last executing test programs: 5.071682529s ago: executing program 1 (id=3992): r0 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000054c0)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x20a01, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(r0, &(0x7f0000000240)='/dev/vhost-net\x00', 0x4) r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95) sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x6}, 0x20000000) (async) sendmsg$auto_NL80211_CMD_PROBE_CLIENT(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x6}, 0x20000000) read$auto(r1, 0x0, 0x1) (async) read$auto(r1, 0x0, 0x1) writev$auto(0x3, &(0x7f0000000340)={0x0, 0x7111}, 0x8) (async) writev$auto(0x3, &(0x7f0000000340)={0x0, 0x7111}, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) (async) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) socket(0x3, 0x800, 0x4) (async) socket(0x3, 0x800, 0x4) r2 = io_uring_setup$auto(0x2, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event2\x00', 0x10000, 0x0) (async) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event2\x00', 0x10000, 0x0) mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x3) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) (async) r5 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$auto_TUNSETVNETBE(r5, 0x400454de, 0x0) sendmsg$auto_TASKSTATS_CMD_GET(r2, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000000}, 0xa8, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) getsockopt$auto_SO_TXREHASH(r3, 0xffffff00, 0x4a, &(0x7f00000001c0)='\x00', &(0x7f0000000200)=0x4) (async) getsockopt$auto_SO_TXREHASH(r3, 0xffffff00, 0x4a, &(0x7f00000001c0)='\x00', &(0x7f0000000200)=0x4) r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x20000003, 0x1005, 0x80000001, 0x40, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x1, 0x0, 0x7, 0x9, 0xfffffffffffffff4, 0x6, 0x100000000000000, 0xfff, 0xf]}, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x100000001, 0x100) r7 = socket(0x2b, 0x1, 0x1) ioctl$auto(r7, 0x89a0, 0x4) (async) ioctl$auto(r7, 0x89a0, 0x4) syz_clone(0x60000, 0x0, 0x0, 0x0, 0x0, 0x0) close_range$auto(r6, 0xffffffffffffffff, 0xc8c3) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) madvise$auto(0x2000, 0x20499d, 0x9) 4.013832244s ago: executing program 1 (id=3995): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r1) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r3 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r2, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r3}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x100, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000840) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bus/usb/005/001\x00', 0x100, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) socket(0xa, 0x5, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyub\x00', 0x16000, 0x0) write$auto(0x6, 0x0, 0x100000001) ioctl$auto_XFS_IOC_SWAPEXT(r4, 0xc0c0586d, &(0x7f0000000240)={0x2, @inferred, @inferred=r4, 0x4, 0x8, '\x00', {0xbb73, 0x8, 0x3, 0xee00, 0xee01, 0x0, 0x6, 0x3, {0x1, 0x9}, {0x1, 0x9}, {0x0, 0xaea2}, 0x7, 0xb, 0x3, 0x6, 0x1, 0x9, 0x0, 0x5, 0x3, 0x9, '\x00', 0x2, 0x6, 0x2, 0x4}}) setpriority$auto(0x5, r5, 0x80000001) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto_TIOCSTI2(r6, 0x5412, 0x0) 4.011206505s ago: executing program 3 (id=3997): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x1, 0x0, 0xfffffffd) socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x18, &(0x7f00000001c0), 0x8) r0 = socket(0x1d, 0x2, 0x6) flistxattr$auto(r0, 0x0, 0x95) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) 3.84973073s ago: executing program 3 (id=3998): r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) (async, rerun: 64) socket(0x2, 0x4, 0x8000) (async, rerun: 64) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000000c0)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700", 0x3ff, 0x408, 0xfff, 0x400004, 0x200000000040000d, 0x0}) (async) ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 64) r3 = getegid() (rerun: 64) setregid$auto(r3, r3) (async, rerun: 32) shmctl$auto_IPC_STAT(0x3, 0x2, &(0x7f0000000440)={{0x0, 0x0, r3, 0x7770, 0x3, 0xffffffff, 0x7}, 0xa2b4, 0xc, 0x9, 0x8000, @raw, @raw=0x8, 0x9, 0x0, 0x0, 0x0}) (rerun: 32) msgctl$auto_MSG_STAT_ANY(0x9, 0xd, &(0x7f00000000c0)={{0xe, r4, r3, 0x1800, 0x8, 0x0, 0x1000}, 0x0, 0x0, 0x6, 0x1000, 0x2, 0x8, 0x8, 0x5a, 0x0, 0x4, @inferred=r2}) (async) quotactl$auto(0x4, &(0x7f0000000040)='/dev/loop2\x00', r3, &(0x7f0000000080)="66300d4a4b01591efe9f24b04a7b261f") (async, rerun: 64) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0xa, 0x3) (async) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async, rerun: 64) r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) (rerun: 64) write$auto_console_fops_tty_io(r6, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) (async) ioctl$auto(r5, 0x4b67, 0x1) 3.619619261s ago: executing program 3 (id=4001): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) ioctl$auto_BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000500)={0x40a, 0x3, 0x3ac, 0x8, {0x1, 0x4, 0xb, 0x3, 0x8, 0x4, 0x9, 0x2, 0xe, 0xa5, 0x1, 0x4, 0x0, 0xf, 0xff}}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000480)='/dev/radio13\x00', 0x802, 0x0) write$auto(0x3, 0x0, 0xfffffdef) keyctl$auto(0x1d, 0xffffffffffffffff, 0x8, 0x5, 0x8) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), r0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="1b0026bd2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = socket(0x2, 0x1, 0x0) bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f00000002c0)=@test={r2, 0x0, 0x856, 0x189, 0x8, 0x7fff, 0x7fff, 0x10000, 0xc91a, 0x7, 0x5, 0x3, 0x3, 0x3, 0x6}, 0x1) mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) sendmsg$auto_ETHTOOL_MSG_PSE_SET(0xffffffffffffffff, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) 3.225208968s ago: executing program 1 (id=4003): mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/irq/6/smp_affinity_list\x00', 0xe0182, 0x0) readv$auto(r0, &(0x7f0000000140)={0x0, 0x8}, 0x200000000080003) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) statmount$auto(0x0, &(0x7f00000013c0)={0x7, 0x2, 0x6, 0x7, 0x84, 0xfffffffffffffffa, 0x1ffde, 0x820c, 0x6, 0x2, 0x9, 0x2, 0x6, 0x4, 0xfffffffeffffffff, 0xffff, 0x2008000001, 0x10000, 0x80, 0x8, 0x2d7d01bf, 0x7, 0x0, 0x9, 0x4, 0x3, 0x3, 0xff, 0x0, 0x4, 0xffffffe0, [0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x80000001, 0xffffffffffffffff, 0x0, 0x80000001, 0x0, 0x20000000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x6, 0x5, 0x7, 0x0, 0x4, 0x8000000000, 0x400000003, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x35, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1000]}, 0x1fe, 0x200a) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8}) ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0) writev$auto(r1, &(0x7f0000000340)={&(0x7f00000002c0), 0xda7e}, 0x9) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/pagetypeinfo\x00', 0x109040, 0x0) ioctl$auto_FS_IOC_RESVSP(r2, 0x40305828, 0x4) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC2\x00', 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/rose8/address\x00', 0x752502, 0x0) arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x101202, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) 2.820075371s ago: executing program 2 (id=4004): r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) (fail_nth: 1) 2.259480609s ago: executing program 3 (id=4013): mmap$auto(0x0, 0x412000b, 0x806, 0x18, 0x401, 0x0) madvise$auto(0x110c230000, 0x1, 0x9) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, 0x0) close$auto(r0) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) prctl$auto(0x1000003b, 0x1, 0xffffffffffffffff, 0xb, 0x207) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) madvise$auto(0x2, 0x1010001, 0xffffffff) ioctl$auto_TUNSETGROUP(0xffffffffffffffff, 0x400454ce, &(0x7f00000001c0)=0x3) getsockopt$auto_SO_MARK(r0, 0x1, 0x24, &(0x7f0000000280)='-&^\x00', &(0x7f0000000240)=0xb) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x23, 0x4, 0xfffffffe) socket(0x28, 0x5, 0x91) setsockopt$auto_SO_SNDBUF(r1, 0x5, 0x7, &(0x7f0000000180)='#$\x8f\xcd\x00', 0x5) r2 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0xa2500, 0x0) read$auto_stat_fops_per_vm_kvm_main(r2, 0x0, 0x0) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_BINDER_GET_NODE_INFO_FOR_REF(r3, 0xc018620c, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) prctl$auto(0x1, 0x0, 0x0, 0xffffffffffffffff, 0x9) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@ethernet={0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x20}}, 0x6a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x739618ce, 0x311) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0) 2.134374511s ago: executing program 0 (id=4006): r0 = socket(0x10, 0x2, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800) sendmsg$auto_L2TP_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000028bd7000ffdbdf25000700000800010002"], 0x1c}, 0x1, 0x0, 0x0, 0x40080}, 0x8c1) sendmsg$auto_NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="0e9e000000000000000001000000000000000000cc1e2335346cc18e2df28e6c28c5a5aa09439696f53b156126c0fe6f1c7c2ecedcae5de3789856ea8393af837b92ece75d24110b8a408f563e770684717d18fa9e03854d58c0e1d8e37ef8412280a1e2c4632301e3539c50988efa05395251198b2142ffccb0a579a2f7528f196299ffaebbd1ca845aa335c528629530daf4016aebfd2b59430c2812746a407b36509440dd4d49e71cd268ee7a4a89179cfffd5cd28d02463c27510cc6f1a6", @ANYRES16=0x0, @ANYRESOCT=r1], 0x14}, 0x1, 0x0, 0x0, 0x40004}, 0x4004044) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1700", @ANYBLOB="7f"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.84189937s ago: executing program 3 (id=4007): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, r0, 0x8000) r1 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000002640), 0x241, 0x0) pwritev$auto(r1, &(0x7f0000002980)={&(0x7f0000002900)="dcf510a2ee", 0x4}, 0x9, 0x6, 0xfffffffffffffffd) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sda1\x00', 0x8800, 0x0) cachestat$auto(r2, 0x0, 0x0, 0x0) 1.830945579s ago: executing program 0 (id=4008): sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x5c}, 0x1, 0x0, 0x0, 0x44000}, 0x0) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\xc7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00j(=\xd1<\xf9\x96\x10>\xb9\x05\xbe\xc8v\x81-ILplM\x98\x88J\xfd\x17\xc8K\xdd\x89;T@d\xa3_\xfcb8\x7fA\x11\xba\xefL\xe1L\x8aE}\xa7\x05\b\xd7\xe2\xae\xfek\xbbw\x8c\x88\x1emW-\xf5\x94\xdak\x81\xe4\x1e\x1dS\xf2~>\xb1\xc6\xd1\xee\xc8\x19e\xc1w\xf05%\xd76]\x0f\v\x01\xa4(\xec\xd3\xca\a\x15&nv\xc1}\xfcD', 0x10000000a) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1) 1.682086899s ago: executing program 2 (id=4009): close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setuid$auto(0x800000000008) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fddbdf2503000000040008001400038010000c800c00038008000600", @ANYRES32=r1, @ANYBLOB="12000100898771f1c19f17790481008286dd0000040002"], 0x44}, 0x1, 0x0, 0x0, 0x50}, 0xc800) clone3$auto(&(0x7f0000000000)={0x0, 0x9, 0x7, 0x2, 0x1, 0x87, 0xfffffffffffffffe, 0xb, 0x4, 0x2, 0xcb6}, 0xaa) socket$nl_generic(0x10, 0x3, 0x10) mq_open$auto(&(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa)\xdc\xd7\xfe', 0xa7e, 0x6, &(0x7f0000000100)={0x2, 0x200, 0x5, 0x1f3a1f64}) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0x175, 0x400, 0x9}]}) 1.681264553s ago: executing program 0 (id=4010): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) io_uring_setup$auto(0x2, 0x0) openat$auto_fops_x16_ro_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/dormant_links\x00', 0x10100, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) read$auto(0x3, 0x0, 0x7fffffff) select$auto(0x7, &(0x7f0000000180)={[0xe6, 0x4, 0x73d, 0x1, 0x2, 0x5, 0x8001, 0x0, 0xe, 0xfffffffffffffffe, 0x200, 0x4, 0xfffffffffffffffb, 0xef73, 0x2, 0x7]}, &(0x7f0000000200)={[0x7, 0x8000, 0x5, 0x0, 0x7, 0x8ff8, 0x9, 0xffff, 0x4, 0x2, 0x4, 0x7, 0x5, 0x6, 0x6, 0x10]}, &(0x7f0000000280)={[0x7, 0x9c, 0x1, 0xe7, 0x80, 0x9, 0x3d81b9b7, 0x7, 0x0, 0x6, 0x8, 0x5, 0x0, 0x4, 0x8, 0x6]}, &(0x7f0000000080)={0x40, 0x8}) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) 1.515561175s ago: executing program 1 (id=4011): r0 = openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x2d40c0, 0x0) mmap$auto(0x2, 0x0, 0xdf, 0x2000000000009b72, r0, 0x5) setitimer$auto(0x2, &(0x7f0000000080)={{0x2, 0x5}, {0x0, 0x8}}, 0x0) setitimer$auto(0x2, &(0x7f0000000000)={{0x8000, 0x6}, {0xa4b, 0x6}}, 0x0) unshare$auto(0x40000080) r1 = socket(0x10, 0x2, 0xc) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x34, r2, 0x10, 0x70bd2c, 0x25dfdbfa, {0xa, 0x0, 0xa00}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xa}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x9}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x7fff}]}, 0x34}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010) r3 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) mq_timedsend$auto(r3, &(0x7f0000000100)='\xcf\x8d\xb6\xaa\x80\xd5\xb4_:A\xacz\xdc\xa0\x1d', 0x7, 0x9, &(0x7f0000000240)={0x8000000000009, 0x101}) r4 = socket(0x15, 0x5, 0x0) bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) unshare$auto(0x4) tkill$auto(0x1, 0x9) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r5, 0x40104d02, r5) getsockname$auto(r4, &(0x7f00000001c0)=@generic={0x2c, "3abc673d7096599026c2ac4ac577"}, &(0x7f0000000200)=0x82) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0xc800) r6 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject\x00', 0x40482, 0x0) timer_settime$auto(0x6, 0xfffff001, &(0x7f00000000c0)={{0x7ff, 0x7}, {0xbfa0, 0x1}}, &(0x7f0000000140)={{0x5, 0x1}, {0xd99, 0x7f}}) writev$auto(r6, &(0x7f0000000000)={&(0x7f0000000000), 0x4}, 0x2) rt_sigtimedwait$auto(0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) ioctl$auto_KVM_CHECK_EXTENSION(r7, 0xae03, 0xd4) 1.307809225s ago: executing program 2 (id=4012): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/scsi/sg/allow_dio\x00', 0x101181, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r1) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r3 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r2, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r3}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x100, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000840) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bus/usb/005/001\x00', 0x100, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) socket(0xa, 0x5, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyub\x00', 0x16000, 0x0) write$auto(0x6, 0x0, 0x100000001) ioctl$auto_XFS_IOC_SWAPEXT(r4, 0xc0c0586d, &(0x7f0000000240)={0x2, @inferred, @inferred=r4, 0x4, 0x8, '\x00', {0xbb73, 0x8, 0x3, 0xee00, 0xee01, 0x0, 0x6, 0x3, {0x1, 0x9}, {0x1, 0x9}, {0x0, 0xaea2}, 0x7, 0xb, 0x3, 0x6, 0x1, 0x9, 0x0, 0x5, 0x3, 0x9, '\x00', 0x2, 0x6, 0x2, 0x4}}) setpriority$auto(0x5, r5, 0x80000001) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto_TIOCSTI2(r6, 0x5412, 0x0) 1.306674319s ago: executing program 0 (id=4021): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_steam/parameters/lizard_mode\x00', 0x40481, 0x0) write$auto(r0, &(0x7f0000000000)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e) 1.223765398s ago: executing program 0 (id=4014): madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x20499d, 0x9) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open(&(0x7f0000000100)='./file0\x00', 0x161302, 0x17f) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) read$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmstat\x00', 0x20000, 0x0) adjtimex$auto(0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x141300, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x121002, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x42000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x80000001, 0x7, 0x77, 0x0) adjtimex$auto(0x0) adjtimex$auto(0x0) write$auto(0x3, 0x0, 0xfffffdef) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) r0 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000000), 0x8800, 0x0) ioctl$auto_BTRFS_IOC_DEVICES_READY(r0, 0x90009427, &(0x7f0000001080)={@inferred, "90f76cafdf9350e097b7b41c4bce9027e1427278beb634e4ff4a9bbba4d7f7e88a63db963884a3b5a9618d36b67bc26208db95f99006c537550d92cbc7484a20b3546e5a8518601c773244d928695cd77cbef7d4fb0065edd10d670a4b9f830839535277ad4a024d17a5f6d8ba6e4cad2d70a72aa060b12931eed03755ed42a5412922e6d8d5a98f4b050a5513c6ff1bc983dbbf96b7bd1ae2a514ce48e2d0a50079b4a93680f99112c5bbcd06f22b360f7d07d20fe0a4ed4d2f465d1b0e4ad600a62fd9518c4bef013761ed260766cef5622f52b078105bde182758a9a3e56958d275d9f281386ccba530f8905f57b3f0d3de06b2ef1684af704f73038baffaf929e9d43b2c1131b4a47bda7f18af6cd990419d76076c11cc99425cd9e001ba205b9e587a9e45e8de4fd5a77c31d7dc4c481bec73c665b64ed01215c396e33c19022ca522c509f00291367ed6e2bade11ce0308dafd07dc7601654d75d9db66c3c4595b8788a657208607a8ff2b5d57616668ddc6016d8227a85dafbfa4b7986ba00ecb90c8852f84179d3e7ac2987e72ba9cb2e49486db6670cbf15255cf0be32f5e65fb97d1ce34318cb8251bc47892f36be9420992b9fcf4ead79667866aa2206732d9211a1f4a58438c10ade99862b6563d2bf98bd491aada2b5343f11546154f89d0b22d3a4a1e29ffe58b797917cac97585fa43644075c18ef89f011883f136ef39beb7886d3d28954b460d170859e2168a1d2c552d6fd76e8a76bd11b7025dda3c41759bb6b81fa28916ae9c41eb4a6f5e8d32db3bebc15ed74fa29c3fc0fffba2851e12aa8c8cb20a5432c1c7a89d7dac97cfd7b067491cb489204ad67d7ee39c2bdd9e932a1db11c0600bca8353c1712bb6ca6a1bb41ac80f613e8ba3cfca16169b617e4b5df142b8107bf7300999ed255ffda3c16e36587c5e24bd3e01521cb44b0fd0dab4af45baf2d4bcadb035a656084a3dc9b3cd858a823fecce56b18334556a95ff2cca445e214b3da494b08938a4b4c0e1b90997a53532bc2849c2e12d589d6d99cffeef1535ebb9922d4e5418ecc10df5fed72e1b6307af3cb73fff67e8c5629fc43c88124d510958bc346cfdeac05b7b49a44a3951c0dbe373234a2d50d2e8d8f5dfd75f045b273e7540e524c9d54b3dd11c8456f80066fb6c43df197fafe816be352be2e0393701ec7b1eab80acd83fa00903eba4e2bebb07dd8aabec9847b2c41c93563f5f9da171bf5eb083daa38d686f7911dc02118478db7b658a44bf57762bede58d36030d6297068c62004e7f7caa2aa0fbe20c2a0a6bc64db45016b7395ba4841a4f41ad7e9ef1fd22126ff72f9bfcd3615f00f23368be20cb7a429e4443b04b5ff856435c2311aa1c87e51bda28b49fc7a7f53e815dcd018bad063ab5a0a5b12d2c5e55e3780c399b0f047a58d5244c05e42ebf788cf7d135d00416c18128da52ec36d5eb5b5098838884a14d3d92f088e7831fdbd9d68eafdf75dfb41abf28d2e7fc314745e2d2ea99ed867bab04167058bc7c27124c07f86e772ddddf654bfe997d0382c4a3735fb3a7443fadcf1bf478785a70e0070a141780bac8f4bd64bd15784cec607f6d613f7f3529acb3ff275adfb37f1573761a3f36257780f0e3fba020d62b6eb45e933df36b7d5390e80f413212fd1cbf686d9ca9173a9d5f7dcd185c85f1d525333b2f669b5904943688b7a7198ba851bfd70b5511d2315c5cef3be254c3b49464fb2595f6b91c532189dbac160d6249bd0b8ac3330d1ce0d50bcee80ed87e831cff2f7e64711e1cf3d5da5a6fb8002c57397be9b919ae802710c281def52ee3001b6399c7e4570bbb1a4fba8d877e8fb5f31987a17b918bc44bb68c27d055028b4360b12ed94bbfe46b8f00360438733b605833ad856ac04a0239eae9ca8b2b28d8f66475f4fbeac8439dc62443822c9c38b2536b70b7b00c7d0dc1349eedede1ca6f82da5f033e0f359908fb70269dd0304a086515010bc84a5e895504544a4d4b557d17420bd7e8e4629b9d2a0a7823fe8b54b1a09936811146532e8e0bb8400545dc49103e88f4508bd354638c7111db72e22ab7ec6ad396265928d8ea