last executing test programs: 13.969549701s ago: executing program 2 (id=1666): clone$auto(0x6fc, 0x4dbb2, 0x0, 0x0, 0x4000c1a) clone$auto(0x4, 0x0, 0x0, 0x0, 0x8) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) unlinkat$auto(r0, 0x0, 0x1) mmap$auto(0x4, 0x2020009, 0x3, 0xeb1, r0, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) bpf$auto_BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)=@batch={0xc0cb, 0x5, 0xd3f, 0x80000000, 0x2, 0xffffffffffffffff, 0xe5a6, 0xff}, 0x4) r2 = io_uring_setup$auto(0x5, 0x0) mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9) acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e') open(&(0x7f0000000100)='./cgroup.cpu/cgroup.procs\x00', 0x880c2, 0x95) close_range$auto(0x2, r2, 0x0) acct$auto(&(0x7f0000000280)='/sys/devices/virtual/mtd/mtd0/size\x00') socket(0x2, 0x80000, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r3) sendmsg$auto_TIPC_NL_NET_SET(r3, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r4, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) r5 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14) 11.492441247s ago: executing program 2 (id=1672): socket(0x2, 0x2, 0x88) readv$auto(0x3, &(0x7f0000000600)={0x0, 0xfdf3}, 0x1da) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto_fops_x64_ro_(0xffffffffffffffff, &(0x7f00000001c0)=""/42, 0x2a) signalfd$auto(r0, &(0x7f00000003c0)={0x31e}, 0xb071) madvise$auto(0x0, 0x200007, 0x19) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x5) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x4015) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0) pread64$auto(r2, 0x0, 0x80000000008, 0x8000) ioctl$auto(0x3, 0x80108907, 0x38) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x2841, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, &(0x7f0000000040)={0x0, 0x1000, 0x7, 0x0, 0xff, "1200000000000040000000e7"}) openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/trap_flow_action_cookie\x00', 0x101180, 0x0) 11.357520123s ago: executing program 3 (id=1673): mmap$auto(0x800000, 0x202000b, 0x4, 0x15, 0xfffffffffffffffa, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x3) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000) r1 = socket(0xa, 0x5, 0x0) getsockopt$auto(r1, 0x84, 0x7f, &(0x7f0000000000)='\xc8\xfdV%\r\x80\\\xf7\\\x00', &(0x7f0000000040)=0x1004) shmctl$auto_IPC_SET(0xc, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nullb0/queue/virt_boundary_mask\x00', 0x101000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000003c0)=""/251, 0xfb) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) socket(0xa, 0x1, 0x84) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(0xffffffffffffffff, 0x4, &(0x7f0000000000)='bridge_slave_0\x00', &(0x7f0000000100), 0x4) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f00000004c0)="e3188176b96f56170e647ad5b75e3e9d5b25824af2509ae55ed5ee191ee9257ac48ac1e8c7ca249fdb72092d4d6cb4b85c6e5e63af6e6386605a2acad0c973ffc78036fb03e7317159be64a299df97910013248ab5d114aa9179182bc486b00af747556837f9ef96271ce9d8c9987a0c8f56", 0x72) connect$auto(0x3, 0x0, 0x54) 9.994798125s ago: executing program 3 (id=1676): r0 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x20000045}, 0x24000044) write$auto(r0, &(0x7f0000000100)='\x00', 0xfffffffffffffffa) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.5/usb20/20-0:1.0/usb20-port7/state\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x0, 0x100000008, 0x2100000000, 0x0, 0x6, 0xfffffffe) madvise$auto(0x110c230000, 0x8031ca, 0x9) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto(0x7fffffe, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xd}, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r2, 0x0, 0x24000000) write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r3, &(0x7f00000005c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0xffffffffffffffff, 0x2000d, 0x8, 0xeb2, 0x404, 0x80000000) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x3, 0x37) socket(0xa, 0x3, 0x3b) socketpair$auto(0x1, 0x1, 0x2a340, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x6a63d000, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x3, 0x8000, 0x0, 0x7, 0x4, 0x6]}, 0x0) mmap$auto(0x0, 0x400008, 0xe5, 0x9b72, 0x2, 0x8000) socket(0xa, 0x1, 0x0) 9.251082027s ago: executing program 2 (id=1679): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) msync$auto(0x0, 0xe0, 0x6) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x4923c1, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x9, 0x100010, r3, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/modalias\x00', 0x80500, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) read$auto(0x3, 0x0, 0x7fffffff) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0xf7, 0x1e, 0x1000002) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketcall$auto_SYS_SOCKETPAIR(0x8, &(0x7f0000000100)=0xe595) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) ioctl$auto_BLKTRACESETUP2(r5, 0xc0481273, 0x0) 8.353959913s ago: executing program 1 (id=1680): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x80003, 0x300) socket(0x2, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2a, 0x2, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sda\x00', 0xce140, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x2, 0x73) io_uring_setup$auto(0xa, 0x0) pipe$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x500, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x10bb41, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x82000, 0x0) openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, 0x0, 0x40000, 0x0) socket(0xa, 0x5, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x900, 0x0) r0 = socket(0x10, 0x2, 0x14) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x200048c0}, 0x4000040) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c804}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0xff, 0x4) 7.893766968s ago: executing program 0 (id=1682): mmap$auto(0x3, 0x40009, 0xe3, 0x9b72, 0xffffffffffffffff, 0x28000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) getsockopt$auto_SO_RCVMARK(r0, 0x0, 0x4b, 0x0, 0x0) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) mlockall$auto(0x7) write$auto(0xffffffffffffffff, 0x0, 0xfffffdf1) fcntl$auto_F_ADD_SEALS(0xffffffffffffffff, 0x409, 0x9) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000600), 0x142, 0x0) writev$auto(r1, &(0x7f0000000c00)={0x0, 0x7}, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x1d, 0x2, 0x7) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1d48, 0x0) r2 = socket(0x1e, 0x2, 0x0) getsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x0) 7.547648858s ago: executing program 1 (id=1683): mmap$auto(0x0, 0x400008, 0xdf, 0xfffffffffffffc10, 0xffffffffffffffff, 0x800008000) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r1 = fcntl$auto(r0, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) sendfile$auto(r1, 0xffffffffffffffff, 0x0, 0xc01) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/vendor\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000018c0)=""/219, 0xdb) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r3 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r3, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x2, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0x5) unshare$auto(0x40000080) mmap$auto(0x3, 0x9, 0x7, 0xeb1, 0x404, 0x10008000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000840)="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", 0xdd4) write$auto(0x3, 0x0, 0xfffffdef) 6.350924945s ago: executing program 0 (id=1684): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = fcntl$auto(r0, 0xbb, 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000040), r0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r3 = socket(0xa, 0x5, 0x84) setsockopt$auto(r3, 0x10000000084, 0x20, 0x0, 0x7) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae80, 0x0) ioctl$auto(r4, 0xae44, 0xffffffffffffffff) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) fcntl$auto(r5, 0x402, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptywf\x00', 0x1, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x40000080) r6 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/slabinfo\x00', 0x0, 0x0) lseek$auto(r6, 0x7fd, 0x1) fadvise64$auto(0xffffffffffffffff, 0x0, 0xffffffff80000001, 0x8) msgget$auto(0x0, 0x5) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, 0x0, 0x20602, 0x0) msgsnd$auto(0x0, &(0x7f0000000040)={0x5}, 0x1000, 0x4) msgctl$auto(0x0, 0x0, 0x0) sendmsg$auto_HANDSHAKE_CMD_DONE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r2, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@HANDSHAKE_A_DONE_STATUS={0x8, 0x1, 0x4}, @HANDSHAKE_A_DONE_SOCKFD={0x8, 0x2, r0}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000002}, 0x4004) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) 4.97736484s ago: executing program 1 (id=1685): mmap$auto(0x800000, 0x202000b, 0x4, 0x15, 0xfffffffffffffffa, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x3) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000) r1 = socket(0xa, 0x5, 0x0) getsockopt$auto(r1, 0x84, 0x7f, &(0x7f0000000000)='\xc8\xfdV%\r\x80\\\xf7\\\x00', &(0x7f0000000040)=0x1004) shmctl$auto_IPC_SET(0xc, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nullb0/queue/virt_boundary_mask\x00', 0x101000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000003c0)=""/251, 0xfb) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) socket(0xa, 0x1, 0x84) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(0xffffffffffffffff, 0x4, &(0x7f0000000000)='bridge_slave_0\x00', &(0x7f0000000100), 0x4) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f00000004c0)="e3188176b96f56170e647ad5b75e3e9d5b25824af2509ae55ed5ee191ee9257ac48ac1e8c7ca249fdb72092d4d6cb4b85c6e5e63af6e6386605a2acad0c973ffc78036fb03e7317159be64a299df97910013248ab5d114aa9179182bc486b00af747556837f9ef96271ce9d8c9987a0c8f56", 0x72) connect$auto(0x3, 0x0, 0x54) 4.811878619s ago: executing program 0 (id=1686): close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0xc0000, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x222680, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0x4, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4040aea0, &(0x7f00000000c0)={0xdd}) mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000) close_range$auto(0x0, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC0\x00', 0x404000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/ptp/ptp0/max_adjustment\x00', 0x400, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000140)='/dev/binderfs/binder1\x00', 0x840, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0) ioctl$auto_BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000040)) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx2\x00', 0x202041, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xb, 0xc, 0x1000, 0x0) semctl$auto(0x1, 0xfffffffe, 0x3, 0x5) 4.555335399s ago: executing program 3 (id=1687): r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f00000006c0), 0x121300, 0x0) readv$auto(r0, &(0x7f0000000040)={0x0, 0x5}, 0xa) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/pagemap\x00', 0x80800, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x4cb00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x40000080) bind$auto(0x3, 0x0, 0xb) socket(0x1d, 0x2, 0x7) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x8002, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x4, 0x2000c, 0x80010000000, 0x15, 0xffffffffffffffff, 0x8000) r2 = memfd_create$auto(0x0, 0x4) r3 = socket(0xa, 0x3, 0x3a) statx$auto(r2, 0x0, 0x1000, 0xbdfc, 0x0) setsockopt$auto(r3, 0x29, 0x14, 0x0, 0x56b) r4 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r4, 0x29, 0x14, 0x0, 0x568) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x0, 0x4, 0x37a) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @host}, 0x55) accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff) setns(0xffffffffffffffff, 0x60020000) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video20\x00', 0x80000, 0x0) ioctl$auto(0x3, 0x541b, 0x38) 4.536969783s ago: executing program 0 (id=1688): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop5/queue/discard_max_bytes\x00', 0x0, 0x0) mmap$auto(0x0, 0x20006, 0x4, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x1f, 0x80804, 0x7) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0xb2, 0xde, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) msync$auto(0x0, 0x8000, 0x6) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/block/nullb0/hctx0/busy\x00', 0x40, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x9076, 0x400000000000001, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) memfd_create$auto(0x0, 0x5) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x4c, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_seg6(0xfffffffffffffffd, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/shmem_enabled\x00', 0x1a1842, 0x0) read$auto(0x3, 0x0, 0xfdef) r1 = socket(0xa, 0x5, 0x84) getsockopt$auto(r1, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0xa, 0x80000, 0x80) sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000040), 0x5, 0x0, 0x9, 0x0, 0x8000001f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0\x00', 0x601, 0x0) ioctl$auto_MEMSETBADBLOCK(r3, 0x40084d0c, &(0x7f0000000100)=0x40) 3.869420227s ago: executing program 2 (id=1689): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/snd_hda_intel/parameters/bdl_pos_adj\x00', 0x80102, 0x0) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x29, 0x18, 0x0, 0x110) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r2, 0x4bfa, 0x1) r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r3, 0x400, 0x1) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r4, 0x20, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000850}, 0xc08c) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) r5 = socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x23, 0x0) r6 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r6, 0x0, 0x4) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="a001ee", @ANYRES16=r4, @ANYBLOB], 0x1a0}, 0x1, 0x0, 0x0, 0x4040004}, 0x24048000) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000300), r5) sendfile$auto(r0, r0, 0x0, 0x3) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x121001, 0x0) 3.828835484s ago: executing program 1 (id=1690): mmap$auto(0x0, 0x400008, 0xdf, 0xfffffffffffffc10, 0xffffffffffffffff, 0x800008000) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r1 = fcntl$auto(r0, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cpu.pressure\x00', 0x183142, 0x0) sendfile$auto(r1, r2, 0x0, 0xc01) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/vendor\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000018c0)=""/219, 0xdb) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r4 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x2, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) statmount$auto(0x0, 0x0, 0x1fe, 0x5) unshare$auto(0x40000080) mmap$auto(0x3, 0x9, 0x7, 0xeb1, 0x404, 0x10008000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000840)="5142651f911c17e9dd66bf94ea32689283bb895dbc0a97721ed6e250c974356905898b7d48acecddf280cf6dd4ba18c1aa3928071c6585025ceab0e2f34f37ddec138ea587fc4def825608b0ab2a6ecac42062bd3c58ba606307b7471b20a40ffa168b91dde6727571c4ec94bfbde1df90ccb265ffda374c98ffb1ee22069af38a3f200532dbbe5e98f4455170e9a137517b9b7b8840359940ab00f37125c2bec0ac36606b6c69edb35967d723fb81a15faea2bd280d1581ad1ef597bb4dc09f6a5d53aaff1877b77c4e425761dc09d34498c1fce72c0ba1041a99b8748a37597b9567cda1de2cbf6962798e5ee11bf7cb2c70a9502f33c43b8e5dc54de743a2e24cb94c22d669b434888a7ce4cb16cd77b324258e07af32adc0cb38f8c622085783f6804edc3913fb9e98c55713fa0bf8101ad0f6f43407ce4be0001d1bb201bec283ade79ab23484c1076e703864629ac9a6031533dc956f705f89f0e0ef7d3109e46859d1f2ad1b8cb3cfcedf868a3be101e8b9acd75e39e6a27a541aa9fe86ad3119b7049c3fad2a901222eb948cabb4b5c3e5ba6ffc02a15bf7d550b00ab0f3dd3002924f7bd0701269ae293c4cb231b9127d1f6b38dd6fbb3429905384eed7eed9330a9c5e732bdd510169d9ca3e420ea2102be3770a0ab598c037b8f01e8910cf8b0942aafb156ac90724cf552df158a7f59c26e62f3fcf32d860c2259cb1b3118a773ff3cfbaf9c5b068dade5cd7778f1ea98700629b62534735fef3071c30afa6ea26f7e651ec140936c07d9e90f1c9faef3e05376b1e121af6a6691616c10e19fd4f16b1858b44d99e597908cda0e8fa8c21d8b700987d7723a4b5a4ff3c371f2d1cb9fb2f054abc58727239ba67a173f1431083fedc7c4304488c13c75e4995a58ac9de085377356ddc5338aeb44e7f3d06f82a5e0c846159c881a0395a3dbf32a9f2530a520721431a752b13b01a89bdf2b38387b72e8a533936623ec396f6ef94ddfcca047bf20a6fe450a03dedb36a57355e2519ff579b5c63095f48407ece8a7c6c4f5b2582616f0a6bba059810c0a28355fb12dceec9e290026452c3135f8ad93f9617f22e590122d43f6fdc1ea0f9ec12c551b5127108443bb081f7a89660034ea4f3c4305108428cc91918dbb28c2a117f09609e40903b13055e92a727afa767b1f97df335ee729686c0113e4cc18aa50f4ad82b1d403cc6c11ac3bf63415560417d7d488df01b69c925ca3fce60ca7ac767fd11df61caf62f3ab67dad043faf1cc334903e0f419c2e97553ecaad5814bf097192e76e9a16bc5c9be932718aba32cd7dbcc6bc634a463c6f709cc81963b39442e710c14c7e107b0aeb7b6a0e3f3757860d10dd741863277c43ce4dcec49f4558959b08f59182baf4f250aa045fee383ceaec280817bf222dfbeeca8c1ec8473176326c1ffd49ea072b5f3c73f36865b6052a1595c1bb76cfe37f976848fbcb408381ddeff9c318a2e6bbfe6c18ef16531fec3c47874a5391238c0d6b0e033db3fce94127cc9c98a4211e5d873f7b4810846d96be2d6cac532fce0ddee737e4d1ddb65b8b2449984a897e4090449ed4fb4006fb9d133e51396d4664a3f0c395c5b24781f8389979ccb565c6461b66db7134d15cff5ae8f935a5bcb23caace2edd2b37a726575e3cb0528de05edd9f03e30feb617767b6a557280a0a288b52af44a1607b6063867e5c9d8d56c44968fd509b5983fa06e6b1eefb2f8cee0c1cb49b8b569cf13b77adbc22ce972cd718167ac571ee41a446d13931f849d5636c729996b36ec84171fde260a4e01e9770cf687591a79833ae6473c51e12c0faab96ef093e6178d485526dbf775c94324c76bd4af2652e9036b1cc0d3df05c9232ee6eef7c4f46a6cf8ad160ad087aba6928bf156bf3ade1d135a965c4a2b283485737da67fe99227f2fbfb3baa74d75fe29122adfd82fcb9325b7ea826a52559654e76d494a374d9535facfcd4ab248e388c516bb8a0dc151b1557e418fd7c625c67ab1c50d6f05b97ba15c55631aeea44b21131aa93ead176f7bfd1418856e38782f004f272738827a64bb695f6b6a08cff8d1917be52a8851bd2bfd57d08bb0660e2ffc23792a419c2e9b006e3b0ad05044d99b97391fd2cceb86cf26acebe089a861340b04fd01e1baa70583032a30ea2e605217b80f7ee16d7e28be43d12bb2b67937dd26a8aeb84fef2f2d52f75232a400e7b279dcfc01953b0c46203477a50b5853e8f7b14b2ba31db742504bca6ed95b18846706c9fd85bf2a3a2642029b9ff2828bf0f7cbd96109a237961be8fe5c62f0fcc04c994f123f4a22f048403eac9308cfd2f2e4350c72e9ef83416ce973d3aa90d281a0275886dd3858b5869784ae58e257aa5af6d373dcc9cf520e364be748833adbb10daa6f6a334b51d27529d86ea5ce874562f9f93da45d244224b936fced3b658abbe7aa1f0d502fffce823f528ab47ea3540722f144733666229ae08cfc7e61247742ea4e3c180938ae7c7b81c1ee975c831f79672e044cefc49894c2ab73bba2580ac476cc0e56b6748b8edbb37a3f8dda7ffad4ec07abce7c4d10fc32e40d5a9db37f7b1e3a6eabedbefa9dd8eef189b92363d3391d384af26b7d47958d3d82845c9b668da5bcbd64058dc9e1c6d903ab5d2aa049d197116a11309a1abe9e5b3f9e7f1c623242b1d8089bc369d145a7070e8a9bdf543dbffe899ff9366009a3b0424a634681b530dad9ef23f136a10c7287068e57f3c2de45adf0a105c328e0035b97168f4c17aa4610b2e6e1a6ba0b71c06417b7a9497be4a009b19d7162adfd4d7b6490faf3782a920281333ad09b848ab5f4d15534b8c4e43dc9604b0630f8d349b2c80a98fde04693c31cbed7d460edfc0138dcc5d3974e682bbd555ac19625bf6e0607d8803391ec9c2dc41fc4e8bceae4f53507137324dd02914a067d52a577b812ddac4a34765c26a98839b3edb6290abff0c75991d6f8c1bd7540f38a7f25fec2f3539f894c938e1f3cf0ff1e6994d6a6ecc457a482f045ba712a85e8e31afd49c8e3480dc1c36d56ab2eceac6e5a847455d8ef4e3d45cd463c421bd1bce2ca57dd88f0e7ab3446cdfa8cb3914c240936f1738af7009e9131b240b59af55d7e38307b91fc8f00410cfdcfacaa341607a801afa63640091eb00b860700ea882878a8d9838f5597b970366be7d167ddebfe3c9253b5dbf7f30a67ee4d87dccb3c723c20200aa5fc036caf12811b19ce49c81ce328d7b24587353ecb99bafd327e33303cf447b36800d1bed8ee10df527d55c0d5f7506fb11cb1338074113579e665c6f3cffde5a8ee7fa7bf3f8157986cf7c1c5dbdedaacbe3946b3d8809dec7387f006c062b93b6b481a806e5544ddeea7218fcc15c25a88164bfd0735e6290167cb2dbf4b4a317ba00b1fc27d203a6cff71ef8fe97a97d8e07af2ce1d0a0a2aa9ede7dd0572325075c83c2ecf866aa01654eff55ebe4e489e72152e6a3090e2348732704eb02997ffd23a63faabfbbbd1fb124cab606faed24a393058cea1c1286001ee5c0c1fa26b6a81ebdd4718a94cebdb45bfe812c771df398d3305da03d37ced9d0242b6da212dc9f5c14d7ff999bee20f6621792d1442e449eba8589a823e5e99c65fdffbaefe89e2e32406ec4cf574e335e2d288e4cdad56f4b1b57c364ed3e28809e480d6f410c7ebf43bd2a605d6a8c9facae6b7f8f2c56f792ae21fc0cc5dd9beae0cab3547ebb5467183c2f01bc315bd7bd191088886752dc5108093bdbc91348743440130f33d3dfa9c25490245e5fa904f8660e82253c826b7bea4e9a7a1c627e10c56d71878a644bd176016f29cf5398be14cc0fdec45c65e2b967aedb75212eed1eb05a44da62190009d1c08163b74813b82c27f1e6cd681a4b5150f967444b7bc930da68603fd706e96ba8663b2e50ef0a9b04e321a8a337b08fea7288a3fef5062c7e4c17ad3d490870d39c10b78a74eab25c993527e313a4f59d86de55aa9a8a63f734c2db556692fe993b0cd08e0ab5434c9ec02d5127354f55e6b5d5a7b61685d02edae21ece71d203abf7408211229a9ebbfdeffa2c0f38db274066d0706d80398c172e6daf4a0dce62c2287cbf0d30cfa313d7baf4e5caa18f594f0ab0d854f3cef76ff83e96fa49d0e0f8a47193b51a0a45aee2e1d9a5b372b8ee828f645a06979ec351d798480c7824e846028c02f58b5641acbae1e2079abd86182a662bb1642c9346d7fba628fb012da293acef33b8b76a8885c2e5d685348b6148c5b44409f58d8d5f29344fe8a2e4c2432ae622bb1912ea65d55745eff6aa689e859dcaeff39bff895025bd72cd780d59cbaa0886afd5d6676d2de6266903115525c075cc3f75ce9eba3787a890e1f758f0e502c4c9c0538dc942cf4e2d69742edeeddb66b1d459fcf6f744b2c40111104ab21fd4e99b4477e25cc5a9af59108c8b2f569d4ba227c754f294fdc1e6b383fd89861a203f4d4ee33814aeb21ee411a0d6918533aa2450b1e35c97ab6f01f3829c8a4c33fe0fbc81dd579bbdb44eda4f335d2bc512ca7f38f603c29033c94df2c9533f4422432f574a021e90a0fe3a4cf54de46e25986315b30956face49e26e8dcbcc9e1363627a9f38a2ee8304307dab4013d77f4c337551e2a6ac230788513cdd15e734263e4973c75757d9809c510977adc3be6c5b110597b09c7dad1f54e4506744710b53221e4a7982ac4c59bfae6370258b5af7864a4ca680addd736e35da579cc0e975e6cdefa3d082c8b4b10b205278c5e60507f5bf17a3c822a6e70e087df68022c1315cf499750e86ea1e060e63ebf63973eebe34ba6e687eda5ef020b61896a187842d219b2b9787be7910fc5180b277f2b00d760629816aa6a7240d7b1984158107eab929d79d6264611d404f2331eda49fe426edc34793dd3252aa54eb44544774d060269913cfcb105f55836eb6702c6034a3fe98bc9678850e54903d3", 