last executing test programs: 7.556587113s ago: executing program 3 (id=1423): r0 = ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0x3, &(0x7f0000000000)="118b36bcbd24cfa7efbcf4ffdfbc250fbce9db4bc3b282fc8b9ac8be8794bb0de8e41592473c5b12cd4b0ae35ea375dbd2fbdc326dda405b7a49de4d94a5856e84941e981571b1251219e707e960eb7a139ad2ebd30f3a28d56e6245d3e4047b2810d30d32d605326c1eb487036d9839b01b5356b2c87dd9f6e11fad4ef3a3a0613a825d31d233c18fece1862bd8ff33f4bd098ade36c46417ccf77560d3523fd0177b914d5020665f6b9a22aa394b044720bc09b4051cfcaea9bff7cb") ioctl$auto_FS_IOC_RESVSP64(r0, 0x4030582a, 0x3) r1 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f00000000c0), 0x400200, 0x0) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/saved_tgids\x00', 0x8100, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) r3 = wait4$auto(0x0, &(0x7f00000001c0)=0x7, 0x9, &(0x7f0000000200)={{0x8, 0xffff00000}, {0x40, 0xee}, 0x3, 0x81, 0x200, 0x4, 0xfffffffffffffffc, 0xe8, 0x4, 0x400, 0x2, 0x8001, 0xffff, 0x8, 0x5, 0x3}) r4 = semctl$auto_GETPID(0x4, 0x3, 0xb, 0x6) sendmsg$auto_NL80211_CMD_REMOVE_LINK_STA(r0, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f00000002c0)={0x134, r2, 0x420, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_PID={0x8, 0x52, r3}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xb}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_REG_INDOOR={0x4}, @NL80211_ATTR_FILS_ERP_USERNAME={0x6, 0xf9, "8057"}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x7}, @NL80211_ATTR_ROAM_SUPPORT={0x4}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x1}, @NL80211_ATTR_CQM={0xe6, 0x5e, 0x0, 0x1, [@nested={0x24, 0x93, 0x0, 0x1, [@typed={0x8, 0xe5, 0x0, 0x0, @uid=0xee01}, @typed={0x8, 0x47, 0x0, 0x0, @ipv4=@multicast2}, @nested={0x4, 0x64}, @typed={0x8, 0x1c, 0x0, 0x0, @pid=r4}, @nested={0x4, 0xa43}]}, @generic="e48011196b3b913dd86d087e86def6e568bb3b56e74e22eaec673607bac3de212104c547f7fcaca7eac30dc81c022d2b9901d97a59c0e3f871e9b0ad360bf766d574a49fa05af8c66ba1ffb989c147b3b1dbfbf50fbbbd6827abce407e162596aaaa2f3c2c88cffee877e2122d47e8d3a5b06f8d5d286f63b9a6b5ee91ed0511056730085a5fcf1fb70d460892f822f0e7fd6d6027c20db9fe54ffeae84b8f746d22517f0b47fe655c72676140028db5bfb602feddd81ca61a160a4b7793"]}]}, 0x134}, 0x1, 0x0, 0x0, 0x20000800}, 0x20008040) getsockopt$auto_SO_PEERCRED(r0, 0x1, 0x11, &(0x7f0000000480)='nl80211\x00', &(0x7f00000004c0)=0x100) gettid() read$auto_check_wx_fops_(r0, &(0x7f0000000500)=""/108, 0x6c) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000580)=""/145, 0x91) sendmsg$auto_NL80211_CMD_TDLS_OPER(r1, &(0x7f00000008c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000880)={&(0x7f0000000680)={0x1c8, r2, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_FILS_NONCES={0x8b, 0xf3, "9077533aee1c1f1a953c6de8105921d8d19f645b7dc50866408458137f841fcf4674bd45613d96996971a86d4ef8486d67f2c36fc3c4b6a93165d032bd5c554fe561829cb548b174ffd395858ae6f62eabc0a8e88b45f876423e292d0fea2fb40d8f78849821642369a6bda55e59e321bca16679638f1cdb7683cc9f0febd3cfc307404668c569"}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x6}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x6}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x800}, @NL80211_ATTR_FILS_NONCES={0x50, 0xf3, "d8c41e25a877d29bc144c33a0cfdcac40de8e1ca71acd3b70d0feed436c534a84e0a7c69c73efef20809cb7529c731adac9534da7b09d04e5f9810db2b477c2ee19be92c800150fe6105af32"}, @NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x10}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xa5, 0xbe, "4000fad6b8585d3d8247180659e3b9d0970f03e0d34803def2766a878a82cba593832783019f7863312c1a69712c3aba6b706ca16c3f2eed35ea87ee50bfdbdb5d9940225db081cc91814ccba24f5f4943840b641741f7b2ef569ee18f09858840558a8bcf37e63cbc84ef8dccebdd9202328e05535895fae6f8be787f32959e6ed82922583de9080f506830565e9725883c98c00fb069c0cdb9042daee0593ea3"}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x20008080}, 0x800) r5 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000940), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000980)={'ip6_vti0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000009c0)={'wg0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000a00)={'syz_tun\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000a40)={'ip6_vti0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_CAP_GET2(r0, &(0x7f0000000b00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x3c, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r6}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r7}, @NET_SHAPER_A_CAPS_IFINDEX={0x8}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r8}, @NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r9}]}, 0x3c}}, 0x8800) r10 = prctl$auto_SECCOMP_MODE_FILTER(0x401, 0x2, r4, 0x2, 0xb) ioctl$auto_XFS_IOC_ERROR_CLEARALL(r0, 0x40085875, &(0x7f0000000b40)={r10, 0x505}) bpf$auto_BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000b80)=@bpf_attr_4={0x401, r11, 0x3, r0}, 0x7) r14 = socket$nl_generic(0x10, 0x3, 0x10) flock$auto(r10, 0x80000001) waitid$auto(0x0, r13, &(0x7f0000000c40)={@_si_pad}, 0x5, &(0x7f0000000cc0)={{0xbb, 0xcb}, {0x7, 0x6}, 0x1, 0x4, 0x67, 0x0, 0x4, 0x100, 0x7f, 0x7, 0x6, 0x7, 0x8, 0x2, 0x8, 0x1}) sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(r12, &(0x7f0000000e40)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x24, r2, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0xd}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0) getsockopt$auto_SO_RCVMARK(r11, 0x2, 0x4b, &(0x7f0000000e80)='wg0\x00', &(0x7f0000000ec0)=0x631a775d) ioctl$auto_SNDRV_PCM_IOCTL_WRITEI_FRAMES(r11, 0x40184150, &(0x7f0000000f80)={0x9, &(0x7f0000000f00)="e5ca1cf7eccdcf49ddfd1b42b0a547ea937973d72625ec5565f5ee87dc11d864752afe3847d649b4c0887f13a2c72da19beca0a8e445649eb52a3c276df1a91af5e7c427e8db78ef44fc48e8f2301fc970094de881688366e030fecf3c02a8c5c0315a876ec1fe78b73276ce6039997f59fc205497cf", 0xd}) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000fc0)='/proc/thread-self/oom_adj\x00', 0x200, 0x0) sendmsg$auto_MACSEC_CMD_UPD_TXSA(r14, &(0x7f00000024c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000002480)={&(0x7f0000001280)={0x1200, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@MACSEC_ATTR_OFFLOAD={0x11ec, 0x9, 0x0, 0x1, [@nested={0x5e, 0x116, 0x0, 0x1, [@nested={0x4, 0xb1}, @generic="6682a56fd064dfd66b1b94012a885102802b6dec64054fc8c12d152aa477d67749b1a50aee887a136637fd2f89c4aff6903b5d80d4ab98fda1737108df0750593d290f2d57d692c2cd39726e23dc", @typed={0x8, 0x76, 0x0, 0x0, @ipv4=@broadcast}]}, @generic="e584482834cab425e04e8a8b9e1291589a894f5e89e77aca91d9631cd24be3b2a62a834ad7725bf5f420a3a093d8e6010024aed95338c90561f3b750e840ac6a8a7a0d7512727f6b637d4ad8640807c43536cf23d8b12de218d75668ce540218caf9d81e919e2864ae8d8b600448e03366005cda5bf8cc15c5c6cd2cd7f2d9f42f53bc6a7b76a690725141ef088190bc2cab57ca9560fce28fd8b5f3fb6d88a43ca07af139c264bdb1ffb10d", @generic="8a6fef7b8f37f7676e83d7f79568042aba119b24be502f58", @typed={0x8, 0x1a, 0x0, 0x0, @uid}, @generic="c90197f7048b257a70f581afba0853bab310d1db17019109c81e67c545638124b76e67da8ef7c391d2aa4c0559385e5f6c0354baa98297899ff2c1c0d55b482718db4e317be4b01c0227e1d92913a2f28f8066c4bb30773d35e6d468dfe83eb6f6c10da43d6bd300ada97e8d60fe81b4209f5d192bf5b075840fffc141573ff1e06edc2db48011e912a8eee8e7869fef9c03b634a7cae42e8c9349b3743e3de6e7f5a212d1d57e49839105a405e4f73b6e1afe006fdc1fc11a1a3b16381a56f53cd4858ab6d2996f5e8faa7c928cf419abe451a36398b5d4ee167c1737cb2d8d11b95e14c8574484d6b0213d51c9ca12a3d806dcd56c434e3da93253ca57a2e163dd4b786e5024d864731d9a59c48674ec713babe5b56f670423bebc02d3ecf31fc7742b8b6c500fcda6d82ffad475a3185ef62eaa10f2776830f0aa09345c57e8b39c906562dbbf40846e0d208fb7c11bd3405f65bc9241e000e3381f4a899a39fba8edc68d012e37775540549b9b8262beb4e0a97e0d24e3d942d215906ee8f9428050efd6b3472a919b34e3eb414e69553c404685bc39c4c07386fdf8f85f51055de559ca94c8b29db9a938ce6f8b4cf4dfd0993e2050a09fed39364b59ff5758a625a2a96808c4b7e2320a607e89a9ae389f1e5d35183aa36d9d646f1bdbcaca95a87b9fd7f1f8909eade3aed56d4c0647603ef09d0a47017bec584ffa3f6f4b368bdd490f75e0e84588899d7badd7a84b447a8d35666a5c44edf3a6035f983be26d96f2f7f2d3f3861482b6f01974b741d9e2161e975ba74a59c45c3a7a9f0135d2b2e60c65d2d001874afd1701e02d27e123dab095e4d8f9c20e724581c3b2ca45eb8b37023662af9e4073043daa0ad6c0ee5797c94c9f3c9ba3d6bf53f0ca9943d86d0fdfce2fdf9c0b73f0daec4efd29d28760523aec52718f2b12592ab886b724f7a1bf61a6999d99a0eb88e0b8c91915d008caae860698917684664d5a991c3b6c3ecdf91e2d4e37b8ff799eb472d21b521eed18c378248a49515ff886dced202f4648c1288b5424045eb8df80fe3c7260ce6385414412ec2194bc62ef181936bd3a219c4da680d0508a685a6e4ca567fc0a2a8f1bfe7da3df93b8825d32021714fc93f515d9d679e7bfae44e9df45064cc7e6084f0abde0b04302d3d3cb0a30269af4477ce59b228e6ede52a5dd0a3ef634490e0423cbdfecdf7adf2ba5963247b315080172528794e731f2fe5daffa5bf33b26f41eb2712d6724041f36622c3f67647025ce36701979d7b1e6f94354cbe4780fbedae9d067cad88e88de628cae46a0d7a8f9720046ed2d2c6b18ec73b73982bf45deb8e7233a258389a590a716fe3f4104c75a332df9e725023b439a489021a73cf142dfa5a1f9bc1e0561a8ce9a487eb3f75c0fcb98bbb434c62373dd690b0834af894d1c63b0bd3d655706072880013eeb7ce05cade1b142bfb157560ddac18986ddcc294fe2c10193ee4fd005cee1724e09de22693c66bbfd515f4c2c363763b33d4595c38a78d9915ae5dd3dbf76a7fded6cb51d90081a340aface31e2f6c3683deb1ccedd298830ba534e6c1432538dad695a9ab6232a70202367ae1d724dee65f98af47f6cd46cf4a2f24dc62fac09a1696246dcdb45f818794ad6c20cba7e9392aa9318d8e7b8ac296030b649114624e7e769aa05b66a023d3c442b78d06b08e545c8b1e0f7b00377aaba6fe46fe31e2bec60e4305a4994e83ee04bdf7d9f6b31f380e9b1be4513b0aa285e5186d8fdb6cf808d47b948d8e80820d435d02487872125c2733bebea1a159ccbb1a2d2482939a5446887567b280fd1d60707d77cf365c3fa3b4b5efb1d952407f9eed7bd95cca2ed9633d3ae416dbd1d925996d852308161c243a81e81a695ed5fc2b8d741a44da20a771504bab341c301bbb9e90f00727f8020336ac735efcd2f9c44398e7685294b752e98b75e78fc2f31d1318dfc121c14562c87341ffba4334b23684db93938684b1a734069d85615396ae951ad6419afa74f293f143f1e3ff256a0220088e5bdb5f1f7a25eaa3fbb6cdd2511c66148d6ab4c9c4af0524c2ceb23f39ccc76baaf3ea7ab5e6be6e1640322554c9310640366bd76d34fa25070adb40f84aaca32cfaa0299de9523381d2b70a86480a70e16261cd4862fa8f87d2e4225ce754f522d8b285fa153975c10905ab96b635e28cd0d17fd91264f12dace620baaec4ce9fc768ef943aeb7cb43eb31b66337c55f0b9c947b7cdcb63cd18ab5a5a4ebec369589661cfcebb29d220e4c05f4a5540adf6fcf1c0be3334201ec379a46bce124c23fd28bc1d510b157b5791162dd58462bdf647d68bc2d596e7d3baf53f63979d711a78cd460563207e68969fd1043b112faa5ff517e284efd1227d69f6e3d6d34e3b14af771f635e2a83041bdf1deb26eee7045450f72dd93491a467fac7d857247cb7004f80ec4991b511c7d914be38f1c32499dab31158d6da48bb7936fecaafc7f37c1a912af0bef4147ba17c3a31988572cfa0f4c6c4963505790ce2badc480285911ca5a21c9e836286a9626304ade8f9f0a5cc37cccf4af86a6cb488e8317a2ff3c72722e907a3993fe2ad5fea842893ea46c0d09521be8e786e4c40d1854747d839db1eb0df5113dc7caad60728173813299b6643ff457753e99e9bc9136eaf72cddb93a4ad9692bff0ab61d6f213bf020e5dd0aa02f730fdd05caee79fe8da6eb26dac0b304568de0d557fcbc80302833694eb5f5bfbdca0d4bb34d2828fe60b292412a0ab6fc36d711eebd8e684e7980e73f26d226e1beb7421a29289d8628a4be0ba20f647ba74392c891db9fce0090ff9c410fbd849fd5b7c9b42eaa8f73b27501474ff857f6381cac1e93fa25bf4b00c851a16190634843fd81590b7ff98aa54e08d92689621df2160259111c734a6317860cecdcd3f4e151d66ef189ed0bf03d2880ee49fb1ab6304bf5418d754fdec2e3dc448abe3ec95ca5a9aadb68d4c8a42a35c2c44d682ef2da333528fbac2b962e1a501adfb3161ddbeb9ae015d5c9f5c7f49aadc2d89dc2b7caa9347c1e7bef9409ace413184cf3b393fe1b7f9ed8b020f5d1e6d646a264d68a0e790a82a163ab4b69aafa78cc0bec85229c2c13e50770c441c5b16f615692bdf7440a43e6d54317425143f2b936b0fd60f30f4f909896db4c37439b0f8945088c1aeee4d2177a204a14ce9d7d0ba0a3822ca360e631a427982681af1868dcaed4a9e1f1dbc4ff5a76cff6657689e10244451d304236aafad2a24d5426f56c6fc951c408fc83e151f36c080e9a7789492581206c5828b1a25e09596440c4e1f2a03a27993d06cb962479018e89a2db4875784e1f618eced21d8c44d5016c762d00d6d6772034ed8e851a551b94dcb75b5c8f3ac6074c5f1750788576d94667b97b3aea719946c1bba321548e202c45ce6da870ee90a9800e4340e23eee4a9bf51d3cbfebace2033cdeb96dba0bb07d2bfe8bfda8338d70a15ca771c5262c7d6df9a3cec5ca4a47641bb7044a591ee8c9a8ef70e7fd211f1c806d504da9d6a5d2385014f42c9a38c64e5b154966fe034496330615bf92cb7e76d8f4a4f579c720d3ab5f0daf9c2764e56333cd62669104ad355c733305cfb656aca7085334184950bec5046f6808d1db905a906f501d09f5f2f583149e9345cc9ab09bd72c5228182512200999376e26fddf112ef4f38b8214ed9d9b8456c3ed1bb11d3ba836d56d34c44fe7b3302f6381d487d382c581adf9607cc5280e1417e83847319735c978cfd99ddd8e594cf3246c67c7afb558436845dbafc1c6af049f3b0abf6c21875be2f84fb17485c598017eab9b93f346d18611888fd717c6002b229bade6e3b354fa38293f62a7c0bb3c5a88e20218174e0f7998bb913ee112de8fa10c10e991fe240decd7922acc0194859c415c69a3edb7efeda54c8f0aad25a2b8ad3d8811bda1b5a7786add35297151c0afe1ffe9bd00bf45141f61692996d39523f5238948b7784249761d11079a9f603e0431783c5f0d559d064455091f2c6a19b559aa24e4d7c79b8ebedd599b382da677cfd555bb86f852adc0d095a8acf87a0aa2c7346305c8629adecc93e48027a71caa7a1a8b65078692ad02d2b1d5fa7d3ff18fd271025dffa67a018120f7d3bfbbe05a4a983c31c58f30b8554d88ad2ca8a256926b0282e27a57eb29052dc4ad9ab59700aa0259de7f47a351ddd77f1811c1f41ca7fd31bd7d659de05547b777654140428ec03f759e79f83941b334cf49bc9352388112df7c4de203666db0cd52de573a6f139e9557a16d0ce3d373e7dd5187e0ada39ccfa8886ec41ae0ad682b69879dba4ae934e80b3adc9a3678ec2d4ff88d8cc5898f5b847c202de12cb40bbfcb78b99f766369939d7e58e84836e4d66ac9505339efd6cd93b01e6893681cfaf0dd2af9965a660d35b64e3f2da76d98a380b5c835957911a634c8750f5e0b0e50fc91d738ce315035783aecd45cbf65fa39df90d46f8e6389932c42454b9b49e781c7f416fc92ec479c31bbceff11e3f87f5db945cbfdfd56b5345eb6a11f34256a7f099d07383e4506da23686de37023cbc5faea0d0fafaa242565aa02dd926eee7d24c35acb917d85199d794eac2eb9101c2b9dcdcfea6c1ca5a97ae484a100fc971430d3a52c52813f712c1defda3a3932bfc5121b1c3a6f8b8f6e07db23230df1353273e66e899ae6b58e934bdebd81d5e3894bdca9c7773722187a04459d070725801bce3d965ab0cfee3c9d9cbdf086a577088e36943204f429a4a088c422b93df9857fe07ab952d616d1f12eb79293d27101379b36a6080eef0fa65756a33ffadd54f6e23b3d075e99058195570875d421afeb4257d0189b2bd98d38a15a46352ddbb4e36ca8c0965bfba4456ecb588f90a4bb7046e3d55e6246cfe639b406550bf28cce92fe622dd8c144e769896f486b37e604d1298702cb84175e8aae30cc807cbb12815cfa20e2eaf36c65e0f0da236ad4cd129e7dec5c342e0779524c4df12cfd8740b9a453d52387da346bfe1af6aa2b915558af041ec7d286dae53c8c9d445abe6e17460aa780c8cf40ca0b23f2b0d8844fdfe19e2cf4d58b214b41145928c5d4e2092a6bf262369897d6891904fd68b141fdc8609c411bf4d72d03243bcfa9fc42780578dc07f6286971c5550ca10eeea5949a003e423a79cb72dc7d075a0c7278d0dc80fb1c5e9fe5e269c98a39d87203681e3312a4c44d0e11a7eb378a4289c1afb860d20fb0f801f2ae7f2403a848948a1154ff78f5952299c5eee9f6b1f02794220206cfdf7267ee7d3beb850432035b74728be4d094e3fa61a8179c881c7d0c165b5e8bea12976a3e053c0fdf44a5ae9e3f6b7d34dbed2dd507d7b6561c69445a4ceb6e182786d60b9119ef2a543d75185bf4f557ac44b4749b212fe87097307b17710237f552a0df2699adf405e2937cf00d851336bdbdefce7ebd415609687c5becd9228e9b3d77dfe1291232f088b3a550760337942febb9edaa29ba32806ff47e8c1b552e09ecc93756ebe36bce08747fb72a19355ba6f8c8f30f98888c4a28948a20f7fba15666c9e303d4e9b0f3f5fb0062fca7ec08e9e458766fcdb3370d6fb041823d95b71ef4c6c0d7bbc6a4e2057398741aba2fa705a4e42201e7612825f0a7ad27b66b37ef2192e8972fa31211ac273516a7e85a90e1683f6f0ab90e770d79279c59ce825802dfdfec95a84135ecc38b6ddd9f6be1f0f34ced6645fa3b10c3a2", @generic="65ac92279cff3fa3bc93bb5551dc8d2c1784a5bebd539fa2f01c39dcc136b4fce0d20734ba9a1f33479c8861c1a4836c60a354bf7561dcb45fda00f17816ae981238528a54f48754d98f1ae09ce0e88b680cdfb153eb94db89c9d75138a29249e163183b7f12e1848dbb5113f63b6b958a0e92155afbb1d9b0f448876ae4407e98a8a1775f776a2a771c691541433db5b08e8eb8e5de131ce6573198f9d330060de74d0ab76d9513d44e8ba418af41baf3ed9ec2034fc13e81e9fc9b"]}]}, 0x1200}, 0x1, 0x0, 0x0, 0x11}, 0x44004014) 7.156091629s ago: executing program 3 (id=1425): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/overcommit_memory\x00', 0x202, 0x0) sendfile$auto(r0, r0, 0x0, 0x7fffe000) mmap$auto(0x0, 0x20009, 0x8001, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyt8\x00', 0x0, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) socket(0x2, 0x80002, 0x73) madvise$auto(0x0, 0x200007, 0x19) io_uring_setup$auto(0x2, 0x0) syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x800005411, 0x38) futex$auto(0x0, 0x5, 0x1ff, 0x0, 0x0, 0xfffffffa) clock_nanosleep$auto(0x78, 0x2, &(0x7f0000000000)={0x1}, &(0x7f0000000040)={0xffffffffffffff00, 0x6}) r1 = openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000005700), 0x28000, 0x0) r2 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r2, 0x107, 0x13, 0x0, 0x1) read$auto_proc_coredump_filter_operations_base(r1, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000005bc0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r3, &(0x7f0000005c80)={0x0, 0x0, &(0x7f0000005c40)={&(0x7f0000005c00)=ANY=[@ANYBLOB="20ecff00", @ANYRES16=r4, @ANYBLOB="010029bd7000fddbdf25720000000c0099000100000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x20000080) ppoll$auto(&(0x7f0000000080)={r1, 0x5, 0xce}, 0x7, &(0x7f00000000c0)={0x6, 0x3}, &(0x7f0000000100)={0x8001}, 0x8) 6.557076642s ago: executing program 3 (id=1418): sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8910, 0x24) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x20a00, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0) ioctl$auto_UBI_IOCATT(r2, 0x40186f40, 0x0) ioctl$auto_UBI_IOCDET(r2, 0x40046f41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0) r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000c00038008000680040000801200444c710100898771f1c19f17790485908286dd000004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) socket(0x2d, 0x0, 0x3) ioctl$auto(0x3, 0x89e1, 0x91) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/boot_params/data\x00', 0x2c40, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/sockstat\x00', 0x22000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000001c00)=""/4109, 0x100d) 5.983609454s ago: executing program 1 (id=1419): socket(0xa, 0x3, 0x3a) r0 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x1, 0x0) writev$auto(r0, 0x0, 0x3) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x244100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0) read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f00000000c0)={0x80, 0x6, 0x102, 0x6, 0x1, 0x6, 0x0}) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, 0x0, 0x100000a3d9) setfsgid$auto(0x9) setresgid$auto(0xffffffffffffffff, 0x28000000000000, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) sendmsg$auto_NL80211_CMD_ADD_LINK(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="14850a00"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x44) r4 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0) 4.845873279s ago: executing program 2 (id=1428): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x5, 0x8, 0x5, 0x4]}) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'dummy0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r1, &(0x7f00000006c0)={0x0, 0x9e, &(0x7f00000001c0)={&(0x7f0000000e80)={0x20, r2, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x1000060, 0x400000000000000}, 0x400c080) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r4 = gettid() openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x4a42, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x40080, 0x0) fcntl$auto(0xffffffffffffffff, 0x1, r4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x800002, 0x0, 0x1, 0x0, 0x0, 0x209}, 0x7}, 0x3, 0x0) 4.844872768s ago: executing program 0 (id=1436): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0xf7374674b920089e) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRESOCT=r0, @ANYBLOB="5de1"], 0x1ac}}, 0x48844) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10000, 0x0) r1 = socket(0x29, 0x2, 0x0) ioctl$auto(r1, 0x89b1, 0x24) sysfs$auto(0x2, 0xd, 0x5) sysfs$auto(0xfffff800, 0x2, 0x10000) r2 = fsopen$auto(0x0, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000a80), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x2c, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x40}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x20000014) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) fsopen$auto(0x0, 0x400) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x8, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs1\x00', 0x0, 0x0) epoll_create$auto(0x3671) io_uring_setup$auto(0x1d48, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) 4.503539836s ago: executing program 1 (id=1429): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x141000, 0x0) poll$auto(&(0x7f0000000180)={r0, 0xa0b, 0x9816}, 0x7f, 0x0) ioctl$auto_VHOST_SET_OWNER(r1, 0xaf01, 0x0) r2 = gettid() rt_sigprocmask$auto(0x20, &(0x7f0000000000)={0x9}, 0x0, 0x8) rt_sigtimedwait$auto(&(0x7f0000000100)={0xfffffffffffffbff}, 0x0, 0x0, 0x8) socket(0xa, 0x2, 0x0) mmap$auto(0x10000000000002, 0x4000000000001004, 0xaa4, 0x400000eb2, 0xffffffffffffffff, 0xfffffffffffffff9) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb2, 0x401, 0x8000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) ioctl$auto_TCSBRKP2(r3, 0x5425, 0x0) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r4, 0x5408, 0x0) sysfs$auto(0x8, 0x7, 0x1) socket(0xa, 0x3, 0x3a) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) kill$auto(r2, 0x14) 4.118069955s ago: executing program 2 (id=1430): socket(0x10, 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a0000000800", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x20000000, 0x9}, 0x7}, 0x3, 0x0) 3.981723052s ago: executing program 2 (id=1431): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) ioctl$auto_BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000009c0)={0xffffffff, 0x9, "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", "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"}) mq_notify$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0) mmap$auto(0x0, 0x402000d, 0xdf, 0x19, r1, 0x8001) close_range$auto(0x2, r1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/lapb4/ifalias\x00', 0x1a1842, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto(0x3, 0x540a, r2) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r3 = openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000a00), 0x80000, 0x0) read$auto(r3, &(0x7f0000000dc0)='!