last executing test programs: 14.579121529s ago: executing program 2 (id=4221): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop5\x00', 0x52be82, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@raw=0x7, 0xa, 0x6, 0x2, "1feb2d4ae3d95c99d4f68def7aa52e3b93801360ae9d37f1e691c2049dca3efa74a9688e44082affd374e3ae"}, 0x1, 0x3505, 0xf, @raw=0x9, @integer64={0xff, 0x1, 0xfffffffffffffffc}, "8bac686a64aadb7088db228293efd5aef66458cae7b371ae717826003d51a56ae7306a161649d3485abed02a51b5a3ddf32bf29e6c81dea886511404ee6a7f83"}) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/default/stable_secret\x00', 0x40d02, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000080)=0x1) 12.789940066s ago: executing program 2 (id=4229): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x5, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x4000000008000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x1, 0x401) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) ioctl$auto(r2, 0x540a, 0x0) unshare$auto(0x40000080) semctl$auto(0x201, 0x2, 0x13, 0x1) setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x5, 0x20000084) init_module$auto(0x0, 0xffff9, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttynull\x00', 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/kcore\x00', 0xc40, 0x0) read$auto_proc_iter_file_ops_compat_inode(r3, 0x0, 0x0) setgroups$auto(0xe32, 0x0) 10.240712296s ago: executing program 2 (id=4246): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x1, 0x84) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/cifsFYI\x00', 0x40c01, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00B\xfc\x0f\as\xcea\x12\b\x1c\xc7k', 0x82) getsockopt$auto(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x2c) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x101c82, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x87e, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x80000000000001, 0xfffe0000) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0001, 0x15) setitimer$auto(0x0, &(0x7f0000000040)={{0x8, 0xe7}, {0x9, 0x52e2}}, &(0x7f00000000c0)={{0x0, 0xf}, {0x1, 0x9}}) connect$auto(0xffffffffffffffff, 0x0, 0x57) 7.804154009s ago: executing program 3 (id=4242): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0) pread64$auto(r1, 0x0, 0x800003, 0x270) msgctl$auto_IPC_RMID(0x1, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x109) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0) write$auto_seq_oss_f_ops_seq_oss(r2, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) shmget$auto(0x100000000, 0x3, 0x79e56dc9) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 7.498220793s ago: executing program 1 (id=4244): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x8030ae7c, r0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r3 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x38, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x2, 0x6, 0x4, 0xb2, 0x9, 0x0, 0xfffd, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x6, 0x4, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x5}, 0x7, 0x0) r4 = socket(0x10, 0x3, 0x6) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r2, 0x0, 0x80) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r6, r5, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000380)={0x8000000000000000, @raw=0x3, @raw=0xfffffffffffffff7, 0x5, 0x9, '\x00', {0x2, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0xd7d4, 0x5, 0x3, {0x3, 0x180d}, {0x2, 0x4}, {0x2, 0x200}, 0x7ff, 0x2, 0x9, 0x1, 0x6, 0x101, 0x9, 0x8000, 0x8, 0x2, '\x00', 0x9, 0x4, 0x8000, 0xc}}) r8 = getpgid(0x0) sendmsg$auto_ETHTOOL_MSG_TSCONFIG_SET(r4, &(0x7f0000000d80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80010021}, 0xc, &(0x7f0000000d40)={&(0x7f0000000440)={0x8f0, 0x0, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_TSCONFIG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_TSCONFIG_HEADER={0x4}, @ETHTOOL_A_TSCONFIG_HWTSTAMP_FLAGS={0x448, 0x5, 0x0, 0x1, [@nested={0xc, 0x50, 0x0, 0x1, [@typed={0x8, 0x92, 0x0, 0x0, @ipv4=@remote}]}, @generic="7d3d25543c3245760fd573338574d67252cfc1d91c7b7a459c75587b5107be398ed722b4ef92d0f764f2214d837ec732a30e2b3959bad4bab1f18ca6f7d860844cc64f95341df8fb0f184870e5058cb2fb30d198e22bfe2d", @generic="5c9179dac09ae527b6833beebab8e6f575ce3d6cbac38f69f0543611d2972bed43b161c74f128a0d5028cd83c876213d59f5f4aeacaa8e4bf1817baa31a1597d864d56aa7a242f96c47d1d5fa812f6c260d371dade313296d11d64f5c3b868a38dd6cfc9a9f1a8f5934f0487439b897286ccc8300067d53a74dbe1ab6f844514241f7cd34557b5bdc6d2840c3d9c75bd6e15555c5dabae", @typed={0x8, 0x136, 0x0, 0x0, @pid}, @nested={0xcf, 0xfa, 0x0, 0x1, [@generic="2bb8ae1495180000f3491cfc0884eef5b6a3e4b53cdac0e8d70a1e7a09905d8c26cac8e417eb0d2ff5720ea4c47a4a16b1931427d6629f44c47ec1b57c59c7b0e1cbe5e6568a0c9a6ffe53ed78162997221783280a865fb038dc4dcc71f53298aada75034d59d1d30ab68f4c969b3f121b8b761635856d8fa8f87053304cf36958d59b995be11529b8731c03e72a2b152e03c3f44741850291a5528c0e6b6b4e5b0735238bd31d64a1341fe96243c168460c88763cf457e1e5c367b5705653", @typed={0x8, 0x82, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0xe5}]}, @nested={0x123, 0x36, 0x0, 0x1, [@generic="800d49299a2702fc8c27f2e0d0e46c646bbf338ed0a59f1ea7b00d15f4797e8fd1cc6dd438985c280a9a8768393d6aa237c0787b9b2c7dfe90b29cbd3a126e1f8dcd138b7327f2b50a64ef1c204a31843ecbe542293951bd698155ed4351dde4e03ad73d068417013eb8ee9ad5e95b03fe6120a170f6dd5b3a31", @generic="c55b1a622a69f4c34a55b7e4712a0b386a51cce223ff00319b27f20d4c5c0ff861839b957e8fcde4aa27b3033efc521d96cfcfe29e6891d22597e6d9be6cb4497d525799bd93963e6f32bb61e615854b5956e6dac27278de57f16d13d5587af7b79f88823e41ee02c700ce438b9a44ce00da34998723d00795a4bf60bae16e", @generic="b21f6fd68609551b0d3258dafe235c150a7fd0f563580264616166bcb190dce9b0d458ae4c79"]}, @generic="7885bb2b478adcea8df4bad4b90c90bef8b3463cb4d5c146f4a0dd93cfea5af35a0b5e992f4550ca8561d7900ca98390b228110a7bd25e93389ce54fc3206e92cc091a8b50ee9c2cf84343b9edcd84b3d6e94e4d1b5e28265feb94ff1fe67f9742ad322581a4728520d77c82ad5541f64699473ef1c7c37a7cb2d9852173337297a5481a57340c26ac5a087fe92453dd2a313ece368ce1a7fbbcbafe5de7773aa82e8a34e689048c7008dc96d7ea63de1d2d619d6a0e08131e6a0df989eb8eff65474780f392713bf53059a3df25f625e32993a8b58b0bfb32aad3c324af28afd10cc5c4793e2eda", @generic="5d5030be2bf862c59035f3e213b6cc9e0fedd89e5b1393759f516544ae026bd6e9f6ac504e7400161c9b7aaea6cbbd7c0571e8b1ce1966fdc21eb58c01f21e051a585be4f70cd48b6be259e077cc82eefe82ec7968fc1694d03d0aa204335743965cd914e8"]}, @ETHTOOL_A_TSCONFIG_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @ETHTOOL_A_TSCONFIG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}, @ETHTOOL_A_TSCONFIG_HWTSTAMP_PROVIDER={0x24, 0x2, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x2}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x10}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x5}]}, @ETHTOOL_A_TSCONFIG_HWTSTAMP_PROVIDER={0x2c, 0x2, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x2}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x8ce736f}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x226}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x7851}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0xf366}]}, @ETHTOOL_A_TSCONFIG_TX_TYPES={0x12a, 0x3, 0x0, 0x1, [@typed={0x8, 0xe8, 0x0, 0x0, @uid=r7}, @generic="07d5718ec133d48267878ef237d026877b4bfe17fd5cc3195616d2c0b1aceac8e913590f606d265eaa9aa202da69677728014c60e5bc56159699cd890b7b94cc1b34fa1ce722766b281cbbf40e6dbe338142bef2ef59ed4c17e179a613a1d58c5d8c0c5b9ceda6e9930f", @generic="9a45e37da7960bc1f0a4121d695ff667359d421c0946517b5d3b08738e877a5f5e7abb504f2a4c67b5ed1e4e42e70f8e07c8c8fb07ee1068cee971a58a430cdc2e45e0f91e89ccc706106fded427fe44bcbe6d7750abe844bb5a5402c34c547d368c84e8229c1f7cda71a54967f09ca02e667227d38a708acf0cfa9c49a715eedd4f28cfdec42601a31fea4eeada035d563e4809135e8787fb80dc47e5b98e32b1df685201fa97c24a552360a8dd96b355494696"]}, @ETHTOOL_A_TSCONFIG_TX_TYPES={0x2cd, 0x3, 0x0, 0x1, [@generic="f2f3f351b70e25c7211f71aad744073f1c64188e02333f894d353d5db0f6726f71a9840e5bf71a4f0dc835ac25d0102c96a0b631479beed37019bac974b0e43857fbe2e3a9646641fb6759aa7e15933754f258a4e48455681912d7affd001c6b", @generic="e5eb367a092ccabc6ddd066fa014c0ca07541286ed6197887dface71b07e1bdfb68f316e4b53176bae75cb20bd185fc0245e0e8268fbcc5b06cc2bf0e3463cf7553f58", @nested={0x17c, 0x14a, 0x0, 0x1, [@generic="a6df2623298e1e62c7668fdc2f462658a265f322096217849517450deafaddf8084639beb991146ad1720639aed3832f552e3e8dada9177605144e7b4b147c1ba07d668ac3d7094beb8e4b2b4a7af39529b9fe1c7acac1e56122aa8b92e9c46eee1c098f0cabf60ea627abf5ca11be41423b09936ed0fd66f6617f52eabb4a079cc6ffefc09b896981a73897bb88d88657ce173ad18717178c8e07fa0a18ad8fcd724d7a9a", @generic="d0ddbf2ed956ccc10c5bad57b47af793051297b539fd0fbf7ab751af0448b1dfe4482e8c5c08cf38c68794c9ab5386e26a46e55329252f818b1c8ffb57aeb459555f5f2ff3ee135a69428b2afe068e4caade4959423da32df28174dd68a90b702ffcff973d005e2620622f764d75f6d350e5b4d2c43fd42d216a61fa1119cae56d07bccf50f6d70c3de93f584786591a7b4051da61ad183fedc2a68f3896edd3d0591611c79f92b3a824658927e353e4bd90d7b21ce61a21fb9be0d2a6eb5491f15cbef432a8d7", @typed={0x8, 0x48, 0x0, 0x0, @u32=0x1}, @nested={0x4, 0x29}]}, @typed={0xf, 0x150, 0x0, 0x0, @str='/dev/tty12\x00'}, @typed={0x8, 0xe0, 0x0, 0x0, @pid=r8}, @generic="f2e5cef54be5fa8cf2d7a8897882085fbd0b6ab794065e7739f5d7b0f475c42c123916d4b55a04e2661cfb924e7f3d4e0c08d9e6f25d8a62b059336fe896b3224b93f8debeaaa53dd6b68b4dc64abd5d85228e636d8aa0a72417e9779e9d13570808b239a74f900dd5f2f0a2c29532eea3f5645e8fb5b4117dc840b18dc4d52f101a351ac0513b24a38c26456b2498175902"]}]}, 0x8f0}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) r11 = socket(0xa, 0x1, 0x84) r12 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000300), r11) r13 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000340), 0x140081, 0x0) sendmsg$auto_NETDEV_CMD_BIND_RX(r9, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[@ANYBLOB="90000000", @ANYRES16=r12, @ANYBLOB="00042dbd7000fcdbdf250d0000000400028008000300", @ANYRES32=r11, @ANYBLOB="3400028008000300060000000800010009000000080001000300000008000300070000000800010000000000080001aded00000008000300", @ANYRES32=r13, @ANYBLOB="04000280040002802400028008000300ff7f000008000100400000000800010006000000080003000000000008000100", @ANYRES32=r10, @ANYBLOB], 0x90}, 0x1, 0x0, 0x0, 0x4805}, 0x8000) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000003400)={0x119c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7ff}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0xd2, 0x3, 0x0, 0x1, [@generic="b3e16a9d9374fc0ace17802bcc1089e8381eb9b14c4bd1514dad40f65fe57fb26a608b3d2a284258cf75896c42168acf8ff37bb6e992a04803c4bd0fcfcbf1c030d77069bd476dc4a26e47ecc423a74c88a49df2ace0d57b6752fc88bae3b3940aa5aab80b2b8ff177c9c79819288d2df911c21b7641868ce5b9f36091da1ba9a907466c44a63cd7ece84fe068d513cf4481182c9c97f72022b0b9f45633adbfb40b8397039b1ac02bed56dafaaa5b6868e9d8cb0b198245477bb32fa6ccde499d06fecc1f5f85baf945168795a5"]}, @ETHTOOL_A_FEATURES_WANTED={0x106e, 0x3, 0x0, 0x1, [@generic="8ebfc52338578217b03bcba2cae01336b2887249c17104ad68bf6bd0df75bea8159f940e660e0635b515d63159cfcb7587c2751b41bf2954c0a50bde4c1509a2e012501ab956e0d10c38a5abae14dc5703051a48ad84d6ca09e721b267a149fe3d90", @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="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"]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}]}, 0x119c}, 0x1, 0x0, 0x0, 0x1}, 0x4) 6.610675886s ago: executing program 1 (id=4245): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) set_mempolicy$auto(0x3, 0x0, 0x9) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0xffffffffffffffff, 0x40000008000) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) remap_file_pages$auto(0x6, 0x19, 0x2fe, 0x5, 0x1) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) tgkill$auto(0x0, 0x0, 0x11) readv$auto(0x3, 0x0, 0x7) sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800) kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4) 6.601096259s ago: executing program 2 (id=4247): bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = ioctl$auto_NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000240)="cf3b87db3cec80de0ce4e01768bfa6aecbb4a4755db6a57fdc373203ea65291f873dee699f2f2f045a82a8a7c1a62db8e1d2331b2c13b7986207d04174168e867df410d8ba32f9e12e975db1889b488eba9db3988ef0f1504c5815a82d4c357c16b7842129f470117c29364cef1424b8162bb30be604b3712a99dbeb0557acd1c4fb408285dc3bc1058e2deea69b924d24e25e8d6985f7c3c0ae450c7b78d4814c4426b712645c08f2ddd27c6d6c8e0dc958e7a6da68a9d11d0d03747140aa1e0f7b4e6762264a613d7279e73b73e22df6a4650a2d7935c70c1742640ffec3cd3ebdd4dbab87ee255516334c2030091c", 0xf0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) syz_clone(0x40000000, 0x0, 0x25, 0x0, 0x0, 0x0) kill$auto(0x0, 0x11) madvise$auto(0x0, 0xffffffffffff0005, 0x19) fanotify_mark$auto(r2, 0x4, 0x4, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) syslog$auto_SYSLOG_ACTION_CLEAR(0x9, &(0x7f0000000040)='/dev/input/event2\x00', 0x4) memfd_create$auto(0x0, 0xe) shmctl$auto_IPC_SET(0x8, 0x1, &(0x7f00000000c0)={{0x1ff, 0xee00, 0xee01, 0xe, 0x2, 0x2, 0x3}, 0x4, 0x7, 0x2, 0x6, @raw=0x7, @raw=0x7fff, 0x7, 0x0, &(0x7f0000000180)="126d289da8d3b217a0f1779dd34170dda041017970990579761b076012962b196b874a7cbd589af88c8122b51b13b49f780885337c7ce1ef8723a12cf409fc3ee743a7f0dcfd7d42d8dc03bb488f8de24b1108bd160be8268d97d496d5886c76cb951c5dfae47b43ac806ff37563471c5a69e4903b2b17e57a12a3d56b844000c608a568440d905c9f4d969f4fb37bd99e7ebb1fed3747dc254d2000724a7972ed39b0c091ddc60734183cd3470b58f37e8e4b0bc95935786c84469f94952d9c97d1e80cf1177aef402918ec4bf9f3b0", &(0x7f0000000080)="4fc0a77e5cb9b9ed1319ed152b180a0183a745647de1ebf26ecbc95dc56eda89"}) mmap$auto(0x0, 0x810008, 0xd6a, 0x8000000008011, 0x3, 0x0) pkey_free$auto(0xfffffffd) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r4, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x4008004) sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r4, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) fcntl$getown(r0, 0x9) 6.477618184s ago: executing program 0 (id=4248): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x5, 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x8001, 0x0) mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x4000000008000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x1, 0x401) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0) ioctl$auto(r2, 0x540a, 0x0) unshare$auto(0x40000080) semctl$auto(0x201, 0x2, 0x13, 0x1) setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x5, 0x20000084) init_module$auto(0x0, 0xffff9, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttynull\x00', 0x0, 0x0) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/kcore\x00', 0xc40, 0x0) read$auto_proc_iter_file_ops_compat_inode(r3, 0x0, 0x0) setgroups$auto(0xe32, 0x0) 5.131776999s ago: executing program 3 (id=4249): mmap$auto(0x0, 0x20009, 0x8, 0x40000000000eb1, 0x401, 0x8000) r0 = socket(0xa, 0x3, 0x3b) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0xfffffffffffffffd, 0x202000b, 0x3, 0x17, 0xfffffffffffffffa, 0x8002) r4 = open(&(0x7f00000001c0)='./file0\x00', 0x591a00, 0x154) read$auto(r3, 0x0, 0x7) close_range$auto(0x2, 0x8, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x1f2bc2, 0x0) r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) r8 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000080), r5) sendmsg$auto_IPVS_CMD_NEW_DAEMON(r4, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x24, r8, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}]}, 0x24}}, 0x40004) write$auto(r7, 0x0, 0x81) bpf$auto(0x0, 0x0, 0x6f4) arch_prctl$auto_ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0xfffffffffffffff7) sendmmsg$auto(r6, 0x0, 0x8, 0xe4) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0xffffffffffffffff, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) r9 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000280)={@_si_pad}, 0xfff, &(0x7f0000000300)={{0xfffffffffffffffc, 0x7}, {0x7ff, 0x401}, 0x6, 0x1, 0xe66f, 0xfff, 0xd, 0x200, 0x7, 0x1129, 0xff, 0x6, 0x3, 0x61d, 0x8, 0x1}) prctl$auto(0x0, 0x6, r9, 0x7ece, 0x80000001) socket(0x2, 0x2, 0x1) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendto$auto(0x3, 0x0, 0xffeb, 0xe, &(0x7f0000000100)=@in={0x2, 0x4e22, @multicast2}, 0x19) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01000000"], 0x14}, 0x1, 0x1000000}, 0x8094) getsockopt$auto(r0, 0x29, 0x3d, 0x0, 0x0) 4.83477312s ago: executing program 0 (id=4250): ioctl$auto(0x3, 0x40044900, 0xfffffffffffff4e0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f00000000c0)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x2) getsockopt$auto_SO_ACCEPTCONN(0xffffffffffffffff, 0xffff, 0x1e, &(0x7f0000000040)='\xc4.)^\x00', &(0x7f0000000080)=0x5) r1 = pidfd_getfd$auto(r0, r0, 0x5) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x4600, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r4, 0x4b72, r5) r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000280), r2) r7 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x243280, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r6, 0x0, 0x70bd2d, 0x25dfdbff, {}, [@L2TP_ATTR_FD={0x8, 0x17, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x2000c004) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 4.806160085s ago: executing program 3 (id=4251): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) select$auto(0x32, 0x0, 0x0, &(0x7f00000001c0)={[0x5, 0x10000, 0xffff, 0x9, 0x6, 0xfffffffffffffffd, 0x1, 0x4, 0x8, 0xfffffffffffffff9, 0x4, 0x10, 0x2, 0x0, 0x6, 0x6]}, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/oom_adj\x00', 0x980, 0x0) read$auto(r0, 0x0, 0x4) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(r0, 0xffffffffffffffff, 0x1000005) unshare$auto(0x6c000000) 4.277589007s ago: executing program 0 (id=4252): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop5\x00', 0x52be82, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) madvise$auto(0x7fffffffffffffff, 0xfffffffffffffffe, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@raw=0x7, 0xa, 0x6, 0x2, "1feb2d4ae3d95c99d4f68def7aa52e3b93801360ae9d37f1e691c2049dca3efa74a9688e44082affd374e3ae"}, 0x1, 0x3505, 0xf, @raw=0x9, @integer64={0xff, 0x1, 0xfffffffffffffffc}, "8bac686a64aadb7088db228293efd5aef66458cae7b371ae717826003d51a56ae7306a161649d3485abed02a51b5a3ddf32bf29e6c81dea886511404ee6a7f83"}) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/default/stable_secret\x00', 0x40d02, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000080)=0x1) 4.238398792s ago: executing program 1 (id=4253): openat$auto_fragmentation_threshold_ops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/fragmentation_threshold\x00', 0x400, 0x0) (async) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0xfffffffffffffffa, 0x2, 0x6d3e, 0x9, 0xbb7f, 0x6]}, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0) write$auto(r0, &(0x7f0000000000)='n\xcc', 0x2) (async) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) (async) socket(0x2, 0x1, 0x106) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r1, &(0x7f0000001680)="a7", 0xfffffc96) madvise$auto(0xfffffffffffffffd, 0x3, 0x3) mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) setitimer$auto(0x2, &(0x7f0000000040)={{0x0, 0x5}, {0x0, 0x8}}, 0x0) (async) setitimer$auto_ITIMER_PROF(0x2, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) (async) mknod$auto(&(0x7f0000000100)='./file0\x00', 0x1001, 0x3) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x101800, 0xf9) ppoll$auto(&(0x7f0000000180)={r2, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8) (async, rerun: 32) open(&(0x7f0000000800)='./file0\x00', 0x1a3342, 0x24) (async, rerun: 32) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x80e42, 0x0) (async) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) (async) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 3.904221547s ago: executing program 2 (id=4254): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop5\x00', 0x52be82, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) madvise$auto(0x7fffffffffffffff, 0xfffffffffffffffe, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@raw=0x7, 0xa, 0x6, 0x2, "1feb2d4ae3d95c99d4f68def7aa52e3b93801360ae9d37f1e691c2049dca3efa74a9688e44082affd374e3ae"}, 0x1, 0x3505, 0xf, @raw=0x9, @integer64={0xff, 0x1, 