0xdd4) write$auto(0x3, 0x0, 0xfffffdef) 3.722322788s ago: executing program 3 (id=1691): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x4d, 0x0) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/set_event\x00', 0x8c1a2, 0x0) socket(0x25, 0x5, 0x0) write$auto(0x3, 0x0, 0xfdef) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto(r0, 0x4611, r0) r1 = bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x4) r2 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_GET_SE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)={0x94, r2, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@NFC_ATTR_COMM_MODE={0x5}, @NFC_ATTR_VENDOR_DATA={0x70, 0x1f, "4867d901dacc02eee1ab47506566b7c229d22cc8a7fbdfcfd9bd6028aa45e54fa80dca082e29c1e5b387677a7a5ae38f64b5edda851d2e0632b3268a8713d048450c51ae49a3cab3b0434f170ac98a1d4b2af52a1318bc7b75e97377c1719dc4396b8cd427aebea5bd8b9ef8"}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x1}]}, 0x94}, 0x1, 0x0, 0x0, 0x44110}, 0x2400c000) sendmsg$auto_NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c0000004c0a15770d3c8624268adb31474d65fd988d4ed5775c3cb2e680705a7f66bc6a9dbb2170a54e3795e4114c8b5ac23f458e70273f2135e1529c53db84b52da477735b42e03aa05b30e5d8d17a3aefa82db522bd87c545de0af4f8a753a6b6c28d8f77bfecd10719678e1453a56039ce6fbfce53eeb63f2ef49cc14fe9be963bde73ce595a15b14d11462800"/157, @ANYRES16=r2, @ANYBLOB="00042cbd7000fbdbdf250200000008000400080000000e001400255c2723292626252a28000005000f00030000000d0002002f6465762f66623000000000060002002b2f0000050010000100000005000f000900"], 0x5c}, 0x1, 0x0, 0x0, 0x41}, 0xc044) socket(0xa, 0x3, 0xff) setsockopt$auto(0x400000000000003, 0x29, 0x3a, 0x0, 0x3) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8810) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r6) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8810) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) fsopen$auto(0x0, 0x1) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'wg0\x00', 0x0}) r9 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010029bd7000fddbdf250100000008000100", @ANYRES32=r8, @ANYBLOB="0000001400000000"], 0x24}, 0x1, 0x0, 0x0, 0x20000011}, 0x810) close_range$auto(0x2, 0x8000, 0x0) 3.409006145s ago: executing program 0 (id=1692): close_range$auto(0xffffffffffffffff, 0x8, 0x0) openat$auto_gpiolib_fops_(0xffffffffffffff9c, 0x0, 0x10000, 0x0) socket(0x18, 0x6, 0x9) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80001, 0x0) write$auto(r0, 0x0, 0x9) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0xea880, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000001000), 0x4000, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x4000000) sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x44) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r2 = mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x400056a, 0x9, 0x0) ftruncate$auto(r2, 0x10000000004) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'vlan0\x00'}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40001) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x49402, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r3 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000080), 0x20540, 0x0) ioctl$auto(r3, 0x40046103, 0x81) finit_module$auto(0x3, 0xfffffffffffffffe, 0x400000000004) r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r4, 0x0, 0x4) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000240)={0x0, 0x7}, 0x3) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2, 0x0) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d190eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eaf240963110d61771552c03de65800", 0x2}) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r6, &(0x7f00000007c0)='0\x00\xa6\xcc\r\x91QU\x9d\xd6\xc3a?\xe6\x9f\xdc\x13t\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94\xf3\xb38\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xc2\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x01\x00\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x01\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057\x1c&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\x7f\x00\x00\x00AN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81)f\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00\x00\x00\xec\xbd_r\xf16\xec\xf3\xbb[.\xf3\xef\xf8\x16x\x9e\xb3*:/L\xa0Kg\xf0\xa2\x84\xa3o\xcc\x9e\xd3\xeb\xd3(\xaa\x93g~\x01\x81\x1eV\xf1L\xfc\xad\xa9#O\xe4\x12\xd3\xbda\xbc\x9a\x9f+9\'\xc4\x13\xf0\xc88\x1d80?\xc2\a\af\xdc?-&\xedAd\x9c\xe5&\xb9\x14\xe1\x85 \xbf\x18\xfc:#\xcf\x7ffT\xefPb\xe1\xfa]\xcc\x8a\xe3\x99\x98u\x9bj>\x9d\xc2\x1fk\x87\x92\xfb(U\xa8\xcd4+\xf6e5],\xec\x84 \x1b\x10d\x1b@\x84X\xa1\xa8\xd7\xccO\xb0Qq\x1a\xa4<\\\x0e\xa4\x7f^\x1a|\xfd\xe6#\x00\x9e\x1d\x00k\x84\x1b\xa3\xb1O\xe0IzJRO\xf4,\xe5\xdb\x03CA\x13Q\x84\xbb\x88\xb4\xe3\xba\xf0/\xd0\x04\ny\a\x8d\x12h\xe22\xcb\"\xce\x00\x00', 0x5) 3.272766942s ago: executing program 3 (id=1693): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = gettid() rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xca, 0x2, @_sigchld={r0, 0x0, 0x401, 0x5, 0x3}}}) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = open(&(0x7f0000000040)='./file0\x00', 0x2041, 0xfa) write$auto(r1, 0x0, 0xfffffdf1) fsetxattr$auto(r1, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1) ioctl$auto_FS_IOC_SETFLAGS2(r1, 0x40086602, 0x0) mprotect$auto(0x0, 0x8000000000000001, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0) ioctl$auto_BLKALIGNOFF(r2, 0x127a, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sda\x00', 0x60742, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x401, 0x8000) r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0) ioctl$auto_UBI_IOCATT(r4, 0x40186f40, 0x0) ioctl$auto_UBI_IOCDET(r4, 0x40046f41, 0x0) ioctl$auto_UBI_IOCDET(r4, 0x40046f41, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/net/dummy0/netdev_group\x00', 0x82, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000100)='8', 0x1) r6 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r6, 0x0, 0x28, 0x0, 0xc) ioctl$auto_BLKZEROOUT(r3, 0x127f, 0x0) mmap$auto(0x0, 0x2020006, 0xffffffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8000) 2.9153098s ago: executing program 1 (id=1694): mmap$auto(0x0, 0x400008, 0xdf, 0xfffffffffffffc10, 0xffffffffffffffff, 0x800008000) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) r1 = fcntl$auto(r0, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x8, 0x9ebfffffffffffff) fcntl$auto(0x3, 0x4, 0xa553) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cpu.pressure\x00', 0x183142, 0x0) sendfile$auto(r1, r2, 0x0, 0xc01) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.3/vendor\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000018c0)=""/219, 0xdb) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r4 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000000f80)=[{0x3ff, 0x2, 0x8000000000000000}, {0x5, 0x5, 0x2}, {0xa6, 0x1, 0x2}]) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0x5) unshare$auto(0x40000080) mmap$auto(0x3, 0x9, 0x7, 0xeb1, 0x404, 0x10008000) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000840)="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", 0xdd4) write$auto(0x3, 0x0, 0xfffffdef) 1.761179922s ago: executing program 2 (id=1695): socket(0x2, 0x80802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) socket(0x23, 0xa, 0x0) seccomp$auto(0x2, 0x10, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r4 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r3, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r4}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) sendmsg$auto_NL80211_CMD_GET_WIPHY(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r2, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) r5 = openat$auto_fops_x16_ro_(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/dormant_links\x00', 0x8040, 0x0) io_uring_register$auto_IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000280)="b4dc694efa1149efce5bd03c592600a75e6cc91e39f5aebeed", 0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) r6 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r6, 0x80004507, 0x10000000000402) madvise$auto(0x8000, 0x87fff, 0xc) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="036c25bd7000fedbdf25040000000c0017000200000004001d00"], 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) fcntl$getown(r0, 0x9) poll$auto(&(0x7f0000000000)={r0, 0x2, 0x1}, 0x4, 0x9cff) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2a01, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000001c00)=""/4109, 0x100d) 1.266139598s ago: executing program 2 (id=1696): mmap$auto(0x2000000000000, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x2, 0xa, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr9\x00', 0x323a03, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0) mmap$auto(0xffffffdfffffffff, 0xe986, 0x3, 0xeb1, r0, 0x8000) fcntl$auto(0x3, 0x4, 0xa553) swapon$auto(0x0, 0x200001) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x440280, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioperm$auto(0x7, 0x7, 0x90e) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x6, 0x4000000000df, 0xeb1, 0x400, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x24) close_range$auto(0x2, 0x8, 0x0) r1 = socketcall$auto(0x8000, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x60980, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r1) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 235.973707ms ago: executing program 1 (id=1697): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/bus/mdio_bus/drivers/Microchip LAN937x TX/bind\x00', 0x4a000, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x26, 0x5, 0x8c68) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x101e41, 0x0) ioperm$auto(0x4, 0x100000001, 0x4000005) futex_waitv$auto(&(0x7f0000000040)={0x9, 0xffffffffffffffff, 0xc}, 0x7ff, 0x8, &(0x7f00000000c0)={0x1000000004, 0x10}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/tty56\x00', 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x800, 0x8000009, 0x1, 0x19, 0xffffffffffffffff, 0x100000000000008) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = ioctl$auto_TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f0000000140)={0x7, 0x3e, 0x80, @raw=0x9}}) ioctl$auto_virtual_ncidev_fops_virtual_ncidev(r4, 0x6, &(0x7f00000001c0)="46a03e98c00d5dd3b483d34ba198d5e2a0677bf40564840c4f26027c") r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2b, 0x0) r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x50ba82, 0x0) read$auto(r6, 0x0, 0xb4d3) unshare$auto(0x40000080) setsockopt$auto(r1, 0xd0, 0x800000e4, 0x0, 0x569) 133.15374ms ago: executing program 3 (id=1698): r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0) getpid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r1 = socket(0x1d, 0x2, 0x6) getsockopt$auto(r1, 0x6a, 0x4, 0x0, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_tid_address$auto(&(0x7f0000000040)=0x14) r3 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000140), 0x43c185a34992875a, 0x0) ioctl$auto_UDMABUF_CREATE_LIST(r3, 0x40087543, &(0x7f0000000080)={0x5, 0x2e9, [{0xffffffffffffffff, 0x0, 0x5, 0xd}, {r2, 0x0, 0xfffb, 0x4}, {0xffffffffffffffff, 0x0, 0x100c43, 0x3}]}) pwrite64$auto(0xffffffffffffffff, 0x0, 0x8001, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x7ff, 0x810004, 0xffb, 0x8800000008011, 0x3, 0x7) ioctl$auto(0xc8, 0x800454e1, 0x5c8d) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_XFS_IOC_EXCHANGE_RANGE(r4, 0x40285881, &(0x7f00000001c0)={r3, 0x0, 0x80000001, 0x6, 0x0, 0x80}) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) mmap$auto(0x0, 0x12020009, 0x3, 0x800000080000eb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x49402, 0x0) read$auto(r0, 0x0, 0x100000000) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r7 = socket(0x18, 0x5, 0x1) connect$auto(r7, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) 0s ago: executing program 0 (id=1699): mmap$auto(0x800000, 0x202000b, 0x4, 0x15, 0xfffffffffffffffa, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x4000, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x3) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000) r1 = socket(0xa, 0x5, 0x0) getsockopt$auto(r1, 0x84, 0x7f, &(0x7f0000000000)='\xc8\xfdV%\r\x80\\\xf7\\\x00', &(0x7f0000000040)=0x1004) shmctl$auto_IPC_SET(0xc, 0x1, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nullb0/queue/virt_boundary_mask\x00', 0x101000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000003c0)=""/251, 0xfb) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) socket(0xa, 0x1, 0x84) fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(0xffffffffffffffff, 0x4, &(0x7f0000000000)='bridge_slave_0\x00', &(0x7f0000000100), 0x4) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f00000004c0)="e3188176b96f56170e647ad5b75e3e9d5b25824af2509ae55ed5ee191ee9257ac48ac1e8c7ca249fdb72092d4d6cb4b85c6e5e63af6e6386605a2acad0c973ffc78036fb03e7317159be64a299df97910013248ab5d114aa9179182bc486b00af747556837f9ef96271ce9d8c9987a0c8f56", 0x72) connect$auto(0x3, 0x0, 0x54) kernel console output (not intermixed with test programs): 1874][ T5830] Bluetooth: hci3: unexpected event for opcode 0x0010 [ 391.588369][T10224] [U] ^@ [ 393.158841][T10246] FAULT_INJECTION: forcing a failure. [ 393.158841][T10246] name failslab, interval 1, probability 0, space 0, times 0 [ 393.267330][T10246] CPU: 1 UID: 0 PID: 10246 Comm: syz.1.837 Tainted: G L syzkaller #0 PREEMPT(full) [ 393.267384][T10246] Tainted: [L]=SOFTLOCKUP [ 393.267397][T10246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 393.267417][T10246] Call Trace: [ 393.267428][T10246] [ 393.267441][T10246] dump_stack_lvl+0x100/0x190 [ 393.267500][T10246] should_fail_ex.cold+0x5/0xa [ 393.267547][T10246] should_failslab+0xc2/0x120 [ 393.267595][T10246] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 393.267645][T10246] ? __proc_create+0x2cb/0x8c0 [ 393.267707][T10246] __proc_create+0x2cb/0x8c0 [ 393.267762][T10246] ? __pfx___proc_create+0x10/0x10 [ 393.267821][T10246] ? _raw_write_unlock+0x28/0x50 [ 393.267890][T10246] ? proc_register+0x559/0x8a0 [ 393.267950][T10246] proc_create_reg+0x75/0x170 [ 393.267988][T10246] proc_create_net_data+0x8e/0x1c0 [ 393.268045][T10246] ? __pfx_proc_create_net_data+0x10/0x10 [ 393.268100][T10246] ? net_generic+0xea/0x2a0 [ 393.268220][T10246] ? __pfx_vlan_init_net+0x10/0x10 [ 393.268289][T10246] vlan_proc_init+0xe6/0x160 [ 393.268324][T10246] ops_init+0x1e2/0x5f0 [ 393.268443][T10246] setup_net+0x118/0x3a0 [ 393.268488][T10246] ? __pfx_setup_net+0x10/0x10 [ 393.268527][T10246] ? lockdep_init_map_type+0x5c/0x250 [ 393.268583][T10246] ? mutex_init_lockep+0x110/0x150 [ 393.268636][T10246] copy_net_ns+0x46f/0x7c0 [ 393.268684][T10246] create_new_namespaces+0x3ea/0xac0 [ 393.268738][T10246] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 393.268776][T10246] ksys_unshare+0x473/0xad0 [ 393.268833][T10246] ? __pfx_ksys_unshare+0x10/0x10 [ 393.268891][T10246] __x64_sys_unshare+0x31/0x40 [ 393.268931][T10246] do_syscall_64+0x106/0xf80 [ 393.268971][T10246] ? clear_bhb_loop+0x40/0x90 [ 393.269014][T10246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.269048][T10246] RIP: 0033:0x7f78c299c799 [ 393.269076][T10246] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 393.269109][T10246] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 393.269142][T10246] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 393.269164][T10246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 393.269185][T10246] RBP: 00007f78c2a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 393.269205][T10246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.269225][T10246] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 393.269270][T10246] [ 393.678925][T10246] 8021q: can't create entry in proc filesystem! [ 394.115025][T10257] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 394.122257][T10257] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 394.158293][T10257] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 394.164471][T10257] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 394.492598][T10259] zswap: compressor not available [ 396.138239][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 396.138789][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout [ 396.221971][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 396.221980][ T5144] Bluetooth: hci3: command 0x0c1a tx timeout [ 397.199374][T10302] ima: policy update failed [ 397.209247][ T30] audit: type=1802 audit(1772626130.266:11): pid=10302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.848" res=0 errno=0 [ 397.372339][T10309] netlink: 252 bytes leftover after parsing attributes in process `syz.2.850'. [ 397.385257][T10309] netlink: 252 bytes leftover after parsing attributes in process `syz.2.850'. [ 398.636446][T10317] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 398.688366][T10317] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 398.750346][T10317] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 399.012238][T10317] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 399.999566][T10347] blktrace: Concurrent blktraces are not allowed on loop2 [ 400.218389][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout [ 400.461972][T10348] Console: switching to colour frame buffer device 128x48 [ 400.708182][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout [ 400.781486][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout [ 401.018343][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 401.477948][ T30] audit: type=1800 audit(1772626134.466:12): pid=10360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.859" name="dbroot" dev="configfs" ino=27032 res=0 errno=0 [ 401.689528][T10363] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 401.700479][T10363] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 