last executing test programs: 1m57.597853804s ago: executing program 2 (id=836): unshare$auto(0x8000000) shmget$auto(0x0, 0xfffffffffeffffff, 0x69c2) r0 = socket(0xa, 0x1, 0x100) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r2, 0x541c, r3) ioctl$auto_SNDCTL_DSP_SYNC(r3, 0x5001, &(0x7f0000000300)="2b7956fa8a2881e7e40a2bbd5923d08ecba68e0cc973513066e1f12c849d8a5a8d98e05b2da6ff33e182e61373f62e5249730c597c1d30b390d27ef401c297923ffcafde40c1a6904abe8e66e74ee1918062b00defc2ad9aea0d59e9c0d4f866b1fb125deada7cd6268074e08359d171cb1954b6b53012445e70ce9f3fc1c0c96b526b517b6cd909e6b825a5fac48603b066673d4d90fd7bd7ae9de4cb25623ce2967f94cd415dd4c70566068c848546359dd205c010dfe0ca8751bc3924195105ab5d9f6b86232b1e7cf5da7e9d6db9468ea21cddfe80e645d3ba55ac5ab1173a99b77c75edd30795c2b5") r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) sendmsg$auto_NL80211_CMD_CONNECT(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x18, r4, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_TWT_RESPONDER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x854}, 0x4) sendmsg$auto_NL80211_CMD_SET_STATION(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000001) ioctl$auto(r1, 0xab00, r0) unshare$auto(0x40000080) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) mq_unlink$auto(&(0x7f0000000040)='/dev/rtc0\x00') r6 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000001c0), 0x641, 0x0) msgrcv$auto(0x4, &(0x7f0000000240)={0x3, 0xf}, 0x9, 0x9, 0x3) setsockopt$auto_SO_SNDTIMEO_NEW(r6, 0xa4, 0x43, &(0x7f0000000200)='nl80211\x00', 0x8000) close_range$auto(0x2, 0x8, 0x0) 1m56.437940404s ago: executing program 2 (id=838): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) futex$auto(&(0x7f0000000080)=0x9, 0x4b, 0x2211, 0x0, 0x0, 0xfffffff7) getrandom$auto(0x0, 0x6000000, 0x3) getrandom$auto(&(0x7f0000000240)='\x00', 0x1, 0x80) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) setresuid$auto(0x0, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xebd, 0x40000000000a5, 0x8000) pipe$auto(0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0xd76}, 0x2, 0x5) write$auto(r0, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0) r1 = gettid() syz_clone(0x20000000, &(0x7f0000000140)="77a1ac24607e245e0bef64bb04c8aa", 0xf, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="8d576c6c5889b06b018099a14a2f44cb39") sched_setattr$auto(r1, 0x0, 0x3) msync$auto(0x1ffff000, 0x17ffffffffffffc, 0x400000004) getrandom$auto(&(0x7f0000000100)='/s/devx\x9cK$\bx\xe3\x92\x19r\xce\x92\xec\xeertual/mtd/mtd0/bi\x85flip_thld\x00'/61, 0x1, 0x6) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x2, 0x0) fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x9, 0xffffffffffffffff, 0x0) getdents$auto(0xffffffffffffffff, 0x0, 0x400018) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) 1m54.250091826s ago: executing program 2 (id=841): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000800)='/dev/adsp1\x00', 0x200400, 0x0) socket(0x2, 0x3, 0xa) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000000), r0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x5) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) socket(0x10, 0x2, 0x4) r1 = socket(0x10, 0x3, 0x6) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x7ff, 0x0, 0x63, 0x0, 0x0, 0x0, 0x8, 0x200, 0x800000000100002, 0x40000406, 0x2, 0xc, 0x2, 0x11, 0x6, 0x7}) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xee46}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) keyctl$auto(0x2, 0x0, 0x0, 0x3, 0x3ff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00", @raw=0x1}, 0x4, 0x966, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x800, 