68e58a7a88bd714b53386ef0b06b204f1a1eb9ba8d0c2296f1d0678ce91ead03eebbcd59fa3fed37bdecb717e8e26a9ebc477d15e6b7c0159227331787d90eaa0d4e69a97319551671e18611c4b547a35fae8a6e01ee1ba4926bb3608306b0a9189c3de83551da3021537c40f51d859d569e38499b76cf8efced00c9e4f3ae00621e4a74c29c72b9a6c62e20f96366c25c5108dd1d25f72dd64db48a63b17fa41aa024bd6390a913a838e4001dad1e656c8dc1304f46e50e3c00f721da50415309886a2dd0841029178c1106dab067406c42abc2734ae6a747c67251661e51cd7dd7e7a5df845f6fb53af99990c40e9505dc5795f0953dcda33619d8c8bfc4d2e9e2414ab80bc77bdb922e75e9d84e4c507324b0a0004e622f5ed89fc6ebc9e49dbd4cad15fa6fc38f012199afd62b6c6c5c58766134dd3cb58af513addac79fd1f776d3a13fbc544c1aeeea3103715069d459cebb455aa173511d68768869ec185ad41054bb0a6ed61c376f869078fa662426f12b427ebb153d12544fdd8c08ba55bdb6be0c94ec82d2b76b399d03da67ab9a242dec3b02d0b788b00fee9249c277b4a295017d02d8e08d6f17eb300f5a1dc9ac5eef3224d7e3ff7027fdf220f0afee826f2882a4f2a78ff767de88c48e79d0adcb55fee06319b60bf0954b8279354900387836d17f9b644875b9907e59a68a3b11403c1f6c3238cace2fa1ec86d04bea605fa86bdcd8cf12c448e662a32a3c59bfcd1cd33425e0b7caee3c88899bc891d7e20c265b03b1642ce0e642088c38a16eb693a644904774b82de1e3bc71a224bf716356211606d878015748a1ad6a58fe691c1727e231380309fdea45f45ee28c3c80ade9e251ddd396d783fac205512c8751fc4f3da9107e33a457b6237e1121088a2c97dc450b46ba6c4850277ba46e7e222713c5fa4f4438470118d1450d4d72f2acf456d94d755791e1f84cd5b680a0a60f6e9458ab87f60f0e391f53784424f48dbd8b58bf28f989f93eb78f82037164eb15eefad2d8eea33a4e1f95a6914abf7f5757a7d3821266363f961d1f2415c7f9f55dab2e8e53fddbba63e45850325667dc951e7a58108b31556dd47cc40a9963159beffb1d480ceddff6245f553cbb78223e98db356e4bdcbe9953fcdd6527827eae5419f0320825ce2648e14e29e848c6c2e7b01417a2b9fd4f069c3aeedf983cd4412af2f82264c5d4f7a956582b1041564e5d6ab4fee2ca9ebffcb27218c99d8b6541477f2b5b9c4ae10d60c748f6999010b40e99ef45fe453fb79cefe2e61e4a3e3fc6fb1ce42ad26e41f2a02b52c598a0d5629000429824760e01cf4fd5ef33aa3ccc6d3a718b1f7c2ba5fbe7b0eec2fa7cc27911417ce434809aa874c219c635ae7cefb7968e1b3a62497eaaf1eee046967cfd0c9f6540e05d3f415aae01a11a1f9824a767a3327f0dac933db32a04a7c8e82ab2dd0def4bc847d06a4469fd85ce58da8fb3c40a608bfccb6277fbda2a59cbbb0362dcb0594e15612d50b3a4b7de1435a6b4138008ef5115ead122fd080aa43b435861dd928b1a18e807fab349c7fc0e87f252692bef5b5db3187eaf876b574ca7ef7199091d9a1e13094cd9efea25fc8ce0fee0f9b3be269ef9bfef83f179e8ddd1ef429f7144e58f76d87d5c9256235960b9546645be7557f43d56fbebaa2fe98600320a50832ab33540afde9524551c3cd3460e585fef92e6bd633e6c422d99b1d3875ea9d4c66a1b5536792dfae3aa29cba98c00d595ff2f3e62165d1a115e25b8b52ef05c88b2e348fff927eb8a3a8f82123547368cb6b23ff3a956e55eb5580db2a10b5ecd08f65772a02fbee728ebfc61578ffd4c5e27cfb2acbeb7d2d3be6b438c63fd61b67856f6bcf3387ee551827266ea98c4d074a86b8839e08a7bd65a309f3d05291fd02ede1b865e92070dcc4625e2bd6080c49d092da1e8873fdd6036d5ffe9f4c0c8b46e9aa4a3643a87e5a5e85e4a55863537e5b5154871d93b7a42edc728d5a91da814097433821e9c083823edab3d3e4639c03d60a9f8ed46afcfe0a1349e0d94d88e71eed3cc84bf5af7eb50a8ae4b049b9efd394a2337e6db8342c0ca78b9306222a475db6d7925fcb484cf711dbd03bb75fa77b7da29a86f0b5128f0c87c0d797c91ed583705790826f711a087db787be9c56bb7fbdcd2b408104716866295e5da3075c42fd0307779ee46f7367de7c941ff72a8c038a5c020f1e238620e77ee056119ae7f7951d995a5d5e2a863a558ad8d29f0450e5a9262df963be362e225c27b205e97e21f18c93e4bc032dc39e4c69703b1117f14ed080e7db327a4fab222c7767c683af3d7c0b2d2bb4c7ccc92eec8666fb6d707383ee3fdcf77a649e9efb3d95aef25fcbb73323eed03a6dc1ab01eadaf86ea70799ab33e06933528f98398296f21fb3fbfdbaf4c0ee7a68c445fe9d93b8bbbf6485415856ebba787ee7b792335d70436d7d546f0e76972691ff6142e5eb94f68789c35d9b4f0948571080850ab113ad2fcd5511f9e58bcb96465584c0d41bd05bb02777a4c53cd1c184a8ef9b0d438a018c2507036a96d1009144672935dd1b3c7c623b30d5151c32e326ffa5642fa044f5c31d78837814cda04628b3afc952216f896025ea58bac9541c578a43ad4906cd7ba0612e29592d5df29607f03ffefd1b9c48d08c93923bc94f645eae9fd6b7634980bba114f74bd5ed18f594016a6476434b04461c4d3b34fe200e5450869799f298cc29ffc4ea57219a453c6c5803d5aa04757fce3d5aa26467d3fb684a6c6af8d70ae8757d232172570b0af0f6b7695cb9940cfb06aeaef049d4d6603919c30b26fdaf4f36f6d9390c1951f027e79b5ac6fc690872a7d197a57b07d5547909c79e106e336ce55be78b2498857eaa2dd7685ad9bfd8537d6543c0881f1180da6531018876858ab1583d91cf8bb04335b832af8efe9df32bd9a21d01c73de685c9594c0ca550d4918ba27c48feb590f9075329004350ab97be1bac240659d590e1a368a2a1df7966abd8d64810d88988d2ec08c85888b7d1644ed805f446769b000bbc376a0f275bc079f16238fcd9c7826c06dc8993d8a2e788ffec2a1f03bed3a2758a8071d714079e245e3afaadc49355570358212112092783c35e5de496ba6608a3436c8ac3139f78eaedb61aed51d4098438219f5099da1d8fb92e73c396876e5bd8c4349b3456454246d3bd0803e71d7813edacf216cfbb0cb1bcdf1bbf489637d6c91da9bc729de9aedcee243da70744c1c3051edd7d7e444c817b64219757d542831e521bf8fb7c488497c232bc1dbc01f46d42448b9a0212f92e97a4c6a846b4909d556dbf8db2f74ec7aae264a85555fd605416955390f62d82e50a0038b5cbda96011c7eefc8f4610afc088669a4746363215547e519d21265af8fd5579f99581afc398d83b62030c2d9d731e0d1549df34e5a66dd20027cf19ce4fbef7ff057331eca9b37c93f4b8f8d1ff98ccd4549c6f46b92e1d2a840c82864f584815d867e13a91117c2c25c7980df8af39b367e35d928714d17c1a51a636d0d761e7c83f68d688e6e1ff91da5b60e9ace8aa814f932bb42ab96c8de6dafa1cf111c3cfe45ce8c5b0b2764b491891f35c86474316c8210906e05341b00"}) 799.978639ms ago: executing program 1 (id=4015): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000040)=0x5) r3 = epoll_create$auto(0x8800001) epoll_ctl$auto(r3, 0x1, r1, 0x0) r4 = open(0x0, 0x261c2, 0x84) close_range$auto(0x2, 0x8000, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) io_uring_setup$auto(0x9, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r7 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000280)={'wg0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r9, r8, 0x4, 0x401, r7, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x3}, 0xc) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc) bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x8000000000000001, 0x9, 0x5, 0xf870e9c, 0x7, 0x8}, 0x9) bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x4}, 0xc) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) 407.27654ms ago: executing program 3 (id=4016): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x3, 0x4001}, 0x4006b) mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) unshare$auto(0x40000080) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/geneve0/disable_policy\x00', 0x40180, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/watchdog_thresh\x00', 0x20402, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r1 = socket(0x26, 0x5, 0x8c68) ioperm$auto(0x4, 0x100000001, 0x4000005) futex_waitv$auto(0x0, 0x7ff, 0x8, &(0x7f00000000c0)={0x1000000004, 0x10}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = ioctl$auto_TUNATTACHFILTER(r1, 0x401054d5, 0x0) ioctl$auto_virtual_ncidev_fops_virtual_ncidev(r4, 0x6, 0x0) r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40146f2c, 0x0) unshare$auto(0x40000080) setsockopt$auto(0xffffffffffffffff, 0xd0, 0x800000e4, 0x0, 0x569) 375.516406ms ago: executing program 1 (id=4017): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) socket(0x2, 0x1, 0x7fffffff) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r1) sendmsg$auto_TCP_METRICS_CMD_DEL(r1, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x40) close_range$auto(0x2, 0x8, 0x0) write$auto(0x3, 0x0, 0x7fffffff) io_uring_register$auto(0x2, 0x1a, &(0x7f0000000000), 0x1) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, 0x0, 0x6a) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x2, 0x7) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@can, 0x18) ppoll$auto(&(0x7f0000000200)={0xffffffffffffffff, 0x6, 0x6}, 0x8, 0x0, 0x0, 0x8) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) select$auto(0x2, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x5, 0x3, 0x1ffe000, 0x5, 0x4, 0x9, 0xf, 0xa657, 0x203, 0xd3, 0x1]}, 0x0, 0x0, 0x0) select$auto(0x6, &(0x7f0000000100)={[0x8, 0x10, 0x2, 0x3, 0x1, 0x5, 0x6, 0xa0000000, 0x7f, 0x3, 0x7, 0x6, 0x4, 0x1, 0x3, 0x9]}, &(0x7f0000000180)={[0x7, 0x14e8, 0x3, 0x6, 0x4, 0x4, 0x4, 0x2, 0x2e, 0x3, 0x8, 0xffffffffffffff7f, 0x4, 0x80000000, 0x7, 0xf]}, &(0x7f0000000240)={[0x0, 0x101, 0x9a, 0x6, 0x7fffffff, 0x8, 0x8, 0x1, 0x0, 0x3, 0x81, 0x1, 0x5, 0x0, 0x1, 0x1]}, &(0x7f00000002c0)={0x6bb, 0x80000000}) 315.156545ms ago: executing program 2 (id=4018): r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0) ioctl$auto_KVM_CHECK_EXTENSION(r1, 0xae03, 0x4a) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r2, 0x120, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x9}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x7}, @NL80211_ATTR_TDLS_SUPPORT={0x4}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000000}, 0x4040000) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x0) getsockopt$auto_SO_RCVLOWAT(r3, 0x0, 0x12, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0x19a) ioctl$auto_BTRFS_IOC_ENCODED_WRITE_32(r3, 0x40789440, &(0x7f00000000c0)={0x6754, 0x5, 0xaf7, 0x8, 0x2, 0x4, 0x5800000000000000, 0xeea, 0x8, "57ef0f1414cd3c1c67b49c20aa95bbbfd2b68fae19263df84167c68a423e889e2cbcb6b41dc07aa2dfffe24c19d2b2c3a50f4133f72a36f28bbcf4c8ec369de0"}) read$auto_tracing_entries_fops_trace(r3, &(0x7f0000000180)=""/50, 0x32) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) 208.46967ms ago: executing program 0 (id=4019): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x3, 0x1000000001ee, 0x69c) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = prctl$auto(0x5, 0x80000000, 0x0, 0x78, 0x8) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffffa}, 0x6, 0x2, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) syz_clone(0x21000000, 0x0, 0x0, 0x0, 0x0, 0x0) shmdt$auto(&(0x7f0000000000)='(\x00') mmap$auto(0x1000, 0x4, 0xdf, 0x9b72, r0, 0x3) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x201, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0) socket(0x10, 0x3, 0xa) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x149942, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x400, 0x0) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000000c0), 0x109002, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video67\x00', 0x169001, 0x0) ioctl$auto(r3, 0xc0285629, r3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) 166.512444ms ago: executing program 2 (id=4020): sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x71) 0s ago: executing program 2 (id=4022): r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) kernel console output (not intermixed with test programs): 23894] [U] [ 872.536382][T23894] [U] [ 872.539099][T23894] [U] [ 872.541777][T23894] [U] [ 872.544453][T23894] [U] [ 872.584002][T23894] [U] [ 872.586714][T23894] [U] [ 872.589387][T23894] [U] [ 872.592066][T23894] [U] [ 872.638744][T23894] [U] [ 872.641490][T23894] [U] [ 872.644169][T23894] [U] [ 872.646847][T23894] [U] [ 872.682878][T23894] [U] [ 872.685588][T23894] [U] [ 872.688263][T23894] [U] [ 872.690932][T23894] [U] [ 872.754050][T23894] [U] [ 872.756760][T23894] [U] [ 872.759434][T23894] [U] [ 872.762105][T23894] [U] [ 872.814663][T23894] [U] [ 872.817374][T23894] [U] [ 872.820046][T23894] [U] [ 872.822719][T23894] [U] [ 872.877725][T23894] [U] [ 873.796106][T23935] FAULT_INJECTION: forcing a failure. [ 873.796106][T23935] name fail_futex, interval 1, probability 0, space 0, times 0 [ 873.826409][T23935] CPU: 0 UID: 0 PID: 23935 Comm: syz.2.3438 Tainted: G L syzkaller #0 PREEMPT(full) [ 873.826436][T23935] Tainted: [L]=SOFTLOCKUP [ 873.826442][T23935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 873.826452][T23935] Call Trace: [ 873.826458][T23935] [ 873.826465][T23935] dump_stack_lvl+0x100/0x190 [ 873.826493][T23935] should_fail_ex.cold+0x5/0xa [ 873.826512][T23935] get_futex_key+0x1d2/0x1620 [ 873.826541][T23935] ? __pfx_get_futex_key+0x10/0x10 [ 873.826567][T23935] futex_wake+0xea/0x530 [ 873.826592][T23935] ? __pfx_futex_wake+0x10/0x10 [ 873.826614][T23935] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 873.826642][T23935] do_futex+0x32b/0x350 [ 873.826661][T23935] ? __pfx_do_futex+0x10/0x10 [ 873.826680][T23935] ? __pfx___might_resched+0x10/0x10 [ 873.826700][T23935] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 873.826813][T23935] __x64_sys_futex+0x34f/0x4d0 [ 873.826836][T23935] ? __pfx___x64_sys_futex+0x10/0x10 [ 873.826863][T23935] do_syscall_64+0x106/0xf80 [ 873.826881][T23935] ? clear_bhb_loop+0x40/0x90 [ 873.826899][T23935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 873.826915][T23935] RIP: 0033:0x7ff1c719c799 [ 873.826929][T23935] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 873.826944][T23935] RSP: 002b:00007ff1c803a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 873.826960][T23935] RAX: ffffffffffffffda RBX: 00007ff1c7415fa8 RCX: 00007ff1c719c799 [ 873.826971][T23935] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff1c7415fac [ 873.826980][T23935] RBP: 00007ff1c7415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 873.826990][T23935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 873.826999][T23935] R13: 00007ff1c7416038 R14: 00007ffd59c72fd0 R15: 00007ffd59c730b8 [ 873.827019][T23935] [ 874.387207][T23940] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3441'. [ 874.473597][T23947] [U]  [ 874.476396][T23947] [U] [ 874.479067][T23947] [U] [ 874.481738][T23947] [U] [ 874.522956][T23947] [U] [ 874.525665][T23947] [U] [ 874.528335][T23947] [U] [ 874.531008][T23947] [U] [ 874.556557][T23947] [U] [ 874.559266][T23947] [U] [ 874.561939][T23947] [U] [ 874.564614][T23947] [U] [ 874.598169][T23947] [U] [ 874.600878][T23947] [U] [ 874.603551][T23947] [U] [ 874.606221][T23947] [U] [ 874.644719][T23947] [U] [ 874.647434][T23947] [U] [ 874.650111][T23947] [U] [ 874.652781][T23947] [U] [ 874.694457][T23947] [U] [ 874.697167][T23947] [U] [ 874.699848][T23947] [U] [ 874.702519][T23947] [U] [ 874.761165][T23947] [U] [ 874.763875][T23947] [U] [ 874.766590][T23947] [U] [ 874.769264][T23947] [U] [ 874.843802][T23947] [U] [ 874.846514][T23947] [U] [ 874.849191][T23947] [U] [ 874.851877][T23947] [U] [ 874.887152][T23947] [U] [ 874.889867][T23947] [U] [ 874.892552][T23947] [U] [ 874.895225][T23947] [U] [ 874.940944][T23947] [U] [ 874.943658][T23947] [U] [ 874.946340][T23947] [U] [ 874.949011][T23947] [U] [ 874.989439][T23947] [U] [ 874.992154][T23947] [U] [ 874.994852][T23947] [U] [ 874.997523][T23947] [U] [ 875.031161][T23947] [U] [ 875.033875][T23947] [U] [ 875.036548][T23947] [U] [ 875.039220][T23947] [U] [ 875.072600][T23947] [U] [ 875.075329][T23947] [U] [ 875.078005][T23947] [U] [ 875.080695][T23947] [U] [ 875.121677][T23947] [U] [ 875.124389][T23947] [U] [ 875.127062][T23947] [U] [ 875.129734][T23947] [U] [ 875.197506][T23947] [U] [ 875.200219][T23947] [U] [ 875.202898][T23947] [U] [ 875.205570][T23947] [U] [ 875.293194][T23947] [U] [ 875.676501][ T29] audit: type=1800 audit(4294985656.760:169): pid=23979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3446" name="lu_gp_id" dev="configfs" ino=93276 res=0 errno=0 [ 876.795458][T24009] [U]  [ 876.798253][T24009] [U] [ 876.800925][T24009] [U] [ 876.803595][T24009] [U] [ 876.898206][T24009] [U] [ 876.900930][T24009] [U] [ 876.903696][T24009] [U] [ 876.906388][T24009] [U] [ 876.975390][T24009] [U] [ 876.978109][T24009] [U] [ 876.980783][T24009] [U] [ 876.983454][T24009] [U] [ 877.026347][T24009] [U] [ 877.029057][T24009] [U] [ 877.031731][T24009] [U] [ 877.034399][T24009] [U] [ 877.046049][T24005] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3455'. [ 877.083394][T24009] [U] [ 877.086110][T24009] [U] [ 877.088796][T24009] [U] [ 877.091464][T24009] [U] [ 877.127011][T24009] [U] [ 877.129717][T24009] [U] [ 877.132390][T24009] [U] [ 877.135063][T24009] [U] [ 877.185198][T24009] [U] [ 877.187908][T24009] [U] [ 877.190580][T24009] [U] [ 877.193252][T24009] [U] [ 877.259398][T24009] [U] [ 877.262122][T24009] [U] [ 877.264800][T24009] [U] [ 877.267482][T24009] [U] [ 877.313334][T24009] [U] [ 877.316048][T24009] [U] [ 877.318728][T24009] [U] [ 877.321399][T24009] [U] [ 877.361941][T24009] [U] [ 877.364653][T24009] [U] [ 877.367326][T24009] [U] [ 877.369995][T24009] [U] [ 877.413863][T24009] [U] [ 877.416572][T24009] [U] [ 877.419341][T24009] [U] [ 877.422014][T24009] [U] [ 877.461502][T24009] [U] [ 877.464216][T24009] [U] [ 877.466888][T24009] [U] [ 877.469993][T24009] [U] [ 877.524136][T24009] [U] [ 877.526843][T24009] [U] [ 877.529548][T24009] [U] [ 877.532218][T24009] [U] [ 877.599374][T24009] [U] [ 877.602084][T24009] [U] [ 877.604756][T24009] [U] [ 877.607429][T24009] [U] [ 877.665461][T24009] [U] [ 877.668177][T24009] [U] [ 877.670938][T24009] [U] [ 877.673607][T24009] [U] [ 877.727553][T24009] [U] [ 877.966816][T24030] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3460'. [ 878.025055][T24030] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3460'. [ 878.545416][ T29] audit: type=1800 audit(4294985659.655:170): pid=24045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3462" name="lu_gp_id" dev="configfs" ino=93646 res=0 errno=0 [ 879.831411][T24068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3470'. [ 879.870316][T24074] [U]  [ 879.873200][T24074] [U] [ 879.875896][T24074] [U] [ 879.878569][T24074] [U] [ 879.883079][T24068] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3470'. [ 879.915587][T24074] [U] [ 879.918294][T24074] [U] [ 879.920965][T24074] [U] [ 879.923656][T24074] [U] [ 879.957342][T24074] [U] [ 879.960087][T24074] [U] [ 879.962767][T24074] [U] [ 879.965442][T24074] [U] [ 879.991435][T24080] FAULT_INJECTION: forcing a failure. [ 879.991435][T24080] name failslab, interval 1, probability 0, space 0, times 0 [ 880.033598][T24074] [U] [ 880.036482][T24074] [U] [ 880.039156][T24074] [U] [ 880.041837][T24074] [U] [ 880.073099][T24080] CPU: 0 UID: 0 PID: 24080 Comm: syz.0.3472 Tainted: G L syzkaller #0 PREEMPT(full) [ 880.073125][T24080] Tainted: [L]=SOFTLOCKUP [ 880.073131][T24080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 880.073140][T24080] Call Trace: [ 880.073146][T24080] [ 880.073153][T24080] dump_stack_lvl+0x100/0x190 [ 880.073181][T24080] should_fail_ex.cold+0x5/0xa [ 880.073198][T24080] ? tomoyo_realpath_from_path+0xb6/0x690 [ 880.073217][T24080] should_failslab+0xc2/0x120 [ 880.073233][T24080] __kmalloc_noprof+0xe0/0x850 [ 880.073259][T24080] tomoyo_realpath_from_path+0xb6/0x690 [ 880.073281][T24080] tomoyo_path_number_perm+0x23c/0x580 [ 880.073304][T24080] ? tomoyo_path_number_perm+0x22e/0x580 [ 880.073329][T24080] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 880.073371][T24080] ? find_held_lock+0x2b/0x80 [ 880.073385][T24080] ? __fget_files+0x215/0x3d0 [ 880.073397][T24080] ? hook_file_ioctl_common+0x146/0x410 [ 880.073501][T24080] ? __fget_files+0x21f/0x3d0 [ 880.073518][T24080] security_file_ioctl+0xd3/0x230 [ 880.073570][T24080] __x64_sys_ioctl+0xb7/0x210 [ 880.073593][T24080] do_syscall_64+0x106/0xf80 [ 880.073611][T24080] ? clear_bhb_loop+0x40/0x90 [ 880.073630][T24080] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 880.073646][T24080] RIP: 0033:0x7fa7deb9c799 [ 880.073659][T24080] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 880.073673][T24080] RSP: 002b:00007fa7dcdf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 880.073688][T24080] RAX: ffffffffffffffda RBX: 00007fa7dee16090 RCX: 00007fa7deb9c799 [ 880.073698][T24080] RDX: 