x10 [ 801.437694][T15235] ? css_rstat_updated+0x1ce/0x5a0 [ 801.437719][T15235] ? do_raw_spin_lock+0x128/0x260 [ 801.437747][T15235] ? lru_gen_del_folio+0x382/0x5f0 [ 801.437779][T15235] reclaim_pages+0x428/0x5e0 [ 801.437808][T15235] ? __pfx_reclaim_pages+0x10/0x10 [ 801.437833][T15235] ? madvise_cold_or_pageout_pte_range+0x2247/0x2720 [ 801.437858][T15235] ? folio_isolate_lru+0xd5/0xaa0 [ 801.437888][T15235] madvise_cold_or_pageout_pte_range+0x14e2/0x2720 [ 801.437919][T15235] ? bpf_ksym_find+0x124/0x1c0 [ 801.437942][T15235] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 801.437968][T15235] ? kernel_text_address+0x8d/0x100 [ 801.437996][T15235] ? __kernel_text_address+0xd/0x30 [ 801.438024][T15235] ? arch_stack_walk+0xa6/0xf0 [ 801.438044][T15235] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 801.438068][T15235] walk_pgd_range+0xc04/0x1eb0 [ 801.438111][T15235] ? __pfx_walk_pgd_range+0x10/0x10 [ 801.438141][T15235] ? folios_put_refs+0x66d/0x840 [ 801.438172][T15235] __walk_page_range+0x163/0x820 [ 801.438211][T15235] walk_page_range_vma_unsafe+0x209/0x8f0 [ 801.438249][T15235] ? __pfx_walk_page_range_vma_unsafe+0x10/0x10 [ 801.438286][T15235] ? find_held_lock+0x2b/0x80 [ 801.438303][T15235] ? mlock_drain_local+0x254/0x4e0 [ 801.438330][T15235] ? mlock_drain_local+0x254/0x4e0 [ 801.438360][T15235] walk_page_range_vma+0x63/0x90 [ 801.438392][T15235] madvise_pageout+0x259/0x540 [ 801.438413][T15235] ? __pfx_madvise_pageout+0x10/0x10 [ 801.438450][T15235] madvise_vma_behavior+0x3e6/0x3050 [ 801.438475][T15235] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 801.438498][T15235] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 801.438529][T15235] ? mas_prev+0x9b/0xf0 [ 801.438556][T15235] ? __pfx_mas_prev+0x10/0x10 [ 801.438590][T15235] ? find_vma_prev+0xd8/0x150 [ 801.438608][T15235] ? futex_unqueue+0x133/0x2c0 [ 801.438631][T15235] ? __pfx_find_vma_prev+0x10/0x10 [ 801.438657][T15235] ? __futex_wait+0x256/0x300 [ 801.438690][T15235] madvise_walk_vmas+0x2fe/0xa90 [ 801.438716][T15235] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 801.438744][T15235] madvise_do_behavior+0x1ea/0x510 [ 801.438775][T15235] ? __pfx_madvise_do_behavior+0x10/0x10 [ 801.438798][T15235] ? down_read+0x13b/0x460 [ 801.438825][T15235] do_madvise+0x195/0x240 [ 801.438846][T15235] ? __pfx_do_madvise+0x10/0x10 [ 801.438868][T15235] ? do_futex+0x192/0x350 [ 801.438895][T15235] ? __do_sys_capset+0xfb/0x460 [ 801.438923][T15235] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 801.438950][T15235] __x64_sys_madvise+0xa9/0x110 [ 801.438971][T15235] ? lockdep_hardirqs_on+0x78/0x100 [ 801.438998][T15235] do_syscall_64+0x106/0xf80 [ 801.439023][T15235] ? clear_bhb_loop+0x40/0x90 [ 801.439046][T15235] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 801.439065][T15235] RIP: 0033:0x7f62cf19c799 [ 801.439082][T15235] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 801.439100][T15235] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 801.439119][T15235] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 801.439131][T15235] RDX: 0000000000000015 RSI: 00000000002003f2 RDI: 0000000000000000 [ 801.439143][T15235] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 801.439154][T15235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 801.439164][T15235] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 801.439188][T15235] [ 806.369415][T15280] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=538976288 (1077952576 ns) > initial count (3830 ns). Using initial count to start timer. [ 807.607030][T15301] FAULT_INJECTION: forcing a failure. [ 807.607030][T15301] name failslab, interval 1, probability 0, space 0, times 0 [ 807.664544][T15301] CPU: 0 UID: 0 PID: 15301 Comm: syz.1.2370 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 807.664588][T15301] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 807.664599][T15301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 807.664611][T15301] Call Trace: [ 807.664618][T15301] [ 807.664626][T15301] dump_stack_lvl+0x100/0x190 [ 807.664668][T15301] should_fail_ex.cold+0x5/0xa [ 807.664690][T15301] should_failslab+0xc2/0x120 [ 807.664711][T15301] __kvmalloc_node_noprof+0xfa/0xa00 [ 807.664740][T15301] ? io_alloc_cache_init+0x38/0x170 [ 807.664771][T15301] ? lockdep_init_map_type+0x30/0x250 [ 807.664799][T15301] io_alloc_cache_init+0x38/0x170 [ 807.664831][T15301] io_uring_setup.cold+0x3eb/0x1d79 [ 807.664859][T15301] ? ksys_write+0x190/0x250 [ 807.664878][T15301] ? __pfx_io_uring_setup+0x10/0x10 [ 807.664905][T15301] ? do_futex+0x192/0x350 [ 807.664930][T15301] ? __pfx_do_futex+0x10/0x10 [ 807.664963][T15301] ? xfd_validate_state+0x129/0x190 [ 807.664996][T15301] __x64_sys_io_uring_setup+0xc2/0x170 [ 807.665023][T15301] do_syscall_64+0x106/0xf80 [ 807.665049][T15301] ? clear_bhb_loop+0x40/0x90 [ 807.665071][T15301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 807.665091][T15301] RIP: 0033:0x7f45cbb9c799 [ 807.665107][T15301] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 807.665125][T15301] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 807.665146][T15301] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 807.665158][T15301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001d48 [ 807.665169][T15301] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 807.665181][T15301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 807.665192][T15301] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 807.665215][T15301] [ 811.062697][T15342] FAULT_INJECTION: forcing a failure. [ 811.062697][T15342] name failslab, interval 1, probability 0, space 0, times 0 [ 811.180984][T15342] CPU: 0 UID: 0 PID: 15342 Comm: syz.2.2380 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 811.181028][T15342] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 811.181039][T15342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 811.181050][T15342] Call Trace: [ 811.181057][T15342] [ 811.181065][T15342] dump_stack_lvl+0x100/0x190 [ 811.181098][T15342] should_fail_ex.cold+0x5/0xa [ 811.181121][T15342] should_failslab+0xc2/0x120 [ 811.181141][T15342] __kmalloc_cache_noprof+0x7a/0x6f0 [ 811.181167][T15342] ? kvm_uevent_notify_change.part.0+0x94/0x450 [ 811.181196][T15342] kvm_uevent_notify_change.part.0+0x94/0x450 [ 811.181222][T15342] ? __pfx_kvm_vm_release+0x10/0x10 [ 811.181243][T15342] kvm_put_kvm+0xe4/0xb10 [ 811.181263][T15342] ? lockdep_hardirqs_on+0x78/0x100 [ 811.181289][T15342] ? _raw_spin_unlock_irq+0x2e/0x50 [ 811.181314][T15342] ? __pfx_kvm_vm_release+0x10/0x10 [ 811.181334][T15342] kvm_vm_release+0x3c/0x50 [ 811.181354][T15342] __fput+0x3ff/0xb40 [ 811.181380][T15342] task_work_run+0x150/0x240 [ 811.181408][T15342] ? __pfx_task_work_run+0x10/0x10 [ 811.181440][T15342] exit_to_user_mode_loop+0x100/0x4a0 [ 811.181468][T15342] do_syscall_64+0x668/0xf80 [ 811.181493][T15342] ? clear_bhb_loop+0x40/0x90 [ 811.181515][T15342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 811.181534][T15342] RIP: 0033:0x7efcac19c799 [ 811.181551][T15342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 811.181569][T15342] RSP: 002b:00007efcad039028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 811.181588][T15342] RAX: 0000000000000000 RBX: 00007efcac415fa0 RCX: 00007efcac19c799 [ 811.181599][T15342] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 811.181615][T15342] RBP: 00007efcac232c99 R08: 0000000000000000 R09: 0000000000000000 [ 811.181626][T15342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 811.181637][T15342] R13: 00007efcac416038 R14: 00007efcac415fa0 R15: 00007ffc7f3fd6c8 [ 811.181661][T15342] [ 812.355270][T15344] netlink: 13 bytes leftover after parsing attributes in process `syz.4.2381'. [ 813.257040][T15367] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2387'. [ 813.298212][T15367] netlink: 28905 bytes leftover after parsing attributes in process `syz.4.2387'. [ 815.031213][T15397] FAULT_INJECTION: forcing a failure. [ 815.031213][T15397] name failslab, interval 1, probability 0, space 0, times 0 [ 815.088791][T15397] CPU: 0 UID: 0 PID: 15397 Comm: syz.4.2395 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 815.088834][T15397] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 815.088845][T15397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 815.088855][T15397] Call Trace: [ 815.088862][T15397] [ 815.088870][T15397] dump_stack_lvl+0x100/0x190 [ 815.088907][T15397] should_fail_ex.cold+0x5/0xa [ 815.088929][T15397] should_failslab+0xc2/0x120 [ 815.088950][T15397] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 815.088979][T15397] ? __alloc_skb+0x140/0x710 [ 815.089008][T15397] __alloc_skb+0x140/0x710 [ 815.089032][T15397] ? __alloc_skb+0x5b7/0x710 [ 815.089056][T15397] ? __pfx___alloc_skb+0x10/0x10 [ 815.089088][T15397] ovs_dp_cmd_new+0x167/0xdf0 [ 815.089117][T15397] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 815.089145][T15397] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 815.089168][T15397] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 815.089194][T15397] genl_family_rcv_msg_doit+0x214/0x300 [ 815.089216][T15397] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 815.089236][T15397] ? genl_get_cmd+0x3ef/0x720 [ 815.089259][T15397] ? bpf_lsm_capable+0x9/0x10 [ 815.089279][T15397] ? security_capable+0x80/0x260 [ 815.089308][T15397] ? ns_capable+0xd2/0xf0 [ 815.089328][T15397] genl_rcv_msg+0x560/0x800 [ 815.089350][T15397] ? __pfx_genl_rcv_msg+0x10/0x10 [ 815.089371][T15397] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 815.089401][T15397] netlink_rcv_skb+0x159/0x420 [ 815.089430][T15397] ? __pfx_genl_rcv_msg+0x10/0x10 [ 815.089453][T15397] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 815.089491][T15397] ? netlink_deliver_tap+0x1ae/0xcc0 [ 815.089521][T15397] genl_rcv+0x28/0x40 [ 815.089538][T15397] netlink_unicast+0x5aa/0x870 [ 815.089570][T15397] ? __pfx_netlink_unicast+0x10/0x10 [ 815.089608][T15397] netlink_sendmsg+0x8b0/0xda0 [ 815.089640][T15397] ? __pfx_netlink_sendmsg+0x10/0x10 [ 815.089669][T15397] ? __import_iovec+0x1d2/0x640 [ 815.089693][T15397] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 815.089734][T15397] ____sys_sendmsg+0x9e1/0xb70 [ 815.089754][T15397] ? __pfx_netlink_sendmsg+0x10/0x10 [ 815.089785][T15397] ? __pfx_____sys_sendmsg+0x10/0x10 [ 815.089810][T15397] ? __pfx_futex_wake_mark+0x10/0x10 [ 815.089843][T15397] ___sys_sendmsg+0x190/0x1e0 [ 815.089867][T15397] ? __pfx____sys_sendmsg+0x10/0x10 [ 815.089916][T15397] __sys_sendmsg+0x170/0x220 [ 815.089945][T15397] ? __pfx___sys_sendmsg+0x10/0x10 [ 