last executing test programs: 4m25.036619091s ago: executing program 0 (id=52): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x9, 0x400008, 0xdf, 0x9b75, 0x2, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r0, 0x8000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) socketpair$auto(0x7b, 0xda5, 0x65, 0x0) 4m24.745904416s ago: executing program 0 (id=54): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/019/001\x00', 0x1c302, 0x0) ioctl$auto_USBDEVFS_DISCARDURB(r0, 0x550b, 0x0) r1 = openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/make-it-fail\x00', 0x101080, 0x0) socket(0x18, 0x3, 0x2) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) read$auto_proc_fault_inject_operations_base(r1, 0x0, 0x0) ioctl$auto_USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)={0xfbc, 0x9, &(0x7f0000000000)="d49f83a3fdf11e5c617a9762c25681a335d175565cf11ae40bc53efbca7bc6599d87c0eb57bed5bd7b64c2c954b9c7c9ade43c34d7c24bc7b11c6e541e09de04c16d6e38f41b142d0dc26b875b3871536a0288b72c27d53c187e103d15c4474e46c71840852929409f83e7e3064a82be282179e8683fef2dba0dc2b0ee43e24e97"}) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/019/001\x00', 0x1c302, 0x0) (async) ioctl$auto_USBDEVFS_DISCARDURB(r0, 0x550b, 0x0) (async) openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/make-it-fail\x00', 0x101080, 0x0) (async) socket(0x18, 0x3, 0x2) (async) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) read$auto_proc_fault_inject_operations_base(r1, 0x0, 0x0) (async) ioctl$auto_USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)={0xfbc, 0x9, &(0x7f0000000000)="d49f83a3fdf11e5c617a9762c25681a335d175565cf11ae40bc53efbca7bc6599d87c0eb57bed5bd7b64c2c954b9c7c9ade43c34d7c24bc7b11c6e541e09de04c16d6e38f41b142d0dc26b875b3871536a0288b72c27d53c187e103d15c4474e46c71840852929409f83e7e3064a82be282179e8683fef2dba0dc2b0ee43e24e97"}) (async) 4m24.36399285s ago: executing program 0 (id=57): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) (async) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) (async) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0) mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000540)={0xfff, &(0x7f0000000180)="f2e37aa851f172bd24308737938225756749a2cd058f981d81224e731c1514b4fd0290f2fb02e666a68c1d72ad5615b16c73b5c0cedf17801dfece4a243f6e3a47ecc1c5db92b3500cefe0e7c269c25cd32701679442d287388dedeedd83d20b9d079d0a971a993bfa4a4499f8631caa1722a7a93bf39c2535ea752a9b05e21efeebdeaa71269153bdd6ba4fac9b230a6653e8cbaf66e11ea7c105"}) (async) rseq$auto(0x0, 0x80000002, 0x8, 0xfd) (async) r1 = socket(0x15, 0x5, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dmmidi2\x00', 0x401, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async) write$auto(0xca, 0x0, 0x2d9) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) unshare$auto(0x40000080) (async) semctl$auto_SETVAL(0x2, 0x5, 0x10, 0x81) (async) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) (async) io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x80002, 0x73) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) (async) ioctl$auto(0x3, 0x40605346, 0x38) (async) mmap$auto(0x0, 0x6, 0x9, 0xebe, r1, 0x4) (async) rt_sigsuspend$auto(0x0, 0x8) sendmsg$auto_NLBL_MGMT_C_REMOVE(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, 0x0, 0x20, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_MGMT_A_DOMAIN={0x11, 0x1, '/dev/snd/seq\x00'}, @NLBL_MGMT_A_VERSION={0x8, 0x3, 0x9}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x7712d0f2ccd2952a}, 0x8004) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) 4m23.89135002s ago: executing program 0 (id=61): openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0) mmap$auto(0x10000, 0x2000000020009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0585605, 0x38) syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/net\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00') r0 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(0xffffffffffffffff, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000002a80)={0x1c, r0, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x4}, @NFSD_A_SERVER_SOCK_ADDR={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="040028bd7000fedbdf250000000006000600050000000802020003000000080004006401000014000c00fe800000000000000000000000000033080008005e00000008000500ac141429"], 0x60}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000040) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x14, r2, 0x70b, 0x70bd24, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4040041}, 0xc840) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x3c, r2, 0x0, 0x70bd2a, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x6}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x1}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0xfffffff4}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x2}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x240040c0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001004866520008000200", @ANYRES32=0x0, @ANYBLOB="b41e100f5b95a362c656ed3fbb222db14878952411f7425b979a6cd8e380000000d0e019e21b91e8cf5838e05c01ffb1f768bb28fc4b7b56262b794a12ba5e4cdf564e9704c7656853f496ede405b152af1ff665585cfde82437a1128a5b0de020b568", @ANYRES32=r5, @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x200400e0) sendmsg$auto_OVS_DP_CMD_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r4, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x1c}}, 0x4044) 4m22.984858945s ago: executing program 0 (id=66): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0xc) sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000000000)={0x18, 0x0, 0x1, 0x70bd29, 0x25dfdbff, {}, [@HWSIM_ATTR_ADDR_TRANSMITTER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000041}, 0x800) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r1, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000040), r0) 4m22.568254935s ago: executing program 0 (id=69): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram8\x00', 0x0, 0x0) r2 = gettid() ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000002c0)={"08e62dc0801ad0ba573ddee800ddb5753231675606ca156a5f78fd70d29747fa", 0x2f, 0x960, 0x79000, 0x3, 0x1, r2}) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptyb5\x00', 0x50080, 0x0) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fedbdf2516000000050004000900000018000180140002006e65746465767369759c56320000fc00f447221628ebfcd0c767d56f901cbe9e471121b194395422fd027920e85035efac409b0e71a8cd5e1457f87a7efc7f6092835174b1bd99d89a85180653b83842015c10a867b61397edd226bead310b8aeb70"], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4044000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) landlock_add_rule$auto_LANDLOCK_RULE_NET_PORT(r0, 0x2, &(0x7f0000000180)="1c319f3905a93acd98e3c0a57dad9283f3ed8e169c9ee06fd285ce5c31f010bc52d36bc041ff032de71f2b960026542d947b2ff72ee6ea23b17fdc46530b366d47e7b3c1b386ea17cb5cc7123b94106b2e9e0810363d578ff31b564039a32ee6097873d22878af73a7f24534354ff5385507b95bc9a9e42cd957b745b95cfe46202d6c95178dbc04cc5b1dd2b764205ad5bf834578c5652eb17021de4be4839efa", 0x80000000) ioctl$auto_IOC_PR_RELEASE(r1, 0x401070ca, &(0x7f0000000240)={0x2, 0x1, 0x5}) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 4m6.732113575s ago: executing program 32 (id=69): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram8\x00', 0x0, 0x0) r2 = gettid() ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000002c0)={"08e62dc0801ad0ba573ddee800ddb5753231675606ca156a5f78fd70d29747fa", 0x2f, 0x960, 0x79000, 0x3, 0x1, r2}) close_range$auto(0x2, 0x8, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptyb5\x00', 0x50080, 0x0) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fedbdf2516000000050004000900000018000180140002006e65746465767369759c56320000fc00f447221628ebfcd0c767d56f901cbe9e471121b194395422fd027920e85035efac409b0e71a8cd5e1457f87a7efc7f6092835174b1bd99d89a85180653b83842015c10a867b61397edd226bead310b8aeb70"], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4044000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) landlock_add_rule$auto_LANDLOCK_RULE_NET_PORT(r0, 0x2, &(0x7f0000000180)="1c319f3905a93acd98e3c0a57dad9283f3ed8e169c9ee06fd285ce5c31f010bc52d36bc041ff032de71f2b960026542d947b2ff72ee6ea23b17fdc46530b366d47e7b3c1b386ea17cb5cc7123b94106b2e9e0810363d578ff31b564039a32ee6097873d22878af73a7f24534354ff5385507b95bc9a9e42cd957b745b95cfe46202d6c95178dbc04cc5b1dd2b764205ad5bf834578c5652eb17021de4be4839efa", 0x80000000) ioctl$auto_IOC_PR_RELEASE(r1, 0x401070ca, &(0x7f0000000240)={0x2, 0x1, 0x5}) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 9.362524982s ago: executing program 1 (id=1028): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000008000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000008000) write$auto_sg_fops_sg(0xffffffffffffffff, &(0x7f0000000040)="01000000000d0000624c492f4aa7d4bbe91b3ddc84d02747403bbca33c95be8fb08baf91e29260d0deefa78dc1e77a5d", 0x30) (async) write$auto_sg_fops_sg(0xffffffffffffffff, &(0x7f0000000040)="01000000000d0000624c492f4aa7d4bbe91b3ddc84d02747403bbca33c95be8fb08baf91e29260d0deefa78dc1e77a5d", 0x30) r0 = socket(0x10, 0x3, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/fs/xfs/stats_clear\x00', 0xc80, 0x0) readv$auto(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000540)="1c7fdf3bd107965a15dd602f9467eaf66b17ffd2183c4a23db93cd6679db443e49090fa31989d657c27b69bd61a1bca8359f948a4474e878226f83e03b81701b88d40f45ba7d380221dc52527e362195f57eca5d095fe318693dea5c42dcdab0ea38eb6bf687e4da8461dc93b87dc9f2353368740ec83ce8b1c8e234434f4e5625eb5cad84b7d8ec19f3a64cdb106ff116659297715e56c694418eca0dc8db1fa405e653e053b49ff966294afb3e040dec76922b08530e668f63", 0x3}, 0x400000000c) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYRES8=r1, @ANYRESDEC, @ANYBLOB="f2979cbb93d9c799667a", @ANYRESHEX, @ANYRESOCT], 0x1ac}}, 0x4004) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYRESDEC=r0], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x4008000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0) (async) landlock_create_ruleset$auto(&(0x7f0000000000)={0xff, 0x2, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r2, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0xa, 0xc) (async) socket(0x10, 0xa, 0xc) socket(0x2c, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) (async) socket(0x2, 0x1, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "0000ffffff3b4000"}, 0x55) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRESDEC=r1, @ANYRES64], 0x1ac}, 0x1, 0x0, 0x0, 0x20000041}, 0x0) r3 = openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000001c0), 0x101001, 0x0) write$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(r3, 0x0, 0x4) (async) write$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(r3, 0x0, 0x4) shmctl$auto_IPC_INFO(0x1ff, 0x3, 0x0) (async) shmctl$auto_IPC_INFO(0x1ff, 0x3, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) timer_create$auto(0x3, 0x0, 0x0) exit$auto(0x2) timer_gettime$auto(0x0, 0x0) (async) timer_gettime$auto(0x0, 0x0) fchdir$auto(0xffffffffffffffff) mkdir$auto(&(0x7f0000000480)='./cgroup\x00', 0x6) 7.293148146s ago: executing program 1 (id=1040): socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) sysfs$auto(0x2, 0x23, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000080)=@isdn={0x22, 0x4, 0x0, 0x3, 0xf4}, 0x6d) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/sunrpc/parameters/pool_mode\x00', 0x181302, 0x0) sendfile$auto(r1, r1, 0x0, 0x43) r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r2, 0x0, 0x3) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r3 = open(&(0x7f0000000080)='./file0\x00', 0x662c2, 0xe1d2b27bdc14aa0c) fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r3, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45) r4 = prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) ioctl$auto(r4, 0x541b, 0xffffffffffffffff) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) shutdown$auto(0x200000003, 0x2) 6.270809226s ago: executing program 1 (id=1044): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000300), r0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) msgctl$auto_IPC_INFO(0x3, 0x3, &(0x7f0000000180)={{0x80000001, 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x7fff, 0x2}, 0x0, 0x0, 0x1, 0x1000, 0x94, 0x8, 0x2, 0x31, 0x100, 0x3, @inferred, @inferred=0xffffffffffffffff}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) prctl$auto_PR_SCHED_CORE_GET(0x476, 0x0, 0x0, 0x5, 0x7) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4021, 0x1, 0x8e051, r3, 0x4000) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_clone(0x4000000, 0x0, 0x25, 0x0, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) rename$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0\x00') madvise$auto(0x0, 0xff7fffffffff0001, 0x15) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYRES64=r4, @ANYRES16=r3, @ANYBLOB="0f0026bd7000fcdbdf99077619fa5955dab6449d107af50c7af440887c595678947ecf4e8ad4682623a500000000f5e256ded6"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x400001) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='U'], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0) 4.155703912s ago: executing program 1 (id=1052): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0) ioctl$auto(r1, 0x5646, r1) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x42, 0x0) mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, &(0x7f0000000540)={0xfff, &(0x7f0000000180)="f2e37aa851f172bd24308737938225756749a2cd058f981d81224e731c1514b4fd0290f2fb02e666a68c1d72ad5615b16c73b5c0cedf17801dfece4a243f6e3a47ecc1c5db92b3500cefe0e7c269c25cd32701679442d287388dedeedd83d20b9d079d0a971a993bfa4a4499f8631caa1722a7a93bf39c2535ea752a9b05e21efeebdeaa71269153bdd6ba4fac9b230a6653e8cbaf66e11ea7c105"}) rseq$auto(0x0, 0x80000002, 0x8, 0xfd) socket(0x15, 0x5, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0xca, 0x0, 0x2d9) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) semctl$auto_SETVAL(0x2, 0x5, 0x10, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x112) rt_sigsuspend$auto(0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000000)={0x2000, 0x4, 0x105}) ioctl$auto(0x3, 0x80004509, 0x10000000000402) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x50a81, 0x0) 3.834660157s ago: executing program 3 (id=1054): r0 = socket(0x10, 0x2, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/bus/usb/drivers/cdc_mbim/uevent\x00', 0xdf802, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) pwritev$auto(r2, &(0x7f00000001c0)={&(0x7f0000000300)="ad808e1a862146420e5c9f75a06206c78ca1954f9249efdcb7a7747962cf88c98aaf29063336c097333ee3028eef094f62f2ed"}, 0x2000000003, 0xe, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0x200007, 0x19) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103001, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x8001, 0x0) ioctl$auto_UI_SET_RELBIT(r3, 0x40045566, &(0x7f0000000040)=0x7fffffff) sendmsg$auto_IPVS_CMD_SET_DEST(r0, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x800) r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00 \x00'/21, 0x100000002, 0x100000001) close_range$auto(0x0, 0xfffffffffffff000, 0x9) mq_open$auto(&(0x7f0000000440)='\x80\v&\x91\xbeN\xdc\xf4\xf1\x84\xceP\x7f\x02\x12\xd5\x06\x80\xa5%D\x94c\xb9\xdc\xed:\xce\xfc\xf4\xb3\xd4\f\x9235\xc94\xbe\x99k\xdb\x1e\x88\xd6\xa6Kv\xe1\xebJ\xff\x1472\x9e`\xc7\x84\x05\x00\x00\x00\x00\x00\x00\xe3y\xcc\x7f\xa1\xa2>Q\xfe\\\a\"\x1a\x8e]\x02\x00\x11<\x85\x01Y\xd9\xdcD\x9a\x1c>M\xd2\xbb\x85\xc8\xd5\x00\xcc\x9b0\xab\x90\xe4\xc6`\xa1\xd8\x8d)I|\x92:\xf5c\x0e\xfa\xc88\xe1\xc2 \x840\xbdK\xe1\xd1\xd9\x9a\xbe\xb6\x9c\x88\x8a\xb2:\n\xd6\x01\x009\x06Sa\xd9\xa2\x99\xd4\xe1\xf1G\xd5\xc0\xdf*7\n\x82\xa4\xc4T\xfe\x98\xdc4\xdb8A\xbc\x17\xffg1\x13*=\xde\xf3Px*gG\xff\bg\x9d\x93\xbf\x8f\x9dt4\x1f3\x06\x99', 0x7e, 0x10, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x8203f, 0x0) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x1cb}, 0x3, 0x0, 0x2000000080000000, 0x7}, 0x80010009}, 0x7, 0x200, 0x0) 3.815146148s ago: executing program 2 (id=1055): r0 = socket(0x6, 0x3, 0x4) close_range$auto(0x2, 0x8, 0x0) r1 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) unshare$auto(0x20000) ioctl$auto_FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x401) execveat$auto(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000) socketcall$auto(0x8000, 0x0) mmap$auto(0x0, 0x400005, 0x2, 0x9b76, 0xfffffffffffffffe, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x47, 0x0) r2 = fsopen$auto(0x0, 0x1) clock_settime$auto(0x0, 0x0) fsconfig$auto(r2, 0x6, 0x0, 0x0, 0x0) fsmount$auto(0x4, 0x0, 0x11) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80480, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) ioctl$auto_PPPIOCSMAXCID(r3, 0x40047451, 0x0) mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x20000008000) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002bbd7000ffdbdf25050000000800050003e200000c00018008000308"], 0x28}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x5, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf250300000004000800040003374b0008"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0xcc380, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) 3.468370992s ago: executing program 4 (id=1057): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="010025bd7000fbdbdf0002"], 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x3f, &(0x7f0000000380)={&(0x7f0000001040), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xda5c}, 0x80000000}, 0x7, 0x0) syz_clone(0x1800, &(0x7f0000000000)="9ef017faf840ab3cf46864dc2b077f450bc001b1eaf7816ec526b715dcc95c81f2a6c5c216891d7e4bcd751a2030309d7055a32c18a77dc4cf4c326076ae36a1c73bc82501a9b47be115b35141d89167600d76e913c9", 0x56, 0x0, 0x0, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x24008895}, 0x20000800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='l\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.299923841s ago: executing program 2 (id=1058): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) process_vm_readv$auto(0x0, 0x0, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) waitid$auto_P_PID(0x1, 0xffffffffffffffff, 0x0, 0x6, 0x0) socket(0x2c, 0x3, 0x2) futex$auto(&(0x7f00000003c0)=0x58, 0x5, 0x3, 0x0, &(0x7f0000000440)=0x2, 0x2000005) syz_genetlink_get_family_id$auto_ovs_datapath(0x0, 0xffffffffffffffff) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r1, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x2, 0x801, 0x100) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x6, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x3, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) 3.145226157s ago: executing program 4 (id=1059): socket(0x25, 0x1, 0x3) setsockopt$auto(0x4, 0x2000000000000116, 0x80, 0xfffffffffffffffd, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x80000000008000) close_range$auto(0x2, 0xa, 0x0) socket(0x80000000000000a, 0x2, 0x0) r0 = socket(0x2, 0x5, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r0, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x400, 0x0) madvise$auto(0x0, 0xfffffffffffeffff, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) r3 = openat$auto_ima_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) read$auto_ubifs_dir_operations_ubifs(r1, &(0x7f0000000340), 0x0) ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000240)={"f359d1cd3da4bd7ef1cb92713e94a00fc85f3ae1da7c395b0d11dca91a1ff89a", 0x1c23, 0x10001, 0x2, 0xe292, 0xf55, 0x0}) fcntl$auto(r3, 0x2, r4) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) madvise$auto(0x0, 0x200007, 0x8) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.net/notify_on_release\x00', 0x101042, 0x0) write$auto(r5, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) fadvise64$auto_POSIX_FADV_NORMAL(r1, 0x5, 0xd, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x2004c802) recvfrom$auto(r1, &(0x7f00000002c0)="efac461f7d024d02277ab0065dfd3e77e70ce4b41d1d06d4e721817c396ee5", 0x401, 0x0, &(0x7f0000000300)=@ethernet={0x1, @local}, &(0x7f0000000380)=0x80000001) 2.262481591s ago: executing program 2 (id=1060): r0 = socket(0x3, 0x80000, 0x6) (async) r1 = bpf$auto(0x0, 0x0, 0xa3) (async) mmap$auto(0x0, 0xe97e, 0x40000000df, 0xeb1, 0x401, 0x8000) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) (async) setuid$auto(0x800000000008) write$auto(r2, &(0x7f00000001c0)='9\xff\x15\xba\xa17=(q\x81\xff\xff\v\xb5^\xa1/\xb3\x8b\xf0[1A]\x92\xc0\xa6\xa5\x18KO}B0h\x99*S-0\x98\x81\xf3\x85\a\x86\xfc\xaf\xf1L\xb89\xc0H<+Dy\x886f\x15\x1ebY+>\xd2\xd7\xae \xe9\x03\x17;f\"\xbdU\x7f\x17&\x02\xee{y\xe8\xaf\x98\x86\xca*\x10\xd7\x18jI \xca\xd0\x95\xce\x12\x9a\x00\xdew\x8d \vt\xa2\xa9\xa7\a45\xb5G\xdb\x9b\x9dL|\x97r\xa4\x94\x02\xd9P\xd4[G\xe2S\xaa\x17\xa4\a\xce\x06\x1f\xa7=E?