0000000000000000 RSI: 0000000000005412 RDI: 0000000000000007 [ 880.073707][T24080] RBP: 00007fa7dcdf6090 R08: 0000000000000000 R09: 0000000000000000 [ 880.073716][T24080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 880.073725][T24080] R13: 00007fa7dee16128 R14: 00007fa7dee16090 R15: 00007ffc4e374aa8 [ 880.073745][T24080] [ 881.145308][T24074] [U] [ 881.148018][T24074] [U] [ 881.150689][T24074] [U] [ 881.153358][T24074] [U] [ 881.203630][T24074] [U] [ 881.206340][T24074] [U] [ 881.209011][T24074] [U] [ 881.211682][T24074] [U] [ 881.254985][T24074] [U] [ 881.257704][T24074] [U] [ 881.260380][T24074] [U] [ 881.263047][T24074] [U] [ 881.304406][T24074] [U] [ 881.307111][T24074] [U] [ 881.309778][T24074] [U] [ 881.312447][T24074] [U] [ 881.354101][T24074] [U] [ 881.356805][T24074] [U] [ 881.359476][T24074] [U] [ 881.362142][T24074] [U] [ 881.405509][T24074] [U] [ 881.408217][T24074] [U] [ 881.410891][T24074] [U] [ 881.413557][T24074] [U] [ 881.460211][T24074] [U] [ 881.462926][T24074] [U] [ 881.465603][T24074] [U] [ 881.468272][T24074] [U] [ 881.508734][T24074] [U] [ 881.511442][T24074] [U] [ 881.514139][T24074] [U] [ 881.516819][T24074] [U] [ 881.565763][T24074] [U] [ 881.568477][T24074] [U] [ 881.571177][T24074] [U] [ 881.573857][T24074] [U] [ 881.649500][T24080] ERROR: Out of memory at tomoyo_realpath_from_path. [ 881.716669][T24087] [U] [ 882.296267][ T29] audit: type=1800 audit(4294985663.415:171): pid=24127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3476" name="lu_gp_id" dev="configfs" ino=93860 res=0 errno=0 [ 882.335506][T24126] bridge_slave_1: left allmulticast mode [ 882.370466][T24126] bridge_slave_1: left promiscuous mode [ 882.405967][T24126] bridge0: port 2(bridge_slave_1) entered disabled state [ 882.960172][T24143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3482'. [ 883.026419][T24143] netlink: 25 bytes leftover after parsing attributes in process `syz.2.3482'. [ 883.280344][T24150] [U]  [ 883.283146][T24150] [U] [ 883.285821][T24150] [U] [ 883.288491][T24150] [U] [ 883.349964][T24155] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3486'. [ 883.364734][T24150] [U] [ 883.367438][T24150] [U] [ 883.370116][T24150] [U] [ 883.372786][T24150] [U] [ 883.409706][T24150] [U] [ 883.412429][T24150] [U] [ 883.415198][T24150] [U] [ 883.417867][T24150] [U] [ 883.482916][T24150] [U] [ 883.485656][T24150] [U] [ 883.488329][T24150] [U] [ 883.491002][T24150] [U] [ 883.558870][T24150] [U] [ 883.561582][T24150] [U] [ 883.564256][T24150] [U] [ 883.566922][T24150] [U] [ 883.614059][T24150] [U] [ 883.616771][T24150] [U] [ 883.619441][T24150] [U] [ 883.622109][T24150] [U] [ 883.685190][T24150] [U] [ 883.687912][T24150] [U] [ 883.690585][T24150] [U] [ 883.693252][T24150] [U] [ 883.742403][T24150] [U] [ 883.745116][T24150] [U] [ 883.747787][T24150] [U] [ 883.750458][T24150] [U] [ 883.845839][T24150] [U] [ 883.848552][T24150] [U] [ 883.851225][T24150] [U] [ 883.853896][T24150] [U] [ 883.936355][T24150] [U] [ 883.939082][T24150] [U] [ 883.941755][T24150] [U] [ 883.944433][T24150] [U] [ 884.023694][T24150] [U] [ 884.026403][T24150] [U] [ 884.029074][T24150] [U] [ 884.031749][T24150] [U] [ 884.067363][T24150] [U] [ 884.070070][T24150] [U] [ 884.072749][T24150] [U] [ 884.075416][T24150] [U] [ 884.172633][T24150] [U] [ 884.175341][T24150] [U] [ 884.178009][T24150] [U] [ 884.180678][T24150] [U] [ 884.233102][ T5825] usb usb40-port2: attempt power cycle [ 884.255877][T24150] [U] [ 884.258583][T24150] [U] [ 884.261258][T24150] [U] [ 884.263952][T24150] [U] [ 884.350626][T24150] [U] [ 884.799805][ T5825] usb usb40-port2: unable to enumerate USB device [ 885.075366][T24218] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3495'. [ 885.122692][T24218] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3495'. [ 885.450214][T24237] [U] 0x00060000 [ 885.453796][T24237] [U] [ 885.456477][T24237] [U] [ 885.459144][T24237] [U] [ 885.461824][T24237] [U] [ 885.541427][ T29] audit: type=1800 audit(4294985666.682:172): pid=24241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3496" name="lu_gp_id" dev="configfs" ino=94318 res=0 errno=0 [ 885.573725][T24237] [U] [ 885.576429][T24237] [U] [ 885.579099][T24237] [U] [ 885.581769][T24237] [U] [ 885.653928][T24237] [U] [ 885.656638][T24237] [U] [ 885.659309][T24237] [U] [ 885.662007][T24237] [U] [ 885.726156][T24237] [U] [ 885.728863][T24237] [U] [ 885.731534][T24237] [U] [ 885.734204][T24237] [U] [ 885.786730][T24237] [U] [ 885.789441][T24237] [U] [ 885.792116][T24237] [U] [ 885.794788][T24237] [U] [ 885.863011][T24237] [U] [ 885.865733][T24237] [U] [ 885.868407][T24237] [U] [ 885.871076][T24237] [U] [ 885.919247][T24237] [U] [ 885.921960][T24237] [U] [ 885.924633][T24237] [U] [ 885.927299][T24237] [U] [ 885.961654][T24237] [U] [ 885.964367][T24237] [U] [ 885.967048][T24237] [U] [ 885.969715][T24237] [U] [ 886.005389][T24237] [U] [ 886.008095][T24237] [U] [ 886.010771][T24237] [U] [ 886.013438][T24237] [U] [ 886.038548][T24237] [U] [ 886.041253][T24237] [U] [ 886.044011][T24237] [U] [ 886.046679][T24237] [U] [ 886.104116][T24237] [U] [ 886.106822][T24237] [U] [ 886.109493][T24237] [U] [ 886.112164][T24237] [U] [ 886.185216][T24237] [U] [ 886.187925][T24237] [U] [ 886.190598][T24237] [U] [ 886.193270][T24237] [U] [ 886.257945][T24231] FAULT_INJECTION: forcing a failure. [ 886.257945][T24231] name fail_futex, interval 1, probability 0, space 0, times 0 [ 886.336755][T24237] [U] [ 886.339460][T24237] [U] [ 886.342145][T24237] [U] [ 886.344817][T24237] [U] [ 886.380432][T24231] CPU: 0 UID: 0 PID: 24231 Comm: syz.3.3498 Tainted: G L syzkaller #0 PREEMPT(full) [ 886.380458][T24231] Tainted: [L]=SOFTLOCKUP [ 886.380464][T24231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 886.380473][T24231] Call Trace: [ 886.380478][T24231] [ 886.380485][T24231] dump_stack_lvl+0x100/0x190 [ 886.380513][T24231] should_fail_ex.cold+0x5/0xa [ 886.380528][T24231] ? __fput+0x68a/0xb40 [ 886.380547][T24231] get_futex_key+0x295/0x1620 [ 886.380567][T24231] ? __pfx_get_futex_key+0x10/0x10 [ 886.380583][T24231] ? lock_acquire+0x1cf/0x380 [ 886.380608][T24231] futex_wake+0xea/0x530 [ 886.380632][T24231] ? __pfx_futex_wake+0x10/0x10 [ 886.380653][T24231] ? exit_mm_release+0x19/0x30 [ 886.380677][T24231] do_futex+0x32b/0x350 [ 886.380695][T24231] ? __pfx_do_futex+0x10/0x10 [ 886.380713][T24231] ? __might_fault+0xc5/0x140 [ 886.380751][T24231] mm_release+0x24a/0x2f0 [ 886.380767][T24231] do_exit+0x704/0x2b60 [ 886.380785][T24231] ? __pfx___might_resched+0x10/0x10 [ 886.380810][T24231] ? __pfx_do_exit+0x10/0x10 [ 886.380828][T24231] ? do_raw_spin_lock+0x128/0x260 [ 886.380849][T24231] ? find_held_lock+0x2b/0x80 [ 886.380862][T24231] ? get_signal+0x7e0/0x21e0 [ 886.380879][T24231] do_group_exit+0xd5/0x2a0 [ 886.380900][T24231] get_signal+0x1ec7/0x21e0 [ 886.380917][T24231] ? sctp_inet_connect+0x16e/0x220 [ 886.380944][T24231] ? __pfx_get_signal+0x10/0x10 [ 886.380959][T24231] ? sctp_inet_connect+0x173/0x220 [ 886.380984][T24231] arch_do_signal_or_restart+0x91/0x770 [ 886.381002][T24231] ? __sys_connect+0xe4/0x170 [ 886.381018][T24231] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 886.381047][T24231] exit_to_user_mode_loop+0x86/0x4a0 [ 886.381069][T24231] do_syscall_64+0x668/0xf80 [ 886.381087][T24231] ? clear_bhb_loop+0x40/0x90 [ 886.381105][T24231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 886.381120][T24231] RIP: 0033:0x7fae70f9c799 [ 886.381134][T24231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 886.381148][T24231] RSP: 002b:00007fae71e8d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 886.381163][T24231] RAX: fffffffffffffe00 RBX: 00007fae71215fa0 RCX: 00007fae70f9c799 [ 886.381173][T24231] RDX: 0000000000000054 RSI: 00002000000000c0 RDI: 0000000000000003 [ 886.381182][T24231] RBP: 00007fae71032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 886.381191][T24231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 886.381200][T24231] R13: 00007fae71216038 R14: 00007fae71215fa0 R15: 00007ffdd3a37a98 [ 886.381220][T24231] [ 886.815934][T24269] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 886.822084][T24269] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 886.828601][T24269] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 886.834667][T24269] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 887.378826][T24292] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3508'. [ 887.432353][T24292] netlink: 25 bytes leftover after parsing attributes in process `syz.2.3508'. [ 887.521093][T24237] [U] [ 888.262512][ T29] audit: type=1800 audit(4294985669.416:173): pid=24324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3510" name="lu_gp_id" dev="configfs" ino=94607 res=0 errno=0 [ 888.927734][ T5835] Bluetooth: hci7: command 0x0c1a tx timeout [ 888.933767][ T5824] Bluetooth: hci16: command 0x0c1a tx timeout [ 888.940120][ T5824] Bluetooth: hci5: command 0x0c1a tx timeout [ 888.946138][ T5824] Bluetooth: hci51: command 0x0c1a tx timeout [ 889.297209][T24357] FAULT_INJECTION: forcing a failure. [ 889.297209][T24357] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 889.373817][T24357] CPU: 0 UID: 0 PID: 24357 Comm: syz.2.3524 Tainted: G L syzkaller #0 PREEMPT(full) [ 889.373844][T24357] Tainted: [L]=SOFTLOCKUP [ 889.373850][T24357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 889.373859][T24357] Call Trace: [ 889.373865][T24357] [ 889.373872][T24357] dump_stack_lvl+0x100/0x190 [ 889.373900][T24357] should_fail_ex.cold+0x5/0xa [ 889.373918][T24357] _copy_from_user+0x2e/0xd0 [ 889.373940][T24357] copy_msghdr_from_user+0x9f/0x4f0 [ 889.373965][T24357] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 889.373993][T24357] ? __pfx___schedule+0x10/0x10 [ 889.374014][T24357] ___sys_sendmsg+0x106/0x1e0 [ 889.374037][T24357] ? __pfx____sys_sendmsg+0x10/0x10 [ 889.374069][T24357] ? find_held_lock+0x2b/0x80 [ 889.374095][T24357] __sys_sendmmsg+0x205/0x430 [ 889.374116][T24357] ? __pfx___sys_sendmmsg+0x10/0x10 [ 889.374143][T24357] ? __pfx_do_futex+0x10/0x10 [ 889.374161][T24357] ? __pfx_do_sys_openat2+0x10/0x10 [ 889.374187][T24357] ? __x64_sys_openat+0x12d/0x210 [ 889.374210][T24357] ? xfd_validate_state+0x129/0x190 [ 889.374236][T24357] __x64_sys_sendmmsg+0x9c/0x100 [ 889.374253][T24357] ? lockdep_hardirqs_on+0x78/0x100 [ 889.374271][T24357] do_syscall_64+0x106/0xf80 [ 889.374288][T24357] ? clear_bhb_loop+0x40/0x90 [ 889.374306][T24357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 889.374322][T24357] RIP: 0033:0x7ff1c719c799 [ 889.374334][T24357] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 889.374349][T24357] RSP: 002b:00007ff1c803a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 889.374364][T24357] RAX: ffffffffffffffda RBX: 00007ff1c7415fa0 RCX: 00007ff1c719c799 [ 889.374375][T24357] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 889.374385][T24357] RBP: 00007ff1c7232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 889.374396][T24357] R10: 0000000000000f00 R11: 0000000000000246 R12: 0000000000000000 [ 889.374406][T24357] R13: 00007ff1c7416038 R14: 00007ff1c7415fa0 R15: 00007ffd59c730b8 [ 889.374425][T24357] [ 890.618806][ T29] audit: type=1800 audit(4294985671.778:174): pid=24376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3527" name="version" dev="configfs" ino=94927 res=0 errno=0 [ 890.990935][T24389] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3530'. [ 891.705162][ T29] audit: type=1800 audit(4294985672.884:175): pid=24403 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3534" name="lu_gp_id" dev="configfs" ino=95081 res=0 errno=0 [ 893.725705][ T29] audit: type=1800 audit(4294985674.914:176): pid=24457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3548" name="lu_gp_id" dev="configfs" ino=95421 res=0 errno=0 [ 893.846605][T24447] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 893.883366][T24447] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 893.904943][T24447] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 893.929126][T24447] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 893.962592][T24446] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 894.930744][T24493] [U]  [ 894.942621][T24493] [U] [ 894.945307][T24493] [U] [ 894.947974][T24493] [U] [ 895.027538][ T29] audit: type=1800 audit(4294985676.211:177): pid=24489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3558" name="lu_gp_id" dev="configfs" ino=95657 res=0 errno=0 [ 895.079529][T24493] [U] [ 895.082240][T24493] [U] [ 895.084916][T24493] [U] [ 895.087590][T24493] [U] [ 895.127695][T24493] [U] [ 895.130397][T24493] [U] [ 895.133074][T24493] [U] [ 895.135749][T24493] [U] [ 895.205147][T24493] [U] [ 895.207866][T24493] [U] [ 895.210540][T24493] [U] [ 895.213212][T24493] [U] [ 895.233183][T24340] Bluetooth: hci51: command 0x0c1a tx timeout [ 895.274819][T24493] [U] [ 895.277521][T24493] [U] [ 895.280192][T24493] [U] [ 895.282862][T24493] [U] [ 895.344414][T24493] [U] [ 895.347133][T24493] [U] [ 895.349804][T24493] [U] [ 895.352477][T24493] [U] [ 895.398604][T24493] [U] [ 895.401309][T24493] [U] [ 895.403982][T24493] [U] [ 895.406657][T24493] [U] [ 895.450921][T24493] [U] [ 895.453631][T24493] [U] [ 895.456310][T24493] [U] [ 895.458977][T24493] [U] [ 895.501168][T24493] [U] [ 895.503874][T24493] [U] [ 895.506546][T24493] [U] [ 895.509216][T24493] [U] [ 895.530675][T24493] [U] [ 895.533393][T24493] [U] [ 895.536066][T24493] [U] [ 895.538736][T24493] [U] [ 895.584564][T24493] [U] [ 895.587266][T24493] [U] [ 895.589938][T24493] [U] [ 895.592606][T24493] [U] [ 895.651042][T24493] [U] [ 895.653746][T24493] [U] [ 895.656474][T24493] [U] [ 895.659157][T24493] [U] [ 895.752017][T24493] [U] [ 895.754737][T24493] [U] [ 895.757409][T24493] [U] [ 895.760079][T24493] [U] [ 895.822302][T24493] [U] [ 895.825014][T24493] [U] [ 895.827683][T24493] [U] [ 895.830354][T24493] [U] [ 895.874559][T24493] [U] [ 895.931298][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 895.937336][T24340] Bluetooth: hci16: command 0x0c1a tx timeout [ 895.943707][ T51] Bluetooth: hci5: command 0x0c1a tx timeout [ 896.024464][T24503] Process accounting resumed [ 896.198795][T24560] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 897.017663][T24535] Process accounting resumed [ 897.330848][T24559] kexec: Could not allocate control_code_buffer [ 897.419237][ T29] audit: type=1800 audit(4294985678.623:178): pid=24586 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3569" name="lu_gp_id" dev="configfs" ino=95894 res=0 errno=0 [ 898.081799][T24600] [U] ^@ [ 899.850265][ T29] audit: type=1800 audit(4294985681.056:179): pid=24633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3580" name="lu_gp_id" dev="configfs" ino=96155 res=0 errno=0 [ 900.330164][T24650] [U] ^C [ 901.092787][T24671] bond0: invalid ARP target specified [ 901.145387][T24671] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3590'. [ 901.195918][T24671] FAULT_INJECTION: forcing a failure. [ 901.195918][T24671] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 901.254460][T24671] CPU: 0 UID: 0 PID: 24671 Comm: syz.0.3590 Tainted: G L syzkaller #0 PREEMPT(full) [ 901.254488][T24671] Tainted: [L]=SOFTLOCKUP [ 901.254494][T24671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 901.254504][T24671] Call Trace: [ 901.254510][T24671] [ 901.254516][T24671] dump_stack_lvl+0x100/0x190 [ 901.254544][T24671] should_fail_ex.cold+0x5/0xa [ 901.254560][T24671] ? prepare_alloc_pages+0x16d/0x5f0 [ 901.254579][T24671] should_fail_alloc_page+0xeb/0x140 [ 901.254597][T24671] prepare_alloc_pages+0x1f0/0x5f0 [ 901.254614][T24671] ? __lock_acquire+0x4a5/0x2630 [ 901.254634][T24671] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 901.254661][T24671] ? lock_acquire+0x1cf/0x380 [ 901.254680][T24671] ? find_held_lock+0x2b/0x80 [ 901.254694][T24671] ? page_table_check_set+0x49a/0xa10 [ 901.254716][T24671] ? page_table_check_set+0x49a/0xa10 [ 901.254741][T24671] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 901.254768][T24671] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 901.254782][T24671] ? xas_move_index+0xae/0x110 [ 901.254801][T24671] ? xas_find+0x32c/0x8e0 [ 901.254821][T24671] ? find_held_lock+0x2b/0x80 [ 901.254834][T24671] ? find_held_lock+0x2b/0x80 [ 901.254847][T24671] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 901.254872][T24671] ? policy_nodemask+0xed/0x4f0 [ 901.254896][T24671] alloc_pages_mpol+0x1fb/0x550 [ 901.254913][T24671] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 901.254935][T24671] folio_alloc_mpol_noprof+0x36/0x340 [ 901.254955][T24671] vma_alloc_folio_noprof+0xed/0x1d0 [ 901.254974][T24671] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 901.254999][T24671] do_anonymous_page+0xb3a/0x1fb0 [ 901.255027][T24671] __handle_mm_fault+0x1d42/0x2b60 [ 901.255050][T24671] ? reacquire_held_locks+0xce/0x1e0 [ 901.255069][T24671] ? __pfx___handle_mm_fault+0x10/0x10 [ 901.255092][T24671] ? lock_vma_under_rcu+0x17c/0x590 [ 901.255123][T24671] handle_mm_fault+0x36d/0xa20 [ 901.255146][T24671] do_user_addr_fault+0x5a3/0x12f0 [ 901.255176][T24671] exc_page_fault+0x6f/0xd0 [ 901.255193][T24671] asm_exc_page_fault+0x26/0x30 [ 901.255208][T24671] RIP: 0033:0x7fa7dea5df4b [ 901.255223][T24671] Code: 00 00 00 48 8d 3d 3d a7 1a 00 48 89 c1 31 c0 e8 9b 32 ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 71 a7 1a 00 48 89 34 24 48 8b 14 24 48 8b [ 901.255237][T24671] RSP: 002b:00007fa7df96ffa0 EFLAGS: 00010206 [ 901.255250][T24671] RAX: 0000000000000000 RBX: 00007fa7dee15fa0 RCX: 0000000000000000 [ 901.255260][T24671] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000001140 [ 901.255269][T24671] RBP: 00007fa7dec32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 901.255278][T24671] R10: 0000200000001140 R11: 0000000000000000 R12: 0000000000000000 [ 901.255287][T24671] R13: 00007fa7dee16038 R14: 00007fa7dee15fa0 R15: 00007ffc4e374aa8 [ 901.255308][T24671] [ 901.255517][T24671] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 902.347843][ T29] audit: type=1800 audit(4294985683.539:180): pid=24683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3593" name="lu_gp_id" dev="configfs" ino=96388 res=0 errno=0 [ 903.057372][T24715] ptrace attach of "./syz-executor exec"[19676] was attempted by ""[24715] [ 905.339731][ T29] audit: type=1800 audit(4294985686.585:181): pid=24770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3606" name="lu_gp_id" dev="configfs" ino=96753 res=0 errno=0 [ 905.391532][T24773] [U]  [ 905.394420][T24773] [U] [ 905.397091][T24773] [U] [ 905.399762][T24773] [U] [ 905.456773][T24773] [U] [ 905.459478][T24773] [U] [ 905.462158][T24773] [U] [ 905.464827][T24773] [U] [ 905.504035][T24762] futex_wake_op: syz.2.3607 tries to shift op by -2048; fix this program [ 905.513446][T24768] [U] [ 905.518314][T24773] [U] [ 905.521000][T24773] [U] [ 905.523672][T24773] [U] [ 905.526342][T24773] [U] [ 905.571195][T24773] [U] [ 905.573922][T24773] [U] [ 905.576606][T24773] [U] [ 905.579289][T24773] [U] [ 905.626468][T24773] [U] [ 905.629191][T24773] [U] [ 905.631862][T24773] [U] [ 905.634536][T24773] [U] [ 905.667832][T24773] [U] [ 905.670540][T24773] [U] [ 905.673228][T24773] [U] [ 905.675900][T24773] [U] [ 905.729102][T24773] [U] [ 905.731811][T24773] [U] [ 905.734484][T24773] [U] [ 