815.089972][T15397] ? __x64_sys_futex+0x34f/0x4d0 [ 815.090010][T15397] do_syscall_64+0x106/0xf80 [ 815.090035][T15397] ? clear_bhb_loop+0x40/0x90 [ 815.090059][T15397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 815.090078][T15397] RIP: 0033:0x7fb21f79c799 [ 815.090095][T15397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 815.090113][T15397] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 815.090131][T15397] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 815.090143][T15397] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 815.090154][T15397] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 815.090165][T15397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 815.090176][T15397] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 815.090200][T15397] [ 815.784247][T15383] [U] ^@ [ 816.482476][T15401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2397'. [ 816.549830][T15404] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2397'. [ 817.315632][T15421] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2402'. [ 819.281865][T15442] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 819.803882][T15454] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2411'. [ 819.903619][T15458] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 820.012351][T15454] mac80211_hwsim hwsim4 wlan1: entered promiscuous mode [ 820.022278][T15454] mac80211_hwsim hwsim4 wlan1: entered allmulticast mode [ 820.187843][ T8595] Bluetooth: hci2: unexpected event 0x33 length: 124 > 10 [ 821.650008][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 821.650073][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 823.021663][T15508] serio: Serial port pty6 [ 823.270785][T15514] ERROR: Out of memory at tomoyo_memory_ok. [ 823.306094][T15514] FAULT_INJECTION: forcing a failure. [ 823.306094][T15514] name failslab, interval 1, probability 0, space 0, times 0 [ 823.447951][T15514] CPU: 1 UID: 0 PID: 15514 Comm: syz.1.2427 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 823.447995][T15514] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 823.448006][T15514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 823.448018][T15514] Call Trace: [ 823.448025][T15514] [ 823.448033][T15514] dump_stack_lvl+0x100/0x190 [ 823.448065][T15514] should_fail_ex.cold+0x5/0xa [ 823.448088][T15514] should_failslab+0xc2/0x120 [ 823.448109][T15514] __kmalloc_cache_noprof+0x7a/0x6f0 [ 823.448133][T15514] ? resv_map_alloc+0x46/0x400 [ 823.448165][T15514] resv_map_alloc+0x46/0x400 [ 823.448194][T15514] hugetlbfs_get_inode+0x2fe/0x750 [ 823.448218][T15514] hugetlb_file_setup+0x15b/0x5b0 [ 823.448241][T15514] ksys_mmap_pgoff+0x232/0x650 [ 823.448262][T15514] ? __x64_sys_futex+0x358/0x4d0 [ 823.448287][T15514] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 823.448307][T15514] ? xfd_validate_state+0x129/0x190 [ 823.448337][T15514] __x64_sys_mmap+0x125/0x190 [ 823.448366][T15514] do_syscall_64+0x106/0xf80 [ 823.448392][T15514] ? clear_bhb_loop+0x40/0x90 [ 823.448415][T15514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 823.448434][T15514] RIP: 0033:0x7f45cbb9c799 [ 823.448449][T15514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 823.448467][T15514] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 823.448486][T15514] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 823.448498][T15514] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000 [ 823.448509][T15514] RBP: 00007f45cbc32c99 R08: 000000000000000d R09: 0000300000000000 [ 823.448520][T15514] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 823.448532][T15514] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 823.448555][T15514] [ 824.352235][T15525] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2430'. [ 825.733325][T15547] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2435'. [ 825.743688][T15547] netlink: 'syz.4.2435': attribute type 1 has an invalid length. [ 825.751554][T15547] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2435'. [ 826.206871][T15557] zram: Added device: zram2 [ 826.218142][T15559] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2438'. [ 829.630413][ T8595] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 830.749344][T15637] random: crng reseeded on system resumption [ 831.525204][T15650] FAULT_INJECTION: forcing a failure. [ 831.525204][T15650] name failslab, interval 1, probability 0, space 0, times 0 [ 831.590361][T15650] CPU: 0 UID: 0 PID: 15650 Comm: syz.1.2458 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 831.590435][T15650] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 831.590456][T15650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 831.590476][T15650] Call Trace: [ 831.590487][T15650] [ 831.590501][T15650] dump_stack_lvl+0x100/0x190 [ 831.590556][T15650] should_fail_ex.cold+0x5/0xa [ 831.590605][T15650] should_failslab+0xc2/0x120 [ 831.590642][T15650] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 831.590690][T15650] ? security_inode_alloc+0x3b/0x2c0 [ 831.590726][T15650] ? lockdep_init_map_type+0x5c/0x250 [ 831.590775][T15650] security_inode_alloc+0x3b/0x2c0 [ 831.590812][T15650] inode_init_always_gfp+0xced/0x1040 [ 831.590847][T15650] ? __pfx_rpc_fill_super+0x10/0x10 [ 831.590886][T15650] alloc_inode+0x8e/0x250 [ 831.590929][T15650] new_inode+0x22/0x1c0 [ 831.590969][T15650] ? __pfx_rpc_fill_super+0x10/0x10 [ 831.591009][T15650] ? __pfx_rpc_fill_super+0x10/0x10 [ 831.591048][T15650] rpc_fill_super+0x199/0x4f0 [ 831.591090][T15650] ? __pfx_rpc_fill_super+0x10/0x10 [ 831.591128][T15650] get_tree_keyed+0x10e/0x1d0 [ 831.591181][T15650] vfs_get_tree+0x92/0x320 [ 831.591228][T15650] vfs_cmd_create+0xd7/0x2a0 [ 831.591273][T15650] __do_sys_fsconfig+0x55a/0xcb0 [ 831.591318][T15650] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 831.591382][T15650] do_syscall_64+0x106/0xf80 [ 831.591427][T15650] ? clear_bhb_loop+0x40/0x90 [ 831.591468][T15650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 831.591502][T15650] RIP: 0033:0x7f45cbb9c799 [ 831.591531][T15650] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 831.591562][T15650] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 831.591604][T15650] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 831.591626][T15650] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000003 [ 831.591645][T15650] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 831.591666][T15650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 831.591686][T15650] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 831.591731][T15650] [ 834.051910][T15682] can: request_module (can-proto-5) failed. [ 835.333413][T15707] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2471'. [ 835.450547][T15707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2471'. [ 835.967778][T15719] ERROR: Out of memory at tomoyo_memory_ok. [ 835.987324][T15719] FAULT_INJECTION: forcing a failure. [ 835.987324][T15719] name failslab, interval 1, probability 0, space 0, times 0 [ 836.004422][T15719] CPU: 0 UID: 0 PID: 15719 Comm: syz.0.2483 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 836.004509][T15719] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 836.004534][T15719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 836.004552][T15719] Call Trace: [ 836.004564][T15719] [ 836.004577][T15719] dump_stack_lvl+0x100/0x190 [ 836.004629][T15719] should_fail_ex.cold+0x5/0xa [ 836.004666][T15719] should_failslab+0xc2/0x120 [ 836.004693][T15719] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 836.004729][T15719] ? security_inode_alloc+0x3b/0x2c0 [ 836.004755][T15719] ? lockdep_init_map_type+0x5c/0x250 [ 836.004793][T15719] security_inode_alloc+0x3b/0x2c0 [ 836.004819][T15719] inode_init_always_gfp+0xced/0x1040 [ 836.004850][T15719] alloc_inode+0x8e/0x250 [ 836.004882][T15719] new_inode+0x22/0x1c0 [ 836.004911][T15719] ? proc_sys_lookup+0x266/0x430 [ 836.004951][T15719] proc_sys_make_inode+0x47/0x5c0 [ 836.004989][T15719] proc_sys_lookup+0x307/0x430 [ 836.005026][T15719] ? __pfx_proc_sys_lookup+0x10/0x10 [ 836.005068][T15719] ? __d_lookup+0x266/0x4a0 [ 836.005110][T15719] lookup_open.isra.0+0x631/0x11b0 [ 836.005153][T15719] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 836.005207][T15719] ? mnt_get_write_access+0x1e9/0x2f0 [ 836.005245][T15719] path_openat+0xa98/0x31a0 [ 836.005281][T15719] ? __pfx_path_openat+0x10/0x10 [ 836.005318][T15719] do_file_open+0x20e/0x430 [ 836.005346][T15719] ? __pfx_do_file_open+0x10/0x10 [ 836.005396][T15719] ? alloc_fd+0x476/0x790 [ 836.005423][T15719] ? do_getname+0x191/0x390 [ 836.005456][T15719] do_sys_openat2+0x10d/0x1e0 [ 836.005488][T15719] ? __pfx_do_sys_openat2+0x10/0x10 [ 836.005530][T15719] ? __fget_files+0x21f/0x3d0 [ 836.005561][T15719] __x64_sys_openat+0x12d/0x210 [ 836.005593][T15719] ? __pfx___x64_sys_openat+0x10/0x10 [ 836.005638][T15719] do_syscall_64+0x106/0xf80 [ 836.005671][T15719] ? clear_bhb_loop+0x40/0x90 [ 836.005701][T15719] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 836.005727][T15719] RIP: 0033:0x7f62cf19c799 [ 836.005751][T15719] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 836.005776][T15719] RSP: 002b:00007f62d003e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 836.005800][T15719] RAX: ffffffffffffffda RBX: 00007f62cf415fa0 RCX: 00007f62cf19c799 [ 836.005816][T15719] RDX: 0000000000143881 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 836.005831][T15719] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 836.005846][T15719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 836.005860][T15719] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 836.005893][T15719] [ 836.706951][T15730] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2477'. [ 838.072512][T15755] loop6: detected capacity change from 0 to 8 [ 838.736948][T15764] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2486'. [ 838.778820][T15764] netlink: 'syz.0.2486': attribute type 2 has an invalid length. [ 838.807938][T15764] netlink: 'syz.0.2486': attribute type 3 has an invalid length. [ 838.836182][T15764] netlink: 51505 bytes leftover after parsing attributes in process `syz.0.2486'. [ 838.885660][T15764] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2486'. [ 839.284692][T15776] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2490'. [ 839.321621][T15776] netlink: 'syz.1.2490': attribute type 1 has an invalid length. [ 839.359746][T15776] netlink: 51505 bytes leftover after parsing attributes in process `syz.1.2490'. [ 839.429540][T15781] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2491'. [ 839.561755][T15783] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 