last executing test programs: 6m2.439458772s ago: executing program 1 (id=374): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'caif0\x00', 0x0}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000) r3 = socket(0x11, 0x80003, 0x300) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000400)={0x0, 0x10}, 0x0, 0x1001) setsockopt$auto(r3, 0x107, 0x12, 0x0, 0x4) r4 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x5, 0x1000, 0x100000001, 0xc, 0xf, 0x0, 0x40, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x80080001]}, 0x0, 0x0) sendmmsg$auto(r4, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000200)='L', 0x101}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x78, r1, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x8}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x81}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x5}, @ETHTOOL_A_CHANNELS_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x4}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x9}]}, 0x78}, 0x1, 0x0, 0x0, 0x24000000}, 0x40) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vbi2\x00', 0x0, 0x0) 6m1.971483832s ago: executing program 1 (id=377): mmap$auto(0x5, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0) (rerun: 32) writev$auto(r1, &(0x7f0000000180)={&(0x7f0000000600)="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", 0xfd}, 0x1000000000000001) (async) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r3) sendmsg$auto_NFSD_CMD_POOL_MODE_GET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, r4, 0x1, 0x70bd38, 0x25dfdc00}, 0x14}, 0x1, 0x0, 0x0, 0x2004c804}, 0x40000) (async) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 64) prctl$auto(0x3e, 0x5, 0x0, 0x2, 0x0) (async) mmap$auto(0x88, 0xe983, 0xdc, 0xeb5, 0x401, 0x41) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) (async) execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000380)=&(0x7f00000004c0)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xcaGzw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\x1c\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00', 0x0) (async) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async, rerun: 64) openat$auto_null_fops_mem(0xffffffffffffff9c, &(0x7f00000001c0), 0x400000, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) madvise$auto_MADV_GUARD_INSTALL(0x0, 0x100000000, 0x66) (async, rerun: 64) madvise$auto(0x1000, 0x400050, 0x9) (async, rerun: 32) ioctl$auto_USB_RAW_IOCTL_EP_SET_HALT(0xffffffffffffffff, 0x4004550d, &(0x7f0000000180)=0x795) (async, rerun: 32) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd41, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x341, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0x400]}, 0x0) (async) write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) select$auto(0xe, 0x0, 0x0, &(0x7f0000000440)={[0x10000000001ff, 0x4, 0xd, 0x1, 0x3, 0x10, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x40000000001]}, 0x0) (async, rerun: 64) r6 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="13fd2bbd14c7323c91bb1844000008000300", @ANYRES32=r7], 0x24}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894) (async, rerun: 64) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x82, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x6, 0x0) (rerun: 64) 6m0.801675303s ago: executing program 1 (id=380): select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) 6m0.587782875s ago: executing program 1 (id=382): waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055}) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r1, &(0x7f0000000000)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x9) msgctl$auto_IPC_STAT(0x0, 0x2, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) writev$auto(r2, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3) mmap$auto(0xfffffffffffffffe, 0xe983, 0xc, 0xebe, r0, 0x54f5cfc0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r3, 0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x4610, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r5) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r5, 0x0, 0x80014) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket(0x2a, 0xa, 0x83) 5m57.059124553s ago: executing program 1 (id=389): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf25040000000800001a388d1e2f44a30e0000000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdb, 0x9b72, 0x2, 0x40000008000) mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0xe8) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x8001, 0x7ffffff8, 0x5, 0x7, 0x5, 0x61, 0x103}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) socket(0x29, 0xa, 0xaa) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) futex$auto(0x0, 0x5, 0xfffff05e, 0x0, 0x0, 0x80000001) gettid() mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) close_range$auto(0x2, 0x8, 0x0) 5m56.041272507s ago: executing program 1 (id=392): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) (async, rerun: 64) ioctl$auto_SNAPSHOT_SET_SWAP_AREA(r0, 0x400c330d, &(0x7f0000000080)={0x1, 0x2}) (async, rerun: 64) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async) openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, 0x0, 0x505100, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) (async, rerun: 64) r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) (rerun: 64) mmap$auto(0xfffffffffffffffd, 0x202000a, 0x1000000000000007, 0x16, r2, 0x10000000008000) (async) sysfs$auto(0x2, 0x1e, 0x0) ioctl$auto_TUNSETVNETLE2(r1, 0x400454dc, 0x0) write$auto(0x3, 0x0, 0xfdf3) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 64) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/cpu\x00', 0x1a1842, 0x0) (async) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) landlock_add_rule$auto(r3, 0x2, 0x0, 0x400000) (async) fanotify_init$auto(0x5, 0x0) 5m40.161714146s ago: executing program 32 (id=392): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) (async, rerun: 64) ioctl$auto_SNAPSHOT_SET_SWAP_AREA(r0, 0x400c330d, &(0x7f0000000080)={0x1, 0x2}) (async, rerun: 64) r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async) openat$auto_debugfs_devm_entry_ops_file(0xffffffffffffff9c, 0x0, 0x505100, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) (async, rerun: 64) r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) (rerun: 64) mmap$auto(0xfffffffffffffffd, 0x202000a, 0x1000000000000007, 0x16, r2, 0x10000000008000) (async) sysfs$auto(0x2, 0x1e, 0x0) ioctl$auto_TUNSETVNETLE2(r1, 0x400454dc, 0x0) write$auto(0x3, 0x0, 0xfdf3) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async, rerun: 64) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 64) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/cpu\x00', 0x1a1842, 0x0) (async) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) landlock_add_rule$auto(r3, 0x2, 0x0, 0x400000) (async) fanotify_init$auto(0x5, 0x0) 13.390490004s ago: executing program 4 (id=1354): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x84, 0x3, 0x0, 0x0) r1 = open(&(0x7f0000000100)='.\x00', 0x595202, 0x408) write$auto(r1, 0x0, 0xfffffdf1) linkat$auto(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) open(&(0x7f0000000040)='&&\x00', 0x40202, 0x79) 13.237844017s ago: executing program 3 (id=1355): waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055}) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r1, &(0x7f0000000000)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x9) msgctl$auto_IPC_STAT(0x0, 0x2, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) fcntl$auto_F_SET_RW_HINT(r2, 0x40c, 0x40000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) writev$auto(r3, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3) mmap$auto(0xfffffffffffffffe, 0xe983, 0xc, 0xebe, r0, 0x54f5cfc0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r4, 0x0) r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x4610, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r6) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r6, 0x0, 0x80014) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket(0x2a, 0xa, 0x83) 11.813626553s ago: executing program 2 (id=1358): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) poll$auto(0x0, 0x7f, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'dummy0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x40000, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xdfffffff, 0xc5c) mbind$auto(0x8000002000, 0x100000004, 0x1, 0x0, 0xffffffffffffff39, 0x800001) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8) 11.711716156s ago: executing program 4 (id=1359): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) poll$auto(0x0, 0x7f, 0x9) fcntl$auto(0x3, 0x4, 0xa553) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) read$auto(r2, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xdfffffff, 0xc5c) 10.648855645s ago: executing program 3 (id=1360): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) poll$auto(0x0, 0x7f, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) read$auto(r3, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xdfffffff, 0xc5c) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mbind$auto(0x8000002000, 0x100000004, 0x1, 0x0, 0xffffffffffffff39, 0x800001) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8) 10.623212367s ago: executing program 2 (id=1361): waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055}) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r1, &(0x7f0000000000)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x9) msgctl$auto_IPC_STAT(0x0, 0x2, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) writev$auto(r2, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3) mmap$auto(0xfffffffffffffffe, 0xe983, 0xc, 0xebe, r0, 0x54f5cfc0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r3, 0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x4610, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r5) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r5, 0x0, 0x80014) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket(0x2a, 0xa, 0x83) 9.142300007s ago: executing program 4 (id=1363): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) poll$auto(0x0, 0x7f, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000480)={'dummy0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x801, 0x84) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) read$auto(r2, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) 8.865527214s ago: executing program 2 (id=1364): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x2, 0x0) write$auto(r0, 0x0, 0x47ffffdf2) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0xafb}, 0x800}, 0xfffffffb, 0x10, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x18}, 0x1) 7.896366491s ago: executing program 3 (id=1365): mkdir$auto(&(0x7f0000000100)='./file0\x00', 0x8cd) rmdir$auto(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00') lstat$auto(&(0x7f0000000300)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f0000000640)={0x1, 0x4b, 0x6, 0x40, 0x0, 0x0, 0x0, 0x6, 0x8, 0x3ff, 0x7, 0xff, 0x8000000000000001, 0x3, 0x3, 0x7fffffff, 0xfb}) write$auto(0xffffffffffffffff, 0x0, 0xfffffdf1) ioctl$auto_FS_IOC_SETFLAGS2(0xffffffffffffffff, 0x40086602, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x108000) r0 = socket(0xa, 0x801, 0x106) setsockopt$auto(r0, 0x6, 0x24, 0x0, 0x9) select$auto(0x2, &(0x7f0000000380)={[0x3, 0xff, 0x8, 0x1, 0x8, 0x2, 0x26, 0x2, 0xfe2, 0x6, 0xe, 0x7, 0x100000001, 0xffffffff80000001, 0x2, 0x5]}, 0x0, 0x0, &(0x7f0000000480)={0x4, 0x9}) r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) r2 = socket(0x2, 0x3, 0x2) setsockopt$auto(r2, 0x0, 0xcd, 0xfffffffffffffffc, 0x3) write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) msgctl$auto_MSG_INFO(0x1, 0xc, &(0x7f0000000180)={{0x36a6, 0xee01, 0xee01, 0x9, 0x6, 0x4, 0x7fff}, &(0x7f00000000c0)=0x3, &(0x7f0000000140)=0x5, 0x0, 0xff, 0x9, 0x1fc, 0x0, 0xb, 0x4, 0x4, @inferred=0x0, @raw=0x4}) sendmsg$auto_NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x4000890) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000700)=ANY=[@ANYBLOB="400000c8", @ANYRES16=r7, @ANYBLOB="01002bbd7000ffdbdf250100000008000900", @ANYRES32=r8, @ANYBLOB="0800050080000000112001006f07005f12000000000f0700000095ead08c000018000600ec2c09421721c8b3622af5867686cb449054cc1e57dd1711e9f2a5bba52128d71d805e0dd0e083a1db05efbbea87eb538fcdd36132f7da155c3505feae46765ad71e6818740745517c", @ANYRES32=0x0, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) read$auto(r5, 0x0, 0x7) writev$auto(r5, &(0x7f0000000240)={0x0, 0x5}, 0xa) msgctl$auto_MSG_INFO(0xffff, 0xc, &(0x7f0000000540)={{0x4, r3, 0x0, 0x100, 0xffffffff, 0x2, 0x60}, &(0x7f00000004c0)=0x8, &(0x7f0000000500)=0x6, 0x100000001, 0x7, 0x100000001, 0xb9, 0xc, 0x6, 0x4, 0x2, @raw=0x6, @inferred=r4}) madvise$auto(0x0, 0x3, 0x15) remap_file_pages$auto(0x6a27, 0xffb, 0x0, 0x100000001, 0x8) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) 7.77608322s ago: executing program 2 (id=1366): mmap$auto(0xfffffffd, 0x3, 0xdf, 0xeb0, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) (async) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local}, 0x6a) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) (async) close_range$auto(0x2, 0x8, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mtd/mtd0/bad_blocks\x00', 0x8000, 0x0) (async) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x40000, 0x0) sendmsg$auto_IPVS_CMD_SET_DEST(r0, &(0x7f0000001800)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000480)={0x1360, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0xbb, 0x3, 0x0, 0x1, [@generic="87b591d12542caed20f3a2e3ee512c36040561224162b0756c6f708b2c59535a4ff02431f7a7735efe3e94bc5eb76ef86f60e29d97", @generic="aed698e7da6df71052edf740d3ee52a6a5675a13494b21baa7797c49db7914589e84a13ec94e3427e99bf0077b9c523d73e0eb06e12d46ff88e750ead4865684fa9367102d08c4a56eefbe88a13e9bc671def348a8930f5d2b05fbdb8323f83678b1cfd6a7e00db3ac0eee980c335812c59ab68160da75b52049b01441eb451deb30"]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_DEST={0x127b, 0x2, 0x0, 0x1, [@nested={0x1195, 0x11b, 0x0, 0x1, [@generic="bfb4a8fb5e2258596b74d19b210a0fdfd60d817b6e214abca030e9825545f1d8a8cff1291cef6672010f26545c81c471694147d335b6763a8b3de84722448b0f4c86495101fb4c872be42b1b53a98bd3742ed84980c5a8f8843f235c84c8a0e38e8dec1598808993f63e2258f028bbaee3e9f3cd8bd7931e5871e362f96f6444c7fee9d0fd722b755f54935c0369503dd63f33939495eed01f88abcb154dd1435f892568725b041c35a6f6c7808d559e95f4ba8ffa045891a03a64236c9bcf4a1d6788743853f84aecbdb5b05a2577cc5cf6b65a5e0e824ecb50b6e3824d1dc0cb8d97f90d", @nested={0x4, 0x87}, @nested={0x4, 0x1a}, @nested={0x4, 0x13c}, @generic="251d2f07f28a9807c9e8398fb341d2aeaf9777c8d615cfa37f2e4ea02ddd31ec4ef22cb2a2aa6a6b7babf8b89a830738c5625d4ec7fbcb80cc0b0a15e058806c82ab387e1e6f94f815ae25cd4a98b63153e78bdc2d1c34cbd6a4cfb926755bc14cafe9e0b8b1d82ab7c1155e814933aa5107190be895a8cc6f29fa1178c15e48af2996262de79057e6aaec3afd347630d78296f60c78d5c0ad626b8ce7eee4def4517f523f734b0fd71be8ddd76acb65fed23e9978033c2b367cce28870b574688e10e5275124037a430b0d496f2fb72c635982fc4b2c3fc6d9ac0058e86f81d3fd2cc5235c0c0feacd26fc53f0d16d0d618fefd803a732052c9d28ceb5f5ee8231ac9b817d4eeb671c6a94e1a7a68103900a052ff280249d69f8f199d66ede19d47a3ab21e8db6a59018e2816e3fd7a9d623417f8bf969af9bb90b8b60654b30ea8e8a64728781e90e67c59e62289a38bdcfc8d3c035453acbea983f0a2f221a62582ace73dfc0bd8581f3edb7032fcf236313e26a98981faa8eb324ee7bc35ba775c768dac07110db7fc30c8effbea859870b96ab8f7dddd30fced3549bba214039deaa0984c4aee86abec528fe6691d17ad041adf57d99dc431815d60fec2a3212a2fc233b11f152a495aff1a29afb76c4407c2da5707358e01ae46c1685ac65a919c9815f0993ba02e549a7c5617a5ea9ee19f07042087d13be22144294b76cce07e8bd5d908140d59cd9143f1ff23883e3653e71f0b1dfa3ae1a213c454cdefb1fb7777f45e408df9ee281fb5b931532b26f83ea9a6f8f1fa9cb6fe682ba4148bea9085ab4f3f7ce24aa8ae6be6db8924f6231fa7f51f4bf19896f160afc1bae3ee18d40a1e3ce54e5dc4c251a1b91dee58c2b6e07c3a27f94d1c0c5c80ee1ee8d4e99015052df26085b5551f829717c62371582dd31d18ccdd89495b7e95be168f28feb00c8b02fe4686ec7b0f89a0e0cb06d56322eebe40d162ad51331806f865b5f30a0f9bb322b2cb910a4fcabc2c12c46aff2149103cc21b5e62d9d94e9271ef53313eb221c8fee2bdf23fdc5c519e156ed59efba72d15437f5a4b68253cde55eb17db3b70ae124dedaa281eb5665881c7010f85e335e0d8e8897ae031dbb448941ec43bceced1d39d858b8a661f76ad3b7362f901938874203df48cfea560e7b93c557867b63aa9cdcf3f43a2120b2503a5fd191208cda907978f00a5413ccb11d519bbc99a0c13ff029aaf610de3171a1ee1bdccffebc4b2a3eee95cc90f419d21397dc8500f301987f9e32336e093802a0ec0bdab178b09082e2a7fbe0e4ce976bdba9972b3ff12ece65a914c53927d525dca3586eee9780e21340c4dc70803e13c7b0efd1b4294a943694a451e0f3f7504b786e5709a88c6c4c72633b9bfcb7c0dd8464004b11748e8724a07fd2ae6300f6eae0ffe479e6006437a47f13761b8c324a7937fa529e87763162957bdadc4b4a06df20c724baf4d4948e4298c33e7163acf3e35fa029740e624399d8e9f9c53523d7c15923bf84ce61c03b78b9ed5af0228552d04cb38e3df2ae04568ebd9c427b34ad87ed219450c24219de1fe0cba0a72df9a109b06ba173edb9523ea1cf313f6aa3d1fd753cf8a615c855b0c795e6eb7ba270b796bd5421583c14eeb43192a7765070e99452b0e6f0dc6653fd06a8ba20754c5f7f0e3b74f76e12df3df9609ab3208a460c1ada13e8064279d9b8f4318924bb03a1ac73f22650f7ee97f1b64745b19289e159862521e2fae2544a2f7180b9bc6ba0a5edc8e49a412ed9e9926a523c94d0d95dda688d930fcdbf3bc126cf596eac3adeaa724464ec79b84a6816478f52df65d017e5b7cdf4bc7bc6067c21fbe9d7d9a7a0a765ba8948c553026779259935ddc708f799528f0bfdd4e751a3b5fd3847bd5a837ba1926603cd156303e98ad5f16a1081b0836307fc61535d6c697c528fb37fb737da365e20e929e4053b8829915e6ecf2f2232a41af58c1e2c77edba462dd36a9d70ac0cf6e735f013f2e48486ef8d4e7766a7a8b40bc81e1b20ed4ddd889ce207b32ca0b3de97c946fb15b5d86f088f98b42f2030d9b5fa4b74507a6fb710faf22987e457e595b420456fe542804240831a6ac9f22fde4b4848c33af98f8bb9832b2b0d9330460a22f97a5cee834de9a9c968e89ab5833985823dc3af3f06ff2db6cae4f38bef1995ade0ff8e4e1f6f4eb4e51a8d7ffb57f80bb8ad73ac64bc47a8b1ec0cc74e64d33ba46634262a03e301b74109a2d76677b4470db464ebb9676c00f21cf4cfd841883fd338bbf50f029f27ade246178eab0e3c295d779b73273c6e3f533678228e239e275764480df9c09d64cf84861dc754dbb1adafc0b269080c3c69401953ef75abad4f148fa3a6163a9957e719bb52f44fa802c4d22b42dde5653506870cbb930e1ee23e5adefbe5c31d7c5485b5c2e7f4d62179d2f648fae2d0ef620920ae1d71d5b7685d26c347da4f8a4ed11156a0fd069296a19a7c98091f0b84d7549bb922578dba767c95e98f18043bfa768f7f58e95b29f83547bc98a6d1fb40465a0fd849de7952fef5703094ade7cd784e40b1829bf23045c046a38d0c33c731198a85a9f709c186af428b06263c38cf2e8f97450c11ef0eae2430813aac0d39a30c95106b8ecd694c7739b02dde2b8f21a0346aa1d33e3963ef08dfe85a6c6f1dfdeda1f9755d53311be8ea0559b29a2e680b77def81bbdb8730952b7d1fc0f43508ab978b6975a14f8140a115091bd09dcadf36a99980b55387c4e566d5a2d94edca4102235682beb5d5d1d69853f36627f59dc261e582a92233f3f696388ae14b119624804902288b9efdc66b8025a88bc7c7f39ad2faa76f44c136b04ef5144b2583e62fe528f12440bd2ac3a2e2757906ffe01a9c8e2fc29a32e69bf54161a535215863b980f976dcd97087e58bcaba8a47f0ef6445187d54887a339bfdbdbe25f402ee32b3602b0095acda8f0f79dcb58f2982c354b1da402e467c366bc898dc85c859fb98c8170ccb46cdd592bbe0c0445f627dfb20076c2d3c0cf7b13d02afb2a8c1427cfe58f9965fe3a2546ac6ab614e6e31a4fbf307f5a143ce95d5c2ce3f9df90bfecf6fc413059f3863c38a6e3f1e54600ec615ea210ee128e34539afe6af5fa8aa9a7ce65e847dfbf53bd11727b8ad967dcf1ce529184ebad227044f4d021a6fdf53369703888cb3ffdfcd0cbf35f542a21a34b8084ddfbf6fab442906dc833e7910e208acb8506b91e953e33848b84b27f6e68985b3b1d05e858397f93e3af99863f2d006976c51b829667b56ab3b59f27bdc47bc3b79a883a94c8031a05e16378cf2cceed74b44f29ebab4c89ab488bf5b694a1c2a842f1ac8ac244339afff694e30e2445a40e2b5db218237afb09f434560bddeb687043fa2942aaebda251736b609c0a05097545f1ee953bb4e90702b391d605da1724bbdef060926b1fe4d0e787092e21ea12ed256d07da518cf7aa22fff0fecf02c8eb70589ad9cdebcdac860fc6080f2a605a9379a451b9ed890c89a34cdea8f0dd09f31983009d15f0d799a806ea82dad8e94a227c1e351dc828526c995ee5748bf7506a867565dd5f57aa2e3ed958ef9cc93c493793a0749e83b18d206f1a027e008fb3a4f56baf4b09eddcb8501e17b546767b115a5b13cda2caa7e6d6accff743033afcafd6e43d727e1ada1e27bbaf411f610483dc8348cd96d1c3f39f1630593dc44eaae87fed89e39c1674dfcd76a493cfac146dd62e2f2bd873d8e05f82446b0042da9b694188ca223a2e66ac12defa2cdc1b9e21f779e0cff9163da0f732f427e2a829f79c773dc43782e059169e98947f9a153e64a6ab27a55faa6845db8601f2c0245d15bfb12fbb37bca4a584cc409cea4c3be6fdb3e22d021506dbad6d333c4d130c5a77657339acb25b4547d09e7ac17edebafcda919da83e4160aeac08621a17411c9798167faeee1dd84f71ce99a4c9c5ec156d845f4dba71c2e202dc3fe6e3591f28f097ebb4dd15f7a9e196eb5d93022d0a16c2f5d09ed8f9dc4ac5b81374caf310e951bb6f5360cfd7100ffa3295199657a7361317fde71b4a954877d1170afc59afaf8e7c440ab829bd210c875333a7e4607d21da36b02bfc282bc8da4f576e82120bef0b453217bbbad666ee05e55bcd6511ee65a80f2fbc1b7a6e8c79b459746cbdbec061829395edb8f07d6ca2b6f7d087d062071f63ef4abce7b93a1497b2e79d7c0f908d2e20fd0839a280c3a06b207f0e61cec0e44828e6ef5a9cadaf525e5fec320b9a4cdd8bf27ee1362a0f1e194b7903b3d71724384130e5e163afa273e3cfcf92413e861ba3d2c3970eeb3f8789154ea1b70948a81ca8679097726215339c6e682acc565ba72df9c47c6598dc4d6694a5aa1feab364a7886393d9b6b22dbd88ab77b233fec6e3fd314ce3457d72a090d3ef5810319685501fe4713075e61f6bf78aa04793dcdc2855a59ebde6d00e987ec21b37dd62166836ae3d85b128cd3fe1ebf6a267398613fe0cfa293a08d28bdb4c852af6a7763dd24367d9e84f20062147504f2d2ffe3b0fc271f05620b14de691ebd15a2c53e8ed4a2c9a93f6fcb03f7db407bee6c1458f6843b38b5b765c5f22d189314fe2c50bd25c7a8d5a9d650de19fde64f5028d8c84179022476629d302cd41056e9a98e8c2914ce240ce696cda75afc8b7db4614560a5ada29337a37d81cb4881e740720bcceac6f32c0c1e3473bc5894506e493778526444235b16543c8398987f440f62ef3cb0c15ea28efeae1f0893e3616572e80b4584fd5ebca0c265e3c60d0fb3e5dd47b6bfd118ebebc3ed9eedb4b4f25fc09deb4d523d9edca6ca323c3c3bf8164de9f45d284dbae766bfcdeb8bfb96a53a85458b6f96c18ebb841682f5d0adee12dd37ae56835ec9b13952ae0ea0b5768ab1f1ffb571ded4c91e587a50105460c2c219fd4acf5589ecba8f266b3b71c952e9d07b5c133605b79dc3377c110acedfa65bf6a66cb9e66de8c6f983df8ba57afb18c6bc045743dadbb48d3717c31e608844dd107c7ac7698bb09f5ebf74b9fca61c4b2a2d578d0b9b06ca061156aac08e1f84638d3f7560919ccc1b104cac127ef2b7da49f92c79f54bc78af938242d9e3862074414bb221542c08792a6b054d0d068529adf0071f2a31ba141779f6c10498281f683cf89242021f24780a299d5c04713bc345b804e6f68732dbe6985e2f1251339bf4ba10c85a41bd883be70daadcac672a75ce612f517631234d440a5a72163f94d3cb1fb7085c2c9e47c2369b562b864c2544bb453ba040f9ffd8a920f52f675ea89d9425b253dd56bae4ba02f19e7d1bc773d6a90b18ceea554a1adfb5d4e5b31f66fde115c99bbf2da717246e91f632082381d533d5d6004c123187f0ac71f19cd47cdadb471e713eb3e66ea4ff2efe698847e2e75dded941783a5e68c172e2532cd868a72df5e07dae5f944d6ea287f6d8ef3a59af86bce7173ba549b8d2b28132a5f459bef63c27a9e2fc2aec4a574408f326c2c69161fcfc422f4dd4fe868875a6d7d21d00287d7451ab3ddb92473059bd1a5086164524c8d5fc9ed5432f1a818d8e2bfd6bd6536bcea2615802a8dfcce3aa504e82b3b72fa219b0c6d5571557ceea6d978c9851de0862aa480209a10a295c17d9476aec1c3d929877ba34f8542e9a2076ff66f5f9a76df628f955290530b7f976135ecb8973ffd5767a2b923360b561cad2394e0dae7386af310e9ed7a8660072c47a904b8", @generic="6d7d2cd2bb8bcb62de13d78e721417357ba5f3e2eba048fdc5c648d5ad5864341f4779d35314a599b14fb6e6005320429f4e33dcd091be0684ea2de68041efea43a40fed5654ec28798411486d8c8110a0e56f02eedeed7db3b3812202e20cd32b3f6cddcb3fd2cbecdecf1b76e06e1f0aa67573226038843226ac4766649e166bf99ad396379ec118ae1165cb7f16a4364d5f6a9e64a06db90fe192", @nested={0x4, 