last executing test programs: 5.632541206s ago: executing program 3 (id=1562): mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x81, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf) sendmsg$auto_OVS_DP_CMD_NEW(r0, 0x0, 0x80) r1 = socket(0x29, 0x2, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) r3 = setfsuid$auto(0xee00) r4 = setfsuid$auto(0xee01) setresuid$auto(r3, r4, r3) ioctl$auto(r1, 0x89f2, 0x24) 5.089584775s ago: executing program 2 (id=1563): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fs/netfs/volumes\x00', 0x40080, 0x0) pread64$auto(r2, 0x0, 0x8100000041, 0x413e) mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000) setresuid$auto(0x0, 0x7, 0x8080) capset$auto(0x0, 0x0) capset$auto(0x0, 0x0) clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0) syz_clone(0x5004000, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x10001, 0x1, 0x0, 0xfffffffffffffffe, 0x0) write$auto(r3, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x503083, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x40800) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r4) 4.64660366s ago: executing program 3 (id=1567): mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x44009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x38, r1, 0x1b, 0x70bd24, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x10}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "8982884700"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x44040}, 0xc800) r2 = open(&(0x7f0000000040)='./file0\x00', 0x2041, 0xfa) write$auto(r2, 0x0, 0xfffffdf1) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22) linkat$auto(r2, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mprotect$auto(0x0, 0x8000000000000001, 0x8) 4.005342066s ago: executing program 3 (id=1569): close_range$auto(0x2, 0x8, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/per_cpu/cpu1/buffer_size_kb\x00', 0x10bb01, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/plpmtud_probe_interval\x00', 0x88002, 0x0) sendfile$auto(r0, 0x3, 0x0, 0x400000000008) r1 = openat2$auto(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0xf, 0x7, 0x7}, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), 0xffffffffffffffff) r3 = socket(0x2, 0x1, 0x106) sendmsg$auto_OVS_VPORT_CMD_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4100}, 0x20000000) setsockopt$auto(r3, 0x6, 0x5, &(0x7f0000000080)='*\x00', 0xe6) r4 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, r2, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x4}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0xc}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x9}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r4}, @NL802154_ATTR_SEC_ENABLED={0x5}]}, 0x3c}}, 0x8010) 3.649861139s ago: executing program 3 (id=1570): symlink$auto(0x0, &(0x7f0000000440)='./file0\x00') mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptypc\x00', 0x6a0001, 0x0) close_range$auto(0x2, 0x8, 0x0) getpid() syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x1000e6e) personality$auto(0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/softnet_stat\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) preadv$auto(0xffffffffffffffff, &(0x7f0000009180)={0x0, 0x7}, 0x26, 0x800000000080, 0x5) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000300)=""/241, 0xf1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(r0, 0x0, 0x42, 0x5fa) 3.455478961s ago: executing program 3 (id=1571): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/filesystems\x00', 0x1c9802, 0x0) pread64$auto(r0, &(0x7f0000000380)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0) ioctl$auto_VHOST_SET_VRING_CALL(0xffffffffffffffff, 0x4008af21, &(0x7f0000000000)={0xffff, r1}) ioctl$auto_IOC_PR_CLEAR(r2, 0x401070cd, &(0x7f0000000140)={0x79, 0x8}) (async) close_range$auto(0x2, 0x8, 0x0) r3 = socketcall$auto(0x4, 0x0) (async) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (async, rerun: 32) r5 = open_tree$auto(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x81) (async, rerun: 32) r6 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) sendmsg$auto_SMC_NETLINK_REMOVE_UEID(r5, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x24, r6, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@SMC_NLA_EID_TABLE_ENTRY={0xd, 0x1, '/dev/kvm\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040}, 0x80) (async) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) (async, rerun: 64) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) socket(0xa, 0x2, 0x0) (async, rerun: 64) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async, rerun: 64) r7 = clone$auto(0x6, 0x8000000000000001, &(0x7f0000000080)=0xcf, &(0x7f00000000c0)=0xffff7fff, 0x1000) prctl$auto(0xa134, 0x22, r7, 0x800, 0x5) (async) socket(0x2, 0x1, 0x106) (async) socket(0x2, 0x3, 0xa) (async, rerun: 64) setsockopt$auto(0x4, 0x0, 0x3, &(0x7f0000000000)='!/*:(*\'\x00', 0x800000e) (async, rerun: 64) r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) setresuid$auto(0x60, 0x1000, 0x607) (async) ioctl$auto(r8, 0x2284, 0xffffffffffffffff) 3.317411937s ago: executing program 3 (id=1572): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x10b142, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) flock$auto(0xffffffffffffffff, 0xffffffff) flock$auto(r0, 0x5) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)=""/108, 0x6c) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000100), 0xffffffffffffffff) process_vm_writev$auto(0x0, 0x0, 0x200000000017, 0x0, 0x7, 0x0) flock$auto(r0, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) bpf$auto(0x8, &(0x7f0000000140)=@link_update={0x3, @new_map_fd=0x8, 0x7fffff37, @old_prog_fd=0x6}, 0x9) linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) mmap$auto(0x0, 0x202000c, 0x3, 0xeb2, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) r2 = bpf$auto(0x0, 0x0, 0x1000000f) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'veth0_to_bond\x00'}) sendmsg$auto_ETHTOOL_MSG_RINGS_GET(r1, 0x0, 0x8c0) socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) recvmmsg$auto(r2, &(0x7f0000000580)={{0x0, 0x200, 0x0, 0x7, &(0x7f0000000500)="3f3e67da62797e85e472faca6dc26e8c6967a15ab05e941d3c519cb2b377c0", 0x6, 0x1}, 0x3b}, 0x68, 0x3, 0x0) timer_create$auto_CLOCK_TAI(0xb, &(0x7f00000000c0)={@sival_int=0x8, @inferred=r0, 0x5}, &(0x7f0000000140)=0x7) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) setresgid$auto(0x0, 0x0, 0x8) write$auto(0x3, 0x0, 0x7fffffff) 3.211770634s ago: executing program 1 (id=1573): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event0\x00', 0x3496c2, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000240), 0x343240, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_GET_MSRS(r0, 0xc028ae92, &(0x7f00000001c0)={0xb, 0x0, [{0xffffff47, 0x8, 0xf}]}) openat$auto_urandom_fops_random(0xffffffffffffff9c, 0x0, 0x901, 0x0) unshare$auto(0x40000080) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0) mmap$auto(0x0, 0x2020009, 0x1000000000000006, 0xf8, 0xfffffffffffffffa, 0x8000) r2 = getpid() openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev7\x00', 0x48000, 0x0) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0xfffffffffffffffe, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) syz_clone(0x280, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000080), 0xffffffffffffffff) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) getdents64$auto(r1, &(0x7f0000001180)={0x0, 0x9259, 0x81, 0xc, "c839bd1c157b61e0f4cd3f09a0af63533be58d1bbf4719d8ab092a3252c213c3ba83fde24d9df056b4f2181fe8b080a53a08390477fe5e3760e33249a91ca459511725dc8bb08af1c896a571e0749ea94cca26c48eff58fad9a7ffb12056974a89840d81f504f70e006073377080e28799e329e24bec2c634d02fbd01ed82c754a1348bbe1c2dc2a6756953d9f6f1000e82e1cf0651eec1b940f43a5e750b7854548cd5d911d33f8c7dcf1d71d57d8d0af82fa892553490db05eb9f8963887f2eaa2a7498fc9e868deb95161704f4f2be05a544a3cf06b18596e7a225c431896aea5f530b2a91038b37c655d10d9b92f8ed4204a37ed45f17582e88706f666bd5357b8aa0dc3d699ff9e7f27c3f2c308864f5b21136f678ea2eb720b265ce09eb2661597ee57bbbaf5aab90cf1784edf5083ff700ea4ce8fcafe843754d9701ee5998c9d6cffd19b124bba9eae3d4df5433a4a07b8308cccd6c81edf4878387bb5cf2b1c054847db9c22c2b81cdfc4b89a28d532c95ff1ec82e43bf5f8ff2aa98c8686897f5ab764ff94f9352e33a841b59df196b6c8857b1a2574fe5416a726240b22d37171d6413b0588eea4b763f9b810aa53677297bf9e27f9d2dd731570c1804c1dbaebe0bf40bd6b3f5e464730741f6ae5cb1d3ca95932c1f46860605463880a3eb7993121b62eaadb36647e12866d52e556a479e2c7ca86bcfba66118eeffdf1641cf4315734b9216f9deb0c45ff07838dbe61a93d6e336ed254f59699dfe41c30d36bcf5fb7c3396a64546f3381fcd7107a716630b715be8c20ff591eb2b5c4871b4658e4f9134c0820debc02da038e33427315b7fced4b969c532152f005760831910819a16d2bf8eabcb736143ebea631e20f3e4c755157a2fa27e3c980b23cfbab6a5df9a0324a679a565b1c58bfe87de92174831dda352d38cf959db797c4740b94d11c0975472f2bff3f14acfb0d2ca6cb0e83bb6a8453c01ed7ec692a0575e81981f115e6952c0fbae54ea639709e64e2ec23b8d89188abc9244bddb4ca8a747a400ee6f6063786149828078705ca3b4c531f9d4912bede9c45a54cae403899d40bfb9a1a414d377109be888046a8adcf4742c44294f81d09a6707390701c34ff84d2844a73c747b3ac3f2497db3794f1564759e8fdabedcf4982d4f7f1b17e0cadf70cf6bc27c3f84660b759335b7a6da1137183ab7e9ca3e17e64b46a60ac131fafff697ab2dcdb9648a216bcfeba8b36c0d21f91b6e497dda76dad9421ed9159e9dd4468dc90ef3023b091ac89d4980a463d158fd17978bfe3d62f7fd5879a56303d08ce09fc8cf34a3e332add40d9016309fdfccab6e74c31c66d5f81aa508d2abf3d38709f59c1554f85bff494b037c5b0756697d698835db74e2f2c14a4dc2bb71bcbdc0cc712f365392142e2361ca74edc4760b9e8554a454eae133e5efcbb9e778488fe6a2d405a732579a483b67b88b7e1829433991e70642ef4b491cb1df6ba26f96b244bad1ed05243e6ca82b0e1dad089dc8dec2ce300016e49a05440e50d5f359d16261eb13a62494faa894662dca1224942d834622b66279cd1926a34e121867ad2a2e901f272dc19e971431ec1be704966bb7a54e2fa28be1a3309fa4c83f6162829da7e8e1815981e486f9869656835bfa1e5e847bce2d2c9911d8245465e8d7c52b3721971f2fb4f97337bc3a5112b4f8d08c04664bbe55a8a7e9ef2e8b981fd0b7ae07caf3190e8acf27c06e022a8831342177c816b5ef2a9e7f7fadd00ee21b4dc0d9fbc185d9937fa05fc48f49b9254da9b29bd2ce7b342261c860b735ff90cf245527b44de3cd2a82612cb4497c656967a5ff90d832684dc522de3e14d89824f47f10293e790b583f69842d2b28f701951d95ac6be26d969b6f812569e74a5f3a3e8da4caaaccff189f7bc2dd1d2cb62cd0162fc1d4b961350a419d8a352f160c4b8c413e6d41466acc9e94e9021431689721ea7cb9ecc059d9298f623e5a5d012201a8f1a14518ce2e7e861b55fab0ec2703f861236154566549129507c20694f2b93274083dd12a12db3d3026efab777dc8a2e060aef86acf68671ecb1982f2f7d351f471c2b6c8e20a9dd416f94792874ae8cd2eac27a36e4e37111d8b6d3e3b3f656036938e6fd87dc46799e158afb7d7543b2b3d964f2c3f635819eec930db606fe05f9265c240950b26aac3ac36f94e425956b6791e55e836a9e592b962c3a449dcdcafc3541c8b5ba89c0d7398d771d1748b3cc7cafb2644f99d582d552732c4cfcdade2845fe58dc4ef3befb3241fc089ba7585e690e80ba980f2315e5e27b178fd3c71ecb4226be1c3c6171c4f3bd78b5b1e21b20c3c34462dbde61e6dbc5f5724e5fbdd06e1c7584001288d0139e643f6e55369a422d8587eb6e6c3924b97f30ab8c78220776ea7c38b08284b5432008e2ee01f3c2b43eb5a557fcb9eab89407774dfe585b66dfd8983bfd122995f3297a2625a91226bff57b3a02f7308a36ab1b5a5ae39c4d1930c3ce9f1ba0a6d91f9476bb3c43d659c2dc5187a46d70608349e74538a7e521850ea7acd97261ec589067b54f0cb2d2af66271b401ed6750e325dd398c5713bedb1ab3302ad95a38077a2e4201ec993ec3e9cd4d9398f7ab070bdd268f8b70fe1eeb01e0f1fa014004ef0eabe4171b8c54bf6045dbd86da357e5f8e7134531870ee959d65eefffe3e04b0293cbf3364379e7bb962d78795197b45d8b3639685d3d2f5304b41a2742c4bb806a5e2b4baea3a03b661ba603910ff5fdf2e46600f58435e3b6d9c20d6cac6beed2c3be01a3d7da9753b58d939f42d598adbdd01446ff8cbe17ec8927422d38cdb90e1518ac58e684e2d3cb8a0077b07190d9183dc1f907a0c8326c6ac6cb060b0bf84c5ad85512d0dbaaec7e75ceca717e8e016e8c8bd93d9642e8b766b72d0943bbf19c1e32d3dc71a0e91b90883fcf5e5f8da044243df4f9fee9ba96fc0bc94b87c469304a4859ef70903a91cb95ea06c0c654331f1c998524e7d322e89e5b0a66f3e48aece71cdc4060db60d269b24e40f03dc54f01f559931d32c359d0034dd04aee171ac84c1c7ba7cbdc92a39f1f1f269bd351ed7f9208ffed048d5e7e59b17a3305b56a857b3678eaf5efa63fe04fecf03aea92546086db2fbe0795dc8edaef1080e7b59441dd8a3a0ba81e58a2f52f9fc569eff7e78f8d18eebe6388a5e9f2174203e5aa2cd34be04b272815d49ad56e59ad8074861bb90f81e5ca1915b3b170bc78e0ca3213c95f747e93882c8266f41e635e3b1c30dded0da3afeaaea9d2ecc8e20ba4db41cb292fdb97128ff928ef25a2f1a4ff0b001bb332ea996081cb8df7f7c56c6802a1546b4ba2ba03105858756d333913f9dd2133d83748ae44266282f83896df5c2af008c15df1e588b80c357466b5b3035f2664674ebea21a6e1b3427c1b5f647fb6d16e8370a90a5e309ca31cdf877f6d6dfd256c1e6a10cb8645fbc1f3a122bffaaf4106b850de4227851f1b64b767638b8eee5fe5224f76a7844f94ad72f39f37f87a3ff7cf0d30c771f6a418bf230dd6e1b56aab223962c7319ac2485246008deafa21befbedf5250547256e95e46fb8ea506a89274ffe68311f9e8e78f2c1e4b1e77e3bdfe7cb4a6f4f15b96a4f521350ce06d664cea8409ccf9fbb2f0a9c37d2fe33c5ca87fbe18ec54a0229064680e5767a95021a412d4470c26d378ca96009363a37b7278bf8c86fe978d9ed56c68207257adb24f6a31ae883e0fe4007853f0fe4ab6d7afb2b3ed5b36ced9c81391a735caa1add725d63e0851d8569d1eefaea436ad1d30bab23f711cbab3e001916922b28391550e1453128abd69073067ab6840c8a76760ec847b55a45efaff2193926b75eb00c9ac65390e928bd751998b58974d92153530c845efa46b4c6bb6d958a74c4d3ac22391e7b75e079afcb901bff5c9d14a32ffc4062bb78d234d0d6c0e2175a139125805bff7d220d630f07e4c4688e260f0216ea34d496d6b5cdd52b4547198ee8c348eaa859d742e302cde2a380f5b7b8a4973bbf0e2417ec2b13b936be1469b97001bd2ffcdf6dc45b4367f7d7debf6126b81c881adee31d917e65e7db82e23e87b0467c9caa06835e1e7b4fa8330194489950cc35a40c2ed86f69fe9f960a99c7b95f9ff1210a5f2436c3e48599bd5c64b7830ad50e356b8d121983d972ee9bdb2aa04de84bc55356ddd0cdcb593eaae8481874c9eb64628643fe3b0ee0dcdc9e2e5bc12350189ea07e2f18450fea30dfe20cceec196eafeb600da173967013069588afbe6eb67b9829f106238f130438c555fe02e54dd79ce0fc3a696d58aae91bbe4413ee28cce411dd7932e5ac3b26449bc0a6e48598f1fd57c9e6a7f4dd9341bb87b7c8261eae48151314444a566ab9fcf3578ce519d4c8289dc5ca687efa4f698401542495c725457822ac098ebeb7272bc5d13f16aeabbde12f27cd17a23646ab011da0d7df88fca1c7c34e3cadd6c60fd6dc0c29e41c1541a476eb523108290beb404033f1c6933fc91791ec189cf361c8f7778b349aa158e69feadaa0e579f04251b79564c35c513b00fee7544b142917c5a29bd55df34ba8f05fe1b5c0dbf96309e2f9918638a9a889ebf80b73e1b8aebfe151a913dac923127237a4b0672a4445fb4daac5b3787346a22b470da7544aec7edf823a45194f38e0045979ee01c493585442536508b4dfe3676330d10899f38e1ad61d4884d7e2f2370179e574f96469af21a786dca3180b47ea27a0b5de7c8ed17c43c289e7e7f07c8f792562d3c12ca0b9e0b7853ada6d886b4aa214fcd399056c98075cc2364d3f0f1ab6a45dc3444e1e9370167f5536df3e8c7b1b31e7c37ebcfade33bb56bc1185887f2fd729cf0ee7c6cf96475c2f8ff96cb73730032c7b57aafd514422c101fdd5bcf03126cbc2deac92792796011182cd7d94df357f4913daab37e42d4f8697aab7b0d32e48f0aa509dab8eaa84987b068d01ad6f28bb590b74c84fb313b3a15b03d2d9b90f05887d085062e07ee6ef37bb4c2889b1785fb4599ceb61d27d45f75b8fa0104fc5ad630800627de3c85c61eea7ed38f5eea8409e73e981ac7195bef1f468a2823e9905359d94b223d2191e38d19e5804451f3f58fa63132b01dd62c75f1484e8270b7d49e6190afc3931e577285821a8c981b62b10f2937556a4298eb5f325a07d274a114a426e716373aadb5d98d36c464b766d56ce6422ca10ea1432e367f671b6c21de28805ad16cb728bd6acbc43a3c710548560afdb29cf52f0b89b6498f3909d132ffd5db18fc9250172c1703d6a7e8c9db1a0f4bda357d9787ea2701d4ed2007c730b3259ed6d6daa9e9cdf583d0cbfa2421269fcc5a0a4127841fda32a81fc3b4defd19f3c40a4ccccda414443a039c5fee04dcb1fcc59280dadd02f164bbc15949dea4936b86a10735542ac252390aea100c26f9989286b41b1d0229774d0ea36fdd589a7e57767a0a44a043b4263de68a016e9c88280388d178995af0ac2a7dc41154e721f84b7124b93647a514086992ef90f45a32fe73bcbb075eb1cf6bedff0d5fae887753218b98130869a6fcee92d449572ed592fd4b1f2828dfdc243006ec9bc0cf1c19fe2af724972b5794c05da78723c9ff0e55fa7d96cfd948e959f6fce3836647167ed9c246a058ba7e9e5664a8cc09a7fd95f4615ce5c0deea30d06d7c3ec3fd2f4ba5675eeca49a04437c9b743df75dc8d81b86bde3ff3cc55e99e31f9e62257db527"}, 0x81) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/netdevsim3/sriov_numvfs\x00', 0x10b142, 0x0) 3.081021402s ago: executing program 0 (id=1574): r0 = socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) wait4$auto(0x0, 0x0, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) getsockopt$auto_SO_RCVTIMEO_OLD(r1, 0xffffffff, 0x14, 0x0, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) write$auto(0x3, 0x0, 0x7fffffff) setsockopt$auto(r0, 0x6, 0x1f, 0x0, 0x3d) 2.787745373s ago: executing program 2 (id=1575): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/hid/drivers/cp2112/new_id\x00', 0x15d040, 0x0) mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) symlink$auto(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00') r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000080)='/dev/binderfs/binder1\x00', 0x406000, 0x0) ioctl$auto_BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000840)="12915fb9d5") r2 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(r2, 0x10e, 0x3, 0x0, 0x0) ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)="fc06c1f730b9d2867a8ba29f242cf38f59f712fcd917fee796") close_range$auto(0x0, 0xfffffffffffff000, 0x2) 2.368732913s ago: executing program 0 (id=1576): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00`', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf2504000000080017000800000004000e00"], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="1100", 0x2) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x5, 0xfffff05e, 0x0, 0x0, 0x80000001) r2 = gettid() futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) kill$auto(r2, 0x11) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x0, 0x0) sendfile$auto(r3, r4, 0x0, 0x1000200) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x8600, 0x0) fcntl$auto(0x3, 0x4, 0xa553) 1.775940051s ago: executing program 1 (id=1577): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/cifsFYI\x00', 0x40c01, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x9, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x1400000, 0x7fffffff) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, r0, 0x454f, 0x5f, 0x0, 0x0, r0, 0x80000001}, 0x6d4) 1.468052916s ago: executing program 2 (id=1578): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptyud\x00', 0x169900, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dmmidi2\x00', 0x600141, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) timer_settime$auto(0x0, 0x6, &(0x7f0000000000)={{0x100000001, 0x3ff}, {0x5a, 0x2}}, 0x0) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x11, 0x3, 0x9) close_range$auto(0x2, r0, 0x0) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x52, 0x0) sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) setsockopt$auto(0xffffffffffffffff, 0xfffffffc, 0x0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptyud\x00', 0x169900, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dmmidi2\x00', 0x600141, 0x0) (async) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket(0x2, 0x1, 0x106) (async) timer_settime$auto(0x0, 0x6, &(0x7f0000000000)={{0x100000001, 0x3ff}, {0x5a, 0x2}}, 0x0) (async) io_uring_setup$auto(0x6, 0x0) (async) socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x11, 0x3, 0x9) (async) close_range$auto(0x2, r0, 0x0) (async) socket(0xa, 0x2, 0x3a) (async) io_uring_setup$auto(0x52, 0x0) (async) sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) (async) setsockopt$auto(0xffffffffffffffff, 0xfffffffc, 0x0, 0x0, 0x3) (async) 895.720087ms ago: executing program 0 (id=1579): symlink$auto(0x0, &(0x7f0000000440)='./file0\x00') mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptypc\x00', 0x6a0001, 0x0) close_range$auto(0x2, 0x8, 0x0) getpid() syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x1000e6e) personality$auto(0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/softnet_stat\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r2, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r2, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) preadv$auto(0xffffffffffffffff, &(0x7f0000009180)={0x0, 0x7}, 0x26, 0x800000000080, 0x5) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r1, &(0x7f0000000300)=""/241, 0xf1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(r0, 0x0, 0x42, 0x5fa) 698.932802ms ago: executing program 2 (id=1580): openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x3, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0xffffffffffffffff, 0x340000000000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r1 = socket(0x29, 0x2, 0x0) getsockopt$auto(r1, 0x119, 0x6, 0x0, 0x0) setsockopt$auto(r0, 0x0, 0x0, &(0x7f0000000040)='/^@/:$&{!