0xfffffffffffffffc}, "8bac686a64aadb7088db228293efd5aef66458cae7b371ae717826003d51a56ae7306a161649d3485abed02a51b5a3ddf32bf29e6c81dea886511404ee6a7f83"}) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/default/stable_secret\x00', 0x40d02, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000080)=0x1) 3.56002622s ago: executing program 3 (id=4255): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x8030ae7c, r0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r3 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x7, 0x38, 0x3ff, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x2, 0x6, 0x4, 0xb2, 0x9, 0x0, 0xfffd, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x200, 0x0, 0x81, 0x0, 0x7, 0x0, 0x0, 0x0, [0x1, 0x6, 0x4, 0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0xfffffffffffffffc, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x5}, 0x7, 0x0) r4 = socket(0x10, 0x3, 0x6) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r2, 0x0, 0x80) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r6, r5, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000380)={0x8000000000000000, @raw=0x3, @raw=0xfffffffffffffff7, 0x5, 0x9, '\x00', {0x2, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0xd7d4, 0x5, 0x3, {0x3, 0x180d}, {0x2, 0x4}, {0x2, 0x200}, 0x7ff, 0x2, 0x9, 0x1, 0x6, 0x101, 0x9, 0x8000, 0x8, 0x2, '\x00', 0x9, 0x4, 0x8000, 0xc}}) r8 = getpgid(0x0) sendmsg$auto_ETHTOOL_MSG_TSCONFIG_SET(r4, &(0x7f0000000d80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80010021}, 0xc, &(0x7f0000000d40)={&(0x7f0000000440)={0x8f0, 0x0, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_TSCONFIG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_TSCONFIG_HEADER={0x4}, @ETHTOOL_A_TSCONFIG_HWTSTAMP_FLAGS={0x448, 0x5, 0x0, 0x1, [@nested={0xc, 0x50, 0x0, 0x1, [@typed={0x8, 0x92, 0x0, 0x0, @ipv4=@remote}]}, @generic="7d3d25543c3245760fd573338574d67252cfc1d91c7b7a459c75587b5107be398ed722b4ef92d0f764f2214d837ec732a30e2b3959bad4bab1f18ca6f7d860844cc64f95341df8fb0f184870e5058cb2fb30d198e22bfe2d", @generic="5c9179dac09ae527b6833beebab8e6f575ce3d6cbac38f69f0543611d2972bed43b161c74f128a0d5028cd83c876213d59f5f4aeacaa8e4bf1817baa31a1597d864d56aa7a242f96c47d1d5fa812f6c260d371dade313296d11d64f5c3b868a38dd6cfc9a9f1a8f5934f0487439b897286ccc8300067d53a74dbe1ab6f844514241f7cd34557b5bdc6d2840c3d9c75bd6e15555c5dabae", @typed={0x8, 0x136, 0x0, 0x0, @pid}, @nested={0xcf, 0xfa, 0x0, 0x1, [@generic="2bb8ae1495180000f3491cfc0884eef5b6a3e4b53cdac0e8d70a1e7a09905d8c26cac8e417eb0d2ff5720ea4c47a4a16b1931427d6629f44c47ec1b57c59c7b0e1cbe5e6568a0c9a6ffe53ed78162997221783280a865fb038dc4dcc71f53298aada75034d59d1d30ab68f4c969b3f121b8b761635856d8fa8f87053304cf36958d59b995be11529b8731c03e72a2b152e03c3f44741850291a5528c0e6b6b4e5b0735238bd31d64a1341fe96243c168460c88763cf457e1e5c367b5705653", @typed={0x8, 0x82, 0x0, 0x0, @u32=0x8}, @nested={0x4, 0xe5}]}, @nested={0x123, 0x36, 0x0, 0x1, [@generic="800d49299a2702fc8c27f2e0d0e46c646bbf338ed0a59f1ea7b00d15f4797e8fd1cc6dd438985c280a9a8768393d6aa237c0787b9b2c7dfe90b29cbd3a126e1f8dcd138b7327f2b50a64ef1c204a31843ecbe542293951bd698155ed4351dde4e03ad73d068417013eb8ee9ad5e95b03fe6120a170f6dd5b3a31", @generic="c55b1a622a69f4c34a55b7e4712a0b386a51cce223ff00319b27f20d4c5c0ff861839b957e8fcde4aa27b3033efc521d96cfcfe29e6891d22597e6d9be6cb4497d525799bd93963e6f32bb61e615854b5956e6dac27278de57f16d13d5587af7b79f88823e41ee02c700ce438b9a44ce00da34998723d00795a4bf60bae16e", @generic="b21f6fd68609551b0d3258dafe235c150a7fd0f563580264616166bcb190dce9b0d458ae4c79"]}, @generic="7885bb2b478adcea8df4bad4b90c90bef8b3463cb4d5c146f4a0dd93cfea5af35a0b5e992f4550ca8561d7900ca98390b228110a7bd25e93389ce54fc3206e92cc091a8b50ee9c2cf84343b9edcd84b3d6e94e4d1b5e28265feb94ff1fe67f9742ad322581a4728520d77c82ad5541f64699473ef1c7c37a7cb2d9852173337297a5481a57340c26ac5a087fe92453dd2a313ece368ce1a7fbbcbafe5de7773aa82e8a34e689048c7008dc96d7ea63de1d2d619d6a0e08131e6a0df989eb8eff65474780f392713bf53059a3df25f625e32993a8b58b0bfb32aad3c324af28afd10cc5c4793e2eda", @generic="5d5030be2bf862c59035f3e213b6cc9e0fedd89e5b1393759f516544ae026bd6e9f6ac504e7400161c9b7aaea6cbbd7c0571e8b1ce1966fdc21eb58c01f21e051a585be4f70cd48b6be259e077cc82eefe82ec7968fc1694d03d0aa204335743965cd914e8"]}, @ETHTOOL_A_TSCONFIG_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @ETHTOOL_A_TSCONFIG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}, @ETHTOOL_A_TSCONFIG_HWTSTAMP_PROVIDER={0x24, 0x2, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x2}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x10}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x5}]}, @ETHTOOL_A_TSCONFIG_HWTSTAMP_PROVIDER={0x2c, 0x2, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x2}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x8ce736f}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x226}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x7851}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0xf366}]}, @ETHTOOL_A_TSCONFIG_TX_TYPES={0x12a, 0x3, 0x0, 0x1, [@typed={0x8, 0xe8, 0x0, 0x0, @uid=r7}, @generic="07d5718ec133d48267878ef237d026877b4bfe17fd5cc3195616d2c0b1aceac8e913590f606d265eaa9aa202da69677728014c60e5bc56159699cd890b7b94cc1b34fa1ce722766b281cbbf40e6dbe338142bef2ef59ed4c17e179a613a1d58c5d8c0c5b9ceda6e9930f", @generic="9a45e37da7960bc1f0a4121d695ff667359d421c0946517b5d3b08738e877a5f5e7abb504f2a4c67b5ed1e4e42e70f8e07c8c8fb07ee1068cee971a58a430cdc2e45e0f91e89ccc706106fded427fe44bcbe6d7750abe844bb5a5402c34c547d368c84e8229c1f7cda71a54967f09ca02e667227d38a708acf0cfa9c49a715eedd4f28cfdec42601a31fea4eeada035d563e4809135e8787fb80dc47e5b98e32b1df685201fa97c24a552360a8dd96b355494696"]}, @ETHTOOL_A_TSCONFIG_TX_TYPES={0x2cd, 0x3, 0x0, 0x1, [@generic="f2f3f351b70e25c7211f71aad744073f1c64188e02333f894d353d5db0f6726f71a9840e5bf71a4f0dc835ac25d0102c96a0b631479beed37019bac974b0e43857fbe2e3a9646641fb6759aa7e15933754f258a4e48455681912d7affd001c6b", @generic="e5eb367a092ccabc6ddd066fa014c0ca07541286ed6197887dface71b07e1bdfb68f316e4b53176bae75cb20bd185fc0245e0e8268fbcc5b06cc2bf0e3463cf7553f58", @nested={0x17c, 0x14a, 0x0, 0x1, [@generic="a6df2623298e1e62c7668fdc2f462658a265f322096217849517450deafaddf8084639beb991146ad1720639aed3832f552e3e8dada9177605144e7b4b147c1ba07d668ac3d7094beb8e4b2b4a7af39529b9fe1c7acac1e56122aa8b92e9c46eee1c098f0cabf60ea627abf5ca11be41423b09936ed0fd66f6617f52eabb4a079cc6ffefc09b896981a73897bb88d88657ce173ad18717178c8e07fa0a18ad8fcd724d7a9a", @generic="d0ddbf2ed956ccc10c5bad57b47af793051297b539fd0fbf7ab751af0448b1dfe4482e8c5c08cf38c68794c9ab5386e26a46e55329252f818b1c8ffb57aeb459555f5f2ff3ee135a69428b2afe068e4caade4959423da32df28174dd68a90b702ffcff973d005e2620622f764d75f6d350e5b4d2c43fd42d216a61fa1119cae56d07bccf50f6d70c3de93f584786591a7b4051da61ad183fedc2a68f3896edd3d0591611c79f92b3a824658927e353e4bd90d7b21ce61a21fb9be0d2a6eb5491f15cbef432a8d7", @typed={0x8, 0x48, 0x0, 0x0, @u32=0x1}, @nested={0x4, 0x29}]}, @typed={0xf, 0x150, 0x0, 0x0, @str='/dev/tty12\x00'}, @typed={0x8, 0xe0, 0x0, 0x0, @pid=r8}, @generic="f2e5cef54be5fa8cf2d7a8897882085fbd0b6ab794065e7739f5d7b0f475c42c123916d4b55a04e2661cfb924e7f3d4e0c08d9e6f25d8a62b059336fe896b3224b93f8debeaaa53dd6b68b4dc64abd5d85228e636d8aa0a72417e9779e9d13570808b239a74f900dd5f2f0a2c29532eea3f5645e8fb5b4117dc840b18dc4d52f101a351ac0513b24a38c26456b2498175902"]}]}, 0x8f0}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) r11 = socket(0xa, 0x1, 0x84) r12 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000300), r11) r13 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000340), 0x140081, 0x0) sendmsg$auto_NETDEV_CMD_BIND_RX(r9, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[@ANYBLOB="90000000", @ANYRES16=r12, @ANYBLOB="00042dbd7000fcdbdf250d0000000400028008000300", @ANYRES32=r11, @ANYBLOB="3400028008000300060000000800010009000000080001000300000008000300070000000800010000000000080001aded00000008000300", @ANYRES32=r13, @ANYBLOB="04000280040002802400028008000300ff7f000008000100400000000800010006000000080003000000000008000100", @ANYRES32=r10, @ANYBLOB], 0x90}, 0x1, 0x0, 0x0, 0x4805}, 0x8000) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000003400)={0x119c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7ff}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0xd2, 0x3, 0x0, 0x1, [@generic="b3e16a9d9374fc0ace17802bcc1089e8381eb9b14c4bd1514dad40f65fe57fb26a608b3d2a284258cf75896c42168acf8ff37bb6e992a04803c4bd0fcfcbf1c030d77069bd476dc4a26e47ecc423a74c88a49df2ace0d57b6752fc88bae3b3940aa5aab80b2b8ff177c9c79819288d2df911c21b7641868ce5b9f36091da1ba9a907466c44a63cd7ece84fe068d513cf4481182c9c97f72022b0b9f45633adbfb40b8397039b1ac02bed56dafaaa5b6868e9d8cb0b198245477bb32fa6ccde499d06fecc1f5f85baf945168795a5"]}, @ETHTOOL_A_FEATURES_WANTED={0x106e, 0x3, 0x0, 0x1, [@generic="8ebfc52338578217b03bcba2cae01336b2887249c17104ad68bf6bd0df75bea8159f940e660e0635b515d63159cfcb7587c2751b41bf2954c0a50bde4c1509a2e012501ab956e0d10c38a5abae14dc5703051a48ad84d6ca09e721b267a149fe3d90", @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="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"]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}]}, 0x119c}, 0x1, 0x0, 0x0, 0x1}, 0x4) 2.54075182s ago: executing program 0 (id=4256): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty48\x00', 0x40000, 0x0) r1 = getpid() sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x24040004}, 0x800) process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) ioctl$auto_TIOCSWINSZ2(r0, 0x5414, 0x0) 2.410851535s ago: executing program 0 (id=4257): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000) statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0) pread64$auto(r1, 0x0, 0x800003, 0x270) msgctl$auto_IPC_RMID(0x1, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x109) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x80011, 0x0) write$auto_seq_oss_f_ops_seq_oss(r2, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) shmget$auto(0x100000000, 0x3, 0x79e56dc9) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 2.337288313s ago: executing program 3 (id=4258): mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000000), 0x2}, 0x2) r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statx$auto(r2, 0x0, 0x401006, 0x4015, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0xff) readv$auto(0x3, &(0x7f0000000600)={0x0, 0xfdf3}, 0x1da) write$auto(r0, 0x0, 0x9) write$auto(0x3, 0x0, 0x7fffffff) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) 2.334897799s ago: executing program 1 (id=4259): mmap$auto(0x0, 0x20009, 0x8, 0x40000000000eb1, 0x401, 0x8000) r0 = socket(0xa, 0x3, 0x3b) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0xfffffffffffffffd, 0x202000b, 0x3, 0x17, 0xfffffffffffffffa, 0x8002) r4 = open(&(0x7f00000001c0)='./file0\x00', 0x591a00, 0x154) read$auto(r3, 0x0, 0x7) close_range$auto(0x2, 0x8, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x1f2bc2, 0x0) r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r8 = syz_genetlink_get_family_id$auto_ipvs(0x0, r5) sendmsg$auto_IPVS_CMD_NEW_DAEMON(r4, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x24, r8, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}]}, 0x24}}, 0x40004) write$auto(r7, 0x0, 0x81) bpf$auto(0x0, 0x0, 0x6f4) arch_prctl$auto_ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0xfffffffffffffff7) sendmmsg$auto(r6, 0x0, 0x8, 0xe4) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0xffffffffffffffff, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) r9 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000280)={@_si_pad}, 0xfff, &(0x7f0000000300)={{0xfffffffffffffffc, 0x7}, {0x7ff, 0x401}, 0x6, 0x1, 0xe66f, 0xfff, 0xd, 0x200, 0x7, 0x1129, 0xff, 0x6, 0x3, 0x61d, 0x8, 0x1}) prctl$auto(0x0, 0x6, r9, 0x7ece, 0x80000001) socket(0x2, 0x2, 0x1) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendto$auto(0x3, 0x0, 0xffeb, 0xe, &(0x7f0000000100)=@in={0x2, 0x4e22, @multicast2}, 0x19) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01000000"], 0x14}, 0x1, 0x1000000}, 0x8094) getsockopt$auto(r0, 0x29, 0x3d, 0x0, 0x0) 1.061211278s ago: executing program 2 (id=4260): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop5\x00', 0x52be82, 0x0) unshare$auto(0x40000080) madvise$auto(0x7fffffffffffffff, 0xfffffffffffffffe, 0x0) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@raw=0x7, 0xa, 0x6, 0x2, "1feb2d4ae3d95c99d4f68def7aa52e3b93801360ae9d37f1e691c2049dca3efa74a9688e44082affd374e3ae"}, 0x1, 0x3505, 0xf, @raw=0x9, @integer64={0xff, 0x1, 0xfffffffffffffffc}, "8bac686a64aadb7088db228293efd5aef66458cae7b371ae717826003d51a56ae7306a161649d3485abed02a51b5a3ddf32bf29e6c81dea886511404ee6a7f83"}) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/default/stable_secret\x00', 0x40d02, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000080)=0x1) 858.968854ms ago: executing program 3 (id=4261): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop5\x00', 0x52be82, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{@raw=0x7, 0xa, 0x6, 0x2, "1feb2d4ae3d95c99d4f68def7aa52e3b93801360ae9d37f1e691c2049dca3efa74a9688e44082affd374e3ae"}, 0x1, 0x3505, 0xf, @raw=0x9, @integer64={0xff, 0x1, 0xfffffffffffffffc}, "8bac686a64aadb7088db228293efd5aef66458cae7b371ae717826003d51a56ae7306a161649d3485abed02a51b5a3ddf32bf29e6c81dea886511404ee6a7f83"}) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x2000, 0xffffffffffff0001, 0x15) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/default/stable_secret\x00', 0x40d02, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r1, 0x0, 0x0) ioctl$auto_RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000080)=0x1) 817.820232ms ago: executing program 1 (id=4262): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/cifs/parameters/require_gcm_256\x00', 0x182b02, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)='Q', 0x1) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) read$auto(r2, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/004/001\x00', 0x100, 0x0) 27.046254ms ago: executing program 0 (id=4263): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/bus/mdio_bus/drivers/Microchip LAN937x TX/bind\x00', 0x4a000, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x26, 0x5, 0x8c68) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x101e41, 0x0) ioperm$auto(0x4, 0x100000001, 0x4000005) futex_waitv$auto(&(0x7f0000000040)={0x9, 0xffffffffffffffff, 0xc}, 0x7ff, 0x8, &(0x7f00000000c0)={0x1000000004, 0x10}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/tty56\x00', 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x8, 0x800000d, 0xfffffffffffffffa, 0x19, 0xffffffffffffffff, 0x100000000000008) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x2080, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = ioctl$auto_TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f0000000140)={0x7, 0x3e, 0x80, @raw=0x9}}) ioctl$auto_virtual_ncidev_fops_virtual_ncidev(r4, 0x3, &(0x7f0000000100)="46a03e98c00d5dd3b487d34ba198d5e2a0677b640b66714f607cbec6f40564840c4f26027c") r5 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r5, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2b, 0x0) r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x50ba82, 0x0) read$auto(r6, 0x0, 0xb4d3) unshare$auto(0x40000080) setsockopt$auto(r1, 0xd0, 0x800000e4, 0x0, 0x569) close_range$auto(0x2, 0xa, 0x0) 0s ago: executing program 1 (id=4264): r0 = socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001480)='/proc/sys/net/ipv6/conf/geneve0/disable_ipv6\x00', 0x40001, 0x0) pwritev$auto(r1, &(0x7f0000000040)={&(0x7f0000000000)="172308e4d9cd9477d81da6e8bd", 0x1}, 0x6, 0x3, 0x5) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_LEAVE_OCB(r0, 0x0, 0x880c5) madvise$auto(0x0, 0xffffffffffff0005, 0x17) setreuid$auto(0x3, 0x7) syz_clone3(&(0x7f0000000300)={0x10120000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) set_mempolicy_home_node$auto(0x0, 0x200fffd, 0x5, 0x0) io_setup$auto(0x1, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r2, 0x36, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x7ff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x4) r3 = socket(0x2c, 0x3, 0x0) getsockopt$auto(r3, 0x11b, 0x8, 0x0, 0x0) read$auto_proc_sessionid_operations_base(0xffffffffffffffff, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_seg6(0xfffffffffffffffd, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/shmem_enabled\x00', 0x1a1842, 0x0) r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) ioctl$auto_SG_SET_RESERVED_SIZE2(r4, 0x2275, &(0x7f0000000040)="d93ca7") mmap$auto(0x0, 0x9, 0xff7, 0x8000000008011, 0x4, 0x0) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/raw\x00', 0x0, 0x0) read$auto(r5, 0x0, 0x5) madvise$auto(0x0, 0xffffffffffff0005, 0x19) kernel console output (not intermixed with test programs): 4][T23071] ? policy_nodemask+0xed/0x4f0 [ 1194.301679][T23071] alloc_pages_mpol+0x1fb/0x550 [ 1194.301714][T23071] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1194.301744][T23071] ? __split_huge_pmd+0x203/0x350 [ 1194.301782][T23071] ? __split_huge_pmd+0x203/0x350 [ 1194.301835][T23071] alloc_pages_noprof+0x131/0x390 [ 1194.301871][T23071] pte_alloc_one+0x1e/0x3e0 [ 1194.301908][T23071] __pte_alloc+0x6d/0x3f0 [ 1194.301938][T23071] ? __pfx___pte_alloc+0x10/0x10 [ 1194.301970][T23071] ? _raw_spin_unlock+0x28/0x50 [ 1194.302001][T23071] ? __pmd_alloc+0x6aa/0x9c0 [ 1194.302040][T23071] move_page_tables+0x257e/0x4500 [ 1194.302089][T23071] ? __pfx_copy_vma+0x10/0x10 [ 1194.302148][T23071] ? __pfx_css_rstat_updated+0x10/0x10 [ 1194.302200][T23071] ? __pfx_move_page_tables+0x10/0x10 [ 1194.302278][T23071] ? finish_task_switch.isra.0+0x200/0xb80 [ 1194.302319][T23071] copy_vma_and_data+0x25c/0x7c0 [ 1194.302370][T23071] ? __pfx_copy_vma_and_data+0x10/0x10 [ 1194.302432][T23071] ? __vma_start_write+0x17f/0x280 [ 1194.302472][T23071] ? __pfx___vma_start_write+0x10/0x10 [ 1194.302522][T23071] move_vma+0x51b/0x1890 [ 1194.302575][T23071] ? __pfx_move_vma+0x10/0x10 [ 1194.302622][T23071] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 1194.302657][T23071] ? cap_mmap_addr+0x4b/0x120 [ 1194.302698][T23071] ? bpf_lsm_mmap_addr+0x9/0x30 [ 1194.302746][T23071] ? security_mmap_addr+0x71/0x1e0 [ 1194.302778][T23071] ? __get_unmapped_area+0x255/0x3e0 [ 1194.302816][T23071] ? vrm_set_new_addr+0x204/0x290 [ 1194.302864][T23071] mremap_to+0x1b7/0x450 [ 1194.302911][T23071] do_mremap+0xb76/0x2130 [ 1194.302970][T23071] ? __pfx_do_mremap+0x10/0x10 [ 1194.303023][T23071] ? ksys_write+0x190/0x250 [ 1194.303083][T23071] __do_sys_mremap+0x126/0x170 [ 1194.303129][T23071] ? __pfx___do_sys_mremap+0x10/0x10 [ 1194.303185][T23071] ? __x64_sys_futex+0x34f/0x4d0 [ 1194.303253][T23071] do_syscall_64+0x106/0xf80 [ 1194.303299][T23071] ? clear_bhb_loop+0x40/0x90 [ 1194.303341][T23071] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1194.303375][T23071] RIP: 0033:0x7f8c85d9c799 [ 1194.303405][T23071] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1194.303439][T23071] RSP: 002b:00007f8c86d3c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1194.303470][T23071] RAX: ffffffffffffffda RBX: 00007f8c86015fa0 RCX: 00007f8c85d9c799 [ 1194.303492][T23071] RDX: 0000000000000013 RSI: 0000000000000004 RDI: 0000200000000000 [ 1194.303512][T23071] RBP: 00007f8c85e32bd9 R08: 0000000100000000 R09: 0000000000000000 [ 1194.303533][T23071] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 1194.303552][T23071] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1194.303593][T23071] [ 1194.849596][T23076] kafs: addr_prefs: Too many elements in string [ 1195.582450][T23064] FAULT_INJECTION: forcing a failure. [ 1195.582450][T23064] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1195.595501][T23064] CPU: 1 UID: 0 PID: 23064 Comm: syz.0.4022 Tainted: G L syzkaller #0 PREEMPT(full) [ 1195.595545][T23064] Tainted: [L]=SOFTLOCKUP [ 1195.595555][T23064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1195.595569][T23064] Call Trace: [ 1195.595578][T23064] [ 1195.595587][T23064] dump_stack_lvl+0x100/0x190 [ 1195.595638][T23064] should_fail_ex.cold+0x5/0xa [ 1195.595665][T23064] get_futex_key+0x1d2/0x1620 [ 1195.595698][T23064] ? __pfx_get_futex_key+0x10/0x10 [ 1195.595726][T23064] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 1195.595758][T23064] ? lockdep_hardirqs_on+0x78/0x100 [ 1195.595785][T23064] ? iput+0x3a/0x40 [ 1195.595810][T23064] ? hugetlb_file_setup+0x2c8/0x5b0 [ 1195.595839][T23064] futex_wake+0xea/0x530 [ 1195.595905][T23064] ? __pfx_futex_wake+0x10/0x10 [ 1195.595959][T23064] ? up_write+0x290/0x4f0 [ 1195.596011][T23064] do_futex+0x32b/0x350 [ 1195.596054][T23064] ? __pfx_do_futex+0x10/0x10 [ 1195.596105][T23064] __x64_sys_futex+0x34f/0x4d0 [ 1195.596161][T23064] ? __pfx___x64_sys_futex+0x10/0x10 [ 1195.596207][T23064] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1195.596254][T23064] do_syscall_64+0x106/0xf80 [ 1195.596289][T23064] ? clear_bhb_loop+0x40/0x90 [ 1195.596330][T23064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1195.596364][T23064] RIP: 0033:0x7fe64fd9c799 [ 1195.596390][T23064] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1195.596425][T23064] RSP: 002b:00007fe650ca30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1195.596458][T23064] RAX: ffffffffffffffda RBX: 00007fe650016098 RCX: 00007fe64fd9c799 [ 1195.596480][T23064] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe65001609c [ 1195.596501][T23064] RBP: 00007fe650016090 R08: 0000000000000000 R09: 0000000000000000 [ 1195.596522][T23064] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1195.596542][T23064] R13: 00007fe650016128 R14: 00007ffcc802a2b0 R15: 00007ffcc802a398 [ 1195.596584][T23064] [ 1195.820555][T23087] process 'syz.3.4021' launched './file0' with NULL argv: empty string added [ 1195.872877][T23068] FAULT_INJECTION: forcing a failure. [ 1195.872877][T23068] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.885662][T23068] CPU: 1 UID: 0 PID: 23068 Comm: syz.1.4023 Tainted: G L syzkaller #0 PREEMPT(full) [ 1195.885699][T23068] Tainted: [L]=SOFTLOCKUP [ 1195.885708][T23068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1195.885724][T23068] Call Trace: [ 1195.885734][T23068] [ 1195.885743][T23068] dump_stack_lvl+0x100/0x190 [ 1195.885783][T23068] should_fail_ex.cold+0x5/0xa [ 1195.885811][T23068] should_failslab+0xc2/0x120 [ 1195.885970][T23068] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1195.886011][T23068] ? security_inode_alloc+0x3b/0x2c0 [ 1195.886045][T23068] ? lockdep_init_map_type+0x5c/0x250 [ 1195.886081][T23068] security_inode_alloc+0x3b/0x2c0 [ 1195.886116][T23068] inode_init_always_gfp+0xced/0x1040 [ 1195.886187][T23068] alloc_inode+0x8e/0x250 [ 1195.886217][T23068] new_inode+0x22/0x1c0 [ 1195.886249][T23068] hugetlbfs_get_inode+0x313/0x750 [ 1195.886293][T23068] hugetlb_file_setup+0x3cc/0x5b0 [ 1195.886319][T23068] newseg+0xabb/0xed0 [ 1195.886346][T23068] ? __pfx_newseg+0x10/0x10 [ 1195.886367][T23068] ? down_write+0x146/0x1f0 [ 1195.886400][T23068] ? ksys_write+0x190/0x250 [ 1195.886435][T23068] ? ksys_write+0x190/0x250 [ 1195.886480][T23068] ipcget+0xee/0xf50 [ 1195.886503][T23068] ? do_futex+0x192/0x350 [ 1195.886535][T23068] ? __pfx_do_futex+0x10/0x10 [ 1195.886569][T23068] ? __pfx_ipcget+0x10/0x10 [ 1195.886594][T23068] ? __x64_sys_futex+0x34f/0x4d0 [ 1195.886641][T23068] ? __x64_sys_futex+0x358/0x4d0 [ 1195.886678][T23068] __x64_sys_shmget+0x13b/0x1b0 [ 1195.886703][T23068] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1195.886737][T23068] do_syscall_64+0x106/0xf80 [ 1195.886763][T23068] ? clear_bhb_loop+0x40/0x90 [ 1195.886793][T23068] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1195.886818][T23068] RIP: 0033:0x7fa22439c799 [ 1195.886838][T23068] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1195.886862][T23068] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1195.886885][T23068] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1195.886902][T23068] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1195.886918][T23068] RBP: 00007fa224432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1195.886934][T23068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1195.886949][T23068] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1195.886981][T23068] [ 1196.286397][T23091] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4028: iget: checksum invalid [ 1196.298821][T23091] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1196.310024][T23091] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4028: iget: checksum invalid [ 1196.321089][T23091] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1196.331522][T23091] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4028: iget: checksum invalid [ 1196.343051][T23091] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1196.353626][T23091] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.4028: iget: checksum invalid [ 1196.364740][T23091] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1196.374212][T23091] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1196.389876][T23091] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1197.227155][T23105] FAULT_INJECTION: forcing a failure. [ 1197.227155][T23105] name failslab, interval 1, probability 0, space 0, times 0 [ 1197.258903][T23105] CPU: 0 UID: 0 PID: 23105 Comm: syz.1.4032 Tainted: G L syzkaller #0 PREEMPT(full) [ 1197.258958][T23105] Tainted: [L]=SOFTLOCKUP [ 1197.258970][T23105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1197.258987][T23105] Call Trace: [ 1197.258997][T23105] [ 1197.259008][T23105] dump_stack_lvl+0x100/0x190 [ 1197.259057][T23105] should_fail_ex.cold+0x5/0xa [ 1197.259096][T23105] should_failslab+0xc2/0x120 [ 1197.259126][T23105] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 1197.259171][T23105] ? __alloc_skb+0x140/0x710 [ 1197.259209][T23105] __alloc_skb+0x140/0x710 [ 1197.259237][T23105] ? __alloc_skb+0x5b7/0x710 [ 1197.259273][T23105] ? __pfx___alloc_skb+0x10/0x10 [ 1197.259312][T23105] ? __lock_acquire+0x4a5/0x2630 [ 1197.259374][T23105] sctp_packet_transmit+0x1d3/0x3060 [ 1197.259438][T23105] ? sctp_outq_flush+0xb11/0x3350 [ 1197.259481][T23105] ? sctp_outq_flush+0xb11/0x3350 [ 1197.259531][T23105] sctp_outq_flush+0xb2b/0x3350 [ 1197.259579][T23105] ? _kstrtoull+0x13c/0x1f0 [ 1197.259621][T23105] ? __pfx_sctp_outq_flush+0x10/0x10 [ 1197.259672][T23105] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 1197.259704][T23105] ? sctp_outq_is_empty+0xb8/0xe0 [ 1197.259750][T23105] ? sctp_sf_do_9_2_prm_shutdown+0xe7/0x150 [ 1197.259804][T23105] sctp_do_sm+0x1d89/0x5be0 [ 1197.259862][T23105] ? find_held_lock+0x2b/0x80 [ 1197.259891][T23105] ? __pfx_sctp_do_sm+0x10/0x10 [ 1197.259934][T23105] ? get_pid_task+0xfc/0x250 [ 1197.260022][T23105] ? do_raw_spin_lock+0x128/0x260 [ 1197.260076][T23105] sctp_primitive_SHUTDOWN+0x9f/0xd0 [ 1197.260127][T23105] sctp_shutdown+0x137/0x180 [ 1197.260160][T23105] ? __pfx_sctp_shutdown+0x10/0x10 [ 1197.260195][T23105] inet_shutdown+0x1a5/0x410 [ 1197.260253][T23105] __sys_shutdown+0x116/0x1b0 [ 1197.260292][T23105] __x64_sys_shutdown+0x53/0x80 [ 1197.260327][T23105] do_syscall_64+0x106/0xf80 [ 1197.260362][T23105] ? clear_bhb_loop+0x40/0x90 [ 1197.260402][T23105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1197.260434][T23105] RIP: 0033:0x7fa22439c799 [ 1197.260460][T23105] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1197.260491][T23105] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000030 [ 1197.260522][T23105] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1197.260543][T23105] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000200000003 [ 1197.260563][T23105] RBP: 00007fa225284090 R08: 0000000000000000 R09: 0000000000000000 [ 1197.260582][T23105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1197.260601][T23105] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1197.260643][T23105] [ 1197.752024][T23109] FAULT_INJECTION: forcing a failure. [ 1197.752024][T23109] name failslab, interval 1, probability 0, space 0, times 0 [ 1197.800139][T23114] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4035'. [ 1197.809559][T23114] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4035: iget: checksum invalid [ 1197.858769][T23114] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1197.870381][T23109] CPU: 1 UID: 0 PID: 23109 Comm: syz.2.4033 Tainted: G L syzkaller #0 PREEMPT(full) [ 1197.870416][T23109] Tainted: [L]=SOFTLOCKUP [ 1197.870424][T23109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1197.870437][T23109] Call Trace: [ 1197.870445][T23109] [ 1197.870453][T23109] dump_stack_lvl+0x100/0x190 [ 1197.870510][T23109] should_fail_ex.cold+0x5/0xa [ 1197.870537][T23109] ? ima_alloc_init_template+0xb6/0x6d0 [ 1197.870571][T23109] should_failslab+0xc2/0x120 [ 1197.870594][T23109] __kmalloc_noprof+0xe0/0x850 [ 1197.870627][T23109] ? find_held_lock+0x2b/0x80 [ 1197.870648][T23109] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1197.870685][T23109] ima_alloc_init_template+0xb6/0x6d0 [ 1197.870721][T23109] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1197.870755][T23109] ima_store_measurement+0x1e3/0x5b0 [ 1197.870792][T23109] ? __pfx_ima_store_measurement+0x10/0x10 [ 1197.870838][T23109] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1197.870872][T23109] process_measurement+0x19cc/0x2350 [ 1197.870910][T23109] ? stack_trace_save+0x8e/0xc0 [ 1197.870933][T23109] ? __pfx_process_measurement+0x10/0x10 [ 1197.870971][T23109] ? __lock_acquire+0x4a5/0x2630 [ 1197.871001][T23109] ? __kasan_slab_alloc+0x89/0x90 [ 1197.871037][T23109] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1197.871071][T23109] ? init_file+0x95/0x480 [ 1197.871095][T23109] ? alloc_empty_file+0x73/0x1c0 [ 1197.871120][T23109] ? alloc_file_pseudo+0x13a/0x230 [ 1197.871147][T23109] ? ksys_mmap_pgoff+0x232/0x650 [ 1197.871168][T23109] ? __x64_sys_mmap+0x125/0x190 [ 1197.871201][T23109] ? do_syscall_64+0x106/0xf80 [ 1197.871253][T23109] ? __pfx_aa_file_perm+0x10/0x10 [ 1197.871287][T23109] ima_file_mmap+0x1c4/0x1f0 [ 1197.871318][T23109] ? __pfx_ima_file_mmap+0x10/0x10 [ 1197.871356][T23109] security_mmap_file+0x278/0x9b0 [ 1197.871397][T23109] vm_mmap_pgoff+0xec/0x470 [ 1197.871425][T23109] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1197.871447][T23109] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1197.871479][T23109] ? hugetlbfs_get_inode+0x36e/0x750 [ 1197.871529][T23109] ksys_mmap_pgoff+0x273/0x650 [ 1197.871554][T23109] ? __x64_sys_futex+0x358/0x4d0 [ 1197.871586][T23109] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1197.871609][T23109] ? xfd_validate_state+0x129/0x190 [ 1197.871651][T23109] __x64_sys_mmap+0x125/0x190 [ 1197.871689][T23109] do_syscall_64+0x106/0xf80 [ 1197.871714][T23109] ? clear_bhb_loop+0x40/0x90 [ 1197.871743][T23109] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1197.871777][T23109] RIP: 0033:0x7f8c85d9c799 [ 1197.871798][T23109] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1197.871823][T23109] RSP: 002b:00007f8c86d3c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1197.871845][T23109] RAX: ffffffffffffffda RBX: 00007f8c86015fa0 RCX: 00007f8c85d9c799 [ 1197.871861][T23109] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1197.871875][T23109] RBP: 00007f8c85e32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1197.871891][T23109] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1197.871906][T23109] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1197.871936][T23109] [ 1197.872141][ T30] audit: type=1804 audit(2147516354.191:61): pid=23109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.4033" name="anon_hugepage" dev="hugetlbfs" ino=113496 res=0 errno=0 [ 1198.211841][T23114] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4035: iget: checksum invalid [ 1198.281085][T23114] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1198.306696][T23114] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4035: iget: checksum invalid [ 1198.405752][T23114] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1198.524719][T23114] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.4035: iget: checksum invalid [ 1198.577184][T23114] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1198.612698][T23114] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1198.666043][T23114] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1198.726002][T23125] kafs: addr_prefs: Too many elements in string [ 1199.535337][T23111] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1199.556299][T23111] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1199.568199][T23111] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1199.585359][T23111] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1199.827144][T13113] Bluetooth: hci4: command 0x0c1a tx timeout [ 1200.333641][T23148] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4040'. [ 1200.366040][T23148] nbd: must specify a size in bytes for the device [ 1200.976921][T23165] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4043'. [ 1201.026962][T23165] FAULT_INJECTION: forcing a failure. [ 1201.026962][T23165] name failslab, interval 1, probability 0, space 0, times 0 [ 1201.050343][T23165] CPU: 1 UID: 0 PID: 23165 Comm: syz.2.4043 Tainted: G L syzkaller #0 PREEMPT(full) [ 1201.050407][T23165] Tainted: [L]=SOFTLOCKUP [ 1201.050419][T23165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1201.050438][T23165] Call Trace: [ 1201.050449][T23165] [ 1201.050462][T23165] dump_stack_lvl+0x100/0x190 [ 1201.050515][T23165] should_fail_ex.cold+0x5/0xa [ 1201.050552][T23165] should_failslab+0xc2/0x120 [ 1201.050583][T23165] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1201.050627][T23165] ? skb_clone+0x190/0x400 [ 1201.050671][T23165] skb_clone+0x190/0x400 [ 1201.050708][T23165] netlink_deliver_tap+0xaed/0xcc0 [ 1201.050754][T23165] netlink_unicast+0x650/0x870 [ 1201.050798][T23165] ? __pfx_netlink_unicast+0x10/0x10 [ 1201.050836][T23165] ? __asan_memset+0x23/0x50 [ 1201.050877][T23165] ? __build_skb_around+0x278/0x390 [ 1201.050936][T23165] ? is_vmalloc_addr+0x86/0xa0 [ 1201.050982][T23165] netlink_sendmsg+0x8b0/0xda0 [ 1201.051028][T23165] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1201.051073][T23165] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 1201.051121][T23165] sock_write_iter+0x566/0x610 [ 1201.051168][T23165] ? __pfx_sock_write_iter+0x10/0x10 [ 1201.051245][T23165] ? bpf_lsm_file_permission+0x9/0x10 [ 1201.051295][T23165] ? security_file_permission+0x76/0x210 [ 1201.051361][T23165] ? rw_verify_area+0xce/0x6d0 [ 1201.051428][T23165] vfs_write+0x6ac/0x1070 [ 1201.051477][T23165] ? __pfx_sock_write_iter+0x10/0x10 [ 1201.051521][T23165] ? __pfx_vfs_write+0x10/0x10 [ 1201.051560][T23165] ? find_held_lock+0x2b/0x80 [ 1201.051607][T23165] ksys_write+0x1f8/0x250 [ 1201.051649][T23165] ? __pfx_ksys_write+0x10/0x10 [ 1201.051701][T23165] do_syscall_64+0x106/0xf80 [ 1201.051731][T23165] ? clear_bhb_loop+0x40/0x90 [ 1201.051765][T23165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1201.051794][T23165] RIP: 0033:0x7f8c85d9c799 [ 1201.051817][T23165] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1201.051844][T23165] RSP: 002b:00007f8c86d1b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1201.051871][T23165] RAX: ffffffffffffffda RBX: 00007f8c86016090 RCX: 00007f8c85d9c799 [ 1201.051889][T23165] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002 [ 1201.051912][T23165] RBP: 00007f8c86d1b090 R08: 0000000000000000 R09: 0000000000000000 [ 1201.051930][T23165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1201.051947][T23165] R13: 00007f8c86016128 R14: 00007f8c86016090 R15: 00007ffc16d325b8 [ 1201.051983][T23165] [ 1201.052028][T23165] netlink: 25 bytes leftover after parsing attributes in process `syz.2.4043'. [ 1201.596082][ T5824] Bluetooth: hci1: command 0x0c1a tx timeout [ 1201.596095][T21642] Bluetooth: hci2: command 0x0c1a tx timeout [ 1201.609356][T13113] Bluetooth: hci0: command 0x2016 tx timeout [ 1201.767892][T23175] FAULT_INJECTION: forcing a failure. [ 1201.767892][T23175] name failslab, interval 1, probability 0, space 0, times 0 [ 1201.806085][T23175] CPU: 0 UID: 0 PID: 23175 Comm: syz.1.4046 Tainted: G L syzkaller #0 PREEMPT(full) [ 1201.806138][T23175] Tainted: [L]=SOFTLOCKUP [ 1201.806150][T23175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1201.806171][T23175] Call Trace: [ 1201.806182][T23175] [ 1201.806195][T23175] dump_stack_lvl+0x100/0x190 [ 1201.806249][T23175] should_fail_ex.cold+0x5/0xa [ 1201.806288][T23175] should_failslab+0xc2/0x120 [ 1201.806321][T23175] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1201.806361][T23175] ? device_add+0xd3a/0x1950 [ 1201.806420][T23175] device_add+0xd3a/0x1950 [ 1201.806469][T23175] ? dev_set_name+0xc7/0x100 [ 1201.806503][T23175] ? __pfx_dev_set_name+0x10/0x10 [ 1201.806536][T23175] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1201.806602][T23175] ? __pfx_device_add+0x10/0x10 [ 1201.806653][T23175] ? lockdep_init_map_type+0x5c/0x250 [ 1201.806698][T23175] ? __init_waitqueue_head+0xca/0x150 [ 1201.806758][T23175] netdev_register_kobject+0x1a9/0x3d0 [ 1201.806809][T23175] register_netdevice+0x12e0/0x2210 [ 1201.806860][T23175] ? __pfx_register_netdevice+0x10/0x10 [ 1201.806912][T23175] ? __pfx_loopback_net_init+0x10/0x10 [ 1201.806959][T23175] register_netdev+0x34/0x50 [ 1201.806997][T23175] loopback_net_init+0x7a/0x170 [ 1201.807043][T23175] ? __pfx_loopback_net_init+0x10/0x10 [ 1201.807087][T23175] ops_init+0x1e2/0x5f0 [ 1201.807131][T23175] setup_net+0x118/0x3a0 [ 1201.807171][T23175] ? __pfx_setup_net+0x10/0x10 [ 1201.807206][T23175] ? lockdep_init_map_type+0x5c/0x250 [ 1201.807251][T23175] ? mutex_init_lockep+0x110/0x150 [ 1201.807302][T23175] copy_net_ns+0x46f/0x7c0 [ 1201.807351][T23175] create_new_namespaces+0x3ea/0xac0 [ 1201.807398][T23175] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1201.807439][T23175] ksys_unshare+0x473/0xad0 [ 1201.807484][T23175] ? __pfx_ksys_unshare+0x10/0x10 [ 1201.807541][T23175] __x64_sys_unshare+0x31/0x40 [ 1201.807588][T23175] do_syscall_64+0x106/0xf80 [ 1201.807626][T23175] ? clear_bhb_loop+0x40/0x90 [ 1201.807669][T23175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1201.807704][T23175] RIP: 0033:0x7fa22439c799 [ 1201.807732][T23175] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1201.807765][T23175] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1201.807799][T23175] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1201.807821][T23175] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1201.807843][T23175] RBP: 00007fa224432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1201.807863][T23175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1201.807883][T23175] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1201.807926][T23175] [ 1202.129232][T23179] Invalid ELF header magic: != ELF [ 1202.643617][T23152] FAULT_INJECTION: forcing a failure. [ 1202.643617][T23152] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1202.666234][T23152] CPU: 1 UID: 0 PID: 23152 Comm: syz.3.4039 Tainted: G L syzkaller #0 PREEMPT(full) [ 1202.666285][T23152] Tainted: [L]=SOFTLOCKUP [ 1202.666298][T23152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1202.666322][T23152] Call Trace: [ 1202.666330][T23152] [ 1202.666339][T23152] dump_stack_lvl+0x100/0x190 [ 1202.666379][T23152] should_fail_ex.cold+0x5/0xa [ 1202.666406][T23152] get_futex_key+0x1d2/0x1620 [ 1202.666438][T23152] ? __pfx_get_futex_key+0x10/0x10 [ 1202.666465][T23152] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 1202.666497][T23152] ? lockdep_hardirqs_on+0x78/0x100 [ 1202.666545][T23152] ? iput+0x3a/0x40 [ 1202.666571][T23152] ? hugetlb_file_setup+0x2c8/0x5b0 [ 1202.666599][T23152] futex_wake+0xea/0x530 [ 1202.666637][T23152] ? __pfx_futex_wake+0x10/0x10 [ 1202.666678][T23152] ? up_write+0x290/0x4f0 [ 1202.666716][T23152] do_futex+0x32b/0x350 [ 1202.666746][T23152] ? __pfx_do_futex+0x10/0x10 [ 1202.666784][T23152] __x64_sys_futex+0x34f/0x4d0 [ 1202.666818][T23152] ? __pfx___x64_sys_futex+0x10/0x10 [ 1202.666851][T23152] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1202.666884][T23152] do_syscall_64+0x106/0xf80 [ 1202.666909][T23152] ? clear_bhb_loop+0x40/0x90 [ 1202.666938][T23152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1202.666962][T23152] RIP: 0033:0x7fabb999c799 [ 1202.666982][T23152] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1202.667006][T23152] RSP: 002b:00007fabba8be0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1202.667029][T23152] RAX: ffffffffffffffda RBX: 00007fabb9c15fa8 RCX: 