last executing test programs: 1.22353163s ago: executing program 0 (id=2120): mmap$auto(0x8, 0x400004, 0x3, 0x9b7e, 0x2, 0x5) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/query\x00', 0x20000, 0x0) r0 = prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) process_vm_writev$auto(0x1, 0x0, 0x2, &(0x7f0000002a40)={0x0, 0x4000000000000004}, 0x4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9) mmap$auto(0x0, 0xe983, 0x80003, 0xeb1, 0xffffffffffffffff, 0x9) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x4000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/damon_reclaim/parameters/enabled\x00', 0x1eb842, 0x0) mmap$auto(0x0, 0x400005, 0xde, 0x9b7f, 0x2, 0xfffffffffffffff2) sendmsg$auto_NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x18, 0x0, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_TWT_RESPONDER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0) r1 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) read$auto(r1, 0x0, 0x1) write$auto(0x3, 0x0, 0xffd8) fstatfs$auto(r0, 0x0) madvise$auto(0x0, 0x200007, 0x19) socket(0x2, 0x3, 0xa) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 1.155367232s ago: executing program 0 (id=2129): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$auto(0x8000003e, 0xfffffffffffffffb, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:01.3/local_cpulist\x00', 0x100, 0x0) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x23, 0x2, 0x0) ioctl$auto(r3, 0x89a2, 0x8) socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0) read$auto(r2, 0x0, 0x6) ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0) read$auto(r1, 0x0, 0x20) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffffffdffe00, &(0x7f0000000140)=';') poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) mmap$auto(0x0, 0x8, 0xe2, 0x16, 0xffffffffffffffff, 0x28000) mremap$auto(0x4000, 0x4, 0x47ac, 0x3, 0xfffff000) r6 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r6, &(0x7f0000001680)="a7", 0x80000) socket(0x2, 0x1, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) bpf$auto_BPF_TASK_FD_QUERY(0x14, 0x0, 0x500) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x60000, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0xffff, 0x1000, 0x80000000000b, 0x9, 0x2, 0x8]}, 0x0) 1.075390988s ago: executing program 0 (id=2132): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xffffffff, 0xc5c) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x82a02, 0x0) writev$auto(0x3, 0x0, 0x3) r2 = getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) close_range$auto(0x2, 0x8, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x800, 0x10) getdents$auto(r3, &(0x7f0000000f40)={0x1000000000302, 0xfffffffffffffffa, 0x7}, 0x20000018) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x10000, 0x0) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/122, 0x7a) write$auto(0xffffffffffffffff, 0x0, 0x80000000) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x103040, 0x0) read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f00000010c0)=""/22, 0x16) ioctl$auto_KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/udp_hash_entries\x00', 0x8000, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r1, 0x4030582b, 0x401) ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000180)={0x200, "46b0371b", 0xfffffffffffffffc, 0x5, 0x6, 0xec, 0x2, 0x3, 0x7, 0xedc, 0x100000001, 0x8, 0x81, 0x1, 0x3, 0x2, 0x7, 0x8, 0x800, "1f99bb8542224493d5925ee05a744365c3757f50"}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r2) 980.813305ms ago: executing program 0 (id=2136): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x42800, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={"6bf4798bc67635ceb7dad669dd0b1df21916f5519c3aa5cc57b95a82466e17e4", 0x5, 0x2, 0x6, 0xfffffffffffffe01, 0x628edca4, 0xffffffffffffffff}) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x10a41, 0x0) r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, r1, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x1) r2 = io_uring_setup$auto(0x86, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r2) sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r2, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000840}, 0x24044805) mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r5 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r5, 0x0, 0xc3) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000200), r2) sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r6, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r4, @ANYRES64=r1, @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0xaaaba978e63eb07e}, 0x4081) sendmsg$auto_IEEE802154_DISASSOCIATE_REQ(r0, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYRES16=r7, @ANYBLOB="000827bd7000fddbdf250300000006000d000800000005003100000000000500360006000000050031002b0000000500150004000000050007000200000005001800070000000500330004000000050003000c000000317aa9fe0e2e464fb7f6589251fe2f74615e0bb3dfa4d68339e375042be6a19bf94db41082558740c7c47a90421ce68712f2a76a2f836eaa29829b91ac6778d82b42afcf39d93da53bfd3852d5ec482575256148f265a9a568a6f5e909891e9c8acab5054f223b"], 0x5c}, 0x1, 0x0, 0x0, 0x4000001}, 0x1) kill$auto(0x0, 0x1000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/shm_rmid_forced\x00', 0x141241, 0x0) 958.570902ms ago: executing program 0 (id=2141): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) (async) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @local}, 0x54) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) connect$auto(0x3, &(0x7f0000000080)=@xdp={0x2c, 0x4, 0x0, 0xc}, 0x54) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(0xffffffffffffffff, 0x400454a4, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010029bd7000fbdbdf2501000000080001060000000108000100"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b", @ANYRES8], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sendmmsg$auto(0x3, 0x0, 0x81, 0x6fffffd) (async) sendmmsg$auto(0x3, 0x0, 0x81, 0x6fffffd) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) (async) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) unshare$auto(0x40000080) (async) unshare$auto(0x40000080) 885.238293ms ago: executing program 0 (id=2144): unshare$auto(0x2) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000140)="3318") pipe2$auto(0x0, 0x80) mmap$auto(0x0, 0x2021009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000240)={0x2, 0x7, 0x4}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, 0x2, 0x0) write$auto(0x3, 0x0, 0xdfd5) read$auto(0x3, 0x0, 0x80) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp1\x00', 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0) read$auto_transactions_fops_(r2, 0x0, 0x0) r3 = socket(0x25, 0x1, 0x0) setsockopt$auto(r3, 0x116, 0x7f, 0x0, 0x400) 533.777656ms ago: executing program 3 (id=2164): mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0xb02, 0x0) sendfile$auto(r0, r0, 0x0, 0x1) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dri/card0\x00', 0x0, 0x0) ioctl$auto(r2, 0x900064b7, r2) ioctl$auto_VHOST_SET_VRING_CALL2(r1, 0x4008af21, &(0x7f0000000040)={0x2, r1}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/quirks\x00', 0xe0802, 0x0) read$auto(r4, 0x0, 0x20) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth0\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) pipe$auto(0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r6 = socket(0x18, 0x5, 0x1) connect$auto(r6, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x60, r7, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x4}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x8a}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_TIMEOUT={0x8}, @NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x7}, @NL80211_ATTR_KEY_DATA={0x19, 0x7, "3196c1eec82b697c73fc37235d217444303336ce9a"}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x1}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x24008054) 429.383714ms ago: executing program 2 (id=2166): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r1, 0x0, 0x1ff) writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3) openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000640), 0x8382, 0x0) r2 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2, 0x0) read$auto_ftrace_event_filter_fops_trace_events(r2, 0x0, 0x0) msgctl$auto_MSG_INFO(0x4, 0xc, &(0x7f0000000080)={{0xfff, 0x0, 0xee01, 0x9, 0x7, 0x4, 0x5}, &(0x7f0000000000), &(0x7f0000000040)=0xa, 0x7d12, 0xa6, 0x8, 0x131f, 0x6184, 0x50c, 0x8, 0xc, @raw=0x7ff, @inferred=0xffffffffffffffff}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_LINK_SET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002f80)={0x14, r5, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x800) ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, &(0x7f00000001c0)={0x7, 0x9, 0x0, 0x2, 0xd0f, 0x0}) r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x5c, r5, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x48, 0x2, 0x0, 0x1, [@nested={0x3b, 0x4d, 0x0, 0x1, [@nested={0x4, 0x7e}, @generic="95165cbb54ae884c642fbfbc2f4458", @typed={0x8, 0x10, 0x0, 0x0, @pid=r6}, @nested={0x4, 0x12b}, @nested={0x4, 0x6b}, @typed={0x14, 0x2e, 0x0, 0x0, @ipv6=@mcast1}]}, @typed={0x8, 0x76, 0x0, 0x0, @pid=r7}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x841}, 0x4) msgctl$auto_IPC_INFO(0x5, 0x3, &(0x7f0000000180)={{0x9, r3, 0xee00, 0x6, 0xfffffffb, 0x1, 0x40}, &(0x7f0000000100)=0xfd, &(0x7f0000000140)=0x9, 0x9, 0x9, 0x9, 0x9, 0x8261, 0x101, 0x7, 0x8, @raw=0x36, @inferred=r7}) 429.087584ms ago: executing program 3 (id=2167): mmap$auto(0x8, 0x400004, 0x3, 0x9b7e, 0x2, 0x5) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/query\x00', 0x20000, 0x0) r0 = prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0) process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x2, 0x0, 0x4, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9) mmap$auto(0x0, 0xe983, 0x80003, 0xeb1, 0xffffffffffffffff, 0x9) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x4000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/damon_reclaim/parameters/enabled\x00', 0x1eb842, 0x0) mmap$auto(0x0, 0x400005, 0xde, 0x9b7f, 0x2, 0xfffffffffffffff2) sendmsg$auto_NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x18, 0x0, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_TWT_RESPONDER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0) r1 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) read$auto(r1, 0x0, 0x1) write$auto(0x3, 0x0, 0xffd8) fstatfs$auto(r0, 0x0) madvise$auto(0x0, 0x200007, 0x19) socket(0x2, 0x3, 0xa) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 320.022814ms ago: executing program 2 (id=2171): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x42800, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={"6bf4798bc67635ceb7dad669dd0b1df21916f5519c3aa5cc57b95a82466e17e4", 0x5, 0x2, 0x6, 0xfffffffffffffe01, 0x628edca4, 0xffffffffffffffff}) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x10a41, 0x0) r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, r1, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x1) r2 = io_uring_setup$auto(0x86, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r2) sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r2, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000840}, 0x24044805) mmap$auto(0x0, 0x1, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r5 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r5, 0x0, 0xc3) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000200), r2) sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r6, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r4, @ANYRES64=r1, @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0xaaaba978e63eb07e}, 0x4081) sendmsg$auto_IEEE802154_DISASSOCIATE_REQ(r0, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES16=r7, @ANYBLOB="000827bd7000fddbdf250300000006000d000800000005003100000000000500360006000000050031002b0000000500150004000000050007000200000005001800070000000500330004000000050003000c000000317aa9fe0e2e464fb7f6589251fe2f74615e0bb3dfa4d68339e375042be6a19bf94db41082558740c7c47a90421ce68712f2a76a2f836eaa29829b91ac6778d82b42afcf39d93da53bfd3852d5ec482575256148f265a9a568a6f5e909891e9c8acab5054f223b"], 0x5c}, 0x1, 0x0, 0x0, 0x4000001}, 0x1) kill$auto(0x0, 0x1000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141241, 0x0) 312.662514ms ago: executing program 3 (id=2173): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) waitid$auto_P_PID(0x1, 0x0, 0x0, 0x0, &(0x7f0000000240)={{0x2, 0x34}, {0x9c, 0x3}, 0x779c, 0x3ff, 0x2, 0x0, 0x8, 0x8a, 0x3, 0x1, 0x100, 0x6, 0x5, 0x47, 0x80000000, 0x40000}) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0xff) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x700effd) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) setgroups$auto(0xe32, 0x0) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0xffffffffffffffff, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 296.388599ms ago: executing program 1 (id=2174): mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0xb02, 0x0) sendfile$auto(r0, r0, 0x0, 0x1) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dri/card0\x00', 0x0, 0x0) ioctl$auto(r2, 0x900064b7, r2) ioctl$auto_VHOST_SET_VRING_CALL2(r1, 0x4008af21, &(0x7f0000000040)={0x2, r1}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/quirks\x00', 0xe0802, 0x0) read$auto(r4, 0x0, 0x20) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth0\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) pipe$auto(0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r6 = socket(0x18, 0x5, 0x1) connect$auto(r6, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x60, r7, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x4}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x8a}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_TIMEOUT={0x8}, @NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x7}, @NL80211_ATTR_KEY_DATA={0x19, 0x7, "3196c1eec82b697c73fc37235d217444303336ce9a"}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x1}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x24008054) 213.266024ms ago: executing program 1 (id=2175): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$auto(0x8000003e, 0xfffffffffffffffb, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty51\x00', 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x23, 0x2, 0x0) ioctl$auto(r2, 0x89a2, 0x8) socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) read$auto(r1, 0x0, 0x6) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, &(0x7f0000000140)=';') poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) mmap$auto(0x0, 0x8, 0xe2, 0x16, 0xffffffffffffffff, 0x28000) mremap$auto(0x4000, 0x4, 0x47ac, 0x3, 0xfffff000) r5 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r5, &(0x7f0000001680)="a7", 0x80000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x60000, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0xffff, 0x1000, 0x80000000000b, 0x9, 0x2, 0x8]}, 0x0) 213.015967ms ago: executing program 1 (id=2176): unshare$auto(0x2) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000140)="3318cb") pipe2$auto(0x0, 0x80) mmap$auto(0x0, 0x2021009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, 0x2, 0x0) write$auto(0x3, 0x0, 0xdfd5) read$auto(0x3, 0x0, 0x80) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp1\x00', 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0) read$auto_transactions_fops_(r2, 0x0, 0x0) r3 = socket(0x25, 0x1, 0x0) setsockopt$auto(r3, 0x116, 0x7f, 0x0, 0x400) 212.761783ms ago: executing program 3 (id=2177): r0 = socket(0x11, 0x80003, 0x300) mmap$auto(0xffffffffffffffff, 0x20009, 0x200009, 0x40000000000eb1, r0, 0x8000) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x9, 0x8, 0x800000003, 0xeb1, r1, 0x4000000) socket(0xa, 0x1, 0x84) pipe2$auto(0x0, 0x80) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) write$auto(r2, 0x0, 0x101) ioctl$auto_SG_GET_NUM_WAITING(r2, 0x227d, 0x0) socket(0x18, 0x3, 0x2) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_enter$auto(0xffffffffffffffff, 0x7, 0x2, 0x10, 0x0, 0xf2a7214) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) fcntl$auto(0x0, 0x408, 0x100000) close_range$auto(0x2, 0xa, 0x0) r3 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f00000000c0), 0x650401, 0x0) read$auto_cachefiles_daemon_fops_internal(r3, &(0x7f0000000100)=""/203, 0xcb) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) sendmmsg$auto(r0, 0x0, 0x9a7, 0x9262) 212.512534ms ago: executing program 2 (id=2178): r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xffffffff, 0xc5c) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x82a02, 0x0) writev$auto(0x3, 0x0, 0x3) r2 = getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) close_range$auto(0x2, 0x8, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x800, 0x10) getdents$auto(r3, &(0x7f0000000f40)={0x1000000000302, 0xfffffffffffffffa, 0x7}, 0x20000018) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x10000, 0x0) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/122, 0x7a) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x103040, 0x0) read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f00000010c0)=""/22, 0x16) ioctl$auto_KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/udp_hash_entries\x00', 0x8000, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r1, 0x4030582b, 0x401) ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000180)={0x200, "46b0371b", 0xfffffffffffffffc, 0x5, 0x6, 0xec, 0x2, 0x3, 0x7, 0xedc, 0x100000001, 0x8, 0x81, 0x1, 0x3, 0x2, 0x7, 0x8, 0x800, "1f99bb8542224493d5925ee05a744365c3757f50"}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r2) 179.044093ms ago: executing program 1 (id=2179): prctl$auto(0x3e, 0x1, 0x0, 0x4001, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$auto_mISDN_fops_timerdev(r0, 0x0, 0x0) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0) ioctl$auto_I2C_SLAVE(r1, 0x703, 0x0) ioctl$auto_IMADDTIMER(r0, 0x80044940, 0x0) socket(0x2, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x20000a, 0x4) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) r2 = getpgrp(0x0) ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, r2) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0x1010001, 0x100000003) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0) read$auto(r3, 0x0, 0x1ff) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa902, 0x0) write$auto(r4, &(0x7f0000000240)='.G\x1f*@sy\b\x00\xe7\xc9 \x8f\x10!\x11\xd4\x9by\xa8\xb2\x89c\xf8\xc41\xd4\x0f\x82\x8d\xd2\x04\x0f\xf6\xa0\xf7,O\x1d\t8\xb9H\xd5\xc4\xbb\x8f\x13\x94%\xcc\x0e\x9eT\xc1}+\x02J\xb9\x80\xe7\xb3<\x9a\xf1B\x13\xb7P\x9b\xce~\xff&zQ\xa8\x97\n\xb2\xf7\x15Z\x05\x8cl\x04\xca\x954\xdd3\xf9\xa3\x1e#,\xb7\xd2\xa6\x8d\x13\xd0\xf0\x14\x9a\xfa\xed\x9d\xa1\x98P.\'\xccA\x8b\xff\x82\xf8\xc3\xa9\xb6\xc3\x80E\xfc\xe3\xc6\x8d\xb8uh\x9f\xd1!\xa3\xe0dR\xda?