0x0, &(0x7f00000003c0)={[0xfffffffffffffffa, 0x1, 0x1, 0x5, 0x0, 0x0, 0x6, 0xe, 0x2, 0xffffffffffff6978, 0x4, 0x3, 0x7c25, 0x5, 0x1, 0x5]}, &(0x7f0000000440)={[0x2acc, 0x8, 0x4, 0x9, 0x80, 0x6, 0x80, 0x7f5, 0xf1, 0x9, 0x8000000000000000, 0x4, 0x3, 0x6, 0x7, 0x400]}, &(0x7f00000004c0)={0x8, 0x1}) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002dbd0900fedbdf257e"], 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) 1m52.931777489s ago: executing program 2 (id=846): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop5/queue/discard_max_bytes\x00', 0x0, 0x0) mmap$auto(0x0, 0x20006, 0x4, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0xa, 0x1, 0x84) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r1, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) io_uring_setup$auto(0x59, 0x0) close_range$auto(0x2, 0x8, 0x0) msync$auto(0x0, 0x8000, 0x6) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/block/nullb0/hctx0/busy\x00', 0x40, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000040), 0x5, 0x0, 0x9, 0x0, 0x8000001f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) sendmsg$auto_SMC_NETLINK_DUMP_UEID(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="18000000", @ANYRES16=0x0, @ANYBLOB="00022bb15ecd52c777d767000000c1000000"], 0x18}, 0x1, 0x0, 0x0, 0x20004040}, 0x4004041) getsockopt$auto(r0, 0x0, 0x487, 0x0, &(0x7f0000000040)=0x83) mmap$auto(0x0, 0x9, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mknod$auto(&(0x7f0000000300)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x1, 0x4) lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) socket(0xa, 0x5, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) msgctl$auto(0x0, 0x3, 0x0) socket(0x11, 0x80003, 0x300) setsockopt$auto(0x3, 0x107, 0x16, 0x0, 0x6) socket$nl_generic(0x10, 0x3, 0x10) 1m51.124935666s ago: executing program 2 (id=850): r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010027bd7000f3dbdf2584000000080017000800000004000e00"], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) copy_file_range$auto(0xffffffffffffffff, &(0x7f0000000000)=0x6, r0, &(0x7f00000002c0)=0x616, 0x2, 0x6) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0xe8) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1) sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0x24, r5, 0x4, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x8001, 0x7ffffff8, 0x5, 0x7, 0x5, 0x61, 0x103}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) 1m49.221136229s ago: executing program 2 (id=852): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x3, 0xcda, 0x4000000000df, 0x4000eb1, 0x401, 0x8002) unshare$auto(0x40000080) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/geneve0/disable_policy\x00', 0x40180, 0x0) close_range$auto(0x2, 0x8, 0x0) semctl$auto(0xa, 0x2, 0x13, 0xde) r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) prctl$auto_PR_SET_MDWE(0x41, 0x3, 0x80000000000000, 0x9, 0x5) prctl$auto_PR_SET_MDWE(0x41, 0x4, 0x200, 0x4, 0xfffffffffffffffb) prctl$auto_PR_SET_MDWE(0x41, 0x9, 0xfffffffffffffffb, 0xd, 0x3) prctl$auto_PR_SET_MDWE(0x41, 0x100000001, 0x3, 0x3, 0x0) prctl$auto_PR_SET_MDWE(0x41, 0x0, 0x3476, 0x9, 0xe94) r2 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) read$auto_percpu_stats_fops_(r2, &(0x7f0000000040)=""/83, 0x53) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0) socket(0x11, 0xa, 0x9) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) sendmsg$auto_OVS_FLOW_CMD_SET(r1, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x90}, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) 1m34.176457548s ago: executing program 32 (id=852): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) mmap$auto(0x3, 