401.718450][T10363] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 401.737680][T10363] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 402.004300][T10373] FAULT_INJECTION: forcing a failure. [ 402.004300][T10373] name failslab, interval 1, probability 0, space 0, times 0 [ 402.048241][T10373] CPU: 1 UID: 0 PID: 10373 Comm: syz.2.863 Tainted: G L syzkaller #0 PREEMPT(full) [ 402.048294][T10373] Tainted: [L]=SOFTLOCKUP [ 402.048306][T10373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 402.048327][T10373] Call Trace: [ 402.048338][T10373] [ 402.048350][T10373] dump_stack_lvl+0x100/0x190 [ 402.048408][T10373] should_fail_ex.cold+0x5/0xa [ 402.048449][T10373] should_failslab+0xc2/0x120 [ 402.048485][T10373] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 402.048534][T10373] ? seq_open+0x55/0x170 [ 402.048587][T10373] seq_open+0x55/0x170 [ 402.048634][T10373] blk_mq_debugfs_open+0x106/0x1b0 [ 402.048807][T10373] ? __pfx_blk_mq_debugfs_open+0x10/0x10 [ 402.048847][T10373] full_proxy_open_regular+0x1b6/0x370 [ 402.048952][T10373] do_dentry_open+0x6d8/0x1660 [ 402.048986][T10373] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 402.049044][T10373] vfs_open+0x82/0x3f0 [ 402.049091][T10373] path_openat+0x208c/0x31a0 [ 402.049141][T10373] ? __pfx_path_openat+0x10/0x10 [ 402.049191][T10373] do_file_open+0x20e/0x430 [ 402.049230][T10373] ? __pfx_do_file_open+0x10/0x10 [ 402.049294][T10373] ? alloc_fd+0x476/0x790 [ 402.049332][T10373] ? do_getname+0x191/0x390 [ 402.049377][T10373] do_sys_openat2+0x10d/0x1e0 [ 402.049423][T10373] ? __pfx_do_sys_openat2+0x10/0x10 [ 402.049471][T10373] ? __fget_files+0x21f/0x3d0 [ 402.049511][T10373] __x64_sys_openat+0x12d/0x210 [ 402.049558][T10373] ? __pfx___x64_sys_openat+0x10/0x10 [ 402.049620][T10373] do_syscall_64+0x106/0xf80 [ 402.049660][T10373] ? clear_bhb_loop+0x40/0x90 [ 402.049703][T10373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.049739][T10373] RIP: 0033:0x7f8223d9c799 [ 402.049768][T10373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 402.049801][T10373] RSP: 002b:00007f8224b90028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 402.049835][T10373] RAX: ffffffffffffffda RBX: 00007f8224015fa0 RCX: 00007f8223d9c799 [ 402.049859][T10373] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffffffffff9c [ 402.049888][T10373] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 402.049909][T10373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 402.049931][T10373] R13: 00007f8224016038 R14: 00007f8224015fa0 R15: 00007fff90024198 [ 402.049977][T10373] [ 402.393517][T10373] netlink: 122 bytes leftover after parsing attributes in process `syz.2.863'. [ 403.738609][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout [ 403.745611][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 403.754082][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 403.828087][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 404.403220][T10396] Console: switching to colour VGA+ 80x25 [ 407.345338][T10427] Invalid ELF header magic: != ELF [ 409.751935][T10450] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 409.760681][T10450] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 409.767242][T10450] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 409.773683][T10450] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 410.148452][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout [ 410.592720][T10491] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 410.794663][T10490] ima: policy update failed [ 410.823028][ T30] audit: type=1802 audit(1772626143.886:13): pid=10490 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.889" res=0 errno=0 [ 411.113689][T10497] smpboot: CPU 1 is now offline [ 411.822665][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout [ 411.829473][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 411.835496][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 411.872567][T10504] zswap: compressor not available [ 414.955175][T10529] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 415.017292][T10529] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 415.128454][T10529] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 415.258128][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 415.272039][T10529] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 416.601776][T10563] FAULT_INJECTION: forcing a failure. [ 416.601776][T10563] name fail_futex, interval 1, probability 0, space 0, times 1 [ 416.670273][T10563] CPU: 0 UID: 0 PID: 10563 Comm: syz.2.903 Tainted: G L syzkaller #0 PREEMPT(full) [ 416.670313][T10563] Tainted: [L]=SOFTLOCKUP [ 416.670322][T10563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 416.670336][T10563] Call Trace: [ 416.670344][T10563] [ 416.670353][T10563] dump_stack_lvl+0x100/0x190 [ 416.670405][T10563] should_fail_ex.cold+0x5/0xa [ 416.670440][T10563] get_futex_key+0x1d2/0x1620 [ 416.670474][T10563] ? __pfx_get_futex_key+0x10/0x10 [ 416.670513][T10563] futex_wake+0xea/0x530 [ 416.670552][T10563] ? __pfx_futex_wake+0x10/0x10 [ 416.670589][T10563] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 416.670663][T10563] do_futex+0x32b/0x350 [ 416.670694][T10563] ? __pfx_do_futex+0x10/0x10 [ 416.670758][T10563] ? __pfx___might_resched+0x10/0x10 [ 416.670794][T10563] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 416.670884][T10563] __x64_sys_futex+0x34f/0x4d0 [ 416.670920][T10563] ? __pfx___x64_sys_futex+0x10/0x10 [ 416.670962][T10563] do_syscall_64+0x106/0xf80 [ 416.670994][T10563] ? clear_bhb_loop+0x40/0x90 [ 416.671024][T10563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.671049][T10563] RIP: 0033:0x7f8223d9c799 [ 416.671069][T10563] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 416.671093][T10563] RSP: 002b:00007f8224b6f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 416.671116][T10563] RAX: ffffffffffffffda RBX: 00007f8224016098 RCX: 00007f8223d9c799 [ 416.671140][T10563] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f822401609c [ 416.671155][T10563] RBP: 00007f8224016090 R08: 0000000000000000 R09: 0000000000000000 [ 416.671169][T10563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 416.671184][T10563] R13: 00007f8224016128 R14: 00007fff900240b0 R15: 00007fff90024198 [ 416.671214][T10563] [ 417.184607][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 417.198169][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 417.368157][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 417.995013][T10569] Invalid ELF header magic: != ELF [ 418.210261][T10543] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21 [ 420.641524][T10602] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 424.694503][T10670] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 424.721149][T10670] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 424.740672][T10670] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 424.776255][T10670] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 426.512785][T10701] FAULT_INJECTION: forcing a failure. [ 426.512785][T10701] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 426.583432][T10599] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 426.635690][T10701] CPU: 0 UID: 0 PID: 10701 Comm: syz.1.926 Tainted: G L syzkaller #0 PREEMPT(full) [ 426.635729][T10701] Tainted: [L]=SOFTLOCKUP [ 426.635738][T10701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 426.635753][T10701] Call Trace: [ 426.635760][T10701] [ 426.635770][T10701] dump_stack_lvl+0x100/0x190 [ 426.635812][T10701] should_fail_ex.cold+0x5/0xa [ 426.635841][T10701] _copy_from_user+0x2e/0xd0 [ 426.635986][T10701] copy_mount_options+0x76/0x190 [ 426.636022][T10701] __x64_sys_mount+0x1ab/0x310 [ 426.636050][T10701] ? __pfx___x64_sys_mount+0x10/0x10 [ 426.636087][T10701] do_syscall_64+0x106/0xf80 [ 426.636115][T10701] ? clear_bhb_loop+0x40/0x90 [ 426.636144][T10701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.636169][T10701] RIP: 0033:0x7f78c299c799 [ 426.636189][T10701] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 426.636213][T10701] RSP: 002b:00007f78c3897028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 426.636235][T10701] RAX: ffffffffffffffda RBX: 00007f78c2c16090 RCX: 00007f78c299c799 [ 426.636251][T10701] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 426.636266][T10701] RBP: 00007f78c2a32bd9 R08: 0000200000000280 R09: 0000000000000000 [ 426.636281][T10701] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 426.636296][T10701] R13: 00007f78c2c16128 R14: 00007f78c2c16090 R15: 00007fff1f09efc8 [ 426.636326][T10701] [ 426.938468][T10591] Bluetooth: hci0: command 0x0c1a tx timeout [ 426.944698][T10591] Bluetooth: hci3: command 0x0c1a tx timeout [ 426.950743][T10591] Bluetooth: hci1: command 0x0c1a tx timeout [ 426.968341][T10591] Bluetooth: hci2: command 0x0c1a tx timeout [ 427.284677][T10706] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 427.323233][T10706] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 427.339783][T10706] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 427.398891][T10706] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 427.426617][T10706] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 428.105337][T10727] FAULT_INJECTION: forcing a failure. [ 428.105337][T10727] name failslab, interval 1, probability 0, space 0, times 0 [ 428.171526][T10727] CPU: 0 UID: 0 PID: 10727 Comm: syz.2.932 Tainted: G L syzkaller #0 PREEMPT(full) [ 428.171566][T10727] Tainted: [L]=SOFTLOCKUP [ 428.171574][T10727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 428.171590][T10727] Call Trace: [ 428.171598][T10727] [ 428.171607][T10727] dump_stack_lvl+0x100/0x190 [ 428.171648][T10727] should_fail_ex.cold+0x5/0xa [ 428.171677][T10727] should_failslab+0xc2/0x120 [ 428.171703][T10727] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 428.171740][T10727] ? security_file_alloc+0x34/0x2c0 [ 428.171765][T10727] ? trace_kmem_cache_alloc+0xf3/0x120 [ 428.171795][T10727] security_file_alloc+0x34/0x2c0 [ 428.171820][T10727] init_file+0x95/0x480 [ 428.171849][T10727] alloc_empty_file+0x73/0x1c0 [ 428.171880][T10727] alloc_file_pseudo+0x13a/0x230 [ 428.171911][T10727] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 428.171950][T10727] ioctx_alloc+0x5d9/0x21d0 [ 428.172015][T10727] ? find_held_lock+0x2b/0x80 [ 428.172040][T10727] ? __pfx_ioctx_alloc+0x10/0x10 [ 428.172073][T10727] __x64_sys_io_setup+0xc9/0x220 [ 428.172101][T10727] do_syscall_64+0x106/0xf80 [ 428.172129][T10727] ? clear_bhb_loop+0x40/0x90 [ 428.172158][T10727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.172183][T10727] RIP: 0033:0x7f8223d9c799 [ 428.172202][T10727] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 428.172226][T10727] RSP: 002b:00007f8224b90028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 428.172249][T10727] RAX: ffffffffffffffda RBX: 00007f8224015fa0 RCX: 00007f8223d9c799 [ 428.172265][T10727] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ffff [ 428.172279][T10727] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 428.172294][T10727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.172308][T10727] R13: 00007f8224016038 R14: 00007f8224015fa0 R15: 00007fff90024198 [ 428.172339][T10727] [ 428.614566][T10723] netlink: 12 bytes leftover after parsing attributes in process `syz.0.931'. [ 429.350119][T10599] Bluetooth: hci1: command 0x0c1a tx timeout [ 429.350161][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 429.424087][T10591] Bluetooth: hci3: command 0x0c1a tx timeout [ 429.504164][T10591] Bluetooth: hci2: command 0x0c1a tx timeout [ 430.745683][T10750] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 430.791015][T10750] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 430.820206][T10750] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 430.841482][T10750] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 431.213885][T10758] bridge0: port 3(team0) entered blocking state [ 431.281270][T10758] bridge0: port 3(team0) entered disabled state [ 431.354089][T10758] team0: entered allmulticast mode [ 431.407114][T10758] team_slave_0: entered allmulticast mode [ 431.485231][T10758] team0: entered promiscuous mode [ 431.541096][T10758] team_slave_0: entered promiscuous mode [ 431.632819][T10758] bridge0: port 3(team0) entered blocking state [ 431.639271][T10758] bridge0: port 3(team0) entered forwarding state [ 432.706042][T10772] FAULT_INJECTION: forcing a failure. [ 432.706042][T10772] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 432.788592][T10591] Bluetooth: hci0: command 0x0c1a tx timeout [ 432.852862][T10772] CPU: 0 UID: 0 PID: 10772 Comm: syz.2.939 Tainted: G L syzkaller #0 PREEMPT(full) [ 432.852909][T10772] Tainted: [L]=SOFTLOCKUP [ 432.852918][T10772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 432.852933][T10772] Call Trace: [ 432.852961][T10772] [ 432.852970][T10772] dump_stack_lvl+0x100/0x190 [ 432.853019][T10772] should_fail_ex.cold+0x5/0xa [ 432.853047][T10772] _copy_from_user+0x2e/0xd0 [ 432.853090][T10772] copy_mount_options+0x76/0x190 [ 432.853127][T10772] __x64_sys_mount+0x1ab/0x310 [ 432.853156][T10772] ? __pfx___x64_sys_mount+0x10/0x10 [ 432.853192][T10772] do_syscall_64+0x106/0xf80 [ 432.853220][T10772] ? clear_bhb_loop+0x40/0x90 [ 432.853250][T10772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.853274][T10772] RIP: 0033:0x7f8223d9c799 [ 432.853294][T10772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 432.853318][T10772] RSP: 002b:00007f8224b6f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 432.853340][T10772] RAX: ffffffffffffffda RBX: 00007f8224016090 RCX: 00007f8223d9c799 [ 432.853356][T10772] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 432.853371][T10772] RBP: 00007f8223e32bd9 R08: 0000200000000280 R09: 0000000000000000 [ 432.853386][T10772] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 432.853401][T10772] R13: 00007f8224016128 R14: 00007f8224016090 R15: 00007fff90024198 [ 432.853431][T10772] [ 433.246478][T10591] Bluetooth: hci2: command 0x0c1a tx timeout [ 433.252608][T10591] Bluetooth: hci3: command 0x0c1a tx timeout [ 433.258818][T10591] Bluetooth: hci1: command 0x0c1a tx timeout [ 433.524237][T10599] Bluetooth: hci2: ISO packet for unknown connection handle 0 [ 434.192791][T10774] input: jJǸ-9%vJ86 as /devices/virtual/input/input22 [ 436.600733][T10821] program syz.0.949 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 436.648737][ T30] audit: type=1807 audit(1772627192.693:14): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 436.695031][T10820] ima: policy update failed [ 436.732151][ T30] audit: type=1802 audit(1772627192.693:15): pid=10821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.949" res=0 errno=0 [ 436.809436][ T30] audit: type=1802 audit(1772627192.783:16): pid=10820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.949" res=0 errno=0 [ 437.822779][T10836] lo: entered allmulticast mode [ 437.861914][T10836] lo: left allmulticast mode [ 438.963627][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 438.970224][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.146203][T10863] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 439.202042][T10863] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 439.250932][T10863] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 439.281444][T10863] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 439.497005][T10851] netlink: 12 bytes leftover after parsing attributes in process `syz.1.963'. [ 439.533342][T10851] net_ratelimit: 5 callbacks suppressed [ 439.533364][T10851] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 439.777062][T10873] FAULT_INJECTION: forcing a failure. [ 439.777062][T10873] name failslab, interval 1, probability 0, space 0, times 0 [ 439.857092][T10873] CPU: 0 UID: 0 PID: 10873 Comm: syz.0.967 Tainted: G L syzkaller #0 PREEMPT(full) [ 439.857132][T10873] Tainted: [L]=SOFTLOCKUP [ 439.857141][T10873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 439.857155][T10873] Call Trace: [ 439.857163][T10873] [ 439.857172][T10873] dump_stack_lvl+0x100/0x190 [ 439.857214][T10873] should_fail_ex.cold+0x5/0xa [ 439.857244][T10873] should_failslab+0xc2/0x120 [ 439.857269][T10873] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 439.857305][T10873] ? ptlock_alloc+0x1f/0x70 [ 439.857342][T10873] ptlock_alloc+0x1f/0x70 [ 439.857373][T10873] pte_alloc_one+0x84/0x3e0 [ 439.857431][T10873] __pte_alloc+0x6d/0x3f0 [ 439.857463][T10873] ? __pfx___pte_alloc+0x10/0x10 [ 439.857489][T10873] ? walk_to_pmd+0x302/0x4c0 [ 439.857519][T10873] get_locked_pte+0xa1/0xc0 [ 439.857549][T10873] insert_page+0xcc/0x220 [ 439.857577][T10873] ? __pfx_insert_page+0x10/0x10 [ 439.857603][T10873] ? __pfx_down_read_trylock+0x10/0x10 [ 439.857648][T10873] vm_insert_page+0x2c0/0x400 [ 439.857678][T10873] kcov_mmap+0xca/0x130 [ 439.857728][T10873] __mmap_region+0x1443/0x29e0 [ 439.857768][T10873] ? __pfx___mmap_region+0x10/0x10 [ 439.857806][T10873] ? find_held_lock+0x2b/0x80 [ 439.857827][T10873] ? ima_match_policy+0x8c4/0x2350 [ 439.857939][T10873] ? ima_match_policy+0x8c4/0x2350 [ 439.858004][T10873] ? find_held_lock+0x2b/0x80 [ 439.858025][T10873] ? process_measurement+0x4c8/0x2350 [ 439.858056][T10873] ? process_measurement+0x4c8/0x2350 [ 439.858100][T10873] ? process_measurement+0x1f4/0x2350 [ 439.858181][T10873] mmap_region+0x30a/0x3e0 [ 439.858223][T10873] do_mmap+0xc63/0x12f0 [ 439.858254][T10873] ? __pfx_do_mmap+0x10/0x10 [ 439.858279][T10873] ? __pfx_down_write_killable+0x10/0x10 [ 439.858320][T10873] vm_mmap_pgoff+0x29e/0x470 [ 439.858358][T10873] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 439.858383][T10873] ? __fget_files+0x215/0x3d0 [ 439.858410][T10873] ? __fget_files+0x21f/0x3d0 [ 439.858436][T10873] ksys_mmap_pgoff+0x3c8/0x650 [ 439.858467][T10873] ? __x64_sys_futex+0x34f/0x4d0 [ 439.858498][T10873] ? __x64_sys_futex+0x358/0x4d0 [ 439.858530][T10873] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 439.858556][T10873] ? xfd_validate_state+0x129/0x190 [ 439.858604][T10873] __x64_sys_mmap+0x125/0x190 [ 439.858643][T10873] do_syscall_64+0x106/0xf80 [ 439.858670][T10873] ? clear_bhb_loop+0x40/0x90 [ 439.858700][T10873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.858725][T10873] RIP: 0033:0x7f98ad79c799 [ 439.858744][T10873] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 439.858769][T10873] RSP: 002b:00007f98ae5e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 439.858792][T10873] RAX: ffffffffffffffda RBX: 00007f98ada15fa0 RCX: 00007f98ad79c799 [ 439.858808][T10873] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000012000 [ 439.858823][T10873] RBP: 00007f98ad832bd9 R08: 00000000000000dd R09: 0000000000000000 [ 439.858837][T10873] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 439.858852][T10873] R13: 00007f98ada16038 R14: 00007f98ada15fa0 R15: 00007fff64ff7238 [ 439.858883][T10873] [ 440.958437][T10886] blktrace: Concurrent blktraces are not allowed on loop2 [ 441.096132][T10886] QAT: Stopping all acceleration devices. [ 441.193259][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 441.270146][T10599] Bluetooth: hci3: command 0x0c1a tx timeout [ 441.276514][T10599] Bluetooth: hci1: command 0x0c1a tx timeout [ 441.350030][T10893] Bluetooth: hci2: command 0x0c1a tx timeout [ 441.726272][T10896] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 441.781658][T10896] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 441.808620][T10896] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 441.860511][T10896] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 442.955441][ T30] audit: type=1800 audit(1772627199.000:17): pid=10916 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.968" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 443.751327][T10893] Bluetooth: hci0: command 0x0c1a tx timeout [ 443.832782][T10893] Bluetooth: hci3: command 0x0c1a tx timeout [ 443.838931][T10893] Bluetooth: hci1: command 0x0c1a tx timeout [ 443.911496][T10893] Bluetooth: hci2: command 0x0c1a