0x79}]}, @nested={0xc, 0x118, 0x0, 0x1, [@nested={0x4, 0x125}, @generic, @nested={0x4, 0xf7}]}, @generic="b15115342d5ff4418c9bf39b4fe0f49dd8b09b70e5f35c92450ac4ca0eff9f362c22ba2ee2f8d48581089c64414c9be9eb0b23d010c3cd6d6e0bda012fd277870e46cf727d10612082660eab662ecc2547c585d330749376dc714c06dcbfb63de3c6318857a45894fcb16f9ed145a2bae2ed57c176c49f59c72b0e4d6426480aa99149897d453460ec96492fb9b2b6cf9c935e64c79ebf89ed32fec212d8f05cfab5b0b880f552c15c6d864d30d943faadd317e33a019240aa3b893feb6628c73cd1962ce61f84201f1ba4cf5e6189cae3ff90"]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x423f}]}, 0x1360}, 0x1, 0x0, 0x0, 0x20000}, 0x5) (async) mmap$auto_vmwgfx_driver_fops_vmwgfx_drv(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x100000000) read$auto(r1, 0x0, 0x9) (async) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x1010001, 0x100000003) socket(0x28, 0x3, 0x4) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/tty/ttyx9/power/runtime_active_time\x00', 0x2001, 0x0) (async) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC0\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f0000000080)={{@raw=0x7, 0x5, 0xfffff7bb, 0x2f, "984e784f697ebcc30053822c357eb55df43e9e037b650dfc7a3df9aa20e32749384f515111de5da4403cab68", @raw=0x7}, 0x200000, 0x1, 0x4, @raw=0x3, @enumerated={0x8, 0x0, "3544fac47a801d819cb534605db6a893115890fe4787b893bf2d3f312883af26fc4d92993388bae934e26fa2157468e873f1359a98377e7310a5f19b224938a6", 0xf}, "b210e8ae72f3052d09004297cc39fbd4fe51f972eb62ed41cec2ea5c1e45264907d818e9711e2b57cd159b796ab9e6c81a2f47680e3d2a7f677dccfd260d82fe"}) (async) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptye0\x00', 0x529600, 0x0) ioctl$auto_TIOCSETD2(r4, 0x5423, &(0x7f0000000200)="7b7b6e6e1c214dc8fb8bc99526f477181502aa456cb25bda043040e0e100ad9dba10a122afb5cffdb903d1dd68585739a145113dc5") (async) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC2\x00', 0x40040, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r5, 0x81785501, &(0x7f0000000300)={0x4000000, 0x0, "1507866a38353a7a5199245c5bbe9fb6", "607be2b6416d81cd9ee2e58e7deb1973", "cf7ec1b3957aca25a8ea15ef4912b767a97302c55d1181759ae0cc595560b0c3", "e08eec59d621ba9ac3e7db0b1aa3c12cee3f9c9cc52a0637ca46bb720b936bc8a3d14448a49057d6d7766217d6bb807939fb8a16a39fe3faec9ddf5c3f525544ab0de0f3eb52d3ed18d23bc1554179d5", "a2ebef9658c859360a45217d1de2047e", "4c29376eff40924330b98babbc0fbf55f18f8d21784617cbc23b14f9ae54a142f89985529f83577cd8247ac02d39dd60f9ec9399b7912b8f244e18160cc228e22e42f527532a850657ec612c8cf563a7", "b19840f37e53ffb084b203cb79f111fc8bb523b5a74c50c09c357db047a8e71152e20c9ac81481e35c4ce915e6fd26f5f44d8c9209472927e7f4196a8063e394c93d72439c1f0167dbfe4392f885c0c7066428d14129b778a0de17e803376ca5f6e564962663877f9ded226ed2bbffafb4b28c9f1f360d41784ce14971b93fcc"}) (async) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/netfilter/nf_log\x00', 0xa000, 0x0) read$auto(r6, 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) (async) r7 = socketcall$auto(0x8000, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) (async) ioctl$auto(0x3, 0xae41, r7) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) 7.660636832s ago: executing program 4 (id=1367): bpf$auto(0x0, &(0x7f0000000140)=@task_fd_query={0x12, 0x3, 0x401, 0xae30, 0x80000001, 0x4fff, 0xffffffffffffffff, 0x5f, 0x7ff}, 0x6f4) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x6e93018, 0x401, 0x8000) pipe$auto(&(0x7f0000000040)=r0) mremap$auto(0x8000104000, 0xb8, 0x1, 0x3, 0xfffff000) r1 = io_uring_setup$auto(0x100, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) connect$auto(0x3, 0x0, 0x50) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0xd0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x9a5, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sysfs$auto(0x2, 0xd, 0x0) r2 = fsopen$auto(0x0, 0x1) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) fsconfig$auto_FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000300)='\v\'\bn\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x1e7\xbb\xedO#\x14mC\x97\x06\xd9bZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\xc6\xc0\x8b\xc0CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xed<\x86[c4%\xa3\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6\b\xe5\xaaJ+\x02\x9b#\xa9\x9b\x17\x82\xd7\xee\xd1\xbf2\x03\x00\x00\x00\x00\x00\x00\x00B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\x00\x00\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\xb2\x1d\xb3\xef#\xcb}b\x90\xafR\xf5\x8cg\x95A\x89\x8d\x9a\xfcV\x9bm\xd4\x82\x7f9\x12\x98\x1c\x8e\x1f\xdc\xe5Y\x7f\xe8\xe1g%\xb8\xf9b!\xc8\xa0\xf7\x06\xbb\xdf\x1d\xfb\x00\x979\x8e\xd0AP\xbf\x1fM\x1fd~\xeeS^8v\x80\x1b\xb1I\xb1\xa4\x89\xc7\x9d\xf2P\x04\x99N{\x9a\xfa\xf3\xcb\xc3Bx\xb5\xb8*\xa0-\xda\x84\xc5S\xe2\xc6\x92/\xed\xc2\xceK\xad\x00\x00*)Hh\x8d\x06cQ\xf1\x9d\xad\r}\x15e\x18\x06\xe3\xd2\xe4Q', &(0x7f0000000280), 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) ioctl$auto_FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000000)={0x5, 0x1, 0x8, 0xe8, "fd96a696d4608633"}) madvise$auto(0x0, 0xffffffffffff0005, 0x19) read$auto_udf_dir_operations_udfdecl(r2, 0x0, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x401) r3 = io_uring_setup$auto(0x1d48, 0x0) io_uring_register$auto(r3, 0x15, 0x0, 0x9) r4 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) ioctl$auto_RTC_WKALM_RD(r4, 0x80287010, &(0x7f0000000100)={0x0, 0xc7, {0xfffffffb, 0x7, 0x5, 0x0, 0x0, 0x1, 0x101, 0x7, 0x2}}) unshare$auto(0x40000080) unshare$auto(0x40000080) 7.427244706s ago: executing program 2 (id=1368): ioctl$auto_TUNGETVNETHDRSZ2(0xffffffffffffffff, 0x800454d7, 0x0) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) prctl$auto(0x4e, 0x1, 0x0, 0x0, 0x0) r0 = prctl$auto(0x4e, 0x1, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff) socket(0x10, 0x2, 0x14) socket(0xa, 0x801, 0x84) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40000a, 0x80000001, 0x9b72, r0, 0x8000) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x10bb41, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vlan1\x00', 0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r3}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) timer_create$auto(0x3, 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/timer_source\x00', 0x8002, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x10, 0x7, 0x4, 0xffffffffffffffff, 0xa, "2af051a940806ec05be276cfc83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fcntl$auto_F_GETPIPE_SZ(0xffffffffffffffff, 0x408, 0x2) r4 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x480, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rxrpc/peers\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x110, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x40, 0x0) ioctl$auto(r5, 0x90006442, r5) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0xffffffffffff0005, 0x17) pread64$auto(r4, 0x0, 0xa, 0x10003) r6 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), r6) 6.806931678s ago: executing program 0 (id=1369): r0 = socket(0xa, 0x2, 0x0) setsockopt$auto(r0, 0x29, 0x11, 0x0, 0x56b) (async) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, 0x0, 0x8000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose14/statistics/rx_errors\x00', 0x40d00, 0x0) (async, rerun: 32) close_range$auto(0x2, 0xa, 0x0) (async, rerun: 32) r1 = socket(0x18, 0xa, 0x1) r2 = socket(0xa, 0x3, 0x3a) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000980)='/dev/snd/controlC0\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000009c0)={{@raw=0x100000b, 0x2, 0xed, 0x5, "23af44e99b39d92c8f7925902e82e274330f614fe788a29d9671e208274eb3003d738d0ced7f8e4ae6a7e31d"}, 0x4, 0x7, 0x65dc, @inferred, @enumerated={0x6, 0x46, "ccf8a22025f886dfa5f5ce5396f3add58174d9e53228434abe8f8017ca440b62f31abb9d0169fadbfa8b73374cc17c08360d32f9536712384d926c4677d3559d", 0x40, 0x1}, "3a1b2e5bfbf619455ff4b80b5092c5bf432fa6c3d158c2b2591103e6fdbf0bb88e707ed93304acc4c076b5b3d92be4e06123de781b632127a86c6ccae54ffb74"}) (async, rerun: 64) setsockopt$auto_SO_BUSY_POLL(r1, 0xfffeffff, 0x2e, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/active_links\x00', 0x3) (rerun: 64) socket(0xa, 0x801, 0x106) (async) setsockopt$auto(r2, 0x29, 0x4b, &(0x7f00000000c0)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x98\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110) bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "02d0ac0c00e435826339c7328903"}, 0x6a) (async, rerun: 64) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async) mmap$auto(0x0, 0xf368, 0x3, 0xeb1, 0xffffffffffffffff, 0x0) (async) r5 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/active_links\x00', 0x82, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(r5, 0x0, 0x20) ioctl$auto(0x3, 0xffffffff, r2) (async) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x208000, 0x0) 6.525568029s ago: executing program 0 (id=1370): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) poll$auto(0x0, 0x7f, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x40000, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xdfffffff, 0xc5c) mbind$auto(0x8000002000, 0x100000004, 0x1, 0x0, 0xffffffffffffff39, 0x800001) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8) 6.433710522s ago: executing program 3 (id=1371): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf25040000000800001a388d1e2f44a30e0000000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdb, 0x9b72, 0x2, 0x40000008000) mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r2, 0x0, 0xe8) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x8001, 0x7ffffff8, 0x5, 0x7, 0x5, 0x61, 0x103}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) socket(0x29, 0xa, 0xaa) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) futex$auto(0x0, 0x5, 0xfffff05e, 0x0, 0x0, 0x80000001) gettid() mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) close_range$auto(0x2, 0x8, 0x0) 5.411092225s ago: executing program 0 (id=1372): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) poll$auto(0x0, 0x7f, 0x9) fcntl$auto(0x3, 0x4, 0xa553) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) read$auto(r2, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xdfffffff, 0xc5c) 4.334292435s ago: executing program 0 (id=1373): waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7fd, 0x2055}) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r1, &(0x7f0000000000)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x9) msgctl$auto_IPC_STAT(0x0, 0x2, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$auto_fops_x64_ro_(r1, &(0x7f0000000240)="0cf62fb0951aa379b280bc4c44a8a255d62dc0aae7214a9cb1215c1625d7d202017c738ed0a34592710a673df1f62bc728485634a9168b62423cc3e2bf94001e840c72045cc6bae8a30699ca0880d1a121fce1b27e7354308d34719e67a6efcfc79157165fe60171c4b01c252f6bca20abdd7cd220955831fd3184bd42e93172e0a6ebaf791b7b2f7c2a9ffb94cae1e10bd772b16098c72414c1bd95d5dc0553cd4411a0d242f06fe4d62abf581b5eb9f7ceba0902cf2d", 0xb7) writev$auto(r2, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3) mmap$auto(0xfffffffffffffffe, 0xe983, 0xc, 0xebe, r0, 0x54f5cfc0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r3, 0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x4610, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100100a3d7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r5) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r5, 0x0, 0x80014) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket(0x2a, 0xa, 0x83) 3.135437591s ago: executing program 0 (id=1374): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000080)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) poll$auto(0x0, 0x7f, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'dummy0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) read$auto(r3, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x200084c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x4}, 0xdfffffff, 0xc5c) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) mbind$auto(0x8000002000, 0x100000004, 0x1, 0x0, 0xffffffffffffff39, 0x800001) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7112}, 0x8) 2.588280718s ago: executing program 3 (id=1375): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x2, 0x0) write$auto(r0, 0x0, 0x47ffffdf2) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0xafb}, 0x800}, 0xfffffffb, 0x10, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x18}, 0x1) 2.060392097s ago: executing program 4 (id=1376): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) poll$auto(0x0, 0x7f, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000600), 0xffffffffffffffff) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x501, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000480)={'dummy0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0) read$auto(r2, &(0x7f0000000040)='/dev/snd/seq\x00', 0x7) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2242, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) 1.96694023s ago: executing program 0 (id=1377): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x2, 0x0) ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9}) write$auto(r0, 0x0, 0x47ffffdf2) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0xafb}, 0x800}, 0xfffffffb, 0x10, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x18}, 0x1) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) read$auto(0xffffffffffffffff, 0x0, 0x7f) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x40, 0x0) 612.256883ms ago: executing program 4 (id=1378): waitid$auto(0x8, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={{0xfffffffffffffff9, 0x80}, {0x2, 0x6}, 0x4, 0x5, 0x1, 0x3, 0x0, 0x8000, 0x80000000, 0x7, 0xb7, 0x5d9, 0x5, 0x7ff, 0x2055}) mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x10000000008000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r1, &(0x7f0000000000)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x9) msgctl$auto_IPC_STAT(0x0, 0x2, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) writev$auto(r2, &(0x7f0000000300)={&(0x7f0000000200), 0x200}, 0x3) mmap$auto(0xfffffffffffffffe, 0xe983, 0xc, 0xebe, r0, 0x54f5cfc0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) fstat$auto(r3, 0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x40100, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x4610, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d7) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r5) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r5, 0x0, 0x80014) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket(0x2a, 0xa, 0x83) 269.924438ms ago: executing program 2 (id=1379): socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) socket(0x2, 0x5, 0x0) listen$auto(0x3, 0x81) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4f64a1d5) socket(0xa, 0x4, 0x5) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = socket(0xa, 0x2, 0x73) mmap$auto(0xfffffffffffffc, 0xd8f0, 0x7, 0xeb1, r1, 0xbf47) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0) r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r2, &(0x7f0000000680)={0x0, 0x40200}, 0x3) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f2, 0x15) unshare$auto(0x20000) mmap$auto(0x0, 0x202000d, 0x3, 0x200000000eb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mac80211_hwsim/hwsim0/net/wlan0/flags\x00', 0x189082, 0x0) sendfile$auto(r4, r4, 0x0, 0x1) prctl$auto_PR_SET_MM_ARG_START(0x9, 0x8, 0x0, 0x3, 0x527) 0s ago: executing program 3 (id=1380): mkdir$auto(&(0x7f0000000100)='./file0\x00', 0x8cd) rmdir$auto(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00') write$auto(0xffffffffffffffff, 0x0, 0xfffffdf1) ioctl$auto_FS_IOC_SETFLAGS2(0xffffffffffffffff, 0x40086602, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x108000) r0 = socket(0xa, 0x801, 0x106) setsockopt$auto(r0, 0x6, 0x24, 0x0, 0x9) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f00000004c0)={0x2d8, r1, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0xf8, 0x9d, "7ad523ddc5111cdab569dfc1c0bf57dfa6197f3276e680de2a07048a9c37c1e6a92300d38a97b32406fa9ed33f9608d6f8b75fffc424a4b2cc257cbe2b82fa0634b6353ab760d01a59c8765806c261250e935a06d7d423df29bd34ceb9f73bb1da545c944abd09bea17379c5d5937383c1e17e7092cbdb7de3151e225aa441cd892024bab2dee65531a8913a6cdee5e3b30b50f5a98345539cc4a57ec2883a3f21af5c87ad53a9ec0ddbeaae749d9b63b3d3be47e49aee92e86fd6fee3799a3f355dbddf6cc60c508324c2b3268d910826acfed8232d66cc07e5afb7b498f4055c16bb2de0c5b45929900d0fe8079519a84b3645"}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_BEACON_HEAD={0x1bf, 0xe, "51e8457750fbdb4b056f8079c64972957b1610c23496cc54109795bdfe6df33e83dfc6fc28c57da6976931be55e8d3627ad9930fc01835eeff28500a00117db1a5e07f1340aba70bfb6817aad3c320998f19d63778c6f0b8713cb2ffcc8379ec640ff027fe7f3625b7ecfa8519032af725e19b833824a0cc663a5e329a80097470b9f5766fa19730b30d2a3047c1b215561ab43cd3ea25f58c17437820a89f59dfe2d68d876bbe8d58e0ec7ec1b5a77aa017011fc743ebf3fb9867425709d5fb956564f8fb63c9f277dae868552abd49106f3a996d837affd7105b938fb66d2259b041967f400f2a01348ac6ce4dd7d01a58de4424ba98b6b75bdd3b24dd7de20f35485d893e461074d1504bbd067ae932dd862ae04614700b435fc42dcf3fd5c68f9003133805f9d1dd526cad875fb44066854dae1b565a932fbf5ade3fe3c0c04c6c245d31cd8b6262ffcc543fc2cea6787515e8922ad39b021e0b25a8e6fd5ea135b0ece1a5b178319392a5e602ac624a90cf520584c1c1efade02f3d03fd82bd95bf8a32c3740cfc42342b52df0939945ea743941e555b36083165fef7edcdb7ebcf959c617efb4e796986b303a531b405b5b6459f8d47501c"}]}, 0x2d8}, 0x1, 0x0, 0x0, 0xc094}, 0x4000854) select$auto(0x2, &(0x7f0000000300)={[0x3, 0xff, 0x8, 0x7, 0x8, 0x2, 0x26, 0x2, 0xfe2, 0x6, 0xe, 0x7, 0x100000001, 0xffffffff80000001, 0x2, 0x8c]}, 0x0, 0x0, &(0x7f0000000480)={0x9, 0x9}) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_SCAN(r3, &(0x7f00000165c0)={0x0, 0x0, &(0x7f0000016580)={&(0x7f0000000280)={0x18, r4, 0xd3ac6c422733a379, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_BEACON_TAIL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x2404c000}, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x200, 0x4) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(r6, &(0x7f0000002280)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB='\x00'], 0x14}, 0x1, 0x0, 0x0, 0x48800}, 0x4) sendmsg$auto_NL80211_CMD_NEW_KEY(r0, &(0x7f00000007c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x24, r5, 0x22, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_VLAN_ID={0x6}, @NL80211_ATTR_FRAME_TYPE={0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x40040}, 0x48000) ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(0xffffffffffffffff, 