00007fabb999c799 [ 1202.667045][T23152] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fabb9c15fac [ 1202.667060][T23152] RBP: 00007fabb9c15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1202.667075][T23152] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 1202.667090][T23152] R13: 00007fabb9c16038 R14: 00007ffd8261bfa0 R15: 00007ffd8261c088 [ 1202.667137][T23152] [ 1203.243202][T23188] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 1203.609215][T23195] Invalid ELF header magic: != ELF [ 1203.816709][T23186] kexec: Could not allocate control_code_buffer [ 1204.520935][T23210] input: f as /devices/virtual/input/input15 [ 1204.650972][T23210] zram: Removed device: zram0 [ 1205.186725][T13113] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 1205.289476][T23225] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1205.289559][T23225] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1205.438066][T23229] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4058'. [ 1205.541979][T23229] debugfs: '!Pj' already exists in 'ieee80211' [ 1206.568268][T23227] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1206.596958][T23227] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1206.616125][T23227] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1206.638174][T23227] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1206.888162][T23253] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4065'. [ 1207.049897][T23258] Invalid ELF header magic: != ELF [ 1207.333579][T23256] Invalid ELF header magic: != ELF [ 1207.669554][T13113] Bluetooth: hci4: command 0x0c1a tx timeout [ 1208.627407][T13113] Bluetooth: hci2: command 0x0c1a tx timeout [ 1208.706162][T13113] Bluetooth: hci0: command 0x2016 tx timeout [ 1208.712327][ T5824] Bluetooth: hci1: command 0x0c1a tx timeout [ 1209.415632][T23285] FAULT_INJECTION: forcing a failure. [ 1209.415632][T23285] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.428418][T23285] CPU: 1 UID: 0 PID: 23285 Comm: syz.0.4073 Tainted: G L syzkaller #0 PREEMPT(full) [ 1209.428470][T23285] Tainted: [L]=SOFTLOCKUP [ 1209.428483][T23285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1209.428503][T23285] Call Trace: [ 1209.428515][T23285] [ 1209.428527][T23285] dump_stack_lvl+0x100/0x190 [ 1209.428582][T23285] should_fail_ex.cold+0x5/0xa [ 1209.428621][T23285] should_failslab+0xc2/0x120 [ 1209.428653][T23285] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1209.428701][T23285] ? security_inode_alloc+0x3b/0x2c0 [ 1209.428750][T23285] ? lockdep_init_map_type+0x5c/0x250 [ 1209.428801][T23285] security_inode_alloc+0x3b/0x2c0 [ 1209.428871][T23285] inode_init_always_gfp+0xced/0x1040 [ 1209.428935][T23285] alloc_inode+0x8e/0x250 [ 1209.428978][T23285] new_inode+0x22/0x1c0 [ 1209.429025][T23285] hugetlbfs_get_inode+0x313/0x750 [ 1209.429087][T23285] hugetlb_file_setup+0x3cc/0x5b0 [ 1209.429135][T23285] newseg+0xabb/0xed0 [ 1209.429176][T23285] ? __pfx_newseg+0x10/0x10 [ 1209.429210][T23285] ? down_write+0x146/0x1f0 [ 1209.429258][T23285] ? __schedule+0x2fa6/0x60e0 [ 1209.429299][T23285] ipcget+0xee/0xf50 [ 1209.429334][T23285] ? __schedule+0x1000/0x60e0 [ 1209.429367][T23285] ? __pfx_do_futex+0x10/0x10 [ 1209.429419][T23285] ? __pfx_ipcget+0x10/0x10 [ 1209.429466][T23285] __x64_sys_shmget+0x13b/0x1b0 [ 1209.429503][T23285] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1209.429553][T23285] do_syscall_64+0x106/0xf80 [ 1209.429590][T23285] ? clear_bhb_loop+0x40/0x90 [ 1209.429645][T23285] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1209.429679][T23285] RIP: 0033:0x7fe64fd9c799 [ 1209.429726][T23285] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1209.429763][T23285] RSP: 002b:00007fe650c61028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1209.429796][T23285] RAX: ffffffffffffffda RBX: 00007fe650016270 RCX: 00007fe64fd9c799 [ 1209.429820][T23285] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1209.429840][T23285] RBP: 00007fe64fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1209.429860][T23285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1209.429881][T23285] R13: 00007fe650016308 R14: 00007fe650016270 R15: 00007ffcc802a398 [ 1209.429937][T23285] [ 1209.954096][T23300] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4076'. [ 1210.224437][T23304] FAULT_INJECTION: forcing a failure. [ 1210.224437][T23304] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.258137][T23304] CPU: 0 UID: 0 PID: 23304 Comm: syz.0.4077 Tainted: G L syzkaller #0 PREEMPT(full) [ 1210.258176][T23304] Tainted: [L]=SOFTLOCKUP [ 1210.258186][T23304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1210.258200][T23304] Call Trace: [ 1210.258209][T23304] [ 1210.258218][T23304] dump_stack_lvl+0x100/0x190 [ 1210.258258][T23304] should_fail_ex.cold+0x5/0xa [ 1210.258286][T23304] ? ima_alloc_init_template+0x19d/0x6d0 [ 1210.258319][T23304] should_failslab+0xc2/0x120 [ 1210.258343][T23304] __kmalloc_noprof+0xe0/0x850 [ 1210.258377][T23304] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1210.258411][T23304] ima_alloc_init_template+0x19d/0x6d0 [ 1210.258446][T23304] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1210.258481][T23304] ima_store_measurement+0x1e3/0x5b0 [ 1210.258517][T23304] ? __pfx_ima_store_measurement+0x10/0x10 [ 1210.258563][T23304] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1210.258596][T23304] process_measurement+0x19cc/0x2350 [ 1210.258635][T23304] ? stack_trace_save+0x8e/0xc0 [ 1210.258658][T23304] ? __pfx_process_measurement+0x10/0x10 [ 1210.258689][T23304] ? __lock_acquire+0x4a5/0x2630 [ 1210.258717][T23304] ? __kasan_slab_alloc+0x89/0x90 [ 1210.258753][T23304] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1210.258793][T23304] ? init_file+0x95/0x480 [ 1210.258817][T23304] ? alloc_empty_file+0x73/0x1c0 [ 1210.258843][T23304] ? alloc_file_pseudo+0x13a/0x230 [ 1210.258870][T23304] ? ksys_mmap_pgoff+0x232/0x650 [ 1210.258891][T23304] ? __x64_sys_mmap+0x125/0x190 [ 1210.258926][T23304] ? do_syscall_64+0x106/0xf80 [ 1210.258979][T23304] ? __pfx_aa_file_perm+0x10/0x10 [ 1210.259012][T23304] ima_file_mmap+0x1c4/0x1f0 [ 1210.259044][T23304] ? __pfx_ima_file_mmap+0x10/0x10 [ 1210.259082][T23304] security_mmap_file+0x278/0x9b0 [ 1210.259122][T23304] vm_mmap_pgoff+0xec/0x470 [ 1210.259150][T23304] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1210.259173][T23304] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1210.259203][T23304] ? hugetlbfs_get_inode+0x36e/0x750 [ 1210.259250][T23304] ksys_mmap_pgoff+0x273/0x650 [ 1210.259273][T23304] ? __x64_sys_futex+0x358/0x4d0 [ 1210.259305][T23304] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1210.259328][T23304] ? xfd_validate_state+0x129/0x190 [ 1210.259367][T23304] __x64_sys_mmap+0x125/0x190 [ 1210.259405][T23304] do_syscall_64+0x106/0xf80 [ 1210.259430][T23304] ? clear_bhb_loop+0x40/0x90 [ 1210.259459][T23304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1210.259484][T23304] RIP: 0033:0x7fe64fd9c799 [ 1210.259504][T23304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1210.259528][T23304] RSP: 002b:00007fe650cc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1210.259550][T23304] RAX: ffffffffffffffda RBX: 00007fe650015fa0 RCX: 00007fe64fd9c799 [ 1210.259567][T23304] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1210.259581][T23304] RBP: 00007fe64fe32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1210.259597][T23304] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1210.259611][T23304] R13: 00007fe650016038 R14: 00007fe650015fa0 R15: 00007ffcc802a398 [ 1210.259646][T23304] [ 1210.579085][ T30] audit: type=1804 audit(2147516366.581:62): pid=23304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.4077" name="anon_hugepage" dev="hugetlbfs" ino=114388 res=0 errno=0 [ 1210.976438][T23283] FAULT_INJECTION: forcing a failure. [ 1210.976438][T23283] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.989376][T23283] CPU: 1 UID: 0 PID: 23283 Comm: syz.1.4072 Tainted: G L syzkaller #0 PREEMPT(full) [ 1210.989428][T23283] Tainted: [L]=SOFTLOCKUP [ 1210.989441][T23283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1210.989462][T23283] Call Trace: [ 1210.989473][T23283] [ 1210.989485][T23283] dump_stack_lvl+0x100/0x190 [ 1210.989540][T23283] should_fail_ex.cold+0x5/0xa [ 1210.989580][T23283] should_failslab+0xc2/0x120 [ 1210.989612][T23283] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1210.989661][T23283] ? security_inode_alloc+0x3b/0x2c0 [ 1210.989709][T23283] ? lockdep_init_map_type+0x5c/0x250 [ 1210.989760][T23283] security_inode_alloc+0x3b/0x2c0 [ 1210.989810][T23283] inode_init_always_gfp+0xced/0x1040 [ 1210.989871][T23283] alloc_inode+0x8e/0x250 [ 1210.989910][T23283] new_inode+0x22/0x1c0 [ 1210.989977][T23283] hugetlbfs_get_inode+0x313/0x750 [ 1210.990040][T23283] hugetlb_file_setup+0x3cc/0x5b0 [ 1210.990079][T23283] newseg+0xabb/0xed0 [ 1210.990118][T23283] ? __pfx_newseg+0x10/0x10 [ 1210.990151][T23283] ? down_write+0x146/0x1f0 [ 1210.990194][T23283] ? ksys_write+0x190/0x250 [ 1210.990244][T23283] ? ksys_write+0x190/0x250 [ 1210.990300][T23283] ipcget+0xee/0xf50 [ 1210.990332][T23283] ? do_futex+0x192/0x350 [ 1210.990377][T23283] ? __pfx_do_futex+0x10/0x10 [ 1210.990428][T23283] ? __pfx_ipcget+0x10/0x10 [ 1210.990463][T23283] ? __x64_sys_futex+0x34f/0x4d0 [ 1210.990504][T23283] ? __x64_sys_futex+0x358/0x4d0 [ 1210.990555][T23283] __x64_sys_shmget+0x13b/0x1b0 [ 1210.990590][T23283] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1210.990661][T23283] do_syscall_64+0x106/0xf80 [ 1210.990699][T23283] ? clear_bhb_loop+0x40/0x90 [ 1210.990743][T23283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1210.990779][T23283] RIP: 0033:0x7fa22439c799 [ 1210.990808][T23283] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1210.990843][T23283] RSP: 002b:00007fa225221028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1210.990876][T23283] RAX: ffffffffffffffda RBX: 00007fa224616270 RCX: 00007fa22439c799 [ 1210.990900][T23283] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1210.990921][T23283] RBP: 00007fa224432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1210.990944][T23283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1210.991026][T23283] R13: 00007fa224616308 R14: 00007fa224616270 R15: 00007ffc6153cb58 [ 1210.991074][T23283] [ 1212.245839][T23331] input: f as /devices/virtual/input/input16 [ 1212.526096][T23341] kafs: addr_prefs: Too many elements in string [ 1212.982834][T23349] FAULT_INJECTION: forcing a failure. [ 1212.982834][T23349] name failslab, interval 1, probability 0, space 0, times 0 [ 1213.079441][T23349] CPU: 1 UID: 0 PID: 23349 Comm: syz.2.4087 Tainted: G L syzkaller #0 PREEMPT(full) [ 1213.079488][T23349] Tainted: [L]=SOFTLOCKUP [ 1213.079497][T23349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1213.079510][T23349] Call Trace: [ 1213.079518][T23349] [ 1213.079527][T23349] dump_stack_lvl+0x100/0x190 [ 1213.079570][T23349] should_fail_ex.cold+0x5/0xa [ 1213.079596][T23349] ? ima_alloc_init_template+0x19d/0x6d0 [ 1213.079628][T23349] should_failslab+0xc2/0x120 [ 1213.079649][T23349] __kmalloc_noprof+0xe0/0x850 [ 1213.079681][T23349] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1213.079714][T23349] ima_alloc_init_template+0x19d/0x6d0 [ 1213.079747][T23349] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1213.079779][T23349] ima_store_measurement+0x1e3/0x5b0 [ 1213.079815][T23349] ? __pfx_ima_store_measurement+0x10/0x10 [ 1213.079858][T23349] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1213.079890][T23349] process_measurement+0x19cc/0x2350 [ 1213.079927][T23349] ? stack_trace_save+0x8e/0xc0 [ 1213.079949][T23349] ? __pfx_process_measurement+0x10/0x10 [ 1213.079978][T23349] ? __lock_acquire+0x4a5/0x2630 [ 1213.080023][T23349] ? __kasan_slab_alloc+0x89/0x90 [ 1213.080059][T23349] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1213.080092][T23349] ? init_file+0x95/0x480 [ 1213.080114][T23349] ? alloc_empty_file+0x73/0x1c0 [ 1213.080139][T23349] ? alloc_file_pseudo+0x13a/0x230 [ 1213.080166][T23349] ? ksys_mmap_pgoff+0x232/0x650 [ 1213.080186][T23349] ? __x64_sys_mmap+0x125/0x190 [ 1213.080219][T23349] ? do_syscall_64+0x106/0xf80 [ 1213.080271][T23349] ? __pfx_aa_file_perm+0x10/0x10 [ 1213.080304][T23349] ima_file_mmap+0x1c4/0x1f0 [ 1213.080335][T23349] ? __pfx_ima_file_mmap+0x10/0x10 [ 1213.080372][T23349] security_mmap_file+0x278/0x9b0 [ 1213.080426][T23349] vm_mmap_pgoff+0xec/0x470 [ 1213.080454][T23349] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1213.080477][T23349] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1213.080507][T23349] ? hugetlbfs_get_inode+0x36e/0x750 [ 1213.080561][T23349] ksys_mmap_pgoff+0x273/0x650 [ 1213.080585][T23349] ? __x64_sys_futex+0x358/0x4d0 [ 1213.080616][T23349] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1213.080639][T23349] ? xfd_validate_state+0x129/0x190 [ 1213.080679][T23349] __x64_sys_mmap+0x125/0x190 [ 1213.080716][T23349] do_syscall_64+0x106/0xf80 [ 1213.080741][T23349] ? clear_bhb_loop+0x40/0x90 [ 1213.080770][T23349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1213.080795][T23349] RIP: 0033:0x7f8c85d9c799 [ 1213.080814][T23349] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1213.080838][T23349] RSP: 002b:00007f8c86d3c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1213.080860][T23349] RAX: ffffffffffffffda RBX: 00007f8c86015fa0 RCX: 00007f8c85d9c799 [ 1213.080877][T23349] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1213.080891][T23349] RBP: 00007f8c85e32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1213.080907][T23349] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1213.080922][T23349] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1213.080955][T23349] [ 1213.081152][ T30] audit: type=1804 audit(2147516369.401:63): pid=23349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.4087" name="anon_hugepage" dev="hugetlbfs" ino=115314 res=0 errno=0 [ 1213.578032][T23356] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4088'. [ 1214.438606][T23347] FAULT_INJECTION: forcing a failure. [ 1214.438606][T23347] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.486034][T23347] CPU: 1 UID: 0 PID: 23347 Comm: syz.0.4085 Tainted: G L syzkaller #0 PREEMPT(full) [ 1214.486084][T23347] Tainted: [L]=SOFTLOCKUP [ 1214.486096][T23347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1214.486117][T23347] Call Trace: [ 1214.486128][T23347] [ 1214.486140][T23347] dump_stack_lvl+0x100/0x190 [ 1214.486197][T23347] should_fail_ex.cold+0x5/0xa [ 1214.486255][T23347] should_failslab+0xc2/0x120 [ 1214.486288][T23347] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1214.486338][T23347] ? security_inode_alloc+0x3b/0x2c0 [ 1214.486386][T23347] ? lockdep_init_map_type+0x5c/0x250 [ 1214.486460][T23347] security_inode_alloc+0x3b/0x2c0 [ 1214.486512][T23347] inode_init_always_gfp+0xced/0x1040 [ 1214.486574][T23347] alloc_inode+0x8e/0x250 [ 1214.486616][T23347] new_inode+0x22/0x1c0 [ 1214.486680][T23347] hugetlbfs_get_inode+0x313/0x750 [ 1214.486744][T23347] hugetlb_file_setup+0x3cc/0x5b0 [ 1214.486784][T23347] newseg+0xabb/0xed0 [ 1214.486824][T23347] ? __pfx_newseg+0x10/0x10 [ 1214.486856][T23347] ? down_write+0x146/0x1f0 [ 1214.486913][T23347] ? trace_sched_exit_tp+0x13a/0x180 [ 1214.486958][T23347] ipcget+0xee/0xf50 [ 1214.486991][T23347] ? do_futex+0x192/0x350 [ 1214.487036][T23347] ? __pfx_do_futex+0x10/0x10 [ 1214.487095][T23347] ? __pfx_ipcget+0x10/0x10 [ 1214.487131][T23347] ? __x64_sys_futex+0x34f/0x4d0 [ 1214.487181][T23347] ? __x64_sys_futex+0x358/0x4d0 [ 1214.487233][T23347] __x64_sys_shmget+0x13b/0x1b0 [ 1214.487269][T23347] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1214.487317][T23347] do_syscall_64+0x106/0xf80 [ 1214.487353][T23347] ? clear_bhb_loop+0x40/0x90 [ 1214.487397][T23347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1214.487432][T23347] RIP: 0033:0x7fe64fd9c799 [ 1214.487461][T23347] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1214.487496][T23347] RSP: 002b:00007fe650c61028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1214.487529][T23347] RAX: ffffffffffffffda RBX: 00007fe650016270 RCX: 00007fe64fd9c799 [ 1214.487553][T23347] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1214.487575][T23347] RBP: 00007fe64fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1214.487598][T23347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1214.487618][T23347] R13: 00007fe650016308 R14: 00007fe650016270 R15: 00007ffcc802a398 [ 1214.487671][T23347] [ 1215.655126][ T7132] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 1339 with max blocks 30 with error 117 [ 1215.725406][ T7132] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1215.725406][ T7132] [ 1216.756382][T23403] kafs: addr_prefs: Too many elements in string [ 1217.267038][T23411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4099'. [ 1217.343041][T23413] netlink: 326 bytes leftover after parsing attributes in process `syz.0.4100'. [ 1217.420862][T23392] FAULT_INJECTION: forcing a failure. [ 1217.420862][T23392] name failslab, interval 1, probability 0, space 0, times 0 [ 1217.585331][T23392] CPU: 1 UID: 0 PID: 23392 Comm: syz.2.4093 Tainted: G L syzkaller #0 PREEMPT(full) [ 1217.585403][T23392] Tainted: [L]=SOFTLOCKUP [ 1217.585417][T23392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1217.585437][T23392] Call Trace: [ 1217.585449][T23392] [ 1217.585462][T23392] dump_stack_lvl+0x100/0x190 [ 1217.585522][T23392] should_fail_ex.cold+0x5/0xa [ 1217.585550][T23392] should_failslab+0xc2/0x120 [ 1217.585574][T23392] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1217.585608][T23392] ? security_inode_alloc+0x3b/0x2c0 [ 1217.585641][T23392] ? lockdep_init_map_type+0x5c/0x250 [ 1217.585676][T23392] security_inode_alloc+0x3b/0x2c0 [ 1217.585711][T23392] inode_init_always_gfp+0xced/0x1040 [ 1217.585754][T23392] alloc_inode+0x8e/0x250 [ 1217.585783][T23392] new_inode+0x22/0x1c0 [ 1217.585814][T23392] hugetlbfs_get_inode+0x313/0x750 [ 1217.585892][T23392] hugetlb_file_setup+0x3cc/0x5b0 [ 1217.585931][T23392] newseg+0xabb/0xed0 [ 1217.585959][T23392] ? __pfx_newseg+0x10/0x10 [ 1217.585981][T23392] ? down_write+0x146/0x1f0 [ 1217.586013][T23392] ? ksys_write+0x190/0x250 [ 1217.586048][T23392] ? ksys_write+0x190/0x250 [ 1217.586087][T23392] ipcget+0xee/0xf50 [ 1217.586110][T23392] ? do_futex+0x192/0x350 [ 1217.586141][T23392] ? __pfx_do_futex+0x10/0x10 [ 1217.586182][T23392] ? __pfx_ipcget+0x10/0x10 [ 1217.586207][T23392] ? __x64_sys_futex+0x34f/0x4d0 [ 1217.586236][T23392] ? __x64_sys_futex+0x358/0x4d0 [ 1217.586272][T23392] __x64_sys_shmget+0x13b/0x1b0 [ 1217.586297][T23392] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1217.586329][T23392] do_syscall_64+0x106/0xf80 [ 1217.586355][T23392] ? clear_bhb_loop+0x40/0x90 [ 1217.586384][T23392] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1217.586410][T23392] RIP: 0033:0x7f8c85d9c799 [ 1217.586430][T23392] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1217.586454][T23392] RSP: 002b:00007f8c86cd9028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1217.586476][T23392] RAX: ffffffffffffffda RBX: 00007f8c86016270 RCX: 00007f8c85d9c799 [ 1217.586493][T23392] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1217.586507][T23392] RBP: 00007f8c85e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1217.586522][T23392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1217.586537][T23392] R13: 00007f8c86016308 R14: 00007f8c86016270 R15: 00007ffc16d325b8 [ 1217.586567][T23392] [ 1218.244259][T23421] zswap: compressor not available [ 1218.849302][T23444] FAULT_INJECTION: forcing a failure. [ 1218.849302][T23444] name failslab, interval 1, probability 0, space 0, times 0 [ 1218.881585][T23444] CPU: 1 UID: 0 PID: 23444 Comm: syz.1.4108 Tainted: G L syzkaller #0 PREEMPT(full) [ 1218.881641][T23444] Tainted: [L]=SOFTLOCKUP [ 1218.881650][T23444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1218.881677][T23444] Call Trace: [ 1218.881685][T23444] [ 1218.881693][T23444] dump_stack_lvl+0x100/0x190 [ 1218.881731][T23444] should_fail_ex.cold+0x5/0xa [ 1218.881756][T23444] ? ima_alloc_init_template+0xb6/0x6d0 [ 1218.881787][T23444] should_failslab+0xc2/0x120 [ 