tx timeout [ 446.317825][T10953] netlink: 60 bytes leftover after parsing attributes in process `syz.0.982'. [ 446.444583][T10955] FAULT_INJECTION: forcing a failure. [ 446.444583][T10955] name failslab, interval 1, probability 0, space 0, times 0 [ 446.524140][T10955] CPU: 0 UID: 0 PID: 10955 Comm: syz.1.974 Tainted: G L syzkaller #0 PREEMPT(full) [ 446.524181][T10955] Tainted: [L]=SOFTLOCKUP [ 446.524190][T10955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 446.524204][T10955] Call Trace: [ 446.524212][T10955] [ 446.524222][T10955] dump_stack_lvl+0x100/0x190 [ 446.524265][T10955] should_fail_ex.cold+0x5/0xa [ 446.524293][T10955] should_failslab+0xc2/0x120 [ 446.524318][T10955] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 446.524354][T10955] ? ptlock_alloc+0x1f/0x70 [ 446.524391][T10955] ptlock_alloc+0x1f/0x70 [ 446.524423][T10955] pte_alloc_one+0x84/0x3e0 [ 446.524450][T10955] __pte_alloc+0x6d/0x3f0 [ 446.524473][T10955] ? __pfx___pte_alloc+0x10/0x10 [ 446.524498][T10955] ? walk_to_pmd+0x302/0x4c0 [ 446.524528][T10955] get_locked_pte+0xa1/0xc0 [ 446.524558][T10955] insert_page+0xcc/0x220 [ 446.524586][T10955] ? __pfx_insert_page+0x10/0x10 [ 446.524612][T10955] ? __pfx_down_read_trylock+0x10/0x10 [ 446.524656][T10955] vm_insert_page+0x2c0/0x400 [ 446.524687][T10955] kcov_mmap+0xca/0x130 [ 446.524727][T10955] __mmap_region+0x1443/0x29e0 [ 446.524767][T10955] ? __pfx___mmap_region+0x10/0x10 [ 446.524804][T10955] ? find_held_lock+0x2b/0x80 [ 446.524835][T10955] ? ima_match_policy+0x8c4/0x2350 [ 446.524875][T10955] ? ima_match_policy+0x8c4/0x2350 [ 446.524941][T10955] ? find_held_lock+0x2b/0x80 [ 446.524962][T10955] ? process_measurement+0x4c8/0x2350 [ 446.524994][T10955] ? process_measurement+0x4c8/0x2350 [ 446.525037][T10955] ? process_measurement+0x1f4/0x2350 [ 446.525121][T10955] mmap_region+0x30a/0x3e0 [ 446.525163][T10955] do_mmap+0xc63/0x12f0 [ 446.525194][T10955] ? __pfx_do_mmap+0x10/0x10 [ 446.525220][T10955] ? __pfx_down_write_killable+0x10/0x10 [ 446.525261][T10955] vm_mmap_pgoff+0x29e/0x470 [ 446.525293][T10955] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 446.525317][T10955] ? __fget_files+0x215/0x3d0 [ 446.525344][T10955] ? __fget_files+0x21f/0x3d0 [ 446.525371][T10955] ksys_mmap_pgoff+0x3c8/0x650 [ 446.525397][T10955] ? __x64_sys_futex+0x34f/0x4d0 [ 446.525426][T10955] ? __x64_sys_futex+0x358/0x4d0 [ 446.525458][T10955] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 446.525484][T10955] ? xfd_validate_state+0x129/0x190 [ 446.525524][T10955] __x64_sys_mmap+0x125/0x190 [ 446.525563][T10955] do_syscall_64+0x106/0xf80 [ 446.525590][T10955] ? clear_bhb_loop+0x40/0x90 [ 446.525620][T10955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.525645][T10955] RIP: 0033:0x7f78c299c799 [ 446.525665][T10955] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 446.525689][T10955] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 446.525712][T10955] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 446.525728][T10955] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000012000 [ 446.525743][T10955] RBP: 00007f78c2a32bd9 R08: 00000000000000dd R09: 0000000000000000 [ 446.525758][T10955] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000 [ 446.525773][T10955] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 446.525804][T10955] [ 446.975260][T10960] netlink: 'syz.3.976': attribute type 2 has an invalid length. [ 446.983316][T10960] netlink: 8 bytes leftover after parsing attributes in process `syz.3.976'. [ 446.993070][T10960] FAULT_INJECTION: forcing a failure. [ 446.993070][T10960] name failslab, interval 1, probability 0, space 0, times 0 [ 447.005761][T10960] CPU: 0 UID: 0 PID: 10960 Comm: syz.3.976 Tainted: G L syzkaller #0 PREEMPT(full) [ 447.005806][T10960] Tainted: [L]=SOFTLOCKUP [ 447.005815][T10960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 447.005829][T10960] Call Trace: [ 447.005838][T10960] [ 447.005847][T10960] dump_stack_lvl+0x100/0x190 [ 447.005890][T10960] should_fail_ex.cold+0x5/0xa [ 447.005919][T10960] should_failslab+0xc2/0x120 [ 447.005944][T10960] __kmalloc_cache_noprof+0x7a/0x6f0 [ 447.005975][T10960] ? ovs_flow_tbl_init+0x8b/0x600 [ 447.006112][T10960] ovs_flow_tbl_init+0x8b/0x600 [ 447.006154][T10960] ovs_dp_cmd_new+0x251/0xdf0 [ 447.006220][T10960] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 447.006266][T10960] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 447.006351][T10960] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 447.006395][T10960] genl_family_rcv_msg_doit+0x214/0x300 [ 447.006440][T10960] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 447.006482][T10960] ? genl_get_cmd+0x3ef/0x720 [ 447.006522][T10960] ? bpf_lsm_capable+0x9/0x10 [ 447.006547][T10960] ? security_capable+0x80/0x260 [ 447.006581][T10960] ? ns_capable+0xd2/0xf0 [ 447.006607][T10960] genl_rcv_msg+0x560/0x800 [ 447.006663][T10960] ? __pfx_genl_rcv_msg+0x10/0x10 [ 447.006700][T10960] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 447.006751][T10960] netlink_rcv_skb+0x159/0x420 [ 447.006788][T10960] ? __pfx_genl_rcv_msg+0x10/0x10 [ 447.006826][T10960] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 447.006871][T10960] ? netlink_deliver_tap+0x1ae/0xcc0 [ 447.006905][T10960] genl_rcv+0x28/0x40 [ 447.006937][T10960] netlink_unicast+0x5aa/0x870 [ 447.006973][T10960] ? __pfx_netlink_unicast+0x10/0x10 [ 447.007004][T10960] ? __pfx___might_resched+0x10/0x10 [ 447.007039][T10960] ? __lock_acquire+0x4a5/0x2630 [ 447.007078][T10960] netlink_sendmsg+0x8b0/0xda0 [ 447.007114][T10960] ? __pfx_netlink_sendmsg+0x10/0x10 [ 447.007145][T10960] ? __import_iovec+0x1d2/0x640 [ 447.007171][T10960] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 447.007247][T10960] ____sys_sendmsg+0xa54/0xc30 [ 447.007291][T10960] ? __pfx_____sys_sendmsg+0x10/0x10 [ 447.007333][T10960] ? __pfx_futex_wake_mark+0x10/0x10 [ 447.007375][T10960] ___sys_sendmsg+0x190/0x1e0 [ 447.007414][T10960] ? __pfx____sys_sendmsg+0x10/0x10 [ 447.007479][T10960] ? do_futex+0x192/0x350 [ 447.007515][T10960] __sys_sendmsg+0x170/0x220 [ 447.007545][T10960] ? __pfx___sys_sendmsg+0x10/0x10 [ 447.007573][T10960] ? __x64_sys_futex+0x34f/0x4d0 [ 447.007621][T10960] do_syscall_64+0x106/0xf80 [ 447.007649][T10960] ? clear_bhb_loop+0x40/0x90 [ 447.007680][T10960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.007705][T10960] RIP: 0033:0x7f07a0b9c799 [ 447.007726][T10960] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 447.007750][T10960] RSP: 002b:00007f07a1a1b028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 447.007780][T10960] RAX: ffffffffffffffda RBX: 00007f07a0e15fa0 RCX: 00007f07a0b9c799 [ 447.007797][T10960] RDX: 0000000020008000 RSI: 0000200000000000 RDI: 0000000000000006 [ 447.007812][T10960] RBP: 00007f07a0c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 447.007827][T10960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 447.007841][T10960] R13: 00007f07a0e16038 R14: 00007f07a0e15fa0 R15: 00007fff134509a8 [ 447.007872][T10960] [ 447.687397][T10962] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 447.693608][T10962] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 447.700904][T10962] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 447.736573][T10962] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 448.882657][T10978] FAULT_INJECTION: forcing a failure. [ 448.882657][T10978] name failslab, interval 1, probability 0, space 0, times 0 [ 448.882747][T10978] CPU: 0 UID: 0 PID: 10978 Comm: syz.3.978 Tainted: G L syzkaller #0 PREEMPT(full) [ 448.882781][T10978] Tainted: [L]=SOFTLOCKUP [ 448.882790][T10978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 448.882805][T10978] Call Trace: [ 448.882812][T10978] [ 448.882821][T10978] dump_stack_lvl+0x100/0x190 [ 448.882862][T10978] should_fail_ex.cold+0x5/0xa [ 448.882899][T10978] ? memcg_list_lru_alloc+0x4ec/0x740 [ 448.882936][T10978] should_failslab+0xc2/0x120 [ 448.882962][T10978] __kmalloc_noprof+0xe0/0x850 [ 448.883001][T10978] ? ipcget+0xee/0xf50 [ 448.883031][T10978] memcg_list_lru_alloc+0x4ec/0x740 [ 448.883075][T10978] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 448.883111][T10978] ? rcu_read_unlock+0x17/0x60 [ 448.883144][T10978] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 448.883183][T10978] __memcg_slab_post_alloc_hook+0x12f/0x9a0 [ 448.883216][T10978] ? kasan_save_track+0x14/0x30 [ 448.883256][T10978] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 448.883293][T10978] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 448.883341][T10978] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 448.883380][T10978] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 448.883422][T10978] alloc_inode+0x68/0x250 [ 448.883454][T10978] new_inode+0x22/0x1c0 [ 448.883487][T10978] hugetlbfs_get_inode+0x313/0x750 [ 448.883518][T10978] hugetlb_file_setup+0x3cc/0x5b0 [ 448.883547][T10978] newseg+0xabb/0xed0 [ 448.883576][T10978] ? __pfx_newseg+0x10/0x10 [ 448.883599][T10978] ? down_write+0x146/0x1f0 [ 448.883646][T10978] ? ksys_write+0x190/0x250 [ 448.883684][T10978] ? ksys_write+0x190/0x250 [ 448.883727][T10978] ipcget+0xee/0xf50 [ 448.883751][T10978] ? do_futex+0x192/0x350 [ 448.883782][T10978] ? __pfx_do_futex+0x10/0x10 [ 448.883818][T10978] ? __pfx_ipcget+0x10/0x10 [ 448.883845][T10978] ? __x64_sys_futex+0x34f/0x4d0 [ 448.883874][T10978] ? __x64_sys_futex+0x358/0x4d0 [ 448.883910][T10978] __x64_sys_shmget+0x13b/0x1b0 [ 448.883936][T10978] ? __pfx___x64_sys_shmget+0x10/0x10 [ 448.883970][T10978] do_syscall_64+0x106/0xf80 [ 448.883998][T10978] ? clear_bhb_loop+0x40/0x90 [ 448.884027][T10978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.884052][T10978] RIP: 0033:0x7f07a0b9c799 [ 448.884072][T10978] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 448.884095][T10978] RSP: 002b:00007f07a1997028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 448.884117][T10978] RAX: ffffffffffffffda RBX: 00007f07a0e16360 RCX: 00007f07a0b9c799 [ 448.884133][T10978] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 448.884148][T10978] RBP: 00007f07a0c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 448.884163][T10978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 448.884177][T10978] R13: 00007f07a0e163f8 R14: 00007f07a0e16360 R15: 00007fff134509a8 [ 448.884208][T10978] [ 449.267460][T10591] Bluetooth: hci0: ACL packet for unknown connection handle 0 [ 449.765639][T10591] Bluetooth: hci2: command 0x0c1a tx timeout [ 449.765679][T10591] Bluetooth: hci3: command 0x0c1a tx timeout [ 449.765706][T10591] Bluetooth: hci1: command 0x0c1a tx timeout [ 449.765733][T10591] Bluetooth: hci0: command 0x0c1a tx timeout [ 450.917401][T11004] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 450.925779][T11004] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 450.947369][T11004] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 451.003270][T11004] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 451.356384][T11013] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 451.373831][T11013] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 451.395735][T11013] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 451.416496][T10999] binder: 10997:10999 ioctl c018620c 0 returned -1 [ 451.463030][T11013] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 451.832436][T11020] bridge0: port 3(team0) entered blocking state [ 451.908620][T11020] bridge0: port 3(team0) entered disabled state [ 451.961943][T11020] team0: entered allmulticast mode [ 452.029395][T11024] netlink: 326 bytes leftover after parsing attributes in process `syz.1.988'. [ 452.048884][T11020] team_slave_0: entered allmulticast mode [ 452.126182][T11020] team0: entered promiscuous mode [ 452.173674][T11020] team_slave_0: entered promiscuous mode [ 453.436167][T10893] Bluetooth: hci3: command 0x0c1a tx timeout [ 453.442303][T10591] Bluetooth: hci1: command 0x0c1a tx timeout [ 453.448881][T10591] Bluetooth: hci0: command 0x0c1a tx timeout [ 453.516219][T11042] Bluetooth: hci2: command 0x0c1a tx timeout [ 453.593589][T11041] FAULT_INJECTION: forcing a failure. [ 453.593589][T11041] name failslab, interval 1, probability 0, space 0, times 0 [ 453.756270][T11041] CPU: 0 UID: 0 PID: 11041 Comm: syz.2.991 Tainted: G L syzkaller #0 PREEMPT(full) [ 453.756309][T11041] Tainted: [L]=SOFTLOCKUP [ 453.756318][T11041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 453.756332][T11041] Call Trace: [ 453.756340][T11041] [ 453.756348][T11041] dump_stack_lvl+0x100/0x190 [ 453.756392][T11041] should_fail_ex.cold+0x5/0xa [ 453.756420][T11041] ? __vb2_queue_alloc+0x23e/0x1160 [ 453.756563][T11041] should_failslab+0xc2/0x120 [ 453.756588][T11041] __kmalloc_noprof+0xe0/0x850 [ 453.756624][T11041] ? bitmap_find_next_zero_area_off+0xb4/0xd0 [ 453.756659][T11041] __vb2_queue_alloc+0x23e/0x1160 [ 453.756710][T11041] vb2_core_reqbufs+0x899/0xf30 [ 453.756753][T11041] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 453.756806][T11041] __vb2_init_fileio+0x32d/0x1000 [ 453.756843][T11041] ? lockdep_hardirqs_on+0x78/0x100 [ 453.756874][T11041] ? __pollwait+0x276/0x470 [ 453.756913][T11041] vb2_core_poll+0x611/0x740 [ 453.756952][T11041] vb2_poll+0x4b/0xe0 [ 453.757004][T11041] vb2_fop_poll+0x10e/0x350 [ 453.757040][T11041] ? __pfx_vb2_fop_poll+0x10/0x10 [ 453.757073][T11041] v4l2_poll+0x15f/0x220 [ 453.757126][T11041] ? __pfx_v4l2_poll+0x10/0x10 [ 453.757156][T11041] do_sys_poll+0x6e5/0xeb0 [ 453.757204][T11041] ? __pfx_do_sys_poll+0x10/0x10 [ 453.757273][T11041] ? __futex_wait+0x256/0x300 [ 453.757314][T11041] ? __pfx___pollwait+0x10/0x10 [ 453.757355][T11041] ? __pfx_pollwake+0x10/0x10 [ 453.757435][T11041] ? ktime_get_ts64+0x2d2/0x3f0 [ 453.757463][T11041] ? read_tsc+0x9/0x20 [ 453.757489][T11041] ? ktime_get_ts64+0x256/0x3f0 [ 453.757518][T11041] ? poll_select_set_timeout+0xcc/0x160 [ 453.757555][T11041] ? __x64_sys_futex+0x358/0x4d0 [ 453.757590][T11041] __x64_sys_poll+0x1b3/0x420 [ 453.757629][T11041] ? __pfx___x64_sys_poll+0x10/0x10 [ 453.757685][T11041] do_syscall_64+0x106/0xf80 [ 453.757713][T11041] ? clear_bhb_loop+0x40/0x90 [ 453.757743][T11041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.757768][T11041] RIP: 0033:0x7f8223d9c799 [ 453.757788][T11041] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 453.757812][T11041] RSP: 002b:00007f8224b90028 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 453.757835][T11041] RAX: ffffffffffffffda RBX: 00007f8224015fa0 RCX: 00007f8223d9c799 [ 453.757851][T11041] RDX: 0000000000000008 RSI: 0000000000000003 RDI: 0000200000000480 [ 453.757865][T11041] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 453.757880][T11041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 453.757894][T11041] R13: 00007f8224016038 R14: 00007f8224015fa0 R15: 00007fff90024198 [ 453.757925][T11041] [ 454.858050][T11053] netlink: 4 bytes leftover after parsing attributes in process `syz.3.993'. [ 455.049670][ T30] audit: type=1800 audit(1772627211.094:18): pid=11065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=30432 res=0 errno=0 [ 455.433029][T11065] could not allocate digest TFM handle [ 456.667863][T11077] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 456.859285][T11077] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 456.892758][T11077] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 456.935071][T11077] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 458.272480][ T30] audit: type=1800 audit(1772627214.312:19): pid=11097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1009" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0 [ 458.718681][T11042] Bluetooth: hci0: command 0x0c1a tx timeout [ 458.839695][T11093] binder: 11089:11093 ioctl c018620c 0 returned -1 [ 458.880896][T11042] Bluetooth: hci3: command 0x0c1a tx timeout [ 458.886989][T10599] Bluetooth: hci1: command 0x0c1a tx timeout [ 458.958905][T11042] Bluetooth: hci2: command 0x0c1a tx timeout [ 459.049146][T11106] netlink: 'syz.3.1001': attribute type 14 has an invalid length. [ 459.083667][T11106] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1001'. [ 460.354154][ T30] audit: type=1400 audit(1772627216.391:20): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=11125 comm="syz.2.1004" [ 460.421296][T11120] zswap: compressor not available [ 461.301084][T11117] FAULT_INJECTION: forcing a failure. [ 461.301084][T11117] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 461.344632][T11117] CPU: 0 UID: 0 PID: 11117 Comm: syz.1.1003 Tainted: G L syzkaller #0 PREEMPT(full) [ 461.344672][T11117] Tainted: [L]=SOFTLOCKUP [ 461.344680][T11117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 461.344695][T11117] Call Trace: [ 461.344703][T11117] [ 461.344712][T11117] dump_stack_lvl+0x100/0x190 [ 461.344754][T11117] should_fail_ex.cold+0x5/0xa [ 461.344777][T11117] ? prepare_alloc_pages+0x16d/0x5f0 [ 461.344807][T11117] should_fail_alloc_page+0xeb/0x140 [ 461.344834][T11117] prepare_alloc_pages+0x1f0/0x5f0 [ 461.344866][T11117] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 461.344904][T11117] ? rcu_is_watching+0x12/0xc0 [ 461.344945][T11117] ? __lock_acquire+0x4a5/0x2630 [ 461.344984][T11117] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 461.345024][T11117] ? do_raw_spin_lock+0x128/0x260 [ 461.345060][T11117] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 461.345095][T11117] ? find_held_lock+0x2b/0x80 [ 461.345126][T11117] ? __lock_acquire+0x4a5/0x2630 [ 461.345156][T11117] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 461.345198][T11117] ? policy_nodemask+0xed/0x4f0 [ 461.345225][T11117] alloc_pages_mpol+0x1fb/0x550 [ 461.345250][T11117] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 461.345275][T11117] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 461.345331][T11117] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 461.345376][T11117] folio_alloc_mpol_noprof+0x36/0x340 [ 461.345407][T11117] shmem_alloc_folio+0x135/0x160 [ 461.345439][T11117] shmem_alloc_and_add_folio+0x371/0xd40 [ 461.345491][T11117] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 461.345532][T11117] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 461.345576][T11117] shmem_get_folio_gfp+0x6ab/0x1900 [ 461.345616][T11117] ? find_held_lock+0x2b/0x80 [ 461.345639][T11117] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 461.345678][T11117] ? ktime_get_coarse_real_ts64_mg+0x235/0x300 [ 461.345708][T11117] ? lockdep_hardirqs_on+0x78/0x100 [ 461.345740][T11117] shmem_fault+0x1f9/0xa20 [ 461.345776][T11117] ? __lock_acquire+0x4a5/0x2630 [ 461.345805][T11117] ? __pfx_shmem_fault+0x10/0x10 [ 461.345843][T11117] ? __up_read+0x2c5/0x700 [ 461.345887][T11117] ? __pfx_filemap_map_pages+0x10/0x10 [ 461.345922][T11117] __do_fault+0x10d/0x550 [ 461.345963][T11117] ? __pfx_filemap_map_pages+0x10/0x10 [ 461.345997][T11117] do_fault+0x2db/0x1950 [ 461.346028][T11117] __handle_mm_fault+0x180f/0x2b60 [ 461.346069][T11117] ? __pfx___handle_mm_fault+0x10/0x10 [ 461.346103][T11117] ? pte_offset_map_lock+0x174/0x320 [ 461.346127][T11117] ? find_held_lock+0x2b/0x80 [ 461.346157][T11117] ? follow_page_pte+0x5b3/0x1400 [ 461.346189][T11117] handle_mm_fault+0x36d/0xa20 [ 461.346226][T11117] __get_user_pages+0xf9c/0x34d0 [ 461.346260][T11117] ? down_read_killable+0x30e/0x4c0 [ 461.346296][T11117] ? __pfx___get_user_pages+0x10/0x10 [ 461.346330][T11117] faultin_page_range+0x1f1/0x9e0 [ 461.346364][T11117] madvise_do_behavior+0x354/0x510 [ 461.346395][T11117] ? __pfx_madvise_do_behavior+0x10/0x10 [ 461.346440][T11117] do_madvise+0x195/0x240 [ 461.346467][T11117] ? __pfx_do_madvise+0x10/0x10 [ 461.346500][T11117] ? do_futex+0x192/0x350 [ 461.346559][T11117] __x64_sys_madvise+0xa9/0x110 [ 461.346587][T11117] ? lockdep_hardirqs_on+0x78/0x100 [ 461.346615][T11117] do_syscall_64+0x106/0xf80 [ 461.346642][T11117] ? clear_bhb_loop+0x40/0x90 [ 461.346673][T11117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 461.346697][T11117] RIP: 0033:0x7f78c299c799 [ 461.346718][T11117] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 