\x00', 0x5) fallocate$auto(r0, 0x0, 0x9, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010029bd7000fcdbdf25300e00001800018014000200776c616e31"], 0x2c}, 0x1, 0x1000000}, 0x8094) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8000, 0x0) r4 = io_uring_setup$auto(0x9, 0x0) close_range$auto(0x2, 0x8000, 0x0) r5 = socket(0xa, 0x2, 0x88) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r4, r7, 0x8, 0x401, r5, @relative_fd, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x8000000000000001, 0x9, 0x5, 0xf870e9f, 0x7, 0x8, 0xffffffffffffffff}, 0x9) cachestat$auto(r0, 0x0, 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x37, 0x67f, 0xfffffff8, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000000c0)={'batadv0\x00'}) r10 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_DEL_STATION(r9, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f00000019c0)=ANY=[@ANYBLOB="1ccd0ba78e97d57a5e25935ea82300001c51df6175844b505c11fda9a4dc5298034f587f90be0ebd668014aead55f64f7cee7e6119cfb248198a8a05b35adc7a05291ae066563a103d62421333f5001e7d6aa6eadbaebcacb081ad0d797b631e0578470d", @ANYRES16=r10, @ANYBLOB="000226bd7000fcdbdf251400000004009c000400c700"], 0x1c}}, 0x44000) r11 = waitid$auto_P_PID(0x1, 0x0, &(0x7f0000000380)={@siginfo_0_0={0xd3, 0x1, 0x6, @_sigpoll={0x2, r6}}}, 0x4, &(0x7f0000000400)={{0x0, 0x2b2}, {0x2, 0x4}, 0x8, 0x5, 0x5, 0x0, 0x1000, 0x2, 0x6, 0x6, 0x6b1, 0x4, 0xfff, 0xc1b6, 0x943e, 0x1}) sendmsg$auto_NL80211_CMD_ADD_LINK_STA(r8, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000700)={0x26c, r10, 0x10, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xff}, @NL80211_ATTR_CNTDWN_OFFS_BEACON={0xb8, 0xba, "e389a3a5e4f19219a98af767782327074ffbff78135d97da2555fbde9585439bd28e0fd4347d0a06f1e2c05cf5eff793930e5e5d62080644e64270fcb6af379fbf25f5acfadd612aeafff068fec9e0717de2e80ff0a0a1bc0731f59486a818c3c49e2e37cfe8958c0185eeb2caeebf9f869d6ab7fd26805d5b67df570f8087a83b4f8b8dbebe0fc57524438fa6524e3e34ae5a36bf789be0c065701d46ff8528247c24b0d40f9fd2306dfec03908086be6ab718e"}, @NL80211_ATTR_PMKID={0xfa, 0x55, "3c270a40581bda878ac744bbcb78b67fc63f43667557496bed8d0dc5959f5176a144cf3beccfd1885c84b1777fce4159dbe60af0e41769b1ae208adadb5fc074e563b94edeae4d70aaa83187275320230af4c9d0d69d3286d5118aad26c023647b6ef342dbf1b3a7b9d78218b533100e61c1ca78578e8435e0cf79ca016af97031949948c52cf289d2c50f4c00c90dde69e487451905c4cdc43471eaa5f96c497e741da5ba1c6b4b2bd1d91f62c741b53f8b9494153acf01eb41f18ce3fe4ce70519c26f2a30f629ef58a9700d797f7b80eaf33fd69936cc5ba28df13bef2a72b0b57ccc1dbb49588c2b0548e059efbbf27967c29fc1"}, @NL80211_ATTR_WIPHY_SELF_MANAGED_REG={0x4}, @NL80211_ATTR_CSA_IES={0x97, 0xb9, 0x0, 0x1, [@generic="cb7acff03a2e79b24f3af73ed138ede15acbb6ecf0921f9b3eff1ae9f8ee8031edb92e13577a1a651d138b24f1f777be46c18b2d070b4ae7531ccf7378221f1441ac8da31d91e62d817a2b5fe01af44fbde20d0d8b3d5fdb6bd35a5eeea4732d40e66e8479267f741d591c33d233edd0c618bbcd604bd6d1e193754b0bdc5ea4cbff18616eea16283a472d", @typed={0x8, 0x120, 0x0, 0x0, @pid=r11}]}]}, 0x26c}, 0x1, 0x0, 0x0, 0x4004001}, 0x8010) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0x25, 0x0, 0x1) 696.129424ms ago: executing program 1 (id=1581): openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r0 = socket(0x34, 0x5, 0x201) getsockopt$auto_SO_TXREHASH(r0, 0x1, 0x4a, &(0x7f0000000040)='.\x00', &(0x7f0000000080)) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) setfsuid$auto(0xee00) r1 = setfsuid$auto(0xee01) keyctl$auto(0x1f, 0x0, r1, 0x0, 0x4000000003ff) r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r2, 0x0, 0x7, 0x4cbd5d) utime$auto(&(0x7f0000000040)='./file0\x00', 0x0) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14) connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3e) 578.703245ms ago: executing program 1 (id=1582): r0 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="1b0026bd7000fddbdf2503000000200003801c00018015002d800800b500", @ANYRES32=0x0, @ANYBLOB="894f0700000000000000000004000380040002"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0x4844) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x9, &(0x7f0000000000)={&(0x7f0000000040)="8b7fe212ab9864bd19bd46499677555dda368abc9177ce25de208a82729b121f8de2a0bb770faaebd93b7d82f264d74a1ec4b1247706df50b5", 0xfc2}, 0x80002, &(0x7f00000000c0)="0e81136600004fdf7479c962f55559f8cf55822e", 0x7, 0xa505}, 0x800}, 0x7f, 0x4008) 531.838164ms ago: executing program 0 (id=1583): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) pwrite64$auto(0xffffffffffffffff, 0x0, 0x4e, 0x3) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x400008, 0x5, 0x9b72, 0x2, 0x6) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd70090000004a0003000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="8b632abd7000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC0D0p\x00', 0x80000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_PVERSION(r1, 0x80044100, 0x0) socket(0x6, 0x0, 0x5) r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/netdevsim/netdevsim0/hwstats/l3/enable_ifindex\x00', 0x2641, 0x0) write$auto(r2, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85\x00 /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1) 357.109276ms ago: executing program 0 (id=1584): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x2000001, 0x9, 0x3, 0x7, 0x0, 0x5, 0xffffffff, 0x2000000000210004, 0x0, 0x7, 0x9, 0x2, 0x7, 0x40000000000000af, 0x6, 0x8, 0x3, 0xa, 0x7, 0x0, 0xfffffffc, 0x10000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, [0x3, 0x0, 0x0, 0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000000000000, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x2, 0xfffffffffffffffc, 0x4000000000000, 0x4, 0x0, 0xfffffffffffffffd, 0x200000000000000, 0x0, 0x200]}, 0x1fe, 0x81) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x65, 0x2) socket(0x1d, 0x2, 0x2) connect$auto(0x3, 0x0, 0x55) socket(0x10, 0x3, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x5c8) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x6, 0x0, 0x4, 0x9}, 0x9}, 0x3, 0x1f00) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x10048080) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ubifs/chk_general\x00', 0x40aa2, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x7) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x2, 0x0, 0x0, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/auto_online_blocks\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfdef) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 356.682752ms ago: executing program 1 (id=1585): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x9, 0xd) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) getcwd$auto(0x0, 0xffffffffffffffff) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r2, &(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xe7k', 0x2) mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0) r3 = ioctl$auto_TUNSETNOCSUM(r1, 0x400454c8, &(0x7f0000000080)=0x5e1) ioctl$auto_BCH_IOCTL_QUERY_UUID(r3, 0x8010bc01, &(0x7f0000000140)={{"d13108aaa9a38d231bc1d76787623edb"}}) 343.983764ms ago: executing program 2 (id=1586): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x9, 0xd) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) getcwd$auto(0x0, 0xffffffffffffffff) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r2, &(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xe7k', 0x2) mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0) r3 = ioctl$auto_TUNSETNOCSUM(r1, 0x400454c8, &(0x7f0000000080)=0x5e1) ioctl$auto_BCH_IOCTL_QUERY_UUID(r3, 0x8010bc01, &(0x7f0000000140)={{"d13108aaa9a38d231bc1d76787623edb"}}) 197.855933ms ago: executing program 0 (id=1587): r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0x301000, 0x0) r2 = socket(0x22, 0x3, 0x0) bind$auto(r2, &(0x7f0000000040)=@l2tp={0x2, 0x0, @multicast2}, 0x5) ioctl$auto(r1, 0x40104d01, r1) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) r3 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000640), 0x401, 0x0) write$auto(r3, 0x0, 0xff) pwrite64$auto(r0, &(0x7f0000000380)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f \x00\x00\x00\x15\x02l@\x18*\xc0\xc1\x10\x15^\x0fo\x84\xfcL\"\x01\x02\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x91B\xae\xa0\xf0/\xa2\xd5M|\x02|\xda\x90V\xda\xbd\xc4\x85f}\\\xb5\xb5>\x03\x12#\xe0\xb8\xd6)\xb9ct\x16&\xe3\x9d\x95\x0fX\x91\xca\xe3\x9d\xa7\xac\x8f\xbct\x92\xd2auI\v\xe9\b7\x85\a\xa8\x12\xca\xceH\xe48\x94\x12\xaf\x9d\xc9m\xbd+^\\:\x86\x1fg\xf2\x17D\x7f\xa8\x16U>\xdc\xcfd\x10\xfc\x11gW\xad\x1a\xb3v\x8f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe3\xbf\xe7\xa4\x16\xf1\b\x8b\xda\xed\xaf\x98\xca\x0f\x19L\n\x85[\nIg\xba\xf3\xc2\x0e\x1e\xde*\xa1\xf4\x10\xaf\xb9\xbc\xf8\xf9\x16\x1e\t\xb2\x9e\x81\xf3\x12\x12\xce\x1b\xd13vy\x9bC\xc7J\xb4t\x7f4\xdf\xb1S\xc6egs1\xd4\xe8\x8f\xcd\xb6=y\xf2i\xb77^M\xde\x02\xb5\x99\xbd/*\b\xd7\xff\xc7\x9e,\x8d\b\xf6c^)\xff\x05*> E\x03ww;\xd2\x94W\xb8\x93x\'\xc8\t/\xa5\xd2;\x82G6\xc8\x13\xbc\f \x14d\xfe?\x8a \xdb6\x01\xc7\xa5G`\xfa;\xae\x97\xbcL\xd7\r', 0x4e, 0xb11) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x41, 0x5, 0x0, 0x1, 0x2000000000) r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r4, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r4, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) capset$auto(&(0x7f0000000500)={0x2}, &(0x7f0000000540)={0xfffc0000, 0xa, 0x4000007}) pread64$auto(r4, 0x0, 0x7ff, 0xd) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x20882, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:448/power/autosuspend_delay_ms\x00', 0x200, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)='\x00', 0x1) close_range$auto(0x2, 0x8, 0x0) fchdir$auto(r1) madvise$auto(0x3, 0xffffffffffffffff, 0x1) 47.397344ms ago: executing program 1 (id=1588): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0xffffffffffffffff, 0x340000000000) r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x29, 0x2, 0x0) ioctl$auto(r1, 0x89e2, 0x38) close_range$auto(0x0, 0xfffffffffffff000, 0x0) socket(0xa, 0x2, 0x0) socket(0x18, 0x5, 0x1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0) sendfile$auto(r2, r2, 0x0, 0x8) connect$auto(0x3, 0x0, 0x1b) read$auto_virtual_ncidev_fops_virtual_ncidev(r0, &(0x7f0000000080)=""/174, 0xae) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x2) write$auto(0x3, 0x0, 0xffd8) fallocate$auto(r0, 0x0, 0x9, 0x2) cachestat$auto(r0, 0x0, 0x0, 0x0) io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0x25, 0x0, 0x1) 0s ago: executing program 2 (id=1589): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x200000, 0x0) r1 = clone3$auto(&(0x7f0000000040)={0x43, 0x2, 0xa5e7, 0x10000, 0x1, 0x1, 0x10, 0x5, 0xf, 0x1ff, 0x5185}, 0x1) prctl$auto(0x3e, 0x1, r1, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/system/machinecheck/machinecheck0/bank6\x00', 0x2101, 0x0) write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000000040)="72f3", 0x2) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x123002, 0x0) ioctl$auto_SNDCTL_DSP_GETBLKSIZE(r3, 0xc0045004, &(0x7f0000000000)) mmap$auto(0x0, 0x2020009, 0x3, 0xebf, 0xfffffffffffffffa, 0x80000001) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0xfffffffffffffffe, 0x240007, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r4, &(0x7f0000000000)="c80d1b5d399b4d", 0xfdef) process_vm_writev$auto(r1, &(0x7f0000000280)={&(0x7f0000000380)="abe227473273f616b39b72a1173ebd75ed495828e78220036caab1596888e184ec88cc8d72abeccc29540ec3d264caace08676cf15ae8192a18980771268ba5de66be4bf4a2f0da80c468ae99d0d44e9db139ef8f0744432104ad97d5fd6234a8e52bcea3f63b9265b29b093fc77770fcd7638bec55e4f1398f623f977ff03c257ff2d26979dd774efd14eb732bc6ccce4cff5ea756d3549e103614a2688fc94111f7efa32413e4ef389d4ac067193f4810966ea3e1d4627cb0fada5d2e926b358733f342fa0a854a5e2db775c695694e62e919613c9ff765099ffab38", 0x2}, 0x5, &(0x7f0000000300)={&(0x7f00000002c0)="519f32c855e39486b3cb2d70aa95ba46a0f8d551fd61d5343aac76b17b92dd4b03", 0x6}, 0x0, 0xff) socket(0xf, 0x1, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto_SNDCTL_DSP_PROFILE(r3, 0x40045017, &(0x7f0000000180)="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") r5 = prctl$auto_PR_SET_MM_END_DATA(0x223, 0x4, r1, 0x5, 0x9) ioctl$auto_HPET_IRQFREQ(r5, 0x40086806, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socketpair$auto(0xffffffff, 0x8, 0xecc9, 0x0) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) close_range$auto(0x2, 0x8, 0x0) userfaultfd$auto(0x4) openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0) kernel console output (not intermixed with test programs): ber set to 60928 [ 283.607596][ T9542] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 284.534733][ T9556] netlink: 'syz.3.788': attribute type 3 has an invalid length. [ 285.154049][ T9571] : entered promiscuous mode [ 286.208580][ T9599] netlink: 330 bytes leftover after parsing attributes in process `syz.2.796'. [ 287.935032][ T9630] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 287.963999][ T9630] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 288.059901][ T9630] HfR: entered promiscuous mode [ 288.437872][ T9640] netlink: 8 bytes leftover after parsing attributes in process `syz.2.809'. [ 289.112733][ T9648] input: jJǸ-9%vJ86 as /devices/virtual/input/input14 [ 289.374997][ T9655] netlink: 330 bytes leftover after parsing attributes in process `syz.3.811'. [ 289.393230][ T29] audit: type=1326 audit(1773283641.221:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9636 comm="syz.1.808" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f004299c799 code=0x0 [ 289.473140][ T9655] mac80211_hwsim hwsim4 : renamed from wlan0 (while UP) [ 290.421208][ T9676] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 290.915876][ T9690] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.3.821: 7 [ 291.865040][ T9698] Process accounting resumed [ 292.562167][ T9714] netlink: 330 bytes leftover after parsing attributes in process `syz.1.826'. [ 292.610161][ T9714] mac80211_hwsim hwsim6 : renamed from wlan0 (while UP) [ 296.159549][ T9804] Process accounting resumed [ 298.323957][ T9854] netlink: 'syz.0.865': attribute type 20 has an invalid length. [ 298.372040][ T9854] netlink: 330 bytes leftover after parsing attributes in process `syz.0.865'. [ 298.400705][ T9854] IPv6: NLM_F_CREATE should be specified when creating new route [ 300.612718][ T9915] netlink: 334 bytes leftover after parsing attributes in process `syz.0.878'. [ 301.929553][ T9946] FAULT_INJECTION: forcing a failure. [ 301.929553][ T9946] name failslab, interval 1, probability 0, space 0, times 0 [ 301.970993][ T9946] CPU: 0 UID: 0 PID: 9946 Comm: syz.3.888 Tainted: G U syzkaller #0 PREEMPT(full) [ 301.971044][ T9946] Tainted: [U]=USER [ 301.971055][ T9946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 301.971074][ T9946] Call Trace: [ 301.971085][ T9946] [ 301.971098][ T9946] dump_stack_lvl+0x100/0x190 [ 301.971153][ T9946] should_fail_ex.cold+0x5/0xa [ 301.971193][ T9946] should_failslab+0xc2/0x120 [ 301.971229][ T9946] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 301.971285][ T9946] ? anon_vma_clone+0x2bd/0xc70 [ 301.971335][ T9946] anon_vma_clone+0x2bd/0xc70 [ 301.971392][ T9946] anon_vma_fork+0x1bb/0x6b0 [ 301.971444][ T9946] dup_mmap+0x141f/0x2180 [ 301.971502][ T9946] ? __pfx_dup_mmap+0x10/0x10 [ 301.971539][ T9946] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 301.971588][ T9946] ? __lock_acquire+0x4a5/0x2630 [ 301.971633][ T9946] ? find_held_lock+0x2b/0x80 [ 301.971664][ T9946] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 301.971766][ T9946] copy_process+0x73d7/0x7a10 [ 301.971832][ T9946] ? __pfx_copy_process+0x10/0x10 [ 301.971873][ T9946] ? find_held_lock+0x2b/0x80 [ 301.971923][ T9946] kernel_clone+0xfc/0x9a0 [ 301.971961][ T9946] ? __pfx_futex_wait+0x10/0x10 [ 301.972015][ T9946] ? __pfx_kernel_clone+0x10/0x10 [ 301.972081][ T9946] __do_sys_clone+0xd9/0x120 [ 301.972122][ T9946] ? __pfx___do_sys_clone+0x10/0x10 [ 301.972161][ T9946] ? irqentry_exit+0x180/0x670 [ 301.972224][ T9946] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 301.972271][ T9946] ? syscall_user_dispatch+0x76/0x130 [ 301.972327][ T9946] do_syscall_64+0x106/0xf80 [ 301.972367][ T9946] ? clear_bhb_loop+0x40/0x90 [ 301.972409][ T9946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.972444][ T9946] RIP: 0033:0x7f6c5919c799 [ 301.972473][ T9946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.972507][ T9946] RSP: 002b:00007f6c5a06c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 301.972541][ T9946] RAX: ffffffffffffffda RBX: 00007f6c59415fa0 RCX: 00007f6c5919c799 [ 301.972564][ T9946] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004 [ 301.972583][ T9946] RBP: 00007f6c59232c99 R08: 0000000000000007 R09: 0000000000000000 [ 301.972603][ T9946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.972623][ T9946] R13: 00007f6c59416038 R14: 00007f6c59415fa0 R15: 00007ffc870c4198 [ 301.972669][ T9946] [ 303.595158][ T9977] zswap: compressor not available [ 305.094063][T10027] netlink: 8 bytes leftover after parsing attributes in process `syz.3.904'. [ 305.944950][T10042] netlink: 'syz.2.907': attribute type 1 has an invalid length. [ 307.231934][T10063] zswap: compressor w(<8.D z not available [ 307.662935][T10081] netlink: 330 bytes leftover after parsing attributes in process `syz.3.916'. [ 308.320205][T10099] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[10099] [ 309.763780][T10135] netlink: 330 bytes leftover after parsing attributes in process `syz.3.926'. [ 310.573613][T10149] zswap: compressor w(<8.D z not available [ 312.076334][T10180] vivid-007: ================= START STATUS ================= [ 312.098816][T10180] vivid-007: Generate PTS: true [ 312.109073][T10180] vivid-007: Generate SCR: true [ 312.117198][T10180] tpg source WxH: 320x240 (Y'CbCr) [ 312.133513][T10180] tpg field: 1 [ 312.136902][T10180] tpg crop: (0,0)/320x240 [ 312.152925][T10177] [U] ^@ [ 312.165436][T10180] tpg compose: (0,0)/320x240 [ 312.170055][T10180] tpg colorspace: 8 [ 312.184176][T10180] tpg transfer function: 0/0 [ 312.210600][T10180] tpg Y'CbCr encoding: 0/0 [ 312.215135][T10180] tpg quantization: 0/0 [ 312.240623][T10180] tpg RGB range: 0/2 [ 312.263241][T10180] vivid-007: ================== END STATUS ================== [ 312.533818][T10191] FAULT_INJECTION: forcing a failure. [ 312.533818][T10191] name failslab, interval 1, probability 0, space 0, times 0 [ 312.550234][T10191] CPU: 0 UID: 8 PID: 10191 Comm: syz.0.936 Tainted: G U syzkaller #0 PREEMPT(full) [ 312.550295][T10191] Tainted: [U]=USER [ 312.550307][T10191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 312.550327][T10191] Call Trace: [ 312.550338][T10191] [ 312.550350][T10191] dump_stack_lvl+0x100/0x190 [ 312.550406][T10191] should_fail_ex.cold+0x5/0xa [ 312.550447][T10191] should_failslab+0xc2/0x120 [ 312.550484][T10191] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 312.550534][T10191] ? key_alloc+0x3c5/0x1310 [ 312.550566][T10191] ? mark_held_locks+0x40/0x70 [ 312.550626][T10191] key_alloc+0x3c5/0x1310 [ 312.550691][T10191] ? __pfx_key_alloc+0x10/0x10 [ 312.550724][T10191] ? __pfx_key_default_cmp+0x10/0x10 [ 312.550765][T10191] ? __pfx_keyring_search_iterator+0x10/0x10 [ 312.550812][T10191] keyring_alloc+0x44/0xc0 [ 312.550856][T10191] look_up_user_keyrings+0x508/0x790 [ 312.550916][T10191] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 