last executing test programs: 2m55.977411144s ago: executing program 1 (id=3528): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/net\x00') sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f00000001c0)="624d1bfe595046ab5c98199adf260600de16baef6176e6021e1dce210500e8fdffff0000000000fffffffe00a7ed73de11691c13403c82be", 0x7b) process_mrelease$auto(0xffffffffffffffff, 0xa) write$auto(0x3, 0x0, 0x100082) socket(0x2, 0x1, 0x106) semctl$auto_SETALL(0x9, 0xd, 0x11, 0x8) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 2m53.560994286s ago: executing program 1 (id=3531): fallocate$auto(0xffffffffffffffff, 0x0, 0x9, 0x4cbd60) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) fanotify_mark$auto(0xffffffffffffffff, 0x1, 0x6, 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00') r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x18b800, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) r1 = clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) capget$auto(0x0, 0xfffffffffffffffe) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) fcntl$auto(r0, 0x40, r1) io_uring_setup$auto(0x1, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MM_GET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x22}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x4802, 0x0) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x112, 0x80006) 2m51.839677649s ago: executing program 1 (id=3537): mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000440)='/dev/dsp1\x00', 0xa0342, 0x0) write$auto(r0, 0x0, 0x1) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0) write$auto(r0, 0x0, 0xfffffdef) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x5) mmap$auto(0x6, 0x4, 0x4000000000dd, 0x40eb1, 0xffffffffffffffff, 0x300000000000) mmap$auto(0xb1, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0x400006, 0x40, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(r2, 0x8, 0x0) clone$auto(0x3fff, 0xad3, 0x0, 0x0, 0x8000002) mmap$auto(0xfffffffffffffffb, 0x400008, 0x400df, 0x19, r2, 0x2a7d) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) acct$auto(&(0x7f00000000c0)) syz_clone(0x1b334800, 0x0, 0x0, 0x0, 0x0, 0x0) mlock$auto(0x0, 0x7fffffffffffefff) mq_notify$auto(0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/devices/virtual/net/bond0/bonding/arp_ip_target\x00', 0xa0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r4, &(0x7f0000003900)='\t', 0x1) write$auto(r3, &(0x7f0000000080)=')@-!\x00', 0x1e1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) 2m49.852734964s ago: executing program 1 (id=3540): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000100)="000004") mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x80}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x7, 0x13e, 0x0, 0xfffffffffffffffd) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x402, 0x0) write$auto(r2, 0x0, 0x7) write$auto(0x3, 0x0, 0x100000000) r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, r1) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_TDLS_MGMT(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000226bd7000ffdbdf25520000000400cc0008006b4778ea9cd2004bd58300000000"], 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x4) shutdown$auto(0x200000003, 0x2) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) mmap$auto(0x3, 0x20009, 0xe3, 0xeb1, 0x401, 0x8000) timer_create$auto(0x9, 0x0, 0x0) r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r5, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r5, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r5, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff038}}) write$auto(0xffffffffffffffff, 0x0, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYRES16=r3, @ANYRES32=r2, @ANYBLOB=']}'], 0x1ac}}, 0x40000) 2m46.640004628s ago: executing program 1 (id=3549): r0 = memfd_create$auto(&(0x7f0000000300)='/sys/kernel/debug/x86/boot_params/data\x00\"F\xb6\xcd\x06\xd6\x97\\L\xe1\xb2\xee\xb8\x8e\xd6O\xa1j\x90w\xc7\x94\xb7yi\x01&\x04b/\xaa\xfb#s\xc4\xa3\xa7\xacj\xc6\x8e\xf4L\x9a\xf8\xcc\xdcy\x9f\x93\xbc\xf6\xc8\xdb\x05w,|B\xfc\x04\x97\xd3\x0f\x8b\x81\xe8\xbc\x81\x0e\xd7o\xd2\xcd\x18z\xc2\xb7|\xe1\xa6\x9a~\x96\x10rnLnt\xdb\xdb-\x1b\x99\xd4\xed;\xf8\x13a\r\xf2\a\x85%\xef\xa7\x7f#\x96\xf2S\xb0\xf1Hq\x0f;\x83\xb7\x0fz\x9dN\xc9\x1e\x15r\x97|\xbfE\xce\"', 0x4) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) fanotify_mark$auto(r0, 0x1, 0x6, r0, &(0x7f0000000040)='./file0\x00') r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x18b800, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) r2 = clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) capget$auto(0x0, 0xfffffffffffffffe) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) fcntl$auto(r1, 0x40, r2) io_uring_setup$auto(0x1, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MM_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd7000fbdbdf252a00000018000000000002006261746164765f736c6176655f300000c29bca7f005563ff95b2170ebd64faaeb38d6ce6be4cc273a25bca431fd446c3aff0e35f30ba76c480895f64a88e9beb93e9da195fc089f67ce24493468665edf0ba0190de551f9b5fc641f8eba5394ebc02b14eebccdbc5cd8e6be16387a3a816c4f5844501db39e670241fd6f6bb809c0c45b8970f00000000000000164eb03c6032907b45ae61e3888f6b5b19076f6027020f13591edd0355a7066a36754a3d2116272026d529000a218d341e0e9fd93146884733ce351be13f4fda4e0eb800237be0e71e06c473d9837cd007b401bcf8b1bf28f2ab1dd7b50c982d182c097884b1913435f5f5196ee472fe9bfac77d166d88fc2b1af2156dc001ce86620c8262bb79263fe1f20fd72380cd5426fc65fddb41f2819c911bee97f1af1aff8013ea89b681ccb80d90a4f198763ca7c007c65b1cdff5223766e6a779dcd9d83498ac7037092f8bd1cf721e7d65673d49d494865abbde6148aba20d35e61ffb78fb2c1c93bcd1c12db04301000000000000006b3073dd429bf68658fac71473f2a7482d665cd5a57a612399791eea63fcb0674382"], 0x2c}, 0x1, 0x0, 0x0, 0x22}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x4802, 0x0) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x112, 0x80006) 2m45.323596835s ago: executing program 1 (id=3550): r0 = socket(0x26, 0x808, 0x1000) getsockopt$auto(r0, 0x84, 0xe, 0x0, &(0x7f0000000040)=0xb0) syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_HANDSHAKE_CMD_DONE(0xffffffffffffffff, 0x0, 0xd4) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/tcp_fastopen_key\x00', 0x181081, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x10, 0x3, 0x2) pipe$auto(&(0x7f0000000080)=0xffffffffffffffff) flock$auto(r1, 0x5) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x870bd2b, 0x25dfdbfc, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x8, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x4}]}]}, 0x1c}, 0x1, 0x5001, 0x0, 0xc000}, 0x20000000) bpf$auto(0x6, &(0x7f00000001c0)=@bpf_attr_11={0x1000000009, 0x7fffffff, 0x8, 0x4, 0x8, 0x6c73, 0x4}, 0xfffffffc) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x11, 0x80003, 0x200300) r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000000)="fc06c1f730b9d2867a8ba29f242cf38f59f712") mmap$auto(0x0, 0x10000, 0xde, 0x11, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 2m43.84220586s ago: executing program 2 (id=3553): mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) fstat$auto(0xffffffffffffffff, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101c40, 0x0) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/dri/0000:00:02.0/Virtual-2/edid_override\x00', 0xc0a82, 0x0) readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007) ioctl$auto(r0, 0x560a, r1) mbind$auto(0x0, 0x800, 0x1c, &(0x7f00000000c0)=0x4, 0xfff, 0x2) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/route/flush\x00', 0x80401, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) settimeofday$auto(&(0x7f0000000080)={0x7fffffff, 0x5}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/blkio.bfq.weight\x00', 0x400, 0x0) read$auto(r2, 0x0, 0x20) r3 = socket(0xa, 0x5, 0x84) setsockopt$auto(r3, 0x10000000084, 0x22, 0x0, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) write$auto(0x3, 0x0, 0xfdef) r4 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x110) fcntl$auto(r4, 0xb, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x80302, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3) madvise$auto(0xffe00000, 0xffffffffffff0005, 0x19) msync$auto(0x100000000, 0x0, 0x3) 2m42.120250146s ago: executing program 2 (id=3557): r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x6, 0x7, &(0x7f00000003c0)='/dev/ptys4\x00', &(0x7f0000000000)=0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) set_mempolicy_home_node$auto(0x0, 0x5, 0x1ff, 0x0) 2m39.681777107s ago: executing program 2 (id=3562): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6) syz_open_procfs$namespace(0x0, &(0x7f0000000300)='ns/net\x00') sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) write$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffffff, &(0x7f00000001c0)="624d1bfe595046ab5c98199adf260600de16baef6176e6021e1dce210500e8fdffff0000000000fffffffe00a7ed73de11691c13403c82be", 0x7b) process_mrelease$auto(0xffffffffffffffff, 0xa) socket(0x2, 0x1, 0x106) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vhci_hcd.4/usb18/18-0:1.0/usb18-port3/location\x00', 0x0, 0x0) semctl$auto_SETALL(0x9, 0xd, 0x11, 0x8) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 2m38.169901098s ago: executing program 2 (id=3563): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x3, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x180, 0x82, 0x11}, 0x18) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x88402, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) write$auto(0x3, 0x0, 0xffd6) recvfrom$auto(0x3, 0x0, 0x0, 0xfffff4b4, 0x0, 0xfffffffffffffffd) 2m37.975774236s ago: executing program 2 (id=3564): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000100)) write$auto(0x3, 0x0, 0x100000000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) 2m37.630763s ago: executing program 2 (id=3565): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) (async) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x2000000000000, 0x400000200006, 0x2, 0x40eb1, r1, 0x300000000000) (async) mmap$auto(0x2000000000000, 0x400000200006, 0x2, 0x40eb1, r1, 0x300000000000) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/free_buffer\x00', 0x20103, 0x0) (async) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/free_buffer\x00', 0x20103, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x9, 0x0) (async) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x9, 0x0) linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400) ioctl$auto_BLKRRPART(r1, 0xc0401289, 0x0) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) (async) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x39b8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) r3 = socket(0xa, 0x3, 0x3b) getsockopt$auto(r3, 0x29, 0x3, 0x0, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22840, 0x154) (async) open(&(0x7f0000000800)='./file0\x00', 0x22840, 0x154) mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) (async) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r4) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r4, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r4, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) (async) r6 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) write$auto(r6, &(0x7f0000000240)=' U\x15\xa2t\xe0\x1b\xb0\xff\xe8\x91@\x88\n\x92\xf1rL\x9c\rg-\xcc]\x0e\x06\x03\a0k\x85&YS\xb0;\xfd\xd6\x0eH\xb3 \xc2`\xbc\xec\f\xd0\x97\x19\xa6Y\xb0\x15Z/\xe2\xc3\x8e\xc1\xa7v\xe3\xc3\xb0d\x86\x8f\x86\x14S\xdc\xe2G\xb5\x8dN%\x84\xa3\xb4\xb8!\xf9\x01=4T\xb2\xff\a\x9dB\x00\xa4w\xbe*\xa5\xe4q\xd23\xdf\xcce\x17\xc1WX\x02\x00\x00\x00>R\x1b\xf6.8\xf0\x93\x9cp\xe9\xc4\x1c\x9cd#\xaf \x84\xdf\xf5\x1e\xc3\xb7\xdc\n\xb3\xf0\xa9\xc9B\xe5\xa8k\x9f\xaddwvR\x0e\xfbb$c\x14-L\x979\xc4qK\xed\xe0?\xfd\xabZ\"\xcd\xda\x14\xacs\x87\nR\xb4\xe01\xc0\xe1@\x1a\xab\xa7\xe9\xbf>JR\xd6\xa5-\x97!\x82;\x1ac\n7\x18\xc2\xf0\xd0\xcb`\x1dq\xd7\x13=\r[\xb5$\x11N\xbf\x9b\xf2\xe0G~\xd3(\xbbCB\xdf\xa4\x1c\xdc\xcd\xb10xffffffffffffffff) flock$auto(r1, 0x5) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000000)={0x1c, r3, 0x1, 0x870bd2b, 0x25dfdbfc, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x8, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x4}]}]}, 0x1c}, 0x1, 0x5001, 0x0, 0xc000}, 0x20000000) bpf$auto(0x6, &(0x7f00000001c0)=@bpf_attr_11={0x1000000009, 0x7fffffff, 0x8, 0x4, 0x8, 0x6c73, 0x4}, 0xfffffffc) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x11, 0x80003, 0x200300) r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000000)="fc06c1f730b9d2867a8ba29f242cf38f59f712") mmap$auto(0x0, 0x10000, 0xde, 0x11, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 2m22.313310626s ago: executing program 33 (id=3565): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) (async) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x2000000000000, 0x400000200006, 0x2, 0x40eb1, r1, 0x300000000000) (async) mmap$auto(0x2000000000000, 0x400000200006, 0x2, 0x40eb1, r1, 0x300000000000) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/free_buffer\x00', 0x20103, 0x0) (async) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/free_buffer\x00', 0x20103, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x9, 0x0) (async) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x9, 0x0) linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400) ioctl$auto_BLKRRPART(r1, 0xc0401289, 0x0) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) (async) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x39b8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) r3 = socket(0xa, 0x3, 0x3b) getsockopt$auto(r3, 0x29, 0x3, 0x0, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22840, 0x154) (async) open(&(0x7f0000000800)='./file0\x00', 0x22840, 0x154) mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) (async) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r4) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r4, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r4, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000000180)={0x28, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) (async) r6 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) write$auto(r6, &(0x7f0000000240)=' U\x15\xa2t\xe0\x1b\xb0\xff\xe8\x91@\x88\n\x92\xf1rL\x9c\rg-\xcc]\x0e\x06\x03\a0k\x85&YS\xb0;\xfd\xd6\x0eH\xb3 \xc2`\xbc\xec\f\xd0\x97\x19\xa6Y\xb0\x15Z/\xe2\xc3\x8e\xc1\xa7v\xe3\xc3\xb0d\x86\x8f\x86\x14S\xdc\xe2G\xb5\x8dN%\x84\xa3\xb4\xb8!\xf9\x01=4T\xb2\xff\a\x9dB\x00\xa4w\xbe*\xa5\xe4q\xd23\xdf\xcce\x17\xc1WX\x02\x00\x00\x00>R\x1b\xf6.8\xf0\x93\x9cp\xe9\xc4\x1c\x9cd#\xaf \x84\xdf\xf5\x1e\xc3\xb7\xdc\n\xb3\xf0\xa9\xc9B\xe5\xa8k\x9f\xaddwvR\x0e\xfbb$c\x14-L\x979\xc4qK\xed\xe0?\xfd\xabZ\"\xcd\xda\x14\xacs\x87\nR\xb4\xe01\xc0\xe1@\x1a\xab\xa7\xe9\xbf>JR\xd6\xa5-\x97!\x82;\x1ac\n7\x18\xc2\xf0\xd0\xcb`\x1dq\xd7\x13=\r[\xb5$\x11N\xbf\x9b\xf2\xe0G~\xd3(\xbbCB\xdf\xa4\x1c\xdc\xcd\xb10x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x21}}, 0x40) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x14}, 0x1, 0x3f000000, 0x0, 0x4048040}, 0x40000) close_range$auto(0x2, 0x8, 0x0) r3 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0x0, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60142, 0x130) mmap$auto(0x0, 0x2000d, 0x4000000000e3, 0xeb1, 0x401, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r4 = open(0x0, 0x261c2, 0x84) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, 0x0, 0x40aa2, 0x0) r5 = userfaultfd$auto(0x1) statx$auto(r5, 0x0, 0x1000, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000340)=@bpf_attr_5={@target_fd=r5, r6, 0x8, 0x5, 0xffffffffffffffff, @relative_id=0x6, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x2}, 0xc) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, r3, 0x0, 0x6c06, 0x7) 5.849765663s ago: executing program 0 (id=3935): r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy1/statistics/dot11RTSFailureCount\x00', 0x2240, 0x0) read$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) userfaultfd$auto(0x40001) ioctl$auto(0x3, 0xc018aa3f, 0xc) 5.650715865s ago: executing program 4 (id=3936): syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf8\xfe\n\xa7\xfeD\xca\xd9\xb3\xc1\xe4\xf5j\x94\x7f\x00\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xed\x013\x87l\xb9\x1e\x05\x90\xa2', 0x2) (async) r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/rxrpc/stats\x00', 0x401, 0x0) lseek$auto(0x3, 0x20000, 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001d80)='/sys/devices/virtual/sound/ctl-led/speaker/card0/attach\x00', 0x1, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000003c0)='4', 0x1) getsockopt$auto_SO_RCVMARK(0xffffffffffffffff, 0x0, 0x4b, 0x0, 0x0) (async) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/veth0_virt_wifi/router_solicitation_interval\x00', 0x804000, 0x0) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x3) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x202000a, 0x0, 0x18, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2003f2, 0x15) (async) madvise$auto(0x0, 0x200007, 0x19) (async) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0) (async) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x78b681, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xd, 0x9, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0x7, 0x3, 0x0, 0x0, 0x78, 0x0, 0x0, [0x0, 0x0, 0x0, 0x200, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x7, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x3, 0x0, 0x2961, 0x0, 0x2]}, 0x2001fb, 0x7f) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x11, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYRESOCT=r2, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8004}, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x700}, 0x7, 0x4008) (async) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async) r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents$auto(r6, 0x0, 0x10040) (async) socket(0x2, 0x80000, 0xd8) (async) pread64$auto(r5, 0x0, 0x100000002, 0x100000001) write$auto_proc_sys_file_operations_proc_sysctl(r4, 0x0, 0x0) lseek$auto(r0, 0x4, 0x3) 5.447209001s ago: executing program 5 (id=3937): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/misc\x00', 0x80000, 0x0) pread64$auto(r0, 0x0, 0x682c3390, 0xcff) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/oom_adj\x00', 0x8402, 0x0) read$auto(r1, 0x0, 0x3cde) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) ioctl$auto_USB_RAW_IOCTL_EP_WRITE(0xffffffffffffffff, 0x40085507, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000001400)='ns/mnt\x00') mmap$auto(0x47, 0x2020009, 0x4, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x1, 0x0) r3 = fsopen$auto(0x0, 0x6) setfsgid$auto(0x0) mmap$auto(0x2fef, 0x20009, 0xdf, 0xeb1, r3, 0x8000) waitid$auto_P_PID(0x1, 0x0, 0x0, 0x0, &(0x7f0000000300)={{0x2, 0x34}, {0x9c, 0x3}, 0x779c, 0x3ff, 0x2, 0x0, 0x8, 0x8a, 0x3, 0x1, 0x100, 0x6, 0x5, 0x47, 0x80000000, 0x40001}) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r5 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) 5.317850289s ago: executing program 3 (id=3938): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x5e30523b26a2a748, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0) openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/setgroups\x00', 0x28001, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto(r1, 0x4b62, r0) r2 = socket(0x11, 0x3, 0x80000000) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x8) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) io_uring_setup$auto(0x101, 