/\x00', 0xf) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) pipe$auto(0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) write$auto_bm_entry_operations_binfmt_misc(0xffffffffffffffff, 0x0, 0x0) 3.896223344s ago: executing program 0 (id=1432): mmap$auto(0x0, 0x8, 0x800df, 0x9b72, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/net/ip_vs_stats\x00', 0x480, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f00000001c0)=""/85, 0x55) unshare$auto(0x40000080) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/platform/dummy_udc.5/udc/dummy_udc.5/function\x00', 0x62840, 0x0) process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={&(0x7f0000000000), 0x55}, 0x6, 0xb, 0x0) openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x14880, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xc}, 0x6, 0x3, 0x5) socket$nl_generic(0x10, 0x3, 0x10) r2 = mq_open$auto(0x0, 0x62, 0x8000, 0x0) socket(0xa, 0x3, 0x3a) read$auto_debugfs_full_proxy_file_operations_internal(r2, 0x0, 0xa) unshare$auto(0x40000080) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/xfrm_stat\x00', 0x40, 0x0) pread64$auto(r3, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9) open(&(0x7f0000000800)='./file0\x00', 0x2101, 0x155) close_range$auto(r0, 0xffffffffffffffff, 0x4000000000002) socket(0xa, 0x801, 0x84) socket(0x2, 0x1, 0x0) socket(0x1, 0x2, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x266943, 0x89) fcntl$auto(0x3, 0x402, 0x0) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x422c82, 0x0) r4 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x101840, 0x0) read$auto_rng_chrdev_ops_core(r4, &(0x7f0000000040)=""/4096, 0xfffffe82) 3.597931659s ago: executing program 1 (id=1433): msgctl$auto_MSG_STAT(0x3, 0xb, &(0x7f0000000180)={{0x3, 0xee00, 0x0, 0x8cb7, 0x261b400, 0x9, 0x8}, &(0x7f0000000100)=0xa, &(0x7f0000000140)=0x5, 0xf, 0x6, 0xe14, 0x10000, 0x5, 0x1, 0x6, 0x3892, @inferred=0x0, @inferred=0x0}) stat$auto(&(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)={0x5, 0x0, 0x0, 0xf, 0xee00, 0xffffffffffffffff, 0x0, 0xd5, 0x3, 0x101, 0x3, 0x7, 0x1, 0x4, 0x8, 0x2d79, 0xa7e}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="3c000000b9c215dcf6fd85f8b702c658d3085d5ed95e32593b45a84d00582e969ffe07d5e7e36424098473d195efd5ab1fc185d1f6f4e9e8807bf5a5044ebbba0fa246b911c15e60033c13b126a3f6ad6e42be77c38dfa322c68aab3620c79aedd2e7583b4a8a94b58bd6bd842e2475eabb3407bb9f339dce1841cefed2eb527ba79c0940640ba258fadda780c91455d34b04020bd74d35f306ef191a7d01458aeda8b5c131a6513", @ANYRES16, @ANYBLOB="190026bd7000f9dbdf038004e20f8012010104735cbf12d6b54eaf0002", @ANYRESOCT=r1, @ANYRES8=r2, @ANYRESHEX, @ANYRES64=r3], 0x3c}, 0x1, 0x0, 0x0, 0x400c040}, 0x98c0) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card0/pcm0c/sub6/xrun_injection\x00', 0x1cb842, 0x0) write$auto(r6, 0x0, 0x7) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), r5) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000580)={'bond_slave_0\x00', 0x0}) r9 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000380), r7) sendmsg$auto_BATADV_CMD_SET_MESH(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYRES16=r9, @ANYBLOB="010028bd7000fbdbdf250f00000005002e000000000008000300", @ANYRES32=r8, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) fstat$auto(0xffffffffffffffff, &(0x7f0000000880)={0x100000002, 0x5, 0x7, 0xe7a, 0xee00, r1, 0x0, 0x2cc2, 0x100000001, 0x8001, 0xffffffff, 0x1, 0x985d, 0xfffffffffffffff9, 0x401, 0x1, 0x1}) setresuid$auto(r0, r4, r10) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ptrace$auto(0x10, 0x0, 0x1, 0x7ff) ptrace$auto(0xc, 0x0, 0x9, 0xfffffffffffff6de) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r11 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r12 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyua\x00', 0x1052c1, 0x0) ioctl$auto_TIOCSTI2(r12, 0x5412, &(0x7f0000000040)="158f4a2b") openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/rose8/duplex\x00', 0x400000, 0x0) r13 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r13, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r11, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) getpid() 3.074512559s ago: executing program 3 (id=1434): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0) write$auto(r0, &(0x7f0000000000)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) prctl$auto_PR_GET_UNALIGN(0x5, 0x29, 0x8000, 0x3, 0x7fff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x3) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3) socket(0x26, 0x2, 0x80000300) r2 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r2, 0x0, 0x2, 0x100) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f0000000240)) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) preadv$auto(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f00000001c0), 0xff}, 0x5, 0x0, 0x4) r3 = socket(0x2, 0x1, 0x106) setsockopt$auto(r3, 0x6, 0x6, &(0x7f0000000700)='\b\x00\x00\x00\xe4\x15\rq\tW\x9d=\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe7\x9b\xdd\x1cp\x19\xa0\x9dHN\xb4\x7f\x7f\xa0\xeaI\xa1\x0f/\xfc\x8e\xf9\xa6x\xa0\xdeo\t\x826Xe(\x0e\xffr\r\x8d\xefh\xdbG\x8b\xde\xfd$\'\a ]\x91YP\x94\xd0\xd0\x02\x10\xb1_z\xa2Ql\x8c\x91\xca4\x118\xcd\xc3\x97\x03J:\x1e\xe5f\xcaq\xdf`\x01;\xf9{D2\xc9WV)\xa3JH\xf5\xf9\x16\xac\xa4\x155\x80\x01I\xd9\xa5\xd0\xf1\xbd\xa0\xa4\xa5q\xc6F\x940\x00\xf8\xef\xa4\xfd\xd2z\xf5\x91z<\x9f\xf0\x8f.\x81\x84\xed J&\x8f\xd9\xab-\xf8\xd0\xd3\xcea\x91pM0\xcd\x18\xb4\xe0u\x99\b\x19I\x87\xbb/1\xf9\x84\xbf\xcc\x0e5\xba\x9a\xba\xfb\xde\x16kU\x97\xec\xc6\xe15u\xd5\x94D\xab\xec.K\xfbD\x0f\xc16g\xf3`\x03O\xae]B@\x0e!n\x8dy\x97\xaa\xa7\x12\xbbyD\xd3\x82\xb3\x9a\x88L\x1b\x8b\xfb\xe7\xc8\xa8\xf66\x16\xe1\x04T\'/8a\xeb\xe6\xe6+!\x97\b\xc8;P\f~\x88\x02\x91 \xd3\x93\xa7.xCNA\xcax)\xb4\xdf\xfe/\xe40\xc6y\x13\x8d\bfJ\x85\x05\xf5\x9f\xea\x15\xe9{3\xcc\xac\x94w.%\x11_\xd3\xe2\xe9\x8c\x9c\xb1\xfb\xf9o\xf4\xc9\x88\xbd\x90p\xae\x8ap\xb9\xa4\xb7\xadv&\x999\xdf\x83\xae\xff\xa5\xfc\xd3\xc0!\xdc\xc4\xa0\xce8:\xeb~\x9b_F\x8f\xcaY\xa9\x89@\x99)\x1c\x8b\xc5\xb7\x10\xd1\xc8`\xb6\x8f\x136\xc3\x1e\xbd\x8e$\"\xbfJ\n\xd6\x0f\x9d\xcbr\xb7\xa8\xed\r+$\x94\x9b\xfe8\x8ao\xf8\xba\'i\xf1\xd3\x9c7P\xe3\x14\xa2\x1b-\xbb\xae\xe3P#:$\xaf\aB\xd2\x95\x18\\r\xd1\x80\x9fD\xd5\xaba\xc8\xd4\xd1\xb6\xf5\xb9\x16\xbb\xbc\xd6\xb3+\xdf\xfc\x89\x1f\xe9M|\x0e?g\x18\v\"', 0x4000007) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(0xffffffffffffffff, 0x4008550d, 0xffffffffffffffff) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0) r5 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000bc0)='/sys/kernel/tracing/dynamic_events\x00', 0x1, 0x0) write$auto_dynamic_events_ops_trace_dynevent(r5, &(0x7f0000000000)=' ', 0x1) settimeofday$auto(&(0x7f0000000180)={0x6ddb8b07, 0x9}, 0x0) write$auto(r4, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00\a\x00'/101, 0x9) writev$auto(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x10001}, 0xc) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/arp\x00', 0x101000, 0x0) 2.768650258s ago: executing program 1 (id=1435): mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x6) userfaultfd$auto(0x1) ioctl$auto(0x3, 0x541b, 0x10000000000402) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) seccomp$auto(0x3, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) pselect6$auto(0x9, &(0x7f0000000000)={[0x400000000000008, 0x94a4, 0x2000000000, 0x6, 0x8001, 0xeb2, 0xfff, 0x9, 0x3, 0xfffffffc, 0x8000000000000001, 0x0, 0x2f, 0x6, 0x8, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x80002, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001840)="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", 0x1000) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 2.661176684s ago: executing program 2 (id=1437): connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) socket(0x29, 0x2, 0x0) ioctl$auto(0x3, 0x89e2, 0x91) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x80000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000001480)={{@raw=0x9, 0x2, 0x5, 0x0, "e462f5a29a0b2f987b9ea452a1bc9eaafd83a8eb9eea79a10397a3126cb6c4380ae1dc84e847c5ccf57f14eb", @inferred=0xffffffffffffffff}, 0x1, @integer=@value=[0x4, 0xa, 0xffffffffffffffff, 0x3, 0x0, 0x6, 0xffffffff, 0x7fffffff, 0x8000000000000001, 0x8, 0x4d, 0xb3e7, 0x1c000000000000, 0xdf8, 0x8, 0x9, 0x80, 0x6, 0x5, 0x3ff8000, 0x3, 0x2, 0x7, 0xfffffffffffffffd, 0x0, 0x8, 0xd1, 0x8001, 0x8b39, 0xfffffffffffffff7, 0x6, 0x863a, 0x1, 0xc, 0x0, 0x9, 0x9, 0x7fff, 0x1, 0x5, 0x6, 0x9b, 0x7, 0xffffffffffffffff, 0xc, 0x40, 0x5, 0x6, 0x776e49f8, 0x7, 0x2, 0x643b, 0x1ff, 0x5, 0xb00000000, 0x2, 0x8, 0x8000000000000000, 0x0, 0x4, 0x80, 0x7, 0xfffffffffffffffb, 0x3, 0x0, 0x8, 0x1, 0x0, 0x5, 0xcfb, 0x80000000, 0x2f4, 0x5, 0x7, 0x4, 0x1ff, 0xe577, 0x3, 0x5, 0x6, 0xffffffffffffb5fc, 0x7fffffffffffffff, 0x4d4, 0xfffffffffffffffd, 0x1ff, 0x2, 0x7, 0x8, 0xf, 0x7, 0x9, 0x4, 0x7fff, 0x4355, 0x100000001, 0x7, 0x3, 0x8000000000000000, 0x8, 0x7, 0x4, 0x3, 0x6, 0x6, 0x0, 0x7, 0xe75, 0x1, 0x410001, 0x8, 0x7, 0x20, 0x4, 0x7, 0x4, 0x200, 0x4, 0x1ff, 0x5, 0x9, 0x7, 0x8, 0xf, 0x9, 0x8, 0xfffffffffffffff7, 0x1, 0x3], "2ffa3e20e80e755123e1f42e350d190e3032fa30c3621af4571878aad95fb67f210e12883f526b4e566ef511611abf96d1d9b723613b1fce6def179ed465852003f47d532de2721cc6b407490cd09e96be8bf6d01dcaac750c48d1a4c1d889a0e6b6528742320c00"}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x2, 0x1, 0x106) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0xffff, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) ioctl$auto_TCSBRK2(r1, 0x5409, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x41c400, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'bond_slave_0\x00'}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000003240), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_ADD_RXSA(r4, &(0x7f0000005fc0)={0x0, 0x0, &(0x7f0000005f80)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="610d010000000000000000008f1207ea0000", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010) r6 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYRESHEX=r3, @ANYRES16=r6, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x20048880) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)="03ac382e3b67cb75f8be1bf46dafd30621cecd4c62e6ffd238802c6163e05d29000000cec5ed8ca02e851538876c92b50dc166622421f32b37e568d6c2a85f567cc4c9d26d7dca3eaec3f26b67909b7637c88ff53a6d4cfa49551210c2d28804b5a7b654b0e5e3656bd4a9ff6a26c1006c856c14b0c5416a7c284e09d4f0c2181ea3b2799adbcd686a063bb79740a126d5dfba2205000032fcb7408fbf7500577ff04b5ce630ef5097", 0xfca}, 0x2, 0x0, 0x6, 0xa505}, 0x800}, 0x7, 0xfffffff8) write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f) close_range$auto(0x2, 0x8, 0x0) 2.351525473s ago: executing program 3 (id=1438): mmap$auto(0x0, 0x2020089, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_ht40allow_map_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/ht40allow_map\x00', 0x72501, 0x0) mmap$auto(0x7, 0x20009, 0x204000000000cf, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) unshare$auto(0x40000080) ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300) timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats\x00', 0x2401, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/dummy_hcd.2/usb3/authorized\x00', 0x81, 0x0) write$auto(r0, &(0x7f0000000080)='Y\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0x48da548d) keyctl$auto(0x8, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xcf48) write$auto(r0, &(0x7f0000000040)='\xd7\xf4\xc8\xbf^w\xf5\xb3\xe7\x19\xc6(~u\xe8', 0xffffffffffff8004) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x400008, 0xe1, 0x9b72, 0x2, 0x8000) openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = getpid() process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000240)="7122a084ecbf2adb3e6b30a5", 0x40000000001243}, 0x1, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x4b66, r3) ioctl$auto(0x3, 0x8902, 0x38) mmap$auto(0xfffffffffffffffd, 0x400028, 0xe6, 0x9b72, 0x2, 0x8003) setresuid$auto(0x0, 0x0, 0x0) madvise$auto(0x0, 0x20000a, 0x4) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/usbmon38\x00', 0x58c00, 0x0) 2.214799125s ago: executing program 0 (id=1439): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r0, 0x0, 0xfffffdef) 2.156643647s ago: executing program 2 (id=1440): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000040), r0) sendmsg$auto_WG_CMD_SET_DEVICE(r0, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd700003dcdf25010000000800050001000000140002007767300007000000000000000000000022cda33a8c785d168923573f"], 0x30}}, 0xc0) 2.044087571s ago: executing program 0 (id=1441): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x5, 0x8, 0x5, 0x4]}) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'dummy0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r1, &(0x7f00000006c0)={0x0, 0x9e, &(0x7f00000001c0)={&(0x7f0000000e80)={0x20, r2, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_FW_FLASH_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x1000060, 0xf00000000000000}, 0x400c080) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r4 = gettid() openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x4a42, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x40080, 0x0) fcntl$auto(0xffffffffffffffff, 0x1, r4) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x800002, 0x0, 0x1, 0x0, 0x0, 0x209}, 0x7}, 0x3, 0x0) 800.0252ms ago: executing program 3 (id=1442): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0xf7374674b920089e) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRESOCT=r0, @ANYBLOB="5de1"], 0x1ac}}, 0x48844) recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10000, 0x0) r1 = socket(0x29, 0x2, 0x0) ioctl$auto(r1, 0x89b1, 0x24) sysfs$auto(0x2, 0xd, 0x5) sysfs$auto(0xfffff800, 0x2, 0x10000) r2 = fsopen$auto(0x0, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000a80), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x2c, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x40}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x7}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x20000014) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) fsopen$auto(0x0, 0x400) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x8, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs1\x00', 0x0, 0x0) epoll_create$auto(0x3671) io_uring_setup$auto(0x1d48, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) 798.337768ms ago: executing program 0 (id=1450): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x1e, 0x4, 0x0) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000100), r1) r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = getpgid(r4) r6 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) poll$auto(&(0x7f0000002940)={r6, 0x100, 0x8}, 0x4, 0x8) r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/tcp\x00', 0x40, 0x0) pread64$auto(r7, 0x0, 0x10001, 0x830) waitid$auto_P_PGID(0x2, r5, 0x0, 0x6, 0x0) sendmsg$auto_TIPC_NL_NODE_GET(r2, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)=ANY=[@ANYBLOB="e4010000", @ANYRES16=r3, @ANYBLOB="000227bd7000ffdbdf250d0000006e0000002f1666ceef1df62c28b60a7a992a907a948a85f6298cf8bbbdab12d96d7ebb0339e6e59db54905a36c9538335de312dcd1272bab53be2f835a0fe71b5770116b0fcc279b4444109559ff08eb6e7bf30f9e42b15667985850eb64334f0a3f102461ff1a1d80d8dd88dab500005e0109800c0022001000000000000000dc2bc70e227902633ead3d2dbd26cde3189c1b25c6337a68da0f0800c500010400000800e200", @ANYRES32=r5, @ANYBLOB="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", @ANYRES32=0xee01, @ANYBLOB="0400888004001c0004003b000c00aa8004008880040076800000"], 0x1e4}, 0x1, 0x0, 0x0, 0x800}, 0x20000800) r8 = fcntl$auto_F_DUPFD(r0, 0x0, r0) syz_clone3(&(0x7f0000001180)={0x800, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0), {0x37}, &(0x7f0000000100)=""/4096, 0x1000, &(0x7f0000001100)=""/35, &(0x7f0000001140)=[r5], 0x1, {r8}}, 0x58) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) kexec_load$auto(0x200000000007, 0x1, &(0x7f0000000040)={@kbuf=0x0, 0x2aaa, 0x6c0000c000, 0xc000}, 0x4) 797.912358ms ago: executing program 1 (id=1443): socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kcore\x00', 0x28000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0) socket(0x10, 0x2, 0x4) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop0\x00', 0xe0801, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) move_pages$auto(0x0, 0x1001, 0x0, 0x0, 0x0, 0x0) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) ioctl$auto(0xffffffffffffffff, 0x5393, r0) 797.636851ms ago: executing program 2 (id=1444): sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x20000000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8910, 0x24) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x20a00, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0) ioctl$auto_UBI_IOCATT(r2, 0x40186f40, 0x0) ioctl$auto_UBI_IOCDET(r2, 0x40046f41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0) r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="1b0026bd7400fddbdf2503000000040008000c00038008000680040000801200444c710100898771f1c19f17790485908286dd000004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) socket(0x2d, 0x0, 0x3) ioctl$auto(0x3, 0x89e1, 0x91) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/boot_params/data\x00', 0x2c40, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/sockstat\x00', 0x22000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000001c00)=""/4109, 0x100d) 365.587µs ago: executing program 0 (id=1445): msgctl$auto_MSG_STAT(0x3, 0xb, &(0x7f0000000180)={{0x3, 0xee00, 0x0, 0x8cb7, 0x261b400, 0x9, 0x8}, &(0x7f0000000100)=0xa, &(0x7f0000000140)=0x5, 0xf, 0x6, 0xe14, 0x10000, 0x5, 0x1, 0x6, 0x3892, @inferred=0x0, @inferred=0x0}) stat$auto(&(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)={0x5, 0x0, 0x0, 0xf, 0xee00, 0xffffffffffffffff, 0x0, 0xd5, 0x3, 0x101, 0x3, 0x7, 0x1, 0x4, 0x8, 0x2d79, 0xa7e}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="3c000000b9c215dcf6fd85f8b702c658d3085d5ed95e32593b45a84d00582e969ffe07d5e7e36424098473d195efd5ab1fc185d1f6f4e9e8807bf5a5044ebbba0fa246b911c15e60033c13b126a3f6ad6e42be77c38dfa322c68aab3620c79aedd2e7583b4a8a94b58bd6bd842e2475eabb3407bb9f339dce1841cefed2eb527ba79c0940640ba258fadda780c91455d34b04020bd74d35f306ef191a7d01458aeda8b5c131a6513", @ANYRES16, @ANYBLOB="190026bd7000f9dbdf038004e20f8012010104735cbf12d6b54eaf0002", @ANYRESOCT=r1, @ANYRES8=r2, @ANYRESHEX, @ANYRES64=r3], 0x3c}, 0x1, 0x0, 0x0, 0x400c040}, 0x98c0) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card0/pcm0c/sub6/xrun_injection\x00', 0x1cb842, 0x0) write$auto(r6, 0x0, 0x7) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), r5) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000580)={'bond_slave_0\x00', 0x0}) r9 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000380), r7) sendmsg$auto_BATADV_CMD_SET_MESH(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYRES16=r9, @ANYBLOB="010028bd7000fbdbdf250f00000005002e000000000008000300", @ANYRES32=r8, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) fstat$auto(0xffffffffffffffff, &(0x7f0000000880)={0x100000002, 0x5, 0x7, 0xe7a, 0xee00, r1, 0x0, 0x2cc2, 0x100000001, 0x8001, 0xffffffff, 0x1, 0x985d, 0xfffffffffffffff9, 0x401, 0x1, 0x1}) setresuid$auto(r0, r4, r10) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ptrace$auto(0x10, 0x0, 0x1, 0x7ff) ptrace$auto(0xc, 0x0, 0x9, 0xfffffffffffff6de) unshare$auto(0x40000080) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r11 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) r12 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyua\x00', 0x1052c1, 0x0) ioctl$auto_TIOCSTI2(r12, 0x5412, &(0x7f0000000040)="158f4a2b") openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/rose8/duplex\x00', 0x400000, 0x0) r13 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r13, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r11, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) getpid() 0s ago: executing program 1 (id=1446): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x890) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) r0 = io_uring_setup$auto(0x6, 0x0) bind$auto(0x3, 0x0, 0x6a) ioctl$auto_FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000380)={0x1, 0x2, 0x0, 0x17, '\x00', [{0xa, 0x0, 0x2c, 0xb, 0x8, 0xfffffffffffffffb}, {0x7fff, 0x4, 0xcb, 0x101, 0x9, 0xfff}], [{0x6, 0x9, 0xc48, 0x3659, 0xffff}, {0x6d, 0x7, 0x0, 0x10001, 0x8, 0xf}]}) unshare$auto(0x40000080) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="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", 0x2f8) ioctl$auto_SNDRV_CTL_IOCTL_POWER(r0, 0xc00455d0, &(0x7f0000000340)=0x8) ioctl$auto_SNDCTL_SEQ_SYNC(r1, 0x5101, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1b, 0x0, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) faccessat$auto(0xffffffffffffffff, 0x0, 0x4) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91pds\x1c\xb2J\x99\x00:\x00!\r>\x94f\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcd\x01\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xb6\x00\x00\x00\x00\x00\x00', 0x48, 0x7) ioctl$auto_SNDCTL_SEQ_PANIC(r1, 0x5111, 0x0) kernel console output (not intermixed with test programs): [ 172.767324][ T7430] lookup_user_key+0xbb1/0x1300 [ 172.767342][ T7430] ? __pfx_lookup_user_key+0x10/0x10 [ 172.767359][ T7430] ? __pfx_do_futex+0x10/0x10 [ 172.767378][ T7430] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 172.767398][ T7430] ? xfd_validate_state+0x129/0x190 [ 172.767413][ T7430] ? ksys_write+0x1ac/0x250 [ 172.767432][ T7430] keyctl_keyring_unlink+0x1f/0x1b0 [ 172.767455][ T7430] __do_sys_keyctl+0x3dd/0x5a0 [ 172.767471][ T7430] do_syscall_64+0x10b/0xf80 [ 172.767493][ T7430] ? clear_bhb_loop+0x40/0x90 [ 172.767511][ T7430] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.767526][ T7430] RIP: 0033:0x7fe46519ce59 [ 172.767539][ T7430] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 172.767553][ T7430] RSP: 002b:00007fe465f74028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 172.767568][ T7430] RAX: ffffffffffffffda RBX: 00007fe465416090 RCX: 00007fe46519ce59 [ 172.767578][ T7430] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 172.767587][ T7430] RBP: 00007fe465232d6f R08: 0000000000000008 R09: 0000000000000000 [ 172.767596][ T7430] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 172.767604][ T7430] R13: 00007fe465416128 R14: 00007fe465416090 R15: 00007ffece801cb8 [ 172.767624][ T7430] [ 173.316194][ T7444] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 173.429039][ T7446] netlink: 8 bytes leftover after parsing attributes in process `syz.1.399'. [ 173.933493][ T7451] FAULT_INJECTION: forcing a failure. [ 173.933493][ T7451] name failslab, interval 1, probability 0, space 0, times 0 [ 173.994812][ T7451] CPU: 0 UID: 0 PID: 7451 Comm: syz.1.400 Not tainted syzkaller #0 PREEMPT(full) [ 173.994834][ T7451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 173.994844][ T7451] Call Trace: [ 173.994849][ T7451] [ 173.994855][ T7451] dump_stack_lvl+0x100/0x190 [ 173.994876][ T7451] should_fail_ex.cold+0x5/0xa [ 173.994895][ T7451] ? lsm_blob_alloc+0x68/0x90 [ 173.994915][ T7451] should_failslab+0xc2/0x120 [ 173.994933][ T7451] __kmalloc_noprof+0xe0/0x850 [ 173.994948][ T7451] ? trace_kmem_cache_alloc+0xd5/0x100 [ 173.994968][ T7451] lsm_blob_alloc+0x68/0x90 [ 173.994988][ T7451] security_prepare_creds+0x2d/0x290 [ 173.995009][ T7451] prepare_creds+0x5d6/0x950 [ 173.995027][ T7451] __sys_setfsuid+0xda/0x380 [ 173.995047][ T7451] do_syscall_64+0x10b/0xf80 [ 173.995069][ T7451] ? clear_bhb_loop+0x40/0x90 [ 173.995087][ T7451] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.995102][ T7451] RIP: 0033:0x7facc239ce59 [ 173.995116][ T7451] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 173.995130][ T7451] RSP: 002b:00007facc32df028 EFLAGS: 00000246 ORIG_RAX: 000000000000007a [ 173.995144][ T7451] RAX: ffffffffffffffda RBX: 00007facc2615fa0 RCX: 00007facc239ce59 [ 173.995154][ T7451] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ee00 [ 173.995168][ T7451] RBP: 00007facc2432d6f R08: 0000000000000000 R09: 0000000000000000 [ 173.995178][ T7451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 173.995186][ T7451] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 173.995205][ T7451] [ 174.917712][ T7460] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 175.169514][ T7461] smpboot: CPU 1 is now offline [ 175.259733][ T7472] netlink: ct family unspecified [ 175.272474][ T7470] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'. [ 176.831580][ T7500] netlink: 4 bytes leftover after parsing attributes in process `syz.3.418'. [ 176.952533][ T7478] netlink: 'syz.0.409': attribute type 1 has an invalid length. [ 177.258012][ T5765] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243) [ 177.728794][ T7515] misc userio: No port type given on /dev/userio [ 178.417719][ T7528] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 178.672051][ T7532] smpboot: CPU 1 is now offline [ 179.060296][ T7537] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 179.337955][ T7545] dyndbg: bad flag-op , at start of  [ 179.372668][ T7545] dyndbg: flags parse failed [ 179.576470][ T7548] FAULT_INJECTION: forcing a failure. [ 179.576470][ T7548] name fail_futex, interval 1, probability 0, space 0, times 0 [ 179.772720][ T7548] CPU: 0 UID: 0 PID: 7548 Comm: syz.2.430 Not tainted syzkaller #0 PREEMPT(full) [ 179.772741][ T7548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 179.772750][ T7548] Call Trace: [ 179.772755][ T7548] [ 179.772761][ T7548] dump_stack_lvl+0x100/0x190 [ 179.772782][ T7548] should_fail_ex.cold+0x5/0xa [ 179.772801][ T7548] get_futex_key+0x1d2/0x1510 [ 179.772818][ T7548] ? __pfx_get_futex_key+0x10/0x10 [ 179.772832][ T7548] ? pick_eevdf+0x4d3/0x860 [ 179.772854][ T7548] ? update_se+0x94/0x770 [ 179.772885][ T7548] futex_wait_setup+0x83/0x510 [ 179.772910][ T7548] __futex_wait+0x19f/0x300 [ 179.772931][ T7548] ? __pfx___futex_wait+0x10/0x10 [ 179.772949][ T7548] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 179.772974][ T7548] ? __pfx_futex_wake_mark+0x10/0x10 [ 179.772996][ T7548] ? find_held_lock+0x2b/0x80 [ 179.773014][ T7548] ? futex_wake+0x456/0x530 [ 179.773036][ T7548] futex_wait+0xe6/0x370 [ 179.773056][ T7548] ? __pfx_futex_wait+0x10/0x10 [ 179.773079][ T7548] ? ksys_write+0x190/0x250 [ 179.773095][ T7548] ? ksys_write+0x190/0x250 [ 179.773116][ T7548] do_futex+0x1ef/0x350 [ 179.773132][ T7548] ? __pfx_do_futex+0x10/0x10 [ 179.773148][ T7548] ? cap_task_prctl+0x104/0xa50 [ 179.773171][ T7548] ? __pfx_sched_core_share_pid+0x10/0x10 [ 179.773197][ T7548] __x64_sys_futex+0x34f/0x4d0 [ 179.773216][ T7548] ? __pfx___x64_sys_futex+0x10/0x10 [ 179.773232][ T7548] ? __pfx___do_sys_prctl+0x10/0x10 [ 179.773249][ T7548] ? rcu_is_watching+0x12/0xc0 [ 179.773270][ T7548] do_syscall_64+0x10b/0xf80 [ 179.773293][ T7548] ? clear_bhb_loop+0x40/0x90 [ 179.773311][ T7548] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.773326][ T7548] RIP: 0033:0x7fe46519ce59 [ 179.773338][ T7548] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 179.773352][ T7548] RSP: 002b:00007fe465f950e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 179.773366][ T7548] RAX: ffffffffffffffda RBX: 00007fe465415fa8 RCX: 00007fe46519ce59 [ 179.773376][ T7548] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe465415fa8 [ 179.773384][ T7548] RBP: 00007fe465415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 179.773393][ T7548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.773401][ T7548] R13: 00007fe465416038 R14: 00007ffece801bd0 R15: 00007ffece801cb8 [ 179.773420][ T7548] [ 182.665602][ T7573] Process accounting paused [ 184.046335][ T7631] busy [ 184.629697][ T7642] netlink: 342 bytes leftover after parsing attributes in process `syz.3.449'. [ 186.335665][ T7661] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 186.371349][ T7615] syz.2.444 (7615) used greatest stack depth: 19120 bytes left [ 186.628975][ T7673] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 186.729952][ T7662] smpboot: CPU 1 is now offline [ 187.238404][ T7689] kvm: user requested TSC rate below hardware speed [ 187.600794][ T7697] netlink: 172 bytes leftover after parsing attributes in process `syz.3.466'. [ 187.711004][ T7697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'. [ 188.021797][ T7710] bridge0: port 3(dummy0) entered blocking state [ 188.058792][ T7710] bridge0: port 3(dummy0) entered disabled state [ 188.097138][ T7710] dummy0: entered allmulticast mode [ 188.133214][ T7710] dummy0: entered promiscuous mode [ 188.154229][ T7710] bridge0: port 3(dummy0) entered blocking state [ 188.161631][ T7710] bridge0: port 3(dummy0) entered forwarding state [ 188.262562][ T7713] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 188.816966][ T7723] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 189.024141][ T7725] smpboot: CPU 1 is now offline [ 189.325524][ T7730] FAULT_INJECTION: forcing a failure. [ 189.325524][ T7730] name failslab, interval 1, probability 0, space 0, times 0 [ 189.570838][ T7741] netlink: 342 bytes leftover after parsing attributes in process `syz.2.478'. [ 189.637073][ T7730] CPU: 0 UID: 0 PID: 7730 Comm: syz.0.474 Not tainted syzkaller #0 PREEMPT(full) [ 189.637095][ T7730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 189.637104][ T7730] Call Trace: [ 189.637109][ T7730] [ 189.637115][ T7730] dump_stack_lvl+0x100/0x190 [ 189.637137][ T7730] should_fail_ex.cold+0x5/0xa [ 189.637157][ T7730] ? __pfx_cgroup_show_path+0x10/0x10 [ 189.637181][ T7730] should_failslab+0xc2/0x120 [ 189.637198][ T7730] ? __pfx_cgroup_show_path+0x10/0x10 [ 189.637220][ T7730] __kmalloc_cache_noprof+0x7a/0x6f0 [ 189.637243][ T7730] ? cgroup_show_path+0xb2/0x730 [ 189.637265][ T7730] ? find_held_lock+0x2b/0x80 [ 189.637286][ T7730] ? __pfx_cgroup_show_path+0x10/0x10 [ 189.637308][ T7730] cgroup_show_path+0xb2/0x730 [ 189.637332][ T7730] ? __pfx_cgroup_show_path+0x10/0x10 [ 189.637353][ T7730] kernfs_sop_show_path+0xe9/0x160 [ 189.637369][ T7730] ? __pfx_kernfs_sop_show_path+0x10/0x10 [ 189.637384][ T7730] show_path+0x9e/0x100 [ 189.637405][ T7730] show_mountinfo+0x1d8/0x820 [ 189.637424][ T7730] ? __pfx_show_mountinfo+0x10/0x10 [ 189.637440][ T7730] ? __kvmalloc_node_noprof+0x37b/0xa00 [ 189.637461][ T7730] seq_read_iter+0xbce/0x1270 [ 189.637483][ T7730] ? __pfx_seq_read_iter+0x10/0x10 [ 189.637501][ T7730] vfs_read+0x825/0xb30 [ 189.637520][ T7730] ? __pfx_vfs_read+0x10/0x10 [ 189.637549][ T7730] ksys_read+0x12a/0x250 [ 189.637565][ T7730] ? __pfx_ksys_read+0x10/0x10 [ 189.637584][ T7730] ? rcu_is_watching+0x12/0xc0 [ 189.637604][ T7730] do_syscall_64+0x10b/0xf80 [ 189.637626][ T7730] ? clear_bhb_loop+0x40/0x90 [ 189.637644][ T7730] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.637660][ T7730] RIP: 0033:0x7fe46b19ce59 [ 189.637673][ T7730] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 189.637687][ T7730] RSP: 002b:00007fe46c115028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 189.637702][ T7730] RAX: ffffffffffffffda RBX: 00007fe46b416090 RCX: 00007fe46b19ce59 [ 189.637712][ T7730] RDX: 0000000000001036 RSI: 0000200000000040 RDI: 0000000000000003 [ 189.637721][ T7730] RBP: 00007fe46b232d6f R08: 0000000000000000 R09: 0000000000000000 [ 189.637729][ T7730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 189.637738][ T7730] R13: 00007fe46b416128 R14: 00007fe46b416090 R15: 00007ffcc466c328 [ 189.637759][ T7730] [ 191.317222][ T7769] FAULT_INJECTION: forcing a failure. [ 191.317222][ T7769] name failslab, interval 1, probability 0, space 0, times 0 [ 191.443865][ T7769] CPU: 0 UID: 0 PID: 7769 Comm: syz.2.485 Not tainted syzkaller #0 PREEMPT(full) [ 191.443886][ T7769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 191.443895][ T7769] Call Trace: [ 191.443901][ T7769] [ 191.443907][ T7769] dump_stack_lvl+0x100/0x190 [ 191.443930][ T7769] should_fail_ex.cold+0x5/0xa [ 191.443950][ T7769] should_failslab+0xc2/0x120 [ 191.443968][ T7769] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 191.443992][ T7769] ? __d_alloc+0x34/0xa40 [ 191.444017][ T7769] __d_alloc+0x34/0xa40 [ 191.444038][ T7769] d_alloc+0x4a/0x1e0 [ 191.444058][ T7769] lookup_one_qstr_excl+0x171/0x250 [ 191.444083][ T7769] start_dirop+0x59/0xb0 [ 191.444100][ T7769] simple_start_creating+0xf9/0x110 [ 191.444118][ T7769] ? __pfx_simple_start_creating+0x10/0x10 [ 191.444137][ T7769] ? mntput+0x70/0xa0 [ 191.444152][ T7769] ? simple_pin_fs+0xa3/0x190 [ 191.444168][ T7769] debugfs_start_creating.part.0+0x82/0x170 [ 191.444192][ T7769] __debugfs_create_file+0xb3/0x4f0 [ 191.444218][ T7769] debugfs_create_file_full+0x41/0x60 [ 191.444242][ T7769] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 191.444262][ T7769] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 191.444281][ T7769] ? ida_alloc_range+0x70d/0x830 [ 191.444310][ T7769] ? lockdep_init_map_type+0x5c/0x250 [ 191.444330][ T7769] preinit_net.part.0+0x252/0x920 [ 191.444350][ T7769] copy_net_ns+0x339/0x7c0 [ 191.444373][ T7769] create_new_namespaces+0x3ea/0xac0 [ 191.444397][ T7769] unshare_nsproxy_namespaces+0xf2/0x220 [ 191.444418][ T7769] ksys_unshare+0x438/0xab0 [ 191.444441][ T7769] ? __pfx_ksys_unshare+0x10/0x10 [ 191.444461][ T7769] ? xfd_validate_state+0x129/0x190 [ 191.444480][ T7769] ? ksys_write+0x1ac/0x250 [ 191.444504][ T7769] __x64_sys_unshare+0x31/0x40 [ 191.444525][ T7769] do_syscall_64+0x10b/0xf80 [ 191.444548][ T7769] ? clear_bhb_loop+0x40/0x90 [ 191.444566][ T7769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.444581][ T7769] RIP: 0033:0x7fe46519ce59 [ 191.444594][ T7769] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 191.444608][ T7769] RSP: 002b:00007fe465f95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 191.444622][ T7769] RAX: ffffffffffffffda RBX: 00007fe465415fa0 RCX: 00007fe46519ce59 [ 191.444632][ T7769] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 191.444640][ T7769] RBP: 00007fe465232d6f R08: 0000000000000000 R09: 0000000000000000 [ 191.444649][ T7769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 191.444657][ T7769] R13: 00007fe465416038 R14: 00007fe465415fa0 R15: 00007ffece801cb8 [ 191.444677][ T7769] [ 192.611301][ T7777] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 192.759181][ T7778] smpboot: CPU 1 is now offline [ 192.829134][ T7778] Process accounting resumed [ 194.237211][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.243602][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.825323][ T7830] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 194.934721][ T7831] smpboot: CPU 1 is now offline [ 195.141995][ T29] audit: type=1804 audit(1843105566.332:6): pid=7841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.503" name="/newroot/sys/kernel/debug/tracing/tracing_thresh" dev="tracefs" ino=3540 res=1 errno=0 [ 195.561979][ T7848] netlink: 504 bytes leftover after parsing attributes in process `syz.1.505'. [ 195.992474][ T7863] block2mtd: Using custom MTD label '' for dev [ 196.027351][ T7863] block2mtd: error: cannot open device [ 197.573962][ T7894] netlink: 'syz.1.519': attribute type 8 has an invalid length. [ 199.281680][ T7909] Process accounting resumed [ 199.488536][ T7932] FAULT_INJECTION: forcing a failure. [ 199.488536][ T7932] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.576281][ T7934] netlink: 350 bytes leftover after parsing attributes in process `syz.2.526'. [ 199.588625][ T7932] CPU: 0 UID: 0 PID: 7932 Comm: syz.1.525 Not tainted syzkaller #0 PREEMPT(full) [ 199.588645][ T7932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 199.588654][ T7932] Call Trace: [ 199.588659][ T7932] [ 199.588665][ T7932] dump_stack_lvl+0x100/0x190 [ 199.588686][ T7932] should_fail_ex.cold+0x5/0xa [ 199.588705][ T7932] _copy_to_user+0x32/0xd0 [ 199.588723][ T7932] simple_read_from_buffer+0xcb/0x170 [ 199.588743][ T7932] proc_fail_nth_read+0x1af/0x230 [ 199.588767][ T7932] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 199.588791][ T7932] ? rw_verify_area+0xce/0x6d0 [ 199.588806][ T7932] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 199.588835][ T7932] vfs_read+0x1e4/0xb30 [ 199.588854][ T7932] ? __pfx_vfs_read+0x10/0x10 [ 199.588870][ T7932] ? __fget_files+0x215/0x3d0 [ 199.588892][ T7932] ? __fget_files+0x21f/0x3d0 [ 199.588914][ T7932] ksys_read+0x12a/0x250 [ 199.588930][ T7932] ? __pfx_ksys_read+0x10/0x10 [ 199.588948][ T7932] ? rcu_is_watching+0x12/0xc0 [ 199.588970][ T7932] do_syscall_64+0x10b/0xf80 [ 199.588993][ T7932] ? clear_bhb_loop+0x40/0x90 [ 199.589011][ T7932] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.589026][ T7932] RIP: 0033:0x7facc235d68e [ 199.589038][ T7932] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 199.589053][ T7932] RSP: 002b:00007facc32defe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 199.589068][ T7932] RAX: ffffffffffffffda RBX: 00007facc32df6c0 RCX: 00007facc235d68e [ 199.589077][ T7932] RDX: 000000000000000f RSI: 00007facc32df0a0 RDI: 0000000000000004 [ 199.589086][ T7932] RBP: 00007facc32df090 R08: 0000000000000000 R09: 0000000000000000 [ 199.589095][ T7932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 199.589104][ T7932] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 199.589123][ T7932] [ 200.239604][ T7946] netlink: 16 bytes leftover after parsing attributes in process `syz.1.531'. [ 201.439464][ T5636] Bluetooth: hci3: command 0x0406 tx timeout [ 201.445786][ T5636] Bluetooth: hci2: command 0x0406 tx timeout [ 201.453460][ T5636] Bluetooth: hci0: command 0x0406 tx timeout [ 201.459779][ T5636] Bluetooth: hci1: command 0x0406 tx timeout [ 202.065931][ T7975] random: crng reseeded on system resumption [ 203.086593][ T7998] FAULT_INJECTION: forcing a failure. [ 203.086593][ T7998] name failslab, interval 1, probability 0, space 0, times 0 [ 203.225212][ T7998] CPU: 0 UID: 0 PID: 7998 Comm: syz.1.545 Not tainted syzkaller #0 PREEMPT(full) [ 203.225235][ T7998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 203.225245][ T7998] Call Trace: [ 203.225250][ T7998] [ 203.225256][ T7998] dump_stack_lvl+0x100/0x190 [ 203.225279][ T7998] should_fail_ex.cold+0x5/0xa [ 203.225299][ T7998] should_failslab+0xc2/0x120 [ 203.225319][ T7998] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 203.225341][ T7998] ? key_alloc+0x3c5/0x1310 [ 203.225358][ T7998] ? mark_held_locks+0x40/0x70 [ 203.225376][ T7998] key_alloc+0x3c5/0x1310 [ 203.225400][ T7998] ? __pfx_key_alloc+0x10/0x10 [ 203.225417][ T7998] ? __pfx_key_default_cmp+0x10/0x10 [ 203.225437][ T7998] ? __pfx_keyring_search_iterator+0x10/0x10 [ 203.225459][ T7998] keyring_alloc+0x44/0xc0 [ 203.225480][ T7998] look_up_user_keyrings+0x508/0x790 [ 203.225499][ T7998] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 203.225522][ T7998] lookup_user_key+0xbb1/0x1300 [ 203.225540][ T7998] ? __pfx_lookup_user_key+0x10/0x10 [ 203.225557][ T7998] ? __pfx_do_futex+0x10/0x10 [ 203.225580][ T7998] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 203.225600][ T7998] ? xfd_validate_state+0x129/0x190 [ 203.225616][ T7998] ? ksys_write+0x1ac/0x250 [ 203.225636][ T7998] keyctl_keyring_unlink+0x1f/0x1b0 [ 203.225659][ T7998] __do_sys_keyctl+0x3dd/0x5a0 [ 203.225675][ T7998] do_syscall_64+0x10b/0xf80 [ 203.225697][ T7998] ? clear_bhb_loop+0x40/0x90 [ 203.225715][ T7998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.225731][ T7998] RIP: 0033:0x7facc239ce59 [ 203.225744][ T7998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 203.225759][ T7998] RSP: 002b:00007facc32be028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 203.225774][ T7998] RAX: ffffffffffffffda RBX: 00007facc2616090 RCX: 00007facc239ce59 [ 203.225784][ T7998] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 203.225793][ T7998] RBP: 00007facc2432d6f R08: 0000000000000008 R09: 0000000000000000 [ 203.225802][ T7998] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 203.225811][ T7998] R13: 00007facc2616128 R14: 00007facc2616090 R15: 00007fffed0c65b8 [ 203.225830][ T7998] [ 203.970403][ T8009] FAULT_INJECTION: forcing a failure. [ 203.970403][ T8009] name failslab, interval 1, probability 0, space 0, times 0 [ 204.089450][ T8009] CPU: 0 UID: 0 PID: 8009 Comm: syz.3.546 Not tainted syzkaller #0 PREEMPT(full) [ 204.089472][ T8009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 204.089482][ T8009] Call Trace: [ 204.089488][ T8009] [ 204.089495][ T8009] dump_stack_lvl+0x100/0x190 [ 204.089518][ T8009] should_fail_ex.cold+0x5/0xa [ 204.089538][ T8009] should_failslab+0xc2/0x120 [ 204.089557][ T8009] __kmalloc_cache_noprof+0x7a/0x6f0 [ 204.089578][ T8009] ? assoc_array_insert+0x10b/0x32c0 [ 204.089605][ T8009] assoc_array_insert+0x10b/0x32c0 [ 204.089628][ T8009] ? __mutex_lock+0x26d/0x1b10 [ 204.089643][ T8009] ? key_link+0x2bb/0x390 [ 204.089668][ T8009] ? __pfx_assoc_array_insert+0x10/0x10 [ 204.089690][ T8009] ? __pfx___might_resched+0x10/0x10 [ 204.089707][ T8009] ? keyring_free_preparse+0x9/0x10 [ 204.089729][ T8009] ? down_write+0x146/0x1f0 [ 204.089747][ T8009] __key_link_begin+0xf5/0x260 [ 204.089769][ T8009] key_link+0x103/0x390 [ 204.089789][ T8009] ? __pfx_keyring_search_iterator+0x10/0x10 [ 204.089809][ T8009] ? __pfx_key_link+0x10/0x10 [ 204.089831][ T8009] ? keyring_alloc+0x8e/0xc0 [ 204.089852][ T8009] look_up_user_keyrings+0x539/0x790 [ 204.089870][ T8009] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 204.089893][ T8009] lookup_user_key+0xbb1/0x1300 [ 204.089912][ T8009] ? __pfx_lookup_user_key+0x10/0x10 [ 204.089929][ T8009] ? __pfx_do_futex+0x10/0x10 [ 204.089951][ T8009] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 204.089978][ T8009] ? xfd_validate_state+0x129/0x190 [ 204.089995][ T8009] ? ksys_write+0x1ac/0x250 [ 204.090016][ T8009] keyctl_keyring_unlink+0x1f/0x1b0 [ 204.090040][ T8009] __do_sys_keyctl+0x3dd/0x5a0 [ 204.090056][ T8009] do_syscall_64+0x10b/0xf80 [ 204.090078][ T8009] ? clear_bhb_loop+0x40/0x90 [ 204.090097][ T8009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.090112][ T8009] RIP: 0033:0x7f702999ce59 [ 204.090125][ T8009] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 204.090139][ T8009] RSP: 002b:00007f702a834028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 204.090154][ T8009] RAX: ffffffffffffffda RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 204.090164][ T8009] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 204.090174][ T8009] RBP: 00007f7029a32d6f R08: 0000000000000008 R09: 0000000000000000 [ 204.090183][ T8009] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 204.090193][ T8009] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 204.090213][ T8009] [ 205.495898][ T8026] netlink: ct family unspecified [ 205.943476][ T8041] syz.2.557 uses obsolete (PF_INET,SOCK_PACKET) [ 205.983930][ T8042] bridge0: port 3(batadv0) entered blocking state [ 206.029638][ T8042] bridge0: port 3(batadv0) entered disabled state [ 206.072836][ T8042] batadv0: entered allmulticast mode [ 206.116290][ T8042] batadv0: entered promiscuous mode [ 206.153580][ T8042] bridge0: port 3(batadv0) entered blocking state [ 206.160121][ T8042] bridge0: port 3(batadv0) entered forwarding state [ 206.238794][ T330] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 206.248296][ T330] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 206.815626][ T8060] netlink: 4 bytes leftover after parsing attributes in process `syz.2.561'. [ 207.259349][ T8071] netlink: 'syz.1.564': attribute type 1 has an invalid length. [ 211.510794][ T8157] tipc: Started in network mode [ 211.589753][ T8157] tipc: Node identity ee00, cluster identity 4711 [ 211.691938][ T8157] tipc: Node number set to 60928 [ 213.276881][ T8205] futex_wake_op: syz.3.591 tries to shift op by -1; fix this program [ 213.355319][ T8192] Process accounting resumed [ 213.486758][ T8212] netlink: 8 bytes leftover after parsing attributes in process `syz.2.592'. [ 215.114163][ T8243] random: crng reseeded on system resumption [ 215.548695][ T8254] busy [ 216.066343][ T8259] zswap: compressor not available [ 216.309650][ T57] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow. [ 218.775211][ T8327] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 218.931846][ T8329] smpboot: CPU 1 is now offline [ 220.311632][ T8355] netlink: 'syz.1.622': attribute type 9 has an invalid length. [ 220.390816][ T8356] FAULT_INJECTION: forcing a failure. [ 220.390816][ T8356] name failslab, interval 1, probability 0, space 0, times 0 [ 220.495863][ T8356] CPU: 0 UID: 0 PID: 8356 Comm: syz.3.621 Not tainted syzkaller #0 PREEMPT(full) [ 220.495884][ T8356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 220.495893][ T8356] Call Trace: [ 220.495899][ T8356] [ 220.495904][ T8356] dump_stack_lvl+0x100/0x190 [ 220.495926][ T8356] should_fail_ex.cold+0x5/0xa [ 220.495945][ T8356] ? tomoyo_encode2+0xfb/0x3c0 [ 220.495963][ T8356] should_failslab+0xc2/0x120 [ 220.495981][ T8356] __kmalloc_noprof+0xe0/0x850 [ 220.495994][ T8356] ? d_absolute_path+0x136/0x1b0 [ 220.496012][ T8356] tomoyo_encode2+0xfb/0x3c0 [ 220.496034][ T8356] tomoyo_encode+0x29/0x50 [ 220.496051][ T8356] tomoyo_realpath_from_path+0x18c/0x690 [ 220.496076][ T8356] tomoyo_path_number_perm+0x23c/0x580 [ 220.496097][ T8356] ? tomoyo_path_number_perm+0x22e/0x580 [ 220.496114][ T8356] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 220.496150][ T8356] ? find_held_lock+0x2b/0x80 [ 220.496169][ T8356] ? __fget_files+0x215/0x3d0 [ 220.496185][ T8356] ? hook_file_ioctl_common+0x149/0x410 [ 220.496202][ T8356] ? __fget_files+0x215/0x3d0 [ 220.496222][ T8356] ? __fget_files+0x21f/0x3d0 [ 220.496243][ T8356] security_file_ioctl+0xd3/0x230 [ 220.496260][ T8356] __x64_sys_ioctl+0xb7/0x210 [ 220.496277][ T8356] do_syscall_64+0x10b/0xf80 [ 220.496300][ T8356] ? clear_bhb_loop+0x40/0x90 [ 220.496319][ T8356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.496334][ T8356] RIP: 0033:0x7f702999ce59 [ 220.496348][ T8356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.496362][ T8356] RSP: 002b:00007f702a834028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.496377][ T8356] RAX: ffffffffffffffda RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 220.496387][ T8356] RDX: 0000000000000000 RSI: 00000000401054d5 RDI: 00000000000000c8 [ 220.496395][ T8356] RBP: 00007f702a834090 R08: 0000000000000000 R09: 0000000000000000 [ 220.496404][ T8356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 220.496413][ T8356] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 220.496432][ T8356] [ 220.496447][ T8356] ERROR: Out of memory at tomoyo_realpath_from_path. [ 222.063682][ T8384] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 222.260931][ T8385] smpboot: CPU 1 is now offline [ 223.758670][ T8429] netlink: 504 bytes leftover after parsing attributes in process `syz.1.646'. [ 224.175857][ T8440] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 224.339218][ T8441] smpboot: CPU 1 is now offline [ 224.771049][ T8449] netlink: 20 bytes leftover after parsing attributes in process `syz.1.650'. [ 224.866850][ T8450] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input9 [ 225.904509][ T8425] Process accounting paused [ 226.380888][ T8484] No such timeout policy " " [ 226.414494][ T8484] netlink: Failed to associated timeout policy ' ' [ 226.623626][ T8490] FAULT_INJECTION: forcing a failure. [ 226.623626][ T8490] name failslab, interval 1, probability 0, space 0, times 0 [ 226.659411][ T8492] netlink: 326 bytes leftover after parsing attributes in process `syz.3.663'. [ 226.795099][ T8490] CPU: 0 UID: 0 PID: 8490 Comm: syz.1.662 Not tainted syzkaller #0 PREEMPT(full) [ 226.795122][ T8490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 226.795132][ T8490] Call Trace: [ 226.795143][ T8490] [ 226.795149][ T8490] dump_stack_lvl+0x100/0x190 [ 226.795171][ T8490] should_fail_ex.cold+0x5/0xa [ 226.795192][ T8490] should_failslab+0xc2/0x120 [ 226.795210][ T8490] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 226.795234][ T8490] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 226.795259][ T8490] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 226.795279][ T8490] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 226.795301][ T8490] alloc_inode+0x68/0x250 [ 226.795324][ T8490] new_inode+0x22/0x1c0 [ 226.795348][ T8490] hugetlbfs_get_inode+0x39a/0x700 [ 226.795369][ T8490] ? do_raw_spin_lock+0x128/0x260 [ 226.795389][ T8490] hugetlb_file_setup+0x15b/0x5b0 [ 226.795412][ T8490] memfd_alloc_file+0xc2/0x610 [ 226.795434][ T8490] ? _raw_spin_unlock+0x28/0x50 [ 226.795454][ T8490] ? __pfx_memfd_alloc_file+0x10/0x10 [ 226.795481][ T8490] __do_sys_memfd_create+0x236/0x3d0 [ 226.795506][ T8490] do_syscall_64+0x10b/0xf80 [ 226.795527][ T8490] ? clear_bhb_loop+0x40/0x90 [ 226.795546][ T8490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.795561][ T8490] RIP: 0033:0x7facc239ce59 [ 226.795574][ T8490] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 226.795588][ T8490] RSP: 002b:00007facc32df028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 226.795603][ T8490] RAX: ffffffffffffffda RBX: 00007facc2615fa0 RCX: 00007facc239ce59 [ 226.795613][ T8490] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000040 [ 226.795622][ T8490] RBP: 00007facc2432d6f R08: 0000000000000000 R09: 0000000000000000 [ 226.795631][ T8490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 226.795640][ T8490] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 226.795659][ T8490] [ 227.206221][ T8498] input: f as /devices/virtual/input/input10 [ 228.257956][ T8510] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 228.536971][ T8512] smpboot: CPU 1 is now offline [ 229.095374][ T8518] FAULT_INJECTION: forcing a failure. [ 229.095374][ T8518] name fail_futex, interval 1, probability 0, space 0, times 0 [ 229.277042][ T8518] CPU: 0 UID: 0 PID: 8518 Comm: syz.3.667 Tainted: G L syzkaller #0 PREEMPT(full) [ 229.277069][ T8518] Tainted: [L]=SOFTLOCKUP [ 229.277075][ T8518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 229.277084][ T8518] Call Trace: [ 229.277089][ T8518] [ 229.277096][ T8518] dump_stack_lvl+0x100/0x190 [ 229.277118][ T8518] should_fail_ex.cold+0x5/0xa [ 229.277138][ T8518] get_futex_key+0x1d2/0x1510 [ 229.277156][ T8518] ? __pfx_get_futex_key+0x10/0x10 [ 229.277171][ T8518] ? find_held_lock+0x2b/0x80 [ 229.277190][ T8518] ? futex_wake+0x456/0x530 [ 229.277214][ T8518] futex_wake+0xea/0x530 [ 229.277233][ T8518] ? __pfx_futex_wait+0x10/0x10 [ 229.277252][ T8518] ? __pfx_futex_wake+0x10/0x10 [ 229.277273][ T8518] ? putname+0xb1/0x110 [ 229.277291][ T8518] ? kmem_cache_free+0x127/0x6c0 [ 229.277317][ T8518] do_futex+0x32b/0x350 [ 229.277333][ T8518] ? __pfx_do_futex+0x10/0x10 [ 229.277350][ T8518] ? cap_task_prctl+0x104/0xa50 [ 229.277373][ T8518] ? __pfx_sched_core_share_pid+0x10/0x10 [ 229.277397][ T8518] __x64_sys_futex+0x34f/0x4d0 [ 229.277418][ T8518] ? __pfx___x64_sys_futex+0x10/0x10 [ 229.277435][ T8518] ? __pfx___do_sys_prctl+0x10/0x10 [ 229.277452][ T8518] ? rcu_is_watching+0x12/0xc0 [ 229.277473][ T8518] do_syscall_64+0x10b/0xf80 [ 229.277495][ T8518] ? clear_bhb_loop+0x40/0x90 [ 229.277513][ T8518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.277528][ T8518] RIP: 0033:0x7f702999ce59 [ 229.277542][ T8518] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 229.277557][ T8518] RSP: 002b:00007f702a8550e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 229.277571][ T8518] RAX: ffffffffffffffda RBX: 00007f7029c15fa8 RCX: 00007f702999ce59 [ 229.277581][ T8518] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7029c15fac [ 229.277590][ T8518] RBP: 00007f7029c15fa0 R08: 0000000000000001 R09: 0000000000000000 [ 229.277599][ T8518] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 229.277609][ T8518] R13: 00007f7029c16038 R14: 00007ffcedaf8860 R15: 00007ffcedaf8948 [ 229.277629][ T8518] [ 229.716694][ T8535] FAULT_INJECTION: forcing a failure. [ 229.716694][ T8535] name failslab, interval 1, probability 0, space 0, times 0 [ 229.836599][ T8535] CPU: 0 UID: 0 PID: 8535 Comm: syz.2.670 Tainted: G L syzkaller #0 PREEMPT(full) [ 229.836625][ T8535] Tainted: [L]=SOFTLOCKUP [ 229.836630][ T8535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 229.836645][ T8535] Call Trace: [ 229.836651][ T8535] [ 229.836656][ T8535] dump_stack_lvl+0x100/0x190 [ 229.836679][ T8535] should_fail_ex.cold+0x5/0xa [ 229.836698][ T8535] should_failslab+0xc2/0x120 [ 229.836716][ T8535] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 229.836739][ T8535] ? alloc_empty_file+0x5b/0x1c0 [ 229.836764][ T8535] alloc_empty_file+0x5b/0x1c0 [ 229.836786][ T8535] alloc_file_pseudo+0x13a/0x230 [ 229.836810][ T8535] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 229.836837][ T8535] __shmem_file_setup+0x205/0x460 [ 229.836859][ T8535] ? __pfx___shmem_file_setup+0x10/0x10 [ 229.836882][ T8535] ? vm_area_alloc+0x1f/0x160 [ 229.836911][ T8535] shmem_zero_setup+0x96/0x1b0 [ 229.836928][ T8535] __mmap_region+0x24e9/0x2da0 [ 229.836954][ T8535] ? __pfx___mmap_region+0x10/0x10 [ 229.836996][ T8535] ? lock_acquire+0x1b1/0x370 [ 229.837020][ T8535] ? lapic_next_event+0x10/0x20 [ 229.837036][ T8535] ? clockevents_program_event+0x1ef/0x820 [ 229.837062][ T8535] ? __hrtimer_rearm_deferred+0x24d/0x740 [ 229.837082][ T8535] ? find_held_lock+0x2b/0x80 [ 229.837100][ T8535] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 229.837149][ T8535] mmap_region+0x35d/0x620 [ 229.837164][ T8535] ? rcu_is_watching+0x12/0xc0 [ 229.837183][ T8535] ? __pfx_mmap_region+0x10/0x10 [ 229.837199][ T8535] ? cap_mmap_addr+0x4b/0x120 [ 229.837221][ T8535] ? bpf_lsm_mmap_addr+0x9/0x30 [ 229.837235][ T8535] ? security_mmap_addr+0x71/0x1e0 [ 229.837253][ T8535] ? __get_unmapped_area+0x255/0x3e0 [ 229.837273][ T8535] do_mmap+0xc63/0x12f0 [ 229.837295][ T8535] ? __pfx_do_mmap+0x10/0x10 [ 229.837313][ T8535] ? __pfx_down_write_killable+0x10/0x10 [ 229.837333][ T8535] vm_mmap_pgoff+0x29e/0x470 [ 229.837356][ T8535] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 229.837376][ T8535] ? do_futex+0x192/0x350 [ 229.837393][ T8535] ? __pfx_do_futex+0x10/0x10 [ 229.837407][ T8535] ? __pfx_do_sys_openat2+0x10/0x10 [ 229.837433][ T8535] ksys_mmap_pgoff+0xe4/0x610 [ 229.837451][ T8535] ? __x64_sys_futex+0x358/0x4d0 [ 229.837468][ T8535] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 229.837485][ T8535] ? xfd_validate_state+0x129/0x190 [ 229.837505][ T8535] __x64_sys_mmap+0x125/0x190 [ 229.837524][ T8535] do_syscall_64+0x10b/0xf80 [ 229.837547][ T8535] ? clear_bhb_loop+0x40/0x90 [ 229.837565][ T8535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.837581][ T8535] RIP: 0033:0x7fe46519ce59 [ 229.837594][ T8535] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 229.837609][ T8535] RSP: 002b:00007fe4633d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 229.837623][ T8535] RAX: ffffffffffffffda RBX: 00007fe465416270 RCX: 00007fe46519ce59 [ 229.837633][ T8535] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 229.837642][ T8535] RBP: 00007fe465232d6f R08: fffffffffffffffa R09: 0000000000008000 [ 229.837651][ T8535] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 229.837659][ T8535] R13: 00007fe465416308 R14: 00007fe465416270 R15: 00007ffece801cb8 [ 229.837679][ T8535] [ 230.584860][ T8540] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 231.475461][ T8529] Process accounting paused [ 232.734638][ T8574] FAULT_INJECTION: forcing a failure. [ 232.734638][ T8574] name failslab, interval 1, probability 0, space 0, times 0 [ 232.928228][ T8574] CPU: 0 UID: 0 PID: 8574 Comm: syz.2.679 Tainted: G L syzkaller #0 PREEMPT(full) [ 232.928256][ T8574] Tainted: [L]=SOFTLOCKUP [ 232.928262][ T8574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 232.928272][ T8574] Call Trace: [ 232.928277][ T8574] [ 232.928283][ T8574] dump_stack_lvl+0x100/0x190 [ 232.928306][ T8574] should_fail_ex.cold+0x5/0xa [ 232.928327][ T8574] should_failslab+0xc2/0x120 [ 232.928345][ T8574] __kmalloc_cache_noprof+0x7a/0x6f0 [ 232.928367][ T8574] ? assoc_array_insert+0x10b/0x32c0 [ 232.928394][ T8574] assoc_array_insert+0x10b/0x32c0 [ 232.928417][ T8574] ? __mutex_lock+0x26d/0x1b10 [ 232.928432][ T8574] ? key_link+0x2bb/0x390 [ 232.928459][ T8574] ? __pfx_assoc_array_insert+0x10/0x10 [ 232.928481][ T8574] ? __pfx___might_resched+0x10/0x10 [ 232.928499][ T8574] ? keyring_free_preparse+0x9/0x10 [ 232.928524][ T8574] ? down_write+0x146/0x1f0 [ 232.928543][ T8574] __key_link_begin+0xf5/0x260 [ 232.928565][ T8574] key_link+0x103/0x390 [ 232.928586][ T8574] ? __pfx_keyring_search_iterator+0x10/0x10 [ 232.928606][ T8574] ? __pfx_key_link+0x10/0x10 [ 232.928628][ T8574] ? keyring_alloc+0x8e/0xc0 [ 232.928657][ T8574] look_up_user_keyrings+0x539/0x790 [ 232.928676][ T8574] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 232.928701][ T8574] lookup_user_key+0xbb1/0x1300 [ 232.928720][ T8574] ? __pfx_lookup_user_key+0x10/0x10 [ 232.928737][ T8574] ? __pfx_do_futex+0x10/0x10 [ 232.928759][ T8574] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 232.928780][ T8574] ? xfd_validate_state+0x129/0x190 [ 232.928795][ T8574] ? ksys_write+0x1ac/0x250 [ 232.928815][ T8574] keyctl_keyring_unlink+0x1f/0x1b0 [ 232.928838][ T8574] __do_sys_keyctl+0x3dd/0x5a0 [ 232.928854][ T8574] do_syscall_64+0x10b/0xf80 [ 232.928876][ T8574] ? clear_bhb_loop+0x40/0x90 [ 232.928894][ T8574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.928910][ T8574] RIP: 0033:0x7fe46519ce59 [ 232.928923][ T8574] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 232.928938][ T8574] RSP: 002b:00007fe465f74028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 232.928953][ T8574] RAX: ffffffffffffffda RBX: 00007fe465416090 RCX: 00007fe46519ce59 [ 232.928963][ T8574] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 232.928973][ T8574] RBP: 00007fe465232d6f R08: 0000000000000008 R09: 0000000000000000 [ 232.928981][ T8574] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 232.928990][ T8574] R13: 00007fe465416128 R14: 00007fe465416090 R15: 00007ffece801cb8 [ 232.929011][ T8574] [ 233.525442][ T8581] busy [ 233.848132][ T8586] No such timeout policy "" [ 233.891098][ T8586] netlink: Failed to associated timeout policy '' [ 233.897969][ T8585] sysfs_service_op_store: Client not running :-5: [ 235.115827][ T8619] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1768304430.3171692.0), cmd(2) [ 235.567170][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.683896][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.690823][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.700746][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.708034][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.718392][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.738517][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.757524][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.764624][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.776544][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.783575][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.790412][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.797478][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.804435][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.812670][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.819501][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.830446][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.840355][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.848305][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.856846][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.864172][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.871835][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.880934][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.888831][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.895916][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.904360][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.911202][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.919814][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.926958][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.934271][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.942582][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.949661][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.956730][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.966216][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.973119][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.981073][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.988308][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 235.996522][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.004044][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.011428][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.020173][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.027039][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.035775][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.042794][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.051112][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.058620][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.066178][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.074573][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.082580][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.090902][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.097831][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.106451][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.113380][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.121455][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.128293][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.135798][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.143797][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.150880][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.159421][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.166350][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.173555][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.183929][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.191160][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.198086][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 236.206391][ T5637] Bluetooth: hci0: unexpected event for opcode 0x7c89 [ 239.352678][ T8691] netlink: 342 bytes leftover after parsing attributes in process `syz.1.704'. [ 240.045982][ T8703] netlink: 'syz.0.707': attribute type 5 has an invalid length. [ 240.239395][ T8705] futex_wake_op: syz.1.706 tries to shift op by -1; fix this program [ 241.011396][ T8718] netlink: 342 bytes leftover after parsing attributes in process `syz.0.708'. [ 241.167989][ T8719] netlink: 342 bytes leftover after parsing attributes in process `syz.0.708'. [ 241.192105][ T8727] random: crng reseeded on system resumption [ 243.141262][ T8779] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 243.269286][ T29] audit: type=1800 audit(1843104529.034:7): pid=8774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.722" name="dbroot" dev="configfs" ino=24909 res=0 errno=0 [ 243.309186][ T8779] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 244.136139][ T8796] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input11 [ 244.449511][ T8806] netlink: 4 bytes leftover after parsing attributes in process `syz.3.730'. [ 244.754580][ T8814] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 244.853684][ T8815] smpboot: CPU 1 is now offline [ 245.814262][ T8830] FAULT_INJECTION: forcing a failure. [ 245.814262][ T8830] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 245.881876][ T8830] CPU: 0 UID: 0 PID: 8830 Comm: syz.3.735 Tainted: G L syzkaller #0 PREEMPT(full) [ 245.881902][ T8830] Tainted: [L]=SOFTLOCKUP [ 245.881907][ T8830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 245.881929][ T8830] Call Trace: [ 245.881935][ T8830] [ 245.881941][ T8830] dump_stack_lvl+0x100/0x190 [ 245.881963][ T8830] should_fail_ex.cold+0x5/0xa [ 245.881982][ T8830] _copy_from_user+0x2e/0xd0 [ 245.882000][ T8830] copy_msghdr_from_user+0x9f/0x4f0 [ 245.882025][ T8830] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 245.882056][ T8830] ___sys_sendmsg+0x106/0x1e0 [ 245.882079][ T8830] ? __pfx____sys_sendmsg+0x10/0x10 [ 245.882123][ T8830] __sys_sendmsg+0x170/0x220 [ 245.882142][ T8830] ? __pfx___sys_sendmsg+0x10/0x10 [ 245.882168][ T8830] ? rcu_is_watching+0x12/0xc0 [ 245.882189][ T8830] do_syscall_64+0x10b/0xf80 [ 245.882212][ T8830] ? clear_bhb_loop+0x40/0x90 [ 245.882231][ T8830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.882246][ T8830] RIP: 0033:0x7f702999ce59 [ 245.882259][ T8830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 245.882273][ T8830] RSP: 002b:00007f702a855028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 245.882288][ T8830] RAX: ffffffffffffffda RBX: 00007f7029c15fa0 RCX: 00007f702999ce59 [ 245.882298][ T8830] RDX: 0000000000000810 RSI: 0000200000000580 RDI: 0000000000000003 [ 245.882307][ T8830] RBP: 00007f702a855090 R08: 0000000000000000 R09: 0000000000000000 [ 245.882316][ T8830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 245.882325][ T8830] R13: 00007f7029c16038 R14: 00007f7029c15fa0 R15: 00007ffcedaf8948 [ 245.882343][ T8830] [ 246.991559][ T8842] zswap: compressor not available [ 247.430187][ T8784] Process accounting paused [ 247.603494][ T8856] busy [ 248.125585][ T8867] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 248.309753][ T8870] smpboot: CPU 1 is now offline [ 248.440097][ T8849] Process accounting resumed [ 249.003816][ T8858] Process accounting resumed [ 250.312870][ T8883] futex_wake_op: syz.0.744 tries to shift op by -1; fix this program [ 250.416179][ T8912] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 250.544338][ T8913] smpboot: CPU 1 is now offline [ 250.573463][ T8915] netlink: 504 bytes leftover after parsing attributes in process `syz.1.754'. [ 251.625138][ T8933] netlink: 342 bytes leftover after parsing attributes in process `syz.3.759'. [ 251.696425][ T8933] netlink: 342 bytes leftover after parsing attributes in process `syz.3.759'. [ 252.209594][ T8939] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input12 [ 252.876291][ T8953] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 253.158671][ T8958] smpboot: CPU 1 is now offline [ 253.631585][ T8964] No such timeout policy "X" [ 253.647617][ T8964] netlink: Failed to associated timeout policy 'X' [ 254.223467][ T8971] FAULT_INJECTION: forcing a failure. [ 254.223467][ T8971] name failslab, interval 1, probability 0, space 0, times 0 [ 254.374343][ T8971] CPU: 0 UID: 0 PID: 8971 Comm: syz.3.769 Tainted: G L syzkaller #0 PREEMPT(full) [ 254.374369][ T8971] Tainted: [L]=SOFTLOCKUP [ 254.374376][ T8971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 254.374385][ T8971] Call Trace: [ 254.374391][ T8971] [ 254.374397][ T8971] dump_stack_lvl+0x100/0x190 [ 254.374419][ T8971] should_fail_ex.cold+0x5/0xa [ 254.374440][ T8971] should_failslab+0xc2/0x120 [ 254.374458][ T8971] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 254.374481][ T8971] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 254.374507][ T8971] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 254.374526][ T8971] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 254.374548][ T8971] alloc_inode+0x68/0x250 [ 254.374571][ T8971] new_inode+0x22/0x1c0 [ 254.374595][ T8971] hugetlbfs_get_inode+0x39a/0x700 [ 254.374615][ T8971] ? do_raw_spin_lock+0x128/0x260 [ 254.374635][ T8971] hugetlb_file_setup+0x15b/0x5b0 [ 254.374658][ T8971] memfd_alloc_file+0xc2/0x610 [ 254.374680][ T8971] ? _raw_spin_unlock+0x28/0x50 [ 254.374701][ T8971] ? __pfx_memfd_alloc_file+0x10/0x10 [ 254.374729][ T8971] __do_sys_memfd_create+0x236/0x3d0 [ 254.374754][ T8971] do_syscall_64+0x10b/0xf80 [ 254.374777][ T8971] ? clear_bhb_loop+0x40/0x90 [ 254.374794][ T8971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.374810][ T8971] RIP: 0033:0x7f702999ce59 [ 254.374823][ T8971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 254.374837][ T8971] RSP: 002b:00007f702a855028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 254.374852][ T8971] RAX: ffffffffffffffda RBX: 00007f7029c15fa0 RCX: 00007f702999ce59 [ 254.374862][ T8971] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000040 [ 254.374871][ T8971] RBP: 00007f7029a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 254.374880][ T8971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.374889][ T8971] R13: 00007f7029c16038 R14: 00007f7029c15fa0 R15: 00007ffcedaf8948 [ 254.374908][ T8971] [ 255.708313][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.715140][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.776824][ T8990] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input13 [ 255.789737][ T8989] netlink: 342 bytes leftover after parsing attributes in process `syz.2.772'. [ 255.900051][ T8993] netlink: 342 bytes leftover after parsing attributes in process `syz.2.772'. [ 256.256340][ T8997] Process accounting resumed [ 256.688506][ T29] audit: type=1804 audit(1843104542.448:8): pid=8984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.781" name="/newroot/156/file0" dev="tmpfs" ino=838 res=1 errno=0 [ 256.965210][ T9009] busy [ 258.016378][ T9026] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 258.149591][ T9027] smpboot: CPU 1 is now offline [ 260.655447][ T9065] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 260.857403][ T9068] smpboot: CPU 1 is now offline [ 261.001543][ T9074] netlink: 28 bytes leftover after parsing attributes in process `syz.3.794'. [ 261.129219][ T9079] FAULT_INJECTION: forcing a failure. [ 261.129219][ T9079] name fail_futex, interval 1, probability 0, space 0, times 0 [ 261.255517][ T9082] FAULT_INJECTION: forcing a failure. [ 261.255517][ T9082] name failslab, interval 1, probability 0, space 0, times 0 [ 261.296254][ T9079] CPU: 0 UID: 0 PID: 9079 Comm: syz.3.794 Tainted: G L syzkaller #0 PREEMPT(full) [ 261.296279][ T9079] Tainted: [L]=SOFTLOCKUP [ 261.296285][ T9079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 261.296295][ T9079] Call Trace: [ 261.296300][ T9079] [ 261.296306][ T9079] dump_stack_lvl+0x100/0x190 [ 261.296328][ T9079] should_fail_ex.cold+0x5/0xa [ 261.296348][ T9079] get_futex_key+0x1d2/0x1510 [ 261.296366][ T9079] ? __pfx_get_futex_key+0x10/0x10 [ 261.296393][ T9079] futex_wake+0xea/0x530 [ 261.296414][ T9079] ? __pfx_futex_wake+0x10/0x10 [ 261.296434][ T9079] ? lockdep_hardirqs_on+0x78/0x100 [ 261.296463][ T9079] do_futex+0x32b/0x350 [ 261.296483][ T9079] ? __pfx_do_futex+0x10/0x10 [ 261.296499][ T9079] ? __pfx___might_resched+0x10/0x10 [ 261.296517][ T9079] ? blkcg_maybe_throttle_current+0x5e8/0xeb0 [ 261.296540][ T9079] __x64_sys_futex+0x34f/0x4d0 [ 261.296564][ T9079] ? __pfx___x64_sys_futex+0x10/0x10 [ 261.296581][ T9079] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 261.296597][ T9079] ? rcu_is_watching+0x12/0xc0 [ 261.296614][ T9079] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 261.296632][ T9079] ? rcu_is_watching+0x12/0xc0 [ 261.296655][ T9079] do_syscall_64+0x10b/0xf80 [ 261.296677][ T9079] ? clear_bhb_loop+0x40/0x90 [ 261.296695][ T9079] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.296710][ T9079] RIP: 0033:0x7f702999ce59 [ 261.296723][ T9079] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 261.296737][ T9079] RSP: 002b:00007f702a8340e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 261.296752][ T9079] RAX: ffffffffffffffda RBX: 00007f7029c16098 RCX: 00007f702999ce59 [ 261.296767][ T9079] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7029c1609c [ 261.296777][ T9079] RBP: 00007f7029c16090 R08: 0000000000000001 R09: 0000000000000000 [ 261.296786][ T9079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 261.296796][ T9079] R13: 00007f7029c16128 R14: 00007ffcedaf8860 R15: 00007ffcedaf8948 [ 261.296818][ T9079] [ 261.299575][ T9082] CPU: 0 UID: 0 PID: 9082 Comm: syz.0.796 Tainted: G L syzkaller #0 PREEMPT(full) [ 261.299600][ T9082] Tainted: [L]=SOFTLOCKUP [ 261.299606][ T9082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 261.299615][ T9082] Call Trace: [ 261.299621][ T9082] [ 261.299627][ T9082] dump_stack_lvl+0x100/0x190 [ 261.299646][ T9082] should_fail_ex.cold+0x5/0xa [ 261.299667][ T9082] should_failslab+0xc2/0x120 [ 261.299686][ T9082] __kmalloc_cache_noprof+0x7a/0x6f0 [ 261.299707][ T9082] ? assoc_array_insert+0x10b/0x32c0 [ 261.299733][ T9082] assoc_array_insert+0x10b/0x32c0 [ 261.299756][ T9082] ? __mutex_lock+0x26d/0x1b10 [ 261.299772][ T9082] ? key_link+0x2bb/0x390 [ 261.299797][ T9082] ? __pfx_assoc_array_insert+0x10/0x10 [ 261.299819][ T9082] ? __pfx___might_resched+0x10/0x10 [ 261.299841][ T9082] ? down_write+0x146/0x1f0 [ 261.299859][ T9082] __key_link_begin+0xf5/0x260 [ 261.299881][ T9082] key_link+0x103/0x390 [ 261.299901][ T9082] ? __pfx_keyring_search_iterator+0x10/0x10 [ 261.299922][ T9082] ? __pfx_key_link+0x10/0x10 [ 261.299943][ T9082] ? keyring_alloc+0x8e/0xc0 [ 261.299964][ T9082] look_up_user_keyrings+0x55e/0x790 [ 261.299983][ T9082] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 261.300007][ T9082] lookup_user_key+0xbb1/0x1300 [ 261.300025][ T9082] ? __pfx_lookup_user_key+0x10/0x10 [ 261.300042][ T9082] ? __pfx_do_futex+0x10/0x10 [ 261.300062][ T9082] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 261.300082][ T9082] ? xfd_validate_state+0x129/0x190 [ 261.300098][ T9082] ? ksys_write+0x1ac/0x250 [ 261.300118][ T9082] keyctl_keyring_unlink+0x1f/0x1b0 [ 261.300141][ T9082] __do_sys_keyctl+0x3dd/0x5a0 [ 261.300158][ T9082] do_syscall_64+0x10b/0xf80 [ 261.300182][ T9082] ? clear_bhb_loop+0x40/0x90 [ 261.300200][ T9082] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.300216][ T9082] RIP: 0033:0x7fe46b19ce59 [ 261.300229][ T9082] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 261.300244][ T9082] RSP: 002b:00007fe46c115028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 261.300258][ T9082] RAX: ffffffffffffffda RBX: 00007fe46b416090 RCX: 00007fe46b19ce59 [ 261.300268][ T9082] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 261.300277][ T9082] RBP: 00007fe46b232d6f R08: 0000000000000008 R09: 0000000000000000 [ 261.300287][ T9082] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 261.300296][ T9082] R13: 00007fe46b416128 R14: 00007fe46b416090 R15: 00007ffcc466c328 [ 261.300315][ T9082] [ 261.787329][ T9066] Process accounting resumed [ 263.028706][ T9074] ip6gre0: entered promiscuous mode [ 263.054367][ T9074] ip6gre0: entered allmulticast mode [ 263.673815][ T9097] No such timeout policy "" [ 263.718936][ T9097] netlink: Failed to associated timeout policy '' [ 265.678104][ T9122] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 265.809076][ T9125] smpboot: CPU 1 is now offline [ 266.214263][ T9134] vivid-007: ================= START STATUS ================= [ 266.267845][ T9134] vivid-007: Generate PTS: true [ 266.293491][ T9134] vivid-007: Generate SCR: true [ 266.303682][ T9136] FAULT_INJECTION: forcing a failure. [ 266.303682][ T9136] name failslab, interval 1, probability 0, space 0, times 0 [ 266.326169][ T9134] tpg source WxH: 320x240 (Y'CbCr) [ 266.343042][ T9134] tpg field: 1 [ 266.361818][ T9134] tpg crop: (0,0)/320x240 [ 266.378240][ T9136] CPU: 0 UID: 0 PID: 9136 Comm: syz.2.807 Tainted: G L syzkaller #0 PREEMPT(full) [ 266.378265][ T9136] Tainted: [L]=SOFTLOCKUP [ 266.378271][ T9136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 266.378281][ T9136] Call Trace: [ 266.378286][ T9136] [ 266.378292][ T9136] dump_stack_lvl+0x100/0x190 [ 266.378315][ T9136] should_fail_ex.cold+0x5/0xa [ 266.378335][ T9136] should_failslab+0xc2/0x120 [ 266.378353][ T9136] __kmalloc_cache_noprof+0x7a/0x6f0 [ 266.378378][ T9136] ? assoc_array_insert+0x10b/0x32c0 [ 266.378405][ T9136] assoc_array_insert+0x10b/0x32c0 [ 266.378429][ T9136] ? __mutex_lock+0x26d/0x1b10 [ 266.378444][ T9136] ? key_link+0x2bb/0x390 [ 266.378471][ T9136] ? __pfx_assoc_array_insert+0x10/0x10 [ 266.378492][ T9136] ? __pfx___might_resched+0x10/0x10 [ 266.378509][ T9136] ? keyring_free_preparse+0x9/0x10 [ 266.378532][ T9136] ? down_write+0x146/0x1f0 [ 266.378551][ T9136] __key_link_begin+0xf5/0x260 [ 266.378572][ T9136] key_link+0x103/0x390 [ 266.378593][ T9136] ? __pfx_keyring_search_iterator+0x10/0x10 [ 266.378623][ T9136] ? __pfx_key_link+0x10/0x10 [ 266.378645][ T9136] ? keyring_alloc+0x8e/0xc0 [ 266.378667][ T9136] look_up_user_keyrings+0x539/0x790 [ 266.378686][ T9136] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 266.378710][ T9136] lookup_user_key+0xbb1/0x1300 [ 266.378729][ T9136] ? __pfx_lookup_user_key+0x10/0x10 [ 266.378746][ T9136] ? __pfx_do_futex+0x10/0x10 [ 266.378766][ T9136] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 266.378787][ T9136] ? xfd_validate_state+0x129/0x190 [ 266.378802][ T9136] ? ksys_write+0x1ac/0x250 [ 266.378822][ T9136] keyctl_keyring_unlink+0x1f/0x1b0 [ 266.378846][ T9136] __do_sys_keyctl+0x3dd/0x5a0 [ 266.378862][ T9136] do_syscall_64+0x10b/0xf80 [ 266.378884][ T9136] ? clear_bhb_loop+0x40/0x90 [ 266.378902][ T9136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 266.378918][ T9136] RIP: 0033:0x7fe46519ce59 [ 266.378931][ T9136] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 266.378945][ T9136] RSP: 002b:00007fe465f74028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 266.378960][ T9136] RAX: ffffffffffffffda RBX: 00007fe465416090 RCX: 00007fe46519ce59 [ 266.378970][ T9136] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 266.378979][ T9136] RBP: 00007fe465232d6f R08: 0000000000000008 R09: 0000000000000000 [ 266.378989][ T9136] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 266.378999][ T9136] R13: 00007fe465416128 R14: 00007fe465416090 R15: 00007ffece801cb8 [ 266.379020][ T9136] [ 266.647764][ T9134] tpg compose: (0,0)/320x240 [ 266.652379][ T9134] tpg colorspace: 8 [ 266.656182][ T9134] tpg transfer function: 0/0 [ 266.660858][ T9134] tpg Y'CbCr encoding: 0/0 [ 266.665270][ T9134] tpg quantization: 0/0 [ 266.669457][ T9134] tpg RGB range: 0/2 [ 266.673374][ T9134] vivid-007: ================== END STATUS ================== [ 266.917883][ T9154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.813'. [ 267.806027][ T9171] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 267.926605][ T9173] smpboot: CPU 1 is now offline [ 268.515866][ T9181] futex_wake_op: syz.1.820 tries to shift op by -1; fix this program [ 268.599031][ T9184] netlink: 28 bytes leftover after parsing attributes in process `syz.0.821'. [ 268.678859][ T9184] veth0_vlan: entered allmulticast mode [ 269.372531][ T9203] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 269.845264][ T29] audit: type=1800 audit(1843105552.239:9): pid=9197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.826" name="features" dev="configfs" ino=27539 res=0 errno=0 [ 269.866112][ T9215] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 270.006654][ T9219] smpboot: CPU 1 is now offline [ 270.816877][ T9235] netlink: 8 bytes leftover after parsing attributes in process `syz.3.834'. [ 271.063323][ T9244] WARNING! power/level is deprecated; use power/control instead [ 271.115100][ T9244] netlink: zone id is out of range [ 271.151894][ T9244] netlink: zone id is out of range [ 271.195215][ T9244] netlink: zone id is out of range [ 271.252406][ T9244] netlink: zone id is out of range [ 271.293533][ T9244] netlink: zone id is out of range [ 271.354345][ T9244] netlink: zone id is out of range [ 271.402478][ T9244] netlink: zone id is out of range [ 271.451364][ T9244] netlink: zone id is out of range [ 271.491424][ T9244] netlink: zone id is out of range [ 271.537308][ T9244] netlink: zone id is out of range [ 272.078450][ T9261] FAULT_INJECTION: forcing a failure. [ 272.078450][ T9261] name failslab, interval 1, probability 0, space 0, times 0 [ 272.160830][ T9261] CPU: 0 UID: 0 PID: 9261 Comm: syz.1.840 Tainted: G L syzkaller #0 PREEMPT(full) [ 272.160856][ T9261] Tainted: [L]=SOFTLOCKUP [ 272.160862][ T9261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 272.160871][ T9261] Call Trace: [ 272.160876][ T9261] [ 272.160883][ T9261] dump_stack_lvl+0x100/0x190 [ 272.160904][ T9261] should_fail_ex.cold+0x5/0xa [ 272.160924][ T9261] should_failslab+0xc2/0x120 [ 272.160942][ T9261] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 272.160966][ T9261] ? __d_alloc+0x34/0xa40 [ 272.160985][ T9261] ? lockdep_init_map_type+0x5c/0x250 [ 272.161006][ T9261] __d_alloc+0x34/0xa40 [ 272.161028][ T9261] d_alloc_pseudo+0x1c/0xc0 [ 272.161042][ T9261] alloc_file_pseudo+0xcf/0x230 [ 272.161068][ T9261] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 272.161089][ T9261] ? alloc_fd+0x476/0x790 [ 272.161110][ T9261] sock_alloc_file+0x50/0x210 [ 272.161130][ T9261] __sys_socket+0x1c0/0x260 [ 272.161144][ T9261] ? __pfx___sys_socket+0x10/0x10 [ 272.161163][ T9261] __x64_sys_socket+0x72/0xb0 [ 272.161176][ T9261] ? lockdep_hardirqs_on+0x78/0x100 [ 272.161199][ T9261] do_syscall_64+0x10b/0xf80 [ 272.161220][ T9261] ? clear_bhb_loop+0x40/0x90 [ 272.161238][ T9261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.161254][ T9261] RIP: 0033:0x7facc239ce59 [ 272.161267][ T9261] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 272.161281][ T9261] RSP: 002b:00007facc32df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 272.161295][ T9261] RAX: ffffffffffffffda RBX: 00007facc2615fa0 RCX: 00007facc239ce59 [ 272.161305][ T9261] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 272.161314][ T9261] RBP: 00007facc2432d6f R08: 0000000000000000 R09: 0000000000000000 [ 272.161323][ T9261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 272.161332][ T9261] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 272.161350][ T9261] [ 272.235915][ T9262] unsupported nla_type 113 [ 272.295005][ T9262] netlink: 28 bytes leftover after parsing attributes in process `syz.0.839'. [ 272.442066][ T9266] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 272.533491][ T9267] smpboot: CPU 1 is now offline [ 273.371447][ T9291] netlink: 342 bytes leftover after parsing attributes in process `syz.2.849'. [ 273.530143][ T9294] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 273.664865][ T9296] smpboot: CPU 1 is now offline [ 274.072250][ T9313] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 274.198268][ T9314] smpboot: CPU 1 is now offline [ 274.484676][ T9318] netlink: 4 bytes leftover after parsing attributes in process `syz.2.854'. [ 278.651220][ T9410] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 278.822438][ T9414] smpboot: CPU 1 is now offline [ 278.836929][ T9409] Process accounting paused [ 279.084058][ T9416] Process accounting paused [ 279.089580][ T9419] netlink: 4 bytes leftover after parsing attributes in process `syz.3.873'. [ 279.148354][ T9419] netlink: 'syz.3.873': attribute type 1 has an invalid length. [ 279.178118][ T9419] netlink: 13 bytes leftover after parsing attributes in process `syz.3.873'. [ 279.638877][ T9426] netlink: 4 bytes leftover after parsing attributes in process `syz.1.874'. [ 280.252427][ T9438] net_ratelimit: 6 callbacks suppressed [ 280.252441][ T9438] netlink: zone id is out of range [ 280.324869][ T9438] netlink: zone id is out of range [ 280.358833][ T9438] netlink: zone id is out of range [ 280.391533][ T9438] netlink: zone id is out of range [ 280.425619][ T9438] netlink: zone id is out of range [ 280.491354][ T9438] netlink: zone id is out of range [ 280.508974][ T9444] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 280.572511][ T9438] netlink: zone id is out of range [ 280.616943][ T9438] netlink: zone id is out of range [ 280.671489][ T9438] netlink: zone id is out of range [ 280.722122][ T9447] smpboot: CPU 1 is now offline [ 280.744197][ T9438] netlink: zone id is out of range [ 281.008319][ T5637] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 281.016345][ T5637] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff [ 281.502586][ T9460] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 281.609552][ T9463] smpboot: CPU 1 is now offline [ 282.775477][ T1607] Process accounting resumed [ 282.826832][ T9481] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 283.021702][ T9485] smpboot: CPU 1 is now offline [ 283.890650][ T9437] Process accounting resumed [ 284.407680][ T9511] netlink: 20 bytes leftover after parsing attributes in process `syz.3.890'. [ 284.459334][ T9514] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 284.534702][ T9517] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input14 [ 284.563837][ T29] audit: type=1804 audit(1843104521.978:10): pid=9482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.885" name="/newroot/202/file0" dev="tmpfs" ino=1070 res=1 errno=0 [ 284.687225][ T9515] smpboot: CPU 1 is now offline [ 285.337967][ T9534] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 285.512597][ T9537] smpboot: CPU 1 is now offline [ 286.680963][ T9554] Process accounting paused [ 286.874923][ T9565] netlink: 28 bytes leftover after parsing attributes in process `syz.2.897'. [ 286.952649][ T9565] net_ratelimit: 656 callbacks suppressed [ 286.952664][ T9565] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 287.074842][ T9569] kAFS: Invalid Command on /proc/fs/afs/cells file [ 289.119823][ T9613] netlink: 20 bytes leftover after parsing attributes in process `syz.0.905'. [ 289.166856][ T9615] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 289.187156][ T9619] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input15 [ 289.317641][ T9617] smpboot: CPU 1 is now offline [ 290.292749][ T9638] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 290.421477][ T9640] smpboot: CPU 1 is now offline [ 291.236938][ T29] audit: type=1806 audit(1843104528.645:11): xattr="" res=-22 [ 291.407787][ T29] audit: type=1804 audit(1843104528.815:12): pid=9632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.909" name="/newroot/258/file0" dev="tmpfs" ino=1368 res=1 errno=0 [ 294.208419][ T9709] netlink: 4 bytes leftover after parsing attributes in process `syz.0.917'. [ 294.271591][ T9709] netlink: 'syz.0.917': attribute type 1 has an invalid length. [ 294.328154][ T9709] netlink: 13 bytes leftover after parsing attributes in process `syz.0.917'. [ 294.373974][ T9678] Process accounting paused [ 294.689664][ T9720] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 294.824523][ T9724] smpboot: CPU 1 is now offline [ 295.465164][ T9740] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 295.626760][ T9742] smpboot: CPU 1 is now offline [ 295.752905][ T9745] bridge0: port 3(batadv0) entered blocking state [ 295.798996][ T9745] bridge0: port 3(batadv0) entered disabled state [ 295.874914][ T9726] Process accounting resumed [ 295.887302][ T9745] batadv0: entered allmulticast mode [ 295.946071][ T9745] batadv0: entered promiscuous mode [ 295.992901][ T9745] bridge0: port 3(batadv0) entered blocking state [ 295.999596][ T9745] bridge0: port 3(batadv0) entered forwarding state [ 296.046632][ T9754] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 296.145135][ T9755] smpboot: CPU 1 is now offline [ 296.342332][ T1301] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 296.351634][ T1301] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 296.663780][ T9762] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 296.795543][ T9769] netlink: 28 bytes leftover after parsing attributes in process `syz.3.930'. [ 296.836980][ T9769] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 296.851051][ T9767] smpboot: CPU 1 is now offline [ 296.887338][ T9769] kAFS: Invalid Command on /proc/fs/afs/cells file [ 296.918060][ T9771] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 299.402197][ T9808] netlink: 342 bytes leftover after parsing attributes in process `syz.0.942'. [ 300.041665][ T9824] smpboot: CPU 1 is now offline [ 302.034258][ T9848] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 302.152289][ T9851] smpboot: CPU 1 is now offline [ 303.759180][ T9872] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 303.870514][ T9874] smpboot: CPU 1 is now offline [ 304.547874][ T9884] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 304.695199][ T9887] smpboot: CPU 1 is now offline [ 304.724812][ T9878] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 305.238184][ T9901] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 305.260303][ T9900] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input16 [ 305.363342][ T9902] smpboot: CPU 1 is now offline [ 306.459820][ T9917] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 306.582639][ T9919] smpboot: CPU 1 is now offline [ 306.968757][ T9929] netlink: 342 bytes leftover after parsing attributes in process `syz.1.969'. [ 308.195897][ T9938] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 308.347882][ T9950] netlink: 20 bytes leftover after parsing attributes in process `syz.2.974'. [ 308.857028][ T9960] No such timeout policy " " [ 308.881649][ T9960] netlink: Failed to associated timeout policy ' ' [ 308.928427][ T9963] FAULT_INJECTION: forcing a failure. [ 308.928427][ T9963] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 309.071285][ T9963] CPU: 0 UID: 0 PID: 9963 Comm: syz.3.977 Tainted: G L syzkaller #0 PREEMPT(full) [ 309.071311][ T9963] Tainted: [L]=SOFTLOCKUP [ 309.071316][ T9963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 309.071326][ T9963] Call Trace: [ 309.071331][ T9963] [ 309.071336][ T9963] dump_stack_lvl+0x100/0x190 [ 309.071358][ T9963] should_fail_ex.cold+0x5/0xa [ 309.071377][ T9963] _copy_from_iter+0x43a/0x1690 [ 309.071398][ T9963] ? __pfx__copy_from_iter+0x10/0x10 [ 309.071415][ T9963] ? __asan_memset+0x23/0x50 [ 309.071438][ T9963] ? __build_skb_around+0x278/0x390 [ 309.071464][ T9963] ? is_vmalloc_addr+0x86/0xa0 [ 309.071488][ T9963] netlink_sendmsg+0x808/0xda0 [ 309.071522][ T9963] ? __pfx_netlink_sendmsg+0x10/0x10 [ 309.071546][ T9963] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 309.071573][ T9963] ____sys_sendmsg+0x9e1/0xb70 [ 309.071595][ T9963] ? __pfx_netlink_sendmsg+0x10/0x10 [ 309.071618][ T9963] ? __pfx_____sys_sendmsg+0x10/0x10 [ 309.071643][ T9963] ? __pfx__kstrtoull+0x10/0x10 [ 309.071666][ T9963] ___sys_sendmsg+0x190/0x1e0 [ 309.071689][ T9963] ? __pfx____sys_sendmsg+0x10/0x10 [ 309.071723][ T9963] ? find_held_lock+0x2b/0x80 [ 309.071754][ T9963] __sys_sendmmsg+0x205/0x430 [ 309.071774][ T9963] ? __pfx___sys_sendmmsg+0x10/0x10 [ 309.071798][ T9963] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 309.071820][ T9963] ? fput+0x79/0x100 [ 309.071841][ T9963] ? ksys_write+0x1ac/0x250 [ 309.071857][ T9963] ? __pfx_ksys_write+0x10/0x10 [ 309.071877][ T9963] __x64_sys_sendmmsg+0x9c/0x100 [ 309.071895][ T9963] ? lockdep_hardirqs_on+0x78/0x100 [ 309.071917][ T9963] do_syscall_64+0x10b/0xf80 [ 309.071940][ T9963] ? clear_bhb_loop+0x40/0x90 [ 309.071958][ T9963] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 309.071973][ T9963] RIP: 0033:0x7f702999ce59 [ 309.071986][ T9963] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 309.072000][ T9963] RSP: 002b:00007f702a855028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 309.072015][ T9963] RAX: ffffffffffffffda RBX: 00007f7029c15fa0 RCX: 00007f702999ce59 [ 309.072025][ T9963] RDX: 0000000000000207 RSI: 0000200000000200 RDI: 0000000000000003 [ 309.072034][ T9963] RBP: 00007f702a855090 R08: 0000000000000000 R09: 0000000000000000 [ 309.072043][ T9963] R10: 0000000000004006 R11: 0000000000000246 R12: 0000000000000001 [ 309.072051][ T9963] R13: 00007f7029c16038 R14: 00007f7029c15fa0 R15: 00007ffcedaf8948 [ 309.072070][ T9963] [ 310.175666][ T9971] zswap: compressor not available [ 311.434296][T10011] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input17 [ 313.478362][T10042] FAULT_INJECTION: forcing a failure. [ 313.478362][T10042] name failslab, interval 1, probability 0, space 0, times 0 [ 313.612596][T10042] CPU: 0 UID: 0 PID: 10042 Comm: syz.1.988 Tainted: G L syzkaller #0 PREEMPT(full) [ 313.612625][T10042] Tainted: [L]=SOFTLOCKUP [ 313.612631][T10042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 313.612641][T10042] Call Trace: [ 313.612647][T10042] [ 313.612653][T10042] dump_stack_lvl+0x100/0x190 [ 313.612675][T10042] should_fail_ex.cold+0x5/0xa [ 313.612695][T10042] should_failslab+0xc2/0x120 [ 313.612714][T10042] __kmalloc_cache_noprof+0x7a/0x6f0 [ 313.612735][T10042] ? proc_self_get_link+0x189/0x1f0 [ 313.612756][T10042] proc_self_get_link+0x189/0x1f0 [ 313.612775][T10042] pick_link+0xac2/0x13c0 [ 313.612790][T10042] ? __pfx_proc_self_get_link+0x10/0x10 [ 313.612809][T10042] step_into_slowpath+0x9ba/0xf90 [ 313.612829][T10042] ? __pfx_step_into_slowpath+0x10/0x10 [ 313.612849][T10042] ? lookup_fast+0x2da/0x600 [ 313.612862][T10042] ? inode_permission+0x374/0x620 [ 313.612887][T10042] link_path_walk+0xf28/0x1cc0 [ 313.612909][T10042] path_openat+0x1be/0x31a0 [ 313.612927][T10042] ? kasan_save_stack+0x3f/0x50 [ 313.612940][T10042] ? kasan_save_stack+0x30/0x50 [ 313.612954][T10042] ? kasan_save_track+0x14/0x30 [ 313.612968][T10042] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 313.612996][T10042] ? __pfx_path_openat+0x10/0x10 [ 313.613022][T10042] do_file_open+0x20e/0x430 [ 313.613042][T10042] ? __pfx_do_file_open+0x10/0x10 [ 313.613074][T10042] ? alloc_fd+0x476/0x790 [ 313.613094][T10042] ? do_getname+0x191/0x390 [ 313.613116][T10042] do_sys_openat2+0x10d/0x1e0 [ 313.613139][T10042] ? __pfx_do_sys_openat2+0x10/0x10 [ 313.613168][T10042] __x64_sys_openat+0x12d/0x210 [ 313.613191][T10042] ? __pfx___x64_sys_openat+0x10/0x10 [ 313.613213][T10042] ? ksys_write+0x1ac/0x250 [ 313.613232][T10042] ? rcu_is_watching+0x12/0xc0 [ 313.613252][T10042] do_syscall_64+0x10b/0xf80 [ 313.613275][T10042] ? clear_bhb_loop+0x40/0x90 [ 313.613293][T10042] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.613309][T10042] RIP: 0033:0x7facc235d68e [ 313.613323][T10042] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 313.613337][T10042] RSP: 002b:00007facc32bdec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 313.613352][T10042] RAX: ffffffffffffffda RBX: 00007facc32be6c0 RCX: 00007facc235d68e [ 313.613363][T10042] RDX: 0000000000000002 RSI: 00007facc32bdf90 RDI: ffffffffffffff9c [ 313.613373][T10042] RBP: 00007facc2432d6f R08: 0000000000000000 R09: 0000000000000000 [ 313.613383][T10042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.613392][T10042] R13: 00007facc2616128 R14: 00007facc2616090 R15: 00007fffed0c65b8 [ 313.613411][T10042] [ 314.339854][T10054] netlink: 172 bytes leftover after parsing attributes in process `syz.1.989'. [ 316.104693][T10032] Process accounting paused [ 316.546585][T10094] busy [ 317.178154][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.186281][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.310971][T10075] [U]  [ 317.928128][T10095] Process accounting resumed [ 318.347639][T10124] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1005'. [ 318.446684][T10131] FAULT_INJECTION: forcing a failure. [ 318.446684][T10131] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 318.544704][T10131] CPU: 0 UID: 0 PID: 10131 Comm: syz.1.1006 Tainted: G L syzkaller #0 PREEMPT(full) [ 318.544729][T10131] Tainted: [L]=SOFTLOCKUP [ 318.544734][T10131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 318.544743][T10131] Call Trace: [ 318.544748][T10131] [ 318.544754][T10131] dump_stack_lvl+0x100/0x190 [ 318.544775][T10131] should_fail_ex.cold+0x5/0xa [ 318.544794][T10131] strncpy_from_user+0x3b/0x2d0 [ 318.544813][T10131] do_getname+0x78/0x390 [ 318.544838][T10131] __x64_sys_chroot+0xaa/0x360 [ 318.544857][T10131] ? ksys_write+0x1ac/0x250 [ 318.544874][T10131] ? __pfx___x64_sys_chroot+0x10/0x10 [ 318.544909][T10131] ? rcu_is_watching+0x12/0xc0 [ 318.544929][T10131] do_syscall_64+0x10b/0xf80 [ 318.544952][T10131] ? clear_bhb_loop+0x40/0x90 [ 318.544970][T10131] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.544985][T10131] RIP: 0033:0x7facc239ce59 [ 318.544998][T10131] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 318.545012][T10131] RSP: 002b:00007facc32be028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a1 [ 318.545027][T10131] RAX: ffffffffffffffda RBX: 00007facc2616090 RCX: 00007facc239ce59 [ 318.545037][T10131] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 318.545045][T10131] RBP: 00007facc32be090 R08: 0000000000000000 R09: 0000000000000000 [ 318.545054][T10131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 318.545063][T10131] R13: 00007facc2616128 R14: 00007facc2616090 R15: 00007fffed0c65b8 [ 318.545082][T10131] [ 319.694417][T10150] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1012'. [ 320.231508][T10173] __vm_enough_memory: pid: 10173, comm: syz.1.1017, bytes: 4398046457856 not enough memory for the allocation [ 321.082221][T10192] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1021'. [ 321.817342][T10205] FAULT_INJECTION: forcing a failure. [ 321.817342][T10205] name failslab, interval 1, probability 0, space 0, times 0 [ 321.998055][T10205] CPU: 0 UID: 0 PID: 10205 Comm: syz.1.1025 Tainted: G L syzkaller #0 PREEMPT(full) [ 321.998082][T10205] Tainted: [L]=SOFTLOCKUP [ 321.998087][T10205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 321.998097][T10205] Call Trace: [ 321.998102][T10205] [ 321.998108][T10205] dump_stack_lvl+0x100/0x190 [ 321.998131][T10205] should_fail_ex.cold+0x5/0xa [ 321.998152][T10205] should_failslab+0xc2/0x120 [ 321.998170][T10205] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 321.998193][T10205] ? security_inode_alloc+0x3b/0x2c0 [ 321.998209][T10205] ? lockdep_init_map_type+0x5c/0x250 [ 321.998227][T10205] security_inode_alloc+0x3b/0x2c0 [ 321.998243][T10205] inode_init_always_gfp+0xcc0/0x1000 [ 321.998266][T10205] alloc_inode+0x8e/0x250 [ 321.998288][T10205] new_inode+0x22/0x1c0 [ 321.998313][T10205] hugetlbfs_get_inode+0x39a/0x700 [ 321.998334][T10205] ? do_raw_spin_lock+0x128/0x260 [ 321.998353][T10205] hugetlb_file_setup+0x15b/0x5b0 [ 321.998376][T10205] memfd_alloc_file+0xc2/0x610 [ 321.998398][T10205] ? _raw_spin_unlock+0x28/0x50 [ 321.998418][T10205] ? __pfx_memfd_alloc_file+0x10/0x10 [ 321.998446][T10205] __do_sys_memfd_create+0x236/0x3d0 [ 321.998471][T10205] do_syscall_64+0x10b/0xf80 [ 321.998493][T10205] ? clear_bhb_loop+0x40/0x90 [ 321.998511][T10205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.998527][T10205] RIP: 0033:0x7facc239ce59 [ 321.998540][T10205] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 321.998554][T10205] RSP: 002b:00007facc32df028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 321.998569][T10205] RAX: ffffffffffffffda RBX: 00007facc2615fa0 RCX: 00007facc239ce59 [ 321.998580][T10205] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000040 [ 321.998589][T10205] RBP: 00007facc2432d6f R08: 0000000000000000 R09: 0000000000000000 [ 321.998598][T10205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.998607][T10205] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 