841.961944][T15815] FAULT_INJECTION: forcing a failure. [ 841.961944][T15815] name failslab, interval 1, probability 0, space 0, times 0 [ 841.985216][T15815] CPU: 1 UID: 0 PID: 15815 Comm: syz.1.2498 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 841.985287][T15815] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 841.985306][T15815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 841.985325][T15815] Call Trace: [ 841.985336][T15815] [ 841.985349][T15815] dump_stack_lvl+0x100/0x190 [ 841.985403][T15815] should_fail_ex.cold+0x5/0xa [ 841.985440][T15815] should_failslab+0xc2/0x120 [ 841.985473][T15815] __kmalloc_cache_node_noprof+0x7d/0x770 [ 841.985525][T15815] ? sbitmap_queue_init_node+0x291/0x4a0 [ 841.985581][T15815] sbitmap_queue_init_node+0x291/0x4a0 [ 841.985635][T15815] blk_mq_init_tags+0x184/0x300 [ 841.985672][T15815] blk_mq_alloc_map_and_rqs+0x218/0xeb0 [ 841.985737][T15815] ? blk_mq_update_queue_map+0x227/0x3a0 [ 841.985778][T15815] blk_mq_alloc_tag_set+0x848/0x1330 [ 841.985843][T15815] loop_add+0x3b7/0xb60 [ 841.985887][T15815] ? __pfx_loop_add+0x10/0x10 [ 841.985954][T15815] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 841.986013][T15815] loop_control_ioctl+0xae/0x620 [ 841.986059][T15815] ? __pfx_loop_control_ioctl+0x10/0x10 [ 841.986104][T15815] ? xfd_validate_state+0x129/0x190 [ 841.986152][T15815] ? __pfx_loop_control_ioctl+0x10/0x10 [ 841.986200][T15815] __x64_sys_ioctl+0x18e/0x210 [ 841.986249][T15815] do_syscall_64+0x106/0xf80 [ 841.986293][T15815] ? clear_bhb_loop+0x40/0x90 [ 841.986331][T15815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 841.986364][T15815] RIP: 0033:0x7f45cbb9c799 [ 841.986390][T15815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 841.986421][T15815] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 841.986452][T15815] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 841.986472][T15815] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000002 [ 841.986491][T15815] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 841.986510][T15815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 841.986528][T15815] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 841.986570][T15815] [ 841.986776][T15815] blk-mq: reduced tag depth (128 -> 64) [ 843.001697][T15824] random: crng reseeded on system resumption [ 843.348999][T15831] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2502'. [ 843.362490][T15831] netlink: 'syz.2.2502': attribute type 1 has an invalid length. [ 843.383236][T15831] netlink: 51505 bytes leftover after parsing attributes in process `syz.2.2502'. [ 843.578572][T15828] FAULT_INJECTION: forcing a failure. [ 843.578572][T15828] name failslab, interval 1, probability 0, space 0, times 0 [ 843.669754][T15828] CPU: 1 UID: 0 PID: 15828 Comm: syz.1.2511 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 843.669826][T15828] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 843.669844][T15828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 843.669863][T15828] Call Trace: [ 843.669874][T15828] [ 843.669888][T15828] dump_stack_lvl+0x100/0x190 [ 843.669937][T15828] should_fail_ex.cold+0x5/0xa [ 843.669979][T15828] should_failslab+0xc2/0x120 [ 843.670011][T15828] __kmalloc_cache_noprof+0x7a/0x6f0 [ 843.670049][T15828] ? alloc_netdev_mqs+0xd95/0x14f0 [ 843.670088][T15828] ? __asan_memset+0x23/0x50 [ 843.670134][T15828] alloc_netdev_mqs+0xd95/0x14f0 [ 843.670184][T15828] __ip_tunnel_create+0x398/0x670 [ 843.670228][T15828] ? __pfx___ip_tunnel_create+0x10/0x10 [ 843.670267][T15828] ? net_generic+0xea/0x2a0 [ 843.670317][T15828] ip_tunnel_init_net+0x230/0x780 [ 843.670365][T15828] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 843.670420][T15828] ? __kmalloc_noprof+0x320/0x850 [ 843.670466][T15828] ? __pfx_erspan_init_net+0x10/0x10 [ 843.670501][T15828] ops_init+0x1e2/0x5f0 [ 843.670547][T15828] setup_net+0x118/0x3a0 [ 843.670592][T15828] ? __pfx_setup_net+0x10/0x10 [ 843.670631][T15828] ? lockdep_init_map_type+0x5c/0x250 [ 843.670667][T15828] ? mutex_init_lockep+0x110/0x150 [ 843.670721][T15828] copy_net_ns+0x46f/0x7c0 [ 843.670752][T15828] create_new_namespaces+0x3ea/0xac0 [ 843.670794][T15828] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 843.670829][T15828] ksys_unshare+0x473/0xad0 [ 843.670867][T15828] ? __pfx_ksys_unshare+0x10/0x10 [ 843.670918][T15828] __x64_sys_unshare+0x31/0x40 [ 843.670951][T15828] do_syscall_64+0x106/0xf80 [ 843.670990][T15828] ? clear_bhb_loop+0x40/0x90 [ 843.671026][T15828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.671057][T15828] RIP: 0033:0x7f45cbb9c799 [ 843.671083][T15828] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 843.671110][T15828] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 843.671139][T15828] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 843.671159][T15828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 843.671177][T15828] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 843.671196][T15828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 843.671214][T15828] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 843.671257][T15828] [ 846.552879][ T8595] Bluetooth: hci2: unexpected event 0x33 length: 124 > 10 [ 846.918135][T15888] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2515'. [ 846.949868][T15888] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2515'. [ 847.211047][T15893] loop12: detected capacity change from 0 to 8192 [ 850.116069][T15940] can: request_module (can-proto-5) failed. [ 852.185408][T15967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2532'. [ 852.202216][T15967] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2532'. [ 854.076005][T15987] FAULT_INJECTION: forcing a failure. [ 854.076005][T15987] name failslab, interval 1, probability 0, space 0, times 0 [ 854.112538][T15987] CPU: 1 UID: 0 PID: 15987 Comm: syz.2.2536 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 854.112606][T15987] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 854.112624][T15987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 854.112642][T15987] Call Trace: [ 854.112654][T15987] [ 854.112666][T15987] dump_stack_lvl+0x100/0x190 [ 854.112715][T15987] should_fail_ex.cold+0x5/0xa [ 854.112756][T15987] should_failslab+0xc2/0x120 [ 854.112791][T15987] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 854.112838][T15987] ? security_inode_alloc+0x3b/0x2c0 [ 854.112873][T15987] ? lockdep_init_map_type+0x5c/0x250 [ 854.112924][T15987] security_inode_alloc+0x3b/0x2c0 [ 854.112959][T15987] inode_init_always_gfp+0xced/0x1040 [ 854.113000][T15987] alloc_inode+0x8e/0x250 [ 854.113044][T15987] new_inode+0x22/0x1c0 [ 854.113089][T15987] rpc_new_dir+0x96/0x420 [ 854.113127][T15987] rpc_populate.constprop.0+0x125/0x1c0 [ 854.113167][T15987] ? d_instantiate+0x95/0xb0 [ 854.113205][T15987] ? __pfx_rpc_fill_super+0x10/0x10 [ 854.113244][T15987] rpc_fill_super+0x2b9/0x4f0 [ 854.113279][T15987] ? __pfx_rpc_fill_super+0x10/0x10 [ 854.113316][T15987] get_tree_keyed+0x10e/0x1d0 [ 854.113367][T15987] vfs_get_tree+0x92/0x320 [ 854.113411][T15987] vfs_cmd_create+0xd7/0x2a0 [ 854.113462][T15987] __do_sys_fsconfig+0x55a/0xcb0 [ 854.113506][T15987] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 854.113571][T15987] do_syscall_64+0x106/0xf80 [ 854.113615][T15987] ? clear_bhb_loop+0x40/0x90 [ 854.113655][T15987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 854.113685][T15987] RIP: 0033:0x7efcac19c799 [ 854.113714][T15987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 854.113745][T15987] RSP: 002b:00007efcad039028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 854.113777][T15987] RAX: ffffffffffffffda RBX: 00007efcac415fa0 RCX: 00007efcac19c799 [ 854.113798][T15987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000003 [ 854.113816][T15987] RBP: 00007efcac232c99 R08: 0000000000000000 R09: 0000000000000000 [ 854.113835][T15987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 854.113855][T15987] R13: 00007efcac416038 R14: 00007efcac415fa0 R15: 00007ffc7f3fd6c8 [ 854.113898][T15987] [ 854.114391][T15987] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory / [ 854.875422][T15997] can: request_module (can-proto-5) failed. [ 855.448656][T16011] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2540'. [ 855.490001][T16013] FAULT_INJECTION: forcing a failure. [ 855.490001][T16013] name failslab, interval 1, probability 0, space 0, times 0 [ 855.502821][T16013] CPU: 1 UID: 0 PID: 16013 Comm: syz.0.2541 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 855.502887][T16013] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 855.502905][T16013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 855.502923][T16013] Call Trace: [ 855.502933][T16013] [ 855.502945][T16013] dump_stack_lvl+0x100/0x190 [ 855.502996][T16013] should_fail_ex.cold+0x5/0xa [ 855.503036][T16013] should_failslab+0xc2/0x120 [ 855.503072][T16013] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 855.503116][T16013] ? alloc_inode+0x183/0x250 [ 855.503148][T16013] ? stashed_dentry_get+0x10a/0x2c0 [ 855.503175][T16013] ? stashed_dentry_get+0x10a/0x2c0 [ 855.503206][T16013] alloc_inode+0x183/0x250 [ 855.503238][T16013] path_from_stashed+0x25b/0x750 [ 855.503263][T16013] ? do_raw_spin_unlock+0x145/0x1e0 [ 855.503305][T16013] ns_get_path+0x60/0x80 [ 855.503330][T16013] proc_ns_get_link+0x121/0x230 [ 855.503365][T16013] ? __pfx_proc_ns_get_link+0x10/0x10 [ 855.503402][T16013] ? atime_needs_update+0x8b/0x6b0 [ 855.503439][T16013] pick_link+0xd17/0x13c0 [ 855.503474][T16013] ? __pfx_proc_ns_get_link+0x10/0x10 [ 855.503511][T16013] step_into_slowpath+0x9ba/0xf90 [ 855.503554][T16013] ? __pfx_step_into_slowpath+0x10/0x10 [ 855.503588][T16013] ? find_held_lock+0x2b/0x80 [ 855.503622][T16013] path_openat+0xf95/0x31a0 [ 855.503657][T16013] ? __pfx_path_openat+0x10/0x10 [ 855.503694][T16013] do_file_open+0x20e/0x430 [ 855.503729][T16013] ? __pfx_do_file_open+0x10/0x10 [ 855.503785][T16013] ? alloc_fd+0x476/0x790 [ 855.503812][T16013] ? do_getname+0x191/0x390 [ 855.503848][T16013] do_sys_openat2+0x10d/0x1e0 [ 855.503886][T16013] ? __pfx_do_sys_openat2+0x10/0x10 [ 855.503928][T16013] __x64_sys_openat+0x12d/0x210 [ 855.503961][T16013] ? __pfx___x64_sys_openat+0x10/0x10 [ 855.503996][T16013] ? do_user_addr_fault+0x8d6/0x12f0 [ 855.504041][T16013] do_syscall_64+0x106/0xf80 [ 855.504074][T16013] ? clear_bhb_loop+0x40/0x90 [ 855.504105][T16013] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 855.504130][T16013] RIP: 0033:0x7f62cf15cfce [ 855.504151][T16013] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 