\xdc:\xbd\x15X%\x84\xd2yL\x05\xaeV$\xda\xcd\xa1}_\xe0\x9c\x87\xaa\xa1\x1f\x93(\x96}\"sU.2\x1e\xb8\x01U\x8f\xe5\x7f]L\xca\xa2\x9b\x92ZYE\xd2\xe1<4\x9c\x85\x04\x86l2\x8e\xb2\x9e\x11\x82s\xd7\xe3\xdd\xdb\x041\xb2\x1c\xac@\x16\xb3sn\xec\r\x11J*\xbb\xd6\xde\x86v\x83T\xb1\xae\x91{_\xd7JK\xda\x01i#\xe89\x17\xaf\x03j5\r\xce\a\x1dl/#\x96Ir1}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/quirks\x00', 0xe0802, 0x0) read$auto(r4, 0x0, 0x20) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'veth0\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) pipe$auto(0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r6 = socket(0x18, 0x5, 0x1) connect$auto(r6, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r7, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x4}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x8a}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_TIMEOUT={0x8}, @NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x7}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x3}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24008054) 103.213451ms ago: executing program 2 (id=2183): r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, 0x0) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x9, &(0x7f0000000000)={0x50, 0xf2, 0xb0, @raw=0x2}}) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004680), 0xffffffffffffffff) ioctl$auto_PPPIOCSDEBUG(r0, 0x40047440, &(0x7f0000000040)=0x79e) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000049c0)={0x0, 0x0, &(0x7f0000004980)={0x0}, 0x1, 0x0, 0x0, 0x40040801}, 0x44000) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) fstat$auto(0x2, 0x0) ioctl$auto(0xc8, 0x401054d5, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x33, 0x0, 0x20056b) select$auto(0xa, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x4, 0xd, 0x8, 0x948c, 0xffffffffffffffff, 0x80, 0x3, 0x6, 0x7ffffffffffffffb, 0x7, 0x2, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 59.982907ms ago: executing program 3 (id=2184): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$auto(0x8000003e, 0xfffffffffffffffb, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty51\x00', 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x23, 0x2, 0x0) ioctl$auto(r2, 0x89a2, 0x8) socketpair$auto(0xf3, 0x4, 0x8000000000000000, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyp6\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) read$auto(r1, 0x0, 0x6) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, &(0x7f0000000140)=';') poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) mmap$auto(0x0, 0x8, 0xe2, 0x16, 0xffffffffffffffff, 0x28000) mremap$auto(0x4000, 0x4, 0x47ac, 0x3, 0xfffff000) r5 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r5, &(0x7f0000001680)="a7", 0x80000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder1\x00', 0x60000, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0xffff, 0x1000, 0x80000000000b, 0x9, 0x2, 0x8]}, 0x0) 287.174µs ago: executing program 1 (id=2185): setresuid$auto(0x0, 0x7, 0x8080) setfsuid$auto(0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000900)='/proc/sys/kernel/pid_max\x00', 0x0, 0x0) r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xa4e00, 0x0) socket(0xa, 0x801, 0x84) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace\x00', 0x240100, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) close_range$auto(0x2, 0x8000, 0x0) r2 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000140), 0x60e83, 0x0) ioctl$auto(r2, 0x3b8e, r1) write$auto_proc_mem_operations_base(r0, 0x0, 0x0) 0s ago: executing program 2 (id=2186): unshare$auto(0x2) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000140)="3318cb") pipe2$auto(0x0, 0x80) mmap$auto(0x0, 0x2021009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, 0x2, 0x0) write$auto(0x3, 0x0, 0xdfd5) read$auto(0x3, 0x0, 0x80) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp1\x00', 0x0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_transactions_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0) read$auto_transactions_fops_(r2, 0x0, 0x0) r3 = socket(0x25, 0x1, 0x0) setsockopt$auto(r3, 0x116, 0x7f, 0x0, 0x400) kernel console output (not intermixed with test programs): a8/0x5b0 [ 196.385726][ T7365] ksys_mmap_pgoff+0x232/0x650 [ 196.385758][ T7365] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 196.385784][ T7365] ? fput+0x79/0x100 [ 196.385814][ T7365] ? ksys_write+0x1ac/0x250 [ 196.385837][ T7365] ? __pfx_ksys_write+0x10/0x10 [ 196.385864][ T7365] __x64_sys_mmap+0x125/0x190 [ 196.385917][ T7365] do_syscall_64+0x106/0xf80 [ 196.385949][ T7365] ? clear_bhb_loop+0x40/0x90 [ 196.385982][ T7365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.386009][ T7365] RIP: 0033:0x7f2c2399c799 [ 196.386031][ T7365] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 196.386056][ T7365] RSP: 002b:00007f2c2478e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 196.386082][ T7365] RAX: ffffffffffffffda RBX: 00007f2c23c15fa0 RCX: 00007f2c2399c799 [ 196.386100][ T7365] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 196.386116][ T7365] RBP: 00007f2c2478e090 R08: 0000000000000402 R09: 0000300000000000 [ 196.386132][ T7365] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000001 [ 196.386147][ T7365] R13: 00007f2c23c16038 R14: 00007f2c23c15fa0 R15: 00007ffd6094b908 [ 196.386181][ T7365] [ 197.640328][ T7353] FAULT_INJECTION: forcing a failure. [ 197.640328][ T7353] name failslab, interval 1, probability 0, space 0, times 0 [ 197.706387][ T7353] CPU: 0 UID: 0 PID: 7353 Comm: syz.1.328 Not tainted syzkaller #0 PREEMPT(full) [ 197.706429][ T7353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 197.706447][ T7353] Call Trace: [ 197.706457][ T7353] [ 197.706468][ T7353] dump_stack_lvl+0x100/0x190 [ 197.706524][ T7353] should_fail_ex.cold+0x5/0xa [ 197.706559][ T7353] should_failslab+0xc2/0x120 [ 197.706589][ T7353] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 197.706632][ T7353] ? acpi_ut_create_control_state+0x6a/0x100 [ 197.706688][ T7353] acpi_ut_create_control_state+0x6a/0x100 [ 197.706734][ T7353] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 197.706773][ T7353] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 197.706822][ T7353] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 197.706871][ T7353] acpi_ps_create_op+0x7bb/0xd10 [ 197.706920][ T7353] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 197.706966][ T7353] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 197.706994][ T7353] ? acpi_ut_value_exit+0x10d/0x190 [ 197.707030][ T7353] acpi_ps_parse_loop+0xa65/0x24a0 [ 197.707078][ T7353] ? __kmalloc_noprof+0x320/0x850 [ 197.707124][ T7353] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 197.707178][ T7353] ? acpi_ut_status_exit+0x111/0x1c0 [ 197.707211][ T7353] ? acpi_ds_call_control_method+0x435/0xab0 [ 197.707257][ T7353] acpi_ps_parse_aml+0x81e/0x1120 [ 197.707312][ T7353] acpi_ps_execute_method+0x5c4/0xe90 [ 197.707351][ T7353] acpi_ns_evaluate+0x640/0x1670 [ 197.707393][ T7353] acpi_evaluate_object+0x420/0xe00 [ 197.707442][ T7353] ? kasan_save_stack+0x30/0x50 [ 197.707494][ T7353] ? kasan_save_track+0x14/0x30 [ 197.707545][ T7353] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 197.707599][ T7353] acpi_evaluate_integer+0xdf/0x220 [ 197.707637][ T7353] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 197.707689][ T7353] ? __pfx_status_show+0x10/0x10 [ 197.707728][ T7353] status_show+0xa0/0x120 [ 197.707768][ T7353] ? __pfx_status_show+0x10/0x10 [ 197.707819][ T7353] dev_attr_show+0x52/0xa0 [ 197.707847][ T7353] ? __pfx_dev_attr_show+0x10/0x10 [ 197.707873][ T7353] sysfs_kf_seq_show+0x217/0x3a0 [ 197.707915][ T7353] seq_read_iter+0x32f/0x1270 [ 197.707975][ T7353] kernfs_fop_read_iter+0x46c/0x610 [ 197.708006][ T7353] ? rw_verify_area+0xce/0x6d0 [ 197.708046][ T7353] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 197.708079][ T7353] vfs_read+0x825/0xb30 [ 197.708127][ T7353] ? __pfx_vfs_read+0x10/0x10 [ 197.708205][ T7353] ksys_read+0x12a/0x250 [ 197.708249][ T7353] ? __pfx_ksys_read+0x10/0x10 [ 197.708304][ T7353] do_syscall_64+0x106/0xf80 [ 197.708338][ T7353] ? clear_bhb_loop+0x40/0x90 [ 197.708374][ T7353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 197.708402][ T7353] RIP: 0033:0x7f3fa8d9c799 [ 197.708426][ T7353] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 197.708453][ T7353] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 197.708480][ T7353] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 197.708499][ T7353] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 197.708519][ T7353] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 197.708539][ T7353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.708559][ T7353] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 197.708603][ T7353] [ 197.710973][ T7353] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 198.485364][ T7353] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 199.719982][ T7405] FAULT_INJECTION: forcing a failure. [ 199.719982][ T7405] name failslab, interval 1, probability 0, space 0, times 0 [ 199.798086][ T7405] CPU: 0 UID: 0 PID: 7405 Comm: syz.2.340 Not tainted syzkaller #0 PREEMPT(full) [ 199.798130][ T7405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 199.798145][ T7405] Call Trace: [ 199.798152][ T7405] [ 199.798161][ T7405] dump_stack_lvl+0x100/0x190 [ 199.798204][ T7405] should_fail_ex.cold+0x5/0xa [ 199.798233][ T7405] should_failslab+0xc2/0x120 [ 199.798259][ T7405] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 199.798296][ T7405] ? acpi_ut_create_control_state+0x6a/0x100 [ 199.798349][ T7405] acpi_ut_create_control_state+0x6a/0x100 [ 199.798390][ T7405] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 199.798422][ T7405] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 199.798466][ T7405] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 199.798508][ T7405] acpi_ps_create_op+0x7bb/0xd10 [ 199.798551][ T7405] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 199.798591][ T7405] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 199.798617][ T7405] ? acpi_ut_value_exit+0x10d/0x190 [ 199.798647][ T7405] acpi_ps_parse_loop+0xa65/0x24a0 [ 199.798690][ T7405] ? __kmalloc_noprof+0x320/0x850 [ 199.798730][ T7405] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 199.798770][ T7405] ? acpi_ut_status_exit+0x111/0x1c0 [ 199.798796][ T7405] ? acpi_ds_call_control_method+0x435/0xab0 [ 199.798838][ T7405] acpi_ps_parse_aml+0x81e/0x1120 [ 199.798885][ T7405] acpi_ps_execute_method+0x5c4/0xe90 [ 199.798918][ T7405] acpi_ns_evaluate+0x640/0x1670 [ 199.798952][ T7405] acpi_evaluate_object+0x420/0xe00 [ 199.798988][ T7405] ? kasan_save_stack+0x30/0x50 [ 199.799025][ T7405] ? kasan_save_track+0x14/0x30 [ 199.799068][ T7405] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 199.799115][ T7405] acpi_evaluate_integer+0xdf/0x220 [ 199.799147][ T7405] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 199.799191][ T7405] ? __pfx_status_show+0x10/0x10 [ 199.799226][ T7405] status_show+0xa0/0x120 [ 199.799262][ T7405] ? __pfx_status_show+0x10/0x10 [ 199.799306][ T7405] dev_attr_show+0x52/0xa0 [ 199.799338][ T7405] ? __pfx_dev_attr_show+0x10/0x10 [ 199.799361][ T7405] sysfs_kf_seq_show+0x217/0x3a0 [ 199.799398][ T7405] seq_read_iter+0x32f/0x1270 [ 199.799449][ T7405] kernfs_fop_read_iter+0x46c/0x610 [ 199.799477][ T7405] ? rw_verify_area+0xce/0x6d0 [ 199.799512][ T7405] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 199.799541][ T7405] vfs_read+0x825/0xb30 [ 199.799583][ T7405] ? __pfx_vfs_read+0x10/0x10 [ 199.799641][ T7405] ksys_read+0x12a/0x250 [ 199.799680][ T7405] ? __pfx_ksys_read+0x10/0x10 [ 199.799727][ T7405] do_syscall_64+0x106/0xf80 [ 199.799757][ T7405] ? clear_bhb_loop+0x40/0x90 [ 199.799830][ T7405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.799865][ T7405] RIP: 0033:0x7f2c2399c799 [ 199.799895][ T7405] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 199.799919][ T7405] RSP: 002b:00007f2c21bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 199.799943][ T7405] RAX: ffffffffffffffda RBX: 00007f2c23c16090 RCX: 00007f2c2399c799 [ 199.799959][ T7405] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 199.799974][ T7405] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 199.799989][ T7405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.800003][ T7405] R13: 00007f2c23c16128 R14: 00007f2c23c16090 R15: 00007ffd6094b908 [ 199.800035][ T7405] [ 200.196256][ T7405] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 200.219586][ T7405] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 201.394223][ T7422] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 202.363137][ T7425] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 206.025839][ T7500] random: crng reseeded on system resumption [ 207.686533][ T7525] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[7525] [ 208.953634][ T7542] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[7542] [ 209.804943][ T7560] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[7560] [ 210.336207][ T7578] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 210.433933][ T7578] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 210.486160][ T7578] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 210.493313][ T7578] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 211.251733][ T7577] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 211.936070][ T7581] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 212.405823][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 212.485260][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 212.565281][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 212.571349][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 217.113025][ T7684] ptrace attach of "./syz-executor exec"[5828] was attempted by "./syz-executor exec"[7684] [ 217.557082][ T7692] netlink: 25 bytes leftover after parsing attributes in process `syz.3.421'. [ 218.790629][ T7712] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'. [ 220.569303][ T7738] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[7738] [ 221.147257][ T7744] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[7744] [ 225.695471][ T7794] Invalid ELF header magic: != ELF [ 226.133438][ T7811] FAULT_INJECTION: forcing a failure. [ 226.133438][ T7811] name failslab, interval 1, probability 0, space 0, times 0 [ 226.160302][ T7811] CPU: 0 UID: 0 PID: 7811 Comm: syz.1.456 Not tainted syzkaller #0 PREEMPT(full) [ 226.160345][ T7811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 226.160366][ T7811] Call Trace: [ 226.160376][ T7811] [ 226.160388][ T7811] dump_stack_lvl+0x100/0x190 [ 226.160455][ T7811] should_fail_ex.cold+0x5/0xa [ 226.160496][ T7811] should_failslab+0xc2/0x120 [ 226.160532][ T7811] __kmalloc_cache_noprof+0x7a/0x6f0 [ 226.160577][ T7811] ? allocate_file_region_entries+0x1a0/0x620 [ 226.160640][ T7811] allocate_file_region_entries+0x1a0/0x620 [ 226.160704][ T7811] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 226.160753][ T7811] region_chg+0x85/0x140 [ 226.160790][ T7811] __vma_reservation_common+0x376/0x720 [ 226.160832][ T7811] ? __pfx___vma_reservation_common+0x10/0x10 [ 226.160872][ T7811] ? __pfx___might_resched+0x10/0x10 [ 226.160915][ T7811] hugetlb_no_page+0xb2b/0x1970 [ 226.160958][ T7811] hugetlb_fault+0x5df/0x1450 [ 226.160996][ T7811] ? __pfx_hugetlb_fault+0x10/0x10 [ 226.161038][ T7811] ? find_vma+0xbf/0x140 [ 226.161060][ T7811] ? __pfx_find_vma+0x10/0x10 [ 226.161086][ T7811] handle_mm_fault+0x5f1/0xa20 [ 226.161126][ T7811] do_user_addr_fault+0x74c/0x12f0 [ 226.161175][ T7811] exc_page_fault+0x6f/0xd0 [ 226.161205][ T7811] asm_exc_page_fault+0x26/0x30 [ 226.161230][ T7811] RIP: 0010:__put_user_4+0xd/0x20 [ 226.161258][ T7811] Code: 66 89 01 31 c9 0f 01 ca e9 c0 d0 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 d0 03 00 0f 1f 80 00 00 00 00 90 90 90 [ 226.161281][ T7811] RSP: 0018:ffffc9000732fe58 EFLAGS: 00050202 [ 226.161301][ T7811] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000007 [ 226.161316][ T7811] RDX: 0000000000000000 RSI: ffffffff8255f691 RDI: ffff888020b9615c [ 226.161331][ T7811] RBP: 0000000000000002 R08: 0000000000000001 R09: 00000000000001ca [ 226.161345][ T7811] R10: 0000000000000200 R11: 0000000000000000 R12: 1ffff92000e65fce [ 226.161360][ T7811] R13: 0000000000000007 R14: 0000000000000000 R15: dffffc0000000000 [ 226.161384][ T7811] ? __might_fault+0x111/0x140 [ 226.161429][ T7811] __do_sys_prctl+0xd67/0x2330 [ 226.161468][ T7811] ? __pfx___do_sys_prctl+0x10/0x10 [ 226.161513][ T7811] do_syscall_64+0x106/0xf80 [ 226.161542][ T7811] ? clear_bhb_loop+0x40/0x90 [ 226.161572][ T7811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.161597][ T7811] RIP: 0033:0x7f3fa8d9c799 [ 226.161616][ T7811] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 226.161639][ T7811] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 226.161660][ T7811] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 226.161676][ T7811] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000002 [ 226.161690][ T7811] RBP: 00007f3fa8e32bd9 R08: 0000000000000001 R09: 0000000000000000 [ 226.161705][ T7811] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 226.161719][ T7811] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 226.161750][ T7811] [ 227.106290][ T7821] netlink: 25 bytes leftover after parsing attributes in process `syz.1.460'. [ 227.469457][ T7825] FAULT_INJECTION: forcing a failure. [ 227.469457][ T7825] name failslab, interval 1, probability 0, space 0, times 0 [ 227.484432][ T7825] CPU: 0 UID: 0 PID: 7825 Comm: syz.1.461 Not tainted syzkaller #0 PREEMPT(full) [ 227.484474][ T7825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 227.484492][ T7825] Call Trace: [ 227.484502][ T7825] [ 227.484514][ T7825] dump_stack_lvl+0x100/0x190 [ 227.484569][ T7825] should_fail_ex.cold+0x5/0xa [ 227.484608][ T7825] should_failslab+0xc2/0x120 [ 227.484641][ T7825] __kmalloc_cache_noprof+0x7a/0x6f0 [ 227.484693][ T7825] ? event_filter_read+0xa9/0x470 [ 227.484741][ T7825] event_filter_read+0xa9/0x470 [ 227.484779][ T7825] ? rw_verify_area+0xce/0x6d0 [ 227.484825][ T7825] ? __pfx_event_filter_read+0x10/0x10 [ 227.484865][ T7825] vfs_read+0x1e4/0xb30 [ 227.484922][ T7825] ? __pfx_vfs_read+0x10/0x10 [ 227.484969][ T7825] ? __fget_files+0x215/0x3d0 [ 227.485004][ T7825] ? __fget_files+0x21f/0x3d0 [ 227.485045][ T7825] ksys_read+0x12a/0x250 [ 227.485097][ T7825] ? __pfx_ksys_read+0x10/0x10 [ 227.485159][ T7825] do_syscall_64+0x106/0xf80 [ 227.485198][ T7825] ? clear_bhb_loop+0x40/0x90 [ 227.485238][ T7825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 227.485271][ T7825] RIP: 0033:0x7f3fa8d9c799 [ 227.485296][ T7825] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 227.485324][ T7825] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 227.485353][ T7825] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 