321.998627][T10205] [ 322.701957][T10210] futex_wake_op: syz.3.1027 tries to shift op by -2048; fix this program [ 322.876257][T10222] synth uevent: /bus/usb/drivers/zaurus: unknown uevent action string [ 322.885738][T10210] futex_wake_op: syz.3.1027 tries to shift op by -2048; fix this program [ 322.982211][T10220] 0x000000000001-0x000000020000 : "" [ 323.361713][ T4943] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 323.643724][T10220] ftl_cs: FTL header corrupt! [ 325.384978][T10244] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 325.435448][T10217] Process accounting resumed [ 325.497464][ T5637] Bluetooth: hci2: command 0x0406 tx timeout [ 325.698590][T10250] smpboot: CPU 1 is now offline [ 326.315540][T10249] Process accounting paused [ 327.477722][T10281] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 327.577394][ T5637] Bluetooth: hci2: command 0x0406 tx timeout [ 327.623076][T10281] File: /dev/nullb0 PID: 10281 Comm: syz.2.1044 [ 327.710225][T10283] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1045'. [ 328.322750][T10263] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 328.549768][T10301] FAULT_INJECTION: forcing a failure. [ 328.549768][T10301] name failslab, interval 1, probability 0, space 0, times 0 [ 328.803350][T10301] CPU: 0 UID: 0 PID: 10301 Comm: syz.3.1047 Tainted: G L syzkaller #0 PREEMPT(full) [ 328.803383][T10301] Tainted: [L]=SOFTLOCKUP [ 328.803389][T10301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 328.803398][T10301] Call Trace: [ 328.803404][T10301] [ 328.803411][T10301] dump_stack_lvl+0x100/0x190 [ 328.803436][T10301] should_fail_ex.cold+0x5/0xa [ 328.803456][T10301] should_failslab+0xc2/0x120 [ 328.803475][T10301] __kmalloc_cache_noprof+0x7a/0x6f0 [ 328.803496][T10301] ? assoc_array_insert+0x10b/0x32c0 [ 328.803522][T10301] assoc_array_insert+0x10b/0x32c0 [ 328.803546][T10301] ? __mutex_lock+0x26d/0x1b10 [ 328.803561][T10301] ? key_link+0x2bb/0x390 [ 328.803587][T10301] ? __pfx_assoc_array_insert+0x10/0x10 [ 328.803609][T10301] ? __pfx___might_resched+0x10/0x10 [ 328.803626][T10301] ? keyring_free_preparse+0x9/0x10 [ 328.803649][T10301] ? down_write+0x146/0x1f0 [ 328.803669][T10301] __key_link_begin+0xf5/0x260 [ 328.803690][T10301] key_link+0x103/0x390 [ 328.803711][T10301] ? __pfx_keyring_search_iterator+0x10/0x10 [ 328.803731][T10301] ? __pfx_key_link+0x10/0x10 [ 328.803753][T10301] ? keyring_alloc+0x8e/0xc0 [ 328.803774][T10301] look_up_user_keyrings+0x539/0x790 [ 328.803792][T10301] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 328.803816][T10301] lookup_user_key+0xbb1/0x1300 [ 328.803834][T10301] ? __pfx_lookup_user_key+0x10/0x10 [ 328.803850][T10301] ? __pfx_do_futex+0x10/0x10 [ 328.803870][T10301] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 328.803891][T10301] ? xfd_validate_state+0x129/0x190 [ 328.803906][T10301] ? ksys_write+0x1ac/0x250 [ 328.803927][T10301] keyctl_keyring_unlink+0x1f/0x1b0 [ 328.803950][T10301] __do_sys_keyctl+0x3dd/0x5a0 [ 328.803966][T10301] do_syscall_64+0x10b/0xf80 [ 328.803988][T10301] ? clear_bhb_loop+0x40/0x90 [ 328.804006][T10301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.804022][T10301] RIP: 0033:0x7f702999ce59 [ 328.804035][T10301] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 328.804050][T10301] RSP: 002b:00007f702a834028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 328.804066][T10301] RAX: ffffffffffffffda RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 328.804076][T10301] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 328.804086][T10301] RBP: 00007f7029a32d6f R08: 0000000000000008 R09: 0000000000000000 [ 328.804095][T10301] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 328.804104][T10301] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 328.804138][T10301] [ 329.104268][T10269] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 329.841465][T10310] FAULT_INJECTION: forcing a failure. [ 329.841465][T10310] name failslab, interval 1, probability 0, space 0, times 0 [ 329.854429][T10310] CPU: 0 UID: 0 PID: 10310 Comm: syz.2.1050 Tainted: G L syzkaller #0 PREEMPT(full) [ 329.854455][T10310] Tainted: [L]=SOFTLOCKUP [ 329.854461][T10310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 329.854470][T10310] Call Trace: [ 329.854476][T10310] [ 329.854482][T10310] dump_stack_lvl+0x100/0x190 [ 329.854503][T10310] should_fail_ex.cold+0x5/0xa [ 329.854524][T10310] ? fib_default_rule_add+0x4f/0x420 [ 329.854544][T10310] should_failslab+0xc2/0x120 [ 329.854563][T10310] __kmalloc_noprof+0xe0/0x850 [ 329.854577][T10310] ? ipmr_new_table_set+0xf9/0x150 [ 329.854599][T10310] fib_default_rule_add+0x4f/0x420 [ 329.854622][T10310] ipmr_net_init+0x2b4/0x5e0 [ 329.854644][T10310] ? __pfx_ipmr_net_init+0x10/0x10 [ 329.854665][T10310] ? mptcp_net_init+0x4d0/0x620 [ 329.854688][T10310] ? __pfx_ipmr_net_init+0x10/0x10 [ 329.854709][T10310] ops_init+0x1e2/0x5f0 [ 329.854729][T10310] setup_net+0x118/0x3a0 [ 329.854748][T10310] ? __pfx_setup_net+0x10/0x10 [ 329.854768][T10310] ? mutex_init_lockdep+0xf1/0x120 [ 329.854788][T10310] copy_net_ns+0x46f/0x7c0 [ 329.854809][T10310] create_new_namespaces+0x3ea/0xac0 [ 329.854833][T10310] unshare_nsproxy_namespaces+0xf2/0x220 [ 329.854854][T10310] ksys_unshare+0x438/0xab0 [ 329.854877][T10310] ? __pfx_ksys_unshare+0x10/0x10 [ 329.854897][T10310] ? xfd_validate_state+0x129/0x190 [ 329.854919][T10310] __x64_sys_unshare+0x31/0x40 [ 329.854940][T10310] do_syscall_64+0x10b/0xf80 [ 329.854962][T10310] ? clear_bhb_loop+0x40/0x90 [ 329.854980][T10310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.854996][T10310] RIP: 0033:0x7fe46519ce59 [ 329.855009][T10310] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 329.855023][T10310] RSP: 002b:00007fe465f95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 329.855038][T10310] RAX: ffffffffffffffda RBX: 00007fe465415fa0 RCX: 00007fe46519ce59 [ 329.855048][T10310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 329.855057][T10310] RBP: 00007fe465232d6f R08: 0000000000000000 R09: 0000000000000000 [ 329.855066][T10310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 329.855075][T10310] R13: 00007fe465416038 R14: 00007fe465415fa0 R15: 00007ffece801cb8 [ 329.855094][T10310] [ 331.463446][T10328] ubi0: attaching mtd0 [ 331.764950][T10328] ubi0: scanning is finished [ 331.947716][T10328] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 332.685210][T10328] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 332.884184][T10365] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1061'. [ 332.989100][T10366] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 333.175139][T10369] smpboot: CPU 1 is now offline [ 333.880690][T10052] syz.3.987 (10052) used greatest stack depth: 18312 bytes left [ 334.427327][ T29] audit: type=1806 audit(1843105594.816:13): xattr="" res=-22 [ 336.043424][T10431] FAULT_INJECTION: forcing a failure. [ 336.043424][T10431] name failslab, interval 1, probability 0, space 0, times 0 [ 336.175216][T10431] CPU: 0 UID: 0 PID: 10431 Comm: syz.0.1074 Tainted: G L syzkaller #0 PREEMPT(full) [ 336.175243][T10431] Tainted: [L]=SOFTLOCKUP [ 336.175249][T10431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 336.175258][T10431] Call Trace: [ 336.175263][T10431] [ 336.175270][T10431] dump_stack_lvl+0x100/0x190 [ 336.175291][T10431] should_fail_ex.cold+0x5/0xa [ 336.175311][T10431] should_failslab+0xc2/0x120 [ 336.175330][T10431] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 336.175354][T10431] ? __d_alloc+0x34/0xa40 [ 336.175378][T10431] __d_alloc+0x34/0xa40 [ 336.175402][T10431] d_alloc+0x4a/0x1e0 [ 336.175422][T10431] lookup_one_qstr_excl+0x171/0x250 [ 336.175454][T10431] start_dirop+0x59/0xb0 [ 336.175473][T10431] simple_start_creating+0xf9/0x110 [ 336.175492][T10431] ? __pfx_simple_start_creating+0x10/0x10 [ 336.175511][T10431] ? mntput+0x70/0xa0 [ 336.175527][T10431] ? simple_pin_fs+0xa3/0x190 [ 336.175543][T10431] debugfs_start_creating.part.0+0x82/0x170 [ 336.175568][T10431] __debugfs_create_file+0xb3/0x4f0 [ 336.175594][T10431] debugfs_create_file_full+0x41/0x60 [ 336.175619][T10431] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 336.175639][T10431] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 336.175675][T10431] ? lockdep_init_map_type+0x5c/0x250 [ 336.175694][T10431] preinit_net.part.0+0x43b/0x920 [ 336.175715][T10431] copy_net_ns+0x339/0x7c0 [ 336.175736][T10431] create_new_namespaces+0x3ea/0xac0 [ 336.175761][T10431] unshare_nsproxy_namespaces+0xf2/0x220 [ 336.175782][T10431] ksys_unshare+0x438/0xab0 [ 336.175805][T10431] ? __pfx_ksys_unshare+0x10/0x10 [ 336.175825][T10431] ? xfd_validate_state+0x129/0x190 [ 336.175841][T10431] ? ksys_write+0x1ac/0x250 [ 336.175864][T10431] __x64_sys_unshare+0x31/0x40 [ 336.175885][T10431] do_syscall_64+0x10b/0xf80 [ 336.175908][T10431] ? clear_bhb_loop+0x40/0x90 [ 336.175926][T10431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.175942][T10431] RIP: 0033:0x7fe46b19ce59 [ 336.175955][T10431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 336.175970][T10431] RSP: 002b:00007fe46c136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 336.175985][T10431] RAX: ffffffffffffffda RBX: 00007fe46b415fa0 RCX: 00007fe46b19ce59 [ 336.175995][T10431] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 336.176004][T10431] RBP: 00007fe46b232d6f R08: 0000000000000000 R09: 0000000000000000 [ 336.176014][T10431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.176023][T10431] R13: 00007fe46b416038 R14: 00007fe46b415fa0 R15: 00007ffcc466c328 [ 336.176044][T10431] [ 337.406345][T10435] FAULT_INJECTION: forcing a failure. [ 337.406345][T10435] name failslab, interval 1, probability 0, space 0, times 0 [ 337.437186][T10435] CPU: 0 UID: 0 PID: 10435 Comm: syz.2.1075 Tainted: G L syzkaller #0 PREEMPT(full) [ 337.437211][T10435] Tainted: [L]=SOFTLOCKUP [ 337.437216][T10435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 337.437225][T10435] Call Trace: [ 337.437230][T10435] [ 337.437236][T10435] dump_stack_lvl+0x100/0x190 [ 337.437257][T10435] should_fail_ex.cold+0x5/0xa [ 337.437277][T10435] should_failslab+0xc2/0x120 [ 337.437295][T10435] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 337.437319][T10435] ? skb_clone+0x190/0x400 [ 337.437340][T10435] skb_clone+0x190/0x400 [ 337.437358][T10435] netlink_deliver_tap+0xaed/0xcc0 [ 337.437387][T10435] netlink_unicast+0x62b/0x850 [ 337.437412][T10435] ? __pfx_netlink_unicast+0x10/0x10 [ 337.437433][T10435] ? __build_skb_around+0x278/0x390 [ 337.437457][T10435] ? is_vmalloc_addr+0x86/0xa0 [ 337.437482][T10435] netlink_sendmsg+0x8b0/0xda0 [ 337.437508][T10435] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.437532][T10435] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 337.437559][T10435] ____sys_sendmsg+0x9e1/0xb70 [ 337.437581][T10435] ? __pfx_netlink_sendmsg+0x10/0x10 [ 337.437604][T10435] ? __pfx_____sys_sendmsg+0x10/0x10 [ 337.437629][T10435] ? __pfx__kstrtoull+0x10/0x10 [ 337.437652][T10435] ___sys_sendmsg+0x190/0x1e0 [ 337.437676][T10435] ? __pfx____sys_sendmsg+0x10/0x10 [ 337.437707][T10435] ? find_held_lock+0x2b/0x80 [ 337.437744][T10435] __sys_sendmmsg+0x205/0x430 [ 337.437765][T10435] ? __pfx___sys_sendmmsg+0x10/0x10 [ 337.437789][T10435] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 337.437812][T10435] ? fput+0x79/0x100 [ 337.437833][T10435] ? ksys_write+0x1ac/0x250 [ 337.437850][T10435] ? __pfx_ksys_write+0x10/0x10 [ 337.437870][T10435] __x64_sys_sendmmsg+0x9c/0x100 [ 337.437888][T10435] ? lockdep_hardirqs_on+0x78/0x100 [ 337.437910][T10435] do_syscall_64+0x10b/0xf80 [ 337.437933][T10435] ? clear_bhb_loop+0x40/0x90 [ 337.437952][T10435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.437967][T10435] RIP: 0033:0x7fe46519ce59 [ 337.437980][T10435] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.437994][T10435] RSP: 002b:00007fe465f95028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 337.438009][T10435] RAX: ffffffffffffffda RBX: 00007fe465415fa0 RCX: 00007fe46519ce59 [ 337.438019][T10435] RDX: 0000000000000207 RSI: 0000200000000200 RDI: 0000000000000003 [ 337.438028][T10435] RBP: 00007fe465f95090 R08: 0000000000000000 R09: 0000000000000000 [ 337.438037][T10435] R10: 0000000000004006 R11: 0000000000000246 R12: 0000000000000001 [ 337.438046][T10435] R13: 00007fe465416038 R14: 00007fe465415fa0 R15: 00007ffece801cb8 [ 337.438064][T10435] [ 338.479534][T10454] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 338.821663][T10460] busy [ 341.249518][T10513] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1096'. [ 342.332984][T10549] netlink: ct family unspecified [ 343.417046][T10580] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 343.596967][T10582] smpboot: CPU 1 is now offline [ 343.631059][T10588] MTRR 1 not used [ 346.104483][T10625] No such timeout policy "" [ 346.126468][T10625] netlink: Failed to associated timeout policy '' [ 346.746574][T10626] Process accounting resumed [ 347.021819][T10635] hub 1-0:1.0: USB hub found [ 347.044835][T10635] hub 1-0:1.0: 1 port detected [ 347.971115][T10639] Process accounting paused [ 348.601711][T10661] FAULT_INJECTION: forcing a failure. [ 348.601711][T10661] name failslab, interval 1, probability 0, space 0, times 0 [ 348.663889][T10661] CPU: 0 UID: 0 PID: 10661 Comm: syz.3.1129 Tainted: G L syzkaller #0 PREEMPT(full) [ 348.663915][T10661] Tainted: [L]=SOFTLOCKUP [ 348.663921][T10661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 348.663930][T10661] Call Trace: [ 348.664006][T10661] [ 348.664012][T10661] dump_stack_lvl+0x100/0x190 [ 348.664107][T10661] should_fail_ex.cold+0x5/0xa [ 348.664142][T10661] should_failslab+0xc2/0x120 [ 348.664175][T10661] __kmalloc_cache_noprof+0x7a/0x6f0 [ 348.664203][T10661] ? assoc_array_insert+0x10b/0x32c0 [ 348.664297][T10661] assoc_array_insert+0x10b/0x32c0 [ 348.664321][T10661] ? __mutex_lock+0x26d/0x1b10 [ 348.664395][T10661] ? key_link+0x2bb/0x390 [ 348.664551][T10661] ? __pfx_assoc_array_insert+0x10/0x10 [ 348.664573][T10661] ? __pfx___might_resched+0x10/0x10 [ 348.664609][T10661] ? down_write+0x146/0x1f0 [ 348.664628][T10661] __key_link_begin+0xf5/0x260 [ 348.664650][T10661] key_link+0x103/0x390 [ 348.664670][T10661] ? __pfx_keyring_search_iterator+0x10/0x10 [ 348.664691][T10661] ? __pfx_key_link+0x10/0x10 [ 348.664712][T10661] ? keyring_alloc+0x8e/0xc0 [ 348.664733][T10661] look_up_user_keyrings+0x55e/0x790 [ 348.664752][T10661] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 348.664775][T10661] lookup_user_key+0xbb1/0x1300 [ 348.664794][T10661] ? __pfx_lookup_user_key+0x10/0x10 [ 348.664811][T10661] ? __pfx_do_futex+0x10/0x10 [ 348.664840][T10661] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 348.664861][T10661] ? xfd_validate_state+0x129/0x190 [ 348.664885][T10661] ? ksys_write+0x1ac/0x250 [ 348.664916][T10661] keyctl_keyring_unlink+0x1f/0x1b0 [ 348.664939][T10661] __do_sys_keyctl+0x3dd/0x5a0 [ 348.664955][T10661] do_syscall_64+0x10b/0xf80 [ 348.665026][T10661] ? clear_bhb_loop+0x40/0x90 [ 348.665052][T10661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.665069][T10661] RIP: 0033:0x7f702999ce59 [ 348.665083][T10661] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 348.665098][T10661] RSP: 002b:00007f702a834028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 348.665114][T10661] RAX: ffffffffffffffda RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 348.665124][T10661] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 348.665134][T10661] RBP: 00007f7029a32d6f R08: 0000000000000008 R09: 0000000000000000 [ 348.665143][T10661] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 348.665152][T10661] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 348.665173][T10661] [ 349.335195][T10670] nbd: must specify at least one socket [ 349.711424][T10679] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 349.825068][T10679] smpboot: CPU 1 is now offline [ 350.033788][T10671] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 350.345547][T10686] __vm_enough_memory: pid: 10686, comm: syz.1.1130, bytes: 4398046457856 not enough memory for the allocation [ 352.010586][T10725] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1150'. [ 353.297272][T10745] netlink: 'syz.3.1154': attribute type 1 has an invalid length. [ 355.050353][T10785] zswap: compressor not available [ 355.519870][T10575] Process accounting paused [ 355.872332][T10815] FAULT_INJECTION: forcing a failure. [ 355.872332][T10815] name failslab, interval 1, probability 0, space 0, times 0 [ 355.986213][T10815] CPU: 0 UID: 0 PID: 10815 Comm: syz.1.1168 Tainted: G L syzkaller #0 PREEMPT(full) [ 355.986239][T10815] Tainted: [L]=SOFTLOCKUP [ 355.986244][T10815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 355.986253][T10815] Call Trace: [ 355.986259][T10815] [ 355.986265][T10815] dump_stack_lvl+0x100/0x190 [ 355.986286][T10815] should_fail_ex.cold+0x5/0xa [ 355.986305][T10815] should_failslab+0xc2/0x120 [ 355.986324][T10815] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 355.986347][T10815] ? skb_clone+0x190/0x400 [ 355.986453][T10815] skb_clone+0x190/0x400 [ 355.986472][T10815] netlink_deliver_tap+0xaed/0xcc0 [ 355.986551][T10815] netlink_unicast+0x62b/0x850 [ 355.986576][T10815] ? __pfx_netlink_unicast+0x10/0x10 [ 355.986603][T10815] netlink_sendmsg+0x8b0/0xda0 [ 355.986628][T10815] ? __pfx_netlink_sendmsg+0x10/0x10 [ 355.986653][T10815] ? __import_iovec+0x1d2/0x640 [ 355.986700][T10815] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 355.986774][T10815] ____sys_sendmsg+0x9e1/0xb70 [ 355.986839][T10815] ? __pfx_netlink_sendmsg+0x10/0x10 [ 355.986862][T10815] ? __pfx_____sys_sendmsg+0x10/0x10 [ 355.986892][T10815] ___sys_sendmsg+0x190/0x1e0 [ 355.986916][T10815] ? __pfx____sys_sendmsg+0x10/0x10 [ 355.986960][T10815] __sys_sendmsg+0x170/0x220 [ 355.987002][T10815] ? __pfx___sys_sendmsg+0x10/0x10 [ 355.987028][T10815] ? rcu_is_watching+0x12/0xc0 [ 355.987054][T10815] do_syscall_64+0x10b/0xf80 [ 355.987078][T10815] ? clear_bhb_loop+0x40/0x90 [ 355.987097][T10815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.987112][T10815] RIP: 0033:0x7facc239ce59 [ 355.987125][T10815] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 355.987140][T10815] RSP: 002b:00007facc32df028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 355.987155][T10815] RAX: ffffffffffffffda RBX: 00007facc2615fa0 RCX: 00007facc239ce59 [ 355.987164][T10815] RDX: 0000000000000810 RSI: 0000200000000580 RDI: 0000000000000003 [ 355.987173][T10815] RBP: 00007facc32df090 R08: 0000000000000000 R09: 0000000000000000 [ 355.987182][T10815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 355.987191][T10815] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 355.987210][T10815] [ 356.497313][T10816] futex_wake_op: syz.3.1166 tries to shift op by -1; fix this program [ 357.074944][T10832] netlink: 'syz.1.1171': attribute type 1 has an invalid length. [ 357.118473][T10825] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 357.165953][T10818] Process accounting resumed [ 357.256828][T10826] smpboot: CPU 1 is now offline [ 357.646758][T10842] netlink: 'syz.2.1176': attribute type 10 has an invalid length. [ 358.364642][T10859] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1181'. [ 358.540571][T10865] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1181'. [ 358.820548][T10871] busy [ 358.835139][T10865] bridge0: port 3(dummy0) entered disabled state [ 358.841624][T10865] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.848845][T10865] bridge0: port 1(bridge_slave_0) entered disabled state [ 359.390731][T10874] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1183'. [ 359.817967][T10893] netlink: ct family unspecified [ 360.045926][T10897] IPVS: length: 537396514 != 24 [ 360.051487][T10895] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 360.086409][T10895] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub [ 360.903634][T10920] FAULT_INJECTION: forcing a failure. [ 360.903634][T10920] name failslab, interval 1, probability 0, space 0, times 0 [ 360.979963][T10920] CPU: 0 UID: 0 PID: 10920 Comm: syz.0.1194 Tainted: G L syzkaller #0 PREEMPT(full) [ 360.979989][T10920] Tainted: [L]=SOFTLOCKUP [ 360.979994][T10920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 360.980006][T10920] Call Trace: [ 360.980013][T10920] [ 360.980019][T10920] dump_stack_lvl+0x100/0x190 [ 360.980040][T10920] should_fail_ex.cold+0x5/0xa [ 360.980060][T10920] should_failslab+0xc2/0x120 [ 360.980079][T10920] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 360.980101][T10920] ? security_inode_alloc+0x3b/0x2c0 [ 360.980176][T10920] ? lockdep_init_map_type+0x5c/0x250 [ 360.980195][T10920] security_inode_alloc+0x3b/0x2c0 [ 360.980211][T10920] inode_init_always_gfp+0xcc0/0x1000 [ 360.980240][T10920] alloc_inode+0x8e/0x250 [ 360.980264][T10920] new_inode+0x22/0x1c0 [ 360.980288][T10920] hugetlbfs_get_inode+0x39a/0x700 [ 360.980325][T10920] ? do_raw_spin_lock+0x128/0x260 [ 360.980344][T10920] hugetlb_file_setup+0x15b/0x5b0 [ 360.980368][T10920] memfd_alloc_file+0xc2/0x610 [ 360.980391][T10920] ? _raw_spin_unlock+0x28/0x50 [ 360.980476][T10920] ? __pfx_memfd_alloc_file+0x10/0x10 [ 360.980505][T10920] __do_sys_memfd_create+0x236/0x3d0 [ 360.980531][T10920] do_syscall_64+0x10b/0xf80 [ 360.980553][T10920] ? clear_bhb_loop+0x40/0x90 [ 360.980571][T10920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.980586][T10920] RIP: 0033:0x7fe46b19ce59 [ 360.980602][T10920] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 360.980617][T10920] RSP: 002b:00007fe46c136028 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 360.980636][T10920] RAX: ffffffffffffffda RBX: 00007fe46b415fa0 RCX: 00007fe46b19ce59 [ 360.980647][T10920] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000200000000040 [ 360.980657][T10920] RBP: 00007fe46b232d6f R08: 0000000000000000 R09: 0000000000000000 [ 360.980666][T10920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.980675][T10920] R13: 00007fe46b416038 R14: 00007fe46b415fa0 R15: 00007ffcc466c328 [ 360.980694][T10920] [ 361.260137][T10918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1193'. [ 362.413822][T10952] No such timeout policy "" [ 362.432973][T10952] netlink: Failed to associated timeout policy '' [ 363.483417][T10977] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 363.613453][T10979] smpboot: CPU 1 is now offline [ 364.074035][T10985] futex_wake_op: syz.1.1215 tries to shift op by -1; fix this program [ 364.255042][T10981] ACPI: button: Initial lid state set to 'ignore' [ 364.358974][T10994] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1218'. [ 364.968792][T11009] FAULT_INJECTION: forcing a failure. [ 364.968792][T11009] name failslab, interval 1, probability 0, space 0, times 0 [ 365.130696][T11009] CPU: 0 UID: 0 PID: 11009 Comm: syz.3.1221 Tainted: G L syzkaller #0 PREEMPT(full) [ 365.130722][T11009] Tainted: [L]=SOFTLOCKUP [ 365.130728][T11009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 365.130737][T11009] Call Trace: [ 365.130743][T11009] [ 365.130748][T11009] dump_stack_lvl+0x100/0x190 [ 365.130772][T11009] should_fail_ex.cold+0x5/0xa [ 365.130792][T11009] should_failslab+0xc2/0x120 [ 365.130811][T11009] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 365.130834][T11009] ? key_alloc+0x3c5/0x1310 [ 365.130851][T11009] ? mark_held_locks+0x40/0x70 [ 365.130869][T11009] key_alloc+0x3c5/0x1310 [ 365.130893][T11009] ? __pfx_key_alloc+0x10/0x10 [ 365.130909][T11009] ? __pfx_key_default_cmp+0x10/0x10 [ 365.130929][T11009] ? __pfx_keyring_search_iterator+0x10/0x10 [ 365.130952][T11009] keyring_alloc+0x44/0xc0 [ 365.130973][T11009] look_up_user_keyrings+0x508/0x790 [ 365.130992][T11009] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 365.131016][T11009] lookup_user_key+0xbb1/0x1300 [ 365.131033][T11009] ? __pfx_lookup_user_key+0x10/0x10 [ 365.131050][T11009] ? __pfx_do_futex+0x10/0x10 [ 365.131070][T11009] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 365.131090][T11009] ? xfd_validate_state+0x129/0x190 [ 365.131110][T11009] keyctl_keyring_unlink+0x1f/0x1b0 [ 365.131133][T11009] __do_sys_keyctl+0x3dd/0x5a0 [ 365.131149][T11009] do_syscall_64+0x10b/0xf80 [ 365.131172][T11009] ? clear_bhb_loop+0x40/0x90 [ 