855.504175][T16013] RSP: 002b:00007f62d003dec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 855.504199][T16013] RAX: ffffffffffffffda RBX: 00007f62d003e6c0 RCX: 00007f62cf15cfce [ 855.504216][T16013] RDX: 0000000000000002 RSI: 00007f62d003df90 RDI: ffffffffffffff9c [ 855.504232][T16013] RBP: 00007f62cf232c99 R08: 0000000000000000 R09: 0000000000000000 [ 855.504248][T16013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 855.504263][T16013] R13: 00007f62cf416038 R14: 00007f62cf415fa0 R15: 00007fff28f3ff58 [ 855.504295][T16013] [ 855.850196][T16011] netlink: 'syz.4.2540': attribute type 2 has an invalid length. [ 855.858196][T16011] netlink: 'syz.4.2540': attribute type 3 has an invalid length. [ 855.866099][T16011] netlink: 51505 bytes leftover after parsing attributes in process `syz.4.2540'. [ 857.972225][T16043] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 860.360915][T16070] can: request_module (can-proto-5) failed. [ 861.015680][T16086] sd 0:0:1:0: PR command failed: 1026 [ 861.039819][T16086] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 861.056907][T16086] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 861.157822][T16086] can0: slcan on ttyS2. [ 861.321200][T16085] can0 (unregistered): slcan off ttyS2. [ 863.697648][ T8595] Bluetooth: hci2: unexpected event 0x33 length: 124 > 10 [ 865.477670][T16148] can: request_module (can-proto-5) failed. [ 870.039326][T16206] ptp ptp0: new virtual clock ptp1 [ 870.049818][T16206] ptp ptp0: guarantee physical clock free running [ 870.107694][T16212] ptp ptp0: delete virtual clock ptp1 [ 870.173166][T16212] ptp ptp0: only physical clock in use now [ 871.108222][T16234] FAULT_INJECTION: forcing a failure. [ 871.108222][T16234] name fail_futex, interval 1, probability 0, space 0, times 0 [ 871.262665][T16234] CPU: 1 UID: 0 PID: 16234 Comm: syz.0.2593 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 871.262723][T16234] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 871.262734][T16234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 871.262746][T16234] Call Trace: [ 871.262754][T16234] [ 871.262761][T16234] dump_stack_lvl+0x100/0x190 [ 871.262794][T16234] should_fail_ex.cold+0x5/0xa [ 871.262817][T16234] get_futex_key+0x1d2/0x1620 [ 871.262843][T16234] ? __pfx_get_futex_key+0x10/0x10 [ 871.262873][T16234] futex_wake+0xea/0x530 [ 871.262903][T16234] ? __pfx_futex_wake+0x10/0x10 [ 871.262931][T16234] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 871.262964][T16234] do_futex+0x32b/0x350 [ 871.262994][T16234] ? __pfx_do_futex+0x10/0x10 [ 871.263018][T16234] ? __pfx___might_resched+0x10/0x10 [ 871.263051][T16234] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 871.263105][T16234] __x64_sys_futex+0x34f/0x4d0 [ 871.263135][T16234] ? __pfx___x64_sys_futex+0x10/0x10 [ 871.263169][T16234] do_syscall_64+0x106/0xf80 [ 871.263195][T16234] ? clear_bhb_loop+0x40/0x90 [ 871.263219][T16234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 871.263238][T16234] RIP: 0033:0x7f62cf19c799 [ 871.263255][T16234] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 871.263273][T16234] RSP: 002b:00007f62d001d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 871.263292][T16234] RAX: ffffffffffffffda RBX: 00007f62cf416098 RCX: 00007f62cf19c799 [ 871.263305][T16234] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f62cf41609c [ 871.263316][T16234] RBP: 00007f62cf416090 R08: 0000000000000001 R09: 0000000000000000 [ 871.263328][T16234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 871.263340][T16234] R13: 00007f62cf416128 R14: 00007fff28f3fe70 R15: 00007fff28f3ff58 [ 871.263364][T16234] [ 874.252472][T16259] delete_channel: no stack [ 876.915388][T16296] FAULT_INJECTION: forcing a failure. [ 876.915388][T16296] name failslab, interval 1, probability 0, space 0, times 0 [ 876.969798][T16296] CPU: 0 UID: 0 PID: 16296 Comm: syz.2.2607 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 876.969841][T16296] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 876.969852][T16296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 876.969863][T16296] Call Trace: [ 876.969870][T16296] [ 876.969879][T16296] dump_stack_lvl+0x100/0x190 [ 876.969912][T16296] should_fail_ex.cold+0x5/0xa [ 876.969934][T16296] should_failslab+0xc2/0x120 [ 876.969955][T16296] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 876.969984][T16296] ? xas_split_alloc+0x11c/0x4a0 [ 876.970016][T16296] xas_split_alloc+0x11c/0x4a0 [ 876.970049][T16296] __folio_split+0x739/0x1b60 [ 876.970083][T16296] ? __pfx___folio_split+0x10/0x10 [ 876.970112][T16296] ? folio_alloc_swap+0xbb0/0x1aa0 [ 876.970129][T16296] ? folio_alloc_swap+0xbb0/0x1aa0 [ 876.970152][T16296] ? folio_alloc_swap+0x1238/0x1aa0 [ 876.970175][T16296] shmem_writeout+0x798/0x1a00 [ 876.970208][T16296] ? __pfx_shmem_writeout+0x10/0x10 [ 876.970234][T16296] ? __pfx_try_to_unmap+0x10/0x10 [ 876.970259][T16296] ? find_held_lock+0x2b/0x80 [ 876.970279][T16296] ? inode_to_bdi+0x9e/0x160 [ 876.970298][T16296] ? folio_clear_dirty_for_io+0x178/0x820 [ 876.970322][T16296] shrink_folio_list+0x3af8/0x6000 [ 876.970358][T16296] ? __pfx_shrink_folio_list+0x10/0x10 [ 876.970385][T16296] ? __lock_acquire+0x4a5/0x2630 [ 876.970411][T16296] ? lock_acquire+0x1cf/0x380 [ 876.970439][T16296] ? lock_acquire+0x1cf/0x380 [ 876.970462][T16296] ? find_held_lock+0x2b/0x80 [ 876.970479][T16296] ? is_bpf_text_address+0x8a/0x1a0 [ 876.970508][T16296] ? is_bpf_text_address+0x8a/0x1a0 [ 876.970570][T16296] reclaim_folio_list+0xdc/0x600 [ 876.970595][T16296] ? find_held_lock+0x2b/0x80 [ 876.970611][T16296] ? is_bpf_text_address+0x8a/0x1a0 [ 876.970640][T16296] ? is_bpf_text_address+0x8a/0x1a0 [ 876.970670][T16296] ? __pfx_reclaim_folio_list+0x10/0x10 [ 876.970705][T16296] ? css_rstat_updated+0x1ce/0x5a0 [ 876.970731][T16296] ? do_raw_spin_lock+0x128/0x260 [ 876.970759][T16296] ? lru_gen_del_folio+0x382/0x5f0 [ 876.970787][T16296] reclaim_pages+0x428/0x5e0 [ 876.970816][T16296] ? __pfx_reclaim_pages+0x10/0x10 [ 876.970843][T16296] ? madvise_cold_or_pageout_pte_range+0x2247/0x2720 [ 876.970868][T16296] ? folio_isolate_lru+0xd5/0xaa0 [ 876.970898][T16296] madvise_cold_or_pageout_pte_range+0x14e2/0x2720 [ 876.970929][T16296] ? bpf_ksym_find+0x124/0x1c0 [ 876.970952][T16296] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 876.970978][T16296] ? kernel_text_address+0x8d/0x100 [ 876.971004][T16296] ? __kernel_text_address+0xd/0x30 [ 876.971033][T16296] ? arch_stack_walk+0xa6/0xf0 [ 876.971054][T16296] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 876.971078][T16296] walk_pgd_range+0xc04/0x1eb0 [ 876.971111][T16296] ? __pfx_stack_trace_save+0x10/0x10 [ 876.971140][T16296] ? __pfx_walk_pgd_range+0x10/0x10 [ 876.971167][T16296] ? madvise_collapse+0x5f5/0xbe0 [ 876.971188][T16296] ? madvise_vma_behavior+0x1987/0x3050 [ 876.971209][T16296] ? madvise_walk_vmas+0x2fe/0xa90 [ 876.971229][T16296] ? madvise_do_behavior+0x1ea/0x510 [ 876.971249][T16296] ? do_madvise+0x195/0x240 [ 876.971269][T16296] ? __x64_sys_madvise+0xa9/0x110 [ 876.971289][T16296] ? do_syscall_64+0x106/0xf80 [ 876.971314][T16296] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 876.971343][T16296] __walk_page_range+0x163/0x820 [ 876.971383][T16296] walk_page_range_vma_unsafe+0x209/0x8f0 [ 876.971418][T16296] ? __pfx_walk_page_range_vma_unsafe+0x10/0x10 [ 876.971452][T16296] ? find_held_lock+0x2b/0x80 [ 876.971469][T16296] ? mlock_drain_local+0x254/0x4e0 [ 876.971496][T16296] ? mlock_drain_local+0x254/0x4e0 [ 876.971533][T16296] walk_page_range_vma+0x63/0x90 [ 876.971565][T16296] madvise_pageout+0x259/0x540 [ 876.971586][T16296] ? __pfx_madvise_pageout+0x10/0x10 [ 876.971624][T16296] madvise_vma_behavior+0x3e6/0x3050 [ 876.971650][T16296] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 876.971673][T16296] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 876.971703][T16296] ? mas_prev+0x9b/0xf0 [ 876.971730][T16296] ? __pfx_mas_prev+0x10/0x10 [ 876.971765][T16296] ? find_vma_prev+0xd8/0x150 [ 876.971784][T16296] ? futex_unqueue+0x133/0x2c0 [ 876.971808][T16296] ? __pfx_find_vma_prev+0x10/0x10 [ 876.971835][T16296] ? __futex_wait+0x256/0x300 [ 876.971868][T16296] madvise_walk_vmas+0x2fe/0xa90 [ 876.971894][T16296] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 876.971923][T16296] madvise_do_behavior+0x1ea/0x510 [ 876.971947][T16296] ? __pfx_madvise_do_behavior+0x10/0x10 [ 876.971970][T16296] ? down_read+0x13b/0x460 [ 876.971998][T16296] do_madvise+0x195/0x240 [ 876.972020][T16296] ? __pfx_do_madvise+0x10/0x10 [ 876.972041][T16296] ? do_futex+0x192/0x350 [ 876.972068][T16296] ? __do_sys_capset+0xfb/0x460 [ 876.972096][T16296] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 876.972123][T16296] __x64_sys_madvise+0xa9/0x110 [ 876.972145][T16296] ? lockdep_hardirqs_on+0x78/0x100 [ 876.972171][T16296] do_syscall_64+0x106/0xf80 [ 876.972196][T16296] ? clear_bhb_loop+0x40/0x90 [ 876.972219][T16296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 876.972239][T16296] RIP: 0033:0x7efcac19c799 [ 876.972256][T16296] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 876.972274][T16296] RSP: 002b:00007efcad039028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 876.972293][T16296] RAX: ffffffffffffffda RBX: 00007efcac415fa0 RCX: 00007efcac19c799 [ 876.972305][T16296] RDX: 0000000000000015 RSI: 00000000002003f2 RDI: 0000000000000000 [ 876.972317][T16296] RBP: 00007efcac232c99 R08: 0000000000000000 R09: 0000000000000000 [ 876.972328][T16296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 876.972339][T16296] R13: 00007efcac416038 R14: 00007efcac415fa0 R15: 00007ffc7f3fd6c8 [ 876.972363][T16296] [ 877.901307][T16306] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 878.279502][T16315] ERROR: Out of memory at tomoyo_memory_ok. [ 880.220582][T16335] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input16 [ 880.259267][ T5178] ERROR: Out of memory at tomoyo_memory_ok. [ 884.411617][T16387] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 884.581087][T16383] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2621'. [ 892.307501][T16481] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2639'. [ 892.418658][T16481] netlink: 138 bytes leftover after parsing attributes in process `syz.1.2639'. [ 893.808593][T16501] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 897.565770][T16539] ptp ptp0: new virtual clock ptp1 [ 897.578173][T16538] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2651'. [ 897.589639][T16539] ptp ptp0: guarantee physical clock free running [ 897.604330][T16538] netlink: 'syz.2.2651': attribute type 