\x17z\xa1\\RRX\x0e\xfa:', 0xa) r3 = getsockopt$auto(0x3, 0x200000000001, 0x7, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$auto_BLKTRACESETUP32(r1, 0xc0401273, &(0x7f0000000100)={"190ea5b88a066eff6eb63a75039011b2a8a459549234471c16c035729ddfc58d", 0x5, 0xed, 0x5, 0x9, 0x6, 0x0}) sendmsg$auto_TIPC_NL_NODE_GET(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_NAME_TABLE={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0x13c, 0x0, 0x0, @pid=r4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8080}, 0x10) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) r5 = socket(0x1d, 0x2, 0x6) getsockopt$auto(r5, 0x6a, 0x5, 0x0, 0x0) (async) socket(0x10, 0x2, 0x15) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120079ed7afb0577d813a9ef9b57e0101b277c8b93c7599a3ef33fec310e7a429d2561acca140020c065506d65c5f037f5a4a21739a260fbf4dc9e15fa7e40def81cb2fcfa92ed70344e299ddcf91f2bdf16ace9757d3b805621798d324878d60972c54f0d5f33c8562d578df52a2ccfe6e62fb4d67403583c0c2a82bd10ab23fa7b6bc899abfd5085bc049c"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) mmap$auto_mtd_fops_mtdchar(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x1000002, 0x4000010, r3, 0x24de) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) (async) r6 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/pagemap\x00', 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) (async) mmap$auto(0x0, 0x28009, 0x4000000000df, 0xeb2, 0x401, 0x8000) (async) r7 = io_uring_setup$auto(0x1, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xa) (async) close_range$auto(0x2, 0x8, 0x0) (async) setsockopt$auto(r7, 0x1, 0x4c, 0x0, 0x9) (async) readv$auto(r6, &(0x7f0000000400)={0x0, 0x40}, 0x6) 2.136823725s ago: executing program 2 (id=1061): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/amidi2\x00', 0x0, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) (async) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) mmap$auto(0x2000000000000, 0x400000200006, 0x2, 0x40eb1, r1, 0x300000000000) (async) mmap$auto(0x2000000000000, 0x400000200006, 0x2, 0x40eb1, r1, 0x300000000000) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x9, 0x0) (async) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x9, 0x0) linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400) mmap$auto(0x0, 0x20006, 0x4000000000e1, 0xeb1, r0, 0x10008000) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) read$auto(r3, 0x0, 0x39b8) (async) read$auto(r3, 0x0, 0x39b8) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x543) write$auto(r0, &(0x7f0000000300)='/dev/audio1\x00', 0x2) mmap$auto(0x0, 0x4000000000fb1, 0x1, 0x9b7e, 0x2, 0x8000) socket(0xa, 0x3, 0x3b) (async) r5 = socket(0xa, 0x3, 0x3b) getsockopt$auto(r5, 0x29, 0x3, 0x0, 0x0) (async) getsockopt$auto(r5, 0x29, 0x3, 0x0, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) (async) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) mount$auto(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) (async) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) (async) r6 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0x5b250dab, 0x4000000000df, 0x40000000000eb1, 0x401, 0x7ffe) close_range$auto(0x2, 0x8, 0x8) ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000240)={0x8, &(0x7f0000000200)={0x967, 0x9, 0x1, @inferred=r6}}) r7 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/id\x00', 0xa2000, 0x0) read$auto_ftrace_event_id_fops_trace_events(r7, 0x0, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48080}, 0x40004) ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f0000000640)={{r0, &(0x7f00000006c0)="d16132351a9067fedc8e2e59b298d940e5970446f5c5c69b35b992d2beb5fb5d52d6b8444753e911a568df05ac9e2f792d19f2e178200b9a5fcb2c6ba0f04efc446c84f577960a2d8fc63800f158081b1464d919dd0e28d87008313aea5a3297ce16d708c072f8602c4864df8e29de7681345156b368bf9170f42ba2c1e83bd2e29d06a7ff0db4796db68ce291dd356524c81c4b4424c620fb61ed446cfc9b9565f31fde44259bf7bcadae6389e0ea68", 0x7, &(0x7f0000000180)="66bc165ea0c91aef1fe9ac54ef9aa616cd93377e7bb7c9cdc7ce9cd1e0e357e308ddfd04b7ffc84bcae818915999b7a74e20c8ee91315ed142", 0x9, &(0x7f0000000440)="3272dbc2dbc4baa0511843d06a631ac925fc74dd7052c7ded203f28287166aab8a9d0d4eb124d2631393f7cbfa7912911a18706f986fb25d1e1e75c9788d959fa3ccc63e1d4f59435076bd0ae32fbf51c5de12a6045aa91eb25d9b23bfee41e00a9a412759dd443005adbb73cd5172bff371cf3d482f97e98d1973b2c1a46701cacdf92c200acfa334b108890f9af9c66a57346076da53ada021f98a2f14fe00b033588b03455fdb2de7d4a58ec98677b75bcb91f177ab85d08590", &(0x7f0000000380)=0x5}, {[0x200, 0x2, 0x5]}, 0xf53, 0x5, &(0x7f0000000540)="ca7352583c44c3bbf116afe07b190540737ffe7d5f75bb45d16c9a854a7b2c7b985298e8d162f6178d79e84a12ea5a8b032ee06a3c0cff53286b1d925e1346bd46988e1c0e40e78692111c70bfafe5b8db8a77253b11f29c958eb3e166b081276292a9465b3804662e89bb64c28cd76a9d16bedac1e013ad5d85d845860df456478802f09cd5e4da3665c602cc26019e2d6051b661ce2fb3730747be2e454da1e7df5d69a518c3f370314b3d5879d35dba0d1480a9bc948877b0e9f7d827c092f1f282240fd257131a9613db8fdf8d0b24dd854573312dca6a5565bc30492e8a46edd4fd5b89cad8ef556a6008404b37cff16816d405a581627554ffe9f554"}) io_uring_setup$auto(0x6, 0x0) (async) io_uring_setup$auto(0x6, 0x0) 1.980608457s ago: executing program 3 (id=1062): r0 = socket(0x10, 0x2, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2242, 0x0) sendfile$auto(r1, r1, 0x0, 0x200) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/pci/00/02.0\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x5) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) ioctl$auto(r3, 0x5608, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xc, 0x9, 0x2, 0xfffffffffffffffd, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x409, 0x1, 0x4, 0x9, 0x2, 0x4000000000000d]}, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fe02, 0x0) 1.29342123s ago: executing program 3 (id=1063): rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0xf5, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_int=0x81, 0x1}}}) r0 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r0, 0x0, 0x2, 0x100) openat$auto_proc_mountstats_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7) io_uring_register$auto(0x2, 0x13, &(0x7f00000001c0), 0x2) fsetxattr$auto(0xffffffffffffffff, &(0x7f0000000200)='*,{:}{{*\x00', 0x0, 0x100, 0x8) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0xffff) waitid$auto_P_ALL(0x0, 0x6, 0x0, 0x9, &(0x7f0000000480)={{0x9, 0x8}, {0xf, 0x7}, 0x100, 0x5, 0x3, 0xfffffffffffffffc, 0x8, 0x24000000000000, 0x800000401, 0x6, 0x8, 0x6, 0x7fff, 0x10000, 0x7, 0x3}) statmount$auto(0x0, &(0x7f0000000180)={0x6, 0x3, 0x7, 0x7c9, 0x24, 0x8, 0x1ffe0, 0x7, 0x3e28, 0x8020000009, 0x9, 0x7ff, 0x1, 0xffffffffffffffff, 0xd, 0x9, 0x8000, 0x7fffffff, 0x80, 0x3, 0xb5d, 0xa, 0x22000, 0x800202, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x10000000, 0x0, [0x8000000000000000, 0x101, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff7fffffffffffe, 0xffffffffffffffff, 0x6, 0xfffffffffffffff5, 0x0, 0x0, 0x2, 0x20000000000002, 0x8000000000000000, 0x10, 0x0, 0x8, 0x10000, 0xfffffffffffffffe, 0x4, 0x40090, 0x6, 0xbdcc, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20000008}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x20000044}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x5cd}, 0x7, 0x4008) 1.083100924s ago: executing program 3 (id=1064): r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b58", 0xfdef) mmap$auto(0x0, 0x20009, 0x4000000800df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b6a, 0x1) 812.369417ms ago: executing program 2 (id=1065): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x1, 0x84) clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x602, 0x8, 0xb, 0x0, 0x7, 0xb, 0x1, {0x3ff, 0x7}, 0xfffffffffffffffa, 0x200000a5, 0xa, 0x0, 0x0, 0xc3, 0x7, 0x40, 0x5, 0x90, 0xfffffff8}) 771.048742ms ago: executing program 4 (id=1066): shmat$auto(0x200, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x4) shmat$auto(0x8, &(0x7f0000000100)='\'\x00', 0x8b49) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5o\x91p\xe6\x1eRN8\x99\x00\b\xaa\x1c\x00\x00\x00\x00c\x14\xaf\r\x94\x1a\xd3\xd3\x1d\xf8\xbebR\xddL\'\x03\xf1`\x9f5\xf9\xa4\xf8\x15\xdd\xac\x00\x00\x00\x00\x00\x00\"\x01\x0e\xa4\xdf\xdav\x1cC\xff\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\x9d*\xd1\x14^\xbe\xa2\x00\x00\x00\x01\x00\x00\x00\x00\x00\xe8\xff\x00\x00\x00\x00\x00', 0xfdef, 0x500000000000) shmat$auto(0x0, &(0x7f0000000080)='*)/-\x00', 0x1) shmat$auto(0x200, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x4) (async) shmat$auto(0x8, &(0x7f0000000100)='\'\x00', 0x8b49) (async) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5o\x91p\xe6\x1eRN8\x99\x00\b\xaa\x1c\x00\x00\x00\x00c\x14\xaf\r\x94\x1a\xd3\xd3\x1d\xf8\xbebR\xddL\'\x03\xf1`\x9f5\xf9\xa4\xf8\x15\xdd\xac\x00\x00\x00\x00\x00\x00\"\x01\x0e\xa4\xdf\xdav\x1cC\xff\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\x9d*\xd1\x14^\xbe\xa2\x00\x00\x00\x01\x00\x00\x00\x00\x00\xe8\xff\x00\x00\x00\x00\x00', 0xfdef, 0x500000000000) (async) shmat$auto(0x0, &(0x7f0000000080)='*)/-\x00', 0x1) (async) 678.45917ms ago: executing program 2 (id=1067): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0) mmap$auto(0x8000000000005, 0x4, 0x10000000010df, 0xeb2, 0x401, 0x8008000) ioctl$auto(0x3, 0x81484d11, 0x38) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mkdir$auto(&(0x7f00000001c0)='./file0\x00', 0x0) rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='./cgroup\x00') open(&(0x7f0000000180)='.\x00', 0x115602, 0x60c) unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, r1, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r2 = fsopen$auto(0x0, 0x1) fsconfig$auto(r2, 0x8, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) r5 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/self/uid_map\x00', 0x200000, 0x0) write$auto_proc_uid_map_operations_base(r5, 0x0, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000480)={0x0, 0x30, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="a8000000", @ANYRES16=r4, @ANYBLOB="01002cbd7000fddbdf2502000000810004006e66736600d8efe42d132b72f30c54315aa74a5b8103cf2ddf901f8fc81365e252374483326ace7da356b7a16f5ce613bc0ce3aeb87ed3d22b4a27c3ecc90c70c861befe60a7a9414b446427a001f61379e8caf4519e032a5dda1e1174e2d575772b93fc046cd3a674866b80d91473ece248c03d28f9398a63a785998700000008000300850000000800010002000000"], 0xa8}}, 0x22044014) madvise$auto(0x0, 0x200007, 0x19) socket(0x18, 0x2, 0x0) mmap$auto(0xfffffffffffffffc, 0x2020009, 0x10000000000000, 0x11, 0xfffffffffffffffa, 0x8000) 657.802529ms ago: executing program 3 (id=1068): sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000080)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000004}, 0x24000802) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7fffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x0, 0x0) getpid() r1 = socket(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/sockcreate\x00', 0x101102, 0x0) write$auto_proc_pid_attr_operations_base(r2, 0x0, 0x0) r3 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000440), 0x608a80, 0x0) write$auto(r3, 0x0, 0x2) r4 = syz_genetlink_get_family_id$auto_nl802154(0x0, r1) sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r0, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x24, r4, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0x6}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x5}]}, 0x24}}, 0x4000) r5 = socket(0xa, 0x2, 0x88) setsockopt$auto(r5, 0x29, 0x2, 0x0, 0x5) r6 = seccomp$auto(0x1, 0x9, &(0x7f0000000140)="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") ioctl$auto_TUNATTACHFILTER(r6, 0x401054d5, &(0x7f0000000b40)={0x4, &(0x7f0000000900)={0x0, 0x1, 0x5, @inferred=r0}}) mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0) sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r5, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, r4, 0x8, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_ENABLED={0x5, 0x29, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040000}, 0x0) r7 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x88e, 0xb8, 0x100000000, 0x5, 0x1b, 0x93c, 0x1ffdc, 0x7, 0x2000000000000006, 0x3, 0x9, 0x8, 0x2, 0x8001, 0xae, 0x5, 0x922, 0x7, 0x8005, 0x5, 0x3, 0xfffffffe, 0xfffffffc, 0x1fd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, [0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x15a6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x4, 0x0, 0x3, 0xfffffffffffffffb, 0x0, 0x1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000, 0x400, 0x7ffffffffffffffc, 0x0, 0x10, 0x0, 0x0, 0x7]}, 0x8, 0x83) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r7, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0x10000}, 0x80000904}, 0xa, 0x400c) 612.233271ms ago: executing program 4 (id=1069): r0 = openat$auto_gpiolib_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) fstatfs$auto(r0, &(0x7f00000000c0)={0x4, 0x34400000, 0x1, 0x6, 0x10, 0x9, 0x7f, {[0xbc, 0x1]}, 0xf, 0x7, 0x5, [0x1, 0xfffffffffffffffd, 0x63ed, 0x69b]}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x1, 0x0) getsockopt$auto(r2, 0x6, 0x1d, 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) sysfs$auto(0x2, 0x4, 0x0) r3 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0x3, 0x4020aeb2, r3) 549.538949ms ago: executing program 1 (id=1070): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0) mmap$auto(0x10000, 0x2000000020009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) ioctl$auto(0x3, 0xc0585605, 0x38) syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/net\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00') syz_genetlink_get_family_id$auto_nfsd(0x0, r0) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ioam6(0x0, 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYRES16=0x0, @ANYBLOB="040028bd7000fedbdf2500000000060006"], 0x60}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000040) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={0x0}, 0x1, 0x0, 0x0, 0x4040041}, 0xc840) sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x240040c0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00'}) sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x200400e0) sendmsg$auto_OVS_DP_CMD_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x1c}}, 0x4044) 428.893779ms ago: executing program 1 (id=1071): ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={"ca79e07d9d969bc1318989f988acd8ded106641736d85d7a8950d0681db20b8f", 0x400, 0x3, 0x56, 0x9, 0x4, 0xffffffffffffffff}) r1 = waitid$auto_P_ALL(0x0, 0x1, &(0x7f0000000000)={@siginfo_0_0={0x1, 0x81, 0x9, @_kill={r0, 0xffffffffffffffff}}}, 0xfffe, &(0x7f0000000080)={{0xff, 0x80000000}, {0xfffffffffffffff9, 0x8}, 0x2, 0x3, 0x5, 0x24e, 0xccb, 0x3, 0x3, 0x962, 0x8, 0x0, 0xfffffffffffffff8, 0xa, 0x3, 0xe0}) getpgrp(r1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x102020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) getdents64$auto(0xffffffffffffffff, &(0x7f0000000ac0)={0x5, 0x2, 0x5, 0x10, "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"}, 0x1) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) unshare$auto(0x40000080) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000005440)='/dev/snd/controlC1\x00', 0x2000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, 0xfffffffffffffffd) ioctl$auto(0xffffffffffffffff, 0x5429, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/irq.pressure\x00', 0x583142, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0xc1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r3, 0x0) r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x364f9cefc8a0a83, 0x0) ioctl$auto_tracing_buffers_fops_trace(r4, 0x5220, 0x0) 333.606775ms ago: executing program 4 (id=1072): r0 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000004c0), 0xffffffffffffffff) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) (async) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) mincore$auto(0x1000, 0x8001, 0x0) (async) fcntl$auto(0x8000000000000001, 0x26, 0x8) fcntl$auto(0x8000000000000001, 0x5, 0x8) (async) sendmsg$auto_TIPC_NL_LINK_GET(r1, &(0x7f0000003e80)={0x0, 0x0, &(0x7f0000003e40)={&(0x7f0000003300)={0x34, r0, 0x1, 0x70bd27, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x20, 0x4, 0x0, 0x1, [@nested={0x1c, 0x1, 0x0, 0x1, [@typed={0x15, 0x9c, 0x0, 0x0, @str='/dmv/c\x04u\x00\x00\x00\x00\x00\x00\x00\x00\x00'}]}]}]}, 0x34}}, 0x8040) 230.618913ms ago: executing program 3 (id=1073): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB='\v\x00\x00\x00\x00\x00'], 0x1c}, 0x1, 0x0, 0x0, 0x40840}, 0x4000840) mmap$auto(0x0, 0x2, 0x200000000005, 0xebe, r0, 0x9) epoll_create$auto(0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0xfffffffffffffffe) r2 = fanotify_init$auto(0x7, 0x1) getpid() r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(r2, 0x2) mmap$auto(0x0, 0x1, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe) r4 = io_uring_setup$auto(0x59, 0x0) madvise$auto(0x0, 0xffffffffffff0041, 0x215) r5 = socket(0xa, 0x5, 0x84) getsockopt$auto(r5, 0x84, 0x9, 0x0, 0x0) mmap$auto(0x0, 0x9, 0x80000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x7fffffff, 0x202000a, 0xffffffff, 0xdc, r4, 0x2) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) syslog$auto(0x3, 0x0, 0x208) syz_open_procfs$namespace(0x0, 0x0) openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x400280, 0x0) open(0x0, 0x0, 0x408) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) socket(0x2, 0x80002, 0x73) connect$auto(0xffffffffffffffff, 0x0, 0x51) socket$nl_generic(0x10, 0x3, 0x10) 0s ago: executing program 4 (id=1074): socket(0x22, 0x1, 0xe) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x25}}, 0x54) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x8, 0x4000000000df, 0x7ff, 0x401, 0x8000) capget$auto(0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0xe, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) ioctl$auto_EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xd, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x6, 0x5, 0x3, 0x5, 0x7, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffd, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x5, 0x7ff, 0x0, 0x0, 0x800000000]}, 0x2, 0x81) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) kernel console output (not intermixed with test programs): 2] netlink: 28 bytes leftover after parsing attributes in process `syz.2.330'. [ 184.375266][ T7769] IPv6: Can't replace route, no match found [ 185.933652][ T7806] bond0: Unable to set down delay as MII monitoring is disabled [ 186.852655][ T7816] netlink: 28 bytes leftover after parsing attributes in process `syz.1.343'. [ 187.921262][ T7822] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 188.261784][ T7818] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 188.275012][ T7818] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 188.285277][ T7818] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 188.301137][ T7818] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 188.661224][ T7845] .