312.550967][T10191] ? futex_wake+0x1ad/0x530 [ 312.551030][T10191] ? __pfx_futex_wake+0x10/0x10 [ 312.551081][T10191] lookup_user_key+0xbb1/0x1300 [ 312.551134][T10191] ? __pfx_lookup_user_key+0x10/0x10 [ 312.551196][T10191] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 312.551261][T10191] ? __x64_sys_futex+0x34f/0x4d0 [ 312.551300][T10191] ? __x64_sys_futex+0x358/0x4d0 [ 312.551348][T10191] keyctl_session_to_parent+0x28/0xae0 [ 312.551404][T10191] __do_sys_keyctl+0x2b1/0x5a0 [ 312.551473][T10191] do_syscall_64+0x106/0xf80 [ 312.551512][T10191] ? clear_bhb_loop+0x40/0x90 [ 312.551554][T10191] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.551588][T10191] RIP: 0033:0x7fbb43f9c799 [ 312.551615][T10191] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 312.551649][T10191] RSP: 002b:00007fbb44e50028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 312.551680][T10191] RAX: ffffffffffffffda RBX: 00007fbb44215fa0 RCX: 00007fbb43f9c799 [ 312.551701][T10191] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000012 [ 312.551722][T10191] RBP: 00007fbb44032c99 R08: 0000000000000001 R09: 0000000000000000 [ 312.551741][T10191] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 312.551760][T10191] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 312.551803][T10191] [ 313.291451][T10197] FAULT_INJECTION: forcing a failure. [ 313.291451][T10197] name failslab, interval 1, probability 0, space 0, times 0 [ 313.307925][T10197] CPU: 0 UID: 0 PID: 10197 Comm: syz.0.938 Tainted: G U syzkaller #0 PREEMPT(full) [ 313.307966][T10197] Tainted: [U]=USER [ 313.307976][T10197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 313.307992][T10197] Call Trace: [ 313.308000][T10197] [ 313.308011][T10197] dump_stack_lvl+0x100/0x190 [ 313.308058][T10197] should_fail_ex.cold+0x5/0xa [ 313.308093][T10197] should_failslab+0xc2/0x120 [ 313.308123][T10197] __kvmalloc_node_noprof+0xfa/0xa00 [ 313.308168][T10197] ? traverse.part.0.constprop.0+0x397/0x650 [ 313.308234][T10197] traverse.part.0.constprop.0+0x397/0x650 [ 313.308291][T10197] seq_read_iter+0x93f/0x1270 [ 313.308339][T10197] ? aa_file_perm+0x7f3/0x14d0 [ 313.308382][T10197] seq_read+0x33b/0x4c0 [ 313.308426][T10197] ? __pfx_seq_read+0x10/0x10 [ 313.308493][T10197] ? __pfx_seq_read+0x10/0x10 [ 313.308536][T10197] proc_reg_read+0x240/0x330 [ 313.308579][T10197] ? __pfx_proc_reg_read+0x10/0x10 [ 313.308623][T10197] vfs_read+0x1e4/0xb30 [ 313.308673][T10197] ? __pfx_vfs_read+0x10/0x10 [ 313.308714][T10197] ? find_held_lock+0x2b/0x80 [ 313.308740][T10197] ? __fget_files+0x215/0x3d0 [ 313.308766][T10197] ? __fget_files+0x215/0x3d0 [ 313.308797][T10197] ? __fget_files+0x21f/0x3d0 [ 313.308834][T10197] __x64_sys_pread64+0x1eb/0x250 [ 313.308863][T10197] ? __pfx___x64_sys_pread64+0x10/0x10 [ 313.308902][T10197] do_syscall_64+0x106/0xf80 [ 313.308935][T10197] ? clear_bhb_loop+0x40/0x90 [ 313.308970][T10197] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.308999][T10197] RIP: 0033:0x7fbb43f9c799 [ 313.309023][T10197] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 313.309050][T10197] RSP: 002b:00007fbb44e2f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 313.309078][T10197] RAX: ffffffffffffffda RBX: 00007fbb44216090 RCX: 00007fbb43f9c799 [ 313.309097][T10197] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000006 [ 313.309114][T10197] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 313.309132][T10197] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000000 [ 313.309149][T10197] R13: 00007fbb44216128 R14: 00007fbb44216090 R15: 00007ffee24aada8 [ 313.309195][T10197] [ 316.161303][T10258] sd 0:0:1:0: PR command failed: 1026 [ 316.172399][T10258] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 316.206314][T10258] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 317.177818][T10263] zswap: compressor w(<8.D z not available [ 317.195311][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.202009][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.340692][T10290] sd 0:0:1:0: PR command failed: 1026 [ 317.346170][T10290] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 317.380646][T10290] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 317.504439][T10290] can0: slcan on ttyS2. [ 317.628255][T10289] can0 (unregistered): slcan off ttyS2. [ 320.635486][T10091] Bluetooth: hci0: command 0x0c1a tx timeout [ 320.648730][T10321] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 321.071296][T10368] sd 0:0:1:0: PR command failed: 1026 [ 321.077990][T10368] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 321.105945][T10368] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 321.961775][T10321] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 322.011606][T10321] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 322.017712][T10321] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 322.192976][T10319] Process accounting paused [ 322.720737][T10060] Bluetooth: hci1: command 0x0c1a tx timeout [ 323.487772][T10437] netlink: 186 bytes leftover after parsing attributes in process `syz.3.972'. [ 324.070920][T10060] Bluetooth: hci3: command 0x0c1a tx timeout [ 324.077514][T10060] Bluetooth: hci2: command 0x0c1a tx timeout [ 326.377086][T10517] netlink: 8 bytes leftover after parsing attributes in process `syz.0.988'. [ 326.882076][T10518] Process accounting paused [ 327.804090][T10544] zswap: compressor w(<8.D z not available [ 328.099750][T10565] cgroup: fork rejected by pids controller in /syz3 [ 330.558756][T10794] ptp ptp0: new virtual clock ptp1 [ 330.607848][T10464] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 330.607878][T10464] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 330.622654][T10464] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 330.622699][T10464] Bluetooth: hci2: Malformed LE Event: 0x0d [ 330.658183][T10794] ptp ptp0: new virtual clock ptp2 [ 330.760017][T10794] ptp ptp0: new virtual clock ptp3 [ 330.796244][T10794] ptp ptp0: guarantee physical clock free running [ 331.641314][T10828] FAULT_INJECTION: forcing a failure. [ 331.641314][T10828] name failslab, interval 1, probability 0, space 0, times 0 [ 331.698440][T10828] CPU: 1 UID: 0 PID: 10828 Comm: syz.2.1017 Tainted: G U syzkaller #0 PREEMPT(full) [ 331.698488][T10828] Tainted: [U]=USER [ 331.698499][T10828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 331.698517][T10828] Call Trace: [ 331.698526][T10828] [ 331.698537][T10828] dump_stack_lvl+0x100/0x190 [ 331.698587][T10828] should_fail_ex.cold+0x5/0xa [ 331.698621][T10828] ? __register_sysctl_table+0xbe4/0x1650 [ 331.698668][T10828] should_failslab+0xc2/0x120 [ 331.698697][T10828] __kmalloc_noprof+0xe0/0x850 [ 331.698747][T10828] __register_sysctl_table+0xbe4/0x1650 [ 331.698799][T10828] ? __pfx___register_sysctl_table+0x10/0x10 [ 331.698843][T10828] ? is_module_address+0x69/0xf0 [ 331.698877][T10828] ? register_net_sysctl_sz+0x222/0x430 [ 331.698918][T10828] ? __asan_memcpy+0x3c/0x60 [ 331.698957][T10828] ? __pfx_nf_lwtunnel_net_init+0x10/0x10 [ 331.698994][T10828] nf_lwtunnel_net_init+0x60/0xf0 [ 331.699039][T10828] ops_init+0x1e2/0x5f0 [ 331.699080][T10828] setup_net+0x118/0x3a0 [ 331.699117][T10828] ? __pfx_setup_net+0x10/0x10 [ 331.699151][T10828] ? lockdep_init_map_type+0x5c/0x250 [ 331.699189][T10828] ? mutex_init_lockep+0x110/0x150 [ 331.699233][T10828] copy_net_ns+0x46f/0x7c0 [ 331.699275][T10828] create_new_namespaces+0x3ea/0xac0 [ 331.699313][T10828] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 331.699346][T10828] ksys_unshare+0x473/0xad0 [ 331.699383][T10828] ? __pfx_ksys_unshare+0x10/0x10 [ 331.699417][T10828] ? ksys_read+0x1ac/0x250 [ 331.699471][T10828] __x64_sys_unshare+0x31/0x40 [ 331.699505][T10828] do_syscall_64+0x106/0xf80 [ 331.699540][T10828] ? clear_bhb_loop+0x40/0x90 [ 331.699574][T10828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.699602][T10828] RIP: 0033:0x7ff459d9c799 [ 331.699625][T10828] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 331.699654][T10828] RSP: 002b:00007ff45ab8a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 331.699681][T10828] RAX: ffffffffffffffda RBX: 00007ff45a015fa0 RCX: 00007ff459d9c799 [ 331.699700][T10828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 331.699716][T10828] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 331.699733][T10828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.699750][T10828] R13: 00007ff45a016038 R14: 00007ff45a015fa0 R15: 00007ffdcdde5488 [ 331.699786][T10828] [ 331.699798][T10828] sysctl could not get directory: /net/netfilter -12 [ 332.454466][T10838] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 332.683745][T10845] openvswitch: netlink: Key type 3600 is out of range max 32 [ 335.133501][T10875] FAULT_INJECTION: forcing a failure. [ 335.133501][T10875] name failslab, interval 1, probability 0, space 0, times 0 [ 335.161032][T10875] CPU: 1 UID: 0 PID: 10875 Comm: syz.1.1028 Tainted: G U syzkaller #0 PREEMPT(full) [ 335.161075][T10875] Tainted: [U]=USER [ 335.161084][T10875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 335.161100][T10875] Call Trace: [ 335.161109][T10875] [ 335.161120][T10875] dump_stack_lvl+0x100/0x190 [ 335.161186][T10875] should_fail_ex.cold+0x5/0xa [ 335.161222][T10875] ? tomoyo_realpath_from_path+0xb6/0x690 [ 335.161259][T10875] should_failslab+0xc2/0x120 [ 335.161291][T10875] __kmalloc_noprof+0xe0/0x850 [ 335.161347][T10875] tomoyo_realpath_from_path+0xb6/0x690 [ 335.161393][T10875] tomoyo_path_number_perm+0x23c/0x580 [ 335.161443][T10875] ? tomoyo_path_number_perm+0x22e/0x580 [ 335.161496][T10875] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 335.161589][T10875] ? find_held_lock+0x2b/0x80 [ 335.161617][T10875] ? __fget_files+0x215/0x3d0 [ 335.161645][T10875] ? hook_file_ioctl_common+0x146/0x410 [ 335.161703][T10875] ? __fget_files+0x21f/0x3d0 [ 335.161739][T10875] security_file_ioctl+0xd3/0x230 [ 335.161792][T10875] __x64_sys_ioctl+0xb7/0x210 [ 335.161841][T10875] do_syscall_64+0x106/0xf80 [ 335.161877][T10875] ? clear_bhb_loop+0x40/0x90 [ 335.161924][T10875] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.161956][T10875] RIP: 0033:0x7f004299c799 [ 335.161981][T10875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 335.162011][T10875] RSP: 002b:00007f0040bd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 335.162041][T10875] RAX: ffffffffffffffda RBX: 00007f0042c16090 RCX: 00007f004299c799 [ 335.162061][T10875] RDX: 0000000000000000 RSI: 00000000c048aeca RDI: 0000000000000004 [ 335.162079][T10875] RBP: 00007f0040bd5090 R08: 0000000000000000 R09: 0000000000000000 [ 335.162098][T10875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 335.162116][T10875] R13: 00007f0042c16128 R14: 00007f0042c16090 R15: 00007ffc4372cee8 [ 335.162158][T10875] [ 335.162170][T10875] ERROR: Out of memory at tomoyo_realpath_from_path. [ 335.431400][T10872] zswap: compressor w(<8.D z not available [ 335.923755][T10879] FAULT_INJECTION: forcing a failure. [ 335.923755][T10879] name failslab, interval 1, probability 0, space 0, times 0 [ 335.939202][T10879] CPU: 0 UID: 0 PID: 10879 Comm: syz.0.1029 Tainted: G U syzkaller #0 PREEMPT(full) [ 335.939257][T10879] Tainted: [U]=USER [ 335.939274][T10879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 335.939302][T10879] Call Trace: [ 335.939313][T10879] [ 335.939327][T10879] dump_stack_lvl+0x100/0x190 [ 335.939386][T10879] should_fail_ex.cold+0x5/0xa [ 335.939428][T10879] should_failslab+0xc2/0x120 [ 335.939463][T10879] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 335.939515][T10879] ? security_inode_alloc+0x3b/0x2c0 [ 335.939567][T10879] ? lockdep_init_map_type+0x5c/0x250 [ 335.939627][T10879] security_inode_alloc+0x3b/0x2c0 [ 335.939681][T10879] inode_init_always_gfp+0xced/0x1040 [ 335.939723][T10879] alloc_inode+0x8e/0x250 [ 335.939768][T10879] new_inode+0x22/0x1c0 [ 335.939817][T10879] hugetlbfs_get_inode+0x313/0x750 [ 335.939859][T10879] hugetlb_file_setup+0x3cc/0x5b0 [ 335.939906][T10879] newseg+0xabb/0xed0 [ 335.939955][T10879] ? __pfx_newseg+0x10/0x10 [ 335.939991][T10879] ? down_write+0x146/0x1f0 [ 335.940050][T10879] ipcget+0xee/0xf50 [ 335.940086][T10879] ? do_futex+0x192/0x350 [ 335.940130][T10879] ? __pfx_do_futex+0x10/0x10 [ 335.940170][T10879] ? __pfx_do_sys_openat2+0x10/0x10 [ 335.940220][T10879] ? __pfx_ipcget+0x10/0x10 [ 335.940260][T10879] ? __x64_sys_futex+0x34f/0x4d0 [ 335.940311][T10879] ? __x64_sys_futex+0x358/0x4d0 [ 335.940361][T10879] __x64_sys_shmget+0x13b/0x1b0 [ 335.940401][T10879] ? __pfx___x64_sys_shmget+0x10/0x10 [ 335.940455][T10879] do_syscall_64+0x106/0xf80 [ 335.940494][T10879] ? clear_bhb_loop+0x40/0x90 [ 335.940536][T10879] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.940569][T10879] RIP: 0033:0x7fbb43f9c799 [ 335.940598][T10879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 335.940631][T10879] RSP: 002b:00007fbb44e50028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 335.940664][T10879] RAX: ffffffffffffffda RBX: 00007fbb44215fa0 RCX: 00007fbb43f9c799 [ 335.940686][T10879] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 335.940708][T10879] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 335.940728][T10879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 335.940748][T10879] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 335.940792][T10879] [ 336.904622][T10915] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1037'. [ 336.912804][T10916] vivid-007: ================= START STATUS ================= [ 336.921881][T10916] vivid-007: Generate PTS: true [ 336.926818][T10916] vivid-007: Generate SCR: true [ 336.932462][T10916] tpg source WxH: 320x240 (Y'CbCr) [ 336.937688][T10916] tpg field: 1 [ 336.941547][T10916] tpg crop: (0,0)/320x240 [ 336.946092][T10916] tpg compose: (0,0)/320x240 [ 336.955751][T10916] tpg colorspace: 8 [ 336.964226][T10916] tpg transfer function: 0/0 [ 336.975602][T10916] tpg Y'CbCr encoding: 0/0 [ 337.050535][T10916] tpg quantization: 0/0 [ 337.055008][T10916] tpg RGB range: 0/2 [ 337.058958][T10916] vivid-007: ================== END STATUS ================== [ 337.101411][T10920] openvswitch: netlink: VXLAN extension 64 out of range max 1 [ 337.112580][T10920] FAULT_INJECTION: forcing a failure. [ 337.112580][T10920] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 337.137421][T10920] CPU: 1 UID: 0 PID: 10920 Comm: syz.0.1038 Tainted: G U syzkaller #0 PREEMPT(full) [ 337.137474][T10920] Tainted: [U]=USER [ 337.137485][T10920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 337.137504][T10920] Call Trace: [ 337.137514][T10920] [ 337.137526][T10920] dump_stack_lvl+0x100/0x190 [ 337.137593][T10920] should_fail_ex.cold+0x5/0xa [ 337.137625][T10920] ? prepare_alloc_pages+0x16d/0x5f0 [ 337.137666][T10920] should_fail_alloc_page+0xeb/0x140 [ 337.137703][T10920] prepare_alloc_pages+0x1f0/0x5f0 [ 337.137748][T10920] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 337.137802][T10920] ? __pfx_stack_trace_save+0x10/0x10 [ 337.137832][T10920] ? __pfx_validate_mm+0x10/0x10 [ 337.137876][T10920] ? stack_depot_save_flags+0x27/0x9d0 [ 337.137920][T10920] ? kasan_save_stack+0x3f/0x50 [ 337.137975][T10920] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 337.138034][T10920] ? __pfx_css_rstat_updated+0x10/0x10 [ 337.138083][T10920] ? lock_acquire+0x1cf/0x380 [ 337.138125][T10920] ? find_held_lock+0x2b/0x80 [ 337.138154][T10920] ? page_table_check_set+0x49a/0xa10 [ 337.138205][T10920] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 337.138263][T10920] ? policy_nodemask+0xed/0x4f0 [ 337.138300][T10920] alloc_pages_mpol+0x1fb/0x550 [ 337.138336][T10920] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 337.138400][T10920] folio_alloc_mpol_noprof+0x36/0x340 [ 337.138444][T10920] vma_alloc_folio_noprof+0xed/0x1d0 [ 337.138485][T10920] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 337.138548][T10920] do_anonymous_page+0xb3a/0x1fb0 [ 337.138610][T10920] __handle_mm_fault+0x1d42/0x2b60 [ 337.138668][T10920] ? __pfx___handle_mm_fault+0x10/0x10 [ 337.138716][T10920] ? pte_offset_map_lock+0x174/0x320 [ 337.138751][T10920] ? find_held_lock+0x2b/0x80 [ 337.138796][T10920] ? follow_page_pte+0x5b3/0x1400 [ 337.138842][T10920] handle_mm_fault+0x36d/0xa20 [ 337.138897][T10920] __get_user_pages+0xf9c/0x34d0 [ 337.138952][T10920] ? __pfx___get_user_pages+0x10/0x10 [ 337.139002][T10920] populate_vma_page_range+0x267/0x3f0 [ 337.139048][T10920] ? __pfx_populate_vma_page_range+0x10/0x10 [ 337.139089][T10920] ? __pfx_find_vma_intersection+0x10/0x10 [ 337.139126][T10920] ? do_mmap+0x93f/0x12f0 [ 337.139168][T10920] __mm_populate+0x107/0x3a0 [ 337.139209][T10920] ? __pfx___mm_populate+0x10/0x10 [ 337.139253][T10920] ? up_write+0x290/0x4f0 [ 337.139305][T10920] vm_mmap_pgoff+0x37f/0x470 [ 337.139354][T10920] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 337.139397][T10920] ? do_futex+0x192/0x350 [ 337.139441][T10920] ? __pfx_do_futex+0x10/0x10 [ 337.139482][T10920] ? __pfx_do_sys_openat2+0x10/0x10 [ 337.139541][T10920] ksys_mmap_pgoff+0xe1/0x650 [ 337.139578][T10920] ? __x64_sys_futex+0x34f/0x4d0 [ 337.139621][T10920] ? __x64_sys_futex+0x358/0x4d0 [ 337.139667][T10920] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 337.139704][T10920] ? xfd_validate_state+0x129/0x190 [ 337.139761][T10920] __x64_sys_mmap+0x125/0x190 [ 337.139815][T10920] do_syscall_64+0x106/0xf80 [ 337.139854][T10920] ? clear_bhb_loop+0x40/0x90 [ 337.139898][T10920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.139934][T10920] RIP: 0033:0x7fbb43f9c799 [ 337.139963][T10920] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.139996][T10920] RSP: 002b:00007fbb44e50028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 337.140028][T10920] RAX: ffffffffffffffda RBX: 00007fbb44215fa0 RCX: 00007fbb43f9c799 [ 337.140050][T10920] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 337.140071][T10920] RBP: 00007fbb44032c99 R08: 0000000000000007 R09: 0000000000028000 [ 337.140090][T10920] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 337.140110][T10920] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 337.140152][T10920] [ 338.137449][T10928] could not allocate digest TFM handle [ 338.158174][T10938] FAULT_INJECTION: forcing a failure. [ 338.158174][T10938] name fail_futex, interval 1, probability 0, space 0, times 0 [ 338.190524][T10938] CPU: 0 UID: 0 PID: 10938 Comm: syz.3.1041 Tainted: G U syzkaller #0 PREEMPT(full) [ 338.190585][T10938] Tainted: [U]=USER [ 338.190594][T10938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 338.190612][T10938] Call Trace: [ 338.190621][T10938] [ 338.190632][T10938] dump_stack_lvl+0x100/0x190 [ 338.190682][T10938] should_fail_ex.cold+0x5/0xa [ 338.190718][T10938] get_futex_key+0x1d2/0x1620 [ 338.190760][T10938] ? __pfx_get_futex_key+0x10/0x10 [ 338.190810][T10938] futex_wake+0xea/0x530 [ 338.190858][T10938] ? __pfx_futex_wake+0x10/0x10 [ 338.190903][T10938] ? preempt_schedule_thunk+0x16/0x30 [ 338.190942][T10938] ? preempt_schedule_common+0x42/0xc0 [ 338.190981][T10938] ? preempt_schedule_thunk+0x16/0x30 [ 338.191024][T10938] do_futex+0x32b/0x350 [ 338.191061][T10938] ? __pfx_do_futex+0x10/0x10 [ 338.191100][T10938] ? cap_task_prctl+0x104/0xa50 [ 338.191143][T10938] ? __pfx_sched_core_share_pid+0x10/0x10 [ 338.191181][T10938] __x64_sys_futex+0x34f/0x4d0 [ 338.191230][T10938] ? __pfx___x64_sys_futex+0x10/0x10 [ 338.191300][T10938] ? __pfx___do_sys_prctl+0x10/0x10 [ 338.191365][T10938] do_syscall_64+0x106/0xf80 [ 338.191410][T10938] ? clear_bhb_loop+0x40/0x90 [ 338.191459][T10938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.191493][T10938] RIP: 0033:0x7f6c5919c799 [ 338.191520][T10938] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 338.191553][T10938] RSP: 002b:00007f6c5a04b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 338.191585][T10938] RAX: ffffffffffffffda RBX: 00007f6c59416098 RCX: 00007f6c5919c799 [ 338.191606][T10938] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6c5941609c [ 338.191626][T10938] RBP: 00007f6c59416090 R08: 0000000000000000 R09: 0000000000000000 [ 338.191646][T10938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.191665][T10938] R13: 00007f6c59416128 R14: 00007ffc870c40b0 R15: 00007ffc870c4198 [ 338.191709][T10938] [ 338.745540][T10945] FAULT_INJECTION: forcing a failure. [ 338.745540][T10945] name fail_futex, interval 1, probability 0, space 0, times 0 [ 338.780854][T10945] CPU: 1 UID: 0 PID: 10945 Comm: syz.1.1045 Tainted: G U syzkaller #0 PREEMPT(full) [ 338.780907][T10945] Tainted: [U]=USER [ 338.780918][T10945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 338.780938][T10945] Call Trace: [ 338.780950][T10945] [ 338.780962][T10945] dump_stack_lvl+0x100/0x190 [ 338.781018][T10945] should_fail_ex.cold+0x5/0xa [ 338.781068][T10945] get_futex_key+0x1d2/0x1620 [ 338.781115][T10945] ? __pfx_get_futex_key+0x10/0x10 [ 338.781156][T10945] ? stack_trace_save+0x8e/0xc0 [ 338.781200][T10945] futex_wait_setup+0x83/0x510 [ 338.781262][T10945] __futex_wait+0x19f/0x300 [ 338.781316][T10945] ? __pfx___futex_wait+0x10/0x10 [ 338.781374][T10945] ? __pfx_futex_wake_mark+0x10/0x10 [ 338.781429][T10945] ? futex_hash+0x2c5/0x380 [ 338.781480][T10945] futex_wait+0xed/0x380 [ 338.781532][T10945] ? __pfx_futex_wait+0x10/0x10 [ 338.781591][T10945] ? errseq_sample+0x51/0x70 [ 338.781622][T10945] ? file_init_path+0x48e/0x670 [ 338.781669][T10945] do_futex+0x1ef/0x350 [ 338.781713][T10945] ? __pfx_do_futex+0x10/0x10 [ 338.781758][T10945] ? fd_install+0x223/0x580 [ 338.781795][T10945] __x64_sys_futex+0x34f/0x4d0 [ 338.781839][T10945] ? __sys_socket+0xac/0x260 [ 338.781871][T10945] ? __pfx___x64_sys_futex+0x10/0x10 [ 338.781931][T10945] do_syscall_64+0x106/0xf80 [ 338.781973][T10945] ? clear_bhb_loop+0x40/0x90 [ 338.782014][T10945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.782076][T10945] RIP: 0033:0x7f004299c799 [ 338.782102][T10945] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 338.782134][T10945] RSP: 002b:00007f0040bf60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 338.782164][T10945] RAX: ffffffffffffffda RBX: 00007f0042c15fa8 RCX: 00007f004299c799 [ 338.782186][T10945] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0042c15fa8 [ 338.782205][T10945] RBP: 00007f0042c15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 338.782223][T10945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.782241][T10945] R13: 00007f0042c16038 R14: 00007ffc4372ce00 R15: 00007ffc4372cee8 [ 338.782281][T10945] [ 342.474408][T11006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1057'. [ 343.043187][T11006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1057'. [ 343.183569][T11006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1057'. [ 343.224989][T11018] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input16 [ 344.017073][T11034] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1061'. [ 345.195185][T10464] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 345.960013][T11046] zswap: compressor w(<8.D z not available [ 349.129785][ C1] sd 0:0:1:0: [sda] tag#9322 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 349.140584][ C1] sd 0:0:1:0: [sda] tag#9322 CDB: Read(6) 08 00 00 00 10 00 00 00 00 00 00 00 [ 349.701744][T11113] zswap: compressor w(<8.D z not available [ 352.507135][T11152] tipc: Started in network mode [ 352.631013][T11152] tipc: Node identity ffffffff, cluster identity 4711 [ 352.706677][T11152] tipc: Node number set to 4294967295 [ 352.940048][T11143] Process accounting resumed [ 353.087251][T11169] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1086'. [ 353.696637][T11178] zswap: compressor w(<8.D z not available [ 355.340866][T11198] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 356.376279][T11220] FAULT_INJECTION: forcing a failure. [ 356.376279][T11220] name failslab, interval 1, probability 0, space 0, times 0 [ 356.427168][T11230] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 356.436904][T11220] CPU: 0 UID: 0 PID: 11220 Comm: syz.2.1098 Tainted: G U syzkaller #0 PREEMPT(full) [ 356.436945][T11220] Tainted: [U]=USER [ 356.436955][T11220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 356.436979][T11220] Call Trace: [ 356.436988][T11220] [ 356.436999][T11220] dump_stack_lvl+0x100/0x190 [ 356.437108][T11220] should_fail_ex.cold+0x5/0xa [ 356.437166][T11220] ? sk_prot_alloc+0x10b/0x2a0 [ 356.437277][T11220] should_failslab+0xc2/0x120 [ 356.437336][T11220] __kmalloc_noprof+0xe0/0x850 [ 356.437402][T11220] sk_prot_alloc+0x10b/0x2a0 [ 356.437446][T11220] sk_alloc+0x36/0xe80 [ 356.437504][T11220] __netlink_create+0x5e/0x2c0 [ 356.437570][T11220] ? __wake_up+0x3f/0x60 [ 356.437623][T11220] netlink_create+0x293/0x610 [ 356.437657][T11220] ? __pfx_genl_bind+0x10/0x10 [ 356.437696][T11220] ? __pfx_genl_unbind+0x10/0x10 [ 356.437735][T11220] ? __pfx_genl_release+0x10/0x10 [ 356.437782][T11220] __sock_create+0x339/0x860 [ 356.437862][T11220] __sys_socket+0x14d/0x260 [ 356.437890][T11220] ? __pfx___sys_socket+0x10/0x10 [ 356.437929][T11220] __x64_sys_socket+0x72/0xb0 [ 356.437954][T11220] ? lockdep_hardirqs_on+0x78/0x100 [ 356.438054][T11220] do_syscall_64+0x106/0xf80 [ 356.438108][T11220] ? clear_bhb_loop+0x40/0x90 [ 356.438155][T11220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 356.438186][T11220] RIP: 0033:0x7ff459d9c799 [ 356.438210][T11220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 356.438238][T11220] RSP: 002b:00007ff457ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 356.438272][T11220] RAX: ffffffffffffffda RBX: 00007ff45a016090 RCX: 00007ff459d9c799 [ 356.438292][T11220] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 356.438309][T11220] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 356.438327][T11220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 356.438344][T11220] R13: 00007ff45a016128 R14: 00007ff45a016090 R15: 00007ffdcdde5488 [ 356.438383][T11220] [ 356.727081][T11232] nvme_fcloop: unknown parameter or missing value '7' [ 357.010047][T11218] Process accounting resumed [ 358.942822][T11272] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1102'. [ 359.123391][T11272] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 359.123457][T11272] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 359.161573][T11278] FAULT_INJECTION: forcing a failure. [ 359.161573][T11278] name fail_futex, interval 1, probability 0, space 0, times 0 [ 359.161629][T11278] CPU: 1 UID: 0 PID: 11278 Comm: syz.1.1102 Tainted: G U syzkaller #0 PREEMPT(full) [ 359.161680][T11278] Tainted: [U]=USER [ 359.161691][T11278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 359.161711][T11278] Call Trace: [ 359.161720][T11278] [ 359.161733][T11278] dump_stack_lvl+0x100/0x190 [ 359.161789][T11278] should_fail_ex.cold+0x5/0xa [ 359.161841][T11278] get_futex_key+0x1d2/0x1620 [ 359.161922][T11278] ? __pfx_get_futex_key+0x10/0x10 [ 359.161977][T11278] futex_wake+0xea/0x530 [ 359.162030][T11278] ? __pfx_futex_wake+0x10/0x10 [ 359.162093][T11278] ? lockdep_hardirqs_on+0x78/0x100 [ 359.162145][T11278] do_futex+0x32b/0x350 [ 359.162187][T11278] ? __pfx_do_futex+0x10/0x10 [ 359.162242][T11278] __x64_sys_futex+0x34f/0x4d0 [ 359.162286][T11278] ? __x64_sys_openat+0x12d/0x210 [ 359.162339][T11278] ? __pfx___x64_sys_futex+0x10/0x10 [ 359.162398][T11278] do_syscall_64+0x106/0xf80 [ 359.162439][T11278] ? clear_bhb_loop+0x40/0x90 [ 359.162478][T11278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.162512][T11278] RIP: 0033:0x7f004299c799 [ 359.162538][T11278] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 359.162571][T11278] RSP: 002b:00007f0040bb40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 359.162602][T11278] RAX: ffffffffffffffda RBX: 00007f0042c16188 RCX: 00007f004299c799 [ 359.162624][T11278] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0042c1618c [ 359.162645][T11278] RBP: 00007f0042c16180 R08: 0000000000000000 R09: 0000000000000000 [ 359.162664][T11278] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 359.162685][T11278] R13: 00007f0042c16218 R14: 00007ffc4372ce00 R15: 00007ffc4372cee8 [ 359.162728][T11278] [ 359.233935][T11272] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 359.233967][T11272] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 359.393141][T11270] bond0: invalid ARP target specified [ 366.421179][T11444] netlink: 38 bytes leftover after parsing attributes in process `syz.3.1135'. [ 366.775093][T11421] nvme_fabrics: missing parameter 'transport=%s' [ 366.782245][T11421] nvme_fabrics: missing parameter 'nqn=%s' [ 368.507303][T11489] FAULT_INJECTION: forcing a failure. [ 368.507303][T11489] name failslab, interval 1, probability 0, space 0, times 0 [ 368.570795][T11489] CPU: 1 UID: 0 PID: 11489 Comm: syz.2.1145 Tainted: G U syzkaller #0 PREEMPT(full) [ 368.570840][T11489] Tainted: [U]=USER [ 368.570848][T11489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 368.570870][T11489] Call Trace: [ 368.570878][T11489] [ 368.570889][T11489] dump_stack_lvl+0x100/0x190 [ 368.570936][T11489] should_fail_ex.cold+0x5/0xa [ 368.570968][T11489] should_failslab+0xc2/0x120 [ 368.570997][T11489] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 368.571038][T11489] ? vm_area_alloc+0x1f/0x160 [ 368.571074][T11489] ? vma_merge_new_range+0x38b/0xa30 [ 368.571111][T11489] ? __pfx___sanitizer_cov_trace_const_cmp2+0x10/0x10 [ 368.571186][T11489] vm_area_alloc+0x1f/0x160 [ 368.571223][T11489] __mmap_region+0x10cc/0x29e0 [ 368.571277][T11489] ? __pfx___mmap_region+0x10/0x10 [ 368.571324][T11489] ? ima_match_policy+0x8c4/0x2350 [ 368.571479][T11489] ? find_held_lock+0x2b/0x80 [ 368.571507][T11489] ? process_measurement+0x4c8/0x2350 [ 368.571579][T11489] ? process_measurement+0x4c8/0x2350 [ 368.571636][T11489] ? process_measurement+0x1f4/0x2350 [ 368.571731][T11489] ? rcu_is_watching+0x12/0xc0 [ 368.571779][T11489] ? cap_capable+0x107/0x460 [ 368.571885][T11489] mmap_region+0x30a/0x3e0 [ 368.571940][T11489] do_mmap+0xc63/0x12f0 [ 368.571983][T11489] ? __pfx_do_mmap+0x10/0x10 [ 368.572016][T11489] ? __pfx_down_write_killable+0x10/0x10 [ 368.572097][T11489] vm_mmap_pgoff+0x29e/0x470 [ 368.572142][T11489] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 368.572171][T11489] ? __fget_files+0x215/0x3d0 [ 368.572212][T11489] ? __fget_files+0x21f/0x3d0 [ 368.572250][T11489] ksys_mmap_pgoff+0x3c8/0x650 [ 368.572290][T11489] ? __x64_sys_futex+0x34f/0x4d0 [ 368.572327][T11489] ? __x64_sys_futex+0x358/0x4d0 [ 368.572365][T11489] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 368.572395][T11489] ? xfd_validate_state+0x129/0x190 [ 368.572449][T11489] __x64_sys_mmap+0x125/0x190 [ 368.572491][T11489] do_syscall_64+0x106/0xf80 [ 368.572521][T11489] ? clear_bhb_loop+0x40/0x90 [ 368.572553][T11489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.572580][T11489] RIP: 0033:0x7ff459d9c799 [ 368.572601][T11489] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 368.572628][T11489] RSP: 002b:00007ff457ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 368.572657][T11489] RAX: ffffffffffffffda RBX: 00007ff45a016090 RCX: 00007ff459d9c799 [ 368.572674][T11489] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000 [ 368.572689][T11489] RBP: 00007ff459e32c99 R08: 00000000000000dd R09: 0000000000000000 [ 368.572705][T11489] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 368.572721][T11489] R13: 00007ff45a016128 R14: 00007ff45a016090 R15: 00007ffdcdde5488 [ 368.572757][T11489] [ 373.103836][T11580] FAULT_INJECTION: forcing a failure. [ 373.103836][T11580] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 373.118525][T11580] CPU: 1 UID: 0 PID: 11580 Comm: syz.0.1164 Tainted: G U syzkaller #0 PREEMPT(full) [ 373.118572][T11580] Tainted: [U]=USER [ 373.118579][T11580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 373.118592][T11580] Call Trace: [ 373.118600][T11580] [ 373.118608][T11580] dump_stack_lvl+0x100/0x190 [ 373.118648][T11580] should_fail_ex.cold+0x5/0xa [ 373.118671][T11580] ? prepare_alloc_pages+0x16d/0x5f0 [ 373.118701][T11580] should_fail_alloc_page+0xeb/0x140 [ 373.118727][T11580] prepare_alloc_pages+0x1f0/0x5f0 [ 373.118758][T11580] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 373.118798][T11580] ? find_held_lock+0x2b/0x80 [ 373.118841][T11580] ? is_bpf_text_address+0x8a/0x1a0 [ 373.118906][T11580] ? is_bpf_text_address+0x8a/0x1a0 [ 373.118943][T11580] ? bpf_ksym_find+0x124/0x1c0 [ 373.118990][T11580] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 373.119022][T11580] ? is_bpf_text_address+0x94/0x1a0 [ 373.119058][T11580] ? kernel_text_address+0x8d/0x100 [ 373.119097][T11580] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 373.119133][T11580] ? unwind_get_return_address+0x59/0xa0 [ 373.119166][T11580] ? arch_stack_walk+0xa6/0xf0 [ 373.119199][T11580] ? stack_trace_save+0x8e/0xc0 [ 373.119220][T11580] ? __pfx_stack_trace_save+0x10/0x10 [ 373.119243][T11580] ? stack_depot_save_flags+0x27/0x9d0 [ 373.119328][T11580] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 373.119397][T11580] ? policy_nodemask+0xed/0x4f0 [ 373.119424][T11580] alloc_pages_mpol+0x1fb/0x550 [ 373.119450][T11580] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 373.119485][T11580] alloc_pages_noprof+0x131/0x390 [ 373.119511][T11580] __pmd_alloc+0x3b/0x950 [ 373.119541][T11580] walk_to_pmd+0x3a3/0x4c0 [ 373.119571][T11580] get_locked_pte+0x25/0xc0 [ 373.119599][T11580] insert_page+0xcc/0x220 [ 373.119627][T11580] ? __pfx_insert_page+0x10/0x10 [ 373.119653][T11580] ? __pfx_down_read_trylock+0x10/0x10 [ 373.119695][T11580] vm_insert_page+0x2c0/0x400 [ 373.119726][T11580] kcov_mmap+0xca/0x130 [ 373.119764][T11580] __mmap_region+0x1443/0x29e0 [ 373.119803][T11580] ? __pfx___mmap_region+0x10/0x10 [ 373.119858][T11580] ? ima_match_policy+0x8c4/0x2350 [ 373.119906][T11580] ? find_held_lock+0x2b/0x80 [ 373.119925][T11580] ? process_measurement+0x4c8/0x2350 [ 373.119955][T11580] ? process_measurement+0x4c8/0x2350 [ 373.119995][T11580] ? process_measurement+0x1f4/0x2350 [ 373.120060][T11580] ? rcu_is_watching+0x12/0xc0 [ 373.120093][T11580] ? cap_capable+0x107/0x460 [ 373.120128][T11580] mmap_region+0x30a/0x3e0 [ 373.120166][T11580] do_mmap+0xc63/0x12f0 [ 373.120194][T11580] ? __pfx_do_mmap+0x10/0x10 [ 373.120218][T11580] ? __pfx_down_write_killable+0x10/0x10 [ 373.120255][T11580] vm_mmap_pgoff+0x29e/0x470 [ 373.120284][T11580] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 373.120307][T11580] ? __fget_files+0x215/0x3d0 [ 373.120339][T11580] ? __fget_files+0x21f/0x3d0 [ 373.120364][T11580] ksys_mmap_pgoff+0x3c8/0x650 [ 373.120387][T11580] ? __x64_sys_futex+0x34f/0x4d0 [ 373.120414][T11580] ? __x64_sys_futex+0x358/0x4d0 [ 373.120468][T11580] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 373.120500][T11580] ? xfd_validate_state+0x129/0x190 [ 373.120544][T11580] __x64_sys_mmap+0x125/0x190 [ 373.120592][T11580] do_syscall_64+0x106/0xf80 [ 373.120643][T11580] ? clear_bhb_loop+0x40/0x90 [ 373.120673][T11580] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.120698][T11580] RIP: 0033:0x7fbb43f9c799 [ 373.120718][T11580] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 373.120742][T11580] RSP: 002b:00007fbb44e2f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 373.120766][T11580] RAX: ffffffffffffffda RBX: 00007fbb44216090 RCX: 00007fbb43f9c799 [ 373.120782][T11580] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000 [ 373.120796][T11580] RBP: 00007fbb44032c99 R08: 00000000000000dd R09: 0000000000000000 [ 373.120811][T11580] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 373.120826][T11580] R13: 00007fbb44216128 R14: 00007fbb44216090 R15: 00007ffee24aada8 [ 373.120859][T11580] [ 373.935935][T11580] kcov: kcov: vm_insert_page() failed [ 373.960874][T11568] zswap: compressor w(<8.D z not available [ 374.333371][T11592] FAULT_INJECTION: forcing a failure. [ 374.333371][T11592] name failslab, interval 1, probability 0, space 0, times 0 [ 374.349676][T11592] CPU: 0 UID: 0 PID: 11592 Comm: syz.0.1166 Tainted: G U syzkaller #0 PREEMPT(full) [ 374.349722][T11592] Tainted: [U]=USER [ 374.349732][T11592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 374.349751][T11592] Call Trace: [ 374.349761][T11592] [ 374.349772][T11592] dump_stack_lvl+0x100/0x190 [ 374.349823][T11592] should_fail_ex.cold+0x5/0xa [ 374.349859][T11592] should_failslab+0xc2/0x120 [ 374.349893][T11592] __kmalloc_cache_noprof+0x7a/0x6f0 [ 374.349935][T11592] ? vb2_vmalloc_alloc+0xf9/0x410 [ 374.350093][T11592] ? trace_kmalloc+0x101/0x130 [ 374.350123][T11592] ? __kasan_kmalloc+0xaa/0xb0 [ 374.350171][T11592] vb2_vmalloc_alloc+0xf9/0x410 [ 374.350217][T11592] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 374.350274][T11592] __vb2_queue_alloc+0x8d5/0x1160 [ 374.350361][T11592] vb2_core_reqbufs+0x899/0xf30 [ 374.350413][T11592] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 374.350480][T11592] __vb2_init_fileio+0x32d/0x1000 [ 374.350523][T11592] ? vb2_fop_read+0xe5/0x520 [ 374.350561][T11592] ? aa_file_perm+0x7f3/0x14d0 [ 374.350712][T11592] __vb2_perform_fileio+0x91e/0x1380 [ 374.350769][T11592] ? __pfx___vb2_perform_fileio+0x10/0x10 [ 374.350815][T11592] ? __pfx___might_resched+0x10/0x10 [ 374.350867][T11592] vb2_fop_read+0x211/0x520 [ 374.350914][T11592] v4l2_read+0x229/0x2c0 [ 374.350983][T11592] ? __pfx_v4l2_read+0x10/0x10 [ 374.351024][T11592] vfs_read+0x1e4/0xb30 [ 374.351074][T11592] ? __pfx_vfs_read+0x10/0x10 [ 374.351117][T11592] ? find_held_lock+0x2b/0x80 [ 374.351143][T11592] ? __fget_files+0x215/0x3d0 [ 374.351168][T11592] ? __fget_files+0x215/0x3d0 [ 374.351201][T11592] ? __fget_files+0x21f/0x3d0 [ 374.351245][T11592] ksys_read+0x12a/0x250 [ 374.351290][T11592] ? __pfx_ksys_read+0x10/0x10 [ 374.351345][T11592] do_syscall_64+0x106/0xf80 [ 374.351379][T11592] ? clear_bhb_loop+0x40/0x90 [ 374.351416][T11592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.351446][T11592] RIP: 0033:0x7fbb43f9c799 [ 374.351469][T11592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 374.351497][T11592] RSP: 002b:00007fbb44e50028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 374.351525][T11592] RAX: ffffffffffffffda RBX: 00007fbb44215fa0 RCX: 00007fbb43f9c799 [ 374.351544][T11592] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000005 [ 374.351563][T11592] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 374.351580][T11592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.351597][T11592] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 374.351635][T11592] [ 375.746791][T11627] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1171'. [ 376.523931][T11657] FAULT_INJECTION: forcing a failure. [ 376.523931][T11657] name failslab, interval 1, probability 0, space 0, times 0 [ 376.571624][T11657] CPU: 1 UID: 0 PID: 11657 Comm: syz.3.1179 Tainted: G U syzkaller #0 PREEMPT(full) [ 376.571662][T11657] Tainted: [U]=USER [ 376.571669][T11657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 376.571684][T11657] Call Trace: [ 376.571691][T11657] [ 376.571699][T11657] dump_stack_lvl+0x100/0x190 [ 376.571739][T11657] should_fail_ex.cold+0x5/0xa [ 376.571767][T11657] should_failslab+0xc2/0x120 [ 376.571792][T11657] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 376.571827][T11657] ? vm_area_alloc+0x1f/0x160 [ 376.571858][T11657] ? vma_merge_new_range+0x38b/0xa30 [ 376.571899][T11657] ? __pfx___sanitizer_cov_trace_const_cmp2+0x10/0x10 [ 376.571940][T11657] vm_area_alloc+0x1f/0x160 [ 376.571969][T11657] __mmap_region+0x10cc/0x29e0 [ 376.572005][T11657] ? __pfx___mmap_region+0x10/0x10 [ 376.572041][T11657] ? ima_match_policy+0x8c4/0x2350 [ 376.572085][T11657] ? sched_clock+0x38/0x60 [ 376.572113][T11657] ? find_held_lock+0x2b/0x80 [ 376.572132][T11657] ? process_measurement+0x4c8/0x2350 [ 376.572162][T11657] ? process_measurement+0x4c8/0x2350 [ 376.572202][T11657] ? process_measurement+0x1f4/0x2350 [ 376.572267][T11657] ? rcu_is_watching+0x12/0xc0 [ 376.572301][T11657] ? cap_capable+0x107/0x460 [ 376.572336][T11657] mmap_region+0x30a/0x3e0 [ 376.572373][T11657] do_mmap+0xc63/0x12f0 [ 376.572403][T11657] ? __pfx_do_mmap+0x10/0x10 [ 376.572426][T11657] ? __pfx_down_write_killable+0x10/0x10 [ 376.572464][T11657] vm_mmap_pgoff+0x29e/0x470 [ 376.572493][T11657] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 376.572516][T11657] ? __fget_files+0x215/0x3d0 [ 376.572541][T11657] ? __fget_files+0x21f/0x3d0 [ 376.572575][T11657] ksys_mmap_pgoff+0x3c8/0x650 [ 376.572599][T11657] ? __x64_sys_futex+0x34f/0x4d0 [ 376.572627][T11657] ? __x64_sys_futex+0x358/0x4d0 [ 376.572656][T11657] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 376.572682][T11657] ? xfd_validate_state+0x129/0x190 [ 376.572717][T11657] __x64_sys_mmap+0x125/0x190 [ 376.572752][T11657] do_syscall_64+0x106/0xf80 [ 376.572778][T11657] ? clear_bhb_loop+0x40/0x90 [ 376.572804][T11657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.572827][T11657] RIP: 0033:0x7f6c5919c799 [ 376.572845][T11657] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 376.572866][T11657] RSP: 002b:00007f6c5a06c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 376.572887][T11657] RAX: ffffffffffffffda RBX: 00007f6c59415fa0 RCX: 00007f6c5919c799 [ 376.572901][T11657] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000 [ 376.572914][T11657] RBP: 00007f6c59232c99 R08: 00000000000000dd R09: 0000000000000000 [ 376.572927][T11657] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 376.572940][T11657] R13: 00007f6c59416038 R14: 00007f6c59415fa0 R15: 00007ffc870c4198 [ 376.572968][T11657] [ 376.954905][ T5882] Process accounting resumed [ 377.022092][T11639] [U]  [ 377.551002][T11669] zswap: compressor w(<8.D z not available [ 378.054446][T11675] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1183'. [ 378.200075][T11685] netlink: zone id is out of range [ 378.205465][T11685] netlink: zone id is out of range [ 378.211484][T11685] netlink: zone id is out of range [ 378.217419][T11685] netlink: zone id is out of range [ 378.224760][T11685] netlink: zone id is out of range [ 378.240374][T11685] netlink: zone id is out of range [ 378.250995][T11685] netlink: zone id is out of range [ 378.256158][T11685] netlink: zone id is out of range [ 378.271436][T11685] netlink: zone id is out of range [ 378.276702][T11685] netlink: zone id is out of range [ 378.284071][T11675] bond0: (slave bond_slave_0): Releasing backup interface [ 378.640236][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.649492][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.697820][T11693] sctp: [Deprecated]: syz.0.1187 (pid 11693) Use of int in max_burst socket option. [ 378.697820][T11693] Use struct sctp_assoc_value instead [ 378.988184][T11697] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 380.188953][T11734] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1198'. [ 381.868345][T11767] FAULT_INJECTION: forcing a failure. [ 381.868345][T11767] name failslab, interval 1, probability 0, space 0, times 0 [ 381.881173][T11767] CPU: 1 UID: 0 PID: 11767 Comm: syz.2.1206 Tainted: G U syzkaller #0 PREEMPT(full) [ 381.881209][T11767] Tainted: [U]=USER [ 381.881216][T11767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 381.881230][T11767] Call Trace: [ 381.881238][T11767] [ 381.881247][T11767] dump_stack_lvl+0x100/0x190 [ 381.881286][T11767] should_fail_ex.cold+0x5/0xa [ 381.881314][T11767] should_failslab+0xc2/0x120 [ 381.881339][T11767] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 381.881373][T11767] ? vm_area_alloc+0x1f/0x160 [ 381.881403][T11767] ? vma_merge_new_range+0x38b/0xa30 [ 381.881436][T11767] ? __pfx___sanitizer_cov_trace_const_cmp2+0x10/0x10 [ 381.881480][T11767] vm_area_alloc+0x1f/0x160 [ 381.881511][T11767] __mmap_region+0x10cc/0x29e0 [ 381.881549][T11767] ? __pfx___mmap_region+0x10/0x10 [ 381.881588][T11767] ? ima_match_policy+0x8c4/0x2350 [ 381.881636][T11767] ? find_held_lock+0x2b/0x80 [ 381.881657][T11767] ? process_measurement+0x4c8/0x2350 [ 381.881688][T11767] ? process_measurement+0x4c8/0x2350 [ 381.881731][T11767] ? process_measurement+0x1f4/0x2350 [ 381.881801][T11767] ? rcu_is_watching+0x12/0xc0 [ 381.881836][T11767] ? cap_capable+0x107/0x460 [ 381.881873][T11767] mmap_region+0x30a/0x3e0 [ 381.881914][T11767] do_mmap+0xc63/0x12f0 [ 381.881944][T11767] ? __pfx_do_mmap+0x10/0x10 [ 381.881970][T11767] ? __pfx_down_write_killable+0x10/0x10 [ 381.882010][T11767] vm_mmap_pgoff+0x29e/0x470 [ 381.882041][T11767] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 381.882065][T11767] ? __fget_files+0x215/0x3d0 [ 381.882092][T11767] ? __fget_files+0x21f/0x3d0 [ 381.882125][T11767] ksys_mmap_pgoff+0x3c8/0x650 [ 381.882149][T11767] ? __x64_sys_futex+0x34f/0x4d0 [ 381.882178][T11767] ? __x64_sys_futex+0x358/0x4d0 [ 381.882212][T11767] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 381.882236][T11767] ? xfd_validate_state+0x129/0x190 [ 381.882276][T11767] __x64_sys_mmap+0x125/0x190 [ 381.882314][T11767] do_syscall_64+0x106/0xf80 [ 381.882341][T11767] ? clear_bhb_loop+0x40/0x90 [ 381.882369][T11767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.882393][T11767] RIP: 0033:0x7ff459d9c799 [ 381.882412][T11767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 381.882435][T11767] RSP: 002b:00007ff45ab8a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 381.882457][T11767] RAX: ffffffffffffffda RBX: 00007ff45a015fa0 RCX: 00007ff459d9c799 [ 381.882472][T11767] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000 [ 381.882486][T11767] RBP: 00007ff459e32c99 R08: 00000000000000dd R09: 0000000000000000 [ 381.882500][T11767] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 381.882513][T11767] R13: 00007ff45a016038 R14: 00007ff45a015fa0 R15: 00007ffdcdde5488 [ 381.882543][T11767] [ 382.302057][T11780] random: crng reseeded on system resumption [ 382.398270][T11780] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1209'. [ 383.465309][T11782] Process accounting paused [ 384.078181][T11813] FAULT_INJECTION: forcing a failure. [ 384.078181][T11813] name failslab, interval 1, probability 0, space 0, times 0 [ 384.107188][T11813] CPU: 0 UID: 0 PID: 11813 Comm: syz.2.1215 Tainted: G U syzkaller #0 PREEMPT(full) [ 384.107238][T11813] Tainted: [U]=USER [ 384.107248][T11813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 384.107267][T11813] Call Trace: [ 384.107277][T11813] [ 384.107288][T11813] dump_stack_lvl+0x100/0x190 [ 384.107340][T11813] should_fail_ex.cold+0x5/0xa [ 384.107378][T11813] should_failslab+0xc2/0x120 [ 384.107410][T11813] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 384.107461][T11813] ? cache_create_net+0x2b/0x1f0 [ 384.107624][T11813] ? __pfx_proc_create_data+0x10/0x10 [ 384.107688][T11813] kmemdup_noprof+0x29/0x60 [ 384.107734][T11813] cache_create_net+0x2b/0x1f0 [ 384.107771][T11813] nfsd_export_init+0x11f/0x250 [ 384.107850][T11813] ? __pfx_nfsd_net_init+0x10/0x10 [ 384.107897][T11813] nfsd_net_init+0x33/0x3d0 [ 384.107944][T11813] ? __pfx_nfsd_net_init+0x10/0x10 [ 384.107989][T11813] ops_init+0x1e2/0x5f0 [ 384.108074][T11813] setup_net+0x118/0x3a0 [ 384.108116][T11813] ? __pfx_setup_net+0x10/0x10 [ 384.108153][T11813] ? lockdep_init_map_type+0x5c/0x250 [ 384.108195][T11813] ? mutex_init_lockep+0x110/0x150 [ 384.108243][T11813] copy_net_ns+0x46f/0x7c0 [ 384.108289][T11813] create_new_namespaces+0x3ea/0xac0 [ 384.108330][T11813] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 384.108367][T11813] ksys_unshare+0x473/0xad0 [ 384.108418][T11813] ? __pfx_ksys_unshare+0x10/0x10 [ 384.108482][T11813] __x64_sys_unshare+0x31/0x40 [ 384.108516][T11813] do_syscall_64+0x106/0xf80 [ 384.108556][T11813] ? clear_bhb_loop+0x40/0x90 [ 384.108592][T11813] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.108622][T11813] RIP: 0033:0x7ff459d9c799 [ 384.108645][T11813] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.108672][T11813] RSP: 002b:00007ff457ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 384.108701][T11813] RAX: ffffffffffffffda RBX: 00007ff45a016090 RCX: 00007ff459d9c799 [ 384.108720][T11813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 384.108736][T11813] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 384.108753][T11813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.108770][T11813] R13: 00007ff45a016128 R14: 00007ff45a016090 R15: 00007ffdcdde5488 [ 384.108808][T11813] [ 385.172479][T11833] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1222'. [ 385.181636][T11833] mac80211_hwsim hwsim2 : renamed from wlan0 (while UP) [ 385.415733][T11837] zswap: compressor w(<8.D z not available [ 386.773711][T11876] zswap: compressor not available [ 387.382871][T11892] Process accounting paused [ 387.865616][T11905] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1241'. [ 387.943610][T11905] i: entered promiscuous mode [ 388.761323][T11939] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1249'. [ 389.580629][T11956] FAULT_INJECTION: forcing a failure. [ 389.580629][T11956] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 389.622374][T11956] CPU: 0 UID: 0 PID: 11956 Comm: syz.2.1254 Tainted: G U syzkaller #0 PREEMPT(full) [ 389.622422][T11956] Tainted: [U]=USER [ 389.622433][T11956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 389.622451][T11956] Call Trace: [ 389.622462][T11956] [ 389.622473][T11956] dump_stack_lvl+0x100/0x190 [ 389.622526][T11956] should_fail_ex.cold+0x5/0xa [ 389.622565][T11956] _copy_from_user+0x2e/0xd0 [ 389.622694][T11956] kstrtoint_from_user+0xd6/0x1d0 [ 389.622746][T11956] ? __pfx_kstrtoint_from_user+0x10/0x10 [ 389.622789][T11956] ? __lock_acquire+0x4a5/0x2630 [ 389.622839][T11956] ? __lock_acquire+0x4a5/0x2630 [ 389.622894][T11956] nsim_dev_hwstats_do_write+0xb6/0xbb0 [ 389.623047][T11956] ? __debugfs_file_get+0x1fc/0x860 [ 389.623135][T11956] ? __pfx_nsim_dev_hwstats_do_write+0x10/0x10 [ 389.623208][T11956] short_proxy_write+0x133/0x1a0 [ 389.623249][T11956] vfs_write+0x2aa/0x1070 [ 389.623296][T11956] ? __pfx_short_proxy_write+0x10/0x10 [ 389.623342][T11956] ? __pfx_vfs_write+0x10/0x10 [ 389.623388][T11956] ? __fget_files+0x215/0x3d0 [ 389.623429][T11956] ? __fget_files+0x21f/0x3d0 [ 389.623467][T11956] ksys_write+0x12a/0x250 [ 389.623499][T11956] ? __pfx_ksys_write+0x10/0x10 [ 389.623538][T11956] do_syscall_64+0x106/0xf80 [ 389.623573][T11956] ? clear_bhb_loop+0x40/0x90 [ 389.623610][T11956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 389.623640][T11956] RIP: 0033:0x7ff459d9c799 [ 389.623663][T11956] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 389.623692][T11956] RSP: 002b:00007ff45ab8a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 389.623721][T11956] RAX: ffffffffffffffda RBX: 00007ff45a015fa0 RCX: 00007ff459d9c799 [ 389.623740][T11956] RDX: 0000000000000001 RSI: 0000200000000380 RDI: 0000000000000004 [ 389.623758][T11956] RBP: 00007ff45ab8a090 R08: 0000000000000000 R09: 0000000000000000 [ 389.623775][T11956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 389.623792][T11956] R13: 00007ff45a016038 R14: 00007ff45a015fa0 R15: 00007ffdcdde5488 [ 389.623833][T11956] [ 390.230617][T11965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1255'. [ 390.577404][T11971] zswap: compressor w(<8.D z not available [ 391.257083][T11987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1261'. [ 391.285640][T11987] netlink: 'syz.3.1261': attribute type 1 has an invalid length. [ 391.304554][T11987] netlink: 51505 bytes leftover after parsing attributes in process `syz.3.1261'. [ 391.376113][T11989] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1262'. [ 391.905277][T12002] can: request_module (can-proto-0) failed. [ 392.649819][T12019] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1269'. [ 392.724742][T12019] veth1_macvtap: left promiscuous mode [ 393.792098][T12037] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 394.213271][T12058] [U]  [ 394.362209][T12051] : Can't lookup blockdev [ 395.787965][T12067] FAULT_INJECTION: forcing a failure. [ 395.787965][T12067] name fail_futex, interval 1, probability 0, space 0, times 0 [ 395.816102][T12067] CPU: 0 UID: 0 PID: 12067 Comm: syz.0.1276 Tainted: G U syzkaller #0 PREEMPT(full) [ 395.816153][T12067] Tainted: [U]=USER [ 395.816163][T12067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 395.816182][T12067] Call Trace: [ 395.816197][T12067] [ 395.816209][T12067] dump_stack_lvl+0x100/0x190 [ 395.816262][T12067] should_fail_ex.cold+0x5/0xa [ 395.816301][T12067] get_futex_key+0x295/0x1620 [ 395.816353][T12067] ? __pfx_get_futex_key+0x10/0x10 [ 395.816388][T12067] ? lock_acquire+0x1cf/0x380 [ 395.816444][T12067] futex_wake+0xea/0x530 [ 395.816494][T12067] ? __pfx_futex_wake+0x10/0x10 [ 395.816543][T12067] ? exit_mm_release+0x19/0x30 [ 395.816594][T12067] do_futex+0x32b/0x350 [ 395.816636][T12067] ? __pfx_do_futex+0x10/0x10 [ 395.816674][T12067] ? __might_fault+0xc5/0x140 [ 395.816730][T12067] mm_release+0x24a/0x2f0 [ 395.816763][T12067] do_exit+0x704/0x2b60 [ 395.816811][T12067] ? __pfx_do_exit+0x10/0x10 [ 395.816851][T12067] ? do_raw_spin_lock+0x128/0x260 [ 395.816899][T12067] ? find_held_lock+0x2b/0x80 [ 395.816939][T12067] ? get_signal+0x7e0/0x21e0 [ 395.816976][T12067] do_group_exit+0xd5/0x2a0 [ 395.817020][T12067] get_signal+0x1ec7/0x21e0 [ 395.817062][T12067] ? ksys_write+0x190/0x250 [ 395.817111][T12067] ? __pfx_get_signal+0x10/0x10 [ 395.817147][T12067] ? do_futex+0x192/0x350 [ 395.817191][T12067] arch_do_signal_or_restart+0x91/0x770 [ 395.817233][T12067] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 395.817282][T12067] ? __pfx___x64_sys_futex+0x10/0x10 [ 395.817341][T12067] exit_to_user_mode_loop+0x86/0x4a0 [ 395.817387][T12067] do_syscall_64+0x668/0xf80 [ 395.817426][T12067] ? clear_bhb_loop+0x40/0x90 [ 395.817465][T12067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.817497][T12067] RIP: 0033:0x7fbb43f9c799 [ 395.817523][T12067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 395.817553][T12067] RSP: 002b:00007fbb44e0e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 395.817582][T12067] RAX: fffffffffffffe00 RBX: 00007fbb44216188 RCX: 00007fbb43f9c799 [ 395.817601][T12067] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbb44216188 [ 395.817619][T12067] RBP: 00007fbb44216180 R08: 0000000000000000 R09: 0000000000000000 [ 395.817639][T12067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 395.817657][T12067] R13: 00007fbb44216218 R14: 00007ffee24aacc0 R15: 00007ffee24aada8 [ 395.817697][T12067] [ 396.648019][T12088] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1281'. [ 396.727917][T12092] zram: Added device: zram1 [ 396.783527][T12088] team0 (unregistering): Port device team_slave_0 removed [ 396.842808][T12088] team0 (unregistering): Port device team_slave_1 removed [ 400.919602][T12193] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1301'. [ 401.714710][T12210] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1303'. [ 402.563914][T12222] zswap: compressor not available [ 404.054503][T12261] netlink: 146 bytes leftover after parsing attributes in process `syz.3.1314'. [ 405.584891][T12298] FAULT_INJECTION: forcing a failure. [ 405.584891][T12298] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 406.013951][T12298] CPU: 0 UID: 0 PID: 12298 Comm: syz.2.1323 Tainted: G U syzkaller #0 PREEMPT(full) [ 406.013985][T12298] Tainted: [U]=USER [ 406.013991][T12298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 406.014004][T12298] Call Trace: [ 406.014011][T12298] [ 406.014019][T12298] dump_stack_lvl+0x100/0x190 [ 406.014056][T12298] should_fail_ex.cold+0x5/0xa [ 406.014083][T12298] _copy_to_user+0x32/0xd0 [ 406.014106][T12298] simple_read_from_buffer+0xcb/0x170 [ 406.014163][T12298] proc_fail_nth_read+0x1af/0x230 [ 406.014192][T12298] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 406.014221][T12298] ? rw_verify_area+0xce/0x6d0 [ 406.014253][T12298] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 406.014279][T12298] vfs_read+0x1e4/0xb30 [ 406.014318][T12298] ? __pfx_vfs_read+0x10/0x10 [ 406.014363][T12298] ? __fget_files+0x215/0x3d0 [ 406.014388][T12298] ? __fget_files+0x21f/0x3d0 [ 406.014414][T12298] ksys_read+0x12a/0x250 [ 406.014451][T12298] ? __pfx_ksys_read+0x10/0x10 [ 406.014492][T12298] do_syscall_64+0x106/0xf80 [ 406.014519][T12298] ? clear_bhb_loop+0x40/0x90 [ 406.014545][T12298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.014567][T12298] RIP: 0033:0x7ff459d5cfce [ 406.014583][T12298] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 406.014603][T12298] RSP: 002b:00007ff45ab89fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 406.014623][T12298] RAX: ffffffffffffffda RBX: 00007ff45ab8a6c0 RCX: 00007ff459d5cfce [ 406.014637][T12298] RDX: 000000000000000f RSI: 00007ff45ab8a0a0 RDI: 0000000000000004 [ 406.014650][T12298] RBP: 00007ff45ab8a090 R08: 0000000000000000 R09: 0000000000000000 [ 406.014662][T12298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 406.014675][T12298] R13: 00007ff45a016038 R14: 00007ff45a015fa0 R15: 00007ffdcdde5488 [ 406.014702][T12298] [ 406.994597][T12315] FAULT_INJECTION: forcing a failure. [ 406.994597][T12315] name failslab, interval 1, probability 0, space 0, times 0 [ 407.022405][T12315] CPU: 0 UID: 0 PID: 12315 Comm: syz.1.1328 Tainted: G U syzkaller #0 PREEMPT(full) [ 407.022453][T12315] Tainted: [U]=USER [ 407.022462][T12315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 407.022481][T12315] Call Trace: [ 407.022492][T12315] [ 407.022503][T12315] dump_stack_lvl+0x100/0x190 [ 407.022566][T12315] should_fail_ex.cold+0x5/0xa [ 407.022600][T12315] ? __register_sysctl_table+0xbe4/0x1650 [ 407.022667][T12315] should_failslab+0xc2/0x120 [ 407.022700][T12315] __kmalloc_noprof+0xe0/0x850 [ 407.022773][T12315] __register_sysctl_table+0xbe4/0x1650 [ 407.022856][T12315] ? __pfx___register_sysctl_table+0x10/0x10 [ 407.022907][T12315] ? is_module_address+0x69/0xf0 [ 407.022950][T12315] ? register_net_sysctl_sz+0x222/0x430 [ 407.023132][T12315] __devinet_sysctl_register+0x1b9/0x360 [ 407.023228][T12315] ? trace_kmalloc+0x101/0x130 [ 407.023263][T12315] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 407.023320][T12315] ? __asan_memcpy+0x3c/0x60 [ 407.023371][T12315] devinet_init_net+0x334/0x8d0 [ 407.023425][T12315] ? __pfx_devinet_init_net+0x10/0x10 [ 407.023472][T12315] ops_init+0x1e2/0x5f0 [ 407.023522][T12315] setup_net+0x118/0x3a0 [ 407.023566][T12315] ? __pfx_setup_net+0x10/0x10 [ 407.023607][T12315] ? lockdep_init_map_type+0x5c/0x250 [ 407.023653][T12315] ? mutex_init_lockep+0x110/0x150 [ 407.023706][T12315] copy_net_ns+0x46f/0x7c0 [ 407.023756][T12315] create_new_namespaces+0x3ea/0xac0 [ 407.023808][T12315] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 407.023857][T12315] ksys_unshare+0x473/0xad0 [ 407.023898][T12315] ? __pfx_ksys_unshare+0x10/0x10 [ 407.023946][T12315] __x64_sys_unshare+0x31/0x40 [ 407.023984][T12315] do_syscall_64+0x106/0xf80 [ 407.024030][T12315] ? clear_bhb_loop+0x40/0x90 [ 407.024068][T12315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.024098][T12315] RIP: 0033:0x7f004299c799 [ 407.024121][T12315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 407.024149][T12315] RSP: 002b:00007f0040bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 407.024175][T12315] RAX: ffffffffffffffda RBX: 00007f0042c15fa0 RCX: 00007f004299c799 [ 407.024194][T12315] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 407.024210][T12315] RBP: 00007f0042a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 407.024244][T12315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 