1 has an invalid length. [ 897.613661][T16539] ptp ptp0: delete virtual clock ptp1 [ 897.620135][T16538] netlink: 51505 bytes leftover after parsing attributes in process `syz.2.2651'. [ 897.641743][T16539] ptp ptp0: only physical clock in use now [ 898.676213][T16561] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2665'. [ 898.722735][T16561] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2665'. [ 899.743210][T16565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2667'. [ 899.761972][T16565] netlink: 'syz.0.2667': attribute type 1 has an invalid length. [ 899.779607][T16565] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2667'. [ 902.187126][T16596] kfence: disabled [ 902.463797][T16590] kfence: re-enabled [ 903.506921][T16622] FAULT_INJECTION: forcing a failure. [ 903.506921][T16622] name failslab, interval 1, probability 0, space 0, times 0 [ 903.599030][T16622] CPU: 1 UID: 0 PID: 16622 Comm: syz.4.2673 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 903.599104][T16622] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 903.599122][T16622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 903.599141][T16622] Call Trace: [ 903.599153][T16622] [ 903.599166][T16622] dump_stack_lvl+0x100/0x190 [ 903.599228][T16622] should_fail_ex.cold+0x5/0xa [ 903.599269][T16622] should_failslab+0xc2/0x120 [ 903.599304][T16622] __kmalloc_cache_noprof+0x7a/0x6f0 [ 903.599343][T16622] ? trace_pid_list_alloc+0x232/0x480 [ 903.599388][T16622] ? lockdep_init_map_type+0x5c/0x250 [ 903.599437][T16622] trace_pid_list_alloc+0x232/0x480 [ 903.599489][T16622] trace_pid_write+0x110/0x460 [ 903.599545][T16622] ? __pfx_trace_pid_write+0x10/0x10 [ 903.599617][T16622] event_pid_write.isra.0+0x1e4/0x800 [ 903.599665][T16622] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 903.599726][T16622] vfs_write+0x2aa/0x1070 [ 903.599758][T16622] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 903.599809][T16622] ? __pfx_vfs_write+0x10/0x10 [ 903.599837][T16622] ? __fget_files+0x215/0x3d0 [ 903.599878][T16622] ? __fget_files+0x21f/0x3d0 [ 903.599922][T16622] ksys_write+0x12a/0x250 [ 903.599952][T16622] ? __pfx_ksys_write+0x10/0x10 [ 903.599995][T16622] do_syscall_64+0x106/0xf80 [ 903.600039][T16622] ? clear_bhb_loop+0x40/0x90 [ 903.600078][T16622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 903.600113][T16622] RIP: 0033:0x7fb21f79c799 [ 903.600143][T16622] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 903.600174][T16622] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 903.600213][T16622] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 903.600235][T16622] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 903.600254][T16622] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 903.600274][T16622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 903.600293][T16622] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 903.600337][T16622] [ 905.525217][T16639] FAULT_INJECTION: forcing a failure. [ 905.525217][T16639] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 905.561932][T16639] CPU: 0 UID: 0 PID: 16639 Comm: syz.1.2683 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 905.562001][T16639] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 905.562019][T16639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 905.562038][T16639] Call Trace: [ 905.562050][T16639] [ 905.562064][T16639] dump_stack_lvl+0x100/0x190 [ 905.562115][T16639] should_fail_ex.cold+0x5/0xa [ 905.562145][T16639] ? prepare_alloc_pages+0x16d/0x5f0 [ 905.562186][T16639] should_fail_alloc_page+0xeb/0x140 [ 905.562222][T16639] prepare_alloc_pages+0x1f0/0x5f0 [ 905.562266][T16639] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 905.562325][T16639] ? stack_trace_save+0x8e/0xc0 [ 905.562355][T16639] ? __pfx_stack_trace_save+0x10/0x10 [ 905.562396][T16639] ? stack_depot_save_flags+0x27/0x9d0 [ 905.562444][T16639] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 905.562490][T16639] ? kasan_save_stack+0x3f/0x50 [ 905.562538][T16639] ? kasan_save_stack+0x30/0x50 [ 905.562580][T16639] ? kasan_save_track+0x14/0x30 [ 905.562619][T16639] ? system_heap_allocate+0xeb/0x1170 [ 905.562667][T16639] ? __x64_sys_ioctl+0x18e/0x210 [ 905.562712][T16639] ? do_syscall_64+0x106/0xf80 [ 905.562757][T16639] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 905.562814][T16639] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 905.562868][T16639] ? policy_nodemask+0xed/0x4f0 [ 905.562904][T16639] alloc_pages_mpol+0x1fb/0x550 [ 905.562941][T16639] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 905.562978][T16639] ? lockdep_init_map_type+0x5c/0x250 [ 905.563025][T16639] alloc_pages_noprof+0x131/0x390 [ 905.563061][T16639] system_heap_allocate+0x2d2/0x1170 [ 905.563121][T16639] ? __pfx_system_heap_allocate+0x10/0x10 [ 905.563186][T16639] ? rep_movs_alternative+0x4a/0x90 [ 905.563226][T16639] dma_heap_ioctl+0x37f/0x5e0 [ 905.563278][T16639] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 905.563323][T16639] ? find_held_lock+0x2b/0x80 [ 905.563381][T16639] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 905.563431][T16639] __x64_sys_ioctl+0x18e/0x210 [ 905.563478][T16639] do_syscall_64+0x106/0xf80 [ 905.563521][T16639] ? clear_bhb_loop+0x40/0x90 [ 905.563561][T16639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 905.563596][T16639] RIP: 0033:0x7f45cbb9c799 [ 905.563624][T16639] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 905.563655][T16639] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 905.563687][T16639] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 905.563708][T16639] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 905.563728][T16639] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 905.563747][T16639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 905.563766][T16639] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 905.563808][T16639] [ 909.312460][T16698] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2686'. [ 909.324872][T16698] netlink: 'syz.0.2686': attribute type 1 has an invalid length. [ 909.333834][T16698] netlink: 51505 bytes leftover after parsing attributes in process `syz.0.2686'. [ 909.556982][T16697] FAULT_INJECTION: forcing a failure. [ 909.556982][T16697] name failslab, interval 1, probability 0, space 0, times 0 [ 909.599785][T16697] CPU: 0 UID: 0 PID: 16697 Comm: syz.4.2688 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 909.599853][T16697] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 909.599871][T16697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 909.599888][T16697] Call Trace: [ 909.599899][T16697] [ 909.599911][T16697] dump_stack_lvl+0x100/0x190 [ 909.599965][T16697] should_fail_ex.cold+0x5/0xa [ 909.600001][T16697] should_failslab+0xc2/0x120 [ 909.600033][T16697] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 909.600079][T16697] ? security_inode_alloc+0x3b/0x2c0 [ 909.600114][T16697] ? lockdep_init_map_type+0x5c/0x250 [ 909.600154][T16697] security_inode_alloc+0x3b/0x2c0 [ 909.600180][T16697] inode_init_always_gfp+0xced/0x1040 [ 909.600216][T16697] alloc_inode+0x8e/0x250 [ 909.600259][T16697] alloc_anon_inode+0x2a/0x3e0 [ 909.600298][T16697] dma_buf_export+0x267/0xcb0 [ 909.600350][T16697] ? sg_alloc_table+0x4c/0x1c0 [ 909.600441][T16697] system_heap_allocate+0xb5e/0x1170 [ 909.600505][T16697] ? __pfx_system_heap_allocate+0x10/0x10 [ 909.600573][T16697] ? rep_movs_alternative+0x4a/0x90 [ 909.600617][T16697] dma_heap_ioctl+0x37f/0x5e0 [ 909.600670][T16697] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 909.600716][T16697] ? find_held_lock+0x2b/0x80 [ 909.600765][T16697] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 909.600815][T16697] __x64_sys_ioctl+0x18e/0x210 [ 909.600865][T16697] do_syscall_64+0x106/0xf80 [ 909.600908][T16697] ? clear_bhb_loop+0x40/0x90 [ 909.600949][T16697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 909.600983][T16697] RIP: 0033:0x7fb21f79c799 [ 909.601011][T16697] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 909.601042][T16697] RSP: 002b:00007fb220700028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 909.601073][T16697] RAX: ffffffffffffffda RBX: 00007fb21fa15fa0 RCX: 00007fb21f79c799 [ 909.601093][T16697] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 909.601112][T16697] RBP: 00007fb21f832c99 R08: 0000000000000000 R09: 0000000000000000 [ 909.601131][T16697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 909.601151][T16697] R13: 00007fb21fa16038 R14: 00007fb21fa15fa0 R15: 00007ffe64685d78 [ 909.601194][T16697] [ 910.046587][ T8595] Bluetooth: hci0: unexpected event 0x33 length: 124 > 10 [ 910.092035][T16705] FAULT_INJECTION: forcing a failure. [ 910.092035][T16705] name failslab, interval 1, probability 0, space 0, times 0 [ 910.172451][T16705] CPU: 0 UID: 0 PID: 16705 Comm: syz.1.2690 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 910.172520][T16705] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 910.172538][T16705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 910.172556][T16705] Call Trace: [ 910.172568][T16705] [ 910.172581][T16705] dump_stack_lvl+0x100/0x190 [ 910.172634][T16705] should_fail_ex.cold+0x5/0xa [ 910.172670][T16705] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280 [ 910.172707][T16705] should_failslab+0xc2/0x120 [ 910.172740][T16705] __kmalloc_noprof+0xe0/0x850 [ 910.172786][T16705] ? lockdep_hardirqs_on+0x78/0x100 [ 910.172839][T16705] genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280 [ 910.172883][T16705] genl_family_rcv_msg_doit+0xc7/0x300 [ 910.172921][T16705] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 910.172956][T16705] ? genl_get_cmd+0x3ef/0x720 [ 910.172996][T16705] ? bpf_lsm_capable+0x9/0x10 [ 910.173027][T16705] ? security_capable+0x80/0x260 [ 910.173078][T16705] ? ns_capable+0xd2/0xf0 [ 910.173111][T16705] genl_rcv_msg+0x560/0x800 [ 910.173158][T16705] ? __pfx_genl_rcv_msg+0x10/0x10 [ 910.173192][T16705] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 910.173245][T16705] netlink_rcv_skb+0x159/0x420 [ 910.173295][T16705] ? __pfx_genl_rcv_msg+0x10/0x10 [ 910.173330][T16705] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 910.173395][T16705] ? netlink_deliver_tap+0x1ae/0xcc0 [ 910.173445][T16705] genl_rcv+0x28/0x40 [ 910.173473][T16705] netlink_unicast+0x5aa/0x870 [ 910.173527][T16705] ? __pfx_netlink_unicast+0x10/0x10 [ 910.173591][T16705] netlink_sendmsg+0x8b0/0xda0 [ 910.173646][T16705] ? __pfx_netlink_sendmsg+0x10/0x10 [ 910.173693][T16705] ? __import_iovec+0x1d2/0x640 [ 910.173735][T16705] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 