^: entered promiscuous mode [ 188.813799][ T7849] netlink: 28 bytes leftover after parsing attributes in process `syz.1.354'. [ 189.168800][ T5144] Bluetooth: hci1: command 0x0c1a tx timeout [ 190.106750][ T7890] netlink: 28 bytes leftover after parsing attributes in process `syz.1.367'. [ 190.338543][ T5144] Bluetooth: hci4: command 0x0c1a tx timeout [ 190.344626][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 190.348434][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 191.543922][ T7916] netlink: 28 bytes leftover after parsing attributes in process `syz.2.372'. [ 192.601983][ T7940] FAULT_INJECTION: forcing a failure. [ 192.601983][ T7940] name failslab, interval 1, probability 0, space 0, times 0 [ 192.674900][ T7940] CPU: 0 UID: 0 PID: 7940 Comm: syz.4.377 Tainted: G L syzkaller #0 PREEMPT(full) [ 192.674948][ T7940] Tainted: [L]=SOFTLOCKUP [ 192.674958][ T7940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 192.674978][ T7940] Call Trace: [ 192.674990][ T7940] [ 192.675001][ T7940] dump_stack_lvl+0x100/0x190 [ 192.675049][ T7940] should_fail_ex.cold+0x5/0xa [ 192.675083][ T7940] should_failslab+0xc2/0x120 [ 192.675113][ T7940] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 192.675158][ T7940] ? __d_alloc+0x34/0xa80 [ 192.675207][ T7940] __d_alloc+0x34/0xa80 [ 192.675244][ T7940] d_alloc_pseudo+0x1c/0xc0 [ 192.675285][ T7940] alloc_file_pseudo_noaccount+0xcf/0x230 [ 192.675328][ T7940] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 192.675372][ T7940] ? iput+0x3a/0x40 [ 192.675410][ T7940] bdev_file_open_by_dev+0x13a/0x210 [ 192.675452][ T7940] blkdev_bszset+0x170/0x240 [ 192.675490][ T7940] ? __pfx_blkdev_bszset+0x10/0x10 [ 192.675527][ T7940] ? find_held_lock+0x2b/0x80 [ 192.675553][ T7940] ? __fget_files+0x215/0x3d0 [ 192.675578][ T7940] ? hook_file_ioctl_common+0x146/0x410 [ 192.675619][ T7940] blkdev_ioctl+0x513/0x6f0 [ 192.675661][ T7940] ? __pfx_blkdev_ioctl+0x10/0x10 [ 192.675708][ T7940] ? __pfx_blkdev_ioctl+0x10/0x10 [ 192.675751][ T7940] __x64_sys_ioctl+0x18e/0x210 [ 192.675796][ T7940] do_syscall_64+0x106/0xf80 [ 192.675823][ T7940] ? clear_bhb_loop+0x40/0x90 [ 192.675858][ T7940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.675887][ T7940] RIP: 0033:0x7f148a59c819 [ 192.675915][ T7940] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 192.675943][ T7940] RSP: 002b:00007f148b4f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 192.675970][ T7940] RAX: ffffffffffffffda RBX: 00007f148a816090 RCX: 00007f148a59c819 [ 192.675989][ T7940] RDX: 00002000000000c0 RSI: 0000000040081271 RDI: 0000000000000004 [ 192.676007][ T7940] RBP: 00007f148a632c91 R08: 0000000000000000 R09: 0000000000000000 [ 192.676024][ T7940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.676040][ T7940] R13: 00007f148a816128 R14: 00007f148a816090 R15: 00007ffd8abc3128 [ 192.676078][ T7940] [ 192.937885][ T7930] GUP no longer grows the stack in syz.1.375 (7930): 14000-401000 (4000) [ 192.946817][ T7930] CPU: 1 UID: 0 PID: 7930 Comm: syz.1.375 Tainted: G L syzkaller #0 PREEMPT(full) [ 192.946874][ T7930] Tainted: [L]=SOFTLOCKUP [ 192.946884][ T7930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 192.946900][ T7930] Call Trace: [ 192.946910][ T7930] [ 192.946920][ T7930] dump_stack_lvl+0x100/0x190 [ 192.946972][ T7930] gup_vma_lookup.cold+0x83/0x96 [ 192.947016][ T7930] __get_user_pages+0x241/0x34d0 [ 192.947062][ T7930] ? down_read_killable+0x30e/0x4c0 [ 192.947097][ T7930] ? __lock_acquire+0x4a5/0x2630 [ 192.947136][ T7930] ? __pfx___get_user_pages+0x10/0x10 [ 192.947183][ T7930] __gup_longterm_locked+0x87d/0x16f0 [ 192.947230][ T7930] ? __pfx___gup_longterm_locked+0x10/0x10 [ 192.947268][ T7930] ? try_get_folio+0x262/0x750 [ 192.947298][ T7930] ? find_held_lock+0x2b/0x80 [ 192.947327][ T7930] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 192.947369][ T7930] gup_fast_fallback+0x18c6/0x2460 [ 192.947432][ T7930] ? __pfx_gup_fast_fallback+0x10/0x10 [ 192.947469][ T7930] ? __lock_acquire+0x4a5/0x2630 [ 192.947507][ T7930] ? bio_associate_blkg_from_css+0xe33/0x13f0 [ 192.947550][ T7930] ? bio_associate_blkg+0x10c/0x2a0 [ 192.947592][ T7930] ? pcpu_block_update+0x20b/0x690 [ 192.947637][ T7930] pin_user_pages_fast+0xa7/0xf0 [ 192.947674][ T7930] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 192.947711][ T7930] ? find_held_lock+0x2b/0x80 [ 192.947737][ T7930] ? __debug_object_init+0x2de/0x3d0 [ 192.947768][ T7930] ? __debug_object_init+0x2de/0x3d0 [ 192.947802][ T7930] iov_iter_extract_pages+0xa0d/0x1ef0 [ 192.947861][ T7930] ? __lock_acquire+0x4a5/0x2630 [ 192.947900][ T7930] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 192.947947][ T7930] ? __lock_acquire+0x4a5/0x2630 [ 192.947993][ T7930] iov_iter_extract_bvecs+0x10e/0xf40 [ 192.948041][ T7930] ? find_held_lock+0x2b/0x80 [ 192.948070][ T7930] ? bio_associate_blkg_from_css+0x394/0x13f0 [ 192.948115][ T7930] ? __pfx_iov_iter_extract_bvecs+0x10/0x10 [ 192.948158][ T7930] ? bio_associate_blkg_from_css+0x550/0x13f0 [ 192.948211][ T7930] bio_iov_iter_get_pages+0x26a/0x970 [ 192.948262][ T7930] __blkdev_direct_IO_simple+0x3a7/0x890 [ 192.948311][ T7930] ? __pfx___blkdev_direct_IO_simple+0x10/0x10 [ 192.948392][ T7930] ? ktime_get_coarse_real_ts64_mg+0x249/0x300 [ 192.948431][ T7930] ? ktime_get_coarse_real_ts64_mg+0x1e0/0x300 [ 192.948484][ T7930] blkdev_direct_IO+0xc76/0x1fb0 [ 192.948549][ T7930] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 192.948597][ T7930] ? rcu_is_watching+0x12/0xc0 [ 192.948644][ T7930] ? __mark_inode_dirty+0x55c/0x1790 [ 192.948686][ T7930] ? filemap_check_errors+0xa9/0x150 [ 192.948729][ T7930] blkdev_write_iter+0x703/0xd70 [ 192.948779][ T7930] vfs_write+0x6ac/0x1070 [ 192.948808][ T7930] ? __pfx_blkdev_write_iter+0x10/0x10 [ 192.948862][ T7930] ? __pfx_vfs_write+0x10/0x10 [ 192.948888][ T7930] ? find_held_lock+0x2b/0x80 [ 192.948941][ T7930] ksys_write+0x12a/0x250 [ 192.948968][ T7930] ? __pfx_ksys_write+0x10/0x10 [ 192.949007][ T7930] do_syscall_64+0x106/0xf80 [ 192.949035][ T7930] ? clear_bhb_loop+0x40/0x90 [ 192.949071][ T7930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.949101][ T7930] RIP: 0033:0x7f71fb99c819 [ 192.949125][ T7930] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 192.949154][ T7930] RSP: 002b:00007f71fc7ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 192.949181][ T7930] RAX: ffffffffffffffda RBX: 00007f71fbc15fa0 RCX: 00007f71fb99c819 [ 192.949201][ T7930] RDX: 000000000010007c RSI: 0000000000000000 RDI: 0000000000000004 [ 192.949218][ T7930] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 192.949235][ T7930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.949251][ T7930] R13: 00007f71fbc16038 R14: 00007f71fbc15fa0 R15: 00007ffc62ab7528 [ 192.949290][ T7930] [ 194.345248][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.351864][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.649440][ T8010] FAULT_INJECTION: forcing a failure. [ 195.649440][ T8010] name failslab, interval 1, probability 0, space 0, times 0 [ 195.664028][ T8010] CPU: 1 UID: 0 PID: 8010 Comm: syz.3.390 Tainted: G L syzkaller #0 PREEMPT(full) [ 195.664072][ T8010] Tainted: [L]=SOFTLOCKUP [ 195.664081][ T8010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 195.664096][ T8010] Call Trace: [ 195.664104][ T8010] [ 195.664114][ T8010] dump_stack_lvl+0x100/0x190 [ 195.664161][ T8010] should_fail_ex.cold+0x5/0xa [ 195.664195][ T8010] should_failslab+0xc2/0x120 [ 195.664226][ T8010] __kmalloc_cache_noprof+0x7a/0x6f0 [ 195.664263][ T8010] ? ima_calc_file_hash_tfm+0x236/0x350 [ 195.664296][ T8010] ? sha256_init+0xd/0xc0 [ 195.664334][ T8010] ima_calc_file_hash_tfm+0x236/0x350 [ 195.664367][ T8010] ? __pfx_ima_calc_file_hash_tfm+0x10/0x10 [ 195.664440][ T8010] ? shmem_huge_global_enabled.isra.0+0x6c/0x210 [ 195.664482][ T8010] ? ima_alloc_tfm+0x21a/0x2e0 [ 195.664509][ T8010] ? shmem_getattr+0x394/0x450 [ 195.664553][ T8010] ima_calc_file_hash+0x18c/0x480 [ 195.664588][ T8010] ima_collect_measurement+0x887/0xa40 [ 195.664619][ T8010] ? ima_file_mmap+0x1c4/0x1f0 [ 195.664655][ T8010] ? __pfx_ima_collect_measurement+0x10/0x10 [ 195.664688][ T8010] ? lock_acquire+0x1cf/0x380 [ 195.664750][ T8010] ? do_raw_read_unlock+0x3f/0x70 [ 195.664799][ T8010] ? vfs_getxattr_alloc+0xec/0x350 [ 195.664844][ T8010] ? ima_get_hash_algo+0x22d/0x400 [ 195.664886][ T8010] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 195.664937][ T8010] ? process_measurement+0xdfe/0x2350 [ 195.664963][ T8010] process_measurement+0xdfe/0x2350 [ 195.665001][ T8010] ? kasan_save_stack+0x30/0x50 [ 195.665026][ T8010] ? kasan_save_track+0x14/0x30 [ 195.665051][ T8010] ? __pfx_process_measurement+0x10/0x10 [ 195.665081][ T8010] ? __lock_acquire+0x4a5/0x2630 [ 195.665160][ T8010] ? __pfx_aa_file_perm+0x10/0x10 [ 195.665211][ T8010] ima_file_mmap+0x1c4/0x1f0 [ 195.665241][ T8010] ? __pfx_ima_file_mmap+0x10/0x10 [ 195.665279][ T8010] security_mmap_file+0x278/0x9b0 [ 195.665318][ T8010] do_shmat+0x85e/0x14a0 [ 195.665363][ T8010] ? __pfx_do_shmat+0x10/0x10 [ 195.665402][ T8010] ? __x64_sys_futex+0x34f/0x4d0 [ 195.665437][ T8010] ? __x64_sys_futex+0x358/0x4d0 [ 195.665475][ T8010] __x64_sys_shmat+0xd7/0x170 [ 195.665511][ T8010] ? __pfx___x64_sys_shmat+0x10/0x10 [ 195.665553][ T8010] ? do_syscall_64+0x95/0xf80 [ 195.665582][ T8010] do_syscall_64+0x106/0xf80 [ 195.665608][ T8010] ? clear_bhb_loop+0x40/0x90 [ 195.665642][ T8010] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.665670][ T8010] RIP: 0033:0x7f956439c819 [ 195.665692][ T8010] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 195.665718][ T8010] RSP: 002b:00007f95652fa028 EFLAGS: 00000246 ORIG_RAX: 000000000000001e [ 195.665744][ T8010] RAX: ffffffffffffffda RBX: 00007f9564616180 RCX: 00007f956439c819 [ 195.665762][ T8010] RDX: 00000000fffffffb RSI: 0000200000000000 RDI: 0000000000000000 [ 195.665779][ T8010] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 0000000000000000 [ 195.665795][ T8010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.665811][ T8010] R13: 00007f9564616218 R14: 00007f9564616180 R15: 00007fffde6601b8 [ 195.665855][ T8010] [ 195.666789][ T8003] tipc: Started in network mode [ 195.697312][ T8018] netlink: 146 bytes leftover after parsing attributes in process `syz.2.391'. [ 195.995968][ T8003] tipc: Node identity ffffffff, cluster identity 4711 [ 196.006397][ T8003] tipc: Node number set to 4294967295 [ 196.016223][ T30] audit: type=1800 audit(1775154647.729:4): pid=8010 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.390" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0 [ 196.156673][ T8017] sp0: Synchronizing with TNC [ 196.646483][ T8024] zswap: compressor not available [ 197.740080][ T8048] hub 1-0:1.0: USB hub found [ 197.746592][ T8048] hub 1-0:1.0: 1 port detected [ 198.587048][ T8056] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 199.159441][ T8077] netlink: 8 bytes leftover after parsing attributes in process `syz.2.403'. [ 199.202874][ T8077] openvswitch: HfR: Dropping previously announced user features [ 199.578497][ T8084] FAULT_INJECTION: forcing a failure. [ 199.578497][ T8084] name failslab, interval 1, probability 0, space 0, times 0 [ 199.592234][ T8071] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 199.611622][ T8084] CPU: 0 UID: 0 PID: 8084 Comm: syz.4.405 Tainted: G L syzkaller #0 PREEMPT(full) [ 199.611651][ T8084] Tainted: [L]=SOFTLOCKUP [ 199.611657][ T8084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 199.611665][ T8084] Call Trace: [ 199.611671][ T8084] [ 199.611677][ T8084] dump_stack_lvl+0x100/0x190 [ 199.611706][ T8084] should_fail_ex.cold+0x5/0xa [ 199.611724][ T8084] ? udp_init_sock+0x24e/0x450 [ 199.611744][ T8084] should_failslab+0xc2/0x120 [ 199.611761][ T8084] __kmalloc_noprof+0xe0/0x850 [ 199.611784][ T8084] ? lockdep_init_map_type+0x5c/0x250 [ 199.611808][ T8084] udp_init_sock+0x24e/0x450 [ 199.611827][ T8084] ? __pfx_udp_init_sock+0x10/0x10 [ 199.611847][ T8084] inet_create+0x94c/0x1060 [ 199.611866][ T8084] ? inet_create+0x94/0x1060 [ 199.611886][ T8084] __sock_create+0x339/0x860 [ 199.611908][ T8084] __sys_socket+0x14d/0x260 [ 199.611926][ T8084] ? __pfx___sys_socket+0x10/0x10 [ 199.611950][ T8084] __x64_sys_socket+0x72/0xb0 [ 199.611968][ T8084] ? lockdep_hardirqs_on+0x78/0x100 [ 199.611983][ T8084] do_syscall_64+0x106/0xf80 [ 199.611997][ T8084] ? clear_bhb_loop+0x40/0x90 [ 199.612015][ T8084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.612030][ T8084] RIP: 0033:0x7f148a59c819 [ 199.612044][ T8084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 199.612058][ T8084] RSP: 002b:00007f148b515028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 199.612073][ T8084] RAX: ffffffffffffffda RBX: 00007f148a815fa0 RCX: 00007f148a59c819 [ 199.612082][ T8084] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 199.612090][ T8084] RBP: 00007f148a632c91 R08: 0000000000000000 R09: 0000000000000000 [ 199.612099][ T8084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.612107][ T8084] R13: 00007f148a816038 R14: 00007f148a815fa0 R15: 00007ffd8abc3128 [ 199.612126][ T8084] [ 200.475319][ T8102] netlink: 342 bytes leftover after parsing attributes in process `syz.2.409'. [ 200.789116][ T8104] netlink: 8 bytes leftover after parsing attributes in process `syz.4.410'. [ 200.965838][ T8107] futex_wake_op: syz.2.411 tries to shift op by -2048; fix this program [ 201.237030][ T8111] netlink: 8 bytes leftover after parsing attributes in process `syz.4.413'. [ 201.250813][ T8111] openvswitch: HfR: Dropping previously announced user features [ 202.260257][ T8129] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 202.307072][ T5833] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 203.001228][ T8154] ======================================================= [ 203.001228][ T8154] WARNING: The mand mount option has been deprecated and [ 203.001228][ T8154] and is ignored by this kernel. Remove the mand [ 203.001228][ T8154] option from the mount to silence this warning. [ 203.001228][ T8154] ======================================================= [ 203.325221][ T8157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.424'. [ 203.383091][ T8157] openvswitch: HfR: Dropping previously announced user features [ 203.924627][ T8167] FAULT_INJECTION: forcing a failure. [ 203.924627][ T8167] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 203.938985][ T8167] CPU: 1 UID: 0 PID: 8167 Comm: syz.3.425 Tainted: G L syzkaller #0 PREEMPT(full) [ 203.939033][ T8167] Tainted: [L]=SOFTLOCKUP [ 203.939043][ T8167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 203.939059][ T8167] Call Trace: [ 203.939068][ T8167] [ 203.939079][ T8167] dump_stack_lvl+0x100/0x190 [ 203.939129][ T8167] should_fail_ex.cold+0x5/0xa [ 203.939159][ T8167] ? prepare_alloc_pages+0x16d/0x5f0 [ 203.939198][ T8167] should_fail_alloc_page+0xeb/0x140 [ 203.939234][ T8167] prepare_alloc_pages+0x1f0/0x5f0 [ 203.939277][ T8167] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 203.939334][ T8167] ? __lock_acquire+0x4a5/0x2630 [ 203.939379][ T8167] ? __lock_acquire+0x4a5/0x2630 [ 203.939416][ T8167] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 203.939465][ T8167] ? __lock_acquire+0x4a5/0x2630 [ 203.939520][ T8167] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 203.939552][ T8167] ? policy_nodemask+0xed/0x4f0 [ 203.939588][ T8167] alloc_pages_mpol+0x1fb/0x550 [ 203.939622][ T8167] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 203.939654][ T8167] ? __kernel_text_address+0xd/0x30 [ 203.939696][ T8167] ? unwind_get_return_address+0x59/0xa0 [ 203.939736][ T8167] folio_alloc_mpol_noprof+0x36/0x340 [ 203.939777][ T8167] vma_alloc_folio_noprof+0xed/0x1d0 [ 203.939814][ T8167] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 203.939858][ T8167] ? rcu_read_unlock+0x2d/0xb0 [ 203.939901][ T8167] ? rcu_read_unlock+0x2d/0xb0 [ 203.939945][ T8167] ? __lock_acquire+0x4a5/0x2630 [ 203.939988][ T8167] do_wp_page+0xf28/0x4e90 [ 203.940033][ T8167] ? __pfx_do_wp_page+0x10/0x10 [ 203.940072][ T8167] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 203.940124][ T8167] __handle_mm_fault+0x1ace/0x2b60 [ 203.940171][ T8167] ? mt_find+0x45e/0x8e0 [ 203.940205][ T8167] ? __pfx___handle_mm_fault+0x10/0x10 [ 203.940243][ T8167] ? __pfx_mt_find+0x10/0x10 [ 203.940296][ T8167] ? find_vma+0xbf/0x140 [ 203.940326][ T8167] ? __pfx_find_vma+0x10/0x10 [ 203.940360][ T8167] handle_mm_fault+0x36d/0xa20 [ 203.940411][ T8167] do_user_addr_fault+0x74c/0x12f0 [ 203.940451][ T8167] exc_page_fault+0x6f/0xd0 [ 203.940480][ T8167] asm_exc_page_fault+0x26/0x30 [ 203.940509][ T8167] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 203.940548][ T8167] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f [ 203.940574][ T8167] RSP: 0018:ffffc90004f2f948 EFLAGS: 00050206 [ 203.940597][ T8167] RAX: 0000000000000069 RBX: 0000000000000005 RCX: 0000000000000005 [ 203.940614][ T8167] RDX: 0000000000000001 RSI: ffff88801e3fa035 RDI: 0000200000008180 [ 203.940632][ T8167] RBP: ffff88805967e800 R08: 0000000000000000 R09: ffffed1003c7f407 [ 203.940650][ T8167] R10: ffff88801e3fa039 R11: 0000000000000000 R12: ffff88801e3fa035 [ 203.940668][ T8167] R13: 0000000000000000 R14: 0000200000008180 R15: 0000000000000005 [ 203.940705][ T8167] _copy_to_iter+0x4c5/0x1720 [ 203.940751][ T8167] ? __pfx__copy_to_iter+0x10/0x10 [ 203.940787][ T8167] ? devinfo_show+0x70/0x110 [ 203.940825][ T8167] ? devinfo_next+0x4e/0x70 [ 203.940870][ T8167] ? devinfo_stop+0x9/0x10 [ 203.940906][ T8167] ? traverse.part.0.constprop.0+0x2c5/0x650 [ 203.940967][ T8167] seq_read_iter+0x691/0x1270 [ 203.941019][ T8167] ? __pfx_aa_file_perm+0x10/0x10 [ 203.941071][ T8167] proc_reg_read_iter+0x11b/0x310 [ 203.941117][ T8167] do_iter_readv_writev+0x60d/0x920 [ 203.941166][ T8167] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 203.941221][ T8167] ? rw_verify_area+0xce/0x6d0 [ 203.941267][ T8167] vfs_readv+0x4d3/0x8d0 [ 203.941321][ T8167] ? __pfx_vfs_readv+0x10/0x10 [ 203.941392][ T8167] ? __fget_files+0x21f/0x3d0 [ 203.941432][ T8167] ? do_preadv+0x1ac/0x270 [ 203.941474][ T8167] do_preadv+0x1ac/0x270 [ 203.941520][ T8167] ? __pfx_do_preadv+0x10/0x10 [ 203.941575][ T8167] do_syscall_64+0x106/0xf80 [ 203.941603][ T8167] ? clear_bhb_loop+0x40/0x90 [ 203.941638][ T8167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.941666][ T8167] RIP: 0033:0x7f956439c819 [ 203.941690][ T8167] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 203.941716][ T8167] RSP: 002b:00007f956531b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 203.941742][ T8167] RAX: ffffffffffffffda RBX: 00007f9564616090 RCX: 00007f956439c819 [ 203.941761][ T8167] RDX: 0000000000000026 RSI: 0000200000009180 RDI: 0000000000000008 [ 203.941778][ T8167] RBP: 00007f9564432c91 R08: 0000000000000005 R09: 0000000000000000 [ 203.941796][ T8167] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000000 [ 203.941813][ T8167] R13: 00007f9564616128 R14: 00007f9564616090 R15: 00007fffde6601b8 [ 203.941848][ T8167] [ 204.810622][ T8171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.428'. [ 205.278550][ T8185] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 206.251151][ T8201] netlink: 8 bytes leftover after parsing attributes in process `syz.4.435'. [ 206.286077][ T8201] openvswitch: HfR: Dropping previously announced user features [ 207.150152][ T8215] netlink: 'syz.1.438': attribute type 11 has an invalid length. [ 207.201627][ T8206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.436'. [ 208.932279][ T8223] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 209.751824][ T8265] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 209.761323][ T8265] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 210.810971][ T8277] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers [ 210.927579][ T8282] zswap: compressor not available [ 210.970403][ T8273] capability: warning: `syz.3.447' uses 32-bit capabilities (legacy support in use) [ 211.003216][ T8273] sd 0:0:1:0: PR command failed: 1026 [ 211.046292][ T8273] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 211.178040][ T8273] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 211.329476][ T8293] netlink: 8 bytes leftover after parsing attributes in process `syz.4.451'. [ 211.344296][ T8293] openvswitch: HfR: Dropping previously announced user features [ 212.279355][ T8300] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 212.681799][ T8312] ptrace attach of "./syz-executor exec"[5825] was attempted by ""[8312] [ 212.944837][ T8314] netlink: 28 bytes leftover after parsing attributes in process `syz.1.456'. [ 213.333165][ T8312] can: request_module (can-proto-0) failed. [ 213.751166][ T8337] netlink: Setting conntrack mark requires 'commit' flag. [ 214.178916][ T8337] sd 0:0:1:0: PR command failed: 1026 [ 214.184469][ T8337] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 214.191413][ T8337] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 214.476261][ T8344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.461'. [ 214.486764][ T8344] openvswitch: HfR: Dropping previously announced user features [ 216.407272][ T8406] netlink: 28 bytes leftover after parsing attributes in process `syz.1.467'. [ 216.940434][ T8418] FAULT_INJECTION: forcing a failure. [ 216.940434][ T8418] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 216.955027][ T8418] CPU: 1 UID: 0 PID: 8418 Comm: syz.1.469 Tainted: G L syzkaller #0 PREEMPT(full) [ 216.955053][ T8418] Tainted: [L]=SOFTLOCKUP [ 216.955059][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 216.955068][ T8418] Call Trace: [ 216.955073][ T8418] [ 216.955079][ T8418] dump_stack_lvl+0x100/0x190 [ 216.955107][ T8418] should_fail_ex.cold+0x5/0xa [ 216.955122][ T8418] ? prepare_alloc_pages+0x16d/0x5f0 [ 216.955141][ T8418] should_fail_alloc_page+0xeb/0x140 [ 216.955160][ T8418] prepare_alloc_pages+0x1f0/0x5f0 [ 216.955181][ T8418] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 216.955209][ T8418] ? stack_trace_save+0x8e/0xc0 [ 216.955224][ T8418] ? __pfx_stack_trace_save+0x10/0x10 [ 216.955239][ T8418] ? stack_depot_save_flags+0x27/0x9d0 [ 216.955258][ T8418] ? is_bpf_text_address+0x8a/0x1a0 [ 216.955281][ T8418] ? is_bpf_text_address+0x8a/0x1a0 [ 216.955303][ T8418] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 216.955326][ T8418] ? kasan_save_stack+0x3f/0x50 [ 216.955339][ T8418] ? kasan_save_track+0x14/0x30 [ 216.955352][ T8418] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 216.955375][ T8418] ? alloc_vmap_area+0x186c/0x2bd0 [ 216.955390][ T8418] ? __get_vm_area_node+0x1ca/0x330 [ 216.955405][ T8418] ? __vmalloc_node_range_noprof+0x213/0x1530 [ 216.955423][ T8418] ? __vmalloc_node_noprof+0xad/0xf0 [ 216.955440][ T8418] ? copy_process+0x5ec/0x7a40 [ 216.955456][ T8418] ? kernel_clone+0xfc/0x9a0 [ 216.955471][ T8418] ? __do_sys_clone+0xd9/0x120 [ 216.955487][ T8418] ? do_syscall_64+0x106/0xf80 [ 216.955509][ T8418] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 216.955526][ T8418] ? policy_nodemask+0xed/0x4f0 [ 216.955598][ T8418] alloc_pages_mpol+0x1fb/0x550 [ 216.955616][ T8418] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 216.955639][ T8418] alloc_pages_noprof+0x136/0x390 [ 216.955657][ T8418] get_free_pages_noprof+0x10/0xb0 [ 216.955673][ T8418] __kasan_populate_vmalloc+0xa0/0x210 [ 216.955700][ T8418] alloc_vmap_area+0x95d/0x2bd0 [ 216.955724][ T8418] ? __pfx_alloc_vmap_area+0x10/0x10 [ 216.955745][ T8418] __get_vm_area_node+0x1ca/0x330 [ 216.955766][ T8418] __vmalloc_node_range_noprof+0x213/0x1530 [ 216.955786][ T8418] ? kernel_clone+0xfc/0x9a0 [ 216.955802][ T8418] ? find_held_lock+0x2b/0x80 [ 216.955817][ T8418] ? local_lock_release+0x99/0x130 [ 216.955834][ T8418] ? local_lock_release+0x99/0x130 [ 216.955853][ T8418] ? kernel_clone+0xfc/0x9a0 [ 216.955871][ T8418] ? find_held_lock+0x2b/0x80 [ 216.955884][ T8418] ? rcu_read_unlock+0x17/0x60 [ 216.955900][ T8418] ? rcu_read_unlock+0x17/0x60 [ 216.955916][ T8418] ? obj_cgroup_charge_account+0x46d/0x640 [ 216.955934][ T8418] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 216.955954][ T8418] ? __memcg_slab_post_alloc_hook+0x51b/0x990 [ 216.955974][ T8418] ? rcu_is_watching+0x12/0xc0 [ 216.955997][ T8418] ? trace_kmem_cache_alloc+0xf3/0x120 [ 216.956014][ T8418] ? kernel_clone+0xfc/0x9a0 [ 216.956030][ T8418] __vmalloc_node_noprof+0xad/0xf0 [ 216.956049][ T8418] ? kernel_clone+0xfc/0x9a0 [ 216.956067][ T8418] copy_process+0x5ec/0x7a40 [ 216.956086][ T8418] ? __pfx___futex_wait+0x10/0x10 [ 216.956119][ T8418] ? __pfx_copy_process+0x10/0x10 [ 216.956145][ T8418] kernel_clone+0xfc/0x9a0 [ 216.956161][ T8418] ? __pfx_futex_wait+0x10/0x10 [ 216.956184][ T8418] ? __pfx_kernel_clone+0x10/0x10 [ 216.956212][ T8418] __do_sys_clone+0xd9/0x120 [ 216.956230][ T8418] ? __pfx___do_sys_clone+0x10/0x10 [ 216.956264][ T8418] do_syscall_64+0x106/0xf80 [ 216.956278][ T8418] ? clear_bhb_loop+0x40/0x90 [ 216.956297][ T8418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.956312][ T8418] RIP: 0033:0x7f71fb99c819 [ 216.956327][ T8418] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 216.956341][ T8418] RSP: 002b:00007f71fc7ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 216.956356][ T8418] RAX: ffffffffffffffda RBX: 00007f71fbc15fa0 RCX: 00007f71fb99c819 [ 216.956366][ T8418] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 216.956374][ T8418] RBP: 00007f71fba32c91 R08: 0000000000000002 R09: 0000000000000000 [ 216.956383][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.956392][ T8418] R13: 00007f71fbc16038 R14: 00007f71fbc15fa0 R15: 00007ffc62ab7528 [ 216.956411][ T8418] [ 216.956617][ T8418] syz.1.469: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 217.446254][ T8415] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 217.479265][ T8418] ,cpuset=/,mems_allowed=0-1 [ 217.503040][ T8418] CPU: 1 UID: 0 PID: 8418 Comm: syz.1.469 Tainted: G L syzkaller #0 PREEMPT(full) [ 217.503081][ T8418] Tainted: [L]=SOFTLOCKUP [ 217.503092][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 217.503108][ T8418] Call Trace: [ 217.503117][ T8418] [ 217.503126][ T8418] dump_stack_lvl+0x100/0x190 [ 217.503175][ T8418] warn_alloc.cold+0x95/0x1c1 [ 217.503224][ T8418] ? __pfx_warn_alloc+0x10/0x10 [ 217.503264][ T8418] ? lockdep_hardirqs_on+0x78/0x100 [ 217.503284][ T8418] ? __get_vm_area_node+0x2c5/0x330 [ 217.503306][ T8418] ? __get_vm_area_node+0x208/0x330 [ 217.503327][ T8418] __vmalloc_node_range_noprof+0xbf4/0x1530 [ 217.503347][ T8418] ? find_held_lock+0x2b/0x80 [ 217.503361][ T8418] ? local_lock_release+0x99/0x130 [ 217.503379][ T8418] ? local_lock_release+0x99/0x130 [ 217.503399][ T8418] ? kernel_clone+0xfc/0x9a0 [ 217.503418][ T8418] ? find_held_lock+0x2b/0x80 [ 217.503431][ T8418] ? rcu_read_unlock+0x17/0x60 [ 217.503448][ T8418] ? rcu_read_unlock+0x17/0x60 [ 217.503464][ T8418] ? obj_cgroup_charge_account+0x46d/0x640 [ 217.503482][ T8418] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 217.503503][ T8418] ? __memcg_slab_post_alloc_hook+0x51b/0x990 [ 217.503532][ T8418] ? rcu_is_watching+0x12/0xc0 [ 217.503555][ T8418] ? trace_kmem_cache_alloc+0xf3/0x120 [ 217.503574][ T8418] ? kernel_clone+0xfc/0x9a0 [ 217.503590][ T8418] __vmalloc_node_noprof+0xad/0xf0 [ 217.503609][ T8418] ? kernel_clone+0xfc/0x9a0 [ 217.503628][ T8418] copy_process+0x5ec/0x7a40 [ 217.503647][ T8418] ? __pfx___futex_wait+0x10/0x10 [ 217.503677][ T8418] ? __pfx_copy_process+0x10/0x10 [ 217.503704][ T8418] kernel_clone+0xfc/0x9a0 [ 217.503720][ T8418] ? __pfx_futex_wait+0x10/0x10 [ 217.503744][ T8418] ? __pfx_kernel_clone+0x10/0x10 [ 217.503777][ T8418] __do_sys_clone+0xd9/0x120 [ 217.503795][ T8418] ? __pfx___do_sys_clone+0x10/0x10 [ 217.503828][ T8418] do_syscall_64+0x106/0xf80 [ 217.503843][ T8418] ? clear_bhb_loop+0x40/0x90 [ 217.503861][ T8418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.503876][ T8418] RIP: 0033:0x7f71fb99c819 [ 217.503889][ T8418] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 217.503902][ T8418] RSP: 002b:00007f71fc7ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 217.503917][ T8418] RAX: ffffffffffffffda RBX: 00007f71fbc15fa0 RCX: 00007f71fb99c819 [ 217.503927][ T8418] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008 [ 217.503935][ T8418] RBP: 00007f71fba32c91 R08: 0000000000000002 R09: 0000000000000000 [ 217.503944][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 217.503953][ T8418] R13: 00007f71fbc16038 R14: 00007f71fbc15fa0 R15: 00007ffc62ab7528 [ 217.503971][ T8418] [ 217.658970][ T8415] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 217.790456][ T8418] Mem-Info: [ 217.793650][ T8418] active_anon:25159 inactive_anon:10251 isolated_anon:0 [ 217.793650][ T8418] active_file:11587 inactive_file:6076 isolated_file:0 [ 217.793650][ T8418] unevictable:768 dirty:753 writeback:0 [ 217.793650][ T8418] slab_reclaimable:7137 slab_unreclaimable:97297 [ 217.793650][ T8418] mapped:33959 shmem:33274 pagetables:2582 [ 217.793650][ T8418] sec_pagetables:0 bounce:0 [ 217.793650][ T8418] kernel_misc_reclaimable:0 [ 217.793650][ T8418] free:680710 free_pcp:10515 free_cma:0 [ 218.018488][ T8415] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 218.063150][ T8415] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 218.152292][ T8418] Node 0 active_anon:9964kB inactive_anon:40688kB active_file:17764kB inactive_file:22956kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118136kB dirty:2880kB writeback:0kB shmem:43388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11872kB pagetables:5588kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 218.191990][ T8415] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 218.229022][ T8418] Node 1 active_anon:94056kB inactive_anon:312kB active_file:32080kB inactive_file:1348kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:21140kB dirty:320kB writeback:0kB shmem:93104kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:352kB pagetables:4688kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 218.268956][ T8418] Node 0 DMA free:10108kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:64kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:60kB local_pcp:0kB free_cma:0kB [ 218.350102][ T8418] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 218.356102][ T8418] Node 0 DMA32 free:42024kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:9912kB inactive_anon:40624kB active_file:17764kB inactive_file:22956kB unevictable:1536kB writepending:2880kB zspages:0kB present:3129332kB managed:2537292kB mlocked:0kB bounce:0kB free_pcp:33428kB local_pcp:19684kB free_cma:0kB [ 218.390812][ T8418] lowmem_reserve[]: 0 0 1 1 1 [ 218.395644][ T8418] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1056kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 218.439137][ T5833] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 218.465577][ T8431] netlink: 8 bytes leftover after parsing attributes in process `syz.3.471'. [ 218.475532][ T8431] openvswitch: HfR: Dropping previously announced user features [ 218.495336][ T8418] lowmem_reserve[]: 0 0 0 0 0 [ 218.528368][ T8418] Node 1 Normal free:2658632kB boost:0kB min:55832kB low:69788kB high:83744kB reserved_highatomic:0KB free_highatomic:0KB active_anon:96556kB inactive_anon:312kB active_file:33780kB inactive_file:1348kB unevictable:1536kB writepending:320kB zspages:3932kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:9512kB local_pcp:5404kB free_cma:0kB [ 218.660143][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 218.698427][ T8418] lowmem_reserve[]: 0 0 0 0 0 [ 218.703208][ T8418] Node 0 DMA: 1*4kB (U) 1*8kB (U) 1*16kB (M) 1*32kB (U) 1*64kB (M) 0*128kB 1*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 2*4096kB (UM) = 10108kB [ 218.746897][ T8418] Node 0 DMA32: 32*4kB (ME) 779*8kB (UME) 93*16kB (UME) 24*32kB (UME) 120*64kB (UME) 87*128kB (UME) 29*256kB (UM) 8*512kB (UM) 3*1024kB (UM) 0*2048kB 0*4096kB = 42024kB [ 218.783833][ T8418] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 218.815936][ T8418] Node 1 Normal: 373*4kB (UE) 349*8kB (UME) 100*16kB (UE) 228*32kB (UME) 114*64kB (UME) 25*128kB (UME) 3*256kB (UE) 19*512kB (UME) 9*1024kB (UME) 3*2048kB (ME) 636*4096kB (M) = 2654588kB [ 218.868419][ T8418] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 218.957240][ T8418] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 219.017718][ T8418] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 219.028901][ T8418] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 219.048562][ T8418] 58353 total pagecache pages [ 219.058343][ T8418] 900 pages in swap cache [ 219.095211][ T8418] Free swap = 107000kB [ 219.109466][ T8418] Total swap = 124996kB [ 219.113650][ T8418] 2097051 pages RAM [ 219.117499][ T8418] 0 pages HighMem/MovableOnly [ 219.158381][ T8418] 430849 pages reserved [ 219.174197][ T8418] 0 pages cma reserved [ 219.858343][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 220.098791][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 220.104905][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout [ 221.759580][ T8478] netlink: 8 bytes leftover after parsing attributes in process `syz.3.481'. [ 221.771000][ T8478] openvswitch: HfR: Dropping previously announced user features [ 222.178494][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 223.035794][ T8506] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 224.609112][ T8517] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 225.951627][ T8538] vivid-007: ================= START STATUS ================= [ 225.966813][ T8538] vivid-007: Generate PTS: true [ 226.023498][ T8538] vivid-007: Generate SCR: true [ 226.053386][ T8538] tpg source WxH: 320x240 (Y'CbCr) [ 226.078657][ T8538] tpg field: 1 [ 226.083568][ T8538] tpg crop: (0,0)/320x240 [ 226.087939][ T8538] tpg compose: (0,0)/320x240 [ 226.168511][ T8538] tpg colorspace: 8 [ 226.172385][ T8538] tpg transfer function: 0/0 [ 226.198393][ T8538] tpg Y'CbCr encoding: 0/0 [ 226.202947][ T8538] tpg quantization: 0/0 [ 226.247999][ T8538] tpg RGB range: 0/2 [ 226.265623][ T8538] vivid-007: ================== END STATUS ================== [ 229.880418][ T8606] netlink: 28 bytes leftover after parsing attributes in process `syz.1.504'. [ 230.560942][ T8615] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 231.880884][ T8654] netlink: 8 bytes leftover after parsing attributes in process `syz.4.515'. [ 231.921887][ T8654] openvswitch: HfR: Dropping previously announced user features [ 232.066571][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.086660][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.103174][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.122927][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.132495][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.153065][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.177691][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.204025][ T8649] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 232.368375][ T8633] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 232.374557][ T8633] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 232.385357][ T8633] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 232.405883][ T8633] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 232.519710][ T8676] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 233.001345][ T5833] Bluetooth: hci2: unexpected event 0x3e length: 0 < 1 [ 233.654762][ T8688] cgroup: fork rejected by pids controller in /syz3 [ 234.268468][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout [ 234.418956][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout [ 234.421562][ T5144] Bluetooth: hci2: command 0x0c1a tx timeout [ 234.425173][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 236.908231][ T8759] mkiss: ax0: crc mode is auto. [ 237.618691][ T5838] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 237.912720][ T8768] FAULT_INJECTION: forcing a failure. [ 237.912720][ T8768] name failslab, interval 1, probability 0, space 0, times 0 [ 237.938458][ T8768] CPU: 1 UID: 0 PID: 8768 Comm: syz.2.532 Tainted: G L syzkaller #0 PREEMPT(full) [ 237.938503][ T8768] Tainted: [L]=SOFTLOCKUP [ 237.938513][ T8768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 237.938529][ T8768] Call Trace: [ 237.938538][ T8768] [ 237.938548][ T8768] dump_stack_lvl+0x100/0x190 [ 237.938598][ T8768] should_fail_ex.cold+0x5/0xa [ 237.938665][ T8768] ? tomoyo_encode2+0xfb/0x3c0 [ 237.938705][ T8768] should_failslab+0xc2/0x120 [ 237.938739][ T8768] __kmalloc_noprof+0xe0/0x850 [ 237.938782][ T8768] ? d_absolute_path+0x136/0x1b0 [ 237.938830][ T8768] tomoyo_encode2+0xfb/0x3c0 [ 237.938875][ T8768] tomoyo_encode+0x29/0x50 [ 237.938913][ T8768] tomoyo_realpath_from_path+0x18c/0x690 [ 237.938963][ T8768] tomoyo_check_open_permission+0x2af/0x3c0 [ 237.939001][ T8768] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 237.939075][ T8768] ? do_raw_spin_lock+0x128/0x260 [ 237.939121][ T8768] ? path_get+0x61/0x80 [ 237.939158][ T8768] tomoyo_file_open+0x6b/0x90 [ 237.939187][ T8768] security_file_open+0xb5/0x1e0 [ 237.939227][ T8768] do_dentry_open+0x5aa/0x1660 [ 237.939260][ T8768] ? security_inode_permission+0xbf/0x250 [ 237.939302][ T8768] vfs_open+0x82/0x3f0 [ 237.939344][ T8768] path_openat+0x208c/0x31a0 [ 237.939389][ T8768] ? __pfx_path_openat+0x10/0x10 [ 237.939434][ T8768] do_file_open+0x20e/0x430 [ 237.939469][ T8768] ? __pfx_do_file_open+0x10/0x10 [ 237.939528][ T8768] ? alloc_fd+0x476/0x790 [ 237.939563][ T8768] ? do_getname+0x191/0x390 [ 237.939603][ T8768] do_sys_openat2+0x10d/0x1e0 [ 237.939649][ T8768] ? __pfx_do_sys_openat2+0x10/0x10 [ 237.939704][ T8768] __x64_sys_openat+0x12d/0x210 [ 237.939745][ T8768] ? __pfx___x64_sys_openat+0x10/0x10 [ 237.939783][ T8768] ? ksys_write+0x1ac/0x250 [ 237.939825][ T8768] do_syscall_64+0x106/0xf80 [ 237.939854][ T8768] ? clear_bhb_loop+0x40/0x90 [ 237.939889][ T8768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.939918][ T8768] RIP: 0033:0x7f6c5359c819 [ 237.939942][ T8768] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 237.939969][ T8768] RSP: 002b:00007f6c544f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 237.939996][ T8768] RAX: ffffffffffffffda RBX: 00007f6c53815fa0 RCX: 00007f6c5359c819 [ 237.940016][ T8768] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 237.940034][ T8768] RBP: 00007f6c53632c91 R08: 0000000000000000 R09: 0000000000000000 [ 237.940052][ T8768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 237.940069][ T8768] R13: 00007f6c53816038 R14: 00007f6c53815fa0 R15: 00007fffa281d6b8 [ 237.940107][ T8768] [ 237.940139][ T8768] ERROR: Out of memory at tomoyo_realpath_from_path. [ 238.021322][ T8772] block nbd0: Unsupported socket: should be TCP or UNIX. [ 239.800179][ T8795] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 241.386643][ T8806] __nla_validate_parse: 25 callbacks suppressed [ 241.386670][ T8806] netlink: 28 bytes leftover after parsing attributes in process `syz.1.540'. [ 241.438544][ T8807] netlink: 28 bytes leftover after parsing attributes in process `syz.1.540'. [ 241.630028][ T8805] netlink: 28 bytes leftover after parsing attributes in process `syz.2.541'. [ 241.863518][ T8807] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 242.006287][ T8807] bond0 (unregistering): Released all slaves [ 244.304747][ T8867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.549'. [ 244.638363][ T8880] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3) [ 245.258567][ T5838] Bluetooth: hci1: unexpected event for opcode 0x7c89 [ 245.693579][ T5838] Bluetooth: hci1: Malformed LE Event: 0x0b [ 246.123456][ T8892] netlink: 1384 bytes leftover after parsing attributes in process `syz.1.554'. [ 247.310095][ T8896] FAULT_INJECTION: forcing a failure. [ 247.310095][ T8896] name fail_futex, interval 1, probability 0, space 0, times 0 [ 247.388698][ T8896] CPU: 1 UID: 0 PID: 8896 Comm: syz.3.555 Tainted: G L syzkaller #0 PREEMPT(full) [ 247.388741][ T8896] Tainted: [L]=SOFTLOCKUP [ 247.388750][ T8896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 247.388768][ T8896] Call Trace: [ 247.388777][ T8896] [ 247.388786][ T8896] dump_stack_lvl+0x100/0x190 [ 247.388831][ T8896] should_fail_ex.cold+0x5/0xa [ 247.388863][ T8896] should_fail_futex+0x4c/0x60 [ 247.388896][ T8896] __x64_sys_futex+0x1f0/0x4d0 [ 247.388936][ T8896] ? __pfx___x64_sys_futex+0x10/0x10 [ 247.388987][ T8896] do_syscall_64+0x106/0xf80 [ 247.389020][ T8896] ? clear_bhb_loop+0x40/0x90 [ 247.389055][ T8896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.389082][ T8896] RIP: 0033:0x7f956439c819 [ 247.389105][ T8896] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 247.389130][ T8896] RSP: 002b:00007fffde660318 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 247.389160][ T8896] RAX: ffffffffffffffda RBX: 000000000003c5f1 RCX: 00007f956439c819 [ 247.389178][ T8896] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f956461636c [ 247.389194][ T8896] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 247.389210][ T8896] R10: 00007fffde660420 R11: 0000000000000246 R12: 00007fffde660440 [ 247.389227][ T8896] R13: 00007f956461636c R14: 000000000003c623 R15: 00007fffde660420 [ 247.389263][ T8896] [ 249.392881][ T8927] netlink: 8 bytes leftover after parsing attributes in process `syz.4.562'. [ 249.426889][ T8927] openvswitch: HfR: Dropping previously announced user features [ 249.800355][ T8945] netlink: 28 bytes leftover after parsing attributes in process `syz.4.566'. [ 249.976079][ T8948] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 250.071001][ T8935] openvswitch: netlink: Duplicate key (type 15). [ 252.613303][ T9006] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 254.251495][ T9047] netlink: 330 bytes leftover after parsing attributes in process `syz.2.586'. [ 254.469857][ T9049] netlink: 28 bytes leftover after parsing attributes in process `syz.3.588'. [ 254.798089][ T5838] Bluetooth: hci2: Malformed LE Event: 0x0b [ 255.784387][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.790896][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.174281][ T9089] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 256.247337][ T9094] random: crng reseeded on system resumption [ 257.517511][ T9122] FAULT_INJECTION: forcing a failure. [ 257.517511][ T9122] name failslab, interval 1, probability 0, space 0, times 0 [ 257.555359][ T9122] CPU: 0 UID: 0 PID: 9122 Comm: syz.3.605 Tainted: G L syzkaller #0 PREEMPT(full) [ 257.555402][ T9122] Tainted: [L]=SOFTLOCKUP [ 257.555411][ T9122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 257.555425][ T9122] Call Trace: [ 257.555434][ T9122] [ 257.555444][ T9122] dump_stack_lvl+0x100/0x190 [ 257.555488][ T9122] should_fail_ex.cold+0x5/0xa [ 257.555518][ T9122] ? udpv6_init_sock+0x24e/0x450 [ 257.555560][ T9122] should_failslab+0xc2/0x120 [ 257.555589][ T9122] __kmalloc_noprof+0xe0/0x850 [ 257.555627][ T9122] ? lockdep_init_map_type+0x5c/0x250 [ 257.555668][ T9122] udpv6_init_sock+0x24e/0x450 [ 257.555701][ T9122] ? __pfx_udpv6_init_sock+0x10/0x10 [ 257.555747][ T9122] inet6_create+0xb21/0x12b0 [ 257.555775][ T9122] ? inet6_create+0x7f/0x12b0 [ 257.555802][ T9122] __sock_create+0x339/0x860 [ 257.555842][ T9122] __sys_socket+0x14d/0x260 [ 257.555877][ T9122] ? __pfx___sys_socket+0x10/0x10 [ 257.555921][ T9122] __x64_sys_socket+0x72/0xb0 [ 257.555953][ T9122] ? lockdep_hardirqs_on+0x78/0x100 [ 257.555979][ T9122] do_syscall_64+0x106/0xf80 [ 257.556002][ T9122] ? clear_bhb_loop+0x40/0x90 [ 257.556036][ T9122] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.556064][ T9122] RIP: 0033:0x7f956439c819 [ 257.556085][ T9122] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 257.556114][ T9122] RSP: 002b:00007f956533c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 257.556140][ T9122] RAX: ffffffffffffffda RBX: 00007f9564615fa0 RCX: 00007f956439c819 [ 257.556158][ T9122] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 000000000000000a [ 257.556172][ T9122] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 0000000000000000 [ 257.556187][ T9122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.556205][ T9122] R13: 00007f9564616038 R14: 00007f9564615fa0 R15: 00007fffde6601b8 [ 257.556238][ T9122] [ 258.092475][ T9141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.610'. [ 258.102774][ T9141] openvswitch: HfR: Dropping previously announced user features [ 258.600836][ T9166] netlink: 80 bytes leftover after parsing attributes in process `syz.3.614'. [ 260.614908][ T9197] netlink: 8 bytes leftover after parsing attributes in process `syz.4.620'. [ 260.630914][ T9197] openvswitch: HfR: Dropping previously announced user features [ 260.690881][ T9194] FAULT_INJECTION: forcing a failure. [ 260.690881][ T9194] name failslab, interval 1, probability 0, space 0, times 0 [ 260.757077][ T9194] CPU: 0 UID: 0 PID: 9194 Comm: syz.3.619 Tainted: G L syzkaller #0 PREEMPT(full) [ 260.757119][ T9194] Tainted: [L]=SOFTLOCKUP [ 260.757129][ T9194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 260.757145][ T9194] Call Trace: [ 260.757155][ T9194] [ 260.757166][ T9194] dump_stack_lvl+0x100/0x190 [ 260.757213][ T9194] should_fail_ex.cold+0x5/0xa [ 260.757245][ T9194] should_failslab+0xc2/0x120 [ 260.757276][ T9194] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 260.757316][ T9194] ? seq_open+0x55/0x170 [ 260.757356][ T9194] ? __pfx_binder_features_show+0x10/0x10 [ 260.757395][ T9194] seq_open+0x55/0x170 [ 260.757431][ T9194] ? __pfx_binder_features_show+0x10/0x10 [ 260.757471][ T9194] single_open+0xfc/0x1d0 [ 260.757524][ T9194] do_dentry_open+0x6d8/0x1660 [ 260.757556][ T9194] ? __pfx_binder_features_open+0x10/0x10 [ 260.757597][ T9194] vfs_open+0x82/0x3f0 [ 260.757635][ T9194] path_openat+0x208c/0x31a0 [ 260.757673][ T9194] ? __pfx_path_openat+0x10/0x10 [ 260.757714][ T9194] do_file_open+0x20e/0x430 [ 260.757747][ T9194] ? __pfx_do_file_open+0x10/0x10 [ 260.757802][ T9194] ? alloc_fd+0x476/0x790 [ 260.757832][ T9194] ? do_getname+0x191/0x390 [ 260.757870][ T9194] do_sys_openat2+0x10d/0x1e0 [ 260.757907][ T9194] ? __pfx_do_sys_openat2+0x10/0x10 [ 260.757946][ T9194] ? __fget_files+0x21f/0x3d0 [ 260.757983][ T9194] __x64_sys_openat+0x12d/0x210 [ 260.758025][ T9194] ? __pfx___x64_sys_openat+0x10/0x10 [ 260.758080][ T9194] do_syscall_64+0x106/0xf80 [ 260.758108][ T9194] ? clear_bhb_loop+0x40/0x90 [ 260.758144][ T9194] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.758174][ T9194] RIP: 0033:0x7f956439c819 [ 260.758198][ T9194] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 260.758226][ T9194] RSP: 002b:00007f956531b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 260.758253][ T9194] RAX: ffffffffffffffda RBX: 00007f9564616090 RCX: 00007f956439c819 [ 260.758269][ T9194] RDX: 0000000000040000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 260.758285][ T9194] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 0000000000000000 [ 260.758300][ T9194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.758315][ T9194] R13: 00007f9564616128 R14: 00007f9564616090 R15: 00007fffde6601b8 [ 260.758348][ T9194] [ 262.227301][ T9231] FAULT_INJECTION: forcing a failure. [ 262.227301][ T9231] name failslab, interval 1, probability 0, space 0, times 0 [ 262.271581][ T9231] CPU: 0 UID: 0 PID: 9231 Comm: syz.3.628 Tainted: G L syzkaller #0 PREEMPT(full) [ 262.271626][ T9231] Tainted: [L]=SOFTLOCKUP [ 262.271636][ T9231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 262.271652][ T9231] Call Trace: [ 262.271662][ T9231] [ 262.271671][ T9231] dump_stack_lvl+0x100/0x190 [ 262.271721][ T9231] should_fail_ex.cold+0x5/0xa [ 262.271755][ T9231] should_failslab+0xc2/0x120 [ 262.271789][ T9231] __kmalloc_cache_noprof+0x7a/0x6f0 [ 262.271828][ T9231] ? refill_pi_state_cache+0x91/0x260 [ 262.271877][ T9231] refill_pi_state_cache+0x91/0x260 [ 262.271921][ T9231] futex_lock_pi+0x177/0x7b0 [ 262.271967][ T9231] ? __pfx_futex_lock_pi+0x10/0x10 [ 262.272012][ T9231] ? __pfx___futex_wait+0x10/0x10 [ 262.272087][ T9231] ? __pfx_futex_wake_mark+0x10/0x10 [ 262.272138][ T9231] ? __get_user_nocheck_8+0x20/0x20 [ 262.272179][ T9231] ? do_vfs_ioctl+0x226/0x13e0 [ 262.272224][ T9231] do_futex+0x18a/0x350 [ 262.272262][ T9231] ? __pfx_do_futex+0x10/0x10 [ 262.272301][ T9231] ? find_held_lock+0x2b/0x80 [ 262.272335][ T9231] __x64_sys_futex+0x34f/0x4d0 [ 262.272378][ T9231] ? __pfx___x64_sys_futex+0x10/0x10 [ 262.272428][ T9231] do_syscall_64+0x106/0xf80 [ 262.272455][ T9231] ? clear_bhb_loop+0x40/0x90 [ 262.272490][ T9231] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.272518][ T9231] RIP: 0033:0x7f956439c819 [ 262.272558][ T9231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.272586][ T9231] RSP: 002b:00007f956531b028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 262.272614][ T9231] RAX: ffffffffffffffda RBX: 00007f9564616090 RCX: 00007f956439c819 [ 262.272634][ T9231] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 262.272651][ T9231] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 000000008000fff5 [ 262.272669][ T9231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.272686][ T9231] R13: 00007f9564616128 R14: 00007f9564616090 R15: 00007fffde6601b8 [ 262.272723][ T9231] [ 262.924289][ T9236] netlink: 8 bytes leftover after parsing attributes in process `syz.1.629'. [ 263.188989][ T9239] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 263.211960][ T9236] openvswitch: HfR: Dropping previously announced user features [ 264.952105][ T9272] netlink: zone id is out of range [ 264.970757][ T9272] netlink: 202 bytes leftover after parsing attributes in process `syz.2.637'. [ 265.174024][ T9272] Process accounting resumed [ 266.124924][ T9301] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 266.437458][ T9314] binder: 9313:9314 ioctl c008561c 38 returned -22 [ 266.981439][ T9329] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(14) [ 268.291445][ T9365] vivid-007: ================= START STATUS ================= [ 268.346869][ T9365] vivid-007: Generate PTS: true [ 268.389971][ T9365] vivid-007: Generate SCR: true [ 268.394991][ T9365] tpg source WxH: 320x240 (Y'CbCr) [ 268.445696][ T9365] tpg field: 1 [ 268.468435][ T9365] tpg crop: (0,0)/320x240 [ 268.472913][ T9365] tpg compose: (0,0)/320x240 [ 268.497941][ T9365] tpg colorspace: 8 [ 268.521239][ T9365] tpg transfer function: 0/0 [ 268.557522][ T9365] tpg Y'CbCr encoding: 0/0 [ 268.567670][ T9365] tpg quantization: 0/0 [ 268.588393][ T9365] tpg RGB range: 0/2 [ 268.592349][ T9365] vivid-007: ================== END STATUS ================== [ 270.025446][ T9397] zswap: compressor not available [ 270.449096][ T30] audit: type=1800 audit(4294967314.160:5): pid=9414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.661" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 270.479658][ T9413] FAULT_INJECTION: forcing a failure. [ 270.479658][ T9413] name failslab, interval 1, probability 0, space 0, times 0 [ 270.493463][ T9413] CPU: 1 UID: 0 PID: 9413 Comm: syz.3.662 Tainted: G L syzkaller #0 PREEMPT(full) [ 270.493507][ T9413] Tainted: [L]=SOFTLOCKUP [ 270.493516][ T9413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 270.493532][ T9413] Call Trace: [ 270.493542][ T9413] [ 270.493552][ T9413] dump_stack_lvl+0x100/0x190 [ 270.493602][ T9413] should_fail_ex.cold+0x5/0xa [ 270.493638][ T9413] should_failslab+0xc2/0x120 [ 270.493670][ T9413] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 270.493714][ T9413] ? __proc_create+0x2cb/0x8c0 [ 270.493749][ T9413] __proc_create+0x2cb/0x8c0 [ 270.493779][ T9413] ? __pfx___proc_create+0x10/0x10 [ 270.493813][ T9413] ? __register_sysctl_table+0x889/0x1650 [ 270.493861][ T9413] ? __register_sysctl_table+0x889/0x1650 [ 270.493894][ T9413] proc_create_reg+0x75/0x170 [ 270.493929][ T9413] proc_create_net_data+0x8e/0x1c0 [ 270.493960][ T9413] ? __pfx_proc_create_net_data+0x10/0x10 [ 270.493993][ T9413] ? __pfx___register_sysctl_table+0x10/0x10 [ 270.494021][ T9413] ? is_module_address+0x69/0xf0 [ 270.494058][ T9413] ? register_net_sysctl_sz+0x222/0x430 [ 270.494093][ T9413] ? __pfx_nf_log_net_init+0x10/0x10 [ 270.494124][ T9413] nf_log_net_init+0x69/0x450 [ 270.494155][ T9413] ? __pfx_nf_log_net_init+0x10/0x10 [ 270.494182][ T9413] ops_init+0x1e2/0x5f0 [ 270.494214][ T9413] setup_net+0x118/0x3a0 [ 270.494243][ T9413] ? __pfx_setup_net+0x10/0x10 [ 270.494268][ T9413] ? lockdep_init_map_type+0x5c/0x250 [ 270.494311][ T9413] ? mutex_init_lockep+0x110/0x150 [ 270.494356][ T9413] copy_net_ns+0x46f/0x7c0 [ 270.494392][ T9413] create_new_namespaces+0x3ea/0xac0 [ 270.494432][ T9413] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 270.494468][ T9413] ksys_unshare+0x473/0xad0 [ 270.494506][ T9413] ? __pfx_ksys_unshare+0x10/0x10 [ 270.494556][ T9413] __x64_sys_unshare+0x31/0x40 [ 270.494591][ T9413] do_syscall_64+0x106/0xf80 [ 270.494619][ T9413] ? clear_bhb_loop+0x40/0x90 [ 270.494655][ T9413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.494683][ T9413] RIP: 0033:0x7f956439c819 [ 270.494705][ T9413] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 270.494733][ T9413] RSP: 002b:00007f956533c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 270.494760][ T9413] RAX: ffffffffffffffda RBX: 00007f9564615fa0 RCX: 00007f956439c819 [ 270.494779][ T9413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 270.494796][ T9413] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 0000000000000000 [ 270.494813][ T9413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.494837][ T9413] R13: 00007f9564616038 R14: 00007f9564615fa0 R15: 00007fffde6601b8 [ 270.494876][ T9413] [ 272.231724][ T9467] netlink: 8 bytes leftover after parsing attributes in process `syz.4.671'. [ 272.288561][ T9467] openvswitch: HfR: Dropping previously announced user features [ 272.432132][ T5838] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5 [ 274.758216][ T9506] workqueue: Failed to create a rescuer kthread for wq "nfc6_nci_cmd_wq": -EINTR [ 274.994607][ T30] audit: type=1800 audit(4294967318.700:6): pid=9602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.684" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 “ÇIãjníüú¡9»_UÏ´îVQ8Àñj@:Un M½×%U¬x[ 277.035784][ T9648] overlayfs: missing 'lowerdir' [ 279.301390][ T9709] netlink: 28 bytes leftover after parsing attributes in process `syz.4.707'. [ 279.323312][ T9712] netlink: 342 bytes leftover after parsing attributes in process `syz.3.708'. [ 279.357278][ T9703] netlink: 62 bytes leftover after parsing attributes in process `syz.2.705'. [ 279.943108][ T9729] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(3716746452.4006527866.3526190678), cmd(1) [ 280.090588][ T5838] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 280.202152][ T9740] netlink: 8 bytes leftover after parsing attributes in process `syz.4.715'. [ 280.326253][ T9740] openvswitch: HfR: Dropping previously announced user features [ 282.188357][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 282.677887][ T9791] FAULT_INJECTION: forcing a failure. [ 282.677887][ T9791] name failslab, interval 1, probability 0, space 0, times 0 [ 282.705491][ T9791] CPU: 1 UID: 0 PID: 9791 Comm: syz.1.728 Tainted: G L syzkaller #0 PREEMPT(full) [ 282.705519][ T9791] Tainted: [L]=SOFTLOCKUP [ 282.705525][ T9791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 282.705535][ T9791] Call Trace: [ 282.705540][ T9791] [ 282.705546][ T9791] dump_stack_lvl+0x100/0x190 [ 282.705574][ T9791] should_fail_ex.cold+0x5/0xa [ 282.705593][ T9791] should_failslab+0xc2/0x120 [ 282.705610][ T9791] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 282.705626][ T9791] ? xfrm4_net_init+0x9e/0x1c0 [ 282.705642][ T9791] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 282.705675][ T9791] kmemdup_noprof+0x29/0x60 [ 282.705690][ T9791] xfrm4_net_init+0x9e/0x1c0 [ 282.705708][ T9791] ? __pfx_xfrm4_net_init+0x10/0x10 [ 282.705724][ T9791] ops_init+0x1e2/0x5f0 [ 282.705742][ T9791] setup_net+0x118/0x3a0 [ 282.705757][ T9791] ? __pfx_setup_net+0x10/0x10 [ 282.705771][ T9791] ? lockdep_init_map_type+0x5c/0x250 [ 282.705792][ T9791] ? mutex_init_lockep+0x110/0x150 [ 282.705816][ T9791] copy_net_ns+0x46f/0x7c0 [ 282.705834][ T9791] create_new_namespaces+0x3ea/0xac0 [ 282.705855][ T9791] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 282.705873][ T9791] ksys_unshare+0x473/0xad0 [ 282.705894][ T9791] ? __pfx_ksys_unshare+0x10/0x10 [ 282.705920][ T9791] __x64_sys_unshare+0x31/0x40 [ 282.705938][ T9791] do_syscall_64+0x106/0xf80 [ 282.705952][ T9791] ? clear_bhb_loop+0x40/0x90 [ 282.705970][ T9791] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.705985][ T9791] RIP: 0033:0x7f71fb99c819 [ 282.705998][ T9791] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 282.706012][ T9791] RSP: 002b:00007f71fc7ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 282.706026][ T9791] RAX: ffffffffffffffda RBX: 00007f71fbc15fa0 RCX: 00007f71fb99c819 [ 282.706036][ T9791] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 282.706045][ T9791] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 282.706054][ T9791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 282.706063][ T9791] R13: 00007f71fbc16038 R14: 00007f71fbc15fa0 R15: 00007ffc62ab7528 [ 282.706083][ T9791] [ 284.258603][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout [ 284.582889][ T9813] netlink: 8 bytes leftover after parsing attributes in process `syz.1.736'. [ 284.611596][ T9813] openvswitch: HfR: Dropping previously announced user features [ 285.248928][ T9833] sctp: [Deprecated]: syz.4.739 (pid 9833) Use of struct sctp_assoc_value in delayed_ack socket option. [ 285.248928][ T9833] Use struct sctp_sack_info instead [ 286.728397][ T9869] syz_tun: tun_chr_ioctl cmd 1074812117 [ 286.776141][ T9875] netlink: 28 bytes leftover after parsing attributes in process `syz.3.747'. [ 288.183496][ T9891] Setting dangerous option i915.mitigations - tainting kernel [ 289.046659][ T9913] netlink: 354 bytes leftover after parsing attributes in process `syz.2.756'. [ 289.096342][ T5835] Process accounting resumed [ 289.770885][ T9932] netlink: 8 bytes leftover after parsing attributes in process `syz.2.761'. [ 289.848459][ T9932] openvswitch: HfR: Dropping previously announced user features [ 290.033351][ T9937] netlink: 350 bytes leftover after parsing attributes in process `syz.3.762'. [ 290.052844][ T9939] netlink: 28 bytes leftover after parsing attributes in process `syz.2.764'. [ 290.543746][ T30] audit: type=1806 audit(4294967334.240:7): xattr="." res=0 [ 290.802093][ T9971] FAULT_INJECTION: forcing a failure. [ 290.802093][ T9971] name failslab, interval 1, probability 0, space 0, times 0 [ 290.911778][ T9971] CPU: 1 UID: 0 PID: 9971 Comm: syz.2.768 Tainted: G U L syzkaller #0 PREEMPT(full) [ 290.911824][ T9971] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 290.911834][ T9971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 290.911850][ T9971] Call Trace: [ 290.911859][ T9971] [ 290.911869][ T9971] dump_stack_lvl+0x100/0x190 [ 290.911915][ T9971] should_fail_ex.cold+0x5/0xa [ 290.911948][ T9971] ? memcg_list_lru_alloc+0x4ec/0x740 [ 290.911990][ T9971] should_failslab+0xc2/0x120 [ 290.912022][ T9971] __kmalloc_noprof+0xe0/0x850 [ 290.912064][ T9971] ? ipcget+0xee/0xf50 [ 290.912107][ T9971] memcg_list_lru_alloc+0x4ec/0x740 [ 290.912159][ T9971] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 290.912201][ T9971] ? rcu_read_unlock+0x17/0x60 [ 290.912244][ T9971] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 290.912290][ T9971] __memcg_slab_post_alloc_hook+0x130/0x990 [ 290.912331][ T9971] ? kasan_save_track+0x14/0x30 [ 290.912362][ T9971] kmem_cache_alloc_lru_noprof+0x592/0x6e0 [ 290.912404][ T9971] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 290.912444][ T9971] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 290.912474][ T9971] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 290.912506][ T9971] alloc_inode+0x68/0x250 [ 290.912543][ T9971] new_inode+0x22/0x1c0 [ 290.912590][ T9971] hugetlbfs_get_inode+0x313/0x750 [ 290.912627][ T9971] hugetlb_file_setup+0x3cc/0x5b0 [ 290.912664][ T9971] newseg+0xabb/0xed0 [ 290.912707][ T9971] ? __pfx_newseg+0x10/0x10 [ 290.912744][ T9971] ? down_write+0x146/0x1f0 [ 290.912776][ T9971] ? ksys_write+0x190/0x250 [ 290.912803][ T9971] ? ksys_write+0x190/0x250 [ 290.912835][ T9971] ipcget+0xee/0xf50 [ 290.912871][ T9971] ? do_futex+0x192/0x350 [ 290.912909][ T9971] ? __pfx_do_futex+0x10/0x10 [ 290.912952][ T9971] ? __pfx_ipcget+0x10/0x10 [ 290.912989][ T9971] ? __x64_sys_futex+0x34f/0x4d0 [ 290.913021][ T9971] ? __x64_sys_futex+0x358/0x4d0 [ 290.913060][ T9971] __x64_sys_shmget+0x13b/0x1b0 [ 290.913100][ T9971] ? __pfx___x64_sys_shmget+0x10/0x10 [ 290.913149][ T9971] do_syscall_64+0x106/0xf80 [ 290.913174][ T9971] ? clear_bhb_loop+0x40/0x90 [ 290.913209][ T9971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.913238][ T9971] RIP: 0033:0x7f6c5359c819 [ 290.913260][ T9971] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 290.913288][ T9971] RSP: 002b:00007f6c5442d028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 290.913314][ T9971] RAX: ffffffffffffffda RBX: 00007f6c53816540 RCX: 00007f6c5359c819 [ 290.913332][ T9971] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 290.913350][ T9971] RBP: 00007f6c53632c91 R08: 0000000000000000 R09: 0000000000000000 [ 290.913366][ T9971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.913383][ T9971] R13: 00007f6c538165d8 R14: 00007f6c53816540 R15: 00007fffa281d6b8 [ 290.913421][ T9971] [ 291.305200][ T9976] netlink: 8 bytes leftover after parsing attributes in process `syz.3.772'. [ 291.320025][ T9976] openvswitch: HfR: Dropping previously announced user features [ 292.091790][T10009] netlink: 4 bytes leftover after parsing attributes in process `syz.3.777'. [ 292.102756][T10009] netlink: 4 bytes leftover after parsing attributes in process `syz.3.777'. [ 293.153973][T10029] bond0: invalid ARP target specified [ 293.278471][T10026] netlink: 16 bytes leftover after parsing attributes in process `syz.3.779'. [ 293.309007][T10022] netlink: 16 bytes leftover after parsing attributes in process `syz.3.779'. [ 293.535086][T10037] netlink: 8 bytes leftover after parsing attributes in process `syz.3.782'. [ 293.554273][T10037] openvswitch: HfR: Dropping previously announced user features [ 294.237990][T10053] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 295.382235][T10079] syz_tun: tun_chr_ioctl cmd 1074025675 [ 295.387862][T10079] syz_tun: persist enabled [ 295.470381][T10070] Process accounting paused [ 295.553300][T10083] netlink: 8 bytes leftover after parsing attributes in process `syz.1.792'. [ 295.650040][T10083] openvswitch: HfR: Dropping previously announced user features [ 299.912368][T10178] libceph: secret too big 125 [ 301.427089][T10196] netlink: 28 bytes leftover after parsing attributes in process `syz.2.821'. [ 301.485251][T10196] netlink: 28 bytes leftover after parsing attributes in process `syz.2.821'. [ 301.963002][T10206] [U] [ 301.965971][T10206] [U] [ 301.968694][T10206] [U] [ 301.971418][T10206] [U] [ 301.984624][T10206] [U] [ 301.987380][T10206] [U] [ 301.990103][T10206] [U] [ 301.992828][T10206] [U] [ 302.411272][T10201] [U] [ 303.179506][T10237] zswap: compressor not available [ 303.938772][T10246] FAULT_INJECTION: forcing a failure. [ 303.938772][T10246] name failslab, interval 1, probability 0, space 0, times 0 [ 303.996982][T10246] CPU: 0 UID: 0 PID: 10246 Comm: syz.1.828 Tainted: G U L syzkaller #0 PREEMPT(full) [ 303.997034][T10246] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 303.997046][T10246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 303.997063][T10246] Call Trace: [ 303.997072][T10246] [ 303.997083][T10246] dump_stack_lvl+0x100/0x190 [ 303.997134][T10246] should_fail_ex.cold+0x5/0xa [ 303.997169][T10246] should_failslab+0xc2/0x120 [ 303.997202][T10246] __kmalloc_cache_noprof+0x7a/0x6f0 [ 303.997242][T10246] ? alloc_bprm+0x86/0x710 [ 303.997290][T10246] alloc_bprm+0x86/0x710 [ 303.997337][T10246] do_execveat_common.isra.0+0x19c/0x580 [ 303.997394][T10246] ? do_getname+0x191/0x390 [ 303.997432][T10246] __x64_sys_execve+0x93/0xd0 [ 303.997478][T10246] do_syscall_64+0x106/0xf80 [ 303.997505][T10246] ? clear_bhb_loop+0x40/0x90 [ 303.997540][T10246] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.997570][T10246] RIP: 0033:0x7f71fb99c819 [ 303.997595][T10246] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 303.997623][T10246] RSP: 002b:00007f71fc7ce028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 303.997651][T10246] RAX: ffffffffffffffda RBX: 00007f71fbc16090 RCX: 00007f71fb99c819 [ 303.997671][T10246] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 303.997688][T10246] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 303.997706][T10246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 303.997723][T10246] R13: 00007f71fbc16128 R14: 00007f71fbc16090 R15: 00007ffc62ab7528 [ 303.997761][T10246] [ 305.119494][T10276] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 305.207914][T10276] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 305.841739][ T30] audit: type=1326 audit(4294967349.550:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10297 comm="syz.4.838" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f148a59c819 code=0x0 [ 306.159008][T10307] netlink: 186 bytes leftover after parsing attributes in process `syz.3.840'. [ 308.410248][T10354] netlink: 'syz.4.849': attribute type 1 has an invalid length. [ 312.643713][T10417] nfs: Bad value for 'source' [ 314.181352][T10431] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 315.040565][T10449] can: request_module (can-proto-0) failed. [ 316.505138][ T5827] syz-executor invoked oom-killer: gfp_mask=0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=0 [ 316.519249][ T5827] CPU: 0 UID: 0 PID: 5827 Comm: syz-executor Tainted: G U L syzkaller #0 PREEMPT(full) [ 316.519294][ T5827] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 316.519303][ T5827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 316.519318][ T5827] Call Trace: [ 316.519326][ T5827] [ 316.519335][ T5827] dump_stack_lvl+0x100/0x190 [ 316.519379][ T5827] dump_header+0xfb/0x606 [ 316.519409][ T5827] oom_kill_process.cold+0xd/0x330 [ 316.519439][ T5827] out_of_memory+0x340/0x14f0 [ 316.519485][ T5827] ? __pfx_out_of_memory+0x10/0x10 [ 316.519533][ T5827] mem_cgroup_out_of_memory+0xc6/0x130 [ 316.519569][ T5827] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 316.519603][ T5827] ? find_held_lock+0x2b/0x80 [ 316.519635][ T5827] ? do_raw_spin_unlock+0x145/0x1e0 [ 316.519674][ T5827] ? _raw_spin_unlock+0x28/0x50 [ 316.519715][ T5827] try_charge_memcg+0x652/0xc90 [ 316.519751][ T5827] ? __pfx_try_charge_memcg+0x10/0x10 [ 316.519777][ T5827] ? rcu_read_unlock+0x17/0x60 [ 316.519805][ T5827] ? rcu_read_unlock+0x17/0x60 [ 316.519842][ T5827] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 316.519884][ T5827] __memcg_kmem_charge_page+0xd0/0x530 [ 316.519919][ T5827] __alloc_frozen_pages_noprof+0x328/0x2ba0 [ 316.519961][ T5827] ? __lock_acquire+0x4a5/0x2630 [ 316.520001][ T5827] ? __lock_acquire+0x4a5/0x2630 [ 316.520039][ T5827] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 316.520095][ T5827] ? bpf_ksym_find+0x124/0x1c0 [ 316.520128][ T5827] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 316.520158][ T5827] ? is_bpf_text_address+0x94/0x1a0 [ 316.520204][ T5827] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 316.520233][ T5827] ? policy_nodemask+0xed/0x4f0 [ 316.520265][ T5827] alloc_pages_mpol+0x1fb/0x550 [ 316.520295][ T5827] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 316.520326][ T5827] ? stack_trace_save+0x8e/0xc0 [ 316.520356][ T5827] alloc_pages_noprof+0x136/0x390 [ 316.520387][ T5827] pte_alloc_one+0x1c/0x3d0 [ 316.520416][ T5827] __pte_alloc+0x6d/0x3e0 [ 316.520444][ T5827] ? __pfx___pte_alloc+0x10/0x10 [ 316.520480][ T5827] copy_page_range+0x3ec9/0x6600 [ 316.520555][ T5827] ? __pfx_copy_page_range+0x10/0x10 [ 316.520603][ T5827] ? __pfx___might_resched+0x10/0x10 [ 316.520654][ T5827] ? up_write+0x290/0x4f0 [ 316.520695][ T5827] dup_mmap+0xd25/0x2180 [ 316.520745][ T5827] ? __pfx_dup_mmap+0x10/0x10 [ 316.520774][ T5827] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 316.520820][ T5827] ? __lock_acquire+0x4a5/0x2630 [ 316.520853][ T5827] ? find_held_lock+0x2b/0x80 [ 316.520878][ T5827] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 316.520939][ T5827] copy_process+0x7523/0x7a40 [ 316.520989][ T5827] ? __pfx_copy_process+0x10/0x10 [ 316.521020][ T5827] ? do_raw_spin_lock+0x128/0x260 [ 316.521072][ T5827] kernel_clone+0xfc/0x9a0 [ 316.521105][ T5827] ? __pfx_kernel_clone+0x10/0x10 [ 316.521133][ T5827] ? __lock_acquire+0x4a5/0x2630 [ 316.521180][ T5827] ? find_held_lock+0x2b/0x80 [ 316.521205][ T5827] ? __might_fault+0xc5/0x140 [ 316.521246][ T5827] __do_sys_clone+0xd9/0x120 [ 316.521278][ T5827] ? __pfx___do_sys_clone+0x10/0x10 [ 316.521339][ T5827] do_syscall_64+0x106/0xf80 [ 316.521363][ T5827] ? clear_bhb_loop+0x40/0x90 [ 316.521395][ T5827] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.521427][ T5827] RIP: 0033:0x7f6c535c5292 [ 316.521448][ T5827] Code: 89 e7 e8 71 8b f7 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 89 c5 85 c0 75 3b 64 48 8b 04 25 10 00 00 [ 316.521473][ T5827] RSP: 002b:00007fffa281d8d0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 316.521498][ T5827] RAX: ffffffffffffffda RBX: 00007fffa281d8d0 RCX: 00007f6c535c5292 [ 316.521515][ T5827] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 316.521531][ T5827] RBP: 00007fffa281da5c R08: 0000000000000000 R09: 0000000000000001 [ 316.521546][ T5827] R10: 00005555559657d0 R11: 0000000000000246 R12: 0000000000000001 [ 316.521562][ T5827] R13: 00000000000927c0 R14: 000000000004d000 R15: 00007fffa281dab0 [ 316.521597][ T5827] [ 316.521637][ T5827] memory: usage 307200kB, limit 307200kB, failcnt 16660 [ 317.008367][ T5827] memory+swap: usage 387084kB, limit 9007199254740988kB, failcnt 0 [ 317.029897][ T5827] kmem: usage 4240kB, limit 9007199254740988kB, failcnt 0 [ 317.211813][ T5827] Memory cgroup stats for /syz2: [ 317.213218][ T5827] cache 310206464 [ 317.233010][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.239546][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.328141][ T5827] rss 126976 [ 317.344023][ T5827] rss_huge 0 [ 317.351392][ T5827] shmem 310206464 [ 317.355173][ T5827] mapped_file 33689600 [ 317.359788][ T5827] dirty 0 [ 317.362749][ T5827] writeback 0 [ 317.366040][ T5827] workingset_refault_anon 2118 [ 317.374525][ T5827] workingset_refault_file 2127 [ 317.379779][ T5827] swap 81801216 [ 317.383258][ T5827] swapcached 122912768 [ 317.387784][ T5827] pgpgin 402558 [ 317.392018][ T5827] pgpgout 329876 [ 317.395582][ T5827] pgfault 290887 [ 317.401127][ T5827] pgmajfault 675 [ 317.404830][ T5827] inactive_anon 180236288 [ 317.410044][ T5827] active_anon 130121728 [ 317.414328][ T5827] inactive_file 0 [ 317.417977][ T5827] active_file 0 [ 317.427939][ T5827] unevictable 0 [ 317.434915][ T5827] hierarchical_memory_limit 314572800 [ 317.458496][ T5827] hierarchical_memsw_limit 9223372036854771712 [ 317.465042][ T5827] total_cache 310206464 [ 317.469759][ T5827] total_rss 126976 [ 317.476535][ T5827] total_rss_huge 0 [ 317.495623][ T5827] total_shmem 310206464 [ 317.505752][ T5827] total_mapped_file 33689600 [ 317.515898][ T5827] total_dirty 0 [ 317.533942][ T5827] total_writeback 0 [ 317.552147][ T5827] total_workingset_refault_anon 2118 [ 317.557527][ T5827] total_workingset_refault_file 2127 [ 317.563535][ T5827] total_swap 81801216 [ 317.567535][ T5827] total_swapcached 122912768 [ 317.573446][ T5827] total_pgpgin 402558 [ 317.578216][ T5827] total_pgpgout 329876 [ 317.583871][ T5827] total_pgfault 290887 [ 317.619109][ T5827] total_pgmajfault 675 [ 317.623329][ T5827] total_inactive_anon 180236288 [ 317.638957][ T5827] total_active_anon 130121728 [ 317.643684][ T5827] total_inactive_file 0 [ 317.647845][ T5827] total_active_file 0 [ 317.670536][ T5827] total_unevictable 0 [ 317.674604][ T5827] anon_cost 0 [ 317.688351][ T5827] file_cost 0 [ 317.698382][ T5827] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.826,pid=10230,uid=0 [ 317.750441][ T5827] Memory cgroup out of memory: Killed process 10230 (syz.2.826) total-vm:131684kB, anon-rss:128kB, file-rss:32704kB, shmem-rss:32900kB, UID:0 pgtables:216kB oom_score_adj:1000 [ 317.866156][T10245] syz.2.826 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 318.003177][T10245] CPU: 0 UID: 0 PID: 10245 Comm: syz.2.826 Tainted: G U L syzkaller #0 PREEMPT(full) [ 318.003234][T10245] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 318.003244][T10245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 318.003261][T10245] Call Trace: [ 318.003269][T10245] [ 318.003280][T10245] dump_stack_lvl+0x100/0x190 [ 318.003332][T10245] dump_header+0xfb/0x606 [ 318.003369][T10245] oom_kill_process.cold+0xd/0x330 [ 318.003404][T10245] out_of_memory+0x340/0x14f0 [ 318.003456][T10245] ? __pfx_out_of_memory+0x10/0x10 [ 318.003509][T10245] mem_cgroup_out_of_memory+0xc6/0x130 [ 318.003550][T10245] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 318.003588][T10245] ? find_held_lock+0x2b/0x80 [ 318.003625][T10245] ? do_raw_spin_unlock+0x145/0x1e0 [ 318.003667][T10245] ? _raw_spin_unlock+0x28/0x50 [ 318.003711][T10245] try_charge_memcg+0x652/0xc90 [ 318.003751][T10245] ? __pfx_try_charge_memcg+0x10/0x10 [ 318.003783][T10245] ? find_held_lock+0x2b/0x80 [ 318.003809][T10245] ? rcu_read_unlock+0x17/0x60 [ 318.003840][T10245] ? rcu_read_unlock+0x17/0x60 [ 318.003885][T10245] charge_memcg+0xa6/0x280 [ 318.003917][T10245] __mem_cgroup_charge+0x2b/0x1e0 [ 318.003956][T10245] shmem_alloc_and_add_folio+0x451/0xd40 [ 318.004013][T10245] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 318.004057][T10245] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 318.004109][T10245] shmem_get_folio_gfp+0x6ab/0x1900 [ 318.004162][T10245] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 318.004222][T10245] shmem_write_begin+0x1a4/0x420 [ 318.004270][T10245] ? __pfx_shmem_write_begin+0x10/0x10 [ 318.004316][T10245] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 318.004356][T10245] ? lockdep_hardirqs_on+0x78/0x100 [ 318.004388][T10245] generic_perform_write+0x292/0xa40 [ 318.004443][T10245] ? __pfx_generic_perform_write+0x10/0x10 [ 318.004495][T10245] ? file_update_time_flags+0x373/0x500 [ 318.004536][T10245] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 318.004568][T10245] shmem_file_write_iter+0x10e/0x140 [ 318.004604][T10245] __kernel_write_iter+0x2ac/0x920 [ 318.004636][T10245] ? __pfx___kernel_write_iter+0x10/0x10 [ 318.004665][T10245] ? __up_read+0x2c5/0x700 [ 318.004709][T10245] ? dump_user_range+0x73b/0xb50 [ 318.004751][T10245] dump_user_range+0x3f9/0xb50 [ 318.004793][T10245] ? __pfx_dump_user_range+0x10/0x10 [ 318.004839][T10245] ? __pfx_writenote+0x10/0x10 [ 318.004884][T10245] elf_core_dump+0x2d5f/0x3d10 [ 318.004942][T10245] ? __pfx_elf_core_dump+0x10/0x10 [ 318.004979][T10245] ? kasan_save_stack+0x3f/0x50 [ 318.005004][T10245] ? kasan_save_stack+0x30/0x50 [ 318.005029][T10245] ? __kasan_kmalloc+0xaa/0xb0 [ 318.005053][T10245] ? __kvmalloc_node_noprof+0x360/0xa00 [ 318.005080][T10245] ? vfs_coredump+0x2105/0x5570 [ 318.005112][T10245] ? asm_exc_page_fault+0x26/0x30 [ 318.005145][T10245] ? 0xffffffffff600000 [ 318.005231][T10245] ? vfs_coredump+0x27bc/0x5570 [ 318.005261][T10245] vfs_coredump+0x27bc/0x5570 [ 318.005310][T10245] ? __pfx_vfs_coredump+0x10/0x10 [ 318.005353][T10245] ? __lock_acquire+0x4a5/0x2630 [ 318.005406][T10245] ? lock_acquire+0x1cf/0x380 [ 318.005458][T10245] ? is_bpf_text_address+0x8a/0x1a0 [ 318.005502][T10245] ? bpf_ksym_find+0x124/0x1c0 [ 318.005547][T10245] ? __kernel_text_address+0xd/0x30 [ 318.005589][T10245] ? unwind_get_return_address+0x59/0xa0 [ 318.005621][T10245] ? arch_stack_walk+0xa6/0xf0 [ 318.005662][T10245] ? __sigqueue_free+0xbe/0x2a0 [ 318.005699][T10245] ? stack_trace_save+0x8e/0xc0 [ 318.005728][T10245] ? __pfx_stack_trace_save+0x10/0x10 [ 318.005759][T10245] ? stack_depot_save_flags+0x27/0x9d0 [ 318.005797][T10245] ? __lock_acquire+0x4a5/0x2630 [ 318.005899][T10245] ? proc_coredump_connector+0x2d3/0x4f0 [ 318.005942][T10245] ? __pfx_proc_coredump_connector+0x10/0x10 [ 318.006006][T10245] ? rcu_is_watching+0x12/0xc0 [ 318.006055][T10245] get_signal+0x1f2a/0x21e0 [ 318.006101][T10245] ? __pfx_get_signal+0x10/0x10 [ 318.006147][T10245] arch_do_signal_or_restart+0x91/0x770 [ 318.006186][T10245] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 318.006233][T10245] ? do_user_addr_fault+0x8d6/0x12f0 [ 318.006270][T10245] irqentry_exit+0x1f8/0x670 [ 318.006302][T10245] asm_exc_page_fault+0x26/0x30 [ 318.006330][T10245] RIP: 0033:0x7f6c5359c821 [ 318.006360][T10245] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 318.006387][T10245] RSP: 002b:000040000000003e EFLAGS: 00010217 [ 318.006410][T10245] RAX: 0000000000000000 RBX: 00007f6c53816180 RCX: 00007f6c5359c819 [ 318.006428][T10245] RDX: 0000000000000000 RSI: 000040000000003e RDI: 0000000000000001 [ 318.006445][T10245] RBP: 00007f6c53632c91 R08: 0000000040000009 R09: 0000000000000000 [ 318.006463][T10245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.006480][T10245] R13: 00007f6c53816218 R14: 00007f6c53816180 R15: 00007fffa281d6b8 [ 318.006519][T10245] [ 318.006563][T10245] memory: usage 307200kB, limit 307200kB, failcnt 16867 [ 318.034682][T10495] FAULT_INJECTION: forcing a failure. [ 318.034682][T10495] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 318.262067][T10245] memory+swap: usage 387084kB, limit 9007199254740988kB, failcnt 0 [ 318.288705][T10495] CPU: 1 UID: 0 PID: 10495 Comm: syz.3.884 Tainted: G U L syzkaller #0 PREEMPT(full) [ 318.288753][T10495] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 318.288764][T10495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 318.288781][T10495] Call Trace: [ 318.288790][T10495] [ 318.288801][T10495] dump_stack_lvl+0x100/0x190 [ 318.288847][T10495] should_fail_ex.cold+0x5/0xa [ 318.288876][T10495] ? prepare_alloc_pages+0x16d/0x5f0 [ 318.288912][T10495] should_fail_alloc_page+0xeb/0x140 [ 318.288947][T10495] prepare_alloc_pages+0x1f0/0x5f0 [ 318.288986][T10495] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 318.289048][T10495] ? stack_trace_save+0x8e/0xc0 [ 318.289075][T10495] ? __pfx_stack_trace_save+0x10/0x10 [ 318.289104][T10495] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 318.289146][T10495] ? stack_depot_save_flags+0x27/0x9d0 [ 318.289191][T10495] ? kasan_save_stack+0x3f/0x50 [ 318.289215][T10495] ? kasan_save_stack+0x30/0x50 [ 318.289239][T10495] ? kasan_save_track+0x14/0x30 [ 318.289264][T10495] ? __kasan_kmalloc+0xaa/0xb0 [ 318.289293][T10495] ? do_file_open+0x20e/0x430 [ 318.289330][T10495] ? do_sys_openat2+0x10d/0x1e0 [ 318.289367][T10495] ? __x64_sys_openat+0x12d/0x210 [ 318.289405][T10495] ? do_syscall_64+0x106/0xf80 [ 318.289431][T10495] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.289466][T10495] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 318.289497][T10495] ? policy_nodemask+0xed/0x4f0 [ 318.289531][T10495] alloc_pages_mpol+0x1fb/0x550 [ 318.289563][T10495] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 318.289603][T10495] alloc_pages_noprof+0x136/0x390 [ 318.289637][T10495] get_zeroed_page_noprof+0x18/0xb0 [ 318.289672][T10495] mon_alloc_buff+0xce/0x1b0 [ 318.289707][T10495] ? kasan_save_track+0x14/0x30 [ 318.289738][T10495] mon_bin_open+0x207/0x470 [ 318.289775][T10495] ? __pfx_mon_bin_open+0x10/0x10 [ 318.289811][T10495] chrdev_open+0x234/0x6a0 [ 318.289843][T10495] ? __pfx_chrdev_open+0x10/0x10 [ 318.289877][T10495] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 318.289917][T10495] do_dentry_open+0x6d8/0x1660 [ 318.289947][T10495] ? __pfx_chrdev_open+0x10/0x10 [ 318.289986][T10495] vfs_open+0x82/0x3f0 [ 318.290028][T10495] path_openat+0x208c/0x31a0 [ 318.290070][T10495] ? __pfx_path_openat+0x10/0x10 [ 318.290116][T10495] do_file_open+0x20e/0x430 [ 318.290150][T10495] ? __pfx_do_file_open+0x10/0x10 [ 318.290208][T10495] ? alloc_fd+0x476/0x790 [ 318.290240][T10495] ? do_getname+0x191/0x390 [ 318.290280][T10495] do_sys_openat2+0x10d/0x1e0 [ 318.290324][T10495] ? __pfx_do_sys_openat2+0x10/0x10 [ 318.290365][T10495] ? __fget_files+0x21f/0x3d0 [ 318.290402][T10495] __x64_sys_openat+0x12d/0x210 [ 318.290443][T10495] ? __pfx___x64_sys_openat+0x10/0x10 [ 318.290495][T10495] do_syscall_64+0x106/0xf80 [ 318.290522][T10495] ? clear_bhb_loop+0x40/0x90 [ 318.290557][T10495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.290586][T10495] RIP: 0033:0x7f956439c819 [ 318.290610][T10495] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 318.290638][T10495] RSP: 002b:00007f956533c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 318.290665][T10495] RAX: ffffffffffffffda RBX: 00007f9564615fa0 RCX: 00007f956439c819 [ 318.290684][T10495] RDX: 0000000000002040 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 318.290703][T10495] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 0000000000000000 [ 318.290720][T10495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.290738][T10495] R13: 00007f9564616038 R14: 00007f9564615fa0 R15: 00007fffde6601b8 [ 318.290776][T10495] [ 318.890995][T10245] kmem: usage 4088kB, limit 9007199254740988kB, failcnt 0 [ 318.898155][T10245] Memory cgroup stats for /syz2: [ 318.898584][T10245] cache 305496064 [ 318.912758][T10245] rss 126976 [ 318.916340][T10245] rss_huge 0 [ 318.919616][T10245] shmem 305496064 [ 318.923293][T10245] mapped_file 33689600 [ 318.927377][T10245] dirty 0 [ 318.931327][T10245] writeback 0 [ 318.934735][T10245] workingset_refault_anon 2118 [ 318.939570][T10245] workingset_refault_file 2127 [ 318.944337][T10245] swap 73633792 [ 318.947797][T10245] swapcached 122912768 [ 318.954449][T10245] pgpgin 402558 [ 318.959447][T10245] pgpgout 331019 [ 318.964564][T10245] pgfault 290887 [ 318.971955][T10245] pgmajfault 675 [ 318.975512][T10245] inactive_anon 175562752 [ 318.981513][T10245] active_anon 130113536 [ 318.985688][T10245] inactive_file 0 [ 318.989441][T10245] active_file 0 [ 318.992911][T10245] unevictable 0 [ 318.996374][T10245] hierarchical_memory_limit 314572800 [ 319.002004][T10245] hierarchical_memsw_limit 9223372036854771712 [ 319.008308][T10245] total_cache 305496064 [ 319.013262][T10245] total_rss 126976 [ 319.017004][T10245] total_rss_huge 0 [ 319.020869][T10245] total_shmem 305496064 [ 319.025026][T10245] total_mapped_file 33689600 [ 319.030350][T10245] total_dirty 0 [ 319.033830][T10245] total_writeback 0 [ 319.037686][T10245] total_workingset_refault_anon 2118 [ 319.064641][T10245] total_workingset_refault_file 2127 [ 319.076083][T10245] total_swap 73633792 [ 319.093878][T10245] total_swapcached 122912768 [ 319.167788][T10245] total_pgpgin 402558 [ 319.179791][T10245] total_pgpgout 331019 [ 319.207841][T10245] total_pgfault 290887 [ 319.269016][T10245] total_pgmajfault 675 [ 319.273184][T10245] total_inactive_anon 175562752 [ 319.302245][T10245] total_active_anon 130113536 [ 319.307026][T10245] total_inactive_file 0 [ 319.352204][T10245] total_active_file 0 [ 319.356272][T10245] total_unevictable 0 [ 319.399197][T10245] anon_cost 0 [ 319.414528][T10245] file_cost 0 [ 319.445438][T10245] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.826,pid=10239,uid=0 [ 319.579484][T10245] Memory cgroup out of memory: Killed process 10239 (syz.2.826) total-vm:131684kB, anon-rss:176kB, file-rss:32512kB, shmem-rss:32900kB, UID:0 pgtables:212kB oom_score_adj:1000 [ 319.598856][T10525] zswap: compressor not available [ 319.980882][T10530] can: request_module (can-proto-0) failed. [ 320.028055][T10531] can: request_module (can-proto-0) failed. [ 321.457962][T10230] syz.2.826 (10230) used greatest stack depth: 19384 bytes left [ 322.434823][T10583] NFSD: Failed to start, no listeners configured. [ 323.158462][T10603] netlink: 8 bytes leftover after parsing attributes in process `syz.3.904'. [ 323.501883][T10603] openvswitch: HfR: Dropping previously announced user features [ 323.611366][T10606] bond0: invalid ARP target specified [ 323.634330][T10606] netlink: 28 bytes leftover after parsing attributes in process `syz.3.906'. [ 323.881423][T10606] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 323.891309][T10606] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 323.958743][T10606] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 323.977153][T10606] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 324.878813][T10619] bond0: invalid ARP target specified [ 325.231017][T10628] netlink: 28 bytes leftover after parsing attributes in process `syz.4.911'. [ 325.245448][T10628] vcan0: entered promiscuous mode [ 325.582908][T10639] netlink: 8 bytes leftover after parsing attributes in process `syz.4.913'. [ 325.694038][T10634] zswap: compressor not available [ 326.639775][T10668] nvme_fcloop: unknown parameter or missing value '7' [ 326.936103][T10670] netlink: 'syz.3.921': attribute type 2 has an invalid length. [ 326.970125][T10670] netlink: 354 bytes leftover after parsing attributes in process `syz.3.921'. [ 327.659820][T10240] syz.2.826 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 327.810429][T10240] CPU: 1 UID: 0 PID: 10240 Comm: syz.2.826 Tainted: G U L syzkaller #0 PREEMPT(full) [ 327.810476][T10240] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 327.810486][T10240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 327.810502][T10240] Call Trace: [ 327.810510][T10240] [ 327.810520][T10240] dump_stack_lvl+0x100/0x190 [ 327.810565][T10240] dump_header+0xfb/0x606 [ 327.810597][T10240] oom_kill_process.cold+0xd/0x330 [ 327.810631][T10240] out_of_memory+0x340/0x14f0 [ 327.810680][T10240] ? __pfx_out_of_memory+0x10/0x10 [ 327.810731][T10240] mem_cgroup_out_of_memory+0xc6/0x130 [ 327.810771][T10240] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 327.810808][T10240] ? find_held_lock+0x2b/0x80 [ 327.810843][T10240] ? do_raw_spin_unlock+0x145/0x1e0 [ 327.810883][T10240] ? _raw_spin_unlock+0x28/0x50 [ 327.810925][T10240] try_charge_memcg+0x652/0xc90 [ 327.810964][T10240] ? __pfx_try_charge_memcg+0x10/0x10 [ 327.810995][T10240] ? find_held_lock+0x2b/0x80 [ 327.811020][T10240] ? rcu_read_unlock+0x17/0x60 [ 327.811051][T10240] ? rcu_read_unlock+0x17/0x60 [ 327.811095][T10240] charge_memcg+0xa6/0x280 [ 327.811132][T10240] __mem_cgroup_charge+0x2b/0x1e0 [ 327.811169][T10240] shmem_alloc_and_add_folio+0x451/0xd40 [ 327.811221][T10240] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 327.811267][T10240] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 327.811319][T10240] shmem_get_folio_gfp+0x6ab/0x1900 [ 327.811369][T10240] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 327.811423][T10240] shmem_write_begin+0x1a4/0x420 [ 327.811470][T10240] ? __pfx_shmem_write_begin+0x10/0x10 [ 327.811515][T10240] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 327.811549][T10240] ? lockdep_hardirqs_on+0x78/0x100 [ 327.811578][T10240] generic_perform_write+0x292/0xa40 [ 327.811631][T10240] ? __pfx_generic_perform_write+0x10/0x10 [ 327.811678][T10240] ? file_update_time_flags+0x373/0x500 [ 327.811718][T10240] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 327.811748][T10240] shmem_file_write_iter+0x10e/0x140 [ 327.811783][T10240] __kernel_write_iter+0x2ac/0x920 [ 327.811814][T10240] ? __pfx___kernel_write_iter+0x10/0x10 [ 327.811842][T10240] ? __up_read+0x2c5/0x700 [ 327.811884][T10240] ? dump_user_range+0x73b/0xb50 [ 327.811916][T10240] ? copy_mc_enhanced_fast_string+0x6/0xf [ 327.811959][T10240] dump_user_range+0x3f9/0xb50 [ 327.811999][T10240] ? __pfx_dump_user_range+0x10/0x10 [ 327.812043][T10240] ? __pfx_writenote+0x10/0x10 [ 327.812086][T10240] elf_core_dump+0x2d5f/0x3d10 [ 327.812148][T10240] ? __pfx_elf_core_dump+0x10/0x10 [ 327.812184][T10240] ? kasan_save_stack+0x3f/0x50 [ 327.812208][T10240] ? kasan_save_stack+0x30/0x50 [ 327.812233][T10240] ? __kasan_kmalloc+0xaa/0xb0 [ 327.812257][T10240] ? __kvmalloc_node_noprof+0x360/0xa00 [ 327.812282][T10240] ? vfs_coredump+0x2105/0x5570 [ 327.812314][T10240] ? asm_exc_page_fault+0x26/0x30 [ 327.812346][T10240] ? 0xffffffffff600000 [ 327.812431][T10240] ? vfs_coredump+0x27bc/0x5570 [ 327.812461][T10240] vfs_coredump+0x27bc/0x5570 [ 327.812508][T10240] ? __pfx_vfs_coredump+0x10/0x10 [ 327.812542][T10240] ? __lock_acquire+0x4a5/0x2630 [ 327.812593][T10240] ? lock_acquire+0x1cf/0x380 [ 327.812645][T10240] ? is_bpf_text_address+0x8a/0x1a0 [ 327.812692][T10240] ? bpf_ksym_find+0x124/0x1c0 [ 327.812736][T10240] ? __kernel_text_address+0xd/0x30 [ 327.812776][T10240] ? unwind_get_return_address+0x59/0xa0 [ 327.812807][T10240] ? arch_stack_walk+0xa6/0xf0 [ 327.812848][T10240] ? __sigqueue_free+0xbe/0x2a0 [ 327.812884][T10240] ? stack_trace_save+0x8e/0xc0 [ 327.812912][T10240] ? __pfx_stack_trace_save+0x10/0x10 [ 327.812942][T10240] ? stack_depot_save_flags+0x27/0x9d0 [ 327.812979][T10240] ? __lock_acquire+0x4a5/0x2630 [ 327.813077][T10240] ? proc_coredump_connector+0x2d3/0x4f0 [ 327.813123][T10240] ? __pfx_proc_coredump_connector+0x10/0x10 [ 327.813173][T10240] ? rcu_is_watching+0x12/0xc0 [ 327.813220][T10240] get_signal+0x1f2a/0x21e0 [ 327.813265][T10240] ? __pfx_get_signal+0x10/0x10 [ 327.813294][T10240] ? fixup_vdso_exception+0x3a/0x370 [ 327.813335][T10240] arch_do_signal_or_restart+0x91/0x770 [ 327.813372][T10240] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 327.813419][T10240] ? do_user_addr_fault+0x8d6/0x12f0 [ 327.813455][T10240] irqentry_exit+0x1f8/0x670 [ 327.813487][T10240] asm_exc_page_fault+0x26/0x30 [ 327.813514][T10240] RIP: 0033:0x7f6c5359c821 [ 327.813535][T10240] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 327.813562][T10240] RSP: 002b:000040000000003e EFLAGS: 00010217 [ 327.813584][T10240] RAX: 0000000000000000 RBX: 00007f6c53816180 RCX: 00007f6c5359c819 [ 327.813602][T10240] RDX: 0000000000000000 RSI: 000040000000003e RDI: 0000000000000001 [ 327.813619][T10240] RBP: 00007f6c53632c91 R08: 0000000040000009 R09: 0000000000000000 [ 327.813636][T10240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.813652][T10240] R13: 00007f6c53816218 R14: 00007f6c53816180 R15: 00007fffa281d6b8 [ 327.813691][T10240] [ 328.467177][T10240] memory: usage 307200kB, limit 307200kB, failcnt 22050 [ 328.474210][T10240] memory+swap: usage 383136kB, limit 9007199254740988kB, failcnt 0 [ 328.482174][T10240] kmem: usage 3872kB, limit 9007199254740988kB, failcnt 0 [ 328.489329][T10240] Memory cgroup stats for /syz2: [ 328.489608][T10240] cache 310009856 [ 328.498207][T10240] rss 483328 [ 328.501469][T10240] rss_huge 0 [ 328.504677][T10240] shmem 309919744 [ 328.508357][T10240] mapped_file 13500416 [ 328.512440][T10240] dirty 0 [ 328.515392][T10240] writeback 0 [ 328.518723][T10240] workingset_refault_anon 2119 [ 328.523839][T10240] workingset_refault_file 3420 [ 328.528661][T10240] swap 77758464 [ 328.533758][T10240] swapcached 137269248 [ 328.537841][T10240] pgpgin 430560 [ 328.541334][T10240] pgpgout 357817 [ 328.544885][T10240] pgfault 293968 [ 328.548573][T10240] pgmajfault 699 [ 328.552133][T10240] inactive_anon 155123712 [ 328.556465][T10240] active_anon 154734592 [ 328.560682][T10240] inactive_file 90112 [ 328.564668][T10240] active_file 0 [ 328.568130][T10240] unevictable 0 [ 328.571660][T10240] hierarchical_memory_limit 314572800 [ 328.577038][T10240] hierarchical_memsw_limit 9223372036854771712 [ 328.583292][T10240] total_cache 310009856 [ 328.587451][T10240] total_rss 483328 [ 328.591235][T10240] total_rss_huge 0 [ 328.594962][T10240] total_shmem 309919744 [ 328.599163][T10240] total_mapped_file 13500416 [ 328.603755][T10240] total_dirty 0 [ 328.607224][T10240] total_writeback 0 [ 328.611066][T10240] total_workingset_refault_anon 2119 [ 328.616405][T10240] total_workingset_refault_file 3420 [ 328.621720][T10240] total_swap 77758464 [ 328.625711][T10240] total_swapcached 137269248 [ 328.630364][T10240] total_pgpgin 430560 [ 328.635857][T10240] total_pgpgout 357817 [ 328.639970][T10240] total_pgfault 293968 [ 328.644044][T10240] total_pgmajfault 699 [ 328.648119][T10240] total_inactive_anon 155123712 [ 328.653007][T10240] total_active_anon 154734592 [ 328.657722][T10240] total_inactive_file 90112 [ 328.662693][T10240] total_active_file 0 [ 328.666717][T10240] total_unevictable 0 [ 328.670736][T10240] anon_cost 0 [ 328.674022][T10240] file_cost 0 [ 328.677316][T10240] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.826,pid=10240,uid=0 [ 328.692448][T10240] Memory cgroup out of memory: Killed process 10240 (syz.2.826) total-vm:131684kB, anon-rss:156kB, file-rss:52544kB, shmem-rss:12964kB, UID:0 pgtables:252kB oom_score_adj:1000 [ 329.010464][T10699] zswap: compressor not available [ 329.179804][T10227] syz.2.826 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 329.300025][T10227] CPU: 1 UID: 0 PID: 10227 Comm: syz.2.826 Tainted: G U L syzkaller #0 PREEMPT(full) [ 329.300054][T10227] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 329.300060][T10227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 329.300068][T10227] Call Trace: [ 329.300073][T10227] [ 329.300079][T10227] dump_stack_lvl+0x100/0x190 [ 329.300106][T10227] dump_header+0xfb/0x606 [ 329.300123][T10227] oom_kill_process.cold+0xd/0x330 [ 329.300141][T10227] out_of_memory+0x340/0x14f0 [ 329.300169][T10227] ? __pfx_out_of_memory+0x10/0x10 [ 329.300203][T10227] mem_cgroup_out_of_memory+0xc6/0x130 [ 329.300226][T10227] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 329.300246][T10227] ? find_held_lock+0x2b/0x80 [ 329.300265][T10227] ? do_raw_spin_unlock+0x145/0x1e0 [ 329.300287][T10227] ? _raw_spin_unlock+0x28/0x50 [ 329.300312][T10227] try_charge_memcg+0x652/0xc90 [ 329.300333][T10227] ? __pfx_try_charge_memcg+0x10/0x10 [ 329.300349][T10227] ? find_held_lock+0x2b/0x80 [ 329.300363][T10227] ? rcu_read_unlock+0x17/0x60 [ 329.300379][T10227] ? rcu_read_unlock+0x17/0x60 [ 329.300402][T10227] charge_memcg+0xa6/0x280 [ 329.300418][T10227] __mem_cgroup_charge+0x2b/0x1e0 [ 329.300438][T10227] shmem_alloc_and_add_folio+0x451/0xd40 [ 329.300467][T10227] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 329.300491][T10227] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 329.300520][T10227] shmem_get_folio_gfp+0x6ab/0x1900 [ 329.300547][T10227] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 329.300573][T10227] ? timestamp_truncate+0x22e/0x2f0 [ 329.300592][T10227] shmem_write_begin+0x1a4/0x420 [ 329.300618][T10227] ? __pfx_shmem_write_begin+0x10/0x10 [ 329.300640][T10227] ? rcu_is_watching+0x12/0xc0 [ 329.300664][T10227] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 329.300686][T10227] generic_perform_write+0x292/0xa40 [ 329.300715][T10227] ? __pfx_generic_perform_write+0x10/0x10 [ 329.300736][T10227] ? __mark_inode_dirty+0x55c/0x1790 [ 329.300759][T10227] ? mnt_put_write_access_file+0x4e/0x100 [ 329.300775][T10227] ? file_update_time_flags+0x373/0x500 [ 329.300796][T10227] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 329.300812][T10227] shmem_file_write_iter+0x10e/0x140 [ 329.300830][T10227] __kernel_write_iter+0x2ac/0x920 [ 329.300847][T10227] ? __pfx___kernel_write_iter+0x10/0x10 [ 329.300862][T10227] ? __up_read+0x2c5/0x700 [ 329.300885][T10227] ? dump_user_range+0x73b/0xb50 [ 329.300902][T10227] ? copy_mc_enhanced_fast_string+0x6/0xf [ 329.300925][T10227] dump_user_range+0x3f9/0xb50 [ 329.300949][T10227] ? __pfx_dump_user_range+0x10/0x10 [ 329.300973][T10227] ? __pfx_writenote+0x10/0x10 [ 329.300997][T10227] elf_core_dump+0x2d5f/0x3d10 [ 329.301027][T10227] ? __pfx_elf_core_dump+0x10/0x10 [ 329.301046][T10227] ? kasan_save_stack+0x3f/0x50 [ 329.301059][T10227] ? kasan_save_stack+0x30/0x50 [ 329.301072][T10227] ? __kasan_kmalloc+0xaa/0xb0 [ 329.301084][T10227] ? __kvmalloc_node_noprof+0x360/0xa00 [ 329.301098][T10227] ? vfs_coredump+0x2105/0x5570 [ 329.301115][T10227] ? asm_exc_page_fault+0x26/0x30 [ 329.301131][T10227] ? 0xffffffffff600000 [ 329.301176][T10227] ? vfs_coredump+0x27bc/0x5570 [ 329.301191][T10227] vfs_coredump+0x27bc/0x5570 [ 329.301221][T10227] ? __pfx_vfs_coredump+0x10/0x10 [ 329.301240][T10227] ? __lock_acquire+0x4a5/0x2630 [ 329.301266][T10227] ? lock_acquire+0x1cf/0x380 [ 329.301294][T10227] ? is_bpf_text_address+0x8a/0x1a0 [ 329.301317][T10227] ? bpf_ksym_find+0x124/0x1c0 [ 329.301355][T10227] ? __kernel_text_address+0xd/0x30 [ 329.301378][T10227] ? unwind_get_return_address+0x59/0xa0 [ 329.301394][T10227] ? arch_stack_walk+0xa6/0xf0 [ 329.301416][T10227] ? __sigqueue_free+0xbe/0x2a0 [ 329.301435][T10227] ? stack_trace_save+0x8e/0xc0 [ 329.301450][T10227] ? __pfx_stack_trace_save+0x10/0x10 [ 329.301469][T10227] ? stack_depot_save_flags+0x27/0x9d0 [ 329.301491][T10227] ? __lock_acquire+0x4a5/0x2630 [ 329.301543][T10227] ? proc_coredump_connector+0x2d3/0x4f0 [ 329.301566][T10227] ? __pfx_proc_coredump_connector+0x10/0x10 [ 329.301594][T10227] ? rcu_is_watching+0x12/0xc0 [ 329.301619][T10227] get_signal+0x1f2a/0x21e0 [ 329.301644][T10227] ? __pfx_get_signal+0x10/0x10 [ 329.301665][T10227] arch_do_signal_or_restart+0x91/0x770 [ 329.301686][T10227] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 329.301710][T10227] ? do_user_addr_fault+0x8d6/0x12f0 [ 329.301730][T10227] irqentry_exit+0x1f8/0x670 [ 329.301747][T10227] asm_exc_page_fault+0x26/0x30 [ 329.301761][T10227] RIP: 0033:0x7f6c5359c821 [ 329.301774][T10227] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 329.301788][T10227] RSP: 002b:000040000000003e EFLAGS: 00010217 [ 329.301801][T10227] RAX: 0000000000000000 RBX: 00007f6c53816180 RCX: 00007f6c5359c819 [ 329.301810][T10227] RDX: 0000000000000000 RSI: 000040000000003e RDI: 0000000000000001 [ 329.301818][T10227] RBP: 00007f6c53632c91 R08: 0000000040000009 R09: 0000000000000000 [ 329.301827][T10227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 329.301836][T10227] R13: 00007f6c53816218 R14: 00007f6c53816180 R15: 00007fffa281d6b8 [ 329.301856][T10227] [ 329.301861][T10227] memory: usage 307200kB, limit 307200kB, failcnt 22233 [ 329.903619][T10227] memory+swap: usage 383136kB, limit 9007199254740988kB, failcnt 0 [ 329.911904][T10227] kmem: usage 3876kB, limit 9007199254740988kB, failcnt 0 [ 330.097853][T10227] Memory cgroup stats for /syz2: [ 330.098055][T10227] cache 310095872 [ 330.158824][T10227] rss 200704 [ 330.162075][T10227] rss_huge 0 [ 330.206046][T10227] shmem 310095872 [ 330.252711][T10607] Process accounting resumed [ 330.312513][T10227] mapped_file 13275136 [ 330.316630][T10227] dirty 0 [ 330.435868][T10227] writeback 0 [ 330.452941][T10227] workingset_refault_anon 2119 [ 330.469593][T10227] workingset_refault_file 3420 [ 330.507789][T10227] swap 77758464 [ 330.533657][T10227] swapcached 137269248 [ 330.596783][T10227] pgpgin 430658 [ 330.683219][T10227] pgpgout 357985 [ 330.686819][T10227] pgfault 293974 [ 330.708642][T10227] pgmajfault 699 [ 330.712240][T10227] inactive_anon 178995200 [ 330.716572][T10227] active_anon 131325952 [ 330.838336][T10227] inactive_file 0 [ 330.864220][T10227] active_file 0 [ 330.867730][T10227] unevictable 0 [ 330.967468][T10227] hierarchical_memory_limit 314572800 [ 330.978313][T10227] hierarchical_memsw_limit 9223372036854771712 [ 331.048425][T10227] total_cache 310095872 [ 331.052658][T10227] total_rss 200704 [ 331.056364][T10227] total_rss_huge 0 [ 331.208331][T10227] total_shmem 310095872 [ 331.301888][T10227] total_mapped_file 13275136 [ 331.429920][T10750] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.0.4294967291), cmd(3) [ 331.457770][T10227] total_dirty 0 [ 331.507042][T10227] total_writeback 0 [ 331.587090][T10227] total_workingset_refault_anon 2119 [ 331.634017][T10227] total_workingset_refault_file 3420 [ 331.694071][T10227] total_swap 77758464 [ 331.707620][T10227] total_swapcached 137269248 [ 331.738090][T10227] total_pgpgin 430658 [ 331.763031][T10227] total_pgpgout 357985 [ 331.793305][T10227] total_pgfault 293974 [ 331.888167][T10227] total_pgmajfault 699 [ 331.918374][T10227] total_inactive_anon 178995200 [ 331.933582][T10227] total_active_anon 131325952 [ 332.019409][T10227] total_inactive_file 0 [ 332.077141][T10227] total_active_file 0 [ 332.091545][T10227] total_unevictable 0 [ 332.119875][T10227] anon_cost 0 [ 332.123193][T10227] file_cost 0 [ 332.126460][T10227] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.826,pid=10235,uid=0 [ 332.479500][T10227] Memory cgroup out of memory: Killed process 10235 (syz.2.826) total-vm:131684kB, anon-rss:136kB, file-rss:51200kB, shmem-rss:12964kB, UID:0 pgtables:252kB oom_score_adj:1000 [ 333.700882][T10790] netlink: 186 bytes leftover after parsing attributes in process `syz.1.943'. [ 335.184849][T10812] futex_wake_op: syz.2.945 tries to shift op by -2048; fix this program [ 335.300731][T10812] futex_wake_op: syz.2.945 tries to shift op by -2048; fix this program [ 335.355244][T10806] program syz.1.944 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 336.181977][T10832] FAULT_INJECTION: forcing a failure. [ 336.181977][T10832] name failslab, interval 1, probability 0, space 0, times 0 [ 336.299444][T10832] CPU: 0 UID: 0 PID: 10832 Comm: syz.1.946 Tainted: G U L syzkaller #0 PREEMPT(full) [ 336.299493][T10832] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 336.299502][T10832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 336.299518][T10832] Call Trace: [ 336.299535][T10832] [ 336.299546][T10832] dump_stack_lvl+0x100/0x190 [ 336.299593][T10832] should_fail_ex.cold+0x5/0xa [ 336.299628][T10832] should_failslab+0xc2/0x120 [ 336.299659][T10832] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 336.299703][T10832] ? mqueue_alloc_inode+0x25/0x50 [ 336.299728][T10832] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 336.299764][T10832] ? __pfx_mqueue_alloc_inode+0x10/0x10 [ 336.299792][T10832] mqueue_alloc_inode+0x25/0x50 [ 336.299818][T10832] alloc_inode+0x68/0x250 [ 336.299856][T10832] new_inode+0x22/0x1c0 [ 336.299897][T10832] mqueue_get_inode+0x2e/0xe00 [ 336.299942][T10832] ? sget_fc+0x801/0xc70 [ 336.299985][T10832] ? __pfx_mqueue_fill_super+0x10/0x10 [ 336.300028][T10832] mqueue_fill_super+0x14d/0x260 [ 336.300073][T10832] get_tree_nodev+0xdd/0x190 [ 336.300101][T10832] mqueue_get_tree+0xf1/0x130 [ 336.300144][T10832] vfs_get_tree+0x92/0x320 [ 336.300185][T10832] fc_mount_longterm+0x1a/0x270 [ 336.300228][T10832] mq_init_ns+0x482/0x820 [ 336.300262][T10832] copy_ipcs+0x3dd/0x7e0 [ 336.300296][T10832] create_new_namespaces+0x20a/0xac0 [ 336.300328][T10832] ? security_capable+0x80/0x260 [ 336.300361][T10832] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 336.300396][T10832] ksys_unshare+0x473/0xad0 [ 336.300434][T10832] ? __pfx_ksys_unshare+0x10/0x10 [ 336.300484][T10832] __x64_sys_unshare+0x31/0x40 [ 336.300519][T10832] do_syscall_64+0x106/0xf80 [ 336.300550][T10832] ? clear_bhb_loop+0x40/0x90 [ 336.300585][T10832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.300613][T10832] RIP: 0033:0x7f71fb99c819 [ 336.300635][T10832] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 336.300662][T10832] RSP: 002b:00007f71fc7ad028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 336.300689][T10832] RAX: ffffffffffffffda RBX: 00007f71fbc16180 RCX: 00007f71fb99c819 [ 336.300708][T10832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 336.300725][T10832] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 336.300742][T10832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.300759][T10832] R13: 00007f71fbc16218 R14: 00007f71fbc16180 R15: 00007ffc62ab7528 [ 336.300798][T10832] [ 336.624188][T10832] FAULT_INJECTION: forcing a failure. [ 336.624188][T10832] name failslab, interval 1, probability 0, space 0, times 0 [ 336.738703][T10832] CPU: 1 UID: 0 PID: 10832 Comm: syz.1.946 Tainted: G U L syzkaller #0 PREEMPT(full) [ 336.738731][T10832] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 336.738737][T10832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 336.738746][T10832] Call Trace: [ 336.738751][T10832] [ 336.738756][T10832] dump_stack_lvl+0x100/0x190 [ 336.738784][T10832] should_fail_ex.cold+0x5/0xa [ 336.738802][T10832] should_failslab+0xc2/0x120 [ 336.738819][T10832] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 336.738842][T10832] ? vm_area_dup+0x27/0x8e0 [ 336.738862][T10832] ? __pfx___up_read+0x10/0x10 [ 336.738883][T10832] ? validate_mm+0x261/0x4e0 [ 336.738906][T10832] vm_area_dup+0x27/0x8e0 [ 336.738928][T10832] __split_vma+0x18c/0xd90 [ 336.738952][T10832] ? __pfx___split_vma+0x10/0x10 [ 336.738976][T10832] ? vms_complete_munmap_vmas+0xaac/0xdd0 [ 336.738998][T10832] ? percpu_counter_add_batch+0xb9/0x230 [ 336.739018][T10832] ? __mt_destroy+0xa6/0x390 [ 336.739034][T10832] vms_gather_munmap_vmas+0x1c6/0x1500 [ 