407.024262][T12315] R13: 00007f0042c16038 R14: 00007f0042c15fa0 R15: 00007ffc4372cee8 [ 407.024300][T12315] [ 407.520840][T12315] sysctl could not get directory: /net/ipv4/conf/default -12 [ 407.697388][T12329] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1331'. [ 412.550508][T12392] zswap: compressor not available [ 414.307646][T12353] Process accounting resumed [ 414.534565][T12425] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1350'. [ 414.544400][T12425] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1350'. [ 415.404840][T12441] zswap: compressor w(<8.D z not available [ 415.644164][T12455] zswap: compressor w(<8.D z not available [ 416.361207][T12465] zswap: compressor w(<8.D z not available [ 417.030540][ T29] audit: type=1800 audit(1773283768.851:12): pid=12487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1362" name="discovery_nqn" dev="configfs" ino=44750 res=0 errno=0 [ 417.564009][T12496] futex_wake_op: syz.1.1365 tries to shift op by -2048; fix this program [ 417.577758][T12496] futex_wake_op: syz.1.1365 tries to shift op by -2048; fix this program [ 417.617464][T12496] 0x000000000001-0x000000020000 : "" [ 417.670210][T12496] ftl_cs: FTL header corrupt! [ 419.449570][T12516] Process accounting resumed [ 421.185017][T12563] FAULT_INJECTION: forcing a failure. [ 421.185017][T12563] name failslab, interval 1, probability 0, space 0, times 0 [ 421.222731][T12563] CPU: 0 UID: 0 PID: 12563 Comm: syz.1.1380 Tainted: G U syzkaller #0 PREEMPT(full) [ 421.222763][T12563] Tainted: [U]=USER [ 421.222770][T12563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 421.222782][T12563] Call Trace: [ 421.222789][T12563] [ 421.222797][T12563] dump_stack_lvl+0x100/0x190 [ 421.222833][T12563] should_fail_ex.cold+0x5/0xa [ 421.222857][T12563] ? ops_init+0x77/0x5f0 [ 421.222882][T12563] should_failslab+0xc2/0x120 [ 421.222903][T12563] __kmalloc_noprof+0xe0/0x850 [ 421.222934][T12563] ? nf_register_net_hook+0xe2/0x170 [ 421.223049][T12563] ops_init+0x77/0x5f0 [ 421.223078][T12563] setup_net+0x118/0x3a0 [ 421.223106][T12563] ? __pfx_setup_net+0x10/0x10 [ 421.223131][T12563] ? lockdep_init_map_type+0x5c/0x250 [ 421.223159][T12563] ? mutex_init_lockep+0x110/0x150 [ 421.223191][T12563] copy_net_ns+0x46f/0x7c0 [ 421.223222][T12563] create_new_namespaces+0x3ea/0xac0 [ 421.223249][T12563] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 421.223273][T12563] ksys_unshare+0x473/0xad0 [ 421.223300][T12563] ? __pfx_ksys_unshare+0x10/0x10 [ 421.223335][T12563] __x64_sys_unshare+0x31/0x40 [ 421.223360][T12563] do_syscall_64+0x106/0xf80 [ 421.223385][T12563] ? clear_bhb_loop+0x40/0x90 [ 421.223411][T12563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.223432][T12563] RIP: 0033:0x7f004299c799 [ 421.223449][T12563] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 421.223468][T12563] RSP: 002b:00007f0040bd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 421.223488][T12563] RAX: ffffffffffffffda RBX: 00007f0042c16090 RCX: 00007f004299c799 [ 421.223502][T12563] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 421.223514][T12563] RBP: 00007f0042a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 421.223533][T12563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.223546][T12563] R13: 00007f0042c16128 R14: 00007f0042c16090 R15: 00007ffc4372cee8 [ 421.223572][T12563] [ 423.259498][T12597] zswap: compressor w(<8.D z not available [ 423.602872][T12611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1392'. [ 424.434658][T12635] sctp: [Deprecated]: syz.1.1396 (pid 12635) Use of struct sctp_assoc_value in delayed_ack socket option. [ 424.434658][T12635] Use struct sctp_sack_info instead [ 424.527939][T12626] zswap: compressor #t dÜZ[ not available [ 424.860616][T10464] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 425.122661][T12652] FAULT_INJECTION: forcing a failure. [ 425.122661][T12652] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 425.240588][T12652] CPU: 0 UID: 0 PID: 12652 Comm: syz.0.1400 Tainted: G U syzkaller #0 PREEMPT(full) [ 425.240633][T12652] Tainted: [U]=USER [ 425.240643][T12652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 425.240659][T12652] Call Trace: [ 425.240668][T12652] [ 425.240679][T12652] dump_stack_lvl+0x100/0x190 [ 425.240746][T12652] should_fail_ex.cold+0x5/0xa [ 425.240776][T12652] ? prepare_alloc_pages+0x16d/0x5f0 [ 425.240816][T12652] should_fail_alloc_page+0xeb/0x140 [ 425.240852][T12652] prepare_alloc_pages+0x1f0/0x5f0 [ 425.240894][T12652] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 425.240971][T12652] ? stack_trace_save+0x8e/0xc0 [ 425.241002][T12652] ? __pfx_stack_trace_save+0x10/0x10 [ 425.241032][T12652] ? stack_depot_save_flags+0x27/0x9d0 [ 425.241079][T12652] ? stack_trace_save+0x8e/0xc0 [ 425.241111][T12652] ? kasan_save_stack+0x3f/0x50 [ 425.241154][T12652] ? kasan_save_stack+0x30/0x50 [ 425.241196][T12652] ? kasan_save_track+0x14/0x30 [ 425.241237][T12652] ? __kasan_slab_alloc+0x89/0x90 [ 425.241262][T12652] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 425.241307][T12652] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 425.241350][T12652] ? insert_page+0xcc/0x220 [ 425.241388][T12652] ? vm_insert_page+0x2c0/0x400 [ 425.241420][T12652] ? kcov_mmap+0xca/0x130 [ 425.241463][T12652] ? mmap_region+0x30a/0x3e0 [ 425.241503][T12652] ? vm_mmap_pgoff+0x29e/0x470 [ 425.241532][T12652] ? ksys_mmap_pgoff+0x3c8/0x650 [ 425.241603][T12652] ? __x64_sys_mmap+0x125/0x190 [ 425.241663][T12652] ? do_syscall_64+0x106/0xf80 [ 425.241701][T12652] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.241752][T12652] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 425.241818][T12652] ? policy_nodemask+0xed/0x4f0 [ 425.241851][T12652] alloc_pages_mpol+0x1fb/0x550 [ 425.241883][T12652] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 425.241918][T12652] ? do_raw_spin_lock+0x128/0x260 [ 425.241965][T12652] alloc_pages_noprof+0x131/0x390 [ 425.241998][T12652] pte_alloc_one+0x1c/0x3d0 [ 425.242031][T12652] __pte_alloc+0x6d/0x3e0 [ 425.242059][T12652] ? __pfx___pte_alloc+0x10/0x10 [ 425.242091][T12652] ? walk_to_pmd+0x302/0x4c0 [ 425.242128][T12652] get_locked_pte+0xa1/0xc0 [ 425.242164][T12652] insert_page+0xcc/0x220 [ 425.242200][T12652] ? __pfx_insert_page+0x10/0x10 [ 425.242231][T12652] ? __pfx_down_read_trylock+0x10/0x10 [ 425.242284][T12652] vm_insert_page+0x2c0/0x400 [ 425.242322][T12652] kcov_mmap+0xca/0x130 [ 425.242376][T12652] __mmap_region+0x1443/0x29e0 [ 425.242423][T12652] ? __pfx___mmap_region+0x10/0x10 [ 425.242469][T12652] ? find_held_lock+0x2b/0x80 [ 425.242494][T12652] ? ima_match_policy+0x8c4/0x2350 [ 425.242522][T12652] ? ima_match_policy+0x8c4/0x2350 [ 425.242584][T12652] ? find_held_lock+0x2b/0x80 [ 425.242609][T12652] ? process_measurement+0x4c8/0x2350 [ 425.242648][T12652] ? process_measurement+0x4c8/0x2350 [ 425.242702][T12652] ? process_measurement+0x1f4/0x2350 [ 425.242793][T12652] ? rcu_is_watching+0x12/0xc0 [ 425.242839][T12652] ? cap_capable+0x107/0x460 [ 425.242888][T12652] mmap_region+0x30a/0x3e0 [ 425.242938][T12652] do_mmap+0xc63/0x12f0 [ 425.242978][T12652] ? __pfx_do_mmap+0x10/0x10 [ 425.243009][T12652] ? __pfx_down_write_killable+0x10/0x10 [ 425.243058][T12652] vm_mmap_pgoff+0x29e/0x470 [ 425.243097][T12652] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 425.243127][T12652] ? __fget_files+0x215/0x3d0 [ 425.243161][T12652] ? __fget_files+0x21f/0x3d0 [ 425.243213][T12652] ksys_mmap_pgoff+0x3c8/0x650 [ 425.243246][T12652] ? __x64_sys_futex+0x34f/0x4d0 [ 425.243284][T12652] ? __x64_sys_futex+0x358/0x4d0 [ 425.243325][T12652] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 425.243365][T12652] ? xfd_validate_state+0x129/0x190 [ 425.243417][T12652] __x64_sys_mmap+0x125/0x190 [ 425.243468][T12652] do_syscall_64+0x106/0xf80 [ 425.243503][T12652] ? clear_bhb_loop+0x40/0x90 [ 425.243542][T12652] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.243573][T12652] RIP: 0033:0x7fbb43f9c799 [ 425.243598][T12652] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 425.243629][T12652] RSP: 002b:00007fbb44e50028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 425.243659][T12652] RAX: ffffffffffffffda RBX: 00007fbb44215fa0 RCX: 00007fbb43f9c799 [ 425.243679][T12652] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000 [ 425.243697][T12652] RBP: 00007fbb44032c99 R08: 00000000000000dd R09: 0000000000000000 [ 425.243716][T12652] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 425.243734][T12652] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 425.243775][T12652] [ 426.863051][T12682] FAULT_INJECTION: forcing a failure. [ 426.863051][T12682] name failslab, interval 1, probability 0, space 0, times 0 [ 426.876560][T12682] CPU: 1 UID: 0 PID: 12682 Comm: syz.1.1407 Tainted: G U syzkaller #0 PREEMPT(full) [ 426.876597][T12682] Tainted: [U]=USER [ 426.876604][T12682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 426.876619][T12682] Call Trace: [ 426.876627][T12682] [ 426.876636][T12682] dump_stack_lvl+0x100/0x190 [ 426.876677][T12682] should_fail_ex.cold+0x5/0xa [ 426.876706][T12682] ? inotify_handle_inode_event+0x1a5/0x6a0 [ 426.876761][T12682] should_failslab+0xc2/0x120 [ 426.876787][T12682] __kmalloc_noprof+0xe0/0x850 [ 426.876829][T12682] inotify_handle_inode_event+0x1a5/0x6a0 [ 426.876868][T12682] ? __pfx_inotify_handle_inode_event+0x10/0x10 [ 426.876901][T12682] fsnotify_handle_inode_event.isra.0+0x1e3/0x410 [ 426.876943][T12682] fsnotify+0x187d/0x3550 [ 426.876981][T12682] ? __pfx_fsnotify+0x10/0x10 [ 426.876998][T12682] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 426.877040][T12682] ? __pfx_task_work_add+0x10/0x10 [ 426.877075][T12682] __fsnotify_parent+0x704/0xca0 [ 426.877101][T12682] ? __pfx___fsnotify_parent+0x10/0x10 [ 426.877127][T12682] ? __pfx___might_resched+0x10/0x10 [ 426.877164][T12682] ? __fput+0x30d/0xb40 [ 426.877186][T12682] __fput+0x30d/0xb40 [ 426.877214][T12682] task_work_run+0x150/0x240 [ 426.877245][T12682] ? __pfx_task_work_run+0x10/0x10 [ 426.877281][T12682] exit_to_user_mode_loop+0x100/0x4a0 [ 426.877311][T12682] do_syscall_64+0x668/0xf80 [ 426.877336][T12682] ? clear_bhb_loop+0x40/0x90 [ 426.877361][T12682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.877383][T12682] RIP: 0033:0x7f004299c799 [ 426.877399][T12682] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 426.877420][T12682] RSP: 002b:00007f0040bf6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 426.877439][T12682] RAX: 0000000000000000 RBX: 00007f0042c15fa0 RCX: 00007f004299c799 [ 426.877452][T12682] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 426.877464][T12682] RBP: 00007f0042a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 426.877476][T12682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.877488][T12682] R13: 00007f0042c16038 R14: 00007f0042c15fa0 R15: 00007ffc4372cee8 [ 426.877515][T12682] [ 427.864153][T12697] cougar: G6 mapped to F18 [ 429.552034][T12721] cifs: Unknown parameter ') Up̢{V ]762']Ψ!gʮ79fM<*ysEh' [ 429.784923][T12725] random: crng reseeded on system resumption [ 430.283807][T12740] FAULT_INJECTION: forcing a failure. [ 430.283807][T12740] name failslab, interval 1, probability 0, space 0, times 0 [ 430.306977][T12740] CPU: 0 UID: 0 PID: 12740 Comm: syz.2.1423 Tainted: G U syzkaller #0 PREEMPT(full) [ 430.307031][T12740] Tainted: [U]=USER [ 430.307042][T12740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 430.307061][T12740] Call Trace: [ 430.307072][T12740] [ 430.307084][T12740] dump_stack_lvl+0x100/0x190 [ 430.307138][T12740] should_fail_ex.cold+0x5/0xa [ 430.307187][T12740] should_failslab+0xc2/0x120 [ 430.307220][T12740] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 430.307284][T12740] ? __proc_create+0x2cb/0x8c0 [ 430.307346][T12740] __proc_create+0x2cb/0x8c0 [ 430.307402][T12740] ? __pfx___proc_create+0x10/0x10 [ 430.307479][T12740] proc_mkdir+0x81/0x170 [ 430.307507][T12740] ? __pfx_proc_mkdir+0x10/0x10 [ 430.307532][T12740] ? cache_register_net+0x137/0x5e0 [ 430.307574][T12740] ? cache_register_net+0x137/0x5e0 [ 430.307621][T12740] cache_register_net+0x18f/0x5e0 [ 430.307666][T12740] nfsd_idmap_init+0x16e/0x250 [ 430.307704][T12740] ? __pfx_nfsd_net_init+0x10/0x10 [ 430.307750][T12740] nfsd_net_init+0x69/0x3d0 [ 430.307799][T12740] ? __pfx_nfsd_net_init+0x10/0x10 [ 430.307852][T12740] ops_init+0x1e2/0x5f0 [ 430.307898][T12740] setup_net+0x118/0x3a0 [ 430.307938][T12740] ? __pfx_setup_net+0x10/0x10 [ 430.307976][T12740] ? lockdep_init_map_type+0x5c/0x250 [ 430.308018][T12740] ? mutex_init_lockep+0x110/0x150 [ 430.308065][T12740] copy_net_ns+0x46f/0x7c0 [ 430.308113][T12740] create_new_namespaces+0x3ea/0xac0 [ 430.308154][T12740] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 430.308191][T12740] ksys_unshare+0x473/0xad0 [ 430.308231][T12740] ? __pfx_ksys_unshare+0x10/0x10 [ 430.308283][T12740] __x64_sys_unshare+0x31/0x40 [ 430.308320][T12740] do_syscall_64+0x106/0xf80 [ 430.308357][T12740] ? clear_bhb_loop+0x40/0x90 [ 430.308395][T12740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.308427][T12740] RIP: 0033:0x7ff459d9c799 [ 430.308452][T12740] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 430.308482][T12740] RSP: 002b:00007ff457ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 430.308513][T12740] RAX: ffffffffffffffda RBX: 00007ff45a016090 RCX: 00007ff459d9c799 [ 430.308533][T12740] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 430.308551][T12740] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 430.308569][T12740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 430.308587][T12740] R13: 00007ff45a016128 R14: 00007ff45a016090 R15: 00007ffdcdde5488 [ 430.308628][T12740] [ 430.724905][T12748] FAULT_INJECTION: forcing a failure. [ 430.724905][T12748] name failslab, interval 1, probability 0, space 0, times 0 [ 430.850134][T12748] CPU: 1 UID: 0 PID: 12748 Comm: syz.0.1424 Tainted: G U syzkaller #0 PREEMPT(full) [ 430.850187][T12748] Tainted: [U]=USER [ 430.850197][T12748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 430.850214][T12748] Call Trace: [ 430.850224][T12748] [ 430.850234][T12748] dump_stack_lvl+0x100/0x190 [ 430.850284][T12748] should_fail_ex.cold+0x5/0xa [ 430.850319][T12748] should_failslab+0xc2/0x120 [ 430.850350][T12748] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 430.850394][T12748] ? __proc_create+0x2cb/0x8c0 [ 430.850452][T12748] __proc_create+0x2cb/0x8c0 [ 430.850500][T12748] ? __pfx___proc_create+0x10/0x10 [ 430.850552][T12748] ? _raw_write_unlock+0x28/0x50 [ 430.850663][T12748] ? proc_register+0x559/0x8a0 [ 430.850695][T12748] proc_create_reg+0x75/0x170 [ 430.850727][T12748] proc_create_data+0x86/0x110 [ 430.850755][T12748] ? __pfx_proc_create_data+0x10/0x10 [ 430.850784][T12748] ? cache_register_net+0x137/0x5e0 [ 430.850823][T12748] ? cache_register_net+0x137/0x5e0 [ 430.850868][T12748] cache_register_net+0x2d6/0x5e0 [ 430.850910][T12748] nfsd_export_init+0x16e/0x250 [ 430.850957][T12748] ? __pfx_nfsd_net_init+0x10/0x10 [ 430.851001][T12748] nfsd_net_init+0x33/0x3d0 [ 430.851047][T12748] ? __pfx_nfsd_net_init+0x10/0x10 [ 430.851092][T12748] ops_init+0x1e2/0x5f0 [ 430.851134][T12748] setup_net+0x118/0x3a0 [ 430.851180][T12748] ? __pfx_setup_net+0x10/0x10 [ 430.851216][T12748] ? lockdep_init_map_type+0x5c/0x250 [ 430.851255][T12748] ? mutex_init_lockep+0x110/0x150 [ 430.851299][T12748] copy_net_ns+0x46f/0x7c0 [ 430.851343][T12748] create_new_namespaces+0x3ea/0xac0 [ 430.851382][T12748] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 430.851417][T12748] ksys_unshare+0x473/0xad0 [ 430.851455][T12748] ? __pfx_ksys_unshare+0x10/0x10 [ 430.851504][T12748] __x64_sys_unshare+0x31/0x40 [ 430.851539][T12748] do_syscall_64+0x106/0xf80 [ 430.851575][T12748] ? clear_bhb_loop+0x40/0x90 [ 430.851611][T12748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.851641][T12748] RIP: 0033:0x7fbb43f9c799 [ 430.851665][T12748] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 430.851693][T12748] RSP: 002b:00007fbb44e2f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 430.851721][T12748] RAX: ffffffffffffffda RBX: 00007fbb44216090 RCX: 00007fbb43f9c799 [ 430.851740][T12748] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 430.851757][T12748] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 430.851775][T12748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 430.851793][T12748] R13: 00007fbb44216128 R14: 00007fbb44216090 R15: 00007ffee24aada8 [ 430.851849][T12748] [ 431.187232][T12750] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1427'. [ 431.492781][T12761] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1428'. [ 431.921853][T10464] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 431.921898][T10464] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 431.940707][T10464] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 431.940773][T10464] Bluetooth: hci0: adv larger than maximum supported [ 431.948384][T10464] Bluetooth: hci0: Malformed LE Event: 0x0d [ 432.133328][T12788] veth1_to_batadv: entered promiscuous mode [ 432.140081][T12787] veth1_to_batadv: left promiscuous mode [ 433.033123][T12806] FAULT_INJECTION: forcing a failure. [ 433.033123][T12806] name failslab, interval 1, probability 0, space 0, times 0 [ 433.060541][T12806] CPU: 1 UID: 0 PID: 12806 Comm: syz.3.1438 Tainted: G U syzkaller #0 PREEMPT(full) [ 433.060597][T12806] Tainted: [U]=USER [ 433.060609][T12806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 433.060630][T12806] Call Trace: [ 433.060641][T12806] [ 433.060653][T12806] dump_stack_lvl+0x100/0x190 [ 433.060711][T12806] should_fail_ex.cold+0x5/0xa [ 433.060752][T12806] should_failslab+0xc2/0x120 [ 433.060788][T12806] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 433.060839][T12806] ? __proc_create+0x2cb/0x8c0 [ 433.060902][T12806] __proc_create+0x2cb/0x8c0 [ 433.060967][T12806] ? __pfx___proc_create+0x10/0x10 [ 433.061033][T12806] ? _raw_write_unlock+0x28/0x50 [ 433.061080][T12806] proc_create_reg+0x75/0x170 [ 433.061118][T12806] proc_create_data+0x86/0x110 [ 433.061150][T12806] ? __pfx_proc_create_data+0x10/0x10 [ 433.061184][T12806] ? cache_register_net+0x137/0x5e0 [ 433.061230][T12806] ? cache_register_net+0x137/0x5e0 [ 433.061284][T12806] cache_register_net+0x1e0/0x5e0 [ 433.061335][T12806] nfsd_export_init+0x16e/0x250 [ 433.061391][T12806] ? __pfx_nfsd_net_init+0x10/0x10 [ 433.061442][T12806] nfsd_net_init+0x33/0x3d0 [ 433.061511][T12806] ? __pfx_nfsd_net_init+0x10/0x10 [ 433.061559][T12806] ops_init+0x1e2/0x5f0 [ 433.061602][T12806] setup_net+0x118/0x3a0 [ 433.061643][T12806] ? __pfx_setup_net+0x10/0x10 [ 433.061681][T12806] ? lockdep_init_map_type+0x5c/0x250 [ 433.061724][T12806] ? mutex_init_lockep+0x110/0x150 [ 433.061772][T12806] copy_net_ns+0x46f/0x7c0 [ 433.061820][T12806] create_new_namespaces+0x3ea/0xac0 [ 433.061862][T12806] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 433.061898][T12806] ksys_unshare+0x473/0xad0 [ 433.061938][T12806] ? __pfx_ksys_unshare+0x10/0x10 [ 433.062000][T12806] __x64_sys_unshare+0x31/0x40 [ 433.062038][T12806] do_syscall_64+0x106/0xf80 [ 433.062075][T12806] ? clear_bhb_loop+0x40/0x90 [ 433.062111][T12806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.062143][T12806] RIP: 0033:0x7f6c5919c799 [ 433.062168][T12806] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 433.062200][T12806] RSP: 002b:00007f6c5a04b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 433.062229][T12806] RAX: ffffffffffffffda RBX: 00007f6c59416090 RCX: 00007f6c5919c799 [ 433.062250][T12806] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 433.062269][T12806] RBP: 00007f6c59232c99 R08: 0000000000000000 R09: 0000000000000000 [ 433.062287][T12806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 433.062305][T12806] R13: 00007f6c59416128 R14: 00007f6c59416090 R15: 00007ffc870c4198 [ 