227.485373][ T7825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 227.485391][ T7825] RBP: 00007f3fa9cd0090 R08: 0000000000000000 R09: 0000000000000000 [ 227.485409][ T7825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 227.485426][ T7825] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 227.485468][ T7825] [ 229.274469][ T7854] netlink: 25 bytes leftover after parsing attributes in process `syz.2.470'. [ 229.643858][ T7865] FAULT_INJECTION: forcing a failure. [ 229.643858][ T7865] name failslab, interval 1, probability 0, space 0, times 0 [ 229.675403][ T7865] CPU: 0 UID: 0 PID: 7865 Comm: syz.1.473 Not tainted syzkaller #0 PREEMPT(full) [ 229.675443][ T7865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 229.675462][ T7865] Call Trace: [ 229.675473][ T7865] [ 229.675484][ T7865] dump_stack_lvl+0x100/0x190 [ 229.675536][ T7865] should_fail_ex.cold+0x5/0xa [ 229.675573][ T7865] should_failslab+0xc2/0x120 [ 229.675607][ T7865] __kmalloc_cache_noprof+0x7a/0x6f0 [ 229.675649][ T7865] ? event_filter_read+0xa9/0x470 [ 229.675711][ T7865] event_filter_read+0xa9/0x470 [ 229.675748][ T7865] ? rw_verify_area+0xce/0x6d0 [ 229.675794][ T7865] ? __pfx_event_filter_read+0x10/0x10 [ 229.675835][ T7865] vfs_read+0x1e4/0xb30 [ 229.675892][ T7865] ? __pfx_vfs_read+0x10/0x10 [ 229.675942][ T7865] ? __fget_files+0x215/0x3d0 [ 229.675982][ T7865] ? __fget_files+0x21f/0x3d0 [ 229.676023][ T7865] ksys_read+0x12a/0x250 [ 229.676073][ T7865] ? __pfx_ksys_read+0x10/0x10 [ 229.676136][ T7865] do_syscall_64+0x106/0xf80 [ 229.676174][ T7865] ? clear_bhb_loop+0x40/0x90 [ 229.676214][ T7865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.676248][ T7865] RIP: 0033:0x7f3fa8d9c799 [ 229.676274][ T7865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 229.676305][ T7865] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 229.676335][ T7865] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 229.676354][ T7865] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 229.676373][ T7865] RBP: 00007f3fa9cd0090 R08: 0000000000000000 R09: 0000000000000000 [ 229.676392][ T7865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 229.676411][ T7865] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 229.676454][ T7865] [ 230.550570][ T7868] FAULT_INJECTION: forcing a failure. [ 230.550570][ T7868] name failslab, interval 1, probability 0, space 0, times 0 [ 230.564797][ T7868] CPU: 1 UID: 0 PID: 7868 Comm: syz.3.472 Not tainted syzkaller #0 PREEMPT(full) [ 230.564837][ T7868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 230.564854][ T7868] Call Trace: [ 230.564864][ T7868] [ 230.564875][ T7868] dump_stack_lvl+0x100/0x190 [ 230.564939][ T7868] should_fail_ex.cold+0x5/0xa [ 230.564975][ T7868] ? iter_file_splice_write+0x1d8/0x10a0 [ 230.565007][ T7868] should_failslab+0xc2/0x120 [ 230.565040][ T7868] __kmalloc_noprof+0xe0/0x850 [ 230.565100][ T7868] iter_file_splice_write+0x1d8/0x10a0 [ 230.565131][ T7868] ? lockdep_hardirqs_on+0x78/0x100 [ 230.565175][ T7868] ? copy_splice_read+0x734/0xb90 [ 230.565225][ T7868] ? kfree+0x1f6/0x6b0 [ 230.565276][ T7868] ? __pfx_iter_file_splice_write+0x10/0x10 [ 230.565310][ T7868] ? __lock_acquire+0x4a5/0x2630 [ 230.565355][ T7868] ? __pfx_copy_splice_read+0x10/0x10 [ 230.565432][ T7868] ? __pfx_iter_file_splice_write+0x10/0x10 [ 230.565469][ T7868] direct_splice_actor+0x192/0x6c0 [ 230.565528][ T7868] splice_direct_to_actor+0x345/0xa30 [ 230.565563][ T7868] ? __pfx_direct_splice_actor+0x10/0x10 [ 230.565624][ T7868] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 230.565670][ T7868] do_splice_direct+0x174/0x240 [ 230.565703][ T7868] ? __pfx_do_splice_direct+0x10/0x10 [ 230.565736][ T7868] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 230.565797][ T7868] ? rw_verify_area+0xce/0x6d0 [ 230.565847][ T7868] do_sendfile+0xadc/0xe20 [ 230.565913][ T7868] ? __pfx_do_sendfile+0x10/0x10 [ 230.565960][ T7868] ? __fget_files+0x21f/0x3d0 [ 230.566001][ T7868] __x64_sys_sendfile64+0x1d8/0x220 [ 230.566036][ T7868] ? ksys_write+0x1ac/0x250 [ 230.566064][ T7868] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 230.566113][ T7868] do_syscall_64+0x106/0xf80 [ 230.566149][ T7868] ? clear_bhb_loop+0x40/0x90 [ 230.566196][ T7868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.566229][ T7868] RIP: 0033:0x7f5aeed9c799 [ 230.566255][ T7868] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 230.566285][ T7868] RSP: 002b:00007f5aefb83028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 230.566314][ T7868] RAX: ffffffffffffffda RBX: 00007f5aef016270 RCX: 00007f5aeed9c799 [ 230.566335][ T7868] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000009 [ 230.566353][ T7868] RBP: 00007f5aefb83090 R08: 0000000000000000 R09: 0000000000000000 [ 230.566372][ T7868] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 230.566391][ T7868] R13: 00007f5aef016308 R14: 00007f5aef016270 R15: 00007fffb2e56218 [ 230.566432][ T7868] [ 231.912055][ T7893] netlink: 28 bytes leftover after parsing attributes in process `syz.3.481'. [ 231.970597][ T7895] netlink: 28 bytes leftover after parsing attributes in process `syz.0.482'. [ 232.018840][ T7895] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 232.057996][ T7895] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 232.098662][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.484'. [ 232.135855][ T7895] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 232.157333][ T7895] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 232.559313][ T7910] netlink: 25 bytes leftover after parsing attributes in process `syz.1.485'. [ 233.573902][ T7913] FAULT_INJECTION: forcing a failure. [ 233.573902][ T7913] name failslab, interval 1, probability 0, space 0, times 0 [ 233.773431][ T7913] CPU: 1 UID: 0 PID: 7913 Comm: syz.2.488 Not tainted syzkaller #0 PREEMPT(full) [ 233.773476][ T7913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 233.773494][ T7913] Call Trace: [ 233.773504][ T7913] [ 233.773515][ T7913] dump_stack_lvl+0x100/0x190 [ 233.773567][ T7913] should_fail_ex.cold+0x5/0xa [ 233.773600][ T7913] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 233.773636][ T7913] should_failslab+0xc2/0x120 [ 233.773665][ T7913] __kmalloc_noprof+0xe0/0x850 [ 233.773717][ T7913] acpi_ns_get_normalized_pathname+0x95/0x250 [ 233.773756][ T7913] acpi_ds_call_control_method+0x5d4/0xab0 [ 233.773804][ T7913] acpi_ps_parse_aml+0xacd/0x1120 [ 233.773857][ T7913] acpi_ps_execute_method+0x5c4/0xe90 [ 233.773896][ T7913] acpi_ns_evaluate+0x640/0x1670 [ 233.773936][ T7913] acpi_evaluate_object+0x420/0xe00 [ 233.773977][ T7913] ? kasan_save_stack+0x30/0x50 [ 233.774019][ T7913] ? kasan_save_track+0x14/0x30 [ 233.774068][ T7913] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 233.774121][ T7913] acpi_evaluate_integer+0xdf/0x220 [ 233.774157][ T7913] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 233.774217][ T7913] ? __pfx_status_show+0x10/0x10 [ 233.774258][ T7913] status_show+0xa0/0x120 [ 233.774308][ T7913] ? __pfx_status_show+0x10/0x10 [ 233.774360][ T7913] dev_attr_show+0x52/0xa0 [ 233.774389][ T7913] ? __pfx_dev_attr_show+0x10/0x10 [ 233.774416][ T7913] sysfs_kf_seq_show+0x217/0x3a0 [ 233.774459][ T7913] seq_read_iter+0x32f/0x1270 [ 233.774530][ T7913] kernfs_fop_read_iter+0x46c/0x610 [ 233.774564][ T7913] ? rw_verify_area+0xce/0x6d0 [ 233.774603][ T7913] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 233.774650][ T7913] vfs_read+0x825/0xb30 [ 233.774700][ T7913] ? __pfx_vfs_read+0x10/0x10 [ 233.774770][ T7913] ksys_read+0x12a/0x250 [ 233.774820][ T7913] ? __pfx_ksys_read+0x10/0x10 [ 233.774877][ T7913] do_syscall_64+0x106/0xf80 [ 233.774910][ T7913] ? clear_bhb_loop+0x40/0x90 [ 233.774945][ T7913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.774974][ T7913] RIP: 0033:0x7f2c2399c799 [ 233.774998][ T7913] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 233.775031][ T7913] RSP: 002b:00007f2c2478e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 233.775058][ T7913] RAX: ffffffffffffffda RBX: 00007f2c23c15fa0 RCX: 00007f2c2399c799 [ 233.775082][ T7913] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 233.775101][ T7913] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 233.775119][ T7913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.775138][ T7913] R13: 00007f2c23c16038 R14: 00007f2c23c15fa0 R15: 00007ffd6094b908 [ 233.775182][ T7913] [ 234.152237][ T7913] ACPI Error: Could not allocate 10 bytes (20251212/nsnames-308) [ 236.008482][ T7939] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[7939] [ 236.801771][ T7960] netlink: zone id is out of range [ 236.845393][ T7960] netlink: zone id is out of range [ 236.891454][ T7960] netlink: zone id is out of range [ 236.931996][ T7960] netlink: zone id is out of range [ 236.961222][ T7960] netlink: zone id is out of range [ 236.976055][ T7960] netlink: zone id is out of range [ 237.045253][ T7960] netlink: zone id is out of range [ 237.218374][ T7960] netlink: zone id is out of range [ 237.266971][ T7960] netlink: zone id is out of range [ 237.272245][ T7960] netlink: zone id is out of range [ 237.976816][ T7984] syz.3.506 (7984): /proc/7977/oom_adj is deprecated, please use /proc/7977/oom_score_adj instead. [ 239.226976][ T8002] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8002] [ 240.351830][ T8023] netlink: 8 bytes leftover after parsing attributes in process `syz.0.520'. [ 240.944931][ T8034] FAULT_INJECTION: forcing a failure. [ 240.944931][ T8034] name failslab, interval 1, probability 0, space 0, times 0 [ 240.985323][ T8034] CPU: 0 UID: 0 PID: 8034 Comm: syz.1.522 Not tainted syzkaller #0 PREEMPT(full) [ 240.985367][ T8034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 240.985390][ T8034] Call Trace: [ 240.985401][ T8034] [ 240.985413][ T8034] dump_stack_lvl+0x100/0x190 [ 240.985469][ T8034] should_fail_ex.cold+0x5/0xa [ 240.985508][ T8034] should_failslab+0xc2/0x120 [ 240.985542][ T8034] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 240.985591][ T8034] ? acpi_ut_create_control_state+0x6a/0x100 [ 240.985663][ T8034] acpi_ut_create_control_state+0x6a/0x100 [ 240.985716][ T8034] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 240.985759][ T8034] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 240.985816][ T8034] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 240.985872][ T8034] acpi_ps_create_op+0x7bb/0xd10 [ 240.985928][ T8034] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 240.985980][ T8034] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 240.986014][ T8034] ? acpi_ut_value_exit+0x10d/0x190 [ 240.986055][ T8034] acpi_ps_parse_loop+0xa65/0x24a0 [ 240.986112][ T8034] ? __kmalloc_noprof+0x320/0x850 [ 240.986166][ T8034] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 240.986217][ T8034] ? acpi_ut_status_exit+0x111/0x1c0 [ 240.986253][ T8034] ? acpi_ds_call_control_method+0x435/0xab0 [ 240.986306][ T8034] acpi_ps_parse_aml+0x81e/0x1120 [ 240.986367][ T8034] acpi_ps_execute_method+0x5c4/0xe90 [ 240.986411][ T8034] acpi_ns_evaluate+0x640/0x1670 [ 240.986459][ T8034] acpi_evaluate_object+0x420/0xe00 [ 240.986505][ T8034] ? kasan_save_stack+0x30/0x50 [ 240.986554][ T8034] ? kasan_save_track+0x14/0x30 [ 240.986610][ T8034] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 240.986679][ T8034] acpi_evaluate_integer+0xdf/0x220 [ 240.986721][ T8034] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 240.986781][ T8034] ? __pfx_status_show+0x10/0x10 [ 240.986827][ T8034] status_show+0xa0/0x120 [ 240.986874][ T8034] ? __pfx_status_show+0x10/0x10 [ 240.986932][ T8034] dev_attr_show+0x52/0xa0 [ 240.986965][ T8034] ? __pfx_dev_attr_show+0x10/0x10 [ 240.986994][ T8034] sysfs_kf_seq_show+0x217/0x3a0 [ 240.987043][ T8034] seq_read_iter+0x32f/0x1270 [ 240.987112][ T8034] kernfs_fop_read_iter+0x46c/0x610 [ 240.987149][ T8034] ? rw_verify_area+0xce/0x6d0 [ 240.987195][ T8034] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 240.987234][ T8034] vfs_read+0x825/0xb30 [ 240.987290][ T8034] ? __pfx_vfs_read+0x10/0x10 [ 240.987368][ T8034] ksys_read+0x12a/0x250 [ 240.987419][ T8034] ? __pfx_ksys_read+0x10/0x10 [ 240.987482][ T8034] do_syscall_64+0x106/0xf80 [ 240.987522][ T8034] ? clear_bhb_loop+0x40/0x90 [ 240.987564][ T8034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.987597][ T8034] RIP: 0033:0x7f3fa8d9c799 [ 240.987632][ T8034] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 240.987664][ T8034] RSP: 002b:00007f3fa9caf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 240.987707][ T8034] RAX: ffffffffffffffda RBX: 00007f3fa9016090 RCX: 00007f3fa8d9c799 [ 240.987731][ T8034] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 240.987752][ T8034] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 240.987773][ T8034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 240.987793][ T8034] R13: 00007f3fa9016128 R14: 00007f3fa9016090 R15: 00007fff611c6518 [ 240.987839][ T8034] [ 241.096538][ T8034] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 241.526498][ T8034] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 241.869378][ T8047] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[8047] [ 243.332027][ T8070] netlink: 4 bytes leftover after parsing attributes in process `syz.1.533'. [ 243.426069][ T8070] netlink: 'syz.1.533': attribute type 3 has an invalid length. [ 243.454311][ T8070] netlink: 306 bytes leftover after parsing attributes in process `syz.1.533'. [ 243.518010][ T8073] binder: 8069:8073 ioctl c018620c 0 returned -1 [ 244.723391][ T8080] could not allocate digest TFM handle [ 245.667351][ T8098] FAULT_INJECTION: forcing a failure. [ 245.667351][ T8098] name failslab, interval 1, probability 0, space 0, times 0 [ 245.721681][ T8098] CPU: 0 UID: 0 PID: 8098 Comm: syz.1.541 Not tainted syzkaller #0 PREEMPT(full) [ 245.721737][ T8098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 245.721757][ T8098] Call Trace: [ 245.721769][ T8098] [ 245.721782][ T8098] dump_stack_lvl+0x100/0x190 [ 245.721844][ T8098] should_fail_ex.cold+0x5/0xa [ 245.721885][ T8098] should_failslab+0xc2/0x120 [ 245.721922][ T8098] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 245.721975][ T8098] ? acpi_ps_alloc_op+0x29d/0x360 [ 245.722029][ T8098] acpi_ps_alloc_op+0x29d/0x360 [ 245.722062][ T8098] ? acpi_ut_status_exit+0x111/0x1c0 [ 245.722101][ T8098] acpi_ps_create_op+0x4b3/0xd10 [ 245.722161][ T8098] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 245.722216][ T8098] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 245.722251][ T8098] ? acpi_ut_value_exit+0x10d/0x190 [ 245.722294][ T8098] acpi_ps_parse_loop+0xa65/0x24a0 [ 245.722354][ T8098] ? __kmalloc_noprof+0x320/0x850 [ 245.722412][ T8098] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 245.722467][ T8098] ? acpi_ut_status_exit+0x111/0x1c0 [ 245.722506][ T8098] ? acpi_ds_call_control_method+0x435/0xab0 [ 245.722563][ T8098] acpi_ps_parse_aml+0x81e/0x1120 [ 245.722629][ T8098] acpi_ps_execute_method+0x5c4/0xe90 [ 245.722678][ T8098] acpi_ns_evaluate+0x640/0x1670 [ 245.722741][ T8098] acpi_evaluate_object+0x420/0xe00 [ 245.722792][ T8098] ? kasan_save_stack+0x30/0x50 [ 245.722845][ T8098] ? kasan_save_track+0x14/0x30 [ 245.722906][ T8098] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 245.722972][ T8098] acpi_evaluate_integer+0xdf/0x220 [ 245.723017][ T8098] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 245.723080][ T8098] ? __pfx_status_show+0x10/0x10 [ 245.723130][ T8098] status_show+0xa0/0x120 [ 245.723179][ T8098] ? __pfx_status_show+0x10/0x10 [ 245.723241][ T8098] dev_attr_show+0x52/0xa0 [ 245.723276][ T8098] ? __pfx_dev_attr_show+0x10/0x10 [ 245.723308][ T8098] sysfs_kf_seq_show+0x217/0x3a0 [ 245.723361][ T8098] seq_read_iter+0x32f/0x1270 [ 245.723434][ T8098] kernfs_fop_read_iter+0x46c/0x610 [ 245.723473][ T8098] ? rw_verify_area+0xce/0x6d0 [ 245.723520][ T8098] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 245.723560][ T8098] vfs_read+0x825/0xb30 [ 245.723620][ T8098] ? __pfx_vfs_read+0x10/0x10 [ 245.723704][ T8098] ksys_read+0x12a/0x250 [ 245.723770][ T8098] ? __pfx_ksys_read+0x10/0x10 [ 245.723837][ T8098] do_syscall_64+0x106/0xf80 [ 245.723879][ T8098] ? clear_bhb_loop+0x40/0x90 [ 245.723923][ T8098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.723959][ T8098] RIP: 0033:0x7f3fa8d9c799 [ 245.723988][ T8098] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 245.724021][ T8098] RSP: 002b:00007f3fa9caf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 245.724054][ T8098] RAX: ffffffffffffffda RBX: 00007f3fa9016090 RCX: 00007f3fa8d9c799 [ 245.724077][ T8098] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000009 [ 245.724098][ T8098] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 245.724119][ T8098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.724139][ T8098] R13: 00007f3fa9016128 R14: 00007f3fa9016090 R15: 00007fff611c6518 [ 245.724186][ T8098] [ 245.724305][ T8098] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 246.128342][ T8103] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8103] [ 246.185889][ T8098] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 247.054453][ T8120] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 248.743542][ T8121] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8121] [ 248.772566][ T8110] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30 [ 250.394543][ T8155] misc userio: Invalid payload size [ 251.106643][ T8152] FAULT_INJECTION: forcing a failure. [ 251.106643][ T8152] name failslab, interval 1, probability 0, space 0, times 0 [ 251.119630][ T8152] CPU: 0 UID: 0 PID: 8152 Comm: syz.2.556 Not tainted syzkaller #0 PREEMPT(full) [ 251.119671][ T8152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 251.119690][ T8152] Call Trace: [ 251.119700][ T8152] [ 251.119712][ T8152] dump_stack_lvl+0x100/0x190 [ 251.119769][ T8152] should_fail_ex.cold+0x5/0xa [ 251.119807][ T8152] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 251.119850][ T8152] should_failslab+0xc2/0x120 [ 251.119884][ T8152] __kmalloc_noprof+0xe0/0x850 [ 251.119947][ T8152] acpi_ns_get_normalized_pathname+0x95/0x250 [ 251.119997][ T8152] acpi_ds_call_control_method+0x5d4/0xab0 [ 251.120054][ T8152] acpi_ps_parse_aml+0xacd/0x1120 [ 251.120120][ T8152] acpi_ps_execute_method+0x5c4/0xe90 [ 251.120164][ T8152] acpi_ns_evaluate+0x640/0x1670 [ 251.120213][ T8152] acpi_evaluate_object+0x420/0xe00 [ 251.120261][ T8152] ? kasan_save_stack+0x30/0x50 [ 251.120312][ T8152] ? kasan_save_track+0x14/0x30 [ 251.120384][ T8152] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 251.120450][ T8152] acpi_evaluate_integer+0xdf/0x220 [ 251.120492][ T8152] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 251.120552][ T8152] ? __pfx_status_show+0x10/0x10 [ 251.120599][ T8152] status_show+0xa0/0x120 [ 251.120649][ T8152] ? __pfx_status_show+0x10/0x10 [ 251.120710][ T8152] dev_attr_show+0x52/0xa0 [ 251.120744][ T8152] ? __pfx_dev_attr_show+0x10/0x10 [ 251.120777][ T8152] sysfs_kf_seq_show+0x217/0x3a0 [ 251.120826][ T8152] seq_read_iter+0x32f/0x1270 [ 251.120905][ T8152] kernfs_fop_read_iter+0x46c/0x610 [ 251.120944][ T8152] ? rw_verify_area+0xce/0x6d0 [ 251.120995][ T8152] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 251.121036][ T8152] vfs_read+0x825/0xb30 [ 251.121095][ T8152] ? __pfx_vfs_read+0x10/0x10 [ 251.121175][ T8152] ksys_read+0x12a/0x250 [ 251.121228][ T8152] ? __pfx_ksys_read+0x10/0x10 [ 251.121295][ T8152] do_syscall_64+0x106/0xf80 [ 251.121336][ T8152] ? clear_bhb_loop+0x40/0x90 [ 251.121389][ T8152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.121425][ T8152] RIP: 0033:0x7f2c2399c799 [ 251.121455][ T8152] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 251.121488][ T8152] RSP: 002b:00007f2c2478e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 251.121520][ T8152] RAX: ffffffffffffffda RBX: 00007f2c23c15fa0 RCX: 00007f2c2399c799 [ 251.121542][ T8152] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 251.121564][ T8152] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 251.121584][ T8152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 251.121604][ T8152] R13: 00007f2c23c16038 R14: 00007f2c23c15fa0 R15: 00007ffd6094b908 [ 251.121651][ T8152] [ 251.121668][ T8152] ACPI Error: Could not allocate 10 bytes (20251212/nsnames-308) [ 254.814688][ T8214] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8214] [ 255.950970][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.957881][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.946492][ T8260] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 256.969338][ T8260] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 257.042954][ T8260] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 257.080222][ T8266] binder: 8256:8266 ioctl c0e85667 38 returned -22 [ 257.201543][ T8260] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 258.980448][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 259.047550][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 259.053664][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 259.202130][ T8245] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 259.211950][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 259.713465][ T8291] netlink: 25 bytes leftover after parsing attributes in process `syz.1.584'. [ 260.345861][ C1] sd 0:0:1:0: [sda] tag#1780 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 260.356358][ C1] sd 0:0:1:0: [sda] tag#1780 CDB: Read(6) 08 00 00 00 09 00 00 00 00 00 00 00 [ 261.507162][ T8323] netlink: 25 bytes leftover after parsing attributes in process `syz.2.595'. [ 262.508974][ T8341] misc userio: Invalid payload size [ 263.134772][ T8347] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[8347] [ 266.294633][ T8383] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8383] [ 270.326469][ T8421] FAULT_INJECTION: forcing a failure. [ 270.326469][ T8421] name failslab, interval 1, probability 0, space 0, times 0 [ 270.405351][ T8421] CPU: 0 UID: 0 PID: 8421 Comm: syz.1.619 Not tainted syzkaller #0 PREEMPT(full) [ 270.405384][ T8421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 270.405399][ T8421] Call Trace: [ 270.405407][ T8421] [ 270.405416][ T8421] dump_stack_lvl+0x100/0x190 [ 270.405458][ T8421] should_fail_ex.cold+0x5/0xa [ 270.405486][ T8421] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 270.405517][ T8421] should_failslab+0xc2/0x120 [ 270.405543][ T8421] __kmalloc_noprof+0xe0/0x850 [ 270.405587][ T8421] acpi_ns_get_normalized_pathname+0x95/0x250 [ 270.405621][ T8421] acpi_ds_call_control_method+0x5d4/0xab0 [ 270.405662][ T8421] acpi_ps_parse_aml+0xacd/0x1120 [ 270.405708][ T8421] acpi_ps_execute_method+0x5c4/0xe90 [ 270.405741][ T8421] acpi_ns_evaluate+0x640/0x1670 [ 270.405776][ T8421] acpi_evaluate_object+0x420/0xe00 [ 270.405820][ T8421] ? kasan_save_stack+0x30/0x50 [ 270.405858][ T8421] ? kasan_save_track+0x14/0x30 [ 270.405901][ T8421] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 270.405949][ T8421] acpi_evaluate_integer+0xdf/0x220 [ 270.405981][ T8421] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 270.406025][ T8421] ? __pfx_status_show+0x10/0x10 [ 270.406061][ T8421] status_show+0xa0/0x120 [ 270.406096][ T8421] ? __pfx_status_show+0x10/0x10 [ 270.406140][ T8421] dev_attr_show+0x52/0xa0 [ 270.406165][ T8421] ? __pfx_dev_attr_show+0x10/0x10 [ 270.406188][ T8421] sysfs_kf_seq_show+0x217/0x3a0 [ 270.406225][ T8421] seq_read_iter+0x32f/0x1270 [ 270.406276][ T8421] kernfs_fop_read_iter+0x46c/0x610 [ 270.406303][ T8421] ? rw_verify_area+0xce/0x6d0 [ 270.406338][ T8421] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 270.406368][ T8421] vfs_read+0x825/0xb30 [ 270.406415][ T8421] ? __pfx_vfs_read+0x10/0x10 [ 270.406474][ T8421] ksys_read+0x12a/0x250 [ 270.406512][ T8421] ? __pfx_ksys_read+0x10/0x10 [ 270.406560][ T8421] do_syscall_64+0x106/0xf80 [ 270.406589][ T8421] ? clear_bhb_loop+0x40/0x90 [ 270.406619][ T8421] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.406645][ T8421] RIP: 0033:0x7f3fa8d9c799 [ 270.406665][ T8421] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 270.406688][ T8421] RSP: 002b:00007f3fa9caf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 270.406710][ T8421] RAX: ffffffffffffffda RBX: 00007f3fa9016090 RCX: 00007f3fa8d9c799 [ 270.406726][ T8421] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 270.406741][ T8421] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 270.406756][ T8421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.406770][ T8421] R13: 00007f3fa9016128 R14: 00007f3fa9016090 R15: 00007fff611c6518 [ 270.406812][ T8421] [ 270.407979][ T8421] ACPI Error: Could not allocate 10 bytes (20251212/nsnames-308) [ 274.316382][ T8466] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 276.013275][ T8474] FAULT_INJECTION: forcing a failure. [ 276.013275][ T8474] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 276.031464][ T8474] CPU: 1 UID: 0 PID: 8474 Comm: syz.1.629 Not tainted syzkaller #0 PREEMPT(full) [ 276.031507][ T8474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 276.031527][ T8474] Call Trace: [ 276.031538][ T8474] [ 276.031550][ T8474] dump_stack_lvl+0x100/0x190 [ 276.031609][ T8474] should_fail_ex.cold+0x5/0xa [ 276.031649][ T8474] _copy_from_user+0x2e/0xd0 [ 276.031684][ T8474] snd_pcm_oss_write2+0x1c2/0x400 [ 276.031744][ T8474] ? __pfx_snd_pcm_oss_write2+0x10/0x10 [ 276.031813][ T8474] snd_pcm_oss_write+0x729/0xa30 [ 276.031849][ T8474] ? security_file_permission+0x76/0x210 [ 276.031895][ T8474] vfs_write+0x2aa/0x1070 [ 276.031957][ T8474] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 276.031995][ T8474] ? __pfx_vfs_write+0x10/0x10 [ 276.032047][ T8474] ? find_held_lock+0x2b/0x80 [ 276.032078][ T8474] ? __fget_files+0x215/0x3d0 [ 276.032109][ T8474] ? __fget_files+0x215/0x3d0 [ 276.032149][ T8474] ? __fget_files+0x21f/0x3d0 [ 276.032193][ T8474] ksys_write+0x12a/0x250 [ 276.032225][ T8474] ? __pfx_ksys_write+0x10/0x10 [ 276.032270][ T8474] do_syscall_64+0x106/0xf80 [ 276.032312][ T8474] ? clear_bhb_loop+0x40/0x90 [ 276.032365][ T8474] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.032402][ T8474] RIP: 0033:0x7f3fa8d9c799 [ 276.032431][ T8474] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 276.032463][ T8474] RSP: 002b:00007f3fa9c6d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 276.032495][ T8474] RAX: ffffffffffffffda RBX: 00007f3fa9016270 RCX: 00007f3fa8d9c799 [ 276.032519][ T8474] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 276.032539][ T8474] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 276.032560][ T8474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.032581][ T8474] R13: 00007f3fa9016308 R14: 00007f3fa9016270 R15: 00007fff611c6518 [ 276.032626][ T8474] [ 276.942303][ T8477] netlink: 1 bytes leftover after parsing attributes in process `syz.0.630'. [ 276.952322][ T8477] net_ratelimit: 47 callbacks suppressed [ 276.952345][ T8477] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 278.166742][ T8492] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8492] [ 281.322750][ T8541] FAULT_INJECTION: forcing a failure. [ 281.322750][ T8541] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 281.341359][ T8542] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8542] [ 281.376997][ T8537] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[8537] [ 281.455244][ T8541] CPU: 0 UID: 0 PID: 8541 Comm: syz.3.646 Not tainted syzkaller #0 PREEMPT(full) [ 281.455275][ T8541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 281.455289][ T8541] Call Trace: [ 281.455297][ T8541] [ 281.455305][ T8541] dump_stack_lvl+0x100/0x190 [ 281.455346][ T8541] should_fail_ex.cold+0x5/0xa [ 281.455373][ T8541] _copy_from_user+0x2e/0xd0 [ 281.455396][ T8541] copy_msghdr_from_user+0x9f/0x4f0 [ 281.455435][ T8541] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 281.455488][ T8541] ___sys_sendmsg+0x106/0x1e0 [ 281.455526][ T8541] ? __pfx____sys_sendmsg+0x10/0x10 [ 281.455595][ T8541] __sys_sendmsg+0x170/0x220 [ 281.455624][ T8541] ? __pfx___sys_sendmsg+0x10/0x10 [ 281.455669][ T8541] do_syscall_64+0x106/0xf80 [ 281.455696][ T8541] ? clear_bhb_loop+0x40/0x90 [ 281.455724][ T8541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.455748][ T8541] RIP: 0033:0x7f5aeed9c799 [ 281.455767][ T8541] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 281.455788][ T8541] RSP: 002b:00007f5aefbe6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 281.455810][ T8541] RAX: ffffffffffffffda RBX: 00007f5aef015fa0 RCX: 00007f5aeed9c799 [ 281.455824][ T8541] RDX: 0000000024000840 RSI: 0000200000001840 RDI: 0000000000000003 [ 281.455838][ T8541] RBP: 00007f5aefbe6090 R08: 0000000000000000 R09: 0000000000000000 [ 281.455852][ T8541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 281.455865][ T8541] R13: 00007f5aef016038 R14: 00007f5aef015fa0 R15: 00007fffb2e56218 [ 281.455894][ T8541] [ 281.910518][ T8551] FAULT_INJECTION: forcing a failure. [ 281.910518][ T8551] name failslab, interval 1, probability 0, space 0, times 0 [ 281.924238][ T8551] CPU: 0 UID: 0 PID: 8551 Comm: syz.3.650 Not tainted syzkaller #0 PREEMPT(full) [ 281.924281][ T8551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 281.924302][ T8551] Call Trace: [ 281.924312][ T8551] [ 281.924325][ T8551] dump_stack_lvl+0x100/0x190 [ 281.924380][ T8551] should_fail_ex.cold+0x5/0xa [ 281.924419][ T8551] should_failslab+0xc2/0x120 [ 281.924454][ T8551] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 281.924505][ T8551] ? __d_alloc+0x34/0xa80 [ 281.924551][ T8551] __d_alloc+0x34/0xa80 [ 281.924593][ T8551] d_alloc_pseudo+0x1c/0xc0 [ 281.924641][ T8551] alloc_file_pseudo+0xcf/0x230 [ 281.924686][ T8551] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 281.924742][ T8551] __shmem_file_setup+0x221/0x490 [ 281.924789][ T8551] ? __pfx___shmem_file_setup+0x10/0x10 [ 281.924842][ T8551] ? vm_area_alloc+0x1f/0x160 [ 281.924891][ T8551] shmem_zero_setup+0x96/0x1b0 [ 281.924957][ T8551] __mmap_region+0x2198/0x29e0 [ 281.925014][ T8551] ? __pfx___mmap_region+0x10/0x10 [ 281.925059][ T8551] ? process_measurement+0x1f4/0x2350 [ 281.925107][ T8551] ? css_rstat_updated+0x1ce/0x5a0 [ 281.925145][ T8551] ? __pfx_css_rstat_updated+0x10/0x10 [ 281.925194][ T8551] ? __lock_acquire+0x4a5/0x2630 [ 281.925257][ T8551] ? find_held_lock+0x2b/0x80 [ 281.925286][ T8551] ? finish_task_switch.isra.0+0x200/0xb80 [ 281.925322][ T8551] ? finish_task_switch.isra.0+0x200/0xb80 [ 281.925373][ T8551] ? trace_sched_exit_tp+0x13a/0x180 [ 281.925413][ T8551] ? __schedule+0x1000/0x6120 [ 281.925501][ T8551] ? rcu_is_watching+0x12/0xc0 [ 281.925551][ T8551] ? cap_capable+0x107/0x460 [ 281.925607][ T8551] mmap_region+0x180/0x3e0 [ 281.925664][ T8551] do_mmap+0xc63/0x12f0 [ 281.925711][ T8551] ? __pfx_do_mmap+0x10/0x10 [ 281.925746][ T8551] ? __pfx_down_write_killable+0x10/0x10 [ 281.925804][ T8551] vm_mmap_pgoff+0x29e/0x470 [ 281.925848][ T8551] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 281.925890][ T8551] ? do_futex+0x192/0x350 [ 281.925946][ T8551] ? __pfx_do_futex+0x10/0x10 [ 281.925997][ T8551] ksys_mmap_pgoff+0xe1/0x650 [ 281.926032][ T8551] ? __x64_sys_futex+0x34f/0x4d0 [ 281.926066][ T8551] ? __x64_sys_futex+0x358/0x4d0 [ 281.926102][ T8551] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 281.926132][ T8551] ? xfd_validate_state+0x129/0x190 [ 281.926179][ T8551] __x64_sys_mmap+0x125/0x190 [ 281.926225][ T8551] do_syscall_64+0x106/0xf80 [ 281.926257][ T8551] ? clear_bhb_loop+0x40/0x90 [ 281.926292][ T8551] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 281.926321][ T8551] RIP: 0033:0x7f5aeed9c799 [ 281.926345][ T8551] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 281.926374][ T8551] RSP: 002b:00007f5aefbe6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 281.926400][ T8551] RAX: ffffffffffffffda RBX: 00007f5aef015fa0 RCX: 00007f5aeed9c799 [ 281.926418][ T8551] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 281.926435][ T8551] RBP: 00007f5aeee32bd9 R08: fffffffffffffffa R09: 0000000000008000 [ 281.926453][ T8551] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 281.926469][ T8551] R13: 00007f5aef016038 R14: 00007f5aef015fa0 R15: 00007fffb2e56218 [ 281.926506][ T8551] [ 282.869528][ T8553] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 283.821449][ T8556] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 283.862980][ T8566] netlink: 25 bytes leftover after parsing attributes in process `syz.1.653'. [ 284.990204][ T8576] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8576] [ 285.004162][ T8587] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[8587] [ 285.522962][ T8597] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[8597] [ 285.582601][ T8598] Invalid ELF header magic: != ELF [ 287.109381][ T8620] FAULT_INJECTION: forcing a failure. [ 287.109381][ T8620] name failslab, interval 1, probability 0, space 0, times 0 [ 287.225142][ T8620] CPU: 1 UID: 0 PID: 8620 Comm: syz.2.668 Not tainted syzkaller #0 PREEMPT(full) [ 287.225182][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 287.225201][ T8620] Call Trace: [ 287.225211][ T8620] [ 287.225222][ T8620] dump_stack_lvl+0x100/0x190 [ 287.225274][ T8620] should_fail_ex.cold+0x5/0xa [ 287.225312][ T8620] should_failslab+0xc2/0x120 [ 287.225346][ T8620] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 287.225394][ T8620] ? ptlock_alloc+0x1f/0x70 [ 287.225453][ T8620] ptlock_alloc+0x1f/0x70 [ 287.225496][ T8620] pte_alloc_one+0x84/0x3e0 [ 287.225531][ T8620] do_fault+0x8cc/0x1950 [ 287.225566][ T8620] ? __pmd_alloc+0x6aa/0x9c0 [ 287.225612][ T8620] __handle_mm_fault+0x180f/0x2b60 [ 287.225669][ T8620] ? mt_find+0x45e/0x8e0 [ 287.225719][ T8620] ? __pfx___handle_mm_fault+0x10/0x10 [ 287.225760][ T8620] ? __pfx_mt_find+0x10/0x10 [ 287.225826][ T8620] ? find_vma+0xbf/0x140 [ 287.225854][ T8620] ? __pfx_find_vma+0x10/0x10 [ 287.225890][ T8620] handle_mm_fault+0x36d/0xa20 [ 287.225943][ T8620] do_user_addr_fault+0x74c/0x12f0 [ 287.226007][ T8620] exc_page_fault+0x6f/0xd0 [ 287.226045][ T8620] asm_exc_page_fault+0x26/0x30 [ 287.226077][ T8620] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 287.226128][ T8620] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 287.226158][ T8620] RSP: 0018:ffffc9000425f7b8 EFLAGS: 00050206 [ 287.226184][ T8620] RAX: 0000000000000001 RBX: ffff888036ed4d00 RCX: 00000000000000c4 [ 287.226204][ T8620] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff888036ed4d00 [ 287.226222][ T8620] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1006dda9b8 [ 287.226240][ T8620] R10: ffff888036ed4dc3 R11: 0000000000000000 R12: ffffc9000425fd40 [ 287.226259][ T8620] R13: 0000000000000000 R14: 00000000000000c4 R15: 0000000000000000 [ 287.226298][ T8620] _copy_from_iter+0x355/0x1690 [ 287.226336][ T8620] ? __asan_memset+0x23/0x50 [ 287.226381][ T8620] ? __pfx__copy_from_iter+0x10/0x10 [ 287.226413][ T8620] ? __pfx___alloc_skb+0x10/0x10 [ 287.226475][ T8620] netlink_sendmsg+0x808/0xda0 [ 287.226528][ T8620] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.226568][ T8620] ? __import_iovec+0x1d2/0x640 [ 287.226605][ T8620] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 287.226659][ T8620] ____sys_sendmsg+0x9e1/0xb70 [ 287.226706][ T8620] ? __pfx_netlink_sendmsg+0x10/0x10 [ 287.226754][ T8620] ? __pfx_____sys_sendmsg+0x10/0x10 [ 287.226810][ T8620] ? __pfx__kstrtoull+0x10/0x10 [ 287.226860][ T8620] ___sys_sendmsg+0x190/0x1e0 [ 287.226915][ T8620] ? __pfx____sys_sendmsg+0x10/0x10 [ 287.226987][ T8620] ? find_held_lock+0x2b/0x80 [ 287.227046][ T8620] __sys_sendmmsg+0x205/0x430 [ 287.227091][ T8620] ? __pfx___sys_sendmmsg+0x10/0x10 [ 287.227145][ T8620] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 287.227204][ T8620] ? fput+0x79/0x100 [ 287.227239][ T8620] ? ksys_write+0x1ac/0x250 [ 287.227268][ T8620] ? __pfx_ksys_write+0x10/0x10 [ 287.227305][ T8620] __x64_sys_sendmmsg+0x9c/0x100 [ 287.227344][ T8620] ? lockdep_hardirqs_on+0x78/0x100 [ 287.227382][ T8620] do_syscall_64+0x106/0xf80 [ 287.227419][ T8620] ? clear_bhb_loop+0x40/0x90 [ 287.227468][ T8620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.227501][ T8620] RIP: 0033:0x7f2c2399c799 [ 287.227526][ T8620] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 287.227555][ T8620] RSP: 002b:00007f2c2478e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 287.227583][ T8620] RAX: ffffffffffffffda RBX: 00007f2c23c15fa0 RCX: 00007f2c2399c799 [ 287.227603][ T8620] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 287.227620][ T8620] RBP: 00007f2c2478e090 R08: 0000000000000000 R09: 0000000000000000 [ 287.227638][ T8620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 287.227656][ T8620] R13: 00007f2c23c16038 R14: 00007f2c23c15fa0 R15: 00007ffd6094b908 [ 287.227696][ T8620] [ 290.241119][ T29] audit: type=1800 audit(1772766630.369:2): pid=8669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.680" name="discovery_nqn" dev="configfs" ino=21790 res=0 errno=0 [ 291.797477][ T8682] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 293.336431][ T8694] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8694] [ 293.462753][ T8689] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 294.940165][ T8721] netlink: 8 bytes leftover after parsing attributes in process `syz.1.693'. [ 296.646701][ T8743] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8743] [ 298.283580][ T5890] Process accounting resumed [ 301.130045][ T8801] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8801] [ 302.693059][ T8813] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8813] [ 303.061927][ T8824] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[8824] [ 305.668523][ T8854] FAULT_INJECTION: forcing a failure. [ 305.668523][ T8854] name failslab, interval 1, probability 0, space 0, times 0 [ 