905.737165][T24773] [U] [ 905.797452][T24773] [U] [ 905.800174][T24773] [U] [ 905.802854][T24773] [U] [ 905.805525][T24773] [U] [ 905.842354][T24773] [U] [ 905.845074][T24773] [U] [ 905.847753][T24773] [U] [ 905.850422][T24773] [U] [ 905.853729][T24786] FAULT_INJECTION: forcing a failure. [ 905.853729][T24786] name failslab, interval 1, probability 0, space 0, times 0 [ 905.900690][T24773] [U] [ 905.903400][T24773] [U] [ 905.906082][T24773] [U] [ 905.908757][T24773] [U] [ 905.919690][T24786] CPU: 0 UID: 0 PID: 24786 Comm: syz.0.3613 Tainted: G L syzkaller #0 PREEMPT(full) [ 905.919716][T24786] Tainted: [L]=SOFTLOCKUP [ 905.919722][T24786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 905.919732][T24786] Call Trace: [ 905.919738][T24786] [ 905.919744][T24786] dump_stack_lvl+0x100/0x190 [ 905.919772][T24786] should_fail_ex.cold+0x5/0xa [ 905.919791][T24786] should_failslab+0xc2/0x120 [ 905.919808][T24786] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 905.919829][T24786] ? alloc_empty_file+0x55/0x1c0 [ 905.919851][T24786] alloc_empty_file+0x55/0x1c0 [ 905.919871][T24786] alloc_file_pseudo+0x13a/0x230 [ 905.919892][T24786] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 905.919916][T24786] __shmem_file_setup+0x221/0x490 [ 905.919937][T24786] ? __pfx___shmem_file_setup+0x10/0x10 [ 905.919960][T24786] ? vm_area_alloc+0x1f/0x160 [ 905.919982][T24786] shmem_zero_setup+0x96/0x1b0 [ 905.920005][T24786] __mmap_region+0x2198/0x29e0 [ 905.920030][T24786] ? __pfx___mmap_region+0x10/0x10 [ 905.920083][T24786] ? lockdep_hardirqs_on+0x78/0x100 [ 905.920101][T24786] ? finish_task_switch.isra.0+0x205/0xb80 [ 905.920123][T24786] ? rcu_is_watching+0x12/0xc0 [ 905.920170][T24786] ? rcu_is_watching+0x12/0xc0 [ 905.920192][T24786] ? cap_capable+0x107/0x460 [ 905.920216][T24786] mmap_region+0x180/0x3e0 [ 905.920240][T24786] do_mmap+0xc63/0x12f0 [ 905.920261][T24786] ? __pfx_do_mmap+0x10/0x10 [ 905.920277][T24786] ? __pfx_down_write_killable+0x10/0x10 [ 905.920301][T24786] vm_mmap_pgoff+0x29e/0x470 [ 905.920321][T24786] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 905.920339][T24786] ? do_futex+0x192/0x350 [ 905.920358][T24786] ? __pfx_do_futex+0x10/0x10 [ 905.920380][T24786] ksys_mmap_pgoff+0xe1/0x650 [ 905.920397][T24786] ? __x64_sys_futex+0x34f/0x4d0 [ 905.920414][T24786] ? __x64_sys_futex+0x358/0x4d0 [ 905.920433][T24786] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 905.920449][T24786] ? xfd_validate_state+0x129/0x190 [ 905.920473][T24786] __x64_sys_mmap+0x125/0x190 [ 905.920496][T24786] do_syscall_64+0x106/0xf80 [ 905.920513][T24786] ? clear_bhb_loop+0x40/0x90 [ 905.920538][T24786] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 905.920554][T24786] RIP: 0033:0x7fa7deb9c799 [ 905.920568][T24786] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 905.920582][T24786] RSP: 002b:00007fa7df971028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 905.920597][T24786] RAX: ffffffffffffffda RBX: 00007fa7dee15fa0 RCX: 00007fa7deb9c799 [ 905.920608][T24786] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 905.920618][T24786] RBP: 00007fa7dec32bd9 R08: 0000000000000401 R09: 0000000000008000 [ 905.920627][T24786] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 905.920637][T24786] R13: 00007fa7dee16038 R14: 00007fa7dee15fa0 R15: 00007ffc4e374aa8 [ 905.920657][T24786] [ 906.251638][T24773] [U] [ 906.254519][T24773] [U] [ 906.257200][T24773] [U] [ 906.259870][T24773] [U] [ 906.262733][T24773] [U] [ 906.265411][T24773] [U] [ 906.268083][T24773] [U] [ 906.270779][T24773] [U] [ 906.274321][T24773] [U] [ 906.277008][T24773] [U] [ 906.279691][T24773] [U] [ 906.282373][T24773] [U] [ 906.285821][T24773] [U] [ 906.288507][T24773] [U] [ 906.291179][T24773] [U] [ 906.293874][T24773] [U] [ 906.296860][T24773] [U] [ 906.299538][T24773] [U] [ 906.302211][T24773] [U] [ 906.304882][T24773] [U] [ 906.307736][T24773] [U] [ 906.310423][T24773] [U] [ 906.313106][T24773] [U] [ 906.315777][T24773] [U] [ 906.318766][T24773] [U] [ 906.321449][T24773] [U] [ 906.324128][T24773] [U] [ 906.326802][T24773] [U] [ 906.329677][T24773] [U] [ 906.332362][T24773] [U] [ 906.335039][T24773] [U] [ 906.337714][T24773] [U] [ 906.340577][T24773] [U] [ 906.343254][T24773] [U] [ 906.345926][T24773] [U] [ 906.348598][T24773] [U] [ 906.351436][T24773] [U] [ 906.354112][T24773] [U] [ 906.356779][T24773] [U] [ 906.359450][T24773] [U] [ 906.362435][T24773] [U] [ 906.365118][T24773] [U] [ 906.367791][T24773] [U] [ 906.370459][T24773] [U] [ 906.373954][T24773] [U] [ 906.376639][T24773] [U] [ 906.379311][T24773] [U] [ 906.381991][T24773] [U] [ 906.385368][T24773] [U] [ 906.388052][T24773] [U] [ 906.390728][T24773] [U] [ 906.393397][T24773] [U] [ 906.396373][T24773] [U] [ 906.399048][T24773] [U] [ 906.401719][T24773] [U] [ 906.404476][T24773] [U] [ 906.407418][T24773] [U] [ 906.410097][T24773] [U] [ 906.412769][T24773] [U] [ 906.415436][T24773] [U] [ 906.418269][T24773] [U] [ 906.420941][T24773] [U] [ 906.423610][T24773] [U] [ 906.426278][T24773] [U] [ 906.429109][T24773] [U] [ 906.431781][T24773] [U] [ 906.434447][T24773] [U] [ 906.437122][T24773] [U] [ 906.439933][T24773] [U] [ 906.442605][T24773] [U] [ 906.445275][T24773] [U] [ 906.447954][T24773] [U] [ 906.450859][T24773] [U] [ 906.453535][T24773] [U] [ 906.456204][T24773] [U] [ 906.458874][T24773] [U] [ 906.461688][T24773] [U] [ 906.464384][T24773] [U] [ 906.467053][T24773] [U] [ 906.469729][T24773] [U] [ 906.473045][T24773] [U] [ 906.475726][T24773] [U] [ 906.478396][T24773] [U] [ 906.481063][T24773] [U] [ 906.484448][T24773] [U] [ 906.487127][T24773] [U] [ 906.489797][T24773] [U] [ 906.492466][T24773] [U] [ 906.495488][T24773] [U] [ 906.498166][T24773] [U] [ 906.500836][T24773] [U] [ 906.503505][T24773] [U] [ 906.506351][T24773] [U] [ 906.509022][T24773] [U] [ 906.511691][T24773] [U] [ 906.514358][T24773] [U] [ 906.517027][T24773] [U] [ 906.519944][T24773] [U] [ 906.522617][T24773] [U] [ 906.525286][T24773] [U] [ 906.527959][T24773] [U] [ 906.530795][T24773] [U] [ 906.533468][T24773] [U] [ 906.536140][T24773] [U] [ 906.538810][T24773] [U] [ 906.541728][T24773] [U] [ 906.544405][T24773] [U] [ 906.547077][T24773] [U] [ 906.549744][T24773] [U] [ 906.552571][T24773] [U] [ 906.555243][T24773] [U] [ 906.557916][T24773] [U] [ 906.560586][T24773] [U] [ 906.563401][T24773] [U] [ 906.566078][T24773] [U] [ 906.568746][T24773] [U] [ 906.571417][T24773] [U] [ 906.574738][T24773] [U] [ 906.577417][T24773] [U] [ 906.580171][T24773] [U] [ 906.582840][T24773] [U] [ 906.589599][T24773] [U] [ 906.592294][T24773] [U] [ 906.594986][T24773] [U] [ 906.597764][T24773] [U] [ 906.637560][T24773] [U] [ 906.640296][T24773] [U] [ 906.642967][T24773] [U] [ 906.645636][T24773] [U] [ 906.668682][T24773] [U] [ 906.671378][T24773] [U] [ 906.674053][T24773] [U] [ 906.676722][T24773] [U] [ 906.703044][T24773] [U] [ 906.705761][T24773] [U] [ 906.708432][T24773] [U] [ 906.711107][T24773] [U] [ 906.759548][T24773] [U] [ 906.762258][T24773] [U] [ 906.764929][T24773] [U] [ 906.767599][T24773] [U] [ 906.782152][T24773] [U] [ 906.784943][T24773] [U] [ 906.787615][T24773] [U] [ 906.790287][T24773] [U] [ 906.793916][T24773] [U] [ 906.796631][T24773] [U] [ 906.799302][T24773] [U] [ 906.801990][T24773] [U] [ 906.804891][T24773] [U] [ 906.807567][T24773] [U] [ 906.810258][T24773] [U] [ 906.812926][T24773] [U] [ 906.815768][T24786] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3613'. [ 906.828587][T24773] [U] [ 906.831278][T24773] [U] [ 906.833948][T24773] [U] [ 906.836619][T24773] [U] [ 906.845484][T24773] [U] [ 906.848175][T24773] [U] [ 906.850847][T24773] [U] [ 906.853515][T24773] [U] [ 906.857153][T24773] [U] [ 907.270039][T24799] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 907.846665][T24815] Invalid ELF header magic: != ELF [ 908.668887][ T29] audit: type=1800 audit(4294985689.922:182): pid=24849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3627" name="lu_gp_id" dev="configfs" ino=97035 res=0 errno=0 [ 909.996202][T24876] [U] 9 [ 910.392387][ T29] audit: type=1800 audit(4294985691.661:183): pid=24886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3637" name="lu_gp_id" dev="configfs" ino=97224 res=0 errno=0 [ 911.970565][T24340] Bluetooth: hci7: unexpected subevent 0x01 length: 123 > 18 [ 911.978955][T24340] Bluetooth: hci7: Invalid handle: 0x3a4a > 0x0eff [ 912.145713][ T29] audit: type=1800 audit(4294985693.410:184): pid=24929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3648" name="lu_gp_id" dev="configfs" ino=97418 res=0 errno=0 [ 912.206307][T24931] queue_state_write: unsupported operation '' [ 912.259794][T24931] queue_state_write: use 'run', 'start' or 'kick' [ 912.390816][T24931] [U] [ 912.393528][T24931] [U] [ 912.396203][T24931] [U] [ 912.398875][T24931] [U] [ 912.508776][T24931] [U] [ 912.511485][T24931] [U] [ 912.514155][T24931] [U] [ 912.516828][T24931] [U] [ 912.557873][T24931] [U] [ 912.560584][T24931] [U] [ 912.563255][T24931] [U] [ 912.565940][T24931] [U] [ 912.625865][T24931] [U] [ 912.628577][T24931] [U] [ 912.631261][T24931] [U] [ 912.633936][T24931] [U] [ 912.649844][T24955] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3655'. [ 912.660137][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 912.674633][T24931] [U] [ 912.677349][T24931] [U] [ 912.680022][T24931] [U] [ 912.682779][T24931] [U] [ 912.731314][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 912.744785][T24931] [U] [ 912.747484][T24931] [U] [ 912.750157][T24931] [U] [ 912.752830][T24931] [U] [ 912.793269][T24955] bond0: (slave bond_slave_1): Releasing backup interface [ 912.811510][T24931] [U] [ 912.814214][T24931] [U] [ 912.816888][T24931] [U] [ 912.819563][T24931] [U] [ 912.856190][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 912.875249][T24931] [U] [ 912.877952][T24931] [U] [ 912.880626][T24931] [U] [ 912.883295][T24931] [U] [ 912.907803][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 912.940848][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 912.967788][T24931] [U] [ 913.001767][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 913.052401][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 913.096720][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 913.140216][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 913.209533][T24959] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 914.759222][ T29] audit: type=1800 audit(4294985696.054:185): pid=25004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3663" name="lu_gp_id" dev="configfs" ino=98962 res=0 errno=0 [ 915.158844][T25009] Invalid ELF header magic: != ELF [ 915.271329][T25012] FAULT_INJECTION: forcing a failure. [ 915.271329][T25012] name fail_futex, interval 1, probability 0, space 0, times 0 [ 915.339772][T25012] CPU: 0 UID: 0 PID: 25012 Comm: syz.0.3666 Tainted: G L syzkaller #0 PREEMPT(full) [ 915.339798][T25012] Tainted: [L]=SOFTLOCKUP [ 915.339803][T25012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 915.339813][T25012] Call Trace: [ 915.339818][T25012] [ 915.339824][T25012] dump_stack_lvl+0x100/0x190 [ 915.339851][T25012] should_fail_ex.cold+0x5/0xa [ 915.339866][T25012] ? rcu_is_watching+0x12/0xc0 [ 915.339891][T25012] get_futex_key+0x107c/0x1620 [ 915.339911][T25012] ? __pfx_get_futex_key+0x10/0x10 [ 915.339927][T25012] ? lock_acquire+0x1cf/0x380 [ 915.339952][T25012] futex_wake+0xea/0x530 [ 915.339975][T25012] ? __pfx_futex_wake+0x10/0x10 [ 915.339997][T25012] ? exit_mm_release+0x19/0x30 [ 915.340020][T25012] do_futex+0x32b/0x350 [ 915.340039][T25012] ? __pfx_do_futex+0x10/0x10 [ 915.340057][T25012] ? __might_fault+0xc5/0x140 [ 915.340082][T25012] mm_release+0x24a/0x2f0 [ 915.340098][T25012] do_exit+0x704/0x2b60 [ 915.340124][T25012] ? __pfx_do_exit+0x10/0x10 [ 915.340142][T25012] ? do_raw_spin_lock+0x128/0x260 [ 915.340165][T25012] ? find_held_lock+0x2b/0x80 [ 915.340179][T25012] ? get_signal+0x7e0/0x21e0 [ 915.340196][T25012] do_group_exit+0xd5/0x2a0 [ 915.340216][T25012] get_signal+0x1ec7/0x21e0 [ 915.340236][T25012] ? ksys_write+0x190/0x250 [ 915.340251][T25012] ? __pfx_get_signal+0x10/0x10 [ 915.340268][T25012] ? do_futex+0x192/0x350 [ 915.340288][T25012] arch_do_signal_or_restart+0x91/0x770 [ 915.340307][T25012] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 915.340331][T25012] ? __pfx___x64_sys_futex+0x10/0x10 [ 915.340354][T25012] exit_to_user_mode_loop+0x86/0x4a0 [ 915.340376][T25012] do_syscall_64+0x668/0xf80 [ 915.340398][T25012] ? clear_bhb_loop+0x40/0x90 [ 915.340416][T25012] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 915.340432][T25012] RIP: 0033:0x7fa7deb9c799 [ 915.340446][T25012] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 915.340460][T25012] RSP: 002b:00007fa7dcdf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 915.340479][T25012] RAX: fffffffffffffe00 RBX: 00007fa7dee16098 RCX: 00007fa7deb9c799 [ 915.340489][T25012] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa7dee16098 [ 915.340498][T25012] RBP: 00007fa7dee16090 R08: 0000000000000000 R09: 0000000000000000 [ 915.340508][T25012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 915.340517][T25012] R13: 00007fa7dee16128 R14: 00007ffc4e3749c0 R15: 00007ffc4e374aa8 [ 915.340536][T25012] [ 916.854781][ T29] audit: type=1800 audit(4294985698.165:186): pid=25050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3674" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 916.932685][T25056] netlink: 326 bytes leftover after parsing attributes in process `syz.0.3676'. [ 917.278006][T25064] [U] ^@ [ 917.328109][T25059] zswap: compressor not available [ 917.452686][ T29] audit: type=1800 audit(4294985698.758:187): pid=25072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3677" name="lu_gp_id" dev="configfs" ino=99341 res=0 errno=0 [ 917.532139][T25075] misc userio: Invalid payload size [ 918.872478][T25090] FAULT_INJECTION: forcing a failure. [ 918.872478][T25090] name failslab, interval 1, probability 0, space 0, times 0 [ 918.970692][T25090] CPU: 0 UID: 0 PID: 25090 Comm: syz.0.3684 Tainted: G L syzkaller #0 PREEMPT(full) [ 918.970719][T25090] Tainted: [L]=SOFTLOCKUP [ 918.970726][T25090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 918.970735][T25090] Call Trace: [ 918.970741][T25090] [ 918.970747][T25090] dump_stack_lvl+0x100/0x190 [ 918.970775][T25090] should_fail_ex.cold+0x5/0xa [ 918.970793][T25090] should_failslab+0xc2/0x120 [ 918.970810][T25090] __kmalloc_node_noprof+0xe6/0x850 [ 918.970831][T25090] ? user_buffer_init+0x2a1/0x6d0 [ 918.970857][T25090] user_buffer_init+0x2a1/0x6d0 [ 918.970882][T25090] tracing_mark_open+0x1b7/0x240 [ 918.970905][T25090] do_dentry_open+0x6d8/0x1660 [ 918.970920][T25090] ? __pfx_tracing_mark_open+0x10/0x10 [ 918.970947][T25090] vfs_open+0x82/0x3f0 [ 918.970968][T25090] path_openat+0x208c/0x31a0 [ 918.970990][T25090] ? __pfx_path_openat+0x10/0x10 [ 918.971013][T25090] do_file_open+0x20e/0x430 [ 918.971029][T25090] ? __pfx_do_file_open+0x10/0x10 [ 918.971058][T25090] ? alloc_fd+0x476/0x790 [ 918.971075][T25090] ? do_getname+0x191/0x390 [ 918.971095][T25090] do_sys_openat2+0x10d/0x1e0 [ 918.971114][T25090] ? __pfx_do_sys_openat2+0x10/0x10 [ 918.971140][T25090] __x64_sys_openat+0x12d/0x210 [ 918.971160][T25090] ? __pfx___x64_sys_openat+0x10/0x10 [ 918.971186][T25090] do_syscall_64+0x106/0xf80 [ 918.971204][T25090] ? clear_bhb_loop+0x40/0x90 [ 918.971232][T25090] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 918.971249][T25090] RIP: 0033:0x7fa7deb9c799 [ 918.971263][T25090] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 918.971280][T25090] RSP: 002b:00007fa7df971028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 918.971296][T25090] RAX: ffffffffffffffda RBX: 00007fa7dee15fa0 RCX: 00007fa7deb9c799 [ 918.971307][T25090] RDX: 0000000000000043 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 918.971317][T25090] RBP: 00007fa7dec32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 918.971327][T25090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 918.971337][T25090] R13: 00007fa7dee16038 R14: 00007fa7dee15fa0 R15: 00007ffc4e374aa8 [ 918.971358][T25090] [ 920.862994][ T29] audit: type=1800 audit(4294985702.195:188): pid=25155 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3692" name="lu_gp_id" dev="configfs" ino=99752 res=0 errno=0 [ 922.298109][T25180] ksmbd: Unknown IPC event: 8, ignore. [ 922.640335][T25177] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 922.646714][T25177] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 922.659057][T25177] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 922.679477][T25177] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 923.924079][T25218] FAULT_INJECTION: forcing a failure. [ 923.924079][T25218] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 923.969660][T25218] CPU: 0 UID: 0 PID: 25218 Comm: syz.0.3711 Tainted: G L syzkaller #0 PREEMPT(full) [ 923.969688][T25218] Tainted: [L]=SOFTLOCKUP [ 923.969693][T25218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 923.969703][T25218] Call Trace: [ 923.969708][T25218] [ 923.969715][T25218] dump_stack_lvl+0x100/0x190 [ 923.969742][T25218] should_fail_ex.cold+0x5/0xa [ 923.969760][T25218] _copy_to_user+0x32/0xd0 [ 923.969777][T25218] simple_read_from_buffer+0xcb/0x170 [ 923.969802][T25218] proc_fail_nth_read+0x1af/0x230 [ 923.969821][T25218] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 923.969841][T25218] ? rw_verify_area+0xce/0x6d0 [ 923.969868][T25218] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 923.969886][T25218] vfs_read+0x1e4/0xb30 [ 923.969911][T25218] ? __pfx_vfs_read+0x10/0x10 [ 923.969933][T25218] ? __fget_files+0x215/0x3d0 [ 923.969952][T25218] ? __fget_files+0x21f/0x3d0 [ 923.969970][T25218] ksys_read+0x12a/0x250 [ 923.969992][T25218] ? __pfx_ksys_read+0x10/0x10 [ 923.970020][T25218] do_syscall_64+0x106/0xf80 [ 923.970038][T25218] ? clear_bhb_loop+0x40/0x90 [ 923.970057][T25218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 923.970073][T25218] RIP: 0033:0x7fa7deb5cfce [ 923.970086][T25218] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 923.970101][T25218] RSP: 002b:00007fa7df970fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 923.970119][T25218] RAX: ffffffffffffffda RBX: 00007fa7df9716c0 RCX: 00007fa7deb5cfce [ 923.970130][T25218] RDX: 000000000000000f RSI: 00007fa7df9710a0 RDI: 0000000000000004 [ 923.970139][T25218] RBP: 00007fa7df971090 R08: 0000000000000000 R09: 0000000000000000 [ 923.970149][T25218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 923.970158][T25218] R13: 00007fa7dee16038 R14: 00007fa7dee15fa0 R15: 00007ffc4e374aa8 [ 923.970178][T25218] [ 924.467258][T24340] Bluetooth: hci51: command 0x0c1a tx timeout [ 924.546455][ T29] audit: type=1800 audit(4294985705.844:189): pid=25229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3713" name="lu_gp_id" dev="configfs" ino=100084 res=0 errno=0 [ 924.709519][ T5824] Bluetooth: hci16: command 0x0c1a tx timeout [ 924.716816][ T5824] Bluetooth: hci5: command 0x0c1a tx timeout [ 924.775355][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 925.036129][ T29] audit: type=1800 audit(4294985706.377:190): pid=25242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3710" name="lu_gp_id" dev="configfs" ino=100128 res=0 errno=0 [ 925.226945][T25245] [U]  [ 925.229733][T25245] [U] [ 