433.062345][T12806] [ 434.114091][T12824] FAULT_INJECTION: forcing a failure. [ 434.114091][T12824] name failslab, interval 1, probability 0, space 0, times 0 [ 434.210636][T12824] CPU: 0 UID: 0 PID: 12824 Comm: syz.3.1447 Tainted: G U syzkaller #0 PREEMPT(full) [ 434.210686][T12824] Tainted: [U]=USER [ 434.210698][T12824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 434.210718][T12824] Call Trace: [ 434.210728][T12824] [ 434.210741][T12824] dump_stack_lvl+0x100/0x190 [ 434.210797][T12824] should_fail_ex.cold+0x5/0xa [ 434.210835][T12824] should_failslab+0xc2/0x120 [ 434.210870][T12824] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 434.210929][T12824] ? __kernfs_new_node+0xd2/0x960 [ 434.210984][T12824] __kernfs_new_node+0xd2/0x960 [ 434.211036][T12824] ? __pfx___kernfs_new_node+0x10/0x10 [ 434.211094][T12824] ? find_held_lock+0x2b/0x80 [ 434.211123][T12824] ? kernfs_root+0xee/0x2a0 [ 434.211166][T12824] ? kernfs_root+0xee/0x2a0 [ 434.211219][T12824] kernfs_new_node+0x11b/0x1a0 [ 434.211278][T12824] __kernfs_create_file+0x53/0x350 [ 434.211318][T12824] sysfs_add_file_mode_ns+0x207/0x3c0 [ 434.211370][T12824] sysfs_merge_group+0x194/0x340 [ 434.211419][T12824] ? __pfx_sysfs_merge_group+0x10/0x10 [ 434.211471][T12824] ? __pfx_dev_add_physical_location+0x10/0x10 [ 434.211664][T12824] ? bus_to_subsys+0x114/0x150 [ 434.211745][T12824] dpm_sysfs_add+0x237/0x280 [ 434.211854][T12824] device_add+0x9ef/0x1950 [ 434.211887][T12824] ? __pfx_device_add+0x10/0x10 [ 434.211926][T12824] ? lockdep_init_map_type+0x5c/0x250 [ 434.211987][T12824] ? __init_waitqueue_head+0xca/0x150 [ 434.212049][T12824] netdev_register_kobject+0x1a9/0x3d0 [ 434.212155][T12824] register_netdevice+0x12e0/0x2210 [ 434.212229][T12824] ? idr_alloc+0xdd/0x130 [ 434.212331][T12824] ? __pfx_register_netdevice+0x10/0x10 [ 434.212374][T12824] ? net_generic+0xea/0x2a0 [ 434.212469][T12824] ppp_dev_configure+0x986/0xcb0 [ 434.212519][T12824] ppp_ioctl+0x985/0x2800 [ 434.212561][T12824] ? find_held_lock+0x2b/0x80 [ 434.212593][T12824] ? __pfx_ppp_ioctl+0x10/0x10 [ 434.212639][T12824] ? __fget_files+0x21f/0x3d0 [ 434.212676][T12824] ? __pfx_ppp_ioctl+0x10/0x10 [ 434.212717][T12824] __x64_sys_ioctl+0x18e/0x210 [ 434.212767][T12824] do_syscall_64+0x106/0xf80 [ 434.212807][T12824] ? clear_bhb_loop+0x40/0x90 [ 434.212849][T12824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.212882][T12824] RIP: 0033:0x7f6c5919c799 [ 434.212917][T12824] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 434.212950][T12824] RSP: 002b:00007f6c5a06c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 434.212983][T12824] RAX: ffffffffffffffda RBX: 00007f6c59415fa0 RCX: 00007f6c5919c799 [ 434.213004][T12824] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000008 [ 434.213023][T12824] RBP: 00007f6c59232c99 R08: 0000000000000000 R09: 0000000000000000 [ 434.213043][T12824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.213063][T12824] R13: 00007f6c59416038 R14: 00007f6c59415fa0 R15: 00007ffc870c4198 [ 434.213106][T12824] [ 434.801410][T12840] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1451'. [ 435.933001][T12850] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 436.019735][T12869] tc_dump_action: action bad kind [ 436.124736][T12854] FAULT_INJECTION: forcing a failure. [ 436.124736][T12854] name failslab, interval 1, probability 0, space 0, times 0 [ 436.241425][T12854] CPU: 0 UID: 0 PID: 12854 Comm: syz.0.1453 Tainted: G U syzkaller #0 PREEMPT(full) [ 436.241483][T12854] Tainted: [U]=USER [ 436.241493][T12854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 436.241509][T12854] Call Trace: [ 436.241519][T12854] [ 436.241529][T12854] dump_stack_lvl+0x100/0x190 [ 436.241580][T12854] should_fail_ex.cold+0x5/0xa [ 436.241632][T12854] should_failslab+0xc2/0x120 [ 436.241664][T12854] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 436.241714][T12854] ? cache_create_net+0x2b/0x1f0 [ 436.241756][T12854] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 436.241879][T12854] kmemdup_noprof+0x29/0x60 [ 436.241938][T12854] cache_create_net+0x2b/0x1f0 [ 436.241972][T12854] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 436.242006][T12854] gss_svc_init_net+0x69/0x640 [ 436.242067][T12854] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 436.242147][T12854] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 436.242181][T12854] ops_init+0x1e2/0x5f0 [ 436.242224][T12854] setup_net+0x118/0x3a0 [ 436.242263][T12854] ? __pfx_setup_net+0x10/0x10 [ 436.242296][T12854] ? lockdep_init_map_type+0x5c/0x250 [ 436.242337][T12854] ? mutex_init_lockep+0x110/0x150 [ 436.242391][T12854] copy_net_ns+0x46f/0x7c0 [ 436.242434][T12854] create_new_namespaces+0x3ea/0xac0 [ 436.242491][T12854] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 436.242528][T12854] ksys_unshare+0x473/0xad0 [ 436.242568][T12854] ? __pfx_ksys_unshare+0x10/0x10 [ 436.242622][T12854] __x64_sys_unshare+0x31/0x40 [ 436.242660][T12854] do_syscall_64+0x106/0xf80 [ 436.242696][T12854] ? clear_bhb_loop+0x40/0x90 [ 436.242735][T12854] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.242766][T12854] RIP: 0033:0x7fbb43f9c799 [ 436.242791][T12854] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 436.242821][T12854] RSP: 002b:00007fbb44e2f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 436.242851][T12854] RAX: ffffffffffffffda RBX: 00007fbb44216090 RCX: 00007fbb43f9c799 [ 436.242871][T12854] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 436.242903][T12854] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 436.242920][T12854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 436.242936][T12854] R13: 00007fbb44216128 R14: 00007fbb44216090 R15: 00007ffee24aada8 [ 436.242994][T12854] [ 437.150337][T12895] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1462'. [ 437.304922][T12898] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1460'. [ 437.856696][T12922] FAULT_INJECTION: forcing a failure. [ 437.856696][T12922] name failslab, interval 1, probability 0, space 0, times 0 [ 437.869668][T12922] CPU: 0 UID: 0 PID: 12922 Comm: syz.1.1468 Tainted: G U syzkaller #0 PREEMPT(full) [ 437.869707][T12922] Tainted: [U]=USER [ 437.869715][T12922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 437.869731][T12922] Call Trace: [ 437.869740][T12922] [ 437.869749][T12922] dump_stack_lvl+0x100/0x190 [ 437.869793][T12922] should_fail_ex.cold+0x5/0xa [ 437.869824][T12922] should_failslab+0xc2/0x120 [ 437.869851][T12922] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 437.869894][T12922] ? cache_create_net+0x2b/0x1f0 [ 437.869931][T12922] kmemdup_noprof+0x29/0x60 [ 437.869971][T12922] cache_create_net+0x2b/0x1f0 [ 437.870004][T12922] gss_svc_init_net+0x11f/0x640 [ 437.870031][T12922] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 437.870069][T12922] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 437.870118][T12922] ops_init+0x1e2/0x5f0 [ 437.870156][T12922] setup_net+0x118/0x3a0 [ 437.870190][T12922] ? __pfx_setup_net+0x10/0x10 [ 437.870223][T12922] ? lockdep_init_map_type+0x5c/0x250 [ 437.870258][T12922] ? mutex_init_lockep+0x110/0x150 [ 437.870298][T12922] copy_net_ns+0x46f/0x7c0 [ 437.870337][T12922] create_new_namespaces+0x3ea/0xac0 [ 437.870371][T12922] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 437.870405][T12922] ksys_unshare+0x473/0xad0 [ 437.870445][T12922] ? __pfx_ksys_unshare+0x10/0x10 [ 437.870497][T12922] __x64_sys_unshare+0x31/0x40 [ 437.870531][T12922] do_syscall_64+0x106/0xf80 [ 437.870570][T12922] ? clear_bhb_loop+0x40/0x90 [ 437.870604][T12922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.870631][T12922] RIP: 0033:0x7f004299c799 [ 437.870652][T12922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 437.870677][T12922] RSP: 002b:00007f0040bd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 437.870702][T12922] RAX: ffffffffffffffda RBX: 00007f0042c16090 RCX: 00007f004299c799 [ 437.870720][T12922] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 437.870735][T12922] RBP: 00007f0042a32c99 R08: 0000000000000000 R09: 0000000000000000 [ 437.870751][T12922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 437.870767][T12922] R13: 00007f0042c16128 R14: 00007f0042c16090 R15: 00007ffc4372cee8 [ 437.870800][T12922] [ 438.490950][T12937] netlink: 20 bytes leftover after parsing attributes in process `'. [ 440.083796][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.090162][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.525439][T12987] sg_write: process 1644 (syz.3.1482) changed security contexts after opening file descriptor, this is not allowed. [ 440.596130][T12977] NFSD: Failed to start, no listeners configured. [ 440.647524][T12996] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1480'. [ 441.044523][T12973] FAULT_INJECTION: forcing a failure. [ 441.044523][T12973] name failslab, interval 1, probability 0, space 0, times 0 [ 441.073551][T12973] CPU: 0 UID: 0 PID: 12973 Comm: syz.0.1478 Tainted: G U syzkaller #0 PREEMPT(full) [ 441.073592][T12973] Tainted: [U]=USER [ 441.073601][T12973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 441.073618][T12973] Call Trace: [ 441.073626][T12973] [ 441.073636][T12973] dump_stack_lvl+0x100/0x190 [ 441.073685][T12973] should_fail_ex.cold+0x5/0xa [ 441.073718][T12973] should_failslab+0xc2/0x120 [ 441.073747][T12973] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 441.073789][T12973] ? __kernfs_new_node+0xd2/0x960 [ 441.073835][T12973] __kernfs_new_node+0xd2/0x960 [ 441.073874][T12973] ? kernfs_add_one+0x214/0x850 [ 441.073918][T12973] ? __pfx___kernfs_new_node+0x10/0x10 [ 441.073965][T12973] ? find_held_lock+0x2b/0x80 [ 441.073991][T12973] ? kernfs_root+0xee/0x2a0 [ 441.074027][T12973] ? kernfs_root+0xee/0x2a0 [ 441.074073][T12973] kernfs_new_node+0x11b/0x1a0 [ 441.074121][T12973] kernfs_create_link+0xcc/0x240 [ 441.074156][T12973] sysfs_do_create_link_sd+0x90/0x140 [ 441.074197][T12973] sysfs_create_link+0x61/0xc0 [ 441.074235][T12973] device_add+0x553/0x1950 [ 441.074270][T12973] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 441.074317][T12973] ? __pfx_device_add+0x10/0x10 [ 441.074343][T12973] ? lockdep_init_map_type+0x5c/0x250 [ 441.074381][T12973] ? __init_waitqueue_head+0xca/0x150 [ 441.074431][T12973] netdev_register_kobject+0x1a9/0x3d0 [ 441.074474][T12973] register_netdevice+0x12e0/0x2210 [ 441.074565][T12973] ? __pfx_register_netdevice+0x10/0x10 [ 441.074612][T12973] ? net_generic+0xea/0x2a0 [ 441.074747][T12973] register_netdev+0x34/0x50 [ 441.074781][T12973] vti6_init_net+0x2c7/0x440 [ 441.074816][T12973] ? __pfx_vti6_init_net+0x10/0x10 [ 441.074850][T12973] ops_init+0x1e2/0x5f0 [ 441.074884][T12973] setup_net+0x118/0x3a0 [ 441.074915][T12973] ? __pfx_setup_net+0x10/0x10 [ 441.074946][T12973] ? lockdep_init_map_type+0x5c/0x250 [ 441.074979][T12973] ? mutex_init_lockep+0x110/0x150 [ 441.075018][T12973] copy_net_ns+0x46f/0x7c0 [ 441.075053][T12973] create_new_namespaces+0x3ea/0xac0 [ 441.075085][T12973] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 441.075113][T12973] ksys_unshare+0x473/0xad0 [ 441.075144][T12973] ? __pfx_ksys_unshare+0x10/0x10 [ 441.075185][T12973] __x64_sys_unshare+0x31/0x40 [ 441.075213][T12973] do_syscall_64+0x106/0xf80 [ 441.075242][T12973] ? clear_bhb_loop+0x40/0x90 [ 441.075279][T12973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.075304][T12973] RIP: 0033:0x7fbb43f9c799 [ 441.075323][T12973] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 441.075347][T12973] RSP: 002b:00007fbb44e50028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 441.075370][T12973] RAX: ffffffffffffffda RBX: 00007fbb44215fa0 RCX: 00007fbb43f9c799 [ 441.075387][T12973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 441.075401][T12973] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 441.075416][T12973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.075430][T12973] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 441.075462][T12973] [ 441.594420][T13010] FAULT_INJECTION: forcing a failure. [ 441.594420][T13010] name fail_futex, interval 1, probability 0, space 0, times 0 [ 441.607407][T13010] CPU: 0 UID: 0 PID: 13010 Comm: syz.1.1484 Tainted: G U syzkaller #0 PREEMPT(full) [ 441.607456][T13010] Tainted: [U]=USER [ 441.607463][T13010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 441.607476][T13010] Call Trace: [ 441.607484][T13010] [ 441.607493][T13010] dump_stack_lvl+0x100/0x190 [ 441.607532][T13010] should_fail_ex.cold+0x5/0xa [ 441.607560][T13010] get_futex_key+0x1d2/0x1620 [ 441.607592][T13010] ? __pfx_get_futex_key+0x10/0x10 [ 441.607622][T13010] ? update_se+0x94/0x760 [ 441.607656][T13010] futex_wait_setup+0x83/0x510 [ 441.607699][T13010] __futex_wait+0x19f/0x300 [ 441.607743][T13010] ? __pfx___futex_wait+0x10/0x10 [ 441.607778][T13010] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 441.607805][T13010] ? lockdep_hardirqs_on+0x78/0x100 [ 441.607836][T13010] ? __pfx_futex_wake_mark+0x10/0x10 [ 441.607876][T13010] ? find_held_lock+0x2b/0x80 [ 441.607896][T13010] ? futex_wake+0x456/0x530 [ 441.607937][T13010] futex_wait+0xed/0x380 [ 441.607972][T13010] ? __pfx_futex_wait+0x10/0x10 [ 441.608025][T13010] ? errseq_sample+0x51/0x70 [ 441.608045][T13010] ? file_init_path+0x48e/0x670 [ 441.608075][T13010] do_futex+0x1ef/0x350 [ 441.608103][T13010] ? __pfx_do_futex+0x10/0x10 [ 441.608132][T13010] ? fd_install+0x223/0x580 [ 441.608156][T13010] __x64_sys_futex+0x34f/0x4d0 [ 441.608186][T13010] ? __sys_socket+0xac/0x260 [ 441.608207][T13010] ? __pfx___x64_sys_futex+0x10/0x10 [ 441.608245][T13010] do_syscall_64+0x106/0xf80 [ 441.608271][T13010] ? clear_bhb_loop+0x40/0x90 [ 441.608297][T13010] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.608320][T13010] RIP: 0033:0x7f004299c799 [ 441.608337][T13010] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 441.608358][T13010] RSP: 002b:00007f0040bd50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 441.608379][T13010] RAX: ffffffffffffffda RBX: 00007f0042c16098 RCX: 00007f004299c799 [ 441.608394][T13010] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0042c16098 [ 441.608407][T13010] RBP: 00007f0042c16090 R08: 0000000000000000 R09: 0000000000000000 [ 441.608421][T13010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.608434][T13010] R13: 00007f0042c16128 R14: 00007ffc4372ce00 R15: 00007ffc4372cee8 [ 441.608472][T13010] [ 442.651258][T13025] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub [ 444.214461][T13067] FAULT_INJECTION: forcing a failure. [ 444.214461][T13067] name failslab, interval 1, probability 0, space 0, times 0 [ 444.246256][T13067] CPU: 1 UID: 0 PID: 13067 Comm: syz.2.1495 Tainted: G U syzkaller #0 PREEMPT(full) [ 444.246311][T13067] Tainted: [U]=USER [ 444.246323][T13067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 444.246344][T13067] Call Trace: [ 444.246356][T13067] [ 444.246368][T13067] dump_stack_lvl+0x100/0x190 [ 444.246427][T13067] should_fail_ex.cold+0x5/0xa [ 444.246497][T13067] should_failslab+0xc2/0x120 [ 444.246530][T13067] __kmalloc_cache_noprof+0x7a/0x6f0 [ 444.246583][T13067] ? can_pernet_init+0x11c/0x370 [ 444.246622][T13067] ? __pfx_can_pernet_init+0x10/0x10 [ 444.246664][T13067] can_pernet_init+0x11c/0x370 [ 444.246698][T13067] ? __pfx_can_pernet_init+0x10/0x10 [ 444.246729][T13067] ops_init+0x1e2/0x5f0 [ 444.246771][T13067] setup_net+0x118/0x3a0 [ 444.246810][T13067] ? __pfx_setup_net+0x10/0x10 [ 444.246846][T13067] ? lockdep_init_map_type+0x5c/0x250 [ 444.246904][T13067] ? mutex_init_lockep+0x110/0x150 [ 444.246953][T13067] copy_net_ns+0x46f/0x7c0 [ 444.247012][T13067] create_new_namespaces+0x3ea/0xac0 [ 444.247052][T13067] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 444.247087][T13067] ksys_unshare+0x473/0xad0 [ 444.247129][T13067] ? __pfx_ksys_unshare+0x10/0x10 [ 444.247198][T13067] __x64_sys_unshare+0x31/0x40 [ 444.247237][T13067] do_syscall_64+0x106/0xf80 [ 444.247275][T13067] ? clear_bhb_loop+0x40/0x90 [ 444.247313][T13067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.247346][T13067] RIP: 0033:0x7ff459d9c799 [ 444.247371][T13067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 444.247403][T13067] RSP: 002b:00007ff457ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 444.247433][T13067] RAX: ffffffffffffffda RBX: 00007ff45a016090 RCX: 00007ff459d9c799 [ 444.247453][T13067] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 444.247473][T13067] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 444.247491][T13067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.247510][T13067] R13: 00007ff45a016128 R14: 00007ff45a016090 R15: 00007ffdcdde5488 [ 444.247550][T13067] [ 445.624373][T13069] Process accounting paused [ 447.038937][T13123] ACPI: Enabling force_remove is not supported anymore. Please report to linux-acpi@vger.kernel.org if you depend on this functionality [ 447.790025][ T29] audit: type=1800 audit(1773283799.601:13): pid=13139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1507" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 447.938528][T10464] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 450.207471][T13176] Process accounting paused [ 450.294322][T13198] vivid-007: ================= START STATUS ================= [ 450.312089][T13198] vivid-007: Generate PTS: true [ 450.320573][T13198] vivid-007: Generate SCR: true [ 450.325562][T13198] tpg source WxH: 320x240 (Y'CbCr) [ 450.385050][T13198] tpg field: 1 [ 450.388514][T13198] tpg crop: (0,0)/320x240 [ 450.400681][T13198] tpg compose: (0,0)/320x240 [ 450.405470][T13198] tpg colorspace: 8 [ 450.409330][T13198] tpg transfer function: 0/0 [ 450.422054][T13198] tpg Y'CbCr encoding: 0/0 [ 450.426774][T13198] tpg quantization: 0/0 [ 450.431139][T13198] tpg RGB range: 0/2 [ 450.435186][T13198] vivid-007: ================== END STATUS ================== [ 450.901578][T13208] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1520'. [ 451.605809][T13217] FAULT_INJECTION: forcing a failure. [ 451.605809][T13217] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 451.690574][T13217] CPU: 0 UID: 0 PID: 13217 Comm: syz.0.1522 Tainted: G U syzkaller #0 PREEMPT(full) [ 451.690614][T13217] Tainted: [U]=USER [ 451.690623][T13217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 451.690638][T13217] Call Trace: [ 451.690647][T13217] [ 451.690656][T13217] dump_stack_lvl+0x100/0x190 [ 451.690722][T13217] should_fail_ex.cold+0x5/0xa [ 451.690750][T13217] ? prepare_alloc_pages+0x16d/0x5f0 [ 451.690786][T13217] should_fail_alloc_page+0xeb/0x140 [ 451.690819][T13217] prepare_alloc_pages+0x1f0/0x5f0 [ 451.690851][T13217] ? kasan_save_track+0x14/0x30 [ 451.690895][T13217] ? kasan_save_free_info+0x3b/0x70 [ 451.690934][T13217] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 451.690982][T13217] ? __handle_mm_fault+0x18c1/0x2b60 [ 451.691019][T13217] ? do_user_addr_fault+0x5a3/0x12f0 [ 451.691065][T13217] ? exc_page_fault+0x6f/0xd0 [ 451.691095][T13217] ? asm_exc_page_fault+0x26/0x30 [ 451.691158][T13217] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 451.691212][T13217] ? __lock_acquire+0x4a5/0x2630 [ 451.691254][T13217] ? __lock_acquire+0x4a5/0x2630 [ 451.691307][T13217] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 451.691371][T13217] ? policy_nodemask+0xed/0x4f0 [ 451.691405][T13217] alloc_pages_mpol+0x1fb/0x550 [ 451.691452][T13217] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 451.691483][T13217] ? swap_entry_swapped+0x1ff/0x2b0 [ 451.691512][T13217] ? __pfx_swap_entry_swapped+0x10/0x10 [ 451.691547][T13217] folio_alloc_mpol_noprof+0x36/0x340 [ 451.691585][T13217] swap_cache_alloc_folio+0x1a8/0x300 [ 451.691631][T13217] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 451.691686][T13217] swap_cluster_readahead+0x411/0x770 [ 451.691739][T13217] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 