0x0) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80) bind$auto(0xffffffffffffffff, &(0x7f0000000100)=@tipc=@name={0x1e, 0x2, 0x1, {{0x43, 0x2}, 0x2}}, 0x8) io_uring_setup$auto(0x8, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) socket(0x2, 0x3, 0x100) socket(0x2, 0x2, 0x1) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00) 5.01516475s ago: executing program 4 (id=3939): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) sysfs$auto(0x2, 0x10000000000002c, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd0/removable\x00', 0x289c02, 0x0) 4.309487927s ago: executing program 0 (id=3940): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001140)='/sys/devices/virtual/block/zram0/comp_algorithm\x00', 0x20b42, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)="de91b83a075ce51fff544f85b0b6d328f3beb9b8634fd16bf2701cb13a2d93abd414c9a1586e4fbc7b163c42c4adfad8804de8783614b2dcf995a43c8cf63d102facaebb7019f67c4241ee77139ef43eace15fcb4ca071ad7ecd284cb135be34415cca234d6a11827f2178354be881a06111504ccdbebb0a", 0x78) r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="c80d1b5d399b44", 0xfdef) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/035/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000100)={0x2, 0x80, 0xffff, 0x5, &(0x7f0000000240), 0xc694, 0x3, 0x80005, @stream_id=0x7, 0x2004b, 0xc, 0x0}) 4.308729539s ago: executing program 4 (id=3941): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000fff, 0x8000000008011, 0x3, 0x8000) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) fstat$auto(r0, 0x0) r1 = getpid() process_vm_readv$auto(r1, 0x0, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffdf, 0xfffffeff, 0x80002, 0xffff, 0x7, 0x9, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}}) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pipe2$auto(0x0, 0x80) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x4, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) r5 = fcntl$getown(r2, 0x9) capset$auto(&(0x7f0000000280)={0x5, r5}, &(0x7f00000002c0)={0x3, 0x1e2, 0x80000001}) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r6 = socket(0x10, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYRESOCT=0x0], 0x1ac}, 0x1, 0x0, 0x0, 0x4000894}, 0x40000) read$auto(r3, &(0x7f0000000300)='MAC802154_HWSIM\x00', 0x0) r7 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x0, 0x0) ioctl$auto_BINDER_SET_CONTEXT_MGR(r7, 0x40046207, 0x0) lsm_list_modules$auto(&(0x7f00000001c0)=0x500, &(0x7f0000000240)=0x2, 0x5) 3.693582519s ago: executing program 3 (id=3942): socket(0x2, 0x1, 0x0) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES2(r0, 0x4008af25, &(0x7f00000000c0)=0x1) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xa6) r2 = open_by_handle_at$auto(r1, &(0x7f0000000040)={0x8, 0x2, '\a\x00\x00\x00\x00\x00\x00\x00'}, 0x2) read$auto_fops_ulong_ro_(r2, &(0x7f0000000100)=""/43, 0x2b) 3.664972537s ago: executing program 0 (id=3943): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b44", 0xfdef) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/035/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000100)={0x2, 0x80, 0xffff, 0x5, &(0x7f0000000240), 0xc694, 0x3, 0x80005, @stream_id=0x7, 0x2004b, 0xc, 0x0}) (fail_nth: 3) 3.219557441s ago: executing program 3 (id=3944): mmap$auto(0x7, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = socket(0x1d, 0x2, 0x6) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x21}}, 0x40) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x14}, 0x1, 0x3f000000, 0x0, 0x4048040}, 0x40000) close_range$auto(0x2, 0x8, 0x0) r3 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0x0, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60142, 0x130) mmap$auto(0x0, 0x2000d, 0x4000000000e3, 0xeb1, 0x401, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r4 = open(0x0, 0x261c2, 0x84) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, 0x0, 0x40aa2, 0x0) r5 = userfaultfd$auto(0x1) statx$auto(r5, 0x0, 0x1000, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000340)=@bpf_attr_5={@target_fd=r5, r6, 0x8, 0x5, 0xffffffffffffffff, @relative_id=0x6, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x2}, 0xc) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, r3, 0x0, 0x6c06, 0x7) 3.04699031s ago: executing program 5 (id=3945): r0 = memfd_create$auto(&(0x7f0000000300)='/sys/kernel/debug/x86/boot_params/data\x00\"F\xb6\xcd\x06\xd6\x97\\L\xe1\xb2\xee\xb8\x8e\xd6O\xa1j\x90w\xc7\x94\xb7yi\x01&\x04b/\xaa\xfb#s\xc4\xa3\xa7\xacj\xc6\x8e\xf4L\x9a\xf8\xcc\xdcy\x9f\x93\xbc\xf6\xc8\xdb\x05w,|B\xfc\x04\x97\xd3\x0f\x8b\x81\xe8\xbc\x81\x0e\xd7o\xd2\xcd\x18z\xc2\xb7|\xe1\xa6\x9a~\x96\x10rnLnt\xdb\xdb-\x1b\x99\xd4\xed;\xf8\x13a\r\xf2\a\x85%\xef\xa7\x7f#\x96\xf2S\xb0\xf1Hq\x0f;\x83\xb7\x0fz\x9dN\xc9\x1e\x15r\x97|\xbfE\xce\"', 0x4) fallocate$auto(r0, 0x0, 0x9, 0x4cbd60) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) fanotify_mark$auto(r0, 0x1, 0x6, r0, &(0x7f0000000040)='./file0\x00') r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x18b800, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) r2 = clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) capget$auto(0x0, 0xfffffffffffffffe) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) fcntl$auto(r1, 0x40, r2) io_uring_setup$auto(0x1, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MM_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x22}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x4802, 0x0) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x112, 0x80006) 2.604158962s ago: executing program 3 (id=3946): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd6\x00', 0x15b302, 0x0) mmap$auto(0x0, 0x810004, 0x400000000fff, 0x8000000008011, 0x3, 0x8000) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff) fstat$auto(r0, 0x0) r1 = getpid() process_vm_readv$auto(r1, 0x0, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, &(0x7f0000000080)={0x7fffffdd, 0x6, 0x80002, 0xffff, 0x7, 0x9, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x8b, 0xff, 0x17f, 0x2}, {0xfe, 0x1, 0x52, 0x5, 0xffffffff, 0x40, 0x6, 0xa, 0x3}}) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getpriority$auto_PRIO_USER(0x2, 0x0) pipe2$auto(0x0, 0x80) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x4, 0x0, 0x1, 0x4000000) write$auto(0xffffffffffffffff, 0x0, 0xfff) r5 = fcntl$getown(r2, 0x9) capset$auto(&(0x7f0000000280)={0x5, r5}, &(0x7f00000002c0)={0x3, 0x1e2, 0x80000001}) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r6 = socket(0x10, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYRESOCT=0x0], 0x1ac}, 0x1, 0x0, 0x0, 0x4000894}, 0x40000) read$auto(r3, &(0x7f0000000300)='MAC802154_HWSIM\x00', 0x0) r7 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x0, 0x0) ioctl$auto_BINDER_SET_CONTEXT_MGR(r7, 0x40046207, 0x0) lsm_list_modules$auto(&(0x7f00000001c0)=0x500, &(0x7f0000000240)=0x2, 0x5) 1.13118836s ago: executing program 0 (id=3947): r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r1 = openat$auto_autofs_root_operations_autofs_i(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci4\x00', 0x200040, 0x0) sync_file_range$auto(r1, 0x53d7, 0x297f, 0x3fd) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x2, 0x401, 0x7b4f, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) tkill$auto(0x1, 0x9) unshare$auto(0x8000000) semget$auto(0x0, 0x33, 0x5) setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x4) r3 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x21, 0x6, 0x48}) sendmmsg$auto(r3, &(0x7f00000006c0)={{&(0x7f0000000000), 0x205ae, &(0x7f0000000100)={&(0x7f0000000200)="4403", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100) ioctl$auto_FS_IOC_UNRESVSP64(0xffffffffffffffff, 0x4030582b, 0x401) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0) unshare$auto(0x8000400) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000340)={0x1c, r0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40450cc}, 0x2004c030) 286.599235ms ago: executing program 4 (id=3948): r0 = memfd_create$auto(&(0x7f0000000300)='/sys/kernel/debug/x86/boot_params/data\x00\"F\xb6\xcd\x06\xd6\x97\\L\xe1\xb2\xee\xb8\x8e\xd6O\xa1j\x90w\xc7\x94\xb7yi\x01&\x04b/\xaa\xfb#s\xc4\xa3\xa7\xacj\xc6\x8e\xf4L\x9a\xf8\xcc\xdcy\x9f\x93\xbc\xf6\xc8\xdb\x05w,|B\xfc\x04\x97\xd3\x0f\x8b\x81\xe8\xbc\x81\x0e\xd7o\xd2\xcd\x18z\xc2\xb7|\xe1\xa6\x9a~\x96\x10rnLnt\xdb\xdb-\x1b\x99\xd4\xed;\xf8\x13a\r\xf2\a\x85%\xef\xa7\x7f#\x96\xf2S\xb0\xf1Hq\x0f;\x83\xb7\x0fz\x9dN\xc9\x1e\x15r\x97|\xbfE\xce\"', 0x4) fallocate$auto(r0, 0x0, 0x9, 0x4cbd60) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) fanotify_mark$auto(r0, 0x1, 0x6, r0, &(0x7f0000000040)='./file0\x00') r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x18b800, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) r2 = clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) capget$auto(0x0, 0xfffffffffffffffe) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) fcntl$auto(r1, 0x40, r2) io_uring_setup$auto(0x1, 0x0) fcntl$auto(0x8000000000000001, 0x26, 0x2) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MM_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x22}, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x4802, 0x0) close_range$auto(0x2, 0x8, 0x0) mlock$auto(0x112, 0x80006) 0s ago: executing program 5 (id=3949): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0, 0x2) mmap$auto(0x2, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = epoll_create$auto(0x1) capset$auto(0x0, 0x0) epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x4000000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0) read$auto(r2, 0x0, 0x8) close_range$auto(r0, 0xffffffffffffffff, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x801, 0x106) bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "0232890300"}, 0x6c) connect$auto(0x3, 0x0, 0x54) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x3cf303, 0x0) kernel console output (not intermixed with test programs): ] ? do_getname+0x191/0x390 [ 1342.252508][T21737] do_sys_openat2+0x10d/0x1e0 [ 1342.252542][T21737] ? __pfx_do_sys_openat2+0x10/0x10 [ 1342.252579][T21737] ? __fget_files+0x21f/0x3d0 [ 1342.252610][T21737] __x64_sys_openat+0x12d/0x210 [ 1342.252645][T21737] ? __pfx___x64_sys_openat+0x10/0x10 [ 1342.252692][T21737] do_syscall_64+0x106/0xf80 [ 1342.252716][T21737] ? clear_bhb_loop+0x40/0x90 [ 1342.252747][T21737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1342.252778][T21737] RIP: 0033:0x7ff20ed5d04e [ 1342.252799][T21737] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1342.252828][T21737] RSP: 002b:00007ff20fcf4ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1342.252852][T21737] RAX: ffffffffffffffda RBX: 00007ff20fcf56c0 RCX: 00007ff20ed5d04e [ 1342.252868][T21737] RDX: 0000000000000002 RSI: 00007ff20fcf4f90 RDI: ffffffffffffff9c [ 1342.252884][T21737] RBP: 00007ff20ee32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1342.252899][T21737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1342.252915][T21737] R13: 00007ff20f016038 R14: 00007ff20f015fa0 R15: 00007ffcdd227eb8 [ 1342.252946][T21737] [ 1344.032864][T21757] FAULT_INJECTION: forcing a failure. [ 1344.032864][T21757] name failslab, interval 1, probability 0, space 0, times 0 [ 1344.107503][T21757] CPU: 0 UID: 0 PID: 21757 Comm: syz.0.3429 Tainted: G L syzkaller #0 PREEMPT(full) [ 1344.107543][T21757] Tainted: [L]=SOFTLOCKUP [ 1344.107553][T21757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1344.107568][T21757] Call Trace: [ 1344.107576][T21757] [ 1344.107586][T21757] dump_stack_lvl+0x100/0x190 [ 1344.107629][T21757] should_fail_ex.cold+0x5/0xa [ 1344.107665][T21757] should_failslab+0xc2/0x120 [ 1344.107693][T21757] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1344.107734][T21757] ? __d_alloc+0x34/0xa80 [ 1344.107764][T21757] ? security_inode_alloc+0xcf/0x2c0 [ 1344.107798][T21757] __d_alloc+0x34/0xa80 [ 1344.107825][T21757] ? __ns_ref_active_get+0x9f/0x1b0 [ 1344.107861][T21757] path_from_stashed+0x427/0x750 [ 1344.107889][T21757] ? do_raw_spin_unlock+0x145/0x1e0 [ 1344.107933][T21757] ns_get_path+0x60/0x80 [ 1344.107961][T21757] proc_ns_get_link+0x121/0x230 [ 1344.107998][T21757] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1344.108038][T21757] ? atime_needs_update+0x8b/0x6b0 [ 1344.108078][T21757] pick_link+0xd17/0x13c0 [ 1344.108116][T21757] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1344.108162][T21757] step_into_slowpath+0x9ba/0xf90 [ 1344.108207][T21757] ? __pfx_step_into_slowpath+0x10/0x10 [ 1344.108245][T21757] ? find_held_lock+0x2b/0x80 [ 1344.108279][T21757] path_openat+0xf95/0x31a0 [ 1344.108316][T21757] ? __pfx_path_openat+0x10/0x10 [ 1344.108354][T21757] do_file_open+0x20e/0x430 [ 1344.108383][T21757] ? __pfx_do_file_open+0x10/0x10 [ 1344.108431][T21757] ? alloc_fd+0x476/0x790 [ 1344.108459][T21757] ? do_getname+0x191/0x390 [ 1344.108494][T21757] do_sys_openat2+0x10d/0x1e0 [ 1344.108528][T21757] ? __pfx_do_sys_openat2+0x10/0x10 [ 1344.108564][T21757] ? __fget_files+0x21f/0x3d0 [ 1344.108595][T21757] __x64_sys_openat+0x12d/0x210 [ 1344.108635][T21757] ? __pfx___x64_sys_openat+0x10/0x10 [ 1344.108682][T21757] do_syscall_64+0x106/0xf80 [ 1344.108705][T21757] ? clear_bhb_loop+0x40/0x90 [ 1344.108736][T21757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1344.108762][T21757] RIP: 0033:0x7efffe35d04e [ 1344.108782][T21757] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1344.108807][T21757] RSP: 002b:00007effff293ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1344.108831][T21757] RAX: ffffffffffffffda RBX: 00007effff2946c0 RCX: 00007efffe35d04e [ 1344.108847][T21757] RDX: 0000000000000002 RSI: 00007effff293f90 RDI: ffffffffffffff9c [ 1344.108864][T21757] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1344.108879][T21757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1344.108894][T21757] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1344.108925][T21757] [ 1344.503058][T21729] Process accounting paused [ 1344.826131][T21760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3431'. [ 1344.918839][T21762] FAULT_INJECTION: forcing a failure. [ 1344.918839][T21762] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1344.958875][T21762] CPU: 0 UID: 0 PID: 21762 Comm: syz.2.3431 Tainted: G L syzkaller #0 PREEMPT(full) [ 1344.958916][T21762] Tainted: [L]=SOFTLOCKUP [ 1344.958928][T21762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1344.958944][T21762] Call Trace: [ 1344.958952][T21762] [ 1344.958963][T21762] dump_stack_lvl+0x100/0x190 [ 1344.959005][T21762] should_fail_ex.cold+0x5/0xa [ 1344.959035][T21762] get_futex_key+0x1d2/0x1620 [ 1344.959070][T21762] ? __pfx_get_futex_key+0x10/0x10 [ 1344.959099][T21762] ? futex_hash+0x2c5/0x380 [ 1344.959138][T21762] futex_wake+0xea/0x530 [ 1344.959176][T21762] ? __pfx_futex_wait+0x10/0x10 [ 1344.959215][T21762] ? __pfx_futex_wake+0x10/0x10 [ 1344.959257][T21762] ? apparmor_capable+0x1d7/0x4d0 [ 1344.959292][T21762] do_futex+0x32b/0x350 [ 1344.959325][T21762] ? __pfx_do_futex+0x10/0x10 [ 1344.959359][T21762] ? cap_task_prctl+0x104/0xa50 [ 1344.959385][T21762] ? __pfx_sched_core_share_pid+0x10/0x10 [ 1344.959417][T21762] __x64_sys_futex+0x34f/0x4d0 [ 1344.959454][T21762] ? __pfx___x64_sys_futex+0x10/0x10 [ 1344.959497][T21762] ? __pfx___do_sys_prctl+0x10/0x10 [ 1344.959544][T21762] do_syscall_64+0x106/0xf80 [ 1344.959569][T21762] ? clear_bhb_loop+0x40/0x90 [ 1344.959599][T21762] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1344.959624][T21762] RIP: 0033:0x7fabaab9c819 [ 1344.959644][T21762] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1344.959669][T21762] RSP: 002b:00007fababb0d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1344.959692][T21762] RAX: ffffffffffffffda RBX: 00007fabaae16098 RCX: 00007fabaab9c819 [ 1344.959708][T21762] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fabaae1609c [ 1344.959724][T21762] RBP: 00007fabaae16090 R08: 0000000000000000 R09: 0000000000000000 [ 1344.959739][T21762] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1344.959754][T21762] R13: 00007fabaae16128 R14: 00007ffdc32a4b70 R15: 00007ffdc32a4c58 [ 1344.959785][T21762] [ 1345.221106][T21756] FAULT_INJECTION: forcing a failure. [ 1345.221106][T21756] name failslab, interval 1, probability 0, space 0, times 0 [ 1345.234152][T21756] CPU: 0 UID: 0 PID: 21756 Comm: syz.3.3430 Tainted: G L syzkaller #0 PREEMPT(full) [ 1345.234190][T21756] Tainted: [L]=SOFTLOCKUP [ 1345.234199][T21756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1345.234214][T21756] Call Trace: [ 1345.234223][T21756] [ 1345.234232][T21756] dump_stack_lvl+0x100/0x190 [ 1345.234276][T21756] should_fail_ex.cold+0x5/0xa [ 1345.234306][T21756] should_failslab+0xc2/0x120 [ 1345.234335][T21756] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1345.234374][T21756] ? security_inode_alloc+0x3b/0x2c0 [ 1345.234403][T21756] ? lockdep_init_map_type+0x5c/0x250 [ 1345.234441][T21756] security_inode_alloc+0x3b/0x2c0 [ 1345.234477][T21756] inode_init_always_gfp+0xced/0x1040 [ 1345.234510][T21756] alloc_inode+0x8e/0x250 [ 1345.234545][T21756] path_from_stashed+0x25b/0x750 [ 1345.234573][T21756] ? do_raw_spin_unlock+0x145/0x1e0 [ 1345.234617][T21756] ns_get_path+0x60/0x80 [ 1345.234644][T21756] proc_ns_get_link+0x121/0x230 [ 1345.234681][T21756] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1345.234721][T21756] ? atime_needs_update+0x8b/0x6b0 [ 1345.234760][T21756] pick_link+0xd17/0x13c0 [ 1345.234797][T21756] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1345.234838][T21756] step_into_slowpath+0x9ba/0xf90 [ 1345.234882][T21756] ? __pfx_step_into_slowpath+0x10/0x10 [ 1345.234921][T21756] ? find_held_lock+0x2b/0x80 [ 1345.234955][T21756] path_openat+0xf95/0x31a0 [ 1345.234991][T21756] ? __pfx_path_openat+0x10/0x10 [ 1345.235029][T21756] do_file_open+0x20e/0x430 [ 1345.235058][T21756] ? __pfx_do_file_open+0x10/0x10 [ 1345.235111][T21756] ? alloc_fd+0x476/0x790 [ 1345.235140][T21756] ? do_getname+0x191/0x390 [ 1345.235175][T21756] do_sys_openat2+0x10d/0x1e0 [ 1345.235209][T21756] ? __pfx_do_sys_openat2+0x10/0x10 [ 1345.235246][T21756] ? __fget_files+0x21f/0x3d0 [ 1345.235277][T21756] __x64_sys_openat+0x12d/0x210 [ 1345.235325][T21756] ? __pfx___x64_sys_openat+0x10/0x10 [ 1345.235370][T21756] do_syscall_64+0x106/0xf80 [ 1345.235394][T21756] ? clear_bhb_loop+0x40/0x90 [ 1345.235423][T21756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1345.235447][T21756] RIP: 0033:0x7f1964b5d04e [ 1345.235467][T21756] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1345.235496][T21756] RSP: 002b:00007f1965a97ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1345.235518][T21756] RAX: ffffffffffffffda RBX: 00007f1965a986c0 RCX: 00007f1964b5d04e [ 1345.235534][T21756] RDX: 0000000000000002 RSI: 00007f1965a97f90 RDI: ffffffffffffff9c [ 1345.235550][T21756] RBP: 00007f1964c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1345.235564][T21756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1345.235579][T21756] R13: 00007f1964e16038 R14: 00007f1964e15fa0 R15: 00007ffe031f9ef8 [ 1345.235609][T21756] [ 1347.220609][T21777] zram: Can't change algorithm for initialized device [ 1347.395450][T21791] ecryptfs_miscdev_response: (sizeof(*msg) + msg->data_len) = [1067213646]; data_size = [146]. Invalid packet. [ 1347.499565][T21791] ecryptfs_miscdev_write: Failed to deliver miscdev response to requesting operation; rc = [-22] [ 1348.154898][T21803] FAULT_INJECTION: forcing a failure. [ 1348.154898][T21803] name failslab, interval 1, probability 0, space 0, times 0 [ 1348.203673][T21803] CPU: 0 UID: 0 PID: 21803 Comm: syz.0.3439 Tainted: G L syzkaller #0 PREEMPT(full) [ 1348.203713][T21803] Tainted: [L]=SOFTLOCKUP [ 1348.203722][T21803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1348.203737][T21803] Call Trace: [ 1348.203746][T21803] [ 1348.203756][T21803] dump_stack_lvl+0x100/0x190 [ 1348.203798][T21803] should_fail_ex.cold+0x5/0xa [ 1348.203829][T21803] should_failslab+0xc2/0x120 [ 1348.203858][T21803] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1348.203892][T21803] ? snd_pcm_oss_change_params_locked+0x211/0x39f0 [ 1348.203934][T21803] snd_pcm_oss_change_params_locked+0x211/0x39f0 [ 1348.203970][T21803] ? rcu_is_watching+0x12/0xc0 [ 1348.204010][T21803] ? trace_contention_end+0x140/0x180 [ 1348.204051][T21803] ? snd_pcm_oss_write+0x49a/0xa30 [ 1348.204085][T21803] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1348.204123][T21803] ? __pfx___mutex_lock+0x10/0x10 [ 1348.204160][T21803] ? __pfx___might_resched+0x10/0x10 [ 1348.204203][T21803] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1348.204240][T21803] snd_pcm_oss_write+0x4bb/0xa30 [ 1348.204285][T21803] ? bpf_lsm_file_permission+0x9/0x10 [ 1348.204310][T21803] ? security_file_permission+0x76/0x210 [ 1348.204351][T21803] vfs_write+0x2aa/0x1070 [ 1348.204376][T21803] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 1348.204413][T21803] ? __pfx_vfs_write+0x10/0x10 [ 1348.204435][T21803] ? find_held_lock+0x2b/0x80 [ 1348.204459][T21803] ? __fget_files+0x215/0x3d0 [ 1348.204483][T21803] ? __fget_files+0x215/0x3d0 [ 1348.204512][T21803] ? __fget_files+0x21f/0x3d0 [ 1348.204545][T21803] ksys_write+0x12a/0x250 [ 1348.204570][T21803] ? __pfx_ksys_write+0x10/0x10 [ 1348.204603][T21803] do_syscall_64+0x106/0xf80 [ 1348.204627][T21803] ? clear_bhb_loop+0x40/0x90 [ 1348.204657][T21803] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1348.204683][T21803] RIP: 0033:0x7efffe39c819 [ 1348.204703][T21803] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1348.204729][T21803] RSP: 002b:00007effff294028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1348.204751][T21803] RAX: ffffffffffffffda RBX: 00007efffe616090 RCX: 00007efffe39c819 [ 1348.204768][T21803] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 1348.204783][T21803] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1348.204798][T21803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1348.204813][T21803] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1348.204845][T21803] [ 1348.640599][T21806] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3437'. [ 1348.984109][T21794] zswap: compressor not available [ 1350.154847][T21824] FAULT_INJECTION: forcing a failure. [ 1350.154847][T21824] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.277883][T21824] CPU: 0 UID: 0 PID: 21824 Comm: syz.2.3443 Tainted: G L syzkaller #0 PREEMPT(full) [ 1350.277925][T21824] Tainted: [L]=SOFTLOCKUP [ 1350.277934][T21824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1350.277949][T21824] Call Trace: [ 1350.277958][T21824] [ 1350.277968][T21824] dump_stack_lvl+0x100/0x190 [ 1350.278011][T21824] should_fail_ex.cold+0x5/0xa [ 1350.278049][T21824] should_failslab+0xc2/0x120 [ 1350.278078][T21824] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1350.278117][T21824] ? security_inode_alloc+0x3b/0x2c0 [ 1350.278146][T21824] ? lockdep_init_map_type+0x5c/0x250 [ 1350.278185][T21824] security_inode_alloc+0x3b/0x2c0 [ 1350.278215][T21824] inode_init_always_gfp+0xced/0x1040 [ 1350.278247][T21824] alloc_inode+0x8e/0x250 [ 1350.278282][T21824] path_from_stashed+0x25b/0x750 [ 1350.278310][T21824] ? do_raw_spin_unlock+0x145/0x1e0 [ 1350.278354][T21824] ns_get_path+0x60/0x80 [ 1350.278381][T21824] proc_ns_get_link+0x121/0x230 [ 1350.278418][T21824] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1350.278458][T21824] ? atime_needs_update+0x8b/0x6b0 [ 1350.278497][T21824] pick_link+0xd17/0x13c0 [ 1350.278535][T21824] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1350.278575][T21824] step_into_slowpath+0x9ba/0xf90 [ 1350.278620][T21824] ? __pfx_step_into_slowpath+0x10/0x10 [ 1350.278659][T21824] ? find_held_lock+0x2b/0x80 [ 1350.278693][T21824] path_openat+0xf95/0x31a0 [ 1350.278730][T21824] ? __pfx_path_openat+0x10/0x10 [ 1350.278768][T21824] do_file_open+0x20e/0x430 [ 1350.278797][T21824] ? __pfx_do_file_open+0x10/0x10 [ 1350.278845][T21824] ? alloc_fd+0x476/0x790 [ 1350.278873][T21824] ? do_getname+0x191/0x390 [ 1350.278908][T21824] do_sys_openat2+0x10d/0x1e0 [ 1350.278943][T21824] ? __pfx_do_sys_openat2+0x10/0x10 [ 1350.278979][T21824] ? __fget_files+0x21f/0x3d0 [ 1350.279010][T21824] __x64_sys_openat+0x12d/0x210 [ 1350.279052][T21824] ? __pfx___x64_sys_openat+0x10/0x10 [ 1350.279098][T21824] do_syscall_64+0x106/0xf80 [ 1350.279122][T21824] ? clear_bhb_loop+0x40/0x90 [ 1350.279156][T21824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1350.279182][T21824] RIP: 0033:0x7fabaab5d04e [ 1350.279202][T21824] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1350.279226][T21824] RSP: 002b:00007fababb2dec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1350.279251][T21824] RAX: ffffffffffffffda RBX: 00007fababb2e6c0 RCX: 00007fabaab5d04e [ 1350.279267][T21824] RDX: 0000000000000002 RSI: 00007fababb2df90 RDI: ffffffffffffff9c [ 1350.279284][T21824] RBP: 00007fabaac32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1350.279299][T21824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1350.279314][T21824] R13: 00007fabaae16038 R14: 00007fabaae15fa0 R15: 00007ffdc32a4c58 [ 1350.279346][T21824] [ 1350.658061][T21839] FAULT_INJECTION: forcing a failure. [ 1350.658061][T21839] name failslab, interval 1, probability 0, space 0, times 0 [ 1350.670926][T21839] CPU: 0 UID: 0 PID: 21839 Comm: syz.3.3444 Tainted: G L syzkaller #0 PREEMPT(full) [ 1350.670965][T21839] Tainted: [L]=SOFTLOCKUP [ 1350.670975][T21839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1350.670990][T21839] Call Trace: [ 1350.670999][T21839] [ 1350.671008][T21839] dump_stack_lvl+0x100/0x190 [ 1350.671079][T21839] should_fail_ex.cold+0x5/0xa [ 1350.671109][T21839] should_failslab+0xc2/0x120 [ 1350.671138][T21839] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1350.671177][T21839] ? security_inode_alloc+0x3b/0x2c0 [ 1350.671206][T21839] ? lockdep_init_map_type+0x5c/0x250 [ 1350.671245][T21839] security_inode_alloc+0x3b/0x2c0 [ 1350.671275][T21839] inode_init_always_gfp+0xced/0x1040 [ 1350.671307][T21839] alloc_inode+0x8e/0x250 [ 1350.671342][T21839] path_from_stashed+0x25b/0x750 [ 1350.671370][T21839] ? do_raw_spin_unlock+0x145/0x1e0 [ 1350.671414][T21839] ns_get_path+0x60/0x80 [ 1350.671440][T21839] proc_ns_get_link+0x121/0x230 [ 1350.671478][T21839] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1350.671518][T21839] ? atime_needs_update+0x8b/0x6b0 [ 1350.671557][T21839] pick_link+0xd17/0x13c0 [ 1350.671594][T21839] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1350.671634][T21839] step_into_slowpath+0x9ba/0xf90 [ 1350.671678][T21839] ? __pfx_step_into_slowpath+0x10/0x10 [ 1350.671717][T21839] ? find_held_lock+0x2b/0x80 [ 1350.671751][T21839] path_openat+0xf95/0x31a0 [ 1350.671787][T21839] ? __pfx_path_openat+0x10/0x10 [ 1350.671825][T21839] do_file_open+0x20e/0x430 [ 1350.671854][T21839] ? __pfx_do_file_open+0x10/0x10 [ 1350.671902][T21839] ? alloc_fd+0x476/0x790 [ 1350.671930][T21839] ? do_getname+0x191/0x390 [ 1350.671966][T21839] do_sys_openat2+0x10d/0x1e0 [ 1350.672000][T21839] ? __pfx_do_sys_openat2+0x10/0x10 [ 1350.672037][T21839] ? __fget_files+0x21f/0x3d0 [ 1350.672074][T21839] __x64_sys_openat+0x12d/0x210 [ 1350.672109][T21839] ? __pfx___x64_sys_openat+0x10/0x10 [ 1350.672156][T21839] do_syscall_64+0x106/0xf80 [ 1350.672180][T21839] ? clear_bhb_loop+0x40/0x90 [ 1350.672211][T21839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1350.672236][T21839] RIP: 0033:0x7f1964b5d04e [ 1350.672257][T21839] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1350.672282][T21839] RSP: 002b:00007f1965a76ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1350.672305][T21839] RAX: ffffffffffffffda RBX: 00007f1965a776c0 RCX: 00007f1964b5d04e [ 1350.672322][T21839] RDX: 0000000000000002 RSI: 00007f1965a76f90 RDI: ffffffffffffff9c [ 1350.672338][T21839] RBP: 00007f1964c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1350.672353][T21839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1350.672368][T21839] R13: 00007f1964e16128 R14: 00007f1964e16090 R15: 00007ffe031f9ef8 [ 1350.672399][T21839] [ 1352.288847][T21855] FAULT_INJECTION: forcing a failure. [ 1352.288847][T21855] name failslab, interval 1, probability 0, space 0, times 0 [ 1352.356131][T21855] CPU: 0 UID: 0 PID: 21855 Comm: syz.3.3449 Tainted: G L syzkaller #0 PREEMPT(full) [ 1352.356171][T21855] Tainted: [L]=SOFTLOCKUP [ 1352.356180][T21855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1352.356196][T21855] Call Trace: [ 1352.356205][T21855] [ 1352.356215][T21855] dump_stack_lvl+0x100/0x190 [ 1352.356258][T21855] should_fail_ex.cold+0x5/0xa [ 1352.356288][T21855] should_failslab+0xc2/0x120 [ 1352.356317][T21855] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1352.356362][T21855] ? security_inode_alloc+0x3b/0x2c0 [ 1352.356392][T21855] ? lockdep_init_map_type+0x5c/0x250 [ 1352.356431][T21855] security_inode_alloc+0x3b/0x2c0 [ 1352.356461][T21855] inode_init_always_gfp+0xced/0x1040 [ 1352.356493][T21855] alloc_inode+0x8e/0x250 [ 1352.356528][T21855] path_from_stashed+0x25b/0x750 [ 1352.356556][T21855] ? do_raw_spin_unlock+0x145/0x1e0 [ 1352.356600][T21855] ns_get_path+0x60/0x80 [ 1352.356627][T21855] proc_ns_get_link+0x121/0x230 [ 1352.356664][T21855] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1352.356704][T21855] ? atime_needs_update+0x8b/0x6b0 [ 1352.356743][T21855] pick_link+0xd17/0x13c0 [ 1352.356780][T21855] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1352.356821][T21855] step_into_slowpath+0x9ba/0xf90 [ 1352.356873][T21855] ? __pfx_step_into_slowpath+0x10/0x10 [ 1352.356912][T21855] ? find_held_lock+0x2b/0x80 [ 1352.356946][T21855] path_openat+0xf95/0x31a0 [ 1352.356984][T21855] ? __pfx_path_openat+0x10/0x10 [ 1352.357022][T21855] do_file_open+0x20e/0x430 [ 1352.357052][T21855] ? __pfx_do_file_open+0x10/0x10 [ 1352.357101][T21855] ? alloc_fd+0x476/0x790 [ 1352.357130][T21855] ? do_getname+0x191/0x390 [ 1352.357165][T21855] do_sys_openat2+0x10d/0x1e0 [ 1352.357199][T21855] ? __pfx_do_sys_openat2+0x10/0x10 [ 1352.357236][T21855] ? __fget_files+0x21f/0x3d0 [ 1352.357266][T21855] __x64_sys_openat+0x12d/0x210 [ 1352.357302][T21855] ? __pfx___x64_sys_openat+0x10/0x10 [ 1352.357349][T21855] do_syscall_64+0x106/0xf80 [ 1352.357373][T21855] ? clear_bhb_loop+0x40/0x90 [ 1352.357403][T21855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1352.357429][T21855] RIP: 0033:0x7f1964b5d04e [ 1352.357449][T21855] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1352.357473][T21855] RSP: 002b:00007f1965a97ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1352.357497][T21855] RAX: ffffffffffffffda RBX: 00007f1965a986c0 RCX: 00007f1964b5d04e [ 1352.357513][T21855] RDX: 0000000000000002 RSI: 00007f1965a97f90 RDI: ffffffffffffff9c [ 1352.357530][T21855] RBP: 00007f1964c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1352.357546][T21855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1352.357561][T21855] R13: 00007f1964e16038 R14: 00007f1964e15fa0 R15: 00007ffe031f9ef8 [ 1352.357592][T21855] [ 1354.122101][T21874] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3452'. [ 1354.303544][T21875] zram: Can't change algorithm for initialized device [ 1354.780620][T21879] overlayfs: missing 'lowerdir' [ 1355.471288][T21901] zram: Can't change algorithm for initialized device [ 1357.190142][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1357.196867][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1357.229153][T21922] FAULT_INJECTION: forcing a failure. [ 1357.229153][T21922] name failslab, interval 1, probability 0, space 0, times 0 [ 1357.295175][T21922] CPU: 0 UID: 0 PID: 21922 Comm: syz.2.3463 Tainted: G L syzkaller #0 PREEMPT(full) [ 1357.295215][T21922] Tainted: [L]=SOFTLOCKUP [ 1357.295225][T21922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1357.295241][T21922] Call Trace: [ 1357.295249][T21922] [ 1357.295258][T21922] dump_stack_lvl+0x100/0x190 [ 1357.295302][T21922] should_fail_ex.cold+0x5/0xa [ 1357.295332][T21922] should_failslab+0xc2/0x120 [ 1357.295360][T21922] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1357.295401][T21922] ? __d_alloc+0x34/0xa80 [ 1357.295430][T21922] ? security_inode_alloc+0xcf/0x2c0 [ 1357.295473][T21922] __d_alloc+0x34/0xa80 [ 1357.295500][T21922] ? __ns_ref_active_get+0x9f/0x1b0 [ 1357.295536][T21922] path_from_stashed+0x427/0x750 [ 1357.295564][T21922] ? do_raw_spin_unlock+0x145/0x1e0 [ 1357.295607][T21922] ns_get_path+0x60/0x80 [ 1357.295635][T21922] proc_ns_get_link+0x121/0x230 [ 1357.295675][T21922] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1357.295715][T21922] ? atime_needs_update+0x8b/0x6b0 [ 1357.295755][T21922] pick_link+0xd17/0x13c0 [ 1357.295793][T21922] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1357.295834][T21922] step_into_slowpath+0x9ba/0xf90 [ 1357.295878][T21922] ? __pfx_step_into_slowpath+0x10/0x10 [ 1357.295917][T21922] ? find_held_lock+0x2b/0x80 [ 1357.295951][T21922] path_openat+0xf95/0x31a0 [ 1357.295987][T21922] ? __pfx_path_openat+0x10/0x10 [ 1357.296025][T21922] do_file_open+0x20e/0x430 [ 1357.296054][T21922] ? __pfx_do_file_open+0x10/0x10 [ 1357.296102][T21922] ? alloc_fd+0x476/0x790 [ 1357.296130][T21922] ? do_getname+0x191/0x390 [ 1357.296165][T21922] do_sys_openat2+0x10d/0x1e0 [ 1357.296199][T21922] ? __pfx_do_sys_openat2+0x10/0x10 [ 1357.296235][T21922] ? __fget_files+0x21f/0x3d0 [ 1357.296265][T21922] __x64_sys_openat+0x12d/0x210 [ 1357.296342][T21922] ? __pfx___x64_sys_openat+0x10/0x10 [ 1357.296394][T21922] do_syscall_64+0x106/0xf80 [ 1357.296418][T21922] ? clear_bhb_loop+0x40/0x90 [ 1357.296454][T21922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1357.296481][T21922] RIP: 0033:0x7fabaab5d04e [ 1357.296501][T21922] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1357.296525][T21922] RSP: 002b:00007fababb2dec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1357.296550][T21922] RAX: ffffffffffffffda RBX: 00007fababb2e6c0 RCX: 00007fabaab5d04e [ 1357.296566][T21922] RDX: 0000000000000002 RSI: 00007fababb2df90 RDI: ffffffffffffff9c [ 1357.296582][T21922] RBP: 00007fabaac32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1357.296598][T21922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1357.296613][T21922] R13: 00007fabaae16038 R14: 00007fabaae15fa0 R15: 00007ffdc32a4c58 [ 1357.296645][T21922] [ 1358.660547][T21947] Invalid ELF header magic: != ELF [ 1358.778710][T21935] capability: warning: `syz.3.3466' uses 32-bit capabilities (legacy support in use) [ 1358.853661][T21935] sd 0:0:1:0: PR command failed: 1026 [ 1358.994425][T21935] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1359.065730][T21935] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1359.872775][T21958] zram: Can't change algorithm for initialized device [ 1360.261877][T21964] sp0: Synchronizing with TNC [ 1360.800153][T21971] misc userio: Invalid payload size [ 1361.576645][T21983] zram: Can't change algorithm for initialized device [ 1362.084765][T21992] FAULT_INJECTION: forcing a failure. [ 1362.084765][T21992] name failslab, interval 1, probability 0, space 0, times 0 [ 1362.175772][T21992] CPU: 0 UID: 0 PID: 21992 Comm: syz.3.3478 Tainted: G L syzkaller #0 PREEMPT(full) [ 1362.175813][T21992] Tainted: [L]=SOFTLOCKUP [ 1362.175821][T21992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1362.175837][T21992] Call Trace: [ 1362.175845][T21992] [ 1362.175855][T21992] dump_stack_lvl+0x100/0x190 [ 1362.175898][T21992] should_fail_ex.cold+0x5/0xa [ 1362.175929][T21992] should_failslab+0xc2/0x120 [ 1362.175957][T21992] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1362.176007][T21992] ? __d_alloc+0x34/0xa80 [ 1362.176036][T21992] ? security_inode_alloc+0xcf/0x2c0 [ 1362.176068][T21992] __d_alloc+0x34/0xa80 [ 1362.176095][T21992] ? __ns_ref_active_get+0x9f/0x1b0 [ 1362.176131][T21992] path_from_stashed+0x427/0x750 [ 1362.176158][T21992] ? do_raw_spin_unlock+0x145/0x1e0 [ 1362.176203][T21992] ns_get_path+0x60/0x80 [ 1362.176229][T21992] proc_ns_get_link+0x121/0x230 [ 1362.176266][T21992] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1362.176306][T21992] ? atime_needs_update+0x8b/0x6b0 [ 1362.176345][T21992] pick_link+0xd17/0x13c0 [ 1362.176383][T21992] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1362.176424][T21992] step_into_slowpath+0x9ba/0xf90 [ 1362.176469][T21992] ? __pfx_step_into_slowpath+0x10/0x10 [ 1362.176507][T21992] ? find_held_lock+0x2b/0x80 [ 1362.176545][T21992] path_openat+0xf95/0x31a0 [ 1362.176582][T21992] ? __pfx_path_openat+0x10/0x10 [ 1362.176620][T21992] do_file_open+0x20e/0x430 [ 1362.176649][T21992] ? __pfx_do_file_open+0x10/0x10 [ 1362.176697][T21992] ? alloc_fd+0x476/0x790 [ 1362.176725][T21992] ? do_getname+0x191/0x390 [ 1362.176759][T21992] do_sys_openat2+0x10d/0x1e0 [ 1362.176794][T21992] ? __pfx_do_sys_openat2+0x10/0x10 [ 1362.176831][T21992] ? __fget_files+0x21f/0x3d0 [ 1362.176862][T21992] __x64_sys_openat+0x12d/0x210 [ 1362.176897][T21992] ? __pfx___x64_sys_openat+0x10/0x10 [ 1362.176944][T21992] do_syscall_64+0x106/0xf80 [ 1362.176968][T21992] ? clear_bhb_loop+0x40/0x90 [ 1362.177004][T21992] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1362.177030][T21992] RIP: 0033:0x7f1964b5d04e [ 1362.177051][T21992] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1362.177075][T21992] RSP: 002b:00007f1965a76ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1362.177099][T21992] RAX: ffffffffffffffda RBX: 00007f1965a776c0 RCX: 00007f1964b5d04e [ 1362.177116][T21992] RDX: 0000000000000002 RSI: 00007f1965a76f90 RDI: ffffffffffffff9c [ 1362.177132][T21992] RBP: 00007f1964c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1362.177148][T21992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1362.177162][T21992] R13: 00007f1964e16128 R14: 00007f1964e16090 R15: 00007ffe031f9ef8 [ 1362.177194][T21992] [ 1364.603745][ T30] audit: type=1800 audit(2147483811.621:17): pid=22023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3483" name="members" dev="configfs" ino=419778 res=0 errno=0 [ 1372.978327][T22098] FAULT_INJECTION: forcing a failure. [ 1372.978327][T22098] name failslab, interval 1, probability 0, space 0, times 0 [ 1373.216596][T22098] CPU: 0 UID: 0 PID: 22098 Comm: syz.2.3500 Tainted: G L syzkaller #0 PREEMPT(full) [ 1373.216636][T22098] Tainted: [L]=SOFTLOCKUP [ 1373.216645][T22098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1373.216667][T22098] Call Trace: [ 1373.216675][T22098] [ 1373.216684][T22098] dump_stack_lvl+0x100/0x190 [ 1373.216727][T22098] should_fail_ex.cold+0x5/0xa [ 1373.216757][T22098] should_failslab+0xc2/0x120 [ 1373.216786][T22098] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1373.216827][T22098] ? __d_alloc+0x34/0xa80 [ 1373.216855][T22098] ? security_inode_alloc+0xcf/0x2c0 [ 1373.216887][T22098] __d_alloc+0x34/0xa80 [ 1373.216914][T22098] ? __ns_ref_active_get+0x9f/0x1b0 [ 1373.216949][T22098] path_from_stashed+0x427/0x750 [ 