365.131191][T11009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.131206][T11009] RIP: 0033:0x7f702999ce59 [ 365.131220][T11009] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 365.131234][T11009] RSP: 002b:00007f702a834028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 365.131250][T11009] RAX: ffffffffffffffda RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 365.131260][T11009] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000009 [ 365.131269][T11009] RBP: 00007f7029a32d6f R08: 0000000000000008 R09: 0000000000000000 [ 365.131278][T11009] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000 [ 365.131288][T11009] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 365.131308][T11009] [ 365.764088][T11020] openvswitch: netlink: Missing valid actions attribute. [ 365.807232][T11020] FAULT_INJECTION: forcing a failure. [ 365.807232][T11020] name failslab, interval 1, probability 0, space 0, times 0 [ 365.844109][T11020] CPU: 0 UID: 0 PID: 11020 Comm: syz.1.1227 Tainted: G L syzkaller #0 PREEMPT(full) [ 365.844138][T11020] Tainted: [L]=SOFTLOCKUP [ 365.844143][T11020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 365.844154][T11020] Call Trace: [ 365.844160][T11020] [ 365.844167][T11020] dump_stack_lvl+0x100/0x190 [ 365.844189][T11020] should_fail_ex.cold+0x5/0xa [ 365.844210][T11020] ? vb2_core_allocated_buffers_storage+0xc4/0x220 [ 365.844333][T11020] should_failslab+0xc2/0x120 [ 365.844353][T11020] __kmalloc_noprof+0xe0/0x850 [ 365.844372][T11020] vb2_core_allocated_buffers_storage+0xc4/0x220 [ 365.844393][T11020] vb2_core_reqbufs+0x382/0xf30 [ 365.844416][T11020] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 365.844446][T11020] __vb2_init_fileio+0x32d/0x1000 [ 365.844466][T11020] ? aa_file_perm+0x7f3/0x14d0 [ 365.844524][T11020] __vb2_perform_fileio+0x91e/0x1380 [ 365.844557][T11020] ? __pfx___vb2_perform_fileio+0x10/0x10 [ 365.844576][T11020] ? __pfx___might_resched+0x10/0x10 [ 365.844594][T11020] ? futex_hash+0x141/0x370 [ 365.844613][T11020] vb2_fop_read+0x211/0x520 [ 365.844635][T11020] v4l2_read+0x229/0x2c0 [ 365.844680][T11020] ? __pfx_v4l2_read+0x10/0x10 [ 365.844698][T11020] vfs_read+0x1e4/0xb30 [ 365.844718][T11020] ? __pfx_vfs_read+0x10/0x10 [ 365.844734][T11020] ? find_held_lock+0x2b/0x80 [ 365.844754][T11020] ? __fget_files+0x215/0x3d0 [ 365.844771][T11020] ? __fget_files+0x215/0x3d0 [ 365.844792][T11020] ? __fget_files+0x21f/0x3d0 [ 365.844814][T11020] ksys_read+0x12a/0x250 [ 365.844831][T11020] ? __pfx_ksys_read+0x10/0x10 [ 365.844850][T11020] ? rcu_is_watching+0x12/0xc0 [ 365.844870][T11020] do_syscall_64+0x10b/0xf80 [ 365.844892][T11020] ? clear_bhb_loop+0x40/0x90 [ 365.844910][T11020] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.844926][T11020] RIP: 0033:0x7facc239ce59 [ 365.844940][T11020] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 365.844954][T11020] RSP: 002b:00007facc32df028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 365.844969][T11020] RAX: ffffffffffffffda RBX: 00007facc2615fa0 RCX: 00007facc239ce59 [ 365.844980][T11020] RDX: 0000000000000028 RSI: 0000200000000280 RDI: 0000000000000003 [ 365.844989][T11020] RBP: 00007facc2432d6f R08: 0000000000000000 R09: 0000000000000000 [ 365.844998][T11020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.845007][T11020] R13: 00007facc2616038 R14: 00007facc2615fa0 R15: 00007fffed0c65b8 [ 365.845028][T11020] [ 366.180866][T11026] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1229'. [ 366.191897][T11026] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1229'. [ 366.248749][T11028] hub 1-0:1.0: USB hub found [ 366.253988][T11028] hub 1-0:1.0: 1 port detected [ 366.266087][T11030] hub 1-0:1.0: USB hub found [ 366.271864][T11030] hub 1-0:1.0: 1 port detected [ 366.968789][T11043] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1235'. [ 367.034742][T11043] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 367.077122][T11043] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 367.115657][T11043] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 367.175412][T11043] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 367.243530][T11043] bridge0: port 3(batadv0) entered disabled state [ 367.282892][T11043] batadv0 (unregistering): left allmulticast mode [ 367.304728][T11043] batadv0 (unregistering): left promiscuous mode [ 367.336497][T11043] bridge0: port 3(batadv0) entered disabled state [ 367.525478][T11063] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 367.773439][T11063] File: /dev/nullb0 PID: 11063 Comm: syz.0.1239 [ 368.949132][T11083] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 369.069574][T11086] smpboot: CPU 1 is now offline [ 369.116032][T11090] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 369.456564][T11105] NFSD: Failed to start, no listeners configured. [ 369.605474][T11113] FAULT_INJECTION: forcing a failure. [ 369.605474][T11113] name failslab, interval 1, probability 0, space 0, times 0 [ 369.684131][T11113] CPU: 0 UID: 0 PID: 11113 Comm: syz.0.1254 Tainted: G L syzkaller #0 PREEMPT(full) [ 369.684155][T11113] Tainted: [L]=SOFTLOCKUP [ 369.684160][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 369.684169][T11113] Call Trace: [ 369.684174][T11113] [ 369.684180][T11113] dump_stack_lvl+0x100/0x190 [ 369.684201][T11113] should_fail_ex.cold+0x5/0xa [ 369.684220][T11113] should_failslab+0xc2/0x120 [ 369.684238][T11113] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 369.684253][T11113] ? __alloc_skb+0x140/0x710 [ 369.684271][T11113] ? __alloc_skb+0x5b7/0x710 [ 369.684289][T11113] __alloc_skb+0x140/0x710 [ 369.684304][T11113] ? __alloc_skb+0x5b7/0x710 [ 369.684320][T11113] ? __pfx___alloc_skb+0x10/0x10 [ 369.684336][T11113] ? __pfx___might_resched+0x10/0x10 [ 369.684353][T11113] ? __lock_acquire+0x4a5/0x2630 [ 369.684370][T11113] netlink_alloc_large_skb+0x69/0x150 [ 369.684398][T11113] netlink_sendmsg+0x680/0xda0 [ 369.684422][T11113] ? __pfx_netlink_sendmsg+0x10/0x10 [ 369.684444][T11113] ? __import_iovec+0x1d2/0x640 [ 369.684463][T11113] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 369.684490][T11113] ____sys_sendmsg+0x9e1/0xb70 [ 369.684511][T11113] ? __pfx_netlink_sendmsg+0x10/0x10 [ 369.684535][T11113] ? __pfx_____sys_sendmsg+0x10/0x10 [ 369.684559][T11113] ? rcu_is_watching+0x12/0xc0 [ 369.684577][T11113] ? ___sys_sendmsg+0x19d/0x1e0 [ 369.684597][T11113] ? kfree+0x1dd/0x6c0 [ 369.684621][T11113] ___sys_sendmsg+0x190/0x1e0 [ 369.684644][T11113] ? __pfx____sys_sendmsg+0x10/0x10 [ 369.684683][T11113] ? __pfx___might_resched+0x10/0x10 [ 369.684704][T11113] __sys_sendmmsg+0x205/0x430 [ 369.684724][T11113] ? __pfx___sys_sendmmsg+0x10/0x10 [ 369.684748][T11113] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 369.684771][T11113] ? fput+0x79/0x100 [ 369.684791][T11113] ? ksys_write+0x1ac/0x250 [ 369.684808][T11113] ? __pfx_ksys_write+0x10/0x10 [ 369.684828][T11113] __x64_sys_sendmmsg+0x9c/0x100 [ 369.684846][T11113] ? lockdep_hardirqs_on+0x78/0x100 [ 369.684869][T11113] do_syscall_64+0x10b/0xf80 [ 369.684891][T11113] ? clear_bhb_loop+0x40/0x90 [ 369.684909][T11113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.684924][T11113] RIP: 0033:0x7fe46b19ce59 [ 369.684936][T11113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 369.684951][T11113] RSP: 002b:00007fe46c136028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 369.684966][T11113] RAX: ffffffffffffffda RBX: 00007fe46b415fa0 RCX: 00007fe46b19ce59 [ 369.684981][T11113] RDX: 0000000000000207 RSI: 0000200000000200 RDI: 0000000000000003 [ 369.684990][T11113] RBP: 00007fe46c136090 R08: 0000000000000000 R09: 0000000000000000 [ 369.684999][T11113] R10: 0000000000004006 R11: 0000000000000246 R12: 0000000000000001 [ 369.685007][T11113] R13: 00007fe46b416038 R14: 00007fe46b415fa0 R15: 00007ffcc466c328 [ 369.685026][T11113] [ 370.082672][T11116] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input20 [ 370.507375][T11129] kvm: user requested TSC rate below hardware speed [ 370.551443][T11131] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 370.633968][T11134] smpboot: CPU 1 is now offline [ 371.065155][T11146] netlink: 'syz.0.1265': attribute type 21 has an invalid length. [ 371.118441][T11146] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1265'. [ 373.166870][T11213] busy [ 373.239548][T11215] input: jJǰ-9% as /devices/virtual/input/input21 [ 374.766004][T11227] kexec: Could not allocate control_code_buffer [ 375.329947][T11277] ubi0: attaching mtd0 [ 375.373338][T11277] ubi0: scanning is finished [ 375.390795][T11277] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 375.572407][T11277] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 376.182006][T11298] bond0: option arp_interval: invalid value () [ 376.231939][T11298] bond0: option arp_interval: allowed values 0 - 2147483647 [ 376.266722][T11300] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1292'. [ 376.512347][T11300] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.1292: bg 4: bad block bitmap checksum [ 376.771979][T11300] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 74 [ 376.897134][T11285] Process accounting paused [ 377.020101][T11300] EXT4-fs (sda1): This should not happen!! Data will be lost [ 377.020101][T11300] [ 378.215173][T11322] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 378.323194][T11322] EXT4-fs (sda1): This should not happen!! Data will be lost [ 378.323194][T11322] [ 378.551629][T11346] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 378.559332][T11348] futex_wake_op: syz.3.1303 tries to shift op by -1; fix this program [ 378.579168][T11316] Process accounting resumed [ 378.650321][ T1313] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.659916][ T1313] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.788265][T11349] smpboot: CPU 1 is now offline [ 378.944098][T11359] netlink: zone id is out of range [ 378.995181][T11359] netlink: zone id is out of range [ 379.050947][T11359] netlink: zone id is out of range [ 379.111480][T11359] netlink: zone id is out of range [ 379.153414][T11359] netlink: zone id is out of range [ 379.212254][T11359] netlink: zone id is out of range [ 379.288844][T11359] netlink: zone id is out of range [ 379.363141][T11359] netlink: zone id is out of range [ 379.438805][T11359] netlink: zone id is out of range [ 379.576332][T11359] netlink: set zone limit has 8 unknown bytes [ 381.107278][T11404] binder: 11392:11404 ioctl 40086602 e20 returned -22 [ 381.287410][T11393] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 2 with error 117 [ 381.429210][T11393] EXT4-fs (sda1): This should not happen!! Data will be lost [ 381.429210][T11393] [ 382.054069][T11414] netlink: 'syz.0.1322': attribute type 1 has an invalid length. [ 382.402379][T11423] ubi0: attaching mtd0 [ 382.423972][T11423] ubi0: scanning is finished [ 382.449346][T11423] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 382.647285][T11423] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 383.443075][T11445] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 383.691670][T11448] smpboot: CPU 1 is now offline [ 385.292918][T11434] Process accounting resumed [ 385.510089][T11473] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input22 [ 385.549324][T10809] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 385.620215][T11337] Process accounting resumed [ 385.633968][T10809] EXT4-fs (sda1): This should not happen!! Data will be lost [ 385.633968][T10809] [ 386.333252][T11484] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 386.346673][T11495] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1343'. [ 386.471737][T11484] EXT4-fs (sda1): This should not happen!! Data will be lost [ 386.471737][T11484] [ 387.168697][T11481] kexec: Could not allocate control_code_buffer [ 387.632461][T11506] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 387.844317][T11509] smpboot: CPU 1 is now offline [ 388.804047][T11477] Process accounting paused [ 388.829496][T11523] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 388.944937][T11524] smpboot: CPU 1 is now offline [ 389.680085][T11533] ubi0: attaching mtd0 [ 389.726650][T11533] ubi0: scanning is finished [ 389.755967][T11533] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 389.824015][T11538] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 389.891838][T11538] EXT4-fs (sda1): This should not happen!! Data will be lost [ 389.891838][T11538] [ 389.986943][T11541] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1350'. [ 390.206227][T11533] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 390.923507][T11519] Process accounting resumed [ 391.098033][T11553] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input23 [ 391.526972][T11562] capability: warning: `syz.1.1357' uses deprecated v2 capabilities in a way that may be insecure [ 391.707215][T11562] netlink: 'syz.1.1357': attribute type 1 has an invalid length. [ 391.812760][T11567] syz.1.1357 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 392.653086][T11563] kexec: Could not allocate control_code_buffer [ 392.722913][T11577] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 392.922858][T11577] EXT4-fs (sda1): This should not happen!! Data will be lost [ 392.922858][T11577] [ 393.667523][T11584] Process accounting resumed [ 393.717702][T11601] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input24 [ 394.086654][T11608] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input25 [ 395.024858][T11631] No such timeout policy "" [ 395.064311][T11631] netlink: Failed to associated timeout policy '' [ 395.473307][T11633] zswap: compressor not available [ 396.389577][T11639] Process accounting resumed [ 396.602801][T11652] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input26 [ 396.727848][T11658] busy [ 397.191187][T11661] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 397.353789][T11661] EXT4-fs (sda1): This should not happen!! Data will be lost [ 397.353789][T11661] [ 398.293716][T11666] kexec: Could not allocate control_code_buffer [ 399.675746][T11702] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 399.885421][T11708] EXT4-fs (sda1): Delayed block allocation failed for inode 2022 at logical offset 0 with max blocks 1 with error 117 [ 400.044845][T11708] EXT4-fs (sda1): This should not happen!! Data will be lost [ 400.044845][T11708] [ 400.319514][T11715] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input28 [ 400.558907][T11724] No such timeout policy "" [ 400.578461][T11724] netlink: Failed to associated timeout policy '' [ 400.866139][T10801] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 401.620619][T11744] busy [ 403.164688][T11770] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1404'. [ 403.193044][T11770] ip6gre0: entered promiscuous mode [ 403.208139][T11770] ip6gre0: entered allmulticast mode [ 403.414795][T11778] EXT4-fs error (device sda1): ext4_discard_preallocations:5696: comm syz.2.1406: Error -117 reading block bitmap for 4 [ 404.269733][T11792] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 405.728569][T11816] futex_wake_op: syz.3.1425 tries to shift op by -1; fix this program [ 406.169438][T11829] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1416'. [ 406.203484][T11829] ip6gre0: entered promiscuous mode [ 406.209759][T11829] ip6gre0: entered allmulticast mode [ 406.267799][T11832] ubi0: attaching mtd0 [ 406.281744][T11832] ubi0: scanning is finished [ 406.308673][T11832] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 406.485551][T11832] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 406.546385][T11832] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1418'. [ 409.346307][T11889] smpboot: CPU 1 is now offline [ 410.186508][T11731] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 411.949247][T11927] ubi0: attaching mtd0 [ 411.975622][T11927] ubi0: scanning is finished [ 412.000330][T11927] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 412.188281][T11927] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 412.333517][T11927] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1444'. [ 412.850474][T11946] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 412.877044][T11853] ------------[ cut here ]------------ [ 412.878434][T11853] [ 412.878442][T11853] ====================================================== [ 412.878452][T11853] WARNING: possible circular locking dependency detected [ 412.878467][T11853] syzkaller #0 Tainted: G L [ 412.878479][T11853] ------------------------------------------------------ [ 412.878488][T11853] syz.3.1418/11853 is trying to acquire lock: [ 412.878501][T11853] ffffffff8e6f1560 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 412.878571][T11853] [ 412.878571][T11853] but task is already holding lock: [ 412.878579][T11853] ffff8880b843b3e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 412.878643][T11853] [ 412.878643][T11853] which lock already depends on the new lock. [ 412.878643][T11853] [ 412.878650][T11853] [ 412.878650][T11853] the existing dependency chain (in reverse order) is: [ 412.878659][T11853] [ 412.878659][T11853] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 412.878696][T11853] _raw_spin_lock_nested+0x31/0x40 [ 412.878732][T11853] raw_spin_rq_lock_nested+0x2c/0x140 [ 412.878764][T11853] _task_rq_lock+0xcf/0x510 [ 412.878796][T11853] cgroup_move_task+0x81/0x320 [ 412.878832][T11853] css_set_move_task+0x285/0x600 [ 412.878856][T11853] cgroup_post_fork+0x202/0x9b0 [ 412.878891][T11853] copy_process+0x5b9a/0x7ed0 [ 412.878946][T11853] kernel_clone+0x12e/0x9c0 [ 412.878984][T11853] user_mode_thread+0xcc/0x110 [ 412.879018][T11853] rest_init+0x21/0x260 [ 412.879045][T11853] start_kernel+0x484/0x490 [ 412.879207][T11853] x86_64_start_reservations+0x24/0x30 [ 412.879275][T11853] x86_64_start_kernel+0x12b/0x130 [ 412.879313][T11853] common_startup_64+0x13e/0x148 [ 412.879356][T11853] [ 412.879356][T11853] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 412.879390][T11853] _raw_spin_lock_irqsave+0x3a/0x60 [ 412.879424][T11853] try_to_wake_up+0xb5/0x1900 [ 412.879455][T11853] autoremove_wake_function+0x16/0x150 [ 412.879491][T11853] __wake_up_common+0x135/0x1f0 [ 412.879515][T11853] __wake_up+0x31/0x60 [ 412.879548][T11853] tty_port_default_wakeup+0x52/0x70 [ 412.879630][T11853] serial8250_tx_chars+0x68f/0x860 [ 412.879694][T11853] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 412.879721][T11853] serial8250_handle_irq.part.0+0xb4/0x530 [ 412.879749][T11853] serial8250_default_handle_irq+0xc2/0x290 [ 412.879777][T11853] serial8250_interrupt+0xf8/0x1c0 [ 412.879831][T11853] __handle_irq_event_percpu+0x235/0x8c0 [ 412.879864][T11853] handle_irq_event+0xab/0x1e0 [ 412.879894][T11853] handle_edge_irq+0x35e/0x960 [ 412.879923][T11853] __common_interrupt+0xd8/0x2f0 [ 412.879962][T11853] common_interrupt+0xb9/0xe0 [ 412.879997][T11853] asm_common_interrupt+0x26/0x40 [ 412.880024][T11853] unwind_next_frame+0x53c/0x2090 [ 412.880056][T11853] arch_stack_walk+0x94/0xf0 [ 412.880086][T11853] stack_trace_save+0x8e/0xc0 [ 412.880129][T11853] kasan_save_stack+0x30/0x50 [ 412.880155][T11853] kasan_record_aux_stack+0xa7/0xc0 [ 412.880190][T11853] __call_rcu_common.constprop.0+0xa5/0x9b0 [ 412.880216][T11853] security_inode_free+0xa4/0x170 [ 412.880243][T11853] __destroy_inode+0x1ea/0x710 [ 412.880281][T11853] destroy_inode+0x91/0x1c0 [ 412.880316][T11853] evict+0x599/0xad0 [ 412.880350][T11853] iput.part.0+0x605/0xf50 [ 412.880386][T11853] iput+0x35/0x40 [ 412.880419][T11853] dentry_unlink_inode+0x2c0/0x4c0 [ 412.880454][T11853] __dentry_kill+0x1d0/0x690 [ 412.880489][T11853] finish_dput+0x76/0x480 [ 412.880526][T11853] dput.part.0+0x456/0x570 [ 412.880562][T11853] dput+0x1f/0x30 [ 412.880597][T11853] debugfs_remove+0x5d/0x80 [ 412.880702][T11853] debugfs_reap_work+0x151/0x1f0 [ 412.880759][T11853] process_one_work+0xa0e/0x1980 [ 412.880790][T11853] worker_thread+0x5ef/0xe50 [ 412.880814][T11853] kthread+0x370/0x450 [ 412.880834][T11853] ret_from_fork+0x72b/0xd50 [ 412.880861][T11853] ret_from_fork_asm+0x1a/0x30 [ 412.880895][T11853] [ 412.880895][T11853] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 412.880929][T11853] _raw_spin_lock_irqsave+0x3a/0x60 [ 412.880964][T11853] __wake_up+0x1c/0x60 [ 412.881003][T11853] tty_port_default_wakeup+0x52/0x70 [ 412.881028][T11853] serial8250_tx_chars+0x68f/0x860 [ 412.881053][T11853] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 412.881080][T11853] serial8250_handle_irq.part.0+0xb4/0x530 [ 412.881107][T11853] serial8250_default_handle_irq+0xc2/0x290 [ 412.881135][T11853] serial8250_interrupt+0xf8/0x1c0 [ 412.881165][T11853] __handle_irq_event_percpu+0x235/0x8c0 [ 412.881197][T11853] handle_irq_event+0xab/0x1e0 [ 412.881227][T11853] handle_edge_irq+0x35e/0x960 [ 412.881255][T11853] __common_interrupt+0xd8/0x2f0 [ 412.881293][T11853] common_interrupt+0xb9/0xe0 [ 412.881321][T11853] asm_common_interrupt+0x26/0x40 [ 412.881346][T11853] _raw_spin_unlock_irqrestore+0x31/0x80 [ 412.881382][T11853] uart_write+0x29d/0xb20 [ 412.881403][T11853] n_tty_write+0x431/0x11c0 [ 412.881455][T11853] file_tty_write.isra.0+0x4d2/0x890 [ 412.881517][T11853] redirected_tty_write+0xd4/0x120 [ 412.881554][T11853] vfs_write+0x6ac/0x1070 [ 412.881581][T11853] ksys_write+0x12a/0x250 [ 412.881608][T11853] do_syscall_64+0x10b/0xf80 [ 412.881645][T11853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.881671][T11853] [ 412.881671][T11853] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 412.881704][T11853] _raw_spin_lock_irqsave+0x3a/0x60 [ 412.881739][T11853] serial8250_console_write+0x17e/0x1900 [ 412.881769][T11853] console_flush_one_record+0x790/0xe50 [ 412.881800][T11853] console_unlock+0x103/0x260 [ 412.881829][T11853] vprintk_emit+0x407/0x6b0 [ 412.881859][T11853] _printk+0xcf/0x110 [ 412.881882][T11853] register_console.cold+0xc0/0x248 [ 412.881908][T11853] univ8250_console_init+0x6f/0x80 [ 412.882042][T11853] console_init+0x3f7/0x5e0 [ 412.882098][T11853] start_kernel+0x30a/0x490 [ 412.882132][T11853] x86_64_start_reservations+0x24/0x30 [ 412.882171][T11853] x86_64_start_kernel+0x12b/0x130 [ 412.882209][T11853] common_startup_64+0x13e/0x148 [ 412.882240][T11853] [ 412.882240][T11853] -> #0 (console_owner){-.-.