910.173794][T16705] ____sys_sendmsg+0x9e1/0xb70 [ 910.173825][T16705] ? __pfx_netlink_sendmsg+0x10/0x10 [ 910.173878][T16705] ? __pfx_____sys_sendmsg+0x10/0x10 [ 910.173921][T16705] ? __pfx_futex_wake_mark+0x10/0x10 [ 910.173976][T16705] ___sys_sendmsg+0x190/0x1e0 [ 910.174015][T16705] ? __pfx____sys_sendmsg+0x10/0x10 [ 910.174101][T16705] __sys_sendmsg+0x170/0x220 [ 910.174155][T16705] ? __pfx___sys_sendmsg+0x10/0x10 [ 910.174200][T16705] ? __x64_sys_futex+0x34f/0x4d0 [ 910.174265][T16705] do_syscall_64+0x106/0xf80 [ 910.174308][T16705] ? clear_bhb_loop+0x40/0x90 [ 910.174347][T16705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 910.174380][T16705] RIP: 0033:0x7f45cbb9c799 [ 910.174406][T16705] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 910.174438][T16705] RSP: 002b:00007f45cc9a6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 910.174468][T16705] RAX: ffffffffffffffda RBX: 00007f45cbe15fa0 RCX: 00007f45cbb9c799 [ 910.174490][T16705] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006 [ 910.174509][T16705] RBP: 00007f45cbc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 910.174528][T16705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 910.174545][T16705] R13: 00007f45cbe16038 R14: 00007f45cbe15fa0 R15: 00007ffd364f6db8 [ 910.174587][T16705] [ 912.295874][T16744] zram: Added device: zram3 [ 914.056869][T16761] FAULT_INJECTION: forcing a failure. [ 914.056869][T16761] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 914.070286][T16761] CPU: 1 UID: 0 PID: 16761 Comm: syz.2.2701 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 914.070364][T16761] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 914.070382][T16761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 914.070401][T16761] Call Trace: [ 914.070412][T16761] [ 914.070425][T16761] dump_stack_lvl+0x100/0x190 [ 914.070477][T16761] should_fail_ex.cold+0x5/0xa [ 914.070508][T16761] ? prepare_alloc_pages+0x16d/0x5f0 [ 914.070547][T16761] should_fail_alloc_page+0xeb/0x140 [ 914.070585][T16761] prepare_alloc_pages+0x1f0/0x5f0 [ 914.070628][T16761] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 914.070687][T16761] ? stack_trace_save+0x8e/0xc0 [ 914.070724][T16761] ? __pfx_stack_trace_save+0x10/0x10 [ 914.070757][T16761] ? stack_depot_save_flags+0x27/0x9d0 [ 914.070799][T16761] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 914.070845][T16761] ? kasan_save_stack+0x3f/0x50 [ 914.070887][T16761] ? kasan_save_stack+0x30/0x50 [ 914.070927][T16761] ? kasan_save_track+0x14/0x30 [ 914.070970][T16761] ? system_heap_allocate+0xeb/0x1170 [ 914.071020][T16761] ? __x64_sys_ioctl+0x18e/0x210 [ 914.071061][T16761] ? do_syscall_64+0x106/0xf80 [ 914.071098][T16761] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 914.071149][T16761] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 914.071203][T16761] ? policy_nodemask+0xed/0x4f0 [ 914.071239][T16761] alloc_pages_mpol+0x1fb/0x550 [ 914.071275][T16761] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 914.071310][T16761] ? lockdep_init_map_type+0x5c/0x250 [ 914.071364][T16761] alloc_pages_noprof+0x131/0x390 [ 914.071402][T16761] system_heap_allocate+0x2d2/0x1170 [ 914.071464][T16761] ? __pfx_system_heap_allocate+0x10/0x10 [ 914.071530][T16761] ? rep_movs_alternative+0x4a/0x90 [ 914.071573][T16761] dma_heap_ioctl+0x37f/0x5e0 [ 914.071626][T16761] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 914.071669][T16761] ? find_held_lock+0x2b/0x80 [ 914.071721][T16761] ? __pfx_dma_heap_ioctl+0x10/0x10 [ 914.071772][T16761] __x64_sys_ioctl+0x18e/0x210 [ 914.071817][T16761] do_syscall_64+0x106/0xf80 [ 914.071856][T16761] ? clear_bhb_loop+0x40/0x90 [ 914.071896][T16761] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 914.071928][T16761] RIP: 0033:0x7efcac19c799 [ 914.071956][T16761] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 914.071984][T16761] RSP: 002b:00007efcad039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 914.072014][T16761] RAX: ffffffffffffffda RBX: 00007efcac415fa0 RCX: 00007efcac19c799 [ 914.072035][T16761] RDX: 0000200000000140 RSI: ffffffffffdffe00 RDI: 0000000000000006 [ 914.072054][T16761] RBP: 00007efcac232c99 R08: 0000000000000000 R09: 0000000000000000 [ 914.072074][T16761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 914.072113][T16761] R13: 00007efcac416038 R14: 00007efcac415fa0 R15: 00007ffc7f3fd6c8 [ 914.072154][T16761] [ 915.891237][T16792] serio: Serial port pty6 [ 916.864434][T16808] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2714'. [ 916.910691][T16808] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode [ 916.955647][T16808] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode [ 916.988066][T16806] smpboot: CPU 1 is now offline [ 917.205785][T16812] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 917.247518][T16810] ------------[ cut here ]------------ [ 917.248940][T16810] [ 917.248949][T16810] ====================================================== [ 917.248959][T16810] WARNING: possible circular locking dependency detected [ 917.248973][T16810] syzkaller #0 Tainted: G U W L XTNJ [ 917.248987][T16810] ------------------------------------------------------ [ 917.248996][T16810] syz.0.2713/16810 is trying to acquire lock: [ 917.249009][T16810] ffffffff8e6f3680 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 917.249082][T16810] [ 917.249082][T16810] but task is already holding lock: [ 917.249090][T16810] ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 917.249150][T16810] [ 917.249150][T16810] which lock already depends on the new lock. [ 917.249150][T16810] [ 917.249158][T16810] [ 917.249158][T16810] the existing dependency chain (in reverse order) is: [ 917.249166][T16810] [ 917.249166][T16810] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 917.249196][T16810] _raw_spin_lock_nested+0x31/0x40 [ 917.249226][T16810] raw_spin_rq_lock_nested+0x2c/0x140 [ 917.249249][T16810] _task_rq_lock+0xcf/0x490 [ 917.249272][T16810] cgroup_move_task+0x81/0x2b0 [ 917.249298][T16810] css_set_move_task+0x285/0x600 [ 917.249321][T16810] cgroup_post_fork+0x202/0x9b0 [ 917.249342][T16810] copy_process+0x5717/0x7a40 [ 917.249369][T16810] kernel_clone+0xfc/0x9a0 [ 917.249394][T16810] user_mode_thread+0xcc/0x110 [ 917.249420][T16810] rest_init+0x21/0x260 [ 917.249442][T16810] start_kernel+0x47f/0x480 [ 917.249463][T16810] x86_64_start_reservations+0x24/0x30 [ 917.249487][T16810] x86_64_start_kernel+0x12b/0x130 [ 917.249510][T16810] common_startup_64+0x13e/0x148 [ 917.249534][T16810] [ 917.249534][T16810] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 917.249564][T16810] _raw_spin_lock_irqsave+0x3a/0x60 [ 917.249593][T16810] try_to_wake_up+0xb2/0x1a80 [ 917.249614][T16810] __wake_up_common+0x135/0x1f0 [ 917.249643][T16810] __wake_up+0x31/0x60 [ 917.249666][T16810] tty_port_default_wakeup+0x47/0x60 [ 917.249704][T16810] serial8250_tx_chars+0x68f/0x860 [ 917.249740][T16810] serial8250_handle_irq+0x73e/0xcb0 [ 917.249779][T16810] serial8250_default_handle_irq+0x9e/0x270 [ 917.249802][T16810] serial8250_interrupt+0xf8/0x1d0 [ 917.249827][T16810] __handle_irq_event_percpu+0x232/0x8e0 [ 917.249865][T16810] handle_irq_event+0xab/0x1e0 [ 917.249902][T16810] handle_edge_irq+0x375/0x970 [ 917.249936][T16810] __common_interrupt+0xd8/0x2f0 [ 917.249967][T16810] common_interrupt+0xb9/0xe0 [ 917.249990][T16810] asm_common_interrupt+0x26/0x40 [ 917.250014][T16810] __sanitizer_cov_trace_pc+0x3f/0x70 [ 917.250035][T16810] _copy_to_user+0x89/0xd0 [ 917.250060][T16810] put_user_ifreq+0x72/0xc0 [ 917.250097][T16810] sock_do_ioctl+0x233/0x280 [ 917.250141][T16810] sock_ioctl+0x599/0x6b0 [ 917.250164][T16810] __x64_sys_ioctl+0x18e/0x210 [ 917.250198][T16810] do_syscall_64+0x106/0xf80 [ 917.250230][T16810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 917.250255][T16810] [ 917.250255][T16810] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 917.250285][T16810] _raw_spin_lock_irqsave+0x3a/0x60 [ 917.250313][T16810] __wake_up+0x1c/0x60 [ 917.250336][T16810] tty_port_default_wakeup+0x47/0x60 [ 917.250373][T16810] serial8250_tx_chars+0x68f/0x860 [ 917.250408][T16810] serial8250_handle_irq+0x73e/0xcb0 [ 917.250446][T16810] serial8250_default_handle_irq+0x9e/0x270 [ 917.250469][T16810] serial8250_interrupt+0xf8/0x1d0 [ 917.250494][T16810] __handle_irq_event_percpu+0x232/0x8e0 [ 917.250532][T16810] handle_irq_event+0xab/0x1e0 [ 917.250569][T16810] handle_edge_irq+0x375/0x970 [ 917.250602][T16810] __common_interrupt+0xd8/0x2f0 [ 917.250632][T16810] common_interrupt+0xb9/0xe0 [ 917.250655][T16810] asm_common_interrupt+0x26/0x40 [ 917.250678][T16810] _raw_spin_unlock_irqrestore+0x31/0x80 [ 917.250709][T16810] uart_write+0x29d/0xb20 [ 917.250742][T16810] n_tty_write+0x44f/0x12d0 [ 917.250765][T16810] file_tty_write.isra.0+0x4d2/0x890 [ 917.250798][T16810] redirected_tty_write+0xd4/0x120 [ 917.250832][T16810] vfs_write+0x6ac/0x1070 [ 917.250851][T16810] ksys_write+0x12a/0x250 [ 917.250870][T16810] do_syscall_64+0x106/0xf80 [ 917.250903][T16810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 917.250926][T16810] [ 917.250926][T16810] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 917.250957][T16810] _raw_spin_lock_irqsave+0x3a/0x60 [ 917.250985][T16810] serial8250_console_write+0x17e/0x1900 [ 917.251009][T16810] console_flush_one_record+0x790/0xe50 [ 917.251047][T16810] console_unlock+0x103/0x260 [ 917.251082][T16810] vprintk_emit+0x407/0x6b0 [ 917.251102][T16810] _printk+0xcf/0x110 [ 917.251130][T16810] register_console.cold+0xc0/0x248 [ 917.251155][T16810] univ8250_console_init+0x6f/0x80 [ 917.251187][T16810] console_init+0x423/0x620 [ 917.251215][T16810] start_kernel+0x305/0x480 [ 917.251235][T16810] x86_64_start_reservations+0x24/0x30 [ 917.251259][T16810] x86_64_start_kernel+0x12b/0x130 [ 917.251282][T16810] common_startup_64+0x13e/0x148 [ 917.251306][T16810] [ 917.251306][T16810] -> #0 (console_owner){-.-.