1373.216982][T22098] ? do_raw_spin_unlock+0x145/0x1e0 [ 1373.217026][T22098] ns_get_path+0x60/0x80 [ 1373.217053][T22098] proc_ns_get_link+0x121/0x230 [ 1373.217096][T22098] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1373.217136][T22098] ? atime_needs_update+0x8b/0x6b0 [ 1373.217175][T22098] pick_link+0xd17/0x13c0 [ 1373.217217][T22098] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1373.217257][T22098] step_into_slowpath+0x9ba/0xf90 [ 1373.217306][T22098] ? __pfx_step_into_slowpath+0x10/0x10 [ 1373.217352][T22098] ? find_held_lock+0x2b/0x80 [ 1373.217386][T22098] path_openat+0xf95/0x31a0 [ 1373.217422][T22098] ? __pfx_path_openat+0x10/0x10 [ 1373.217461][T22098] do_file_open+0x20e/0x430 [ 1373.217490][T22098] ? __pfx_do_file_open+0x10/0x10 [ 1373.217538][T22098] ? alloc_fd+0x476/0x790 [ 1373.217567][T22098] ? do_getname+0x191/0x390 [ 1373.217602][T22098] do_sys_openat2+0x10d/0x1e0 [ 1373.217636][T22098] ? __pfx_do_sys_openat2+0x10/0x10 [ 1373.217673][T22098] ? __fget_files+0x21f/0x3d0 [ 1373.217703][T22098] __x64_sys_openat+0x12d/0x210 [ 1373.217739][T22098] ? __pfx___x64_sys_openat+0x10/0x10 [ 1373.217785][T22098] do_syscall_64+0x106/0xf80 [ 1373.217809][T22098] ? clear_bhb_loop+0x40/0x90 [ 1373.217839][T22098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1373.217864][T22098] RIP: 0033:0x7fabaab5d04e [ 1373.217884][T22098] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1373.217908][T22098] RSP: 002b:00007fababb0cec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1373.217931][T22098] RAX: ffffffffffffffda RBX: 00007fababb0d6c0 RCX: 00007fabaab5d04e [ 1373.217947][T22098] RDX: 0000000000000002 RSI: 00007fababb0cf90 RDI: ffffffffffffff9c [ 1373.217964][T22098] RBP: 00007fabaac32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1373.217979][T22098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1373.217994][T22098] R13: 00007fabaae16128 R14: 00007fabaae16090 R15: 00007ffdc32a4c58 [ 1373.218025][T22098] [ 1374.559112][T22096] Process accounting resumed [ 1374.727836][T22123] FAULT_INJECTION: forcing a failure. [ 1374.727836][T22123] name failslab, interval 1, probability 0, space 0, times 0 [ 1374.883527][T22123] CPU: 0 UID: 0 PID: 22123 Comm: syz.1.3501 Tainted: G L syzkaller #0 PREEMPT(full) [ 1374.883568][T22123] Tainted: [L]=SOFTLOCKUP [ 1374.883577][T22123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1374.883627][T22123] Call Trace: [ 1374.883636][T22123] [ 1374.883646][T22123] dump_stack_lvl+0x100/0x190 [ 1374.883691][T22123] should_fail_ex.cold+0x5/0xa [ 1374.883722][T22123] should_failslab+0xc2/0x120 [ 1374.883754][T22123] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1374.883794][T22123] ? security_inode_alloc+0x3b/0x2c0 [ 1374.883823][T22123] ? lockdep_init_map_type+0x5c/0x250 [ 1374.883862][T22123] security_inode_alloc+0x3b/0x2c0 [ 1374.883892][T22123] inode_init_always_gfp+0xced/0x1040 [ 1374.883923][T22123] alloc_inode+0x8e/0x250 [ 1374.883959][T22123] path_from_stashed+0x25b/0x750 [ 1374.883986][T22123] ? do_raw_spin_unlock+0x145/0x1e0 [ 1374.884029][T22123] ns_get_path+0x60/0x80 [ 1374.884056][T22123] proc_ns_get_link+0x121/0x230 [ 1374.884093][T22123] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1374.884141][T22123] ? atime_needs_update+0x8b/0x6b0 [ 1374.884180][T22123] pick_link+0xd17/0x13c0 [ 1374.884217][T22123] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1374.884258][T22123] step_into_slowpath+0x9ba/0xf90 [ 1374.884304][T22123] ? __pfx_step_into_slowpath+0x10/0x10 [ 1374.884343][T22123] ? find_held_lock+0x2b/0x80 [ 1374.884377][T22123] path_openat+0xf95/0x31a0 [ 1374.884413][T22123] ? __pfx_path_openat+0x10/0x10 [ 1374.884451][T22123] do_file_open+0x20e/0x430 [ 1374.884480][T22123] ? __pfx_do_file_open+0x10/0x10 [ 1374.884528][T22123] ? alloc_fd+0x476/0x790 [ 1374.884556][T22123] ? do_getname+0x191/0x390 [ 1374.884592][T22123] do_sys_openat2+0x10d/0x1e0 [ 1374.884626][T22123] ? __pfx_do_sys_openat2+0x10/0x10 [ 1374.884663][T22123] ? __fget_files+0x21f/0x3d0 [ 1374.884693][T22123] __x64_sys_openat+0x12d/0x210 [ 1374.884729][T22123] ? __pfx___x64_sys_openat+0x10/0x10 [ 1374.884775][T22123] do_syscall_64+0x106/0xf80 [ 1374.884799][T22123] ? clear_bhb_loop+0x40/0x90 [ 1374.884829][T22123] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1374.884857][T22123] RIP: 0033:0x7ff20ed5d04e [ 1374.884882][T22123] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1374.884917][T22123] RSP: 002b:00007ff20fcd3ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1374.884946][T22123] RAX: ffffffffffffffda RBX: 00007ff20fcd46c0 RCX: 00007ff20ed5d04e [ 1374.884963][T22123] RDX: 0000000000000002 RSI: 00007ff20fcd3f90 RDI: ffffffffffffff9c [ 1374.884980][T22123] RBP: 00007ff20ee32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1374.884996][T22123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1374.885011][T22123] R13: 00007ff20f016128 R14: 00007ff20f016090 R15: 00007ffcdd227eb8 [ 1374.885043][T22123] [ 1376.032819][T22140] futex_wake_op: syz.2.3508 tries to shift op by -2048; fix this program [ 1376.052652][T22140] futex_wake_op: syz.2.3508 tries to shift op by -2048; fix this program [ 1376.190719][T22140] 0x000000000001-0x000000020000 : "" [ 1376.291463][T22140] ftl_cs: FTL header corrupt! [ 1376.360470][T22142] misc userio: Invalid payload size [ 1376.802866][T22145] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3509'. [ 1378.696776][T22165] Invalid ELF header magic: != ELF [ 1380.255846][T22191] bridge0: port 3(dummy0) entered blocking state [ 1380.305649][T22191] bridge0: port 3(dummy0) entered disabled state [ 1380.331056][T22195] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3515'. [ 1380.359811][T22191] dummy0: entered allmulticast mode [ 1380.388264][T22191] dummy0: entered promiscuous mode [ 1380.412441][T22191] bridge0: port 3(dummy0) entered blocking state [ 1380.419005][T22191] bridge0: port 3(dummy0) entered forwarding state [ 1380.550708][T22184] zswap: compressor not available [ 1381.200677][T22203] FAULT_INJECTION: forcing a failure. [ 1381.200677][T22203] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1381.247000][T22203] CPU: 0 UID: 0 PID: 22203 Comm: syz.1.3518 Tainted: G L syzkaller #0 PREEMPT(full) [ 1381.247040][T22203] Tainted: [L]=SOFTLOCKUP [ 1381.247049][T22203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1381.247064][T22203] Call Trace: [ 1381.247073][T22203] [ 1381.247082][T22203] dump_stack_lvl+0x100/0x190 [ 1381.247124][T22203] should_fail_ex.cold+0x5/0xa [ 1381.247155][T22203] get_futex_key+0x1d2/0x1620 [ 1381.247190][T22203] ? __pfx_get_futex_key+0x10/0x10 [ 1381.247221][T22203] ? stack_trace_save+0x8e/0xc0 [ 1381.247256][T22203] futex_wait_setup+0x83/0x510 [ 1381.247303][T22203] __futex_wait+0x19f/0x300 [ 1381.247355][T22203] ? __pfx___futex_wait+0x10/0x10 [ 1381.247400][T22203] ? __pfx_futex_wake_mark+0x10/0x10 [ 1381.247444][T22203] ? futex_hash+0x2c5/0x380 [ 1381.247483][T22203] futex_wait+0xed/0x380 [ 1381.247522][T22203] ? __pfx_futex_wait+0x10/0x10 [ 1381.247569][T22203] ? errseq_sample+0x51/0x70 [ 1381.247601][T22203] ? file_init_path+0x48e/0x670 [ 1381.247636][T22203] do_futex+0x1ef/0x350 [ 1381.247670][T22203] ? __pfx_do_futex+0x10/0x10 [ 1381.247704][T22203] ? fd_install+0x223/0x580 [ 1381.247734][T22203] __x64_sys_futex+0x34f/0x4d0 [ 1381.247769][T22203] ? __sys_socket+0xac/0x260 [ 1381.247802][T22203] ? __pfx___x64_sys_futex+0x10/0x10 [ 1381.247847][T22203] do_syscall_64+0x106/0xf80 [ 1381.247872][T22203] ? clear_bhb_loop+0x40/0x90 [ 1381.247903][T22203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1381.247929][T22203] RIP: 0033:0x7ff20ed9c819 [ 1381.247949][T22203] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1381.247974][T22203] RSP: 002b:00007ff20fcd40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1381.247998][T22203] RAX: ffffffffffffffda RBX: 00007ff20f016098 RCX: 00007ff20ed9c819 [ 1381.248015][T22203] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff20f016098 [ 1381.248030][T22203] RBP: 00007ff20f016090 R08: 0000000000000000 R09: 0000000000000000 [ 1381.248046][T22203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1381.248061][T22203] R13: 00007ff20f016128 R14: 00007ffcdd227dd0 R15: 00007ffcdd227eb8 [ 1381.248093][T22203] [ 1381.568729][T22205] Per memcg swappiness does not exist in cgroup v2. See memory.reclaim or memory.swap.max there [ 1381.568729][T22205] [ 1381.569252][T22205] i2c i2c-0: new_device: Missing parameters [ 1383.059004][T22226] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3524'. [ 1383.632718][T22233] zswap: compressor not available [ 1383.882845][T22242] FAULT_INJECTION: forcing a failure. [ 1383.882845][T22242] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1383.971009][T22242] CPU: 0 UID: 0 PID: 22242 Comm: syz.2.3526 Tainted: G L syzkaller #0 PREEMPT(full) [ 1383.971048][T22242] Tainted: [L]=SOFTLOCKUP [ 1383.971057][T22242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1383.971072][T22242] Call Trace: [ 1383.971081][T22242] [ 1383.971090][T22242] dump_stack_lvl+0x100/0x190 [ 1383.971138][T22242] should_fail_ex.cold+0x5/0xa [ 1383.971168][T22242] get_futex_key+0x1d2/0x1620 [ 1383.971203][T22242] ? __pfx_get_futex_key+0x10/0x10 [ 1383.971234][T22242] ? stack_trace_save+0x8e/0xc0 [ 1383.971268][T22242] futex_wait_setup+0x83/0x510 [ 1383.971315][T22242] __futex_wait+0x19f/0x300 [ 1383.971357][T22242] ? __pfx___futex_wait+0x10/0x10 [ 1383.971401][T22242] ? __pfx_futex_wake_mark+0x10/0x10 [ 1383.971444][T22242] ? futex_hash+0x2c5/0x380 [ 1383.971483][T22242] futex_wait+0xed/0x380 [ 1383.971527][T22242] ? __pfx_futex_wait+0x10/0x10 [ 1383.971574][T22242] ? errseq_sample+0x51/0x70 [ 1383.971606][T22242] ? file_init_path+0x48e/0x670 [ 1383.971641][T22242] do_futex+0x1ef/0x350 [ 1383.971675][T22242] ? __pfx_do_futex+0x10/0x10 [ 1383.971708][T22242] ? fd_install+0x223/0x580 [ 1383.971738][T22242] __x64_sys_futex+0x34f/0x4d0 [ 1383.971773][T22242] ? __sys_socket+0xac/0x260 [ 1383.971806][T22242] ? __pfx___x64_sys_futex+0x10/0x10 [ 1383.971850][T22242] do_syscall_64+0x106/0xf80 [ 1383.971875][T22242] ? clear_bhb_loop+0x40/0x90 [ 1383.971906][T22242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1383.971931][T22242] RIP: 0033:0x7fabaab9c819 [ 1383.971952][T22242] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1383.971975][T22242] RSP: 002b:00007fababb0d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1383.971999][T22242] RAX: ffffffffffffffda RBX: 00007fabaae16098 RCX: 00007fabaab9c819 [ 1383.972015][T22242] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fabaae16098 [ 1383.972030][T22242] RBP: 00007fabaae16090 R08: 0000000000000000 R09: 0000000000000000 [ 1383.972045][T22242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1383.972060][T22242] R13: 00007fabaae16128 R14: 00007ffdc32a4b70 R15: 00007ffdc32a4c58 [ 1383.972096][T22242] [ 1384.691089][T22251] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3523'. [ 1384.931829][T22232] zswap: compressor not available [ 1386.962278][T22266] FAULT_INJECTION: forcing a failure. [ 1386.962278][T22266] name failslab, interval 1, probability 0, space 0, times 0 [ 1387.005590][T22266] CPU: 0 UID: 0 PID: 22266 Comm: syz.1.3528 Tainted: G L syzkaller #0 PREEMPT(full) [ 1387.005629][T22266] Tainted: [L]=SOFTLOCKUP [ 1387.005639][T22266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1387.005662][T22266] Call Trace: [ 1387.005671][T22266] [ 1387.005681][T22266] dump_stack_lvl+0x100/0x190 [ 1387.005724][T22266] should_fail_ex.cold+0x5/0xa [ 1387.005755][T22266] should_failslab+0xc2/0x120 [ 1387.005783][T22266] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1387.005864][T22266] ? __d_alloc+0x34/0xa80 [ 1387.005894][T22266] ? security_inode_alloc+0xcf/0x2c0 [ 1387.005927][T22266] __d_alloc+0x34/0xa80 [ 1387.005954][T22266] ? __ns_ref_active_get+0x9f/0x1b0 [ 1387.005990][T22266] path_from_stashed+0x427/0x750 [ 1387.006017][T22266] ? do_raw_spin_unlock+0x145/0x1e0 [ 1387.006062][T22266] ns_get_path+0x60/0x80 [ 1387.006104][T22266] proc_ns_get_link+0x121/0x230 [ 1387.006141][T22266] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1387.006182][T22266] ? atime_needs_update+0x8b/0x6b0 [ 1387.006222][T22266] pick_link+0xd17/0x13c0 [ 1387.006259][T22266] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1387.006300][T22266] step_into_slowpath+0x9ba/0xf90 [ 1387.006344][T22266] ? __pfx_step_into_slowpath+0x10/0x10 [ 1387.006384][T22266] ? find_held_lock+0x2b/0x80 [ 1387.006427][T22266] path_openat+0xf95/0x31a0 [ 1387.006464][T22266] ? __pfx_path_openat+0x10/0x10 [ 1387.006506][T22266] do_file_open+0x20e/0x430 [ 1387.006535][T22266] ? __pfx_do_file_open+0x10/0x10 [ 1387.006583][T22266] ? alloc_fd+0x476/0x790 [ 1387.006612][T22266] ? do_getname+0x191/0x390 [ 1387.006646][T22266] do_sys_openat2+0x10d/0x1e0 [ 1387.006690][T22266] ? __pfx_do_sys_openat2+0x10/0x10 [ 1387.006731][T22266] ? __fget_files+0x21f/0x3d0 [ 1387.006765][T22266] __x64_sys_openat+0x12d/0x210 [ 1387.006803][T22266] ? __pfx___x64_sys_openat+0x10/0x10 [ 1387.006862][T22266] do_syscall_64+0x106/0xf80 [ 1387.006892][T22266] ? clear_bhb_loop+0x40/0x90 [ 1387.006924][T22266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1387.006950][T22266] RIP: 0033:0x7ff20ed5d04e [ 1387.006971][T22266] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1387.006995][T22266] RSP: 002b:00007ff20fcd3ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1387.007019][T22266] RAX: ffffffffffffffda RBX: 00007ff20fcd46c0 RCX: 00007ff20ed5d04e [ 1387.007035][T22266] RDX: 0000000000000002 RSI: 00007ff20fcd3f90 RDI: ffffffffffffff9c [ 1387.007058][T22266] RBP: 00007ff20ee32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1387.007075][T22266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1387.007095][T22266] R13: 00007ff20f016128 R14: 00007ff20f016090 R15: 00007ffcdd227eb8 [ 1387.007126][T22266] [ 1389.028010][T22276] syz.2.3530 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1389.256836][T22277] ima: policy update failed [ 1389.261540][ T30] audit: type=1802 audit(2147483836.409:18): pid=22277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3530" res=0 errno=0 [ 1390.617210][T22289] __vm_enough_memory: pid: 22289, comm: syz.2.3534, bytes: 4398046511104 not enough memory for the allocation [ 1391.278740][T22312] block2mtd: illegal erase size [ 1391.376033][T22314] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3536'. [ 1391.544470][T22310] bond0: invalid ARP target specified [ 1394.153548][T22344] zram: Can't change algorithm for initialized device [ 1394.198866][T22342] FAULT_INJECTION: forcing a failure. [ 1394.198866][T22342] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1394.300589][T22342] CPU: 0 UID: 0 PID: 22342 Comm: syz.0.3542 Tainted: G L syzkaller #0 PREEMPT(full) [ 1394.300627][T22342] Tainted: [L]=SOFTLOCKUP [ 1394.300636][T22342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1394.300650][T22342] Call Trace: [ 1394.300658][T22342] [ 1394.300667][T22342] dump_stack_lvl+0x100/0x190 [ 1394.300708][T22342] should_fail_ex.cold+0x5/0xa [ 1394.300733][T22342] ? rcu_is_watching+0x12/0xc0 [ 1394.300773][T22342] get_futex_key+0x295/0x1620 [ 1394.300806][T22342] ? __pfx_get_futex_key+0x10/0x10 [ 1394.300833][T22342] ? lock_acquire+0x1cf/0x380 [ 1394.300874][T22342] futex_wake+0xea/0x530 [ 1394.300913][T22342] ? __pfx_futex_wake+0x10/0x10 [ 1394.300950][T22342] ? exit_mm_release+0x19/0x30 [ 1394.300988][T22342] do_futex+0x32b/0x350 [ 1394.301020][T22342] ? __pfx_do_futex+0x10/0x10 [ 1394.301049][T22342] ? __might_fault+0xc5/0x140 [ 1394.301092][T22342] mm_release+0x24a/0x2f0 [ 1394.301118][T22342] do_exit+0x704/0x2b60 [ 1394.301164][T22342] ? __pfx_do_exit+0x10/0x10 [ 1394.301196][T22342] ? do_raw_spin_lock+0x128/0x260 [ 1394.301231][T22342] ? find_held_lock+0x2b/0x80 [ 1394.301254][T22342] ? get_signal+0x7e0/0x21e0 [ 1394.301283][T22342] do_group_exit+0xd5/0x2a0 [ 1394.301318][T22342] get_signal+0x1ec7/0x21e0 [ 1394.301354][T22342] ? __pfx_get_signal+0x10/0x10 [ 1394.301382][T22342] ? do_futex+0x192/0x350 [ 1394.301417][T22342] arch_do_signal_or_restart+0x91/0x770 [ 1394.301450][T22342] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1394.301489][T22342] ? __pfx___x64_sys_futex+0x10/0x10 [ 1394.301528][T22342] exit_to_user_mode_loop+0x86/0x4a0 [ 1394.301564][T22342] do_syscall_64+0x668/0xf80 [ 1394.301587][T22342] ? clear_bhb_loop+0x40/0x90 [ 1394.301617][T22342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1394.301642][T22342] RIP: 0033:0x7efffe39c819 [ 1394.301662][T22342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1394.301685][T22342] RSP: 002b:00007effff2730e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1394.301708][T22342] RAX: fffffffffffffe00 RBX: 00007efffe616188 RCX: 00007efffe39c819 [ 1394.301724][T22342] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007efffe616188 [ 1394.301738][T22342] RBP: 00007efffe616180 R08: 0000000000000000 R09: 0000000000000000 [ 1394.301753][T22342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1394.301768][T22342] R13: 00007efffe616218 R14: 00007fff8170cb60 R15: 00007fff8170cc48 [ 1394.301798][T22342] [ 1395.106887][T22347] ksmbd: Unknown IPC event: 14, ignore. [ 1395.425618][T22347] netlink: 'syz.0.3545': attribute type 4 has an invalid length. [ 1395.510032][T22347] futex_wake_op: syz.0.3545 tries to shift op by -2048; fix this program [ 1395.546166][T22347] futex_wake_op: syz.0.3545 tries to shift op by -2048; fix this program [ 1395.585245][T22347] 0x000000000001-0x000000020000 : "" [ 1395.608716][T22347] ftl_cs: FTL header corrupt! [ 1397.943694][T22377] random: crng reseeded on system resumption [ 1400.877829][T22400] FAULT_INJECTION: forcing a failure. [ 1400.877829][T22400] name failslab, interval 1, probability 0, space 0, times 0 [ 1400.913093][T22400] CPU: 0 UID: 0 PID: 22400 Comm: syz.0.3558 Tainted: G L syzkaller #0 PREEMPT(full) [ 1400.913133][T22400] Tainted: [L]=SOFTLOCKUP [ 1400.913142][T22400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1400.913157][T22400] Call Trace: [ 1400.913165][T22400] [ 1400.913175][T22400] dump_stack_lvl+0x100/0x190 [ 1400.913218][T22400] should_fail_ex.cold+0x5/0xa [ 1400.913248][T22400] should_failslab+0xc2/0x120 [ 1400.913276][T22400] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1400.913316][T22400] ? security_inode_alloc+0x3b/0x2c0 [ 1400.913344][T22400] ? lockdep_init_map_type+0x5c/0x250 [ 1400.913382][T22400] security_inode_alloc+0x3b/0x2c0 [ 1400.913411][T22400] inode_init_always_gfp+0xced/0x1040 [ 1400.913443][T22400] alloc_inode+0x8e/0x250 [ 1400.913489][T22400] path_from_stashed+0x25b/0x750 [ 1400.913517][T22400] ? do_raw_spin_unlock+0x145/0x1e0 [ 1400.913562][T22400] ns_get_path+0x60/0x80 [ 1400.913590][T22400] proc_ns_get_link+0x121/0x230 [ 1400.913627][T22400] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1400.913673][T22400] ? atime_needs_update+0x8b/0x6b0 [ 1400.913713][T22400] pick_link+0xd17/0x13c0 [ 1400.913750][T22400] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1400.913790][T22400] step_into_slowpath+0x9ba/0xf90 [ 1400.913835][T22400] ? __pfx_step_into_slowpath+0x10/0x10 [ 1400.913874][T22400] ? find_held_lock+0x2b/0x80 [ 1400.913908][T22400] path_openat+0xf95/0x31a0 [ 1400.913945][T22400] ? __pfx_path_openat+0x10/0x10 [ 1400.913983][T22400] do_file_open+0x20e/0x430 [ 1400.914012][T22400] ? __pfx_do_file_open+0x10/0x10 [ 1400.914060][T22400] ? alloc_fd+0x476/0x790 [ 