0xc1004111, &(0x7f0000000380)={0x6, [0x1ff, 0xfff, 0x4], [{0x1, 0xff, 0x1, 0x1}, {0x7, 0x7, 0x1, 0x1}, {0x1, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x80, 0x0, 0x0, 0x1, 0x1}, {0x1ff, 0x7, 0x1, 0x1}, {0x7fff, 0x6, 0x1, 0x0, 0x0, 0x1}, {0x3590, 0x3, 0x1, 0x0, 0x1}, {0x0, 0x20, 0x0, 0x0, 0x1, 0x1}, {0x5d6, 0x7, 0x1, 0x1}, {0x80000000, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x5, 0xdf, 0x1}, {0x2, 0xe, 0x1, 0x1, 0x0, 0x1}], 0x7, 0x4, 0xc, 0x6, 0x200, 0x401, 0xfffffffffffffeff, "88a3e32921c700e8d189a7534ad6f347345887ce689fe346dc02809645f1f9764dec9ad2d83992be6dca670abe2c982f2ab6b63bb60a4bbeaac81d42794f97b1"}) kernel console output (not intermixed with test programs): 028519][ T9832] kvm_dev_ioctl+0x1491/0x1a50 [ 379.028574][ T9832] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 379.028629][ T9832] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 379.028671][ T9832] __x64_sys_ioctl+0x18e/0x210 [ 379.028725][ T9832] do_syscall_64+0x106/0xf80 [ 379.028773][ T9832] ? clear_bhb_loop+0x40/0x90 [ 379.028816][ T9832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.028851][ T9832] RIP: 0033:0x7f851ed9c799 [ 379.028880][ T9832] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 379.028922][ T9832] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 379.028963][ T9832] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 379.028985][ T9832] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 379.029005][ T9832] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 379.029023][ T9832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 379.029041][ T9832] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 379.029082][ T9832] [ 379.319986][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.326595][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.493363][ T9832] debugfs: out of free dentries, can not create file 'mmu_shadow_zapped' [ 380.164669][ T9837] FAULT_INJECTION: forcing a failure. [ 380.164669][ T9837] name failslab, interval 1, probability 0, space 0, times 0 [ 380.204374][ T9837] CPU: 0 UID: 0 PID: 9837 Comm: syz.4.769 Tainted: G L syzkaller #0 PREEMPT(full) [ 380.204414][ T9837] Tainted: [L]=SOFTLOCKUP [ 380.204422][ T9837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 380.204436][ T9837] Call Trace: [ 380.204444][ T9837] [ 380.204453][ T9837] dump_stack_lvl+0x100/0x190 [ 380.204497][ T9837] should_fail_ex.cold+0x5/0xa [ 380.204525][ T9837] should_failslab+0xc2/0x120 [ 380.204550][ T9837] __kmalloc_node_noprof+0xe6/0x850 [ 380.204587][ T9837] ? get_callchain_buffers+0x1e5/0x380 [ 380.204623][ T9837] get_callchain_buffers+0x1e5/0x380 [ 380.204651][ T9837] ? security_capable+0x80/0x260 [ 380.204762][ T9837] stack_map_alloc+0x316/0x610 [ 380.204791][ T9837] ? __pfx_stack_map_mem_usage+0x10/0x10 [ 380.204817][ T9837] map_create+0x84e/0x2ba0 [ 380.204851][ T9837] ? __pfx_map_create+0x10/0x10 [ 380.204871][ T9837] ? __might_fault+0xc5/0x140 [ 380.204903][ T9837] ? __might_fault+0xc5/0x140 [ 380.204947][ T9837] __sys_bpf+0x2091/0x4b90 [ 380.204977][ T9837] ? __pfx___sys_bpf+0x10/0x10 [ 380.205003][ T9837] ? proc_fail_nth_write+0x9f/0x220 [ 380.205033][ T9837] ? find_held_lock+0x2b/0x80 [ 380.205061][ T9837] ? find_held_lock+0x2b/0x80 [ 380.205082][ T9837] ? ksys_write+0x190/0x250 [ 380.205110][ T9837] ? __mutex_unlock_slowpath+0x15c/0x790 [ 380.205146][ T9837] ? __fget_files+0x215/0x3d0 [ 380.205182][ T9837] ? fput+0x79/0x100 [ 380.205208][ T9837] ? ksys_write+0x1ac/0x250 [ 380.205228][ T9837] ? __pfx_ksys_write+0x10/0x10 [ 380.205254][ T9837] __x64_sys_bpf+0x7b/0xc0 [ 380.205280][ T9837] ? lockdep_hardirqs_on+0x78/0x100 [ 380.205313][ T9837] do_syscall_64+0x106/0xf80 [ 380.205344][ T9837] ? clear_bhb_loop+0x40/0x90 [ 380.205373][ T9837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.205396][ T9837] RIP: 0033:0x7f34c019c799 [ 380.205417][ T9837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 380.205440][ T9837] RSP: 002b:00007f34c107b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 380.205464][ T9837] RAX: ffffffffffffffda RBX: 00007f34c0415fa0 RCX: 00007f34c019c799 [ 380.205479][ T9837] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000 [ 380.205493][ T9837] RBP: 00007f34c107b090 R08: 0000000000000000 R09: 0000000000000000 [ 380.205507][ T9837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 380.205521][ T9837] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 380.205551][ T9837] [ 381.123809][ T9846] block2mtd: error: cannot open device /sys/modu [ 381.510547][ T5840] Bluetooth: hci4: command 0x0406 tx timeout [ 382.088424][ T9852] FAULT_INJECTION: forcing a failure. [ 382.088424][ T9852] name failslab, interval 1, probability 0, space 0, times 0 [ 382.443829][ T9852] CPU: 0 UID: 0 PID: 9852 Comm: syz.3.770 Tainted: G L syzkaller #0 PREEMPT(full) [ 382.443914][ T9852] Tainted: [L]=SOFTLOCKUP [ 382.443926][ T9852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 382.443948][ T9852] Call Trace: [ 382.443960][ T9852] [ 382.443973][ T9852] dump_stack_lvl+0x100/0x190 [ 382.444044][ T9852] should_fail_ex.cold+0x5/0xa [ 382.444075][ T9852] should_failslab+0xc2/0x120 [ 382.444102][ T9852] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 382.444142][ T9852] ? security_inode_alloc+0x3b/0x2c0 [ 382.444168][ T9852] ? lockdep_init_map_type+0x5c/0x250 [ 382.444206][ T9852] security_inode_alloc+0x3b/0x2c0 [ 382.444231][ T9852] inode_init_always_gfp+0xced/0x1040 [ 382.444263][ T9852] alloc_inode+0x8e/0x250 [ 382.444297][ T9852] new_inode+0x22/0x1c0 [ 382.444331][ T9852] __debugfs_create_file+0x105/0x4f0 [ 382.444362][ T9852] debugfs_create_file_full+0x41/0x60 [ 382.444391][ T9852] kvm_dev_ioctl+0x1491/0x1a50 [ 382.444430][ T9852] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 382.444467][ T9852] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 382.444497][ T9852] __x64_sys_ioctl+0x18e/0x210 [ 382.444535][ T9852] do_syscall_64+0x106/0xf80 [ 382.444568][ T9852] ? clear_bhb_loop+0x40/0x90 [ 382.444598][ T9852] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.444631][ T9852] RIP: 0033:0x7f01ad39c799 [ 382.444652][ T9852] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 382.444676][ T9852] RSP: 002b:00007f01ae221028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 382.444701][ T9852] RAX: ffffffffffffffda RBX: 00007f01ad616180 RCX: 00007f01ad39c799 [ 382.444717][ T9852] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 382.444731][ T9852] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 382.444746][ T9852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 382.444760][ T9852] R13: 00007f01ad616218 R14: 00007f01ad616180 R15: 00007ffc6785ce78 [ 382.444792][ T9852] [ 382.445521][ T9852] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 384.440132][ T9888] FAULT_INJECTION: forcing a failure. [ 384.440132][ T9888] name failslab, interval 1, probability 0, space 0, times 0 [ 384.492387][ T9888] CPU: 1 UID: 0 PID: 9888 Comm: syz.3.782 Tainted: G L syzkaller #0 PREEMPT(full) [ 384.492443][ T9888] Tainted: [L]=SOFTLOCKUP [ 384.492454][ T9888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 384.492474][ T9888] Call Trace: [ 384.492486][ T9888] [ 384.492499][ T9888] dump_stack_lvl+0x100/0x190 [ 384.492557][ T9888] should_fail_ex.cold+0x5/0xa [ 384.492598][ T9888] should_failslab+0xc2/0x120 [ 384.492634][ T9888] __kmalloc_node_noprof+0xe6/0x850 [ 384.492684][ T9888] ? get_callchain_buffers+0x1e5/0x380 [ 384.492734][ T9888] get_callchain_buffers+0x1e5/0x380 [ 384.492774][ T9888] ? security_capable+0x80/0x260 [ 384.492977][ T9888] stack_map_alloc+0x316/0x610 [ 384.493018][ T9888] ? __pfx_stack_map_mem_usage+0x10/0x10 [ 384.493056][ T9888] map_create+0x84e/0x2ba0 [ 384.493104][ T9888] ? __pfx_map_create+0x10/0x10 [ 384.493146][ T9888] ? __might_fault+0xc5/0x140 [ 384.493196][ T9888] ? __might_fault+0xc5/0x140 [ 384.493260][ T9888] __sys_bpf+0x2091/0x4b90 [ 384.493311][ T9888] ? __pfx___sys_bpf+0x10/0x10 [ 384.493342][ T9888] ? proc_fail_nth_write+0x9f/0x220 [ 384.493382][ T9888] ? find_held_lock+0x2b/0x80 [ 384.493421][ T9888] ? find_held_lock+0x2b/0x80 [ 384.493449][ T9888] ? ksys_write+0x190/0x250 [ 384.493488][ T9888] ? __mutex_unlock_slowpath+0x15c/0x790 [ 384.493537][ T9888] ? __fget_files+0x215/0x3d0 [ 384.493597][ T9888] ? fput+0x79/0x100 [ 384.493635][ T9888] ? ksys_write+0x1ac/0x250 [ 384.493664][ T9888] ? __pfx_ksys_write+0x10/0x10 [ 384.493702][ T9888] __x64_sys_bpf+0x7b/0xc0 [ 384.493744][ T9888] ? lockdep_hardirqs_on+0x78/0x100 [ 384.493790][ T9888] do_syscall_64+0x106/0xf80 [ 384.493843][ T9888] ? clear_bhb_loop+0x40/0x90 [ 384.493891][ T9888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.493925][ T9888] RIP: 0033:0x7f01ad39c799 [ 384.493959][ T9888] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.493990][ T9888] RSP: 002b:00007f01ae263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 384.494026][ T9888] RAX: ffffffffffffffda RBX: 00007f01ad615fa0 RCX: 00007f01ad39c799 [ 384.494047][ T9888] RDX: 00000000000006f4 RSI: 0000200000000580 RDI: 0000000000000000 [ 384.494065][ T9888] RBP: 00007f01ae263090 R08: 0000000000000000 R09: 0000000000000000 [ 384.494083][ T9888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 384.494102][ T9888] R13: 00007f01ad616038 R14: 00007f01ad615fa0 R15: 00007ffc6785ce78 [ 384.494145][ T9888] [ 385.000134][ T9890] block2mtd: error: cannot open device /sys/modu [ 386.538563][ T9912] FAULT_INJECTION: forcing a failure. [ 386.538563][ T9912] name failslab, interval 1, probability 0, space 0, times 0 [ 386.553382][ T9912] CPU: 0 UID: 0 PID: 9912 Comm: syz.0.789 Tainted: G L syzkaller #0 PREEMPT(full) [ 386.553443][ T9912] Tainted: [L]=SOFTLOCKUP [ 386.553455][ T9912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 386.553476][ T9912] Call Trace: [ 386.553489][ T9912] [ 386.553501][ T9912] dump_stack_lvl+0x100/0x190 [ 386.553566][ T9912] should_fail_ex.cold+0x5/0xa [ 386.553609][ T9912] should_failslab+0xc2/0x120 [ 386.553659][ T9912] __kmalloc_cache_noprof+0x7a/0x6f0 [ 386.553711][ T9912] ? kvm_dev_ioctl+0x1320/0x1a50 [ 386.553758][ T9912] kvm_dev_ioctl+0x1320/0x1a50 [ 386.553814][ T9912] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 386.553867][ T9912] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 386.553911][ T9912] __x64_sys_ioctl+0x18e/0x210 [ 386.553965][ T9912] do_syscall_64+0x106/0xf80 [ 386.554014][ T9912] ? clear_bhb_loop+0x40/0x90 [ 386.554062][ T9912] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.554097][ T9912] RIP: 0033:0x7fdc6619c799 [ 386.554128][ T9912] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 386.554161][ T9912] RSP: 002b:00007fdc670d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 386.554195][ T9912] RAX: ffffffffffffffda RBX: 00007fdc66416180 RCX: 00007fdc6619c799 [ 386.554219][ T9912] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 386.554241][ T9912] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 386.554262][ T9912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.554282][ T9912] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 386.554328][ T9912] [ 388.406870][ T9937] block2mtd: error: cannot open device /sys/modu [ 390.217428][ T9969] block2mtd: error: cannot open device /sys/modu [ 390.242275][ T9967] FAULT_INJECTION: forcing a failure. [ 390.242275][ T9967] name failslab, interval 1, probability 0, space 0, times 0 [ 390.259298][ T9972] FAULT_INJECTION: forcing a failure. [ 390.259298][ T9972] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 390.280961][ T9967] CPU: 0 UID: 0 PID: 9967 Comm: syz.2.803 Tainted: G L syzkaller #0 PREEMPT(full) [ 390.281016][ T9967] Tainted: [L]=SOFTLOCKUP [ 390.281028][ T9967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 390.281050][ T9967] Call Trace: [ 390.281060][ T9967] [ 390.281073][ T9967] dump_stack_lvl+0x100/0x190 [ 390.281135][ T9967] should_fail_ex.cold+0x5/0xa [ 390.281173][ T9967] should_failslab+0xc2/0x120 [ 390.281211][ T9967] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 390.281266][ T9967] ? security_inode_alloc+0x3b/0x2c0 [ 390.281300][ T9967] ? lockdep_init_map_type+0x5c/0x250 [ 390.281355][ T9967] security_inode_alloc+0x3b/0x2c0 [ 390.281389][ T9967] inode_init_always_gfp+0xced/0x1040 [ 390.281430][ T9967] alloc_inode+0x8e/0x250 [ 390.281485][ T9967] new_inode+0x22/0x1c0 [ 390.281536][ T9967] __debugfs_create_file+0x105/0x4f0 [ 390.281580][ T9967] debugfs_create_file_full+0x41/0x60 [ 390.281620][ T9967] kvm_dev_ioctl+0x1491/0x1a50 [ 390.281677][ T9967] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 390.281733][ T9967] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 390.281775][ T9967] __x64_sys_ioctl+0x18e/0x210 [ 390.281829][ T9967] do_syscall_64+0x106/0xf80 [ 390.281878][ T9967] ? clear_bhb_loop+0x40/0x90 [ 390.281925][ T9967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.281972][ T9967] RIP: 0033:0x7f851ed9c799 [ 390.282002][ T9967] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 390.282038][ T9967] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 390.282075][ T9967] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 390.282099][ T9967] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 390.282121][ T9967] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 390.282142][ T9967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 390.282162][ T9967] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 390.282208][ T9967] [ 390.282249][ T9967] debugfs: out of free dentries, can not create file 'pages_2m' [ 390.501471][ T9972] CPU: 0 UID: 0 PID: 9972 Comm: syz.0.804 Tainted: G L syzkaller #0 PREEMPT(full) [ 390.501518][ T9972] Tainted: [L]=SOFTLOCKUP [ 390.501536][ T9972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 390.501554][ T9972] Call Trace: [ 390.501563][ T9972] [ 390.501575][ T9972] dump_stack_lvl+0x100/0x190 [ 390.501631][ T9972] should_fail_ex.cold+0x5/0xa [ 390.501671][ T9972] _copy_to_user+0x32/0xd0 [ 390.501713][ T9972] simple_read_from_buffer+0xcb/0x170 [ 390.501771][ T9972] proc_fail_nth_read+0x1af/0x230 [ 390.501811][ T9972] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 390.501859][ T9972] ? rw_verify_area+0xce/0x6d0 [ 390.501900][ T9972] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 390.501929][ T9972] vfs_read+0x1e4/0xb30 [ 390.501969][ T9972] ? __pfx_vfs_read+0x10/0x10 [ 390.502010][ T9972] ? __fget_files+0x215/0x3d0 [ 390.502038][ T9972] ? __fget_files+0x21f/0x3d0 [ 390.502068][ T9972] ksys_read+0x12a/0x250 [ 390.502104][ T9972] ? __pfx_ksys_read+0x10/0x10 [ 390.502149][ T9972] do_syscall_64+0x106/0xf80 [ 390.502182][ T9972] ? clear_bhb_loop+0x40/0x90 [ 390.502211][ T9972] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.502235][ T9972] RIP: 0033:0x7fdc6615cfce [ 390.502260][ T9972] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 390.502284][ T9972] RSP: 002b:00007fdc6711afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 390.502307][ T9972] RAX: ffffffffffffffda RBX: 00007fdc6711b6c0 RCX: 00007fdc6615cfce [ 390.502323][ T9972] RDX: 000000000000000f RSI: 00007fdc6711b0a0 RDI: 0000000000000003 [ 390.502337][ T9972] RBP: 00007fdc6711b090 R08: 0000000000000000 R09: 0000000000000000 [ 390.502354][ T9972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 390.502368][ T9972] R13: 00007fdc66416038 R14: 00007fdc66415fa0 R15: 00007ffeaf909428 [ 390.502399][ T9972] [ 393.860177][T10018] block2mtd: error: cannot open device /sys/modu [ 394.288212][T10031] netlink: 342 bytes leftover after parsing attributes in process `syz.4.816'. [ 394.415665][T10033] FAULT_INJECTION: forcing a failure. [ 394.415665][T10033] name failslab, interval 1, probability 0, space 0, times 0 [ 394.433907][T10033] CPU: 1 UID: 0 PID: 10033 Comm: syz.0.817 Tainted: G L syzkaller #0 PREEMPT(full) [ 394.433966][T10033] Tainted: [L]=SOFTLOCKUP [ 394.433978][T10033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 394.434000][T10033] Call Trace: [ 394.434012][T10033] [ 394.434026][T10033] dump_stack_lvl+0x100/0x190 [ 394.434088][T10033] should_fail_ex.cold+0x5/0xa [ 394.434130][T10033] should_failslab+0xc2/0x120 [ 394.434172][T10033] __kmalloc_cache_noprof+0x7a/0x6f0 [ 394.434219][T10033] ? kvm_dev_ioctl+0x1320/0x1a50 [ 394.434264][T10033] kvm_dev_ioctl+0x1320/0x1a50 [ 394.434312][T10033] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 394.434355][T10033] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 394.434391][T10033] __x64_sys_ioctl+0x18e/0x210 [ 394.434435][T10033] do_syscall_64+0x106/0xf80 [ 394.434475][T10033] ? clear_bhb_loop+0x40/0x90 [ 394.434520][T10033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.434552][T10033] RIP: 0033:0x7fdc6619c799 [ 394.434577][T10033] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 394.434608][T10033] RSP: 002b:00007fdc670d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 394.434638][T10033] RAX: ffffffffffffffda RBX: 00007fdc66416180 RCX: 00007fdc6619c799 [ 394.434658][T10033] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 394.434675][T10033] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 394.434692][T10033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.434709][T10033] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 394.434745][T10033] [ 397.211139][T10071] block2mtd: error: cannot open device /sys/modu [ 398.862048][T10077] bond0: option arp_validate: invalid value () [ 400.524393][T10098] FAULT_INJECTION: forcing a failure. [ 400.524393][T10098] name failslab, interval 1, probability 0, space 0, times 0 [ 400.560797][T10098] CPU: 0 UID: 0 PID: 10098 Comm: syz.0.831 Tainted: G L syzkaller #0 PREEMPT(full) [ 400.560856][T10098] Tainted: [L]=SOFTLOCKUP [ 400.560870][T10098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 400.560899][T10098] Call Trace: [ 400.560908][T10098] [ 400.560917][T10098] dump_stack_lvl+0x100/0x190 [ 400.560963][T10098] should_fail_ex.cold+0x5/0xa [ 400.560994][T10098] should_failslab+0xc2/0x120 [ 400.561020][T10098] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 400.561060][T10098] ? __d_alloc+0x34/0xa80 [ 400.561093][T10098] __d_alloc+0x34/0xa80 [ 400.561123][T10098] d_alloc+0x4a/0x1e0 [ 400.561151][T10098] lookup_one_qstr_excl+0x175/0x250 [ 400.561187][T10098] start_dirop+0x59/0xb0 [ 400.561226][T10098] simple_start_creating+0xf9/0x110 [ 400.561267][T10098] ? __pfx_simple_start_creating+0x10/0x10 [ 400.561307][T10098] ? mntput+0x70/0xa0 [ 400.561343][T10098] ? simple_pin_fs+0xa3/0x190 [ 400.561387][T10098] debugfs_start_creating.part.0+0x82/0x170 [ 400.561416][T10098] __debugfs_create_file+0xb3/0x4f0 [ 400.561447][T10098] debugfs_create_file_full+0x41/0x60 [ 400.561476][T10098] kvm_dev_ioctl+0x1491/0x1a50 [ 400.561521][T10098] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 400.561582][T10098] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 400.561625][T10098] __x64_sys_ioctl+0x18e/0x210 [ 400.561682][T10098] do_syscall_64+0x106/0xf80 [ 400.561718][T10098] ? clear_bhb_loop+0x40/0x90 [ 400.561749][T10098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.561775][T10098] RIP: 0033:0x7fdc6619c799 [ 400.561796][T10098] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 400.561821][T10098] RSP: 002b:00007fdc670d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 400.561844][T10098] RAX: ffffffffffffffda RBX: 00007fdc66416180 RCX: 00007fdc6619c799 [ 400.561860][T10098] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 400.561875][T10098] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 400.561892][T10098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 400.561906][T10098] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 400.561938][T10098] [ 401.450333][ T30] audit: type=1326 audit(1773452284.201:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10118 comm="syz.4.837" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f34c019c799 code=0x0 [ 404.045113][ T5843] Bluetooth: hci1: ISO packet for unknown connection handle 0 [ 404.213209][T10156] FAULT_INJECTION: forcing a failure. [ 404.213209][T10156] name failslab, interval 1, probability 0, space 0, times 0 [ 404.213350][T10156] CPU: 0 UID: 0 PID: 10156 Comm: syz.2.846 Tainted: G L syzkaller #0 PREEMPT(full) [ 404.213401][T10156] Tainted: [L]=SOFTLOCKUP [ 404.213414][T10156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 404.213435][T10156] Call Trace: [ 404.213445][T10156] [ 404.213459][T10156] dump_stack_lvl+0x100/0x190 [ 404.213529][T10156] should_fail_ex.cold+0x5/0xa [ 404.213574][T10156] should_failslab+0xc2/0x120 [ 404.213613][T10156] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 404.213671][T10156] ? __d_alloc+0x34/0xa80 [ 404.213720][T10156] __d_alloc+0x34/0xa80 [ 404.213763][T10156] d_alloc+0x4a/0x1e0 [ 404.213803][T10156] lookup_one_qstr_excl+0x175/0x250 [ 404.213853][T10156] start_dirop+0x59/0xb0 [ 404.213908][T10156] simple_start_creating+0xf9/0x110 [ 404.213963][T10156] ? __pfx_simple_start_creating+0x10/0x10 [ 