305.735644][ T8854] CPU: 0 UID: 0 PID: 8854 Comm: syz.2.723 Not tainted syzkaller #0 PREEMPT(full) [ 305.735691][ T8854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 305.735707][ T8854] Call Trace: [ 305.735715][ T8854] [ 305.735725][ T8854] dump_stack_lvl+0x100/0x190 [ 305.735767][ T8854] should_fail_ex.cold+0x5/0xa [ 305.735796][ T8854] should_failslab+0xc2/0x120 [ 305.735822][ T8854] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 305.735861][ T8854] ? __d_alloc+0x34/0xa80 [ 305.735895][ T8854] __d_alloc+0x34/0xa80 [ 305.735925][ T8854] d_alloc_pseudo+0x1c/0xc0 [ 305.735960][ T8854] alloc_file_pseudo+0xcf/0x230 [ 305.736001][ T8854] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 305.736042][ T8854] __shmem_file_setup+0x221/0x490 [ 305.736077][ T8854] ? __pfx___shmem_file_setup+0x10/0x10 [ 305.736117][ T8854] ? vm_area_alloc+0x1f/0x160 [ 305.736154][ T8854] shmem_zero_setup+0x96/0x1b0 [ 305.736195][ T8854] __mmap_region+0x2198/0x29e0 [ 305.736236][ T8854] ? __pfx___mmap_region+0x10/0x10 [ 305.736280][ T8854] ? css_rstat_updated+0x1ce/0x5a0 [ 305.736309][ T8854] ? __pfx_css_rstat_updated+0x10/0x10 [ 305.736347][ T8854] ? __lock_acquire+0x4a5/0x2630 [ 305.736393][ T8854] ? find_held_lock+0x2b/0x80 [ 305.736414][ T8854] ? finish_task_switch.isra.0+0x200/0xb80 [ 305.736440][ T8854] ? finish_task_switch.isra.0+0x200/0xb80 [ 305.736478][ T8854] ? trace_sched_exit_tp+0x13a/0x180 [ 305.736510][ T8854] ? __schedule+0x1000/0x6120 [ 305.736573][ T8854] ? rcu_is_watching+0x12/0xc0 [ 305.736610][ T8854] ? cap_capable+0x107/0x460 [ 305.736650][ T8854] mmap_region+0x180/0x3e0 [ 305.736693][ T8854] do_mmap+0xc63/0x12f0 [ 305.736725][ T8854] ? __pfx_do_mmap+0x10/0x10 [ 305.736752][ T8854] ? __pfx_down_write_killable+0x10/0x10 [ 305.736793][ T8854] vm_mmap_pgoff+0x29e/0x470 [ 305.736826][ T8854] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 305.736855][ T8854] ? do_futex+0x192/0x350 [ 305.736887][ T8854] ? __pfx_do_futex+0x10/0x10 [ 305.736924][ T8854] ksys_mmap_pgoff+0xe1/0x650 [ 305.736951][ T8854] ? __x64_sys_futex+0x34f/0x4d0 [ 305.736981][ T8854] ? __x64_sys_futex+0x358/0x4d0 [ 305.737020][ T8854] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 305.737046][ T8854] ? xfd_validate_state+0x129/0x190 [ 305.737088][ T8854] __x64_sys_mmap+0x125/0x190 [ 305.737129][ T8854] do_syscall_64+0x106/0xf80 [ 305.737158][ T8854] ? clear_bhb_loop+0x40/0x90 [ 305.737188][ T8854] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.737213][ T8854] RIP: 0033:0x7f2c2399c799 [ 305.737233][ T8854] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 305.737258][ T8854] RSP: 002b:00007f2c2478e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 305.737281][ T8854] RAX: ffffffffffffffda RBX: 00007f2c23c15fa0 RCX: 00007f2c2399c799 [ 305.737298][ T8854] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 305.737313][ T8854] RBP: 00007f2c23a32bd9 R08: fffffffffffffffa R09: 0000000000008000 [ 305.737329][ T8854] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 305.737344][ T8854] R13: 00007f2c23c16038 R14: 00007f2c23c15fa0 R15: 00007ffd6094b908 [ 305.737376][ T8854] [ 306.707246][ T8857] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[8857] [ 306.725628][ T8841] zswap: compressor not available [ 306.758794][ T8863] block2mtd: Using custom MTD label '' for dev [ 306.825213][ T8863] block2mtd: error: cannot open device [ 312.506403][ T8938] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37 [ 312.910851][ T8942] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 314.490745][ T8971] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[8971] [ 315.232998][ T8985] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[8985] [ 317.473202][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.484412][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.824763][ T9024] FAULT_INJECTION: forcing a failure. [ 317.824763][ T9024] name failslab, interval 1, probability 0, space 0, times 0 [ 317.860799][ T9024] CPU: 0 UID: 0 PID: 9024 Comm: syz.1.764 Not tainted syzkaller #0 PREEMPT(full) [ 317.860843][ T9024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 317.860865][ T9024] Call Trace: [ 317.860876][ T9024] [ 317.860888][ T9024] dump_stack_lvl+0x100/0x190 [ 317.860948][ T9024] should_fail_ex.cold+0x5/0xa [ 317.860988][ T9024] should_failslab+0xc2/0x120 [ 317.861025][ T9024] __kmalloc_cache_noprof+0x7a/0x6f0 [ 317.861073][ T9024] ? __alloc_workqueue+0x1a0/0x1880 [ 317.861140][ T9024] __alloc_workqueue+0x1a0/0x1880 [ 317.861182][ T9024] ? __pfx_vsnprintf+0x10/0x10 [ 317.861219][ T9024] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 317.861259][ T9024] ? lockdep_hardirqs_on+0x78/0x100 [ 317.861301][ T9024] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 317.861343][ T9024] alloc_workqueue_noprof+0xd2/0x200 [ 317.861385][ T9024] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 317.861437][ T9024] ? __pfx___debug_object_init+0x10/0x10 [ 317.861500][ T9024] nci_register_device+0x21e/0xb80 [ 317.861558][ T9024] ? __pfx_nci_register_device+0x10/0x10 [ 317.861624][ T9024] ? lockdep_init_map_type+0x5c/0x250 [ 317.861696][ T9024] virtual_ncidev_open+0x141/0x220 [ 317.861739][ T9024] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 317.861777][ T9024] misc_open+0x26d/0x450 [ 317.861810][ T9024] ? __pfx_misc_open+0x10/0x10 [ 317.861845][ T9024] chrdev_open+0x234/0x6a0 [ 317.861879][ T9024] ? __pfx_apparmor_file_open+0x10/0x10 [ 317.861933][ T9024] ? __pfx_chrdev_open+0x10/0x10 [ 317.861971][ T9024] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 317.862015][ T9024] do_dentry_open+0x6d8/0x1660 [ 317.862048][ T9024] ? __pfx_chrdev_open+0x10/0x10 [ 317.862094][ T9024] vfs_open+0x82/0x3f0 [ 317.862152][ T9024] path_openat+0x208c/0x31a0 [ 317.862202][ T9024] ? __pfx_path_openat+0x10/0x10 [ 317.862252][ T9024] do_file_open+0x20e/0x430 [ 317.862291][ T9024] ? __pfx_do_file_open+0x10/0x10 [ 317.862360][ T9024] ? alloc_fd+0x476/0x790 [ 317.862398][ T9024] ? do_getname+0x191/0x390 [ 317.862445][ T9024] do_sys_openat2+0x10d/0x1e0 [ 317.862498][ T9024] ? __pfx_do_sys_openat2+0x10/0x10 [ 317.862560][ T9024] __x64_sys_openat+0x12d/0x210 [ 317.862610][ T9024] ? __pfx___x64_sys_openat+0x10/0x10 [ 317.862679][ T9024] do_syscall_64+0x106/0xf80 [ 317.862720][ T9024] ? clear_bhb_loop+0x40/0x90 [ 317.862764][ T9024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.862798][ T9024] RIP: 0033:0x7f3fa8d9c799 [ 317.862827][ T9024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 317.862862][ T9024] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 317.862895][ T9024] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 317.862917][ T9024] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 317.862939][ T9024] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 317.862960][ T9024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 317.862981][ T9024] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 317.863026][ T9024] [ 318.835218][ T9042] ima: policy update failed [ 318.868909][ T29] audit: type=1807 audit(1772767681.963:3): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 318.893381][ T29] audit: type=1802 audit(1772767681.963:4): pid=9042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.768" res=0 errno=0 [ 318.953437][ T9043] netlink: set zone limit has 8 unknown bytes [ 318.962418][ T29] audit: type=1802 audit(1772767681.973:5): pid=9042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.768" res=0 errno=0 [ 318.995239][ T9046] netlink: set zone limit has 8 unknown bytes [ 321.202506][ T9070] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[9070] [ 322.762252][ T9102] FAULT_INJECTION: forcing a failure. [ 322.762252][ T9102] name failslab, interval 1, probability 0, space 0, times 0 [ 322.795344][ T9102] CPU: 1 UID: 0 PID: 9102 Comm: syz.1.785 Not tainted syzkaller #0 PREEMPT(full) [ 322.795384][ T9102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 322.795399][ T9102] Call Trace: [ 322.795407][ T9102] [ 322.795417][ T9102] dump_stack_lvl+0x100/0x190 [ 322.795460][ T9102] should_fail_ex.cold+0x5/0xa [ 322.795489][ T9102] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 322.795521][ T9102] should_failslab+0xc2/0x120 [ 322.795546][ T9102] __kmalloc_noprof+0xe0/0x850 [ 322.795590][ T9102] acpi_ns_get_normalized_pathname+0x95/0x250 [ 322.795625][ T9102] acpi_ds_call_control_method+0x5d4/0xab0 [ 322.795665][ T9102] acpi_ps_parse_aml+0xacd/0x1120 [ 322.795712][ T9102] acpi_ps_execute_method+0x5c4/0xe90 [ 322.795745][ T9102] acpi_ns_evaluate+0x640/0x1670 [ 322.795779][ T9102] acpi_evaluate_object+0x420/0xe00 [ 322.795815][ T9102] ? kasan_save_stack+0x30/0x50 [ 322.795853][ T9102] ? kasan_save_track+0x14/0x30 [ 322.795904][ T9102] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 322.795951][ T9102] acpi_evaluate_integer+0xdf/0x220 [ 322.795984][ T9102] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 322.796028][ T9102] ? __pfx_status_show+0x10/0x10 [ 322.796064][ T9102] status_show+0xa0/0x120 [ 322.796100][ T9102] ? __pfx_status_show+0x10/0x10 [ 322.796143][ T9102] dev_attr_show+0x52/0xa0 [ 322.796168][ T9102] ? __pfx_dev_attr_show+0x10/0x10 [ 322.796190][ T9102] sysfs_kf_seq_show+0x217/0x3a0 [ 322.796227][ T9102] seq_read_iter+0x32f/0x1270 [ 322.796278][ T9102] kernfs_fop_read_iter+0x46c/0x610 [ 322.796306][ T9102] ? rw_verify_area+0xce/0x6d0 [ 322.796341][ T9102] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 322.796374][ T9102] vfs_read+0x825/0xb30 [ 322.796417][ T9102] ? __pfx_vfs_read+0x10/0x10 [ 322.796475][ T9102] ksys_read+0x12a/0x250 [ 322.796513][ T9102] ? __pfx_ksys_read+0x10/0x10 [ 322.796561][ T9102] do_syscall_64+0x106/0xf80 [ 322.796591][ T9102] ? clear_bhb_loop+0x40/0x90 [ 322.796622][ T9102] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.796648][ T9102] RIP: 0033:0x7f3fa8d9c799 [ 322.796668][ T9102] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 322.796692][ T9102] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 322.796716][ T9102] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 322.796732][ T9102] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 322.796748][ T9102] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 322.796763][ T9102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.796778][ T9102] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 322.796810][ T9102] [ 322.796822][ T9102] ACPI Error: Could not allocate 10 bytes (20251212/nsnames-308) [ 324.264058][ T9123] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[9123] [ 324.472301][ T9145] netlink: 'syz.2.799': attribute type 19 has an invalid length. [ 324.484945][ T9145] netlink: 334 bytes leftover after parsing attributes in process `syz.2.799'. [ 325.155658][ T9153] zswap: compressor not available [ 325.205928][ T9166] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[9166] [ 326.289303][ T9177] FAULT_INJECTION: forcing a failure. [ 326.289303][ T9177] name failslab, interval 1, probability 0, space 0, times 0 [ 326.306151][ T9177] CPU: 0 UID: 0 PID: 9177 Comm: syz.2.807 Not tainted syzkaller #0 PREEMPT(full) [ 326.306197][ T9177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 326.306217][ T9177] Call Trace: [ 326.306228][ T9177] [ 326.306241][ T9177] dump_stack_lvl+0x100/0x190 [ 326.306300][ T9177] should_fail_ex.cold+0x5/0xa [ 326.306342][ T9177] should_failslab+0xc2/0x120 [ 326.306379][ T9177] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 326.306431][ T9177] ? acpi_ut_create_generic_state+0x61/0xc0 [ 326.306499][ T9177] acpi_ut_create_generic_state+0x61/0xc0 [ 326.306554][ T9177] acpi_ps_push_scope+0x42/0x280 [ 326.306601][ T9177] acpi_ps_parse_loop+0x334/0x24a0 [ 326.306663][ T9177] ? __kmalloc_noprof+0x2f7/0x850 [ 326.306720][ T9177] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 326.306775][ T9177] ? acpi_ut_status_exit+0x111/0x1c0 [ 326.306814][ T9177] ? acpi_ds_call_control_method+0x435/0xab0 [ 326.306867][ T9177] acpi_ps_parse_aml+0x81e/0x1120 [ 326.306930][ T9177] acpi_ps_execute_method+0x5c4/0xe90 [ 326.306975][ T9177] acpi_ns_evaluate+0x640/0x1670 [ 326.307024][ T9177] acpi_evaluate_object+0x420/0xe00 [ 326.307073][ T9177] ? kasan_save_stack+0x30/0x50 [ 326.307125][ T9177] ? kasan_save_track+0x14/0x30 [ 326.307184][ T9177] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 326.307248][ T9177] acpi_evaluate_integer+0xdf/0x220 [ 326.307291][ T9177] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 326.307374][ T9177] ? __pfx_status_show+0x10/0x10 [ 326.307424][ T9177] status_show+0xa0/0x120 [ 326.307473][ T9177] ? __pfx_status_show+0x10/0x10 [ 326.307533][ T9177] dev_attr_show+0x52/0xa0 [ 326.307575][ T9177] ? __pfx_dev_attr_show+0x10/0x10 [ 326.307606][ T9177] sysfs_kf_seq_show+0x217/0x3a0 [ 326.307658][ T9177] seq_read_iter+0x32f/0x1270 [ 326.307729][ T9177] kernfs_fop_read_iter+0x46c/0x610 [ 326.307768][ T9177] ? rw_verify_area+0xce/0x6d0 [ 326.307817][ T9177] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 326.307858][ T9177] vfs_read+0x825/0xb30 [ 326.307916][ T9177] ? __pfx_vfs_read+0x10/0x10 [ 326.307998][ T9177] ksys_read+0x12a/0x250 [ 326.308050][ T9177] ? __pfx_ksys_read+0x10/0x10 [ 326.308116][ T9177] do_syscall_64+0x106/0xf80 [ 326.308157][ T9177] ? clear_bhb_loop+0x40/0x90 [ 326.308201][ T9177] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.308236][ T9177] RIP: 0033:0x7f2c2399c799 [ 326.308266][ T9177] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 326.308300][ T9177] RSP: 002b:00007f2c2478e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 326.308332][ T9177] RAX: ffffffffffffffda RBX: 00007f2c23c15fa0 RCX: 00007f2c2399c799 [ 326.308355][ T9177] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 326.308377][ T9177] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 326.308398][ T9177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.308417][ T9177] R13: 00007f2c23c16038 R14: 00007f2c23c15fa0 R15: 00007ffd6094b908 [ 326.308468][ T9177] [ 326.711186][ T9177] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 326.762933][ T9177] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 327.767624][ T9200] netlink: 28 bytes leftover after parsing attributes in process `syz.0.811'. [ 329.059636][ T9219] FAULT_INJECTION: forcing a failure. [ 329.059636][ T9219] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 329.083067][ T9219] CPU: 0 UID: 0 PID: 9219 Comm: syz.1.817 Not tainted syzkaller #0 PREEMPT(full) [ 329.083110][ T9219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 329.083130][ T9219] Call Trace: [ 329.083140][ T9219] [ 329.083154][ T9219] dump_stack_lvl+0x100/0x190 [ 329.083219][ T9219] should_fail_ex.cold+0x5/0xa [ 329.083250][ T9219] ? prepare_alloc_pages+0x16d/0x5f0 [ 329.083291][ T9219] should_fail_alloc_page+0xeb/0x140 [ 329.083333][ T9219] prepare_alloc_pages+0x1f0/0x5f0 [ 329.083377][ T9219] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 329.083444][ T9219] ? __lock_acquire+0x4a5/0x2630 [ 329.083492][ T9219] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 329.083568][ T9219] ? find_held_lock+0x2b/0x80 [ 329.083598][ T9219] ? is_bpf_text_address+0x8a/0x1a0 [ 329.083648][ T9219] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 329.083704][ T9219] ? policy_nodemask+0xed/0x4f0 [ 329.083743][ T9219] alloc_pages_mpol+0x1fb/0x550 [ 329.083780][ T9219] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 329.083826][ T9219] folio_alloc_mpol_noprof+0x36/0x340 [ 329.083869][ T9219] shmem_alloc_folio+0x135/0x160 [ 329.083912][ T9219] shmem_alloc_and_add_folio+0x371/0xd40 [ 329.083973][ T9219] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 329.084025][ T9219] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 329.084084][ T9219] shmem_get_folio_gfp+0x6ab/0x1900 [ 329.084143][ T9219] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 329.084194][ T9219] ? filemap_map_pages+0xe69/0x2020 [ 329.084264][ T9219] shmem_fault+0x1f9/0xa20 [ 329.084312][ T9219] ? __lock_acquire+0x4a5/0x2630 [ 329.084353][ T9219] ? __pfx_shmem_fault+0x10/0x10 [ 329.084405][ T9219] ? rcu_is_watching+0x12/0xc0 [ 329.084456][ T9219] ? __pfx_filemap_map_pages+0x10/0x10 [ 329.084515][ T9219] __do_fault+0x10d/0x550 [ 329.084575][ T9219] do_fault+0xaf9/0x1950 [ 329.084610][ T9219] ? __pmd_alloc+0x6aa/0x9c0 [ 329.084649][ T9219] __handle_mm_fault+0x180f/0x2b60 [ 329.084699][ T9219] ? mt_find+0x45e/0x8e0 [ 329.084744][ T9219] ? __pfx___handle_mm_fault+0x10/0x10 [ 329.084787][ T9219] ? __pfx_mt_find+0x10/0x10 [ 329.084859][ T9219] ? find_vma+0xbf/0x140 [ 329.084890][ T9219] ? __pfx_find_vma+0x10/0x10 [ 329.084930][ T9219] handle_mm_fault+0x36d/0xa20 [ 329.084989][ T9219] do_user_addr_fault+0x74c/0x12f0 [ 329.085061][ T9219] exc_page_fault+0x6f/0xd0 [ 329.085101][ T9219] asm_exc_page_fault+0x26/0x30 [ 329.085134][ T9219] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 329.085186][ T9219] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 cf 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 329.085225][ T9219] RSP: 0018:ffffc9000489f7b8 EFLAGS: 00050206 [ 329.085251][ T9219] RAX: 0000000000000001 RBX: ffff88805f322700 RCX: 00000000000000c4 [ 329.085271][ T9219] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffff88805f322700 [ 329.085290][ T9219] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100be644f8 [ 329.085310][ T9219] R10: ffff88805f3227c3 R11: 0000000000000000 R12: ffffc9000489fd40 [ 329.085332][ T9219] R13: 0000000000000000 R14: 00000000000000c4 R15: 0000000000000000 [ 329.085372][ T9219] _copy_from_iter+0x355/0x1690 [ 329.085411][ T9219] ? __asan_memset+0x23/0x50 [ 329.085456][ T9219] ? __pfx__copy_from_iter+0x10/0x10 [ 329.085488][ T9219] ? __pfx___alloc_skb+0x10/0x10 [ 329.085544][ T9219] netlink_sendmsg+0x808/0xda0 [ 329.085596][ T9219] ? __pfx_netlink_sendmsg+0x10/0x10 [ 329.085637][ T9219] ? __import_iovec+0x1d2/0x640 [ 329.085674][ T9219] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 329.085728][ T9219] ____sys_sendmsg+0x9e1/0xb70 [ 329.085776][ T9219] ? __pfx_netlink_sendmsg+0x10/0x10 [ 329.085825][ T9219] ? __pfx_____sys_sendmsg+0x10/0x10 [ 329.085883][ T9219] ? __pfx__kstrtoull+0x10/0x10 [ 329.085933][ T9219] ___sys_sendmsg+0x190/0x1e0 [ 329.085988][ T9219] ? __pfx____sys_sendmsg+0x10/0x10 [ 329.086064][ T9219] ? find_held_lock+0x2b/0x80 [ 329.086127][ T9219] __sys_sendmmsg+0x205/0x430 [ 329.086173][ T9219] ? __pfx___sys_sendmmsg+0x10/0x10 [ 329.086234][ T9219] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 329.086294][ T9219] ? fput+0x79/0x100 [ 329.086331][ T9219] ? ksys_write+0x1ac/0x250 [ 329.086366][ T9219] ? __pfx_ksys_write+0x10/0x10 [ 329.086403][ T9219] __x64_sys_sendmmsg+0x9c/0x100 [ 329.086443][ T9219] ? lockdep_hardirqs_on+0x78/0x100 [ 329.086481][ T9219] do_syscall_64+0x106/0xf80 [ 329.086518][ T9219] ? clear_bhb_loop+0x40/0x90 [ 329.086565][ T9219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.086599][ T9219] RIP: 0033:0x7f3fa8d9c799 [ 329.086625][ T9219] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 329.086655][ T9219] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 329.086684][ T9219] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 329.086706][ T9219] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 329.086726][ T9219] RBP: 00007f3fa9cd0090 R08: 0000000000000000 R09: 0000000000000000 [ 329.086747][ T9219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 329.086766][ T9219] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 329.086810][ T9219] [ 331.084572][ T9234] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[9234] [ 332.765258][ T9253] FAULT_INJECTION: forcing a failure. [ 332.765258][ T9253] name fail_futex, interval 1, probability 0, space 0, times 1 [ 333.097170][ T9253] CPU: 0 UID: 0 PID: 9253 Comm: syz.1.827 Not tainted syzkaller #0 PREEMPT(full) [ 333.097211][ T9253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 333.097229][ T9253] Call Trace: [ 333.097240][ T9253] [ 333.097251][ T9253] dump_stack_lvl+0x100/0x190 [ 333.097303][ T9253] should_fail_ex.cold+0x5/0xa [ 333.097342][ T9253] get_futex_key+0x1d2/0x1620 [ 333.097383][ T9253] ? __pfx_get_futex_key+0x10/0x10 [ 333.097423][ T9253] ? __lock_acquire+0x4a5/0x2630 [ 333.097472][ T9253] futex_wait_setup+0x83/0x510 [ 333.097533][ T9253] __futex_wait+0x19f/0x300 [ 333.097585][ T9253] ? __pfx___futex_wait+0x10/0x10 [ 333.097641][ T9253] ? __pfx_futex_wake_mark+0x10/0x10 [ 333.097697][ T9253] ? __hrtimer_setup+0x178/0x280 [ 333.097745][ T9253] ? ktime_add_safe+0x60/0x70 [ 333.097791][ T9253] futex_wait+0xed/0x380 [ 333.097841][ T9253] ? __pfx_futex_wait+0x10/0x10 [ 333.097900][ T9253] ? __lock_acquire+0x4a5/0x2630 [ 333.097944][ T9253] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 333.098002][ T9253] do_futex+0x1ef/0x350 [ 333.098047][ T9253] ? __pfx_do_futex+0x10/0x10 [ 333.098087][ T9253] ? ktime_get+0x200/0x300 [ 333.098118][ T9253] ? lockdep_hardirqs_on+0x78/0x100 [ 333.098159][ T9253] ? read_tsc+0x9/0x20 [ 333.098200][ T9253] __x64_sys_futex+0x34f/0x4d0 [ 333.098249][ T9253] ? __pfx___x64_sys_futex+0x10/0x10 [ 333.098308][ T9253] do_syscall_64+0x106/0xf80 [ 333.098346][ T9253] ? clear_bhb_loop+0x40/0x90 [ 333.098386][ T9253] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.098419][ T9253] RIP: 0033:0x7f3fa8d9c799 [ 333.098447][ T9253] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 333.098485][ T9253] RSP: 002b:00007fff611c6678 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 333.098516][ T9253] RAX: ffffffffffffffda RBX: 0000000000051375 RCX: 00007f3fa8d9c799 [ 333.098538][ T9253] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3fa901618c [ 333.098558][ T9253] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 333.098577][ T9253] R10: 00007fff611c6780 R11: 0000000000000246 R12: 00007fff611c67a0 [ 333.098597][ T9253] R13: 00007f3fa901618c R14: 00000000000513a7 R15: 00007fff611c6780 [ 333.098640][ T9253] [ 334.772461][ T9276] FAULT_INJECTION: forcing a failure. [ 334.772461][ T9276] name failslab, interval 1, probability 0, space 0, times 0 [ 334.872266][ T9276] CPU: 0 UID: 0 PID: 9276 Comm: syz.2.833 Not tainted syzkaller #0 PREEMPT(full) [ 334.872314][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 334.872342][ T9276] Call Trace: [ 334.872356][ T9276] [ 334.872366][ T9276] dump_stack_lvl+0x100/0x190 [ 334.872408][ T9276] should_fail_ex.cold+0x5/0xa [ 334.872438][ T9276] should_failslab+0xc2/0x120 [ 334.872464][ T9276] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 334.872502][ T9276] ? acpi_ut_create_control_state+0x6a/0x100 [ 334.872551][ T9276] acpi_ut_create_control_state+0x6a/0x100 [ 334.872593][ T9276] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 334.872625][ T9276] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 334.872670][ T9276] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 334.872713][ T9276] acpi_ps_create_op+0x7bb/0xd10 [ 334.872756][ T9276] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 334.872804][ T9276] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 334.872830][ T9276] ? acpi_ut_value_exit+0x10d/0x190 [ 334.872861][ T9276] acpi_ps_parse_loop+0xa65/0x24a0 [ 334.872905][ T9276] ? __kmalloc_noprof+0x320/0x850 [ 334.872946][ T9276] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 334.872986][ T9276] ? acpi_ut_status_exit+0x111/0x1c0 [ 334.873013][ T9276] ? acpi_ds_call_control_method+0x435/0xab0 [ 334.873053][ T9276] acpi_ps_parse_aml+0x81e/0x1120 [ 334.873105][ T9276] acpi_ps_execute_method+0x5c4/0xe90 [ 334.873138][ T9276] acpi_ns_evaluate+0x640/0x1670 [ 334.873173][ T9276] acpi_evaluate_object+0x420/0xe00 [ 334.873209][ T9276] ? kasan_save_stack+0x30/0x50 [ 334.873247][ T9276] ? kasan_save_track+0x14/0x30 [ 334.873292][ T9276] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 334.873339][ T9276] acpi_evaluate_integer+0xdf/0x220 [ 334.873406][ T9276] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 334.873467][ T9276] ? __pfx_status_show+0x10/0x10 [ 334.873517][ T9276] status_show+0xa0/0x120 [ 334.873566][ T9276] ? __pfx_status_show+0x10/0x10 [ 334.873627][ T9276] dev_attr_show+0x52/0xa0 [ 334.873661][ T9276] ? __pfx_dev_attr_show+0x10/0x10 [ 334.873694][ T9276] sysfs_kf_seq_show+0x217/0x3a0 [ 334.873748][ T9276] seq_read_iter+0x32f/0x1270 [ 334.873831][ T9276] kernfs_fop_read_iter+0x46c/0x610 [ 334.873872][ T9276] ? rw_verify_area+0xce/0x6d0 [ 334.873923][ T9276] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 334.873964][ T9276] vfs_read+0x825/0xb30 [ 334.874025][ T9276] ? __pfx_vfs_read+0x10/0x10 [ 334.874109][ T9276] ksys_read+0x12a/0x250 [ 334.874162][ T9276] ? __pfx_ksys_read+0x10/0x10 [ 334.874230][ T9276] do_syscall_64+0x106/0xf80 [ 334.874270][ T9276] ? clear_bhb_loop+0x40/0x90 [ 334.874315][ T9276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 334.874351][ T9276] RIP: 0033:0x7f2c2399c799 [ 334.874381][ T9276] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 334.874414][ T9276] RSP: 002b:00007f2c21bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 334.874448][ T9276] RAX: ffffffffffffffda RBX: 00007f2c23c16090 RCX: 00007f2c2399c799 [ 334.874472][ T9276] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 334.874491][ T9276] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 334.874511][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 334.874530][ T9276] R13: 00007f2c23c16128 R14: 00007f2c23c16090 R15: 00007ffd6094b908 [ 334.874573][ T9276] [ 335.275871][ T9276] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 335.287309][ T9276] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 335.816668][ T9291] FAULT_INJECTION: forcing a failure. [ 335.816668][ T9291] name failslab, interval 1, probability 0, space 0, times 0 [ 335.839698][ T9291] CPU: 0 UID: 0 PID: 9291 Comm: syz.1.836 Not tainted syzkaller #0 PREEMPT(full) [ 335.839751][ T9291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 335.839772][ T9291] Call Trace: [ 335.839784][ T9291] [ 335.839798][ T9291] dump_stack_lvl+0x100/0x190 [ 335.839857][ T9291] should_fail_ex.cold+0x5/0xa [ 335.839897][ T9291] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 335.839940][ T9291] should_failslab+0xc2/0x120 [ 335.839977][ T9291] __kmalloc_noprof+0xe0/0x850 [ 335.840038][ T9291] acpi_ns_get_normalized_pathname+0x95/0x250 [ 335.840087][ T9291] acpi_ds_call_control_method+0x5d4/0xab0 [ 335.840152][ T9291] acpi_ps_parse_aml+0xacd/0x1120 [ 335.840219][ T9291] acpi_ps_execute_method+0x5c4/0xe90 [ 335.840267][ T9291] acpi_ns_evaluate+0x640/0x1670 [ 335.840317][ T9291] acpi_evaluate_object+0x420/0xe00 [ 335.840367][ T9291] ? kasan_save_stack+0x30/0x50 [ 335.840417][ T9291] ? kasan_save_track+0x14/0x30 [ 335.840477][ T9291] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 335.840544][ T9291] acpi_evaluate_integer+0xdf/0x220 [ 335.840590][ T9291] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 335.840653][ T9291] ? __pfx_status_show+0x10/0x10 [ 335.840704][ T9291] status_show+0xa0/0x120 [ 335.840754][ T9291] ? __pfx_status_show+0x10/0x10 [ 335.840815][ T9291] dev_attr_show+0x52/0xa0 [ 335.840850][ T9291] ? __pfx_dev_attr_show+0x10/0x10 [ 335.840882][ T9291] sysfs_kf_seq_show+0x217/0x3a0 [ 335.840934][ T9291] seq_read_iter+0x32f/0x1270 [ 335.841005][ T9291] kernfs_fop_read_iter+0x46c/0x610 [ 335.841044][ T9291] ? rw_verify_area+0xce/0x6d0 [ 335.841093][ T9291] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 335.841142][ T9291] vfs_read+0x825/0xb30 [ 335.841202][ T9291] ? __pfx_vfs_read+0x10/0x10 [ 335.841287][ T9291] ksys_read+0x12a/0x250 [ 335.841340][ T9291] ? __pfx_ksys_read+0x10/0x10 [ 335.841407][ T9291] do_syscall_64+0x106/0xf80 [ 335.841446][ T9291] ? clear_bhb_loop+0x40/0x90 [ 335.841490][ T9291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.841524][ T9291] RIP: 0033:0x7f3fa8d9c799 [ 335.841554][ T9291] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 335.841588][ T9291] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 335.841621][ T9291] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 335.841644][ T9291] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 335.841666][ T9291] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 335.841686][ T9291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 335.841707][ T9291] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 335.841753][ T9291] [ 336.116170][ T9291] ACPI Error: Could not allocate 10 bytes (20251212/nsnames-308) [ 337.237294][ T9319] can: request_module (can-proto-0) failed. [ 337.892535][ T9324] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 337.898922][ T9324] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 337.909095][ T9324] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 337.927541][ T9324] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 338.557168][ T9338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.850'. [ 339.920098][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 339.937172][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 339.943252][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 339.949479][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 341.067797][ T9376] FAULT_INJECTION: forcing a failure. [ 341.067797][ T9376] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 341.110081][ T9376] CPU: 0 UID: 0 PID: 9376 Comm: syz.1.860 Not tainted syzkaller #0 PREEMPT(full) [ 341.110125][ T9376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 341.110144][ T9376] Call Trace: [ 341.110155][ T9376] [ 341.110166][ T9376] dump_stack_lvl+0x100/0x190 [ 341.110220][ T9376] should_fail_ex.cold+0x5/0xa [ 341.110271][ T9376] _copy_from_user+0x2e/0xd0 [ 341.110304][ T9376] sctp_setsockopt+0x8cc/0xb370 [ 341.110355][ T9376] ? __pfx_aa_sk_perm+0x10/0x10 [ 341.110391][ T9376] ? __pfx_sctp_setsockopt+0x10/0x10 [ 341.110442][ T9376] ? aa_sock_opt_perm+0xfe/0x1b0 [ 341.110485][ T9376] ? sock_common_setsockopt+0x2e/0xf0 [ 341.110541][ T9376] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 341.110592][ T9376] do_sock_setsockopt+0xf3/0x1d0 [ 341.110645][ T9376] __sys_setsockopt+0x119/0x190 [ 341.110690][ T9376] __x64_sys_setsockopt+0xbd/0x160 [ 341.110726][ T9376] ? do_syscall_64+0x95/0xf80 [ 341.110771][ T9376] ? lockdep_hardirqs_on+0x78/0x100 [ 341.110809][ T9376] do_syscall_64+0x106/0xf80 [ 341.110844][ T9376] ? clear_bhb_loop+0x40/0x90 [ 341.110877][ T9376] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.110905][ T9376] RIP: 0033:0x7f3fa8d9c799 [ 341.110927][ T9376] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 341.110954][ T9376] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 341.110979][ T9376] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 341.110998][ T9376] RDX: 000000000000001e RSI: 0000010000000084 RDI: 0000000000000003 [ 341.111015][ T9376] RBP: 00007f3fa9cd0090 R08: 0000000000000008 R09: 0000000000000000 [ 341.111031][ T9376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 341.111047][ T9376] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 341.111081][ T9376] [ 342.522934][ T9398] FAULT_INJECTION: forcing a failure. [ 342.522934][ T9398] name failslab, interval 1, probability 0, space 0, times 0 [ 342.649693][ T9398] CPU: 0 UID: 0 PID: 9398 Comm: syz.1.866 Not tainted syzkaller #0 PREEMPT(full) [ 342.649745][ T9398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 342.649770][ T9398] Call Trace: [ 342.649782][ T9398] [ 342.649798][ T9398] dump_stack_lvl+0x100/0x190 [ 342.649866][ T9398] should_fail_ex.cold+0x5/0xa [ 342.649912][ T9398] should_failslab+0xc2/0x120 [ 342.649952][ T9398] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 342.650010][ T9398] ? acpi_ut_create_control_state+0x6a/0x100 [ 342.650084][ T9398] acpi_ut_create_control_state+0x6a/0x100 [ 342.650145][ T9398] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 342.650197][ T9398] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 342.650276][ T9398] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 342.650344][ T9398] acpi_ps_create_op+0x7bb/0xd10 [ 342.650409][ T9398] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 342.650472][ T9398] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 342.650513][ T9398] ? acpi_ut_value_exit+0x10d/0x190 [ 342.650563][ T9398] acpi_ps_parse_loop+0xa65/0x24a0 [ 342.650628][ T9398] ? __kmalloc_noprof+0x320/0x850 [ 342.650692][ T9398] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 342.650760][ T9398] ? acpi_ut_status_exit+0x111/0x1c0 [ 342.650803][ T9398] ? acpi_ds_call_control_method+0x435/0xab0 [ 342.650865][ T9398] acpi_ps_parse_aml+0x81e/0x1120 [ 342.650937][ T9398] acpi_ps_execute_method+0x5c4/0xe90 [ 342.650991][ T9398] acpi_ns_evaluate+0x640/0x1670 [ 342.651047][ T9398] acpi_evaluate_object+0x420/0xe00 [ 342.651103][ T9398] ? kasan_save_stack+0x30/0x50 [ 342.651159][ T9398] ? kasan_save_track+0x14/0x30 [ 342.651227][ T9398] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 342.651309][ T9398] acpi_evaluate_integer+0xdf/0x220 [ 342.651359][ T9398] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 342.651430][ T9398] ? __pfx_status_show+0x10/0x10 [ 342.651486][ T9398] status_show+0xa0/0x120 [ 342.651549][ T9398] ? __pfx_status_show+0x10/0x10 [ 342.651619][ T9398] dev_attr_show+0x52/0xa0 [ 342.651659][ T9398] ? __pfx_dev_attr_show+0x10/0x10 [ 342.651694][ T9398] sysfs_kf_seq_show+0x217/0x3a0 [ 342.651753][ T9398] seq_read_iter+0x32f/0x1270 [ 342.651836][ T9398] kernfs_fop_read_iter+0x46c/0x610 [ 342.651880][ T9398] ? rw_verify_area+0xce/0x6d0 [ 342.651934][ T9398] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 342.651981][ T9398] vfs_read+0x825/0xb30 [ 342.652049][ T9398] ? __pfx_vfs_read+0x10/0x10 [ 342.652141][ T9398] ksys_read+0x12a/0x250 [ 342.652202][ T9398] ? __pfx_ksys_read+0x10/0x10 [ 342.652286][ T9398] do_syscall_64+0x106/0xf80 [ 342.652332][ T9398] ? clear_bhb_loop+0x40/0x90 [ 342.652381][ T9398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.652421][ T9398] RIP: 0033:0x7f3fa8d9c799 [ 342.652455][ T9398] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 342.652500][ T9398] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 342.652538][ T9398] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 342.652564][ T9398] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 342.652588][ T9398] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 342.652612][ T9398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 342.652636][ T9398] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 342.652689][ T9398] [ 343.378949][ T9398] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 343.432931][ T9398] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 343.631010][ T9405] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[9405] [ 346.576566][ T9437] FAULT_INJECTION: forcing a failure. [ 346.576566][ T9437] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 346.604077][ T9437] CPU: 1 UID: 0 PID: 9437 Comm: syz.1.875 Not tainted syzkaller #0 PREEMPT(full) [ 346.604123][ T9437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 346.604144][ T9437] Call Trace: [ 346.604156][ T9437] [ 346.604168][ T9437] dump_stack_lvl+0x100/0x190 [ 346.604226][ T9437] should_fail_ex.cold+0x5/0xa [ 346.604259][ T9437] ? prepare_alloc_pages+0x16d/0x5f0 [ 346.604310][ T9437] should_fail_alloc_page+0xeb/0x140 [ 346.604350][ T9437] prepare_alloc_pages+0x1f0/0x5f0 [ 346.604390][ T9437] ? bpf_ksym_find+0x124/0x1c0 [ 346.604436][ T9437] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 346.604492][ T9437] ? kernel_text_address+0x8d/0x100 [ 346.604543][ T9437] ? __kernel_text_address+0xd/0x30 [ 346.604593][ T9437] ? unwind_get_return_address+0x59/0xa0 [ 346.604632][ T9437] ? arch_stack_walk+0xa6/0xf0 [ 346.604679][ T9437] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 346.604732][ T9437] ? stack_trace_save+0x8e/0xc0 [ 346.604768][ T9437] ? stack_depot_save_flags+0x27/0x9d0 [ 346.604805][ T9437] ? mas_store_prealloc+0x893/0xfb0 [ 346.604857][ T9437] ? kasan_save_stack+0x3f/0x50 [ 346.604907][ T9437] ? kasan_save_stack+0x30/0x50 [ 346.604959][ T9437] ? kasan_save_track+0x14/0x30 [ 346.605010][ T9437] ? __kasan_slab_alloc+0x89/0x90 [ 346.605044][ T9437] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 346.605096][ T9437] ? __pmd_alloc+0xbf/0x9c0 [ 346.605133][ T9437] ? __handle_mm_fault+0xa99/0x2b60 [ 346.605177][ T9437] ? handle_mm_fault+0x36d/0xa20 [ 346.605220][ T9437] ? __get_user_pages+0xf9c/0x34d0 [ 346.605255][ T9437] ? populate_vma_page_range+0x267/0x3f0 [ 346.605302][ T9437] ? __mm_populate+0x107/0x3a0 [ 346.605338][ T9437] ? vm_mmap_pgoff+0x37f/0x470 [ 346.605374][ T9437] ? ksys_mmap_pgoff+0xe1/0x650 [ 346.605407][ T9437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 346.605469][ T9437] ? policy_nodemask+0xed/0x4f0 [ 346.605509][ T9437] alloc_pages_mpol+0x1fb/0x550 [ 346.605548][ T9437] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 346.605596][ T9437] alloc_pages_noprof+0x131/0x390 [ 346.605636][ T9437] pte_alloc_one+0x1e/0x3e0 [ 346.605676][ T9437] __pte_alloc+0x6d/0x3f0 [ 346.605709][ T9437] ? __pfx___pte_alloc+0x10/0x10 [ 346.605760][ T9437] ? do_raw_spin_lock+0x128/0x260 [ 346.605818][ T9437] ? find_held_lock+0x2b/0x80 [ 346.605858][ T9437] do_anonymous_page+0x13cc/0x1fb0 [ 346.605907][ T9437] ? do_raw_spin_unlock+0x145/0x1e0 [ 346.605959][ T9437] ? _raw_spin_unlock+0x28/0x50 [ 346.605993][ T9437] ? __pmd_alloc+0x6aa/0x9c0 [ 346.606036][ T9437] __handle_mm_fault+0x1d42/0x2b60 [ 346.606090][ T9437] ? mt_find+0x45e/0x8e0 [ 346.606134][ T9437] ? __pfx___handle_mm_fault+0x10/0x10 [ 346.606179][ T9437] ? __pfx_mt_find+0x10/0x10 [ 346.606260][ T9437] handle_mm_fault+0x36d/0xa20 [ 346.606323][ T9437] __get_user_pages+0xf9c/0x34d0 [ 346.606379][ T9437] ? __pfx___get_user_pages+0x10/0x10 [ 346.606432][ T9437] populate_vma_page_range+0x267/0x3f0 [ 346.606477][ T9437] ? __pfx_populate_vma_page_range+0x10/0x10 [ 346.606515][ T9437] ? __pfx_find_vma_intersection+0x10/0x10 [ 346.606553][ T9437] ? do_mmap+0x93f/0x12f0 [ 346.606594][ T9437] __mm_populate+0x107/0x3a0 [ 346.606636][ T9437] ? __pfx___mm_populate+0x10/0x10 [ 346.606677][ T9437] ? up_write+0x290/0x4f0 [ 346.606730][ T9437] vm_mmap_pgoff+0x37f/0x470 [ 346.606772][ T9437] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 346.606812][ T9437] ? do_futex+0x192/0x350 [ 346.606856][ T9437] ? __pfx_do_futex+0x10/0x10 [ 346.606906][ T9437] ksys_mmap_pgoff+0xe1/0x650 [ 346.606939][ T9437] ? __x64_sys_futex+0x34f/0x4d0 [ 346.606979][ T9437] ? __x64_sys_futex+0x358/0x4d0 [ 346.607023][ T9437] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 346.607058][ T9437] ? xfd_validate_state+0x129/0x190 [ 346.607114][ T9437] __x64_sys_mmap+0x125/0x190 [ 346.607170][ T9437] do_syscall_64+0x106/0xf80 [ 346.607210][ T9437] ? clear_bhb_loop+0x40/0x90 [ 346.607260][ T9437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.607304][ T9437] RIP: 0033:0x7f3fa8d9c799 [ 346.607333][ T9437] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 346.607367][ T9437] RSP: 002b:00007f3fa9cd0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 346.607399][ T9437] RAX: ffffffffffffffda RBX: 00007f3fa9015fa0 RCX: 00007f3fa8d9c799 [ 346.607421][ T9437] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 346.607440][ T9437] RBP: 00007f3fa8e32bd9 R08: ffffffffffffffff R09: 0000000000008000 [ 346.607461][ T9437] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 346.607480][ T9437] R13: 00007f3fa9016038 R14: 00007f3fa9015fa0 R15: 00007fff611c6518 [ 346.607521][ T9437] [ 347.790225][ T9445] FAULT_INJECTION: forcing a failure. [ 347.790225][ T9445] name failslab, interval 1, probability 0, space 0, times 0 [ 347.803063][ T9445] CPU: 0 UID: 0 PID: 9445 Comm: syz.2.877 Not tainted syzkaller #0 PREEMPT(full) [ 347.803110][ T9445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 347.803132][ T9445] Call Trace: [ 347.803144][ T9445] [ 347.803157][ T9445] dump_stack_lvl+0x100/0x190 [ 347.803227][ T9445] should_fail_ex.cold+0x5/0xa [ 347.803268][ T9445] ? acpi_ns_get_normalized_pathname+0x95/0x250 [ 347.803314][ T9445] should_failslab+0xc2/0x120 [ 347.803351][ T9445] __kmalloc_noprof+0xe0/0x850 [ 347.803415][ T9445] acpi_ns_get_normalized_pathname+0x95/0x250 [ 347.803464][ T9445] acpi_ds_call_control_method+0x5d4/0xab0 [ 347.803523][ T9445] acpi_ps_parse_aml+0xacd/0x1120 [ 347.803591][ T9445] acpi_ps_execute_method+0x5c4/0xe90 [ 347.803638][ T9445] acpi_ns_evaluate+0x640/0x1670 [ 347.803689][ T9445] acpi_evaluate_object+0x420/0xe00 [ 347.803739][ T9445] ? kasan_save_stack+0x30/0x50 [ 347.803792][ T9445] ? kasan_save_track+0x14/0x30 [ 347.803854][ T9445] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 347.803921][ T9445] acpi_evaluate_integer+0xdf/0x220 [ 347.803968][ T9445] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 347.804032][ T9445] ? __pfx_status_show+0x10/0x10 [ 347.804082][ T9445] status_show+0xa0/0x120 [ 347.804134][ T9445] ? __pfx_status_show+0x10/0x10 [ 347.804204][ T9445] dev_attr_show+0x52/0xa0 [ 347.804241][ T9445] ? __pfx_dev_attr_show+0x10/0x10 [ 347.804274][ T9445] sysfs_kf_seq_show+0x217/0x3a0 [ 347.804326][ T9445] seq_read_iter+0x32f/0x1270 [ 347.804400][ T9445] kernfs_fop_read_iter+0x46c/0x610 [ 347.804441][ T9445] ? rw_verify_area+0xce/0x6d0 [ 347.804492][ T9445] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 347.804532][ T9445] vfs_read+0x825/0xb30 [ 347.804593][ T9445] ? __pfx_vfs_read+0x10/0x10 [ 347.804677][ T9445] ksys_read+0x12a/0x250 [ 347.804732][ T9445] ? __pfx_ksys_read+0x10/0x10 [ 347.804800][ T9445] do_syscall_64+0x106/0xf80 [ 347.804841][ T9445] ? clear_bhb_loop+0x40/0x90 [ 347.804885][ T9445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.804922][ T9445] RIP: 0033:0x7f2c2399c799 [ 347.804951][ T9445] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 347.804986][ T9445] RSP: 002b:00007f2c21bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 347.805025][ T9445] RAX: ffffffffffffffda RBX: 00007f2c23c16090 RCX: 00007f2c2399c799 [ 347.805048][ T9445] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 347.805070][ T9445] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 347.805092][ T9445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.805113][ T9445] R13: 00007f2c23c16128 R14: 00007f2c23c16090 R15: 00007ffd6094b908 [ 347.805162][ T9445] [ 347.805178][ T9445] ACPI Error: [ 348.226059][ T29] audit: type=1800 audit(1772767713.341:6): pid=9454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.879" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 348.251325][ T9445] Could not allocate 10 bytes (20251212/nsnames-308) [ 348.768880][ T9456] netlink: 28 bytes leftover after parsing attributes in process `syz.1.880'. [ 351.411037][ T9485] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[9485] [ 352.356978][ T9498] nvme_fcloop: unknown parameter or missing value '7' [ 352.755635][ T9494] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[9494] [ 353.789013][ T9523] netlink: zone id is out of range [ 353.794367][ T9523] netlink: zone id is out of range [ 353.799667][ T9523] netlink: zone id is out of range [ 353.810375][ T9523] netlink: zone id is out of range [ 353.820322][ T9523] netlink: zone id is out of range [ 353.845986][ T9523] netlink: zone id is out of range [ 353.856140][ T9523] netlink: zone id is out of range [ 353.872704][ T9523] netlink: zone id is out of range [ 353.894100][ T9523] netlink: zone id is out of range [ 353.951453][ T9523] netlink: zone id is out of range [ 355.117096][ T9526] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[9526] [ 356.366226][ T9558] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[9558] [ 358.608821][ T9595] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39 [ 359.757251][ T9598] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 361.313297][ T9624] FAULT_INJECTION: forcing a failure. [ 361.313297][ T9624] name failslab, interval 1, probability 0, space 0, times 0 [ 361.363644][ T9624] CPU: 1 UID: 0 PID: 9624 Comm: syz.1.921 Not tainted syzkaller #0 PREEMPT(full) [ 361.363696][ T9624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 361.363728][ T9624] Call Trace: [ 361.363773][ T9624] [ 361.363786][ T9624] dump_stack_lvl+0x100/0x190 [ 361.363918][ T9624] should_fail_ex.cold+0x5/0xa [ 361.363984][ T9624] should_failslab+0xc2/0x120 [ 361.364045][ T9624] __kmalloc_cache_noprof+0x7a/0x6f0 [ 361.364105][ T9624] ? refill_pi_state_cache+0x91/0x260 [ 361.364191][ T9624] refill_pi_state_cache+0x91/0x260 [ 361.364244][ T9624] futex_lock_pi+0x177/0x7b0 [ 361.364300][ T9624] ? __pfx_futex_lock_pi+0x10/0x10 [ 361.364353][ T9624] ? __pfx___futex_wait+0x10/0x10 [ 361.364404][ T9624] ? lockdep_hardirqs_on+0x78/0x100 [ 361.364606][ T9624] ? __pfx_futex_wake_mark+0x10/0x10 [ 361.364695][ T9624] ? __get_user_nocheck_8+0x20/0x20 [ 361.364731][ T9624] ? do_vfs_ioctl+0x226/0x13e0 [ 361.364794][ T9624] do_futex+0x18a/0x350 [ 361.364839][ T9624] ? __pfx_do_futex+0x10/0x10 [ 361.364886][ T9624] ? find_held_lock+0x2b/0x80 [ 361.364951][ T9624] __x64_sys_futex+0x34f/0x4d0 [ 361.365002][ T9624] ? __pfx___x64_sys_futex+0x10/0x10 [ 361.365064][ T9624] do_syscall_64+0x106/0xf80 [ 361.365103][ T9624] ? clear_bhb_loop+0x40/0x90 [ 361.365159][ T9624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 361.365196][ T9624] RIP: 0033:0x7f3fa8d9c799 [ 361.365225][ T9624] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 361.365259][ T9624] RSP: 002b:00007f3fa9caf028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 361.365336][ T9624] RAX: ffffffffffffffda RBX: 00007f3fa9016090 RCX: 00007f3fa8d9c799 [ 361.365359][ T9624] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 361.365379][ T9624] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 000000008000fff5 [ 361.365401][ T9624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 361.365422][ T9624] R13: 00007f3fa9016128 R14: 00007f3fa9016090 R15: 00007fff611c6518 [ 361.365469][ T9624] [ 363.911103][ T9654] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[9654] [ 366.152355][ T9676] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[9676] [ 367.491341][ T9685] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[9685] [ 371.481457][ T9732] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[9732] [ 373.785624][ T9764] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 375.271217][ T9768] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42 [ 377.155380][ T9804] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43 [ 378.856112][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.863261][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.236972][ T9805] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 379.700538][ T9825] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[9825] [ 385.887104][ T9893] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[9893] [ 388.363734][ T51] Bluetooth: hci0: unexpected event 0x12 length: 440 > 8 [ 389.765037][ T9952] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[9952] [ 390.865280][ T9981] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[9981] [ 393.485061][T10020] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[10020] [ 395.090488][T10046] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1028'. [ 396.181806][T10060] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10060] [ 396.859349][T10068] ptrace attach of "./syz-executor exec"[5824] was attempted by "./syz-executor exec"[10068] [ 397.398055][T10049] kexec: Could not allocate control_code_buffer [ 397.497587][T10081] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[10081] [ 399.060824][T10104] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[10104] [ 399.536456][T10109] FAULT_INJECTION: forcing a failure. [ 399.536456][T10109] name failslab, interval 1, probability 0, space 0, times 0 [ 399.582557][T10109] CPU: 0 UID: 0 PID: 10109 Comm: syz.1.1045 Not tainted syzkaller #0 PREEMPT(full) [ 399.582603][T10109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 399.582633][T10109] Call Trace: [ 399.582644][T10109] [ 399.582657][T10109] dump_stack_lvl+0x100/0x190 [ 399.582716][T10109] should_fail_ex.cold+0x5/0xa [ 399.582755][T10109] ? __vb2_queue_alloc+0x23e/0x1160 [ 399.582931][T10109] should_failslab+0xc2/0x120 [ 399.582968][T10109] __kmalloc_noprof+0xe0/0x850 [ 399.583022][T10109] ? bitmap_find_next_zero_area_off+0xb4/0xd0 [ 399.583136][T10109] __vb2_queue_alloc+0x23e/0x1160 [ 399.583212][T10109] vb2_core_reqbufs+0x899/0xf30 [ 399.583279][T10109] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 399.583356][T10109] __vb2_init_fileio+0x32d/0x1000 [ 399.583408][T10109] ? lockdep_hardirqs_on+0x78/0x100 [ 399.583452][T10109] ? __pollwait+0x276/0x470 [ 399.583509][T10109] vb2_core_poll+0x611/0x740 [ 399.583567][T10109] vb2_poll+0x4b/0xe0 [ 399.583649][T10109] vb2_fop_poll+0x10e/0x350 [ 399.583699][T10109] ? __pfx_vb2_fop_poll+0x10/0x10 [ 399.583746][T10109] v4l2_poll+0x15f/0x220 [ 399.583847][T10109] ? __pfx_v4l2_poll+0x10/0x10 [ 399.583893][T10109] do_sys_poll+0x6e5/0xeb0 [ 399.583961][T10109] ? __pfx_do_sys_poll+0x10/0x10 [ 399.584054][T10109] ? __futex_wait+0x256/0x300 [ 399.584111][T10109] ? __pfx___pollwait+0x10/0x10 [ 399.584169][T10109] ? __pfx_pollwake+0x10/0x10 [ 399.584285][T10109] ? ktime_get_ts64+0x2d2/0x3f0 [ 399.584324][T10109] ? read_tsc+0x9/0x20 [ 399.584374][T10109] ? ktime_get_ts64+0x256/0x3f0 [ 399.584426][T10109] ? poll_select_set_timeout+0xcc/0x160 [ 399.584478][T10109] ? __x64_sys_futex+0x358/0x4d0 [ 399.584527][T10109] __x64_sys_poll+0x1b3/0x420 [ 399.584559][T10109] ? __pfx___x64_sys_poll+0x10/0x10 [ 399.584605][T10109] do_syscall_64+0x106/0xf80 [ 399.584651][T10109] ? clear_bhb_loop+0x40/0x90 [ 399.584693][T10109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.584727][T10109] RIP: 0033:0x7f3fa8d9c799 [ 399.584756][T10109] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 399.584791][T10109] RSP: 002b:00007f3fa9caf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 399.584829][T10109] RAX: ffffffffffffffda RBX: 00007f3fa9016090 RCX: 00007f3fa8d9c799 [ 399.584852][T10109] RDX: 0000000000000008 RSI: 0000000000000003 RDI: 0000200000000480 [ 399.584874][T10109] RBP: 00007f3fa8e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 399.584895][T10109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 399.584916][T10109] R13: 00007f3fa9016128 R14: 00007f3fa9016090 R15: 00007fff611c6518 [ 399.584961][T10109] [ 400.538266][T10131] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[10131] [ 401.453396][T10153] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10153] [ 403.178172][T10168] zswap: compressor not available [ 404.422165][T10197] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1069'. [ 404.760766][T10195] FAULT_INJECTION: forcing a failure. [ 404.760766][T10195] name failslab, interval 1, probability 0, space 0, times 0 [ 404.789420][T10195] CPU: 1 UID: 0 PID: 10195 Comm: syz.2.1068 Not tainted syzkaller #0 PREEMPT(full) [ 404.789454][T10195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 404.789469][T10195] Call Trace: [ 404.789477][T10195] [ 404.789487][T10195] dump_stack_lvl+0x100/0x190 [ 404.789530][T10195] should_fail_ex.cold+0x5/0xa [ 404.789563][T10195] should_failslab+0xc2/0x120 [ 404.789589][T10195] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 404.789627][T10195] ? acpi_ut_create_control_state+0x6a/0x100 [ 404.789785][T10195] acpi_ut_create_control_state+0x6a/0x100 [ 404.789828][T10195] acpi_ds_exec_begin_control_op+0x21f/0x530 [ 404.789879][T10195] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 404.789932][T10195] acpi_ds_exec_begin_op+0x20a/0x9c0 [ 404.789991][T10195] acpi_ps_create_op+0x7bb/0xd10 [ 404.790066][T10195] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 404.790107][T10195] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 404.790133][T10195] ? acpi_ut_value_exit+0x10d/0x190 [ 404.790164][T10195] acpi_ps_parse_loop+0xa65/0x24a0 [ 404.790213][T10195] ? __kmalloc_noprof+0x320/0x850 [ 404.790255][T10195] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 404.790295][T10195] ? acpi_ut_status_exit+0x111/0x1c0 [ 404.790323][T10195] ? acpi_ds_call_control_method+0x435/0xab0 [ 404.790364][T10195] acpi_ps_parse_aml+0x81e/0x1120 [ 404.790411][T10195] acpi_ps_execute_method+0x5c4/0xe90 [ 404.790444][T10195] acpi_ns_evaluate+0x640/0x1670 [ 404.790480][T10195] acpi_evaluate_object+0x420/0xe00 [ 404.790516][T10195] ? kasan_save_stack+0x30/0x50 [ 404.790554][T10195] ? kasan_save_track+0x14/0x30 [ 404.790597][T10195] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 404.790644][T10195] acpi_evaluate_integer+0xdf/0x220 [ 404.790703][T10195] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 404.790748][T10195] ? __pfx_status_show+0x10/0x10 [ 404.790801][T10195] status_show+0xa0/0x120 [ 404.790837][T10195] ? __pfx_status_show+0x10/0x10 [ 404.790882][T10195] dev_attr_show+0x52/0xa0 [ 404.790953][T10195] ? __pfx_dev_attr_show+0x10/0x10 [ 404.790976][T10195] sysfs_kf_seq_show+0x217/0x3a0 [ 404.791032][T10195] seq_read_iter+0x32f/0x1270 [ 404.791096][T10195] kernfs_fop_read_iter+0x46c/0x610 [ 404.791124][T10195] ? rw_verify_area+0xce/0x6d0 [ 404.791160][T10195] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 404.791190][T10195] vfs_read+0x825/0xb30 [ 404.791239][T10195] ? __pfx_vfs_read+0x10/0x10 [ 404.791297][T10195] ksys_read+0x12a/0x250 [ 404.791337][T10195] ? __pfx_ksys_read+0x10/0x10 [ 404.791385][T10195] do_syscall_64+0x106/0xf80 [ 404.791415][T10195] ? clear_bhb_loop+0x40/0x90 [ 404.791446][T10195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.791472][T10195] RIP: 0033:0x7f2c2399c799 [ 404.791493][T10195] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 404.791517][T10195] RSP: 002b:00007f2c21bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 404.791540][T10195] RAX: ffffffffffffffda RBX: 00007f2c23c16090 RCX: 00007f2c2399c799 [ 404.791557][T10195] RDX: 000000000000007a RSI: 0000200000000140 RDI: 000000000000000a [ 404.791572][T10195] RBP: 00007f2c23a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 404.791587][T10195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.791602][T10195] R13: 00007f2c23c16128 R14: 00007f2c23c16090 R15: 00007ffd6094b908 [ 404.791634][T10195] [ 404.793043][T10195] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 405.174478][T10195] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 405.829849][T10211] zswap: compressor not available [ 406.513001][T10238] net_ratelimit: 47 callbacks suppressed [ 406.513031][T10238] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 409.742191][T10291] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 410.306657][T10306] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46 [ 417.510055][T10422] misc userio: Invalid payload size [ 423.225163][T10512] FAULT_INJECTION: forcing a failure. [ 423.225163][T10512] name failslab, interval 1, probability 0, space 0, times 0 [ 423.240459][T10512] CPU: 0 UID: 0 PID: 10512 Comm: syz.2.1149 Not tainted syzkaller #0 PREEMPT(full) [ 423.240499][T10512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 423.240518][T10512] Call Trace: [ 423.240526][T10512] [ 423.240536][T10512] dump_stack_lvl+0x100/0x190 [ 423.240590][T10512] should_fail_ex.cold+0x5/0xa [ 423.240627][T10512] should_failslab+0xc2/0x120 [ 423.240662][T10512] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 423.240698][T10512] ? vm_area_alloc+0x1f/0x160 [ 423.240728][T10512] ? vma_merge_new_range+0x38b/0xa30 [ 423.240766][T10512] vm_area_alloc+0x1f/0x160 [ 423.240797][T10512] __mmap_region+0x10cc/0x29e0 [ 423.240831][T10512] ? kasan_save_stack+0x30/0x50 [ 423.240866][T10512] ? kasan_save_track+0x14/0x30 [ 423.240908][T10512] ? __kasan_slab_free+0x5f/0x80 [ 423.240927][T10512] ? kmem_cache_free+0x124/0x6a0 [ 423.240958][T10512] ? __pfx___mmap_region+0x10/0x10 [ 423.240988][T10512] ? __mark_inode_dirty+0x1f3/0x1790 [ 423.241020][T10512] ? file_update_time_flags+0x46b/0x500 [ 423.241047][T10512] ? ext4_page_mkwrite+0x35b/0x1980 [ 423.241093][T10512] ? do_page_mkwrite+0x17a/0x440 [ 423.241128][T10512] ? do_fault+0x3d7/0x1950 [ 423.241151][T10512] ? css_rstat_updated+0x1ce/0x5a0 [ 423.241176][T10512] ? handle_mm_fault+0x36d/0xa20 [ 423.241204][T10512] ? do_user_addr_fault+0x5a3/0x12f0 [ 423.241252][T10512] ? __pfx_css_rstat_updated+0x10/0x10 [ 423.241304][T10512] ? __pfx_mas_prev+0x10/0x10 [ 423.241404][T10512] ? __pfx_unmapped_area_topdown+0x10/0x10 [ 423.241490][T10512] mmap_region+0x180/0x3e0 [ 423.241530][T10512] do_mmap+0xc63/0x12f0 [ 423.241561][T10512] ? __pfx_do_mmap+0x10/0x10 [ 423.241585][T10512] ? __pfx_down_write_killable+0x10/0x10 [ 423.241645][T10512] vm_mmap_pgoff+0x29e/0x470 [ 423.241684][T10512] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 423.241712][T10512] ? do_futex+0x192/0x350 [ 423.241742][T10512] ? __pfx_do_futex+0x10/0x10 [ 423.241771][T10512] ? ktime_get+0x200/0x300 [ 423.241798][T10512] ksys_mmap_pgoff+0xe1/0x650 [ 423.241823][T10512] ? __x64_sys_futex+0x34f/0x4d0 [ 423.241851][T10512] ? __x64_sys_futex+0x358/0x4d0 [ 423.241888][T10512] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 423.241913][T10512] ? xfd_validate_state+0x129/0x190 [ 423.241952][T10512] __x64_sys_mmap+0x125/0x190 [ 423.241990][T10512] do_syscall_64+0x106/0xf80 [ 423.242016][T10512] ? clear_bhb_loop+0x40/0x90 [ 423.242045][T10512] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.242069][T10512] RIP: 0033:0x7f2c2399c502 [ 423.242089][T10512] Code: 4f 01 00 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 89 cd 53 48 89 fb 48 85 ff 74 3b 41 89 ea 48 89 df b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 6e 5b 5d c3 0f 1f 00 48 c7 c0 e8 ff ff ff 64 [ 423.242112][T10512] RSP: 002b:00007ffd6094b9b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 423.242134][T10512] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f2c2399c502 [ 423.242150][T10512] RDX: 0000000000000000 RSI: 0000000000402000 RDI: 0000000000000000 [ 423.242164][T10512] RBP: 0000000000000022 R08: 00000000ffffffff R09: 0000000000000000 [ 423.242178][T10512] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000003 [ 423.242192][T10512] R13: 0000000000000006 R14: 0000000000000000 R15: 00007f2c23c15fa0 [ 423.242222][T10512] [ 424.781157][T10531] zswap: compressor not available [ 426.393933][T10551] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[10551] [ 426.892199][T10565] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1162'. [ 426.988328][T10561] zswap: compressor not available [ 427.887574][T10584] zswap: compressor not available [ 428.200789][T10600] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10600] [ 428.390639][T10606] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1171'. [ 428.956892][T10615] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[10615] [ 430.572616][T10627] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 430.578906][T10627] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 430.590526][T10627] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 430.597465][T10627] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 432.543523][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 432.623510][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 432.630064][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 432.639928][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 432.655668][T10670] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 432.659641][T10672] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10672] [ 433.052961][T10676] zswap: compressor not available [ 436.679553][T10748] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1207'. [ 436.689232][T10750] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10750] [ 438.509554][T10783] zswap: compressor not available [ 438.702393][T10790] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[10790] [ 439.305581][T10813] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[10813] [ 440.164870][T10825] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[10825] [ 440.323249][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.332908][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.422276][T10833] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[10833] [ 442.312411][T10855] zswap: compressor not available [ 442.803482][T10874] serio: Serial port pty6 [ 443.001008][T10871] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[10871] [ 443.591710][T10888] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1244'. [ 444.005584][T10897] ======================================================= [ 444.005584][T10897] WARNING: The mand mount option has been deprecated and [ 444.005584][T10897] and is ignored by this kernel. Remove the mand [ 444.005584][T10897] option from the mount to silence this warning. [ 444.005584][T10897] ======================================================= [ 444.359603][T10901] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 444.366366][T10901] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 444.372721][T10901] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 444.380396][T10901] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 445.048398][T10911] zswap: compressor not available [ 445.134337][T10914] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10914] [ 446.060393][T10935] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 446.067341][T10935] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 446.086008][T10935] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 446.120327][T10935] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 446.318846][T10943] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[10943] [ 448.071212][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 448.071227][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 448.151602][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 448.151614][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 450.554075][T11007] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 450.561370][T11007] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 450.571507][T11007] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 450.582656][T11007] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 450.969733][T11018] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[11018] [ 452.633694][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 452.633737][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout [ 452.640779][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 452.646364][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 453.093976][T11057] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 453.108658][T11057] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 453.126886][T11057] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 453.134002][T11057] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 453.168296][T11062] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1289'. [ 453.820469][T11067] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[11067] [ 455.114976][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 455.114988][T11053] Bluetooth: hci0: command 0x0c1a tx timeout [ 455.195126][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 455.195141][T11053] Bluetooth: hci2: command 0x0c1a tx timeout [ 455.243339][T11102] netlink: zone id is out of range [ 455.248669][T11102] netlink: zone id is out of range [ 455.275273][T11102] netlink: zone id is out of range [ 455.280482][T11102] netlink: zone id is out of range [ 455.319789][T11102] netlink: zone id is out of range [ 455.338861][T11102] netlink: zone id is out of range [ 455.359408][T11102] netlink: zone id is out of range [ 455.378931][T11102] netlink: zone id is out of range [ 455.399101][T11102] netlink: zone id is out of range [ 455.419418][T11102] netlink: zone id is out of range [ 456.081588][T11116] ptrace attach of "./syz-executor exec"[5829] was attempted by ""[11116] [ 458.137755][T11162] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[11162] [ 458.174502][T11157] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 458.200371][T11150] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 458.206640][T11150] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 458.212747][T11150] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 458.227615][T11150] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 458.532387][T11167] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 460.157498][T11053] Bluetooth: hci0: command 0x0c1a tx timeout [ 460.237221][T11053] Bluetooth: hci3: command 0x0c1a tx timeout [ 460.237508][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 460.243305][T11053] Bluetooth: hci1: command 0x0c1a tx timeout [ 460.710734][T11192] net_ratelimit: 47 callbacks suppressed [ 460.710770][T11192] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 461.157892][T11189] zswap: compressor not available [ 461.722698][T11211] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1329'. [ 462.411417][T11226] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[11226] [ 464.112585][T11249] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[11249] [ 464.789763][T11263] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1344'. [ 466.456502][T11288] ptrace attach of "./syz-executor exec"[5824] was attempted by ""[11288] [ 466.739954][T11287] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[11287] [ 467.125397][ T29] audit: type=1326 audit(1772767834.181:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11299 comm="syz.3.1354" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5aeed9c799 code=0x0 [ 467.327111][T11306] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1355'. [ 467.461954][ T29] audit: type=1326 audit(1772767834.531:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11299 comm="syz.3.1354" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5aeed9c799 code=0x0 [ 479.859469][T10669] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 479.870811][T10669] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 479.883357][T10669] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 479.903048][T10669] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 479.911184][T10669] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 480.321252][ T5824] ------------[ cut here ]------------ [ 480.326797][ T5824] ODEBUG: free active (active state 0) object: ffff888036ac1460 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 480.340333][ T5824] WARNING: lib/debugobjects.c:629 at debug_print_object+0x18e/0x2a0, CPU#1: syz-executor/5824 [ 480.352754][ T5824] Modules linked in: [ 480.356714][ T5824] CPU: 1 UID: 0 PID: 5824 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 480.367077][ T5824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 480.377478][ T5824] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 480.383361][ T5824] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 62 8b e8 0b 41 56 48 8b 14 dd 60 09 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 cc 2c de 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 480.403384][ T5824] RSP: 0018:ffffc90003b67708 EFLAGS: 00010246 [ 480.410099][ T5824] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 480.418542][ T5824] RDX: ffffffff8c1b08a0 RSI: ffffffff8c1b04c0 RDI: ffffffff90e44970 [ 480.426578][ T5824] RBP: 0000000000000001 R08: ffff888036ac1460 R09: ffffffff8bb2b860 [ 480.434752][ T5824] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1b04c0 [ 480.442807][ T5824] R13: ffffffff8bb2b8a0 R14: ffffffff8a95b130 R15: ffffc90003b67808 [ 480.451547][ T5824] FS: 0000000000000000(0000) GS:ffff88812444d000(0000) knlGS:0000000000000000 [ 480.460777][ T5824] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 480.467482][ T5824] CR2: 00007fe27ea5e530 CR3: 000000005e20e000 CR4: 00000000003526f0 [ 480.475541][ T5824] Call Trace: [ 480.478915][ T5824] [ 480.481900][ T5824] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 480.487497][ T5824] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 480.493832][ T5824] debug_check_no_obj_freed+0x4da/0x630 [ 480.499937][ T5824] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 480.506098][ T5824] ? __page_table_check_zero+0x333/0x410 [ 480.511890][ T5824] ? __page_table_check_zero+0x338/0x410 [ 480.517633][ T5824] __free_frozen_pages+0x392/0x10d0 [ 480.522912][ T5824] hci_release_dev+0x4ef/0x630 [ 480.527927][ T5824] ? __pfx_hci_release_dev+0x10/0x10 [ 480.533284][ T5824] ? device_release+0x69/0x240 [ 480.538171][ T5824] ? rcu_is_watching+0x12/0xc0 [ 480.543062][ T5824] ? device_release+0x69/0x240 [ 480.547943][ T5824] ? kfree+0x2ec/0x6b0 [ 480.552112][ T5824] bt_host_release+0x6a/0xb0 [ 480.556835][ T5824] ? __pfx_bt_host_release+0x10/0x10 [ 480.562211][ T5824] device_release+0xa4/0x240 [ 480.566865][ T5824] kobject_put+0x1f7/0x640 [ 480.571753][ T5824] put_device+0x1f/0x30 [ 480.575997][ T5824] vhci_release+0x185/0x230 [ 480.580709][ T5824] ? __pfx_vhci_release+0x10/0x10 [ 480.585846][ T5824] __fput+0x3ff/0xb40 [ 480.589962][ T5824] task_work_run+0x150/0x240 [ 480.594652][ T5824] ? __pfx_task_work_run+0x10/0x10 [ 480.600400][ T5824] do_exit+0x8b8/0x2b60 [ 480.604645][ T5824] ? __pfx_do_exit+0x10/0x10 [ 480.609704][ T5824] ? do_raw_spin_lock+0x128/0x260 [ 480.614814][ T5824] ? find_held_lock+0x2b/0x80 [ 480.619594][ T5824] ? get_signal+0x7e0/0x21e0 [ 480.624244][ T5824] do_group_exit+0xd5/0x2a0 [ 480.628907][ T5824] get_signal+0x1ec7/0x21e0 [ 480.633484][ T5824] ? tcp_getsockopt+0xa8/0x110 [ 480.638462][ T5824] ? __pfx_get_signal+0x10/0x10 [ 480.643372][ T5824] ? do_sock_getsockopt+0x261/0x3d0 [ 480.649062][ T5824] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 480.654695][ T5824] arch_do_signal_or_restart+0x91/0x770 [ 480.660362][ T5824] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 480.666598][ T5824] ? __sys_getsockopt+0x154/0x1d0 [ 480.671805][ T5824] exit_to_user_mode_loop+0x86/0x4a0 [ 480.677162][ T5824] do_syscall_64+0x668/0xf80 [ 480.681876][ T5824] ? clear_bhb_loop+0x40/0x90 [ 480.686615][ T5824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 480.692680][ T5824] RIP: 0033:0x7f69b7f9df6a [ 480.697147][ T5824] Code: Unable to access opcode bytes at 0x7f69b7f9df40. [ 480.704754][ T5824] RSP: 002b:00007ffd1a648d88 EFLAGS: 00000216 ORIG_RAX: 0000000000000037 [ 480.714231][ T5824] RAX: 0000000000000000 RBX: 00007ffd1a648e10 RCX: 00007f69b7f9df6a [ 480.722315][ T5824] RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003 [ 480.730394][ T5824] RBP: 0000000000000003 R08: 00007ffd1a648dac R09: 0000000000000000 [ 480.738456][ T5824] R10: 00007ffd1a648e10 R11: 0000000000000216 R12: 00007f69b81eaac0 [ 480.746481][ T5824] R13: 00007ffd1a648dac R14: 0000000000000000 R15: 00007f69b81eb180 [ 480.754608][ T5824] [ 480.757736][ T5824] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 480.765068][ T5824] CPU: 1 UID: 0 PID: 5824 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 480.774579][ T5824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 480.784687][ T5824] Call Trace: [ 480.788185][ T5824] [ 480.791153][ T5824] dump_stack_lvl+0x100/0x190 [ 480.795906][ T5824] vpanic+0x552/0x970 [ 480.799943][ T5824] ? __pfx_vpanic+0x10/0x10 [ 480.804500][ T5824] panic+0xd1/0xe0 [ 480.808257][ T5824] ? __pfx_panic+0x10/0x10 [ 480.812721][ T5824] ? check_panic_on_warn+0x1f/0x90 [ 480.817891][ T5824] check_panic_on_warn.cold+0x19/0x34 [ 480.823300][ T5824] ? debug_print_object+0x18e/0x2a0 [ 480.828553][ T5824] __warn.cold+0x191/0x348 [ 480.833017][ T5824] __report_bug+0x296/0x3d0 [ 480.837639][ T5824] ? debug_print_object+0x18e/0x2a0 [ 480.842892][ T5824] ? __pfx___report_bug+0x10/0x10 [ 480.847962][ T5824] ? __lock_acquire+0x4a5/0x2630 [ 480.852940][ T5824] ? unwind_next_frame+0x3c8/0x1ea0 [ 480.858201][ T5824] report_bug_entry+0xe1/0x290 [ 480.863000][ T5824] ? debug_print_object+0x19b/0x2a0 [ 480.868246][ T5824] handle_bug+0x1cd/0x2a0 [ 480.872630][ T5824] exc_invalid_op+0x17/0x50 [ 480.877187][ T5824] asm_exc_invalid_op+0x1a/0x20 [ 480.882075][ T5824] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 480.887925][ T5824] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 62 8b e8 0b 41 56 48 8b 14 dd 60 09 1b 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 cc 2c de 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 480.907570][ T5824] RSP: 0018:ffffc90003b67708 EFLAGS: 00010246 [ 480.913686][ T5824] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 480.921691][ T5824] RDX: ffffffff8c1b08a0 RSI: ffffffff8c1b04c0 RDI: ffffffff90e44970 [ 480.929697][ T5824] RBP: 0000000000000001 R08: ffff888036ac1460 R09: ffffffff8bb2b860 [ 480.937709][ T5824] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1b04c0 [ 480.945715][ T5824] R13: ffffffff8bb2b8a0 R14: ffffffff8a95b130 R15: ffffc90003b67808 [ 480.953721][ T5824] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 480.959256][ T5824] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 480.964770][ T5824] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 480.970620][ T5824] debug_check_no_obj_freed+0x4da/0x630 [ 480.976222][ T5824] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 480.982336][ T5824] ? __page_table_check_zero+0x333/0x410 [ 480.988010][ T5824] ? __page_table_check_zero+0x338/0x410 [ 480.993710][ T5824] __free_frozen_pages+0x392/0x10d0 [ 480.998964][ T5824] hci_release_dev+0x4ef/0x630 [ 481.003787][ T5824] ? __pfx_hci_release_dev+0x10/0x10 [ 481.009126][ T5824] ? device_release+0x69/0x240 [ 481.013931][ T5824] ? rcu_is_watching+0x12/0xc0 [ 481.018749][ T5824] ? device_release+0x69/0x240 [ 481.023557][ T5824] ? kfree+0x2ec/0x6b0 [ 481.027671][ T5824] bt_host_release+0x6a/0xb0 [ 481.032299][ T5824] ? __pfx_bt_host_release+0x10/0x10 [ 481.037630][ T5824] device_release+0xa4/0x240 [ 481.042270][ T5824] kobject_put+0x1f7/0x640 [ 481.046731][ T5824] put_device+0x1f/0x30 [ 481.050958][ T5824] vhci_release+0x185/0x230 [ 481.055514][ T5824] ? __pfx_vhci_release+0x10/0x10 [ 481.060602][ T5824] __fput+0x3ff/0xb40 [ 481.064652][ T5824] task_work_run+0x150/0x240 [ 481.069294][ T5824] ? __pfx_task_work_run+0x10/0x10 [ 481.074468][ T5824] do_exit+0x8b8/0x2b60 [ 481.078669][ T5824] ? __pfx_do_exit+0x10/0x10 [ 481.083305][ T5824] ? do_raw_spin_lock+0x128/0x260 [ 481.088377][ T5824] ? find_held_lock+0x2b/0x80 [ 481.093088][ T5824] ? get_signal+0x7e0/0x21e0 [ 481.097712][ T5824] do_group_exit+0xd5/0x2a0 [ 481.102286][ T5824] get_signal+0x1ec7/0x21e0 [ 481.106851][ T5824] ? tcp_getsockopt+0xa8/0x110 [ 481.111676][ T5824] ? __pfx_get_signal+0x10/0x10 [ 481.116570][ T5824] ? do_sock_getsockopt+0x261/0x3d0 [ 481.121825][ T5824] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 481.127437][ T5824] arch_do_signal_or_restart+0x91/0x770 [ 481.133035][ T5824] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 481.139241][ T5824] ? __sys_getsockopt+0x154/0x1d0 [ 481.144314][ T5824] exit_to_user_mode_loop+0x86/0x4a0 [ 481.149645][ T5824] do_syscall_64+0x668/0xf80 [ 481.154277][ T5824] ? clear_bhb_loop+0x40/0x90 [ 481.158999][ T5824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 481.164928][ T5824] RIP: 0033:0x7f69b7f9df6a [ 481.169383][ T5824] Code: Unable to access opcode bytes at 0x7f69b7f9df40. [ 481.176427][ T5824] RSP: 002b:00007ffd1a648d88 EFLAGS: 00000216 ORIG_RAX: 0000000000000037 [ 481.184884][ T5824] RAX: 0000000000000000 RBX: 00007ffd1a648e10 RCX: 00007f69b7f9df6a [ 481.192890][ T5824] RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003 [ 481.200894][ T5824] RBP: 0000000000000003 R08: 00007ffd1a648dac R09: 0000000000000000 [ 481.208893][ T5824] R10: 00007ffd1a648e10 R11: 0000000000000216 R12: 00007f69b81eaac0 [ 481.216902][ T5824] R13: 00007ffd1a648dac R14: 0000000000000000 R15: 00007f69b81eb180 [ 481.224921][ T5824] [ 481.228559][ T5824] Kernel Offset: disabled [ 481.232905][ T5824] Rebooting in 86400 seconds..