last executing test programs: 3m2.294244409s ago: executing program 3 (id=388): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) futex$auto(0x0, 0x5, 0x0, 0x0, 0x0, 0xa0000001) pselect6$auto(0x9, &(0x7f0000000000)={[0x8, 0x4, 0x0, 0x6, 0x8001, 0x4000000000002bc8, 0xfff, 0x9, 0x3, 0xffffffff, 0x8000000000000001, 0x0, 0x2f, 0x2, 0x8, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0) futex_requeue$auto(&(0x7f0000000040)={0xb, 0x6, 0x2}, 0x0, 0xf, 0x9) r0 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000980), 0x102001, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/content\x00', 0x181b80, 0x0) setresuid$auto(0x0, 0x0, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20540, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) ioctl$auto(r2, 0x5457, 0x38) read$auto(r1, &(0x7f0000000440)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xecC\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb08\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk\x02_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1e\xe9T1\xbf\xc8_^\a\x03\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0\\\xf0lg?\x98\xc8\x8e\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xddC\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3\xb0\x84\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda+U\b\x88\xa7\x88\x1fC\xbb\xa8\xce\x0f\xd5\xdew\x99\x18G.s\x16\xfa\xf2\x96|\x1e]\xe5\xf8\xb1\x8b.}\x841\xd8\x98\xd8f86h\xab\x94\x7f\xc4<\x03\xdd\x86=\xb6\x1e@\xab6\x81\xce\xaa\xcf\xfd\x947\xc3\x86\xfe\xb7O\xd9\xa9\xb6[\xcc\xd8\xe1\xa9\x84[\xe0\xd4\x03\x90@\x03\xbe\xba\xee\xed\xe9\xb1\xd2\xf1\x8cgn\xb7m/\xf1\"\xc2\xeb\x1d\x04\xf3\xf1\x96\xf2\x00C\xf0wg\xd6\x11\x18\xb5o\x9d\xd7`\xce\x81\x9b1b\x8ce\x99*\xa3\xd2\x8dAw\xd9\xa6l\\\x17\xbb\xf6\xe2\xa2<\n\xc0\f:\x97\xff\xc6y\x05<\xa6\x81\xd92\xc9\x9e\f[\xf9\xfc\xf1ih\"J\x92\xd2\xd4\xc2\xe8\x89 \x81\xbf8C\xa9\x1at\xa1\xdc\x94\xc5\xc8K\xbb\x14h\xa9)\xaa\xf2\xda\xaf\xb1\rs\xe6\x97\x1e\xcc6\x94\xff\x1b\x8e\x98\xf7\xa0', 0x67b) pwrite64$auto(r0, 0x0, 0x2, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) fsetxattr$auto(0x1, &(0x7f0000000000)='%\x175\xc0\x8d\xbb\x04\xb3\x97\xd8\xf4\xf6', 0x0, 0x0, 0x2) r3 = openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(r0, r3, 0x9) 3m1.892438229s ago: executing program 3 (id=389): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x10, &(0x7f0000000000)={0x0, 0xd6c6}, 0x2, 0x0, 0xe, 0x4}, 0x3}, 0x200, 0xb07e) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x0, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r0 = socket(0x2, 0x1, 0x0) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x19, 0x0, 0x9, 0x0, 0x1f, 0x3}, 0x4}, 0x7, 0x20020004) write$auto(0x3, 0x0, 0x7fffffff) setsockopt$auto(0xffffffffffffffff, 0xb54, 0xc56e, 0x0, 0x5) sendfile$auto(0x1, 0x3, 0x0, 0x40000000c07) open(0x0, 0x22240, 0x155) r1 = socket(0x2, 0x80802, 0x0) memfd_create$auto(0x0, 0x4) setsockopt$auto(r1, 0x11, 0x67, 0x0, 0x8) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setitimer$auto(0x2, &(0x7f0000000040)={{0x432, 0x5}, {0x0, 0xf5fc8d9}}, 0x0) socket(0xa, 0x1, 0x6) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) 3m1.790173518s ago: executing program 3 (id=390): r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0) write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000180)="0a1b9a5c3000006e163bb154d7886d8edeea371cadb848770dc8f745d1c76eedba12b9f694dabdbcf3401910000000000060000023b5d40a", 0x38) r1 = openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x12240, 0x0) write$auto(r1, 0x0, 0x6) capget$auto(&(0x7f0000000000)={0x19980330, 0xffffffffffffffff}, 0x0) r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) pwritev$auto(r2, 0x0, 0x4, 0xcee, 0x18a) r3 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000040), 0xffffffffffffffff) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyw9\x00', 0x0, 0x0) mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000) futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005) ioctl$auto_BLKPG2(0xffffffffffffffff, 0x1269, 0x0) ioctl$auto_MEMGETINFO(0xffffffffffffffff, 0x80204d01, 0x0) r5 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x40200, 0x0) read$auto(0x3, 0x0, 0xfffffdef) syz_genetlink_get_family_id$auto_batadv(&(0x7f00000002c0), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), 0xffffffffffffffff) mmap$auto(0x0, 0x9f9e, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) getsockopt$auto_SO_SNDBUF(r5, 0x73, 0x7, &(0x7f0000000100)='SEG\x85\x00', &(0x7f0000000140)=0x9d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x1c0000, 0x800097, 0x1, 0x0, 0x3, 0x1) mbind$auto(0x0, 0x800605, 0x1, &(0x7f0000000500)=0xffff, 0xa, 0x3) ioctl$auto_TIOCSTI2(r4, 0x5412, 0x0) sendmsg$auto_KSMBD_EVENT_SPNEGO_AUTHEN_RESPONSE(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r3, 0x100, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4091}, 0x4001) r6 = socket(0x2b, 0x1, 0x0) sendmsg$auto_KSMBD_EVENT_LOGIN_REQUEST_EXT(r6, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r3, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x24000072}, 0x20004000) 2m58.529773642s ago: executing program 3 (id=396): r0 = socket(0x10, 0x2, 0xc) r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x14, r1, 0x1f5, 0x70bd28, 0x25dfdbfb, {0xa, 0x0, 0xaf5}}, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x2000000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x2c00, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), r2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x4d, 0x0) fsopen$auto(0x0, 0x80) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r3, 0x540a, 0x0) socket(0xa, 0x5, 0x0) timer_create$auto(0x0, 0x0, 0x0) r4 = prctl$auto(0x3e, 0x100000000001, 0xffffffffffffffff, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 2m53.781372172s ago: executing program 3 (id=408): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x41, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="7c010000", @ANYRES16=r1, @ANYBLOB="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"], 0x17c}, 0x1, 0x0, 0x0, 0x24040071}, 0x20008801) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x100, 0x15) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) r3 = prctl$auto(0x3e, 0x7fffffff, 0x0, 0x1, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) madvise$auto(0x401, 0x10001, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000002c0)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0xfffffffc, 0x3, 0x2, @raw=0x31c7bc81, @enumerated={0x0, 0x6, "ad75b255b5cdd64a6b7a755de55f8e3b81e6c4e6fbf4f15a5ca5dc29f056113e9b60cd7bd82081ec90b01a6c1ae79b9fd0930da366e011ae30c0a636577776a6", 0x3, 0xcac}, "18a801006a0900000000000000c4bd5359eeadc8357752b72fa176254d8797cdffd02555ac83a07983eeddcd24b626f54ad9d763dcdc9120af8b7c848ceb55a7"}) mmap$auto(0x10000, 0xa, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x5c, r5, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x10}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x101}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x2}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @dev={0xfe, 0x80, '\x00', 0xa}}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @private2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0xfdf31875370e1716) mmap$auto(0x8, 0x400008, 0x28, 0x10, 0xffffffffffffffff, 0x3fd) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x6, 0x2) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0) 2m52.15913485s ago: executing program 3 (id=413): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x41, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x17c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x164, 0x1, 0x0, 0x1, [@nested={0x160, 0x10, 0x0, 0x1, [@nested={0x15c, 0x8, 0x0, 0x1, [@nested={0x158, 0x6d, 0x0, 0x1, [@nested={0x154, 0xbf, 0x0, 0x1, [@generic="4009acb82068fcd5bcefc9fd40090df98d7f51fc079377aedb96a93b899c6e622fdb457261beb9b5aa025f23ea9b651b91ef228e56ab03fc55b93a3e9dd315d24174c707dbd75160f110407bfd7db1f46b0fbd6f2d15626241bcdf67542895a1", @typed={0xee, 0xc5, 0x0, 0x0, @binary="87f454b74c8e4e9578d7cba754b5d17e7b508a36dfee9790d341e70ef583e8ffff7892ba30df567a4c377bf8c32ce765acef088e4a3bf9e10bcab15322db3ca33b0a5220ccf3bbe33f8222c26de306eae48fd985ff6b5a5a9229d1f6c445a1dca488443425085e374acc182c63d278a3657f20d855b63683e744c752161656b077dac3ff96d7d69fbef908b63d8d390d82164ae5db8569b7622ffa894d950e285c5665996cea6977d8801620a96f0d526b3d6993e446a71593d78974a90c1b6d3b85f00898d853d608d02b0627270d6275230648a6c394a4d92c5b5dc91b8f48fb489a8dba08b183599f"}]}]}]}]}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x30040075}, 0x20008801) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x202, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) madvise$auto(0x401, 0x10001, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000002c0)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0xfffffffc, 0x3, 0x2, @raw=0x31c7bc81, @enumerated={0x0, 0x6, "ad75b255b5cdd64a6b7a755de55f8e3b81e6c4e6fbf4f15a5ca5dc29f056113e9b60cd7bd82081ec90b01a6c1ae79b9fd0930da366e011ae30c0a636577776a6", 0x3, 0xcac}, "18a801006a0900000000000000c4bd5359eeadc8357752b72fa176254d8797cdffd02555ac83a07983eeddcd24b626f54ad9d763dcdc9120af8b7c848ceb55a7"}) mmap$auto(0x10000, 0xa, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x4000000008, 0x100000000002, 0x6, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x8, 0x400008, 0x28, 0x10, 0xffffffffffffffff, 0x3fd) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x6, 0x2) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000040)=""/209, 0xd1) io_uring_setup$auto(0x5, 0x0) 2m36.864545132s ago: executing program 32 (id=413): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x41, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x17c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x164, 0x1, 0x0, 0x1, [@nested={0x160, 0x10, 0x0, 0x1, [@nested={0x15c, 0x8, 0x0, 0x1, [@nested={0x158, 0x6d, 0x0, 0x1, [@nested={0x154, 0xbf, 0x0, 0x1, [@generic="4009acb82068fcd5bcefc9fd40090df98d7f51fc079377aedb96a93b899c6e622fdb457261beb9b5aa025f23ea9b651b91ef228e56ab03fc55b93a3e9dd315d24174c707dbd75160f110407bfd7db1f46b0fbd6f2d15626241bcdf67542895a1", @typed={0xee, 0xc5, 0x0, 0x0, @binary="87f454b74c8e4e9578d7cba754b5d17e7b508a36dfee9790d341e70ef583e8ffff7892ba30df567a4c377bf8c32ce765acef088e4a3bf9e10bcab15322db3ca33b0a5220ccf3bbe33f8222c26de306eae48fd985ff6b5a5a9229d1f6c445a1dca488443425085e374acc182c63d278a3657f20d855b63683e744c752161656b077dac3ff96d7d69fbef908b63d8d390d82164ae5db8569b7622ffa894d950e285c5665996cea6977d8801620a96f0d526b3d6993e446a71593d78974a90c1b6d3b85f00898d853d608d02b0627270d6275230648a6c394a4d92c5b5dc91b8f48fb489a8dba08b183599f"}]}]}]}]}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x30040075}, 0x20008801) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x202, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) madvise$auto(0x401, 0x10001, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000002c0)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0xfffffffc, 0x3, 0x2, @raw=0x31c7bc81, @enumerated={0x0, 0x6, "ad75b255b5cdd64a6b7a755de55f8e3b81e6c4e6fbf4f15a5ca5dc29f056113e9b60cd7bd82081ec90b01a6c1ae79b9fd0930da366e011ae30c0a636577776a6", 0x3, 0xcac}, "18a801006a0900000000000000c4bd5359eeadc8357752b72fa176254d8797cdffd02555ac83a07983eeddcd24b626f54ad9d763dcdc9120af8b7c848ceb55a7"}) mmap$auto(0x10000, 0xa, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x4000000008, 0x100000000002, 0x6, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x8, 0x400008, 0x28, 0x10, 0xffffffffffffffff, 0x3fd) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x6, 0x2) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000040)=""/209, 0xd1) io_uring_setup$auto(0x5, 0x0) 9.436363478s ago: executing program 4 (id=935): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x523403, 0x0) prctl$auto(0x80000001, 0xffeffffffffffffc, 0x0, 0x8000, 0x1) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40) mmap$auto(0x0, 0x1, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) r1 = io_uring_setup$auto(0x8, 0x0) madvise$auto(0x0, 0x7, 0x15) r2 = socket(0x0, 0x4, 0x1000) getsockopt$auto(r2, 0x84, 0x9, 0x0, 0x0) mmap$auto(0x3, 0x2020009, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x202000a, 0xfffffffc, 0x14, 0xfffffffffffffffa, 0x8000) r3 = prctl$auto(0xf, 0x1, 0x0, 0x5, 0x400000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0x4004af07, &(0x7f0000000080)=r1) write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x2, 0x88) r5 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000002c0)={'sit0\x00'}) bpf$auto(0x0, 0x0, 0xf) bpf$auto(0x4, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x200ffffffff, 0x9, 0x5, 0xf870e9f, 0x3ff, 0x8}, 0x9) 7.181184351s ago: executing program 4 (id=946): mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000003000)={&(0x7f0000000840)=ANY=[@ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="dd2827bd7000fedbdf2515000000dc000880d600a2007d873feb8f8fbcfd3a7314d37bf9c45caccba30f7d6c3ef2871817d74b8ca73c93cd109bae31d1a86047bbf0c8397208e0c62e6f1a11112055da6299b6d3aa96556d57fbf815d0d3284b39fadff4a98bd612aba6b437ca1890e1104aa3efc378a4a69cd88436843bec75d43d12280c77f29a4cabf8082939aa3e2c5671c93d61c667b382318c41c58537078b1fe93efc954a67f7ad7d0065fb77e140eb88d0eb99660949943d5f38a1d1fa462437f6cbd6e0495193ea62a44f73ab98ec67c30a10586e4f5fe2b7bc25f1b105d851fb6e052e0000f9120380cb10a78008005200", @ANYRES32, @ANYRESHEX=0x0, @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32], 0x27d8}, 0x1, 0x0, 0x0, 0x40000}, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) fchownat$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x6) (async) fchownat$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x6) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) socket(0x2a, 0x80000, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x0, @remote}, 0x6a) write$auto_proc_loginuid_operations_base(0xffffffffffffffff, &(0x7f0000000040), 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/orangefs/dcache_timeout_msecs\x00', 0x8ea182, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) open(&(0x7f0000000800)='./file1\x00', 0x163ac1, 0x82) r2 = socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a) sendto$auto(r2, 0x0, 0x6fffff9, 0x18, &(0x7f0000000440)=@qipcrtr={0x2a, 0x1}, 0x35) (async) sendto$auto(r2, 0x0, 0x6fffff9, 0x18, &(0x7f0000000440)=@qipcrtr={0x2a, 0x1}, 0x35) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x84) (async) socket(0xa, 0x1, 0x84) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sysfs$auto(0x2, 0x23, 0x0) (async) sysfs$auto(0x2, 0x23, 0x0) r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r4, 0x0, 0x4) (async) write$auto(r4, 0x0, 0x4) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)="42bf", 0x2) 5.95991966s ago: executing program 4 (id=953): r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0x5, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043ee93b053030001ffff000e00", @raw=0xffffffff}, 0x2, 0x964, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) (async) r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) bind$auto(r1, 0x0, 0x2) (async) ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000000)={{0x0, 0x89, 0x7, 0x34, 0x3ff}, 0x8, 0x2, "d57541969d1004a07f6755cc88ca6c7d5605391535aecc480823aa968864f70c"}) 5.953169889s ago: executing program 2 (id=954): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001480)='/proc/self/net/rxrpc/conns\x00', 0x0, 0x0) pread64$auto(r0, &(0x7f0000000040)='\x03\xe5t\x841\x00', 0x200000040006, 0x2) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nbd7/power/autosuspend_delay_ms\x00', 0x22902, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x10140, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socketcall$auto(0xfffffffb, 0x0) r3 = getpid() timer_create$auto(0x3, 0x0, &(0x7f0000000180)=0x401) timer_settime$auto(0x4, 0x40d80, &(0x7f0000000040)={{0xffffffff, 0x4}, {0x0, 0x4}}, 0x0) timer_gettime$auto(0x0, 0x0) mmap$auto(0x1, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r4) sendmsg$auto_NETDEV_CMD_DEV_GET(r4, &(0x7f0000001840)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004) listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x9c1, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x3) keyctl$auto(0x1d, 0xffffffffffffffff, 0x8, 0x5, 0x8) r5 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x1940, 0x0) openat$auto_ipsec_dbg_fops_ipsec(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim1/ports/0/ipsec\x00', 0x41, 0x0) read$auto_ipsec_dbg_fops_ipsec(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_IOCTL_GET_NUM_DEVICES(r5, 0x40046104, &(0x7f0000000040)=0x74c7) process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) migrate_pages$auto(r3, 0xf6b4, &(0x7f0000000080)=0x401, &(0x7f00000000c0)=0x3) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(r1, 0x2, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000200)={0x2, 0x0, [{0x2, 0x6, 0x3be}, {0x1, 0x200, 0x3}, {0x3, 0x6}, {0x146fc1ac, 0xd, 0x9}, {0x0, 0x15, 0x1}, {0x9, 0x7, 0x6}, {0xb, 0x1, 0x6}]}) socket(0x1f, 0x1, 0x8) 5.55309703s ago: executing program 4 (id=956): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x41, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x17c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x164, 0x1, 0x0, 0x1, [@nested={0x160, 0x10, 0x0, 0x1, [@nested={0x15c, 0x8, 0x0, 0x1, [@nested={0x158, 0x6d, 0x0, 0x1, [@nested={0x154, 0xbf, 0x0, 0x1, [@generic="4009acb82068fcd5bcefc9fd40090df98d7f51fc079377aedb96a93b899c6e622fdb457261beb9b5aa025f23ea9b651b91ef228e56ab03fc55b93a3e9dd315d24174c707dbd75160f110407bfd7db1f46b0fbd6f2d15626241bcdf67542895a1", @typed={0xee, 0xc5, 0x0, 0x0, @binary="87f454b74c8e4e9578d7cba754b5d17e7b508a36dfee9790d341e70ef583e8ffff7892ba30df567a4c377bf8c32ce765acef088e4a3bf9e10bcab15322db3ca33b0a5220ccf3bbe33f8222c26de306eae48fd985ff6b5a5a9229d1f6c445a1dca488443425085e374acc182c63d278a3657f20d855b63683e744c752161656b077dac3ff96d7d69fbef908b63d8d390d82164ae5db8569b7622ffa894d950e285c5665996cea6977d8801620a96f0d526b3d6993e446a71593d78974a90c1b6d3b85f00898d853d608d02b0627270d6275230648a6c394a4d92c5b5dc91b8f48fb489a8dba08b183599f"}]}]}]}]}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x24040071}, 0x20008801) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x202, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) madvise$auto(0x401, 0x10001, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000002c0)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0xfffffffc, 0x3, 0x2, @raw=0x31c7bc81, @enumerated={0x0, 0x6, "ad75b255b5cdd64a6b7a755de55f8e3b81e6c4e6fbf4f15a5ca5dc29f056113e9b60cd7bd82081ec90b01a6c1ae79b9fd0930da366e011ae30c0a636577776a6", 0x3, 0xcac}, "18a801006a0900000000000000c4bd5359eeadc8357752b72fa176254d8797cdffd02555ac83a07983eeddcd24b626f54ad9d763dcdc9120af8b7c848ceb55a7"}) mmap$auto(0x10000, 0xa, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x8, 0x400008, 0x28, 0x10, 0xffffffffffffffff, 0x3fd) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)=""/209, 0xd1) io_uring_setup$auto(0x5, 0x0) 5.352860247s ago: executing program 2 (id=957): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000) timer_create$auto(0x2, 0x0, 0x0) timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x19, 0x0, 0x9, 0x0, 0x1f, 0x3}, 0x4}, 0x7, 0x20020004) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x6, 0xd, 0xfffffffe, 0x6, 0x7fff, 0x8, 0xffffffffffffffff, [], {0x6, 0x10001, 0xb, 0x2de, 0x504, 0x1, 0x101, 0x6, 0x6}, {0xfff7ffff, 0x2, 0x52, 0x5, 0x10001, 0x40, 0x76c5, 0x8, 0x8000000000000000}}) write$auto(0x3, 0x0, 0x7fffffff) 4.765170757s ago: executing program 1 (id=958): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f0000000000)={0x30, r1, 0x935, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x1c, 0x4, 0x0, 0x1, [@nested={0x15, 0x1, 0x0, 0x1, [@generic="6fdc9fbda5ed4d35f9fdaf4fe74b9e0077"]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x20000000) (fail_nth: 1) 4.09885106s ago: executing program 2 (id=959): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1\x00', 0x8000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) fsopen$auto(0x0, 0x1) syslog$auto(0x2, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1Y\x1e\xe1R1\xa2\x8e\xce\xa0\x17\x0eI3\'\v\xf8\xfe\n\xf5j\x94\x7f\x00\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xed\x013\x87l\xb9\x1e\x05\x90\xa2\x00'/91, 0x2) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio7\x00', 0xc0200, 0x0) ioctl$auto(0x3, 0xc0585609, 0xffffffffffffffff) 3.601299898s ago: executing program 1 (id=960): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00'}) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) sendfile$auto(r1, r1, 0x0, 0x1) 3.569002962s ago: executing program 0 (id=961): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0) pread64$auto(r1, 0x0, 0x840003, 0x2e6c) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x34, r2, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4044000) 3.400165014s ago: executing program 0 (id=962): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0) r2 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r2, 0x29, 0x8, 0x0, 0x3) landlock_restrict_self$auto(r0, 0x0) symlink$auto(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') read$auto_fops_atomic_t_(r1, &(0x7f0000000100)=""/70, 0x46) rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r3, 0x0, 0x39b8) 3.220917531s ago: executing program 1 (id=963): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x523403, 0x0) prctl$auto(0x80000001, 0xffeffffffffffffc, 0x0, 0x8000, 0x1) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40) mmap$auto(0x0, 0x1, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) r1 = io_uring_setup$auto(0x8, 0x0) madvise$auto(0x0, 0x7, 0x15) r2 = socket(0x0, 0x4, 0x1000) getsockopt$auto(r2, 0x84, 0x9, 0x0, 0x0) mmap$auto(0x3, 0x2020009, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x202000a, 0xfffffffc, 0x14, 0xfffffffffffffffa, 0x8000) r3 = prctl$auto(0xf, 0x1, 0x0, 0x5, 0x400000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r3, 0x4004af07, &(0x7f0000000080)=r1) write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) r5 = socket(0xa, 0x2, 0x88) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000002c0)={'sit0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r8, r7, 0x4, 0x401, r5, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x200ffffffff, 0x9, 0x5, 0xf870e9f, 0x3ff, 0x8}, 0x9) 3.169151538s ago: executing program 2 (id=964): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0) r1 = socket(0xa, 0x2, 0x0) cachestat$auto(r1, &(0x7f0000000000)={0x0, 0x7fc}, &(0x7f0000000040)={0x2, 0x0, 0xd6, 0x1, 0x3}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0x19, r1, 0x8000) r2 = socket(0xa, 0x3, 0x3a) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(r2, 0x8, 0x0, 0x0) ioctl$auto_USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f00000000c0)={0x7, 0x2, 0x0}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r3 = open(0x0, 0x4000, 0x408) socket(0x28, 0x1, 0x0) mmap$auto(0x0, 0x61, 0x100001000000003, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x45, 0x0, 0x0) getdents$auto(r3, 0x0, 0x400018) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000002) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) madvise$auto(0xffffffffffffffff, 0x400000000200003, 0x11) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) sendfile$auto(0x3, r1, 0x0, 0x240000000000a) preadv2$auto(r0, 0x0, 0x6, 0xffffffffffffffff, 0x4, 0x400) r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000140)='/dev/usbmon15\x00', 0xdae40, 0x0) readv$auto(r4, &(0x7f0000000380)={0x0, 0x8}, 0x8) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram8/queue/physical_block_size\x00', 0x48202, 0x0) write$auto(r5, &(0x7f0000000180)='\xcaxMH\xa6O\x93\xa3@\x02v\xd0\x1f\'\x0e\xbd\xf4f\x9b\xb0\xbcPi\a\x96\xad\x1ee\x9d\xcfc\xbd\x9b\xac\xf3c\x16\x84\xb3\x10\xb9*\xb8j\xffO\xecJ\x17\xe4\xf5w\x1dV\xe6\x14\xfa`\x1b;\xf7\xdd_`S\xf9\xf5\xf84\x98\xbe\xd7\x9e\xfa\x1c^\xad?