925.233083][T25245] [U] file write /dev/console [ 925.237757][T25245] [U] [ 925.240428][T25245] [U] [ 925.243101][T25245] [U] [ 925.354245][T25245] [U] [ 925.356951][T25245] [U] [ 925.359639][T25245] [U] [ 925.362309][T25245] [U] [ 925.423319][T25245] [U] [ 925.426038][T25245] [U] [ 925.428726][T25245] [U] [ 925.431393][T25245] [U] [ 925.474064][T25245] [U] [ 925.476774][T25245] [U] [ 925.479448][T25245] [U] [ 925.482135][T25245] [U] [ 925.736559][T25245] [U] [ 925.739267][T25245] [U] [ 925.741938][T25245] [U] [ 925.744610][T25245] [U] [ 925.798411][T25245] [U] [ 925.801118][T25245] [U] [ 925.803792][T25245] [U] [ 925.806459][T25245] [U] [ 925.845819][T25245] [U] [ 925.848527][T25245] [U] [ 925.851196][T25245] [U] [ 925.853864][T25245] [U] [ 925.923391][T25245] [U] [ 925.926130][T25245] [U] [ 925.928806][T25245] [U] [ 925.931482][T25245] [U] [ 925.990640][T25245] [U] [ 925.993348][T25245] [U] [ 925.996020][T25245] [U] [ 925.998690][T25245] [U] [ 926.090549][T25245] [U] [ 926.093262][T25245] [U] [ 926.095952][T25245] [U] [ 926.098619][T25245] [U] [ 926.164528][T25245] [U] [ 926.167237][T25245] [U] [ 926.169906][T25245] [U] [ 926.172574][T25245] [U] [ 926.247484][T25245] [U] [ 926.250192][T25245] [U] [ 926.252880][T25245] [U] [ 926.255550][T25245] [U] [ 926.274655][T25215] Process accounting paused [ 926.345627][T25245] [U] [ 926.622075][T25276] FAULT_INJECTION: forcing a failure. [ 926.622075][T25276] name failslab, interval 1, probability 0, space 0, times 0 [ 926.749731][T25276] CPU: 0 UID: 0 PID: 25276 Comm: syz.3.3724 Tainted: G L syzkaller #0 PREEMPT(full) [ 926.749758][T25276] Tainted: [L]=SOFTLOCKUP [ 926.749764][T25276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 926.749774][T25276] Call Trace: [ 926.749780][T25276] [ 926.749787][T25276] dump_stack_lvl+0x100/0x190 [ 926.749814][T25276] should_fail_ex.cold+0x5/0xa [ 926.749833][T25276] should_failslab+0xc2/0x120 [ 926.749849][T25276] __kmalloc_cache_noprof+0x7a/0x6f0 [ 926.749869][T25276] ? drm_file_alloc+0x74/0xb40 [ 926.749981][T25276] drm_file_alloc+0x74/0xb40 [ 926.750000][T25276] drm_open_helper+0x1fc/0x540 [ 926.750020][T25276] drm_open+0x1a0/0x3e0 [ 926.750035][T25276] ? __pfx_drm_open+0x10/0x10 [ 926.750052][T25276] drm_stub_open+0x20f/0x380 [ 926.750069][T25276] ? __pfx_drm_stub_open+0x10/0x10 [ 926.750085][T25276] chrdev_open+0x234/0x6a0 [ 926.750099][T25276] ? __pfx_apparmor_file_open+0x10/0x10 [ 926.750126][T25276] ? __pfx_chrdev_open+0x10/0x10 [ 926.750143][T25276] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 926.750163][T25276] do_dentry_open+0x6d8/0x1660 [ 926.750179][T25276] ? __pfx_chrdev_open+0x10/0x10 [ 926.750199][T25276] vfs_open+0x82/0x3f0 [ 926.750220][T25276] path_openat+0x208c/0x31a0 [ 926.750242][T25276] ? __pfx_path_openat+0x10/0x10 [ 926.750264][T25276] do_file_open+0x20e/0x430 [ 926.750280][T25276] ? __pfx_do_file_open+0x10/0x10 [ 926.750309][T25276] ? alloc_fd+0x476/0x790 [ 926.750326][T25276] ? do_getname+0x191/0x390 [ 926.750345][T25276] do_sys_openat2+0x10d/0x1e0 [ 926.750364][T25276] ? __pfx_do_sys_openat2+0x10/0x10 [ 926.750384][T25276] ? __fget_files+0x21f/0x3d0 [ 926.750402][T25276] __x64_sys_openat+0x12d/0x210 [ 926.750421][T25276] ? __pfx___x64_sys_openat+0x10/0x10 [ 926.750447][T25276] do_syscall_64+0x106/0xf80 [ 926.750465][T25276] ? clear_bhb_loop+0x40/0x90 [ 926.750483][T25276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 926.750498][T25276] RIP: 0033:0x7fae70f9c799 [ 926.750512][T25276] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 926.750528][T25276] RSP: 002b:00007fae71e6c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 926.750543][T25276] RAX: ffffffffffffffda RBX: 00007fae71216090 RCX: 00007fae70f9c799 [ 926.750554][T25276] RDX: 0000000000129800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 926.750564][T25276] RBP: 00007fae71032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 926.750574][T25276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 926.750583][T25276] R13: 00007fae71216128 R14: 00007fae71216090 R15: 00007ffdd3a37a98 [ 926.750604][T25276] [ 927.093234][T25282] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3726'. [ 927.134480][T25284] Process accounting paused [ 927.259605][ T29] audit: type=1800 audit(4294985708.619:191): pid=25283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3725" name="lu_gp_id" dev="configfs" ino=100359 res=0 errno=0 [ 928.077264][T25310] snd_virmidi snd_virmidi.0: control 61678:131081:3:y>o[k<:1597170177 is already present [ 928.170315][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 928.176817][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 929.199646][ T29] audit: type=1800 audit(4294985710.559:192): pid=25326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3734" name="lu_gp_id" dev="configfs" ino=100520 res=0 errno=0 [ 930.216737][ T29] audit: type=1800 audit(4294985711.594:193): pid=25357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3741" name="lu_gp_id" dev="configfs" ino=100621 res=0 errno=0 [ 931.307039][ T29] audit: type=1800 audit(4294985712.680:194): pid=25373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3747" name="lu_gp_id" dev="configfs" ino=100749 res=0 errno=0 [ 931.555332][T24340] Bluetooth: hci7: unexpected subevent 0x01 length: 123 > 18 [ 931.562886][T24340] Bluetooth: hci7: Invalid handle: 0x3a4a > 0x0eff [ 932.234302][T25402] random: crng reseeded on system resumption [ 932.536685][T25412] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3754'. [ 932.858511][ T29] audit: type=1800 audit(4294985714.238:195): pid=25420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3755" name="lu_gp_id" dev="configfs" ino=100982 res=0 errno=0 [ 933.618181][T25445] [U]  [ 933.620975][T25445] [U] [ 933.623650][T25445] [U] [ 933.626318][T25445] [U] [ 933.652081][T25445] [U] [ 933.654783][T25445] [U] [ 933.657457][T25445] [U] [ 933.660142][T25445] [U] [ 933.710588][T25445] [U] [ 933.713300][T25445] [U] [ 933.715974][T25445] [U] [ 933.718655][T25445] [U] [ 933.776267][T25449] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3762'. [ 933.841458][T25445] [U] [ 933.844172][T25445] [U] [ 933.846846][T25445] [U] [ 933.849519][T25445] [U] [ 933.888462][T25445] [U] [ 933.891172][T25445] [U] [ 933.893851][T25445] [U] [ 933.896522][T25445] [U] [ 933.965216][T25445] [U] [ 933.967924][T25445] [U] [ 933.970597][T25445] [U] [ 933.973272][T25445] [U] [ 934.031632][T25445] [U] [ 934.034350][T25445] [U] [ 934.037058][T25445] [U] [ 934.039732][T25445] [U] [ 934.082365][T25445] [U] [ 934.085075][T25445] [U] [ 934.087748][T25445] [U] [ 934.090417][T25445] [U] [ 934.132220][T25445] [U] [ 934.134930][T25445] [U] [ 934.137606][T25445] [U] [ 934.140275][T25445] [U] [ 934.189099][T25445] [U] [ 934.191806][T25445] [U] [ 934.194478][T25445] [U] [ 934.197146][T25445] [U] [ 934.249085][T25445] [U] [ 934.251790][T25445] [U] [ 934.254468][T25445] [U] [ 934.257140][T25445] [U] [ 934.311760][T25445] [U] [ 934.314467][T25445] [U] [ 934.317165][T25445] [U] [ 934.319839][T25445] [U] [ 934.373913][T25445] [U] [ 934.376623][T25445] [U] [ 934.379322][T25445] [U] [ 934.382002][T25445] [U] [ 934.454755][T25465] raw_sendmsg: syz.1.3767 forgot to set AF_INET. Fix it! [ 934.481649][T25445] [U] [ 934.484356][T25445] [U] [ 934.487030][T25445] [U] [ 934.489700][T25445] [U] [ 934.554353][T25445] [U] [ 934.557061][T25445] [U] [ 934.559734][T25445] [U] [ 934.562406][T25445] [U] [ 934.630039][T25445] [U] [ 934.632749][T25445] [U] [ 934.635426][T25445] [U] [ 934.638107][T25445] [U] [ 934.701497][T25445] [U] [ 934.704215][T25445] [U] [ 934.706974][T25445] [U] [ 934.709644][T25445] [U] [ 934.786831][T25445] [U] [ 935.191529][ T29] audit: type=1800 audit(4294985716.590:196): pid=25487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3771" name="lu_gp_id" dev="configfs" ino=101364 res=0 errno=0 [ 940.722797][T25547] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3784'. [ 942.026870][ T29] audit: type=1800 audit(4294985723.465:197): pid=25570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3789" name="lu_gp_id" dev="configfs" ino=101877 res=0 errno=0 [ 942.943547][T25593] [U]  [ 942.946329][T25593] [U] [ 942.949685][T25593] [U] file mkblock /dev/ram 0600 1 0 [ 942.954962][T25593] [U] [ 942.957638][T25593] [U] [ 942.960308][T25593] [U] [ 943.035903][T25593] [U] [ 943.038613][T25593] [U] [ 943.041284][T25593] [U] [ 943.043954][T25593] [U] [ 943.082022][T25593] [U] [ 943.084728][T25593] [U] [ 943.087400][T25593] [U] [ 943.090070][T25593] [U] [ 943.146372][T25593] [U] [ 943.149075][T25593] [U] [ 943.151761][T25593] [U] [ 943.154430][T25593] [U] [ 943.207524][T25593] [U] [ 943.210229][T25593] [U] [ 943.212898][T25593] [U] [ 943.215565][T25593] [U] [ 943.256901][T25593] [U] [ 943.259606][T25593] [U] [ 943.262277][T25593] [U] [ 943.264944][T25593] [U] [ 943.310126][T25593] [U] [ 943.312829][T25593] [U] [ 943.315512][T25593] [U] [ 943.318182][T25593] [U] [ 943.354685][T25593] [U] [ 943.357388][T25593] [U] [ 943.360080][T25593] [U] [ 943.362911][T25593] [U] [ 943.407250][T25593] [U] [ 943.409956][T25593] [U] [ 943.412629][T25593] [U] [ 943.415300][T25593] [U] [ 943.476683][T25593] [U] [ 943.479387][T25593] [U] [ 943.482146][T25593] [U] [ 943.484814][T25593] [U] [ 943.536560][T25593] [U] [ 943.539265][T25593] [U] [ 943.541938][T25593] [U] [ 943.544605][T25593] [U] [ 943.589902][T25593] [U] [ 943.592620][T25593] [U] [ 943.595298][T25593] [U] [ 943.597967][T25593] [U] [ 943.680351][T25593] [U] [ 943.683060][T25593] [U] [ 943.685734][T25593] [U] [ 943.688401][T25593] [U] [ 943.849817][T25593] [U] [ 943.852531][T25593] [U] [ 943.855201][T25593] [U] [ 943.857963][T25593] [U] [ 943.902118][T25593] [U] [ 943.904822][T25593] [U] [ 943.907493][T25593] [U] [ 943.910162][T25593] [U] [ 943.912828][T25593] [U] [ 943.978257][T25593] [U] [ 943.980969][T25593] [U] [ 943.983638][T25593] [U] [ 943.986310][T25593] [U] [ 944.045015][T25593] [U] [ 944.047731][T25593] [U] [ 944.050406][T25593] [U] [ 944.053075][T25593] [U] [ 944.109414][T25593] [U] [ 944.773366][T25636] FAULT_INJECTION: forcing a failure. [ 944.773366][T25636] name failslab, interval 1, probability 0, space 0, times 0 [ 944.836929][T25636] CPU: 0 UID: 0 PID: 25636 Comm: syz.2.3807 Tainted: G L syzkaller #0 PREEMPT(full) [ 944.836964][T25636] Tainted: [L]=SOFTLOCKUP [ 944.836971][T25636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 944.836981][T25636] Call Trace: [ 944.836987][T25636] [ 944.836994][T25636] dump_stack_lvl+0x100/0x190 [ 944.837024][T25636] should_fail_ex.cold+0x5/0xa [ 944.837043][T25636] should_failslab+0xc2/0x120 [ 944.837060][T25636] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 944.837083][T25636] ? __d_alloc+0x34/0xa80 [ 944.837104][T25636] __d_alloc+0x34/0xa80 [ 944.837123][T25636] d_alloc_pseudo+0x1c/0xc0 [ 944.837144][T25636] alloc_file_pseudo+0xcf/0x230 [ 944.837164][T25636] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 944.837188][T25636] __shmem_file_setup+0x221/0x490 [ 944.837208][T25636] ? __pfx___shmem_file_setup+0x10/0x10 [ 944.837231][T25636] ? vm_area_alloc+0x1f/0x160 [ 944.837253][T25636] shmem_zero_setup+0x96/0x1b0 [ 944.837277][T25636] __mmap_region+0x2198/0x29e0 [ 944.837302][T25636] ? __pfx___mmap_region+0x10/0x10 [ 944.837327][T25636] ? set_next_entity+0x11e/0x9c0 [ 944.837352][T25636] ? __lock_acquire+0x4a5/0x2630 [ 944.837370][T25636] ? find_held_lock+0x2b/0x80 [ 944.837392][T25636] ? find_held_lock+0x2b/0x80 [ 944.837405][T25636] ? finish_task_switch.isra.0+0x200/0xb80 [ 944.837421][T25636] ? finish_task_switch.isra.0+0x200/0xb80 [ 944.837444][T25636] ? trace_sched_exit_tp+0x13a/0x180 [ 944.837461][T25636] ? __schedule+0x1000/0x6120 [ 944.837502][T25636] ? rcu_is_watching+0x12/0xc0 [ 944.837523][T25636] ? cap_capable+0x107/0x460 [ 944.837548][T25636] mmap_region+0x180/0x3e0 [ 944.837572][T25636] do_mmap+0xc63/0x12f0 [ 944.837594][T25636] ? __pfx_do_mmap+0x10/0x10 [ 944.837610][T25636] ? __pfx_down_write_killable+0x10/0x10 [ 944.837634][T25636] vm_mmap_pgoff+0x29e/0x470 [ 944.837654][T25636] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 944.837672][T25636] ? do_futex+0x192/0x350 [ 944.837691][T25636] ? __pfx_do_futex+0x10/0x10 [ 944.837714][T25636] ksys_mmap_pgoff+0xe1/0x650 [ 944.837729][T25636] ? __x64_sys_futex+0x34f/0x4d0 [ 944.837747][T25636] ? __x64_sys_futex+0x358/0x4d0 [ 944.837766][T25636] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 944.837782][T25636] ? xfd_validate_state+0x129/0x190 [ 944.837806][T25636] __x64_sys_mmap+0x125/0x190 [ 944.837830][T25636] do_syscall_64+0x106/0xf80 [ 944.837847][T25636] ? clear_bhb_loop+0x40/0x90 [ 944.837866][T25636] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 944.837881][T25636] RIP: 0033:0x7ff1c719c799 [ 944.837896][T25636] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 944.837911][T25636] RSP: 002b:00007ff1c803a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 944.837926][T25636] RAX: ffffffffffffffda RBX: 00007ff1c7415fa0 RCX: 00007ff1c719c799 [ 944.837936][T25636] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 944.837946][T25636] RBP: 00007ff1c7232bd9 R08: 0000000000000401 R09: 0000000000008000 [ 944.837962][T25636] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 944.837972][T25636] R13: 00007ff1c7416038 R14: 00007ff1c7415fa0 R15: 00007ffd59c730b8 [ 944.837993][T25636] [ 945.325882][T25640] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 945.404582][T25636] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3807'. [ 945.937457][ T29] audit: type=1800 audit(4294985727.386:198): pid=25625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3805" name="lu_gp_id" dev="configfs" ino=102239 res=0 errno=0 [ 947.280314][T25690] FAULT_INJECTION: forcing a failure. [ 947.280314][T25690] name failslab, interval 1, probability 0, space 0, times 0 [ 947.462906][T25692] [U] 0x00060000 [ 947.466483][T25692] [U] [ 947.469155][T25692] [U] [ 947.471838][T25692] [U] [ 947.474527][T25692] [U] [ 947.542501][T25690] CPU: 0 UID: 0 PID: 25690 Comm: syz.0.3821 Tainted: G L syzkaller #0 PREEMPT(full) [ 947.542530][T25690] Tainted: [L]=SOFTLOCKUP [ 947.542536][T25690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 947.542546][T25690] Call Trace: [ 947.542552][T25690] [ 947.542559][T25690] dump_stack_lvl+0x100/0x190 [ 947.542586][T25690] should_fail_ex.cold+0x5/0xa [ 947.542606][T25690] should_failslab+0xc2/0x120 [ 947.542622][T25690] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 947.542644][T25690] ? sctp_chunkify+0x51/0x2f0 [ 947.542659][T25690] ? __pfx___alloc_skb+0x10/0x10 [ 947.542680][T25690] sctp_chunkify+0x51/0x2f0 [ 947.542696][T25690] _sctp_make_chunk+0x148/0x270 [ 947.542713][T25690] sctp_make_control+0x2f/0x2d0 [ 947.542733][T25690] sctp_make_init+0x6d0/0xda0 [ 947.542761][T25690] ? look_up_lock_class+0x55/0x120 [ 947.542781][T25690] ? __pfx_sctp_make_init+0x10/0x10 [ 947.542798][T25690] ? ip_route_output_flow+0x8b/0x150 [ 947.542819][T25690] ? sctp_sm_lookup_event+0x10e/0x520 [ 947.542836][T25690] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 947.542856][T25690] sctp_sf_do_prm_asoc+0xbf/0x360 [ 947.542878][T25690] ? __pfx_sctp_pname+0x10/0x10 [ 947.542893][T25690] sctp_do_sm+0x17a/0x5be0 [ 947.542917][T25690] ? find_held_lock+0x2b/0x80 [ 947.542931][T25690] ? sctp_ulpevent_notify_peer_addr_change+0xf3/0xb70 [ 947.542954][T25690] ? sctp_ulpevent_notify_peer_addr_change+0xf3/0xb70 [ 947.542976][T25690] ? __pfx_sctp_do_sm+0x10/0x10 [ 947.543018][T25690] ? sctp_connect_new_asoc+0x41e/0x770 [ 947.543041][T25690] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 947.543067][T25690] sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 947.543092][T25690] __sctp_connect+0x9fc/0xc70 [ 947.543118][T25690] ? __pfx___sctp_connect+0x10/0x10 [ 947.543141][T25690] ? __pfx_sctp_inet_connect+0x10/0x10 [ 947.543163][T25690] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 947.543189][T25690] ? __pfx_sctp_inet_connect+0x10/0x10 [ 947.543209][T25690] sctp_inet_connect+0x15f/0x220 [ 947.543232][T25690] __sys_connect_file+0x141/0x1a0 [ 947.543251][T25690] __sys_connect+0x141/0x170 [ 947.543266][T25690] ? __pfx___sys_connect+0x10/0x10 [ 947.543293][T25690] __x64_sys_connect+0x72/0xb0 [ 947.543308][T25690] ? lockdep_hardirqs_on+0x78/0x100 [ 947.543326][T25690] do_syscall_64+0x106/0xf80 [ 947.543343][T25690] ? clear_bhb_loop+0x40/0x90 [ 947.543362][T25690] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 947.543377][T25690] RIP: 0033:0x7fa7deb9c799 [ 947.543391][T25690] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 947.543406][T25690] RSP: 002b:00007fa7df971028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 947.543421][T25690] RAX: ffffffffffffffda RBX: 00007fa7dee15fa0 RCX: 00007fa7deb9c799 [ 947.543431][T25690] RDX: 0000000000000054 RSI: 00002000000000c0 RDI: 0000000000000003 [ 947.543441][T25690] RBP: 00007fa7dec32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 947.543451][T25690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 947.543460][T25690] R13: 00007fa7dee16038 R14: 00007fa7dee15fa0 R15: 00007ffc4e374aa8 [ 947.543481][T25690] [ 947.897577][T25707] ptrace attach of "./syz-executor exec"[17623] was attempted by ""[25707] [ 948.155448][ T29] audit: type=1800 audit(4294985729.537:199): pid=25711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3834" name="lu_gp_id" dev="configfs" ino=102604 res=0 errno=0 [ 948.391312][T25692] [U] [ 948.394016][T25692] [U] [ 948.396687][T25692] [U] [ 948.399355][T25692] [U] [ 948.457594][T25692] [U] [ 948.460303][T25692] [U] [ 948.462976][T25692] [U] [ 948.465645][T25692] [U] [ 948.584680][T25692] [U] [ 948.587387][T25692] [U] [ 948.590060][T25692] [U] [ 948.592759][T25692] [U] [ 948.613765][T25722] bridge_slave_1: left allmulticast mode [ 948.620616][T25722] bridge_slave_1: left promiscuous mode [ 948.633888][T25722] bridge0: port 2(bridge_slave_1) entered disabled state [ 948.648351][T25692] [U] [ 948.651038][T25692] [U] [ 948.653708][T25692] [U] [ 948.656379][T25692] [U] [ 948.809195][T25692] [U] [ 948.811912][T25692] [U] [ 948.814582][T25692] [U] [ 948.817251][T25692] [U] [ 948.969012][T25692] [U] [ 948.971725][T25692] [U] [ 948.974397][T25692] [U] [ 948.977119][T25692] [U] [ 949.071841][T25692] [U] [ 949.074566][T25692] [U] [ 949.077243][T25692] [U] [ 949.079912][T25692] [U] [ 949.149211][T25692] [U] [ 949.151927][T25692] [U] [ 949.154598][T25692] [U] [ 949.157266][T25692] [U] [ 949.247192][T25692] [U] [ 949.249986][T25692] [U] [ 949.252662][T25692] [U] [ 949.255341][T25692] [U] [ 949.352788][T25692] [U] [ 949.355502][T25692] [U] [ 949.358178][T25692] [U] [ 949.360851][T25692] [U] [ 949.463347][T25692] [U] [ 949.466068][T25692] [U] [ 949.468752][T25692] [U] [ 949.471428][T25692] [U] [ 949.556196][T25692] [U] [ 949.558905][T25692] [U] [ 949.561576][T25692] [U] [ 949.564247][T25692] [U] [ 949.709269][T25692] [U] [ 949.711990][T25692] [U] [ 949.714684][T25692] [U] [ 949.717374][T25692] [U] [ 949.871332][T25692] [U] [ 949.874047][T25692] [U] [ 949.876720][T25692] [U] [ 949.879393][T25692] [U] [ 949.972297][T25692] [U] [ 949.975004][T25692] [U] [ 949.977677][T25692] [U] [ 949.980349][T25692] [U] [ 950.059920][T25692] [U] [ 950.062670][T25692] [U] [ 950.065345][T25692] [U] [ 950.068019][T25692] [U] [ 950.162883][T25692] [U] [ 950.165625][T25692] [U] [ 