0xcda, 0x4000000000df, 0x4000eb1, 0x401, 0x8002) unshare$auto(0x40000080) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/geneve0/disable_policy\x00', 0x40180, 0x0) close_range$auto(0x2, 0x8, 0x0) semctl$auto(0xa, 0x2, 0x13, 0xde) r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) prctl$auto_PR_SET_MDWE(0x41, 0x3, 0x80000000000000, 0x9, 0x5) prctl$auto_PR_SET_MDWE(0x41, 0x4, 0x200, 0x4, 0xfffffffffffffffb) prctl$auto_PR_SET_MDWE(0x41, 0x9, 0xfffffffffffffffb, 0xd, 0x3) prctl$auto_PR_SET_MDWE(0x41, 0x100000001, 0x3, 0x3, 0x0) prctl$auto_PR_SET_MDWE(0x41, 0x0, 0x3476, 0x9, 0xe94) r2 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) read$auto_percpu_stats_fops_(r2, &(0x7f0000000040)=""/83, 0x53) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x80000401, 0x4000, 0x0) socket(0x11, 0xa, 0x9) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) sendmsg$auto_OVS_FLOW_CMD_SET(r1, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x90}, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) 11.709167283s ago: executing program 3 (id=1110): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D2\x00', 0x20200, 0x0) setsockopt$auto_SO_WIFI_STATUS(r0, 0x4, 0x29, &(0x7f0000000300)='\x05\a\x89\xaa([\xa8\x92\x0e=\xc0\xacJ\x9b\xd9u;\x87\x12eDg[\x11\xfed\x03\x9c\xa8oB\xa62\xec\xb7-cs\x03\xd9\xbc\x7f+\xdb\xc02\xf5;\xb1e\x05\xbd#\xf0\xbbf\xd4\xfe\x99\x7f\xc6j\xb3|\x87\x99\xca\x9b\xa4\x02J\xc6\xfb\x04\x95\x94\xa9\xd1\xa7\t\xe7\xb5\xd1\xf8`\xc1\xb8\x13\xfd;\xc3\xb5\xfeC\x01\xe5G(\xc2\xc7r\x90\xd3Op\x95\x925CZa\xcd*J*1ueJ\x9b\x97\x9e\x04\xa6\t\xa0X\x18\x8fl\xd7c\xf9!\xc3+dW\xf4>\xd8\xa4$\xc7\xa1y\xfc\x9b;r\xc7\xbf\xfdg\xc3\xee\x1a\xe3\xb1\xc3o\xb1\x84y\x93\x7f/ngp\xa1\x92\x88H\xfa\xa8\xb1r\xee\x00'/195, 0x40) mmap$auto(0x100000000009, 0x20009, 0x4000000000df, 0xebd, 0x401, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) setsockopt$auto(0xffffffffffffffff, 0x29, 0x43, &(0x7f0000000040)='\xa1\x00', 0x4) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r2, 0x400454a4, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x9f, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0) preadv2$auto(r3, &(0x7f0000000080)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x400, 0x2f) mmap$auto(0x0, 0x4120008, 0x46, 0xeb1, 0x401, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) pread64$auto(r1, &(0x7f0000000240)='/3Cocw\x00\x03\x00\x00\x00\x17\x00\x00\x00ipt3\x00\xc3\xa9[/\xd4>p\xaeL@N&-\x1d\xb7\x86\xdc\xa8_3.\xa1\\\xee\xc7\xb4*8\xd6\xc04KDh\xc9\xce\xbe\x16\xca\xaaO\'\xfb\v\b\vM\x00e\xd6\xb9z\xdc\x12\x8f\x9d\x88\xad\xaav1\v\x06\xe79\xb9C\f\x875j\x00\x14\xa7\x7f\x1d\xf0\xf5\xc4\xe4nLc%\x80\xa95\xc3\xc2\xf0}\x05A\xa7\\\x9fC1\x9ci\x13\xbeq\xc8\'\xb8\x8amW\xf9\xe5\xf1\x1a\xe1\x8eTS\x97\xfbx\xb9#\xd9\x03\xcbz\x11\xb2\x04\\\xc0w\xeaS\xad8I$\xa0\x8c\xc4[\x04\xa4\x9a\x8b\xf5og\xee', 0x34b, 0xffff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2a, 0x2, 0x1) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x100000, 0x2, 0x4000000000e1, 0x40000000000eb1, 0x401, 0x3) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 11.28813446s ago: executing program 1 (id=1111): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0) setresuid$auto(0x0, 0x0, 0x0) ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'gretap0\x00', 0x0}) bpf$auto_BPF_MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)=@bpf_attr_0={0x6, 0x101, 0x80000000, 0xc, 0x7c, r0, 0x9, "0618bf4204bab23b355b8d77f9f339e2", r1, r0, 0x8, 0xd715, 0x57, 0xc, r0, r0}, 0x8) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff) r5 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f00000003c0)={@_si_pad}, 