336.739061][T10832] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 336.739088][T10832] ? __pfx_validate_mm+0x10/0x10 [ 336.739113][T10832] do_vmi_align_munmap+0x287/0x5f0 [ 336.739137][T10832] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 336.739186][T10832] do_vmi_munmap+0x1f8/0x3e0 [ 336.739211][T10832] __vm_munmap+0x196/0x390 [ 336.739244][T10832] ? __pfx___vm_munmap+0x10/0x10 [ 336.739279][T10832] __x64_sys_munmap+0x59/0x80 [ 336.739297][T10832] do_syscall_64+0x106/0xf80 [ 336.739312][T10832] ? clear_bhb_loop+0x40/0x90 [ 336.739330][T10832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.739345][T10832] RIP: 0033:0x7f71fb99c647 [ 336.739358][T10832] Code: 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 336.739372][T10832] RSP: 002b:00007f71fc7abd18 EFLAGS: 00000206 ORIG_RAX: 000000000000000b [ 336.739387][T10832] RAX: ffffffffffffffda RBX: 00007f71f4000000 RCX: 00007f71fb99c647 [ 336.739396][T10832] RDX: 0000000000000000 RSI: 0000000001a00000 RDI: 00007f71f8000000 [ 336.739405][T10832] RBP: 0000000000021000 R08: 00000000ffffffff R09: 0000000000000000 [ 336.739413][T10832] R10: 0000000000000022 R11: 0000000000000206 R12: 0000000004000000 [ 336.739422][T10832] R13: 0000000000001000 R14: 00007f71f8000000 R15: 0000000002600000 [ 336.739441][T10832] [ 338.214620][T10859] ptrace attach of "./syz-executor exec"[5827] was attempted by ""[10859] [ 340.572884][T10913] bridge0: port 3(batadv0) entered blocking state [ 340.635068][T10913] bridge0: port 3(batadv0) entered disabled state [ 340.708634][T10913] batadv0: entered allmulticast mode [ 340.715893][T10913] batadv0: entered promiscuous mode [ 340.912805][T10825] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 340.922650][T10825] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 340.979655][T10913] bridge0: port 3(batadv0) entered blocking state [ 340.986380][T10913] bridge0: port 3(batadv0) entered forwarding state [ 341.591767][T10926] vhci_hcd vhci_hcd.0: default hub control req: 5205 v0003 i0001 l2042 [ 342.171887][T10944] block nbd7: not configured, cannot reconfigure [ 342.355491][T10947] netlink: 8 bytes leftover after parsing attributes in process `syz.4.973'. [ 342.357617][T10947] openvswitch: HfR: Dropping previously announced user features [ 342.605766][T10949] sd 0:0:1:0: PR command failed: 1026 [ 342.614328][T10949] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 342.636468][T10949] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 344.365270][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.983'. [ 344.529035][T10990] openvswitch: HfR: Dropping previously announced user features [ 344.841010][T10996] Invalid ELF header magic: != ELF [ 346.315528][T11019] random: crng reseeded on system resumption [ 346.638891][T10227] syz.2.826 (10227) used greatest stack depth: 18584 bytes left [ 347.048342][T11037] netlink: 338 bytes leftover after parsing attributes in process `syz.3.993'. [ 347.338553][T11056] FAULT_INJECTION: forcing a failure. [ 347.338553][T11056] name failslab, interval 1, probability 0, space 0, times 0 [ 347.354070][T11056] CPU: 0 UID: 0 PID: 11056 Comm: syz.3.998 Tainted: G U L syzkaller #0 PREEMPT(full) [ 347.354120][T11056] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 347.354131][T11056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 347.354147][T11056] Call Trace: [ 347.354156][T11056] [ 347.354165][T11056] dump_stack_lvl+0x100/0x190 [ 347.354215][T11056] should_fail_ex.cold+0x5/0xa [ 347.354248][T11056] ? lsm_blob_alloc+0x68/0x90 [ 347.354287][T11056] should_failslab+0xc2/0x120 [ 347.354328][T11056] __kmalloc_noprof+0xe0/0x850 [ 347.354369][T11056] ? trace_kmem_cache_alloc+0xf3/0x120 [ 347.354408][T11056] lsm_blob_alloc+0x68/0x90 [ 347.354448][T11056] security_sk_alloc+0x2d/0x290 [ 347.354478][T11056] sk_prot_alloc+0x1d1/0x2a0 [ 347.354515][T11056] sk_alloc+0x36/0xe80 [ 347.354560][T11056] inet6_create+0x385/0x12b0 [ 347.354592][T11056] ? inet6_create+0x7f/0x12b0 [ 347.354625][T11056] __sock_create+0x339/0x860 [ 347.354669][T11056] udp_sock_create6+0xc7/0x6a0 [ 347.354700][T11056] ? __pfx_udp_sock_create6+0x10/0x10 [ 347.354736][T11056] ? crng_make_state+0x477/0x6c0 [ 347.354769][T11056] ? lockdep_hardirqs_on+0x78/0x100 [ 347.354799][T11056] ? crng_make_state+0x2b0/0x6c0 [ 347.354837][T11056] rxrpc_open_socket+0x206/0x6b0 [ 347.354876][T11056] ? __pfx_rxrpc_open_socket+0x10/0x10 [ 347.354933][T11056] ? rcu_is_watching+0x12/0xc0 [ 347.354985][T11056] rxrpc_lookup_local+0xac7/0x1220 [ 347.355029][T11056] ? __pfx_rxrpc_lookup_local+0x10/0x10 [ 347.355071][T11056] ? __local_bh_enable_ip+0x9e/0x120 [ 347.355109][T11056] rxrpc_sendmsg+0x34a/0x680 [ 347.355155][T11056] sock_write_iter+0x524/0x5a0 [ 347.355189][T11056] ? __pfx_rxrpc_sendmsg+0x10/0x10 [ 347.355229][T11056] ? __pfx_sock_write_iter+0x10/0x10 [ 347.355279][T11056] ? bpf_lsm_file_permission+0x9/0x10 [ 347.355307][T11056] ? security_file_permission+0x76/0x210 [ 347.355355][T11056] ? rw_verify_area+0xce/0x6d0 [ 347.355403][T11056] vfs_write+0x6ac/0x1070 [ 347.355433][T11056] ? __pfx_sock_write_iter+0x10/0x10 [ 347.355472][T11056] ? __pfx_vfs_write+0x10/0x10 [ 347.355499][T11056] ? find_held_lock+0x2b/0x80 [ 347.355554][T11056] ksys_write+0x1f8/0x250 [ 347.355582][T11056] ? __pfx_ksys_write+0x10/0x10 [ 347.355623][T11056] do_syscall_64+0x106/0xf80 [ 347.355651][T11056] ? clear_bhb_loop+0x40/0x90 [ 347.355687][T11056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.355717][T11056] RIP: 0033:0x7f956439c819 [ 347.355747][T11056] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 347.355776][T11056] RSP: 002b:00007f956533c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 347.355806][T11056] RAX: ffffffffffffffda RBX: 00007f9564615fa0 RCX: 00007f956439c819 [ 347.355826][T11056] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 347.355845][T11056] RBP: 00007f9564432c91 R08: 0000000000000000 R09: 0000000000000000 [ 347.355863][T11056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.355881][T11056] R13: 00007f9564616038 R14: 00007f9564615fa0 R15: 00007fffde6601b8 [ 347.355920][T11056] [ 348.750992][T11081] nfs: Bad value for 'source' [ 350.243080][T11114] synth uevent: /bus/mei: unknown uevent action string [ 350.371073][T11113] FAULT_INJECTION: forcing a failure. [ 350.371073][T11113] name failslab, interval 1, probability 0, space 0, times 0 [ 350.396325][T11113] CPU: 0 UID: 0 PID: 11113 Comm: syz.2.1011 Tainted: G U L syzkaller #0 PREEMPT(full) [ 350.396378][T11113] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 350.396390][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 350.396407][T11113] Call Trace: [ 350.396416][T11113] [ 350.396427][T11113] dump_stack_lvl+0x100/0x190 [ 350.396479][T11113] should_fail_ex.cold+0x5/0xa [ 350.396513][T11113] ? __register_sysctl_table+0xac/0x1650 [ 350.396544][T11113] should_failslab+0xc2/0x120 [ 350.396578][T11113] __kmalloc_noprof+0xe0/0x850 [ 350.396632][T11113] __register_sysctl_table+0xac/0x1650 [ 350.396662][T11113] ? is_module_address+0x5f/0xf0 [ 350.396708][T11113] ? __pfx___register_sysctl_table+0x10/0x10 [ 350.396737][T11113] ? is_module_address+0x69/0xf0 [ 350.396774][T11113] ? register_net_sysctl_sz+0x222/0x430 [ 350.396811][T11113] ? __asan_memcpy+0x3c/0x60 [ 350.396858][T11113] sctp_sysctl_net_register+0x15e/0x200 [ 350.396891][T11113] ? __pfx_sctp_defaults_init+0x10/0x10 [ 350.396921][T11113] sctp_defaults_init+0x6d2/0xd90 [ 350.396952][T11113] ? __pfx_sctp_defaults_init+0x10/0x10 [ 350.396980][T11113] ops_init+0x1e2/0x5f0 [ 350.397013][T11113] setup_net+0x118/0x3a0 [ 350.397043][T11113] ? __pfx_setup_net+0x10/0x10 [ 350.397071][T11113] ? lockdep_init_map_type+0x5c/0x250 [ 350.397112][T11113] ? mutex_init_lockep+0x110/0x150 [ 350.397159][T11113] copy_net_ns+0x46f/0x7c0 [ 350.397196][T11113] create_new_namespaces+0x3ea/0xac0 [ 350.397245][T11113] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 350.397283][T11113] ksys_unshare+0x473/0xad0 [ 350.397324][T11113] ? __pfx_ksys_unshare+0x10/0x10 [ 350.397378][T11113] __x64_sys_unshare+0x31/0x40 [ 350.397416][T11113] do_syscall_64+0x106/0xf80 [ 350.397445][T11113] ? clear_bhb_loop+0x40/0x90 [ 350.397481][T11113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.397511][T11113] RIP: 0033:0x7f6c5359c819 [ 350.397536][T11113] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 350.397565][T11113] RSP: 002b:00007f6c544f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 350.397594][T11113] RAX: ffffffffffffffda RBX: 00007f6c53815fa0 RCX: 00007f6c5359c819 [ 350.397614][T11113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 350.397632][T11113] RBP: 00007f6c53632c91 R08: 0000000000000000 R09: 0000000000000000 [ 350.397650][T11113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.397667][T11113] R13: 00007f6c53816038 R14: 00007f6c53815fa0 R15: 00007fffa281d6b8 [ 350.397708][T11113] [ 351.868454][T11113] synth uevent: /bus/mei: unknown uevent action string [ 353.484650][T11181] usb usb13: usbfs: process 11181 (syz.2.1027) did not claim interface 10 before use [ 354.386327][T11190] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1029'. [ 355.940731][T11238] vivid-003: ================= START STATUS ================= [ 355.948807][T11238] vivid-003: Radio HW Seek Mode: Bounded [ 355.955873][T11238] vivid-003: Radio Programmable HW Seek: false [ 355.992430][T11238] vivid-003: RDS Rx I/O Mode: Block I/O [ 356.042388][T11238] vivid-003: Generate RBDS Instead of RDS: false [ 356.063696][T11238] vivid-003: RDS Reception: true [ 356.106591][T11238] vivid-003: RDS Program Type: 0 inactive [ 356.136896][T11238] vivid-003: RDS PS Name: inactive [ 356.149196][T11238] vivid-003: RDS Radio Text: inactive [ 356.154733][T11238] vivid-003: RDS Traffic Announcement: false inactive [ 356.223041][T11238] vivid-003: RDS Traffic Program: false inactive [ 356.242737][T11238] vivid-003: RDS Music: false inactive [ 356.264424][T11238] vivid-003: ================== END STATUS ================== [ 356.418571][T11243] zswap: compressor not available [ 357.156728][T11264] openvswitch: netlink: Key type 29 is not supported [ 357.544292][T11266] FAULT_INJECTION: forcing a failure. [ 357.544292][T11266] name failslab, interval 1, probability 0, space 0, times 0 [ 357.669330][T11266] CPU: 1 UID: 0 PID: 11266 Comm: syz.1.1044 Tainted: G U L syzkaller #0 PREEMPT(full) [ 357.669378][T11266] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 357.669388][T11266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 357.669403][T11266] Call Trace: [ 357.669411][T11266] [ 357.669420][T11266] dump_stack_lvl+0x100/0x190 [ 357.669469][T11266] should_fail_ex.cold+0x5/0xa [ 357.669509][T11266] ? sk_prot_alloc+0x10b/0x2a0 [ 357.669541][T11266] should_failslab+0xc2/0x120 [ 357.669573][T11266] __kmalloc_noprof+0xe0/0x850 [ 357.669614][T11266] ? security_inode_alloc+0xcf/0x2c0 [ 357.669654][T11266] sk_prot_alloc+0x10b/0x2a0 [ 357.669689][T11266] sk_alloc+0x36/0xe80 [ 357.669732][T11266] __netlink_create+0x5e/0x2c0 [ 357.669773][T11266] __netlink_kernel_create+0xed/0x750 [ 357.669802][T11266] ? find_held_lock+0x2b/0x80 [ 357.669830][T11266] ? __pfx___netlink_kernel_create+0x10/0x10 [ 357.669859][T11266] ? net_generic+0xea/0x2a0 [ 357.669902][T11266] nfnetlink_net_init+0xda/0x160 [ 357.669940][T11266] ? __pfx_nfnetlink_net_init+0x10/0x10 [ 357.669973][T11266] ? trace_kmalloc+0x101/0x130 [ 357.670003][T11266] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 357.670035][T11266] ? __pfx_nfnetlink_bind+0x10/0x10 [ 357.670070][T11266] ? __pfx_nfnetlink_unbind+0x10/0x10 [ 357.670105][T11266] ? __kmalloc_noprof+0x320/0x850 [ 357.670150][T11266] ? __pfx_nfnetlink_net_init+0x10/0x10 [ 357.670184][T11266] ops_init+0x1e2/0x5f0 [ 357.670214][T11266] setup_net+0x118/0x3a0 [ 357.670241][T11266] ? __pfx_setup_net+0x10/0x10 [ 357.670263][T11266] ? lockdep_init_map_type+0x5c/0x250 [ 357.670298][T11266] ? mutex_init_lockep+0x110/0x150 [ 357.670341][T11266] copy_net_ns+0x46f/0x7c0 [ 357.670375][T11266] create_new_namespaces+0x3ea/0xac0 [ 357.670415][T11266] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 357.670450][T11266] ksys_unshare+0x473/0xad0 [ 357.670488][T11266] ? __pfx_ksys_unshare+0x10/0x10 [ 357.670546][T11266] __x64_sys_unshare+0x31/0x40 [ 357.670579][T11266] do_syscall_64+0x106/0xf80 [ 357.670607][T11266] ? clear_bhb_loop+0x40/0x90 [ 357.670642][T11266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 357.670670][T11266] RIP: 0033:0x7f71fb99c819 [ 357.670693][T11266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 357.670720][T11266] RSP: 002b:00007f71fc7ef028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 357.670748][T11266] RAX: ffffffffffffffda RBX: 00007f71fbc15fa0 RCX: 00007f71fb99c819 [ 357.670766][T11266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 357.670782][T11266] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 357.670799][T11266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 357.670815][T11266] R13: 00007f71fbc16038 R14: 00007f71fbc15fa0 R15: 00007ffc62ab7528 [ 357.670852][T11266] [ 359.350802][T11305] vivid-003: ================= START STATUS ================= [ 359.520445][T11305] vivid-003: Radio HW Seek Mode: Bounded [ 359.557796][T11305] vivid-003: Radio Programmable HW Seek: false [ 359.571207][T11311] netlink: 266 bytes leftover after parsing attributes in process `syz.2.1055'. [ 359.644652][T11311] IPv6: NLM_F_CREATE should be specified when creating new route [ 359.675016][T11305] vivid-003: RDS Rx I/O Mode: Block I/O [ 359.859418][T11321] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1057'. [ 359.905648][T11305] vivid-003: Generate RBDS Instead of RDS: false [ 360.018935][T11305] vivid-003: RDS Reception: true [ 360.023934][T11305] vivid-003: RDS Program Type: 0 inactive [ 360.085135][T11305] vivid-003: RDS PS Name: inactive [ 360.173707][T11305] vivid-003: RDS Radio Text: inactive [ 360.233502][T11305] vivid-003: RDS Traffic Announcement: false inactive [ 360.250637][T11305] vivid-003: RDS Traffic Program: false inactive [ 360.272585][T11305] vivid-003: RDS Music: false inactive [ 360.418522][T10848] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 360.503887][T11305] vivid-003: ================== END STATUS ================== [ 360.765384][T11318] random: crng reseeded on system resumption [ 360.974640][T11329] Process accounting paused [ 362.719283][T11370] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1068'. [ 363.250570][T11382] NFSD: Failed to start, no listeners configured. [ 363.353655][T11394] ------------[ cut here ]------------ [ 363.359344][T11394] !reader [ 363.359354][T11394] WARNING: kernel/trace/ring_buffer.c:7407 at ring_buffer_map_get_reader+0x659/0x880, CPU#0: syz.1.1071/11394 [ 363.373950][T11394] Modules linked in: [ 363.378058][T11394] CPU: 0 UID: 0 PID: 11394 Comm: syz.1.1071 Tainted: G U L syzkaller #0 PREEMPT(full) [ 363.389080][T11394] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 363.394265][T11394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 363.404316][T11394] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880 [ 363.410825][T11394] Code: ff e8 5b d5 fb ff 48 8d 3d 74 60 d1 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 38 d5 fb ff 90 <0f> 0b 90 e8 2f d5 fb ff 48 89 df 31 db e8 25 10 fe ff 48 8b 74 24 [ 363.430457][T11394] RSP: 0018:ffffc90004ddfd90 EFLAGS: 00010083 [ 363.436516][T11394] RAX: 0000000000002861 RBX: ffff88813fea5000 RCX: ffffc9000ffe7000 [ 363.444472][T11394] RDX: 0000000000080000 RSI: ffffffff820c73c8 RDI: ffff8880513e0000 [ 363.452457][T11394] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 363.460440][T11394] R10: 0000000000000000 R11: ffff88813fea50b0 R12: ffff88813fea50b0 [ 363.468408][T11394] R13: dffffc0000000000 R14: ffff88813fea5190 R15: ffff88813fea5018 [ 363.476455][T11394] FS: 00007f71fc78c6c0(0000) GS:ffff888124343000(0000) knlGS:0000000000000000 [ 363.485401][T11394] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 363.491978][T11394] CR2: 0000200000407000 CR3: 000000006781c000 CR4: 00000000003526f0 [ 363.499961][T11394] Call Trace: [ 363.503227][T11394] [ 363.506166][T11394] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 363.512401][T11394] ? __fget_files+0x21f/0x3d0 [ 363.517087][T11394] tracing_buffers_ioctl+0x30d/0x400 [ 363.522368][T11394] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 363.528166][T11394] __x64_sys_ioctl+0x18e/0x210 [ 363.532926][T11394] do_syscall_64+0x106/0xf80 [ 363.537503][T11394] ? clear_bhb_loop+0x40/0x90 [ 363.542169][T11394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.548049][T11394] RIP: 0033:0x7f71fb99c819 [ 363.552449][T11394] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 363.572167][T11394] RSP: 002b:00007f71fc78c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 363.580604][T11394] RAX: ffffffffffffffda RBX: 00007f71fbc16270 RCX: 00007f71fb99c819 [ 363.588649][T11394] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000006 [ 363.596628][T11394] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 363.604773][T11394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.612821][T11394] R13: 00007f71fbc16308 R14: 00007f71fbc16270 R15: 00007ffc62ab7528 [ 363.620797][T11394] [ 363.623815][T11394] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 363.631082][T11394] CPU: 0 UID: 0 PID: 11394 Comm: syz.1.1071 Tainted: G U L syzkaller #0 PREEMPT(full) [ 363.642114][T11394] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 363.647393][T11394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 363.657524][T11394] Call Trace: [ 363.660800][T11394] [ 363.663721][T11394] dump_stack_lvl+0x100/0x190 [ 363.668418][T11394] vpanic+0x552/0x970 [ 363.672406][T11394] ? __pfx_vpanic+0x10/0x10 [ 363.676906][T11394] panic+0xd1/0xe0 [ 363.680613][T11394] ? __pfx_panic+0x10/0x10 [ 363.685049][T11394] check_panic_on_warn.cold+0x19/0x34 [ 363.690408][T11394] ? ring_buffer_map_get_reader+0x659/0x880 [ 363.696304][T11394] __warn.cold+0x191/0x348 [ 363.700709][T11394] __report_bug+0x296/0x3d0 [ 363.705207][T11394] ? ring_buffer_map_get_reader+0x659/0x880 [ 363.711090][T11394] ? __pfx___report_bug+0x10/0x10 [ 363.716114][T11394] ? add_lock_to_list+0x99/0x110 [ 363.721078][T11394] ? lockdep_unlock+0x5a/0xc0 [ 363.725750][T11394] ? rb_set_head_page+0x1e6/0x2f0 [ 363.730780][T11394] ? ring_buffer_map_get_reader+0x659/0x880 [ 363.736755][T11394] report_bug+0xb2/0x220 [ 363.741001][T11394] ? ring_buffer_map_get_reader+0x659/0x880 [ 363.746886][T11394] handle_bug+0x16a/0x2a0 [ 363.751298][T11394] exc_invalid_op+0x17/0x50 [ 363.755798][T11394] asm_exc_invalid_op+0x1a/0x20 [ 363.760642][T11394] RIP: 0010:ring_buffer_map_get_reader+0x659/0x880 [ 363.767233][T11394] Code: ff e8 5b d5 fb ff 48 8d 3d 74 60 d1 0e 4c 89 fe 67 48 0f b9 3a e9 e0 fc ff ff 4c 8b 7c 24 58 4c 8b 74 24 60 e8 38 d5 fb ff 90 <0f> 0b 90 e8 2f d5 fb ff 48 89 df 31 db e8 25 10 fe ff 48 8b 74 24 [ 363.786854][T11394] RSP: 0018:ffffc90004ddfd90 EFLAGS: 00010083 [ 363.792912][T11394] RAX: 0000000000002861 RBX: ffff88813fea5000 RCX: ffffc9000ffe7000 [ 363.800877][T11394] RDX: 0000000000080000 RSI: ffffffff820c73c8 RDI: ffff8880513e0000 [ 363.808873][T11394] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 363.816873][T11394] R10: 0000000000000000 R11: ffff88813fea50b0 R12: ffff88813fea50b0 [ 363.824920][T11394] R13: dffffc0000000000 R14: ffff88813fea5190 R15: ffff88813fea5018 [ 363.832888][T11394] ? ring_buffer_map_get_reader+0x658/0x880 [ 363.838785][T11394] ? __pfx_ring_buffer_map_get_reader+0x10/0x10 [ 363.845014][T11394] ? __fget_files+0x21f/0x3d0 [ 363.849686][T11394] tracing_buffers_ioctl+0x30d/0x400 [ 363.854975][T11394] ? __pfx_tracing_buffers_ioctl+0x10/0x10 [ 363.860780][T11394] __x64_sys_ioctl+0x18e/0x210 [ 363.865573][T11394] do_syscall_64+0x106/0xf80 [ 363.870152][T11394] ? clear_bhb_loop+0x40/0x90 [ 363.874882][T11394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.880783][T11394] RIP: 0033:0x7f71fb99c819 [ 363.885187][T11394] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 363.904783][T11394] RSP: 002b:00007f71fc78c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 363.913187][T11394] RAX: ffffffffffffffda RBX: 00007f71fbc16270 RCX: 00007f71fb99c819 [ 363.921175][T11394] RDX: 0000000000000000 RSI: 0000000000005220 RDI: 0000000000000006 [ 363.929143][T11394] RBP: 00007f71fba32c91 R08: 0000000000000000 R09: 0000000000000000 [ 363.937122][T11394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.945098][T11394] R13: 00007f71fbc16308 R14: 00007f71fbc16270 R15: 00007ffc62ab7528 [ 363.953069][T11394] [ 363.956425][T11394] Kernel Offset: disabled [ 363.960748][T11394] Rebooting in 86400 seconds..