404.214022][T10156] ? mntput+0x70/0xa0 [ 404.214074][T10156] ? simple_pin_fs+0xa3/0x190 [ 404.214136][T10156] debugfs_start_creating.part.0+0x82/0x170 [ 404.214178][T10156] __debugfs_create_file+0xb3/0x4f0 [ 404.214221][T10156] debugfs_create_file_full+0x41/0x60 [ 404.214263][T10156] kvm_dev_ioctl+0x1491/0x1a50 [ 404.214321][T10156] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 404.214376][T10156] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 404.214418][T10156] __x64_sys_ioctl+0x18e/0x210 [ 404.214471][T10156] do_syscall_64+0x106/0xf80 [ 404.214519][T10156] ? clear_bhb_loop+0x40/0x90 [ 404.214564][T10156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.214601][T10156] RIP: 0033:0x7f851ed9c799 [ 404.214631][T10156] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 404.214665][T10156] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 404.214699][T10156] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 404.214722][T10156] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 404.214743][T10156] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 404.214763][T10156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.214783][T10156] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 404.214824][T10156] [ 404.781219][T10165] block2mtd: error: cannot open device /sys/modu [ 408.640558][T10207] FAULT_INJECTION: forcing a failure. [ 408.640558][T10207] name failslab, interval 1, probability 0, space 0, times 0 [ 408.835793][T10207] CPU: 1 UID: 0 PID: 10207 Comm: syz.4.857 Tainted: G L syzkaller #0 PREEMPT(full) [ 408.835855][T10207] Tainted: [L]=SOFTLOCKUP [ 408.835868][T10207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 408.835892][T10207] Call Trace: [ 408.835904][T10207] [ 408.835918][T10207] dump_stack_lvl+0x100/0x190 [ 408.835987][T10207] should_fail_ex.cold+0x5/0xa [ 408.836029][T10207] should_failslab+0xc2/0x120 [ 408.836071][T10207] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 408.836128][T10207] ? security_inode_alloc+0x3b/0x2c0 [ 408.836175][T10207] ? lockdep_init_map_type+0x5c/0x250 [ 408.836238][T10207] security_inode_alloc+0x3b/0x2c0 [ 408.836280][T10207] inode_init_always_gfp+0xced/0x1040 [ 408.836328][T10207] alloc_inode+0x8e/0x250 [ 408.836379][T10207] new_inode+0x22/0x1c0 [ 408.836434][T10207] __debugfs_create_file+0x105/0x4f0 [ 408.836482][T10207] debugfs_create_file_full+0x41/0x60 [ 408.836528][T10207] kvm_dev_ioctl+0x1491/0x1a50 [ 408.836588][T10207] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 408.836651][T10207] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 408.836701][T10207] __x64_sys_ioctl+0x18e/0x210 [ 408.836766][T10207] do_syscall_64+0x106/0xf80 [ 408.836819][T10207] ? clear_bhb_loop+0x40/0x90 [ 408.836871][T10207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.836911][T10207] RIP: 0033:0x7f34c019c799 [ 408.836943][T10207] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 408.836981][T10207] RSP: 002b:00007f34c1039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.837017][T10207] RAX: ffffffffffffffda RBX: 00007f34c0416180 RCX: 00007f34c019c799 [ 408.837043][T10207] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 408.837066][T10207] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 408.837090][T10207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 408.837112][T10207] R13: 00007f34c0416218 R14: 00007f34c0416180 R15: 00007fff837bdbf8 [ 408.837173][T10207] [ 408.837260][T10207] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 409.517199][T10217] block2mtd: error: cannot open device /sys/modu [ 412.577244][T10263] block2mtd: error: cannot open device /sys/modu [ 412.693302][ T5843] Bluetooth: hci0: ISO packet for unknown connection handle 0 [ 415.921375][T10312] block2mtd: error: cannot open device /sys/modu [ 417.012198][T10324] FAULT_INJECTION: forcing a failure. [ 417.012198][T10324] name failslab, interval 1, probability 0, space 0, times 0 [ 417.026755][T10324] CPU: 0 UID: 0 PID: 10324 Comm: syz.2.882 Tainted: G L syzkaller #0 PREEMPT(full) [ 417.026814][T10324] Tainted: [L]=SOFTLOCKUP [ 417.026836][T10324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 417.026858][T10324] Call Trace: [ 417.026870][T10324] [ 417.026882][T10324] dump_stack_lvl+0x100/0x190 [ 417.026945][T10324] should_fail_ex.cold+0x5/0xa [ 417.026987][T10324] ? kvm_dev_ioctl+0x124f/0x1a50 [ 417.027024][T10324] should_failslab+0xc2/0x120 [ 417.027061][T10324] __kmalloc_noprof+0xe0/0x850 [ 417.027127][T10324] kvm_dev_ioctl+0x124f/0x1a50 [ 417.027175][T10324] ? find_held_lock+0x2b/0x80 [ 417.027208][T10324] ? __fget_files+0x215/0x3d0 [ 417.027239][T10324] ? hook_file_ioctl_common+0x146/0x410 [ 417.027281][T10324] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 417.027334][T10324] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 417.027377][T10324] __x64_sys_ioctl+0x18e/0x210 [ 417.027429][T10324] do_syscall_64+0x106/0xf80 [ 417.027478][T10324] ? clear_bhb_loop+0x40/0x90 [ 417.027524][T10324] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 417.027561][T10324] RIP: 0033:0x7f851ed9c799 [ 417.027591][T10324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 417.027625][T10324] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 417.027660][T10324] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 417.027683][T10324] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 417.027703][T10324] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 417.027723][T10324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 417.027743][T10324] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 417.027787][T10324] [ 419.171198][T10356] FAULT_INJECTION: forcing a failure. [ 419.171198][T10356] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 419.205508][T10356] CPU: 1 UID: 0 PID: 10356 Comm: syz.4.892 Tainted: G L syzkaller #0 PREEMPT(full) [ 419.205561][T10356] Tainted: [L]=SOFTLOCKUP [ 419.205572][T10356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 419.205592][T10356] Call Trace: [ 419.205603][T10356] [ 419.205616][T10356] dump_stack_lvl+0x100/0x190 [ 419.205672][T10356] should_fail_ex.cold+0x5/0xa [ 419.205713][T10356] _copy_to_user+0x32/0xd0 [ 419.205754][T10356] simple_read_from_buffer+0xcb/0x170 [ 419.205809][T10356] proc_fail_nth_read+0x1af/0x230 [ 419.205852][T10356] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 419.205894][T10356] ? rw_verify_area+0xce/0x6d0 [ 419.205942][T10356] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 419.205982][T10356] vfs_read+0x1e4/0xb30 [ 419.206037][T10356] ? __pfx_vfs_read+0x10/0x10 [ 419.206095][T10356] ? __fget_files+0x215/0x3d0 [ 419.206136][T10356] ? __fget_files+0x21f/0x3d0 [ 419.206178][T10356] ksys_read+0x12a/0x250 [ 419.206229][T10356] ? __pfx_ksys_read+0x10/0x10 [ 419.206292][T10356] do_syscall_64+0x106/0xf80 [ 419.206336][T10356] ? clear_bhb_loop+0x40/0x90 [ 419.206377][T10356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.206410][T10356] RIP: 0033:0x7f34c015cfce [ 419.206437][T10356] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 419.206469][T10356] RSP: 002b:00007f34c107afe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 419.206502][T10356] RAX: ffffffffffffffda RBX: 00007f34c107b6c0 RCX: 00007f34c015cfce [ 419.206523][T10356] RDX: 000000000000000f RSI: 00007f34c107b0a0 RDI: 0000000000000004 [ 419.206542][T10356] RBP: 00007f34c107b090 R08: 0000000000000000 R09: 0000000000000000 [ 419.206561][T10356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 419.206579][T10356] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 419.206625][T10356] [ 419.637608][ T5843] Bluetooth: hci4: ISO packet for unknown connection handle 0 [ 420.084662][T10374] FAULT_INJECTION: forcing a failure. [ 420.084662][T10374] name failslab, interval 1, probability 0, space 0, times 0 [ 420.084725][T10374] CPU: 0 UID: 0 PID: 10374 Comm: syz.4.895 Tainted: G L syzkaller #0 PREEMPT(full) [ 420.084775][T10374] Tainted: [L]=SOFTLOCKUP [ 420.084787][T10374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 420.084809][T10374] Call Trace: [ 420.084820][T10374] [ 420.084832][T10374] dump_stack_lvl+0x100/0x190 [ 420.084893][T10374] should_fail_ex.cold+0x5/0xa [ 420.084937][T10374] should_failslab+0xc2/0x120 [ 420.084976][T10374] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 420.085029][T10374] ? __d_alloc+0x34/0xa80 [ 420.085077][T10374] __d_alloc+0x34/0xa80 [ 420.085120][T10374] d_alloc+0x4a/0x1e0 [ 420.085160][T10374] lookup_one_qstr_excl+0x175/0x250 [ 420.085209][T10374] start_dirop+0x59/0xb0 [ 420.085264][T10374] simple_start_creating+0xf9/0x110 [ 420.085320][T10374] ? __pfx_simple_start_creating+0x10/0x10 [ 420.085375][T10374] ? mntput+0x70/0xa0 [ 420.085425][T10374] ? simple_pin_fs+0xa3/0x190 [ 420.085476][T10374] debugfs_start_creating.part.0+0x82/0x170 [ 420.085516][T10374] __debugfs_create_file+0xb3/0x4f0 [ 420.085570][T10374] debugfs_create_file_full+0x41/0x60 [ 420.085612][T10374] kvm_dev_ioctl+0x1491/0x1a50 [ 420.085671][T10374] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 420.085728][T10374] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 420.085771][T10374] __x64_sys_ioctl+0x18e/0x210 [ 420.085824][T10374] do_syscall_64+0x106/0xf80 [ 420.085871][T10374] ? clear_bhb_loop+0x40/0x90 [ 420.085918][T10374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.085957][T10374] RIP: 0033:0x7f34c019c799 [ 420.085985][T10374] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 420.086019][T10374] RSP: 002b:00007f34c1039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 420.086054][T10374] RAX: ffffffffffffffda RBX: 00007f34c0416180 RCX: 00007f34c019c799 [ 420.086078][T10374] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 420.086099][T10374] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 420.086120][T10374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.086140][T10374] R13: 00007f34c0416218 R14: 00007f34c0416180 R15: 00007fff837bdbf8 [ 420.086185][T10374] [ 422.022578][ T5843] Bluetooth: hci4: unexpected event 0x3e length: 505 > 260 [ 422.022669][ T5843] Bluetooth: hci4: unexpected subevent 0x02 length: 504 > 260 [ 422.040336][ T5843] Bluetooth: hci4: Dropping invalid advertising data [ 422.048057][ T5843] Bluetooth: hci4: unknown advertising packet type: 0xe9 [ 423.290326][T10432] netlink: 12 bytes leftover after parsing attributes in process `syz.4.908'. [ 423.669101][T10444] netlink: 4 bytes leftover after parsing attributes in process `syz.3.910'. [ 425.463746][T10484] block2mtd: error: cannot open device /sys/modu [ 425.797781][T10488] netlink: 4 bytes leftover after parsing attributes in process `syz.2.920'. [ 427.679310][T10521] FAULT_INJECTION: forcing a failure. [ 427.679310][T10521] name failslab, interval 1, probability 0, space 0, times 0 [ 427.679387][T10521] CPU: 0 UID: 0 PID: 10521 Comm: syz.2.927 Tainted: G L syzkaller #0 PREEMPT(full) [ 427.679438][T10521] Tainted: [L]=SOFTLOCKUP [ 427.679450][T10521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 427.679472][T10521] Call Trace: [ 427.679483][T10521] [ 427.679496][T10521] dump_stack_lvl+0x100/0x190 [ 427.679559][T10521] should_fail_ex.cold+0x5/0xa [ 427.679602][T10521] should_failslab+0xc2/0x120 [ 427.679641][T10521] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 427.679696][T10521] ? security_inode_alloc+0x3b/0x2c0 [ 427.679734][T10521] ? lockdep_init_map_type+0x5c/0x250 [ 427.679793][T10521] security_inode_alloc+0x3b/0x2c0 [ 427.679832][T10521] inode_init_always_gfp+0xced/0x1040 [ 427.679878][T10521] alloc_inode+0x8e/0x250 [ 427.679925][T10521] new_inode+0x22/0x1c0 [ 427.679974][T10521] debugfs_create_dir+0xc4/0x440 [ 427.680013][T10521] kvm_dev_ioctl+0x11b6/0x1a50 [ 427.680063][T10521] ? find_held_lock+0x2b/0x80 [ 427.680093][T10521] ? __fget_files+0x215/0x3d0 [ 427.680122][T10521] ? hook_file_ioctl_common+0x146/0x410 [ 427.680164][T10521] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 427.680218][T10521] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 427.680272][T10521] __x64_sys_ioctl+0x18e/0x210 [ 427.680329][T10521] do_syscall_64+0x106/0xf80 [ 427.680377][T10521] ? clear_bhb_loop+0x40/0x90 [ 427.680424][T10521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.680460][T10521] RIP: 0033:0x7f851ed9c799 [ 427.680489][T10521] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 427.680523][T10521] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 427.680557][T10521] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 427.680580][T10521] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 427.680600][T10521] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 427.680619][T10521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 427.680638][T10521] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 427.680682][T10521] [ 427.680715][T10521] debugfs: out of free dentries, can not create directory '10521-10' [ 429.297712][T10540] usb usb36: usbfs: process 10540 (syz.0.932) did not claim interface 0 before use [ 429.472060][T10546] block2mtd: error: cannot open device /sys/modu [ 429.846267][T10544] mkiss: ax0: crc mode is auto. [ 430.090856][T10553] netlink: 12 bytes leftover after parsing attributes in process `syz.2.933'. [ 432.024821][T10586] FAULT_INJECTION: forcing a failure. [ 432.024821][T10586] name failslab, interval 1, probability 0, space 0, times 0 [ 432.058324][T10586] CPU: 0 UID: 0 PID: 10586 Comm: syz.4.938 Tainted: G L syzkaller #0 PREEMPT(full) [ 432.058384][T10586] Tainted: [L]=SOFTLOCKUP [ 432.058395][T10586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 432.058416][T10586] Call Trace: [ 432.058427][T10586] [ 432.058439][T10586] dump_stack_lvl+0x100/0x190 [ 432.058498][T10586] should_fail_ex.cold+0x5/0xa [ 432.058554][T10586] should_failslab+0xc2/0x120 [ 432.058588][T10586] __kmalloc_cache_noprof+0x7a/0x6f0 [ 432.058635][T10586] ? kvm_dev_ioctl+0x1320/0x1a50 [ 432.058682][T10586] kvm_dev_ioctl+0x1320/0x1a50 [ 432.058733][T10586] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 432.058784][T10586] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 432.058825][T10586] __x64_sys_ioctl+0x18e/0x210 [ 432.058880][T10586] do_syscall_64+0x106/0xf80 [ 432.058927][T10586] ? clear_bhb_loop+0x40/0x90 [ 432.058974][T10586] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 432.059108][T10586] RIP: 0033:0x7f34c019c799 [ 432.059139][T10586] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 432.059177][T10586] RSP: 002b:00007f34c1039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 432.059211][T10586] RAX: ffffffffffffffda RBX: 00007f34c0416180 RCX: 00007f34c019c799 [ 432.059233][T10586] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 432.059252][T10586] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 432.059272][T10586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 432.059291][T10586] R13: 00007f34c0416218 R14: 00007f34c0416180 R15: 00007fff837bdbf8 [ 432.059335][T10586] [ 433.120690][T10600] FAULT_INJECTION: forcing a failure. [ 433.120690][T10600] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 433.255820][T10600] CPU: 1 UID: 0 PID: 10600 Comm: syz.0.940 Tainted: G L syzkaller #0 PREEMPT(full) [ 433.255870][T10600] Tainted: [L]=SOFTLOCKUP [ 433.255881][T10600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 433.255899][T10600] Call Trace: [ 433.255909][T10600] [ 433.255931][T10600] dump_stack_lvl+0x100/0x190 [ 433.256003][T10600] should_fail_ex.cold+0x5/0xa [ 433.256043][T10600] _copy_from_user+0x2e/0xd0 [ 433.256082][T10600] sctp_setsockopt+0x8cc/0xb370 [ 433.256197][T10600] ? __pfx_aa_sk_perm+0x10/0x10 [ 433.256278][T10600] ? __pfx_sctp_setsockopt+0x10/0x10 [ 433.256313][T10600] ? aa_sock_opt_perm+0xfe/0x1b0 [ 433.256441][T10600] ? sock_common_setsockopt+0x2e/0xf0 [ 433.256548][T10600] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 433.256608][T10600] do_sock_setsockopt+0xf3/0x1d0 [ 433.256652][T10600] __sys_setsockopt+0x119/0x190 [ 433.256689][T10600] __x64_sys_setsockopt+0xbd/0x160 [ 433.256729][T10600] ? do_syscall_64+0x95/0xf80 [ 433.256762][T10600] ? lockdep_hardirqs_on+0x78/0x100 [ 433.256794][T10600] do_syscall_64+0x106/0xf80 [ 433.256825][T10600] ? clear_bhb_loop+0x40/0x90 [ 433.256854][T10600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.256879][T10600] RIP: 0033:0x7fdc6619c799 [ 433.256899][T10600] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 433.256922][T10600] RSP: 002b:00007fdc670d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 433.256946][T10600] RAX: ffffffffffffffda RBX: 00007fdc66416180 RCX: 00007fdc6619c799 [ 433.256961][T10600] RDX: 0000000000000085 RSI: 0000010000000084 RDI: 0000000000000003 [ 433.256975][T10600] RBP: 00007fdc670d9090 R08: 0000000000000090 R09: 0000000000000000 [ 433.256990][T10600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 433.257004][T10600] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 433.257034][T10600] [ 433.568889][T10595] zswap: compressor not available [ 433.975255][T10623] block2mtd: error: cannot open device /sys/modu [ 434.617758][T10630] block2mtd: error: cannot open device /sys/modu [ 436.234344][T10647] netlink: 4 bytes leftover after parsing attributes in process `syz.3.950'. [ 436.812862][T10647] FAULT_INJECTION: forcing a failure. [ 436.812862][T10647] name failslab, interval 1, probability 0, space 0, times 0 [ 436.834941][T10647] CPU: 1 UID: 0 PID: 10647 Comm: syz.3.950 Tainted: G L syzkaller #0 PREEMPT(full) [ 436.834998][T10647] Tainted: [L]=SOFTLOCKUP [ 436.835010][T10647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 436.835031][T10647] Call Trace: [ 436.835042][T10647] [ 436.835054][T10647] dump_stack_lvl+0x100/0x190 [ 436.835116][T10647] should_fail_ex.cold+0x5/0xa [ 436.835156][T10647] should_failslab+0xc2/0x120 [ 436.835197][T10647] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 436.835257][T10647] ? alloc_inode+0x68/0x250 [ 436.835304][T10647] ? simple_start_creating+0xb0/0x110 [ 436.835359][T10647] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 436.835436][T10647] alloc_inode+0x68/0x250 [ 436.835486][T10647] new_inode+0x22/0x1c0 [ 436.835537][T10647] __debugfs_create_file+0x105/0x4f0 [ 436.835580][T10647] debugfs_create_file_full+0x41/0x60 [ 436.835644][T10647] kvm_dev_ioctl+0x1491/0x1a50 [ 436.835717][T10647] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 436.835776][T10647] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 436.835822][T10647] __x64_sys_ioctl+0x18e/0x210 [ 436.835875][T10647] do_syscall_64+0x106/0xf80 [ 436.835923][T10647] ? clear_bhb_loop+0x40/0x90 [ 436.835968][T10647] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.836004][T10647] RIP: 0033:0x7f01ad39c799 [ 436.836032][T10647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 436.836067][T10647] RSP: 002b:00007f01ae263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 436.836099][T10647] RAX: ffffffffffffffda RBX: 00007f01ad615fa0 RCX: 00007f01ad39c799 [ 436.836123][T10647] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 436.836144][T10647] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 436.836271][T10647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 436.836318][T10647] R13: 00007f01ad616038 R14: 00007f01ad615fa0 R15: 00007ffc6785ce78 [ 436.836368][T10647] [ 436.836700][T10647] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 437.162716][T10662] zswap: compressor not available [ 437.175552][T10670] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 438.183133][T10682] block2mtd: error: cannot open device /sys/modu [ 438.462836][T10686] usb usb36: usbfs: process 10686 (syz.3.958) did not claim interface 0 before use [ 439.300920][T10704] mkiss: ax0: crc mode is auto. [ 440.593391][T10711] zswap: compressor not available [ 440.653863][T10720] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes [ 440.761719][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.768173][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.091530][T10728] netlink: 4 bytes leftover after parsing attributes in process `syz.4.965'. [ 441.343036][T10739] FAULT_INJECTION: forcing a failure. [ 441.343036][T10739] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 441.343122][T10739] CPU: 0 UID: 0 PID: 10739 Comm: syz.2.967 Tainted: G L syzkaller #0 PREEMPT(full) [ 441.343165][T10739] Tainted: [L]=SOFTLOCKUP [ 441.343181][T10739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 441.343199][T10739] Call Trace: [ 441.343209][T10739] [ 441.343222][T10739] dump_stack_lvl+0x100/0x190 [ 441.343277][T10739] should_fail_ex.cold+0x5/0xa [ 441.343317][T10739] _copy_to_user+0x32/0xd0 [ 441.343358][T10739] simple_read_from_buffer+0xcb/0x170 [ 441.343413][T10739] proc_fail_nth_read+0x1af/0x230 [ 441.343459][T10739] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 441.343503][T10739] ? rw_verify_area+0xce/0x6d0 [ 441.343551][T10739] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 441.343598][T10739] vfs_read+0x1e4/0xb30 [ 441.343654][T10739] ? __pfx_vfs_read+0x10/0x10 [ 441.343703][T10739] ? __fget_files+0x215/0x3d0 [ 441.343744][T10739] ? __fget_files+0x21f/0x3d0 [ 441.343786][T10739] ksys_read+0x12a/0x250 [ 441.343836][T10739] ? __pfx_ksys_read+0x10/0x10 [ 441.343900][T10739] do_syscall_64+0x106/0xf80 [ 441.343944][T10739] ? clear_bhb_loop+0x40/0x90 [ 441.343984][T10739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.344017][T10739] RIP: 0033:0x7f851ed5cfce [ 441.344043][T10739] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 441.344075][T10739] RSP: 002b:00007f851cff5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 441.344104][T10739] RAX: ffffffffffffffda RBX: 00007f851cff66c0 RCX: 00007f851ed5cfce [ 441.344125][T10739] RDX: 000000000000000f RSI: 00007f851cff60a0 RDI: 0000000000000004 [ 441.344144][T10739] RBP: 00007f851cff6090 R08: 0000000000000000 R09: 0000000000000000 [ 441.344163][T10739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 441.344181][T10739] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 441.344225][T10739] [ 441.381822][T10728] FAULT_INJECTION: forcing a failure. [ 441.381822][T10728] name failslab, interval 1, probability 0, space 0, times 0 [ 441.381884][T10728] CPU: 0 UID: 0 PID: 10728 Comm: syz.4.965 Tainted: G L syzkaller #0 PREEMPT(full) [ 441.381939][T10728] Tainted: [L]=SOFTLOCKUP [ 441.381951][T10728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 441.381974][T10728] Call Trace: [ 441.381988][T10728] [ 441.382002][T10728] dump_stack_lvl+0x100/0x190 [ 441.382067][T10728] should_fail_ex.cold+0x5/0xa [ 441.382111][T10728] should_failslab+0xc2/0x120 [ 441.382148][T10728] __kmalloc_cache_noprof+0x7a/0x6f0 [ 441.382196][T10728] ? kvm_dev_ioctl+0x1320/0x1a50 [ 441.382248][T10728] kvm_dev_ioctl+0x1320/0x1a50 [ 441.382301][T10728] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 441.382356][T10728] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 441.382398][T10728] __x64_sys_ioctl+0x18e/0x210 [ 441.382453][T10728] do_syscall_64+0x106/0xf80 [ 441.382500][T10728] ? clear_bhb_loop+0x40/0x90 [ 441.382546][T10728] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.382595][T10728] RIP: 0033:0x7f34c019c799 [ 441.382624][T10728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 441.382662][T10728] RSP: 002b:00007f34c107b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 441.382698][T10728] RAX: ffffffffffffffda RBX: 00007f34c0415fa0 RCX: 00007f34c019c799 [ 441.382723][T10728] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 441.382743][T10728] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 441.382763][T10728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.382782][T10728] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 441.382828][T10728] [ 441.561105][T10742] block2mtd: error: cannot open device /sys/modu [ 441.780896][T10746] nfs: Bad value for 'source' [ 443.899897][T10764] usb usb36: usbfs: process 10764 (syz.2.972) did not claim interface 0 before use [ 444.831985][T10781] mkiss: ax0: crc mode is auto. [ 446.773947][T10804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.980'. [ 446.807087][T10807] netlink: 4 bytes leftover after parsing attributes in process `syz.2.983'. [ 446.823320][T10804] netlink: 25 bytes leftover after parsing attributes in process `syz.0.980'. [ 446.845734][T10807] netlink: 25 bytes leftover after parsing attributes in process `syz.2.983'. [ 447.317505][T10816] nvme_fcloop: unknown parameter or missing value '7="­ÿù;¤°&Lë=j³"Yq'R"' [ 447.646440][T10824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.987'. [ 447.938547][T10824] FAULT_INJECTION: forcing a failure. [ 447.938547][T10824] name failslab, interval 1, probability 0, space 0, times 0 [ 447.962392][T10824] CPU: 0 UID: 0 PID: 10824 Comm: syz.2.987 Tainted: G L syzkaller #0 PREEMPT(full) [ 447.962452][T10824] Tainted: [L]=SOFTLOCKUP [ 447.962464][T10824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 447.962484][T10824] Call Trace: [ 447.962495][T10824] [ 447.962507][T10824] dump_stack_lvl+0x100/0x190 [ 447.962573][T10824] should_fail_ex.cold+0x5/0xa [ 447.962615][T10824] should_failslab+0xc2/0x120 [ 447.962653][T10824] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 447.962704][T10824] ? alloc_inode+0x68/0x250 [ 447.962748][T10824] ? simple_start_creating+0xb0/0x110 [ 447.962805][T10824] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 447.962865][T10824] alloc_inode+0x68/0x250 [ 447.962911][T10824] new_inode+0x22/0x1c0 [ 447.962972][T10824] debugfs_create_dir+0xc4/0x440 [ 447.963014][T10824] kvm_dev_ioctl+0x11b6/0x1a50 [ 447.963066][T10824] ? find_held_lock+0x2b/0x80 [ 447.963099][T10824] ? __fget_files+0x215/0x3d0 [ 447.963127][T10824] ? hook_file_ioctl_common+0x146/0x410 [ 447.963171][T10824] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 447.963229][T10824] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 447.963272][T10824] __x64_sys_ioctl+0x18e/0x210 [ 447.963327][T10824] do_syscall_64+0x106/0xf80 [ 447.963375][T10824] ? clear_bhb_loop+0x40/0x90 [ 447.963414][T10824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.963450][T10824] RIP: 0033:0x7f851ed9c799 [ 447.963480][T10824] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 447.963514][T10824] RSP: 002b:00007f851fbad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 447.963549][T10824] RAX: ffffffffffffffda RBX: 00007f851f015fa0 RCX: 00007f851ed9c799 [ 447.963572][T10824] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 447.963593][T10824] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 447.963612][T10824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 447.963632][T10824] R13: 00007f851f016038 R14: 00007f851f015fa0 R15: 00007ffcd9e26f08 [ 447.963677][T10824] [ 448.175848][T10824] debugfs: out of free dentries, can not create directory '10824-10' [ 450.222477][T10855] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off [ 450.265025][T10855] pci 0000:00:01.3: PCI INT A: no GSI [ 450.391993][ T5843] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 450.555410][T10864] nvme_fcloop: unknown parameter or missing value '7="­ÿù;¤°&Lë=j³"Yq'R"' [ 450.691028][T10869] FAULT_INJECTION: forcing a failure. [ 450.691028][T10869] name failslab, interval 1, probability 0, space 0, times 0 [ 450.720662][T10869] CPU: 1 UID: 0 PID: 10869 Comm: syz.2.998 Tainted: G L syzkaller #0 PREEMPT(full) [ 450.720720][T10869] Tainted: [L]=SOFTLOCKUP [ 450.720731][T10869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 450.720751][T10869] Call Trace: [ 450.720761][T10869] [ 450.720774][T10869] dump_stack_lvl+0x100/0x190 [ 450.720837][T10869] should_fail_ex.cold+0x5/0xa [ 450.720880][T10869] should_failslab+0xc2/0x120 [ 450.720923][T10869] __kmalloc_cache_noprof+0x7a/0x6f0 [ 450.720969][T10869] ? kobject_create_and_add+0x46/0xc0 [ 450.721099][T10869] kobject_create_and_add+0x46/0xc0 [ 450.721137][T10869] __add_disk+0x6fe/0xe40 [ 450.721258][T10869] ? find_held_lock+0x2b/0x80 [ 450.721295][T10869] add_disk_fwnode+0x3d4/0x5c0 [ 450.721358][T10869] zram_add+0x4d2/0x610 [ 450.721435][T10869] ? __pfx_zram_add+0x10/0x10 [ 450.721504][T10869] ? find_held_lock+0x2b/0x80 [ 450.721536][T10869] ? sysfs_file_kobj+0xe4/0x290 [ 450.721584][T10869] ? __pfx_hot_add_show+0x10/0x10 [ 450.721642][T10869] hot_add_show+0x21/0x80 [ 450.721689][T10869] class_attr_show+0x72/0xa0 [ 450.721754][T10869] ? __pfx_class_attr_show+0x10/0x10 [ 450.721789][T10869] sysfs_kf_seq_show+0x217/0x3a0 [ 450.721839][T10869] seq_read_iter+0x32f/0x1270 [ 450.721914][T10869] kernfs_fop_read_iter+0x46c/0x610 [ 450.721956][T10869] ? rw_verify_area+0xce/0x6d0 [ 450.722006][T10869] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 450.722047][T10869] vfs_read+0x825/0xb30 [ 450.722114][T10869] ? __pfx_vfs_read+0x10/0x10 [ 450.722168][T10869] ? do_futex+0x192/0x350 [ 450.722217][T10869] ? __pfx_do_sys_openat2+0x10/0x10 [ 450.722273][T10869] ? __x64_sys_futex+0x34f/0x4d0 [ 450.722313][T10869] ? __x64_sys_futex+0x358/0x4d0 [ 450.722363][T10869] ksys_read+0x12a/0x250 [ 450.722415][T10869] ? __pfx_ksys_read+0x10/0x10 [ 450.722479][T10869] do_syscall_64+0x106/0xf80 [ 450.722524][T10869] ? clear_bhb_loop+0x40/0x90 [ 450.722568][T10869] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.722609][T10869] RIP: 0033:0x7f851ed9c799 [ 450.722639][T10869] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 450.722673][T10869] RSP: 002b:00007f851fbad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 450.722706][T10869] RAX: ffffffffffffffda RBX: 00007f851f015fa0 RCX: 00007f851ed9c799 [ 450.722727][T10869] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000002 [ 450.722746][T10869] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 450.722764][T10869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 450.722781][T10869] R13: 00007f851f016038 R14: 00007f851f015fa0 R15: 00007ffcd9e26f08 [ 450.722823][T10869] [ 451.608424][T10885] block2mtd: error: cannot open device /sys/modu [ 454.537708][T10923] nvme_fcloop: unknown parameter or missing value '7="­ÿù;¤°&Lë=j³"Yq'R"' [ 455.011423][T10928] FAULT_INJECTION: forcing a failure. [ 455.011423][T10928] name failslab, interval 1, probability 0, space 0, times 0 [ 455.105152][T10928] CPU: 1 UID: 0 PID: 10928 Comm: syz.0.1009 Tainted: G L syzkaller #0 PREEMPT(full) [ 455.105202][T10928] Tainted: [L]=SOFTLOCKUP [ 455.105211][T10928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 455.105227][T10928] Call Trace: [ 455.105235][T10928] [ 455.105246][T10928] dump_stack_lvl+0x100/0x190 [ 455.105290][T10928] should_fail_ex.cold+0x5/0xa [ 455.105322][T10928] should_failslab+0xc2/0x120 [ 455.105349][T10928] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 455.105387][T10928] ? __kernfs_new_node+0xd2/0x960 [ 455.105429][T10928] __kernfs_new_node+0xd2/0x960 [ 455.105462][T10928] ? __kernel_text_address+0xd/0x30 [ 455.105502][T10928] ? arch_stack_walk+0xa6/0xf0 [ 455.105527][T10928] ? __pfx___kernfs_new_node+0x10/0x10 [ 455.105569][T10928] ? find_held_lock+0x2b/0x80 [ 455.105591][T10928] ? kernfs_root+0xee/0x2a0 [ 455.105623][T10928] ? kernfs_root+0xee/0x2a0 [ 455.105665][T10928] kernfs_new_node+0x11b/0x1a0 [ 455.105711][T10928] kernfs_create_dir_ns+0x4c/0x1a0 [ 455.105755][T10928] sysfs_create_dir_ns+0x13a/0x2b0 [ 455.105789][T10928] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 455.105824][T10928] ? kfree_const+0x5a/0x70 [ 455.105861][T10928] ? rcu_is_watching+0x12/0xc0 [ 455.105899][T10928] ? kfree_const+0x5a/0x70 [ 455.105934][T10928] ? kfree+0x2ec/0x6b0 [ 455.105967][T10928] kobject_add_internal+0x2c8/0x930 [ 455.106075][T10928] kobject_add+0x16a/0x1e0 [ 455.106116][T10928] ? __pfx_kobject_add+0x10/0x10 [ 455.106176][T10928] kobject_create_and_add+0x7a/0xc0 [ 455.106207][T10928] __add_disk+0x66f/0xe40 [ 455.106250][T10928] ? find_held_lock+0x2b/0x80 [ 455.106277][T10928] add_disk_fwnode+0x3d4/0x5c0 [ 455.106323][T10928] zram_add+0x4d2/0x610 [ 455.106355][T10928] ? __pfx_zram_add+0x10/0x10 [ 455.106406][T10928] ? find_held_lock+0x2b/0x80 [ 455.106428][T10928] ? sysfs_file_kobj+0xe4/0x290 [ 455.106463][T10928] ? __pfx_hot_add_show+0x10/0x10 [ 455.106496][T10928] hot_add_show+0x21/0x80 [ 455.106528][T10928] class_attr_show+0x72/0xa0 [ 455.106555][T10928] ? __pfx_class_attr_show+0x10/0x10 [ 455.106580][T10928] sysfs_kf_seq_show+0x217/0x3a0 [ 455.106617][T10928] seq_read_iter+0x32f/0x1270 [ 455.106669][T10928] kernfs_fop_read_iter+0x46c/0x610 [ 455.106698][T10928] ? rw_verify_area+0xce/0x6d0 [ 455.106733][T10928] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 455.106763][T10928] vfs_read+0x825/0xb30 [ 455.106806][T10928] ? __pfx_vfs_read+0x10/0x10 [ 455.106842][T10928] ? do_futex+0x192/0x350 [ 455.106876][T10928] ? __pfx_do_sys_openat2+0x10/0x10 [ 455.106916][T10928] ? __x64_sys_futex+0x34f/0x4d0 [ 455.106946][T10928] ? __x64_sys_futex+0x358/0x4d0 [ 455.106982][T10928] ksys_read+0x12a/0x250 [ 455.107020][T10928] ? __pfx_ksys_read+0x10/0x10 [ 455.107068][T10928] do_syscall_64+0x106/0xf80 [ 455.107101][T10928] ? clear_bhb_loop+0x40/0x90 [ 455.107132][T10928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.107158][T10928] RIP: 0033:0x7fdc6619c799 [ 455.107180][T10928] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 455.107212][T10928] RSP: 002b:00007fdc6711b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 455.107236][T10928] RAX: ffffffffffffffda RBX: 00007fdc66415fa0 RCX: 00007fdc6619c799 [ 455.107253][T10928] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000002 [ 455.107268][T10928] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 455.107284][T10928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.107299][T10928] R13: 00007fdc66416038 R14: 00007fdc66415fa0 R15: 00007ffeaf909428 [ 455.107332][T10928] [ 455.637900][T10928] kobject: kobject_add_internal failed for holders (error: -12 parent: zram0) [ 455.700100][T10928] kobject: kobject_create_and_add: kobject_add error: -12 [ 459.558772][T10988] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 459.913099][T10994] FAULT_INJECTION: forcing a failure. [ 459.913099][T10994] name failslab, interval 1, probability 0, space 0, times 0 [ 459.933407][T10994] CPU: 1 UID: 0 PID: 10994 Comm: syz.3.1021 Tainted: G L syzkaller #0 PREEMPT(full) [ 459.933488][T10994] Tainted: [L]=SOFTLOCKUP [ 459.933502][T10994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 459.933526][T10994] Call Trace: [ 459.933538][T10994] [ 459.933552][T10994] dump_stack_lvl+0x100/0x190 [ 459.933617][T10994] should_fail_ex.cold+0x5/0xa [ 459.933661][T10994] should_failslab+0xc2/0x120 [ 459.933702][T10994] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 459.933773][T10994] ? __kernfs_new_node+0xd2/0x960 [ 459.933827][T10994] ? kstrdup+0xb3/0xe0 [ 459.933890][T10994] __kernfs_new_node+0xd2/0x960 [ 459.933945][T10994] ? __pfx___kernfs_new_node+0x10/0x10 [ 459.934005][T10994] ? find_held_lock+0x2b/0x80 [ 459.934050][T10994] ? kernfs_root+0xee/0x2a0 [ 459.934097][T10994] ? kernfs_root+0xee/0x2a0 [ 459.934159][T10994] kernfs_new_node+0x11b/0x1a0 [ 459.934221][T10994] kernfs_create_link+0xcc/0x240 [ 459.934265][T10994] sysfs_do_create_link_sd+0x90/0x140 [ 459.934317][T10994] sysfs_create_link+0x61/0xc0 [ 459.934365][T10994] __add_disk+0x619/0xe40 [ 459.934423][T10994] ? find_held_lock+0x2b/0x80 [ 459.934461][T10994] add_disk_fwnode+0x3d4/0x5c0 [ 459.934523][T10994] zram_add+0x4d2/0x610 [ 459.934568][T10994] ? __pfx_zram_add+0x10/0x10 [ 459.934639][T10994] ? find_held_lock+0x2b/0x80 [ 459.934669][T10994] ? sysfs_file_kobj+0xe4/0x290 [ 459.934713][T10994] ? __pfx_hot_add_show+0x10/0x10 [ 459.934758][T10994] hot_add_show+0x21/0x80 [ 459.934812][T10994] class_attr_show+0x72/0xa0 [ 459.934852][T10994] ? __pfx_class_attr_show+0x10/0x10 [ 459.934887][T10994] sysfs_kf_seq_show+0x217/0x3a0 [ 459.934937][T10994] seq_read_iter+0x32f/0x1270 [ 459.935010][T10994] kernfs_fop_read_iter+0x46c/0x610 [ 459.935046][T10994] ? rw_verify_area+0xce/0x6d0 [ 459.935094][T10994] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 459.935137][T10994] vfs_read+0x825/0xb30 [ 459.935195][T10994] ? __pfx_vfs_read+0x10/0x10 [ 459.935244][T10994] ? do_futex+0x192/0x350 [ 459.935285][T10994] ? __pfx_do_sys_openat2+0x10/0x10 [ 459.935336][T10994] ? __x64_sys_futex+0x34f/0x4d0 [ 459.935372][T10994] ? __x64_sys_futex+0x358/0x4d0 [ 459.935414][T10994] ksys_read+0x12a/0x250 [ 459.935460][T10994] ? __pfx_ksys_read+0x10/0x10 [ 459.935516][T10994] do_syscall_64+0x106/0xf80 [ 459.935556][T10994] ? clear_bhb_loop+0x40/0x90 [ 459.935592][T10994] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.935623][T10994] RIP: 0033:0x7f01ad39c799 [ 459.935650][T10994] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 459.935679][T10994] RSP: 002b:00007f01ae263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 459.935708][T10994] RAX: ffffffffffffffda RBX: 00007f01ad615fa0 RCX: 00007f01ad39c799 [ 459.935728][T10994] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000002 [ 459.935747][T10994] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 459.935774][T10994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 459.935793][T10994] R13: 00007f01ad616038 R14: 00007f01ad615fa0 R15: 00007ffc6785ce78 [ 459.935833][T10994] [ 460.498013][T11001] block2mtd: error: cannot open device  [ 460.596796][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1023'. [ 463.720495][T11045] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1034'. [ 463.755652][T11047] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1040'. [ 465.112500][T11061] FAULT_INJECTION: forcing a failure. [ 465.112500][T11061] name failslab, interval 1, probability 0, space 0, times 0 [ 465.126858][T11061] CPU: 1 UID: 0 PID: 11061 Comm: syz.4.1036 Tainted: G L syzkaller #0 PREEMPT(full) [ 465.126917][T11061] Tainted: [L]=SOFTLOCKUP [ 465.126929][T11061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 465.126952][T11061] Call Trace: [ 465.126963][T11061] [ 465.126975][T11061] dump_stack_lvl+0x100/0x190 [ 465.127039][T11061] should_fail_ex.cold+0x5/0xa [ 465.127082][T11061] should_failslab+0xc2/0x120 [ 465.127121][T11061] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 465.127175][T11061] ? __kernfs_new_node+0xd2/0x960 [ 465.127233][T11061] __kernfs_new_node+0xd2/0x960 [ 465.127280][T11061] ? __kernel_text_address+0xd/0x30 [ 465.127335][T11061] ? arch_stack_walk+0xa6/0xf0 [ 465.127369][T11061] ? __pfx___kernfs_new_node+0x10/0x10 [ 465.127430][T11061] ? find_held_lock+0x2b/0x80 [ 465.127462][T11061] ? kernfs_root+0xee/0x2a0 [ 465.127516][T11061] ? kernfs_root+0xee/0x2a0 [ 465.127577][T11061] kernfs_new_node+0x11b/0x1a0 [ 465.127642][T11061] kernfs_create_dir_ns+0x4c/0x1a0 [ 465.127705][T11061] sysfs_create_dir_ns+0x13a/0x2b0 [ 465.127762][T11061] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 465.127815][T11061] ? kfree_const+0x5a/0x70 [ 465.127868][T11061] ? rcu_is_watching+0x12/0xc0 [ 465.127920][T11061] ? kfree_const+0x5a/0x70 [ 465.127970][T11061] ? kfree+0x2ec/0x6b0 [ 465.128018][T11061] kobject_add_internal+0x2c8/0x930 [ 465.128085][T11061] kobject_add+0x16a/0x1e0 [ 465.128144][T11061] ? __pfx_kobject_add+0x10/0x10 [ 465.128227][T11061] kobject_create_and_add+0x7a/0xc0 [ 465.128284][T11061] __add_disk+0x66f/0xe40 [ 465.128346][T11061] ? find_held_lock+0x2b/0x80 [ 465.128383][T11061] add_disk_fwnode+0x3d4/0x5c0 [ 465.128453][T11061] zram_add+0x4d2/0x610 [ 465.128522][T11061] ? __pfx_zram_add+0x10/0x10 [ 465.128611][T11061] ? find_held_lock+0x2b/0x80 [ 465.128643][T11061] ? sysfs_file_kobj+0xe4/0x290 [ 465.128694][T11061] ? __pfx_hot_add_show+0x10/0x10 [ 465.128747][T11061] hot_add_show+0x21/0x80 [ 465.128794][T11061] class_attr_show+0x72/0xa0 [ 465.128837][T11061] ? __pfx_class_attr_show+0x10/0x10 [ 465.128872][T11061] sysfs_kf_seq_show+0x217/0x3a0 [ 465.128923][T11061] seq_read_iter+0x32f/0x1270 [ 465.128995][T11061] kernfs_fop_read_iter+0x46c/0x610 [ 465.129036][T11061] ? rw_verify_area+0xce/0x6d0 [ 465.129087][T11061] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 465.129128][T11061] vfs_read+0x825/0xb30 [ 465.129189][T11061] ? __pfx_vfs_read+0x10/0x10 [ 465.129239][T11061] ? do_futex+0x192/0x350 [ 465.129287][T11061] ? __pfx_do_sys_openat2+0x10/0x10 [ 465.129344][T11061] ? __x64_sys_futex+0x34f/0x4d0 [ 465.129387][T11061] ? __x64_sys_futex+0x358/0x4d0 [ 465.129439][T11061] ksys_read+0x12a/0x250 [ 465.129491][T11061] ? __pfx_ksys_read+0x10/0x10 [ 465.129560][T11061] do_syscall_64+0x106/0xf80 [ 465.129608][T11061] ? clear_bhb_loop+0x40/0x90 [ 465.129651][T11061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.129686][T11061] RIP: 0033:0x7f34c019c799 [ 465.129716][T11061] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 465.129760][T11061] RSP: 002b:00007f34c107b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 465.129795][T11061] RAX: ffffffffffffffda RBX: 00007f34c0415fa0 RCX: 00007f34c019c799 [ 465.129819][T11061] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000002 [ 465.129840][T11061] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 465.129862][T11061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 465.129882][T11061] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 465.129928][T11061] [ 465.129945][T11061] kobject: kobject_add_internal failed for holders (error: -12 parent: zram0) [ 465.522366][T11061] kobject: kobject_create_and_add: kobject_add error: -12 [ 465.638281][T11067] block2mtd: error: cannot open device  [ 468.395395][T11108] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1048'. [ 468.692729][T11113] FAULT_INJECTION: forcing a failure. [ 468.692729][T11113] name failslab, interval 1, probability 0, space 0, times 0 [ 468.715786][T11113] CPU: 0 UID: 0 PID: 11113 Comm: syz.0.1048 Tainted: G L syzkaller #0 PREEMPT(full) [ 468.715844][T11113] Tainted: [L]=SOFTLOCKUP [ 468.715856][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 468.715877][T11113] Call Trace: [ 