1218.881808][T23444] __kmalloc_noprof+0xe0/0x850 [ 1218.881839][T23444] ? find_held_lock+0x2b/0x80 [ 1218.881859][T23444] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1218.881892][T23444] ima_alloc_init_template+0xb6/0x6d0 [ 1218.881924][T23444] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1218.881956][T23444] ima_store_measurement+0x1e3/0x5b0 [ 1218.881991][T23444] ? __pfx_ima_store_measurement+0x10/0x10 [ 1218.882034][T23444] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1218.882065][T23444] process_measurement+0x19cc/0x2350 [ 1218.882101][T23444] ? stack_trace_save+0x8e/0xc0 [ 1218.882122][T23444] ? __pfx_process_measurement+0x10/0x10 [ 1218.882152][T23444] ? __lock_acquire+0x4a5/0x2630 [ 1218.882179][T23444] ? __kasan_slab_alloc+0x89/0x90 [ 1218.882212][T23444] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1218.882277][T23444] ? init_file+0x95/0x480 [ 1218.882311][T23444] ? alloc_empty_file+0x73/0x1c0 [ 1218.882346][T23444] ? alloc_file_pseudo+0x13a/0x230 [ 1218.882385][T23444] ? ksys_mmap_pgoff+0x232/0x650 [ 1218.882414][T23444] ? __x64_sys_mmap+0x125/0x190 [ 1218.882458][T23444] ? do_syscall_64+0x106/0xf80 [ 1218.882529][T23444] ? __pfx_aa_file_perm+0x10/0x10 [ 1218.882575][T23444] ima_file_mmap+0x1c4/0x1f0 [ 1218.882616][T23444] ? __pfx_ima_file_mmap+0x10/0x10 [ 1218.882666][T23444] security_mmap_file+0x278/0x9b0 [ 1218.882718][T23444] vm_mmap_pgoff+0xec/0x470 [ 1218.882755][T23444] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1218.882785][T23444] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1218.882825][T23444] ? hugetlbfs_get_inode+0x36e/0x750 [ 1218.882885][T23444] ksys_mmap_pgoff+0x273/0x650 [ 1218.882917][T23444] ? __x64_sys_futex+0x358/0x4d0 [ 1218.882960][T23444] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1218.882990][T23444] ? xfd_validate_state+0x129/0x190 [ 1218.883040][T23444] __x64_sys_mmap+0x125/0x190 [ 1218.883090][T23444] do_syscall_64+0x106/0xf80 [ 1218.883124][T23444] ? clear_bhb_loop+0x40/0x90 [ 1218.883163][T23444] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1218.883196][T23444] RIP: 0033:0x7fa22439c799 [ 1218.883223][T23444] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1218.883255][T23444] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1218.883293][T23444] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1218.883314][T23444] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1218.883333][T23444] RBP: 00007fa224432bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1218.883354][T23444] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1218.883372][T23444] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1218.883412][T23444] [ 1219.272762][ T30] audit: type=1804 audit(2147516375.551:64): pid=23444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.4108" name="anon_hugepage" dev="hugetlbfs" ino=115620 res=0 errno=0 [ 1219.392567][T23448] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4110'. [ 1219.881367][T23462] sp0: Synchronizing with TNC [ 1220.064672][T23463] hub 1-0:1.0: USB hub found [ 1220.084618][T23463] hub 1-0:1.0: 1 port detected [ 1221.614432][T23487] FAULT_INJECTION: forcing a failure. [ 1221.614432][T23487] name failslab, interval 1, probability 0, space 0, times 0 [ 1221.650376][T23487] CPU: 1 UID: 0 PID: 23487 Comm: syz.0.4119 Tainted: G L syzkaller #0 PREEMPT(full) [ 1221.650416][T23487] Tainted: [L]=SOFTLOCKUP [ 1221.650424][T23487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1221.650441][T23487] Call Trace: [ 1221.650449][T23487] [ 1221.650458][T23487] dump_stack_lvl+0x100/0x190 [ 1221.650499][T23487] should_fail_ex.cold+0x5/0xa [ 1221.650528][T23487] should_failslab+0xc2/0x120 [ 1221.650551][T23487] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1221.650587][T23487] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1221.650634][T23487] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1221.650682][T23487] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 1221.650742][T23487] alloc_inode+0x68/0x250 [ 1221.650772][T23487] new_inode+0x22/0x1c0 [ 1221.650803][T23487] hugetlbfs_get_inode+0x313/0x750 [ 1221.650846][T23487] hugetlb_file_setup+0x15b/0x5b0 [ 1221.650872][T23487] ksys_mmap_pgoff+0x232/0x650 [ 1221.650897][T23487] ? __x64_sys_futex+0x358/0x4d0 [ 1221.650929][T23487] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1221.650952][T23487] ? xfd_validate_state+0x129/0x190 [ 1221.650991][T23487] __x64_sys_mmap+0x125/0x190 [ 1221.651046][T23487] do_syscall_64+0x106/0xf80 [ 1221.651075][T23487] ? clear_bhb_loop+0x40/0x90 [ 1221.651105][T23487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1221.651130][T23487] RIP: 0033:0x7fe64fd9c799 [ 1221.651151][T23487] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1221.651175][T23487] RSP: 002b:00007fe650cc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1221.651199][T23487] RAX: ffffffffffffffda RBX: 00007fe650015fa0 RCX: 00007fe64fd9c799 [ 1221.651222][T23487] RDX: ffffffffffffffff RSI: 0000000000000002 RDI: 0000000000000000 [ 1221.651238][T23487] RBP: 00007fe64fe32bd9 R08: 0000000000000602 R09: 0000300000000000 [ 1221.651254][T23487] R10: 0000000000044eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1221.651269][T23487] R13: 00007fe650016038 R14: 00007fe650015fa0 R15: 00007ffcc802a398 [ 1221.651301][T23487] [ 1222.270139][T23490] Invalid ELF header magic: != ELF [ 1223.729826][T23504] FAULT_INJECTION: forcing a failure. [ 1223.729826][T23504] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.770020][T23504] CPU: 1 UID: 0 PID: 23504 Comm: syz.2.4122 Tainted: G L syzkaller #0 PREEMPT(full) [ 1223.770077][T23504] Tainted: [L]=SOFTLOCKUP [ 1223.770090][T23504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1223.770109][T23504] Call Trace: [ 1223.770120][T23504] [ 1223.770134][T23504] dump_stack_lvl+0x100/0x190 [ 1223.770191][T23504] should_fail_ex.cold+0x5/0xa [ 1223.770229][T23504] ? ima_alloc_init_template+0x19d/0x6d0 [ 1223.770276][T23504] should_failslab+0xc2/0x120 [ 1223.770308][T23504] __kmalloc_noprof+0xe0/0x850 [ 1223.770355][T23504] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1223.770404][T23504] ima_alloc_init_template+0x19d/0x6d0 [ 1223.770453][T23504] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1223.770502][T23504] ima_store_measurement+0x1e3/0x5b0 [ 1223.770560][T23504] ? __pfx_ima_store_measurement+0x10/0x10 [ 1223.770626][T23504] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1223.770675][T23504] process_measurement+0x19cc/0x2350 [ 1223.770731][T23504] ? stack_trace_save+0x8e/0xc0 [ 1223.770764][T23504] ? __pfx_process_measurement+0x10/0x10 [ 1223.770808][T23504] ? __lock_acquire+0x4a5/0x2630 [ 1223.770849][T23504] ? __kasan_slab_alloc+0x89/0x90 [ 1223.770899][T23504] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1223.770947][T23504] ? init_file+0x95/0x480 [ 1223.770978][T23504] ? alloc_empty_file+0x73/0x1c0 [ 1223.771012][T23504] ? alloc_file_pseudo+0x13a/0x230 [ 1223.771051][T23504] ? ksys_mmap_pgoff+0x232/0x650 [ 1223.771081][T23504] ? __x64_sys_mmap+0x125/0x190 [ 1223.771128][T23504] ? do_syscall_64+0x106/0xf80 [ 1223.771205][T23504] ? __pfx_aa_file_perm+0x10/0x10 [ 1223.771265][T23504] ima_file_mmap+0x1c4/0x1f0 [ 1223.771305][T23504] ? __pfx_ima_file_mmap+0x10/0x10 [ 1223.771356][T23504] security_mmap_file+0x278/0x9b0 [ 1223.771408][T23504] vm_mmap_pgoff+0xec/0x470 [ 1223.771445][T23504] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1223.771474][T23504] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1223.771513][T23504] ? hugetlbfs_get_inode+0x36e/0x750 [ 1223.771581][T23504] ksys_mmap_pgoff+0x273/0x650 [ 1223.771614][T23504] ? __x64_sys_futex+0x358/0x4d0 [ 1223.771655][T23504] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1223.771686][T23504] ? xfd_validate_state+0x129/0x190 [ 1223.771738][T23504] __x64_sys_mmap+0x125/0x190 [ 1223.771788][T23504] do_syscall_64+0x106/0xf80 [ 1223.771822][T23504] ? clear_bhb_loop+0x40/0x90 [ 1223.771860][T23504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1223.771892][T23504] RIP: 0033:0x7f8c85d9c799 [ 1223.771919][T23504] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1223.771952][T23504] RSP: 002b:00007f8c86d3c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1223.771982][T23504] RAX: ffffffffffffffda RBX: 00007f8c86015fa0 RCX: 00007f8c85d9c799 [ 1223.772002][T23504] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1223.772021][T23504] RBP: 00007f8c85e32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1223.772040][T23504] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1223.772059][T23504] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1223.772101][T23504] [ 1223.772332][ T30] audit: type=1804 audit(2147516380.091:65): pid=23504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.4122" name="anon_hugepage" dev="hugetlbfs" ino=116794 res=0 errno=0 [ 1224.378892][T23515] FAULT_INJECTION: forcing a failure. [ 1224.378892][T23515] name failslab, interval 1, probability 0, space 0, times 0 [ 1224.394192][T23515] CPU: 1 UID: 0 PID: 23515 Comm: syz.2.4134 Tainted: G L syzkaller #0 PREEMPT(full) [ 1224.394254][T23515] Tainted: [L]=SOFTLOCKUP [ 1224.394285][T23515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1224.394305][T23515] Call Trace: [ 1224.394317][T23515] [ 1224.394331][T23515] dump_stack_lvl+0x100/0x190 [ 1224.394389][T23515] should_fail_ex.cold+0x5/0xa [ 1224.394427][T23515] ? ima_alloc_init_template+0x19d/0x6d0 [ 1224.394476][T23515] should_failslab+0xc2/0x120 [ 1224.394508][T23515] __kmalloc_noprof+0xe0/0x850 [ 1224.394555][T23515] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1224.394607][T23515] ima_alloc_init_template+0x19d/0x6d0 [ 1224.394657][T23515] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1224.394707][T23515] ima_store_measurement+0x1e3/0x5b0 [ 1224.394768][T23515] ? __pfx_ima_store_measurement+0x10/0x10 [ 1224.394831][T23515] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1224.394878][T23515] process_measurement+0x19cc/0x2350 [ 1224.394933][T23515] ? stack_trace_save+0x8e/0xc0 [ 1224.394965][T23515] ? __pfx_process_measurement+0x10/0x10 [ 1224.395009][T23515] ? __lock_acquire+0x4a5/0x2630 [ 1224.395048][T23515] ? __kasan_slab_alloc+0x89/0x90 [ 1224.395097][T23515] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1224.395142][T23515] ? init_file+0x95/0x480 [ 1224.395174][T23515] ? alloc_empty_file+0x73/0x1c0 [ 1224.395209][T23515] ? alloc_file_pseudo+0x13a/0x230 [ 1224.395246][T23515] ? ksys_mmap_pgoff+0x232/0x650 [ 1224.395276][T23515] ? __x64_sys_mmap+0x125/0x190 [ 1224.395324][T23515] ? do_syscall_64+0x106/0xf80 [ 1224.395401][T23515] ? __pfx_aa_file_perm+0x10/0x10 [ 1224.395472][T23515] ima_file_mmap+0x1c4/0x1f0 [ 1224.395514][T23515] ? __pfx_ima_file_mmap+0x10/0x10 [ 1224.395563][T23515] security_mmap_file+0x278/0x9b0 [ 1224.395616][T23515] vm_mmap_pgoff+0xec/0x470 [ 1224.395652][T23515] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1224.395681][T23515] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1224.395726][T23515] ? hugetlbfs_get_inode+0x36e/0x750 [ 1224.395790][T23515] ksys_mmap_pgoff+0x273/0x650 [ 1224.395821][T23515] ? __x64_sys_futex+0x358/0x4d0 [ 1224.395871][T23515] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1224.395902][T23515] ? xfd_validate_state+0x129/0x190 [ 1224.395953][T23515] __x64_sys_mmap+0x125/0x190 [ 1224.396003][T23515] do_syscall_64+0x106/0xf80 [ 1224.396036][T23515] ? clear_bhb_loop+0x40/0x90 [ 1224.396075][T23515] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1224.396108][T23515] RIP: 0033:0x7f8c85d9c799 [ 1224.396134][T23515] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1224.396166][T23515] RSP: 002b:00007f8c86d3c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1224.396195][T23515] RAX: ffffffffffffffda RBX: 00007f8c86015fa0 RCX: 00007f8c85d9c799 [ 1224.396217][T23515] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1224.396236][T23515] RBP: 00007f8c85e32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1224.396257][T23515] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1224.396275][T23515] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1224.396324][T23515] [ 1224.961232][ T30] audit: type=1804 audit(2147516381.241:66): pid=23515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.4134" name="anon_hugepage" dev="hugetlbfs" ino=116838 res=0 errno=0 [ 1225.092987][T23526] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4127'. [ 1225.370145][T23532] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub [ 1225.764876][T23538] FAULT_INJECTION: forcing a failure. [ 1225.764876][T23538] name failslab, interval 1, probability 0, space 0, times 0 [ 1225.819989][T23538] CPU: 1 UID: 0 PID: 23538 Comm: syz.1.4132 Tainted: G L syzkaller #0 PREEMPT(full) [ 1225.820040][T23538] Tainted: [L]=SOFTLOCKUP [ 1225.820052][T23538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1225.820071][T23538] Call Trace: [ 1225.820082][T23538] [ 1225.820094][T23538] dump_stack_lvl+0x100/0x190 [ 1225.820149][T23538] should_fail_ex.cold+0x5/0xa [ 1225.820185][T23538] ? ima_alloc_init_template+0x19d/0x6d0 [ 1225.820229][T23538] should_failslab+0xc2/0x120 [ 1225.820261][T23538] __kmalloc_noprof+0xe0/0x850 [ 1225.820305][T23538] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1225.820350][T23538] ima_alloc_init_template+0x19d/0x6d0 [ 1225.820397][T23538] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1225.820451][T23538] ima_store_measurement+0x1e3/0x5b0 [ 1225.820498][T23538] ? __pfx_ima_store_measurement+0x10/0x10 [ 1225.820560][T23538] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1225.820610][T23538] process_measurement+0x19cc/0x2350 [ 1225.820663][T23538] ? stack_trace_save+0x8e/0xc0 [ 1225.820695][T23538] ? __pfx_process_measurement+0x10/0x10 [ 1225.820736][T23538] ? __lock_acquire+0x4a5/0x2630 [ 1225.820774][T23538] ? __kasan_slab_alloc+0x89/0x90 [ 1225.820820][T23538] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1225.820864][T23538] ? init_file+0x95/0x480 [ 1225.820895][T23538] ? alloc_empty_file+0x73/0x1c0 [ 1225.820928][T23538] ? alloc_file_pseudo+0x13a/0x230 [ 1225.820963][T23538] ? ksys_mmap_pgoff+0x232/0x650 [ 1225.820991][T23538] ? __x64_sys_mmap+0x125/0x190 [ 1225.821034][T23538] ? do_syscall_64+0x106/0xf80 [ 1225.821104][T23538] ? __pfx_aa_file_perm+0x10/0x10 [ 1225.821150][T23538] ima_file_mmap+0x1c4/0x1f0 [ 1225.821191][T23538] ? __pfx_ima_file_mmap+0x10/0x10 [ 1225.821241][T23538] security_mmap_file+0x278/0x9b0 [ 1225.821292][T23538] vm_mmap_pgoff+0xec/0x470 [ 1225.821330][T23538] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1225.821359][T23538] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1225.821399][T23538] ? hugetlbfs_get_inode+0x36e/0x750 [ 1225.821469][T23538] ksys_mmap_pgoff+0x273/0x650 [ 1225.821501][T23538] ? __x64_sys_futex+0x358/0x4d0 [ 1225.821543][T23538] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1225.821574][T23538] ? xfd_validate_state+0x129/0x190 [ 1225.821625][T23538] __x64_sys_mmap+0x125/0x190 [ 1225.821675][T23538] do_syscall_64+0x106/0xf80 [ 1225.821709][T23538] ? clear_bhb_loop+0x40/0x90 [ 1225.821748][T23538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1225.821781][T23538] RIP: 0033:0x7fa22439c799 [ 1225.821808][T23538] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1225.821840][T23538] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1225.821872][T23538] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1225.821893][T23538] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1225.821911][T23538] RBP: 00007fa224432bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1225.821931][T23538] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1225.821949][T23538] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1225.821989][T23538] [ 1226.157161][ T30] audit: type=1804 audit(2147516382.451:67): pid=23538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.4132" name="anon_hugepage" dev="hugetlbfs" ino=116886 res=0 errno=0 [ 1226.262510][T23549] Invalid ELF header magic: != ELF [ 1226.274634][T23549] Invalid ELF header magic: != ELF [ 1226.284466][T23549] Invalid ELF header magic: != ELF [ 1226.302210][T23549] Invalid ELF header magic: != ELF [ 1226.312933][T23549] Invalid ELF header magic: != ELF [ 1226.326603][T23549] Invalid ELF header magic: != ELF [ 1226.335650][T23549] Invalid ELF header magic: != ELF [ 1226.344582][T23549] Invalid ELF header magic: != ELF [ 1226.353917][T23549] Invalid ELF header magic: != ELF [ 1226.362795][T23549] Invalid ELF header magic: != ELF [ 1226.371521][T23549] Invalid ELF header magic: != ELF [ 1226.380186][T23549] Invalid ELF header magic: != ELF [ 1226.389538][T23549] Invalid ELF header magic: != ELF [ 1226.400465][T23549] Invalid ELF header magic: != ELF [ 1226.420204][T23549] Invalid ELF header magic: != ELF [ 1226.430846][T23549] Invalid ELF header magic: != ELF [ 1226.440941][T23549] Invalid ELF header magic: != ELF [ 1226.454283][T23549] Invalid ELF header magic: != ELF [ 1226.509205][T23549] Invalid ELF header magic: != ELF [ 1226.554660][T23549] Invalid ELF header magic: != ELF [ 1226.608635][T23549] Invalid ELF header magic: != ELF [ 1227.017038][T23562] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4137'. [ 1228.076846][T23587] netlink: 'syz.2.4146': attribute type 7 has an invalid length. [ 1228.084734][T23587] netlink: 17 bytes leftover after parsing attributes in process `syz.2.4146'. [ 1228.269981][T23599] netlink: 'syz.2.4148': attribute type 7 has an invalid length. [ 1228.282712][T23600] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4147'. [ 1228.292401][T23599] netlink: 17 bytes leftover after parsing attributes in process `syz.2.4148'. [ 1228.317899][T23599] netlink: zone id is out of range [ 1228.323087][T23599] netlink: zone id is out of range [ 1228.332911][T23599] netlink: zone id is out of range [ 1228.339226][T23599] netlink: zone id is out of range [ 1228.392407][T23599] netlink: set zone limit has 8 unknown bytes [ 1228.803339][T23616] kafs: addr_prefs: Too many elements in string [ 1229.191939][T23626] FAULT_INJECTION: forcing a failure. [ 1229.191939][T23626] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1229.276080][T23626] CPU: 1 UID: 0 PID: 23626 Comm: syz.3.4154 Tainted: G L syzkaller #0 PREEMPT(full) [ 1229.276130][T23626] Tainted: [L]=SOFTLOCKUP [ 1229.276142][T23626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1229.276161][T23626] Call Trace: [ 1229.276172][T23626] [ 1229.276184][T23626] dump_stack_lvl+0x100/0x190 [ 1229.276236][T23626] should_fail_ex.cold+0x5/0xa [ 1229.276273][T23626] _copy_to_iter+0x5a4/0x1720 [ 1229.276356][T23626] ? __pfx__copy_to_iter+0x10/0x10 [ 1229.276401][T23626] ? find_held_lock+0x2b/0x80 [ 1229.276429][T23626] ? dd_queued_show+0x9c/0xe0 [ 1229.276485][T23626] seq_read_iter+0xdab/0x1270 [ 1229.276561][T23626] seq_read+0x33b/0x4c0 [ 1229.276605][T23626] ? __pfx_seq_read+0x10/0x10 [ 1229.276676][T23626] full_proxy_read+0x135/0x1a0 [ 1229.276728][T23626] ? __pfx_full_proxy_read+0x10/0x10 [ 1229.276766][T23626] vfs_read+0x1e4/0xb30 [ 1229.276818][T23626] ? __pfx_vfs_read+0x10/0x10 [ 1229.276863][T23626] ? __fget_files+0x215/0x3d0 [ 1229.276920][T23626] ? __fget_files+0x21f/0x3d0 [ 1229.276980][T23626] ksys_read+0x12a/0x250 [ 1229.277026][T23626] ? __pfx_ksys_read+0x10/0x10 [ 1229.277086][T23626] do_syscall_64+0x106/0xf80 [ 1229.277122][T23626] ? clear_bhb_loop+0x40/0x90 [ 1229.277160][T23626] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1229.277194][T23626] RIP: 0033:0x7fabb999c799 [ 1229.277220][T23626] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1229.277251][T23626] RSP: 002b:00007fabba8be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1229.277281][T23626] RAX: ffffffffffffffda RBX: 00007fabb9c15fa0 RCX: 00007fabb999c799 [ 1229.277302][T23626] RDX: 000000000000007c RSI: 0000200000000040 RDI: 0000000000000003 [ 1229.277329][T23626] RBP: 00007fabba8be090 R08: 0000000000000000 R09: 0000000000000000 [ 1229.277348][T23626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1229.277367][T23626] R13: 00007fabb9c16038 R14: 00007fabb9c15fa0 R15: 00007ffd8261c088 [ 1229.277410][T23626] [ 