1400.914089][T22400] ? do_getname+0x191/0x390 [ 1400.914124][T22400] do_sys_openat2+0x10d/0x1e0 [ 1400.914161][T22400] ? __pfx_do_sys_openat2+0x10/0x10 [ 1400.914198][T22400] ? __fget_files+0x21f/0x3d0 [ 1400.914229][T22400] __x64_sys_openat+0x12d/0x210 [ 1400.914264][T22400] ? __pfx___x64_sys_openat+0x10/0x10 [ 1400.914310][T22400] do_syscall_64+0x106/0xf80 [ 1400.914334][T22400] ? clear_bhb_loop+0x40/0x90 [ 1400.914364][T22400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1400.914390][T22400] RIP: 0033:0x7efffe35d04e [ 1400.914410][T22400] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1400.914435][T22400] RSP: 002b:00007effff2b4ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1400.914459][T22400] RAX: ffffffffffffffda RBX: 00007effff2b56c0 RCX: 00007efffe35d04e [ 1400.914484][T22400] RDX: 0000000000000002 RSI: 00007effff2b4f90 RDI: ffffffffffffff9c [ 1400.914500][T22400] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1400.914516][T22400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1400.914530][T22400] R13: 00007efffe616038 R14: 00007efffe615fa0 R15: 00007fff8170cc48 [ 1400.914562][T22400] [ 1403.256315][T22419] FAULT_INJECTION: forcing a failure. [ 1403.256315][T22419] name failslab, interval 1, probability 0, space 0, times 0 [ 1403.300320][T22419] CPU: 0 UID: 0 PID: 22419 Comm: syz.2.3562 Tainted: G L syzkaller #0 PREEMPT(full) [ 1403.300362][T22419] Tainted: [L]=SOFTLOCKUP [ 1403.300371][T22419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1403.300387][T22419] Call Trace: [ 1403.300395][T22419] [ 1403.300405][T22419] dump_stack_lvl+0x100/0x190 [ 1403.300449][T22419] should_fail_ex.cold+0x5/0xa [ 1403.300485][T22419] should_failslab+0xc2/0x120 [ 1403.300514][T22419] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1403.300553][T22419] ? security_inode_alloc+0x3b/0x2c0 [ 1403.300582][T22419] ? lockdep_init_map_type+0x5c/0x250 [ 1403.300620][T22419] security_inode_alloc+0x3b/0x2c0 [ 1403.300650][T22419] inode_init_always_gfp+0xced/0x1040 [ 1403.300686][T22419] alloc_inode+0x8e/0x250 [ 1403.300733][T22419] path_from_stashed+0x25b/0x750 [ 1403.300768][T22419] ? do_raw_spin_unlock+0x145/0x1e0 [ 1403.300823][T22419] ns_get_path+0x60/0x80 [ 1403.300850][T22419] proc_ns_get_link+0x121/0x230 [ 1403.300887][T22419] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1403.300927][T22419] ? atime_needs_update+0x8b/0x6b0 [ 1403.300966][T22419] pick_link+0xd17/0x13c0 [ 1403.301003][T22419] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1403.301043][T22419] step_into_slowpath+0x9ba/0xf90 [ 1403.301088][T22419] ? __pfx_step_into_slowpath+0x10/0x10 [ 1403.301126][T22419] ? find_held_lock+0x2b/0x80 [ 1403.301164][T22419] path_openat+0xf95/0x31a0 [ 1403.301201][T22419] ? __pfx_path_openat+0x10/0x10 [ 1403.301239][T22419] do_file_open+0x20e/0x430 [ 1403.301268][T22419] ? __pfx_do_file_open+0x10/0x10 [ 1403.301316][T22419] ? alloc_fd+0x476/0x790 [ 1403.301345][T22419] ? do_getname+0x191/0x390 [ 1403.301380][T22419] do_sys_openat2+0x10d/0x1e0 [ 1403.301414][T22419] ? __pfx_do_sys_openat2+0x10/0x10 [ 1403.301451][T22419] ? __fget_files+0x21f/0x3d0 [ 1403.301490][T22419] __x64_sys_openat+0x12d/0x210 [ 1403.301526][T22419] ? __pfx___x64_sys_openat+0x10/0x10 [ 1403.301573][T22419] do_syscall_64+0x106/0xf80 [ 1403.301598][T22419] ? clear_bhb_loop+0x40/0x90 [ 1403.301629][T22419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1403.301654][T22419] RIP: 0033:0x7fabaab5d04e [ 1403.301675][T22419] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1403.301699][T22419] RSP: 002b:00007fababb2dec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1403.301723][T22419] RAX: ffffffffffffffda RBX: 00007fababb2e6c0 RCX: 00007fabaab5d04e [ 1403.301739][T22419] RDX: 0000000000000002 RSI: 00007fababb2df90 RDI: ffffffffffffff9c [ 1403.301755][T22419] RBP: 00007fabaac32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1403.301771][T22419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1403.301786][T22419] R13: 00007fabaae16038 R14: 00007fabaae15fa0 R15: 00007ffdc32a4c58 [ 1403.301817][T22419] [ 1404.658090][T22429] Process accounting paused [ 1407.918240][T22459] mkiss: ax0: crc mode is auto. [ 1411.350156][T22491] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1411.350200][T22491] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 1412.627478][T22500] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 1412.698247][T22500] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 1412.773320][T22500] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 1412.973346][T22507] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 1: bad block bitmap checksum [ 1413.181090][T22510] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 2: bad block bitmap checksum [ 1413.583148][ T5830] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1413.602759][ T5830] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1413.611263][ T5830] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1413.619128][ T5830] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1413.630302][ T5830] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1414.022620][T22521] FAULT_INJECTION: forcing a failure. [ 1414.022620][T22521] name failslab, interval 1, probability 0, space 0, times 0 [ 1414.155944][T22514] chnl_net:caif_netlink_parms(): no params data found [ 1414.175457][T22524] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3585'. [ 1414.185483][T22521] CPU: 0 UID: 0 PID: 22521 Comm: syz.0.3584 Tainted: G L syzkaller #0 PREEMPT(full) [ 1414.185523][T22521] Tainted: [L]=SOFTLOCKUP [ 1414.185531][T22521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1414.185547][T22521] Call Trace: [ 1414.185555][T22521] [ 1414.185564][T22521] dump_stack_lvl+0x100/0x190 [ 1414.185609][T22521] should_fail_ex.cold+0x5/0xa [ 1414.185639][T22521] should_failslab+0xc2/0x120 [ 1414.185667][T22521] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1414.185706][T22521] ? security_inode_alloc+0x3b/0x2c0 [ 1414.185735][T22521] ? lockdep_init_map_type+0x5c/0x250 [ 1414.185774][T22521] security_inode_alloc+0x3b/0x2c0 [ 1414.185803][T22521] inode_init_always_gfp+0xced/0x1040 [ 1414.185835][T22521] alloc_inode+0x8e/0x250 [ 1414.185871][T22521] path_from_stashed+0x25b/0x750 [ 1414.185899][T22521] ? do_raw_spin_unlock+0x145/0x1e0 [ 1414.185943][T22521] ns_get_path+0x60/0x80 [ 1414.185970][T22521] proc_ns_get_link+0x121/0x230 [ 1414.186007][T22521] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1414.186047][T22521] ? atime_needs_update+0x8b/0x6b0 [ 1414.186086][T22521] pick_link+0xd17/0x13c0 [ 1414.186124][T22521] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1414.186165][T22521] step_into_slowpath+0x9ba/0xf90 [ 1414.186210][T22521] ? __pfx_step_into_slowpath+0x10/0x10 [ 1414.186249][T22521] ? find_held_lock+0x2b/0x80 [ 1414.186282][T22521] path_openat+0xf95/0x31a0 [ 1414.186319][T22521] ? __pfx_path_openat+0x10/0x10 [ 1414.186357][T22521] do_file_open+0x20e/0x430 [ 1414.186392][T22521] ? __pfx_do_file_open+0x10/0x10 [ 1414.186441][T22521] ? alloc_fd+0x476/0x790 [ 1414.186475][T22521] ? do_getname+0x191/0x390 [ 1414.186511][T22521] do_sys_openat2+0x10d/0x1e0 [ 1414.186546][T22521] ? __pfx_do_sys_openat2+0x10/0x10 [ 1414.186583][T22521] ? __fget_files+0x21f/0x3d0 [ 1414.186614][T22521] __x64_sys_openat+0x12d/0x210 [ 1414.186650][T22521] ? __pfx___x64_sys_openat+0x10/0x10 [ 1414.186696][T22521] do_syscall_64+0x106/0xf80 [ 1414.186721][T22521] ? clear_bhb_loop+0x40/0x90 [ 1414.186751][T22521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1414.186776][T22521] RIP: 0033:0x7efffe35d04e [ 1414.186797][T22521] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1414.186826][T22521] RSP: 002b:00007effff293ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1414.186851][T22521] RAX: ffffffffffffffda RBX: 00007effff2946c0 RCX: 00007efffe35d04e [ 1414.186867][T22521] RDX: 0000000000000002 RSI: 00007effff293f90 RDI: ffffffffffffff9c [ 1414.186883][T22521] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1414.186898][T22521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1414.186912][T22521] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1414.186943][T22521] [ 1414.707904][T22530] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3586'. [ 1414.850757][T22514] bridge0: port 1(bridge_slave_0) entered blocking state [ 1414.868440][T22514] bridge0: port 1(bridge_slave_0) entered disabled state [ 1414.887455][T22514] bridge_slave_0: entered allmulticast mode [ 1414.913300][T22514] bridge_slave_0: entered promiscuous mode [ 1414.934845][T22514] bridge0: port 2(bridge_slave_1) entered blocking state [ 1414.963147][T22514] bridge0: port 2(bridge_slave_1) entered disabled state [ 1414.970587][T22514] bridge_slave_1: entered allmulticast mode [ 1415.010480][T22514] bridge_slave_1: entered promiscuous mode [ 1415.133686][T22514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1415.169152][T22514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1415.377750][T22514] team0: Port device team_slave_0 added [ 1415.432165][T22514] team0: Port device team_slave_1 added [ 1415.616932][T22536] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3588'. [ 1415.629974][T22514] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1415.637123][T22514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1415.691806][ T5830] Bluetooth: hci2: command tx timeout [ 1415.739158][T22514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1415.911497][T22514] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1415.934971][T22514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1416.024458][T22514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1416.333258][T22514] hsr_slave_0: entered promiscuous mode [ 1416.349408][T22514] hsr_slave_1: entered promiscuous mode [ 1416.366310][T22514] debugfs: 'hsr0' already exists in 'hsr' [ 1416.375783][T22514] Cannot create hsr debugfs directory [ 1417.015402][T22514] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1417.049691][T22514] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1417.071293][T22514] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1417.092539][T22514] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1417.289347][T22514] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1417.357496][T22514] 8021q: adding VLAN 0 to HW filter on device team0 [ 1417.413356][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 1417.420622][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1417.487404][T21562] bridge0: port 2(bridge_slave_1) entered blocking state [ 1417.494761][T21562] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1417.748954][ T5830] Bluetooth: hci2: command tx timeout [ 1418.168627][T22514] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1418.316378][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1418.322827][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1418.931939][T22514] veth0_vlan: entered promiscuous mode [ 1418.994560][T22514] veth1_vlan: entered promiscuous mode [ 1419.097497][T22514] veth0_macvtap: entered promiscuous mode [ 1419.196473][T22514] veth1_macvtap: entered promiscuous mode [ 1419.280119][T22514] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1419.341487][T22579] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3594'. [ 1419.433754][T22514] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1419.564856][T21562] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1419.593661][T21562] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1419.724169][T21562] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1419.768135][T21562] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1419.817709][ T5830] Bluetooth: hci2: command tx timeout [ 1420.308492][T21560] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1420.365071][T21560] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1420.575195][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1420.615412][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1420.955318][T22514] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 1421.020250][T16354] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1421.036682][T16354] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1421.045617][T16354] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1421.055769][T16354] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1421.073611][T16354] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1421.886990][ T5830] Bluetooth: hci2: command tx timeout [ 1422.183261][T22593] chnl_net:caif_netlink_parms(): no params data found [ 1422.559329][T22614] FAULT_INJECTION: forcing a failure. [ 1422.559329][T22614] name failslab, interval 1, probability 0, space 0, times 0 [ 1422.649477][T22614] CPU: 0 UID: 0 PID: 22614 Comm: syz.4.3600 Tainted: G L syzkaller #0 PREEMPT(full) [ 1422.649517][T22614] Tainted: [L]=SOFTLOCKUP [ 1422.649526][T22614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1422.649541][T22614] Call Trace: [ 1422.649549][T22614] [ 1422.649558][T22614] dump_stack_lvl+0x100/0x190 [ 1422.649601][T22614] should_fail_ex.cold+0x5/0xa [ 1422.649630][T22614] should_failslab+0xc2/0x120 [ 1422.649659][T22614] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1422.649708][T22614] ? security_inode_alloc+0x3b/0x2c0 [ 1422.649736][T22614] ? lockdep_init_map_type+0x5c/0x250 [ 1422.649775][T22614] security_inode_alloc+0x3b/0x2c0 [ 1422.649806][T22614] inode_init_always_gfp+0xced/0x1040 [ 1422.649838][T22614] alloc_inode+0x8e/0x250 [ 1422.649872][T22614] path_from_stashed+0x25b/0x750 [ 1422.649900][T22614] ? do_raw_spin_unlock+0x145/0x1e0 [ 1422.649950][T22614] ns_get_path+0x60/0x80 [ 1422.649978][T22614] proc_ns_get_link+0x121/0x230 [ 1422.650015][T22614] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1422.650055][T22614] ? atime_needs_update+0x8b/0x6b0 [ 1422.650095][T22614] pick_link+0xd17/0x13c0 [ 1422.650132][T22614] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1422.650173][T22614] step_into_slowpath+0x9ba/0xf90 [ 1422.650218][T22614] ? __pfx_step_into_slowpath+0x10/0x10 [ 1422.650256][T22614] ? find_held_lock+0x2b/0x80 [ 1422.650290][T22614] path_openat+0xf95/0x31a0 [ 1422.650326][T22614] ? __pfx_path_openat+0x10/0x10 [ 1422.650364][T22614] do_file_open+0x20e/0x430 [ 1422.650398][T22614] ? __pfx_do_file_open+0x10/0x10 [ 1422.650447][T22614] ? alloc_fd+0x476/0x790 [ 1422.650475][T22614] ? do_getname+0x191/0x390 [ 1422.650510][T22614] do_sys_openat2+0x10d/0x1e0 [ 1422.650545][T22614] ? __pfx_do_sys_openat2+0x10/0x10 [ 1422.650582][T22614] ? __fget_files+0x21f/0x3d0 [ 1422.650613][T22614] __x64_sys_openat+0x12d/0x210 [ 1422.650648][T22614] ? __pfx___x64_sys_openat+0x10/0x10 [ 1422.650701][T22614] do_syscall_64+0x106/0xf80 [ 1422.650726][T22614] ? clear_bhb_loop+0x40/0x90 [ 1422.650757][T22614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1422.650783][T22614] RIP: 0033:0x7f60f555d04e [ 1422.650804][T22614] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1422.650829][T22614] RSP: 002b:00007f60f37ccec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1422.650854][T22614] RAX: ffffffffffffffda RBX: 00007f60f37cd6c0 RCX: 00007f60f555d04e [ 1422.650871][T22614] RDX: 0000000000000002 RSI: 00007f60f37ccf90 RDI: ffffffffffffff9c [ 1422.650886][T22614] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1422.650901][T22614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1422.650916][T22614] R13: 00007f60f5816128 R14: 00007f60f5816090 R15: 00007ffe67bd62c8 [ 1422.650947][T22614] [ 1423.344472][ T5830] Bluetooth: hci5: command tx timeout [ 1423.396101][T22593] bridge0: port 1(bridge_slave_0) entered blocking state [ 1423.428939][T22593] bridge0: port 1(bridge_slave_0) entered disabled state [ 1423.436447][T22593] bridge_slave_0: entered allmulticast mode [ 1423.478142][T22593] bridge_slave_0: entered promiscuous mode [ 1423.497252][T22593] bridge0: port 2(bridge_slave_1) entered blocking state [ 1423.512266][T22593] bridge0: port 2(bridge_slave_1) entered disabled state [ 1423.528516][T22593] bridge_slave_1: entered allmulticast mode [ 1423.547031][T22593] bridge_slave_1: entered promiscuous mode [ 1423.645418][T22593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1423.728806][T22593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1423.868866][T22593] team0: Port device team_slave_0 added [ 1423.925584][T22593] team0: Port device team_slave_1 added [ 1424.100972][T22593] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1424.127572][T22593] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1424.224243][T22593] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1424.281406][T22593] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1424.304320][T22593] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1424.397272][T22593] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1424.685401][T22593] hsr_slave_0: entered promiscuous mode [ 1424.721082][T22593] hsr_slave_1: entered promiscuous mode [ 1424.739498][T22593] debugfs: 'hsr0' already exists in 'hsr' [ 1424.762283][T22593] Cannot create hsr debugfs directory [ 1425.055487][T22631] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3602'. [ 1425.393690][T16354] Bluetooth: hci5: command tx timeout [ 1426.395306][T22593] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1426.450259][T22654] FAULT_INJECTION: forcing a failure. [ 1426.450259][T22654] name failslab, interval 1, probability 0, space 0, times 0 [ 1426.482463][T22593] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1426.528340][T22593] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1426.539902][T22654] CPU: 0 UID: 0 PID: 22654 Comm: syz.0.3607 Tainted: G L syzkaller #0 PREEMPT(full) [ 1426.539942][T22654] Tainted: [L]=SOFTLOCKUP [ 1426.539952][T22654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1426.539967][T22654] Call Trace: [ 1426.539975][T22654] [ 1426.539984][T22654] dump_stack_lvl+0x100/0x190 [ 1426.540028][T22654] should_fail_ex.cold+0x5/0xa [ 1426.540058][T22654] should_failslab+0xc2/0x120 [ 1426.540086][T22654] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1426.540126][T22654] ? security_inode_alloc+0x3b/0x2c0 [ 1426.540155][T22654] ? lockdep_init_map_type+0x5c/0x250 [ 1426.540193][T22654] security_inode_alloc+0x3b/0x2c0 [ 1426.540222][T22654] inode_init_always_gfp+0xced/0x1040 [ 1426.540254][T22654] alloc_inode+0x8e/0x250 [ 1426.540288][T22654] path_from_stashed+0x25b/0x750 [ 1426.540316][T22654] ? do_raw_spin_unlock+0x145/0x1e0 [ 1426.540367][T22654] ns_get_path+0x60/0x80 [ 1426.540394][T22654] proc_ns_get_link+0x121/0x230 [ 1426.540432][T22654] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1426.540472][T22654] ? atime_needs_update+0x8b/0x6b0 [ 1426.540511][T22654] pick_link+0xd17/0x13c0 [ 1426.540548][T22654] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1426.540589][T22654] step_into_slowpath+0x9ba/0xf90 [ 1426.540633][T22654] ? __pfx_step_into_slowpath+0x10/0x10 [ 1426.540672][T22654] ? find_held_lock+0x2b/0x80 [ 1426.540705][T22654] path_openat+0xf95/0x31a0 [ 1426.540742][T22654] ? __pfx_path_openat+0x10/0x10 [ 1426.540780][T22654] do_file_open+0x20e/0x430 [ 1426.540809][T22654] ? __pfx_do_file_open+0x10/0x10 [ 1426.540856][T22654] ? alloc_fd+0x476/0x790 [ 1426.540885][T22654] ? do_getname+0x191/0x390 [ 1426.540920][T22654] do_sys_openat2+0x10d/0x1e0 [ 1426.540955][T22654] ? __pfx_do_sys_openat2+0x10/0x10 [ 1426.540991][T22654] ? __fget_files+0x21f/0x3d0 [ 