950.168305][T25692] [U] [ 950.170973][T25692] [U] [ 950.346014][T25692] [U] [ 950.348736][T25692] [U] [ 950.351411][T25692] [U] [ 950.354080][T25692] [U] [ 950.414616][T25692] [U] [ 950.417324][T25692] [U] [ 950.419996][T25692] [U] [ 950.422668][T25692] [U] [ 950.457871][T25692] [U] [ 950.460582][T25692] [U] [ 950.463255][T25692] [U] [ 950.465922][T25692] [U] [ 950.538307][T25692] [U] [ 950.571206][ T29] audit: type=1800 audit(4294985732.050:200): pid=25760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3837" name="lu_gp_id" dev="configfs" ino=102769 res=0 errno=0 [ 951.296124][ T29] audit: type=1800 audit(4294985732.784:201): pid=25774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3841" name="lu_gp_id" dev="configfs" ino=102829 res=0 errno=0 [ 952.774506][ T29] audit: type=1800 audit(4294985734.241:202): pid=25796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3844" name="lu_gp_id" dev="configfs" ino=102936 res=0 errno=0 [ 954.239094][T25818] [U] ^C [ 954.703786][T25823] netlink: 'syz.1.3854': attribute type 15 has an invalid length. [ 954.820157][T25823] netlink: 186 bytes leftover after parsing attributes in process `syz.1.3854'. [ 956.058540][T25856] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(149044966.797066348.4102581103), cmd(4) [ 957.011313][T25837] Process accounting resumed [ 957.310984][T25866] [U] [ 957.313691][T25866] [U] [ 957.316369][T25866] [U] [ 957.319036][T25866] [U] [ 957.356781][T25866] [U] [ 957.359487][T25866] [U] [ 957.362159][T25866] [U] [ 957.364832][T25866] [U] [ 957.422076][T25866] [U] [ 957.424779][T25866] [U] [ 957.427450][T25866] [U] [ 957.430120][T25866] [U] [ 957.750008][T25866] [U] [ 957.752720][T25866] [U] [ 957.755398][T25866] [U] [ 957.758081][T25866] [U] [ 957.806708][T25866] [U] [ 957.809424][T25866] [U] [ 957.812097][T25866] [U] [ 957.814773][T25866] [U] [ 957.854248][T25866] [U] [ 957.856955][T25866] [U] [ 957.859652][T25866] [U] [ 957.862327][T25866] [U] [ 957.952837][T25866] [U] [ 957.955549][T25866] [U] [ 957.958234][T25866] [U] [ 957.960907][T25866] [U] [ 957.994677][T25866] [U] [ 958.054135][T25866] Process accounting resumed [ 958.261364][T25884] [U]  [ 958.264160][T25884] [U] [ 958.266832][T25884] [U] [ 958.269501][T25884] [U] [ 958.306795][T25884] [U] [ 958.309499][T25884] [U] [ 958.312168][T25884] [U] [ 958.314852][T25884] [U] [ 958.376942][T25884] [U] [ 958.379656][T25884] [U] [ 958.382330][T25884] [U] [ 958.385002][T25884] [U] [ 958.434946][T25884] [U] [ 958.437749][T25884] [U] [ 958.440419][T25884] [U] [ 958.443089][T25884] [U] [ 958.492183][T25884] [U] [ 958.494893][T25884] [U] [ 958.497564][T25884] [U] [ 958.500233][T25884] [U] [ 958.550197][T25884] [U] [ 958.552906][T25884] [U] [ 958.555582][T25884] [U] [ 958.558251][T25884] [U] [ 958.612534][T25884] [U] [ 958.615241][T25884] [U] [ 958.617916][T25884] [U] [ 958.620589][T25884] [U] [ 958.685226][T25884] [U] [ 958.687936][T25884] [U] [ 958.690635][T25884] [U] [ 958.693312][T25884] [U] [ 958.732520][T25884] [U] [ 958.735255][T25884] [U] [ 958.737929][T25884] [U] [ 958.740606][T25884] [U] [ 958.785839][T25884] [U] [ 958.788545][T25884] [U] [ 958.791217][T25884] [U] [ 958.793888][T25884] [U] [ 958.835115][ T29] audit: type=1800 audit(4294985740.353:203): pid=25900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3867" name="lu_gp_id" dev="configfs" ino=103391 res=0 errno=0 [ 958.857727][T25884] [U] [ 958.860418][T25884] [U] [ 958.863100][T25884] [U] [ 958.865780][T25884] [U] [ 958.930269][T25884] [U] [ 958.932977][T25884] [U] [ 958.935651][T25884] [U] [ 958.938341][T25884] [U] [ 958.985043][T25884] [U] [ 958.987760][T25884] [U] [ 958.990440][T25884] [U] [ 958.993109][T25884] [U] [ 959.090551][T25884] [U] [ 959.093266][T25884] [U] [ 959.095941][T25884] [U] [ 959.098610][T25884] [U] [ 959.168020][T25892] netlink: 'syz.0.3868': attribute type 15 has an invalid length. [ 959.176597][T25884] [U] [ 959.179285][T25884] [U] [ 959.181955][T25884] [U] [ 959.184623][T25884] [U] [ 959.212260][T25892] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3868'. [ 959.231628][T25884] [U] [ 959.234332][T25884] [U] [ 959.237003][T25884] [U] [ 959.239761][T25884] [U] [ 959.292850][T25884] [U] [ 961.731423][T25921] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3878'. [ 962.103402][T25931] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 962.176059][T25931] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 962.237186][T25931] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 962.283386][T25931] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 962.617165][T25943] [U] [ 962.619882][T25943] [U] [ 962.622556][T25943] [U] [ 962.625227][T25943] [U] [ 962.680191][T25943] [U] [ 962.682903][T25943] [U] [ 962.685577][T25943] [U] [ 962.688287][T25943] [U] [ 962.766621][T25943] [U] [ 962.769337][T25943] [U] [ 962.772008][T25943] [U] [ 962.774680][T25943] [U] [ 962.813701][T25943] [U] [ 962.816410][T25943] [U] [ 962.819082][T25943] [U] [ 962.821753][T25943] [U] [ 962.883330][T25943] [U] [ 962.886039][T25943] [U] [ 962.888736][T25943] [U] [ 962.891406][T25943] [U] [ 962.939950][T25943] [U] [ 962.942662][T25943] [U] [ 962.945334][T25943] [U] [ 962.948006][T25943] [U] [ 962.985367][T25943] [U] [ 962.988077][T25943] [U] [ 962.990749][T25943] [U] [ 962.993416][T25943] [U] [ 963.047311][T25943] [U] [ 963.050021][T25943] [U] [ 963.052695][T25943] [U] [ 963.055365][T25943] [U] [ 963.106431][T25943] [U] [ 963.109139][T25943] [U] [ 963.111809][T25943] [U] [ 963.114480][T25943] [U] [ 963.141819][T25943] [U] [ 963.144532][T25943] [U] [ 963.147215][T25943] [U] [ 963.149893][T25943] [U] [ 963.195752][T25943] [U] [ 963.198458][T25943] [U] [ 963.201139][T25943] [U] [ 963.203986][T25943] [U] [ 963.270832][T25943] [U] [ 963.273546][T25943] [U] [ 963.276224][T25943] [U] [ 963.278897][T25943] [U] [ 963.369432][T25943] [U] [ 963.372144][T25943] [U] [ 963.374814][T25943] [U] [ 963.377492][T25943] [U] [ 963.454519][T25943] [U] [ 963.457233][T25943] [U] [ 963.459927][T25943] [U] [ 963.462626][T25943] [U] [ 963.512734][T25943] [U] [ 963.515453][T25943] [U] [ 963.518125][T25943] [U] [ 963.520799][T25943] [U] [ 963.566444][T25943] [U] [ 963.569164][T25943] [U] [ 963.571837][T25943] [U] [ 963.574508][T25943] [U] [ 963.634401][T25943] [U] [ 963.637112][T25943] [U] [ 963.639782][T25943] [U] [ 963.642541][T25943] [U] [ 963.700314][T25943] [U] [ 964.137671][T24340] Bluetooth: hci51: command 0x0c1a tx timeout [ 964.217041][T24340] Bluetooth: hci5: command 0x0c1a tx timeout [ 964.297368][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 964.303379][T24340] Bluetooth: hci16: command 0x0c1a tx timeout [ 964.554384][ T29] audit: type=1800 audit(4294985746.103:204): pid=25984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3888" name="lu_gp_id" dev="configfs" ino=103805 res=0 errno=0 [ 964.955689][T25990] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3890'. [ 965.021541][T25990] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 965.079228][T25990] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 965.934089][T26008] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 966.062647][T26008] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 966.228742][T26008] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 966.345264][T26008] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 966.620880][T26016] [U] [ 966.623593][T26016] [U] [ 966.626366][T26016] [U] [ 966.629055][T26016] [U] [ 966.689546][T26016] [U] [ 966.692254][T26016] [U] [ 966.694930][T26016] [U] [ 966.697612][T26016] [U] [ 966.750397][T26016] [U] [ 966.753103][T26016] [U] [ 966.755781][T26016] [U] [ 966.758454][T26016] [U] [ 966.813302][T26016] [U] [ 966.816012][T26016] [U] [ 966.818690][T26016] [U] [ 966.821361][T26016] [U] [ 966.864832][T26016] [U] [ 966.867543][T26016] [U] [ 966.870217][T26016] [U] [ 966.872886][T26016] [U] [ 966.911683][T26016] [U] [ 966.914393][T26016] [U] [ 966.917070][T26016] [U] [ 966.919749][T26016] [U] [ 966.929847][T26029] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3900'. [ 966.956337][T26016] [U] [ 966.959046][T26016] [U] [ 966.961720][T26016] [U] [ 966.964389][T26016] [U] [ 966.979812][T26016] [U] [ 966.982544][T26016] [U] [ 966.985218][T26016] [U] [ 966.987887][T26016] [U] [ 966.995283][T26029] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 967.028377][T26016] [U] [ 967.031078][T26016] [U] [ 967.033762][T26016] [U] [ 967.036450][T26016] [U] [ 967.086559][T26029] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 967.094003][T26016] [U] [ 967.096688][T26016] [U] [ 967.099359][T26016] [U] [ 967.102036][T26016] [U] [ 967.135363][T26016] [U] [ 967.138085][T26016] [U] [ 967.140775][T26016] [U] [ 967.143446][T26016] [U] [ 967.212869][T26016] [U] [ 967.215586][T26016] [U] [ 967.218291][T26016] [U] [ 967.220962][T26016] [U] [ 967.302009][T26016] [U] [ 967.304722][T26016] [U] [ 967.307409][T26016] [U] [ 967.310089][T26016] [U] [ 967.450029][T26016] [U] [ 967.452733][T26016] [U] [ 967.455405][T26016] [U] [ 967.458080][T26016] [U] [ 967.569344][T26016] [U] [ 967.572068][T26016] [U] [ 967.574741][T26016] [U] [ 967.577411][T26016] [U] [ 967.646022][T26016] [U] [ 967.648748][T26016] [U] [ 967.651430][T26016] [U] [ 967.654129][T26016] [U] [ 967.721460][T26016] [U] [ 967.724175][T26016] [U] [ 967.726847][T26016] [U] [ 967.729519][T26016] [U] [ 967.806271][T26016] [U] [ 967.808983][T26016] [U] [ 967.811658][T26016] [U] [ 967.814338][T26016] [U] [ 967.913433][T26016] [U] [ 967.956764][T24340] Bluetooth: hci51: command 0x0c1a tx timeout [ 968.118557][T24340] Bluetooth: hci5: command 0x0c1a tx timeout [ 968.276080][T24340] Bluetooth: hci16: command 0x0c1a tx timeout [ 968.354645][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 969.410429][ T29] audit: type=1800 audit(4294985750.988:205): pid=26089 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3909" name="lu_gp_id" dev="configfs" ino=104157 res=0 errno=0 [ 970.074278][T26101] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 970.196748][T26101] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 970.311895][T26101] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 970.364567][T26101] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 970.812109][T26114] [U]  [ 970.814907][T26114] [U] [ 970.817582][T26114] [U] [ 970.820253][T26114] [U] [ 970.866392][T26114] [U] [ 970.869103][T26114] [U] [ 970.871776][T26114] [U] [ 970.874454][T26114] [U] [ 970.897803][T26114] [U] [ 970.900615][T26114] [U] [ 970.903322][T26114] [U] [ 970.906002][T26114] [U] [ 970.949388][T26114] [U] [ 970.952100][T26114] [U] [ 970.954773][T26114] [U] [ 970.957448][T26114] [U] [ 970.996378][T26114] [U] [ 970.999089][T26114] [U] [ 971.001769][T26114] [U] [ 971.004452][T26114] [U] [ 971.057748][T26114] [U] [ 971.060463][T26114] [U] [ 971.063134][T26114] [U] [ 971.065811][T26114] [U] [ 971.103512][T26114] [U] [ 971.106228][T26114] [U] [ 971.108900][T26114] [U] [ 971.111573][T26114] [U] [ 971.141244][T26114] [U] [ 971.143987][T26114] [U] [ 971.146661][T26114] [U] [ 971.149330][T26114] [U] [ 971.195705][T26114] [U] [ 971.198420][T26114] [U] [ 971.201092][T26114] [U] [ 971.203762][T26114] [U] [ 971.258148][T26114] [U] [ 971.260856][T26114] [U] [ 971.263558][T26114] [U] [ 971.266231][T26114] [U] [ 971.307979][T26114] [U] [ 971.310690][T26114] [U] [ 971.313366][T26114] [U] [ 971.316129][T26114] [U] [ 971.363766][T26114] [U] [ 971.366481][T26114] [U] [ 971.369157][T26114] [U] [ 971.371827][T26114] [U] [ 971.419896][T26114] [U] [ 971.422603][T26114] [U] [ 971.425278][T26114] [U] [ 971.427946][T26114] [U] [ 971.473579][T26114] [U] [ 971.476290][T26114] [U] [ 971.478961][T26114] [U] [ 971.481627][T26114] [U] [ 971.521660][T26114] [U] [ 971.524377][T26114] [U] [ 971.527047][T26114] [U] [ 971.529725][T26114] [U] [ 971.619046][T26114] [U] [ 971.621792][T26114] [U] [ 971.624466][T26114] [U] [ 971.627134][T26114] [U] [ 971.733761][T26114] [U] [ 971.736476][T26114] [U] [ 971.739149][T26114] [U] [ 971.741828][T26114] [U] [ 971.800666][T26114] [U] [ 971.803376][T26114] [U] [ 971.806046][T26114] [U] [ 971.808716][T26114] [U] [ 971.876886][T26114] [U] [ 971.879598][T26114] [U] [ 971.882271][T26114] [U] [ 971.884940][T26114] [U] [ 971.977468][T26114] [U] [ 971.980181][T26114] [U] [ 971.982855][T26114] [U] [ 971.985535][T26114] [U] [ 972.065736][T26114] [U] [ 972.068450][T26114] [U] [ 972.071119][T26114] [U] [ 972.073787][T26114] [U] [ 972.096168][T24340] Bluetooth: hci51: command 0x0c1a tx timeout [ 972.159662][T26114] [U] [ 972.254491][T24340] Bluetooth: hci16: command 0x0c1a tx timeout [ 972.260607][ T5824] Bluetooth: hci5: command 0x0c1a tx timeout [ 972.413477][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 973.459601][T26172] [U] [ 973.462315][T26172] [U] [ 973.464991][T26172] [U] [ 973.467661][T26172] [U] [ 973.542514][T26172] [U] [ 973.545222][T26172] [U] [ 973.547904][T26172] [U] [ 973.550573][T26172] [U] [ 973.597527][T26172] [U] [ 973.600236][T26172] [U] [ 973.602938][T26172] [U] [ 973.605618][T26172] [U] [ 973.648624][T26172] [U] [ 973.651354][T26172] [U] [ 973.654027][T26172] [U] [ 973.656699][T26172] [U] [ 973.717501][T26172] [U] [ 973.720243][T26172] [U] [ 973.722926][T26172] [U] [ 973.725600][T26172] [U] [ 973.780960][T26172] [U] [ 973.783672][T26172] [U] [ 973.786344][T26172] [U] [ 973.789014][T26172] [U] [ 973.877469][T26172] [U] [ 973.880266][T26172] [U] [ 973.882969][T26172] [U] [ 973.885650][T26172] [U] [ 973.936618][T26172] [U] [ 973.939325][T26172] [U] [ 973.942003][T26172] [U] [ 973.944761][T26172] [U] [ 974.013764][T26172] [U] [ 974.016470][T26172] [U] [ 974.019230][T26172] [U] [ 974.021926][T26172] [U] [ 974.103090][T26172] [U] [ 974.105797][T26172] [U] [ 974.108558][T26172] [U] [ 974.111228][T26172] [U] [ 974.165794][T26172] [U] [ 974.168503][T26172] [U] [ 974.171184][T26172] [U] [ 974.173852][T26172] [U] [ 974.251288][T26172] [U] [ 974.254003][T26172] [U] [ 974.256678][T26172] [U] [ 974.259350][T26172] [U] [ 974.332396][T26172] [U] [ 974.335113][T26172] [U] [ 974.337785][T26172] [U] [ 974.340453][T26172] [U] [ 974.389822][T26172] [U] [ 974.392545][T26172] [U] [ 974.395215][T26172] [U] [ 974.397891][T26172] [U] [ 974.459396][T26172] [U] [ 974.462102][T26172] [U] [ 974.464773][T26172] [U] [ 974.467442][T26172] [U] [ 974.527781][T26172] [U] [ 975.212332][T26213] random: crng reseeded on system resumption [ 975.634849][T26224] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3931'. [ 977.517231][T26258] bridge_slave_1: left allmulticast mode [ 977.556811][T26258] bridge_slave_1: left promiscuous mode [ 977.562532][T26258] bridge0: port 2(bridge_slave_1) entered disabled state [ 979.547345][T26302] FAULT_INJECTION: forcing a failure. [ 979.547345][T26302] name failslab, interval 1, probability 0, space 0, times 0 [ 979.594275][T26302] CPU: 0 UID: 0 PID: 26302 Comm: syz.2.3941 Tainted: G L syzkaller #0 PREEMPT(full) [ 979.594303][T26302] Tainted: [L]=SOFTLOCKUP [ 979.594317][T26302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 979.594327][T26302] Call Trace: [ 979.594333][T26302] [ 979.594340][T26302] dump_stack_lvl+0x100/0x190 [ 979.594368][T26302] should_fail_ex.cold+0x5/0xa [ 979.594387][T26302] should_failslab+0xc2/0x120 [ 979.594402][T26302] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 979.594426][T26302] ? __alloc_skb+0x140/0x710 [ 979.594447][T26302] __alloc_skb+0x140/0x710 [ 979.594462][T26302] ? __alloc_skb+0x5b7/0x710 [ 979.594478][T26302] ? __pfx___alloc_skb+0x10/0x10 [ 979.594501][T26302] _sctp_make_chunk+0x51/0x270 [ 979.594519][T26302] sctp_make_control+0x2f/0x2d0 [ 979.594535][T26302] sctp_make_init+0x6d0/0xda0 [ 979.594554][T26302] ? look_up_lock_class+0x55/0x120 [ 979.594573][T26302] ? __pfx_sctp_make_init+0x10/0x10 [ 979.594592][T26302] ? ip_route_output_flow+0x8b/0x150 [ 979.594611][T26302] ? sctp_sm_lookup_event+0x10e/0x520 [ 979.594627][T26302] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 979.594646][T26302] sctp_sf_do_prm_asoc+0xbf/0x360 [ 979.594667][T26302] ? __pfx_sctp_pname+0x10/0x10 [ 979.594682][T26302] sctp_do_sm+0x17a/0x5be0 [ 979.594705][T26302] ? find_held_lock+0x2b/0x80 [ 979.594720][T26302] ? sctp_ulpevent_notify_peer_addr_change+0xf3/0xb70 [ 979.594743][T26302] ? sctp_ulpevent_notify_peer_addr_change+0xf3/0xb70 [ 979.594765][T26302] ? __pfx_sctp_do_sm+0x10/0x10 [ 979.594807][T26302] ? sctp_connect_new_asoc+0x41e/0x770 [ 979.594830][T26302] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 979.594856][T26302] sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 979.594881][T26302] __sctp_connect+0x9fc/0xc70 [ 979.594907][T26302] ? __pfx___sctp_connect+0x10/0x10 [ 979.594930][T26302] ? __pfx_sctp_inet_connect+0x10/0x10 [ 979.594952][T26302] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 979.594977][T26302] ? __pfx_sctp_inet_connect+0x10/0x10 [ 979.594998][T26302] sctp_inet_connect+0x15f/0x220 [ 979.595021][T26302] __sys_connect_file+0x141/0x1a0 [ 979.595039][T26302] __sys_connect+0x141/0x170 [ 979.595055][T26302] ? __pfx___sys_connect+0x10/0x10 [ 979.595083][T26302] __x64_sys_connect+0x72/0xb0 [ 979.595098][T26302] ? lockdep_hardirqs_on+0x78/0x100 [ 979.595115][T26302] do_syscall_64+0x106/0xf80 [ 979.595132][T26302] ? clear_bhb_loop+0x40/0x90 [ 979.595151][T26302] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 979.595167][T26302] RIP: 0033:0x7ff1c719c799 [ 979.595181][T26302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 979.595196][T26302] RSP: 002b:00007ff1c803a028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 979.595211][T26302] RAX: ffffffffffffffda RBX: 00007ff1c7415fa0 RCX: 00007ff1c719c799 [ 979.595222][T26302] RDX: 0000000000000054 RSI: 00002000000000c0 RDI: 0000000000000003 [ 979.595232][T26302] RBP: 00007ff1c7232bd9 R08: 0000000000000000 R09: 0000000000000000 [ 979.595242][T26302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 979.595251][T26302] R13: 00007ff1c7416038 R14: 00007ff1c7415fa0 R15: 00007ffd59c730b8 [ 979.595272][T26302] [ 979.998699][T26303] [U] 0x00060000 [ 980.002285][T26303] [U] [ 980.004964][T26303] [U] [ 980.007633][T26303] [U] [ 980.010302][T26303] [U] [ 980.013136][T26303] [U] [ 980.015818][T26303] [U] [ 980.018486][T26303] [U] [ 980.021158][T26303] [U] [ 980.024853][T26303] [U] [ 980.027536][T26303] [U] [ 980.030211][T26303] [U] [ 980.032880][T26303] [U] [ 980.035996][T26303] [U] [ 980.038674][T26303] [U] [ 980.041343][T26303] [U] [ 980.044013][T26303] [U] [ 980.046933][T26303] [U] [ 980.049610][T26303] [U] [ 980.052278][T26303] [U] [ 980.054946][T26303] [U] [ 980.057816][T26303] [U] [ 980.060490][T26303] [U] [ 980.063160][T26303] [U] [ 980.065828][T26303] [U] [ 980.068628][T26303] [U] [ 980.071300][T26303] [U] [ 980.073969][T26303] [U] [ 980.076639][T26303] [U] [ 980.079438][T26303] [U] [ 980.082125][T26303] [U] [ 980.084793][T26303] [U] [ 980.087463][T26303] [U] [ 980.090412][T26303] [U] [ 980.093091][T26303] [U] [ 980.095770][T26303] [U] [ 980.098440][T26303] [U] [ 980.101327][T26303] [U] [ 980.104002][T26303] [U] [ 980.106684][T26303] [U] [ 980.109460][T26303] [U] [ 980.112311][T26303] [U] [ 980.114988][T26303] [U] [ 980.117665][T26303] [U] [ 980.120340][T26303] [U] [ 980.123760][T26303] [U] [ 980.126452][T26303] [U] [ 980.129127][T26303] [U] [ 980.131802][T26303] [U] [ 980.135098][T26303] [U] [ 980.137783][T26303] [U] [ 980.140462][T26303] [U] [ 