451.691801][T13217] ? get_vma_policy+0x23f/0x3b0 [ 451.691838][T13217] swapin_readahead+0x160/0x12c0 [ 451.691893][T13217] ? __pfx_swapin_readahead+0x10/0x10 [ 451.691932][T13217] ? find_held_lock+0x2b/0x80 [ 451.691959][T13217] ? swap_table_get+0x103/0x2c0 [ 451.691995][T13217] ? swap_table_get+0x103/0x2c0 [ 451.692039][T13217] ? swap_table_get+0x10d/0x2c0 [ 451.692079][T13217] ? swap_cache_get_folio+0x1ae/0x600 [ 451.692121][T13217] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 451.692159][T13217] ? __pfx_get_swap_device+0x10/0x10 [ 451.692195][T13217] ? do_swap_page+0xb2e/0x6900 [ 451.692232][T13217] do_swap_page+0xb2e/0x6900 [ 451.692289][T13217] ? __pfx_do_swap_page+0x10/0x10 [ 451.692328][T13217] ? __pfx_process_timeout+0x10/0x10 [ 451.692397][T13217] ? rcu_is_watching+0x12/0xc0 [ 451.692441][T13217] ? __pte_offset_map+0x179/0x310 [ 451.692476][T13217] __handle_mm_fault+0x18c1/0x2b60 [ 451.692531][T13217] ? reacquire_held_locks+0xce/0x1e0 [ 451.692587][T13217] ? __pfx___handle_mm_fault+0x10/0x10 [ 451.692634][T13217] ? lock_vma_under_rcu+0x17c/0x590 [ 451.692694][T13217] handle_mm_fault+0x36d/0xa20 [ 451.692760][T13217] do_user_addr_fault+0x5a3/0x12f0 [ 451.692823][T13217] exc_page_fault+0x6f/0xd0 [ 451.692861][T13217] asm_exc_page_fault+0x26/0x30 [ 451.692892][T13217] RIP: 0033:0x7fbb43f578d4 [ 451.692917][T13217] Code: 00 00 00 00 66 90 53 49 89 ca 64 48 8b 1c 25 10 00 00 00 8b 83 08 03 00 00 80 3d ee 5d 29 00 00 75 44 a8 01 75 40 a8 10 75 3c <41> 51 4c 8d 9b 08 03 00 00 49 89 c9 48 89 f1 41 50 48 8b 74 24 20 [ 451.692947][T13217] RSP: 002b:00007fbb44e50000 EFLAGS: 00010246 [ 451.692972][T13217] RAX: 0000000000000000 RBX: 00007fbb44e506c0 RCX: 0000000000000000 [ 451.692991][T13217] RDX: 000000000000000f RSI: 00007fbb44e500a0 RDI: 0000000000000007 [ 451.693009][T13217] RBP: 00007fbb44e50090 R08: 0000000000000000 R09: 0000000000000000 [ 451.693027][T13217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 451.693044][T13217] R13: 00007fbb44216038 R14: 00007fbb44215fa0 R15: 00007ffee24aada8 [ 451.693085][T13217] [ 452.516628][T13232] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 452.767077][T13238] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1527'. [ 454.604434][T13273] FAULT_INJECTION: forcing a failure. [ 454.604434][T13273] name failslab, interval 1, probability 0, space 0, times 0 [ 454.745312][T13273] CPU: 0 UID: 0 PID: 13273 Comm: syz.0.1533 Tainted: G U syzkaller #0 PREEMPT(full) [ 454.745369][T13273] Tainted: [U]=USER [ 454.745381][T13273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 454.745401][T13273] Call Trace: [ 454.745412][T13273] [ 454.745426][T13273] dump_stack_lvl+0x100/0x190 [ 454.745487][T13273] should_fail_ex.cold+0x5/0xa [ 454.745528][T13273] should_failslab+0xc2/0x120 [ 454.745566][T13273] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 454.745623][T13273] ? cache_create_net+0x2b/0x1f0 [ 454.745671][T13273] kmemdup_noprof+0x29/0x60 [ 454.745726][T13273] cache_create_net+0x2b/0x1f0 [ 454.745771][T13273] gss_svc_init_net+0x11f/0x640 [ 454.745808][T13273] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 454.745853][T13273] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 454.745893][T13273] ops_init+0x1e2/0x5f0 [ 454.745943][T13273] setup_net+0x118/0x3a0 [ 454.745987][T13273] ? __pfx_setup_net+0x10/0x10 [ 454.746042][T13273] ? lockdep_init_map_type+0x5c/0x250 [ 454.746089][T13273] ? mutex_init_lockep+0x110/0x150 [ 454.746143][T13273] copy_net_ns+0x46f/0x7c0 [ 454.746195][T13273] create_new_namespaces+0x3ea/0xac0 [ 454.746240][T13273] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 454.746282][T13273] ksys_unshare+0x473/0xad0 [ 454.746328][T13273] ? __pfx_ksys_unshare+0x10/0x10 [ 454.746387][T13273] __x64_sys_unshare+0x31/0x40 [ 454.746440][T13273] do_syscall_64+0x106/0xf80 [ 454.746475][T13273] ? clear_bhb_loop+0x40/0x90 [ 454.746511][T13273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 454.746543][T13273] RIP: 0033:0x7fbb43f9c799 [ 454.746567][T13273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 454.746597][T13273] RSP: 002b:00007fbb44e0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 454.746627][T13273] RAX: ffffffffffffffda RBX: 00007fbb44216180 RCX: 00007fbb43f9c799 [ 454.746646][T13273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 454.746663][T13273] RBP: 00007fbb44032c99 R08: 0000000000000000 R09: 0000000000000000 [ 454.746680][T13273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 454.746696][T13273] R13: 00007fbb44216218 R14: 00007fbb44216180 R15: 00007ffee24aada8 [ 454.746732][T13273] [ 455.603266][T13286] openvswitch: HfR: Dropping previously announced user features [ 455.624136][T13286] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1538'. [ 455.633470][T13286] HfR: left promiscuous mode [ 455.841532][T13279] FAULT_INJECTION: forcing a failure. [ 455.841532][T13279] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 455.890787][T13279] CPU: 0 UID: 0 PID: 13279 Comm: syz.3.1536 Tainted: G U syzkaller #0 PREEMPT(full) [ 455.890832][T13279] Tainted: [U]=USER [ 455.890842][T13279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 455.890859][T13279] Call Trace: [ 455.890868][T13279] [ 455.890879][T13279] dump_stack_lvl+0x100/0x190 [ 455.890938][T13279] should_fail_ex.cold+0x5/0xa [ 455.890967][T13279] ? prepare_alloc_pages+0x16d/0x5f0 [ 455.891005][T13279] should_fail_alloc_page+0xeb/0x140 [ 455.891038][T13279] prepare_alloc_pages+0x1f0/0x5f0 [ 455.891071][T13279] ? kasan_save_track+0x14/0x30 [ 455.891115][T13279] ? kasan_save_free_info+0x3b/0x70 [ 455.891156][T13279] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 455.891201][T13279] ? __handle_mm_fault+0x18c1/0x2b60 [ 455.891239][T13279] ? do_user_addr_fault+0x5a3/0x12f0 [ 455.891285][T13279] ? exc_page_fault+0x6f/0xd0 [ 455.891317][T13279] ? asm_exc_page_fault+0x26/0x30 [ 455.891365][T13279] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 455.891414][T13279] ? __lock_acquire+0x4a5/0x2630 [ 455.891465][T13279] ? __lock_acquire+0x4a5/0x2630 [ 455.891511][T13279] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 455.891559][T13279] ? policy_nodemask+0xed/0x4f0 [ 455.891591][T13279] alloc_pages_mpol+0x1fb/0x550 [ 455.891621][T13279] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 455.891651][T13279] ? swap_entry_swapped+0x1ff/0x2b0 [ 455.891678][T13279] ? __pfx_swap_entry_swapped+0x10/0x10 [ 455.891712][T13279] folio_alloc_mpol_noprof+0x36/0x340 [ 455.891747][T13279] swap_cache_alloc_folio+0x1a8/0x300 [ 455.891790][T13279] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 455.891841][T13279] swap_cluster_readahead+0x411/0x770 [ 455.891890][T13279] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 455.891959][T13279] ? get_vma_policy+0x23f/0x3b0 [ 455.891992][T13279] swapin_readahead+0x160/0x12c0 [ 455.892062][T13279] ? __pfx_swapin_readahead+0x10/0x10 [ 455.892100][T13279] ? find_held_lock+0x2b/0x80 [ 455.892126][T13279] ? swap_table_get+0x103/0x2c0 [ 455.892162][T13279] ? swap_table_get+0x103/0x2c0 [ 455.892207][T13279] ? swap_table_get+0x10d/0x2c0 [ 455.892246][T13279] ? swap_cache_get_folio+0x1ae/0x600 [ 455.892288][T13279] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 455.892325][T13279] ? __pfx_get_swap_device+0x10/0x10 [ 455.892362][T13279] ? do_swap_page+0xb2e/0x6900 [ 455.892398][T13279] do_swap_page+0xb2e/0x6900 [ 455.892455][T13279] ? __pfx_do_swap_page+0x10/0x10 [ 455.892497][T13279] ? __pfx_process_timeout+0x10/0x10 [ 455.892556][T13279] ? rcu_is_watching+0x12/0xc0 [ 455.892611][T13279] ? __pte_offset_map+0x179/0x310 [ 455.892643][T13279] __handle_mm_fault+0x18c1/0x2b60 [ 455.892687][T13279] ? reacquire_held_locks+0xce/0x1e0 [ 455.892724][T13279] ? __pfx___handle_mm_fault+0x10/0x10 [ 455.892768][T13279] ? lock_vma_under_rcu+0x17c/0x590 [ 455.892843][T13279] handle_mm_fault+0x36d/0xa20 [ 455.892889][T13279] do_user_addr_fault+0x5a3/0x12f0 [ 455.892965][T13279] exc_page_fault+0x6f/0xd0 [ 455.893000][T13279] asm_exc_page_fault+0x26/0x30 [ 455.893028][T13279] RIP: 0033:0x7f6c591578d4 [ 455.893051][T13279] Code: 00 00 00 00 66 90 53 49 89 ca 64 48 8b 1c 25 10 00 00 00 8b 83 08 03 00 00 80 3d ee 5d 29 00 00 75 44 a8 01 75 40 a8 10 75 3c <41> 51 4c 8d 9b 08 03 00 00 49 89 c9 48 89 f1 41 50 48 8b 74 24 20 [ 455.893080][T13279] RSP: 002b:00007f6c5a06c000 EFLAGS: 00010246 [ 455.893103][T13279] RAX: 0000000000000000 RBX: 00007f6c5a06c6c0 RCX: 0000000000000000 [ 455.893121][T13279] RDX: 000000000000000f RSI: 00007f6c5a06c0a0 RDI: 0000000000000007 [ 455.893139][T13279] RBP: 00007f6c5a06c090 R08: 0000000000000000 R09: 0000000000000000 [ 455.893169][T13279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 455.893186][T13279] R13: 00007f6c59416038 R14: 00007f6c59415fa0 R15: 00007ffc870c4198 [ 455.893246][T13279] [ 457.616743][T13308] FAULT_INJECTION: forcing a failure. [ 457.616743][T13308] name failslab, interval 1, probability 0, space 0, times 0 [ 457.647032][T13308] CPU: 1 UID: 0 PID: 13308 Comm: syz.2.1540 Tainted: G U syzkaller #0 PREEMPT(full) [ 457.647089][T13308] Tainted: [U]=USER [ 457.647102][T13308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 457.647123][T13308] Call Trace: [ 457.647134][T13308] [ 457.647147][T13308] dump_stack_lvl+0x100/0x190 [ 457.647205][T13308] should_fail_ex.cold+0x5/0xa [ 457.647245][T13308] ? snd_midi_event_new+0xa1/0x210 [ 457.647430][T13308] should_failslab+0xc2/0x120 [ 457.647468][T13308] __kmalloc_noprof+0xe0/0x850 [ 457.647530][T13308] snd_midi_event_new+0xa1/0x210 [ 457.647581][T13308] snd_virmidi_output_open+0x106/0x670 [ 457.647652][T13308] open_substream+0x480/0x9e0 [ 457.647727][T13308] rawmidi_open_priv+0x595/0x6f0 [ 457.647773][T13308] snd_rawmidi_open+0x4c9/0xba0 [ 457.647820][T13308] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 457.647861][T13308] ? __pfx_default_wake_function+0x10/0x10 [ 457.647899][T13308] ? kobject_get_unless_zero+0x156/0x200 [ 457.647960][T13308] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 457.647999][T13308] snd_open+0x22d/0x4c0 [ 457.648079][T13308] ? __pfx_snd_open+0x10/0x10 [ 457.648148][T13308] chrdev_open+0x234/0x6a0 [ 457.648183][T13308] ? __pfx_apparmor_file_open+0x10/0x10 [ 457.648235][T13308] ? __pfx_chrdev_open+0x10/0x10 [ 457.648273][T13308] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 457.648319][T13308] do_dentry_open+0x6d8/0x1660 [ 457.648352][T13308] ? __pfx_chrdev_open+0x10/0x10 [ 457.648398][T13308] vfs_open+0x82/0x3f0 [ 457.648446][T13308] path_openat+0x208c/0x31a0 [ 457.648496][T13308] ? __pfx_path_openat+0x10/0x10 [ 457.648548][T13308] do_file_open+0x20e/0x430 [ 457.648588][T13308] ? __pfx_do_file_open+0x10/0x10 [ 457.648654][T13308] ? alloc_fd+0x476/0x790 [ 457.648693][T13308] ? do_getname+0x191/0x390 [ 457.648741][T13308] do_sys_openat2+0x10d/0x1e0 [ 457.648785][T13308] ? __pfx_do_sys_openat2+0x10/0x10 [ 457.648835][T13308] ? __fget_files+0x21f/0x3d0 [ 457.648877][T13308] __x64_sys_openat+0x12d/0x210 [ 457.648930][T13308] ? __pfx___x64_sys_openat+0x10/0x10 [ 457.648994][T13308] do_syscall_64+0x106/0xf80 [ 457.649036][T13308] ? clear_bhb_loop+0x40/0x90 [ 457.649079][T13308] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.649115][T13308] RIP: 0033:0x7ff459d9c799 [ 457.649144][T13308] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 457.649178][T13308] RSP: 002b:00007ff457ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 457.649213][T13308] RAX: ffffffffffffffda RBX: 00007ff45a016090 RCX: 00007ff459d9c799 [ 457.649236][T13308] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 457.649257][T13308] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 457.649277][T13308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 457.649298][T13308] R13: 00007ff45a016128 R14: 00007ff45a016090 R15: 00007ffdcdde5488 [ 457.649343][T13308] [ 458.640911][T10091] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 459.737358][T13333] kAFS: unparsable volume name [ 460.005360][T13346] binder: 13345:13346 ioctl 400c620e 2000000000c0 returned -22 [ 460.020035][T13346] binder: 13345:13346 unknown command 0 [ 460.026441][T13346] binder: 13345:13346 ioctl c0306201 200000000000 returned -22 [ 460.941545][T13372] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1558'. [ 461.115786][T13370] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1557'. [ 461.150144][T13382] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1559'. [ 462.438696][T13416] random: crng reseeded on system resumption [ 466.462723][T13492] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1583'. [ 466.471935][T13492] IPv6: Can't replace route, no match found [ 467.132036][T13508] ================================================================== [ 467.132070][T13508] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x174a/0x1910 [ 467.132185][T13508] Write of size 8 at addr ffffc900042d9000 by task syz.2.1589/13508 [ 467.132205][T13508] [ 467.132219][T13508] CPU: 0 UID: 0 PID: 13508 Comm: syz.2.1589 Tainted: G U syzkaller #0 PREEMPT(full) [ 467.132252][T13508] Tainted: [U]=USER [ 467.132260][T13508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 467.132274][T13508] Call Trace: [ 467.132282][T13508] [ 467.132291][T13508] dump_stack_lvl+0x100/0x190 [ 467.132327][T13508] print_report+0x156/0x4c9 [ 467.132362][T13508] ? _raw_spin_lock_irqsave+0x52/0x60 [ 467.132388][T13508] ? __virt_addr_valid+0x81/0x620 [ 467.132430][T13508] ? sys_fillrect+0x174a/0x1910 [ 467.132457][T13508] kasan_report+0xdf/0x1e0 [ 467.132483][T13508] ? sys_fillrect+0x174a/0x1910 [ 467.132515][T13508] sys_fillrect+0x174a/0x1910 [ 467.132556][T13508] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 467.132653][T13508] bit_clear+0x17d/0x220 [ 467.132676][T13508] ? __pfx_bit_clear+0x10/0x10 [ 467.132698][T13508] ? fb_get_color_depth+0x120/0x250 [ 467.132769][T13508] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 467.132813][T13508] __fbcon_clear+0x633/0x760 [ 467.132850][T13508] ? __pfx_bit_clear+0x10/0x10 [ 467.132875][T13508] fbcon_scroll+0x48b/0x650 [ 467.132916][T13508] con_scroll+0x464/0x690 [ 467.132975][T13508] do_con_write+0x6883/0x8540 [ 467.133015][T13508] ? __pfx_do_con_write+0x10/0x10 [ 467.133052][T13508] con_write+0x23/0xb0 [ 467.133082][T13508] n_tty_write+0x44f/0x12d0 [ 467.133161][T13508] ? __pfx_n_tty_write+0x10/0x10 [ 467.133197][T13508] ? trace_kmalloc+0x101/0x130 [ 467.133223][T13508] ? __pfx_woken_wake_function+0x10/0x10 [ 467.133259][T13508] ? rcu_is_watching+0x12/0xc0 [ 467.133295][T13508] ? file_tty_write.isra.0+0x694/0x890 [ 467.133325][T13508] ? kfree+0x2ec/0x6b0 [ 467.133354][T13508] ? __pfx_n_tty_write+0x10/0x10 [ 467.133392][T13508] file_tty_write.isra.0+0x4d2/0x890 [ 467.133432][T13508] redirected_tty_write+0xd4/0x120 [ 467.133463][T13508] vfs_write+0x6ac/0x1070 [ 467.133502][T13508] ? __pfx_redirected_tty_write+0x10/0x10 [ 467.133535][T13508] ? __pfx_vfs_write+0x10/0x10 [ 467.133571][T13508] ? find_held_lock+0x2b/0x80 [ 467.133602][T13508] ksys_write+0x12a/0x250 [ 467.133622][T13508] ? __pfx_ksys_write+0x10/0x10 [ 467.133647][T13508] do_syscall_64+0x106/0xf80 [ 467.133676][T13508] ? clear_bhb_loop+0x40/0x90 [ 467.133704][T13508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.133729][T13508] RIP: 0033:0x7ff459d9c799 [ 467.133748][T13508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 467.133772][T13508] RSP: 002b:00007ff45ab8a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 467.133796][T13508] RAX: ffffffffffffffda RBX: 00007ff45a015fa0 RCX: 00007ff459d9c799 [ 467.133813][T13508] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000006 [ 467.133829][T13508] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 467.133843][T13508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 467.133858][T13508] R13: 00007ff45a016038 R14: 00007ff45a015fa0 R15: 00007ffdcdde5488 [ 467.133883][T13508] [ 467.133891][T13508] [ 467.133898][T13508] The buggy address belongs to a vmalloc virtual mapping [ 467.133918][T13508] Memory state around the buggy address: [ 467.133930][T13508] ffffc900042d8f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 467.133955][T13508] ffffc900042d8f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 467.133972][T13508] >ffffc900042d9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 467.133991][T13508] ^ [ 467.134003][T13508] ffffc900042d9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 467.134020][T13508] ffffc900042d9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 467.134034][T13508] ================================================================== [ 467.134056][T13508] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 467.134074][T13508] CPU: 0 UID: 0 PID: 13508 Comm: syz.2.1589 Tainted: G U syzkaller #0 PREEMPT(full) [ 467.134108][T13508] Tainted: [U]=USER [ 467.134116][T13508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026 [ 467.134130][T13508] Call Trace: [ 467.134138][T13508] [ 467.134146][T13508] dump_stack_lvl+0x100/0x190 [ 467.134181][T13508] vpanic+0x552/0x970 [ 467.134204][T13508] ? __pfx_vpanic+0x10/0x10 [ 467.134227][T13508] ? __pfx_vprintk_emit+0x10/0x10 [ 467.134251][T13508] ? sys_fillrect+0x174a/0x1910 [ 467.134280][T13508] panic+0xd1/0xe0 [ 467.134302][T13508] ? __pfx_panic+0x10/0x10 [ 467.134328][T13508] ? sys_fillrect+0x174a/0x1910 [ 467.134359][T13508] check_panic_on_warn.cold+0x19/0x34 [ 467.134385][T13508] end_report.part.0+0x3a/0x90 [ 467.134426][T13508] kasan_report.cold+0xe/0x18 [ 467.134461][T13508] ? sys_fillrect+0x174a/0x1910 [ 467.134494][T13508] sys_fillrect+0x174a/0x1910 [ 467.134530][T13508] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 467.134568][T13508] bit_clear+0x17d/0x220 [ 467.134590][T13508] ? __pfx_bit_clear+0x10/0x10 [ 467.134613][T13508] ? fb_get_color_depth+0x120/0x250 [ 467.134650][T13508] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 467.134693][T13508] __fbcon_clear+0x633/0x760 [ 467.134730][T13508] ? __pfx_bit_clear+0x10/0x10 [ 467.134755][T13508] fbcon_scroll+0x48b/0x650 [ 467.134794][T13508] con_scroll+0x464/0x690 [ 467.134836][T13508] do_con_write+0x6883/0x8540 [ 467.134895][T13508] ? __pfx_do_con_write+0x10/0x10 [ 467.134936][T13508] con_write+0x23/0xb0 [ 467.134965][T13508] n_tty_write+0x44f/0x12d0 [ 467.135009][T13508] ? __pfx_n_tty_write+0x10/0x10 [ 467.135045][T13508] ? trace_kmalloc+0x101/0x130 [ 467.135070][T13508] ? __pfx_woken_wake_function+0x10/0x10 [ 467.135106][T13508] ? rcu_is_watching+0x12/0xc0 [ 467.135142][T13508] ? file_tty_write.isra.0+0x694/0x890 [ 467.135172][T13508] ? kfree+0x2ec/0x6b0 [ 467.135201][T13508] ? __pfx_n_tty_write+0x10/0x10 [ 467.135239][T13508] file_tty_write.isra.0+0x4d2/0x890 [ 467.135276][T13508] redirected_tty_write+0xd4/0x120 [ 467.135307][T13508] vfs_write+0x6ac/0x1070 [ 467.135346][T13508] ? __pfx_redirected_tty_write+0x10/0x10 [ 467.135379][T13508] ? __pfx_vfs_write+0x10/0x10 [ 467.135420][T13508] ? find_held_lock+0x2b/0x80 [ 467.135451][T13508] ksys_write+0x12a/0x250 [ 467.135472][T13508] ? __pfx_ksys_write+0x10/0x10 [ 467.135498][T13508] do_syscall_64+0x106/0xf80 [ 467.135527][T13508] ? clear_bhb_loop+0x40/0x90 [ 467.135554][T13508] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.135579][T13508] RIP: 0033:0x7ff459d9c799 [ 467.135597][T13508] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 467.135620][T13508] RSP: 002b:00007ff45ab8a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 467.135643][T13508] RAX: ffffffffffffffda RBX: 00007ff45a015fa0 RCX: 00007ff459d9c799 [ 467.135660][T13508] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000006 [ 467.135682][T13508] RBP: 00007ff459e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 467.135698][T13508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 467.135713][T13508] R13: 00007ff45a016038 R14: 00007ff45a015fa0 R15: 00007ffdcdde5488 [ 467.135737][T13508] [ 467.136366][T13508] Kernel Offset: disabled