}-{0:0}: [ 917.251337][T16810] __lock_acquire+0x14b8/0x2630 [ 917.251366][T16810] lock_acquire+0x1cf/0x380 [ 917.251394][T16810] console_lock_spinning_enable+0x72/0x80 [ 917.251430][T16810] console_flush_one_record+0x739/0xe50 [ 917.251467][T16810] console_unlock+0x103/0x260 [ 917.251502][T16810] vprintk_emit+0x407/0x6b0 [ 917.251523][T16810] _printk+0xcf/0x110 [ 917.251543][T16810] __report_bug.cold+0x15/0x137 [ 917.251574][T16810] report_bug+0xb2/0x220 [ 917.251603][T16810] handle_bug+0x16a/0x2a0 [ 917.251623][T16810] exc_invalid_op+0x17/0x50 [ 917.251642][T16810] asm_exc_invalid_op+0x1a/0x20 [ 917.251664][T16810] update_rq_clock+0x40a/0xd20 [ 917.251688][T16810] __schedule+0x1b7d/0x6120 [ 917.251716][T16810] preempt_schedule_irq+0x50/0x90 [ 917.251747][T16810] irqentry_exit+0x17b/0x670 [ 917.251780][T16810] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 917.251804][T16810] xas_start+0x5e/0x790 [ 917.251837][T16810] xas_load+0x1e/0x5c0 [ 917.251869][T16810] xas_find+0x54a/0x8e0 [ 917.251902][T16810] find_lock_entries+0x16e/0x1130 [ 917.251939][T16810] shmem_undo_range+0x212/0x1570 [ 917.251975][T16810] shmem_evict_inode+0x39e/0xbd0 [ 917.252010][T16810] evict+0x3c2/0xad0 [ 917.252037][T16810] iput.part.0+0x605/0xf50 [ 917.252064][T16810] iput+0x35/0x40 [ 917.252089][T16810] dentry_unlink_inode+0x2a1/0x490 [ 917.252115][T16810] __dentry_kill+0x1d0/0x600 [ 917.252148][T16810] finish_dput+0x76/0x480 [ 917.252177][T16810] dput.part.0+0x456/0x570 [ 917.252205][T16810] dput+0x1f/0x30 [ 917.252232][T16810] __fput+0x519/0xb40 [ 917.252257][T16810] task_work_run+0x150/0x240 [ 917.252290][T16810] exit_to_user_mode_loop+0x100/0x4a0 [ 917.252320][T16810] do_syscall_64+0x668/0xf80 [ 917.252352][T16810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 917.252376][T16810] [ 917.252376][T16810] other info that might help us debug this: [ 917.252376][T16810] [ 917.252383][T16810] Chain exists of: [ 917.252383][T16810] console_owner --> &p->pi_lock --> &rq->__lock [ 917.252383][T16810] [ 917.252417][T16810] Possible unsafe locking scenario: [ 917.252417][T16810] [ 917.252425][T16810] CPU0 CPU1 [ 917.252432][T16810] ---- ---- [ 917.252439][T16810] lock(&rq->__lock); [ 917.252453][T16810] lock(&p->pi_lock); [ 917.252470][T16810] lock(&rq->__lock); [ 917.252485][T16810] lock(console_owner); [ 917.252500][T16810] [ 917.252500][T16810] *** DEADLOCK *** [ 917.252500][T16810] [ 917.252506][T16810] 4 locks held by syz.0.2713/16810: [ 917.252520][T16810] #0: ffffffff8e7e74e0 (rcu_read_lock){....}-{1:3}, at: find_lock_entries+0x10c/0x1130 [ 917.252588][T16810] #1: ffff8880b843b2e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 917.252642][T16810] #2: ffffffff8e7d3ac0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 917.252693][T16810] #3: ffffffff8e7d3b38 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 917.252761][T16810] [ 917.252761][T16810] stack backtrace: [ 917.252775][T16810] CPU: 0 UID: 0 PID: 16810 Comm: syz.0.2713 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 917.252824][T16810] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 917.252839][T16810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 917.252855][T16810] Call Trace: [ 917.252863][T16810] [ 917.252872][T16810] dump_stack_lvl+0x100/0x190 [ 917.252907][T16810] print_circular_bug.cold+0x178/0x1c7 [ 917.252947][T16810] check_noncircular+0x146/0x160 [ 917.252979][T16810] __lock_acquire+0x14b8/0x2630 [ 917.253014][T16810] lock_acquire+0x1cf/0x380 [ 917.253044][T16810] ? console_lock_spinning_enable+0x61/0x80 [ 917.253082][T16810] ? console_lock_spinning_enable+0x4a/0x80 [ 917.253129][T16810] console_lock_spinning_enable+0x72/0x80 [ 917.253166][T16810] ? console_lock_spinning_enable+0x61/0x80 [ 917.253204][T16810] console_flush_one_record+0x739/0xe50 [ 917.253246][T16810] ? __pfx_console_flush_one_record+0x10/0x10 [ 917.253289][T16810] ? is_printk_cpu_sync_owner+0x32/0x40 [ 917.253317][T16810] console_unlock+0x103/0x260 [ 917.253354][T16810] ? __pfx_console_unlock+0x10/0x10 [ 917.253394][T16810] ? do_raw_spin_unlock+0x145/0x1e0 [ 917.253430][T16810] ? _printk+0xcf/0x110 [ 917.253455][T16810] vprintk_emit+0x407/0x6b0 [ 917.253477][T16810] ? __pfx_vprintk_emit+0x10/0x10 [ 917.253498][T16810] ? unwind_next_frame+0x3be/0x1ea0 [ 917.253522][T16810] ? unwind_next_frame+0x3be/0x1ea0 [ 917.253551][T16810] _printk+0xcf/0x110 [ 917.253573][T16810] ? __pfx__printk+0x10/0x10 [ 917.253596][T16810] ? unwind_get_return_address+0x59/0xa0 [ 917.253622][T16810] ? arch_stack_walk+0x88/0xf0 [ 917.253646][T16810] ? __report_bug.cold+0x5/0x137 [ 917.253680][T16810] __report_bug.cold+0x15/0x137 [ 917.253712][T16810] ? update_rq_clock+0x40a/0xd20 [ 917.253738][T16810] ? __pfx___report_bug+0x10/0x10 [ 917.253768][T16810] ? __pfx_stack_trace_save+0x10/0x10 [ 917.253794][T16810] ? __lock_acquire+0x4a5/0x2630 [ 917.253827][T16810] ? update_rq_clock+0x40a/0xd20 [ 917.253853][T16810] report_bug+0xb2/0x220 [ 917.253883][T16810] ? update_rq_clock+0x40a/0xd20 [ 917.253908][T16810] handle_bug+0x16a/0x2a0 [ 917.253930][T16810] exc_invalid_op+0x17/0x50 [ 917.253952][T16810] asm_exc_invalid_op+0x1a/0x20 [ 917.253976][T16810] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 917.254003][T16810] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 917.254029][T16810] RSP: 0018:ffffc900053cf210 EFLAGS: 00010046 [ 917.254048][T16810] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 917.254064][T16810] RDX: 0000000000000046 RSI: ffffffff8de59977 RDI: ffffffff8c1b0aa0 [ 917.254080][T16810] RBP: ffffc900053cf3b8 R08: 0000000000000001 R09: 0000000000000001 [ 917.254096][T16810] R10: ffffffff90d9c017 R11: 0000000000000000 R12: ffffffff90d9f3e4 [ 917.254112][T16810] R13: ffff8880b853c0c0 R14: ffff88801e6c9e80 R15: ffff8880b853b280 [ 917.254145][T16810] __schedule+0x1b7d/0x6120 [ 917.254176][T16810] ? post_alloc_hook+0x140/0x170 [ 917.254217][T16810] ? __pfx___schedule+0x10/0x10 [ 917.254249][T16810] ? rcu_is_watching+0x12/0xc0 [ 917.254288][T16810] preempt_schedule_irq+0x50/0x90 [ 917.254320][T16810] irqentry_exit+0x17b/0x670 [ 917.254356][T16810] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 917.254382][T16810] RIP: 0010:xas_start+0x5e/0x790 [ 917.254417][T16810] Code: ff 4c 89 e5 83 e5 03 48 89 ee e8 7d bb 7c f6 48 85 ed 0f 84 17 01 00 00 e8 8f c0 7c f6 48 89 ee bf 02 00 00 00 e8 62 bb 7c f6 <48> 83 fd 02 0f 84 8d 04 00 00 e8 73 c0 7c f6 48 89 da 48 b8 00 00 [ 917.254441][T16810] RSP: 0018:ffffc900053cf4c8 EFLAGS: 00000297 [ 917.254458][T16810] RAX: 0000000000000002 RBX: ffffc900053cf608 RCX: ffffffff8b8b57de [ 917.254475][T16810] RDX: 0000000000000003 RSI: 0000000000000002 RDI: ffff88802ce2db80 [ 917.254490][T16810] RBP: 0000000000000003 R08: 0000000000000007 R09: 0000000000000002 [ 917.254505][T16810] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000003 [ 917.254520][T16810] R13: ffffc900053cf620 R14: dffffc0000000000 R15: ffff88805a9c5e30 [ 917.254540][T16810] ? xas_start+0x5e/0x790 [ 917.254576][T16810] ? xas_start+0x5e/0x790 [ 917.254611][T16810] xas_load+0x1e/0x5c0 [ 917.254646][T16810] xas_find+0x54a/0x8e0 [ 917.254680][T16810] ? register_lock_class+0x40/0x560 [ 917.254714][T16810] find_lock_entries+0x16e/0x1130 [ 917.254754][T16810] ? page_table_check_set+0x49a/0xa10 [ 917.254777][T16810] ? page_table_check_set+0x49a/0xa10 [ 917.254801][T16810] ? __pfx_find_lock_entries+0x10/0x10 [ 917.254843][T16810] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 917.254870][T16810] shmem_undo_range+0x212/0x1570 [ 917.254911][T16810] ? __pfx_shmem_undo_range+0x10/0x10 [ 917.254949][T16810] ? __lock_acquire+0x4a5/0x2630 [ 917.255001][T16810] ? __schedule+0x1000/0x6120 [ 917.255030][T16810] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 917.255062][T16810] ? lockdep_hardirqs_on+0x78/0x100 [ 917.255097][T16810] ? percpu_counter_add_batch+0xb9/0x230 [ 917.255134][T16810] shmem_evict_inode+0x39e/0xbd0 [ 917.255173][T16810] ? inode_wait_for_writeback+0x171/0x390 [ 917.255210][T16810] ? __pfx_shmem_evict_inode+0x10/0x10 [ 917.255248][T16810] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 917.255285][T16810] ? find_held_lock+0x2b/0x80 [ 917.255307][T16810] ? evict+0x37e/0xad0 [ 917.255335][T16810] ? evict+0x37e/0xad0 [ 917.255364][T16810] ? __pfx_shmem_evict_inode+0x10/0x10 [ 917.255402][T16810] evict+0x3c2/0xad0 [ 917.255430][T16810] ? find_held_lock+0x2b/0x80 [ 917.255453][T16810] ? __pfx_evict+0x10/0x10 [ 917.255484][T16810] ? iput.part.0+0x5fd/0xf50 [ 917.255516][T16810] iput.part.0+0x605/0xf50 [ 917.255545][T16810] ? __pfx_inode_just_drop+0x10/0x10 [ 917.255585][T16810] iput+0x35/0x40 [ 917.255614][T16810] dentry_unlink_inode+0x2a1/0x490 [ 917.255643][T16810] __dentry_kill+0x1d0/0x600 [ 917.255673][T16810] finish_dput+0x76/0x480 [ 917.255704][T16810] dput.part.0+0x456/0x570 [ 917.255737][T16810] dput+0x1f/0x30 [ 917.255765][T16810] __fput+0x519/0xb40 [ 917.255793][T16810] ? _raw_spin_unlock_irq+0x23/0x50 [ 917.255825][T16810] task_work_run+0x150/0x240 [ 917.255859][T16810] ? __pfx_task_work_run+0x10/0x10 [ 917.255894][T16810] ? xfd_validate_state+0x129/0x190 [ 917.255931][T16810] exit_to_user_mode_loop+0x100/0x4a0 [ 917.255964][T16810] do_syscall_64+0x668/0xf80 [ 917.255998][T16810] ? clear_bhb_loop+0x40/0x90 [ 917.256026][T16810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 917.256050][T16810] RIP: 0033:0x7f62cf19c799 [ 917.256070][T16810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 917.256094][T16810] RSP: 002b:00007f62cfffc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 917.256116][T16810] RAX: 0000000000000000 RBX: 00007f62cf416180 RCX: 00007f62cf19c799 [ 917.256139][T16810] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 917.256154][T16810] RBP: 00007f62cf232c99 R08: 0000000000000002 R09: 0000000000008000 [ 917.256170][T16810] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 917.256185][T16810] R13: 00007f62cf416218 R14: 00007f62cf416180 R15: 00007fff28f3ff58 [ 917.256209][T16810] [ 918.772569][T16810] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 918.772588][T16810] WARNING: kernel/sched/sched.h:1600 at update_rq_clock+0x40a/0xd20, CPU#0: syz.0.2713/16810 [ 918.790568][T16810] Modules linked in: [ 918.794478][T16810] CPU: 0 UID: 0 PID: 16810 Comm: syz.0.2713 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 918.805540][T16810] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 918.816043][T16810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 918.826116][T16810] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 918.831679][T16810] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 918.851306][T16810] RSP: 0018:ffffc900053cf210 EFLAGS: 00010046 [ 918.857389][T16810] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 918.865455][T16810] RDX: 0000000000000046 RSI: ffffffff8de59977 RDI: ffffffff8c1b0aa0 [ 918.873437][T16810] RBP: ffffc900053cf3b8 R08: 0000000000000001 R09: 0000000000000001 [ 918.881417][T16810] R10: ffffffff90d9c017 R11: 0000000000000000 R12: ffffffff90d9f3e4 [ 918.889411][T16810] R13: ffff8880b853c0c0 R14: ffff88801e6c9e80 R15: ffff8880b853b280 [ 918.897435][T16810] FS: 00007f62cfffc6c0(0000) GS:ffff888124349000(0000) knlGS:0000000000000000 [ 918.906386][T16810] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 918.912988][T16810] CR2: 00007f62cffdaff8 