\xd6\xb2\xf2\x10\xf7\\\x8e/\xb4Uf\x12;\xa1\x0fK\x0e\xdc<*\xa3\b\xea\x8a\x98g\xfd\x82H1\x94\x8cU\xe4\x9a\xae\xb4GB\xb0r\x88\x88`\xde\"~\xba\x9d\xe0\x82\xcf\x95=YZ\x91)Q\xac|WDl\xd2\xfe\x83\xc9\v\x7f0)-\x8c\x95.\xbe\xec:\x98\x15\xd1\xc0\x02\x8bj\'\x90\xd6\xdf8\xed\x86|\xd2z\xdf\x80\x13\x89\\\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x300000000000) r6 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0xc1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r6, 0x0) keyctl$auto(0xe, 0xfffffffffffff800, 0x0, 0x5eaf, 0x8) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) 2.527703193s ago: executing program 0 (id=965): r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd10/state\x00', 0x189e42, 0x0) write$auto(r0, 0x0, 0xf) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x4, 0x100000000000034, 0x6) r1 = socket(0xa, 0x3, 0x3b) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_SCAN(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, 0x0, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0xada}, @NL80211_ATTR_S1G_CAPABILITY_MASK={0x48, 0x129, "873fbd82674941e2e5062ffa09d4a9c5c6eed9ffd1f4ce8abe8c0992eb59584096d3dedc9ec517939931d87ff0842ac81cf616e5a919f16d96b6794ee0c8a0c2d4bb1975"}]}, 0x64}, 0x1, 0x0, 0x0, 0x40000}, 0x800) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x845, 0xef0) shmctl$auto_SHM_INFO(0x6, 0xe, 0x0) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/kcore\x00', 0x40000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000400)=""/232, 0xfdef) 2.383675562s ago: executing program 1 (id=966): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x523403, 0x0) r1 = prctl$auto(0x80000001, 0x80000000, 0x0, 0x7ffc, 0x1) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40) mmap$auto(0x0, 0x1, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) r2 = io_uring_setup$auto(0x8, 0x0) madvise$auto(0x0, 0x7, 0x15) r3 = socket(0xb, 0xa, 0x5) getsockopt$auto(r3, 0x84, 0x9, 0x0, 0x0) mmap$auto(0x3, 0x2020009, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x202000a, 0xfffffffc, 0x14, 0xfffffffffffffffa, 0x8000) r4 = prctl$auto(0xf, 0x1, 0x0, 0x5, 0x400000007) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(r4, 0x4004af07, &(0x7f0000000080)=r2) write$auto(r5, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x3, 0x6223, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x2, 0x88) r6 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000002c0)={'sit0\x00'}) bpf$auto(0x4, &(0x7f00000000c0)=@info={r1, 0x15, 0x7}, 0xf) bpf$auto(0x4, &(0x7f0000000500)=@bpf_attr_11={0x5, 0x200ffffffff, 0x9, 0x5, 0xf870e9f, 0x3ff, 0x8}, 0x9) 2.346268775s ago: executing program 0 (id=967): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) getsockopt$auto_SO_RCVTIMEO_OLD(r0, 0xffffffff, 0x14, 0x0, 0x0) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0x100000000) sendfile$auto(0x1, 0x3, 0x0, 0x74c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) unshare$auto(0x8000000) r1 = socket(0xa, 0x2, 0x0) setsockopt$auto(r1, 0x29, 0x19, 0x0, 0x56b) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x7, 0x5, 0x808e8, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x400053, 0x9) semget$auto(0x0, 0x2e4a, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a) semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x16e) 2.303799379s ago: executing program 2 (id=968): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r2 = memfd_create$auto(&(0x7f0000000000)='\x00', 0x6) read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r2, 0x0, 0x0) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x40040, 0x11) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r4 = getpid() sched_setaffinity$auto(r4, 0x5, &(0x7f0000000000)=0x7) setresuid$auto(0x2, 0xffffffffffffffff, 0x200) keyctl$auto(0x5, 0xfffffffd, 0x101, 0x1, 0x4000000000b8c) syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0x400000000000021, 0xe, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xd) fallocate$auto(r1, 0x10, 0x8, 0x4cbd5d) mmap$auto(0x0, 0x1, 0xfd5, 0x12, r3, 0x0) mmap$auto(0x9, 0x1ff, 0x4, 0x14, 0x3, 0x0) close_range$auto(r1, r1, 0x5) r5 = getpgrp(r0) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200440c4}, 0x40048c5) r6 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000240), r1) syz_clone3(&(0x7f0000000600)={0x21030000, &(0x7f0000000380)=0xffffffffffffffff, &(0x7f00000003c0), &(0x7f0000000400), {0x5}, &(0x7f0000000440)=""/134, 0x86, &(0x7f0000000500)=""/175, &(0x7f00000005c0)=[0xffffffffffffffff, r0], 0x2, {r1}}, 0x58) process_madvise$auto_MADV_WIPEONFORK(r7, &(0x7f0000001680)={&(0x7f0000000680)="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"}, 0x3, 0x12, 0x1) r8 = fcntl$getown(r3, 0x9) sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000001800)=ANY=[@ANYBLOB="24010000ef1275f1207f3691e3c1b04fa664c1ead2d5275ca3a83c4d030de9904145289bf6b24e4a29f343b5d0bec80a38ed0182d88b8c241b8c98ea141623fbe52db41b93664a79faf5bd6cac434635e94f4079cb7a7210e303878c2fab16e07ce595b2e5198410263d560daf33f9f8bb8588c579b8037cc65cea86296602253e1918a3288d56fd8220cbf3bd5ae7d54f8fd992bbc3878b5f507826672ab18f1456575f39bffa6ee229b88e33bdc1a82ed0ca1227886be530543685c8cd3b25bdf624cf96d87468083045735a4b", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="000800020006000000"], 0x124}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000011) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x41, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x1000000006, 0x2, 0x7, 0x400, 0x7ffffffb, 0x400005, 0xdd79, 0x5, 0x61, 0x1104}) r9 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r9, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={"066d3970917268f77ce910cc79bac67915f7f5439753e9d53263c6412d09fa6a", 0x8, 0x1, 0x80000000, 0xff, 0xffff, r5}) socket(0x2d, 0x2, 0x0) mkdir$auto(&(0x7f0000000040)='./cgroup.net/\f\x00\x00\x00\x00', 0xa3) 1.613267596s ago: executing program 1 (id=969): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x41, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x17c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x164, 0x1, 0x0, 0x1, [@nested={0x160, 0x10, 0x0, 0x1, [@nested={0x15c, 0x8, 0x0, 0x1, [@nested={0x158, 0x6d, 0x0, 0x1, [@nested={0x154, 0xbf, 0x0, 0x1, [@generic="4009acb82068fcd5bcefc9fd40090df98d7f51fc079377aedb96a93b899c6e622fdb457261beb9b5aa025f23ea9b651b91ef228e56ab03fc55b93a3e9dd315d24174c707dbd75160f110407bfd7db1f46b0fbd6f2d15626241bcdf67542895a1", @typed={0xee, 0xc5, 0x0, 0x0, @binary="87f454b74c8e4e9578d7cba754b5d17e7b508a36dfee9790d341e70ef583e8ffff7892ba30df567a4c377bf8c32ce765acef088e4a3bf9e10bcab15322db3ca33b0a5220ccf3bbe33f8222c26de306eae48fd985ff6b5a5a9229d1f6c445a1dca488443425085e374acc182c63d278a3657f20d855b63683e744c752161656b077dac3ff96d7d69fbef908b63d8d390d82164ae5db8569b7622ffa894d950e285c5665996cea6977d8801620a96f0d526b3d6993e446a71593d78974a90c1b6d3b85f00898d853d608d02b0627270d6275230648a6c394a4d92c5b5dc91b8f48fb489a8dba08b183599f"}]}]}]}]}]}]}, 0x17c}, 0x1, 0x0, 0x0, 0x24040071}, 0x20008801) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f2, 0x15) openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000b80)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x202, 0x0) syslog$auto(0x3, 0x0, 0x5) fchdir$auto(0xffffffffffffffff) syz_clone(0x20011, 0x0, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) madvise$auto(0x401, 0x10001, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f00000002c0)={{@raw=0x2, 0x7ff, 0xa, 0x7, "26d718b7d3ee69350e4ede7079dcb0c24c8aa1e3c7ee2e00308b8a7d74b0a707f7045e6d035b196ca83379bb", @raw=0x4}, 0xfffffffc, 0x3, 0x2, @raw=0x31c7bc81, @enumerated={0x0, 0x6, "ad75b255b5cdd64a6b7a755de55f8e3b81e6c4e6fbf4f15a5ca5dc29f056113e9b60cd7bd82081ec90b01a6c1ae79b9fd0930da366e011ae30c0a636577776a6", 0x3, 0xcac}, "18a801006a0900000000000000c4bd5359eeadc8357752b72fa176254d8797cdffd02555ac83a07983eeddcd24b626f54ad9d763dcdc9120af8b7c848ceb55a7"}) mmap$auto(0x10000, 0xa, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) bpf$auto(0x6, 0xffffffffffffffff, 0x0) mmap$auto(0x8, 0x400008, 0x28, 0x10, 0xffffffffffffffff, 0x3fd) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0x20443, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x80003, 0x300) read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)=""/209, 0xd1) io_uring_setup$auto(0x5, 0x0) 1.520915837s ago: executing program 0 (id=970): mlockall$auto(0xfffffff9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) capset$auto(&(0x7f0000000100)={0x20080522, 0x0}, 0x0) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0) r1 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) setsockopt$auto(0x3, 0x1, 0x54, 0x0, 0x4) openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ptrace$auto_ARCH_MAP_VDSO_X32(0x7, r0, 0xabc, 0x2001) clock_adjtime$auto(0xd, &(0x7f0000000340)={0x94e, 0x0, 0x3, 0x1, 0x5, 0x8, 0x7f, 0x0, 0xfffffffffffffffe, 0x1, 0xff80000000000000, {0x10000, 0x80000000}, 0x4, 0xf3, 0x6b, 0x0, 0x0, 0x5, 0xfffffffeffffffff, 0xfffffffe, 0x3, 0x7f, 0x8}) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000001700)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x189082, 0x0) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00'}) sendmsg$auto_TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000003a80)={0x0, 0x0, &(0x7f0000003a40)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRESHEX=r1, @ANYBLOB="01002ebd7000fbf8df250300c2794041bdbec0e3263b78c400004b78da867dba8895138130a2457371b95d31ad97e04fdffc194fcafe2ec7dfa4e72ad4a833e1fe19d1ea0ea3604eb2e59f1e613f109b647a6b8392130dd5ce716a3975e573c13728750ba6bb79c69d4c55aa9c4c000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x24040804) 973.158787ms ago: executing program 0 (id=971): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, &(0x7f0000000000)={0x8000000000000001}) setsockopt$auto_SO_NOFCS(r0, 0x704, 0x2b, &(0x7f0000000040)='\'', 0x12) setregid$auto(0xffffffffffffffff, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rxrpc/calls\x00', 0x101000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0x2, 0x80802, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0xa, 0x3, 0x3b) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x400, 0x2f, 0x940, 0x1ffe0, 0x5a6, 0x3, 0x100002, 0x7f, 0x767, 0xfff, 0x7, 0xb2, 0x9, 0x4, 0x3, 0x1, 0x4, 0x20, 0x0, 0x1, 0x202, 0x62c, 0x40000000, 0x0, 0x9, 0x0, 0x0, 0x2, [0x251, 0xffffffff, 0x0, 0x4, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x5, 0x0, 0x200000, 0x1, 0x8000000000000000, 0x1, 0x0, 0x1, 0x0, 0x87ffd, 0x0, 0x6, 0xffffffffffffffff, 0x6, 0xb, 0x0, 0x0, 0x6, 0x0, 0x5, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1]}, 0x1fa, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getpgid(0xffffffffffffffff) 868.011334ms ago: executing program 4 (id=972): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio1\x00', 0x8000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) fsopen$auto(0x0, 0x1) syslog$auto(0x2, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1Y\x1e\xe1R1\xa2\x8e\xce\xa0\x17\x0eI3\'\v\xf8\xfe\n\xf5j\x94\x7f\x00\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xed\x013\x87l\xb9\x1e\x05\x90\xa2\x00'/91, 0x2) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio7\x00', 0xc0200, 0x0) ioctl$auto(0x3, 0xc0585609, 0xffffffffffffffff) 357.666857ms ago: executing program 4 (id=973): sendmsg$auto_OVS_CT_LIMIT_CMD_GET(0xffffffffffffffff, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x48080}, 0x20000000) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff024}}) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$auto_SNAPSHOT_AVAIL_SWAP_SIZE(r1, 0x80083313, &(0x7f0000000100)=0x6d) write$auto(r0, 0x0, 0x6) 50.360373ms ago: executing program 1 (id=974): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x7, 0xdf, 0xeb1, r0, 0x8000) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r2 = prctl$auto_PR_SYS_DISPATCH_ON(0x8000, 0x1, 0xffffffffffffffff, 0x0, 0x8000000000000000) ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000100)={0x5, 0x0, [{0x4, 0x6, 0x6}, {0x180, 0xe8f, 0x3}, {0x5, 0x4, 0xffff}, {0x6, 0x100}, {0x0, 0xf3af, 0x5}, {0xffff, 0x86, 0x6}]}) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) read$auto(0x3, 0x0, 0x8080) r3 = getpid() socket(0x23, 0x80805, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x11, 0x3, 0x9) sendmsg$auto_NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, 0x0, 0x4004001) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x2ba03, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x12, 0x3, 0x0) pipe$auto(0x0) process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x800000005, &(0x7f0000000500)={&(0x7f0000000080), 0x1ffffffff}, 0x2, 0x0) prctl$auto_PR_SET_MM_END_CODE(0x7f, 0x2, r3, 0x7, 0x7) socket(0xa, 0x1, 0x100) unshare$auto(0x40000080) write$auto(0x3, 0x0, 0x100082) socket(0x1e, 0x1, 0x106) read$auto(0x3, 0x0, 0x7fffffff) read$auto_proc_loginuid_operations_base(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) 0s ago: executing program 2 (id=975): unshare$auto(0x40000080) unshare$auto(0x10) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) ioctl$auto_UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000040)={r0, 0x1, 0x10001, 0x9fd}) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) write$auto(r0, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xd8\x9c\xf7?:\x1a\xc62\x911e\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xff\x7f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\x87N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00', 0xb) kernel console output (not intermixed with test programs): oogle Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 384.722913][ T6373] Call Trace: [ 384.722922][ T6373] [ 384.722933][ T6373] dump_stack_lvl+0x100/0x190 [ 384.722983][ T6373] should_fail_ex.cold+0x5/0xa [ 384.723018][ T6373] should_failslab+0xc2/0x120 [ 384.723051][ T6373] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 384.723094][ T6373] ? __proc_create+0x2cb/0x8c0 [ 384.723131][ T6373] __proc_create+0x2cb/0x8c0 [ 384.723161][ T6373] ? __pfx___proc_create+0x10/0x10 [ 384.723197][ T6373] ? _raw_write_unlock+0x28/0x50 [ 384.723225][ T6373] ? proc_register+0x559/0x8a0 [ 384.723257][ T6373] proc_create_reg+0x75/0x170 [ 384.723289][ T6373] proc_create_net_data+0x8e/0x1c0 [ 384.723320][ T6373] ? __pfx_proc_create_net_data+0x10/0x10 [ 384.723353][ T6373] ? __pfx___netlink_kernel_create+0x10/0x10 [ 384.723392][ T6373] fib_proc_init+0xf9/0x1d0 [ 384.723423][ T6373] fib_net_init+0x2af/0x3f0 [ 384.723451][ T6373] ? is_module_address+0x69/0xf0 [ 384.723490][ T6373] ? __pfx_fib_net_init+0x10/0x10 [ 384.723521][ T6373] ? timer_init_key+0x150/0x340 [ 384.723553][ T6373] ? __pfx_nl_fib_input+0x10/0x10 [ 384.723588][ T6373] ? devinet_init_net+0x56c/0x8d0 [ 384.723626][ T6373] ? __pfx_fib_net_init+0x10/0x10 [ 384.723654][ T6373] ops_init+0x1e2/0x5f0 [ 384.723688][ T6373] setup_net+0x118/0x3a0 [ 384.723720][ T6373] ? __pfx_setup_net+0x10/0x10 [ 384.723757][ T6373] ? lockdep_init_map_type+0x5c/0x250 [ 384.723799][ T6373] ? mutex_init_lockep+0x110/0x150 [ 384.723846][ T6373] copy_net_ns+0x46f/0x7c0 [ 384.723883][ T6373] create_new_namespaces+0x3ea/0xac0 [ 384.723924][ T6373] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 384.723960][ T6373] ksys_unshare+0x473/0xad0 [ 384.724000][ T6373] ? __pfx_ksys_unshare+0x10/0x10 [ 384.724051][ T6373] __x64_sys_unshare+0x31/0x40 [ 384.724087][ T6373] do_syscall_64+0x106/0xf80 [ 384.724117][ T6373] ? clear_bhb_loop+0x40/0x90 [ 384.724153][ T6373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.724183][ T6373] RIP: 0033:0x7f05a279c819 [ 384.724207][ T6373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.724233][ T6373] RSP: 002b:00007f05a3681028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 384.724260][ T6373] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 384.724280][ T6373] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 384.724295][ T6373] RBP: 00007f05a2832c91 R08: 0000000000000000 R09: 0000000000000000 [ 384.724312][ T6373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.724326][ T6373] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 384.724359][ T6373] [ 385.115603][ T6378] syz.0.82 uses obsolete (PF_INET,SOCK_PACKET) [ 385.508084][ T6383] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 385.586978][ T6378] can: request_module (can-proto-3) failed. [ 392.879151][ T5146] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 392.879195][ T5146] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 392.894248][ T5146] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 392.896233][ T5146] Bluetooth: hci3: adv larger than maximum supported [ 392.903319][ T5146] Bluetooth: hci3: Malformed LE Event: 0x0d [ 393.242246][ T6508] process 'syz.2.110' launched './file0' with NULL argv: empty string added [ 398.374937][ T6567] futex_wake_op: syz.0.123 tries to shift op by -2048; fix this program [ 399.451788][ T6591] FAULT_INJECTION: forcing a failure. [ 399.451788][ T6591] name failslab, interval 0, probability 0, space 0, times 0 [ 399.773987][ T6591] CPU: 0 UID: 0 PID: 6591 Comm: syz.3.124 Not tainted syzkaller #0 PREEMPT(full) [ 399.774023][ T6591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 399.774040][ T6591] Call Trace: [ 399.774048][ T6591] [ 399.774057][ T6591] dump_stack_lvl+0x100/0x190 [ 399.774104][ T6591] should_fail_ex.cold+0x5/0xa [ 399.774136][ T6591] should_failslab+0xc2/0x120 [ 399.774166][ T6591] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 399.774205][ T6591] ? __proc_create+0x2cb/0x8c0 [ 399.774252][ T6591] __proc_create+0x2cb/0x8c0 [ 399.774284][ T6591] ? __pfx___proc_create+0x10/0x10 [ 399.774312][ T6591] ? pcpu_chunk_relocate+0x134/0x1a0 [ 399.774364][ T6591] proc_create_reg+0x75/0x170 [ 399.774394][ T6591] ? __pfx_xfrm_statistics_seq_show+0x10/0x10 [ 399.774442][ T6591] proc_create_net_single+0x86/0x180 [ 399.774473][ T6591] ? __pfx_proc_create_net_single+0x10/0x10 [ 399.774518][ T6591] ? __pfx_xfrm_net_init+0x10/0x10 [ 399.774558][ T6591] xfrm_proc_init+0x4d/0x70 [ 399.774601][ T6591] xfrm_net_init+0x1ee/0xcf0 [ 399.774641][ T6591] ? __pfx_xfrm_net_init+0x10/0x10 [ 399.774661][ T6591] ops_init+0x1e2/0x5f0 [ 399.774679][ T6591] setup_net+0x118/0x3a0 [ 399.774695][ T6591] ? __pfx_setup_net+0x10/0x10 [ 399.774709][ T6591] ? lockdep_init_map_type+0x5c/0x250 [ 399.774731][ T6591] ? mutex_init_lockep+0x110/0x150 [ 399.774754][ T6591] copy_net_ns+0x46f/0x7c0 [ 399.774773][ T6591] create_new_namespaces+0x3ea/0xac0 [ 399.774794][ T6591] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 399.774812][ T6591] ksys_unshare+0x473/0xad0 [ 399.774833][ T6591] ? __pfx_ksys_unshare+0x10/0x10 [ 399.774859][ T6591] __x64_sys_unshare+0x31/0x40 [ 399.774877][ T6591] do_syscall_64+0x106/0xf80 [ 399.774893][ T6591] ? clear_bhb_loop+0x40/0x90 [ 399.774911][ T6591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.774926][ T6591] RIP: 0033:0x7f02e9f9c819 [ 399.774939][ T6591] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 399.774954][ T6591] RSP: 002b:00007f02e81ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 399.774968][ T6591] RAX: ffffffffffffffda RBX: 00007f02ea215fa0 RCX: 00007f02e9f9c819 [ 399.774978][ T6591] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 399.774986][ T6591] RBP: 00007f02ea032c91 R08: 0000000000000000 R09: 0000000000000000 [ 399.774995][ T6591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 399.775004][ T6591] R13: 00007f02ea216038 R14: 00007f02ea215fa0 R15: 00007ffecf56ffd8 [ 399.775024][ T6591] [ 401.935905][ T6627] sd 0:0:1:0: PR command failed: 1026 [ 401.941451][ T6627] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 401.948441][ T6627] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 402.963512][ T6644] FAULT_INJECTION: forcing a failure. [ 402.963512][ T6644] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 402.989077][ T6644] CPU: 1 UID: 0 PID: 6644 Comm: syz.0.133 Not tainted syzkaller #0 PREEMPT(full) [ 402.989115][ T6644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 402.989130][ T6644] Call Trace: [ 402.989139][ T6644] [ 402.989149][ T6644] dump_stack_lvl+0x100/0x190 [ 402.989196][ T6644] should_fail_ex.cold+0x5/0xa [ 402.989234][ T6644] _copy_from_iter+0x1f4/0x1690 [ 402.989280][ T6644] ? __pfx__copy_from_iter+0x10/0x10 [ 402.989324][ T6644] ? __pfx___might_resched+0x10/0x10 [ 402.989374][ T6644] file_tty_write.isra.0+0x45b/0x890 [ 402.989428][ T6644] redirected_tty_write+0xd4/0x120 [ 402.989472][ T6644] vfs_write+0x6ac/0x1070 [ 402.989501][ T6644] ? __pfx_redirected_tty_write+0x10/0x10 [ 402.989548][ T6644] ? __pfx_vfs_write+0x10/0x10 [ 402.989572][ T6644] ? find_held_lock+0x2b/0x80 [ 402.989624][ T6644] ksys_write+0x12a/0x250 [ 402.989651][ T6644] ? __pfx_ksys_write+0x10/0x10 [ 402.989691][ T6644] do_syscall_64+0x106/0xf80 [ 402.989720][ T6644] ? clear_bhb_loop+0x40/0x90 [ 402.989755][ T6644] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.989783][ T6644] RIP: 0033:0x7fcd0539c819 [ 402.989805][ T6644] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 402.989830][ T6644] RSP: 002b:00007fcd0621f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 402.989856][ T6644] RAX: ffffffffffffffda RBX: 00007fcd05615fa0 RCX: 00007fcd0539c819 [ 402.989874][ T6644] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 402.989891][ T6644] RBP: 00007fcd0621f090 R08: 0000000000000000 R09: 0000000000000000 [ 402.989908][ T6644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 402.989924][ T6644] R13: 00007fcd05616038 R14: 00007fcd05615fa0 R15: 00007ffc27065578 [ 402.989962][ T6644] [ 404.605348][ T6672] FAULT_INJECTION: forcing a failure. [ 404.605348][ T6672] name failslab, interval 0, probability 0, space 0, times 0 [ 404.624954][ T6672] CPU: 1 UID: 0 PID: 6672 Comm: syz.1.138 Not tainted syzkaller #0 PREEMPT(full) [ 404.624991][ T6672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 404.625004][ T6672] Call Trace: [ 404.625012][ T6672] [ 404.625021][ T6672] dump_stack_lvl+0x100/0x190 [ 404.625102][ T6672] should_fail_ex.cold+0x5/0xa [ 404.625131][ T6672] should_failslab+0xc2/0x120 [ 404.625159][ T6672] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 404.625196][ T6672] ? __kernfs_new_node+0xd2/0x960 [ 404.625242][ T6672] __kernfs_new_node+0xd2/0x960 [ 404.625285][ T6672] ? __pfx___kernfs_new_node+0x10/0x10 [ 404.625333][ T6672] ? find_held_lock+0x2b/0x80 [ 404.625360][ T6672] ? kernfs_root+0xee/0x2a0 [ 404.625398][ T6672] ? kernfs_root+0xee/0x2a0 [ 404.625444][ T6672] kernfs_new_node+0x11b/0x1a0 [ 404.625476][ T6672] __kernfs_create_file+0x53/0x350 [ 404.625510][ T6672] sysfs_add_file_mode_ns+0x207/0x3c0 [ 404.625553][ T6672] internal_create_group+0x593/0xf40 [ 404.625602][ T6672] ? __pfx_internal_create_group+0x10/0x10 [ 404.625648][ T6672] ? kernfs_create_link+0x1bd/0x240 [ 404.625684][ T6672] internal_create_groups+0x9d/0x150 [ 404.625726][ T6672] device_add+0x71a/0x1950 [ 404.625766][ T6672] ? __pfx_device_add+0x10/0x10 [ 404.625800][ T6672] ? lockdep_init_map_type+0x5c/0x250 [ 404.625837][ T6672] ? __init_waitqueue_head+0xca/0x150 [ 404.625886][ T6672] rfkill_register+0x1ad/0xb30 [ 404.625929][ T6672] hci_register_dev+0x3ce/0xc90 [ 404.625971][ T6672] hci_uart_tty_ioctl+0x8fd/0xc80 [ 404.626015][ T6672] ? __pfx_hci_uart_tty_ioctl+0x10/0x10 [ 404.626061][ T6672] tty_ioctl+0x1204/0x1690 [ 404.626090][ T6672] ? __pfx_tty_ioctl+0x10/0x10 [ 404.626124][ T6672] ? find_held_lock+0x2b/0x80 [ 404.626150][ T6672] ? __fget_files+0x215/0x3d0 [ 404.626175][ T6672] ? hook_file_ioctl_common+0x146/0x410 [ 404.626217][ T6672] ? __fget_files+0x21f/0x3d0 [ 404.626250][ T6672] ? __pfx_tty_ioctl+0x10/0x10 [ 404.626278][ T6672] __x64_sys_ioctl+0x18e/0x210 [ 404.626322][ T6672] do_syscall_64+0x106/0xf80 [ 404.626350][ T6672] ? clear_bhb_loop+0x40/0x90 [ 404.626383][ T6672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.626410][ T6672] RIP: 0033:0x7f05a279c819 [ 404.626433][ T6672] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 404.626458][ T6672] RSP: 002b:00007f05a3681028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 404.626484][ T6672] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 404.626502][ T6672] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000011 [ 404.626518][ T6672] RBP: 00007f05a3681090 R08: 0000000000000000 R09: 0000000000000000 [ 404.626534][ T6672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 404.626549][ T6672] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 404.626586][ T6672] [ 405.631932][ T6684] netlink: 4 bytes leftover after parsing attributes in process `syz.3.142'. [ 405.996444][ T6673] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 405.996482][ T6673] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 406.011809][ T6673] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 406.011844][ T6673] Bluetooth: hci3: adv larger than maximum supported [ 406.020354][ T6673] Bluetooth: hci3: adv larger than maximum supported [ 406.031143][ T6673] Bluetooth: hci3: Malformed LE Event: 0x0d [ 406.665699][ T6693] FAULT_INJECTION: forcing a failure. [ 406.665699][ T6693] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 406.695139][ T6615] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 406.701516][ T6673] Bluetooth: hci4: command 0x1003 tx timeout [ 406.709591][ T6693] CPU: 1 UID: 0 PID: 6693 Comm: syz.2.144 Not tainted syzkaller #0 PREEMPT(full) [ 406.709623][ T6693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 406.709637][ T6693] Call Trace: [ 406.709646][ T6693] [ 406.709656][ T6693] dump_stack_lvl+0x100/0x190 [ 406.709701][ T6693] should_fail_ex.cold+0x5/0xa [ 406.709733][ T6693] _copy_from_iter+0x1f4/0x1690 [ 406.709777][ T6693] ? __pfx__copy_from_iter+0x10/0x10 [ 406.709820][ T6693] ? __pfx___might_resched+0x10/0x10 [ 406.709869][ T6693] file_tty_write.isra.0+0x45b/0x890 [ 406.709931][ T6693] redirected_tty_write+0xd4/0x120 [ 406.709975][ T6693] vfs_write+0x6ac/0x1070 [ 406.710004][ T6693] ? __pfx_redirected_tty_write+0x10/0x10 [ 406.710051][ T6693] ? __pfx_vfs_write+0x10/0x10 [ 406.710076][ T6693] ? find_held_lock+0x2b/0x80 [ 406.710128][ T6693] ksys_write+0x12a/0x250 [ 406.710155][ T6693] ? __pfx_ksys_write+0x10/0x10 [ 406.710193][ T6693] do_syscall_64+0x106/0xf80 [ 406.710223][ T6693] ? clear_bhb_loop+0x40/0x90 [ 406.710257][ T6693] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 406.710286][ T6693] RIP: 0033:0x7fdcb739c819 [ 406.710309][ T6693] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 406.710341][ T6693] RSP: 002b:00007fdcb8188028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 406.710367][ T6693] RAX: ffffffffffffffda RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 406.710384][ T6693] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 406.710401][ T6693] RBP: 00007fdcb8188090 R08: 0000000000000000 R09: 0000000000000000 [ 406.710417][ T6693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 406.710433][ T6693] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 406.710470][ T6693] [ 407.460161][ T6702] netlink: 8 bytes leftover after parsing attributes in process `syz.2.147'. [ 410.590380][ T6741] FAULT_INJECTION: forcing a failure. [ 410.590380][ T6741] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 410.724480][ T6741] CPU: 1 UID: 0 PID: 6741 Comm: syz.3.154 Not tainted syzkaller #0 PREEMPT(full) [ 410.724518][ T6741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 410.724533][ T6741] Call Trace: [ 410.724542][ T6741] [ 410.724552][ T6741] dump_stack_lvl+0x100/0x190 [ 410.724598][ T6741] should_fail_ex.cold+0x5/0xa [ 410.724632][ T6741] _copy_from_iter+0x1f4/0x1690 [ 410.724678][ T6741] ? __pfx__copy_from_iter+0x10/0x10 [ 410.724721][ T6741] ? __pfx___might_resched+0x10/0x10 [ 410.724771][ T6741] file_tty_write.isra.0+0x45b/0x890 [ 410.724825][ T6741] redirected_tty_write+0xd4/0x120 [ 410.724869][ T6741] vfs_write+0x6ac/0x1070 [ 410.724899][ T6741] ? __pfx_redirected_tty_write+0x10/0x10 [ 410.724944][ T6741] ? __pfx_vfs_write+0x10/0x10 [ 410.724968][ T6741] ? find_held_lock+0x2b/0x80 [ 410.725019][ T6741] ksys_write+0x12a/0x250 [ 410.725046][ T6741] ? __pfx_ksys_write+0x10/0x10 [ 410.725085][ T6741] do_syscall_64+0x106/0xf80 [ 410.725114][ T6741] ? clear_bhb_loop+0x40/0x90 [ 410.725147][ T6741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.725175][ T6741] RIP: 0033:0x7f02e9f9c819 [ 410.725197][ T6741] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 410.725221][ T6741] RSP: 002b:00007f02e81ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 410.725246][ T6741] RAX: ffffffffffffffda RBX: 00007f02ea215fa0 RCX: 00007f02e9f9c819 [ 410.725265][ T6741] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 410.725281][ T6741] RBP: 00007f02e81ee090 R08: 0000000000000000 R09: 0000000000000000 [ 410.725297][ T6741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 410.725313][ T6741] R13: 00007f02ea216038 R14: 00007f02ea215fa0 R15: 00007ffecf56ffd8 [ 410.725348][ T6741] [ 415.021740][ T6799] random: crng reseeded on system resumption [ 418.458499][ T6863] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 422.344678][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 422.754619][ T6944] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 422.816875][ T6944] netlink: 28 bytes leftover after parsing attributes in process `syz.1.188'. [ 422.900812][ T6944] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 422.952743][ T6944] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 422.994282][ T6944] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 423.032159][ T6944] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 423.492309][ T6959] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 424.072013][ T6973] FAULT_INJECTION: forcing a failure. [ 424.072013][ T6973] name failslab, interval 0, probability 0, space 0, times 0 [ 424.117287][ T6973] CPU: 0 UID: 0 PID: 6973 Comm: syz.3.193 Tainted: G L syzkaller #0 PREEMPT(full) [ 424.117328][ T6973] Tainted: [L]=SOFTLOCKUP [ 424.117337][ T6973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 424.117352][ T6973] Call Trace: [ 424.117361][ T6973] [ 424.117369][ T6973] dump_stack_lvl+0x100/0x190 [ 424.117413][ T6973] should_fail_ex.cold+0x5/0xa [ 424.117446][ T6973] should_failslab+0xc2/0x120 [ 424.117478][ T6973] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 424.117519][ T6973] ? __kernfs_new_node+0xd2/0x960 [ 424.117566][ T6973] __kernfs_new_node+0xd2/0x960 [ 424.117610][ T6973] ? __pfx___kernfs_new_node+0x10/0x10 [ 424.117659][ T6973] ? find_held_lock+0x2b/0x80 [ 424.117685][ T6973] ? kernfs_root+0xee/0x2a0 [ 424.117722][ T6973] ? kernfs_root+0xee/0x2a0 [ 424.117770][ T6973] kernfs_new_node+0x11b/0x1a0 [ 424.117803][ T6973] __kernfs_create_file+0x53/0x350 [ 424.117841][ T6973] sysfs_add_file_mode_ns+0x207/0x3c0 [ 424.117894][ T6973] internal_create_group+0x593/0xf40 [ 424.117945][ T6973] ? __pfx_internal_create_group+0x10/0x10 [ 424.117992][ T6973] ? kernfs_create_link+0x1bd/0x240 [ 424.118031][ T6973] internal_create_groups+0x9d/0x150 [ 424.118076][ T6973] device_add+0x71a/0x1950 [ 424.118117][ T6973] ? __pfx_device_add+0x10/0x10 [ 424.118151][ T6973] ? lockdep_init_map_type+0x5c/0x250 [ 424.118188][ T6973] ? __init_waitqueue_head+0xca/0x150 [ 424.118236][ T6973] rfkill_register+0x1ad/0xb30 [ 424.118277][ T6973] hci_register_dev+0x3ce/0xc90 [ 424.118316][ T6973] hci_uart_tty_ioctl+0x8fd/0xc80 [ 424.118364][ T6973] ? __pfx_hci_uart_tty_ioctl+0x10/0x10 [ 424.118399][ T6973] tty_ioctl+0x1204/0x1690 [ 424.118425][ T6973] ? __pfx_tty_ioctl+0x10/0x10 [ 424.118458][ T6973] ? find_held_lock+0x2b/0x80 [ 424.118482][ T6973] ? __fget_files+0x215/0x3d0 [ 424.118506][ T6973] ? hook_file_ioctl_common+0x146/0x410 [ 424.118546][ T6973] ? __fget_files+0x21f/0x3d0 [ 424.118576][ T6973] ? __pfx_tty_ioctl+0x10/0x10 [ 424.118601][ T6973] __x64_sys_ioctl+0x18e/0x210 [ 424.118641][ T6973] do_syscall_64+0x106/0xf80 [ 424.118667][ T6973] ? clear_bhb_loop+0x40/0x90 [ 424.118698][ T6973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 424.118723][ T6973] RIP: 0033:0x7f02e9f9c819 [ 424.118744][ T6973] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 424.118767][ T6973] RSP: 002b:00007f02e81ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 424.118791][ T6973] RAX: ffffffffffffffda RBX: 00007f02ea215fa0 RCX: 00007f02e9f9c819 [ 424.118808][ T6973] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000011 [ 424.118823][ T6973] RBP: 00007f02e81ee090 R08: 0000000000000000 R09: 0000000000000000 [ 424.118838][ T6973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 424.118852][ T6973] R13: 00007f02ea216038 R14: 00007f02ea215fa0 R15: 00007ffecf56ffd8 [ 424.118892][ T6973] [ 425.941482][ T7003] FAULT_INJECTION: forcing a failure. [ 425.941482][ T7003] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 425.974856][ T7003] CPU: 0 UID: 0 PID: 7003 Comm: syz.2.199 Tainted: G L syzkaller #0 PREEMPT(full) [ 425.974882][ T7003] Tainted: [L]=SOFTLOCKUP [ 425.974887][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 425.974896][ T7003] Call Trace: [ 425.974902][ T7003] [ 425.974907][ T7003] dump_stack_lvl+0x100/0x190 [ 425.974945][ T7003] should_fail_ex.cold+0x5/0xa [ 425.974965][ T7003] _copy_from_iter+0x1f4/0x1690 [ 425.974990][ T7003] ? __pfx__copy_from_iter+0x10/0x10 [ 425.975013][ T7003] ? __pfx___might_resched+0x10/0x10 [ 425.975040][ T7003] file_tty_write.isra.0+0x45b/0x890 [ 425.975069][ T7003] redirected_tty_write+0xd4/0x120 [ 425.975094][ T7003] vfs_write+0x6ac/0x1070 [ 425.975109][ T7003] ? __pfx_redirected_tty_write+0x10/0x10 [ 425.975135][ T7003] ? __pfx_vfs_write+0x10/0x10 [ 425.975148][ T7003] ? find_held_lock+0x2b/0x80 [ 425.975175][ T7003] ksys_write+0x12a/0x250 [ 425.975189][ T7003] ? __pfx_ksys_write+0x10/0x10 [ 425.975209][ T7003] do_syscall_64+0x106/0xf80 [ 425.975226][ T7003] ? clear_bhb_loop+0x40/0x90 [ 425.975244][ T7003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.975260][ T7003] RIP: 0033:0x7fdcb739c819 [ 425.975272][ T7003] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 425.975286][ T7003] RSP: 002b:00007fdcb8188028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 425.975300][ T7003] RAX: ffffffffffffffda RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 425.975310][ T7003] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 425.975318][ T7003] RBP: 00007fdcb8188090 R08: 0000000000000000 R09: 0000000000000000 [ 425.975327][ T7003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 425.975335][ T7003] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 425.975354][ T7003] [ 426.170645][ T6615] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 427.849536][ T7032] zswap: compressor not available [ 427.995907][ T7041] FAULT_INJECTION: forcing a failure. [ 427.995907][ T7041] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 428.018324][ T7041] CPU: 1 UID: 0 PID: 7041 Comm: syz.2.210 Tainted: G L syzkaller #0 PREEMPT(full) [ 428.018366][ T7041] Tainted: [L]=SOFTLOCKUP [ 428.018374][ T7041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 428.018388][ T7041] Call Trace: [ 428.018397][ T7041] [ 428.018406][ T7041] dump_stack_lvl+0x100/0x190 [ 428.018448][ T7041] should_fail_ex.cold+0x5/0xa [ 428.018481][ T7041] _copy_from_iter+0x1f4/0x1690 [ 428.018523][ T7041] ? __pfx__copy_from_iter+0x10/0x10 [ 428.018564][ T7041] ? __pfx___might_resched+0x10/0x10 [ 428.018610][ T7041] file_tty_write.isra.0+0x45b/0x890 [ 428.018662][ T7041] redirected_tty_write+0xd4/0x120 [ 428.018703][ T7041] vfs_write+0x6ac/0x1070 [ 428.018732][ T7041] ? __pfx_redirected_tty_write+0x10/0x10 [ 428.018785][ T7041] ? __pfx_vfs_write+0x10/0x10 [ 428.018808][ T7041] ? find_held_lock+0x2b/0x80 [ 428.018858][ T7041] ksys_write+0x12a/0x250 [ 428.018885][ T7041] ? __pfx_ksys_write+0x10/0x10 [ 428.018924][ T7041] do_syscall_64+0x106/0xf80 [ 428.018951][ T7041] ? clear_bhb_loop+0x40/0x90 [ 428.018981][ T7041] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.019008][ T7041] RIP: 0033:0x7fdcb739c819 [ 428.019030][ T7041] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 428.019055][ T7041] RSP: 002b:00007fdcb8188028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 428.019081][ T7041] RAX: ffffffffffffffda RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 428.019099][ T7041] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 428.019115][ T7041] RBP: 00007fdcb8188090 R08: 0000000000000000 R09: 0000000000000000 [ 428.019132][ T7041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 428.019152][ T7041] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 428.019190][ T7041] [ 428.140079][ T7049] syz.0.211 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 428.353264][ T7054] FAULT_INJECTION: forcing a failure. [ 428.353264][ T7054] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 428.353309][ T7054] CPU: 0 UID: 0 PID: 7054 Comm: syz.1.215 Tainted: G L syzkaller #0 PREEMPT(full) [ 428.353350][ T7054] Tainted: [L]=SOFTLOCKUP [ 428.353360][ T7054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 428.353375][ T7054] Call Trace: [ 428.353384][ T7054] [ 428.353394][ T7054] dump_stack_lvl+0x100/0x190 [ 428.353441][ T7054] should_fail_ex.cold+0x5/0xa [ 428.353479][ T7054] ? prepare_alloc_pages+0x16d/0x5f0 [ 428.353518][ T7054] should_fail_alloc_page+0xeb/0x140 [ 428.353554][ T7054] prepare_alloc_pages+0x1f0/0x5f0 [ 428.353595][ T7054] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 428.353647][ T7054] ? rcu_is_watching+0x12/0xc0 [ 428.353690][ T7054] ? trace_mm_page_alloc+0x17a/0x1d0 [ 428.353725][ T7054] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 428.353770][ T7054] ? stack_depot_save_flags+0x479/0x9d0 [ 428.353812][ T7054] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 428.353856][ T7054] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 428.353905][ T7054] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 428.353952][ T7054] ? stack_depot_save_flags+0x479/0x9d0 [ 428.354001][ T7054] ? kasan_save_stack+0x3f/0x50 [ 428.354027][ T7054] ? kasan_save_track+0x14/0x30 [ 428.354053][ T7054] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 428.354096][ T7054] ? alloc_vmap_area+0x186c/0x2bd0 [ 428.354125][ T7054] ? __get_vm_area_node+0x1ca/0x330 [ 428.354157][ T7054] ? get_vm_area_caller+0x71/0xa0 [ 428.354188][ T7054] ? vmap+0x131/0x2f0 [ 428.354218][ T7054] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 428.354250][ T7054] ? map_create+0x84e/0x2ba0 [ 428.354271][ T7054] ? __sys_bpf+0x2091/0x4b90 [ 428.354299][ T7054] ? __x64_sys_bpf+0x7b/0xc0 [ 428.354341][ T7054] alloc_pages_bulk_noprof+0x782/0x1490 [ 428.354400][ T7054] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 428.354459][ T7054] ? alloc_pages_noprof+0x238/0x390 [ 428.354503][ T7054] __kasan_populate_vmalloc+0xf0/0x210 [ 428.354557][ T7054] alloc_vmap_area+0x95d/0x2bd0 [ 428.354600][ T7054] ? __pfx_alloc_vmap_area+0x10/0x10 [ 428.354642][ T7054] __get_vm_area_node+0x1ca/0x330 [ 428.354680][ T7054] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 428.354716][ T7054] get_vm_area_caller+0x71/0xa0 [ 428.354751][ T7054] ? ringbuf_map_alloc+0x3a1/0x8b0 [ 428.354787][ T7054] vmap+0x131/0x2f0 [ 428.354820][ T7054] ? __pfx_vmap+0x10/0x10 [ 428.354862][ T7054] ringbuf_map_alloc+0x3a1/0x8b0 [ 428.354905][ T7054] ? __pfx_ringbuf_map_mem_usage+0x10/0x10 [ 428.354940][ T7054] map_create+0x84e/0x2ba0 [ 428.354968][ T7054] ? preempt_schedule_thunk+0x16/0x30 [ 428.355017][ T7054] ? __pfx_map_create+0x10/0x10 [ 428.355046][ T7054] ? __might_fault+0xc5/0x140 [ 428.355087][ T7054] ? __might_fault+0xc5/0x140 [ 428.355143][ T7054] __sys_bpf+0x2091/0x4b90 [ 428.355176][ T7054] ? futex_private_hash_put+0x107/0x1c0 [ 428.355216][ T7054] ? __pfx___sys_bpf+0x10/0x10 [ 428.355253][ T7054] ? __pfx_futex_wake+0x10/0x10 [ 428.355302][ T7054] ? errseq_sample+0x51/0x70 [ 428.355337][ T7054] ? file_init_path+0x48e/0x670 [ 428.355378][ T7054] ? do_futex+0x192/0x350 [ 428.355434][ T7054] ? __sys_socket+0xac/0x260 [ 428.355478][ T7054] ? xfd_validate_state+0x129/0x190 [ 428.355531][ T7054] __x64_sys_bpf+0x7b/0xc0 [ 428.355566][ T7054] ? lockdep_hardirqs_on+0x78/0x100 [ 428.355597][ T7054] do_syscall_64+0x106/0xf80 [ 428.355626][ T7054] ? clear_bhb_loop+0x40/0x90 [ 428.355663][ T7054] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.355692][ T7054] RIP: 0033:0x7f05a279c819 [ 428.355716][ T7054] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 428.355743][ T7054] RSP: 002b:00007f05a3681028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 428.355770][ T7054] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 428.355789][ T7054] RDX: 0000000000000010 RSI: 00002000000000c0 RDI: 0000000000000000 [ 428.355806][ T7054] RBP: 00007f05a2832c91 R08: 0000000000000000 R09: 0000000000000000 [ 428.355822][ T7054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.355835][ T7054] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 428.355866][ T7054] [ 429.964205][ T7078] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 430.498038][ T7093] FAULT_INJECTION: forcing a failure. [ 430.498038][ T7093] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 430.545854][ T7093] CPU: 1 UID: 0 PID: 7093 Comm: syz.0.227 Tainted: G L syzkaller #0 PREEMPT(full) [ 430.545898][ T7093] Tainted: [L]=SOFTLOCKUP [ 430.545907][ T7093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 430.545922][ T7093] Call Trace: [ 430.545931][ T7093] [ 430.545941][ T7093] dump_stack_lvl+0x100/0x190 [ 430.545987][ T7093] should_fail_ex.cold+0x5/0xa [ 430.546022][ T7093] _copy_from_iter+0x1f4/0x1690 [ 430.546067][ T7093] ? __pfx__copy_from_iter+0x10/0x10 [ 430.546111][ T7093] ? __pfx___might_resched+0x10/0x10 [ 430.546158][ T7093] file_tty_write.isra.0+0x45b/0x890 [ 430.546213][ T7093] redirected_tty_write+0xd4/0x120 [ 430.546256][ T7093] vfs_write+0x6ac/0x1070 [ 430.546285][ T7093] ? __pfx_redirected_tty_write+0x10/0x10 [ 430.546333][ T7093] ? __pfx_vfs_write+0x10/0x10 [ 430.546357][ T7093] ? find_held_lock+0x2b/0x80 [ 430.546409][ T7093] ksys_write+0x12a/0x250 [ 430.546437][ T7093] ? __pfx_ksys_write+0x10/0x10 [ 430.546481][ T7093] do_syscall_64+0x106/0xf80 [ 430.546511][ T7093] ? clear_bhb_loop+0x40/0x90 [ 430.546545][ T7093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.546574][ T7093] RIP: 0033:0x7fcd0539c819 [ 430.546596][ T7093] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 430.546621][ T7093] RSP: 002b:00007fcd0621f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 430.546646][ T7093] RAX: ffffffffffffffda RBX: 00007fcd05615fa0 RCX: 00007fcd0539c819 [ 430.546664][ T7093] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000003 [ 430.546681][ T7093] RBP: 00007fcd0621f090 R08: 0000000000000000 R09: 0000000000000000 [ 430.546697][ T7093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 430.546712][ T7093] R13: 00007fcd05616038 R14: 00007fcd05615fa0 R15: 00007ffc27065578 [ 430.546746][ T7093] [ 431.696568][ T7102] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 431.704137][ T7102] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 431.751639][ T7102] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 431.762217][ T7102] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 431.772390][ T7102] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 431.797027][ T7102] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 431.805895][ T7102] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 431.825382][ T7102] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 431.848546][ T7102] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 431.869368][ T7102] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 431.883934][ T7102] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 431.930243][ T7102] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 433.014342][ T6673] Bluetooth: hci0: command 0x0c1a tx timeout [ 433.818035][ T6673] Bluetooth: hci2: command 0x0c1a tx timeout [ 433.824128][ T6615] Bluetooth: hci1: command 0x0c1a tx timeout [ 433.894731][ T6673] Bluetooth: hci3: command 0x0c1a tx timeout [ 435.096822][ T6673] Bluetooth: hci0: command 0x0c1a tx timeout [ 435.808483][ T7177] misc userio: No port type given on /dev/userio [ 435.894381][ T6673] Bluetooth: hci2: command 0x0c1a tx timeout [ 435.900455][ T6615] Bluetooth: hci1: command 0x0c1a tx timeout [ 435.986568][ T6673] Bluetooth: hci3: command 0x0c1a tx timeout [ 436.715704][ T7196] FAULT_INJECTION: forcing a failure. [ 436.715704][ T7196] name failslab, interval 0, probability 0, space 0, times 0 [ 436.728438][ T7196] CPU: 1 UID: 0 PID: 7196 Comm: syz.2.246 Tainted: G L syzkaller #0 PREEMPT(full) [ 436.728462][ T7196] Tainted: [L]=SOFTLOCKUP [ 436.728467][ T7196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 436.728476][ T7196] Call Trace: [ 436.728481][ T7196] [ 436.728486][ T7196] dump_stack_lvl+0x100/0x190 [ 436.728514][ T7196] should_fail_ex.cold+0x5/0xa [ 436.728532][ T7196] should_failslab+0xc2/0x120 [ 436.728549][ T7196] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 436.728573][ T7196] ? __kernfs_new_node+0xd2/0x960 [ 436.728599][ T7196] __kernfs_new_node+0xd2/0x960 [ 436.728623][ T7196] ? __pfx___kernfs_new_node+0x10/0x10 [ 436.728650][ T7196] ? find_held_lock+0x2b/0x80 [ 436.728665][ T7196] ? kernfs_root+0xee/0x2a0 [ 436.728685][ T7196] ? kernfs_root+0xee/0x2a0 [ 436.728711][ T7196] kernfs_new_node+0x11b/0x1a0 [ 436.728728][ T7196] __kernfs_create_file+0x53/0x350 [ 436.728749][ T7196] sysfs_add_file_mode_ns+0x207/0x3c0 [ 436.728774][ T7196] internal_create_group+0x593/0xf40 [ 436.728801][ T7196] ? __pfx_internal_create_group+0x10/0x10 [ 436.728827][ T7196] ? kernfs_create_link+0x1bd/0x240 [ 436.728848][ T7196] internal_create_groups+0x9d/0x150 [ 436.728872][ T7196] device_add+0x71a/0x1950 [ 436.728894][ T7196] ? __pfx_device_add+0x10/0x10 [ 436.728914][ T7196] ? lockdep_init_map_type+0x5c/0x250 [ 436.728939][ T7196] ? __init_waitqueue_head+0xca/0x150 [ 436.728967][ T7196] rfkill_register+0x1ad/0xb30 [ 436.728991][ T7196] hci_register_dev+0x3ce/0xc90 [ 436.729014][ T7196] hci_uart_tty_ioctl+0x8fd/0xc80 [ 436.729040][ T7196] ? __pfx_hci_uart_tty_ioctl+0x10/0x10 [ 436.729061][ T7196] tty_ioctl+0x1204/0x1690 [ 436.729075][ T7196] ? __pfx_tty_ioctl+0x10/0x10 [ 436.729095][ T7196] ? find_held_lock+0x2b/0x80 [ 436.729108][ T7196] ? __fget_files+0x215/0x3d0 [ 436.729122][ T7196] ? hook_file_ioctl_common+0x146/0x410 [ 436.729146][ T7196] ? __fget_files+0x21f/0x3d0 [ 436.729163][ T7196] ? __pfx_tty_ioctl+0x10/0x10 [ 436.729177][ T7196] __x64_sys_ioctl+0x18e/0x210 [ 436.729201][ T7196] do_syscall_64+0x106/0xf80 [ 436.729217][ T7196] ? clear_bhb_loop+0x40/0x90 [ 436.729235][ T7196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.729250][ T7196] RIP: 0033:0x7fdcb739c819 [ 436.729263][ T7196] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 436.729277][ T7196] RSP: 002b:00007fdcb8188028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 436.729292][ T7196] RAX: ffffffffffffffda RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 436.729302][ T7196] RDX: 0000000000000000 RSI: 00000000400455c8 RDI: 0000000000000011 [ 436.729310][ T7196] RBP: 00007fdcb8188090 R08: 0000000000000000 R09: 0000000000000000 [ 436.729318][ T7196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 436.729326][ T7196] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 436.729346][ T7196] [ 437.190530][ T6615] Bluetooth: hci0: command 0x0c1a tx timeout [ 437.974363][ T6615] Bluetooth: hci2: command 0x0c1a tx timeout [ 437.980999][ T6615] Bluetooth: hci1: command 0x0c1a tx timeout [ 438.091784][ T6615] Bluetooth: hci3: command 0x0c1a tx timeout [ 438.665054][ T7225] misc userio: No port type given on /dev/userio [ 438.774525][ T6615] Bluetooth: hci4: command 0x1003 tx timeout [ 438.780804][ T6673] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 439.001000][ T7220] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 439.149016][ T7236] netlink: 24 bytes leftover after parsing attributes in process `syz.1.255'. [ 439.736484][ T7248] FAULT_INJECTION: forcing a failure. [ 439.736484][ T7248] name failslab, interval 0, probability 0, space 0, times 0 [ 439.778511][ T7248] CPU: 0 UID: 0 PID: 7248 Comm: syz.0.258 Tainted: G L syzkaller #0 PREEMPT(full) [ 439.778556][ T7248] Tainted: [L]=SOFTLOCKUP [ 439.778566][ T7248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 439.778583][ T7248] Call Trace: [ 439.778592][ T7248] [ 439.778603][ T7248] dump_stack_lvl+0x100/0x190 [ 439.778653][ T7248] should_fail_ex.cold+0x5/0xa [ 439.778689][ T7248] should_failslab+0xc2/0x120 [ 439.778723][ T7248] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 439.778768][ T7248] ? skb_clone+0x190/0x400 [ 439.778803][ T7248] skb_clone+0x190/0x400 [ 439.778832][ T7248] netlink_deliver_tap+0xaed/0xcc0 [ 439.778869][ T7248] netlink_unicast+0x70c/0x870 [ 439.778904][ T7248] ? __pfx_netlink_unicast+0x10/0x10 [ 439.778931][ T7248] ? __alloc_skb+0x5b7/0x710 [ 439.778973][ T7248] ? genl_rcv_msg+0x4be/0x800 [ 439.779017][ T7248] netlink_ack+0x655/0xb80 [ 439.779056][ T7248] netlink_rcv_skb+0x333/0x420 [ 439.779085][ T7248] ? __pfx_genl_rcv_msg+0x10/0x10 [ 439.779121][ T7248] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 439.779154][ T7248] ? netlink_deliver_tap+0x1ae/0xcc0 [ 439.779172][ T7248] genl_rcv+0x28/0x40 [ 439.779188][ T7248] netlink_unicast+0x5aa/0x870 [ 439.779207][ T7248] ? __pfx_netlink_unicast+0x10/0x10 [ 439.779230][ T7248] netlink_sendmsg+0x8b0/0xda0 [ 439.779249][ T7248] ? __pfx_netlink_sendmsg+0x10/0x10 [ 439.779268][ T7248] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 439.779295][ T7248] __sys_sendto+0x468/0x4b0 [ 439.779318][ T7248] ? __pfx_netlink_sendmsg+0x10/0x10 [ 439.779335][ T7248] ? __pfx___sys_sendto+0x10/0x10 [ 439.779365][ T7248] ? fd_install+0x223/0x580 [ 439.779387][ T7248] ? __pfx___sys_socket+0x10/0x10 [ 439.779411][ T7248] __x64_sys_sendto+0xe0/0x1c0 [ 439.779432][ T7248] ? do_syscall_64+0x95/0xf80 [ 439.779451][ T7248] ? lockdep_hardirqs_on+0x78/0x100 [ 439.779468][ T7248] do_syscall_64+0x106/0xf80 [ 439.779483][ T7248] ? clear_bhb_loop+0x40/0x90 [ 439.779502][ T7248] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.779517][ T7248] RIP: 0033:0x7fcd0535d04e [ 439.779530][ T7248] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 439.779545][ T7248] RSP: 002b:00007fcd0621de88 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 439.779560][ T7248] RAX: ffffffffffffffda RBX: 00007fcd0621f6c0 RCX: 00007fcd0535d04e [ 439.779569][ T7248] RDX: 0000000000000020 RSI: 00007fcd0621e000 RDI: 000000000000000d [ 439.779578][ T7248] RBP: 0000000000000000 R08: 00007fcd0621df04 R09: 000000000000000c [ 439.779587][ T7248] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000d [ 439.779596][ T7248] R13: 00007fcd0621df58 R14: 00007fcd0621e000 R15: 0000000000000000 [ 439.779616][ T7248] [ 439.998434][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.130559][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 443.116498][ T7304] netlink: 28 bytes leftover after parsing attributes in process `syz.3.269'. [ 443.154365][ T7304] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 443.172040][ T7304] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 443.190827][ T7304] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 443.234849][ T7304] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 446.064300][ T7310] netlink: 342 bytes leftover after parsing attributes in process `syz.1.270'. [ 449.779797][ T7409] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 453.268175][ T7462] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 454.360855][ T7481] random: crng reseeded on system resumption [ 454.588620][ T7486] netlink: 342 bytes leftover after parsing attributes in process `syz.2.308'. [ 454.697682][ T7490] netlink: 246 bytes leftover after parsing attributes in process `syz.1.309'. [ 454.995061][ T7502] FAULT_INJECTION: forcing a failure. [ 454.995061][ T7502] name failslab, interval 0, probability 0, space 0, times 0 [ 455.049499][ T7502] CPU: 1 UID: 0 PID: 7502 Comm: syz.1.313 Tainted: G L syzkaller #0 PREEMPT(full) [ 455.049525][ T7502] Tainted: [L]=SOFTLOCKUP [ 455.049533][ T7502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 455.049546][ T7502] Call Trace: [ 455.049554][ T7502] [ 455.049563][ T7502] dump_stack_lvl+0x100/0x190 [ 455.049605][ T7502] should_fail_ex.cold+0x5/0xa [ 455.049636][ T7502] should_failslab+0xc2/0x120 [ 455.049655][ T7502] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 455.049679][ T7502] ? security_inode_alloc+0x3b/0x2c0 [ 455.049697][ T7502] ? lockdep_init_map_type+0x5c/0x250 [ 455.049720][ T7502] security_inode_alloc+0x3b/0x2c0 [ 455.049738][ T7502] inode_init_always_gfp+0xced/0x1040 [ 455.049757][ T7502] alloc_inode+0x8e/0x250 [ 455.049778][ T7502] new_inode+0x22/0x1c0 [ 455.049796][ T7502] ? trace_kmem_cache_alloc+0xf3/0x120 [ 455.049815][ T7502] shmem_get_inode+0x212/0x1040 [ 455.049846][ T7502] ? __pfx_shmem_get_inode+0x10/0x10 [ 455.049866][ T7502] ? rcu_is_watching+0x12/0xc0 [ 455.049888][ T7502] ? percpu_counter_add_batch+0xb9/0x230 [ 455.049913][ T7502] __shmem_file_setup+0x3ac/0x490 [ 455.049935][ T7502] ? __pfx___shmem_file_setup+0x10/0x10 [ 455.049959][ T7502] ? vm_area_alloc+0x1f/0x160 [ 455.049982][ T7502] shmem_zero_setup+0x96/0x1b0 [ 455.049998][ T7502] __mmap_region+0x21f6/0x2a50 [ 455.050024][ T7502] ? __pfx___mmap_region+0x10/0x10 [ 455.050044][ T7502] ? process_measurement+0x1f4/0x2350 [ 455.050061][ T7502] ? css_rstat_updated+0x1ce/0x5a0 [ 455.050079][ T7502] ? __pfx_css_rstat_updated+0x10/0x10 [ 455.050103][ T7502] ? __lock_acquire+0x4a5/0x2630 [ 455.050131][ T7502] ? find_held_lock+0x2b/0x80 [ 455.050145][ T7502] ? finish_task_switch.isra.0+0x200/0xb80 [ 455.050162][ T7502] ? finish_task_switch.isra.0+0x200/0xb80 [ 455.050186][ T7502] ? trace_sched_exit_tp+0x13a/0x180 [ 455.050204][ T7502] ? __schedule+0x1000/0x6120 [ 455.050242][ T7502] ? rcu_is_watching+0x12/0xc0 [ 455.050265][ T7502] ? cap_capable+0x107/0x460 [ 455.050283][ T7502] mmap_region+0x180/0x3e0 [ 455.050309][ T7502] do_mmap+0xc63/0x12f0 [ 455.050330][ T7502] ? __pfx_do_mmap+0x10/0x10 [ 455.050347][ T7502] ? __pfx_down_write_killable+0x10/0x10 [ 455.050369][ T7502] vm_mmap_pgoff+0x29e/0x470 [ 455.050391][ T7502] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 455.050410][ T7502] ? do_futex+0x192/0x350 [ 455.050431][ T7502] ? __pfx_do_futex+0x10/0x10 [ 455.050454][ T7502] ksys_mmap_pgoff+0xe1/0x650 [ 455.050473][ T7502] ? __x64_sys_futex+0x34f/0x4d0 [ 455.050492][ T7502] ? __x64_sys_futex+0x358/0x4d0 [ 455.050512][ T7502] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 455.050528][ T7502] ? xfd_validate_state+0x129/0x190 [ 455.050554][ T7502] __x64_sys_mmap+0x125/0x190 [ 455.050579][ T7502] do_syscall_64+0x106/0xf80 [ 455.050594][ T7502] ? clear_bhb_loop+0x40/0x90 [ 455.050612][ T7502] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.050627][ T7502] RIP: 0033:0x7f05a279c819 [ 455.050641][ T7502] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 455.050654][ T7502] RSP: 002b:00007f05a3681028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 455.050669][ T7502] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 455.050678][ T7502] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 455.050686][ T7502] RBP: 00007f05a2832c91 R08: 00040000000000a5 R09: 0000000000008000 [ 455.050695][ T7502] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 455.050704][ T7502] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 455.050723][ T7502] [ 457.009802][ T7560] openvswitch: netlink: Key 22 has unexpected len 0 expected 4 [ 460.293269][ T29] audit: type=1326 audit(1775821195.737:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.0.332" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcd0539c819 code=0x0 [ 461.727349][ T7666] HfR: entered promiscuous mode [ 463.659803][ T7716] bond0: Unable to set down delay as MII monitoring is disabled [ 465.146121][ T7714] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 467.667986][ T7812] blktrace: Concurrent blktraces are not allowed on loop2 [ 471.824940][ T7887] netlink: 4 bytes leftover after parsing attributes in process `syz.1.365'. [ 472.007937][ T7903] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 472.028463][ T7903] netlink: 342 bytes leftover after parsing attributes in process `syz.3.370'. [ 474.332058][ T7939] netlink: 202 bytes leftover after parsing attributes in process `syz.1.375'. [ 475.555322][ T7949] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 475.573950][ T7949] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 475.581124][ T7949] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 475.588699][ T7949] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 475.736287][ T7981] netlink: 28 bytes leftover after parsing attributes in process `syz.2.386'. [ 475.809332][ T7983] FAULT_INJECTION: forcing a failure. [ 475.809332][ T7983] name failslab, interval 0, probability 0, space 0, times 0 [ 475.894947][ T7983] CPU: 1 UID: 0 PID: 7983 Comm: syz.1.387 Tainted: G L syzkaller #0 PREEMPT(full) [ 475.894989][ T7983] Tainted: [L]=SOFTLOCKUP [ 475.894997][ T7983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 475.895010][ T7983] Call Trace: [ 475.895018][ T7983] [ 475.895033][ T7983] dump_stack_lvl+0x100/0x190 [ 475.895090][ T7983] should_fail_ex.cold+0x5/0xa [ 475.895122][ T7983] should_failslab+0xc2/0x120 [ 475.895150][ T7983] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 475.895188][ T7983] ? copy_fs_struct+0x49/0x340 [ 475.895226][ T7983] ? dup_fd+0x831/0xd10 [ 475.895262][ T7983] copy_fs_struct+0x49/0x340 [ 475.895305][ T7983] copy_process+0x3b71/0x7a40 [ 475.895353][ T7983] ? __pfx_copy_process+0x10/0x10 [ 475.895402][ T7983] kernel_clone+0xfc/0x9a0 [ 475.895434][ T7983] ? __pfx_futex_wait+0x10/0x10 [ 475.895480][ T7983] ? __pfx_kernel_clone+0x10/0x10 [ 475.895516][ T7983] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 475.895556][ T7983] __do_sys_clone+0xd9/0x120 [ 475.895588][ T7983] ? __pfx___do_sys_clone+0x10/0x10 [ 475.895646][ T7983] do_syscall_64+0x106/0xf80 [ 475.895674][ T7983] ? clear_bhb_loop+0x40/0x90 [ 475.895706][ T7983] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.895730][ T7983] RIP: 0033:0x7f05a279c819 [ 475.895750][ T7983] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 475.895773][ T7983] RSP: 002b:00007f05a3680fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 475.895796][ T7983] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 475.895812][ T7983] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000005004000 [ 475.895826][ T7983] RBP: 00007f05a2832c91 R08: 0000000000000000 R09: 0000000000000000 [ 475.895841][ T7983] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 475.895855][ T7983] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 475.895890][ T7983] [ 476.394889][ T7981] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 476.453587][ T7997] misc userio: No port type given on /dev/userio [ 476.491725][ T7981] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 476.532012][ T7981] bond0 (unregistering): Released all slaves [ 476.690729][ T8006] capability: warning: `syz.3.390' uses 32-bit capabilities (legacy support in use) [ 476.934357][ T6615] Bluetooth: hci0: command 0x0c1a tx timeout [ 477.654598][ T6673] Bluetooth: hci1: command 0x0c1a tx timeout [ 477.661246][ T7214] Bluetooth: hci2: command 0x0c1a tx timeout [ 477.667435][ T6615] Bluetooth: hci3: command 0x0c1a tx timeout [ 480.995720][ T8066] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 485.528475][ T8143] nvme_fcloop: unknown parameter or missing value '7' [ 485.642296][ T8146] netlink: 32 bytes leftover after parsing attributes in process `syz.2.411'. [ 487.307857][ T8188] netlink: 4 bytes leftover after parsing attributes in process `syz.0.421'. [ 487.786400][ T8196] netlink: 334 bytes leftover after parsing attributes in process `syz.0.422'. [ 487.913952][ T8189] netlink: 4 bytes leftover after parsing attributes in process `syz.2.419'. [ 492.858346][ T8241] FAULT_INJECTION: forcing a failure. [ 492.858346][ T8241] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 492.914386][ T8241] CPU: 0 UID: 0 PID: 8241 Comm: syz.2.431 Tainted: G L syzkaller #0 PREEMPT(full) [ 492.914430][ T8241] Tainted: [L]=SOFTLOCKUP [ 492.914440][ T8241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 492.914455][ T8241] Call Trace: [ 492.914466][ T8241] [ 492.914477][ T8241] dump_stack_lvl+0x100/0x190 [ 492.914523][ T8241] should_fail_ex.cold+0x5/0xa [ 492.914557][ T8241] _copy_to_iter+0x1f3/0x1720 [ 492.914601][ T8241] ? __pfx__copy_to_iter+0x10/0x10 [ 492.914634][ T8241] ? trace_kmalloc+0x101/0x130 [ 492.914669][ T8241] ? seq_read_iter+0x819/0x1270 [ 492.914705][ T8241] seq_read_iter+0xdab/0x1270 [ 492.914747][ T8241] proc_reg_read_iter+0x220/0x310 [ 492.914790][ T8241] ? __pfx_proc_reg_read_iter+0x10/0x10 [ 492.914833][ T8241] vfs_read+0x825/0xb30 [ 492.914865][ T8241] ? __pfx_vfs_read+0x10/0x10 [ 492.914917][ T8241] ksys_read+0x12a/0x250 [ 492.914944][ T8241] ? __pfx_ksys_read+0x10/0x10 [ 492.914982][ T8241] do_syscall_64+0x106/0xf80 [ 492.915019][ T8241] ? clear_bhb_loop+0x40/0x90 [ 492.915053][ T8241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 492.915082][ T8241] RIP: 0033:0x7fdcb739c819 [ 492.915105][ T8241] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 492.915130][ T8241] RSP: 002b:00007fdcb55f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 492.915155][ T8241] RAX: ffffffffffffffda RBX: 00007fdcb7616090 RCX: 00007fdcb739c819 [ 492.915174][ T8241] RDX: 00000000000000b2 RSI: 0000200000000180 RDI: 0000000000000007 [ 492.915190][ T8241] RBP: 00007fdcb55f6090 R08: 0000000000000000 R09: 0000000000000000 [ 492.915206][ T8241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 492.915222][ T8241] R13: 00007fdcb7616128 R14: 00007fdcb7616090 R15: 00007ffcc27fac18 [ 492.915261][ T8241] [ 494.270982][ T8270] program syz.0.436 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 494.525944][ T8274] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 498.225321][ T6615] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 498.479124][ T8317] NFSD: Failed to start, no listeners configured. [ 500.511088][ T8358] random: crng reseeded on system resumption [ 501.416925][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.423726][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.788083][ T8368] writes to the poll attribute are ignored. [ 501.796999][ T8368] please use driver specific parameters instead. [ 501.804650][ T8368] openvswitch: netlink: IP tunnel TTL not specified. [ 502.565648][ T6673] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 502.576956][ T6673] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 502.596040][ T6673] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 502.609953][ T6673] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 502.623778][ T6673] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 503.687388][ T8381] chnl_net:caif_netlink_parms(): no params data found [ 504.050908][ T8381] bridge0: port 1(bridge_slave_0) entered blocking state [ 504.095871][ T8381] bridge0: port 1(bridge_slave_0) entered disabled state [ 504.103072][ T8381] bridge_slave_0: entered allmulticast mode [ 504.132180][ T8381] bridge_slave_0: entered promiscuous mode [ 504.143726][ T8381] bridge0: port 2(bridge_slave_1) entered blocking state [ 504.153087][ T8381] bridge0: port 2(bridge_slave_1) entered disabled state [ 504.161091][ T8381] bridge_slave_1: entered allmulticast mode [ 504.169719][ T8381] bridge_slave_1: entered promiscuous mode [ 504.375489][ T8381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 504.404488][ T8408] tc_dump_action: action bad kind [ 504.515545][ T8381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 504.694695][ T6673] Bluetooth: hci4: command tx timeout [ 504.835647][ T8381] team0: Port device team_slave_0 added [ 504.915742][ T8381] team0: Port device team_slave_1 added [ 505.210498][ T8381] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 505.240352][ T8381] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 505.364292][ T8381] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 505.448279][ T8381] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 505.464337][ T8381] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 505.524317][ T8381] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 