461.346742][T11117] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 461.346765][T11117] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 461.346782][T11117] RDX: 0000000000000017 RSI: 000000000000ca3d RDI: 0000000000000000 [ 461.346797][T11117] RBP: 00007f78c2a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 461.346812][T11117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 461.346826][T11117] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 461.346857][T11117] [ 462.000602][ T30] audit: type=1800 audit(1772627217.860:21): pid=11135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1007" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0 [ 462.650917][T11153] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 462.657456][T11153] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 462.673509][T11153] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 462.690649][T11153] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 462.815856][ T30] audit: type=1326 audit(1772627218.850:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.1013" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f98ad79c799 code=0x0 [ 464.721944][T11042] Bluetooth: hci2: command 0x0c1a tx timeout [ 464.727992][T11042] Bluetooth: hci3: command 0x0c1a tx timeout [ 464.734439][T10599] Bluetooth: hci1: command 0x0c1a tx timeout [ 464.740456][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 468.500448][T11216] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 468.562522][T11216] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 468.607737][T11216] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 468.653101][T11216] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 469.642987][T11220] FAULT_INJECTION: forcing a failure. [ 469.642987][T11220] name failslab, interval 1, probability 0, space 0, times 0 [ 469.805544][T11220] CPU: 0 UID: 0 PID: 11220 Comm: syz.1.1024 Tainted: G L syzkaller #0 PREEMPT(full) [ 469.805585][T11220] Tainted: [L]=SOFTLOCKUP [ 469.805594][T11220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 469.805608][T11220] Call Trace: [ 469.805616][T11220] [ 469.805625][T11220] dump_stack_lvl+0x100/0x190 [ 469.805675][T11220] should_fail_ex.cold+0x5/0xa [ 469.805704][T11220] ? memcg_list_lru_alloc+0x4ec/0x740 [ 469.805740][T11220] should_failslab+0xc2/0x120 [ 469.805765][T11220] __kmalloc_noprof+0xe0/0x850 [ 469.805802][T11220] ? ipcget+0xee/0xf50 [ 469.805831][T11220] memcg_list_lru_alloc+0x4ec/0x740 [ 469.805875][T11220] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 469.805911][T11220] ? rcu_read_unlock+0x17/0x60 [ 469.805944][T11220] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 469.805984][T11220] __memcg_slab_post_alloc_hook+0x12f/0x9a0 [ 469.806016][T11220] ? kasan_save_track+0x14/0x30 [ 469.806057][T11220] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 469.806093][T11220] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 469.806141][T11220] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 469.806180][T11220] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 469.806221][T11220] alloc_inode+0x68/0x250 [ 469.806253][T11220] new_inode+0x22/0x1c0 [ 469.806287][T11220] hugetlbfs_get_inode+0x313/0x750 [ 469.806315][T11220] hugetlb_file_setup+0x3cc/0x5b0 [ 469.806344][T11220] newseg+0xabb/0xed0 [ 469.806372][T11220] ? __pfx_newseg+0x10/0x10 [ 469.806396][T11220] ? down_write+0x146/0x1f0 [ 469.806429][T11220] ? ksys_write+0x190/0x250 [ 469.806467][T11220] ? ksys_write+0x190/0x250 [ 469.806508][T11220] ipcget+0xee/0xf50 [ 469.806533][T11220] ? do_futex+0x192/0x350 [ 469.806568][T11220] ? __pfx_do_futex+0x10/0x10 [ 469.806604][T11220] ? __pfx_ipcget+0x10/0x10 [ 469.806630][T11220] ? __x64_sys_futex+0x34f/0x4d0 [ 469.806666][T11220] ? __x64_sys_futex+0x358/0x4d0 [ 469.806702][T11220] __x64_sys_shmget+0x13b/0x1b0 [ 469.806729][T11220] ? __pfx___x64_sys_shmget+0x10/0x10 [ 469.806763][T11220] do_syscall_64+0x106/0xf80 [ 469.806792][T11220] ? clear_bhb_loop+0x40/0x90 [ 469.806822][T11220] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.806847][T11220] RIP: 0033:0x7f78c299c799 [ 469.806867][T11220] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 469.806891][T11220] RSP: 002b:00007f78c3855028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 469.806914][T11220] RAX: ffffffffffffffda RBX: 00007f78c2c16270 RCX: 00007f78c299c799 [ 469.806931][T11220] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 469.806946][T11220] RBP: 00007f78c2a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 469.806961][T11220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 469.806976][T11220] R13: 00007f78c2c16308 R14: 00007f78c2c16270 R15: 00007fff1f09efc8 [ 469.807007][T11220] [ 470.594701][T11042] Bluetooth: hci0: command 0x0c1a tx timeout [ 470.652901][T11042] Bluetooth: hci3: command 0x0c1a tx timeout [ 470.659245][T11042] Bluetooth: hci1: command 0x0c1a tx timeout [ 470.724688][T10599] Bluetooth: hci2: command 0x0c1a tx timeout [ 472.159755][T11260] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 472.266543][T11260] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 472.379665][T11260] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 472.504186][T11260] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 473.482961][T11276] __vm_enough_memory: pid: 11276, comm: syz.1.1035, bytes: 4398046511104 not enough memory for the allocation [ 474.166528][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 474.326491][T10599] Bluetooth: hci1: command 0x0c1a tx timeout [ 474.406502][T10599] Bluetooth: hci3: command 0x0c1a tx timeout [ 474.566677][T10599] Bluetooth: hci2: command 0x0c1a tx timeout [ 476.028182][ T30] audit: type=1400 audit(1772627232.053:23): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=11300 comm="syz.3.1038" [ 476.477794][T11296] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1037'. [ 476.662014][T11307] syz.3.1039 uses obsolete (PF_INET,SOCK_PACKET) [ 477.758253][T11314] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 477.764409][T11314] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 478.271675][T11314] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 478.303536][T11314] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 479.850075][T11042] Bluetooth: hci1: command 0x0c1a tx timeout [ 479.856189][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 480.332995][T11042] Bluetooth: hci2: command 0x0c1a tx timeout [ 480.340611][T10599] Bluetooth: hci3: command 0x0c1a tx timeout [ 480.873058][T11332] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1]. [ 486.776323][T11398] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 487.083776][T11412] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 487.158950][T11412] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 487.211779][T11412] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 487.266766][T11412] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 488.754527][T11435] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 489.133951][T11042] Bluetooth: hci1: command 0x0c1a tx timeout [ 489.140110][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 489.214093][T11042] Bluetooth: hci3: command 0x0c1a tx timeout [ 489.297138][T11042] Bluetooth: hci2: command 0x0c1a tx timeout [ 491.022342][T11432] udc dummy_udc.0: soft-connect without a gadget driver [ 492.773838][T11439] Invalid ELF header magic: != ELF [ 493.527884][T11470] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 493.556391][T11470] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 493.567501][T11042] Bluetooth: hci2: ACL packet for unknown connection handle 0 [ 493.608451][T11470] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 493.624910][T11470] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 493.956719][T11478] block nbd8: Cannot use ioctl interface on a netlink controlled device. [ 495.546803][T11042] Bluetooth: hci0: command 0x0c1a tx timeout [ 495.620920][T10599] Bluetooth: hci3: command 0x0c1a tx timeout [ 495.627071][T11042] Bluetooth: hci1: command 0x0c1a tx timeout [ 495.697201][T10599] Bluetooth: hci2: command 0x0c1a tx timeout [ 495.841365][T10599] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5 [ 497.842348][T11533] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 497.880666][T11533] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 497.918565][T11533] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 497.958513][T11533] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 498.096989][T11468] kexec: Could not allocate control_code_buffer [ 499.862632][T10599] Bluetooth: hci0: command 0x0c1a tx timeout [ 499.940687][T10599] Bluetooth: hci3: command 0x0c1a tx timeout [ 499.946779][T10599] Bluetooth: hci1: command 0x0c1a tx timeout [ 500.022304][T10599] Bluetooth: hci2: command 0x0c1a tx timeout [ 500.874441][T11572] NFSD: Failed to start, no listeners configured. [ 501.708083][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.714583][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 504.745322][T11617] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 504.751409][T11617] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 504.765760][T11617] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 504.787106][T11617] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 505.182521][T11622] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 505.188637][T11622] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 505.201628][T11622] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 505.214500][T11622] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 507.223002][T10599] Bluetooth: hci2: command 0x0c1a tx timeout [ 507.229173][T11042] Bluetooth: hci3: command 0x0c1a tx timeout [ 507.235980][T10591] Bluetooth: hci1: command 0x0c1a tx timeout [ 507.241997][T10591] Bluetooth: hci0: command 0x0c1a tx timeout [ 510.581101][T11697] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 510.661997][T11697] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 510.704953][T11697] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 510.737276][T11697] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 512.275735][T11733] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 512.358918][T11733] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 512.675866][T11733] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 512.745659][T11654] Bluetooth: hci2: command 0x0c1a tx timeout [ 512.865358][T11733] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 514.346703][T11654] Bluetooth: hci0: command 0x0c1a tx timeout [ 514.443860][T11654] Bluetooth: hci1: command 0x0c1a tx timeout [ 514.746632][T11654] Bluetooth: hci3: command 0x0c1a tx timeout [ 514.906781][T11654] Bluetooth: hci2: command 0x0c1a tx timeout [ 514.925494][T11757] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 514.942585][T11757] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 514.993238][T11757] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 515.029967][T11757] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 515.646066][T11772] NFSD: Failed to start, no listeners configured. [ 516.988037][T11654] Bluetooth: hci1: command 0x0c1a tx timeout [ 516.994107][T11654] Bluetooth: hci0: command 0x0c1a tx timeout [ 517.076210][T11654] Bluetooth: hci2: command 0x0c1a tx timeout [ 517.082331][T10893] Bluetooth: hci3: command 0x0c1a tx timeout [ 518.329255][T11804] __vm_enough_memory: pid: 11804, comm: syz.2.1124, bytes: 4398046511104 not enough memory for the allocation [ 519.533982][T11819] FAULT_INJECTION: forcing a failure. [ 519.533982][T11819] name failslab, interval 1, probability 0, space 0, times 0 [ 519.679812][T11819] CPU: 0 UID: 0 PID: 11819 Comm: syz.2.1127 Tainted: G L syzkaller #0 PREEMPT(full) [ 519.679852][T11819] Tainted: [L]=SOFTLOCKUP [ 519.679860][T11819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 519.679875][T11819] Call Trace: [ 519.679882][T11819] [ 519.679891][T11819] dump_stack_lvl+0x100/0x190 [ 519.679934][T11819] should_fail_ex.cold+0x5/0xa [ 519.679961][T11819] ? ops_init+0x77/0x5f0 [ 519.679990][T11819] should_failslab+0xc2/0x120 [ 519.680015][T11819] __kmalloc_noprof+0xe0/0x850 [ 519.680057][T11819] ops_init+0x77/0x5f0 [ 519.680090][T11819] setup_net+0x118/0x3a0 [ 519.680121][T11819] ? __pfx_setup_net+0x10/0x10 [ 519.680149][T11819] ? lockdep_init_map_type+0x5c/0x250 [ 519.680183][T11819] ? mutex_init_lockep+0x110/0x150 [ 519.680226][T11819] copy_net_ns+0x46f/0x7c0 [ 519.680262][T11819] create_new_namespaces+0x3ea/0xac0 [ 519.680294][T11819] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 519.680323][T11819] ksys_unshare+0x473/0xad0 [ 519.680355][T11819] ? __pfx_ksys_unshare+0x10/0x10 [ 519.680396][T11819] __x64_sys_unshare+0x31/0x40 [ 519.680430][T11819] do_syscall_64+0x106/0xf80 [ 519.680458][T11819] ? clear_bhb_loop+0x40/0x90 [ 519.680487][T11819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.680512][T11819] RIP: 0033:0x7f8223d9c799 [ 519.680532][T11819] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 519.680556][T11819] RSP: 002b:00007f8224b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 519.680580][T11819] RAX: ffffffffffffffda RBX: 00007f8224016090 RCX: 00007f8223d9c799 [ 519.680596][T11819] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 519.680610][T11819] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 519.680624][T11819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 519.680639][T11819] R13: 00007f8224016128 R14: 00007f8224016090 R15: 00007fff90024198 [ 519.680670][T11819] [ 520.236981][T11814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1125'. [ 526.259389][T11890] random: crng reseeded on system resumption [ 528.054973][T11873] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1137'. [ 528.259123][T11905] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1143'. [ 529.896327][T11929] Invalid ELF header magic: != ELF [ 532.913193][T11953] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 532.923037][T11953] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 532.931241][T11953] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 532.938028][T11953] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 533.877051][T11654] Bluetooth: hci0: command 0x0c1a tx timeout [ 534.337059][T11995] FAULT_INJECTION: forcing a failure. [ 534.337059][T11995] name failslab, interval 1, probability 0, space 0, times 0 [ 534.424705][T11995] CPU: 0 UID: 0 PID: 11995 Comm: syz.0.1163 Tainted: G L syzkaller #0 PREEMPT(full) [ 534.424746][T11995] Tainted: [L]=SOFTLOCKUP [ 534.424754][T11995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 534.424769][T11995] Call Trace: [ 534.424776][T11995] [ 534.424785][T11995] dump_stack_lvl+0x100/0x190 [ 534.424838][T11995] should_fail_ex.cold+0x5/0xa [ 534.424868][T11995] should_failslab+0xc2/0x120 [ 534.424894][T11995] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 534.424932][T11995] ? __d_alloc+0x34/0xa80 [ 534.424958][T11995] ? security_inode_alloc+0xcf/0x2c0 [ 534.425000][T11995] __d_alloc+0x34/0xa80 [ 534.425023][T11995] ? __ns_ref_active_get+0x9f/0x1b0 [ 534.425057][T11995] path_from_stashed+0x427/0x750 [ 534.425082][T11995] ? do_raw_spin_unlock+0x145/0x1e0 [ 534.425124][T11995] ns_get_path+0x60/0x80 [ 534.425148][T11995] proc_ns_get_link+0x121/0x230 [ 534.425183][T11995] ? __pfx_proc_ns_get_link+0x10/0x10 [ 534.425220][T11995] ? atime_needs_update+0x8b/0x6b0 [ 534.425257][T11995] pick_link+0xd17/0x13c0 [ 534.425290][T11995] ? __pfx_proc_ns_get_link+0x10/0x10 [ 534.425327][T11995] step_into_slowpath+0x9ba/0xf90 [ 534.425369][T11995] ? __pfx_step_into_slowpath+0x10/0x10 [ 534.425405][T11995] ? find_held_lock+0x2b/0x80 [ 534.425436][T11995] path_openat+0xf95/0x31a0 [ 534.425469][T11995] ? __pfx_path_openat+0x10/0x10 [ 534.425510][T11995] do_file_open+0x20e/0x430 [ 534.425537][T11995] ? __pfx_do_file_open+0x10/0x10 [ 534.425582][T11995] ? alloc_fd+0x476/0x790 [ 534.425607][T11995] ? do_getname+0x191/0x390 [ 534.425639][T11995] do_sys_openat2+0x10d/0x1e0 [ 534.425671][T11995] ? __pfx_do_sys_openat2+0x10/0x10 [ 534.425704][T11995] ? __fget_files+0x21f/0x3d0 [ 534.425732][T11995] __x64_sys_openat+0x12d/0x210 [ 534.425764][T11995] ? __pfx___x64_sys_openat+0x10/0x10 [ 534.425807][T11995] do_syscall_64+0x106/0xf80 [ 534.425837][T11995] ? clear_bhb_loop+0x40/0x90 [ 534.425867][T11995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 534.425892][T11995] RIP: 0033:0x7f98ad75cfce [ 534.425912][T11995] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 534.425936][T11995] RSP: 002b:00007f98ae5dfec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 534.425959][T11995] RAX: ffffffffffffffda RBX: 00007f98ae5e06c0 RCX: 00007f98ad75cfce [ 534.425976][T11995] RDX: 0000000000000002 RSI: 00007f98ae5dff90 RDI: ffffffffffffff9c [ 534.425991][T11995] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 534.426006][T11995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 534.426020][T11995] R13: 00007f98ada16038 R14: 00007f98ada15fa0 R15: 00007fff64ff7238 [ 534.426051][T11995] [ 535.094185][T11654] Bluetooth: hci2: command 0x0c1a tx timeout [ 535.100938][T11654] Bluetooth: hci3: command 0x0c1a tx timeout [ 535.107107][T11654] Bluetooth: hci1: command 0x0c1a tx timeout [ 536.627941][T12011] Invalid ELF header magic: != ELF [ 539.749930][T12070] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 539.836918][T12070] File: /dev/nullb0 PID: 12070 Comm: syz.1.1177 [ 546.226110][T10893] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 549.093241][T12214] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1205'. [ 556.734402][T10893] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 556.744188][T10893] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 561.126306][T12366] Invalid ELF header magic: != ELF [ 563.180912][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.187284][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 565.910701][T12458] Invalid ELF header magic: != ELF [ 566.354985][T12464] FAULT_INJECTION: forcing a failure. [ 566.354985][T12464] name failslab, interval 1, probability 0, space 0, times 0 [ 566.462564][T12464] CPU: 0 UID: 0 PID: 12464 Comm: syz.0.1253 Tainted: G L syzkaller #0 PREEMPT(full) [ 566.462604][T12464] Tainted: [L]=SOFTLOCKUP [ 566.462613][T12464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 566.462628][T12464] Call Trace: [ 566.462636][T12464] [ 566.462645][T12464] dump_stack_lvl+0x100/0x190 [ 566.462687][T12464] should_fail_ex.cold+0x5/0xa [ 566.462745][T12464] should_failslab+0xc2/0x120 [ 566.462771][T12464] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 566.462807][T12464] ? seq_open+0x55/0x170 [ 566.462844][T12464] seq_open+0x55/0x170 [ 566.462876][T12464] blk_mq_debugfs_open+0x106/0x1b0 [ 566.462914][T12464] ? __pfx_blk_mq_debugfs_open+0x10/0x10 [ 566.462946][T12464] full_proxy_open_regular+0x1b6/0x370 [ 566.462983][T12464] do_dentry_open+0x6d8/0x1660 [ 566.463006][T12464] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 566.463047][T12464] vfs_open+0x82/0x3f0 [ 566.463080][T12464] path_openat+0x208c/0x31a0 [ 566.463114][T12464] ? __pfx_path_openat+0x10/0x10 [ 566.463156][T12464] do_file_open+0x20e/0x430 [ 566.463182][T12464] ? __pfx_do_file_open+0x10/0x10 [ 566.463227][T12464] ? alloc_fd+0x476/0x790 [ 566.463253][T12464] ? do_getname+0x191/0x390 [ 566.463286][T12464] do_sys_openat2+0x10d/0x1e0 [ 566.463316][T12464] ? __pfx_do_sys_openat2+0x10/0x10 [ 566.463350][T12464] ? __fget_files+0x21f/0x3d0 [ 566.463377][T12464] __x64_sys_openat+0x12d/0x210 [ 566.463410][T12464] ? __pfx___x64_sys_openat+0x10/0x10 [ 566.463453][T12464] do_syscall_64+0x106/0xf80 [ 566.463481][T12464] ? clear_bhb_loop+0x40/0x90 [ 566.463510][T12464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.463535][T12464] RIP: 0033:0x7f98ad79c799 [ 566.463555][T12464] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 566.463579][T12464] RSP: 002b:00007f98ae5e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 566.463602][T12464] RAX: ffffffffffffffda RBX: 00007f98ada15fa0 RCX: 00007f98ad79c799 [ 566.463618][T12464] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffffffffff9c [ 566.463634][T12464] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 566.463651][T12464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.463665][T12464] R13: 00007f98ada16038 R14: 00007f98ada15fa0 R15: 00007fff64ff7238 [ 566.463695][T12464] [ 566.716455][T12464] netlink: 122 bytes leftover after parsing attributes in process `syz.0.1253'. [ 569.162109][T12513] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 569.371343][T12513] File: /dev/nullb0 PID: 12513 Comm: syz.0.1261 [ 572.693862][T10893] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 572.750550][T12551] Invalid ELF header magic: != ELF [ 574.677704][T12574] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1272'. [ 575.236349][T12556] kexec: Could not allocate control_code_buffer [ 576.770195][T12592] FAULT_INJECTION: forcing a failure. [ 576.770195][T12592] name failslab, interval 1, probability 0, space 0, times 0 [ 576.818360][T12592] CPU: 0 UID: 0 PID: 12592 Comm: syz.3.1274 Tainted: G L syzkaller #0 PREEMPT(full) [ 576.818399][T12592] Tainted: [L]=SOFTLOCKUP [ 576.818408][T12592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 576.818423][T12592] Call Trace: [ 576.818432][T12592] [ 576.818441][T12592] dump_stack_lvl+0x100/0x190 [ 576.818483][T12592] should_fail_ex.cold+0x5/0xa [ 576.818511][T12592] should_failslab+0xc2/0x120 [ 576.818536][T12592] __kmalloc_cache_noprof+0x7a/0x6f0 [ 576.818567][T12592] ? resv_map_alloc+0x46/0x400 [ 576.818604][T12592] ? map_id_range_down+0x2bc/0x3b0 [ 576.818649][T12592] resv_map_alloc+0x46/0x400 [ 576.818688][T12592] hugetlbfs_get_inode+0x2fe/0x750 [ 576.818717][T12592] hugetlb_file_setup+0x3cc/0x5b0 [ 576.818746][T12592] newseg+0xabb/0xed0 [ 576.818778][T12592] ? __pfx_newseg+0x10/0x10 [ 576.818801][T12592] ? down_write+0x146/0x1f0 [ 576.818847][T12592] ? __sched_setaffinity+0x17c/0x280 [ 576.818873][T12592] ? __pfx___sched_setaffinity+0x10/0x10 [ 576.818902][T12592] ipcget+0xee/0xf50 [ 576.818927][T12592] ? do_futex+0x192/0x350 [ 576.818958][T12592] ? __pfx_do_futex+0x10/0x10 [ 576.818990][T12592] ? sched_setaffinity+0xe0/0x400 [ 576.819012][T12592] ? __might_fault+0xc5/0x140 [ 576.819048][T12592] ? __pfx_ipcget+0x10/0x10 [ 576.819074][T12592] ? __x64_sys_futex+0x34f/0x4d0 [ 576.819103][T12592] ? __x64_sys_futex+0x358/0x4d0 [ 576.819139][T12592] __x64_sys_shmget+0x13b/0x1b0 [ 576.819166][T12592] ? __pfx___x64_sys_shmget+0x10/0x10 [ 576.819200][T12592] do_syscall_64+0x106/0xf80 [ 576.819228][T12592] ? clear_bhb_loop+0x40/0x90 [ 576.819258][T12592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.819282][T12592] RIP: 0033:0x7f07a0b9c799 [ 576.819302][T12592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 576.819325][T12592] RSP: 002b:00007f07a1a1b028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 576.819349][T12592] RAX: ffffffffffffffda RBX: 00007f07a0e15fa0 RCX: 00007f07a0b9c799 [ 576.819365][T12592] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 576.819380][T12592] RBP: 00007f07a0c32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 576.819394][T12592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.819408][T12592] R13: 00007f07a0e16038 R14: 00007f07a0e15fa0 R15: 00007fff134509a8 [ 576.819440][T12592] [ 582.669231][T12685] Invalid ELF header magic: != ELF [ 583.770910][T12715] FAULT_INJECTION: forcing a failure. [ 583.770910][T12715] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 583.842954][T12715] CPU: 0 UID: 0 PID: 12715 Comm: syz.0.1295 Tainted: G L syzkaller #0 PREEMPT(full) [ 583.842993][T12715] Tainted: [L]=SOFTLOCKUP [ 583.843001][T12715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 583.843017][T12715] Call Trace: [ 583.843024][T12715] [ 583.843033][T12715] dump_stack_lvl+0x100/0x190 [ 583.843076][T12715] should_fail_ex.cold+0x5/0xa [ 583.843102][T12715] ? prepare_alloc_pages+0x16d/0x5f0 [ 583.843132][T12715] should_fail_alloc_page+0xeb/0x140 [ 583.843159][T12715] prepare_alloc_pages+0x1f0/0x5f0 [ 583.843190][T12715] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 583.843238][T12715] ? __lock_acquire+0x4a5/0x2630 [ 583.843268][T12715] ? css_rstat_updated+0x1ce/0x5a0 [ 583.843296][T12715] ? __pfx_css_rstat_updated+0x10/0x10 [ 583.843322][T12715] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 583.843366][T12715] ? rcu_is_watching+0x12/0xc0 [ 583.843415][T12715] ? __lock_acquire+0x4a5/0x2630 [ 583.843448][T12715] ? __lock_acquire+0x4a5/0x2630 [ 583.843478][T12715] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 583.843519][T12715] ? policy_nodemask+0xed/0x4f0 [ 583.843551][T12715] alloc_pages_mpol+0x1fb/0x550 [ 583.843585][T12715] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 583.843610][T12715] ? find_held_lock+0x2b/0x80 [ 583.843631][T12715] ? filemap_get_entry+0x1a7/0x3b0 [ 583.843670][T12715] ? filemap_get_entry+0x1a7/0x3b0 [ 583.843711][T12715] folio_alloc_noprof+0x22/0x330 [ 583.843741][T12715] filemap_alloc_folio_noprof.part.0+0x377/0x450 [ 583.843771][T12715] ? __pfx_filemap_get_entry+0x10/0x10 [ 583.843807][T12715] ? filemap_add_folio+0x114/0x690 [ 583.843846][T12715] ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10 [ 583.843880][T12715] ? rcu_is_watching+0x12/0xc0 [ 583.843919][T12715] __filemap_get_folio_mpol+0x6a4/0xe70 [ 583.843966][T12715] ioctx_alloc+0x7e4/0x21d0 [ 583.844004][T12715] ? __pfx_ioctx_alloc+0x10/0x10 [ 583.844038][T12715] __x64_sys_io_setup+0xc9/0x220 [ 583.844066][T12715] do_syscall_64+0x106/0xf80 [ 583.844095][T12715] ? clear_bhb_loop+0x40/0x90 [ 583.844125][T12715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.844150][T12715] RIP: 0033:0x7f98ad79c799 [ 583.844170][T12715] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 583.844193][T12715] RSP: 002b:00007f98ae5e0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 583.844217][T12715] RAX: ffffffffffffffda RBX: 00007f98ada15fa0 RCX: 00007f98ad79c799 [ 583.844233][T12715] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000ffff [ 583.844247][T12715] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 583.844262][T12715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 583.844276][T12715] R13: 00007f98ada16038 R14: 00007f98ada15fa0 R15: 00007fff64ff7238 [ 583.844308][T12715] [ 588.066701][T12775] FAULT_INJECTION: forcing a failure. [ 588.066701][T12775] name fail_futex, interval 1, probability 0, space 0, times 0 [ 588.098070][T12775] CPU: 0 UID: 0 PID: 12775 Comm: syz.3.1307 Tainted: G L syzkaller #0 PREEMPT(full) [ 588.098110][T12775] Tainted: [L]=SOFTLOCKUP [ 588.098119][T12775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 588.098134][T12775] Call Trace: [ 588.098151][T12775] [ 588.098160][T12775] dump_stack_lvl+0x100/0x190 [ 588.098203][T12775] should_fail_ex.cold+0x5/0xa [ 588.098231][T12775] get_futex_key+0x1d2/0x1620 [ 588.098263][T12775] ? __pfx_get_futex_key+0x10/0x10 [ 588.098296][T12775] ? __pfx____sys_sendmsg+0x10/0x10 [ 588.098341][T12775] futex_wake+0xea/0x530 [ 588.098380][T12775] ? __pfx_futex_wake+0x10/0x10 [ 588.098428][T12775] do_futex+0x32b/0x350 [ 588.098460][T12775] ? __pfx_do_futex+0x10/0x10 [ 588.098491][T12775] ? fput+0x79/0x100 [ 588.098517][T12775] ? __sys_sendmsg+0x18f/0x220 [ 588.098548][T12775] __x64_sys_futex+0x34f/0x4d0 [ 588.098583][T12775] ? __pfx___x64_sys_futex+0x10/0x10 [ 588.098625][T12775] do_syscall_64+0x106/0xf80 [ 588.098653][T12775] ? clear_bhb_loop+0x40/0x90 [ 588.098683][T12775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.098707][T12775] RIP: 0033:0x7f07a0b9c799 [ 588.098726][T12775] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 588.098750][T12775] RSP: 002b:00007f07a1a1b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 588.098773][T12775] RAX: ffffffffffffffda RBX: 00007f07a0e15fa8 RCX: 00007f07a0b9c799 [ 588.098789][T12775] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f07a0e15fac [ 588.098804][T12775] RBP: 00007f07a0e15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 588.098819][T12775] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000000 [ 588.098833][T12775] R13: 00007f07a0e16038 R14: 00007fff134508c0 R15: 00007fff134509a8 [ 588.098863][T12775] [ 590.094571][T12801] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 590.622437][T12813] Invalid ELF header magic: != ELF [ 591.910490][T10893] Bluetooth: hci1: ISO packet for unknown connection handle 0 [ 592.374504][T10893] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 598.412815][T12910] netlink: 'syz.1.1329': attribute type 2 has an invalid length. [ 598.450896][T12910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1329'. [ 602.392119][T10893] Bluetooth: Frame is too long (len 122, expected len 4) [ 606.136559][T13013] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 606.431539][T13010] FAULT_INJECTION: forcing a failure. [ 606.431539][T13010] name failslab, interval 1, probability 0, space 0, times 0 [ 606.618464][T13010] CPU: 0 UID: 0 PID: 13010 Comm: syz.0.1349 Tainted: G L syzkaller #0 PREEMPT(full) [ 606.618504][T13010] Tainted: [L]=SOFTLOCKUP [ 606.618513][T13010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 606.618528][T13010] Call Trace: [ 606.618543][T13010] [ 606.618552][T13010] dump_stack_lvl+0x100/0x190 [ 606.618594][T13010] should_fail_ex.cold+0x5/0xa [ 606.618622][T13010] ? memcg_list_lru_alloc+0x4ec/0x740 [ 606.618659][T13010] should_failslab+0xc2/0x120 [ 606.618683][T13010] __kmalloc_noprof+0xe0/0x850 [ 606.618722][T13010] ? ipcget+0xee/0xf50 [ 606.618751][T13010] memcg_list_lru_alloc+0x4ec/0x740 [ 606.618799][T13010] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 606.618836][T13010] ? rcu_read_unlock+0x17/0x60 [ 606.618869][T13010] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 606.618917][T13010] __memcg_slab_post_alloc_hook+0x12f/0x9a0 [ 606.618959][T13010] ? kasan_save_track+0x14/0x30 [ 606.619000][T13010] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 606.619038][T13010] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 606.619085][T13010] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 606.619124][T13010] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 606.619165][T13010] alloc_inode+0x68/0x250 [ 606.619196][T13010] new_inode+0x22/0x1c0 [ 606.619230][T13010] hugetlbfs_get_inode+0x313/0x750 [ 606.619258][T13010] hugetlb_file_setup+0x3cc/0x5b0 [ 606.619286][T13010] newseg+0xabb/0xed0 [ 606.619316][T13010] ? __pfx_newseg+0x10/0x10 [ 606.619340][T13010] ? down_write+0x146/0x1f0 [ 606.619372][T13010] ? ksys_write+0x190/0x250 [ 606.619410][T13010] ? ksys_write+0x190/0x250 [ 606.619451][T13010] ipcget+0xee/0xf50 [ 606.619482][T13010] ? do_futex+0x192/0x350 [ 606.619513][T13010] ? __pfx_do_futex+0x10/0x10 [ 606.619557][T13010] ? __pfx_ipcget+0x10/0x10 [ 606.619583][T13010] ? __x64_sys_futex+0x34f/0x4d0 [ 606.619613][T13010] ? __x64_sys_futex+0x358/0x4d0 [ 606.619649][T13010] __x64_sys_shmget+0x13b/0x1b0 [ 606.619675][T13010] ? __pfx___x64_sys_shmget+0x10/0x10 [ 606.619710][T13010] do_syscall_64+0x106/0xf80 [ 606.619737][T13010] ? clear_bhb_loop+0x40/0x90 [ 606.619767][T13010] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 606.619792][T13010] RIP: 0033:0x7f98ad79c799 [ 606.619812][T13010] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 606.619835][T13010] RSP: 002b:00007f98ae57d028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 606.619858][T13010] RAX: ffffffffffffffda RBX: 00007f98ada16270 RCX: 00007f98ad79c799 [ 606.619874][T13010] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 606.619889][T13010] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 606.619903][T13010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 606.619917][T13010] R13: 00007f98ada16308 R14: 00007f98ada16270 R15: 00007fff64ff7238 [ 606.619949][T13010] [ 608.531729][T13031] Invalid ELF header magic: != ELF [ 611.919193][T13072] Invalid ELF header magic: != ELF [ 613.270921][T13098] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1366'. [ 613.356318][T13098] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 616.643600][T13138] Invalid ELF header magic: != ELF [ 617.993455][T13156] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 618.552746][T13163] NFSD: Failed to start, no listeners configured. [ 620.274753][T13189] NFSD: Failed to start, no listeners configured. [ 624.646172][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.656218][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 628.135796][T13307] Invalid ELF header magic: != ELF [ 630.222104][T13332] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 631.025091][T13336] udc dummy_udc.0: soft-connect without a gadget driver [ 634.850315][T13373] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input26 [ 638.336911][T13422] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1426'. [ 638.383629][T13420] NFSD: Failed to start, no listeners configured. [ 638.391732][T13422] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1426'. [ 647.326614][T13541] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1445'. [ 647.591375][T13541] veth0_macvtap: left promiscuous mode [ 647.667255][T13541] macvtap0: entered promiscuous mode [ 647.699632][T13541] macvtap0: entered allmulticast mode [ 649.565016][T13575] mkiss: ax0: crc mode is auto. [ 650.433429][T13592] Invalid ELF header magic: != ELF [ 657.362892][T13685] random: crng reseeded on system resumption [ 657.881064][T13684] Invalid ELF header magic: != ELF [ 657.949115][T13685] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1471'. [ 658.386493][T13696] nvme_fabrics: missing parameter 'transport=%s' [ 658.412583][T13696] nvme_fabrics: missing parameter 'nqn=%s' [ 658.653682][T13698] nvme_fabrics: missing parameter 'transport=%s' [ 658.687433][T13698] nvme_fabrics: missing parameter 'nqn=%s' [ 659.784258][T13713] input: jJǸ-9%vJ86 as /devices/virtual/input/input27 [ 661.746015][T13744] sg_write: process 1743 (syz.2.1483) changed security contexts after opening file descriptor, this is not allowed. [ 663.158729][T13756] FAULT_INJECTION: forcing a failure. [ 663.158729][T13756] name failslab, interval 1, probability 0, space 0, times 0 [ 663.230692][T13756] CPU: 0 UID: 0 PID: 13756 Comm: syz.3.1484 Tainted: G L syzkaller #0 PREEMPT(full) [ 663.230735][T13756] Tainted: [L]=SOFTLOCKUP [ 663.230744][T13756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 663.230759][T13756] Call Trace: [ 663.230766][T13756] [ 663.230775][T13756] dump_stack_lvl+0x100/0x190 [ 663.230818][T13756] should_fail_ex.cold+0x5/0xa [ 663.230847][T13756] should_failslab+0xc2/0x120 [ 663.230873][T13756] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 663.230910][T13756] ? security_inode_alloc+0x3b/0x2c0 [ 663.230948][T13756] ? lockdep_init_map_type+0x5c/0x250 [ 663.230986][T13756] security_inode_alloc+0x3b/0x2c0 [ 663.231022][T13756] inode_init_always_gfp+0xced/0x1040 [ 663.231052][T13756] alloc_inode+0x8e/0x250 [ 663.231083][T13756] new_inode+0x22/0x1c0 [ 663.231117][T13756] shmem_get_inode+0x212/0x1040 [ 663.231153][T13756] ? __pfx_shmem_get_inode+0x10/0x10 [ 663.231184][T13756] ? rcu_is_watching+0x12/0xc0 [ 663.231220][T13756] ? percpu_counter_add_batch+0xb9/0x230 [ 663.231376][T13756] __shmem_file_setup+0x3ac/0x490 [ 663.231410][T13756] ? __pfx___shmem_file_setup+0x10/0x10 [ 663.231448][T13756] ? vm_area_alloc+0x1f/0x160 [ 663.231483][T13756] shmem_zero_setup+0x96/0x1b0 [ 663.231523][T13756] __mmap_region+0x2198/0x29e0 [ 663.231560][T13756] ? update_cfs_rq_load_avg+0x51/0x550 [ 663.231596][T13756] ? __pfx___mmap_region+0x10/0x10 [ 663.231638][T13756] ? set_next_entity+0x11e/0x9c0 [ 663.231678][T13756] ? __lock_acquire+0x4a5/0x2630 [ 663.231720][T13756] ? lock_acquire+0x1cf/0x380 [ 663.231750][T13756] ? find_held_lock+0x2b/0x80 [ 663.231786][T13756] ? trace_sched_exit_tp+0x13a/0x180 [ 663.231854][T13756] ? rcu_is_watching+0x12/0xc0 [ 663.231890][T13756] ? cap_capable+0x107/0x460 [ 663.231928][T13756] mmap_region+0x180/0x3e0 [ 663.231969][T13756] do_mmap+0xc63/0x12f0 [ 663.232001][T13756] ? __pfx_do_mmap+0x10/0x10 [ 663.232026][T13756] ? __pfx_down_write_killable+0x10/0x10 [ 663.232069][T13756] vm_mmap_pgoff+0x29e/0x470 [ 663.232100][T13756] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 663.232128][T13756] ? do_futex+0x192/0x350 [ 663.232160][T13756] ? __pfx_do_futex+0x10/0x10 [ 663.232196][T13756] ksys_mmap_pgoff+0xe1/0x650 [ 663.232224][T13756] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 663.232249][T13756] ? xfd_validate_state+0x129/0x190 [ 663.232290][T13756] __x64_sys_mmap+0x125/0x190 [ 663.232329][T13756] do_syscall_64+0x106/0xf80 [ 663.232357][T13756] ? clear_bhb_loop+0x40/0x90 [ 663.232387][T13756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.232434][T13756] RIP: 0033:0x7f07a0b9c799 [ 663.232453][T13756] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 663.232477][T13756] RSP: 002b:00007f07a19b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 663.232500][T13756] RAX: ffffffffffffffda RBX: 00007f07a0e16270 RCX: 00007f07a0b9c799 [ 663.232516][T13756] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 663.232531][T13756] RBP: 00007f07a0c32bd9 R08: fffffffffffffffa R09: 0000000000008000 [ 663.232546][T13756] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 663.232561][T13756] R13: 00007f07a0e16308 R14: 00007f07a0e16270 R15: 00007fff134509a8 [ 663.232597][T13756] [ 665.034718][T13782] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input28 [ 665.506725][T13786] Invalid ELF header magic: != ELF [ 670.445867][T13843] FAULT_INJECTION: forcing a failure. [ 670.445867][T13843] name failslab, interval 1, probability 0, space 0, times 0 [ 670.505380][T13843] CPU: 0 UID: 0 PID: 13843 Comm: syz.2.1503 Tainted: G L syzkaller #0 PREEMPT(full) [ 670.505420][T13843] Tainted: [L]=SOFTLOCKUP [ 670.505429][T13843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 670.505443][T13843] Call Trace: [ 670.505450][T13843] [ 670.505459][T13843] dump_stack_lvl+0x100/0x190 [ 670.505501][T13843] should_fail_ex.cold+0x5/0xa [ 670.505529][T13843] should_failslab+0xc2/0x120 [ 670.505554][T13843] __kmalloc_cache_noprof+0x7a/0x6f0 [ 670.505586][T13843] ? alloc_fdtable+0xbd/0x2d0 [ 670.505621][T13843] ? find_held_lock+0x2b/0x80 [ 670.505643][T13843] ? dup_fd+0x924/0xd10 [ 670.505668][T13843] alloc_fdtable+0xbd/0x2d0 [ 670.505707][T13843] dup_fd+0x995/0xd10 [ 670.505738][T13843] __x64_sys_close_range+0x405/0x5d0 [ 670.505767][T13843] ? __pfx___x64_sys_close_range+0x10/0x10 [ 670.505812][T13843] do_syscall_64+0x106/0xf80 [ 670.505841][T13843] ? clear_bhb_loop+0x40/0x90 [ 670.505871][T13843] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.505895][T13843] RIP: 0033:0x7f8223d9c799 [ 670.505914][T13843] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 670.505938][T13843] RSP: 002b:00007f8224b90028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 670.505961][T13843] RAX: ffffffffffffffda RBX: 00007f8224015fa0 RCX: 00007f8223d9c799 [ 670.505977][T13843] RDX: 0000000000000002 RSI: 0000000000000008 RDI: 0000000000000003 [ 670.505992][T13843] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 670.506006][T13843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.506020][T13843] R13: 00007f8224016038 R14: 00007f8224015fa0 R15: 00007fff90024198 [ 670.506050][T13843] [ 674.088788][T13902] NFSD: Failed to start, no listeners configured. [ 675.297014][T13915] random: crng reseeded on system resumption [ 675.352825][T13910] [U] [ 675.355861][T13910] [U] [ 675.358577][T13910] [U] [ 675.361291][T13910] [U] [ 675.427177][T13910] [U] [ 675.427244][T13910] [U] [ 675.427285][T13910] [U] [ 675.427324][T13910] [U] [ 675.427622][T13910] [U] [ 675.427665][T13910] [U] [ 675.427703][T13910] [U] [ 675.427745][T13910] [U] [ 675.427981][T13910] [U] [ 675.428022][T13910] [U] [ 675.428061][T13910] [U] [ 675.428100][T13910] [U] [ 675.428348][T13910] [U] [ 675.428388][T13910] [U] [ 675.428427][T13910] [U] [ 675.428467][T13910] [U] [ 675.428664][T13910] [U] [ 675.428704][T13910] [U] [ 675.428743][T13910] [U] [ 675.428782][T13910] [U] [ 675.429026][T13910] [U] [ 675.429067][T13910] [U] [ 