}-{0:0}: [ 412.882273][T11853] __lock_acquire+0x14b8/0x2630 [ 412.882297][T11853] lock_acquire+0x1b1/0x370 [ 412.882318][T11853] console_lock_spinning_enable+0x72/0x80 [ 412.882349][T11853] console_flush_one_record+0x739/0xe50 [ 412.882380][T11853] console_unlock+0x103/0x260 [ 412.882410][T11853] vprintk_emit+0x407/0x6b0 [ 412.882440][T11853] _printk+0xcf/0x110 [ 412.882462][T11853] __report_bug.cold+0x15/0x137 [ 412.882484][T11853] report_bug+0xb2/0x220 [ 412.882582][T11853] handle_bug+0x16a/0x2a0 [ 412.882607][T11853] exc_invalid_op+0x17/0x50 [ 412.882632][T11853] asm_exc_invalid_op+0x1a/0x20 [ 412.882656][T11853] update_rq_clock+0x40a/0xd20 [ 412.882689][T11853] __schedule+0x1e84/0x67a0 [ 412.882722][T11853] preempt_schedule_irq+0x50/0x90 [ 412.882758][T11853] irqentry_exit+0x205/0x7e0 [ 412.882795][T11853] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 412.882822][T11853] rcu_is_watching+0x80/0xc0 [ 412.882852][T11853] unwind_next_frame+0x745/0x2090 [ 412.882883][T11853] arch_stack_walk+0x94/0xf0 [ 412.882912][T11853] stack_trace_save+0x8e/0xc0 [ 412.882944][T11853] save_stack+0x162/0x1e0 [ 412.882969][T11853] __set_page_owner+0x8c/0x540 [ 412.883002][T11853] post_alloc_hook+0xfd/0x120 [ 412.883038][T11853] get_page_from_freelist+0x11a6/0x33b0 [ 412.883077][T11853] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 412.883117][T11853] alloc_pages_mpol+0x1fb/0x540 [ 412.883145][T11853] folio_alloc_mpol_noprof+0x36/0x260 [ 412.883178][T11853] shmem_alloc_folio+0x135/0x160 [ 412.883225][T11853] shmem_alloc_and_add_folio+0x371/0xd40 [ 412.883263][T11853] shmem_get_folio_gfp+0x6ab/0x1900 [ 412.883287][T11853] shmem_fault+0x1f9/0xa20 [ 412.883309][T11853] __do_fault+0x10b/0x440 [ 412.883333][T11853] do_fault+0xa99/0x1750 [ 412.883362][T11853] __handle_mm_fault+0x187d/0x2a00 [ 412.883398][T11853] handle_mm_fault+0x36d/0xa20 [ 412.883433][T11853] do_user_addr_fault+0x5a3/0x12f0 [ 412.883463][T11853] exc_page_fault+0x6f/0xd0 [ 412.883497][T11853] asm_exc_page_fault+0x26/0x30 [ 412.883522][T11853] [ 412.883522][T11853] other info that might help us debug this: [ 412.883522][T11853] [ 412.883529][T11853] Chain exists of: [ 412.883529][T11853] console_owner --> &p->pi_lock --> &rq->__lock [ 412.883529][T11853] [ 412.883567][T11853] Possible unsafe locking scenario: [ 412.883567][T11853] [ 412.883573][T11853] CPU0 CPU1 [ 412.883580][T11853] ---- ---- [ 412.883587][T11853] lock(&rq->__lock); [ 412.883603][T11853] lock(&p->pi_lock); [ 412.883620][T11853] lock(&rq->__lock); [ 412.883637][T11853] lock(console_owner); [ 412.883653][T11853] [ 412.883653][T11853] *** DEADLOCK *** [ 412.883653][T11853] [ 412.883659][T11853] 5 locks held by syz.3.1418/11853: [ 412.883674][T11853] #0: ffff8880300d81c8 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11d/0x590 [ 412.883746][T11853] #1: ffffffff8e7e5420 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xbd/0x2090 [ 412.883813][T11853] #2: ffff8880b843b3e0 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 412.883882][T11853] #3: ffffffff8e7d19a0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 412.883940][T11853] #4: ffffffff8e7d1a18 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 412.884013][T11853] [ 412.884013][T11853] stack backtrace: [ 412.884028][T11853] CPU: 0 UID: 0 PID: 11853 Comm: syz.3.1418 Tainted: G L syzkaller #0 PREEMPT(full) [ 412.884066][T11853] Tainted: [L]=SOFTLOCKUP [ 412.884076][T11853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 412.884093][T11853] Call Trace: [ 412.884101][T11853] [ 412.884111][T11853] dump_stack_lvl+0x100/0x190 [ 412.884138][T11853] print_circular_bug.cold+0x178/0x1c7 [ 412.884181][T11853] check_noncircular+0x146/0x160 [ 412.884223][T11853] __lock_acquire+0x14b8/0x2630 [ 412.884255][T11853] lock_acquire+0x1b1/0x370 [ 412.884279][T11853] ? console_lock_spinning_enable+0x61/0x80 [ 412.884313][T11853] ? console_lock_spinning_enable+0x4a/0x80 [ 412.884349][T11853] console_lock_spinning_enable+0x72/0x80 [ 412.884381][T11853] ? console_lock_spinning_enable+0x61/0x80 [ 412.884414][T11853] console_flush_one_record+0x739/0xe50 [ 412.884450][T11853] ? __pfx_console_flush_one_record+0x10/0x10 [ 412.884489][T11853] ? is_printk_cpu_sync_owner+0x32/0x40 [ 412.884528][T11853] console_unlock+0x103/0x260 [ 412.884559][T11853] ? __pfx_console_unlock+0x10/0x10 [ 412.884593][T11853] ? do_raw_spin_unlock+0x145/0x1e0 [ 412.884624][T11853] ? _printk+0xcf/0x110 [ 412.884651][T11853] vprintk_emit+0x407/0x6b0 [ 412.884690][T11853] ? __pfx_vprintk_emit+0x10/0x10 [ 412.884728][T11853] _printk+0xcf/0x110 [ 412.884752][T11853] ? __pfx__printk+0x10/0x10 [ 412.884784][T11853] ? find_held_lock+0x2b/0x80 [ 412.884816][T11853] ? debug_object_activate+0x331/0x490 [ 412.884859][T11853] ? __report_bug.cold+0x5/0x137 [ 412.884884][T11853] ? __report_bug+0x377/0x3d0 [ 412.884921][T11853] __report_bug.cold+0x15/0x137 [ 412.884946][T11853] ? update_rq_clock+0x40a/0xd20 [ 412.884986][T11853] ? __pfx___report_bug+0x10/0x10 [ 412.885023][T11853] ? __pfx_debug_object_activate+0x10/0x10 [ 412.885067][T11853] ? __lock_acquire+0x4a5/0x2630 [ 412.885094][T11853] ? update_rq_clock+0x40a/0xd20 [ 412.885130][T11853] report_bug+0xb2/0x220 [ 412.885165][T11853] ? update_rq_clock+0x40a/0xd20 [ 412.885200][T11853] handle_bug+0x16a/0x2a0 [ 412.885227][T11853] exc_invalid_op+0x17/0x50 [ 412.885255][T11853] asm_exc_invalid_op+0x1a/0x20 [ 412.885281][T11853] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 412.885318][T11853] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 412.885344][T11853] RSP: 0000:ffffc9000459eda8 EFLAGS: 00010046 [ 412.885365][T11853] RAX: 0000000000000000 RBX: ffff8880b853b380 RCX: 0000000000000001 [ 412.885383][T11853] RDX: 0000000000000046 RSI: ffffffff8defab9f RDI: ffffffff8c1c4180 [ 412.885401][T11853] RBP: ffffc9000459ef58 R08: 0000000000000001 R09: 0000000000000001 [ 412.885418][T11853] R10: ffffffff90d80d57 R11: 0000000000000000 R12: ffffffff90d840c4 [ 412.885436][T11853] R13: ffff8880b853c220 R14: ffff88801e6c9ec0 R15: ffff8880b853b380 [ 412.885463][T11853] ? update_rq_clock+0x9c/0xd20 [ 412.885500][T11853] __schedule+0x1e84/0x67a0 [ 412.885545][T11853] ? __pfx___schedule+0x10/0x10 [ 412.885583][T11853] ? mark_held_locks+0x40/0x70 [ 412.885608][T11853] preempt_schedule_irq+0x50/0x90 [ 412.885647][T11853] irqentry_exit+0x205/0x7e0 [ 412.885685][T11853] ? trace_reschedule_exit.constprop.0+0x6b/0x220 [ 412.885730][T11853] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 412.885758][T11853] RIP: 0010:rcu_is_watching+0x80/0xc0 [ 412.885790][T11853] Code: 89 da 48 c1 ea 03 0f b6 14 02 48 89 d8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 24 8b 03 c1 e8 02 83 e0 01 65 ff 0d f0 81 1e 12 <74> 07 5b 5d e9 d7 5c 9f 09 e8 b2 35 89 ff 5b 5d e9 cb 5c 9f 09 48 [ 412.885816][T11853] RSP: 0000:ffffc9000459f078 EFLAGS: 00000286 [ 412.885836][T11853] RAX: 0000000000000001 RBX: ffff8880b8433da8 RCX: ffffffff9183ba01 [ 412.885854][T11853] RDX: 0000000000000000 RSI: ffffffff8c1c4100 RDI: ffffffff8e1d0920 [ 412.885872][T11853] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000007 [ 412.885888][T11853] R10: 0000000000000200 R11: 0000000000015849 R12: ffffc9000459f150 [ 412.885906][T11853] R13: ffffc9000459f100 R14: ffffc9000459fc20 R15: ffffc9000459f134 [ 412.885932][T11853] ? rcu_is_watching+0x12/0xc0 [ 412.885963][T11853] unwind_next_frame+0x745/0x2090 [ 412.886002][T11853] ? __do_fault+0x10b/0x440 [ 412.886031][T11853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 412.886068][T11853] arch_stack_walk+0x94/0xf0 [ 412.886103][T11853] ? do_fault+0xa99/0x1750 [ 412.886137][T11853] stack_trace_save+0x8e/0xc0 [ 412.886171][T11853] ? __pfx_stack_trace_save+0x10/0x10 [ 412.886206][T11853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 412.886244][T11853] ? is_bpf_text_address+0x94/0x1a0 [ 412.886293][T11853] save_stack+0x162/0x1e0 [ 412.886320][T11853] ? __pfx_save_stack+0x10/0x10 [ 412.886347][T11853] ? post_alloc_hook+0xfd/0x120 [ 412.886382][T11853] ? get_page_from_freelist+0x11a6/0x33b0 [ 412.886422][T11853] ? __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 412.886464][T11853] ? alloc_pages_mpol+0x1fb/0x540 [ 412.886493][T11853] ? folio_alloc_mpol_noprof+0x36/0x260 [ 412.886526][T11853] ? shmem_alloc_folio+0x135/0x160 [ 412.886561][T11853] ? shmem_alloc_and_add_folio+0x371/0xd40 [ 412.886601][T11853] ? shmem_get_folio_gfp+0x6ab/0x1900 [ 412.886626][T11853] ? shmem_fault+0x1f9/0xa20 [ 412.886653][T11853] ? __do_fault+0x10b/0x440 [ 412.886681][T11853] ? __lock_acquire+0x4a5/0x2630 [ 412.886709][T11853] __set_page_owner+0x8c/0x540 [ 412.886740][T11853] ? __pfx___set_page_owner+0x10/0x10 [ 412.886770][T11853] ? bad_range+0x257/0x3f0 [ 412.886800][T11853] ? lockdep_hardirqs_on+0x78/0x100 [ 412.886839][T11853] ? get_page_from_freelist+0x1185/0x33b0 [ 412.886882][T11853] post_alloc_hook+0xfd/0x120 [ 412.886920][T11853] get_page_from_freelist+0x11a6/0x33b0 [ 412.886964][T11853] ? __pfx___might_resched+0x10/0x10 [ 412.887006][T11853] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 412.887051][T11853] ? __lock_acquire+0x4a5/0x2630 [ 412.887078][T11853] ? __lock_acquire+0x4a5/0x2630 [ 412.887102][T11853] ? css_rstat_updated+0x1ce/0x5a0 [ 412.887144][T11853] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 412.887188][T11853] ? do_raw_spin_lock+0x128/0x260 [ 412.887218][T11853] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 412.887249][T11853] ? find_held_lock+0x2b/0x80 [ 412.887286][T11853] ? __lock_acquire+0x4a5/0x2630 [ 412.887311][T11853] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 412.887351][T11853] ? policy_nodemask+0xed/0x4f0 [ 412.887382][T11853] alloc_pages_mpol+0x1fb/0x540 [ 412.887413][T11853] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 412.887448][T11853] folio_alloc_mpol_noprof+0x36/0x260 [ 412.887484][T11853] shmem_alloc_folio+0x135/0x160 [ 412.887519][T11853] shmem_alloc_and_add_folio+0x371/0xd40 [ 412.887565][T11853] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 412.887608][T11853] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 412.887639][T11853] shmem_get_folio_gfp+0x6ab/0x1900 [ 412.887668][T11853] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 412.887695][T11853] ? filemap_map_pages+0x9c1/0x2140 [ 412.887740][T11853] shmem_fault+0x1f9/0xa20 [ 412.887766][T11853] ? __pfx_shmem_fault+0x10/0x10 [ 412.887793][T11853] ? __pfx_filemap_map_pages+0x10/0x10 [ 412.887836][T11853] ? find_held_lock+0x2b/0x80 [ 412.887870][T11853] __do_fault+0x10b/0x440 [ 412.887899][T11853] do_fault+0xa99/0x1750 [ 412.887933][T11853] __handle_mm_fault+0x187d/0x2a00 [ 412.887979][T11853] ? reacquire_held_locks+0xce/0x1e0 [ 412.888006][T11853] ? __pfx___handle_mm_fault+0x10/0x10 [ 412.888046][T11853] ? lock_vma_under_rcu+0x17c/0x590 [ 412.888092][T11853] handle_mm_fault+0x36d/0xa20 [ 412.888133][T11853] do_user_addr_fault+0x5a3/0x12f0 [ 412.888169][T11853] exc_page_fault+0x6f/0xd0 [ 412.888207][T11853] asm_exc_page_fault+0x26/0x30 [ 412.888233][T11853] RIP: 0033:0x3f88000 [ 412.888258][T11853] Code: Unable to access opcode bytes at 0x3f87fd6. [ 412.888270][T11853] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 412.888289][T11853] RAX: 0000000000000000 RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 412.888307][T11853] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 412.888323][T11853] RBP: 00007f7029a32d6f R08: 0000000000000002 R09: 0000000000000000 [ 412.888340][T11853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 412.888356][T11853] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 412.888383][T11853] [ 414.624631][T11853] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 414.624664][T11853] WARNING: kernel/sched/sched.h:1612 at update_rq_clock+0x40a/0xd20, CPU#0: syz.3.1418/11853 [ 414.642632][T11853] Modules linked in: [ 414.646547][T11853] CPU: 0 UID: 0 PID: 11853 Comm: syz.3.1418 Tainted: G L syzkaller #0 PREEMPT(full) [ 414.657500][T11853] Tainted: [L]=SOFTLOCKUP [ 414.661817][T11853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 414.671882][T11853] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 414.677444][T11853] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 414.697058][T11853] RSP: 0000:ffffc9000459eda8 EFLAGS: 00010046 [ 414.703126][T11853] RAX: 0000000000000000 RBX: ffff8880b853b380 RCX: 0000000000000001 [ 414.711097][T11853] RDX: 0000000000000046 RSI: ffffffff8defab9f RDI: ffffffff8c1c4180 [ 414.719069][T11853] RBP: ffffc9000459ef58 R08: 0000000000000001 R09: 0000000000000001 [ 414.727040][T11853] R10: ffffffff90d80d57 R11: 0000000000000000 R12: ffffffff90d840c4 [ 414.735012][T11853] R13: ffff8880b853c220 R14: ffff88801e6c9ec0 R15: ffff8880b853b380 [ 414.742983][T11853] FS: 00007f702a8346c0(0000) GS:ffff888124371000(0000) knlGS:0000000000000000 [ 414.751918][T11853] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 414.758503][T11853] CR2: 0000000003f88000 CR3: 000000007a378000 CR4: 00000000003526f0 [ 414.766475][T11853] Call Trace: [ 414.769754][T11853] [ 414.772688][T11853] __schedule+0x1e84/0x67a0 [ 414.777218][T11853] ? __pfx___schedule+0x10/0x10 [ 414.782086][T11853] ? mark_held_locks+0x40/0x70 [ 414.786858][T11853] preempt_schedule_irq+0x50/0x90 [ 414.791904][T11853] irqentry_exit+0x205/0x7e0 [ 414.796512][T11853] ? trace_reschedule_exit.constprop.0+0x6b/0x220 [ 414.802951][T11853] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 414.808414][T11853] RIP: 0010:rcu_is_watching+0x80/0xc0 [ 414.813795][T11853] Code: 89 da 48 c1 ea 03 0f b6 14 02 48 89 d8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 24 8b 03 c1 e8 02 83 e0 01 65 ff 0d f0 81 1e 12 <74> 07 5b 5d e9 d7 5c 9f 09 e8 b2 35 89 ff 5b 5d e9 cb 5c 9f 09 48 [ 414.833413][T11853] RSP: 0000:ffffc9000459f078 EFLAGS: 00000286 [ 414.839481][T11853] RAX: 0000000000000001 RBX: ffff8880b8433da8 RCX: ffffffff9183ba01 [ 414.847452][T11853] RDX: 0000000000000000 RSI: ffffffff8c1c4100 RDI: ffffffff8e1d0920 [ 414.855420][T11853] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000007 [ 414.863393][T11853] R10: 0000000000000200 R11: 0000000000015849 R12: ffffc9000459f150 [ 414.871368][T11853] R13: ffffc9000459f100 R14: ffffc9000459fc20 R15: ffffc9000459f134 [ 414.879348][T11853] ? rcu_is_watching+0x12/0xc0 [ 414.884123][T11853] unwind_next_frame+0x745/0x2090 [ 414.889158][T11853] ? __do_fault+0x10b/0x440 [ 414.893669][T11853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 414.899843][T11853] arch_stack_walk+0x94/0xf0 [ 414.904446][T11853] ? do_fault+0xa99/0x1750 [ 414.908888][T11853] stack_trace_save+0x8e/0xc0 [ 414.913593][T11853] ? __pfx_stack_trace_save+0x10/0x10 [ 414.918997][T11853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 414.925175][T11853] ? is_bpf_text_address+0x94/0x1a0 [ 414.930389][T11853] save_stack+0x162/0x1e0 [ 414.934728][T11853] ? __pfx_save_stack+0x10/0x10 [ 414.939588][T11853] ? post_alloc_hook+0xfd/0x120 [ 414.944455][T11853] ? get_page_from_freelist+0x11a6/0x33b0 [ 414.950194][T11853] ? __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 414.956284][T11853] ? alloc_pages_mpol+0x1fb/0x540 [ 414.961320][T11853] ? folio_alloc_mpol_noprof+0x36/0x260 [ 414.966877][T11853] ? shmem_alloc_folio+0x135/0x160 [ 414.972003][T11853] ? shmem_alloc_and_add_folio+0x371/0xd40 [ 414.977838][T11853] ? shmem_get_folio_gfp+0x6ab/0x1900 [ 414.983213][T11853] ? shmem_fault+0x1f9/0xa20 [ 414.987808][T11853] ? __do_fault+0x10b/0x440 [ 414.992328][T11853] ? __lock_acquire+0x4a5/0x2630 [ 414.997273][T11853] __set_page_owner+0x8c/0x540 [ 415.002050][T11853] ? __pfx___set_page_owner+0x10/0x10 [ 415.007431][T11853] ? bad_range+0x257/0x3f0 [ 415.011859][T11853] ? lockdep_hardirqs_on+0x78/0x100 [ 415.017074][T11853] ? get_page_from_freelist+0x1185/0x33b0 [ 415.022818][T11853] post_alloc_hook+0xfd/0x120 [ 415.027516][T11853] get_page_from_freelist+0x11a6/0x33b0 [ 415.033081][T11853] ? __pfx___might_resched+0x10/0x10 [ 415.038386][T11853] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 415.044309][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.049259][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.054200][T11853] ? css_rstat_updated+0x1ce/0x5a0 [ 415.059338][T11853] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 415.065688][T11853] ? do_raw_spin_lock+0x128/0x260 [ 415.070724][T11853] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 415.076104][T11853] ? find_held_lock+0x2b/0x80 [ 415.080797][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.085736][T11853] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 415.091648][T11853] ? policy_nodemask+0xed/0x4f0 [ 415.096514][T11853] alloc_pages_mpol+0x1fb/0x540 [ 415.101374][T11853] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 415.106760][T11853] folio_alloc_mpol_noprof+0x36/0x260 [ 415.112147][T11853] shmem_alloc_folio+0x135/0x160 [ 415.117114][T11853] shmem_alloc_and_add_folio+0x371/0xd40 [ 415.122777][T11853] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 415.128955][T11853] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 415.134944][T11853] shmem_get_folio_gfp+0x6ab/0x1900 [ 415.140153][T11853] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 415.145792][T11853] ? filemap_map_pages+0x9c1/0x2140 [ 415.151012][T11853] shmem_fault+0x1f9/0xa20 [ 415.155435][T11853] ? __pfx_shmem_fault+0x10/0x10 [ 415.160380][T11853] ? __pfx_filemap_map_pages+0x10/0x10 [ 415.165859][T11853] ? find_held_lock+0x2b/0x80 [ 415.170551][T11853] __do_fault+0x10b/0x440 [ 415.174887][T11853] do_fault+0xa99/0x1750 [ 415.179147][T11853] __handle_mm_fault+0x187d/0x2a00 [ 415.184278][T11853] ? reacquire_held_locks+0xce/0x1e0 [ 415.189574][T11853] ? __pfx___handle_mm_fault+0x10/0x10 [ 415.195055][T11853] ? lock_vma_under_rcu+0x17c/0x590 [ 415.200281][T11853] handle_mm_fault+0x36d/0xa20 [ 415.205071][T11853] do_user_addr_fault+0x5a3/0x12f0 [ 415.210198][T11853] exc_page_fault+0x6f/0xd0 [ 415.214722][T11853] asm_exc_page_fault+0x26/0x30 [ 415.219578][T11853] RIP: 0033:0x3f88000 [ 415.223572][T11853] Code: Unable to access opcode bytes at 0x3f87fd6. [ 415.230149][T11853] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 415.236218][T11853] RAX: 0000000000000000 RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 415.244193][T11853] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 415.252166][T11853] RBP: 00007f7029a32d6f R08: 0000000000000002 R09: 0000000000000000 [ 415.260143][T11853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.268116][T11853] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 415.276097][T11853] [ 415.279131][T11853] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 415.286414][T11853] CPU: 0 UID: 0 PID: 11853 Comm: syz.3.1418 Tainted: G L syzkaller #0 PREEMPT(full) [ 415.297361][T11853] Tainted: [L]=SOFTLOCKUP [ 415.301683][T11853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 415.311739][T11853] Call Trace: [ 415.315018][T11853] [ 415.317949][T11853] dump_stack_lvl+0x100/0x190 [ 415.322638][T11853] vpanic+0x552/0x970 [ 415.326630][T11853] ? __pfx_vpanic+0x10/0x10 [ 415.331155][T11853] ? lock_release+0x245/0x310 [ 415.335843][T11853] panic+0xd1/0xe0 [ 415.339570][T11853] ? __pfx_panic+0x10/0x10 [ 415.343998][T11853] ? check_panic_on_warn+0x1f/0x90 [ 415.349116][T11853] check_panic_on_warn.cold+0x19/0x34 [ 415.354499][T11853] ? update_rq_clock+0x40a/0xd20 [ 415.359454][T11853] __warn.cold+0x191/0x328 [ 415.363877][T11853] __report_bug+0x296/0x3d0 [ 415.368397][T11853] ? update_rq_clock+0x40a/0xd20 [ 415.373350][T11853] ? __pfx___report_bug+0x10/0x10 [ 415.378392][T11853] ? __pfx_debug_object_activate+0x10/0x10 [ 415.384222][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.389169][T11853] ? update_rq_clock+0x40a/0xd20 [ 415.394121][T11853] report_bug+0xb2/0x220 [ 415.398380][T11853] ? update_rq_clock+0x40a/0xd20 [ 415.403331][T11853] handle_bug+0x16a/0x2a0 [ 415.407669][T11853] exc_invalid_op+0x17/0x50 [ 415.412189][T11853] asm_exc_invalid_op+0x1a/0x20 [ 415.417049][T11853] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 415.422614][T11853] Code: ab 88 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 80 0b 00 00 48 b8 00 00 00 00 00 [ 415.442231][T11853] RSP: 0000:ffffc9000459eda8 EFLAGS: 00010046 [ 415.448310][T11853] RAX: 0000000000000000 RBX: ffff8880b853b380 RCX: 0000000000000001 [ 415.456282][T11853] RDX: 0000000000000046 RSI: ffffffff8defab9f RDI: ffffffff8c1c4180 [ 415.464261][T11853] RBP: ffffc9000459ef58 R08: 0000000000000001 R09: 0000000000000001 [ 415.472238][T11853] R10: ffffffff90d80d57 R11: 0000000000000000 R12: ffffffff90d840c4 [ 415.480216][T11853] R13: ffff8880b853c220 R14: ffff88801e6c9ec0 R15: ffff8880b853b380 [ 415.488203][T11853] ? update_rq_clock+0x9c/0xd20 [ 415.493075][T11853] __schedule+0x1e84/0x67a0 [ 415.497610][T11853] ? __pfx___schedule+0x10/0x10 [ 415.502478][T11853] ? mark_held_locks+0x40/0x70 [ 415.507247][T11853] preempt_schedule_irq+0x50/0x90 [ 415.512304][T11853] irqentry_exit+0x205/0x7e0 [ 415.516912][T11853] ? trace_reschedule_exit.constprop.0+0x6b/0x220 [ 415.523357][T11853] asm_sysvec_reschedule_ipi+0x1a/0x20 [ 415.528826][T11853] RIP: 0010:rcu_is_watching+0x80/0xc0 [ 415.534212][T11853] Code: 89 da 48 c1 ea 03 0f b6 14 02 48 89 d8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 24 8b 03 c1 e8 02 83 e0 01 65 ff 0d f0 81 1e 12 <74> 07 5b 5d e9 d7 5c 9f 09 e8 b2 35 89 ff 5b 5d e9 cb 5c 9f 09 48 [ 415.553827][T11853] RSP: 0000:ffffc9000459f078 EFLAGS: 00000286 [ 415.559899][T11853] RAX: 0000000000000001 RBX: ffff8880b8433da8 RCX: ffffffff9183ba01 [ 415.567875][T11853] RDX: 0000000000000000 RSI: ffffffff8c1c4100 RDI: ffffffff8e1d0920 [ 415.575850][T11853] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000007 [ 415.583823][T11853] R10: 0000000000000200 R11: 0000000000015849 R12: ffffc9000459f150 [ 415.591799][T11853] R13: ffffc9000459f100 R14: ffffc9000459fc20 R15: ffffc9000459f134 [ 415.599785][T11853] ? rcu_is_watching+0x12/0xc0 [ 415.604561][T11853] unwind_next_frame+0x745/0x2090 [ 415.609601][T11853] ? __do_fault+0x10b/0x440 [ 415.614115][T11853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 415.620295][T11853] arch_stack_walk+0x94/0xf0 [ 415.624904][T11853] ? do_fault+0xa99/0x1750 [ 415.629336][T11853] stack_trace_save+0x8e/0xc0 [ 415.634032][T11853] ? __pfx_stack_trace_save+0x10/0x10 [ 415.639421][T11853] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 415.645601][T11853] ? is_bpf_text_address+0x94/0x1a0 [ 415.650821][T11853] save_stack+0x162/0x1e0 [ 415.655160][T11853] ? __pfx_save_stack+0x10/0x10 [ 415.660018][T11853] ? post_alloc_hook+0xfd/0x120 [ 415.664885][T11853] ? get_page_from_freelist+0x11a6/0x33b0 [ 415.670624][T11853] ? __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 415.676711][T11853] ? alloc_pages_mpol+0x1fb/0x540 [ 415.681744][T11853] ? folio_alloc_mpol_noprof+0x36/0x260 [ 415.687304][T11853] ? shmem_alloc_folio+0x135/0x160 [ 415.692430][T11853] ? shmem_alloc_and_add_folio+0x371/0xd40 [ 415.698256][T11853] ? shmem_get_folio_gfp+0x6ab/0x1900 [ 415.703639][T11853] ? shmem_fault+0x1f9/0xa20 [ 415.708233][T11853] ? __do_fault+0x10b/0x440 [ 415.712751][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.717695][T11853] __set_page_owner+0x8c/0x540 [ 415.722474][T11853] ? __pfx___set_page_owner+0x10/0x10 [ 415.727854][T11853] ? bad_range+0x257/0x3f0 [ 415.732286][T11853] ? lockdep_hardirqs_on+0x78/0x100 [ 415.737504][T11853] ? get_page_from_freelist+0x1185/0x33b0 [ 415.743255][T11853] post_alloc_hook+0xfd/0x120 [ 415.747956][T11853] get_page_from_freelist+0x11a6/0x33b0 [ 415.753528][T11853] ? __pfx___might_resched+0x10/0x10 [ 415.758831][T11853] __alloc_frozen_pages_noprof+0x27c/0x2bc0 [ 415.764752][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.769696][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.774638][T11853] ? css_rstat_updated+0x1ce/0x5a0 [ 415.779855][T11853] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 415.786208][T11853] ? do_raw_spin_lock+0x128/0x260 [ 415.791241][T11853] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 415.796629][T11853] ? find_held_lock+0x2b/0x80 [ 415.801327][T11853] ? __lock_acquire+0x4a5/0x2630 [ 415.806269][T11853] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 415.812189][T11853] ? policy_nodemask+0xed/0x4f0 [ 415.817051][T11853] alloc_pages_mpol+0x1fb/0x540 [ 415.821913][T11853] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 415.827305][T11853] folio_alloc_mpol_noprof+0x36/0x260 [ 415.832692][T11853] shmem_alloc_folio+0x135/0x160 [ 415.837645][T11853] shmem_alloc_and_add_folio+0x371/0xd40 [ 415.843302][T11853] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 415.849480][T11853] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 415.855471][T11853] shmem_get_folio_gfp+0x6ab/0x1900 [ 415.860679][T11853] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 415.866319][T11853] ? filemap_map_pages+0x9c1/0x2140 [ 415.871541][T11853] shmem_fault+0x1f9/0xa20 [ 415.875962][T11853] ? __pfx_shmem_fault+0x10/0x10 [ 415.880905][T11853] ? __pfx_filemap_map_pages+0x10/0x10 [ 415.886390][T11853] ? find_held_lock+0x2b/0x80 [ 415.891082][T11853] __do_fault+0x10b/0x440 [ 415.895419][T11853] do_fault+0xa99/0x1750 [ 415.899684][T11853] __handle_mm_fault+0x187d/0x2a00 [ 415.904818][T11853] ? reacquire_held_locks+0xce/0x1e0 [ 415.910108][T11853] ? __pfx___handle_mm_fault+0x10/0x10 [ 415.915592][T11853] ? lock_vma_under_rcu+0x17c/0x590 [ 415.920818][T11853] handle_mm_fault+0x36d/0xa20 [ 415.925604][T11853] do_user_addr_fault+0x5a3/0x12f0 [ 415.930735][T11853] exc_page_fault+0x6f/0xd0 [ 415.935270][T11853] asm_exc_page_fault+0x26/0x30 [ 415.940130][T11853] RIP: 0033:0x3f88000 [ 415.944124][T11853] Code: Unable to access opcode bytes at 0x3f87fd6. [ 415.950704][T11853] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 415.956773][T11853] RAX: 0000000000000000 RBX: 00007f7029c16090 RCX: 00007f702999ce59 [ 415.964750][T11853] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 415.972720][T11853] RBP: 00007f7029a32d6f R08: 0000000000000002 R09: 0000000000000000 [ 415.980696][T11853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.988670][T11853] R13: 00007f7029c16128 R14: 00007f7029c16090 R15: 00007ffcedaf8948 [ 415.996657][T11853] [ 415.999856][T11853] Kernel Offset: disabled [ 416.004188][T11853] Rebooting in 86400 seconds..