980.143131][T26303] [U] [ 980.146262][T26303] [U] [ 980.148940][T26303] [U] [ 980.151606][T26303] [U] [ 980.154277][T26303] [U] [ 980.157088][T26303] [U] [ 980.159760][T26303] [U] [ 980.162432][T26303] [U] [ 980.165099][T26303] [U] [ 980.167910][T26303] [U] [ 980.170584][T26303] [U] [ 980.173253][T26303] [U] [ 980.175928][T26303] [U] [ 980.178823][T26303] [U] [ 980.181501][T26303] [U] [ 980.184169][T26303] [U] [ 980.186836][T26303] [U] [ 980.189633][T26303] [U] [ 980.192305][T26303] [U] [ 980.194973][T26303] [U] [ 980.197649][T26303] [U] [ 980.200442][T26303] [U] [ 980.203113][T26303] [U] [ 980.205786][T26303] [U] [ 980.208456][T26303] [U] [ 980.211240][T26303] [U] [ 980.213913][T26303] [U] [ 980.216581][T26303] [U] [ 980.219249][T26303] [U] [ 980.222299][T26303] [U] [ 980.224974][T26303] [U] [ 980.227643][T26303] [U] [ 980.230311][T26303] [U] [ 980.233959][T26303] [U] [ 980.236636][T26303] [U] [ 980.239304][T26303] [U] [ 980.241972][T26303] [U] [ 980.247348][T26303] [U] [ 980.250046][T26303] [U] [ 980.252749][T26303] [U] [ 980.255435][T26303] [U] [ 980.272128][T26303] [U] [ 980.274834][T26303] [U] [ 980.277507][T26303] [U] [ 980.280176][T26303] [U] [ 980.287639][T26303] [U] [ 980.290339][T26303] [U] [ 980.293012][T26303] [U] [ 980.295682][T26303] [U] [ 980.316866][T26303] [U] [ 980.319572][T26303] [U] [ 980.322248][T26303] [U] [ 980.324917][T26303] [U] [ 980.350508][T26303] [U] [ 980.353237][T26303] [U] [ 980.355916][T26303] [U] [ 980.358593][T26303] [U] [ 980.383504][T26303] [U] [ 980.386222][T26303] [U] [ 980.388900][T26303] [U] [ 980.391570][T26303] [U] [ 980.409274][T26303] [U] [ 980.411987][T26303] [U] [ 980.414660][T26303] [U] [ 980.417330][T26303] [U] [ 980.420526][T26302] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 980.421033][T26303] [U] [ 980.493610][T26311] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(149044966.797066348.4102581103), cmd(4) [ 980.591343][T26314] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 980.667692][T26314] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 980.739312][T26325] ptrace attach of "./syz-executor exec"[19369] was attempted by ""[26325] [ 980.773555][T26314] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 980.833028][T26314] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 981.435601][T26332] [U]  [ 981.438489][T26332] [U] [ 981.441163][T26332] [U] [ 981.443840][T26332] [U] [ 981.480063][T26332] [U] [ 981.482808][T26332] [U] [ 981.485482][T26332] [U] [ 981.488154][T26332] [U] [ 981.528448][T26332] [U] [ 981.531160][T26332] [U] [ 981.533835][T26332] [U] [ 981.536509][T26332] [U] [ 981.753729][T26341] [U] [ 981.771208][T26332] [U] [ 981.773916][T26332] [U] [ 981.776617][T26332] [U] [ 981.779299][T26332] [U] [ 981.812553][T26342] FAULT_INJECTION: forcing a failure. [ 981.812553][T26342] name failslab, interval 1, probability 0, space 0, times 0 [ 981.837176][T26332] [U] [ 981.839886][T26332] [U] [ 981.842558][T26332] [U] [ 981.845230][T26332] [U] [ 981.871086][T26342] CPU: 0 UID: 0 PID: 26342 Comm: syz.3.3946 Tainted: G L syzkaller #0 PREEMPT(full) [ 981.871113][T26342] Tainted: [L]=SOFTLOCKUP [ 981.871119][T26342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 981.871129][T26342] Call Trace: [ 981.871135][T26342] [ 981.871142][T26342] dump_stack_lvl+0x100/0x190 [ 981.871170][T26342] should_fail_ex.cold+0x5/0xa [ 981.871189][T26342] should_failslab+0xc2/0x120 [ 981.871205][T26342] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 981.871227][T26342] ? __d_alloc+0x34/0xa80 [ 981.871249][T26342] __d_alloc+0x34/0xa80 [ 981.871268][T26342] d_alloc_pseudo+0x1c/0xc0 [ 981.871289][T26342] alloc_file_pseudo+0xcf/0x230 [ 981.871309][T26342] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 981.871333][T26342] __shmem_file_setup+0x221/0x490 [ 981.871354][T26342] ? __pfx___shmem_file_setup+0x10/0x10 [ 981.871377][T26342] ? vm_area_alloc+0x1f/0x160 [ 981.871399][T26342] shmem_zero_setup+0x96/0x1b0 [ 981.871423][T26342] __mmap_region+0x2198/0x29e0 [ 981.871447][T26342] ? __pfx___mmap_region+0x10/0x10 [ 981.871473][T26342] ? set_next_entity+0x11e/0x9c0 [ 981.871497][T26342] ? __lock_acquire+0x4a5/0x2630 [ 981.871516][T26342] ? find_held_lock+0x2b/0x80 [ 981.871537][T26342] ? find_held_lock+0x2b/0x80 [ 981.871551][T26342] ? finish_task_switch.isra.0+0x200/0xb80 [ 981.871567][T26342] ? finish_task_switch.isra.0+0x200/0xb80 [ 981.871590][T26342] ? trace_sched_exit_tp+0x13a/0x180 [ 981.871608][T26342] ? __schedule+0x1000/0x6120 [ 981.871648][T26342] ? rcu_is_watching+0x12/0xc0 [ 981.871670][T26342] ? cap_capable+0x107/0x460 [ 981.871706][T26342] mmap_region+0x180/0x3e0 [ 981.871732][T26342] do_mmap+0xc63/0x12f0 [ 981.871753][T26342] ? __pfx_do_mmap+0x10/0x10 [ 981.871769][T26342] ? __pfx_down_write_killable+0x10/0x10 [ 981.871793][T26342] vm_mmap_pgoff+0x29e/0x470 [ 981.871814][T26342] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 981.871832][T26342] ? do_futex+0x192/0x350 [ 981.871857][T26342] ? __pfx_do_futex+0x10/0x10 [ 981.871881][T26342] ksys_mmap_pgoff+0xe1/0x650 [ 981.871898][T26342] ? __x64_sys_futex+0x34f/0x4d0 [ 981.871916][T26342] ? __x64_sys_futex+0x358/0x4d0 [ 981.871936][T26342] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 981.871953][T26342] ? xfd_validate_state+0x129/0x190 [ 981.871978][T26342] __x64_sys_mmap+0x125/0x190 [ 981.872002][T26342] do_syscall_64+0x106/0xf80 [ 981.872019][T26342] ? clear_bhb_loop+0x40/0x90 [ 981.872037][T26342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 981.872053][T26342] RIP: 0033:0x7fae70f9c799 [ 981.872067][T26342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 981.872082][T26342] RSP: 002b:00007fae71e6c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 981.872097][T26342] RAX: ffffffffffffffda RBX: 00007fae71216090 RCX: 00007fae70f9c799 [ 981.872107][T26342] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 981.872117][T26342] RBP: 00007fae71032bd9 R08: 0000000000000401 R09: 0000000000008000 [ 981.872126][T26342] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 981.872136][T26342] R13: 00007fae71216128 R14: 00007fae71216090 R15: 00007ffdd3a37a98 [ 981.872157][T26342] [ 982.195544][T26332] [U] [ 982.198255][T26332] [U] [ 982.200937][T26332] [U] [ 982.203607][T26332] [U] [ 982.206554][T26332] [U] [ 982.209231][T26332] [U] [ 982.211901][T26332] [U] [ 982.214569][T26332] [U] [ 982.217476][T26332] [U] [ 982.220151][T26332] [U] [ 982.222820][T26332] [U] [ 982.225490][T26332] [U] [ 982.228469][T26332] [U] [ 982.231187][T26332] [U] [ 982.233861][T26332] [U] [ 982.236536][T26332] [U] [ 982.239385][T26332] [U] [ 982.242061][T26332] [U] [ 982.244730][T26332] [U] [ 982.247399][T26332] [U] [ 982.250258][T26332] [U] [ 982.252931][T26332] [U] [ 982.255604][T26332] [U] [ 982.258284][T26332] [U] [ 982.261142][T26332] [U] [ 982.263818][T26332] [U] [ 982.266493][T26332] [U] [ 982.269163][T26332] [U] [ 982.272644][T26332] [U] [ 982.275325][T26332] [U] [ 982.277994][T26332] [U] [ 982.280666][T26332] [U] [ 982.284095][T26332] [U] [ 982.286775][T26332] [U] [ 982.289445][T26332] [U] [ 982.292120][T26332] [U] [ 982.295076][T26332] [U] [ 982.297757][T26332] [U] [ 982.300426][T26332] [U] [ 982.303120][T26332] [U] [ 982.306015][T26332] [U] [ 982.308688][T26332] [U] [ 982.311367][T26332] [U] [ 982.314037][T26332] [U] [ 982.316945][T26332] [U] [ 982.319625][T26332] [U] [ 982.322298][T26332] [U] [ 982.324966][T26332] [U] [ 982.327822][T26332] [U] [ 982.330496][T26332] [U] [ 982.333169][T26332] [U] [ 982.335838][T26332] [U] [ 982.338671][T26332] [U] [ 982.341343][T26332] [U] [ 982.344015][T26332] [U] [ 982.346685][T26332] [U] [ 982.349507][T26332] [U] [ 982.352185][T26332] [U] [ 982.354856][T26332] [U] [ 982.357527][T26332] [U] [ 982.360456][T26332] [U] [ 982.363133][T26332] [U] [ 982.365802][T26332] [U] [ 982.368472][T26332] [U] [ 982.371979][T26332] [U] [ 982.374661][T26332] [U] [ 982.377335][T26332] [U] [ 982.380006][T26332] [U] [ 982.383390][T26332] [U] [ 982.386067][T26332] [U] [ 982.388735][T26332] [U] [ 982.391494][T26332] [U] [ 982.394436][T26332] [U] [ 982.397108][T26332] [U] [ 982.399776][T26332] [U] [ 982.402448][T26332] [U] [ 982.405379][T26332] [U] [ 982.408052][T26332] [U] [ 982.410718][T26332] [U] [ 982.413386][T26332] [U] [ 982.416236][T26332] [U] [ 982.418908][T26332] [U] [ 982.421599][T26332] [U] [ 982.424284][T26332] [U] [ 982.427113][T26332] [U] [ 982.429796][T26332] [U] [ 982.432487][T26332] [U] [ 982.435156][T26332] [U] [ 982.437977][T26332] [U] [ 982.440654][T26332] [U] [ 982.443323][T26332] [U] [ 982.445991][T26332] [U] [ 982.448966][T26332] [U] [ 982.451644][T26332] [U] [ 982.454313][T26332] [U] [ 982.456994][T26332] [U] [ 982.459842][T26332] [U] [ 982.462515][T26332] [U] [ 982.465188][T26332] [U] [ 982.467869][T26332] [U] [ 982.471381][T26332] [U] [ 982.474075][T26332] [U] [ 982.476752][T26332] [U] [ 982.479426][T26332] [U] [ 982.482856][T26332] [U] [ 982.485543][T26332] [U] [ 982.488219][T26332] [U] [ 982.490895][T26332] [U] [ 982.493998][T26332] [U] [ 982.496679][T26332] [U] [ 982.499349][T26332] [U] [ 982.502022][T26332] [U] [ 982.512551][T26332] [U] [ 982.515284][T26332] [U] [ 982.517981][T26332] [U] [ 982.520755][T26332] [U] [ 982.543797][T26332] [U] [ 982.546506][T26332] [U] [ 982.549178][T26332] [U] [ 982.551850][T26332] [U] [ 982.554520][T26332] [U] [ 982.591639][T26332] [U] [ 982.594350][T26332] [U] [ 982.597023][T26332] [U] [ 982.599694][T26332] [U] [ 982.610907][T26332] [U] [ 982.613598][T26332] [U] [ 982.616271][T26332] [U] [ 982.618943][T26332] [U] [ 982.628383][T26332] [U] [ 982.631083][T26332] [U] [ 982.633758][T26332] [U] [ 982.636426][T26332] [U] [ 982.649491][T26332] [U] [ 982.652188][T26332] [U] [ 982.654859][T26332] [U] [ 982.657526][T26332] [U] [ 982.694661][T26332] [U] [ 982.697366][T26332] [U] [ 982.700038][T26332] [U] [ 982.702708][T26332] [U] [ 982.720176][T24340] Bluetooth: hci51: command 0x0c1a tx timeout [ 982.750218][T26332] [U] [ 982.752926][T26332] [U] [ 982.755596][T26332] [U] [ 982.758268][T26332] [U] [ 982.781912][T26332] [U] [ 982.784618][T26332] [U] [ 982.787291][T26332] [U] [ 982.789962][T26332] [U] [ 982.821633][T24340] Bluetooth: hci5: command 0x0c1a tx timeout [ 982.842805][T26332] [U] [ 982.845538][T26332] [U] [ 982.848214][T26332] [U] [ 982.850885][T26332] [U] [ 982.869278][T26332] [U] [ 982.871992][T26332] [U] [ 982.874703][T26332] [U] [ 982.877463][T26332] [U] [ 982.896296][T26332] [U] [ 982.899037][T26332] [U] [ 982.901725][T26332] [U] [ 982.904396][T26332] [U] [ 982.922825][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 982.931240][T24340] Bluetooth: hci16: command 0x0c1a tx timeout [ 982.939171][T26332] [U] [ 983.197020][T26358] [U]  [ 983.199810][T26358] [U] [ 983.203162][T26358] [U] file read /dev/ram [ 983.207403][T26358] [U] [ 983.210084][T26358] [U] [ 983.212763][T26358] [U] [ 983.245775][T26358] [U] [ 983.248485][T26358] [U] [ 983.251158][T26358] [U] [ 983.253828][T26358] [U] [ 983.262022][T26358] [U] [ 983.264733][T26358] [U] [ 983.267403][T26358] [U] [ 983.270076][T26358] [U] [ 983.275069][T26358] [U] [ 983.277761][T26358] [U] [ 983.280435][T26358] [U] [ 983.283106][T26358] [U] [ 983.331784][T26358] [U] [ 983.334503][T26358] [U] [ 983.337180][T26358] [U] [ 983.339853][T26358] [U] [ 983.371657][T26358] [U] [ 983.374367][T26358] [U] [ 983.377042][T26358] [U] [ 983.379709][T26358] [U] [ 983.412175][T26358] [U] [ 983.414888][T26358] [U] [ 983.417568][T26358] [U] [ 983.420242][T26358] [U] [ 983.449863][T26358] [U] [ 983.452574][T26358] [U] [ 983.455246][T26358] [U] [ 983.457917][T26358] [U] [ 983.478225][T26340] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3946'. [ 983.492138][T26358] [U] [ 983.494841][T26358] [U] [ 983.497515][T26358] [U] [ 983.500186][T26358] [U] [ 983.524688][T26358] [U] [ 983.527436][T26358] [U] [ 983.530120][T26358] [U] [ 983.532796][T26358] [U] [ 983.615369][T26358] [U] [ 983.618099][T26358] [U] [ 983.620803][T26358] [U] [ 983.623479][T26358] [U] [ 983.674395][T26358] [U] [ 983.677118][T26358] [U] [ 983.679795][T26358] [U] [ 983.682468][T26358] [U] [ 983.757362][T26358] [U] [ 983.760077][T26358] [U] [ 983.762750][T26358] [U] [ 983.765434][T26358] [U] [ 983.818375][T26358] [U] [ 983.821090][T26358] [U] [ 983.823760][T26358] [U] [ 983.826446][T26358] [U] [ 983.861681][T26358] [U] [ 983.864395][T26358] [U] [ 983.867068][T26358] [U] [ 983.869740][T26358] [U] [ 983.914343][T26358] [U] [ 983.917150][T26358] [U] [ 983.919823][T26358] [U] [ 983.922493][T26358] [U] [ 984.076987][T26358] [U] [ 984.079700][T26358] [U] [ 984.082377][T26358] [U] [ 984.085049][T26358] [U] [ 984.152093][T26358] [U] [ 984.293852][ T29] audit: type=1800 audit(4294985765.955:206): pid=26377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3954" name="lu_gp_id" dev="configfs" ino=105038 res=0 errno=0 [ 984.759681][T26387] [U]  [ 984.762578][T26387] [U] [ 984.765250][T26387] [U] [ 984.767922][T26387] [U] [ 984.819168][T26387] [U] [ 984.821894][T26387] [U] [ 984.824581][T26387] [U] [ 984.827254][T26387] [U] [ 984.858900][T26387] [U] [ 984.861613][T26387] [U] [ 984.864284][T26387] [U] [ 984.866957][T26387] [U] [ 984.924512][T26393] [U] [ 984.951205][T26387] [U] [ 984.953920][T26387] [U] [ 984.956595][T26387] [U] [ 984.959273][T26387] [U] [ 984.984778][T26387] [U] [ 984.987488][T26387] [U] [ 984.990165][T26387] [U] [ 984.992841][T26387] [U] [ 985.037977][T26387] [U] [ 985.040686][T26387] [U] [ 985.043360][T26387] [U] [ 985.046028][T26387] [U] [ 985.087741][T26387] [U] [ 985.090451][T26387] [U] [ 985.093124][T26387] [U] [ 985.095796][T26387] [U] [ 985.146841][T26387] [U] [ 985.149557][T26387] [U] [ 985.152233][T26387] [U] [ 985.154906][T26387] [U] [ 985.187273][T26387] [U] [ 985.189984][T26387] [U] [ 985.192656][T26387] [U] [ 985.195328][T26387] [U] [ 985.231697][T26387] [U] [ 985.234411][T26387] [U] [ 985.237087][T26387] [U] [ 985.239760][T26387] [U] [ 985.283387][T26387] [U] [ 985.286100][T26387] [U] [ 985.288787][T26387] [U] [ 985.291494][T26387] [U] [ 985.342809][T26387] [U] [ 985.345520][T26387] [U] [ 985.348190][T26387] [U] [ 985.350867][T26387] [U] [ 985.386912][T26387] [U] [ 985.389620][T26387] [U] [ 985.392290][T26387] [U] [ 985.394960][T26387] [U] [ 985.433992][T26387] [U] [ 985.436704][T26387] [U] [ 985.439379][T26387] [U] [ 985.442062][T26387] [U] [ 985.499127][T26387] [U] [ 985.501858][T26387] [U] [ 985.504541][T26387] [U] [ 985.507300][T26387] [U] [ 985.563903][T26387] [U] [ 985.566618][T26387] [U] [ 985.569318][T26387] [U] [ 985.572002][T26387] [U] [ 985.606974][T26387] [U] [ 985.609686][T26387] [U] [ 985.612360][T26387] [U] [ 985.615029][T26387] [U] [ 985.649785][T26387] [U] [ 985.806850][T26397] FAULT_INJECTION: forcing a failure. [ 985.806850][T26397] name failslab, interval 1, probability 0, space 0, times 0 [ 985.865914][T26397] CPU: 0 UID: 0 PID: 26397 Comm: syz.1.3963 Tainted: G L syzkaller #0 PREEMPT(full) [ 985.865943][T26397] Tainted: [L]=SOFTLOCKUP [ 985.865950][T26397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 985.865960][T26397] Call Trace: [ 985.865966][T26397] [ 985.865972][T26397] dump_stack_lvl+0x100/0x190 [ 985.866000][T26397] should_fail_ex.cold+0x5/0xa [ 985.866020][T26397] should_failslab+0xc2/0x120 [ 985.866036][T26397] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 985.866059][T26397] ? __d_alloc+0x34/0xa80 [ 985.866081][T26397] __d_alloc+0x34/0xa80 [ 985.866100][T26397] d_alloc_pseudo+0x1c/0xc0 [ 985.866121][T26397] alloc_file_pseudo+0xcf/0x230 [ 985.866141][T26397] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 985.866165][T26397] __shmem_file_setup+0x221/0x490 [ 985.866186][T26397] ? __pfx___shmem_file_setup+0x10/0x10 [ 985.866209][T26397] ? vm_area_alloc+0x1f/0x160 [ 985.866230][T26397] shmem_zero_setup+0x96/0x1b0 [ 985.866255][T26397] __mmap_region+0x2198/0x29e0 [ 985.866288][T26397] ? __pfx___mmap_region+0x10/0x10 [ 985.866315][T26397] ? set_next_entity+0x11e/0x9c0 [ 985.866341][T26397] ? __lock_acquire+0x4a5/0x2630 [ 985.866360][T26397] ? find_held_lock+0x2b/0x80 [ 985.866382][T26397] ? find_held_lock+0x2b/0x80 [ 985.866395][T26397] ? finish_task_switch.isra.0+0x200/0xb80 [ 985.866411][T26397] ? finish_task_switch.isra.0+0x200/0xb80 [ 985.866434][T26397] ? trace_sched_exit_tp+0x13a/0x180 [ 985.866452][T26397] ? __schedule+0x1000/0x6120 [ 985.866492][T26397] ? rcu_is_watching+0x12/0xc0 [ 985.866514][T26397] ? cap_capable+0x107/0x460 [ 985.866538][T26397] mmap_region+0x180/0x3e0 [ 985.866564][T26397] do_mmap+0xc63/0x12f0 [ 985.866584][T26397] ? __pfx_do_mmap+0x10/0x10 [ 985.866601][T26397] ? __pfx_down_write_killable+0x10/0x10 [ 985.866625][T26397] vm_mmap_pgoff+0x29e/0x470 [ 985.866646][T26397] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 985.866663][T26397] ? do_futex+0x192/0x350 [ 985.866682][T26397] ? __pfx_do_futex+0x10/0x10 [ 985.866705][T26397] ksys_mmap_pgoff+0xe1/0x650 [ 985.866721][T26397] ? __x64_sys_futex+0x34f/0x4d0 [ 985.866739][T26397] ? __x64_sys_futex+0x358/0x4d0 [ 985.866757][T26397] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 985.866773][T26397] ? xfd_validate_state+0x129/0x190 [ 985.866798][T26397] __x64_sys_mmap+0x125/0x190 [ 985.866822][T26397] do_syscall_64+0x106/0xf80 [ 985.866840][T26397] ? clear_bhb_loop+0x40/0x90 [ 985.866859][T26397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 985.866874][T26397] RIP: 0033:0x7f7e8c79c799 [ 985.866889][T26397] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 985.866904][T26397] RSP: 002b:00007f7e8d5d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 985.866919][T26397] RAX: ffffffffffffffda RBX: 00007f7e8ca15fa0 RCX: 00007f7e8c79c799 [ 985.866930][T26397] RDX: 00004000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 985.866939][T26397] RBP: 00007f7e8c832bd9 R08: 0000000000000401 R09: 0000000000008000 [ 985.866949][T26397] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 985.866959][T26397] R13: 00007f7e8ca16038 R14: 00007f7e8ca15fa0 R15: 00007ffea633dad8 [ 985.866980][T26397] [ 986.744934][T26399] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3963'. [ 986.883098][T26396] Process accounting paused [ 987.079894][ T29] audit: type=1800 audit(4294985768.710:207): pid=26406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3965" name="lu_gp_id" dev="configfs" ino=105126 res=0 errno=0 [ 987.693078][T26394] [U] ^@ [ 988.003467][T26428] [U] [ 988.006192][T26428] [U] [ 988.008865][T26428] [U] [ 988.011536][T26428] [U] [ 988.042384][T26428] [U] [ 988.045101][T26428] [U] [ 988.047807][T26428] [U] [ 988.050485][T26428] [U] [ 988.086954][T26428] [U] [ 988.089664][T26428] [U] [ 988.092335][T26428] [U] [ 988.095010][T26428] [U] [ 988.163061][T26428] [U] [ 988.165778][T26428] [U] [ 988.168471][T26428] [U] [ 988.171141][T26428] [U] [ 988.219403][T26428] [U] [ 988.222113][T26428] [U] [ 988.224783][T26428] [U] [ 988.227461][T26428] [U] [ 988.292698][T26428] [U] [ 988.295425][T26428] [U] [ 988.298111][T26428] [U] [ 988.300788][T26428] [U] [ 988.380617][T26428] [U] [ 988.383329][T26428] [U] [ 988.386002][T26428] [U] [ 988.388671][T26428] [U] [ 988.397339][T26440] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 988.411159][T26428] [U] [ 988.413869][T26428] [U] [ 988.416544][T26428] [U] [ 988.419216][T26428] [U] [ 988.471866][T26428] [U] [ 988.474575][T26428] [U] [ 988.477272][T26428] [U] [ 988.479944][T26428] [U] [ 