0x1ecc, &(0x7f0000000440)={{0x400000ffffffff, 0x2}, {0x7, 0x19}, 0x9, 0x80000000, 0x4, 0x5, 0x8000000000000001, 0x6, 0x6, 0x0, 0x9, 0x0, 0x0, 0x1000, 0x0, 0x4}) r6 = set_tid_address$auto(&(0x7f0000000500)=0x5) r7 = getpgid$auto(0x0) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000ac0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000a80)={&(0x7f0000000540)=ANY=[@ANYBLOB="34050000", @ANYRES16=r4, @ANYBLOB="000226bd7000fbdbdf25020000000800050007000000080006000300000008000400050000001001028075ff83876574dcf7444c53b88992e69a471bfa58053dc94ad66d0953fb1b9cb401c147df5f31671dfc0f9284424129a2c5ce70c649ade9aae6d814619bf71bbd80efe680cd9bc3e7aa59478b4e3e4d0ce05691deebfebdb666888d6f5549d48d92470028f2ccb239e0e683f1107459a18b09a092829949129087a8c782cb94fd36de9315f583a56ceee0e6023fa204fdb92ada8640c18311479406aa31ba39687f786747f4eaef95f64ca8dce56ad81f3544cd13185920f4b3cf6824134e2df6d3630800c500", @ANYRES32=0x0, @ANYBLOB="19e833e93fdf0b102a18ee6b8436634483ed5729eb26e2267dcf5d3a2eaf51db79c25d370c37cf662d480e08f268f1743cd215589548d9cb7109d5df3d29eb45fdec0800050001040000e603038008001500", @ANYRES32, @ANYBLOB="1800fd80040086807290395bf5dd39680400b5800400098021011a80040047800400998008004600", @ANYRES32=r5, @ANYBLOB="57ba479ceef4e6818324b1e9f97fa97bbe3ce31a348cfecb7eec2ef684a20d2ea23398226e773ef1df8719e25ae127e2fcb014daabd30bea4e395f065bebc9c55ca74c7170fa16912b9b54004794ad5d85392503b27624cb7f4b83bbe614fb416f04813fa9a47f303a598ce4ec013c3187ad375eaf61b8e1e49010e1aa0609b7978b149b275524b056e248cc1fcefd092668aca115baa909239baa89e380df020526f0a0bab67ed14d5e55eacdcc09475ce8c32099979a6b51978b761469bfa1790de1824cb99352f038dd88beedd909dea608002900", @ANYRES32=0x0, @ANYBLOB="490f786928777dc08e0861d26a194926ce9dc2c2fcb0dd40666bd041f1c1ee6c8800c408008000", @ANYRES32=r6, @ANYBLOB="0800e300", @ANYRES32=r7, @ANYBLOB="000000ee968d5052b0e0f2196c460f01434708245537f143dc4384af9837fea50bf521c579ff834a5ed1c1e6034df0f5bacbd53be3ce3c3e11151e7e046f1a20b063f556dd605058895c42c61f7cbddbc10b242a5a738ed4925f36651c46e50a10e3065cbfd14c6d680882eea21f09c1fb05e49ebea60fe074be9ff53f2371db538e3b904d4125447b2ec296620ad6f05699789cb40d0d191f5745629ab3ad228cd7c17833cf5fff08fc5fab07e2e8c6e2b0b24eb518001c8014003300ff020000000000000000000000000001d30156801117bdf4445113f39c791ee0c0df9a945c9704ed3564100ded9310d0e1a1a308201c5d5c4bc90e929324ef82db20fbf98ece5e1da4786fc3109cd2a18337ac61083404e8c4cb2dd63f3070ed5802c193b26b8ba4d7730df46f8326578d73f47f26bc6834abab5d54c6281e65f411ce93de1aed2b9ab22fb6e3bc3c214fb9ea1390ecb8f15336bf7f5aba2382efe4708b20f85c2fdb6351df7ab7788670e1c8ad402b3f3e2ba293111ca6454d2d9dd3d3943572cba12feb2c4e32c64eaafd312b1406ef5ae5812cdc17297eae0e3cc8eafb21d0be3761a4f813d16525f99c196185b43625389a7f1bbf144be48ad895bf5e83400068f6f82a7e388537a58ff9b36a1d84e08d02a07bfa7ddc5bf72b189bef6ed52210510c5d618994fd5cb8a6a67d565edc8ecd7c9b72a34bbbed2feeb91f1f4879ebd2fa8fc0c3cce2e96617ce23a8c0e5e1f7d2a5768272be0f3f3762442415b650bee14489101e830adfa4bf30991b18185fa57c89780d00e0046f7ec59ee35644299fe04906f9a8954ac78949bc06356d1c1369253123913000fa778cf7709d9766079f7da889c5045250a0dc5063c516322a907bd460d782791566230c68e0a5263a254abc47bd83378a8c4f2cf187758890f9e5ca68d8f336390000000800040007000000"], 0x534}, 0x1, 0x0, 0x0, 0x28014044}, 0x0) r8 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x8203, 0x0) ioctl$auto(r8, 0x80046f45, 0x38) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) sched_setattr$auto(0x0, 0x0, 0x7b) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) r9 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$auto_tomoyo_operations_securityfs_if(r9, &(0x7f0000000100)="0a1b9a3c3e3e006e163bb154d7886d8ea5c2574c58e9867ecec3371cadb84877", 