505.751255][ T8381] hsr_slave_0: entered promiscuous mode [ 505.765411][ T8381] hsr_slave_1: entered promiscuous mode [ 505.781937][ T8381] debugfs: 'hsr0' already exists in 'hsr' [ 505.789182][ T8381] Cannot create hsr debugfs directory [ 506.291772][ T8381] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 506.320378][ T8381] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 506.378396][ T8381] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 506.426877][ T8381] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 506.769919][ T8444] netlink: 28 bytes leftover after parsing attributes in process `syz.1.473'. [ 506.775512][ T6673] Bluetooth: hci4: command tx timeout [ 506.968134][ T8381] 8021q: adding VLAN 0 to HW filter on device bond0 [ 507.060975][ T8381] 8021q: adding VLAN 0 to HW filter on device team0 [ 507.108677][ T6608] bridge0: port 1(bridge_slave_0) entered blocking state [ 507.115821][ T6608] bridge0: port 1(bridge_slave_0) entered forwarding state [ 507.169881][ T6607] bridge0: port 2(bridge_slave_1) entered blocking state [ 507.177056][ T6607] bridge0: port 2(bridge_slave_1) entered forwarding state [ 507.792633][ T8381] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 508.413427][ T8381] veth0_vlan: entered promiscuous mode [ 508.485407][ T8381] veth1_vlan: entered promiscuous mode [ 508.610580][ T8381] veth0_macvtap: entered promiscuous mode [ 508.653559][ T8381] veth1_macvtap: entered promiscuous mode [ 508.771974][ T8381] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 508.788476][ T8381] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 508.885219][ T6673] Bluetooth: hci4: command tx timeout [ 508.924735][ T6608] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 508.955120][ T6608] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 509.004056][ T6608] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 509.016965][ T6608] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 509.142001][ T6578] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 509.164551][ T6578] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 509.241035][ T6607] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 509.278949][ T6607] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 509.339167][ T8490] netlink: 28 bytes leftover after parsing attributes in process `syz.0.480'. [ 510.051629][ T8497] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 510.302200][ T8503] ubi0: attaching mtd0 [ 510.316808][ T8503] ubi0: scanning is finished [ 510.352298][ T8503] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 510.935507][ T6673] Bluetooth: hci4: command tx timeout [ 511.046068][ T8503] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 511.998746][ T8524] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 512.185196][ T8524] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 512.287069][ T8524] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 512.324357][ T8524] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 512.378056][ T8524] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 512.384146][ T8524] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 512.465168][ T8524] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 514.054828][ T6673] Bluetooth: hci1: command 0x0c1a tx timeout [ 514.060883][ T6673] Bluetooth: hci0: command 0x0c1a tx timeout [ 514.216366][ T6673] Bluetooth: hci2: command 0x0c1a tx timeout [ 514.383521][ T6673] Bluetooth: hci3: command 0x0c1a tx timeout [ 514.457259][ T6673] Bluetooth: hci4: command 0x0c1a tx timeout [ 514.502919][ T8559] netlink: 5817 bytes leftover after parsing attributes in process `syz.2.493'. [ 516.534436][ T6673] Bluetooth: hci4: command 0x0c1a tx timeout [ 518.617445][ T6673] Bluetooth: hci4: command 0x0c1a tx timeout [ 519.114676][ T8635] usb usb3: usbfs: process 8635 (syz.2.509) did not claim interface 0 before use [ 520.432673][ T8663] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79400 [ 520.484420][ T8663] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 520.493063][ T8663] memcg:ffff888079400811 [ 520.498257][ T8663] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 520.514341][ T8663] page_type: f5(slab) [ 520.519699][ T8663] raw: 00fff00000000040 ffff88813fe563c0 dead000000000100 dead000000000122 [ 520.534704][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!! [ 520.594588][ T8663] raw: 0000000000000000 0000100000080008 00000000f5000000 ffff888079400811 [ 520.668510][ T8663] head: 00fff00000000040 ffff88813fe563c0 dead000000000100 dead000000000122 [ 520.730717][ T8663] head: 0000000000000000 0000100000080008 00000000f5000000 ffff888079400811 [ 520.789487][ T8663] head: 00fff00000000003 ffffea0001e50001 00000000ffffffff 00000000ffffffff [ 520.854618][ T8663] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 520.904367][ T8663] page dumped because: unmovable page [ 520.926570][ T8663] page_owner tracks the page as allocated [ 520.973091][ T8663] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 8381, tgid 8381 (syz-executor), ts 505750456830, free_ts 505695872443 [ 521.097246][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805baae000: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 521.135282][ T8663] post_alloc_hook+0x153/0x170 [ 521.140613][ T8663] get_page_from_freelist+0x111d/0x3140 [ 521.167563][ T8663] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 521.173495][ T8663] new_slab+0xa6/0x6b0 [ 521.234553][ T8663] refill_objects+0x26b/0x400 [ 521.239270][ T8663] __pcs_replace_empty_main+0x1ab/0x660 [ 521.284866][ T8663] __kmalloc_node_track_caller_noprof+0x694/0x850 [ 521.291338][ T8663] kmemdup_noprof+0x29/0x60 [ 521.327926][ T8663] __devinet_sysctl_register+0xbc/0x360 [ 521.344418][ T8663] devinet_sysctl_register+0x17b/0x210 [ 521.377652][ T8663] inetdev_init+0x2b8/0x570 [ 521.411677][ T8663] inetdev_event+0x7fa/0x17f0 [ 521.457386][ T8663] notifier_call_chain+0x99/0x420 [ 521.462443][ T8663] call_netdevice_notifiers_info+0xbe/0x110 [ 521.527530][ T8663] register_netdevice+0x16e6/0x2210 [ 521.543383][ T8663] hsr_dev_finalize+0x6e4/0xd00 [ 521.578880][ T8663] page last free pid 8424 tgid 8422 stack trace: [ 521.626530][ T8663] __free_frozen_pages+0x7e1/0x10d0 [ 521.698156][ T8663] qlist_free_all+0x47/0xe0 [ 521.726582][ T8663] kasan_quarantine_reduce+0x1a0/0x1f0 [ 521.732142][ T8663] __kasan_slab_alloc+0x69/0x90 [ 521.751037][ T8663] kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 521.782908][ T8663] zswap_store+0xc42/0x29d0 [ 521.821850][ T8663] swap_writeout+0x49d/0x12b0 [ 521.842094][ T8663] shrink_folio_list+0x5c4a/0x6000 [ 521.893917][ T8663] reclaim_folio_list+0xdc/0x600 [ 521.911932][ T8663] reclaim_pages+0x428/0x5e0 [ 521.934816][ T8663] madvise_cold_or_pageout_pte_range+0x1635/0x2720 [ 521.959028][ T8663] walk_pgd_range+0xc1a/0x1dd0 [ 521.980973][ T8663] __walk_page_range+0x163/0x820 [ 521.986083][ T8663] walk_page_range_vma_unsafe+0x209/0x8f0 [ 521.991921][ T8663] walk_page_range_vma+0x63/0x90 [ 521.996983][ T8663] madvise_pageout+0x259/0x540 [ 524.232559][ T8697] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 524.560834][ T8722] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=538976288 (1077952576 ns) > initial count (3830 ns). Using initial count to start timer. [ 524.581359][ T8724] netlink: 28 bytes leftover after parsing attributes in process `syz.0.527'. [ 529.759953][ T8825] smpboot: CPU 1 is now offline [ 530.318660][ T6673] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260 [ 530.318685][ T6673] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260 [ 530.334008][ T6673] Bluetooth: hci4: Dropping invalid advertising data [ 530.341716][ T6673] Bluetooth: hci4: unknown advertising packet type: 0xe9 [ 530.697290][ T8851] No such timeout policy "" [ 530.729162][ T8851] netlink: Failed to associated timeout policy '' [ 531.088897][ T8852] [U] 0="/ [ 531.102689][ T8852] [U] [ 531.163592][ T8852] [U] EeQ@ [ 531.440310][ T8862] zram0: detected capacity change from 0 to 16 [ 531.546154][ T8850] [U]  [ 532.282235][ T8890] netlink: zone id is out of range [ 532.335218][ T8890] netlink: zone id is out of range [ 532.380133][ T8890] netlink: zone id is out of range [ 532.427384][ T8890] netlink: zone id is out of range [ 532.459283][ T8890] netlink: zone id is out of range [ 532.492728][ T8890] netlink: zone id is out of range [ 532.538488][ T8890] netlink: zone id is out of range [ 532.570171][ T8890] netlink: zone id is out of range [ 532.610190][ T8890] netlink: zone id is out of range [ 534.547923][ T8945] random: crng reseeded on system resumption [ 535.030753][ T8959] device-mapper: ioctl: Invalid ioctl structure: name d, dev 3000000000 [ 535.404690][ T8962] random: crng reseeded on system resumption [ 536.601142][ T8995] Malformed UNC in devname [ 536.601142][ T8995] [ 536.727109][ T8995] CIFS: VFS: Malformed UNC in devname [ 536.767960][ T8995] netlink: 'syz.4.580': attribute type 1 has an invalid length. [ 536.812437][ T8995] netlink: 9 bytes leftover after parsing attributes in process `syz.4.580'. [ 538.052740][ T9020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.582'. [ 538.145629][ T9011] netlink: 186 bytes leftover after parsing attributes in process `syz.4.583'. [ 538.314970][ T9020] netlink: 12 bytes leftover after parsing attributes in process `syz.2.582'. [ 538.631452][ T9020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.582'. [ 542.764674][ T9085] misc userio: No port type given on /dev/userio [ 543.752854][ T9112] block2mtd: error: cannot open device /sys/module/block2mtd/parameters/block2mtd [ 545.260968][ T29] audit: type=1326 audit(1775821280.707:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9136 comm="syz.1.608" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f05a279c819 code=0x0 [ 545.322157][ T6673] Bluetooth: hci0: unexpected subevent 0x04 length: 122 > 11 [ 547.535114][ T9181] netlink: 202 bytes leftover after parsing attributes in process `syz.0.616'. [ 549.554375][ T9207] ima: policy update failed [ 549.562931][ T29] audit: type=1802 audit(1775821285.007:4): pid=9207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.623" res=0 errno=0 [ 554.459335][ T9292] blktrace: Concurrent blktraces are not allowed on loop2 [ 555.102130][ T9304] FAULT_INJECTION: forcing a failure. [ 555.102130][ T9304] name failslab, interval 0, probability 0, space 0, times 0 [ 555.219731][ T9304] CPU: 0 UID: 0 PID: 9304 Comm: syz.0.641 Tainted: G L syzkaller #0 PREEMPT(full) [ 555.219757][ T9304] Tainted: [L]=SOFTLOCKUP [ 555.219762][ T9304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 555.219771][ T9304] Call Trace: [ 555.219776][ T9304] [ 555.219782][ T9304] dump_stack_lvl+0x100/0x190 [ 555.219818][ T9304] should_fail_ex.cold+0x5/0xa [ 555.219837][ T9304] should_failslab+0xc2/0x120 [ 555.219855][ T9304] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 555.219878][ T9304] ? __kernfs_new_node+0xd2/0x960 [ 555.219900][ T9304] ? kstrdup+0xb3/0xe0 [ 555.219916][ T9304] __kernfs_new_node+0xd2/0x960 [ 555.219940][ T9304] ? __pfx___kernfs_new_node+0x10/0x10 [ 555.219967][ T9304] ? find_held_lock+0x2b/0x80 [ 555.219982][ T9304] ? kernfs_root+0xee/0x2a0 [ 555.220003][ T9304] ? kernfs_root+0xee/0x2a0 [ 555.220028][ T9304] kernfs_new_node+0x11b/0x1a0 [ 555.220046][ T9304] kernfs_create_dir_ns+0x4c/0x1a0 [ 555.220064][ T9304] cgroup_mkdir+0x3be/0x1330 [ 555.220082][ T9304] ? __pfx_cgroup_mkdir+0x10/0x10 [ 555.220097][ T9304] kernfs_iop_mkdir+0x111/0x190 [ 555.220111][ T9304] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 555.220134][ T9304] vfs_mkdir+0x361/0x850 [ 555.220159][ T9304] filename_mkdirat+0x48b/0x5e0 [ 555.220178][ T9304] ? __pfx_filename_mkdirat+0x10/0x10 [ 555.220196][ T9304] ? strncpy_from_user+0x19d/0x2d0 [ 555.220217][ T9304] ? do_getname+0x191/0x390 [ 555.220239][ T9304] __x64_sys_mkdir+0x6b/0x90 [ 555.220256][ T9304] do_syscall_64+0x106/0xf80 [ 555.220272][ T9304] ? clear_bhb_loop+0x40/0x90 [ 555.220290][ T9304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.220305][ T9304] RIP: 0033:0x7fcd0539c819 [ 555.220319][ T9304] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 555.220332][ T9304] RSP: 002b:00007fcd0621f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 555.220347][ T9304] RAX: ffffffffffffffda RBX: 00007fcd05615fa0 RCX: 00007fcd0539c819 [ 555.220356][ T9304] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000040 [ 555.220365][ T9304] RBP: 00007fcd05432c91 R08: 0000000000000000 R09: 0000000000000000 [ 555.220373][ T9304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 555.220381][ T9304] R13: 00007fcd05616038 R14: 00007fcd05615fa0 R15: 00007ffc27065578 [ 555.220400][ T9304] [ 556.058974][ T9315] netlink: 16 bytes leftover after parsing attributes in process `syz.0.642'. [ 556.059011][ T9315] hsr0: entered promiscuous mode [ 556.059029][ T9315] hsr0: entered allmulticast mode [ 556.059040][ T9315] hsr_slave_0: entered allmulticast mode [ 556.059051][ T9315] hsr_slave_1: entered allmulticast mode [ 556.072894][ T9315] net_ratelimit: 48 callbacks suppressed [ 556.072909][ T9315] netlink: Unknown NAT attribute (type=262, max=9) [ 557.499547][ T9328] sp0: Synchronizing with TNC [ 557.754985][ T9328] FAULT_INJECTION: forcing a failure. [ 557.754985][ T9328] name failslab, interval 0, probability 0, space 0, times 0 [ 557.817859][ T9328] CPU: 0 UID: 0 PID: 9328 Comm: syz.0.645 Tainted: G L syzkaller #0 PREEMPT(full) [ 557.817892][ T9328] Tainted: [L]=SOFTLOCKUP [ 557.817898][ T9328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 557.817907][ T9328] Call Trace: [ 557.817912][ T9328] [ 557.817919][ T9328] dump_stack_lvl+0x100/0x190 [ 557.817947][ T9328] should_fail_ex.cold+0x5/0xa [ 557.817967][ T9328] should_failslab+0xc2/0x120 [ 557.817984][ T9328] __kmalloc_cache_noprof+0x7a/0x6f0 [ 557.818004][ T9328] ? resv_map_alloc+0x7e/0x400 [ 557.818022][ T9328] resv_map_alloc+0x7e/0x400 [ 557.818038][ T9328] hugetlb_reserve_pages+0x5a2/0x1450 [ 557.818056][ T9328] ? __pfx_current_time+0x10/0x10 [ 557.818077][ T9328] ? __pfx_hugetlb_reserve_pages+0x10/0x10 [ 557.818098][ T9328] ? atime_needs_update+0x8b/0x6b0 [ 557.818121][ T9328] ? touch_atime+0xa5/0x7a0 [ 557.818145][ T9328] hugetlbfs_file_mmap_prepare+0x510/0x820 [ 557.818167][ T9328] ? __pfx_hugetlbfs_file_mmap_prepare+0x10/0x10 [ 557.818187][ T9328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 557.818207][ T9328] __mmap_region+0xfc4/0x2a50 [ 557.818233][ T9328] ? __pfx___mmap_region+0x10/0x10 [ 557.818269][ T9328] ? find_held_lock+0x2b/0x80 [ 557.818284][ T9328] ? is_bpf_text_address+0x8a/0x1a0 [ 557.818307][ T9328] ? is_bpf_text_address+0x8a/0x1a0 [ 557.818330][ T9328] ? bpf_ksym_find+0x124/0x1c0 [ 557.818348][ T9328] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 557.818365][ T9328] ? is_bpf_text_address+0x94/0x1a0 [ 557.818387][ T9328] ? kernel_text_address+0x8d/0x100 [ 557.818410][ T9328] ? __kernel_text_address+0xd/0x30 [ 557.818441][ T9328] ? stack_trace_save+0x8e/0xc0 [ 557.818480][ T9328] ? rcu_is_watching+0x12/0xc0 [ 557.818503][ T9328] ? cap_capable+0x107/0x460 [ 557.818521][ T9328] mmap_region+0x180/0x3e0 [ 557.818547][ T9328] do_mmap+0xc63/0x12f0 [ 557.818583][ T9328] ? __pfx_do_mmap+0x10/0x10 [ 557.818600][ T9328] ? __pfx_down_write_killable+0x10/0x10 [ 557.818623][ T9328] vm_mmap_pgoff+0x29e/0x470 [ 557.818645][ T9328] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 557.818661][ T9328] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 557.818683][ T9328] ? hugetlbfs_get_inode+0x36e/0x750 [ 557.818706][ T9328] ksys_mmap_pgoff+0x273/0x650 [ 557.818724][ T9328] ? __x64_sys_futex+0x358/0x4d0 [ 557.818744][ T9328] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 557.818761][ T9328] ? xfd_validate_state+0x129/0x190 [ 557.818787][ T9328] __x64_sys_mmap+0x125/0x190 [ 557.818811][ T9328] do_syscall_64+0x106/0xf80 [ 557.818827][ T9328] ? clear_bhb_loop+0x40/0x90 [ 557.818845][ T9328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.818860][ T9328] RIP: 0033:0x7fcd0539c819 [ 557.818881][ T9328] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 557.818896][ T9328] RSP: 002b:00007fcd0621f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 557.818911][ T9328] RAX: ffffffffffffffda RBX: 00007fcd05615fa0 RCX: 00007fcd0539c819 [ 557.818921][ T9328] RDX: 0000000000000000 RSI: 00000000010000c5 RDI: 0000000000000000 [ 557.818931][ T9328] RBP: 00007fcd05432c91 R08: 0000000000000402 R09: 0000300000000000 [ 557.818940][ T9328] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 557.818949][ T9328] R13: 00007fcd05616038 R14: 00007fcd05615fa0 R15: 00007ffc27065578 [ 557.818969][ T9328] [ 559.960265][ T9353] mmap: syz.0.649 (9353) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 561.249369][ T9368] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 561.301949][ T9368] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 561.336553][ T9368] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 561.375018][ T9368] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 561.405723][ T9368] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 561.577453][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 561.583950][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.014384][ T6673] Bluetooth: hci0: command 0x0c1a tx timeout [ 563.207956][ T9410] vivid-007: ================= START STATUS ================= [ 563.245541][ T9410] vivid-007: Generate PTS: true [ 563.284291][ T9410] vivid-007: Generate SCR: true [ 563.289271][ T9410] tpg source WxH: 320x240 (Y'CbCr) [ 563.334271][ T6673] Bluetooth: hci1: command 0x0c1a tx timeout [ 563.345329][ T9410] tpg field: 1 [ 563.348717][ T9410] tpg crop: (0,0)/320x240 [ 563.383334][ T9410] tpg compose: (0,0)/320x240 [ 563.406598][ T9410] tpg colorspace: 8 [ 563.414560][ T6673] Bluetooth: hci4: command 0x0c1a tx timeout [ 563.420693][ T6615] Bluetooth: hci3: command 0x0c1a tx timeout [ 563.426749][ T7214] Bluetooth: hci2: command 0x0c1a tx timeout [ 563.449334][ T9410] tpg transfer function: 0/0 [ 563.476425][ T9410] tpg Y'CbCr encoding: 0/0 [ 563.488397][ T9410] tpg quantization: 0/0 [ 563.519456][ T9410] tpg RGB range: 0/2 [ 563.523380][ T9410] vivid-007: ================== END STATUS ================== [ 564.836403][ T9452] netlink: 28 bytes leftover after parsing attributes in process `syz.4.671'. [ 565.129077][ T9452] hsr_slave_1 (unregistering): left promiscuous mode [ 569.463139][ T9536] netlink: 146 bytes leftover after parsing attributes in process `syz.1.687'. [ 569.884391][ T9543] netlink: 126 bytes leftover after parsing attributes in process `syz.4.688'. [ 570.778670][ T9554] FAULT_INJECTION: forcing a failure. [ 570.778670][ T9554] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 570.959816][ T9554] CPU: 0 UID: 0 PID: 9554 Comm: syz.0.689 Tainted: G L syzkaller #0 PREEMPT(full) [ 570.959841][ T9554] Tainted: [L]=SOFTLOCKUP [ 570.959846][ T9554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 570.959855][ T9554] Call Trace: [ 570.959860][ T9554] [ 570.959866][ T9554] dump_stack_lvl+0x100/0x190 [ 570.959894][ T9554] should_fail_ex.cold+0x5/0xa [ 570.959910][ T9554] ? prepare_alloc_pages+0x16d/0x5f0 [ 570.959929][ T9554] should_fail_alloc_page+0xeb/0x140 [ 570.959948][ T9554] prepare_alloc_pages+0x1f0/0x5f0 [ 570.959966][ T9554] ? xa_load+0x149/0x2c0 [ 570.959986][ T9554] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 570.960010][ T9554] ? css_rstat_updated+0x1ce/0x5a0 [ 570.960028][ T9554] ? __pfx_css_rstat_updated+0x10/0x10 [ 570.960049][ T9554] ? __lock_acquire+0x4a5/0x2630 [ 570.960070][ T9554] ? rcu_is_watching+0x12/0xc0 [ 570.960094][ T9554] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 570.960119][ T9554] ? __lock_acquire+0x4a5/0x2630 [ 570.960139][ T9554] ? __lock_acquire+0x4a5/0x2630 [ 570.960165][ T9554] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 570.960182][ T9554] ? policy_nodemask+0xed/0x4f0 [ 570.960200][ T9554] alloc_pages_mpol+0x1fb/0x550 [ 570.960217][ T9554] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 570.960234][ T9554] ? swap_entry_swapped+0x1ff/0x2b0 [ 570.960250][ T9554] ? __pfx_swap_entry_swapped+0x10/0x10 [ 570.960269][ T9554] folio_alloc_mpol_noprof+0x36/0x340 [ 570.960289][ T9554] swap_cache_alloc_folio+0x1a8/0x300 [ 570.960313][ T9554] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 570.960347][ T9554] swap_cluster_readahead+0x411/0x770 [ 570.960373][ T9554] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 570.960397][ T9554] ? __lock_acquire+0x4a5/0x2630 [ 570.960424][ T9554] ? __lock_acquire+0x4a5/0x2630 [ 570.960442][ T9554] ? get_vma_policy+0x23d/0x3b0 [ 570.960461][ T9554] swapin_readahead+0x160/0x12c0 [ 570.960489][ T9554] ? __pfx_swapin_readahead+0x10/0x10 [ 570.960511][ T9554] ? swap_table_get+0x103/0x2c0 [ 570.960530][ T9554] ? swap_table_get+0x103/0x2c0 [ 570.960553][ T9554] ? swap_table_get+0x10d/0x2c0 [ 570.960574][ T9554] ? swap_cache_get_folio+0x1ae/0x600 [ 570.960596][ T9554] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 570.960616][ T9554] ? __pfx_get_swap_device+0x10/0x10 [ 570.960631][ T9554] ? __lock_acquire+0x4a5/0x2630 [ 570.960655][ T9554] ? do_swap_page+0xb2e/0x6900 [ 570.960674][ T9554] do_swap_page+0xb2e/0x6900 [ 570.960704][ T9554] ? __pfx_do_swap_page+0x10/0x10 [ 570.960724][ T9554] ? rcu_is_watching+0x12/0xc0 [ 570.960746][ T9554] ? __pte_offset_map+0x179/0x310 [ 570.960762][ T9554] ? pte_offset_map_ro_nolock+0x11c/0x200 [ 570.960778][ T9554] ? __pfx_pte_offset_map_ro_nolock+0x10/0x10 [ 570.960796][ T9554] ? __pfx_mt_find+0x10/0x10 [ 570.960816][ T9554] __collapse_huge_page_swapin+0x112/0x6d0 [ 570.960839][ T9554] ? __pfx___collapse_huge_page_swapin+0x10/0x10 [ 570.960868][ T9554] ? hugepage_vma_revalidate.isra.0+0x86/0x570 [ 570.960889][ T9554] collapse_huge_page+0x551/0x38c0 [ 570.960910][ T9554] ? lockdep_hardirqs_on+0x78/0x100 [ 570.960926][ T9554] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 570.960950][ T9554] ? rcu_preempt_deferred_qs_irqrestore+0x4fd/0xb90 [ 570.960974][ T9554] ? __pfx_collapse_huge_page+0x10/0x10 [ 570.961000][ T9554] ? pte_offset_map_lock+0x174/0x320 [ 570.961017][ T9554] ? find_held_lock+0x2b/0x80 [ 570.961031][ T9554] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 570.961050][ T9554] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 570.961072][ T9554] hpage_collapse_scan_pmd+0xdb9/0x1670 [ 570.961096][ T9554] ? __pfx_hpage_collapse_scan_pmd+0x10/0x10 [ 570.961121][ T9554] madvise_collapse+0x6ee/0xbe0 [ 570.961146][ T9554] ? __pfx_madvise_collapse+0x10/0x10 [ 570.961165][ T9554] ? find_held_lock+0x1/0x80 [ 570.961180][ T9554] ? is_bpf_text_address+0x8a/0x1a0 [ 570.961207][ T9554] madvise_vma_behavior+0x1987/0x3050 [ 570.961228][ T9554] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 570.961247][ T9554] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 570.961266][ T9554] ? mas_prev+0x9b/0xf0 [ 570.961282][ T9554] ? __pfx_mas_prev+0x10/0x10 [ 570.961303][ T9554] ? find_vma_prev+0xd8/0x150 [ 570.961319][ T9554] ? _kstrtoull+0x13c/0x1f0 [ 570.961346][ T9554] ? __pfx_find_vma_prev+0x10/0x10 [ 570.961374][ T9554] madvise_walk_vmas+0x2fe/0xa90 [ 570.961395][ T9554] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 570.961419][ T9554] madvise_do_behavior+0x1ea/0x510 [ 570.961439][ T9554] ? __pfx_madvise_do_behavior+0x10/0x10 [ 570.961458][ T9554] ? down_read+0x13b/0x460 [ 570.961485][ T9554] do_madvise+0x195/0x240 [ 570.961502][ T9554] ? __pfx_do_madvise+0x10/0x10 [ 570.961520][ T9554] ? __mutex_unlock_slowpath+0x15c/0x790 [ 570.961549][ T9554] ? ksys_write+0x1ac/0x250 [ 570.961564][ T9554] ? __pfx_ksys_write+0x10/0x10 [ 570.961581][ T9554] __x64_sys_madvise+0xa9/0x110 [ 570.961600][ T9554] ? lockdep_hardirqs_on+0x78/0x100 [ 570.961615][ T9554] do_syscall_64+0x106/0xf80 [ 570.961630][ T9554] ? clear_bhb_loop+0x40/0x90 [ 570.961649][ T9554] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.961664][ T9554] RIP: 0033:0x7fcd0539c819 [ 570.961677][ T9554] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 570.961691][ T9554] RSP: 002b:00007fcd061dd028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 570.961705][ T9554] RAX: ffffffffffffffda RBX: 00007fcd05616180 RCX: 00007fcd0539c819 [ 570.961715][ T9554] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 570.961723][ T9554] RBP: 00007fcd061dd090 R08: 0000000000000000 R09: 0000000000000000 [ 570.961731][ T9554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 570.961740][ T9554] R13: 00007fcd05616218 R14: 00007fcd05616180 R15: 00007ffc27065578 [ 570.961759][ T9554] [ 576.017541][ T9619] netlink: 28 bytes leftover after parsing attributes in process `syz.4.705'. [ 576.203771][ T9619] team0: Port device team_slave_0 removed [ 584.476246][ T9753] FAULT_INJECTION: forcing a failure. [ 584.476246][ T9753] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 584.681591][ T9753] CPU: 0 UID: 0 PID: 9753 Comm: syz.0.729 Tainted: G L syzkaller #0 PREEMPT(full) [ 584.681616][ T9753] Tainted: [L]=SOFTLOCKUP [ 584.681621][ T9753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 584.681630][ T9753] Call Trace: [ 584.681636][ T9753] [ 584.681641][ T9753] dump_stack_lvl+0x100/0x190 [ 584.681669][ T9753] should_fail_ex.cold+0x5/0xa [ 584.681684][ T9753] ? prepare_alloc_pages+0x16d/0x5f0 [ 584.681704][ T9753] should_fail_alloc_page+0xeb/0x140 [ 584.681725][ T9753] prepare_alloc_pages+0x1f0/0x5f0 [ 584.681744][ T9753] ? xa_load+0x149/0x2c0 [ 584.681764][ T9753] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 584.681788][ T9753] ? css_rstat_updated+0x1ce/0x5a0 [ 584.681807][ T9753] ? __pfx_css_rstat_updated+0x10/0x10 [ 584.681827][ T9753] ? __lock_acquire+0x4a5/0x2630 [ 584.681848][ T9753] ? rcu_is_watching+0x12/0xc0 [ 584.681871][ T9753] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 584.681897][ T9753] ? __lock_acquire+0x4a5/0x2630 [ 584.681917][ T9753] ? __lock_acquire+0x4a5/0x2630 [ 584.681943][ T9753] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 584.681959][ T9753] ? policy_nodemask+0xed/0x4f0 [ 584.681978][ T9753] alloc_pages_mpol+0x1fb/0x550 [ 584.682001][ T9753] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 584.682018][ T9753] ? swap_entry_swapped+0x1ff/0x2b0 [ 584.682034][ T9753] ? __pfx_swap_entry_swapped+0x10/0x10 [ 584.682053][ T9753] folio_alloc_mpol_noprof+0x36/0x340 [ 584.682073][ T9753] swap_cache_alloc_folio+0x1a8/0x300 [ 584.682097][ T9753] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 584.682124][ T9753] swap_cluster_readahead+0x411/0x770 [ 584.682151][ T9753] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 584.682174][ T9753] ? __lock_acquire+0x4a5/0x2630 [ 584.682202][ T9753] ? __lock_acquire+0x4a5/0x2630 [ 584.682220][ T9753] ? get_vma_policy+0x23d/0x3b0 [ 584.682239][ T9753] swapin_readahead+0x160/0x12c0 [ 584.682267][ T9753] ? __pfx_swapin_readahead+0x10/0x10 [ 584.682288][ T9753] ? swap_table_get+0x103/0x2c0 [ 584.682307][ T9753] ? swap_table_get+0x103/0x2c0 [ 584.682331][ T9753] ? swap_table_get+0x10d/0x2c0 [ 584.682351][ T9753] ? swap_cache_get_folio+0x1ae/0x600 [ 584.682373][ T9753] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 584.682393][ T9753] ? __pfx_get_swap_device+0x10/0x10 [ 584.682409][ T9753] ? __lock_acquire+0x4a5/0x2630 [ 584.682430][ T9753] ? do_swap_page+0xb2e/0x6900 [ 584.682449][ T9753] do_swap_page+0xb2e/0x6900 [ 584.682479][ T9753] ? __pfx_do_swap_page+0x10/0x10 [ 584.682498][ T9753] ? rcu_is_watching+0x12/0xc0 [ 584.682520][ T9753] ? __pte_offset_map+0x179/0x310 [ 584.682536][ T9753] ? pte_offset_map_ro_nolock+0x11c/0x200 [ 584.682552][ T9753] ? __pfx_pte_offset_map_ro_nolock+0x10/0x10 [ 584.682570][ T9753] ? __pfx_mt_find+0x10/0x10 [ 584.682590][ T9753] __collapse_huge_page_swapin+0x112/0x6d0 [ 584.682612][ T9753] ? __pfx___collapse_huge_page_swapin+0x10/0x10 [ 584.682641][ T9753] ? hugepage_vma_revalidate.isra.0+0x86/0x570 [ 584.682662][ T9753] collapse_huge_page+0x551/0x38c0 [ 584.682685][ T9753] ? __pfx_debug_object_free+0x10/0x10 [ 584.682706][ T9753] ? __pfx_collapse_huge_page+0x10/0x10 [ 584.682732][ T9753] ? pte_offset_map_lock+0x174/0x320 [ 584.682749][ T9753] ? find_held_lock+0x2b/0x80 [ 584.682763][ T9753] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 584.682781][ T9753] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 584.682803][ T9753] hpage_collapse_scan_pmd+0xdb9/0x1670 [ 584.682828][ T9753] ? __pfx_hpage_collapse_scan_pmd+0x10/0x10 [ 584.682852][ T9753] madvise_collapse+0x6ee/0xbe0 [ 584.682877][ T9753] ? __pfx_madvise_collapse+0x10/0x10 [ 584.682896][ T9753] ? find_held_lock+0x1/0x80 [ 584.682911][ T9753] ? is_bpf_text_address+0x8a/0x1a0 [ 584.682938][ T9753] madvise_vma_behavior+0x1987/0x3050 [ 584.682960][ T9753] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 584.682979][ T9753] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 584.683001][ T9753] ? mas_prev+0x9b/0xf0 [ 584.683018][ T9753] ? __pfx_mas_prev+0x10/0x10 [ 584.683039][ T9753] ? find_vma_prev+0xd8/0x150 [ 584.683055][ T9753] ? _kstrtoull+0x13c/0x1f0 [ 584.683078][ T9753] ? __pfx_find_vma_prev+0x10/0x10 [ 584.683105][ T9753] madvise_walk_vmas+0x2fe/0xa90 [ 584.683127][ T9753] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 584.683150][ T9753] madvise_do_behavior+0x1ea/0x510 [ 584.683170][ T9753] ? __pfx_madvise_do_behavior+0x10/0x10 [ 584.683189][ T9753] ? down_read+0x13b/0x460 [ 584.683221][ T9753] do_madvise+0x195/0x240 [ 584.683239][ T9753] ? __pfx_do_madvise+0x10/0x10 [ 584.683256][ T9753] ? __mutex_unlock_slowpath+0x15c/0x790 [ 584.683285][ T9753] ? ksys_write+0x1ac/0x250 [ 584.683300][ T9753] ? __pfx_ksys_write+0x10/0x10 [ 584.683318][ T9753] __x64_sys_madvise+0xa9/0x110 [ 584.683336][ T9753] ? lockdep_hardirqs_on+0x78/0x100 [ 584.683352][ T9753] do_syscall_64+0x106/0xf80 [ 584.683368][ T9753] ? clear_bhb_loop+0x40/0x90 [ 584.683386][ T9753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.683401][ T9753] RIP: 0033:0x7fcd0539c819 [ 584.683415][ T9753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 584.683428][ T9753] RSP: 002b:00007fcd061dd028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 584.683443][ T9753] RAX: ffffffffffffffda RBX: 00007fcd05616180 RCX: 00007fcd0539c819 [ 584.683453][ T9753] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 584.683461][ T9753] RBP: 00007fcd061dd090 R08: 0000000000000000 R09: 0000000000000000 [ 584.683470][ T9753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 584.683478][ T9753] R13: 00007fcd05616218 R14: 00007fcd05616180 R15: 00007ffc27065578 [ 584.683497][ T9753] [ 587.030684][ T9767] FAULT_INJECTION: forcing a failure. [ 587.030684][ T9767] name fail_futex, interval 1, probability 0, space 0, times 1 [ 587.374032][ T9767] CPU: 0 UID: 0 PID: 9767 Comm: syz.1.733 Tainted: G L syzkaller #0 PREEMPT(full) [ 587.374059][ T9767] Tainted: [L]=SOFTLOCKUP [ 587.374065][ T9767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 587.374074][ T9767] Call Trace: [ 587.374079][ T9767] [ 587.374085][ T9767] dump_stack_lvl+0x100/0x190 [ 587.374113][ T9767] should_fail_ex.cold+0x5/0xa [ 587.374133][ T9767] get_futex_key+0x1d2/0x1620 [ 587.374154][ T9767] ? __pfx_get_futex_key+0x10/0x10 [ 587.374175][ T9767] ? find_held_lock+0x2b/0x80 [ 587.374191][ T9767] ? futex_wake+0x456/0x530 [ 587.374218][ T9767] futex_wake+0xea/0x530 [ 587.374241][ T9767] ? __pfx_futex_wait+0x10/0x10 [ 587.374263][ T9767] ? __pfx_futex_wake+0x10/0x10 [ 587.374289][ T9767] ? do_vfs_ioctl+0x226/0x13e0 [ 587.374314][ T9767] do_futex+0x32b/0x350 [ 587.374335][ T9767] ? __pfx_do_futex+0x10/0x10 [ 587.374355][ T9767] ? find_held_lock+0x2b/0x80 [ 587.374372][ T9767] __x64_sys_futex+0x34f/0x4d0 [ 587.374395][ T9767] ? __pfx___x64_sys_futex+0x10/0x10 [ 587.374422][ T9767] do_syscall_64+0x106/0xf80 [ 587.374438][ T9767] ? clear_bhb_loop+0x40/0x90 [ 587.374455][ T9767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.374471][ T9767] RIP: 0033:0x7f05a279c819 [ 587.374484][ T9767] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 587.374498][ T9767] RSP: 002b:00007f05a36600e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 587.374512][ T9767] RAX: ffffffffffffffda RBX: 00007f05a2a16098 RCX: 00007f05a279c819 [ 587.374522][ T9767] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f05a2a1609c [ 587.374531][ T9767] RBP: 00007f05a2a16090 R08: 0000000000000001 R09: 0000000000000000 [ 587.374539][ T9767] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 587.374548][ T9767] R13: 00007f05a2a16128 R14: 00007fffd8300fd0 R15: 00007fffd83010b8 [ 587.374567][ T9767] [ 588.629447][ T9804] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 590.717709][ T9827] FAULT_INJECTION: forcing a failure. [ 590.717709][ T9827] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 590.939907][ T9827] CPU: 0 UID: 0 PID: 9827 Comm: syz.1.743 Tainted: G L syzkaller #0 PREEMPT(full) [ 590.939932][ T9827] Tainted: [L]=SOFTLOCKUP [ 590.939937][ T9827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 590.939946][ T9827] Call Trace: [ 590.939952][ T9827] [ 590.939958][ T9827] dump_stack_lvl+0x100/0x190 [ 590.939986][ T9827] should_fail_ex.cold+0x5/0xa [ 590.940002][ T9827] ? prepare_alloc_pages+0x16d/0x5f0 [ 590.940021][ T9827] should_fail_alloc_page+0xeb/0x140 [ 590.940040][ T9827] prepare_alloc_pages+0x1f0/0x5f0 [ 590.940058][ T9827] ? xa_load+0x149/0x2c0 [ 590.940077][ T9827] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 590.940102][ T9827] ? xa_load+0x153/0x2c0 [ 590.940118][ T9827] ? __pfx_xa_load+0x10/0x10 [ 590.940140][ T9827] ? __lock_acquire+0x4a5/0x2630 [ 590.940159][ T9827] ? workingset_refault+0x477/0xf60 [ 590.940173][ T9827] ? workingset_refault+0x477/0xf60 [ 590.940188][ T9827] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 590.940213][ T9827] ? __lock_acquire+0x4a5/0x2630 [ 590.940234][ T9827] ? __lock_acquire+0x4a5/0x2630 [ 590.940259][ T9827] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 590.940276][ T9827] ? policy_nodemask+0xed/0x4f0 [ 590.940294][ T9827] alloc_pages_mpol+0x1fb/0x550 [ 590.940311][ T9827] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 590.940328][ T9827] ? swap_entry_swapped+0x1ff/0x2b0 [ 590.940344][ T9827] ? __pfx_swap_entry_swapped+0x10/0x10 [ 590.940362][ T9827] folio_alloc_mpol_noprof+0x36/0x340 [ 590.940383][ T9827] swap_cache_alloc_folio+0x1a8/0x300 [ 590.940407][ T9827] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 590.940434][ T9827] swap_cluster_readahead+0x411/0x770 [ 590.940461][ T9827] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 590.940484][ T9827] ? __lock_acquire+0x4a5/0x2630 [ 590.940512][ T9827] ? __lock_acquire+0x4a5/0x2630 [ 590.940530][ T9827] ? get_vma_policy+0x23d/0x3b0 [ 590.940549][ T9827] swapin_readahead+0x160/0x12c0 [ 590.940582][ T9827] ? __pfx_swapin_readahead+0x10/0x10 [ 590.940604][ T9827] ? swap_table_get+0x103/0x2c0 [ 590.940623][ T9827] ? swap_table_get+0x103/0x2c0 [ 590.940646][ T9827] ? swap_table_get+0x10d/0x2c0 [ 590.940667][ T9827] ? swap_cache_get_folio+0x1ae/0x600 [ 590.940689][ T9827] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 590.940709][ T9827] ? __pfx_get_swap_device+0x10/0x10 [ 590.940724][ T9827] ? __lock_acquire+0x4a5/0x2630 [ 590.940745][ T9827] ? do_swap_page+0xb2e/0x6900 [ 590.940764][ T9827] do_swap_page+0xb2e/0x6900 [ 590.940794][ T9827] ? __pfx_do_swap_page+0x10/0x10 [ 590.940813][ T9827] ? rcu_is_watching+0x12/0xc0 [ 590.940837][ T9827] ? __pte_offset_map+0x179/0x310 [ 590.940853][ T9827] ? pte_offset_map_ro_nolock+0x11c/0x200 [ 590.940869][ T9827] ? __pfx_pte_offset_map_ro_nolock+0x10/0x10 [ 590.940889][ T9827] ? __pfx_mt_find+0x10/0x10 [ 590.940909][ T9827] __collapse_huge_page_swapin+0x112/0x6d0 [ 590.940931][ T9827] ? __pfx___collapse_huge_page_swapin+0x10/0x10 [ 590.940960][ T9827] ? hugepage_vma_revalidate.isra.0+0x86/0x570 [ 590.940981][ T9827] collapse_huge_page+0x551/0x38c0 [ 590.941004][ T9827] ? __pfx_debug_object_free+0x10/0x10 [ 590.941025][ T9827] ? __pfx_collapse_huge_page+0x10/0x10 [ 590.941051][ T9827] ? pte_offset_map_lock+0x174/0x320 [ 590.941068][ T9827] ? find_held_lock+0x2b/0x80 [ 590.941082][ T9827] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 590.941100][ T9827] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 590.941122][ T9827] hpage_collapse_scan_pmd+0xdb9/0x1670 [ 590.941147][ T9827] ? __pfx_hpage_collapse_scan_pmd+0x10/0x10 [ 590.941172][ T9827] madvise_collapse+0x6ee/0xbe0 [ 590.941197][ T9827] ? __pfx_madvise_collapse+0x10/0x10 [ 590.941216][ T9827] ? find_held_lock+0x1/0x80 [ 590.941231][ T9827] ? is_bpf_text_address+0x8a/0x1a0 [ 590.941259][ T9827] madvise_vma_behavior+0x1987/0x3050 [ 590.941280][ T9827] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 590.941299][ T9827] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 590.941317][ T9827] ? mas_prev+0x9b/0xf0 [ 590.941334][ T9827] ? __pfx_mas_prev+0x10/0x10 [ 590.941355][ T9827] ? find_vma_prev+0xd8/0x150 [ 590.941371][ T9827] ? _kstrtoull+0x13c/0x1f0 [ 590.941394][ T9827] ? __pfx_find_vma_prev+0x10/0x10 [ 590.941421][ T9827] madvise_walk_vmas+0x2fe/0xa90 [ 590.941443][ T9827] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 590.941467][ T9827] madvise_do_behavior+0x1ea/0x510 [ 590.941487][ T9827] ? __pfx_madvise_do_behavior+0x10/0x10 [ 590.941506][ T9827] ? down_read+0x13b/0x460 [ 590.941533][ T9827] do_madvise+0x195/0x240 [ 590.941550][ T9827] ? __pfx_do_madvise+0x10/0x10 [ 590.941571][ T9827] ? __mutex_unlock_slowpath+0x15c/0x790 [ 590.941601][ T9827] ? ksys_write+0x1ac/0x250 [ 590.941616][ T9827] ? __pfx_ksys_write+0x10/0x10 [ 590.941633][ T9827] __x64_sys_madvise+0xa9/0x110 [ 590.941652][ T9827] ? lockdep_hardirqs_on+0x78/0x100 [ 590.941667][ T9827] do_syscall_64+0x106/0xf80 [ 590.941683][ T9827] ? clear_bhb_loop+0x40/0x90 [ 590.941701][ T9827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 590.941716][ T9827] RIP: 0033:0x7f05a279c819 [ 590.941730][ T9827] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 590.941743][ T9827] RSP: 002b:00007f05a363f028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 590.941758][ T9827] RAX: ffffffffffffffda RBX: 00007f05a2a16180 RCX: 00007f05a279c819 [ 590.941767][ T9827] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 590.941776][ T9827] RBP: 00007f05a363f090 R08: 0000000000000000 R09: 0000000000000000 [ 590.941784][ T9827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 590.941792][ T9827] R13: 00007f05a2a16218 R14: 00007f05a2a16180 R15: 00007fffd83010b8 [ 590.941811][ T9827] [ 592.420181][ T6673] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 594.237968][ T9869] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 595.509836][ T9894] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(18) [ 595.869254][ T9904] FAULT_INJECTION: forcing a failure. [ 595.869254][ T9904] name failslab, interval 0, probability 0, space 0, times 0 [ 595.944052][ T9904] CPU: 0 UID: 0 PID: 9904 Comm: syz.2.762 Tainted: G L syzkaller #0 PREEMPT(full) [ 595.944079][ T9904] Tainted: [L]=SOFTLOCKUP [ 595.944085][ T9904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 595.944095][ T9904] Call Trace: [ 595.944102][ T9904] [ 595.944110][ T9904] dump_stack_lvl+0x100/0x190 [ 595.944139][ T9904] should_fail_ex.cold+0x5/0xa [ 595.944161][ T9904] should_failslab+0xc2/0x120 [ 595.944179][ T9904] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 595.944202][ T9904] ? shmem_alloc_inode+0x25/0x50 [ 595.944223][ T9904] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 595.944242][ T9904] shmem_alloc_inode+0x25/0x50 [ 595.944259][ T9904] alloc_inode+0x68/0x250 [ 595.944280][ T9904] new_inode+0x22/0x1c0 [ 595.944299][ T9904] ? trace_kmem_cache_alloc+0xf3/0x120 [ 595.944318][ T9904] shmem_get_inode+0x212/0x1040 [ 595.944341][ T9904] ? __pfx_shmem_get_inode+0x10/0x10 [ 595.944360][ T9904] ? rcu_is_watching+0x12/0xc0 [ 595.944382][ T9904] ? percpu_counter_add_batch+0xb9/0x230 [ 595.944408][ T9904] __shmem_file_setup+0x3ac/0x490 [ 595.944429][ T9904] ? __pfx___shmem_file_setup+0x10/0x10 [ 595.944453][ T9904] ? vm_area_alloc+0x1f/0x160 [ 595.944476][ T9904] shmem_zero_setup+0x96/0x1b0 [ 595.944493][ T9904] __mmap_region+0x21f6/0x2a50 [ 595.944519][ T9904] ? __pfx___mmap_region+0x10/0x10 [ 595.944542][ T9904] ? css_rstat_updated+0x1ce/0x5a0 [ 595.944560][ T9904] ? __pfx_css_rstat_updated+0x10/0x10 [ 595.944584][ T9904] ? __lock_acquire+0x4a5/0x2630 [ 595.944603][ T9904] ? update_cfs_rq_load_avg+0x51/0x550 [ 595.944629][ T9904] ? find_held_lock+0x2b/0x80 [ 595.944643][ T9904] ? finish_task_switch.isra.0+0x200/0xb80 [ 595.944660][ T9904] ? finish_task_switch.isra.0+0x200/0xb80 [ 595.944684][ T9904] ? trace_sched_exit_tp+0x13a/0x180 [ 595.944702][ T9904] ? __schedule+0x1000/0x6120 [ 595.944740][ T9904] ? rcu_is_watching+0x12/0xc0 [ 595.944763][ T9904] ? cap_capable+0x107/0x460 [ 595.944782][ T9904] mmap_region+0x180/0x3e0 [ 595.944809][ T9904] do_mmap+0xc63/0x12f0 [ 595.944831][ T9904] ? __pfx_do_mmap+0x10/0x10 [ 595.944856][ T9904] ? __pfx_down_write_killable+0x10/0x10 [ 595.944880][ T9904] vm_mmap_pgoff+0x29e/0x470 [ 595.944902][ T9904] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 595.944923][ T9904] ? do_futex+0x192/0x350 [ 595.944943][ T9904] ? __pfx_do_futex+0x10/0x10 [ 595.944966][ T9904] ksys_mmap_pgoff+0xe1/0x650 [ 595.944983][ T9904] ? __x64_sys_futex+0x34f/0x4d0 [ 595.945002][ T9904] ? __x64_sys_futex+0x358/0x4d0 [ 595.945022][ T9904] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 595.945039][ T9904] ? xfd_validate_state+0x129/0x190 [ 595.945065][ T9904] __x64_sys_mmap+0x125/0x190 [ 595.945090][ T9904] do_syscall_64+0x106/0xf80 [ 595.945106][ T9904] ? clear_bhb_loop+0x40/0x90 [ 595.945124][ T9904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.945140][ T9904] RIP: 0033:0x7fdcb739c819 [ 595.945155][ T9904] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.945169][ T9904] RSP: 002b:00007fdcb8188028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 595.945185][ T9904] RAX: ffffffffffffffda RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 595.945195][ T9904] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 595.945204][ T9904] RBP: 00007fdcb7432c91 R08: 0000000000000401 R09: 0000000000008000 [ 595.945214][ T9904] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 595.945224][ T9904] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 595.945244][ T9904] [ 596.749254][ T9900] FAULT_INJECTION: forcing a failure. [ 596.749254][ T9900] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 596.808587][ T9900] CPU: 0 UID: 0 PID: 9900 Comm: syz.1.761 Tainted: G L syzkaller #0 PREEMPT(full) [ 596.808614][ T9900] Tainted: [L]=SOFTLOCKUP [ 596.808619][ T9900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 596.808628][ T9900] Call Trace: [ 596.808634][ T9900] [ 596.808639][ T9900] dump_stack_lvl+0x100/0x190 [ 596.808667][ T9900] should_fail_ex.cold+0x5/0xa [ 596.808682][ T9900] ? prepare_alloc_pages+0x16d/0x5f0 [ 596.808702][ T9900] should_fail_alloc_page+0xeb/0x140 [ 596.808721][ T9900] prepare_alloc_pages+0x1f0/0x5f0 [ 596.808739][ T9900] ? xa_load+0x149/0x2c0 [ 596.808769][ T9900] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 596.808793][ T9900] ? xa_load+0x153/0x2c0 [ 596.808810][ T9900] ? __pfx_xa_load+0x10/0x10 [ 596.808832][ T9900] ? __lock_acquire+0x4a5/0x2630 [ 596.808852][ T9900] ? workingset_refault+0x477/0xf60 [ 596.808867][ T9900] ? workingset_refault+0x477/0xf60 [ 596.808881][ T9900] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 596.808907][ T9900] ? __lock_acquire+0x4a5/0x2630 [ 596.808928][ T9900] ? __lock_acquire+0x4a5/0x2630 [ 596.808953][ T9900] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 596.808970][ T9900] ? policy_nodemask+0xed/0x4f0 [ 596.808989][ T9900] alloc_pages_mpol+0x1fb/0x550 [ 596.809006][ T9900] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 596.809023][ T9900] ? swap_entry_swapped+0x1ff/0x2b0 [ 596.809040][ T9900] ? __pfx_swap_entry_swapped+0x10/0x10 [ 596.809059][ T9900] folio_alloc_mpol_noprof+0x36/0x340 [ 596.809080][ T9900] swap_cache_alloc_folio+0x1a8/0x300 [ 596.809104][ T9900] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 596.809132][ T9900] swap_cluster_readahead+0x411/0x770 [ 596.809159][ T9900] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 596.809183][ T9900] ? __lock_acquire+0x4a5/0x2630 [ 596.809211][ T9900] ? __lock_acquire+0x4a5/0x2630 [ 596.809229][ T9900] ? get_vma_policy+0x23d/0x3b0 [ 596.809248][ T9900] swapin_readahead+0x160/0x12c0 [ 596.809276][ T9900] ? __pfx_swapin_readahead+0x10/0x10 [ 596.809298][ T9900] ? swap_table_get+0x103/0x2c0 [ 596.809318][ T9900] ? swap_table_get+0x103/0x2c0 [ 596.809341][ T9900] ? swap_table_get+0x10d/0x2c0 [ 596.809362][ T9900] ? swap_cache_get_folio+0x1ae/0x600 [ 596.809384][ T9900] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 596.809404][ T9900] ? __pfx_get_swap_device+0x10/0x10 [ 596.809420][ T9900] ? __lock_acquire+0x4a5/0x2630 [ 596.809441][ T9900] ? do_swap_page+0xb2e/0x6900 [ 596.809461][ T9900] do_swap_page+0xb2e/0x6900 [ 596.809501][ T9900] ? __pfx_do_swap_page+0x10/0x10 [ 596.809521][ T9900] ? rcu_is_watching+0x12/0xc0 [ 596.809544][ T9900] ? __pte_offset_map+0x179/0x310 [ 596.809560][ T9900] ? pte_offset_map_ro_nolock+0x11c/0x200 [ 596.809577][ T9900] ? __pfx_pte_offset_map_ro_nolock+0x10/0x10 [ 596.809595][ T9900] ? __pfx_mt_find+0x10/0x10 [ 596.809615][ T9900] __collapse_huge_page_swapin+0x112/0x6d0 [ 596.809638][ T9900] ? __pfx___collapse_huge_page_swapin+0x10/0x10 [ 596.809667][ T9900] ? hugepage_vma_revalidate.isra.0+0x86/0x570 [ 596.809688][ T9900] collapse_huge_page+0x551/0x38c0 [ 596.809717][ T9900] ? __pfx_collapse_huge_page+0x10/0x10 [ 596.809851][ T9900] ? pte_offset_map_lock+0x174/0x320 [ 596.809880][ T9900] ? find_held_lock+0x2b/0x80 [ 596.809896][ T9900] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 596.809915][ T9900] ? hpage_collapse_scan_pmd+0xd7c/0x1670 [ 596.809938][ T9900] hpage_collapse_scan_pmd+0xdb9/0x1670 [ 596.809962][ T9900] ? queue_work_on+0x11b/0x1e0 [ 596.809986][ T9900] ? __pfx_hpage_collapse_scan_pmd+0x10/0x10 [ 596.810011][ T9900] madvise_collapse+0x6ee/0xbe0 [ 596.810040][ T9900] ? __pfx_madvise_collapse+0x10/0x10 [ 596.810059][ T9900] ? find_held_lock+0x1/0x80 [ 596.810074][ T9900] ? is_bpf_text_address+0x8a/0x1a0 [ 596.810102][ T9900] madvise_vma_behavior+0x1987/0x3050 [ 596.810124][ T9900] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 596.810143][ T9900] ? mas_prev_setup.constprop.0+0xb6/0x9c0 [ 596.810163][ T9900] ? mas_prev+0x9b/0xf0 [ 596.810179][ T9900] ? __pfx_mas_prev+0x10/0x10 [ 596.810201][ T9900] ? find_vma_prev+0xd8/0x150 [ 596.810217][ T9900] ? _kstrtoull+0x13c/0x1f0 [ 596.810241][ T9900] ? __pfx_find_vma_prev+0x10/0x10 [ 596.810268][ T9900] madvise_walk_vmas+0x2fe/0xa90 [ 596.810290][ T9900] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 596.810314][ T9900] madvise_do_behavior+0x1ea/0x510 [ 596.810334][ T9900] ? __pfx_madvise_do_behavior+0x10/0x10 [ 596.810354][ T9900] ? down_read+0x13b/0x460 [ 596.810381][ T9900] do_madvise+0x195/0x240 [ 596.810399][ T9900] ? __pfx_do_madvise+0x10/0x10 [ 596.810417][ T9900] ? __mutex_unlock_slowpath+0x15c/0x790 [ 596.810446][ T9900] ? ksys_write+0x1ac/0x250 [ 596.810461][ T9900] ? __pfx_ksys_write+0x10/0x10 [ 596.810479][ T9900] __x64_sys_madvise+0xa9/0x110 [ 596.810497][ T9900] ? lockdep_hardirqs_on+0x78/0x100 [ 596.810514][ T9900] do_syscall_64+0x106/0xf80 [ 596.810529][ T9900] ? clear_bhb_loop+0x40/0x90 [ 596.810548][ T9900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 596.810564][ T9900] RIP: 0033:0x7f05a279c819 [ 596.810579][ T9900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 596.810593][ T9900] RSP: 002b:00007f05a3660028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 596.810608][ T9900] RAX: ffffffffffffffda RBX: 00007f05a2a16090 RCX: 00007f05a279c819 [ 596.810618][ T9900] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000 [ 596.810627][ T9900] RBP: 00007f05a3660090 R08: 0000000000000000 R09: 0000000000000000 [ 596.810636][ T9900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 596.810645][ T9900] R13: 00007f05a2a16128 R14: 00007f05a2a16090 R15: 00007fffd83010b8 [ 596.810665][ T9900] [ 598.626282][ T9924] netlink: 16 bytes leftover after parsing attributes in process `syz.2.765'. [ 598.662852][ T9924] binder: 9923:9924 ioctl c018620c 200000000300 returned -22 [ 598.884710][ T9930] netlink: 8 bytes leftover after parsing attributes in process `syz.0.768'. [ 601.353794][ T9978] block2mtd: too many arguments [ 602.216876][T10000] netlink: 12 bytes leftover after parsing attributes in process `syz.2.781'. [ 603.722073][T10037] &#$@\]\-: entered promiscuous mode [ 604.405465][T10037] FAULT_INJECTION: forcing a failure. [ 604.405465][T10037] name failslab, interval 0, probability 0, space 0, times 0 [ 604.485399][T10037] CPU: 0 UID: 0 PID: 10037 Comm: syz.2.791 Tainted: G L syzkaller #0 PREEMPT(full) [ 604.485427][T10037] Tainted: [L]=SOFTLOCKUP [ 604.485432][T10037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 604.485441][T10037] Call Trace: [ 604.485447][T10037] [ 604.485453][T10037] dump_stack_lvl+0x100/0x190 [ 604.485482][T10037] should_fail_ex.cold+0x5/0xa [ 604.485501][T10037] should_failslab+0xc2/0x120 [ 604.485519][T10037] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 604.485542][T10037] ? alloc_empty_file+0x55/0x1c0 [ 604.485561][T10037] ? __pfx_stack_trace_save+0x10/0x10 [ 604.485580][T10037] alloc_empty_file+0x55/0x1c0 [ 604.485600][T10037] path_openat+0xe8/0x31a0 [ 604.485616][T10037] ? kasan_save_stack+0x3f/0x50 [ 604.485629][T10037] ? kasan_save_stack+0x30/0x50 [ 604.485642][T10037] ? kasan_save_track+0x14/0x30 [ 604.485655][T10037] ? __kasan_slab_alloc+0x89/0x90 [ 604.485669][T10037] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 604.485692][T10037] ? do_getname+0x35/0x390 [ 604.485710][T10037] ? do_sys_openat2+0xc5/0x1e0 [ 604.485730][T10037] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.485748][T10037] ? __pfx_path_openat+0x10/0x10 [ 604.485771][T10037] do_file_open+0x20e/0x430 [ 604.485789][T10037] ? __pfx_do_file_open+0x10/0x10 [ 604.485818][T10037] ? alloc_fd+0x476/0x790 [ 604.485836][T10037] ? do_getname+0x191/0x390 [ 604.485856][T10037] do_sys_openat2+0x10d/0x1e0 [ 604.485877][T10037] ? __pfx_do_sys_openat2+0x10/0x10 [ 604.485904][T10037] __x64_sys_openat+0x12d/0x210 [ 604.485925][T10037] ? __pfx___x64_sys_openat+0x10/0x10 [ 604.485952][T10037] do_syscall_64+0x106/0xf80 [ 604.485968][T10037] ? clear_bhb_loop+0x40/0x90 [ 604.485993][T10037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 604.486010][T10037] RIP: 0033:0x7fdcb739c819 [ 604.486024][T10037] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 604.486038][T10037] RSP: 002b:00007fdcb8188028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 604.486053][T10037] RAX: ffffffffffffffda RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 604.486064][T10037] RDX: 0000000000080006 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 604.486074][T10037] RBP: 00007fdcb7432c91 R08: 0000000000000000 R09: 0000000000000000 [ 604.486083][T10037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 604.486093][T10037] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 604.486113][T10037] [ 606.238888][T10071] ======================================================= [ 606.238888][T10071] WARNING: The mand mount option has been deprecated and [ 606.238888][T10071] and is ignored by this kernel. Remove the mand [ 606.238888][T10071] option from the mount to silence this warning. [ 606.238888][T10071] ======================================================= [ 608.346052][T10097] kernel profiling enabled (shift: 0) [ 609.559247][T10107] FAULT_INJECTION: forcing a failure. [ 609.559247][T10107] name failslab, interval 0, probability 0, space 0, times 0 [ 609.784311][T10107] CPU: 0 UID: 0 PID: 10107 Comm: syz.4.806 Tainted: G L syzkaller #0 PREEMPT(full) [ 609.784339][T10107] Tainted: [L]=SOFTLOCKUP [ 609.784344][T10107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 609.784355][T10107] Call Trace: [ 609.784360][T10107] [ 609.784366][T10107] dump_stack_lvl+0x100/0x190 [ 609.784394][T10107] should_fail_ex.cold+0x5/0xa [ 609.784413][T10107] ? sk_prot_alloc+0x10b/0x2a0 [ 609.784430][T10107] should_failslab+0xc2/0x120 [ 609.784449][T10107] __kmalloc_noprof+0xe0/0x850 [ 609.784476][T10107] sk_prot_alloc+0x10b/0x2a0 [ 609.784502][T10107] sk_alloc+0x36/0xe80 [ 609.784527][T10107] packet_create+0x127/0x8e0 [ 609.784550][T10107] __sock_create+0x339/0x860 [ 609.784572][T10107] __sys_socket+0x14d/0x260 [ 609.784593][T10107] ? __pfx___sys_socket+0x10/0x10 [ 609.784619][T10107] __x64_sys_socket+0x72/0xb0 [ 609.784638][T10107] ? lockdep_hardirqs_on+0x78/0x100 [ 609.784654][T10107] do_syscall_64+0x106/0xf80 [ 609.784669][T10107] ? clear_bhb_loop+0x40/0x90 [ 609.784687][T10107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 609.784706][T10107] RIP: 0033:0x7fd1f599c819 [ 609.784719][T10107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 609.784733][T10107] RSP: 002b:00007fd1f3bac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 609.784748][T10107] RAX: ffffffffffffffda RBX: 00007fd1f5c16180 RCX: 00007fd1f599c819 [ 609.784758][T10107] RDX: 0000000000000300 RSI: 0000000000080003 RDI: 0000000000000011 [ 609.784768][T10107] RBP: 00007fd1f5a32c91 R08: 0000000000000000 R09: 0000000000000000 [ 609.784777][T10107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 609.784786][T10107] R13: 00007fd1f5c16218 R14: 00007fd1f5c16180 R15: 00007ffd56247e88 [ 609.784806][T10107] [ 615.717527][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888027b67800: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 618.506396][T10241] NFSD: Failed to start, no listeners configured. [ 618.935724][T10255] delete_channel: no stack [ 619.091628][T10252] usbip-vudc usbip-vudc.0: gadget not bound [ 621.753890][T10272] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 622.684618][T10303] block2mtd: too many arguments [ 624.303610][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.310067][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 626.666494][T10357] block2mtd: too many arguments [ 627.002302][T10362] netlink: zone id is out of range [ 627.036044][T10362] netlink: zone id is out of range [ 627.073330][T10362] netlink: zone id is out of range [ 627.185134][T10362] netlink: set zone limit has 8 unknown bytes [ 627.356892][T10351] netlink: 186 bytes leftover after parsing attributes in process `syz.1.854'. [ 629.674808][T10390] netlink: 4 bytes leftover after parsing attributes in process `syz.0.861'. [ 629.943438][T10390] netlink: 12 bytes leftover after parsing attributes in process `syz.0.861'. [ 630.200653][T10390] netlink: 4 bytes leftover after parsing attributes in process `syz.0.861'. [ 630.807923][T10420] block2mtd: too many arguments [ 631.278729][T10424] mkiss: ax0: crc mode is auto. [ 631.885098][ T29] audit: type=1800 audit(1775821367.327:5): pid=10431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.866" name="lu_gp_id" dev="configfs" ino=32577 res=0 errno=0 [ 631.926546][T10431] kstrtoul() returned -22 for lu_gp_id [ 633.241919][T10484] FAULT_INJECTION: forcing a failure. [ 633.241919][T10484] name failslab, interval 0, probability 0, space 0, times 0 [ 633.323709][T10484] CPU: 0 UID: 0 PID: 10484 Comm: syz.0.876 Tainted: G L syzkaller #0 PREEMPT(full) [ 633.323735][T10484] Tainted: [L]=SOFTLOCKUP [ 633.323740][T10484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 633.323750][T10484] Call Trace: [ 633.323756][T10484] [ 633.323762][T10484] dump_stack_lvl+0x100/0x190 [ 633.323791][T10484] should_fail_ex.cold+0x5/0xa [ 633.323811][T10484] should_failslab+0xc2/0x120 [ 633.323828][T10484] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 633.323852][T10484] ? mas_alloc_nodes+0x280/0x390 [ 633.323878][T10484] mas_alloc_nodes+0x280/0x390 [ 633.323903][T10484] mas_preallocate+0x39c/0xf10 [ 633.323924][T10484] ? __pfx_mas_preallocate+0x10/0x10 [ 633.323945][T10484] ? vm_area_alloc+0x1f/0x160 [ 633.323968][T10484] ? lockdep_init_map_type+0x5c/0x250 [ 633.323991][T10484] __mmap_region+0x1375/0x2a50 [ 633.324017][T10484] ? __pfx___mmap_region+0x10/0x10 [ 633.324037][T10484] ? process_measurement+0x1f4/0x2350 [ 633.324053][T10484] ? css_rstat_updated+0x1ce/0x5a0 [ 633.324072][T10484] ? __pfx_css_rstat_updated+0x10/0x10 [ 633.324096][T10484] ? __lock_acquire+0x4a5/0x2630 [ 633.324123][T10484] ? update_cfs_rq_load_avg+0x51/0x550 [ 633.324152][T10484] ? find_held_lock+0x2b/0x80 [ 633.324167][T10484] ? finish_task_switch.isra.0+0x200/0xb80 [ 633.324185][T10484] ? finish_task_switch.isra.0+0x200/0xb80 [ 633.324209][T10484] ? trace_sched_exit_tp+0x13a/0x180 [ 633.324228][T10484] ? __schedule+0x1000/0x6120 [ 633.324267][T10484] ? rcu_is_watching+0x12/0xc0 [ 633.324290][T10484] ? cap_capable+0x107/0x460 [ 633.324308][T10484] mmap_region+0x180/0x3e0 [ 633.324335][T10484] do_mmap+0xc63/0x12f0 [ 633.324356][T10484] ? __pfx_do_mmap+0x10/0x10 [ 633.324373][T10484] ? __pfx_down_write_killable+0x10/0x10 [ 633.324396][T10484] vm_mmap_pgoff+0x29e/0x470 [ 633.324418][T10484] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 633.324437][T10484] ? do_futex+0x192/0x350 [ 633.324457][T10484] ? __pfx_do_futex+0x10/0x10 [ 633.324480][T10484] ksys_mmap_pgoff+0xe1/0x650 [ 633.324497][T10484] ? __x64_sys_futex+0x34f/0x4d0 [ 633.324515][T10484] ? __x64_sys_futex+0x358/0x4d0 [ 633.324536][T10484] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 633.324552][T10484] ? xfd_validate_state+0x129/0x190 [ 633.324578][T10484] __x64_sys_mmap+0x125/0x190 [ 633.324602][T10484] do_syscall_64+0x106/0xf80 [ 633.324618][T10484] ? clear_bhb_loop+0x40/0x90 [ 633.324637][T10484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 633.324652][T10484] RIP: 0033:0x7fcd0539c819 [ 633.324666][T10484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 633.324680][T10484] RSP: 002b:00007fcd0621f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 633.324695][T10484] RAX: ffffffffffffffda RBX: 00007fcd05615fa0 RCX: 00007fcd0539c819 [ 633.324706][T10484] RDX: 0000000000000001 RSI: 000000000000007f RDI: 0000000000000000 [ 633.324715][T10484] RBP: 00007fcd05432c91 R08: 0000000000000401 R09: 0000000000008000 [ 633.324724][T10484] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 633.324733][T10484] R13: 00007fcd05616038 R14: 00007fcd05615fa0 R15: 00007ffc27065578 [ 633.324754][T10484] [ 640.104849][T10614] block2mtd: too many arguments [ 641.433509][T10623] netlink: 4 bytes leftover after parsing attributes in process `syz.4.907'. [ 644.515510][T10693] netlink: 4 bytes leftover after parsing attributes in process `syz.4.922'. [ 644.861358][T10699] FAULT_INJECTION: forcing a failure. [ 644.861358][T10699] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 644.954273][T10699] CPU: 0 UID: 0 PID: 10699 Comm: syz.0.924 Tainted: G L syzkaller #0 PREEMPT(full) [ 644.954300][T10699] Tainted: [L]=SOFTLOCKUP [ 644.954306][T10699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 644.954316][T10699] Call Trace: [ 644.954322][T10699] [ 644.954329][T10699] dump_stack_lvl+0x100/0x190 [ 644.954357][T10699] should_fail_ex.cold+0x5/0xa [ 644.954374][T10699] ? prepare_alloc_pages+0x16d/0x5f0 [ 644.954394][T10699] should_fail_alloc_page+0xeb/0x140 [ 644.954413][T10699] prepare_alloc_pages+0x1f0/0x5f0 [ 644.954431][T10699] ? bpf_ksym_find+0x124/0x1c0 [ 644.954452][T10699] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 644.954476][T10699] ? __kernel_text_address+0xd/0x30 [ 644.954498][T10699] ? unwind_get_return_address+0x59/0xa0 [ 644.954515][T10699] ? arch_stack_walk+0xa6/0xf0 [ 644.954537][T10699] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 644.954560][T10699] ? stack_trace_save+0x8e/0xc0 [ 644.954576][T10699] ? __pfx_stack_trace_save+0x10/0x10 [ 644.954592][T10699] ? stack_depot_save_flags+0x27/0x9d0 [ 644.954612][T10699] ? mas_store_prealloc+0x893/0xfb0 [ 644.954636][T10699] ? kasan_save_stack+0x30/0x50 [ 644.954649][T10699] ? kasan_save_track+0x14/0x30 [ 644.954662][T10699] ? __kasan_slab_alloc+0x89/0x90 [ 644.954676][T10699] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 644.954699][T10699] ? __pmd_alloc+0xbf/0x950 [ 644.954717][T10699] ? __handle_mm_fault+0xa9e/0x2b60 [ 644.954737][T10699] ? handle_mm_fault+0x36d/0xa20 [ 644.954756][T10699] ? __get_user_pages+0xf9c/0x34d0 [ 644.954772][T10699] ? populate_vma_page_range+0x267/0x3f0 [ 644.954790][T10699] ? __mm_populate+0x107/0x3a0 [ 644.954807][T10699] ? vm_mmap_pgoff+0x37f/0x470 [ 644.954823][T10699] ? ksys_mmap_pgoff+0xe1/0x650 [ 644.954838][T10699] ? __x64_sys_mmap+0x125/0x190 [ 644.954859][T10699] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 644.954876][T10699] ? policy_nodemask+0xed/0x4f0 [ 644.954894][T10699] alloc_pages_mpol+0x1fb/0x550 [ 644.954912][T10699] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 644.954941][T10699] alloc_pages_noprof+0x136/0x390 [ 644.954960][T10699] pte_alloc_one+0x1c/0x3d0 [ 644.954979][T10699] __pte_alloc+0x6d/0x3e0 [ 644.954995][T10699] ? __pfx___pte_alloc+0x10/0x10 [ 644.955013][T10699] ? do_raw_spin_lock+0x128/0x260 [ 644.955035][T10699] ? find_held_lock+0x2b/0x80 [ 644.955051][T10699] do_anonymous_page+0x13cc/0x1fb0 [ 644.955073][T10699] ? do_raw_spin_unlock+0x145/0x1e0 [ 644.955095][T10699] ? _raw_spin_unlock+0x28/0x50 [ 644.955118][T10699] ? __pmd_alloc+0x3fb/0x950 [ 644.955137][T10699] __handle_mm_fault+0x1d48/0x2b60 [ 644.955161][T10699] ? mt_find+0x45e/0x8e0 [ 644.955179][T10699] ? __pfx___handle_mm_fault+0x10/0x10 [ 644.955198][T10699] ? __pfx_mt_find+0x10/0x10 [ 644.955230][T10699] handle_mm_fault+0x36d/0xa20 [ 644.955255][T10699] __get_user_pages+0xf9c/0x34d0 [ 644.955280][T10699] ? __pfx___get_user_pages+0x10/0x10 [ 644.955303][T10699] populate_vma_page_range+0x267/0x3f0 [ 644.955324][T10699] ? __pfx_populate_vma_page_range+0x10/0x10 [ 644.955342][T10699] ? __pfx_find_vma_intersection+0x10/0x10 [ 644.955360][T10699] ? do_mmap+0x93f/0x12f0 [ 644.955379][T10699] __mm_populate+0x107/0x3a0 [ 644.955398][T10699] ? __pfx___mm_populate+0x10/0x10 [ 644.955418][T10699] ? up_write+0x290/0x4f0 [ 644.955442][T10699] vm_mmap_pgoff+0x37f/0x470 [ 644.955462][T10699] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 644.955481][T10699] ? do_futex+0x192/0x350 [ 644.955501][T10699] ? __pfx_do_futex+0x10/0x10 [ 644.955524][T10699] ksys_mmap_pgoff+0xe1/0x650 [ 644.955541][T10699] ? __x64_sys_futex+0x34f/0x4d0 [ 644.955559][T10699] ? __x64_sys_futex+0x358/0x4d0 [ 644.955579][T10699] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 644.955596][T10699] ? xfd_validate_state+0x129/0x190 [ 644.955622][T10699] __x64_sys_mmap+0x125/0x190 [ 644.955646][T10699] do_syscall_64+0x106/0xf80 [ 644.955662][T10699] ? clear_bhb_loop+0x40/0x90 [ 644.955681][T10699] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 644.955697][T10699] RIP: 0033:0x7fcd0539c819 [ 644.955711][T10699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 644.955726][T10699] RSP: 002b:00007fcd0621f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 644.955741][T10699] RAX: ffffffffffffffda RBX: 00007fcd05615fa0 RCX: 00007fcd0539c819 [ 644.955752][T10699] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 644.955761][T10699] RBP: 00007fcd05432c91 R08: ffffffffffffffff R09: 0000000000008000 [ 644.955771][T10699] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 644.955779][T10699] R13: 00007fcd05616038 R14: 00007fcd05615fa0 R15: 00007ffc27065578 [ 644.955800][T10699] [ 646.510544][T10711] FAULT_INJECTION: forcing a failure. [ 646.510544][T10711] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 646.574979][T10711] CPU: 0 UID: 0 PID: 10711 Comm: syz.1.928 Tainted: G L syzkaller #0 PREEMPT(full) [ 646.575006][T10711] Tainted: [L]=SOFTLOCKUP [ 646.575011][T10711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 646.575026][T10711] Call Trace: [ 646.575032][T10711] [ 646.575038][T10711] dump_stack_lvl+0x100/0x190 [ 646.575066][T10711] should_fail_ex.cold+0x5/0xa [ 646.575084][T10711] _copy_from_user+0x2e/0xd0 [ 646.575106][T10711] copy_msghdr_from_user+0x9f/0x4f0 [ 646.575127][T10711] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 646.575156][T10711] ___sys_sendmsg+0x106/0x1e0 [ 646.575176][T10711] ? __pfx____sys_sendmsg+0x10/0x10 [ 646.575218][T10711] __sys_sendmsg+0x170/0x220 [ 646.575233][T10711] ? __pfx___sys_sendmsg+0x10/0x10 [ 646.575259][T10711] do_syscall_64+0x106/0xf80 [ 646.575276][T10711] ? clear_bhb_loop+0x40/0x90 [ 646.575294][T10711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 646.575310][T10711] RIP: 0033:0x7f05a279c819 [ 646.575323][T10711] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 646.575338][T10711] RSP: 002b:00007f05a3681028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 646.575352][T10711] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 646.575362][T10711] RDX: 0000000024040804 RSI: 0000200000003a80 RDI: 0000000000000003 [ 646.575371][T10711] RBP: 00007f05a3681090 R08: 0000000000000000 R09: 0000000000000000 [ 646.575380][T10711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 646.575388][T10711] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 646.575407][T10711] [ 648.115646][T10728] netlink: 4 bytes leftover after parsing attributes in process `syz.0.932'. [ 648.339395][T10726] rnbd_client L202: map_device: Unknown parameter or missing value '7' [ 649.806021][T10763] netlink: 4 bytes leftover after parsing attributes in process `syz.1.939'. [ 650.514478][ T29] audit: type=1800 audit(1775821385.947:6): pid=10783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.942" name="dbroot" dev="configfs" ino=34860 res=0 errno=0 [ 650.747130][T10778] netlink: 4 bytes leftover after parsing attributes in process `syz.1.943'. [ 651.549073][T10803] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 651.853688][T10814] netlink: 130 bytes leftover after parsing attributes in process `syz.0.952'. [ 652.052523][ T6577] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 652.795654][T10826] QAT: Invalid ioctl 44609 [ 653.769667][T10846] FAULT_INJECTION: forcing a failure. [ 653.769667][T10846] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 653.861748][T10846] CPU: 0 UID: 0 PID: 10846 Comm: syz.1.958 Tainted: G L syzkaller #0 PREEMPT(full) [ 653.861775][T10846] Tainted: [L]=SOFTLOCKUP [ 653.861780][T10846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 