988.491983][T26440] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 988.520537][T26428] [U] [ 988.523255][T26428] [U] [ 988.525930][T26428] [U] [ 988.528598][T26428] [U] [ 988.549949][T26440] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 988.567347][T26428] [U] [ 988.570048][T26428] [U] [ 988.572722][T26428] [U] [ 988.575393][T26428] [U] [ 988.603534][T26440] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 988.613175][T26428] [U] [ 988.615877][T26428] [U] [ 988.618549][T26428] [U] [ 988.621219][T26428] [U] [ 988.652811][T26428] [U] [ 988.655520][T26428] [U] [ 988.658190][T26428] [U] [ 988.660857][T26428] [U] [ 988.687352][T26428] [U] [ 988.690062][T26428] [U] [ 988.692730][T26428] [U] [ 988.695395][T26428] [U] [ 988.721629][T26428] [U] [ 988.724428][T26428] [U] [ 988.727104][T26428] [U] [ 988.729773][T26428] [U] [ 988.742187][T26428] [U] [ 988.744887][T26428] [U] [ 988.747556][T26428] [U] [ 988.750223][T26428] [U] [ 988.757617][T26428] [U] [ 988.760317][T26428] [U] [ 988.762985][T26428] [U] [ 988.765657][T26428] [U] [ 988.768928][T26428] [U] [ 988.771604][T26428] [U] [ 988.774273][T26428] [U] [ 988.776942][T26428] [U] [ 988.814124][T26428] [U] [ 988.830170][T26428] Process accounting paused [ 988.926634][T26451] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3974'. [ 989.296591][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 989.303860][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 989.446716][T26473] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 989.543449][T26475] [U] [ 989.546188][T26475] [U] [ 989.548863][T26475] [U] [ 989.551533][T26475] [U] [ 989.607940][T26475] [U] [ 989.610673][T26475] [U] [ 989.613348][T26475] [U] [ 989.616015][T26475] [U] [ 989.653182][T26475] [U] [ 989.655892][T26475] [U] [ 989.658586][T26475] [U] [ 989.661264][T26475] [U] [ 989.711330][T26475] [U] [ 989.714036][T26475] [U] [ 989.716709][T26475] [U] [ 989.719378][T26475] [U] [ 989.757948][T26487] FAULT_INJECTION: forcing a failure. [ 989.757948][T26487] name failslab, interval 1, probability 0, space 0, times 0 [ 989.773393][T26475] [U] [ 989.776089][T26475] [U] [ 989.778762][T26475] [U] [ 989.781434][T26475] [U] [ 989.830490][T26475] [U] [ 989.833203][T26475] [U] [ 989.835875][T26475] [U] [ 989.838547][T26475] [U] [ 989.878164][T26475] [U] [ 989.880885][T26475] [U] [ 989.883570][T26475] [U] [ 989.886244][T26475] [U] [ 989.912813][T26487] CPU: 0 UID: 0 PID: 26487 Comm: syz.1.3985 Tainted: G L syzkaller #0 PREEMPT(full) [ 989.912841][T26487] Tainted: [L]=SOFTLOCKUP [ 989.912848][T26487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 989.912857][T26487] Call Trace: [ 989.912863][T26487] [ 989.912870][T26487] dump_stack_lvl+0x100/0x190 [ 989.912899][T26487] should_fail_ex.cold+0x5/0xa [ 989.912920][T26487] should_failslab+0xc2/0x120 [ 989.912936][T26487] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 989.912961][T26487] ? vidtv_psi_desc_clone+0x3aa/0x5d0 [ 989.912981][T26487] kmemdup_noprof+0x29/0x60 [ 989.913004][T26487] vidtv_psi_desc_clone+0x3aa/0x5d0 [ 989.913022][T26487] vidtv_channel_si_init+0x12ef/0x18d0 [ 989.913047][T26487] vidtv_mux_init+0x526/0xbf0 [ 989.913071][T26487] vidtv_start_feed+0x33e/0x4c0 [ 989.913094][T26487] ? __pfx_vidtv_start_feed+0x10/0x10 [ 989.913117][T26487] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 989.913144][T26487] ? mark_held_locks+0x40/0x70 [ 989.913166][T26487] ? __pfx_vidtv_start_feed+0x10/0x10 [ 989.913188][T26487] dmx_ts_feed_start_filtering+0xf6/0x220 [ 989.913207][T26487] dvb_dmxdev_start_feed+0x273/0x3f0 [ 989.913307][T26487] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 989.913332][T26487] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 989.913356][T26487] dvb_demux_do_ioctl+0xe64/0x1200 [ 989.913385][T26487] dvb_usercopy+0x167/0x340 [ 989.913404][T26487] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 989.913427][T26487] ? __pfx_dvb_usercopy+0x10/0x10 [ 989.913455][T26487] ? __fget_files+0x21f/0x3d0 [ 989.913473][T26487] dvb_demux_ioctl+0x29/0x40 [ 989.913492][T26487] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 989.913513][T26487] __x64_sys_ioctl+0x18e/0x210 [ 989.913536][T26487] do_syscall_64+0x106/0xf80 [ 989.913554][T26487] ? clear_bhb_loop+0x40/0x90 [ 989.913573][T26487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 989.913590][T26487] RIP: 0033:0x7f7e8c79c799 [ 989.913604][T26487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 989.913618][T26487] RSP: 002b:00007f7e8d5b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 989.913633][T26487] RAX: ffffffffffffffda RBX: 00007f7e8ca16090 RCX: 00007f7e8c79c799 [ 989.913644][T26487] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 989.913653][T26487] RBP: 00007f7e8c832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 989.913662][T26487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 989.913672][T26487] R13: 00007f7e8ca16128 R14: 00007f7e8ca16090 R15: 00007ffea633dad8 [ 989.913694][T26487] [ 990.178132][T26475] [U] [ 990.180848][T26475] [U] [ 990.183520][T26475] [U] [ 990.186206][T26475] [U] [ 990.189704][T26475] [U] [ 990.192423][T26475] [U] [ 990.195094][T26475] [U] [ 990.197765][T26475] [U] [ 990.200669][T26475] [U] [ 990.203345][T26475] [U] [ 990.206014][T26475] [U] [ 990.208700][T26475] [U] [ 990.212164][T26475] [U] [ 990.214846][T26475] [U] [ 990.217514][T26475] [U] [ 990.220182][T26475] [U] [ 990.223597][T26475] [U] [ 990.226275][T26475] [U] [ 990.228944][T26475] [U] [ 990.231612][T26475] [U] [ 990.234715][T26475] [U] [ 990.237401][T26475] [U] [ 990.240069][T26475] [U] [ 990.242740][T26475] [U] [ 990.245613][T26475] [U] [ 990.248287][T26475] [U] [ 990.250956][T26475] [U] [ 990.253622][T26475] [U] [ 990.256531][T26475] [U] [ 990.259202][T26475] [U] [ 990.261875][T26475] [U] [ 990.264542][T26475] [U] [ 990.267383][T26475] [U] [ 990.270053][T26475] [U] [ 990.272729][T26475] [U] [ 990.275395][T26475] [U] [ 990.278325][T26475] [U] [ 990.280999][T26475] [U] [ 990.283668][T26475] [U] [ 990.286333][T26475] [U] [ 990.293885][T26475] [U] [ 990.296579][T26475] [U] [ 990.299249][T26475] [U] [ 990.301919][T26475] [U] [ 990.304793][T26475] [U] [ 990.307465][T26475] [U] [ 990.310134][T26475] [U] [ 990.312803][T26475] [U] [ 990.316161][T26475] [U] [ 990.318836][T26475] [U] [ 990.321513][T26475] [U] [ 990.324184][T26475] [U] [ 990.327726][T26475] [U] [ 990.330407][T26475] [U] [ 990.333078][T26475] [U] [ 990.335749][T26475] [U] [ 990.338764][T26475] [U] [ 990.341439][T26475] [U] [ 990.344109][T26475] [U] [ 990.346775][T26475] [U] [ 990.349611][T26475] [U] [ 990.352283][T26475] [U] [ 990.354949][T26475] [U] [ 990.357619][T26475] [U] [ 990.360467][T26475] [U] [ 990.363143][T26475] [U] [ 990.365811][T26475] [U] [ 990.368512][T26475] [U] [ 990.371448][T26475] [U] [ 990.374126][T26475] [U] [ 990.376792][T26475] [U] [ 990.379460][T26475] [U] [ 990.382312][T26475] [U] [ 990.384984][T26475] [U] [ 990.387654][T26475] [U] [ 990.390321][T26475] [U] [ 990.393150][T26475] [U] [ 990.395830][T26475] [U] [ 990.398511][T26475] [U] [ 990.401181][T26475] [U] [ 990.404471][T26475] [U] [ 990.407148][T26475] [U] [ 990.409822][T26475] [U] [ 990.412494][T26475] [U] [ 990.416096][T26475] [U] [ 990.418782][T26475] [U] [ 990.421452][T26475] [U] [ 990.424127][T26475] [U] [ 990.427524][T26475] [U] [ 990.430210][T26475] [U] [ 990.432883][T26475] [U] [ 990.435557][T26475] [U] [ 990.438545][T26475] [U] [ 990.441224][T26475] [U] [ 990.443895][T26475] [U] [ 990.446566][T26475] [U] [ 990.469675][T26475] [U] [ 990.472388][T26475] [U] [ 990.475065][T26475] [U] [ 990.477740][T26475] [U] [ 990.480418][T26475] [U] [ 990.515135][T26475] [U] [ 990.517845][T26475] [U] [ 990.520520][T26475] [U] [ 990.523190][T26475] [U] [ 990.547387][T26475] [U] [ 990.550094][T26475] [U] [ 990.552767][T26475] [U] [ 990.555445][T26475] [U] [ 990.578799][T26475] [U] [ 990.581511][T26475] [U] [ 990.584185][T26475] [U] [ 990.586869][T26475] [U] [ 990.600508][ T5824] Bluetooth: hci51: command 0x0c1a tx timeout [ 990.606642][ T5824] Bluetooth: hci16: command 0x0c1a tx timeout [ 990.619163][ T5824] Bluetooth: hci5: command 0x0c1a tx timeout [ 990.639294][T26475] [U] [ 990.642002][T26475] [U] [ 990.644673][T26475] [U] [ 990.647345][T26475] [U] [ 990.657224][T24340] Bluetooth: hci7: command 0x0c1a tx timeout [ 990.708864][T26475] [U] [ 990.711582][T26475] [U] [ 990.714260][T26475] [U] [ 990.716931][T26475] [U] [ 990.773379][T26475] [U] [ 990.776090][T26475] [U] [ 990.778764][T26475] [U] [ 990.781433][T26475] [U] [ 990.794628][T26494] netlink: 74 bytes leftover after parsing attributes in process `syz.3.3986'. [ 990.814079][T26475] [U] [ 990.816786][T26475] [U] [ 990.819461][T26475] [U] [ 990.822135][T26475] [U] [ 990.836280][T26475] [U] [ 990.839002][T26475] [U] [ 990.841677][T26475] [U] [ 990.844349][T26475] [U] [ 990.866291][T26475] [U] [ 991.299901][T26500] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3987'. [ 991.443470][T26502] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 991.536497][T26502] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 991.603159][T26502] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 991.648875][ T29] audit: type=1800 audit(4294985773.333:208): pid=26509 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3988" name="lu_gp_id" dev="configfs" ino=105564 res=0 errno=0 [ 991.691600][T26502] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 993.346248][T26523] [U] ^@ [ 993.401937][T26548] Bluetooth: hci51: Opcode 0x0c1a failed: -4 [ 993.480191][T26548] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 993.555240][T26548] Bluetooth: hci16: Opcode 0x0c1a failed: -4 [ 993.618176][T26548] Bluetooth: hci7: Opcode 0x0c1a failed: -4 [ 993.710530][T26561] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input28 [ 993.898434][T26565] FAULT_INJECTION: forcing a failure. [ 993.898434][T26565] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 993.977474][T26565] CPU: 0 UID: 0 PID: 26565 Comm: syz.2.4004 Tainted: G L syzkaller #0 PREEMPT(full) [ 993.977500][T26565] Tainted: [L]=SOFTLOCKUP [ 993.977505][T26565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 993.977514][T26565] Call Trace: [ 993.977521][T26565] [ 993.977527][T26565] dump_stack_lvl+0x100/0x190 [ 993.977554][T26565] should_fail_ex.cold+0x5/0xa [ 993.977573][T26565] _copy_to_user+0x32/0xd0 [ 993.977590][T26565] simple_read_from_buffer+0xcb/0x170 [ 993.977615][T26565] proc_fail_nth_read+0x1af/0x230 [ 993.977634][T26565] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 993.977653][T26565] ? rw_verify_area+0xce/0x6d0 [ 993.977674][T26565] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 993.977692][T26565] vfs_read+0x1e4/0xb30 [ 993.977717][T26565] ? __pfx_vfs_read+0x10/0x10 [ 993.977739][T26565] ? __fget_files+0x215/0x3d0 [ 993.977757][T26565] ? __fget_files+0x21f/0x3d0 [ 993.977776][T26565] ksys_read+0x12a/0x250 [ 993.977798][T26565] ? __pfx_ksys_read+0x10/0x10 [ 993.977827][T26565] do_syscall_64+0x106/0xf80 [ 993.977845][T26565] ? clear_bhb_loop+0x40/0x90 [ 993.977864][T26565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 993.977879][T26565] RIP: 0033:0x7ff1c715cfce [ 993.977892][T26565] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 993.977906][T26565] RSP: 002b:00007ff1c8039fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 993.977921][T26565] RAX: ffffffffffffffda RBX: 00007ff1c803a6c0 RCX: 00007ff1c715cfce [ 993.977931][T26565] RDX: 000000000000000f RSI: 00007ff1c803a0a0 RDI: 0000000000000004 [ 993.977940][T26565] RBP: 00007ff1c803a090 R08: 0000000000000000 R09: 0000000000000000 [ 993.977949][T26565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 993.977958][T26565] R13: 00007ff1c7416038 R14: 00007ff1c7415fa0 R15: 00007ffd59c730b8 [ 993.977978][T26565] [ 994.687809][T26575] netlink: 74 bytes leftover after parsing attributes in process `syz.0.4006'. [ 995.372286][T26592] netlink: 'syz.1.4011': attribute type 1 has an invalid length. [ 995.413852][ T5824] Bluetooth: hci51: command 0x0c1a tx timeout [ 995.495462][ T5824] Bluetooth: hci5: command 0x0c1a tx timeout [ 995.573979][ T5824] Bluetooth: hci16: command 0x0c1a tx timeout [ 995.653810][ T5824] Bluetooth: hci7: command 0x0c1a tx timeout [ 996.191521][T26595] [U] ^@ [ 996.553533][T26620] FAULT_INJECTION: forcing a failure. [ 996.553533][T26620] name failslab, interval 1, probability 0, space 0, times 0 [ 996.735563][T26620] CPU: 0 UID: 0 PID: 26620 Comm: syz.3.4016 Tainted: G L syzkaller #0 PREEMPT(full) [ 996.735590][T26620] Tainted: [L]=SOFTLOCKUP [ 996.735596][T26620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 996.735606][T26620] Call Trace: [ 996.735612][T26620] [ 996.735619][T26620] dump_stack_lvl+0x100/0x190 [ 996.735648][T26620] should_fail_ex.cold+0x5/0xa [ 996.735668][T26620] should_failslab+0xc2/0x120 [ 996.735685][T26620] __kmalloc_cache_noprof+0x7a/0x6f0 [ 996.735705][T26620] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 996.735731][T26620] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 996.735754][T26620] vidtv_mux_init+0x8a6/0xbf0 [ 996.735777][T26620] vidtv_start_feed+0x33e/0x4c0 [ 996.735801][T26620] ? __pfx_vidtv_start_feed+0x10/0x10 [ 996.735824][T26620] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 996.735851][T26620] ? mark_held_locks+0x40/0x70 [ 996.735873][T26620] ? __pfx_vidtv_start_feed+0x10/0x10 [ 996.735895][T26620] dmx_ts_feed_start_filtering+0xf6/0x220 [ 996.735915][T26620] dvb_dmxdev_start_feed+0x273/0x3f0 [ 996.735939][T26620] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 996.735963][T26620] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 996.735987][T26620] dvb_demux_do_ioctl+0xe64/0x1200 [ 996.736016][T26620] dvb_usercopy+0x167/0x340 [ 996.736035][T26620] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 996.736059][T26620] ? __pfx_dvb_usercopy+0x10/0x10 [ 996.736098][T26620] ? __fget_files+0x21f/0x3d0 [ 996.736117][T26620] dvb_demux_ioctl+0x29/0x40 [ 996.736138][T26620] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 996.736159][T26620] __x64_sys_ioctl+0x18e/0x210 [ 996.736183][T26620] do_syscall_64+0x106/0xf80 [ 996.736211][T26620] ? clear_bhb_loop+0x40/0x90 [ 996.736230][T26620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 996.736247][T26620] RIP: 0033:0x7fae70f9c799 [ 996.736261][T26620] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 996.736276][T26620] RSP: 002b:00007fae71e6c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 996.736291][T26620] RAX: ffffffffffffffda RBX: 00007fae71216090 RCX: 00007fae70f9c799 [ 996.736301][T26620] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 996.736313][T26620] RBP: 00007fae71032bd9 R08: 0000000000000000 R09: 0000000000000000 [ 996.736322][T26620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 996.736332][T26620] R13: 00007fae71216128 R14: 00007fae71216090 R15: 00007ffdd3a37a98 [ 996.736353][T26620] [ 997.306918][T17615] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 997.318838][T17615] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 997.327239][T17615] CPU: 0 UID: 0 PID: 17615 Comm: kworker/0:0 Tainted: G L syzkaller #0 PREEMPT(full) [ 997.338241][T17615] Tainted: [L]=SOFTLOCKUP [ 997.342545][T17615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 997.352600][T17615] Workqueue: events vidtv_mux_tick [ 997.357705][T17615] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 997.364282][T17615] Code: ec 41 dc f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 997.383869][T17615] RSP: 0018:ffffc900048cf3f8 EFLAGS: 00010202 [ 997.389915][T17615] RAX: 0000000000000002 RBX: ffffc900048cf678 RCX: 0000000000000002 [ 997.397867][T17615] RDX: 0000000000000000 RSI: ffffffff882bd454 RDI: ffff888078c70000 [ 997.405818][T17615] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 997.413767][T17615] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900048cf698 [ 997.421715][T17615] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 997.429663][T17615] FS: 0000000000000000(0000) GS:ffff88812434d000(0000) knlGS:0000000000000000 [ 997.438573][T17615] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 997.445138][T17615] CR2: 0000001b2f2d3ff8 CR3: 0000000079414000 CR4: 00000000003526f0 [ 997.453088][T17615] Call Trace: [ 997.456348][T17615] [ 997.459273][T17615] ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10 [ 997.465594][T17615] vidtv_psi_pmt_write_into+0x3b2/0xa70 [ 997.471123][T17615] ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10 [ 997.477169][T17615] ? vidtv_psi_pat_write_into+0x56a/0x690 [ 997.482868][T17615] ? __pfx_vidtv_psi_pat_write_into+0x10/0x10 [ 997.488914][T17615] ? __lock_acquire+0x4a5/0x2630 [ 997.493840][T17615] vidtv_mux_push_si+0x932/0xe80 [ 997.498762][T17615] ? __pfx_vidtv_mux_push_si+0x10/0x10 [ 997.504210][T17615] ? __pfx_vidtv_ts_pcr_write_into+0x10/0x10 [ 997.510181][T17615] ? find_held_lock+0x2b/0x80 [ 997.514835][T17615] ? debug_object_activate+0x331/0x490 [ 997.520282][T17615] ? do_raw_spin_unlock+0x145/0x1e0 [ 997.525470][T17615] vidtv_mux_tick+0xe96/0x1480 [ 997.530218][T17615] ? debug_object_activate+0x331/0x490 [ 997.535674][T17615] ? __lock_acquire+0x4a5/0x2630 [ 997.540621][T17615] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 997.545815][T17615] ? __lock_acquire+0x4a5/0x2630 [ 997.550739][T17615] ? debug_object_deactivate+0x2e4/0x3b0 [ 997.556376][T17615] ? rcu_is_watching+0x12/0xc0 [ 997.561137][T17615] process_one_work+0x9d7/0x1920 [ 997.566073][T17615] ? __pfx_process_one_work+0x10/0x10 [ 997.571437][T17615] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 997.576622][T17615] worker_thread+0x5da/0xe40 [ 997.581204][T17615] ? __pfx_worker_thread+0x10/0x10 [ 997.586304][T17615] ? kthread+0x13a/0x450 [ 997.590531][T17615] ? __pfx_worker_thread+0x10/0x10 [ 997.595630][T17615] kthread+0x370/0x450 [ 997.599685][T17615] ? __pfx_kthread+0x10/0x10 [ 997.604259][T17615] ret_from_fork+0x754/0xd80 [ 997.608838][T17615] ? __pfx_ret_from_fork+0x10/0x10 [ 997.613941][T17615] ? rcu_is_watching+0x12/0xc0 [ 997.618693][T17615] ? __switch_to+0x7b4/0x1120 [ 997.623366][T17615] ? __pfx_kthread+0x10/0x10 [ 997.627947][T17615] ret_from_fork_asm+0x1a/0x30 [ 997.632698][T17615] [ 997.635695][T17615] Modules linked in: [ 997.640194][T17615] ---[ end trace 0000000000000000 ]--- [ 998.292998][T17615] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 998.308394][T17615] Code: ec 41 dc f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 998.348679][T17615] RSP: 0018:ffffc900048cf3f8 EFLAGS: 00010202 [ 998.364072][T17615] RAX: 0000000000000002 RBX: ffffc900048cf678 RCX: 0000000000000002 [ 998.381101][T17615] RDX: 0000000000000000 RSI: ffffffff882bd454 RDI: ffff888078c70000 [ 998.397781][T17615] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 998.414541][T17615] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900048cf698 [ 998.431245][T17615] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 998.447089][T17615] FS: 0000000000000000(0000) GS:ffff88812434d000(0000) knlGS:0000000000000000 [ 998.466452][T17615] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 998.482251][T17615] CR2: 00007fa7dede6158 CR3: 0000000075b36000 CR4: 00000000003526f0 [ 998.499102][T17615] Kernel panic - not syncing: Fatal exception [ 998.505218][T17615] Kernel Offset: disabled [ 998.509522][T17615] Rebooting in 86400 seconds..