1426.541022][T22654] __x64_sys_openat+0x12d/0x210 [ 1426.541057][T22654] ? __pfx___x64_sys_openat+0x10/0x10 [ 1426.541103][T22654] do_syscall_64+0x106/0xf80 [ 1426.541127][T22654] ? clear_bhb_loop+0x40/0x90 [ 1426.541157][T22654] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1426.541182][T22654] RIP: 0033:0x7efffe35d04e [ 1426.541204][T22654] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1426.541229][T22654] RSP: 002b:00007effff293ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1426.541252][T22654] RAX: ffffffffffffffda RBX: 00007effff2946c0 RCX: 00007efffe35d04e [ 1426.541269][T22654] RDX: 0000000000000002 RSI: 00007effff293f90 RDI: ffffffffffffff9c [ 1426.541285][T22654] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1426.541300][T22654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1426.541315][T22654] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1426.541347][T22654] [ 1426.848893][T22593] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1427.463097][T16354] Bluetooth: hci5: command tx timeout [ 1427.522874][T22672] FAULT_INJECTION: forcing a failure. [ 1427.522874][T22672] name failslab, interval 1, probability 0, space 0, times 0 [ 1427.639285][T22672] CPU: 0 UID: 0 PID: 22672 Comm: syz.0.3610 Tainted: G L syzkaller #0 PREEMPT(full) [ 1427.639325][T22672] Tainted: [L]=SOFTLOCKUP [ 1427.639335][T22672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1427.639350][T22672] Call Trace: [ 1427.639359][T22672] [ 1427.639369][T22672] dump_stack_lvl+0x100/0x190 [ 1427.639412][T22672] should_fail_ex.cold+0x5/0xa [ 1427.639442][T22672] should_failslab+0xc2/0x120 [ 1427.639471][T22672] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1427.639511][T22672] ? __d_alloc+0x34/0xa80 [ 1427.639540][T22672] ? security_inode_alloc+0xcf/0x2c0 [ 1427.639571][T22672] __d_alloc+0x34/0xa80 [ 1427.639598][T22672] ? __ns_ref_active_get+0x9f/0x1b0 [ 1427.639637][T22672] path_from_stashed+0x427/0x750 [ 1427.639665][T22672] ? do_raw_spin_unlock+0x145/0x1e0 [ 1427.639709][T22672] ns_get_path+0x60/0x80 [ 1427.639736][T22672] proc_ns_get_link+0x121/0x230 [ 1427.639772][T22672] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1427.639812][T22672] ? atime_needs_update+0x8b/0x6b0 [ 1427.639852][T22672] pick_link+0xd17/0x13c0 [ 1427.639889][T22672] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1427.639930][T22672] step_into_slowpath+0x9ba/0xf90 [ 1427.639974][T22672] ? __pfx_step_into_slowpath+0x10/0x10 [ 1427.640013][T22672] ? find_held_lock+0x2b/0x80 [ 1427.640046][T22672] path_openat+0xf95/0x31a0 [ 1427.640083][T22672] ? __pfx_path_openat+0x10/0x10 [ 1427.640121][T22672] do_file_open+0x20e/0x430 [ 1427.640150][T22672] ? __pfx_do_file_open+0x10/0x10 [ 1427.640198][T22672] ? alloc_fd+0x476/0x790 [ 1427.640233][T22672] ? do_getname+0x191/0x390 [ 1427.640268][T22672] do_sys_openat2+0x10d/0x1e0 [ 1427.640304][T22672] ? __pfx_do_sys_openat2+0x10/0x10 [ 1427.640341][T22672] ? __fget_files+0x21f/0x3d0 [ 1427.640372][T22672] __x64_sys_openat+0x12d/0x210 [ 1427.640407][T22672] ? __pfx___x64_sys_openat+0x10/0x10 [ 1427.640454][T22672] do_syscall_64+0x106/0xf80 [ 1427.640478][T22672] ? clear_bhb_loop+0x40/0x90 [ 1427.640509][T22672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1427.640534][T22672] RIP: 0033:0x7efffe35d04e [ 1427.640555][T22672] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1427.640580][T22672] RSP: 002b:00007effff293ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1427.640604][T22672] RAX: ffffffffffffffda RBX: 00007effff2946c0 RCX: 00007efffe35d04e [ 1427.640621][T22672] RDX: 0000000000000002 RSI: 00007effff293f90 RDI: ffffffffffffff9c [ 1427.640637][T22672] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1427.640652][T22672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1427.640667][T22672] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1427.640699][T22672] [ 1428.640274][T22593] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1428.827372][T22593] 8021q: adding VLAN 0 to HW filter on device team0 [ 1428.873311][ T1112] bridge0: port 1(bridge_slave_0) entered blocking state [ 1428.880549][ T1112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1428.955536][ T1112] bridge0: port 2(bridge_slave_1) entered blocking state [ 1428.962854][ T1112] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1429.177600][T22593] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1429.271170][T22593] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1429.527708][T16354] Bluetooth: hci5: command tx timeout [ 1429.873379][T22691] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1430.083431][T22691] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1430.283311][T22691] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1430.395778][T22593] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1430.545454][T22691] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1430.848394][T22691] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1431.219777][T22710] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1431.292155][T22713] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3619'. [ 1431.358896][T22710] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 1431.438112][T22713] FAULT_INJECTION: forcing a failure. [ 1431.438112][T22713] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1431.438177][T22713] CPU: 0 UID: 0 PID: 22713 Comm: syz.0.3619 Tainted: G L syzkaller #0 PREEMPT(full) [ 1431.438212][T22713] Tainted: [L]=SOFTLOCKUP [ 1431.438221][T22713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1431.438238][T22713] Call Trace: [ 1431.438246][T22713] [ 1431.438255][T22713] dump_stack_lvl+0x100/0x190 [ 1431.438298][T22713] should_fail_ex.cold+0x5/0xa [ 1431.438324][T22713] ? prepare_alloc_pages+0x16d/0x5f0 [ 1431.438358][T22713] should_fail_alloc_page+0xeb/0x140 [ 1431.438388][T22713] prepare_alloc_pages+0x1f0/0x5f0 [ 1431.438419][T22713] ? bpf_ksym_find+0x124/0x1c0 [ 1431.438454][T22713] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1431.438497][T22713] ? __kernel_text_address+0xd/0x30 [ 1431.438535][T22713] ? unwind_get_return_address+0x59/0xa0 [ 1431.438564][T22713] ? arch_stack_walk+0xa6/0xf0 [ 1431.438599][T22713] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1431.438639][T22713] ? stack_trace_save+0x8e/0xc0 [ 1431.438675][T22713] ? kasan_save_stack+0x30/0x50 [ 1431.438697][T22713] ? kasan_save_track+0x14/0x30 [ 1431.438718][T22713] ? __kasan_kmalloc+0xaa/0xb0 [ 1431.438739][T22713] ? vc_allocate+0x1a6/0x880 [ 1431.438777][T22713] ? fb_var_to_videomode+0x586/0x6a0 [ 1431.438813][T22713] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1431.438842][T22713] ? policy_nodemask+0xed/0x4f0 [ 1431.438871][T22713] alloc_pages_mpol+0x1fb/0x550 [ 1431.438900][T22713] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1431.438927][T22713] ? lockdep_hardirqs_on+0x78/0x100 [ 1431.438954][T22713] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1431.438992][T22713] ? vc_allocate+0x4c3/0x880 [ 1431.439028][T22713] ___kmalloc_large_node+0x104/0x150 [ 1431.439059][T22713] ? fbcon_init+0xb4a/0x1820 [ 1431.439092][T22713] __kmalloc_large_node_noprof+0x1c/0x70 [ 1431.439127][T22713] __kmalloc_noprof+0x5be/0x850 [ 1431.439167][T22713] ? visual_init+0x3bd/0x620 [ 1431.439201][T22713] vc_allocate+0x4c3/0x880 [ 1431.439239][T22713] ? __pfx_vc_allocate+0x10/0x10 [ 1431.439287][T22713] con_install+0xa1/0x620 [ 1431.439326][T22713] ? __pfx_con_install+0x10/0x10 [ 1431.439370][T22713] ? __pfx_con_install+0x10/0x10 [ 1431.439410][T22713] tty_init_dev.part.0+0x9e/0x470 [ 1431.439439][T22713] tty_open+0xa63/0xfa0 [ 1431.439468][T22713] ? __pfx_tty_open+0x10/0x10 [ 1431.439491][T22713] ? chrdev_open+0x589/0x6a0 [ 1431.439516][T22713] ? chrdev_open+0x589/0x6a0 [ 1431.439547][T22713] ? __pfx_tty_open+0x10/0x10 [ 1431.439571][T22713] chrdev_open+0x234/0x6a0 [ 1431.439599][T22713] ? __pfx_chrdev_open+0x10/0x10 [ 1431.439628][T22713] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1431.439663][T22713] do_dentry_open+0x6d8/0x1660 [ 1431.439689][T22713] ? __pfx_chrdev_open+0x10/0x10 [ 1431.439723][T22713] vfs_open+0x82/0x3f0 [ 1431.439760][T22713] path_openat+0x208c/0x31a0 [ 1431.439797][T22713] ? __pfx_path_openat+0x10/0x10 [ 1431.439836][T22713] do_file_open+0x20e/0x430 [ 1431.439865][T22713] ? __pfx_do_file_open+0x10/0x10 [ 1431.439914][T22713] ? alloc_fd+0x476/0x790 [ 1431.439943][T22713] ? do_getname+0x191/0x390 [ 1431.439983][T22713] do_sys_openat2+0x10d/0x1e0 [ 1431.440018][T22713] ? __pfx_do_sys_openat2+0x10/0x10 [ 1431.440064][T22713] __x64_sys_openat+0x12d/0x210 [ 1431.440100][T22713] ? __pfx___x64_sys_openat+0x10/0x10 [ 1431.440148][T22713] do_syscall_64+0x106/0xf80 [ 1431.440172][T22713] ? clear_bhb_loop+0x40/0x90 [ 1431.440203][T22713] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1431.440228][T22713] RIP: 0033:0x7efffe39c819 [ 1431.440250][T22713] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1431.440275][T22713] RSP: 002b:00007effff2b5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1431.440299][T22713] RAX: ffffffffffffffda RBX: 00007efffe615fa0 RCX: 00007efffe39c819 [ 1431.440316][T22713] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1431.440332][T22713] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1431.440347][T22713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1431.440362][T22713] R13: 00007efffe616038 R14: 00007efffe615fa0 R15: 00007fff8170cc48 [ 1431.440395][T22713] [ 1431.743591][T22593] veth0_vlan: entered promiscuous mode [ 1431.774614][T22593] veth1_vlan: entered promiscuous mode [ 1432.021214][T22593] veth0_macvtap: entered promiscuous mode [ 1432.058243][T22593] veth1_macvtap: entered promiscuous mode [ 1432.189343][T22593] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1432.192495][T22593] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1432.273256][T21560] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1432.273313][T21560] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1432.273353][T21560] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1432.273392][T21560] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1432.570264][T21560] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1432.570320][T21560] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1432.726800][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1432.726825][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1433.455916][T22734] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3622'. [ 1434.675543][T22748] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1434.675586][T22748] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 1435.685358][T22759] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 1436.970846][T22779] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3632'. [ 1437.335908][T22771] zswap: compressor not available [ 1437.715484][ T30] audit: type=1804 audit(2147483678.643:19): pid=22794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3636" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1439.864155][T22823] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1441.633481][T22839] netlink: 186 bytes leftover after parsing attributes in process `syz.0.3647'. [ 1442.371637][T22850] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3648'. [ 1442.751055][T22847] zswap: compressor not available [ 1444.459459][T22875] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 1444.651388][T22873] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1444.810691][T22878] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 1445.102083][ T30] audit: type=1800 audit(2147483647.723:20): pid=22893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3658" name="version" dev="configfs" ino=426342 res=0 errno=0 [ 1447.062135][T22916] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3662'. [ 1448.744869][T22935] zram: Can't change algorithm for initialized device [ 1448.920160][T22944] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1452.626642][T22999] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1453.299052][T23008] FAULT_INJECTION: forcing a failure. [ 1453.299052][T23008] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.383426][T23008] CPU: 0 UID: 0 PID: 23008 Comm: syz.4.3682 Tainted: G L syzkaller #0 PREEMPT(full) [ 1453.383466][T23008] Tainted: [L]=SOFTLOCKUP [ 1453.383475][T23008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1453.383491][T23008] Call Trace: [ 1453.383499][T23008] [ 1453.383508][T23008] dump_stack_lvl+0x100/0x190 [ 1453.383553][T23008] should_fail_ex.cold+0x5/0xa [ 1453.383583][T23008] should_failslab+0xc2/0x120 [ 1453.383611][T23008] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1453.383650][T23008] ? security_inode_alloc+0x3b/0x2c0 [ 1453.383680][T23008] ? lockdep_init_map_type+0x5c/0x250 [ 1453.383718][T23008] security_inode_alloc+0x3b/0x2c0 [ 1453.383748][T23008] inode_init_always_gfp+0xced/0x1040 [ 1453.383780][T23008] alloc_inode+0x8e/0x250 [ 1453.383815][T23008] path_from_stashed+0x25b/0x750 [ 1453.383842][T23008] ? do_raw_spin_unlock+0x145/0x1e0 [ 1453.383886][T23008] ns_get_path+0x60/0x80 [ 1453.383913][T23008] proc_ns_get_link+0x121/0x230 [ 1453.383950][T23008] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1453.383990][T23008] ? atime_needs_update+0x8b/0x6b0 [ 1453.384038][T23008] pick_link+0xd17/0x13c0 [ 1453.384076][T23008] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1453.384117][T23008] step_into_slowpath+0x9ba/0xf90 [ 1453.384162][T23008] ? __pfx_step_into_slowpath+0x10/0x10 [ 1453.384201][T23008] ? find_held_lock+0x2b/0x80 [ 1453.384236][T23008] path_openat+0xf95/0x31a0 [ 1453.384272][T23008] ? __pfx_path_openat+0x10/0x10 [ 1453.384310][T23008] do_file_open+0x20e/0x430 [ 1453.384339][T23008] ? __pfx_do_file_open+0x10/0x10 [ 1453.384387][T23008] ? alloc_fd+0x476/0x790 [ 1453.384415][T23008] ? do_getname+0x191/0x390 [ 1453.384450][T23008] do_sys_openat2+0x10d/0x1e0 [ 1453.384485][T23008] ? __pfx_do_sys_openat2+0x10/0x10 [ 1453.384521][T23008] ? __fget_files+0x21f/0x3d0 [ 1453.384552][T23008] __x64_sys_openat+0x12d/0x210 [ 1453.384587][T23008] ? __pfx___x64_sys_openat+0x10/0x10 [ 1453.384633][T23008] do_syscall_64+0x106/0xf80 [ 1453.384656][T23008] ? clear_bhb_loop+0x40/0x90 [ 1453.384686][T23008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1453.384712][T23008] RIP: 0033:0x7f60f555d04e [ 1453.384732][T23008] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1453.384756][T23008] RSP: 002b:00007f60f37ccec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1453.384781][T23008] RAX: ffffffffffffffda RBX: 00007f60f37cd6c0 RCX: 00007f60f555d04e [ 1453.384797][T23008] RDX: 0000000000000002 RSI: 00007f60f37ccf90 RDI: ffffffffffffff9c [ 1453.384813][T23008] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1453.384828][T23008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1453.384842][T23008] R13: 00007f60f5816128 R14: 00007f60f5816090 R15: 00007ffe67bd62c8 [ 1453.384874][T23008] [ 1453.696033][T23012] block nbd0: shutting down sockets [ 1454.593288][T21562] bridge_slave_0: left allmulticast mode [ 1454.640839][T21562] bridge_slave_0: left promiscuous mode [ 1454.667586][T21562] bridge0: port 1(bridge_slave_0) entered disabled state [ 1455.616665][T21562] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1455.773369][T21562] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1455.801123][T23040] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3689'. [ 1456.017562][T21562] bond0 (unregistering): Released all slaves [ 1457.450423][T23049] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3692'. [ 1457.491979][T23050] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3692'. [ 1457.866484][T21562] hsr_slave_0: left promiscuous mode [ 1457.900658][T21562] hsr_slave_1: left promiscuous mode [ 1457.937471][T21562] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1457.970045][T21562] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1458.058088][T21562] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1458.096116][T21562] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1458.131747][T23069] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1458.205323][T21562] veth1_macvtap: left promiscuous mode [ 1458.216736][T21562] veth1_vlan: left promiscuous mode [ 1458.237057][T21562] veth0_vlan: left promiscuous mode [ 1459.286511][T21562] team0 (unregistering): Port device team_slave_1 removed [ 1459.401113][T21562] team0 (unregistering): Port device team_slave_0 removed [ 1461.426876][T23095] FAULT_INJECTION: forcing a failure. [ 1461.426876][T23095] name failslab, interval 1, probability 0, space 0, times 0 [ 1461.521716][T23095] CPU: 0 UID: 0 PID: 23095 Comm: syz.0.3701 Tainted: G L syzkaller #0 PREEMPT(full) [ 1461.521757][T23095] Tainted: [L]=SOFTLOCKUP [ 1461.521767][T23095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1461.521782][T23095] Call Trace: [ 1461.521790][T23095] [ 1461.521799][T23095] dump_stack_lvl+0x100/0x190 [ 1461.521842][T23095] should_fail_ex.cold+0x5/0xa [ 1461.521873][T23095] should_failslab+0xc2/0x120 [ 1461.521901][T23095] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1461.521941][T23095] ? __d_alloc+0x34/0xa80 [ 1461.521970][T23095] ? security_inode_alloc+0xcf/0x2c0 [ 1461.522003][T23095] __d_alloc+0x34/0xa80 [ 1461.522029][T23095] ? __ns_ref_active_get+0x9f/0x1b0 [ 1461.522064][T23095] path_from_stashed+0x427/0x750 [ 1461.522093][T23095] ? do_raw_spin_unlock+0x145/0x1e0 [ 1461.522136][T23095] ns_get_path+0x60/0x80 [ 1461.522164][T23095] proc_ns_get_link+0x121/0x230 [ 1461.522200][T23095] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1461.522240][T23095] ? atime_needs_update+0x8b/0x6b0 [ 1461.522288][T23095] pick_link+0xd17/0x13c0 [ 1461.522326][T23095] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1461.522367][T23095] step_into_slowpath+0x9ba/0xf90 [ 1461.522412][T23095] ? __pfx_step_into_slowpath+0x10/0x10 [ 1461.522450][T23095] ? find_held_lock+0x2b/0x80 [ 1461.522484][T23095] path_openat+0xf95/0x31a0 [ 1461.522521][T23095] ? __pfx_path_openat+0x10/0x10 [ 1461.522559][T23095] do_file_open+0x20e/0x430 [ 1461.522588][T23095] ? __pfx_do_file_open+0x10/0x10 [ 1461.522635][T23095] ? alloc_fd+0x476/0x790 [ 1461.522664][T23095] ? do_getname+0x191/0x390 [ 1461.522699][T23095] do_sys_openat2+0x10d/0x1e0 [ 1461.522734][T23095] ? __pfx_do_sys_openat2+0x10/0x10 [ 1461.522771][T23095] ? __fget_files+0x21f/0x3d0 [ 1461.522801][T23095] __x64_sys_openat+0x12d/0x210 [ 1461.522837][T23095] ? __pfx___x64_sys_openat+0x10/0x10 [ 1461.522883][T23095] do_syscall_64+0x106/0xf80 [ 1461.522907][T23095] ? clear_bhb_loop+0x40/0x90 [ 1461.522937][T23095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1461.522963][T23095] RIP: 0033:0x7efffe35d04e [ 1461.522984][T23095] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1461.523009][T23095] RSP: 002b:00007effff293ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1461.523032][T23095] RAX: ffffffffffffffda RBX: 00007effff2946c0 RCX: 00007efffe35d04e [ 1461.523049][T23095] RDX: 0000000000000002 RSI: 00007effff293f90 RDI: ffffffffffffff9c [ 1461.523065][T23095] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1461.523080][T23095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1461.523095][T23095] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1461.523127][T23095] [ 1461.695267][T23099] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1461.695310][T23099] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 