1229.608038][T23610] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1229.614151][T23610] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1229.620237][T23610] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1229.626397][T23610] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1229.702224][T23629] binder: 23628:23629 ioctl 40046210 0 returned -14 [ 1229.903042][T23627] FAULT_INJECTION: forcing a failure. [ 1229.903042][T23627] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1229.991573][T23631] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4157'. [ 1230.000751][T23627] CPU: 0 UID: 0 PID: 23627 Comm: syz.0.4155 Tainted: G L syzkaller #0 PREEMPT(full) [ 1230.000799][T23627] Tainted: [L]=SOFTLOCKUP [ 1230.000810][T23627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1230.000828][T23627] Call Trace: [ 1230.000840][T23627] [ 1230.000851][T23627] dump_stack_lvl+0x100/0x190 [ 1230.000902][T23627] should_fail_ex.cold+0x5/0xa [ 1230.000948][T23627] ? prepare_alloc_pages+0x16d/0x5f0 [ 1230.000985][T23627] should_fail_alloc_page+0xeb/0x140 [ 1230.001050][T23627] prepare_alloc_pages+0x1f0/0x5f0 [ 1230.001091][T23627] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 1230.001139][T23627] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1230.001186][T23627] ? find_held_lock+0x2b/0x80 [ 1230.001215][T23627] ? folios_put_refs+0x66d/0x840 [ 1230.001266][T23627] ? __pfx_folios_put_refs+0x10/0x10 [ 1230.001310][T23627] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1230.001340][T23627] ? mlock_folio_batch+0xca4/0x50d0 [ 1230.001384][T23627] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1230.001428][T23627] ? munlock_folio+0x3a6/0x700 [ 1230.001471][T23627] ? munlock_folio+0x3a6/0x700 [ 1230.001520][T23627] ? munlock_folio+0x3d2/0x700 [ 1230.001566][T23627] ? folio_remove_rmap_pmd+0x69c/0xed0 [ 1230.001612][T23627] ? split_huge_pmd_locked+0x3ba/0x3cf0 [ 1230.001650][T23627] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1230.001702][T23627] ? policy_nodemask+0xed/0x4f0 [ 1230.001734][T23627] alloc_pages_mpol+0x1fb/0x550 [ 1230.001767][T23627] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1230.001795][T23627] ? __split_huge_pmd+0x203/0x350 [ 1230.001850][T23627] ? __split_huge_pmd+0x203/0x350 [ 1230.001900][T23627] alloc_pages_noprof+0x131/0x390 [ 1230.001936][T23627] pte_alloc_one+0x1e/0x3e0 [ 1230.001974][T23627] __pte_alloc+0x6d/0x3f0 [ 1230.002027][T23627] ? __pfx___pte_alloc+0x10/0x10 [ 1230.002057][T23627] ? _raw_spin_unlock+0x28/0x50 [ 1230.002086][T23627] ? __pmd_alloc+0x6aa/0x9c0 [ 1230.002123][T23627] move_page_tables+0x257e/0x4500 [ 1230.002170][T23627] ? __pfx_copy_vma+0x10/0x10 [ 1230.002211][T23627] ? __pfx_css_rstat_updated+0x10/0x10 [ 1230.002257][T23627] ? __pfx_move_page_tables+0x10/0x10 [ 1230.002320][T23627] ? finish_task_switch.isra.0+0x200/0xb80 [ 1230.002358][T23627] copy_vma_and_data+0x25c/0x7c0 [ 1230.002403][T23627] ? __pfx_copy_vma_and_data+0x10/0x10 [ 1230.002460][T23627] ? __vma_start_write+0x17f/0x280 [ 1230.002496][T23627] ? __pfx___vma_start_write+0x10/0x10 [ 1230.002544][T23627] move_vma+0x51b/0x1890 [ 1230.002593][T23627] ? __pfx_move_vma+0x10/0x10 [ 1230.002639][T23627] ? mm_get_unmapped_area_vmflags+0xd7/0x130 [ 1230.002673][T23627] ? cap_mmap_addr+0x4b/0x120 [ 1230.002711][T23627] ? bpf_lsm_mmap_addr+0x9/0x30 [ 1230.002757][T23627] ? security_mmap_addr+0x71/0x1e0 [ 1230.002787][T23627] ? __get_unmapped_area+0x255/0x3e0 [ 1230.002823][T23627] ? vrm_set_new_addr+0x204/0x290 [ 1230.002869][T23627] mremap_to+0x1b7/0x450 [ 1230.002913][T23627] do_mremap+0xb76/0x2130 [ 1230.002971][T23627] ? __pfx_do_mremap+0x10/0x10 [ 1230.003031][T23627] ? ksys_write+0x190/0x250 [ 1230.003088][T23627] __do_sys_mremap+0x126/0x170 [ 1230.003130][T23627] ? __pfx___do_sys_mremap+0x10/0x10 [ 1230.003183][T23627] ? __x64_sys_futex+0x34f/0x4d0 [ 1230.003245][T23627] do_syscall_64+0x106/0xf80 [ 1230.003280][T23627] ? clear_bhb_loop+0x40/0x90 [ 1230.003318][T23627] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1230.003350][T23627] RIP: 0033:0x7fe64fd9c799 [ 1230.003376][T23627] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1230.003409][T23627] RSP: 002b:00007fe650ca3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1230.003439][T23627] RAX: ffffffffffffffda RBX: 00007fe650016090 RCX: 00007fe64fd9c799 [ 1230.003459][T23627] RDX: 0000000000000013 RSI: 0000000000000004 RDI: 0000200000000000 [ 1230.003478][T23627] RBP: 00007fe64fe32bd9 R08: 0000000100000000 R09: 0000000000000000 [ 1230.003497][T23627] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 1230.003515][T23627] R13: 00007fe650016128 R14: 00007fe650016090 R15: 00007ffcc802a398 [ 1230.003554][T23627] [ 1230.654904][T23639] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4159'. [ 1230.869353][ T5824] Bluetooth: hci4: command 0x0c1a tx timeout [ 1231.143170][T23651] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4163'. [ 1231.330067][T23660] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4165'. [ 1231.342294][T23658] bridge0: port 3(gretap0) entered blocking state [ 1231.350555][T23650] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4163'. [ 1231.353108][T23658] bridge0: port 3(gretap0) entered disabled state [ 1231.369236][T23658] gretap0: entered allmulticast mode [ 1231.408757][T23658] gretap0: entered promiscuous mode [ 1231.421641][T23658] bridge0: port 3(gretap0) entered blocking state [ 1231.428206][T23658] bridge0: port 3(gretap0) entered forwarding state [ 1231.756273][T13113] Bluetooth: hci0: command 0x2016 tx timeout [ 1231.756464][T21642] Bluetooth: hci1: command 0x0c1a tx timeout [ 1231.762499][T13113] Bluetooth: hci2: command 0x0c1a tx timeout [ 1232.153238][T23669] FAULT_INJECTION: forcing a failure. [ 1232.153238][T23669] name failslab, interval 1, probability 0, space 0, times 0 [ 1232.190353][T23669] CPU: 1 UID: 0 PID: 23669 Comm: syz.0.4174 Tainted: G L syzkaller #0 PREEMPT(full) [ 1232.190389][T23669] Tainted: [L]=SOFTLOCKUP [ 1232.190397][T23669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1232.190411][T23669] Call Trace: [ 1232.190419][T23669] [ 1232.190427][T23669] dump_stack_lvl+0x100/0x190 [ 1232.190474][T23669] should_fail_ex.cold+0x5/0xa [ 1232.190500][T23669] ? ima_alloc_init_template+0x19d/0x6d0 [ 1232.190532][T23669] should_failslab+0xc2/0x120 [ 1232.190554][T23669] __kmalloc_noprof+0xe0/0x850 [ 1232.190585][T23669] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1232.190619][T23669] ima_alloc_init_template+0x19d/0x6d0 [ 1232.190652][T23669] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1232.190684][T23669] ima_store_measurement+0x1e3/0x5b0 [ 1232.190724][T23669] ? __pfx_ima_store_measurement+0x10/0x10 [ 1232.190767][T23669] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1232.190801][T23669] process_measurement+0x19cc/0x2350 [ 1232.190838][T23669] ? stack_trace_save+0x8e/0xc0 [ 1232.190859][T23669] ? __pfx_process_measurement+0x10/0x10 [ 1232.190889][T23669] ? __lock_acquire+0x4a5/0x2630 [ 1232.190916][T23669] ? __kasan_slab_alloc+0x89/0x90 [ 1232.190969][T23669] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1232.191002][T23669] ? init_file+0x95/0x480 [ 1232.191026][T23669] ? alloc_empty_file+0x73/0x1c0 [ 1232.191057][T23669] ? alloc_file_pseudo+0x13a/0x230 [ 1232.191084][T23669] ? ksys_mmap_pgoff+0x232/0x650 [ 1232.191105][T23669] ? __x64_sys_mmap+0x125/0x190 [ 1232.191139][T23669] ? do_syscall_64+0x106/0xf80 [ 1232.191191][T23669] ? __pfx_aa_file_perm+0x10/0x10 [ 1232.191225][T23669] ima_file_mmap+0x1c4/0x1f0 [ 1232.191256][T23669] ? __pfx_ima_file_mmap+0x10/0x10 [ 1232.191294][T23669] security_mmap_file+0x278/0x9b0 [ 1232.191335][T23669] vm_mmap_pgoff+0xec/0x470 [ 1232.191392][T23669] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1232.191426][T23669] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1232.191469][T23669] ? hugetlbfs_get_inode+0x36e/0x750 [ 1232.191534][T23669] ksys_mmap_pgoff+0x273/0x650 [ 1232.191568][T23669] ? __x64_sys_futex+0x358/0x4d0 [ 1232.191611][T23669] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1232.191640][T23669] ? fput+0x79/0x100 [ 1232.191673][T23669] ? __pfx___x64_sys_futex+0x10/0x10 [ 1232.191715][T23669] ? ksys_write+0x1ac/0x250 [ 1232.191763][T23669] ? __pfx_ksys_write+0x10/0x10 [ 1232.191818][T23669] __x64_sys_mmap+0x125/0x190 [ 1232.191871][T23669] do_syscall_64+0x106/0xf80 [ 1232.191907][T23669] ? clear_bhb_loop+0x40/0x90 [ 1232.191948][T23669] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1232.191982][T23669] RIP: 0033:0x7fe64fd9c799 [ 1232.192010][T23669] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1232.192049][T23669] RSP: 002b:00007fe650cc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1232.192080][T23669] RAX: ffffffffffffffda RBX: 00007fe650015fa0 RCX: 00007fe64fd9c799 [ 1232.192101][T23669] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1232.192121][T23669] RBP: 00007fe64fe32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1232.192143][T23669] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1232.192162][T23669] R13: 00007fe650016038 R14: 00007fe650015fa0 R15: 00007ffcc802a398 [ 1232.192206][T23669] [ 1232.195503][ T30] audit: type=1804 audit(2147516388.511:68): pid=23669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.4174" name="anon_hugepage" dev="hugetlbfs" ino=117503 res=0 errno=0 [ 1233.628864][T23693] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4170'. [ 1233.650199][T23695] synth uevent: /devices/virtual/misc/rdma_cm: unknown uevent action string [ 1233.689755][T23695] misc rdma_cm: uevent: failed to send synthetic uevent: -22 [ 1233.746262][ T5824] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 1234.324710][T23708] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4175'. [ 1234.493309][T23710] FAULT_INJECTION: forcing a failure. [ 1234.493309][T23710] name failslab, interval 1, probability 0, space 0, times 0 [ 1234.519004][T23710] CPU: 0 UID: 0 PID: 23710 Comm: syz.1.4177 Tainted: G L syzkaller #0 PREEMPT(full) [ 1234.519055][T23710] Tainted: [L]=SOFTLOCKUP [ 1234.519068][T23710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1234.519088][T23710] Call Trace: [ 1234.519099][T23710] [ 1234.519111][T23710] dump_stack_lvl+0x100/0x190 [ 1234.519163][T23710] should_fail_ex.cold+0x5/0xa [ 1234.519200][T23710] ? ima_alloc_init_template+0x19d/0x6d0 [ 1234.519244][T23710] should_failslab+0xc2/0x120 [ 1234.519273][T23710] __kmalloc_noprof+0xe0/0x850 [ 1234.519317][T23710] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1234.519363][T23710] ima_alloc_init_template+0x19d/0x6d0 [ 1234.519409][T23710] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1234.519455][T23710] ima_store_measurement+0x1e3/0x5b0 [ 1234.519503][T23710] ? __pfx_ima_store_measurement+0x10/0x10 [ 1234.519572][T23710] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1234.519618][T23710] process_measurement+0x19cc/0x2350 [ 1234.519670][T23710] ? stack_trace_save+0x8e/0xc0 [ 1234.519702][T23710] ? __pfx_process_measurement+0x10/0x10 [ 1234.519743][T23710] ? __lock_acquire+0x4a5/0x2630 [ 1234.519780][T23710] ? __kasan_slab_alloc+0x89/0x90 [ 1234.519827][T23710] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1234.519871][T23710] ? init_file+0x95/0x480 [ 1234.519902][T23710] ? alloc_empty_file+0x73/0x1c0 [ 1234.519944][T23710] ? alloc_file_pseudo+0x13a/0x230 [ 1234.519975][T23710] ? ksys_mmap_pgoff+0x232/0x650 [ 1234.520001][T23710] ? __x64_sys_mmap+0x125/0x190 [ 1234.520045][T23710] ? do_syscall_64+0x106/0xf80 [ 1234.520112][T23710] ? __pfx_aa_file_perm+0x10/0x10 [ 1234.520153][T23710] ima_file_mmap+0x1c4/0x1f0 [ 1234.520192][T23710] ? __pfx_ima_file_mmap+0x10/0x10 [ 1234.520238][T23710] security_mmap_file+0x278/0x9b0 [ 1234.520289][T23710] vm_mmap_pgoff+0xec/0x470 [ 1234.520322][T23710] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1234.520349][T23710] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1234.520386][T23710] ? hugetlbfs_get_inode+0x36e/0x750 [ 1234.520442][T23710] ksys_mmap_pgoff+0x273/0x650 [ 1234.520471][T23710] ? __x64_sys_futex+0x358/0x4d0 [ 1234.520509][T23710] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1234.520543][T23710] ? xfd_validate_state+0x129/0x190 [ 1234.520591][T23710] __x64_sys_mmap+0x125/0x190 [ 1234.520638][T23710] do_syscall_64+0x106/0xf80 [ 1234.520668][T23710] ? clear_bhb_loop+0x40/0x90 [ 1234.520703][T23710] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1234.520733][T23710] RIP: 0033:0x7fa22439c799 [ 1234.520757][T23710] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1234.520786][T23710] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1234.520814][T23710] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1234.520834][T23710] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1234.520851][T23710] RBP: 00007fa224432bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1234.520869][T23710] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1234.520886][T23710] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1234.520923][T23710] [ 1234.521858][ T30] audit: type=1804 audit(2147516390.841:69): pid=23710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.4177" name="anon_hugepage" dev="hugetlbfs" ino=116704 res=0 errno=0 [ 1236.834714][T23749] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4184'. [ 1236.877799][T23728] FAULT_INJECTION: forcing a failure. [ 1236.877799][T23728] name failslab, interval 1, probability 0, space 0, times 0 [ 1237.004800][T23728] CPU: 1 UID: 0 PID: 23728 Comm: syz.1.4179 Tainted: G L syzkaller #0 PREEMPT(full) [ 1237.004857][T23728] Tainted: [L]=SOFTLOCKUP [ 1237.004869][T23728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1237.004890][T23728] Call Trace: [ 1237.004902][T23728] [ 1237.004915][T23728] dump_stack_lvl+0x100/0x190 [ 1237.004972][T23728] should_fail_ex.cold+0x5/0xa [ 1237.005012][T23728] should_failslab+0xc2/0x120 [ 1237.005046][T23728] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1237.005094][T23728] ? security_inode_alloc+0x3b/0x2c0 [ 1237.005143][T23728] ? lockdep_init_map_type+0x5c/0x250 [ 1237.005193][T23728] security_inode_alloc+0x3b/0x2c0 [ 1237.005242][T23728] inode_init_always_gfp+0xced/0x1040 [ 1237.005304][T23728] alloc_inode+0x8e/0x250 [ 1237.005356][T23728] new_inode+0x22/0x1c0 [ 1237.005400][T23728] hugetlbfs_get_inode+0x313/0x750 [ 1237.005463][T23728] hugetlb_file_setup+0x3cc/0x5b0 [ 1237.005512][T23728] newseg+0xabb/0xed0 [ 1237.005552][T23728] ? __pfx_newseg+0x10/0x10 [ 1237.005584][T23728] ? down_write+0x146/0x1f0 [ 1237.005628][T23728] ? ksys_write+0x190/0x250 [ 1237.005679][T23728] ? ksys_write+0x190/0x250 [ 1237.005746][T23728] ipcget+0xee/0xf50 [ 1237.005776][T23728] ? do_futex+0x192/0x350 [ 1237.005816][T23728] ? __pfx_do_futex+0x10/0x10 [ 1237.005886][T23728] ? __pfx_ipcget+0x10/0x10 [ 1237.005922][T23728] ? __x64_sys_futex+0x34f/0x4d0 [ 1237.005978][T23728] ? __x64_sys_futex+0x358/0x4d0 [ 1237.006024][T23728] __x64_sys_shmget+0x13b/0x1b0 [ 1237.006056][T23728] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1237.006109][T23728] do_syscall_64+0x106/0xf80 [ 1237.006142][T23728] ? clear_bhb_loop+0x40/0x90 [ 1237.006180][T23728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1237.006212][T23728] RIP: 0033:0x7fa22439c799 [ 1237.006238][T23728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1237.006269][T23728] RSP: 002b:00007fa225221028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1237.006299][T23728] RAX: ffffffffffffffda RBX: 00007fa224616270 RCX: 00007fa22439c799 [ 1237.006321][T23728] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1237.006346][T23728] RBP: 00007fa224432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1237.006365][T23728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1237.006383][T23728] R13: 00007fa224616308 R14: 00007fa224616270 R15: 00007ffc6153cb58 [ 1237.006425][T23728] [ 1238.926856][T23758] FAULT_INJECTION: forcing a failure. [ 1238.926856][T23758] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.956005][T23758] CPU: 1 UID: 0 PID: 23758 Comm: syz.2.4186 Tainted: G L syzkaller #0 PREEMPT(full) [ 1238.956043][T23758] Tainted: [L]=SOFTLOCKUP [ 1238.956052][T23758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1238.956067][T23758] Call Trace: [ 1238.956075][T23758] [ 1238.956085][T23758] dump_stack_lvl+0x100/0x190 [ 1238.956125][T23758] should_fail_ex.cold+0x5/0xa [ 1238.956160][T23758] should_failslab+0xc2/0x120 [ 1238.956183][T23758] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1238.956217][T23758] ? security_inode_alloc+0x3b/0x2c0 [ 1238.956251][T23758] ? lockdep_init_map_type+0x5c/0x250 [ 1238.956287][T23758] security_inode_alloc+0x3b/0x2c0 [ 1238.956321][T23758] inode_init_always_gfp+0xced/0x1040 [ 1238.956364][T23758] alloc_inode+0x8e/0x250 [ 1238.956395][T23758] new_inode+0x22/0x1c0 [ 1238.956427][T23758] hugetlbfs_get_inode+0x313/0x750 [ 1238.956470][T23758] hugetlb_file_setup+0x3cc/0x5b0 [ 1238.956497][T23758] newseg+0xabb/0xed0 [ 1238.956524][T23758] ? __pfx_newseg+0x10/0x10 [ 1238.956546][T23758] ? down_write+0x146/0x1f0 [ 1238.956577][T23758] ? ksys_write+0x190/0x250 [ 1238.956632][T23758] ? ksys_write+0x190/0x250 [ 1238.956673][T23758] ipcget+0xee/0xf50 [ 1238.956709][T23758] ? do_futex+0x192/0x350 [ 1238.956741][T23758] ? __pfx_do_futex+0x10/0x10 [ 1238.956796][T23758] ? __pfx_ipcget+0x10/0x10 [ 1238.956822][T23758] ? __x64_sys_futex+0x34f/0x4d0 [ 1238.956852][T23758] ? __x64_sys_futex+0x358/0x4d0 [ 1238.956888][T23758] __x64_sys_shmget+0x13b/0x1b0 [ 1238.956913][T23758] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1238.956947][T23758] do_syscall_64+0x106/0xf80 [ 1238.956973][T23758] ? clear_bhb_loop+0x40/0x90 [ 1238.957003][T23758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1238.957027][T23758] RIP: 0033:0x7f8c85d9c799 [ 1238.957047][T23758] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1238.957072][T23758] RSP: 002b:00007f8c86cfa028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1238.957095][T23758] RAX: ffffffffffffffda RBX: 00007f8c86016180 RCX: 00007f8c85d9c799 [ 1238.957111][T23758] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1238.957126][T23758] RBP: 00007f8c85e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1238.957147][T23758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1238.957162][T23758] R13: 00007f8c86016218 R14: 00007f8c86016180 R15: 00007ffc16d325b8 [ 1238.957193][T23758] [ 1239.216688][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1239.223042][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1240.727888][T23797] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4194'. [ 1241.133067][T23795] FAULT_INJECTION: forcing a failure. [ 1241.133067][T23795] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.590820][T23795] CPU: 1 UID: 0 PID: 23795 Comm: syz.2.4192 Tainted: G L syzkaller #0 PREEMPT(full) [ 1241.590870][T23795] Tainted: [L]=SOFTLOCKUP [ 1241.590881][T23795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1241.590896][T23795] Call Trace: [ 1241.590904][T23795] [ 1241.590914][T23795] dump_stack_lvl+0x100/0x190 [ 1241.590954][T23795] should_fail_ex.cold+0x5/0xa [ 1241.590981][T23795] should_failslab+0xc2/0x120 [ 1241.591004][T23795] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1241.591039][T23795] ? security_inode_alloc+0x3b/0x2c0 [ 1241.591072][T23795] ? lockdep_init_map_type+0x5c/0x250 [ 1241.591108][T23795] security_inode_alloc+0x3b/0x2c0 [ 1241.591148][T23795] inode_init_always_gfp+0xced/0x1040 [ 1241.591191][T23795] alloc_inode+0x8e/0x250 [ 1241.591221][T23795] new_inode+0x22/0x1c0 [ 1241.591252][T23795] hugetlbfs_get_inode+0x313/0x750 [ 1241.591296][T23795] hugetlb_file_setup+0x3cc/0x5b0 [ 1241.591323][T23795] newseg+0xabb/0xed0 [ 1241.591350][T23795] ? __pfx_newseg+0x10/0x10 [ 1241.591372][T23795] ? down_write+0x146/0x1f0 [ 1241.591403][T23795] ? ksys_write+0x190/0x250 [ 1241.591438][T23795] ? ksys_write+0x190/0x250 [ 1241.591478][T23795] ipcget+0xee/0xf50 [ 1241.591500][T23795] ? do_futex+0x192/0x350 [ 1241.591531][T23795] ? __pfx_do_futex+0x10/0x10 [ 1241.591566][T23795] ? __pfx_ipcget+0x10/0x10 [ 1241.591591][T23795] ? __x64_sys_futex+0x34f/0x4d0 [ 1241.591620][T23795] ? __x64_sys_futex+0x358/0x4d0 [ 1241.591655][T23795] __x64_sys_shmget+0x13b/0x1b0 [ 1241.591679][T23795] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1241.591714][T23795] do_syscall_64+0x106/0xf80 [ 1241.591740][T23795] ? clear_bhb_loop+0x40/0x90 [ 1241.591769][T23795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1241.591794][T23795] RIP: 0033:0x7f8c85d9c799 [ 1241.591813][T23795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1241.591838][T23795] RSP: 002b:00007f8c86c97028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1241.591860][T23795] RAX: ffffffffffffffda RBX: 00007f8c86016450 RCX: 00007f8c85d9c799 [ 1241.591877][T23795] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1241.591892][T23795] RBP: 00007f8c85e32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1241.591906][T23795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1241.591920][T23795] R13: 00007f8c860164e8 R14: 00007f8c86016450 R15: 00007ffc16d325b8 [ 1241.591950][T23795] [ 1242.190512][T23816] FAULT_INJECTION: forcing a failure. [ 1242.190512][T23816] name failslab, interval 1, probability 0, space 0, times 0 [ 1242.291495][T23816] CPU: 1 UID: 0 PID: 23816 Comm: syz.3.4200 Tainted: G L syzkaller #0 PREEMPT(full) [ 1242.291530][T23816] Tainted: [L]=SOFTLOCKUP [ 1242.291538][T23816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1242.291551][T23816] Call Trace: [ 1242.291559][T23816] [ 1242.291567][T23816] dump_stack_lvl+0x100/0x190 [ 1242.291605][T23816] should_fail_ex.cold+0x5/0xa [ 1242.291630][T23816] ? ima_alloc_init_template+0x19d/0x6d0 [ 1242.291661][T23816] should_failslab+0xc2/0x120 [ 1242.291683][T23816] __kmalloc_noprof+0xe0/0x850 [ 1242.291715][T23816] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1242.291748][T23816] ima_alloc_init_template+0x19d/0x6d0 [ 1242.291781][T23816] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1242.291837][T23816] ima_store_measurement+0x1e3/0x5b0 [ 1242.291887][T23816] ? __pfx_ima_store_measurement+0x10/0x10 [ 1242.291942][T23816] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1242.291987][T23816] process_measurement+0x19cc/0x2350 [ 1242.292039][T23816] ? stack_trace_save+0x8e/0xc0 [ 1242.292068][T23816] ? __pfx_process_measurement+0x10/0x10 [ 1242.292109][T23816] ? __lock_acquire+0x4a5/0x2630 [ 1242.292143][T23816] ? __kasan_slab_alloc+0x89/0x90 [ 1242.292182][T23816] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1242.292219][T23816] ? init_file+0x95/0x480 [ 1242.292245][T23816] ? alloc_empty_file+0x73/0x1c0 [ 1242.292272][T23816] ? alloc_file_pseudo+0x13a/0x230 [ 1242.292304][T23816] ? ksys_mmap_pgoff+0x232/0x650 [ 1242.292330][T23816] ? __x64_sys_mmap+0x125/0x190 [ 1242.292374][T23816] ? do_syscall_64+0x106/0xf80 [ 1242.292446][T23816] ? __pfx_aa_file_perm+0x10/0x10 [ 1242.292496][T23816] ima_file_mmap+0x1c4/0x1f0 [ 1242.292526][T23816] ? __pfx_ima_file_mmap+0x10/0x10 [ 1242.292561][T23816] security_mmap_file+0x278/0x9b0 [ 1242.292599][T23816] vm_mmap_pgoff+0xec/0x470 [ 1242.292626][T23816] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1242.292647][T23816] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1242.292675][T23816] ? hugetlbfs_get_inode+0x36e/0x750 [ 1242.292720][T23816] ksys_mmap_pgoff+0x273/0x650 [ 1242.292742][T23816] ? __x64_sys_futex+0x358/0x4d0 [ 1242.292772][T23816] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1242.292794][T23816] ? xfd_validate_state+0x129/0x190 [ 1242.292837][T23816] __x64_sys_mmap+0x125/0x190 [ 1242.292873][T23816] do_syscall_64+0x106/0xf80 [ 1242.292896][T23816] ? clear_bhb_loop+0x40/0x90 [ 1242.292923][T23816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1242.292946][T23816] RIP: 0033:0x7fabb999c799 [ 1242.292964][T23816] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1242.292986][T23816] RSP: 002b:00007fabba8be028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1242.293008][T23816] RAX: ffffffffffffffda RBX: 00007fabb9c15fa0 RCX: 00007fabb999c799 [ 1242.293023][T23816] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1242.293037][T23816] RBP: 00007fabb9a32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1242.293052][T23816] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1242.293066][T23816] R13: 00007fabb9c16038 R14: 00007fabb9c15fa0 R15: 00007ffd8261c088 [ 1242.293096][T23816] [ 1242.293277][ T30] audit: type=1804 audit(2147516398.611:70): pid=23816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.4200" name="anon_hugepage" dev="hugetlbfs" ino=117994 res=0 errno=0 [ 1242.755958][T23819] input: f as /devices/virtual/input/input17 [ 1242.931636][T23833] FAULT_INJECTION: forcing a failure. [ 1242.931636][T23833] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1243.002711][T23833] CPU: 1 UID: 0 PID: 23833 Comm: syz.3.4203 Tainted: G L syzkaller #0 PREEMPT(full) [ 1243.002766][T23833] Tainted: [L]=SOFTLOCKUP [ 1243.002778][T23833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1243.002797][T23833] Call Trace: [ 1243.002807][T23833] [ 1243.002820][T23833] dump_stack_lvl+0x100/0x190 [ 1243.002872][T23833] should_fail_ex.cold+0x5/0xa [ 1243.002929][T23833] _copy_from_user+0x2e/0xd0 [ 1243.002982][T23833] copy_msghdr_from_user+0x9f/0x4f0 [ 1243.003034][T23833] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1243.003106][T23833] ___sys_sendmsg+0x106/0x1e0 [ 1243.003159][T23833] ? __pfx____sys_sendmsg+0x10/0x10 [ 1243.003259][T23833] __sys_sendmsg+0x170/0x220 [ 1243.003299][T23833] ? __pfx___sys_sendmsg+0x10/0x10 [ 1243.003363][T23833] do_syscall_64+0x106/0xf80 [ 1243.003400][T23833] ? clear_bhb_loop+0x40/0x90 [ 1243.003440][T23833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1243.003474][T23833] RIP: 0033:0x7fabb999c799 [ 1243.003502][T23833] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1243.003535][T23833] RSP: 002b:00007fabba8be028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1243.003567][T23833] RAX: ffffffffffffffda RBX: 00007fabb9c15fa0 RCX: 00007fabb999c799 [ 1243.003590][T23833] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000003 [ 1243.003610][T23833] RBP: 00007fabba8be090 R08: 0000000000000000 R09: 0000000000000000 [ 1243.003631][T23833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1243.003650][T23833] R13: 00007fabb9c16038 R14: 00007fabb9c15fa0 R15: 00007ffd8261c088 [ 1243.003703][T23833] [ 1243.174243][T23830] FAULT_INJECTION: forcing a failure. [ 1243.174243][T23830] name failslab, interval 1, probability 0, space 0, times 0 [ 1243.189124][T23830] CPU: 1 UID: 0 PID: 23830 Comm: syz.1.4202 Tainted: G L syzkaller #0 PREEMPT(full) [ 1243.189179][T23830] Tainted: [L]=SOFTLOCKUP [ 1243.189193][T23830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1243.189214][T23830] Call Trace: [ 1243.189226][T23830] [ 1243.189239][T23830] dump_stack_lvl+0x100/0x190 [ 1243.189294][T23830] should_fail_ex.cold+0x5/0xa [ 1243.189334][T23830] should_failslab+0xc2/0x120 [ 1243.189367][T23830] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1243.189417][T23830] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1243.189478][T23830] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 1243.189529][T23830] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 1243.189583][T23830] alloc_inode+0x68/0x250 [ 1243.189624][T23830] new_inode+0x22/0x1c0 [ 1243.189680][T23830] hugetlbfs_get_inode+0x313/0x750 [ 1243.189744][T23830] hugetlb_file_setup+0x15b/0x5b0 [ 1243.189781][T23830] ksys_mmap_pgoff+0x232/0x650 [ 1243.189824][T23830] ? __x64_sys_futex+0x358/0x4d0 [ 1243.189869][T23830] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1243.189900][T23830] ? xfd_validate_state+0x129/0x190 [ 1243.189970][T23830] __x64_sys_mmap+0x125/0x190 [ 1243.190023][T23830] do_syscall_64+0x106/0xf80 [ 1243.190060][T23830] ? clear_bhb_loop+0x40/0x90 [ 1243.190100][T23830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1243.190134][T23830] RIP: 0033:0x7fa22439c799 [ 1243.190162][T23830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1243.190194][T23830] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1243.190227][T23830] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1243.190250][T23830] RDX: ffffffffffffffff RSI: 0000000000000002 RDI: 0000000000000000 [ 1243.190271][T23830] RBP: 00007fa224432bd9 R08: 0000000000000602 R09: 0000300000000000 [ 1243.190294][T23830] R10: 0000000000044eb1 R11: 0000000000000246 R12: 0000000000000000 [ 1243.190314][T23830] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1243.190357][T23830] [ 1243.559002][T23837] Invalid ELF header magic: != ELF [ 1243.764022][T23842] kafs: addr_prefs: Too many elements in string [ 1243.985203][T23846] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input18 [ 1247.410326][T23894] kafs: addr_prefs: Too many elements in string [ 1247.924964][T23899] FAULT_INJECTION: forcing a failure. [ 1247.924964][T23899] name failslab, interval 1, probability 0, space 0, times 0 [ 1247.991723][T23899] CPU: 1 UID: 0 PID: 23899 Comm: syz.2.4216 Tainted: G L syzkaller #0 PREEMPT(full) [ 1247.991777][T23899] Tainted: [L]=SOFTLOCKUP [ 1247.991789][T23899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1247.991809][T23899] Call Trace: [ 1247.991821][T23899] [ 1247.991835][T23899] dump_stack_lvl+0x100/0x190 [ 1247.991890][T23899] should_fail_ex.cold+0x5/0xa [ 1247.991927][T23899] ? ima_alloc_init_template+0x19d/0x6d0 [ 1247.991974][T23899] should_failslab+0xc2/0x120 [ 1247.992007][T23899] __kmalloc_noprof+0xe0/0x850 [ 1247.992054][T23899] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1247.992102][T23899] ima_alloc_init_template+0x19d/0x6d0 [ 1247.992157][T23899] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1247.992204][T23899] ima_store_measurement+0x1e3/0x5b0 [ 1247.992253][T23899] ? __pfx_ima_store_measurement+0x10/0x10 [ 1247.992317][T23899] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1247.992366][T23899] process_measurement+0x19cc/0x2350 [ 1247.992421][T23899] ? stack_trace_save+0x8e/0xc0 [ 1247.992454][T23899] ? __pfx_process_measurement+0x10/0x10 [ 1247.992497][T23899] ? __lock_acquire+0x4a5/0x2630 [ 1247.992547][T23899] ? __kasan_slab_alloc+0x89/0x90 [ 1247.992595][T23899] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1247.992645][T23899] ? init_file+0x95/0x480 [ 1247.992677][T23899] ? alloc_empty_file+0x73/0x1c0 [ 1247.992712][T23899] ? alloc_file_pseudo+0x13a/0x230 [ 1247.992750][T23899] ? ksys_mmap_pgoff+0x232/0x650 [ 1247.992778][T23899] ? __x64_sys_mmap+0x125/0x190 [ 1247.992826][T23899] ? do_syscall_64+0x106/0xf80 [ 1247.992901][T23899] ? __pfx_aa_file_perm+0x10/0x10 [ 1247.992949][T23899] ima_file_mmap+0x1c4/0x1f0 [ 1247.992992][T23899] ? __pfx_ima_file_mmap+0x10/0x10 [ 1247.993044][T23899] security_mmap_file+0x278/0x9b0 [ 1247.993099][T23899] vm_mmap_pgoff+0xec/0x470 [ 1247.993140][T23899] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1247.993172][T23899] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1247.993214][T23899] ? hugetlbfs_get_inode+0x36e/0x750 [ 1247.993280][T23899] ksys_mmap_pgoff+0x273/0x650 [ 1247.993317][T23899] ? __x64_sys_futex+0x358/0x4d0 [ 1247.993360][T23899] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1247.993393][T23899] ? xfd_validate_state+0x129/0x190 [ 1247.993448][T23899] __x64_sys_mmap+0x125/0x190 [ 1247.993500][T23899] do_syscall_64+0x106/0xf80 [ 1247.993544][T23899] ? clear_bhb_loop+0x40/0x90 [ 1247.993586][T23899] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1247.993620][T23899] RIP: 0033:0x7f8c85d9c799 [ 1247.993647][T23899] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1247.993681][T23899] RSP: 002b:00007f8c86d3c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1247.993714][T23899] RAX: ffffffffffffffda RBX: 00007f8c86015fa0 RCX: 00007f8c85d9c799 [ 1247.993736][T23899] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1247.993755][T23899] RBP: 00007f8c85e32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1247.993778][T23899] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1247.993798][T23899] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1247.993843][T23899] [ 1248.722247][ T30] audit: type=1804 audit(2147516404.941:71): pid=23899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.4216" name="anon_hugepage" dev="hugetlbfs" ino=119307 res=0 errno=0 [ 1248.867600][ T5824] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 1249.045573][T23907] FAULT_INJECTION: forcing a failure. [ 1249.045573][T23907] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1249.075942][T23907] CPU: 1 UID: 0 PID: 23907 Comm: syz.2.4218 Tainted: G L syzkaller #0 PREEMPT(full) [ 1249.075991][T23907] Tainted: [L]=SOFTLOCKUP [ 1249.076007][T23907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1249.076025][T23907] Call Trace: [ 1249.076036][T23907] [ 1249.076048][T23907] dump_stack_lvl+0x100/0x190 [ 1249.076098][T23907] should_fail_ex.cold+0x5/0xa [ 1249.076134][T23907] _copy_to_user+0x32/0xd0 [ 1249.076186][T23907] simple_read_from_buffer+0xcb/0x170 [ 1249.076243][T23907] proc_fail_nth_read+0x1af/0x230 [ 1249.076282][T23907] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1249.076321][T23907] ? rw_verify_area+0xce/0x6d0 [ 1249.076363][T23907] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1249.076399][T23907] vfs_read+0x1e4/0xb30 [ 1249.076452][T23907] ? __pfx_vfs_read+0x10/0x10 [ 1249.076497][T23907] ? __fget_files+0x215/0x3d0 [ 1249.076574][T23907] ? __fget_files+0x21f/0x3d0 [ 1249.076636][T23907] ksys_read+0x12a/0x250 [ 1249.076683][T23907] ? __pfx_ksys_read+0x10/0x10 [ 1249.076742][T23907] do_syscall_64+0x106/0xf80 [ 1249.076777][T23907] ? clear_bhb_loop+0x40/0x90 [ 1249.076816][T23907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1249.076849][T23907] RIP: 0033:0x7f8c85d5cfce [ 1249.076877][T23907] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1249.076910][T23907] RSP: 002b:00007f8c86d3bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1249.076941][T23907] RAX: ffffffffffffffda RBX: 00007f8c86d3c6c0 RCX: 00007f8c85d5cfce [ 1249.076962][T23907] RDX: 000000000000000f RSI: 00007f8c86d3c0a0 RDI: 0000000000000003 [ 1249.076982][T23907] RBP: 00007f8c86d3c090 R08: 0000000000000000 R09: 0000000000000000 [ 1249.077001][T23907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1249.077020][T23907] R13: 00007f8c86016038 R14: 00007f8c86015fa0 R15: 00007ffc16d325b8 [ 1249.077081][T23907] [ 1249.337639][T23909] FAULT_INJECTION: forcing a failure. [ 1249.337639][T23909] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1249.367311][T23909] CPU: 0 UID: 0 PID: 23909 Comm: syz.1.4219 Tainted: G L syzkaller #0 PREEMPT(full) [ 1249.367357][T23909] Tainted: [L]=SOFTLOCKUP [ 1249.367368][T23909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1249.367386][T23909] Call Trace: [ 1249.367395][T23909] [ 1249.367432][T23909] dump_stack_lvl+0x100/0x190 [ 1249.367482][T23909] should_fail_ex.cold+0x5/0xa [ 1249.367519][T23909] _copy_from_iter+0x1f4/0x1690 [ 1249.367576][T23909] ? alloc_pages_mpol+0x25a/0x550 [ 1249.367606][T23909] ? __pfx__copy_from_iter+0x10/0x10 [ 1249.367657][T23909] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1249.367705][T23909] copy_page_from_iter+0xde/0x180 [ 1249.367763][T23909] tun_build_skb.constprop.0+0x2ea/0x15d0 [ 1249.367822][T23909] ? __pfx_tun_build_skb.constprop.0+0x10/0x10 [ 1249.367878][T23909] ? __lock_acquire+0x4a5/0x2630 [ 1249.367943][T23909] tun_get_user+0x16d0/0x3e10 [ 1249.368005][T23909] ? __pfx_tun_get_user+0x10/0x10 [ 1249.368051][T23909] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 1249.368118][T23909] ? find_held_lock+0x2b/0x80 [ 1249.368151][T23909] ? tun_get+0x191/0x370 [ 1249.368189][T23909] ? tun_get+0x191/0x370 [ 1249.368242][T23909] tun_chr_write_iter+0xdc/0x200 [ 1249.368291][T23909] vfs_write+0x6ac/0x1070 [ 1249.368342][T23909] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 1249.368391][T23909] ? __pfx_vfs_write+0x10/0x10 [ 1249.368443][T23909] ? find_held_lock+0x2b/0x80 [ 1249.368500][T23909] __x64_sys_pwrite64+0x1eb/0x250 [ 1249.368554][T23909] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 1249.368620][T23909] do_syscall_64+0x106/0xf80 [ 1249.368657][T23909] ? clear_bhb_loop+0x40/0x90 [ 1249.368699][T23909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1249.368732][T23909] RIP: 0033:0x7fa22439c799 [ 1249.368759][T23909] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1249.368803][T23909] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 1249.368833][T23909] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1249.368854][T23909] RDX: 000000000000004e RSI: 0000200000000600 RDI: 00000000000000c8 [ 1249.368872][T23909] RBP: 00007fa224432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1249.368891][T23909] R10: 00000000000008bd R11: 0000000000000246 R12: 0000000000000000 [ 1249.368909][T23909] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1249.368951][T23909] [ 1249.649708][T23912] Invalid ELF header magic: != ELF [ 1251.240324][T23931] kafs: addr_prefs: Too many elements in string [ 1252.341409][T23951] Invalid ELF header magic: != ELF [ 1253.177320][T23972] kafs: addr_prefs: Too many elements in string [ 1254.888016][T23997] FAULT_INJECTION: forcing a failure. [ 1254.888016][T23997] name failslab, interval 1, probability 0, space 0, times 0 [ 1254.954659][T23997] CPU: 0 UID: 0 PID: 23997 Comm: syz.0.4239 Tainted: G L syzkaller #0 PREEMPT(full) [ 1254.954714][T23997] Tainted: [L]=SOFTLOCKUP [ 1254.954734][T23997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1254.954756][T23997] Call Trace: [ 1254.954769][T23997] [ 1254.954783][T23997] dump_stack_lvl+0x100/0x190 [ 1254.954841][T23997] should_fail_ex.cold+0x5/0xa [ 1254.954882][T23997] ? ima_alloc_init_template+0x19d/0x6d0 [ 1254.954932][T23997] should_failslab+0xc2/0x120 [ 1254.954965][T23997] __kmalloc_noprof+0xe0/0x850 [ 1254.955015][T23997] ? take_dentry_name_snapshot+0x30b/0x7c0 [ 1254.955067][T23997] ima_alloc_init_template+0x19d/0x6d0 [ 1254.955118][T23997] ? take_dentry_name_snapshot+0x310/0x7c0 [ 1254.955169][T23997] ima_store_measurement+0x1e3/0x5b0 [ 1254.955222][T23997] ? __pfx_ima_store_measurement+0x10/0x10 [ 1254.955290][T23997] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 1254.955346][T23997] process_measurement+0x19cc/0x2350 [ 1254.955403][T23997] ? stack_trace_save+0x8e/0xc0 [ 1254.955438][T23997] ? __pfx_process_measurement+0x10/0x10 [ 1254.955482][T23997] ? __lock_acquire+0x4a5/0x2630 [ 1254.955523][T23997] ? __kasan_slab_alloc+0x89/0x90 [ 1254.955576][T23997] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 1254.955624][T23997] ? init_file+0x95/0x480 [ 1254.955669][T23997] ? alloc_empty_file+0x73/0x1c0 [ 1254.955705][T23997] ? alloc_file_pseudo+0x13a/0x230 [ 1254.955748][T23997] ? ksys_mmap_pgoff+0x232/0x650 [ 1254.955778][T23997] ? __x64_sys_mmap+0x125/0x190 [ 1254.955824][T23997] ? do_syscall_64+0x106/0xf80 [ 1254.955899][T23997] ? __pfx_aa_file_perm+0x10/0x10 [ 1254.955949][T23997] ima_file_mmap+0x1c4/0x1f0 [ 1254.955994][T23997] ? __pfx_ima_file_mmap+0x10/0x10 [ 1254.956047][T23997] security_mmap_file+0x278/0x9b0 [ 1254.956106][T23997] vm_mmap_pgoff+0xec/0x470 [ 1254.956154][T23997] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1254.956205][T23997] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1254.956250][T23997] ? hugetlbfs_get_inode+0x36e/0x750 [ 1254.956319][T23997] ksys_mmap_pgoff+0x273/0x650 [ 1254.956357][T23997] ? __x64_sys_futex+0x358/0x4d0 [ 1254.956403][T23997] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 1254.956437][T23997] ? xfd_validate_state+0x129/0x190 [ 1254.956493][T23997] __x64_sys_mmap+0x125/0x190 [ 1254.956566][T23997] do_syscall_64+0x106/0xf80 [ 1254.956604][T23997] ? clear_bhb_loop+0x40/0x90 [ 1254.956648][T23997] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1254.956684][T23997] RIP: 0033:0x7fe64fd9c799 [ 1254.956713][T23997] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1254.956754][T23997] RSP: 002b:00007fe650ca3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1254.956788][T23997] RAX: ffffffffffffffda RBX: 00007fe650016090 RCX: 00007fe64fd9c799 [ 1254.956811][T23997] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000 [ 1254.956831][T23997] RBP: 00007fe64fe32bd9 R08: ffffffffffffffff R09: 0000300000000000 [ 1254.956854][T23997] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000 [ 1254.956875][T23997] R13: 00007fe650016128 R14: 00007fe650016090 R15: 00007ffcc802a398 [ 1254.956921][T23997] [ 1255.686502][ T30] audit: type=1804 audit(2147516411.981:72): pid=23997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.4239" name="anon_hugepage" dev="hugetlbfs" ino=118467 