675.429107][T13910] [U] [ 675.429146][T13910] [U] [ 675.429336][T13910] [U] [ 675.429376][T13910] [U] [ 675.429415][T13910] [U] [ 675.429454][T13910] [U] [ 675.429705][T13910] [U] [ 675.429745][T13910] [U] [ 675.429785][T13910] [U] [ 675.429824][T13910] [U] [ 675.430013][T13910] [U] [ 675.430053][T13910] [U] [ 675.430091][T13910] [U] [ 675.430130][T13910] [U] [ 675.430372][T13910] [U] [ 675.430413][T13910] [U] [ 675.430452][T13910] [U] [ 675.430497][T13910] [U] [ 675.430688][T13910] [U] [ 675.430728][T13910] [U] [ 675.430767][T13910] [U] [ 675.430806][T13910] [U] [ 675.431049][T13910] [U] [ 675.431089][T13910] [U] [ 675.431129][T13910] [U] [ 675.431168][T13910] [U] [ 675.431377][T13910] [U] [ 675.431417][T13910] [U] [ 675.431456][T13910] [U] [ 675.431501][T13910] [U] [ 675.431746][T13910] [U] [ 675.431787][T13910] [U] [ 675.431827][T13910] [U] [ 675.431865][T13910] [U] [ 675.432056][T13910] [U] [ 675.432095][T13910] [U] [ 675.432134][T13910] [U] [ 675.432174][T13910] [U] [ 675.432419][T13910] [U] [ 675.432459][T13910] [U] [ 675.432506][T13910] [U] [ 675.432545][T13910] [U] [ 675.432737][T13910] [U] [ 675.432776][T13910] [U] [ 675.432815][T13910] [U] [ 675.432854][T13910] [U] [ 675.433105][T13910] [U] [ 675.433146][T13910] [U] [ 675.433186][T13910] [U] [ 675.433225][T13910] [U] [ 675.433415][T13910] [U] [ 675.433454][T13910] [U] [ 675.433500][T13910] [U] [ 675.433539][T13910] [U] [ 675.433787][T13910] [U] [ 675.433828][T13910] [U] [ 675.433867][T13910] [U] [ 675.433906][T13910] [U] [ 675.434097][T13910] [U] [ 675.434136][T13910] [U] [ 675.434175][T13910] [U] [ 675.434214][T13910] [U] [ 675.434465][T13910] [U] [ 675.434513][T13910] [U] [ 675.434553][T13910] [U] [ 675.434623][T13910] [U] [ 675.434813][T13910] [U] [ 675.434853][T13910] [U] [ 675.434892][T13910] [U] [ 675.434931][T13910] [U] [ 675.435186][T13910] [U] [ 675.435226][T13910] [U] [ 675.435266][T13910] [U] [ 675.435306][T13910] [U] [ 675.435501][T13910] [U] [ 675.435540][T13910] [U] [ 675.435579][T13910] [U] [ 675.435618][T13910] [U] [ 675.435870][T13910] [U] [ 675.435910][T13910] [U] [ 675.435949][T13910] [U] [ 675.435988][T13910] [U] [ 675.436178][T13910] [U] [ 675.436218][T13910] [U] [ 675.436257][T13910] [U] [ 675.436296][T13910] [U] [ 675.436564][T13910] [U] [ 675.436606][T13910] [U] [ 675.436645][T13910] [U] [ 675.436685][T13910] [U] [ 675.481254][T13910] [U] [ 675.481298][T13910] [U] [ 675.481337][T13910] [U] [ 675.481376][T13910] [U] [ 675.519549][T13910] [U] [ 676.659215][T13928] FAULT_INJECTION: forcing a failure. [ 676.659215][T13928] name failslab, interval 1, probability 0, space 0, times 0 [ 676.659287][T13928] CPU: 0 UID: 0 PID: 13928 Comm: syz.2.1516 Tainted: G L syzkaller #0 PREEMPT(full) [ 676.659323][T13928] Tainted: [L]=SOFTLOCKUP [ 676.659331][T13928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 676.659346][T13928] Call Trace: [ 676.659354][T13928] [ 676.659363][T13928] dump_stack_lvl+0x100/0x190 [ 676.659412][T13928] should_fail_ex.cold+0x5/0xa [ 676.659441][T13928] should_failslab+0xc2/0x120 [ 676.659466][T13928] __kmalloc_cache_noprof+0x7a/0x6f0 [ 676.659497][T13928] ? snd_seq_port_connect+0x61/0x560 [ 676.659620][T13928] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 676.659653][T13928] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 676.659690][T13928] snd_seq_port_connect+0x61/0x560 [ 676.659724][T13928] ? _raw_read_unlock+0x28/0x50 [ 676.659750][T13928] ? check_subscription_permission.isra.0+0x146/0x240 [ 676.659827][T13928] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 676.659868][T13928] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 676.659918][T13928] call_seq_client_ctl+0xa3/0x130 [ 676.659953][T13928] snd_seq_kernel_client_ctl+0x77/0xd0 [ 676.659989][T13928] snd_seq_oss_midi_open+0x48b/0x6b0 [ 676.660044][T13928] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 676.660069][T13928] ? find_held_lock+0x2b/0x80 [ 676.660098][T13928] ? lockdep_hardirqs_on+0x78/0x100 [ 676.660127][T13928] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 676.660154][T13928] ? get_mididev+0x115/0x160 [ 676.660180][T13928] snd_seq_oss_synth_setup_midi+0x131/0x590 [ 676.660212][T13928] snd_seq_oss_open+0x82e/0xa10 [ 676.660254][T13928] odev_open+0x79/0xc0 [ 676.660284][T13928] ? __pfx_odev_open+0x10/0x10 [ 676.660316][T13928] soundcore_open+0x2e3/0x5a0 [ 676.660409][T13928] ? __pfx_soundcore_open+0x10/0x10 [ 676.660444][T13928] chrdev_open+0x234/0x6a0 [ 676.660468][T13928] ? __pfx_apparmor_file_open+0x10/0x10 [ 676.660525][T13928] ? __pfx_chrdev_open+0x10/0x10 [ 676.660551][T13928] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 676.660584][T13928] do_dentry_open+0x6d8/0x1660 [ 676.660606][T13928] ? __pfx_chrdev_open+0x10/0x10 [ 676.660637][T13928] vfs_open+0x82/0x3f0 [ 676.660670][T13928] path_openat+0x208c/0x31a0 [ 676.660704][T13928] ? __pfx_path_openat+0x10/0x10 [ 676.660739][T13928] do_file_open+0x20e/0x430 [ 676.660765][T13928] ? __pfx_do_file_open+0x10/0x10 [ 676.660810][T13928] ? alloc_fd+0x476/0x790 [ 676.660836][T13928] ? do_getname+0x191/0x390 [ 676.660867][T13928] do_sys_openat2+0x10d/0x1e0 [ 676.660898][T13928] ? __pfx_do_sys_openat2+0x10/0x10 [ 676.660931][T13928] ? __x64_sys_close_range+0x2d9/0x5d0 [ 676.660964][T13928] __x64_sys_openat+0x12d/0x210 [ 676.660996][T13928] ? __pfx___x64_sys_openat+0x10/0x10 [ 676.661040][T13928] do_syscall_64+0x106/0xf80 [ 676.661066][T13928] ? clear_bhb_loop+0x40/0x90 [ 676.661096][T13928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 676.661120][T13928] RIP: 0033:0x7f8223d9c799 [ 676.661140][T13928] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 676.661164][T13928] RSP: 002b:00007f8224b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 676.661188][T13928] RAX: ffffffffffffffda RBX: 00007f8224016090 RCX: 00007f8223d9c799 [ 676.661204][T13928] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 676.661220][T13928] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 676.661235][T13928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 676.661249][T13928] R13: 00007f8224016128 R14: 00007f8224016090 R15: 00007fff90024198 [ 676.661280][T13928] [ 677.072113][T13911] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1514'. [ 677.941807][T13947] FAULT_INJECTION: forcing a failure. [ 677.941807][T13947] name failslab, interval 1, probability 0, space 0, times 0 [ 677.941901][T13947] CPU: 0 UID: 0 PID: 13947 Comm: syz.0.1519 Tainted: G L syzkaller #0 PREEMPT(full) [ 677.941936][T13947] Tainted: [L]=SOFTLOCKUP [ 677.941944][T13947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 677.941959][T13947] Call Trace: [ 677.941966][T13947] [ 677.941975][T13947] dump_stack_lvl+0x100/0x190 [ 677.942016][T13947] should_fail_ex.cold+0x5/0xa [ 677.942043][T13947] ? acpi_ex_allocate_name_string+0x8c/0x340 [ 677.942116][T13947] should_failslab+0xc2/0x120 [ 677.942149][T13947] __kmalloc_noprof+0xe0/0x850 [ 677.942192][T13947] acpi_ex_allocate_name_string+0x8c/0x340 [ 677.942223][T13947] acpi_ex_get_name_string+0x322/0xb90 [ 677.942254][T13947] ? __pfx_acpi_ex_get_name_string+0x10/0x10 [ 677.942290][T13947] acpi_ds_create_operand+0x3fd/0xc20 [ 677.942361][T13947] ? __pfx_acpi_ds_create_operand+0x10/0x10 [ 677.942398][T13947] ? acpi_ut_trace_ptr+0x1d2/0x2a0 [ 677.942440][T13947] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 677.942463][T13947] ? __pfx_acpi_ns_lookup+0x10/0x10 [ 677.942520][T13947] ? acpi_ut_track_stack_ptr+0x114/0x180 [ 677.942550][T13947] acpi_ds_evaluate_name_path+0x158/0x4a0 [ 677.942589][T13947] ? __pfx_acpi_ds_evaluate_name_path+0x10/0x10 [ 677.942629][T13947] ? acpi_ps_get_next_namepath+0x1f6/0xa10 [ 677.942667][T13947] ? acpi_ut_trace_ptr+0x151/0x2a0 [ 677.942694][T13947] acpi_ds_exec_end_op+0xb78/0x1e60 [ 677.942735][T13947] ? __pfx_acpi_ds_exec_end_op+0x10/0x10 [ 677.942773][T13947] acpi_ps_parse_loop+0x5dd/0x24a0 [ 677.942820][T13947] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 677.942857][T13947] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 677.942892][T13947] ? acpi_ut_create_thread_state+0x6d/0x170 [ 677.942959][T13947] acpi_ps_parse_aml+0x81e/0x1120 [ 677.943023][T13947] acpi_ps_execute_method+0x5c4/0xe90 [ 677.943055][T13947] acpi_ns_evaluate+0x640/0x1670 [ 677.943089][T13947] acpi_evaluate_object+0x420/0xe00 [ 677.943124][T13947] ? kasan_save_stack+0x30/0x50 [ 677.943167][T13947] ? kasan_save_track+0x14/0x30 [ 677.943209][T13947] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 677.943255][T13947] acpi_evaluate_integer+0xdf/0x220 [ 677.943314][T13947] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 677.943357][T13947] ? __pfx_status_show+0x10/0x10 [ 677.943392][T13947] status_show+0xa0/0x120 [ 677.943427][T13947] ? __pfx_status_show+0x10/0x10 [ 677.943469][T13947] dev_attr_show+0x52/0xa0 [ 677.943529][T13947] ? __pfx_dev_attr_show+0x10/0x10 [ 677.943551][T13947] sysfs_kf_seq_show+0x217/0x3a0 [ 677.943589][T13947] seq_read_iter+0x32f/0x1270 [ 677.943638][T13947] kernfs_fop_read_iter+0x46c/0x610 [ 677.943665][T13947] ? rw_verify_area+0xce/0x6d0 [ 677.943699][T13947] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 677.943728][T13947] vfs_read+0x825/0xb30 [ 677.943769][T13947] ? __pfx_vfs_read+0x10/0x10 [ 677.943829][T13947] ksys_read+0x12a/0x250 [ 677.943866][T13947] ? __pfx_ksys_read+0x10/0x10 [ 677.943913][T13947] do_syscall_64+0x106/0xf80 [ 677.943941][T13947] ? clear_bhb_loop+0x40/0x90 [ 677.943971][T13947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.943997][T13947] RIP: 0033:0x7f98ad79c799 [ 677.944017][T13947] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 677.944041][T13947] RSP: 002b:00007f98ae57d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 677.944063][T13947] RAX: ffffffffffffffda RBX: 00007f98ada16270 RCX: 00007f98ad79c799 [ 677.944080][T13947] RDX: 000000000000007a RSI: 0000200000000240 RDI: 000000000000000a [ 677.944095][T13947] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 677.944111][T13947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 677.944125][T13947] R13: 00007f98ada16308 R14: 00007f98ada16270 R15: 00007fff64ff7238 [ 677.944168][T13947] [ 677.968985][T13947] ACPI Error: Could not allocate size 7 (20251212/exnames-68) [ 677.969324][T13947] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 680.272651][T13970] Invalid ELF header magic: != ELF [ 681.524040][T13986] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1536'. [ 682.286588][T13996] random: crng reseeded on system resumption [ 682.921477][T13998] FAULT_INJECTION: forcing a failure. [ 682.921477][T13998] name failslab, interval 1, probability 0, space 0, times 0 [ 682.975446][T13998] CPU: 0 UID: 0 PID: 13998 Comm: syz.1.1531 Tainted: G L syzkaller #0 PREEMPT(full) [ 682.975486][T13998] Tainted: [L]=SOFTLOCKUP [ 682.975495][T13998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 682.975510][T13998] Call Trace: [ 682.975518][T13998] [ 682.975527][T13998] dump_stack_lvl+0x100/0x190 [ 682.975569][T13998] should_fail_ex.cold+0x5/0xa [ 682.975597][T13998] should_failslab+0xc2/0x120 [ 682.975622][T13998] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 682.975659][T13998] ? shmem_alloc_inode+0x25/0x50 [ 682.975686][T13998] ? __lock_acquire+0x4a5/0x2630 [ 682.975717][T13998] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 682.975746][T13998] shmem_alloc_inode+0x25/0x50 [ 682.975771][T13998] alloc_inode+0x68/0x250 [ 682.975803][T13998] new_inode+0x22/0x1c0 [ 682.975836][T13998] shmem_get_inode+0x212/0x1040 [ 682.975880][T13998] ? __pfx_shmem_get_inode+0x10/0x10 [ 682.975910][T13998] ? rcu_is_watching+0x12/0xc0 [ 682.975946][T13998] ? percpu_counter_add_batch+0xb9/0x230 [ 682.975996][T13998] __shmem_file_setup+0x3ac/0x490 [ 682.976029][T13998] ? __pfx___shmem_file_setup+0x10/0x10 [ 682.976067][T13998] ? vm_area_alloc+0x1f/0x160 [ 682.976102][T13998] shmem_zero_setup+0x96/0x1b0 [ 682.976142][T13998] __mmap_region+0x2198/0x29e0 [ 682.976181][T13998] ? __pfx___mmap_region+0x10/0x10 [ 682.976247][T13998] ? sched_clock+0x38/0x60 [ 682.976292][T13998] ? lockdep_hardirqs_on+0x78/0x100 [ 682.976321][T13998] ? finish_task_switch.isra.0+0x205/0xb80 [ 682.976348][T13998] ? rcu_is_watching+0x12/0xc0 [ 682.976419][T13998] ? rcu_is_watching+0x12/0xc0 [ 682.976455][T13998] ? cap_capable+0x107/0x460 [ 682.976493][T13998] mmap_region+0x180/0x3e0 [ 682.976534][T13998] do_mmap+0xc63/0x12f0 [ 682.976565][T13998] ? __pfx_do_mmap+0x10/0x10 [ 682.976590][T13998] ? __pfx_down_write_killable+0x10/0x10 [ 682.976630][T13998] vm_mmap_pgoff+0x29e/0x470 [ 682.976661][T13998] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 682.976689][T13998] ? do_futex+0x192/0x350 [ 682.976720][T13998] ? __pfx_do_futex+0x10/0x10 [ 682.976757][T13998] ksys_mmap_pgoff+0xe1/0x650 [ 682.976781][T13998] ? __x64_sys_futex+0x34f/0x4d0 [ 682.976811][T13998] ? __x64_sys_futex+0x358/0x4d0 [ 682.976842][T13998] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 682.976873][T13998] ? xfd_validate_state+0x129/0x190 [ 682.976922][T13998] __x64_sys_mmap+0x125/0x190 [ 682.976961][T13998] do_syscall_64+0x106/0xf80 [ 682.976988][T13998] ? clear_bhb_loop+0x40/0x90 [ 682.977018][T13998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 682.977042][T13998] RIP: 0033:0x7f78c299c799 [ 682.977062][T13998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 682.977086][T13998] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 682.977108][T13998] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 682.977124][T13998] RDX: 00000000000000e2 RSI: 0000000000020009 RDI: 0000000000000000 [ 682.977138][T13998] RBP: 00007f78c2a32bd9 R08: 0000000000000405 R09: 0000000000008000 [ 682.977153][T13998] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 682.977167][T13998] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 682.977198][T13998] [ 683.313844][T14003] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1532'. [ 684.608429][T13988] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1528'. [ 684.992772][T14027] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1538'. [ 686.123727][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.131500][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 688.785458][T10893] Bluetooth: hci2: unexpected event 0x1d length: 6 > 5 [ 693.690697][T10893] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 693.705570][T10893] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0' [ 693.717615][T10893] CPU: 0 UID: 0 PID: 10893 Comm: kworker/u12:2 Tainted: G L syzkaller #0 PREEMPT(full) [ 693.717653][T10893] Tainted: [L]=SOFTLOCKUP [ 693.717662][T10893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 693.717703][T10893] Workqueue: hci2 hci_rx_work [ 693.717807][T10893] Call Trace: [ 693.717817][T10893] [ 693.717827][T10893] dump_stack_lvl+0x100/0x190 [ 693.717868][T10893] sysfs_warn_dup.cold+0x1c/0x28 [ 693.717908][T10893] sysfs_create_dir_ns+0x24b/0x2b0 [ 693.717942][T10893] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 693.717973][T10893] ? find_held_lock+0x2b/0x80 [ 693.717996][T10893] ? kobject_add_internal+0x25f/0x930 [ 693.718062][T10893] ? kobject_add_internal+0x25f/0x930 [ 693.718101][T10893] ? do_raw_spin_unlock+0x145/0x1e0 [ 693.718140][T10893] kobject_add_internal+0x2c8/0x930 [ 693.718179][T10893] kobject_add+0x16a/0x1e0 [ 693.718213][T10893] ? __pfx_kobject_add+0x10/0x10 [ 693.718245][T10893] ? class_to_subsys+0x10f/0x150 [ 693.718299][T10893] ? kobject_put+0xb9/0x640 [ 693.718329][T10893] ? _raw_spin_unlock+0x28/0x50 [ 693.718361][T10893] device_add+0x294/0x1950 [ 693.718401][T10893] ? __pfx_dev_set_name+0x10/0x10 [ 693.718429][T10893] ? __pfx_device_add+0x10/0x10 [ 693.718469][T10893] ? mgmt_send_event_skb+0x2fb/0x460 [ 693.718524][T10893] hci_conn_add_sysfs+0x1a3/0x260 [ 693.718589][T10893] le_conn_complete_evt+0x11cb/0x1f40 [ 693.718672][T10893] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 693.718712][T10893] ? __pfx_bt_warn+0x10/0x10 [ 693.718758][T10893] hci_le_conn_complete_evt+0x23c/0x3a0 [ 693.718806][T10893] ? skb_pull_data+0x15f/0x1e0 [ 693.718849][T10893] hci_le_meta_evt+0x34a/0x5f0 [ 693.718875][T10893] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 693.718921][T10893] hci_event_packet+0x682/0x11c0 [ 693.718945][T10893] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 693.718973][T10893] ? __pfx_hci_event_packet+0x10/0x10 [ 693.719017][T10893] ? kcov_remote_start+0x374/0x660 [ 693.719040][T10893] ? lockdep_hardirqs_on+0x78/0x100 [ 693.719075][T10893] hci_rx_work+0x451/0xfc0 [ 693.719104][T10893] process_one_work+0x9d7/0x1920 [ 693.719151][T10893] ? __pfx_process_one_work+0x10/0x10 [ 693.719195][T10893] ? __pfx_hci_rx_work+0x10/0x10 [ 693.719221][T10893] worker_thread+0x5da/0xe40 [ 693.719266][T10893] ? kthread+0x13a/0x450 [ 693.719296][T10893] ? __pfx_worker_thread+0x10/0x10 [ 693.719329][T10893] kthread+0x370/0x450 [ 693.719359][T10893] ? __pfx_kthread+0x10/0x10 [ 693.719393][T10893] ret_from_fork+0x754/0xd80 [ 693.719430][T10893] ? __pfx_ret_from_fork+0x10/0x10 [ 693.719469][T10893] ? __switch_to+0x7b4/0x1120 [ 693.719496][T10893] ? __pfx_kthread+0x10/0x10 [ 693.719529][T10893] ret_from_fork_asm+0x1a/0x30 [ 693.719570][T10893] [ 693.720170][T10893] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 694.016749][T10893] Bluetooth: hci2: failed to register connection device [ 695.288857][T14174] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1561'. [ 695.328233][T14174] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 695.355916][T14174] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 695.392610][T14174] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 695.422586][T14174] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 696.669529][T14203] random: crng reseeded on system resumption [ 698.582033][T14193] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1566'. [ 702.108749][T14251] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29 [ 707.883468][T10893] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 711.523742][T14349] FAULT_INJECTION: forcing a failure. [ 711.523742][T14349] name failslab, interval 1, probability 0, space 0, times 0 [ 711.589429][T14349] CPU: 0 UID: 0 PID: 14349 Comm: syz.1.1595 Tainted: G L syzkaller #0 PREEMPT(full) [ 711.589469][T14349] Tainted: [L]=SOFTLOCKUP [ 711.589478][T14349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 711.589494][T14349] Call Trace: [ 711.589502][T14349] [ 711.589511][T14349] dump_stack_lvl+0x100/0x190 [ 711.589553][T14349] should_fail_ex.cold+0x5/0xa [ 711.589582][T14349] should_failslab+0xc2/0x120 [ 711.589606][T14349] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 711.589643][T14349] ? __anon_vma_prepare+0xae/0x5e0 [ 711.589681][T14349] __anon_vma_prepare+0xae/0x5e0 [ 711.589713][T14349] ? do_raw_spin_lock+0x128/0x260 [ 711.589752][T14349] __vmf_anon_prepare+0x11f/0x250 [ 711.589782][T14349] do_huge_pmd_anonymous_page+0x15c/0x1a60 [ 711.589821][T14349] ? __pmd_alloc+0x6aa/0x9c0 [ 711.589850][T14349] __handle_mm_fault+0x1e9e/0x2b60 [ 711.589887][T14349] ? mt_find+0x45e/0x8e0 [ 711.589994][T14349] ? __pfx___handle_mm_fault+0x10/0x10 [ 711.590025][T14349] ? __pfx_mt_find+0x10/0x10 [ 711.590079][T14349] handle_mm_fault+0x36d/0xa20 [ 711.590118][T14349] __get_user_pages+0xf9c/0x34d0 [ 711.590163][T14349] ? __pfx___get_user_pages+0x10/0x10 [ 711.590199][T14349] populate_vma_page_range+0x267/0x3f0 [ 711.590230][T14349] ? __pfx_populate_vma_page_range+0x10/0x10 [ 711.590259][T14349] ? __pfx_find_vma_intersection+0x10/0x10 [ 711.590285][T14349] ? do_mmap+0x93f/0x12f0 [ 711.590314][T14349] __mm_populate+0x107/0x3a0 [ 711.590344][T14349] ? __pfx___mm_populate+0x10/0x10 [ 711.590374][T14349] ? up_write+0x290/0x4f0 [ 711.590412][T14349] vm_mmap_pgoff+0x37f/0x470 [ 711.590442][T14349] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 711.590470][T14349] ? do_futex+0x192/0x350 [ 711.590502][T14349] ? __pfx_do_futex+0x10/0x10 [ 711.590538][T14349] ksys_mmap_pgoff+0xe1/0x650 [ 711.590562][T14349] ? __x64_sys_futex+0x34f/0x4d0 [ 711.590592][T14349] ? __x64_sys_futex+0x358/0x4d0 [ 