1467.587247][T23155] mkiss: ax0: crc mode is auto. [ 1468.293898][T23182] FAULT_INJECTION: forcing a failure. [ 1468.293898][T23182] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.390503][T23182] CPU: 0 UID: 0 PID: 23182 Comm: syz.4.3715 Tainted: G L syzkaller #0 PREEMPT(full) [ 1468.390543][T23182] Tainted: [L]=SOFTLOCKUP [ 1468.390553][T23182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1468.390568][T23182] Call Trace: [ 1468.390577][T23182] [ 1468.390587][T23182] dump_stack_lvl+0x100/0x190 [ 1468.390631][T23182] should_fail_ex.cold+0x5/0xa [ 1468.390662][T23182] should_failslab+0xc2/0x120 [ 1468.390690][T23182] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1468.390731][T23182] ? __d_alloc+0x34/0xa80 [ 1468.390767][T23182] ? security_inode_alloc+0xcf/0x2c0 [ 1468.390800][T23182] __d_alloc+0x34/0xa80 [ 1468.390827][T23182] ? __ns_ref_active_get+0x9f/0x1b0 [ 1468.390863][T23182] path_from_stashed+0x427/0x750 [ 1468.390890][T23182] ? do_raw_spin_unlock+0x145/0x1e0 [ 1468.390934][T23182] ns_get_path+0x60/0x80 [ 1468.390960][T23182] proc_ns_get_link+0x121/0x230 [ 1468.390997][T23182] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1468.391037][T23182] ? atime_needs_update+0x8b/0x6b0 [ 1468.391076][T23182] pick_link+0xd17/0x13c0 [ 1468.391113][T23182] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1468.391153][T23182] step_into_slowpath+0x9ba/0xf90 [ 1468.391198][T23182] ? __pfx_step_into_slowpath+0x10/0x10 [ 1468.391236][T23182] ? find_held_lock+0x2b/0x80 [ 1468.391270][T23182] path_openat+0xf95/0x31a0 [ 1468.391307][T23182] ? __pfx_path_openat+0x10/0x10 [ 1468.391344][T23182] do_file_open+0x20e/0x430 [ 1468.391374][T23182] ? __pfx_do_file_open+0x10/0x10 [ 1468.391421][T23182] ? alloc_fd+0x476/0x790 [ 1468.391450][T23182] ? do_getname+0x191/0x390 [ 1468.391485][T23182] do_sys_openat2+0x10d/0x1e0 [ 1468.391520][T23182] ? __pfx_do_sys_openat2+0x10/0x10 [ 1468.391556][T23182] ? __fget_files+0x21f/0x3d0 [ 1468.391587][T23182] __x64_sys_openat+0x12d/0x210 [ 1468.391622][T23182] ? __pfx___x64_sys_openat+0x10/0x10 [ 1468.391684][T23182] do_syscall_64+0x106/0xf80 [ 1468.391709][T23182] ? clear_bhb_loop+0x40/0x90 [ 1468.391739][T23182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1468.391769][T23182] RIP: 0033:0x7f60f555d04e [ 1468.391790][T23182] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1468.391815][T23182] RSP: 002b:00007f60f37ccec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1468.391839][T23182] RAX: ffffffffffffffda RBX: 00007f60f37cd6c0 RCX: 00007f60f555d04e [ 1468.391856][T23182] RDX: 0000000000000002 RSI: 00007f60f37ccf90 RDI: ffffffffffffff9c [ 1468.391872][T23182] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1468.391888][T23182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1468.391911][T23182] R13: 00007f60f5816128 R14: 00007f60f5816090 R15: 00007ffe67bd62c8 [ 1468.391942][T23182] [ 1469.817330][T23183] FAULT_INJECTION: forcing a failure. [ 1469.817330][T23183] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.897541][T23183] CPU: 0 UID: 0 PID: 23183 Comm: syz.0.3716 Tainted: G L syzkaller #0 PREEMPT(full) [ 1469.897581][T23183] Tainted: [L]=SOFTLOCKUP [ 1469.897590][T23183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1469.897605][T23183] Call Trace: [ 1469.897613][T23183] [ 1469.897623][T23183] dump_stack_lvl+0x100/0x190 [ 1469.897666][T23183] should_fail_ex.cold+0x5/0xa [ 1469.897697][T23183] should_failslab+0xc2/0x120 [ 1469.897725][T23183] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1469.897764][T23183] ? security_inode_alloc+0x3b/0x2c0 [ 1469.897794][T23183] ? lockdep_init_map_type+0x5c/0x250 [ 1469.897832][T23183] security_inode_alloc+0x3b/0x2c0 [ 1469.897870][T23183] inode_init_always_gfp+0xced/0x1040 [ 1469.897902][T23183] alloc_inode+0x8e/0x250 [ 1469.897937][T23183] path_from_stashed+0x25b/0x750 [ 1469.897965][T23183] ? do_raw_spin_unlock+0x145/0x1e0 [ 1469.898010][T23183] ns_get_path+0x60/0x80 [ 1469.898036][T23183] proc_ns_get_link+0x121/0x230 [ 1469.898073][T23183] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1469.898114][T23183] ? atime_needs_update+0x8b/0x6b0 [ 1469.898153][T23183] pick_link+0xd17/0x13c0 [ 1469.898190][T23183] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1469.898231][T23183] step_into_slowpath+0x9ba/0xf90 [ 1469.898276][T23183] ? __pfx_step_into_slowpath+0x10/0x10 [ 1469.898314][T23183] ? find_held_lock+0x2b/0x80 [ 1469.898348][T23183] path_openat+0xf95/0x31a0 [ 1469.898385][T23183] ? __pfx_path_openat+0x10/0x10 [ 1469.898423][T23183] do_file_open+0x20e/0x430 [ 1469.898452][T23183] ? __pfx_do_file_open+0x10/0x10 [ 1469.898500][T23183] ? alloc_fd+0x476/0x790 [ 1469.898529][T23183] ? do_getname+0x191/0x390 [ 1469.898564][T23183] do_sys_openat2+0x10d/0x1e0 [ 1469.898599][T23183] ? __pfx_do_sys_openat2+0x10/0x10 [ 1469.898636][T23183] ? __fget_files+0x21f/0x3d0 [ 1469.898666][T23183] __x64_sys_openat+0x12d/0x210 [ 1469.898702][T23183] ? __pfx___x64_sys_openat+0x10/0x10 [ 1469.898749][T23183] do_syscall_64+0x106/0xf80 [ 1469.898773][T23183] ? clear_bhb_loop+0x40/0x90 [ 1469.898804][T23183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1469.898831][T23183] RIP: 0033:0x7efffe35d04e [ 1469.898858][T23183] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1469.898884][T23183] RSP: 002b:00007effff2b4ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1469.898908][T23183] RAX: ffffffffffffffda RBX: 00007effff2b56c0 RCX: 00007efffe35d04e [ 1469.898925][T23183] RDX: 0000000000000002 RSI: 00007effff2b4f90 RDI: ffffffffffffff9c [ 1469.898941][T23183] RBP: 00007efffe432c91 R08: 0000000000000000 R09: 0000000000000000 [ 1469.898957][T23183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1469.898972][T23183] R13: 00007efffe616038 R14: 00007efffe615fa0 R15: 00007fff8170cc48 [ 1469.899004][T23183] [ 1470.386428][T23195] mkiss: ax0: crc mode is auto. [ 1471.226246][T23211] FAULT_INJECTION: forcing a failure. [ 1471.226246][T23211] name failslab, interval 1, probability 0, space 0, times 0 [ 1471.342397][T23211] CPU: 0 UID: 0 PID: 23211 Comm: syz.4.3719 Tainted: G L syzkaller #0 PREEMPT(full) [ 1471.342447][T23211] Tainted: [L]=SOFTLOCKUP [ 1471.342457][T23211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1471.342472][T23211] Call Trace: [ 1471.342480][T23211] [ 1471.342490][T23211] dump_stack_lvl+0x100/0x190 [ 1471.342533][T23211] should_fail_ex.cold+0x5/0xa [ 1471.342564][T23211] should_failslab+0xc2/0x120 [ 1471.342592][T23211] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1471.342633][T23211] ? __d_alloc+0x34/0xa80 [ 1471.342662][T23211] ? security_inode_alloc+0xcf/0x2c0 [ 1471.342695][T23211] __d_alloc+0x34/0xa80 [ 1471.342721][T23211] ? __ns_ref_active_get+0x9f/0x1b0 [ 1471.342757][T23211] path_from_stashed+0x427/0x750 [ 1471.342785][T23211] ? do_raw_spin_unlock+0x145/0x1e0 [ 1471.342830][T23211] ns_get_path+0x60/0x80 [ 1471.342857][T23211] proc_ns_get_link+0x121/0x230 [ 1471.342893][T23211] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1471.342933][T23211] ? atime_needs_update+0x8b/0x6b0 [ 1471.342973][T23211] pick_link+0xd17/0x13c0 [ 1471.343009][T23211] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1471.343049][T23211] step_into_slowpath+0x9ba/0xf90 [ 1471.343094][T23211] ? __pfx_step_into_slowpath+0x10/0x10 [ 1471.343132][T23211] ? find_held_lock+0x2b/0x80 [ 1471.343167][T23211] path_openat+0xf95/0x31a0 [ 1471.343203][T23211] ? __pfx_path_openat+0x10/0x10 [ 1471.343241][T23211] do_file_open+0x20e/0x430 [ 1471.343271][T23211] ? __pfx_do_file_open+0x10/0x10 [ 1471.343319][T23211] ? alloc_fd+0x476/0x790 [ 1471.343347][T23211] ? do_getname+0x191/0x390 [ 1471.343382][T23211] do_sys_openat2+0x10d/0x1e0 [ 1471.343417][T23211] ? __pfx_do_sys_openat2+0x10/0x10 [ 1471.343460][T23211] ? __fget_files+0x21f/0x3d0 [ 1471.343491][T23211] __x64_sys_openat+0x12d/0x210 [ 1471.343527][T23211] ? __pfx___x64_sys_openat+0x10/0x10 [ 1471.343574][T23211] do_syscall_64+0x106/0xf80 [ 1471.343598][T23211] ? clear_bhb_loop+0x40/0x90 [ 1471.343629][T23211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1471.343660][T23211] RIP: 0033:0x7f60f555d04e [ 1471.343681][T23211] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1471.343706][T23211] RSP: 002b:00007f60f37ccec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1471.343731][T23211] RAX: ffffffffffffffda RBX: 00007f60f37cd6c0 RCX: 00007f60f555d04e [ 1471.343748][T23211] RDX: 0000000000000002 RSI: 00007f60f37ccf90 RDI: ffffffffffffff9c [ 1471.343764][T23211] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1471.343780][T23211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1471.343795][T23211] R13: 00007f60f5816128 R14: 00007f60f5816090 R15: 00007ffe67bd62c8 [ 1471.343827][T23211] [ 1472.261815][T16354] Bluetooth: hci4: unexpected event 0x20 length: 123 > 7 [ 1473.210233][T23207] zswap: compressor not available [ 1474.401726][T23242] zram: Can't change algorithm for initialized device [ 1474.609778][T23247] zram: Can't change algorithm for initialized device [ 1475.718565][T23249] mkiss: ax0: crc mode is auto. [ 1476.169874][T23277] FAULT_INJECTION: forcing a failure. [ 1476.169874][T23277] name failslab, interval 1, probability 0, space 0, times 0 [ 1476.226487][T23277] CPU: 0 UID: 0 PID: 23277 Comm: syz.5.3732 Tainted: G L syzkaller #0 PREEMPT(full) [ 1476.226526][T23277] Tainted: [L]=SOFTLOCKUP [ 1476.226535][T23277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1476.226550][T23277] Call Trace: [ 1476.226559][T23277] [ 1476.226568][T23277] dump_stack_lvl+0x100/0x190 [ 1476.226613][T23277] should_fail_ex.cold+0x5/0xa [ 1476.226644][T23277] should_failslab+0xc2/0x120 [ 1476.226672][T23277] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1476.226707][T23277] ? snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 1476.226749][T23277] snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 1476.226785][T23277] ? rcu_is_watching+0x12/0xc0 [ 1476.226824][T23277] ? trace_contention_end+0x140/0x180 [ 1476.226861][T23277] ? __mutex_lock+0x26a/0x1b90 [ 1476.226890][T23277] ? snd_pcm_oss_write+0x49a/0xa30 [ 1476.226924][T23277] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1476.226962][T23277] ? __pfx___mutex_lock+0x10/0x10 [ 1476.226997][T23277] ? __pfx___might_resched+0x10/0x10 [ 1476.227040][T23277] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1476.227077][T23277] snd_pcm_oss_write+0x4bb/0xa30 [ 1476.227112][T23277] ? bpf_lsm_file_permission+0x9/0x10 [ 1476.227136][T23277] ? security_file_permission+0x76/0x210 [ 1476.227177][T23277] vfs_write+0x2aa/0x1070 [ 1476.227202][T23277] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 1476.227239][T23277] ? __pfx_vfs_write+0x10/0x10 [ 1476.227261][T23277] ? find_held_lock+0x2b/0x80 [ 1476.227294][T23277] ? __fget_files+0x215/0x3d0 [ 1476.227322][T23277] ? __fget_files+0x215/0x3d0 [ 1476.227358][T23277] ? __fget_files+0x21f/0x3d0 [ 1476.227392][T23277] ksys_write+0x12a/0x250 [ 1476.227416][T23277] ? __pfx_ksys_write+0x10/0x10 [ 1476.227449][T23277] do_syscall_64+0x106/0xf80 [ 1476.227474][T23277] ? clear_bhb_loop+0x40/0x90 [ 1476.227505][T23277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1476.227535][T23277] RIP: 0033:0x7f128dd9c819 [ 1476.227556][T23277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1476.227586][T23277] RSP: 002b:00007f128bfd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1476.227609][T23277] RAX: ffffffffffffffda RBX: 00007f128e016090 RCX: 00007f128dd9c819 [ 1476.227626][T23277] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 1476.227642][T23277] RBP: 00007f128de32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1476.227657][T23277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1476.227673][T23277] R13: 00007f128e016128 R14: 00007f128e016090 R15: 00007fffdb475898 [ 1476.227705][T23277] [ 1478.422096][T23288] mkiss: ax0: crc mode is auto. [ 1479.296991][T23305] mkiss: ax0: crc mode is auto. [ 1479.435116][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1479.443590][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1481.089118][T23345] netlink: 'syz.5.3747': attribute type 21 has an invalid length. [ 1481.188876][T23345] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3747'. [ 1481.479436][T23367] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 1482.099040][T23384] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3753'. [ 1482.651833][T23384] Zero length message leads to an empty skb [ 1483.868192][T23409] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1483.929425][ T30] audit: type=1804 audit(2147483686.755:21): pid=23409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.3758" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1485.837330][T23432] FAULT_INJECTION: forcing a failure. [ 1485.837330][T23432] name failslab, interval 1, probability 0, space 0, times 0 [ 1485.929594][T23432] CPU: 0 UID: 0 PID: 23432 Comm: syz.5.3762 Tainted: G L syzkaller #0 PREEMPT(full) [ 1485.929635][T23432] Tainted: [L]=SOFTLOCKUP [ 1485.929644][T23432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1485.929659][T23432] Call Trace: [ 1485.929667][T23432] [ 1485.929676][T23432] dump_stack_lvl+0x100/0x190 [ 1485.929719][T23432] should_fail_ex.cold+0x5/0xa [ 1485.929749][T23432] should_failslab+0xc2/0x120 [ 1485.929777][T23432] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1485.929817][T23432] ? security_inode_alloc+0x3b/0x2c0 [ 1485.929845][T23432] ? lockdep_init_map_type+0x5c/0x250 [ 1485.929883][T23432] security_inode_alloc+0x3b/0x2c0 [ 1485.929913][T23432] inode_init_always_gfp+0xced/0x1040 [ 1485.929945][T23432] alloc_inode+0x8e/0x250 [ 1485.929979][T23432] path_from_stashed+0x25b/0x750 [ 1485.930007][T23432] ? do_raw_spin_unlock+0x145/0x1e0 [ 1485.930057][T23432] ns_get_path+0x60/0x80 [ 1485.930085][T23432] proc_ns_get_link+0x121/0x230 [ 1485.930145][T23432] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1485.930186][T23432] ? atime_needs_update+0x8b/0x6b0 [ 1485.930226][T23432] pick_link+0xd17/0x13c0 [ 1485.930263][T23432] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1485.930304][T23432] step_into_slowpath+0x9ba/0xf90 [ 1485.930350][T23432] ? __pfx_step_into_slowpath+0x10/0x10 [ 1485.930389][T23432] ? find_held_lock+0x2b/0x80 [ 1485.930428][T23432] path_openat+0xf95/0x31a0 [ 1485.930466][T23432] ? __pfx_path_openat+0x10/0x10 [ 1485.930504][T23432] do_file_open+0x20e/0x430 [ 1485.930535][T23432] ? __pfx_do_file_open+0x10/0x10 [ 1485.930584][T23432] ? alloc_fd+0x476/0x790 [ 1485.930612][T23432] ? do_getname+0x191/0x390 [ 1485.930647][T23432] do_sys_openat2+0x10d/0x1e0 [ 1485.930682][T23432] ? __pfx_do_sys_openat2+0x10/0x10 [ 1485.930718][T23432] ? __fget_files+0x21f/0x3d0 [ 1485.930749][T23432] __x64_sys_openat+0x12d/0x210 [ 1485.930784][T23432] ? __pfx___x64_sys_openat+0x10/0x10 [ 1485.930831][T23432] do_syscall_64+0x106/0xf80 [ 1485.930855][T23432] ? clear_bhb_loop+0x40/0x90 [ 1485.930885][T23432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1485.930911][T23432] RIP: 0033:0x7f128dd5d04e [ 1485.930933][T23432] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1485.930958][T23432] RSP: 002b:00007f128bff5ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1485.930982][T23432] RAX: ffffffffffffffda RBX: 00007f128bff66c0 RCX: 00007f128dd5d04e [ 1485.930999][T23432] RDX: 0000000000000002 RSI: 00007f128bff5f90 RDI: ffffffffffffff9c [ 1485.931015][T23432] RBP: 00007f128de32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1485.931031][T23432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1485.931047][T23432] R13: 00007f128e016038 R14: 00007f128e015fa0 R15: 00007fffdb475898 [ 1485.931078][T23432] [ 1487.206309][T23443] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1490.353858][T23479] zram: Can't change algorithm for initialized device [ 1493.245527][T23520] FAULT_INJECTION: forcing a failure. [ 1493.245527][T23520] name failslab, interval 1, probability 0, space 0, times 0 [ 1493.306066][T16354] block nbd1: Receive control failed (result -32) [ 1493.356603][T23520] CPU: 0 UID: 0 PID: 23520 Comm: syz.4.3782 Tainted: G L syzkaller #0 PREEMPT(full) [ 1493.356642][T23520] Tainted: [L]=SOFTLOCKUP [ 1493.356652][T23520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1493.356667][T23520] Call Trace: [ 1493.356675][T23520] [ 1493.356686][T23520] dump_stack_lvl+0x100/0x190 [ 1493.356728][T23520] should_fail_ex.cold+0x5/0xa [ 1493.356759][T23520] should_failslab+0xc2/0x120 [ 1493.356788][T23520] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1493.356822][T23520] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 1493.356863][T23520] snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 1493.356897][T23520] ? lockdep_hardirqs_on+0x78/0x100 [ 1493.356923][T23520] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 1493.356959][T23520] ? snd_pcm_oss_change_params_locked+0xa6d/0x39f0 [ 1493.356991][T23520] ? kfree+0x1f6/0x6b0 [ 1493.357029][T23520] snd_pcm_oss_change_params_locked+0xae1/0x39f0 [ 1493.357064][T23520] ? rcu_is_watching+0x17/0xc0 [ 1493.357113][T23520] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1493.357169][T23520] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1493.357205][T23520] snd_pcm_oss_read+0x3d4/0x730 [ 1493.357244][T23520] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1493.357279][T23520] vfs_read+0x1e4/0xb30 [ 1493.357306][T23520] ? __pfx_vfs_read+0x10/0x10 [ 1493.357337][T23520] ? find_held_lock+0x2b/0x80 [ 1493.357361][T23520] ? __fget_files+0x215/0x3d0 [ 1493.357385][T23520] ? __fget_files+0x215/0x3d0 [ 1493.357415][T23520] ? __fget_files+0x21f/0x3d0 [ 1493.357449][T23520] ksys_read+0x12a/0x250 [ 1493.357472][T23520] ? __pfx_ksys_read+0x10/0x10 [ 1493.357510][T23520] do_syscall_64+0x106/0xf80 [ 1493.357534][T23520] ? clear_bhb_loop+0x40/0x90 [ 1493.357566][T23520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1493.357593][T23520] RIP: 0033:0x7f60f559c819 [ 1493.357614][T23520] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1493.357639][T23520] RSP: 002b:00007f60f37ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1493.357662][T23520] RAX: ffffffffffffffda RBX: 00007f60f5815fa0 RCX: 00007f60f559c819 [ 1493.357679][T23520] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003 [ 1493.357694][T23520] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1493.357710][T23520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1493.357725][T23520] R13: 00007f60f5816038 R14: 00007f60f5815fa0 R15: 00007ffe67bd62c8 [ 1493.357757][T23520] [ 1495.727621][T23538] zram: Can't change algorithm for initialized device [ 1499.906582][T23601] FAULT_INJECTION: forcing a failure. [ 1499.906582][T23601] name failslab, interval 1, probability 0, space 0, times 0 [ 1500.035069][T23601] CPU: 0 UID: 0 PID: 23601 Comm: syz.4.3796 Tainted: G L syzkaller #0 PREEMPT(full) [ 1500.035110][T23601] Tainted: [L]=SOFTLOCKUP [ 1500.035120][T23601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1500.035135][T23601] Call Trace: [ 1500.035143][T23601] [ 1500.035152][T23601] dump_stack_lvl+0x100/0x190 [ 1500.035204][T23601] should_fail_ex.cold+0x5/0xa [ 1500.035233][T23601] ? constrain_params_by_rules+0x175/0xcc0 [ 1500.035270][T23601] should_failslab+0xc2/0x120 [ 1500.035298][T23601] __kmalloc_noprof+0xe0/0x850 [ 1500.035336][T23601] ? unwind_get_return_address+0x59/0xa0 [ 1500.035370][T23601] constrain_params_by_rules+0x175/0xcc0 [ 1500.035414][T23601] ? stack_trace_save+0x8e/0xc0 [ 1500.035443][T23601] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 1500.035480][T23601] ? kfree+0x1f6/0x6b0 [ 1500.035511][T23601] ? snd_pcm_hw_param_near.constprop.0+0x573/0x850 [ 1500.035550][T23601] ? __kasan_kmalloc+0xaa/0xb0 [ 1500.035572][T23601] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 1500.035620][T23601] ? snd_pcm_oss_change_params_locked+0x18d9/0x39f0 [ 1500.035653][T23601] ? snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1500.035701][T23601] snd_pcm_hw_refine+0x7e7/0xad0 [ 1500.035743][T23601] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 1500.035792][T23601] ? _snd_pcm_hw_param_min+0x1ea/0x670 [ 1500.035828][T23601] snd_pcm_hw_param_near.constprop.0+0x5d0/0x850 [ 1500.035867][T23601] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 1500.035903][T23601] ? calc_src_frames.isra.0+0x17c/0x1c0 [ 1500.035945][T23601] snd_pcm_oss_change_params_locked+0x18d9/0x39f0 [ 1500.035992][T23601] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1500.036028][T23601] ? try_to_wake_up+0x644/0x1a80 [ 1500.036074][T23601] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1500.036110][T23601] snd_pcm_oss_read+0x3d4/0x730 [ 1500.036148][T23601] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1500.036189][T23601] vfs_read+0x1e4/0xb30 [ 1500.036216][T23601] ? __pfx_vfs_read+0x10/0x10 [ 1500.036238][T23601] ? find_held_lock+0x2b/0x80 [ 1500.036263][T23601] ? __fget_files+0x215/0x3d0 [ 1500.036287][T23601] ? __fget_files+0x215/0x3d0 [ 1500.036316][T23601] ? __fget_files+0x21f/0x3d0 [ 1500.036349][T23601] ksys_read+0x12a/0x250 [ 1500.036372][T23601] ? __pfx_ksys_read+0x10/0x10 [ 1500.036405][T23601] do_syscall_64+0x106/0xf80 [ 1500.036433][T23601] ? clear_bhb_loop+0x40/0x90 [ 1500.036464][T23601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1500.036490][T23601] RIP: 0033:0x7f60f559c819 [ 1500.036521][T23601] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1500.036547][T23601] RSP: 002b:00007f60f37cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1500.036570][T23601] RAX: ffffffffffffffda RBX: 00007f60f5816090 RCX: 00007f60f559c819 [ 1500.036587][T23601] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003 [ 1500.036603][T23601] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1500.036632][T23601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1500.036647][T23601] R13: 00007f60f5816128 R14: 00007f60f5816090 R15: 00007ffe67bd62c8 [ 1500.036678][T23601] [ 1501.079139][T16354] block nbd0: Receive control failed (result -32) [ 1503.264799][T23642] FAULT_INJECTION: forcing a failure. [ 1503.264799][T23642] name failslab, interval 1, probability 0, space 0, times 0 [ 1503.340379][T23642] CPU: 0 UID: 0 PID: 23642 Comm: syz.4.3804 Tainted: G L syzkaller #0 PREEMPT(full) [ 1503.340419][T23642] Tainted: [L]=SOFTLOCKUP [ 1503.340428][T23642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1503.340444][T23642] Call Trace: [ 1503.340452][T23642] [ 1503.340462][T23642] dump_stack_lvl+0x100/0x190 [ 1503.340505][T23642] should_fail_ex.cold+0x5/0xa [ 1503.340535][T23642] should_failslab+0xc2/0x120 [ 1503.340563][T23642] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1503.340597][T23642] ? snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 1503.340646][T23642] snd_pcm_hw_param_near.constprop.0+0xbc/0x850 [ 1503.340681][T23642] ? lockdep_hardirqs_on+0x78/0x100 [ 1503.340708][T23642] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 1503.340743][T23642] ? snd_pcm_oss_change_params_locked+0xa6d/0x39f0 [ 1503.340777][T23642] ? kfree+0x1f6/0x6b0 [ 1503.340815][T23642] snd_pcm_oss_change_params_locked+0xae1/0x39f0 [ 1503.340850][T23642] ? rcu_is_watching+0x17/0xc0 [ 1503.340900][T23642] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 1503.340957][T23642] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 1503.340994][T23642] snd_pcm_oss_read+0x3d4/0x730 [ 1503.341032][T23642] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 1503.341067][T23642] vfs_read+0x1e4/0xb30 [ 1503.341095][T23642] ? __pfx_vfs_read+0x10/0x10 [ 1503.341117][T23642] ? find_held_lock+0x2b/0x80 [ 1503.341141][T23642] ? __fget_files+0x215/0x3d0 [ 1503.341165][T23642] ? __fget_files+0x215/0x3d0 [ 1503.341194][T23642] ? __fget_files+0x21f/0x3d0 [ 1503.341227][T23642] ksys_read+0x12a/0x250 [ 1503.341250][T23642] ? __pfx_ksys_read+0x10/0x10 [ 1503.341283][T23642] do_syscall_64+0x106/0xf80 [ 1503.341307][T23642] ? clear_bhb_loop+0x40/0x90 [ 1503.341337][T23642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1503.341363][T23642] RIP: 0033:0x7f60f559c819 [ 1503.341384][T23642] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1503.341409][T23642] RSP: 002b:00007f60f37ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1503.341432][T23642] RAX: ffffffffffffffda RBX: 00007f60f5815fa0 RCX: 00007f60f559c819 [ 1503.341449][T23642] RDX: 0000000000008080 RSI: 0000000000000000 RDI: 0000000000000003 [ 1503.341464][T23642] RBP: 00007f60f5632c91 R08: 0000000000000000 R09: 0000000000000000 [ 1503.341479][T23642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1503.341495][T23642] R13: 00007f60f5816038 R14: 00007f60f5815fa0 R15: 00007ffe67bd62c8 [ 1503.341527][T23642] [ 1504.834791][T23667] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1504.873826][T23667] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 1510.288724][ T30] audit: type=1804 audit(2147483713.262:22): pid=23747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.3822" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0 [ 1523.866851][T23898] zswap: compressor not available [ 1524.310222][T23884] syz.3.3846 uses obsolete (PF_INET,SOCK_PACKET) [ 1524.607701][T23917] zram: Can't change algorithm for initialized device [ 1525.850514][T23935] netlink: zone id is out of range [ 1525.897505][T23935] netlink: zone id is out of range [ 1525.927376][T23935] netlink: zone id is out of range [ 1525.967954][T23935] netlink: zone id is out of range [ 1526.037315][T23935] netlink: zone id is out of range [ 1526.086520][T23935] netlink: zone id is out of range [ 1526.137798][T23935] netlink: zone id is out of range [ 1526.206368][T23935] netlink: zone id is out of range [ 1526.274325][T23935] netlink: zone id is out of range [ 1526.406063][T23935] netlink: zone id is out of range [ 1527.527090][T23955] zram: Can't change algorithm for initialized device [ 1532.796833][T24011] zswap: compressor not available [ 1536.552507][T24065] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1537.530356][T24077] Bluetooth: hci2: command 0x0406 tx timeout [ 1539.516241][ T5830] Bluetooth: hci6: Opcode 0x0c03 failed: -110 [ 1540.424661][T24098] zswap: compressor not available [ 1540.580159][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1540.589622][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1542.619044][T16354] Bluetooth: hci5: command 0x0406 tx timeout [ 1551.639464][T24244] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1554.671373][T24287] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1555.065347][T24291] cifs: Unknown parameter '‰ƒ´ÕéŒ)¬ Up†µÌ¢{´¼V ]7ž62']ßΨÉú!²gÉÊ®Ë7ú9½ófM¸<*y¢sEéhîé”' [ 1555.458129][T24303] process 'syz.0.3930' launched ':,' with NULL argv: empty string added [ 1556.233834][T24309] zram: Can't change algorithm for initialized device [ 1557.506853][T24329] FAULT_INJECTION: forcing a failure. [ 1557.506853][T24329] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.670818][T24329] CPU: 0 UID: 0 PID: 24329 Comm: syz.5.3937 Tainted: G L syzkaller #0 PREEMPT(full) [ 1557.670876][T24329] Tainted: [L]=SOFTLOCKUP [ 1557.670885][T24329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1557.670902][T24329] Call Trace: [ 1557.670910][T24329] [ 1557.670920][T24329] dump_stack_lvl+0x100/0x190 [ 1557.670965][T24329] should_fail_ex.cold+0x5/0xa [ 1557.670996][T24329] should_failslab+0xc2/0x120 [ 1557.671025][T24329] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1557.671064][T24329] ? security_inode_alloc+0x3b/0x2c0 [ 1557.671093][T24329] ? lockdep_init_map_type+0x5c/0x250 [ 1557.671132][T24329] security_inode_alloc+0x3b/0x2c0 [ 1557.671161][T24329] inode_init_always_gfp+0xced/0x1040 [ 1557.671194][T24329] alloc_inode+0x8e/0x250 [ 1557.671228][T24329] new_inode+0x22/0x1c0 [ 1557.671265][T24329] proc_pid_make_inode+0x22/0x160 [ 1557.671305][T24329] proc_ns_dir_lookup+0x25b/0x390 [ 1557.671348][T24329] lookup_open.isra.0+0x631/0x11b0 [ 1557.671393][T24329] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 1557.671448][T24329] ? mnt_get_write_access+0x1e9/0x2f0 [ 1557.671488][T24329] path_openat+0xa98/0x31a0 [ 1557.671525][T24329] ? __pfx_path_openat+0x10/0x10 [ 1557.671563][T24329] do_file_open+0x20e/0x430 [ 1557.671592][T24329] ? __pfx_do_file_open+0x10/0x10 [ 1557.671630][T24329] ? __pfx_kfree_link+0x10/0x10 [ 1557.671675][T24329] ? alloc_fd+0x476/0x790 [ 1557.671704][T24329] ? do_getname+0x191/0x390 [ 1557.671739][T24329] do_sys_openat2+0x10d/0x1e0 [ 1557.671799][T24329] ? __pfx_do_sys_openat2+0x10/0x10 [ 1557.671835][T24329] ? find_held_lock+0x2b/0x80 [ 1557.671872][T24329] __x64_sys_openat+0x12d/0x210 [ 1557.671909][T24329] ? __pfx___x64_sys_openat+0x10/0x10 [ 1557.671955][T24329] do_syscall_64+0x106/0xf80 [ 1557.671981][T24329] ? clear_bhb_loop+0x40/0x90 [ 1557.672011][T24329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1557.672037][T24329] RIP: 0033:0x7f128dd5d04e [ 1557.672057][T24329] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1557.672082][T24329] RSP: 002b:00007f128bff5ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1557.672105][T24329] RAX: ffffffffffffffda RBX: 00007f128bff66c0 RCX: 00007f128dd5d04e [ 1557.672122][T24329] RDX: 0000000000000002 RSI: 00007f128bff5f90 RDI: ffffffffffffff9c [ 1557.672138][T24329] RBP: 00007f128de32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1557.672153][T24329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1557.672168][T24329] R13: 00007f128e016038 R14: 00007f128e015fa0 R15: 00007fffdb475898 [ 1557.672200][T24329] [ 1559.310099][T24356] FAULT_INJECTION: forcing a failure. [ 1559.310099][T24356] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1559.310140][T24356] CPU: 0 UID: 0 PID: 24356 Comm: syz.0.3943 Tainted: G L syzkaller #0 PREEMPT(full) [ 1559.310174][T24356] Tainted: [L]=SOFTLOCKUP [ 1559.310183][T24356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1559.310197][T24356] Call Trace: [ 1559.310205][T24356] [ 1559.310215][T24356] dump_stack_lvl+0x100/0x190 [ 1559.310254][T24356] should_fail_ex.cold+0x5/0xa [ 1559.310284][T24356] _copy_from_user+0x2e/0xd0 [ 1559.310316][T24356] usbdev_ioctl+0x2a89/0x3aa0 [ 1559.310354][T24356] ? __pfx_usbdev_ioctl+0x10/0x10 [ 1559.310392][T24356] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1559.310419][T24356] ? do_vfs_ioctl+0x226/0x13e0 [ 1559.310456][T24356] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1559.310500][T24356] ? find_held_lock+0x2b/0x80 [ 1559.310523][T24356] ? __fget_files+0x215/0x3d0 [ 1559.310545][T24356] ? hook_file_ioctl_common+0x146/0x410 [ 1559.310589][T24356] ? __pfx_usbdev_ioctl+0x10/0x10 [ 1559.310621][T24356] __x64_sys_ioctl+0x18e/0x210 [ 1559.310659][T24356] do_syscall_64+0x106/0xf80 [ 1559.310683][T24356] ? clear_bhb_loop+0x40/0x90 [ 1559.310720][T24356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1559.310745][T24356] RIP: 0033:0x7efffe39c819 [ 1559.310764][T24356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1559.310788][T24356] RSP: 002b:00007effff294028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1559.310811][T24356] RAX: ffffffffffffffda RBX: 00007efffe616090 RCX: 00007efffe39c819 [ 1559.310827][T24356] RDX: 0000200000000100 RSI: 000000008038550a RDI: 0000000000000004 [ 1559.310842][T24356] RBP: 00007effff294090 R08: 0000000000000000 R09: 0000000000000000 [ 1559.310857][T24356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1559.310871][T24356] R13: 00007efffe616128 R14: 00007efffe616090 R15: 00007fff8170cc48 [ 1559.310902][T24356] [ 1562.834342][ T31] INFO: task syz.2.3565:22436 blocked for more than 143 seconds. SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1562.883337][ T31] Tainted: G L syzkaller #0 [ 1562.914007][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1562.972929][ T31] task:syz.2.3565 state:D stack:25752 pid:22436 tgid:22434 ppid:16802 task_flags:0x400140 flags:0x00080002 [ 1563.049140][ T31] Call Trace: [ 1563.088883][ T31] [ 1563.091883][ T31] __schedule+0xfee/0x6120 [ 1563.136816][ T31] ? __lock_acquire+0x4a5/0x2630 [ 1563.141884][ T31] ? __pfx___schedule+0x10/0x10 [ 1563.210494][ T31] ? find_held_lock+0x2b/0x80 [ 1563.232526][ T31] ? schedule+0x2bf/0x390 [ 1563.259337][ T31] schedule+0xdd/0x390 [ 1563.282723][ T31] schedule_preempt_disabled+0x13/0x30 [ 1563.352941][ T31] __mutex_lock+0xc9a/0x1b90 [ 1563.357625][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 1563.410887][ T31] ? __lock_acquire+0x4a5/0x2630 [ 1563.440760][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 1563.446001][ T31] ? net_generic+0xea/0x2a0 [ 1563.512368][ T31] ? net_generic+0xea/0x2a0 [ 1563.546614][ T31] ? nfsd_shutdown_threads+0x5b/0xf0 [ 1563.588496][ T31] nfsd_shutdown_threads+0x5b/0xf0 [ 1563.619844][ T31] nfsd_umount+0x3b/0x60 [ 1563.624277][ T31] deactivate_locked_super+0xc1/0x1b0 [ 1563.701935][ T31] deactivate_super+0xe7/0x110 [ 1563.706797][ T31] cleanup_mnt+0x21f/0x450 [ 1563.811648][ T31] task_work_run+0x150/0x240 [ 1563.858576][ T31] ? __pfx_task_work_run+0x10/0x10 [ 1563.899785][ T31] ? __x64_sys_mount+0x23e/0x310 [ 1563.904935][ T31] exit_to_user_mode_loop+0x100/0x4a0 [ 1563.968850][ T31] do_syscall_64+0x668/0xf80 [ 1563.973518][ T31] ? clear_bhb_loop+0x40/0x90 [ 1564.014084][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1564.052515][ T31] RIP: 0033:0x7fabaab9c819 [ 1564.057006][ T31] RSP: 002b:00007fababb0d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1564.109227][ T31] RAX: ffffffffffffffec RBX: 00007fabaae16090 RCX: 00007fabaab9c819 [ 1564.147248][ T31] RDX: 0000200000000140 RSI: 0000200000000040 RDI: 0000000000000000 [ 1564.155317][ T31] RBP: 00007fabaac32c91 R08: 0000000000000000 R09: 0000000000000000 [ 1564.216737][ T31] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000 [ 1564.224770][ T31] R13: 00007fabaae16128 R14: 00007fabaae16090 R15: 00007ffdc32a4c58 [ 1564.296494][ T31] [ 1564.308910][ T31] [ 1564.308910][ T31] Showing all locks held in the system: [ 1564.336155][ T31] 1 lock held by khungtaskd/31: [ 1564.341056][ T31] #0: ffffffff8e7e7760 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184 [ 1564.395853][ T31] 2 locks held by kworker/u8:5/103: [ 1564.401464][ T31] #0: ffff88801e7ff948 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 1564.445555][ T31] #1: ffffc900026a7d08 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 1564.485362][ T31] 2 locks held by getty/8685: [ 1564.490099][ T31] #0: ffff88803495e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 1564.586037][ T31] #1: ffffc9000374d2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500 [ 1564.635851][ T31] 2 locks held by syz.3.2483/17377: [ 1564.641221][ T31] 2 locks held by syz.0.2634/17979: [ 1564.688105][ T31] 1 lock held by syz.3.2787/18662: [ 1564.693282][ T31] 1 lock held by syz.0.2856/18988: [ 1564.714196][ T31] 2 locks held by syz.0.2889/19114: [ 1564.719474][ T31] 4 locks held by kworker/u8:14/21560: [ 1564.749232][ T31] #0: ffff88801c6b6948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 1564.783786][ T31] #1: ffffc90003c4fd08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 1564.823682][ T31] #2: ffffffff905fdfd0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920 [ 1564.833193][ T31] #3: ffffffff8e7f3180 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6d0 [ 1564.883409][ T31] 2 locks held by syz.1.3550/22366: [ 1564.888670][ T31] #0: ffffffff906c2b70 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 1564.933078][ T31] #1: ffffffff8ec58e28 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80 [ 1564.972875][ T31] 2 locks held by syz.2.3565/22436: [ 1564.978129][ T31] #0: ffff8880353620e0 (&type->s_umount_key#55){++++}-{4:4}, at: deactivate_super+0xdf/0x110 [ 1565.022691][ T31] #1: ffffffff8ec58e28 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0 [ 1565.032377][ T31] 2 locks held by syz.3.3924/24275: [ 1565.062341][ T31] 1 lock held by syz.5.3926/24301: [ 1565.067512][ T31] #0: ffffffff8e7f32b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0 [ 1565.112145][ T31] 1 lock held by syz.4.3948/24380: [ 1565.132157][ T31] #0: ffffffff8e7f32b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0 [ 1565.181785][ T31] [ 1565.185000][ T31] ============================================= [ 1565.185000][ T31] [ 1565.301187][ T31] NMI backtrace for cpu 0 [ 1565.301210][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 1565.301243][ T31] Tainted: [L]=SOFTLOCKUP [ 1565.301251][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1565.301265][ T31] Call Trace: [ 1565.301274][ T31] [ 1565.301283][ T31] dump_stack_lvl+0x100/0x190 [ 1565.301324][ T31] nmi_cpu_backtrace.cold+0x12d/0x151 [ 1565.301364][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1565.301401][ T31] nmi_trigger_cpumask_backtrace+0x1d7/0x230 [ 1565.301438][ T31] sys_info+0x141/0x190 [ 1565.301465][ T31] watchdog+0xd25/0x1050 [ 1565.301498][ T31] ? __pfx_watchdog+0x10/0x10 [ 1565.301523][ T31] ? __kthread_parkme+0x18c/0x230 [ 1565.301553][ T31] ? kthread+0x13a/0x450 [ 1565.301584][ T31] ? __pfx_watchdog+0x10/0x10 [ 1565.301606][ T31] kthread+0x370/0x450 [ 1565.301636][ T31] ? __pfx_kthread+0x10/0x10 [ 1565.301670][ T31] ret_from_fork+0x754/0xd80 [ 1565.301708][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 1565.301746][ T31] ? __switch_to+0x7b4/0x1120 [ 1565.301773][ T31] ? __pfx_kthread+0x10/0x10 [ 1565.301807][ T31] ret_from_fork_asm+0x1a/0x30 [ 1565.301847][ T31] [ 1566.089296][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1566.096249][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 1566.107049][ T31] Tainted: [L]=SOFTLOCKUP [ 1566.112023][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1566.122124][ T31] Call Trace: [ 1566.125430][ T31] [ 1566.128566][ T31] dump_stack_lvl+0x100/0x190 [ 1566.133370][ T31] vpanic+0x552/0x970 [ 1566.137401][ T31] ? __pfx_vpanic+0x10/0x10 [ 1566.142056][ T31] ? nmi_trigger_cpumask_backtrace+0x182/0x230 [ 1566.148369][ T31] panic+0xd1/0xe0 [ 1566.152141][ T31] ? __pfx_panic+0x10/0x10 [ 1566.156684][ T31] ? nmi_trigger_cpumask_backtrace+0x1b5/0x230 [ 1566.162864][ T31] ? nmi_trigger_cpumask_backtrace+0x1f6/0x230 [ 1566.169056][ T31] ? nmi_trigger_cpumask_backtrace+0x200/0x230 [ 1566.175310][ T31] ? watchdog.cold+0x198/0x1ca [ 1566.180199][ T31] ? watchdog+0xd35/0x1050 [ 1566.184642][ T31] watchdog.cold+0x1a9/0x1ca [ 1566.189355][ T31] ? __pfx_watchdog+0x10/0x10 [ 1566.194140][ T31] ? __kthread_parkme+0x18c/0x230 [ 1566.199194][ T31] ? kthread+0x13a/0x450 [ 1566.203574][ T31] ? __pfx_watchdog+0x10/0x10 [ 1566.208275][ T31] kthread+0x370/0x450 [ 1566.212384][ T31] ? __pfx_kthread+0x10/0x10 [ 1566.217009][ T31] ret_from_fork+0x754/0xd80 [ 1566.221637][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 1566.226781][ T31] ? __switch_to+0x7b4/0x1120 [ 1566.231481][ T31] ? __pfx_kthread+0x10/0x10 [ 1566.236100][ T31] ret_from_fork_asm+0x1a/0x30 [ 1566.240899][ T31] [ 1566.243999][ T31] Kernel Offset: disabled [ 1566.248339][ T31] Rebooting in 86400 seconds..