653.861789][T10846] Call Trace: [ 653.861795][T10846] [ 653.861801][T10846] dump_stack_lvl+0x100/0x190 [ 653.861828][T10846] should_fail_ex.cold+0x5/0xa [ 653.861847][T10846] _copy_from_user+0x2e/0xd0 [ 653.861869][T10846] copy_msghdr_from_user+0x9f/0x4f0 [ 653.861890][T10846] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 653.861919][T10846] ___sys_sendmsg+0x106/0x1e0 [ 653.861940][T10846] ? __pfx____sys_sendmsg+0x10/0x10 [ 653.861981][T10846] __sys_sendmsg+0x170/0x220 [ 653.861996][T10846] ? __pfx___sys_sendmsg+0x10/0x10 [ 653.862023][T10846] do_syscall_64+0x106/0xf80 [ 653.862039][T10846] ? clear_bhb_loop+0x40/0x90 [ 653.862058][T10846] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 653.862079][T10846] RIP: 0033:0x7f05a279c819 [ 653.862092][T10846] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 653.862107][T10846] RSP: 002b:00007f05a3681028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 653.862122][T10846] RAX: ffffffffffffffda RBX: 00007f05a2a15fa0 RCX: 00007f05a279c819 [ 653.862131][T10846] RDX: 0000000020000000 RSI: 0000200000000140 RDI: 0000000000000003 [ 653.862140][T10846] RBP: 00007f05a3681090 R08: 0000000000000000 R09: 0000000000000000 [ 653.862149][T10846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 653.862158][T10846] R13: 00007f05a2a16038 R14: 00007f05a2a15fa0 R15: 00007fffd83010b8 [ 653.862176][T10846] [ 657.242377][ T29] audit: type=1800 audit(1775821392.687:7): pid=10896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.970" name="lu_gp_id" dev="configfs" ino=35348 res=0 errno=0 [ 657.360200][T10887] bridge0: port 3(geneve0) entered blocking state [ 657.384218][ T29] audit: type=1804 audit(1775821392.747:8): pid=10888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.968" name="/newroot/235/file0" dev="tmpfs" ino=1222 res=1 errno=0 [ 657.527449][ T29] audit: type=1804 audit(1775821392.807:9): pid=10887 uid=2 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.968" name="/newroot/235/file0" dev="tmpfs" ino=1222 res=1 errno=0 [ 657.572149][T10887] bridge0: port 3(geneve0) entered disabled state [ 657.724383][T10887] geneve0: entered allmulticast mode [ 657.854071][T10887] geneve0: entered promiscuous mode [ 657.944834][T10906] netlink: 28 bytes leftover after parsing attributes in process `syz.0.971'. [ 657.981541][T10887] bridge0: port 3(geneve0) entered blocking state [ 657.988311][T10887] bridge0: port 3(geneve0) entered forwarding state [ 658.734613][T10906] hsr_slave_1 (unregistering): left promiscuous mode [ 658.968810][T10921] smpboot: Booting Node 0 Processor 1 APIC 0x1 [ 659.082385][T10873] ------------[ cut here ]------------ [ 659.082995][T10873] [ 659.083002][T10873] ====================================================== [ 659.083009][T10873] WARNING: possible circular locking dependency detected [ 659.083019][T10873] syzkaller #0 Tainted: G L [ 659.083027][T10873] ------------------------------------------------------ [ 659.083032][T10873] syz.2.964/10873 is trying to acquire lock: [ 659.083039][T10873] ffffffff8e6f3880 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 659.083083][T10873] [ 659.083083][T10873] but task is already holding lock: [ 659.083087][T10873] ffff8880b843b360 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 659.083118][T10873] [ 659.083118][T10873] which lock already depends on the new lock. [ 659.083118][T10873] [ 659.083122][T10873] [ 659.083122][T10873] the existing dependency chain (in reverse order) is: [ 659.083127][T10873] [ 659.083127][T10873] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 659.083144][T10873] _raw_spin_lock_nested+0x31/0x40 [ 659.083166][T10873] raw_spin_rq_lock_nested+0x2c/0x140 [ 659.083180][T10873] _task_rq_lock+0xcf/0x490 [ 659.083194][T10873] cgroup_move_task+0x81/0x2b0 [ 659.083210][T10873] css_set_move_task+0x285/0x600 [ 659.083224][T10873] cgroup_post_fork+0x202/0x9b0 [ 659.083238][T10873] copy_process+0x5717/0x7a40 [ 659.083254][T10873] kernel_clone+0xfc/0x9a0 [ 659.083269][T10873] user_mode_thread+0xcc/0x110 [ 659.083285][T10873] rest_init+0x21/0x260 [ 659.083302][T10873] start_kernel+0x47f/0x480 [ 659.083323][T10873] x86_64_start_reservations+0x24/0x30 [ 659.083345][T10873] x86_64_start_kernel+0x12b/0x130 [ 659.083365][T10873] common_startup_64+0x13e/0x148 [ 659.083380][T10873] [ 659.083380][T10873] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 659.083397][T10873] _raw_spin_lock_irqsave+0x3a/0x60 [ 659.083419][T10873] try_to_wake_up+0xb2/0x1a80 [ 659.083432][T10873] __wake_up_common+0x135/0x1f0 [ 659.083450][T10873] __wake_up+0x31/0x60 [ 659.083464][T10873] tty_port_default_wakeup+0x47/0x60 [ 659.083479][T10873] serial8250_tx_chars+0x68f/0x860 [ 659.083492][T10873] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 659.083512][T10873] serial8250_handle_irq.part.0+0xb8/0x550 [ 659.083526][T10873] serial8250_default_handle_irq+0xc2/0x2a0 [ 659.083541][T10873] serial8250_interrupt+0xf8/0x1d0 [ 659.083558][T10873] __handle_irq_event_percpu+0x232/0x8e0 [ 659.083572][T10873] handle_irq_event+0xab/0x1e0 [ 659.083584][T10873] handle_edge_irq+0x375/0x970 [ 659.083605][T10873] __common_interrupt+0xd8/0x2f0 [ 659.083624][T10873] common_interrupt+0xb9/0xe0 [ 659.083642][T10873] asm_common_interrupt+0x26/0x40 [ 659.083656][T10873] kasan_check_range+0xff/0x1e0 [ 659.083674][T10873] unmap_page_range+0x1e3c/0x4840 [ 659.083690][T10873] unmap_single_vma+0x153/0x240 [ 659.083704][T10873] unmap_vmas+0x295/0x590 [ 659.083718][T10873] exit_mmap+0x1ef/0xa30 [ 659.083733][T10873] __mmput+0x12a/0x410 [ 659.083747][T10873] mmput+0x67/0x80 [ 659.083762][T10873] do_exit+0x819/0x2b60 [ 659.083780][T10873] do_group_exit+0xd5/0x2a0 [ 659.083798][T10873] __x64_sys_exit_group+0x3e/0x50 [ 659.083816][T10873] x64_sys_call+0x102c/0x1530 [ 659.083832][T10873] do_syscall_64+0x106/0xf80 [ 659.083846][T10873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 659.083859][T10873] [ 659.083859][T10873] -> #2 (&tty->write_wait){-.-.}-{3:3}: [ 659.083877][T10873] _raw_spin_lock_irqsave+0x3a/0x60 [ 659.083898][T10873] __wake_up+0x1c/0x60 [ 659.083912][T10873] tty_port_default_wakeup+0x47/0x60 [ 659.083926][T10873] serial8250_tx_chars+0x68f/0x860 [ 659.083939][T10873] serial8250_handle_irq_locked+0x5e6/0x7e0 [ 659.083953][T10873] serial8250_handle_irq.part.0+0xb8/0x550 [ 659.083967][T10873] serial8250_default_handle_irq+0xc2/0x2a0 [ 659.083981][T10873] serial8250_interrupt+0xf8/0x1d0 [ 659.083997][T10873] __handle_irq_event_percpu+0x232/0x8e0 [ 659.084010][T10873] handle_irq_event+0xab/0x1e0 [ 659.084022][T10873] handle_edge_irq+0x375/0x970 [ 659.084042][T10873] __common_interrupt+0xd8/0x2f0 [ 659.084060][T10873] common_interrupt+0xb9/0xe0 [ 659.084077][T10873] asm_common_interrupt+0x26/0x40 [ 659.084091][T10873] pv_native_safe_halt+0xf/0x20 [ 659.084104][T10873] default_idle+0x9/0x10 [ 659.084119][T10873] default_idle_call+0x6c/0xb0 [ 659.084139][T10873] do_idle+0x464/0x590 [ 659.084151][T10873] cpu_startup_entry+0x4f/0x60 [ 659.084164][T10873] rest_init+0x251/0x260 [ 659.084180][T10873] start_kernel+0x47f/0x480 [ 659.084199][T10873] x86_64_start_reservations+0x24/0x30 [ 659.084221][T10873] x86_64_start_kernel+0x12b/0x130 [ 659.084241][T10873] common_startup_64+0x13e/0x148 [ 659.084255][T10873] [ 659.084255][T10873] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 659.084272][T10873] _raw_spin_lock_irqsave+0x3a/0x60 [ 659.084293][T10873] serial8250_console_write+0x17e/0x1900 [ 659.084310][T10873] console_flush_one_record+0x790/0xe50 [ 659.084322][T10873] console_unlock+0x103/0x260 [ 659.084334][T10873] vprintk_emit+0x407/0x6b0 [ 659.084346][T10873] _printk+0xcf/0x110 [ 659.084358][T10873] register_console.cold+0xc0/0x248 [ 659.084371][T10873] univ8250_console_init+0x6f/0x80 [ 659.084388][T10873] console_init+0x423/0x620 [ 659.084401][T10873] start_kernel+0x305/0x480 [ 659.084421][T10873] x86_64_start_reservations+0x24/0x30 [ 659.084442][T10873] x86_64_start_kernel+0x12b/0x130 [ 659.084462][T10873] common_startup_64+0x13e/0x148 [ 659.084476][T10873] [ 659.084476][T10873] -> #0 (console_owner){-.-.}-{0:0}: [ 659.084493][T10873] __lock_acquire+0x14b8/0x2630 [ 659.084516][T10873] lock_acquire+0x1cf/0x380 [ 659.084533][T10873] console_lock_spinning_enable+0x72/0x80 [ 659.084555][T10873] console_flush_one_record+0x739/0xe50 [ 659.084567][T10873] console_unlock+0x103/0x260 [ 659.084579][T10873] vprintk_emit+0x407/0x6b0 [ 659.084591][T10873] _printk+0xcf/0x110 [ 659.084602][T10873] __report_bug.cold+0x15/0x137 [ 659.084621][T10873] report_bug+0xb2/0x220 [ 659.084634][T10873] handle_bug+0x16a/0x2a0 [ 659.084649][T10873] exc_invalid_op+0x17/0x50 [ 659.084665][T10873] asm_exc_invalid_op+0x1a/0x20 [ 659.084678][T10873] update_rq_clock+0x40a/0xd20 [ 659.084692][T10873] __schedule+0x1b7d/0x6120 [ 659.084704][T10873] preempt_schedule_common+0x42/0xc0 [ 659.084717][T10873] preempt_schedule_thunk+0x16/0x30 [ 659.084734][T10873] _raw_spin_unlock+0x3e/0x50 [ 659.084754][T10873] finish_fault+0x942/0x15e0 [ 659.084771][T10873] do_fault+0xae7/0x18e0 [ 659.084787][T10873] __handle_mm_fault+0x1815/0x2b60 [ 659.084805][T10873] handle_mm_fault+0x36d/0xa20 [ 659.084823][T10873] do_user_addr_fault+0x5a3/0x12f0 [ 659.084836][T10873] exc_page_fault+0x6f/0xd0 [ 659.084849][T10873] asm_exc_page_fault+0x26/0x30 [ 659.084862][T10873] [ 659.084862][T10873] other info that might help us debug this: [ 659.084862][T10873] [ 659.084866][T10873] Chain exists of: [ 659.084866][T10873] console_owner --> &p->pi_lock --> &rq->__lock [ 659.084866][T10873] [ 659.084885][T10873] Possible unsafe locking scenario: [ 659.084885][T10873] [ 659.084889][T10873] CPU0 CPU1 [ 659.084892][T10873] ---- ---- [ 659.084895][T10873] lock(&rq->__lock); [ 659.084903][T10873] lock(&p->pi_lock); [ 659.084912][T10873] lock(&rq->__lock); [ 659.084922][T10873] lock(console_owner); [ 659.084930][T10873] [ 659.084930][T10873] *** DEADLOCK *** [ 659.084930][T10873] [ 659.084933][T10873] 5 locks held by syz.2.964/10873: [ 659.084941][T10873] #0: ffff8880abf96bc8 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x11d/0x590 [ 659.084978][T10873] #1: ffffffff8e7e7760 (rcu_read_lock){....}-{1:3}, at: __pte_offset_map+0x2f/0x310 [ 659.085010][T10873] #2: ffff8880b843b360 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x88/0x140 [ 659.085042][T10873] #3: ffffffff8e7d3cc0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x110 [ 659.085071][T10873] #4: ffffffff8e7d3d38 (console_srcu){....}-{0:0}, at: console_flush_one_record+0xfd/0xe50 [ 659.085102][T10873] [ 659.085102][T10873] stack backtrace: [ 659.085110][T10873] CPU: 0 UID: 0 PID: 10873 Comm: syz.2.964 Tainted: G L syzkaller #0 PREEMPT(full) [ 659.085130][T10873] Tainted: [L]=SOFTLOCKUP [ 659.085135][T10873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 659.085144][T10873] Call Trace: [ 659.085149][T10873] [ 659.085154][T10873] dump_stack_lvl+0x100/0x190 [ 659.085175][T10873] print_circular_bug.cold+0x178/0x1c7 [ 659.085199][T10873] check_noncircular+0x146/0x160 [ 659.085218][T10873] __lock_acquire+0x14b8/0x2630 [ 659.085285][T10873] lock_acquire+0x1cf/0x380 [ 659.085303][T10873] ? console_lock_spinning_enable+0x61/0x80 [ 659.085326][T10873] ? console_lock_spinning_enable+0x4a/0x80 [ 659.085350][T10873] console_lock_spinning_enable+0x72/0x80 [ 659.085372][T10873] ? console_lock_spinning_enable+0x61/0x80 [ 659.085395][T10873] console_flush_one_record+0x739/0xe50 [ 659.085410][T10873] ? __pfx_console_flush_one_record+0x10/0x10 [ 659.085426][T10873] ? is_printk_cpu_sync_owner+0x32/0x40 [ 659.085443][T10873] console_unlock+0x103/0x260 [ 659.085456][T10873] ? __pfx_console_unlock+0x10/0x10 [ 659.085470][T10873] ? do_raw_spin_unlock+0x145/0x1e0 [ 659.085492][T10873] ? _printk+0xcf/0x110 [ 659.085505][T10873] vprintk_emit+0x407/0x6b0 [ 659.085523][T10873] ? __pfx_vprintk_emit+0x10/0x10 [ 659.085539][T10873] _printk+0xcf/0x110 [ 659.085552][T10873] ? __pfx__printk+0x10/0x10 [ 659.085566][T10873] ? do_raw_spin_lock+0x128/0x260 [ 659.085587][T10873] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 659.085609][T10873] ? find_held_lock+0x2b/0x80 [ 659.085621][T10873] ? __report_bug.cold+0x5/0x137 [ 659.085641][T10873] ? __report_bug+0x377/0x3d0 [ 659.085653][T10873] __report_bug.cold+0x15/0x137 [ 659.085672][T10873] ? update_rq_clock+0x40a/0xd20 [ 659.085688][T10873] ? __pfx___report_bug+0x10/0x10 [ 659.085701][T10873] ? mark_held_locks+0x40/0x70 [ 659.085722][T10873] ? update_rq_clock+0x40a/0xd20 [ 659.085737][T10873] report_bug+0xb2/0x220 [ 659.085749][T10873] ? update_rq_clock+0x40a/0xd20 [ 659.085767][T10873] handle_bug+0x16a/0x2a0 [ 659.085784][T10873] exc_invalid_op+0x17/0x50 [ 659.085801][T10873] asm_exc_invalid_op+0x1a/0x20 [ 659.085814][T10873] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 659.085831][T10873] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 48 df bb 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 659.085845][T10873] RSP: 0018:ffffc900047a7928 EFLAGS: 00010046 [ 659.085856][T10873] RAX: 0000000000000000 RBX: ffff8880b853b300 RCX: 0000000000000001 [ 659.085865][T10873] RDX: 0000000000000046 RSI: ffffffff8de5d981 RDI: ffffffff8c1b1e20 [ 659.085875][T10873] RBP: ffffc900047a7ad0 R08: 0000000000000001 R09: 0000000000000001 [ 659.085883][T10873] R10: ffffffff90da0617 R11: 0000000000000000 R12: ffffffff90da39e4 [ 659.085892][T10873] R13: ffff8880b853c140 R14: ffff888033b48000 R15: ffff8880b853b300 [ 659.085906][T10873] ? update_rq_clock+0x9c/0xd20 [ 659.085920][T10873] ? pick_task_fair+0x85/0x350 [ 659.085935][T10873] __schedule+0x1b7d/0x6120 [ 659.085948][T10873] ? find_held_lock+0x2b/0x80 [ 659.085965][T10873] ? __pfx___schedule+0x10/0x10 [ 659.085978][T10873] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 659.085995][T10873] ? preempt_schedule_thunk+0x16/0x30 [ 659.086013][T10873] preempt_schedule_common+0x42/0xc0 [ 659.086028][T10873] preempt_schedule_thunk+0x16/0x30 [ 659.086047][T10873] _raw_spin_unlock+0x3e/0x50 [ 659.086068][T10873] finish_fault+0x942/0x15e0 [ 659.086089][T10873] do_fault+0xae7/0x18e0 [ 659.086106][T10873] __handle_mm_fault+0x1815/0x2b60 [ 659.086127][T10873] ? reacquire_held_locks+0xce/0x1e0 [ 659.086146][T10873] ? __pfx___handle_mm_fault+0x10/0x10 [ 659.086167][T10873] ? lock_vma_under_rcu+0x17c/0x590 [ 659.086191][T10873] handle_mm_fault+0x36d/0xa20 [ 659.086212][T10873] do_user_addr_fault+0x5a3/0x12f0 [ 659.086228][T10873] exc_page_fault+0x6f/0xd0 [ 659.086242][T10873] asm_exc_page_fault+0x26/0x30 [ 659.086255][T10873] RIP: 0033:0x18dc000 [ 659.086266][T10873] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 659.086279][T10873] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 659.086289][T10873] RAX: 0000000000000000 RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 659.086298][T10873] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 659.086307][T10873] RBP: 00007fdcb7432c91 R08: 0000000000000002 R09: 0000000000000000 [ 659.086315][T10873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 659.086324][T10873] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 659.086337][T10873] [ 660.343497][T10873] debug_locks && !(lock_is_held(&(__rq_lockp(rq))->dep_map) != 0) [ 660.343517][T10873] WARNING: kernel/sched/sched.h:1603 at update_rq_clock+0x40a/0xd20, CPU#0: syz.2.964/10873 [ 660.362221][T10873] Modules linked in: [ 660.366111][T10873] CPU: 0 UID: 0 PID: 10873 Comm: syz.2.964 Tainted: G L syzkaller #0 PREEMPT(full) [ 660.376943][T10873] Tainted: [L]=SOFTLOCKUP [ 660.381246][T10873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 660.391282][T10873] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 660.396816][T10873] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 48 df bb 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 660.416404][T10873] RSP: 0018:ffffc900047a7928 EFLAGS: 00010046 [ 660.422460][T10873] RAX: 0000000000000000 RBX: ffff8880b853b300 RCX: 0000000000000001 [ 660.430411][T10873] RDX: 0000000000000046 RSI: ffffffff8de5d981 RDI: ffffffff8c1b1e20 [ 660.438364][T10873] RBP: ffffc900047a7ad0 R08: 0000000000000001 R09: 0000000000000001 [ 660.446317][T10873] R10: ffffffff90da0617 R11: 0000000000000000 R12: ffffffff90da39e4 [ 660.454271][T10873] R13: ffff8880b853c140 R14: ffff888033b48000 R15: ffff8880b853b300 [ 660.462223][T10873] FS: 00007fdcb81886c0(0000) GS:ffff888124340000(0000) knlGS:0000000000000000 [ 660.471135][T10873] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 660.477701][T10873] CR2: 0000001b338dcff8 CR3: 00000000ab7c0000 CR4: 00000000003526f0 [ 660.485653][T10873] Call Trace: [ 660.488917][T10873] [ 660.491826][T10873] ? pick_task_fair+0x85/0x350 [ 660.496575][T10873] __schedule+0x1b7d/0x6120 [ 660.501084][T10873] ? find_held_lock+0x2b/0x80 [ 660.505764][T10873] ? __pfx___schedule+0x10/0x10 [ 660.510602][T10873] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 660.516923][T10873] ? preempt_schedule_thunk+0x16/0x30 [ 660.522315][T10873] preempt_schedule_common+0x42/0xc0 [ 660.527588][T10873] preempt_schedule_thunk+0x16/0x30 [ 660.532777][T10873] _raw_spin_unlock+0x3e/0x50 [ 660.537447][T10873] finish_fault+0x942/0x15e0 [ 660.542051][T10873] do_fault+0xae7/0x18e0 [ 660.546303][T10873] __handle_mm_fault+0x1815/0x2b60 [ 660.551405][T10873] ? reacquire_held_locks+0xce/0x1e0 [ 660.556684][T10873] ? __pfx___handle_mm_fault+0x10/0x10 [ 660.562135][T10873] ? lock_vma_under_rcu+0x17c/0x590 [ 660.567334][T10873] handle_mm_fault+0x36d/0xa20 [ 660.572086][T10873] do_user_addr_fault+0x5a3/0x12f0 [ 660.577180][T10873] exc_page_fault+0x6f/0xd0 [ 660.581686][T10873] asm_exc_page_fault+0x26/0x30 [ 660.586536][T10873] RIP: 0033:0x18dc000 [ 660.590524][T10873] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 660.610117][T10873] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 660.616167][T10873] RAX: 0000000000000000 RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 660.624126][T10873] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 660.632085][T10873] RBP: 00007fdcb7432c91 R08: 0000000000000002 R09: 0000000000000000 [ 660.640037][T10873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 660.647991][T10873] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 660.655951][T10873] [ 660.658962][T10873] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 660.666224][T10873] CPU: 0 UID: 0 PID: 10873 Comm: syz.2.964 Tainted: G L syzkaller #0 PREEMPT(full) [ 660.677053][T10873] Tainted: [L]=SOFTLOCKUP [ 660.681361][T10873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 660.691397][T10873] Call Trace: [ 660.694676][T10873] [ 660.697607][T10873] dump_stack_lvl+0x100/0x190 [ 660.702280][T10873] vpanic+0x552/0x970 [ 660.706251][T10873] ? __pfx_vpanic+0x10/0x10 [ 660.710738][T10873] ? lock_release+0x263/0x320 [ 660.715419][T10873] panic+0xd1/0xe0 [ 660.719125][T10873] ? __pfx_panic+0x10/0x10 [ 660.723535][T10873] ? check_panic_on_warn+0x1f/0x90 [ 660.728637][T10873] check_panic_on_warn.cold+0x19/0x34 [ 660.734014][T10873] ? update_rq_clock+0x40a/0xd20 [ 660.738938][T10873] __warn.cold+0x191/0x348 [ 660.743361][T10873] __report_bug+0x296/0x3d0 [ 660.747869][T10873] ? update_rq_clock+0x40a/0xd20 [ 660.752808][T10873] ? __pfx___report_bug+0x10/0x10 [ 660.757818][T10873] ? mark_held_locks+0x40/0x70 [ 660.762576][T10873] ? update_rq_clock+0x40a/0xd20 [ 660.767502][T10873] report_bug+0xb2/0x220 [ 660.771728][T10873] ? update_rq_clock+0x40a/0xd20 [ 660.776652][T10873] handle_bug+0x16a/0x2a0 [ 660.780976][T10873] exc_invalid_op+0x17/0x50 [ 660.785466][T10873] asm_exc_invalid_op+0x1a/0x20 [ 660.790300][T10873] RIP: 0010:update_rq_clock+0x40a/0xd20 [ 660.795858][T10873] Code: ab 48 0b 00 00 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 48 df bb 09 a8 04 0f 84 df fc ff ff 90 0f 0b 90 e9 d6 fc ff ff 90 <0f> 0b 90 e9 92 fc ff ff 4c 8d 83 40 0b 00 00 48 b8 00 00 00 00 00 [ 660.815448][T10873] RSP: 0018:ffffc900047a7928 EFLAGS: 00010046 [ 660.821499][T10873] RAX: 0000000000000000 RBX: ffff8880b853b300 RCX: 0000000000000001 [ 660.829452][T10873] RDX: 0000000000000046 RSI: ffffffff8de5d981 RDI: ffffffff8c1b1e20 [ 660.837406][T10873] RBP: ffffc900047a7ad0 R08: 0000000000000001 R09: 0000000000000001 [ 660.845358][T10873] R10: ffffffff90da0617 R11: 0000000000000000 R12: ffffffff90da39e4 [ 660.853309][T10873] R13: ffff8880b853c140 R14: ffff888033b48000 R15: ffff8880b853b300 [ 660.861271][T10873] ? update_rq_clock+0x9c/0xd20 [ 660.866107][T10873] ? pick_task_fair+0x85/0x350 [ 660.870851][T10873] __schedule+0x1b7d/0x6120 [ 660.875338][T10873] ? find_held_lock+0x2b/0x80 [ 660.879999][T10873] ? __pfx___schedule+0x10/0x10 [ 660.884829][T10873] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 660.891142][T10873] ? preempt_schedule_thunk+0x16/0x30 [ 660.896501][T10873] preempt_schedule_common+0x42/0xc0 [ 660.901768][T10873] preempt_schedule_thunk+0x16/0x30 [ 660.906953][T10873] _raw_spin_unlock+0x3e/0x50 [ 660.911621][T10873] finish_fault+0x942/0x15e0 [ 660.916203][T10873] do_fault+0xae7/0x18e0 [ 660.920432][T10873] __handle_mm_fault+0x1815/0x2b60 [ 660.925532][T10873] ? reacquire_held_locks+0xce/0x1e0 [ 660.930802][T10873] ? __pfx___handle_mm_fault+0x10/0x10 [ 660.936249][T10873] ? lock_vma_under_rcu+0x17c/0x590 [ 660.941437][T10873] handle_mm_fault+0x36d/0xa20 [ 660.946188][T10873] do_user_addr_fault+0x5a3/0x12f0 [ 660.951284][T10873] exc_page_fault+0x6f/0xd0 [ 660.955770][T10873] asm_exc_page_fault+0x26/0x30 [ 660.960604][T10873] RIP: 0033:0x18dc000 [ 660.964568][T10873] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 660.984155][T10873] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 660.990202][T10873] RAX: 0000000000000000 RBX: 00007fdcb7615fa0 RCX: 00007fdcb739c819 [ 660.998155][T10873] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 661.006108][T10873] RBP: 00007fdcb7432c91 R08: 0000000000000002 R09: 0000000000000000 [ 661.014059][T10873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 661.022010][T10873] R13: 00007fdcb7616038 R14: 00007fdcb7615fa0 R15: 00007ffcc27fac18 [ 661.029969][T10873] [ 661.033018][T10873] Kernel Offset: disabled [ 661.037329][T10873] Rebooting in 86400 seconds..