468.715887][T11113] [ 468.715900][T11113] dump_stack_lvl+0x100/0x190 [ 468.715959][T11113] should_fail_ex.cold+0x5/0xa [ 468.715998][T11113] should_failslab+0xc2/0x120 [ 468.716034][T11113] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 468.716088][T11113] ? __d_alloc+0x34/0xa80 [ 468.716134][T11113] __d_alloc+0x34/0xa80 [ 468.716201][T11113] d_alloc+0x4a/0x1e0 [ 468.716245][T11113] lookup_one_qstr_excl+0x175/0x250 [ 468.716297][T11113] start_dirop+0x59/0xb0 [ 468.716352][T11113] simple_start_creating+0xf9/0x110 [ 468.716408][T11113] ? __pfx_simple_start_creating+0x10/0x10 [ 468.716464][T11113] ? mntput+0x70/0xa0 [ 468.716516][T11113] ? simple_pin_fs+0xa3/0x190 [ 468.716567][T11113] debugfs_start_creating.part.0+0x82/0x170 [ 468.716617][T11113] __debugfs_create_file+0xb3/0x4f0 [ 468.716661][T11113] debugfs_create_file_full+0x41/0x60 [ 468.716704][T11113] kvm_dev_ioctl+0x1491/0x1a50 [ 468.716762][T11113] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 468.716817][T11113] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 468.716858][T11113] __x64_sys_ioctl+0x18e/0x210 [ 468.716912][T11113] do_syscall_64+0x106/0xf80 [ 468.716960][T11113] ? clear_bhb_loop+0x40/0x90 [ 468.717003][T11113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.717038][T11113] RIP: 0033:0x7fdc6619c799 [ 468.717068][T11113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 468.717107][T11113] RSP: 002b:00007fdc670b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 468.717142][T11113] RAX: ffffffffffffffda RBX: 00007fdc66416270 RCX: 00007fdc6619c799 [ 468.717164][T11113] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 468.717184][T11113] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 468.717204][T11113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 468.717225][T11113] R13: 00007fdc66416308 R14: 00007fdc66416270 R15: 00007ffeaf909428 [ 468.717272][T11113] [ 470.229312][T11135] block2mtd: error: cannot open device /sys/modu [ 472.140890][T11150] binder: 11147:11150 ioctl c018620c 0 returned -1 [ 472.668568][T11167] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1060'. [ 476.439438][T11207] block2mtd: error: cannot open device /sys/modu [ 480.736150][T11265] block2mtd: error: cannot open device /sys/modu [ 481.703164][T11267] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 481.937224][T11267] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 481.995959][T11267] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 482.006766][T11267] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 482.051083][T11267] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 482.073788][T11267] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 482.099491][T11267] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 482.106448][T11267] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 482.814520][T11289] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1085'. [ 483.001507][ T5843] Bluetooth: hci0: command 0x0406 tx timeout [ 484.041539][ T5843] Bluetooth: hci1: command 0x0406 tx timeout [ 484.121791][ T5840] Bluetooth: hci3: command 0x0406 tx timeout [ 484.121992][ T5843] Bluetooth: hci4: command 0x0406 tx timeout [ 484.496503][T11312] block2mtd: error: cannot open device /sys/modu [ 484.744721][T11307] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1091'. [ 484.956218][T11320] block2mtd: error: cannot open device /sys/modu [ 485.092669][ T5843] Bluetooth: hci0: command 0x0406 tx timeout [ 485.627246][T11307] FAULT_INJECTION: forcing a failure. [ 485.627246][T11307] name failslab, interval 1, probability 0, space 0, times 0 [ 485.815280][T11307] CPU: 0 UID: 0 PID: 11307 Comm: syz.4.1091 Tainted: G L syzkaller #0 PREEMPT(full) [ 485.815338][T11307] Tainted: [L]=SOFTLOCKUP [ 485.815350][T11307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 485.815371][T11307] Call Trace: [ 485.815382][T11307] [ 485.815395][T11307] dump_stack_lvl+0x100/0x190 [ 485.815457][T11307] should_fail_ex.cold+0x5/0xa [ 485.815496][T11307] should_failslab+0xc2/0x120 [ 485.815536][T11307] __kmalloc_cache_noprof+0x7a/0x6f0 [ 485.815582][T11307] ? kvm_dev_ioctl+0x1320/0x1a50 [ 485.815627][T11307] kvm_dev_ioctl+0x1320/0x1a50 [ 485.815677][T11307] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 485.815726][T11307] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 485.815764][T11307] __x64_sys_ioctl+0x18e/0x210 [ 485.815818][T11307] do_syscall_64+0x106/0xf80 [ 485.815865][T11307] ? clear_bhb_loop+0x40/0x90 [ 485.815909][T11307] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.815944][T11307] RIP: 0033:0x7f34c019c799 [ 485.815972][T11307] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 485.816006][T11307] RSP: 002b:00007f34c107b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 485.816040][T11307] RAX: ffffffffffffffda RBX: 00007f34c0415fa0 RCX: 00007f34c019c799 [ 485.816062][T11307] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 485.816082][T11307] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 485.816101][T11307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 485.816120][T11307] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 485.816163][T11307] [ 486.164242][ T5843] Bluetooth: hci1: command 0x0406 tx timeout [ 486.221114][ T5840] Bluetooth: hci3: command 0x0406 tx timeout [ 486.227478][ T5843] Bluetooth: hci4: command 0x0406 tx timeout [ 487.627083][T11346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1100'. [ 488.578414][T11355] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1101'. [ 489.024593][T11355] FAULT_INJECTION: forcing a failure. [ 489.024593][T11355] name failslab, interval 1, probability 0, space 0, times 0 [ 489.039316][T11355] CPU: 1 UID: 0 PID: 11355 Comm: syz.0.1101 Tainted: G L syzkaller #0 PREEMPT(full) [ 489.039377][T11355] Tainted: [L]=SOFTLOCKUP [ 489.039390][T11355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 489.039411][T11355] Call Trace: [ 489.039422][T11355] [ 489.039434][T11355] dump_stack_lvl+0x100/0x190 [ 489.039499][T11355] should_fail_ex.cold+0x5/0xa [ 489.039542][T11355] should_failslab+0xc2/0x120 [ 489.039581][T11355] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 489.039642][T11355] ? alloc_inode+0x68/0x250 [ 489.039689][T11355] ? simple_start_creating+0xb0/0x110 [ 489.039752][T11355] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 489.039815][T11355] alloc_inode+0x68/0x250 [ 489.039860][T11355] new_inode+0x22/0x1c0 [ 489.039909][T11355] __debugfs_create_file+0x105/0x4f0 [ 489.039950][T11355] debugfs_create_file_full+0x41/0x60 [ 489.039989][T11355] kvm_dev_ioctl+0x1491/0x1a50 [ 489.040043][T11355] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 489.040106][T11355] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 489.040148][T11355] __x64_sys_ioctl+0x18e/0x210 [ 489.040201][T11355] do_syscall_64+0x106/0xf80 [ 489.040250][T11355] ? clear_bhb_loop+0x40/0x90 [ 489.040295][T11355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 489.040332][T11355] RIP: 0033:0x7fdc6619c799 [ 489.040361][T11355] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 489.040393][T11355] RSP: 002b:00007fdc6711b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 489.040428][T11355] RAX: ffffffffffffffda RBX: 00007fdc66415fa0 RCX: 00007fdc6619c799 [ 489.040452][T11355] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 489.040475][T11355] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 489.040496][T11355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 489.040515][T11355] R13: 00007fdc66416038 R14: 00007fdc66415fa0 R15: 00007ffeaf909428 [ 489.040559][T11355] [ 489.041031][T11355] debugfs: out of free dentries, can not create file 'remote_tlb_flush' [ 490.995215][T11380] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1106'. [ 491.197611][T11380] FAULT_INJECTION: forcing a failure. [ 491.197611][T11380] name failslab, interval 1, probability 0, space 0, times 0 [ 491.211211][T11380] CPU: 1 UID: 0 PID: 11380 Comm: syz.3.1106 Tainted: G L syzkaller #0 PREEMPT(full) [ 491.211279][T11380] Tainted: [L]=SOFTLOCKUP [ 491.211291][T11380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 491.211314][T11380] Call Trace: [ 491.211326][T11380] [ 491.211340][T11380] dump_stack_lvl+0x100/0x190 [ 491.211404][T11380] should_fail_ex.cold+0x5/0xa [ 491.211451][T11380] should_failslab+0xc2/0x120 [ 491.211493][T11380] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 491.211551][T11380] ? alloc_inode+0x68/0x250 [ 491.211599][T11380] ? simple_start_creating+0xb0/0x110 [ 491.211657][T11380] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 491.211718][T11380] alloc_inode+0x68/0x250 [ 491.211767][T11380] new_inode+0x22/0x1c0 [ 491.211816][T11380] __debugfs_create_file+0x105/0x4f0 [ 491.211859][T11380] debugfs_create_file_full+0x41/0x60 [ 491.211900][T11380] kvm_dev_ioctl+0x1491/0x1a50 [ 491.211956][T11380] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 491.212009][T11380] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 491.212052][T11380] __x64_sys_ioctl+0x18e/0x210 [ 491.212105][T11380] do_syscall_64+0x106/0xf80 [ 491.212151][T11380] ? clear_bhb_loop+0x40/0x90 [ 491.212198][T11380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 491.212232][T11380] RIP: 0033:0x7f01ad39c799 [ 491.212271][T11380] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 491.212309][T11380] RSP: 002b:00007f01ae263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 491.212342][T11380] RAX: ffffffffffffffda RBX: 00007f01ad615fa0 RCX: 00007f01ad39c799 [ 491.212366][T11380] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 491.212386][T11380] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 491.212405][T11380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 491.212424][T11380] R13: 00007f01ad616038 R14: 00007f01ad615fa0 R15: 00007ffc6785ce78 [ 491.212492][T11380] [ 491.212508][T11380] debugfs: out of free dentries, can not create file 'remote_tlb_flush' [ 494.373512][T11419] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1117'. [ 494.619560][T11427] block2mtd: error: cannot open device /sys/modu [ 494.732383][T11419] FAULT_INJECTION: forcing a failure. [ 494.732383][T11419] name failslab, interval 1, probability 0, space 0, times 0 [ 494.817680][T11419] CPU: 1 UID: 0 PID: 11419 Comm: syz.4.1117 Tainted: G L syzkaller #0 PREEMPT(full) [ 494.817740][T11419] Tainted: [L]=SOFTLOCKUP [ 494.817751][T11419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 494.817770][T11419] Call Trace: [ 494.817780][T11419] [ 494.817792][T11419] dump_stack_lvl+0x100/0x190 [ 494.817873][T11419] should_fail_ex.cold+0x5/0xa [ 494.817915][T11419] should_failslab+0xc2/0x120 [ 494.817963][T11419] __kmalloc_cache_noprof+0x7a/0x6f0 [ 494.818010][T11419] ? kvm_dev_ioctl+0x1320/0x1a50 [ 494.818058][T11419] kvm_dev_ioctl+0x1320/0x1a50 [ 494.818112][T11419] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 494.818165][T11419] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 494.818207][T11419] __x64_sys_ioctl+0x18e/0x210 [ 494.818260][T11419] do_syscall_64+0x106/0xf80 [ 494.818308][T11419] ? clear_bhb_loop+0x40/0x90 [ 494.818351][T11419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 494.818383][T11419] RIP: 0033:0x7f34c019c799 [ 494.818409][T11419] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 494.818442][T11419] RSP: 002b:00007f34c107b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 494.818473][T11419] RAX: ffffffffffffffda RBX: 00007f34c0415fa0 RCX: 00007f34c019c799 [ 494.818492][T11419] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 494.818511][T11419] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 494.818529][T11419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 494.818547][T11419] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 494.818595][T11419] [ 494.908307][T11431] block2mtd: error: cannot open device /sys/modu [ 496.914117][T11450] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1122'. [ 497.305272][T11450] FAULT_INJECTION: forcing a failure. [ 497.305272][T11450] name failslab, interval 1, probability 0, space 0, times 0 [ 497.320009][T11450] CPU: 1 UID: 0 PID: 11450 Comm: syz.4.1122 Tainted: G L syzkaller #0 PREEMPT(full) [ 497.320066][T11450] Tainted: [L]=SOFTLOCKUP [ 497.320080][T11450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 497.320101][T11450] Call Trace: [ 497.320113][T11450] [ 497.320125][T11450] dump_stack_lvl+0x100/0x190 [ 497.320193][T11450] should_fail_ex.cold+0x5/0xa [ 497.320246][T11450] should_failslab+0xc2/0x120 [ 497.320284][T11450] __kmalloc_cache_noprof+0x7a/0x6f0 [ 497.320332][T11450] ? kvm_dev_ioctl+0x1320/0x1a50 [ 497.320381][T11450] kvm_dev_ioctl+0x1320/0x1a50 [ 497.320435][T11450] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 497.320489][T11450] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 497.320531][T11450] __x64_sys_ioctl+0x18e/0x210 [ 497.320586][T11450] do_syscall_64+0x106/0xf80 [ 497.320632][T11450] ? clear_bhb_loop+0x40/0x90 [ 497.320675][T11450] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.320712][T11450] RIP: 0033:0x7f34c019c799 [ 497.320741][T11450] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 497.320775][T11450] RSP: 002b:00007f34c107b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 497.320808][T11450] RAX: ffffffffffffffda RBX: 00007f34c0415fa0 RCX: 00007f34c019c799 [ 497.320830][T11450] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 497.320850][T11450] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 497.320870][T11450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.320889][T11450] R13: 00007f34c0416038 R14: 00007f34c0415fa0 R15: 00007fff837bdbf8 [ 497.320934][T11450] [ 498.953428][T11478] block2mtd: error: cannot open device /sys/modu [ 501.797951][T11503] block2mtd: error: cannot open device /sys/modu [ 502.138697][T11512] block2mtd: error: cannot open device /sys/modu [ 502.219730][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 502.226241][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.555217][T11515] __vm_enough_memory: pid: 11515, comm: syz.0.1133, bytes: 4398046511104 not enough memory for the allocation [ 502.992808][T11530] block2mtd: error: cannot open device /sys/modu [ 504.159021][T11544] block2mtd: error: cannot open device /sys/modu [ 504.545643][T11553] block2mtd: error: cannot open device /sys/modu [ 504.952363][T11559] FAULT_INJECTION: forcing a failure. [ 504.952363][T11559] name failslab, interval 1, probability 0, space 0, times 0 [ 504.969400][T11559] CPU: 0 UID: 0 PID: 11559 Comm: syz.0.1143 Tainted: G L syzkaller #0 PREEMPT(full) [ 504.969452][T11559] Tainted: [L]=SOFTLOCKUP [ 504.969462][T11559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 504.969482][T11559] Call Trace: [ 504.969492][T11559] [ 504.969504][T11559] dump_stack_lvl+0x100/0x190 [ 504.969560][T11559] should_fail_ex.cold+0x5/0xa [ 504.969597][T11559] ? __register_sysctl_table+0xbe4/0x1650 [ 504.969647][T11559] should_failslab+0xc2/0x120 [ 504.969682][T11559] __kmalloc_noprof+0xe0/0x850 [ 504.969743][T11559] __register_sysctl_table+0xbe4/0x1650 [ 504.969815][T11559] ? __pfx___register_sysctl_table+0x10/0x10 [ 504.969864][T11559] ? is_module_address+0x69/0xf0 [ 504.969905][T11559] ? register_net_sysctl_sz+0x222/0x430 [ 504.970058][T11559] __devinet_sysctl_register+0x1b9/0x360 [ 504.970147][T11559] ? trace_kmalloc+0x101/0x130 [ 504.970183][T11559] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 504.970243][T11559] ? __asan_memcpy+0x3c/0x60 [ 504.970292][T11559] devinet_init_net+0x303/0x8d0 [ 504.970371][T11559] ? __pfx_devinet_init_net+0x10/0x10 [ 504.970432][T11559] ops_init+0x1e2/0x5f0 [ 504.970514][T11559] setup_net+0x118/0x3a0 [ 504.970564][T11559] ? __pfx_setup_net+0x10/0x10 [ 504.970609][T11559] ? lockdep_init_map_type+0x5c/0x250 [ 504.970655][T11559] ? mutex_init_lockep+0x110/0x150 [ 504.970705][T11559] copy_net_ns+0x46f/0x7c0 [ 504.970785][T11559] create_new_namespaces+0x3ea/0xac0 [ 504.970829][T11559] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 504.970868][T11559] ksys_unshare+0x473/0xad0 [ 504.970912][T11559] ? __pfx_ksys_unshare+0x10/0x10 [ 504.970968][T11559] __x64_sys_unshare+0x31/0x40 [ 504.971017][T11559] do_syscall_64+0x106/0xf80 [ 504.971061][T11559] ? clear_bhb_loop+0x40/0x90 [ 504.971102][T11559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.971135][T11559] RIP: 0033:0x7fdc6619c799 [ 504.971163][T11559] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 504.971191][T11559] RSP: 002b:00007fdc670fa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 504.971220][T11559] RAX: ffffffffffffffda RBX: 00007fdc66416090 RCX: 00007fdc6619c799 [ 504.971239][T11559] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 504.971256][T11559] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 504.971273][T11559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 504.971289][T11559] R13: 00007fdc66416128 R14: 00007fdc66416090 R15: 00007ffeaf909428 [ 504.971326][T11559] [ 505.230852][T11559] sysctl could not get directory: /net/ipv4/conf -12 [ 505.593737][T11567] FAULT_INJECTION: forcing a failure. [ 505.593737][T11567] name failslab, interval 1, probability 0, space 0, times 0 [ 505.609797][T11567] CPU: 1 UID: 0 PID: 11567 Comm: syz.4.1144 Tainted: G L syzkaller #0 PREEMPT(full) [ 505.609855][T11567] Tainted: [L]=SOFTLOCKUP [ 505.609867][T11567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 505.609888][T11567] Call Trace: [ 505.609899][T11567] [ 505.609912][T11567] dump_stack_lvl+0x100/0x190 [ 505.609986][T11567] should_fail_ex.cold+0x5/0xa [ 505.610031][T11567] should_failslab+0xc2/0x120 [ 505.610071][T11567] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 505.610127][T11567] ? security_inode_alloc+0x3b/0x2c0 [ 505.610161][T11567] ? lockdep_init_map_type+0x5c/0x250 [ 505.610218][T11567] security_inode_alloc+0x3b/0x2c0 [ 505.610254][T11567] inode_init_always_gfp+0xced/0x1040 [ 505.610297][T11567] alloc_inode+0x8e/0x250 [ 505.610343][T11567] new_inode+0x22/0x1c0 [ 505.610391][T11567] __debugfs_create_file+0x105/0x4f0 [ 505.610436][T11567] debugfs_create_file_full+0x41/0x60 [ 505.610476][T11567] kvm_dev_ioctl+0x1491/0x1a50 [ 505.610531][T11567] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 505.610595][T11567] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 505.610640][T11567] __x64_sys_ioctl+0x18e/0x210 [ 505.610697][T11567] do_syscall_64+0x106/0xf80 [ 505.610746][T11567] ? clear_bhb_loop+0x40/0x90 [ 505.610788][T11567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.610822][T11567] RIP: 0033:0x7f34c019c799 [ 505.610851][T11567] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 505.610885][T11567] RSP: 002b:00007f34c1039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 505.610920][T11567] RAX: ffffffffffffffda RBX: 00007f34c0416180 RCX: 00007f34c019c799 [ 505.610943][T11567] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 505.610963][T11567] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 505.610984][T11567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 505.611004][T11567] R13: 00007f34c0416218 R14: 00007f34c0416180 R15: 00007fff837bdbf8 [ 505.611049][T11567] [ 505.611445][T11567] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 506.427133][T11570] block2mtd: error: cannot open device /sys/modu [ 506.823502][ T5843] Bluetooth: hci4: unexpected event 0x23 length: 127 > 13 [ 508.188683][T11602] usbip-vudc usbip-vudc.0: gadget not bound [ 508.346702][T11605] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1152'. [ 508.689705][T11605] FAULT_INJECTION: forcing a failure. [ 508.689705][T11605] name failslab, interval 1, probability 0, space 0, times 0 [ 508.705171][T11605] CPU: 0 UID: 0 PID: 11605 Comm: syz.3.1152 Tainted: G L syzkaller #0 PREEMPT(full) [ 508.705229][T11605] Tainted: [L]=SOFTLOCKUP [ 508.705241][T11605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 508.705263][T11605] Call Trace: [ 508.705275][T11605] [ 508.705287][T11605] dump_stack_lvl+0x100/0x190 [ 508.705351][T11605] should_fail_ex.cold+0x5/0xa [ 508.705392][T11605] should_failslab+0xc2/0x120 [ 508.705432][T11605] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 508.705483][T11605] ? security_inode_alloc+0x3b/0x2c0 [ 508.705519][T11605] ? lockdep_init_map_type+0x5c/0x250 [ 508.705572][T11605] security_inode_alloc+0x3b/0x2c0 [ 508.705608][T11605] inode_init_always_gfp+0xced/0x1040 [ 508.705651][T11605] alloc_inode+0x8e/0x250 [ 508.705695][T11605] new_inode+0x22/0x1c0 [ 508.705743][T11605] debugfs_create_dir+0xc4/0x440 [ 508.705794][T11605] kvm_dev_ioctl+0x11b6/0x1a50 [ 508.705846][T11605] ? find_held_lock+0x2b/0x80 [ 508.705878][T11605] ? __fget_files+0x215/0x3d0 [ 508.705906][T11605] ? hook_file_ioctl_common+0x146/0x410 [ 508.705946][T11605] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 508.706001][T11605] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 508.706042][T11605] __x64_sys_ioctl+0x18e/0x210 [ 508.706096][T11605] do_syscall_64+0x106/0xf80 [ 508.706143][T11605] ? clear_bhb_loop+0x40/0x90 [ 508.706187][T11605] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 508.706225][T11605] RIP: 0033:0x7f01ad39c799 [ 508.706254][T11605] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 508.706292][T11605] RSP: 002b:00007f01ae263028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 508.706326][T11605] RAX: ffffffffffffffda RBX: 00007f01ad615fa0 RCX: 00007f01ad39c799 [ 508.706349][T11605] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 508.706370][T11605] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 508.706390][T11605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 508.706409][T11605] R13: 00007f01ad616038 R14: 00007f01ad615fa0 R15: 00007ffc6785ce78 [ 508.706455][T11605] [ 508.706844][T11605] debugfs: out of free dentries, can not create directory '11605-10' [ 509.636996][T11624] block2mtd: error: cannot open device /sys/modu [ 509.794428][T11621] smpboot: CPU 1 is now offline [ 510.673905][T11638] FAULT_INJECTION: forcing a failure. [ 510.673905][T11638] name failslab, interval 1, probability 0, space 0, times 0 [ 510.824077][T11644] block2mtd: error: cannot open device /sys/modu [ 510.843916][T11638] CPU: 0 UID: 0 PID: 11638 Comm: syz.2.1157 Tainted: G L syzkaller #0 PREEMPT(full) [ 510.843958][T11638] Tainted: [L]=SOFTLOCKUP [ 510.843966][T11638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 510.843981][T11638] Call Trace: [ 510.843989][T11638] [ 510.843998][T11638] dump_stack_lvl+0x100/0x190 [ 510.844042][T11638] should_fail_ex.cold+0x5/0xa [ 510.844072][T11638] should_failslab+0xc2/0x120 [ 510.844098][T11638] __kmalloc_cache_noprof+0x7a/0x6f0 [ 510.844131][T11638] ? kvm_dev_ioctl+0x1320/0x1a50 [ 510.844166][T11638] kvm_dev_ioctl+0x1320/0x1a50 [ 510.844203][T11638] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 510.844241][T11638] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 510.844273][T11638] __x64_sys_ioctl+0x18e/0x210 [ 510.844311][T11638] do_syscall_64+0x106/0xf80 [ 510.844345][T11638] ? clear_bhb_loop+0x40/0x90 [ 510.844375][T11638] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 510.844401][T11638] RIP: 0033:0x7f851ed9c799 [ 510.844421][T11638] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 510.844446][T11638] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 510.844468][T11638] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 510.844484][T11638] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 510.844498][T11638] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 510.844513][T11638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 510.844527][T11638] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 510.844558][T11638] [ 512.397613][T11658] futex_wake_op: syz.3.1163 tries to shift op by -2048; fix this program [ 512.397774][T11658] futex_wake_op: syz.3.1163 tries to shift op by -2048; fix this program [ 512.417501][T11658] 0x000000000001-0x000000020000 : "" [ 512.517177][T11658] ftl_cs: FTL header corrupt! [ 512.581396][T11661] misc userio: No port type given on /dev/userio [ 515.789460][T11705] block2mtd: error: cannot open device /sys/modu [ 515.820973][T11693] __vm_enough_memory: pid: 11693, comm: syz.3.1168, bytes: 4398046511104 not enough memory for the allocation [ 516.456002][T11716] block2mtd: error: cannot open device /sys/modu [ 519.112213][T11761] random: crng reseeded on system resumption [ 519.751631][T11776] FAULT_INJECTION: forcing a failure. [ 519.751631][T11776] name failslab, interval 1, probability 0, space 0, times 0 [ 519.917653][T11776] CPU: 0 UID: 0 PID: 11776 Comm: syz.3.1185 Tainted: G L syzkaller #0 PREEMPT(full) [ 519.917695][T11776] Tainted: [L]=SOFTLOCKUP [ 519.917705][T11776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 519.917720][T11776] Call Trace: [ 519.917729][T11776] [ 519.917738][T11776] dump_stack_lvl+0x100/0x190 [ 519.917784][T11776] should_fail_ex.cold+0x5/0xa [ 519.917814][T11776] should_failslab+0xc2/0x120 [ 519.917840][T11776] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 519.917880][T11776] ? alloc_inode+0x68/0x250 [ 519.917914][T11776] ? simple_start_creating+0xb0/0x110 [ 519.917954][T11776] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 519.917997][T11776] alloc_inode+0x68/0x250 [ 519.918030][T11776] new_inode+0x22/0x1c0 [ 519.918064][T11776] __debugfs_create_file+0x105/0x4f0 [ 519.918102][T11776] debugfs_create_file_full+0x41/0x60 [ 519.918131][T11776] kvm_dev_ioctl+0x1491/0x1a50 [ 519.918171][T11776] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 519.918210][T11776] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 519.918241][T11776] __x64_sys_ioctl+0x18e/0x210 [ 519.918280][T11776] do_syscall_64+0x106/0xf80 [ 519.918314][T11776] ? clear_bhb_loop+0x40/0x90 [ 519.918344][T11776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.918370][T11776] RIP: 0033:0x7f01ad39c799 [ 519.918395][T11776] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 519.918420][T11776] RSP: 002b:00007f01ae221028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 519.918445][T11776] RAX: ffffffffffffffda RBX: 00007f01ad616180 RCX: 00007f01ad39c799 [ 519.918461][T11776] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 519.918476][T11776] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 519.918491][T11776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 519.918506][T11776] R13: 00007f01ad616218 R14: 00007f01ad616180 R15: 00007ffc6785ce78 [ 519.918537][T11776] [ 520.419469][T11776] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 520.996125][T11788] FAULT_INJECTION: forcing a failure. [ 520.996125][T11788] name failslab, interval 1, probability 0, space 0, times 0 [ 521.021694][T11790] block2mtd: error: cannot open device /sys/modu [ 521.170879][T11788] CPU: 0 UID: 0 PID: 11788 Comm: syz.3.1188 Tainted: G L syzkaller #0 PREEMPT(full) [ 521.170922][T11788] Tainted: [L]=SOFTLOCKUP [ 521.170931][T11788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 521.170946][T11788] Call Trace: [ 521.170955][T11788] [ 521.170965][T11788] dump_stack_lvl+0x100/0x190 [ 521.171011][T11788] should_fail_ex.cold+0x5/0xa [ 521.171042][T11788] should_failslab+0xc2/0x120 [ 521.171068][T11788] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 521.171111][T11788] ? security_inode_alloc+0x3b/0x2c0 [ 521.171136][T11788] ? lockdep_init_map_type+0x5c/0x250 [ 521.171174][T11788] security_inode_alloc+0x3b/0x2c0 [ 521.171200][T11788] inode_init_always_gfp+0xced/0x1040 [ 521.171231][T11788] alloc_inode+0x8e/0x250 [ 521.171263][T11788] new_inode+0x22/0x1c0 [ 521.171297][T11788] __debugfs_create_file+0x105/0x4f0 [ 521.171327][T11788] debugfs_create_file_full+0x41/0x60 [ 521.171356][T11788] kvm_dev_ioctl+0x1491/0x1a50 [ 521.171394][T11788] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 521.171432][T11788] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 521.171471][T11788] __x64_sys_ioctl+0x18e/0x210 [ 521.171510][T11788] do_syscall_64+0x106/0xf80 [ 521.171544][T11788] ? clear_bhb_loop+0x40/0x90 [ 521.171574][T11788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 521.171600][T11788] RIP: 0033:0x7f01ad39c799 [ 521.171622][T11788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 521.171647][T11788] RSP: 002b:00007f01ae221028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 521.171671][T11788] RAX: ffffffffffffffda RBX: 00007f01ad616180 RCX: 00007f01ad39c799 [ 521.171687][T11788] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 521.171702][T11788] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 521.171717][T11788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 521.171731][T11788] R13: 00007f01ad616218 R14: 00007f01ad616180 R15: 00007ffc6785ce78 [ 521.171763][T11788] [ 521.178230][T11788] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 524.352724][T11830] netlink: 206 bytes leftover after parsing attributes in process `syz.4.1198'. [ 527.669356][T11879] random: crng reseeded on system resumption [ 527.929836][T11886] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1208'. [ 530.044714][T11896] syz.0.1219 (11896) used greatest stack depth: 18456 bytes left [ 530.465827][T11921] block2mtd: error: cannot open device /sys/modu [ 530.646938][T11924] tipc: Started in network mode [ 530.689952][T11924] tipc: Node identity ffffffff, cluster identity 4711 [ 530.766707][T11924] tipc: Node number set to 4294967295 [ 531.679749][T11943] FAULT_INJECTION: forcing a failure. [ 531.679749][T11943] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 531.775360][T11943] CPU: 0 UID: 0 PID: 11943 Comm: syz.2.1220 Tainted: G L syzkaller #0 PREEMPT(full) [ 531.775401][T11943] Tainted: [L]=SOFTLOCKUP [ 531.775409][T11943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 531.775422][T11943] Call Trace: [ 531.775431][T11943] [ 531.775441][T11943] dump_stack_lvl+0x100/0x190 [ 531.775486][T11943] should_fail_ex.cold+0x5/0xa [ 531.775515][T11943] _copy_from_user+0x2e/0xd0 [ 531.775547][T11943] memdup_user_nul+0x6c/0x120 [ 531.775577][T11943] __do_sys_fsconfig+0x885/0xcb0 [ 531.775612][T11943] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 531.775641][T11943] ? fput+0x79/0x100 [ 531.775680][T11943] do_syscall_64+0x106/0xf80 [ 531.775713][T11943] ? clear_bhb_loop+0x40/0x90 [ 531.775742][T11943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.775766][T11943] RIP: 0033:0x7f851ed9c799 [ 531.775785][T11943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 531.775808][T11943] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 531.775832][T11943] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 531.775848][T11943] RDX: 0000200000000300 RSI: 0000000000000002 RDI: 0000000000000007 [ 531.775862][T11943] RBP: 00007f851cff6090 R08: 0000000000000005 R09: 0000000000000000 [ 531.775877][T11943] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001 [ 531.775892][T11943] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 531.775922][T11943] [ 534.194345][T11986] block2mtd: error: cannot open device /sys/modu [ 535.518817][T12011] FAULT_INJECTION: forcing a failure. [ 535.518817][T12011] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 535.518863][T12011] CPU: 0 UID: 0 PID: 12011 Comm: syz.0.1233 Tainted: G L syzkaller #0 PREEMPT(full) [ 535.518897][T12011] Tainted: [L]=SOFTLOCKUP [ 535.518905][T12011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 535.518920][T12011] Call Trace: [ 535.518927][T12011] [ 535.518936][T12011] dump_stack_lvl+0x100/0x190 [ 535.518978][T12011] should_fail_ex.cold+0x5/0xa [ 535.519006][T12011] _copy_to_user+0x32/0xd0 [ 535.519036][T12011] simple_read_from_buffer+0xcb/0x170 [ 535.519076][T12011] proc_fail_nth_read+0x1af/0x230 [ 535.519106][T12011] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 535.519140][T12011] ? rw_verify_area+0xce/0x6d0 [ 535.519174][T12011] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 535.519202][T12011] vfs_read+0x1e4/0xb30 [ 535.519243][T12011] ? __pfx_vfs_read+0x10/0x10 [ 535.519279][T12011] ? __fget_files+0x215/0x3d0 [ 535.519307][T12011] ? __fget_files+0x21f/0x3d0 [ 535.519337][T12011] ksys_read+0x12a/0x250 [ 535.519372][T12011] ? __pfx_ksys_read+0x10/0x10 [ 535.519418][T12011] do_syscall_64+0x106/0xf80 [ 535.519450][T12011] ? clear_bhb_loop+0x40/0x90 [ 535.519480][T12011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 535.519504][T12011] RIP: 0033:0x7fdc6615cfce [ 535.519523][T12011] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 535.519546][T12011] RSP: 002b:00007fdc670d8fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 535.519568][T12011] RAX: ffffffffffffffda RBX: 00007fdc670d96c0 RCX: 00007fdc6615cfce [ 535.519584][T12011] RDX: 000000000000000f RSI: 00007fdc670d90a0 RDI: 0000000000000008 [ 535.519604][T12011] RBP: 00007fdc670d9090 R08: 0000000000000000 R09: 0000000000000000 [ 535.519618][T12011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 535.519631][T12011] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 535.519662][T12011] [ 536.744448][T12028] nfs: Unknown parameter 'nl802154' [ 537.680901][T12044] block2mtd: error: cannot open device /sys/modu [ 538.509966][T12059] synth uevent: /module/au0828: unknown uevent action string [ 539.170420][T12072] FAULT_INJECTION: forcing a failure. [ 539.170420][T12072] name failslab, interval 1, probability 0, space 0, times 0 [ 539.277584][T12072] CPU: 0 UID: 0 PID: 12072 Comm: syz.2.1248 Tainted: G L syzkaller #0 PREEMPT(full) [ 539.277627][T12072] Tainted: [L]=SOFTLOCKUP [ 539.277636][T12072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 539.277651][T12072] Call Trace: [ 539.277659][T12072] [ 539.277669][T12072] dump_stack_lvl+0x100/0x190 [ 539.277714][T12072] should_fail_ex.cold+0x5/0xa [ 539.277746][T12072] should_failslab+0xc2/0x120 [ 539.277772][T12072] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 539.277812][T12072] ? __d_alloc+0x34/0xa80 [ 539.277849][T12072] __d_alloc+0x34/0xa80 [ 539.277879][T12072] d_alloc+0x4a/0x1e0 [ 539.277908][T12072] lookup_one_qstr_excl+0x175/0x250 [ 539.277955][T12072] start_dirop+0x59/0xb0 [ 539.277995][T12072] simple_start_creating+0xf9/0x110 [ 539.278036][T12072] ? __pfx_simple_start_creating+0x10/0x10 [ 539.278077][T12072] ? mntput+0x70/0xa0 [ 539.278113][T12072] ? simple_pin_fs+0xa3/0x190 [ 539.278149][T12072] debugfs_start_creating.part.0+0x82/0x170 [ 539.278178][T12072] __debugfs_create_file+0xb3/0x4f0 [ 539.278208][T12072] debugfs_create_file_full+0x41/0x60 [ 539.278236][T12072] kvm_dev_ioctl+0x1491/0x1a50 [ 539.278275][T12072] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 539.278314][T12072] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 539.278343][T12072] __x64_sys_ioctl+0x18e/0x210 [ 539.278381][T12072] do_syscall_64+0x106/0xf80 [ 539.278415][T12072] ? clear_bhb_loop+0x40/0x90 [ 539.278445][T12072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 539.278471][T12072] RIP: 0033:0x7f851ed9c799 [ 539.278491][T12072] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 539.278516][T12072] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 539.278541][T12072] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 539.278556][T12072] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 539.278571][T12072] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 539.278586][T12072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 539.278601][T12072] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 539.278633][T12072] [ 540.459948][T12077] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1250'. [ 543.022198][ T30] audit: type=1326 audit(1773452425.730:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12112 comm="syz.0.1257" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdc6619c799 code=0x0 [ 543.071587][T12114] block2mtd: error: cannot open device /sys/modu [ 543.504260][T12120] FAULT_INJECTION: forcing a failure. [ 543.504260][T12120] name failslab, interval 1, probability 0, space 0, times 0 [ 543.697635][T12120] CPU: 0 UID: 0 PID: 12120 Comm: syz.4.1259 Tainted: G L syzkaller #0 PREEMPT(full) [ 543.697678][T12120] Tainted: [L]=SOFTLOCKUP [ 543.697686][T12120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 543.697701][T12120] Call Trace: [ 543.697710][T12120] [ 543.697720][T12120] dump_stack_lvl+0x100/0x190 [ 543.697765][T12120] should_fail_ex.cold+0x5/0xa [ 543.697796][T12120] should_failslab+0xc2/0x120 [ 543.697822][T12120] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 543.697861][T12120] ? alloc_inode+0x68/0x250 [ 543.697894][T12120] ? simple_start_creating+0xb0/0x110 [ 543.697935][T12120] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 543.697979][T12120] alloc_inode+0x68/0x250 [ 543.698011][T12120] new_inode+0x22/0x1c0 [ 543.698058][T12120] __debugfs_create_file+0x105/0x4f0 [ 543.698089][T12120] debugfs_create_file_full+0x41/0x60 [ 543.698118][T12120] kvm_dev_ioctl+0x1491/0x1a50 [ 543.698158][T12120] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 543.698199][T12120] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 543.698229][T12120] __x64_sys_ioctl+0x18e/0x210 [ 543.698267][T12120] do_syscall_64+0x106/0xf80 [ 543.698301][T12120] ? clear_bhb_loop+0x40/0x90 [ 543.698331][T12120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.698357][T12120] RIP: 0033:0x7f34c019c799 [ 543.698377][T12120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 543.698402][T12120] RSP: 002b:00007f34c1039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 543.698425][T12120] RAX: ffffffffffffffda RBX: 00007f34c0416180 RCX: 00007f34c019c799 [ 543.698442][T12120] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 543.698457][T12120] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 543.698471][T12120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 543.698486][T12120] R13: 00007f34c0416218 R14: 00007f34c0416180 R15: 00007fff837bdbf8 [ 543.698520][T12120] [ 544.226063][T12134] nfs: Unknown parameter 'nl802154' [ 544.470942][T12120] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 547.079736][T12183] block2mtd: error: cannot open device /sys/modu [ 547.431198][T12189] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1271'. [ 547.509299][T12189] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1271'. [ 548.969008][T12210] FAULT_INJECTION: forcing a failure. [ 548.969008][T12210] name failslab, interval 1, probability 0, space 0, times 0 [ 549.132384][T12202] bridge0: port 4(syz_tun) entered blocking state [ 549.180919][T12202] bridge0: port 4(syz_tun) entered disabled state [ 549.233111][T12210] CPU: 0 UID: 0 PID: 12210 Comm: syz.0.1275 Tainted: G L syzkaller #0 PREEMPT(full) [ 549.233154][T12210] Tainted: [L]=SOFTLOCKUP [ 549.233163][T12210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 549.233178][T12210] Call Trace: [ 549.233187][T12210] [ 549.233196][T12210] dump_stack_lvl+0x100/0x190 [ 549.233243][T12210] should_fail_ex.cold+0x5/0xa [ 549.233274][T12210] should_failslab+0xc2/0x120 [ 549.233299][T12210] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 549.233339][T12210] ? security_inode_alloc+0x3b/0x2c0 [ 549.233364][T12210] ? lockdep_init_map_type+0x5c/0x250 [ 549.233405][T12210] security_inode_alloc+0x3b/0x2c0 [ 549.233431][T12210] inode_init_always_gfp+0xced/0x1040 [ 549.233461][T12210] alloc_inode+0x8e/0x250 [ 549.233495][T12210] new_inode+0x22/0x1c0 [ 549.233529][T12210] __debugfs_create_file+0x105/0x4f0 [ 549.233568][T12210] debugfs_create_file_full+0x41/0x60 [ 549.233597][T12210] kvm_dev_ioctl+0x1491/0x1a50 [ 549.233636][T12210] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 549.233674][T12210] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 549.233704][T12210] __x64_sys_ioctl+0x18e/0x210 [ 549.233743][T12210] do_syscall_64+0x106/0xf80 [ 549.233776][T12210] ? clear_bhb_loop+0x40/0x90 [ 549.233811][T12210] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 549.233836][T12210] RIP: 0033:0x7fdc6619c799 [ 549.233857][T12210] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 549.233881][T12210] RSP: 002b:00007fdc670d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 549.233904][T12210] RAX: ffffffffffffffda RBX: 00007fdc66416180 RCX: 00007fdc6619c799 [ 549.233919][T12210] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 549.233933][T12210] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 549.233948][T12210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 549.233963][T12210] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 549.233995][T12210] [ 549.443697][T12202] syz_tun: entered allmulticast mode [ 549.450980][T12202] syz_tun: entered promiscuous mode [ 549.456898][T12202] bridge0: port 4(syz_tun) entered blocking state [ 549.463629][T12202] bridge0: port 4(syz_tun) entered forwarding state [ 549.594713][T12200] program syz.3.1273 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 551.455309][T12210] debugfs: out of free dentries, can not create file 'remote_tlb_flush' [ 552.726890][T12255] FAULT_INJECTION: forcing a failure. [ 552.726890][T12255] name failslab, interval 1, probability 0, space 0, times 0 [ 552.881534][T12261] nfs: Unknown parameter 'nl802154' [ 552.927809][T12255] CPU: 0 UID: 0 PID: 12255 Comm: syz.0.1290 Tainted: G L syzkaller #0 PREEMPT(full) [ 552.927848][T12255] Tainted: [L]=SOFTLOCKUP [ 552.927857][T12255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 552.927871][T12255] Call Trace: [ 552.927879][T12255] [ 552.927888][T12255] dump_stack_lvl+0x100/0x190 [ 552.927933][T12255] should_fail_ex.cold+0x5/0xa [ 552.927963][T12255] should_failslab+0xc2/0x120 [ 552.927989][T12255] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 552.928028][T12255] ? alloc_inode+0x68/0x250 [ 552.928066][T12255] ? simple_start_creating+0xb0/0x110 [ 552.928105][T12255] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 552.928150][T12255] alloc_inode+0x68/0x250 [ 