res=0 errno=0 [ 1256.504647][T24005] veth1_to_batadv: entered promiscuous mode [ 1256.636112][T24005] veth1_to_batadv: left promiscuous mode [ 1257.071564][T24015] NFSD: Failed to start, no listeners configured. [ 1257.255580][T24020] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4244'. [ 1257.684170][ T5824] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 1257.930161][T24023] FAULT_INJECTION: forcing a failure. [ 1257.930161][T24023] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.979097][T24023] CPU: 1 UID: 0 PID: 24023 Comm: syz.3.4242 Tainted: G L syzkaller #0 PREEMPT(full) [ 1257.979152][T24023] Tainted: [L]=SOFTLOCKUP [ 1257.979165][T24023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1257.979184][T24023] Call Trace: [ 1257.979195][T24023] [ 1257.979210][T24023] dump_stack_lvl+0x100/0x190 [ 1257.979270][T24023] should_fail_ex.cold+0x5/0xa [ 1257.979311][T24023] should_failslab+0xc2/0x120 [ 1257.979346][T24023] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1257.979406][T24023] ? snd_seq_port_connect+0x61/0x560 [ 1257.979464][T24023] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 1257.979507][T24023] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 1257.979556][T24023] snd_seq_port_connect+0x61/0x560 [ 1257.979602][T24023] ? _raw_read_unlock+0x28/0x50 [ 1257.979635][T24023] ? check_subscription_permission.isra.0+0x146/0x240 [ 1257.979690][T24023] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 1257.979745][T24023] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 1257.979798][T24023] ? do_raw_spin_lock+0x128/0x260 [ 1257.979860][T24023] call_seq_client_ctl+0xa3/0x130 [ 1257.979907][T24023] snd_seq_kernel_client_ctl+0x77/0xd0 [ 1257.979955][T24023] snd_seq_oss_midi_open+0x5ad/0x6b0 [ 1257.980011][T24023] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 1257.980044][T24023] ? snd_seq_oss_midi_reset+0x11a/0x4c0 [ 1257.980092][T24023] ? __mutex_lock+0x26a/0x1b90 [ 1257.980141][T24023] snd_seq_oss_synth_reset+0x439/0x8e0 [ 1257.980199][T24023] ? __pfx___mutex_lock+0x10/0x10 [ 1257.980239][T24023] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 1257.980298][T24023] ? __pfx___fsnotify_parent+0x10/0x10 [ 1257.980361][T24023] snd_seq_oss_reset+0x73/0x290 [ 1257.980420][T24023] ? __pfx_odev_release+0x10/0x10 [ 1257.980466][T24023] snd_seq_oss_release+0x7c/0x180 [ 1257.980524][T24023] ? __pfx_odev_release+0x10/0x10 [ 1257.980563][T24023] odev_release+0x56/0xa0 [ 1257.980603][T24023] __fput+0x3ff/0xb40 [ 1257.980646][T24023] task_work_run+0x150/0x240 [ 1257.980692][T24023] ? __pfx_task_work_run+0x10/0x10 [ 1257.980746][T24023] exit_to_user_mode_loop+0x100/0x4a0 [ 1257.980791][T24023] do_syscall_64+0x668/0xf80 [ 1257.980824][T24023] ? clear_bhb_loop+0x40/0x90 [ 1257.980862][T24023] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1257.980894][T24023] RIP: 0033:0x7fabb999c799 [ 1257.980921][T24023] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1257.980953][T24023] RSP: 002b:00007fabba819028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1257.980984][T24023] RAX: 0000000000000000 RBX: 00007fabb9c16450 RCX: 00007fabb999c799 [ 1257.981005][T24023] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 1257.981023][T24023] RBP: 00007fabb9a32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1257.981042][T24023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1257.981060][T24023] R13: 00007fabb9c164e8 R14: 00007fabb9c16450 R15: 00007ffd8261c088 [ 1257.981101][T24023] [ 1259.048429][T24036] Invalid ELF header magic: != ELF [ 1259.728953][T24047] FAULT_INJECTION: forcing a failure. [ 1259.728953][T24047] name failslab, interval 1, probability 0, space 0, times 0 [ 1259.759601][T24047] CPU: 0 UID: 0 PID: 24047 Comm: syz.0.4250 Tainted: G L syzkaller #0 PREEMPT(full) [ 1259.759654][T24047] Tainted: [L]=SOFTLOCKUP [ 1259.759665][T24047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1259.759685][T24047] Call Trace: [ 1259.759695][T24047] [ 1259.759708][T24047] dump_stack_lvl+0x100/0x190 [ 1259.759764][T24047] should_fail_ex.cold+0x5/0xa [ 1259.759800][T24047] should_failslab+0xc2/0x120 [ 1259.759835][T24047] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1259.759882][T24047] ? sock_alloc_inode+0x25/0x1c0 [ 1259.759929][T24047] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1259.759973][T24047] sock_alloc_inode+0x25/0x1c0 [ 1259.760014][T24047] alloc_inode+0x68/0x250 [ 1259.760072][T24047] sock_alloc+0x44/0x280 [ 1259.760110][T24047] ? security_socket_create+0x7f/0x250 [ 1259.760176][T24047] __sock_create+0xc2/0x860 [ 1259.760233][T24047] __sys_socket+0x14d/0x260 [ 1259.760285][T24047] ? __pfx___sys_socket+0x10/0x10 [ 1259.760349][T24047] __x64_sys_socket+0x72/0xb0 [ 1259.760400][T24047] ? lockdep_hardirqs_on+0x78/0x100 [ 1259.760438][T24047] do_syscall_64+0x106/0xf80 [ 1259.760485][T24047] ? clear_bhb_loop+0x40/0x90 [ 1259.760529][T24047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1259.760565][T24047] RIP: 0033:0x7fe64fd9c799 [ 1259.760594][T24047] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1259.760630][T24047] RSP: 002b:00007fe650cc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1259.760664][T24047] RAX: ffffffffffffffda RBX: 00007fe650015fa0 RCX: 00007fe64fd9c799 [ 1259.760688][T24047] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1259.760710][T24047] RBP: 00007fe64fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1259.760731][T24047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1259.760752][T24047] R13: 00007fe650016038 R14: 00007fe650015fa0 R15: 00007ffcc802a398 [ 1259.760796][T24047] [ 1259.760856][T24047] socket: no more sockets [ 1261.285468][T24075] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4255'. [ 1263.036544][T24095] FAULT_INJECTION: forcing a failure. [ 1263.036544][T24095] name failslab, interval 1, probability 0, space 0, times 0 [ 1263.050107][T24095] CPU: 1 UID: 0 PID: 24095 Comm: syz.0.4257 Tainted: G L syzkaller #0 PREEMPT(full) [ 1263.050157][T24095] Tainted: [L]=SOFTLOCKUP [ 1263.050171][T24095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1263.050191][T24095] Call Trace: [ 1263.050203][T24095] [ 1263.050216][T24095] dump_stack_lvl+0x100/0x190 [ 1263.050273][T24095] should_fail_ex.cold+0x5/0xa [ 1263.050313][T24095] should_failslab+0xc2/0x120 [ 1263.050347][T24095] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1263.050396][T24095] ? security_inode_alloc+0x3b/0x2c0 [ 1263.050445][T24095] ? lockdep_init_map_type+0x5c/0x250 [ 1263.050497][T24095] security_inode_alloc+0x3b/0x2c0 [ 1263.050547][T24095] inode_init_always_gfp+0xced/0x1040 [ 1263.050610][T24095] alloc_inode+0x8e/0x250 [ 1263.050654][T24095] new_inode+0x22/0x1c0 [ 1263.050700][T24095] hugetlbfs_get_inode+0x313/0x750 [ 1263.050762][T24095] hugetlb_file_setup+0x3cc/0x5b0 [ 1263.050802][T24095] newseg+0xabb/0xed0 [ 1263.050842][T24095] ? __pfx_newseg+0x10/0x10 [ 1263.050886][T24095] ? down_write+0x146/0x1f0 [ 1263.050930][T24095] ? ksys_write+0x190/0x250 [ 1263.051007][T24095] ? ksys_write+0x190/0x250 [ 1263.051075][T24095] ipcget+0xee/0xf50 [ 1263.051106][T24095] ? do_futex+0x192/0x350 [ 1263.051147][T24095] ? __pfx_do_futex+0x10/0x10 [ 1263.051194][T24095] ? __pfx_ipcget+0x10/0x10 [ 1263.051227][T24095] ? __x64_sys_futex+0x34f/0x4d0 [ 1263.051267][T24095] ? __x64_sys_futex+0x358/0x4d0 [ 1263.051312][T24095] __x64_sys_shmget+0x13b/0x1b0 [ 1263.051345][T24095] ? __pfx___x64_sys_shmget+0x10/0x10 [ 1263.051389][T24095] do_syscall_64+0x106/0xf80 [ 1263.051422][T24095] ? clear_bhb_loop+0x40/0x90 [ 1263.051460][T24095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1263.051492][T24095] RIP: 0033:0x7fe64fd9c799 [ 1263.051519][T24095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1263.051551][T24095] RSP: 002b:00007fe650c61028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 1263.051581][T24095] RAX: ffffffffffffffda RBX: 00007fe650016270 RCX: 00007fe64fd9c799 [ 1263.051603][T24095] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 1263.051622][T24095] RBP: 00007fe64fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1263.051642][T24095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1263.051660][T24095] R13: 00007fe650016308 R14: 00007fe650016270 R15: 00007ffcc802a398 [ 1263.051701][T24095] [ 1263.747553][T24106] FAULT_INJECTION: forcing a failure. [ 1263.747553][T24106] name failslab, interval 1, probability 0, space 0, times 0 [ 1263.817169][T24106] CPU: 1 UID: 0 PID: 24106 Comm: syz.1.4262 Tainted: G L syzkaller #0 PREEMPT(full) [ 1263.817227][T24106] Tainted: [L]=SOFTLOCKUP [ 1263.817240][T24106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1263.817267][T24106] Call Trace: [ 1263.817275][T24106] [ 1263.817286][T24106] dump_stack_lvl+0x100/0x190 [ 1263.817327][T24106] should_fail_ex.cold+0x5/0xa [ 1263.817355][T24106] ? usb_alloc_urb+0x66/0xa0 [ 1263.817390][T24106] should_failslab+0xc2/0x120 [ 1263.817414][T24106] __kmalloc_noprof+0xe0/0x850 [ 1263.817456][T24106] usb_alloc_urb+0x66/0xa0 [ 1263.817492][T24106] usb_control_msg+0x1d3/0x4a0 [ 1263.817533][T24106] ? __pfx_usb_control_msg+0x10/0x10 [ 1263.817581][T24106] hub_ext_port_status+0x152/0x600 [ 1263.817629][T24106] hub_activate+0x6d8/0x1d50 [ 1263.817664][T24106] ? __pfx_hub_activate+0x10/0x10 [ 1263.817685][T24106] ? find_held_lock+0x2b/0x80 [ 1263.817707][T24106] ? usb_generic_driver_resume+0x70/0xa0 [ 1263.817747][T24106] ? usb_generic_driver_resume+0x70/0xa0 [ 1263.817795][T24106] hub_resume+0xb0/0x400 [ 1263.817818][T24106] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1263.817851][T24106] ? __pfx_hub_resume+0x10/0x10 [ 1263.817875][T24106] ? __pfx_hcd_bus_resume+0x10/0x10 [ 1263.817922][T24106] usb_resume_interface.isra.0+0x2ce/0x3d0 [ 1263.817957][T24106] usb_resume_both+0x237/0x9a0 [ 1263.817990][T24106] ? __pfx_usb_resume_both+0x10/0x10 [ 1263.818019][T24106] ? __rpm_callback+0x272/0x620 [ 1263.818052][T24106] ? __pfx_usb_runtime_resume+0x10/0x10 [ 1263.818086][T24106] ? rcu_is_watching+0x12/0xc0 [ 1263.818125][T24106] ? __pfx_usb_runtime_resume+0x10/0x10 [ 1263.818161][T24106] __rpm_callback+0xc8/0x620 [ 1263.818191][T24106] ? read_tsc+0x9/0x20 [ 1263.818217][T24106] ? ktime_get_mono_fast_ns+0x1be/0x3c0 [ 1263.818242][T24106] ? __pfx_usb_runtime_resume+0x10/0x10 [ 1263.818302][T24106] rpm_callback+0x16a/0x1b0 [ 1263.818346][T24106] ? __pfx_usb_runtime_resume+0x10/0x10 [ 1263.818397][T24106] rpm_resume+0xd3e/0x1350 [ 1263.818451][T24106] ? __pfx_rpm_resume+0x10/0x10 [ 1263.818482][T24106] ? do_raw_spin_lock+0x128/0x260 [ 1263.818518][T24106] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 1263.818557][T24106] ? _raw_spin_lock_irqsave+0x52/0x60 [ 1263.818605][T24106] __pm_runtime_resume+0xb6/0x170 [ 1263.818640][T24106] usb_autoresume_device+0x23/0xe0 [ 1263.818677][T24106] usbdev_open+0x228/0x870 [ 1263.818712][T24106] ? kobject_get_unless_zero+0x156/0x200 [ 1263.818745][T24106] ? __pfx_usbdev_open+0x10/0x10 [ 1263.818790][T24106] ? chrdev_open+0x10b/0x6a0 [ 1263.818811][T24106] ? chrdev_open+0x10b/0x6a0 [ 1263.818837][T24106] ? __pfx_usbdev_open+0x10/0x10 [ 1263.818870][T24106] chrdev_open+0x234/0x6a0 [ 1263.818895][T24106] ? __pfx_apparmor_file_open+0x10/0x10 [ 1263.818948][T24106] ? __pfx_chrdev_open+0x10/0x10 [ 1263.818986][T24106] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1263.819033][T24106] do_dentry_open+0x6d8/0x1660 [ 1263.819070][T24106] ? __pfx_chrdev_open+0x10/0x10 [ 1263.819099][T24106] vfs_open+0x82/0x3f0 [ 1263.819130][T24106] path_openat+0x208c/0x31a0 [ 1263.819164][T24106] ? __pfx_path_openat+0x10/0x10 [ 1263.819197][T24106] do_file_open+0x20e/0x430 [ 1263.819221][T24106] ? __pfx_do_file_open+0x10/0x10 [ 1263.819282][T24106] ? alloc_fd+0x476/0x790 [ 1263.819324][T24106] ? do_getname+0x191/0x390 [ 1263.819356][T24106] do_sys_openat2+0x10d/0x1e0 [ 1263.819386][T24106] ? __pfx_do_sys_openat2+0x10/0x10 [ 1263.819440][T24106] ? __fget_files+0x21f/0x3d0 [ 1263.819502][T24106] __x64_sys_openat+0x12d/0x210 [ 1263.819549][T24106] ? __pfx___x64_sys_openat+0x10/0x10 [ 1263.819604][T24106] do_syscall_64+0x106/0xf80 [ 1263.819630][T24106] ? clear_bhb_loop+0x40/0x90 [ 1263.819660][T24106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1263.819686][T24106] RIP: 0033:0x7fa22439c799 [ 1263.819705][T24106] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1263.819730][T24106] RSP: 002b:00007fa225284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1263.819754][T24106] RAX: ffffffffffffffda RBX: 00007fa224615fa0 RCX: 00007fa22439c799 [ 1263.819770][T24106] RDX: 0000000000000100 RSI: 00002000000001c0 RDI: ffffffffffffff9c [ 1263.819786][T24106] RBP: 00007fa224432bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1263.819801][T24106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1263.819815][T24106] R13: 00007fa224616038 R14: 00007fa224615fa0 R15: 00007ffc6153cb58 [ 1263.819847][T24106] [ 1263.828018][T24106] hub 4-0:1.0: hub_ext_port_status failed (err = -12) [ 1264.570310][T24110] FAULT_INJECTION: forcing a failure. [ 1264.570310][T24110] name failslab, interval 1, probability 0, space 0, times 0 [ 1264.587242][T24110] CPU: 0 UID: 0 PID: 24110 Comm: syz.0.4263 Tainted: G L syzkaller #0 PREEMPT(full) [ 1264.587277][T24110] Tainted: [L]=SOFTLOCKUP [ 1264.587285][T24110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1264.587299][T24110] Call Trace: [ 1264.587306][T24110] [ 1264.587315][T24110] dump_stack_lvl+0x100/0x190 [ 1264.587353][T24110] should_fail_ex.cold+0x5/0xa [ 1264.587380][T24110] should_failslab+0xc2/0x120 [ 1264.587402][T24110] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1264.587429][T24110] ? vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 1264.587465][T24110] vidtv_mux_create_pid_ctx_once.part.0+0x49/0x200 [ 1264.587496][T24110] vidtv_mux_init+0x8a6/0xbf0 [ 1264.587546][T24110] vidtv_start_feed+0x33e/0x4c0 [ 1264.587582][T24110] ? __pfx_vidtv_start_feed+0x10/0x10 [ 1264.587618][T24110] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 1264.587660][T24110] ? mark_held_locks+0x40/0x70 [ 1264.587695][T24110] ? __pfx_vidtv_start_feed+0x10/0x10 [ 1264.587729][T24110] dmx_ts_feed_start_filtering+0xf6/0x220 [ 1264.587772][T24110] dvb_dmxdev_start_feed+0x273/0x3f0 [ 1264.587809][T24110] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 1264.587854][T24110] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 1264.587891][T24110] dvb_demux_do_ioctl+0xe64/0x1200 [ 1264.587935][T24110] dvb_usercopy+0x167/0x340 [ 1264.587964][T24110] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 1264.588001][T24110] ? __pfx_dvb_usercopy+0x10/0x10 [ 1264.588043][T24110] ? __fget_files+0x21f/0x3d0 [ 1264.588086][T24110] dvb_demux_ioctl+0x29/0x40 [ 1264.588116][T24110] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 1264.588147][T24110] __x64_sys_ioctl+0x18e/0x210 [ 1264.588182][T24110] do_syscall_64+0x106/0xf80 [ 1264.588208][T24110] ? clear_bhb_loop+0x40/0x90 [ 1264.588237][T24110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1264.588261][T24110] RIP: 0033:0x7fe64fd9c799 [ 1264.588281][T24110] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1264.588305][T24110] RSP: 002b:00007fe650cc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1264.588327][T24110] RAX: ffffffffffffffda RBX: 00007fe650015fa0 RCX: 00007fe64fd9c799 [ 1264.588343][T24110] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 1264.588358][T24110] RBP: 00007fe64fe32bd9 R08: 0000000000000000 R09: 0000000000000000 [ 1264.588372][T24110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1264.588387][T24110] R13: 00007fe650016038 R14: 00007fe650015fa0 R15: 00007ffcc802a398 [ 1264.588418][T24110] [ 1264.589489][T16279] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 1264.848695][T16279] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 1264.857139][T16279] CPU: 0 UID: 0 PID: 16279 Comm: kworker/0:1 Tainted: G L syzkaller #0 PREEMPT(full) [ 1264.868198][T16279] Tainted: [L]=SOFTLOCKUP [ 1264.872547][T16279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1264.882628][T16279] Workqueue: events vidtv_mux_tick [ 1264.887785][T16279] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 1264.894600][T16279] Code: fc b8 dc f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 1264.914240][T16279] RSP: 0018:ffffc900041e73f8 EFLAGS: 00010202 [ 1264.920363][T16279] RAX: 0000000000000002 RBX: ffffc900041e7678 RCX: 0000000000000002 [ 1264.928363][T16279] RDX: 0000000000000000 RSI: ffffffff882b4284 RDI: ffff888027998000 [ 1264.936357][T16279] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1264.944365][T16279] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900041e7698 [ 1264.952367][T16279] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 1264.960361][T16279] FS: 0000000000000000(0000) GS:ffff88812434f000(0000) knlGS:0000000000000000 [ 1264.969317][T16279] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1264.975923][T16279] CR2: 000000110c82c46e CR3: 00000000655fe000 CR4: 00000000003526f0 [ 1264.983931][T16279] Call Trace: [ 1264.987239][T16279] [ 1264.990225][T16279] ? __pfx_vidtv_psi_ts_psi_write_into+0x10/0x10 [ 1264.996607][T16279] vidtv_psi_pmt_write_into+0x3b2/0xa70 [ 1265.002186][T16279] ? __pfx_vidtv_psi_pmt_write_into+0x10/0x10 [ 1265.008285][T16279] ? vidtv_psi_pat_write_into+0x56a/0x690 [ 1265.014030][T16279] ? __pfx_vidtv_psi_pat_write_into+0x10/0x10 [ 1265.020118][T16279] ? __lock_acquire+0x4a5/0x2630 [ 1265.025123][T16279] vidtv_mux_push_si+0x932/0xe80 [ 1265.030098][T16279] ? __pfx_vidtv_mux_push_si+0x10/0x10 [ 1265.035605][T16279] ? __pfx_vidtv_ts_pcr_write_into+0x10/0x10 [ 1265.041635][T16279] ? kasan_save_stack+0x3f/0x50 [ 1265.046523][T16279] ? worker_thread+0x5da/0xe40 [ 1265.051322][T16279] ? kthread+0x370/0x450 [ 1265.055601][T16279] ? ret_from_fork+0x754/0xd80 [ 1265.060403][T16279] ? ret_from_fork_asm+0x1a/0x30 [ 1265.065379][T16279] vidtv_mux_tick+0xe9b/0x1480 [ 1265.070197][T16279] ? __lock_acquire+0x4a5/0x2630 [ 1265.075191][T16279] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 1265.080443][T16279] ? __lock_acquire+0x4a5/0x2630 [ 1265.085438][T16279] ? debug_object_deactivate+0x2e4/0x3b0 [ 1265.091111][T16279] ? finish_task_switch.isra.0+0x200/0xb80 [ 1265.096958][T16279] ? rcu_is_watching+0x12/0xc0 [ 1265.101771][T16279] process_one_work+0x9d7/0x1920 [ 1265.106776][T16279] ? __pfx_process_one_work+0x10/0x10 [ 1265.112193][T16279] ? __pfx_vidtv_mux_tick+0x10/0x10 [ 1265.117421][T16279] worker_thread+0x5da/0xe40 [ 1265.122075][T16279] ? kthread+0x13a/0x450 [ 1265.126345][T16279] ? __pfx_worker_thread+0x10/0x10 [ 1265.131485][T16279] kthread+0x370/0x450 [ 1265.135672][T16279] ? __pfx_kthread+0x10/0x10 [ 1265.140298][T16279] ret_from_fork+0x754/0xd80 [ 1265.144924][T16279] ? __pfx_ret_from_fork+0x10/0x10 [ 1265.150091][T16279] ? __switch_to+0x7b4/0x1120 [ 1265.154824][T16279] ? __pfx_kthread+0x10/0x10 [ 1265.159457][T16279] ret_from_fork_asm+0x1a/0x30 [ 1265.164261][T16279] [ 1265.167300][T16279] Modules linked in: [ 1265.173894][T16279] ---[ end trace 0000000000000000 ]--- [ 1265.530690][T16279] RIP: 0010:vidtv_psi_ts_psi_write_into+0x54a/0xbc0 [ 1265.543508][T16279] Code: fc b8 dc f9 4c 8d 63 20 4c 89 e0 48 c1 e8 03 80 3c 28 00 0f 85 e8 04 00 00 48 8b 43 20 48 89 c2 48 89 c1 48 c1 ea 03 83 e1 07 <0f> b6 14 2a 38 ca 7f 08 84 d2 0f 85 19 05 00 00 0f b6 10 48 8b 7c [ 1265.564653][T16279] RSP: 0018:ffffc900041e73f8 EFLAGS: 00010202 [ 1265.665954][T16279] RAX: 0000000000000002 RBX: ffffc900041e7678 RCX: 0000000000000002 [ 1265.674085][T16279] RDX: 0000000000000000 RSI: ffffffff882b4284 RDI: ffff888027998000 [ 1265.682867][T16279] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1265.691274][T16279] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc900041e7698 [ 1265.699552][T16279] R13: 0000000000000178 R14: 0000000000000000 R15: 0000000000000008 [ 1265.708914][T16279] FS: 0000000000000000(0000) GS:ffff88812434f000(0000) knlGS:0000000000000000 [ 1265.718193][T16279] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1265.724889][T16279] CR2: 00007fe650ca2ff8 CR3: 000000002b674000 CR4: 00000000003526f0 [ 1265.733407][T16279] Kernel panic - not syncing: Fatal exception [ 1265.740110][T16279] Kernel Offset: disabled [ 1265.744443][T16279] Rebooting in 86400 seconds..