CR3: 000000005e168000 CR4: 00000000003526f0 [ 918.920972][T16810] Call Trace: [ 918.924257][T16810] [ 918.927284][T16810] __schedule+0x1b7d/0x6120 [ 918.931895][T16810] ? post_alloc_hook+0x140/0x170 [ 918.936862][T16810] ? __pfx___schedule+0x10/0x10 [ 918.941731][T16810] ? rcu_is_watching+0x12/0xc0 [ 918.946528][T16810] preempt_schedule_irq+0x50/0x90 [ 918.951599][T16810] irqentry_exit+0x17b/0x670 [ 918.956245][T16810] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 918.961735][T16810] RIP: 0010:xas_start+0x5e/0x790 [ 918.966709][T16810] Code: ff 4c 89 e5 83 e5 03 48 89 ee e8 7d bb 7c f6 48 85 ed 0f 84 17 01 00 00 e8 8f c0 7c f6 48 89 ee bf 02 00 00 00 e8 62 bb 7c f6 <48> 83 fd 02 0f 84 8d 04 00 00 e8 73 c0 7c f6 48 89 da 48 b8 00 00 [ 918.986334][T16810] RSP: 0018:ffffc900053cf4c8 EFLAGS: 00000297 [ 918.992414][T16810] RAX: 0000000000000002 RBX: ffffc900053cf608 RCX: ffffffff8b8b57de [ 919.000395][T16810] RDX: 0000000000000003 RSI: 0000000000000002 RDI: ffff88802ce2db80 [ 919.008376][T16810] RBP: 0000000000000003 R08: 0000000000000007 R09: 0000000000000002 [ 919.016356][T16810] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000003 [ 919.024339][T16810] R13: ffffc900053cf620 R14: dffffc0000000000 R15: ffff88805a9c5e30 [ 919.032333][T16810] ? xas_start+0x5e/0x790 [ 919.036691][T16810] ? xas_start+0x5e/0x790 [ 919.041045][T16810] xas_load+0x1e/0x5c0 [ 919.045145][T16810] xas_find+0x54a/0x8e0 [ 919.049330][T16810] ? register_lock_class+0x40/0x560 [ 919.054555][T16810] find_lock_entries+0x16e/0x1130 [ 919.059617][T16810] ? page_table_check_set+0x49a/0xa10 [ 919.065090][T16810] ? page_table_check_set+0x49a/0xa10 [ 919.070484][T16810] ? __pfx_find_lock_entries+0x10/0x10 [ 919.075976][T16810] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 919.081989][T16810] shmem_undo_range+0x212/0x1570 [ 919.086956][T16810] ? __pfx_shmem_undo_range+0x10/0x10 [ 919.092355][T16810] ? __lock_acquire+0x4a5/0x2630 [ 919.097339][T16810] ? __schedule+0x1000/0x6120 [ 919.102040][T16810] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 919.107870][T16810] ? lockdep_hardirqs_on+0x78/0x100 [ 919.113100][T16810] ? percpu_counter_add_batch+0xb9/0x230 [ 919.118756][T16810] shmem_evict_inode+0x39e/0xbd0 [ 919.123726][T16810] ? inode_wait_for_writeback+0x171/0x390 [ 919.129559][T16810] ? __pfx_shmem_evict_inode+0x10/0x10 [ 919.135048][T16810] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 919.141144][T16810] ? find_held_lock+0x2b/0x80 [ 919.145837][T16810] ? evict+0x37e/0xad0 [ 919.149928][T16810] ? evict+0x37e/0xad0 [ 919.154047][T16810] ? __pfx_shmem_evict_inode+0x10/0x10 [ 919.159539][T16810] evict+0x3c2/0xad0 [ 919.163452][T16810] ? find_held_lock+0x2b/0x80 [ 919.168141][T16810] ? __pfx_evict+0x10/0x10 [ 919.172575][T16810] ? iput.part.0+0x5fd/0xf50 [ 919.177272][T16810] iput.part.0+0x605/0xf50 [ 919.181703][T16810] ? __pfx_inode_just_drop+0x10/0x10 [ 919.187139][T16810] iput+0x35/0x40 [ 919.190814][T16810] dentry_unlink_inode+0x2a1/0x490 [ 919.195946][T16810] __dentry_kill+0x1d0/0x600 [ 919.200559][T16810] finish_dput+0x76/0x480 [ 919.204912][T16810] dput.part.0+0x456/0x570 [ 919.209385][T16810] dput+0x1f/0x30 [ 919.213039][T16810] __fput+0x519/0xb40 [ 919.217039][T16810] ? _raw_spin_unlock_irq+0x23/0x50 [ 919.222263][T16810] task_work_run+0x150/0x240 [ 919.226880][T16810] ? __pfx_task_work_run+0x10/0x10 [ 919.232018][T16810] ? xfd_validate_state+0x129/0x190 [ 919.237242][T16810] exit_to_user_mode_loop+0x100/0x4a0 [ 919.242638][T16810] do_syscall_64+0x668/0xf80 [ 919.247254][T16810] ? clear_bhb_loop+0x40/0x90 [ 919.251947][T16810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 919.257861][T16810] RIP: 0033:0x7f62cf19c799 [ 919.262287][T16810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 919.281995][T16810] RSP: 002b:00007f62cfffc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 919.290423][T16810] RAX: 0000000000000000 RBX: 00007f62cf416180 RCX: 00007f62cf19c799 [ 919.298409][T16810] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 919.306388][T16810] RBP: 00007f62cf232c99 R08: 0000000000000002 R09: 0000000000008000 [ 919.314455][T16810] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 919.322437][T16810] R13: 00007f62cf416218 R14: 00007f62cf416180 R15: 00007fff28f3ff58 [ 919.330511][T16810] [ 919.333540][T16810] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 919.340833][T16810] CPU: 0 UID: 0 PID: 16810 Comm: syz.0.2713 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 919.351803][T16810] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 919.361870][T16810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 919.371935][T16810] Call Trace: [ 919.375247][T16810] [ 919.378186][T16810] dump_stack_lvl+0x100/0x190 [ 919.382894][T16810] vpanic+0x552/0x970 [ 919.386892][T16810] ? __pfx_vpanic+0x10/0x10 [ 919.391409][T16810] ? lock_release+0x263/0x320 [ 919.396112][T16810] panic+0xd1/0xe0 [ 919.399851][T16810] ? __pfx_panic+0x10/0x10 [ 919.404285][T16810] check_panic_on_warn.cold+0x19/0x34 [ 919.409680][T16810] ? update_rq_clock+0x40a/0xd20 [ 919.414635][T16810] __warn.cold+0x191/0x348 [ 919.419068][T16810] __report_bug+0x296/0x3d0 [ 919.423600][T16810] ? update_rq_clock+0x40a/0xd20 [ 919.428552][T16810] ? __pfx___report_bug+0x10/0x10 [ 919.433598][T16810] ? __pfx_stack_trace_save+0x10/0x10 [ 919.438988][T16810] ? __lock_acquire+0x4a5/0x2630 [ 919.443947][T16810] ? update_rq_clock+0x40a/0xd20 [ 919.448900][T16810] report_bug+0xb2/0x220 [ 919.453172][T16810] ? update_rq_clock+0x40a/0xd20 [ 919.458227][T16810] handle_bug+0x16a/0x2a0 [ 919.462567][T16810] exc_invalid_op+0x17/0x50 [ 919.467084][T16810] asm_exc_invalid_op+0x1a/0x20 [ 919.471961][T16810] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 919.477529][T16810] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 919.497151][T16810] RSP: 0018:ffffc900053cf210 EFLAGS: 00010046 [ 919.503319][T16810] RAX: 0000000000000000 RBX: ffff8880b853b280 RCX: 0000000000000001 [ 919.511309][T16810] RDX: 0000000000000046 RSI: ffffffff8de59977 RDI: ffffffff8c1b0aa0 [ 919.519293][T16810] RBP: ffffc900053cf3b8 R08: 0000000000000001 R09: 0000000000000001 [ 919.527277][T16810] R10: ffffffff90d9c017 R11: 0000000000000000 R12: ffffffff90d9f3e4 [ 919.535262][T16810] R13: ffff8880b853c0c0 R14: ffff88801e6c9e80 R15: ffff8880b853b280 [ 919.543255][T16810] __schedule+0x1b7d/0x6120 [ 919.547869][T16810] ? post_alloc_hook+0x140/0x170 [ 919.552837][T16810] ? __pfx___schedule+0x10/0x10 [ 919.557796][T16810] ? rcu_is_watching+0x12/0xc0 [ 919.562591][T16810] preempt_schedule_irq+0x50/0x90 [ 919.567638][T16810] irqentry_exit+0x17b/0x670 [ 919.572339][T16810] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 919.577845][T16810] RIP: 0010:xas_start+0x5e/0x790 [ 919.582812][T16810] Code: ff 4c 89 e5 83 e5 03 48 89 ee e8 7d bb 7c f6 48 85 ed 0f 84 17 01 00 00 e8 8f c0 7c f6 48 89 ee bf 02 00 00 00 e8 62 bb 7c f6 <48> 83 fd 02 0f 84 8d 04 00 00 e8 73 c0 7c f6 48 89 da 48 b8 00 00 [ 919.602432][T16810] RSP: 0018:ffffc900053cf4c8 EFLAGS: 00000297 [ 919.608524][T16810] RAX: 0000000000000002 RBX: ffffc900053cf608 RCX: ffffffff8b8b57de [ 919.616521][T16810] RDX: 0000000000000003 RSI: 0000000000000002 RDI: ffff88802ce2db80 [ 919.624503][T16810] RBP: 0000000000000003 R08: 0000000000000007 R09: 0000000000000002 [ 919.632486][T16810] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000003 [ 919.640466][T16810] R13: ffffc900053cf620 R14: dffffc0000000000 R15: ffff88805a9c5e30 [ 919.648454][T16810] ? xas_start+0x5e/0x790 [ 919.652809][T16810] ? xas_start+0x5e/0x790 [ 919.657164][T16810] xas_load+0x1e/0x5c0 [ 919.661263][T16810] xas_find+0x54a/0x8e0 [ 919.665447][T16810] ? register_lock_class+0x40/0x560 [ 919.670669][T16810] find_lock_entries+0x16e/0x1130 [ 919.675728][T16810] ? page_table_check_set+0x49a/0xa10 [ 919.681204][T16810] ? page_table_check_set+0x49a/0xa10 [ 919.686590][T16810] ? __pfx_find_lock_entries+0x10/0x10 [ 919.692085][T16810] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 919.698103][T16810] shmem_undo_range+0x212/0x1570 [ 919.703093][T16810] ? __pfx_shmem_undo_range+0x10/0x10 [ 919.708508][T16810] ? __lock_acquire+0x4a5/0x2630 [ 919.713488][T16810] ? __schedule+0x1000/0x6120 [ 919.718189][T16810] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 919.724033][T16810] ? lockdep_hardirqs_on+0x78/0x100 [ 919.729265][T16810] ? percpu_counter_add_batch+0xb9/0x230 [ 919.734917][T16810] shmem_evict_inode+0x39e/0xbd0 [ 919.739880][T16810] ? inode_wait_for_writeback+0x171/0x390 [ 919.745632][T16810] ? __pfx_shmem_evict_inode+0x10/0x10 [ 919.751125][T16810] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 919.757305][T16810] ? find_held_lock+0x2b/0x80 [ 919.761999][T16810] ? evict+0x37e/0xad0 [ 919.766086][T16810] ? evict+0x37e/0xad0 [ 919.770269][T16810] ? __pfx_shmem_evict_inode+0x10/0x10 [ 919.775757][T16810] evict+0x3c2/0xad0 [ 919.779671][T16810] ? find_held_lock+0x2b/0x80 [ 919.784371][T16810] ? __pfx_evict+0x10/0x10 [ 919.788813][T16810] ? iput.part.0+0x5fd/0xf50 [ 919.793425][T16810] iput.part.0+0x605/0xf50 [ 919.797863][T16810] ? __pfx_inode_just_drop+0x10/0x10 [ 919.803179][T16810] iput+0x35/0x40 [ 919.806832][T16810] dentry_unlink_inode+0x2a1/0x490 [ 919.811963][T16810] __dentry_kill+0x1d0/0x600 [ 919.816839][T16810] finish_dput+0x76/0x480 [ 919.821198][T16810] dput.part.0+0x456/0x570 [ 919.825642][T16810] dput+0x1f/0x30 [ 919.829386][T16810] __fput+0x519/0xb40 [ 919.833388][T16810] ? _raw_spin_unlock_irq+0x23/0x50 [ 919.838613][T16810] task_work_run+0x150/0x240 [ 919.843231][T16810] ? __pfx_task_work_run+0x10/0x10 [ 919.848369][T16810] ? xfd_validate_state+0x129/0x190 [ 919.853597][T16810] exit_to_user_mode_loop+0x100/0x4a0 [ 919.858994][T16810] do_syscall_64+0x668/0xf80 [ 919.863610][T16810] ? clear_bhb_loop+0x40/0x90 [ 919.868305][T16810] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 919.874213][T16810] RIP: 0033:0x7f62cf19c799 [ 919.878646][T16810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 919.898280][T16810] RSP: 002b:00007f62cfffc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 919.906711][T16810] RAX: 0000000000000000 RBX: 00007f62cf416180 RCX: 00007f62cf19c799 [ 919.914696][T16810] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 919.922848][T16810] RBP: 00007f62cf232c99 R08: 0000000000000002 R09: 0000000000008000 [ 919.930831][T16810] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 919.938816][T16810] R13: 00007f62cf416218 R14: 00007f62cf416180 R15: 00007fff28f3ff58 [ 919.946807][T16810] [ 919.950260][T16810] Kernel Offset: disabled [ 919.954654][T16810] Rebooting in 86400 seconds..