552.928181][T12255] new_inode+0x22/0x1c0 [ 552.928215][T12255] __debugfs_create_file+0x105/0x4f0 [ 552.928243][T12255] debugfs_create_file_full+0x41/0x60 [ 552.928272][T12255] kvm_dev_ioctl+0x1491/0x1a50 [ 552.928317][T12255] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 552.928356][T12255] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 552.928386][T12255] __x64_sys_ioctl+0x18e/0x210 [ 552.928427][T12255] do_syscall_64+0x106/0xf80 [ 552.928460][T12255] ? clear_bhb_loop+0x40/0x90 [ 552.928490][T12255] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 552.928515][T12255] RIP: 0033:0x7fdc6619c799 [ 552.928536][T12255] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 552.928559][T12255] RSP: 002b:00007fdc670d9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 552.928581][T12255] RAX: ffffffffffffffda RBX: 00007fdc66416180 RCX: 00007fdc6619c799 [ 552.928598][T12255] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 552.928611][T12255] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 552.928626][T12255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 552.928640][T12255] R13: 00007fdc66416218 R14: 00007fdc66416180 R15: 00007ffeaf909428 [ 552.928671][T12255] [ 552.935049][T12255] debugfs: out of free dentries, can not create file 'remote_tlb_flush_requests' [ 555.980163][T12289] block2mtd: error: cannot open device /sys/modu [ 556.982412][T12293] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 557.048622][T12293] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 557.198491][T12293] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 557.345321][T12293] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 558.320690][ T5843] Bluetooth: hci0: command 0x0406 tx timeout [ 559.119150][ T5843] Bluetooth: hci1: command 0x0406 tx timeout [ 559.279535][ T5843] Bluetooth: hci4: command 0x0406 tx timeout [ 559.285711][ T5843] Bluetooth: hci3: command 0x0406 tx timeout [ 560.568471][T12332] FAULT_INJECTION: forcing a failure. [ 560.568471][T12332] name failslab, interval 1, probability 0, space 0, times 0 [ 560.739525][T12332] CPU: 0 UID: 0 PID: 12332 Comm: syz.3.1300 Tainted: G L syzkaller #0 PREEMPT(full) [ 560.739565][T12332] Tainted: [L]=SOFTLOCKUP [ 560.739573][T12332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 560.739587][T12332] Call Trace: [ 560.739595][T12332] [ 560.739604][T12332] dump_stack_lvl+0x100/0x190 [ 560.739645][T12332] should_fail_ex.cold+0x5/0xa [ 560.739673][T12332] should_failslab+0xc2/0x120 [ 560.739700][T12332] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 560.739789][T12332] ? __d_alloc+0x34/0xa80 [ 560.739822][T12332] __d_alloc+0x34/0xa80 [ 560.739852][T12332] d_alloc+0x4a/0x1e0 [ 560.739881][T12332] lookup_one_qstr_excl+0x175/0x250 [ 560.739917][T12332] start_dirop+0x59/0xb0 [ 560.739956][T12332] simple_start_creating+0xf9/0x110 [ 560.739998][T12332] ? __pfx_simple_start_creating+0x10/0x10 [ 560.740037][T12332] ? mntput+0x70/0xa0 [ 560.740073][T12332] ? simple_pin_fs+0xa3/0x190 [ 560.740109][T12332] debugfs_start_creating.part.0+0x82/0x170 [ 560.740136][T12332] __debugfs_create_file+0xb3/0x4f0 [ 560.740165][T12332] debugfs_create_file_full+0x41/0x60 [ 560.740193][T12332] kvm_dev_ioctl+0x1491/0x1a50 [ 560.740232][T12332] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 560.740269][T12332] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 560.740298][T12332] __x64_sys_ioctl+0x18e/0x210 [ 560.740336][T12332] do_syscall_64+0x106/0xf80 [ 560.740369][T12332] ? clear_bhb_loop+0x40/0x90 [ 560.740399][T12332] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.740423][T12332] RIP: 0033:0x7f01ad39c799 [ 560.740443][T12332] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 560.740473][T12332] RSP: 002b:00007f01ae221028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 560.740496][T12332] RAX: ffffffffffffffda RBX: 00007f01ad616180 RCX: 00007f01ad39c799 [ 560.740512][T12332] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 560.740527][T12332] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 560.740542][T12332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.740556][T12332] R13: 00007f01ad616218 R14: 00007f01ad616180 R15: 00007ffc6785ce78 [ 560.740588][T12332] [ 561.822648][T12346] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1310'. [ 562.115974][T12353] netlink: 'syz.2.1303': attribute type 20 has an invalid length. [ 562.116431][T12353] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1303'. [ 562.116459][T12353] IPv6: NLM_F_CREATE should be specified when creating new route [ 563.557498][T12375] block2mtd: error: cannot open device /sys/modu [ 563.686923][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.693391][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 565.084691][T12398] block2mtd: error: cannot open device /sys/modu [ 565.242500][T12401] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1314'. [ 565.360748][T12403] Debayer A: ================= START STATUS ================= [ 565.418253][T12403] Debayer A: Debayer Mean Window Size: 3 [ 565.475136][T12403] Debayer A: ================== END STATUS ================== [ 566.062152][T12408] FAULT_INJECTION: forcing a failure. [ 566.062152][T12408] name failslab, interval 1, probability 0, space 0, times 0 [ 566.196161][T12408] CPU: 0 UID: 0 PID: 12408 Comm: syz.4.1315 Tainted: G L syzkaller #0 PREEMPT(full) [ 566.196205][T12408] Tainted: [L]=SOFTLOCKUP [ 566.196214][T12408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 566.196229][T12408] Call Trace: [ 566.196237][T12408] [ 566.196248][T12408] dump_stack_lvl+0x100/0x190 [ 566.196293][T12408] should_fail_ex.cold+0x5/0xa [ 566.196324][T12408] should_failslab+0xc2/0x120 [ 566.196350][T12408] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 566.196389][T12408] ? __d_alloc+0x34/0xa80 [ 566.196422][T12408] __d_alloc+0x34/0xa80 [ 566.196462][T12408] d_alloc+0x4a/0x1e0 [ 566.196492][T12408] lookup_one_qstr_excl+0x175/0x250 [ 566.196528][T12408] start_dirop+0x59/0xb0 [ 566.196569][T12408] simple_start_creating+0xf9/0x110 [ 566.196611][T12408] ? __pfx_simple_start_creating+0x10/0x10 [ 566.196651][T12408] ? mntput+0x70/0xa0 [ 566.196687][T12408] ? simple_pin_fs+0xa3/0x190 [ 566.196723][T12408] debugfs_start_creating.part.0+0x82/0x170 [ 566.196751][T12408] __debugfs_create_file+0xb3/0x4f0 [ 566.196780][T12408] debugfs_create_file_full+0x41/0x60 [ 566.196808][T12408] kvm_dev_ioctl+0x1491/0x1a50 [ 566.196881][T12408] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 566.196920][T12408] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 566.196961][T12408] __x64_sys_ioctl+0x18e/0x210 [ 566.197000][T12408] do_syscall_64+0x106/0xf80 [ 566.197035][T12408] ? clear_bhb_loop+0x40/0x90 [ 566.197066][T12408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.197091][T12408] RIP: 0033:0x7f34c019c799 [ 566.197112][T12408] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 566.197136][T12408] RSP: 002b:00007f34c1039028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 566.197160][T12408] RAX: ffffffffffffffda RBX: 00007f34c0416180 RCX: 00007f34c019c799 [ 566.197179][T12408] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 566.197194][T12408] RBP: 00007f34c0232c99 R08: 0000000000000000 R09: 0000000000000000 [ 566.197210][T12408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.197225][T12408] R13: 00007f34c0416218 R14: 00007f34c0416180 R15: 00007fff837bdbf8 [ 566.197256][T12408] [ 568.736664][T12476] FAULT_INJECTION: forcing a failure. [ 568.736664][T12476] name failslab, interval 1, probability 0, space 0, times 0 [ 568.786107][T12476] CPU: 0 UID: 0 PID: 12476 Comm: syz.0.1320 Tainted: G L syzkaller #0 PREEMPT(full) [ 568.786151][T12476] Tainted: [L]=SOFTLOCKUP [ 568.786159][T12476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 568.786174][T12476] Call Trace: [ 568.786182][T12476] [ 568.786192][T12476] dump_stack_lvl+0x100/0x190 [ 568.786238][T12476] should_fail_ex.cold+0x5/0xa [ 568.786268][T12476] ? lsm_blob_alloc+0x68/0x90 [ 568.786301][T12476] should_failslab+0xc2/0x120 [ 568.786327][T12476] __kmalloc_noprof+0xe0/0x850 [ 568.786364][T12476] ? trace_kmalloc+0x101/0x130 [ 568.786394][T12476] lsm_blob_alloc+0x68/0x90 [ 568.786427][T12476] security_sk_alloc+0x2d/0x290 [ 568.786539][T12476] sk_prot_alloc+0x12a/0x2a0 [ 568.786566][T12476] sk_alloc+0x36/0xe80 [ 568.786623][T12476] __netlink_create+0x5e/0x2c0 [ 568.786693][T12476] ? __wake_up+0x3f/0x60 [ 568.786722][T12476] netlink_create+0x293/0x610 [ 568.786756][T12476] ? __pfx_genl_bind+0x10/0x10 [ 568.786776][T12476] ? __pfx_genl_unbind+0x10/0x10 [ 568.786812][T12476] ? __pfx_genl_release+0x10/0x10 [ 568.786839][T12476] __sock_create+0x339/0x860 [ 568.786870][T12476] __sys_socket+0x14d/0x260 [ 568.786898][T12476] ? __pfx___sys_socket+0x10/0x10 [ 568.786933][T12476] __x64_sys_socket+0x72/0xb0 [ 568.786958][T12476] ? lockdep_hardirqs_on+0x78/0x100 [ 568.786997][T12476] do_syscall_64+0x106/0xf80 [ 568.787032][T12476] ? clear_bhb_loop+0x40/0x90 [ 568.787062][T12476] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.787087][T12476] RIP: 0033:0x7fdc6619c799 [ 568.787108][T12476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 568.787133][T12476] RSP: 002b:00007fdc6711b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 568.787157][T12476] RAX: ffffffffffffffda RBX: 00007fdc66415fa0 RCX: 00007fdc6619c799 [ 568.787174][T12476] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 568.787190][T12476] RBP: 00007fdc66232c99 R08: 0000000000000000 R09: 0000000000000000 [ 568.787206][T12476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.787221][T12476] R13: 00007fdc66416038 R14: 00007fdc66415fa0 R15: 00007ffeaf909428 [ 568.787253][T12476] [ 570.235373][T12514] block2mtd: error: cannot open device /sys/modu [ 570.699134][T12524] FAULT_INJECTION: forcing a failure. [ 570.699134][T12524] name failslab, interval 1, probability 0, space 0, times 0 [ 570.699179][T12524] CPU: 0 UID: 0 PID: 12524 Comm: syz.2.1327 Tainted: G L syzkaller #0 PREEMPT(full) [ 570.699215][T12524] Tainted: [L]=SOFTLOCKUP [ 570.699224][T12524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 570.699239][T12524] Call Trace: [ 570.699247][T12524] [ 570.699257][T12524] dump_stack_lvl+0x100/0x190 [ 570.699310][T12524] should_fail_ex.cold+0x5/0xa [ 570.699341][T12524] ? kvm_dev_ioctl+0x124f/0x1a50 [ 570.699368][T12524] should_failslab+0xc2/0x120 [ 570.699396][T12524] __kmalloc_noprof+0xe0/0x850 [ 570.699440][T12524] kvm_dev_ioctl+0x124f/0x1a50 [ 570.699473][T12524] ? find_held_lock+0x2b/0x80 [ 570.699495][T12524] ? __fget_files+0x215/0x3d0 [ 570.699516][T12524] ? hook_file_ioctl_common+0x146/0x410 [ 570.699545][T12524] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 570.699582][T12524] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 570.699611][T12524] __x64_sys_ioctl+0x18e/0x210 [ 570.699651][T12524] do_syscall_64+0x106/0xf80 [ 570.699684][T12524] ? clear_bhb_loop+0x40/0x90 [ 570.699720][T12524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.699748][T12524] RIP: 0033:0x7f851ed9c799 [ 570.699770][T12524] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 570.699796][T12524] RSP: 002b:00007f851cff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 570.699822][T12524] RAX: ffffffffffffffda RBX: 00007f851f016180 RCX: 00007f851ed9c799 [ 570.699838][T12524] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000009 [ 570.699853][T12524] RBP: 00007f851ee32c99 R08: 0000000000000000 R09: 0000000000000000 [ 570.699867][T12524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 570.699882][T12524] R13: 00007f851f016218 R14: 00007f851f016180 R15: 00007ffcd9e26f08 [ 570.699913][T12524] [ 572.924321][T12538] nvme_fcloop: unknown parameter or missing value '7' [ 575.832593][T12586] block2mtd: error: cannot open device /sys/modu [ 576.781627][T12594] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1341'. [ 577.452639][ T30] audit: type=1804 audit(1773452460.133:8): pid=12608 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1343" name="/newroot/sys/kernel/debug/tracing/timestamp_mode" dev="tracefs" ino=3393 res=1 errno=0 [ 577.609961][ T30] audit: type=1804 audit(1773452460.193:9): pid=12607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1343" name="/newroot/sys/kernel/debug/tracing/timestamp_mode" dev="tracefs" ino=3393 res=1 errno=0 [ 582.342683][T12679] block2mtd: error: cannot open device /sys/modu [ 582.648632][T12684] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1357'. [ 585.097977][T12707] block2mtd: error: cannot open device /sys/modu [ 587.814405][T12737] syz.3.1365 (12737): /proc/12737/oom_adj is deprecated, please use /proc/12737/oom_score_adj instead. [ 588.278254][T12741] Invalid ELF header magic: != ELF [ 589.529143][T12763] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1371'. [ 591.118922][T12777] block2mtd: error: cannot open device /sys/modu [ 591.266442][T12777] block2mtd: error: cannot open device ö/°•£y²€¼LD¨¢UÖ-Àªç!Jœ±!\%×Ò|sŽÐ£E’q [ 591.266442][T12777] g=ñö+Ç(HV4©‹bB<Ãâ¿” [ 595.272931][T12807] block2mtd: error: cannot open device /sys/modu [ 595.486050][T12814] ================================================================== [ 595.486137][T12814] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x19fb/0x1d60 [ 595.486212][T12814] Write of size 8 at addr ffffc90004289780 by task syz.3.1380/12814 [ 595.486234][T12814] [ 595.486250][T12814] CPU: 0 UID: 0 PID: 12814 Comm: syz.3.1380 Tainted: G L syzkaller #0 PREEMPT(full) [ 595.486284][T12814] Tainted: [L]=SOFTLOCKUP [ 595.486292][T12814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 595.486308][T12814] Call Trace: [ 595.486317][T12814] [ 595.486326][T12814] dump_stack_lvl+0x100/0x190 [ 595.486363][T12814] print_report+0x156/0x4c9 [ 595.486399][T12814] ? _raw_spin_lock_irqsave+0x52/0x60 [ 595.486457][T12814] ? __virt_addr_valid+0x81/0x620 [ 595.486495][T12814] ? sys_imageblit+0x19fb/0x1d60 [ 595.486528][T12814] kasan_report+0xdf/0x1e0 [ 595.486555][T12814] ? sys_imageblit+0x19fb/0x1d60 [ 595.486594][T12814] sys_imageblit+0x19fb/0x1d60 [ 595.486629][T12814] ? debug_object_activate+0x331/0x490 [ 595.486715][T12814] ? __pfx_sys_imageblit+0x10/0x10 [ 595.486749][T12814] ? do_raw_spin_unlock+0x145/0x1e0 [ 595.486789][T12814] ? debug_object_activate+0x331/0x490 [ 595.486832][T12814] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 595.486913][T12814] soft_cursor+0x524/0xa10 [ 595.486945][T12814] ? fb_get_color_depth+0x120/0x250 [ 595.486997][T12814] bit_cursor+0xe58/0x16f0 [ 595.487029][T12814] ? __pfx_bit_cursor+0x10/0x10 [ 595.487058][T12814] ? __lock_acquire+0x4a5/0x2630 [ 595.487092][T12814] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 595.487135][T12814] ? get_color+0x1da/0x450 [ 595.487173][T12814] ? __pfx_bit_cursor+0x10/0x10 [ 595.487206][T12814] fbcon_cursor+0x43c/0x5e0 [ 595.487230][T12814] ? add_softcursor+0x180/0x290 [ 595.487284][T12814] set_cursor+0x1db/0x250 [ 595.487314][T12814] con_write+0x89/0xb0 [ 595.487368][T12814] n_tty_write+0x44f/0x12d0 [ 595.487418][T12814] ? __pfx_n_tty_write+0x10/0x10 [ 595.487443][T12814] ? trace_kmalloc+0x101/0x130 [ 595.487471][T12814] ? __pfx_woken_wake_function+0x10/0x10 [ 595.487509][T12814] ? rcu_is_watching+0x12/0xc0 [ 595.487551][T12814] ? file_tty_write.isra.0+0x694/0x890 [ 595.487604][T12814] ? kfree+0x2ec/0x6b0 [ 595.487636][T12814] ? __pfx_n_tty_write+0x10/0x10 [ 595.487661][T12814] file_tty_write.isra.0+0x4d2/0x890 [ 595.487702][T12814] redirected_tty_write+0xd4/0x120 [ 595.487738][T12814] vfs_write+0x6ac/0x1070 [ 595.487778][T12814] ? __pfx_redirected_tty_write+0x10/0x10 [ 595.487815][T12814] ? __pfx_vfs_write+0x10/0x10 [ 595.487851][T12814] ? find_held_lock+0x2b/0x80 [ 595.487883][T12814] ksys_write+0x12a/0x250 [ 595.487904][T12814] ? __pfx_ksys_write+0x10/0x10 [ 595.487930][T12814] do_syscall_64+0x106/0xf80 [ 595.487963][T12814] ? clear_bhb_loop+0x40/0x90 [ 595.487992][T12814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.488017][T12814] RIP: 0033:0x7f01ad39c799 [ 595.488038][T12814] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.488064][T12814] RSP: 002b:00007f01ae242028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 595.488088][T12814] RAX: ffffffffffffffda RBX: 00007f01ad616090 RCX: 00007f01ad39c799 [ 595.488105][T12814] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000005 [ 595.488121][T12814] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 595.488136][T12814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.488151][T12814] R13: 00007f01ad616128 R14: 00007f01ad616090 R15: 00007ffc6785ce78 [ 595.488223][T12814] [ 595.488234][T12814] [ 595.488241][T12814] The buggy address belongs to a vmalloc virtual mapping [ 595.488262][T12814] Memory state around the buggy address: [ 595.488275][T12814] ffffc90004289680: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 595.488300][T12814] ffffc90004289700: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 595.488318][T12814] >ffffc90004289780: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 595.488333][T12814] ^ [ 595.488346][T12814] ffffc90004289800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 595.488364][T12814] ffffc90004289880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 595.488378][T12814] ================================================================== [ 595.511516][T12814] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 595.511547][T12814] CPU: 0 UID: 0 PID: 12814 Comm: syz.3.1380 Tainted: G L syzkaller #0 PREEMPT(full) [ 595.511585][T12814] Tainted: [L]=SOFTLOCKUP [ 595.511594][T12814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 595.511612][T12814] Call Trace: [ 595.511620][T12814] [ 595.511630][T12814] dump_stack_lvl+0x100/0x190 [ 595.511675][T12814] vpanic+0x552/0x970 [ 595.511703][T12814] ? __pfx_vpanic+0x10/0x10 [ 595.511731][T12814] ? sys_imageblit+0x19fb/0x1d60 [ 595.511765][T12814] panic+0xd1/0xe0 [ 595.511787][T12814] ? __pfx_panic+0x10/0x10 [ 595.511811][T12814] ? sys_imageblit+0x19fb/0x1d60 [ 595.511844][T12814] ? preempt_schedule_common+0x42/0xc0 [ 595.511882][T12814] check_panic_on_warn.cold+0x19/0x34 [ 595.511908][T12814] end_report.part.0+0x3a/0x90 [ 595.511944][T12814] kasan_report.cold+0xe/0x18 [ 595.511980][T12814] ? sys_imageblit+0x19fb/0x1d60 [ 595.512018][T12814] sys_imageblit+0x19fb/0x1d60 [ 595.512054][T12814] ? debug_object_activate+0x331/0x490 [ 595.512096][T12814] ? __pfx_sys_imageblit+0x10/0x10 [ 595.512129][T12814] ? do_raw_spin_unlock+0x145/0x1e0 [ 595.512167][T12814] ? debug_object_activate+0x331/0x490 [ 595.512218][T12814] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 595.512262][T12814] soft_cursor+0x524/0xa10 [ 595.512294][T12814] ? fb_get_color_depth+0x120/0x250 [ 595.512322][T12814] bit_cursor+0xe58/0x16f0 [ 595.512354][T12814] ? __pfx_bit_cursor+0x10/0x10 [ 595.512382][T12814] ? __lock_acquire+0x4a5/0x2630 [ 595.512416][T12814] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 595.512459][T12814] ? get_color+0x1da/0x450 [ 595.512498][T12814] ? __pfx_bit_cursor+0x10/0x10 [ 595.512524][T12814] fbcon_cursor+0x43c/0x5e0 [ 595.512546][T12814] ? add_softcursor+0x180/0x290 [ 595.512579][T12814] set_cursor+0x1db/0x250 [ 595.512608][T12814] con_write+0x89/0xb0 [ 595.512643][T12814] n_tty_write+0x44f/0x12d0 [ 595.512676][T12814] ? __pfx_n_tty_write+0x10/0x10 [ 595.512702][T12814] ? trace_kmalloc+0x101/0x130 [ 595.512728][T12814] ? __pfx_woken_wake_function+0x10/0x10 [ 595.512766][T12814] ? rcu_is_watching+0x12/0xc0 [ 595.512804][T12814] ? file_tty_write.isra.0+0x694/0x890 [ 595.512839][T12814] ? kfree+0x2ec/0x6b0 [ 595.512869][T12814] ? __pfx_n_tty_write+0x10/0x10 [ 595.512894][T12814] file_tty_write.isra.0+0x4d2/0x890 [ 595.512933][T12814] redirected_tty_write+0xd4/0x120 [ 595.512969][T12814] vfs_write+0x6ac/0x1070 [ 595.513009][T12814] ? __pfx_redirected_tty_write+0x10/0x10 [ 595.513046][T12814] ? __pfx_vfs_write+0x10/0x10 [ 595.513083][T12814] ? find_held_lock+0x2b/0x80 [ 595.513116][T12814] ksys_write+0x12a/0x250 [ 595.513137][T12814] ? __pfx_ksys_write+0x10/0x10 [ 595.513188][T12814] do_syscall_64+0x106/0xf80 [ 595.513224][T12814] ? clear_bhb_loop+0x40/0x90 [ 595.513255][T12814] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.513281][T12814] RIP: 0033:0x7f01ad39c799 [ 595.513302][T12814] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.513327][T12814] RSP: 002b:00007f01ae242028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 595.513353][T12814] RAX: ffffffffffffffda RBX: 00007f01ad616090 RCX: 00007f01ad39c799 [ 595.513369][T12814] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000005 [ 595.513385][T12814] RBP: 00007f01ad432c99 R08: 0000000000000000 R09: 0000000000000000 [ 595.513401][T12814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.513417][T12814] R13: 00007f01ad616128 R14: 00007f01ad616090 R15: 00007ffc6785ce78 [ 595.513443][T12814] [ 595.513520][T12814] Kernel Offset: disabled