711.590624][T14349] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 711.590649][T14349] ? xfd_validate_state+0x129/0x190 [ 711.590689][T14349] __x64_sys_mmap+0x125/0x190 [ 711.590729][T14349] do_syscall_64+0x106/0xf80 [ 711.590757][T14349] ? clear_bhb_loop+0x40/0x90 [ 711.590786][T14349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.590811][T14349] RIP: 0033:0x7f78c299c799 [ 711.590831][T14349] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 711.590854][T14349] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 711.590877][T14349] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 711.590893][T14349] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 711.590908][T14349] RBP: 00007f78c2a32bd9 R08: ffffffffffffffff R09: 0000000000008000 [ 711.590923][T14349] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 711.590938][T14349] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 711.590970][T14349] [ 711.897278][T14349] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 711.907397][T14349] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 713.337078][ T30] audit: type=1804 audit(1772627469.255:24): pid=14373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1599" name="/newroot/sys/kernel/debug/tracing/saved_tgids" dev="tracefs" ino=3366 res=1 errno=0 [ 714.110262][T14388] device-mapper: ioctl: Unable to rename non-existent device,  to [ 714.853041][T14394] zswap: compressor not available [ 715.459845][T14406] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub [ 718.293597][T14443] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1614'. [ 718.340419][T14443] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1614'. [ 718.691378][T14451] FAULT_INJECTION: forcing a failure. [ 718.691378][T14451] name failslab, interval 1, probability 0, space 0, times 0 [ 718.780366][T14451] CPU: 0 UID: 0 PID: 14451 Comm: syz.2.1617 Tainted: G L syzkaller #0 PREEMPT(full) [ 718.780406][T14451] Tainted: [L]=SOFTLOCKUP [ 718.780415][T14451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 718.780431][T14451] Call Trace: [ 718.780438][T14451] [ 718.780447][T14451] dump_stack_lvl+0x100/0x190 [ 718.780488][T14451] should_fail_ex.cold+0x5/0xa [ 718.780517][T14451] should_failslab+0xc2/0x120 [ 718.780542][T14451] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 718.780578][T14451] ? __proc_create+0x2cb/0x8c0 [ 718.780628][T14451] __proc_create+0x2cb/0x8c0 [ 718.780668][T14451] ? __pfx___proc_create+0x10/0x10 [ 718.780706][T14451] ? pcpu_chunk_relocate+0x134/0x1a0 [ 718.780751][T14451] proc_create_reg+0x75/0x170 [ 718.780777][T14451] proc_create_net_data+0x8e/0x1c0 [ 718.780818][T14451] ? __pfx_proc_create_net_data+0x10/0x10 [ 718.780865][T14451] ? __pfx_netlink_net_init+0x10/0x10 [ 718.780892][T14451] netlink_net_init+0x50/0x80 [ 718.780916][T14451] ops_init+0x1e2/0x5f0 [ 718.780951][T14451] setup_net+0x118/0x3a0 [ 718.780982][T14451] ? __pfx_setup_net+0x10/0x10 [ 718.781010][T14451] ? lockdep_init_map_type+0x5c/0x250 [ 718.781043][T14451] ? mutex_init_lockep+0x110/0x150 [ 718.781081][T14451] copy_net_ns+0x46f/0x7c0 [ 718.781116][T14451] create_new_namespaces+0x3ea/0xac0 [ 718.781148][T14451] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 718.781177][T14451] ksys_unshare+0x473/0xad0 [ 718.781209][T14451] ? __pfx_ksys_unshare+0x10/0x10 [ 718.781250][T14451] __x64_sys_unshare+0x31/0x40 [ 718.781280][T14451] do_syscall_64+0x106/0xf80 [ 718.781308][T14451] ? clear_bhb_loop+0x40/0x90 [ 718.781338][T14451] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.781363][T14451] RIP: 0033:0x7f8223d9c799 [ 718.781383][T14451] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 718.781406][T14451] RSP: 002b:00007f8224b90028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 718.781429][T14451] RAX: ffffffffffffffda RBX: 00007f8224015fa0 RCX: 00007f8223d9c799 [ 718.781445][T14451] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 718.781460][T14451] RBP: 00007f8223e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 718.781475][T14451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 718.781489][T14451] R13: 00007f8224016038 R14: 00007f8224015fa0 R15: 00007fff90024198 [ 718.781520][T14451] [ 719.385583][T14459] sg_write: data in/out 220/90 bytes for SCSI command 0x0-- guessing data in; [ 719.385583][T14459] program syz.1.1618 not setting count and/or reply_len properly [ 721.861268][ T30] audit: type=1800 audit(1772627477.760:25): pid=14484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1622" name="features" dev="configfs" ino=49476 res=0 errno=0 [ 727.679308][T14554] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input31 [ 727.893987][T14557] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1635'. [ 727.966513][T14557] ipvlan0: entered promiscuous mode [ 728.008388][T14557] ipvlan0: entered allmulticast mode [ 728.066933][T14557] veth0_vlan: entered allmulticast mode [ 728.738743][T14569] input: f as /devices/virtual/input/input32 [ 728.913529][T14569] zram: Removed device: zram0 [ 732.674721][T14607] random: crng reseeded on system resumption [ 732.889397][T14607] FAULT_INJECTION: forcing a failure. [ 732.889397][T14607] name failslab, interval 1, probability 0, space 0, times 0 [ 733.020995][T14607] CPU: 0 UID: 0 PID: 14607 Comm: syz.0.1646 Tainted: G L syzkaller #0 PREEMPT(full) [ 733.021036][T14607] Tainted: [L]=SOFTLOCKUP [ 733.021044][T14607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 733.021059][T14607] Call Trace: [ 733.021067][T14607] [ 733.021076][T14607] dump_stack_lvl+0x100/0x190 [ 733.021119][T14607] should_fail_ex.cold+0x5/0xa [ 733.021148][T14607] ? __register_sysctl_table+0xac/0x1650 [ 733.021193][T14607] should_failslab+0xc2/0x120 [ 733.021219][T14607] __kmalloc_noprof+0xe0/0x850 [ 733.021262][T14607] __register_sysctl_table+0xac/0x1650 [ 733.021302][T14607] ? is_module_address+0x5f/0xf0 [ 733.021337][T14607] ? __pfx___register_sysctl_table+0x10/0x10 [ 733.021377][T14607] ? is_module_address+0x69/0xf0 [ 733.021406][T14607] ? register_net_sysctl_sz+0x222/0x430 [ 733.021527][T14607] ? __asan_memcpy+0x3c/0x60 [ 733.021565][T14607] sctp_sysctl_net_register+0x15e/0x200 [ 733.021629][T14607] ? __pfx_sctp_defaults_init+0x10/0x10 [ 733.021677][T14607] sctp_defaults_init+0x6d2/0xd90 [ 733.021708][T14607] ? __pfx_sctp_defaults_init+0x10/0x10 [ 733.021737][T14607] ops_init+0x1e2/0x5f0 [ 733.021771][T14607] setup_net+0x118/0x3a0 [ 733.021802][T14607] ? __pfx_setup_net+0x10/0x10 [ 733.021830][T14607] ? lockdep_init_map_type+0x5c/0x250 [ 733.021863][T14607] ? mutex_init_lockep+0x110/0x150 [ 733.021900][T14607] copy_net_ns+0x46f/0x7c0 [ 733.021937][T14607] create_new_namespaces+0x3ea/0xac0 [ 733.021968][T14607] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 733.021997][T14607] ksys_unshare+0x473/0xad0 [ 733.022032][T14607] ? __pfx_ksys_unshare+0x10/0x10 [ 733.022073][T14607] __x64_sys_unshare+0x31/0x40 [ 733.022103][T14607] do_syscall_64+0x106/0xf80 [ 733.022131][T14607] ? clear_bhb_loop+0x40/0x90 [ 733.022160][T14607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 733.022191][T14607] RIP: 0033:0x7f98ad79c799 [ 733.022211][T14607] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 733.022235][T14607] RSP: 002b:00007f98ae5e0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 733.022258][T14607] RAX: ffffffffffffffda RBX: 00007f98ada15fa0 RCX: 00007f98ad79c799 [ 733.022275][T14607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 733.022289][T14607] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 733.022303][T14607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 733.022317][T14607] R13: 00007f98ada16038 R14: 00007f98ada15fa0 R15: 00007fff64ff7238 [ 733.022349][T14607] [ 735.957963][T14641] Process accounting resumed [ 737.062968][T14670] __vm_enough_memory: pid: 14670, comm: syz.1.1657, bytes: 4398046511104 not enough memory for the allocation [ 739.873205][T10893] Bluetooth: hci3: unexpected subevent 0x18 length: 123 > 19 [ 739.881580][T10893] Bluetooth: hci3: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00 [ 741.747232][T14740] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 744.900965][T14793] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 745.656948][T14819] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1680'. [ 745.731639][T14819] netlink: 354 bytes leftover after parsing attributes in process `syz.1.1680'. [ 747.582054][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.594096][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 750.291868][T14884] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1691'. [ 750.782855][T14897] FAULT_INJECTION: forcing a failure. [ 750.782855][T14897] name failslab, interval 1, probability 0, space 0, times 0 [ 750.959198][T14897] CPU: 0 UID: 0 PID: 14897 Comm: syz.0.1692 Tainted: G L syzkaller #0 PREEMPT(full) [ 750.959236][T14897] Tainted: [L]=SOFTLOCKUP [ 750.959244][T14897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 750.959259][T14897] Call Trace: [ 750.959266][T14897] [ 750.959275][T14897] dump_stack_lvl+0x100/0x190 [ 750.959318][T14897] should_fail_ex.cold+0x5/0xa [ 750.959346][T14897] ? ima_write_template_field_data+0x59/0x1d0 [ 750.959372][T14897] should_failslab+0xc2/0x120 [ 750.959397][T14897] __kmalloc_noprof+0xe0/0x850 [ 750.959439][T14897] ima_write_template_field_data+0x59/0x1d0 [ 750.959471][T14897] ima_eventname_init_common+0x1c6/0x2a0 [ 750.959500][T14897] ? __pfx_ima_eventname_init_common+0x10/0x10 [ 750.959533][T14897] ? __kmalloc_noprof+0x320/0x850 [ 750.959574][T14897] ima_alloc_init_template+0x399/0x6d0 [ 750.959618][T14897] ima_store_measurement+0x1e3/0x5b0 [ 750.959658][T14897] ? __pfx_ima_store_measurement+0x10/0x10 [ 750.959712][T14897] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 750.959836][T14897] process_measurement+0x19cc/0x2350 [ 750.959881][T14897] ? __pfx_process_measurement+0x10/0x10 [ 750.959915][T14897] ? trace_contention_end+0x140/0x180 [ 750.959953][T14897] ? find_held_lock+0x2b/0x80 [ 750.959974][T14897] ? trace_array_get+0xd8/0x100 [ 750.959996][T14897] ? trace_array_get+0xd8/0x100 [ 750.960041][T14897] ? bpf_lsm_locked_down+0x9/0x10 [ 750.960066][T14897] ? security_locked_down+0x70/0x1e0 [ 750.960093][T14897] ? tracing_open_generic+0x94/0xc0 [ 750.960129][T14897] ? subsystem_open+0x1bc/0x4b0 [ 750.960160][T14897] ? inode_to_bdi+0x9e/0x160 [ 750.960185][T14897] ima_file_check+0xcc/0x120 [ 750.960219][T14897] ? __pfx_ima_file_check+0x10/0x10 [ 750.960260][T14897] security_file_post_open+0xc4/0x210 [ 750.960300][T14897] path_openat+0x1418/0x31a0 [ 750.960334][T14897] ? __pfx_path_openat+0x10/0x10 [ 750.960369][T14897] do_file_open+0x20e/0x430 [ 750.960396][T14897] ? __pfx_do_file_open+0x10/0x10 [ 750.960441][T14897] ? alloc_fd+0x476/0x790 [ 750.960467][T14897] ? do_getname+0x191/0x390 [ 750.960500][T14897] do_sys_openat2+0x10d/0x1e0 [ 750.960532][T14897] ? __pfx_do_sys_openat2+0x10/0x10 [ 750.960565][T14897] ? __pfx_idempotent_init_module+0x10/0x10 [ 750.960604][T14897] __x64_sys_openat+0x12d/0x210 [ 750.960636][T14897] ? __pfx___x64_sys_openat+0x10/0x10 [ 750.960680][T14897] do_syscall_64+0x106/0xf80 [ 750.960708][T14897] ? clear_bhb_loop+0x40/0x90 [ 750.960746][T14897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 750.960771][T14897] RIP: 0033:0x7f98ad79c799 [ 750.960791][T14897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 750.960815][T14897] RSP: 002b:00007f98ae5bf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 750.960838][T14897] RAX: ffffffffffffffda RBX: 00007f98ada16090 RCX: 00007f98ad79c799 [ 750.960854][T14897] RDX: 0000000000000002 RSI: 0000200000001a80 RDI: ffffffffffffff9c [ 750.960878][T14897] RBP: 00007f98ad832bd9 R08: 0000000000000000 R09: 0000000000000000 [ 750.960893][T14897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 750.960908][T14897] R13: 00007f98ada16128 R14: 00007f98ada16090 R15: 00007fff64ff7238 [ 750.960939][T14897] [ 752.256626][T14909] netlink: 'syz.2.1695': attribute type 23 has an invalid length. [ 752.773212][T10893] Bluetooth: hci0: command 0x0c1a tx timeout [ 752.906196][T14893] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 753.132672][T14893] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 753.171700][T14893] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 753.182848][T14893] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 753.323116][T14893] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 753.353818][T14893] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 753.420876][T14893] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 753.608557][ T30] audit: type=1804 audit(1772627509.510:26): pid=14897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.1692" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=0 errno=0 [ 753.727824][T14922] FAULT_INJECTION: forcing a failure. [ 753.727824][T14922] name failslab, interval 1, probability 0, space 0, times 0 [ 753.800814][T14922] CPU: 0 UID: 0 PID: 14922 Comm: syz.1.1697 Tainted: G L syzkaller #0 PREEMPT(full) [ 753.800854][T14922] Tainted: [L]=SOFTLOCKUP [ 753.800863][T14922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 753.800877][T14922] Call Trace: [ 753.800885][T14922] [ 753.800894][T14922] dump_stack_lvl+0x100/0x190 [ 753.800936][T14922] should_fail_ex.cold+0x5/0xa [ 753.800966][T14922] should_failslab+0xc2/0x120 [ 753.800991][T14922] __kmalloc_cache_noprof+0x7a/0x6f0 [ 753.801023][T14922] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 753.801137][T14922] ? vidtv_psi_pmt_table_init+0x363/0x430 [ 753.801168][T14922] vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 753.801196][T14922] vidtv_channel_si_init+0x1289/0x18d0 [ 753.801237][T14922] vidtv_mux_init+0x526/0xbf0 [ 753.801271][T14922] vidtv_start_feed+0x33e/0x4c0 [ 753.801330][T14922] ? __pfx_vidtv_start_feed+0x10/0x10 [ 753.801369][T14922] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 753.801421][T14922] ? mark_held_locks+0x40/0x70 [ 753.801458][T14922] ? __pfx_vidtv_start_feed+0x10/0x10 [ 753.801495][T14922] dmx_ts_feed_start_filtering+0xf6/0x220 [ 753.801582][T14922] dvb_dmxdev_start_feed+0x273/0x3f0 [ 753.801622][T14922] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 753.801663][T14922] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 753.801702][T14922] dvb_demux_do_ioctl+0xe64/0x1200 [ 753.801748][T14922] dvb_usercopy+0x167/0x340 [ 753.801780][T14922] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 753.801819][T14922] ? __pfx_dvb_usercopy+0x10/0x10 [ 753.801863][T14922] ? __fget_files+0x21f/0x3d0 [ 753.801891][T14922] dvb_demux_ioctl+0x29/0x40 [ 753.801923][T14922] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 753.801957][T14922] __x64_sys_ioctl+0x18e/0x210 [ 753.801994][T14922] do_syscall_64+0x106/0xf80 [ 753.802022][T14922] ? clear_bhb_loop+0x40/0x90 [ 753.802052][T14922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 753.802078][T14922] RIP: 0033:0x7f78c299c799 [ 753.802098][T14922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 753.802122][T14922] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 753.802145][T14922] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 753.802161][T14922] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 753.802176][T14922] RBP: 00007f78c2a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 753.802190][T14922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 753.802205][T14922] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 753.802236][T14922] [ 754.126766][T14922] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 754.138733][T14922] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 754.147177][T14922] CPU: 0 UID: 0 PID: 14922 Comm: syz.1.1697 Tainted: G L syzkaller #0 PREEMPT(full) [ 754.158131][T14922] Tainted: [L]=SOFTLOCKUP [ 754.162489][T14922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 754.172565][T14922] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 754.178483][T14922] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 ad 43 dc f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 4c 4c 8b 23 49 39 ec 74 36 e8 89 43 dc f9 4d 85 e4 [ 754.198112][T14922] RSP: 0018:ffffc9000513fa10 EFLAGS: 00010247 [ 754.204196][T14922] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc90006009000 [ 754.212175][T14922] RDX: 0000000000000000 RSI: ffffffff882bcd93 RDI: 0000000000000005 [ 754.220170][T14922] RBP: ffff88804d42a820 R08: 0000000000000000 R09: 4453534204050000 [ 754.228151][T14922] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 754.236129][T14922] R13: ffff888060a8a2c0 R14: ffff8880217f2da0 R15: ffff888060a8a400 [ 754.244111][T14922] FS: 00007f78c38b86c0(0000) GS:ffff88812434e000(0000) knlGS:0000000000000000 [ 754.253078][T14922] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 754.259674][T14922] CR2: 00007f78c29e9e80 CR3: 0000000034b00000 CR4: 00000000003526f0 [ 754.267675][T14922] Call Trace: [ 754.270963][T14922] [ 754.273900][T14922] vidtv_channel_si_init+0x12fc/0x18d0 [ 754.279385][T14922] vidtv_mux_init+0x526/0xbf0 [ 754.284083][T14922] vidtv_start_feed+0x33e/0x4c0 [ 754.288960][T14922] ? __pfx_vidtv_start_feed+0x10/0x10 [ 754.294355][T14922] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 754.300976][T14922] ? mark_held_locks+0x40/0x70 [ 754.305760][T14922] ? __pfx_vidtv_start_feed+0x10/0x10 [ 754.311161][T14922] dmx_ts_feed_start_filtering+0xf6/0x220 [ 754.316935][T14922] dvb_dmxdev_start_feed+0x273/0x3f0 [ 754.322249][T14922] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 754.327738][T14922] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 754.332965][T14922] dvb_demux_do_ioctl+0xe64/0x1200 [ 754.338111][T14922] dvb_usercopy+0x167/0x340 [ 754.342636][T14922] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 754.348210][T14922] ? __pfx_dvb_usercopy+0x10/0x10 [ 754.353271][T14922] ? __fget_files+0x21f/0x3d0 [ 754.357981][T14922] dvb_demux_ioctl+0x29/0x40 [ 754.362595][T14922] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 754.367987][T14922] __x64_sys_ioctl+0x18e/0x210 [ 754.372773][T14922] do_syscall_64+0x106/0xf80 [ 754.377382][T14922] ? clear_bhb_loop+0x40/0x90 [ 754.382087][T14922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 754.387996][T14922] RIP: 0033:0x7f78c299c799 [ 754.392422][T14922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 754.412043][T14922] RSP: 002b:00007f78c38b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 754.420479][T14922] RAX: ffffffffffffffda RBX: 00007f78c2c15fa0 RCX: 00007f78c299c799 [ 754.428492][T14922] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 754.436470][T14922] RBP: 00007f78c2a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 754.444453][T14922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 754.452432][T14922] R13: 00007f78c2c16038 R14: 00007f78c2c15fa0 R15: 00007fff1f09efc8 [ 754.460469][T14922] [ 754.463494][T14922] Modules linked in: [ 754.468314][T14922] ---[ end trace 0000000000000000 ]--- [ 754.562621][T14922] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 754.570676][T14922] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 ad 43 dc f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 4c 4c 8b 23 49 39 ec 74 36 e8 89 43 dc f9 4d 85 e4 [ 754.614310][T14922] RSP: 0018:ffffc9000513fa10 EFLAGS: 00010247 [ 754.620462][T14922] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc90006009000 [ 754.630035][T14922] RDX: 0000000000000000 RSI: ffffffff882bcd93 RDI: 0000000000000005 [ 754.639568][T14922] RBP: ffff88804d42a820 R08: 0000000000000000 R09: 4453534204050000 [ 754.651112][T14922] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 754.659212][T14922] R13: ffff888060a8a2c0 R14: ffff8880217f2da0 R15: ffff888060a8a400 [ 754.667837][T14922] FS: 00007f78c38b86c0(0000) GS:ffff88812434e000(0000) knlGS:0000000000000000 [ 754.688359][T14922] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 754.712977][T14922] CR2: 0000001b30a16ff8 CR3: 0000000034b00000 CR4: 00000000003526f0 [ 754.739428][T14922] Kernel panic - not syncing: Fatal exception [ 754.745608][T14922] Kernel Offset: disabled [ 754.749945][T14922] Rebooting in 86400 seconds..