0x20) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) prctl$auto(0x10, 0x6, 0x7, 0xffffffffffffff78, 0x8) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) 10.693750674s ago: executing program 3 (id=1112): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vidtv.0/i2c-0/dvb/dvb0.dvr0/uevent\x00', 0x183800, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x4, 0x200000ffff, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) io_uring_setup$auto(0x59, 0x0) ioctl$auto_RTC_UIE_ON(0xffffffffffffffff, 0x7003, 0x4) socket(0x15, 0x5, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) r2 = pidfd_open$auto(0x1, 0x5) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) r3 = socket(0xa, 0x5, 0x0) getsockopt$auto(r3, 0x84, 0x24, 0x0, 0x0) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), r3) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x80000, 0x0) ioctl$auto_USB_RAW_IOCTL_RUN(r2, 0x5501, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nbd12\x00', 0x6600, 0x0) 9.945104549s ago: executing program 1 (id=1114): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, 0x0, 0x24000000) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, 0x0, 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r3 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0) socketpair$auto(0x1, 0x5, 0x2a340, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x4000008000001f, 0x6, 0x6d3e, 0x8cfb7, 0x9, 0x6]}, 0x0) wait4$auto(r3, 0x0, 0x80000001, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0x10b142, 0x0) r4 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14abfd) lstat$auto(0x0, &(0x7f0000000180)={0x12, 0xd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1000000006, 0x7, 0x8, 0x5, 0x1000, 0x42, 0x8001, 0x1, 0x60, 0x40000102}) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) fcntl$auto(r4, 0x400, 0x1) close_range$auto(0x2, 0x8, 0x0) 8.435881412s ago: executing program 3 (id=1116): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2c, 0x1, 0x0) listen$auto(0x3, 0x81) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) fsopen$auto(0x0, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0x7) madvise$auto(0xfffffffffffffffa, 0x9, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) mmap$auto(0x7, 0xfffffffffffffffb, 0x4000000000de, 0x78, r1, 0x300000000004) r3 = socket(0x1d, 0x3, 0x1) getsockopt$auto(r3, 0x65, 0x6, 0xffffffffffffffff, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) fadvise64$auto_POSIX_FADV_NORMAL(r1, 0x1, 0xb, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xb, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x3624239c, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) 8.230400709s ago: executing program 4 (id=1118): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) getrlimit$auto(0x3, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) lseek$auto(0x3, 0xffffffffff800002, 0x10) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto(r4, 0x40044620, 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0) sendfile$auto(r5, r5, 0x0, 0x5) 7.495781434s ago: executing program 0 (id=1119): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) set_mempolicy$auto(0x1, &(0x7f0000000000)=0x4, 0x21) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x200, 0x4020007, 0x9, 0x100000000001ff, 0xffffffffffffffff, 0x8000) getresgid$auto(&(0x7f00000001c0)=0xffff, &(0x7f00000000c0)=0x6, 0x0) write$auto(0x3, 0x0, 0x100082) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x3fff}, 0x54) mmap$auto(0x0, 0x8, 0x2, 0x9b75, 0x5, 0x0) socketpair$auto(0x4000001e, 0x2d2c, 0xb30, 0x0) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(r1, 0x806c4120, &(0x7f0000000100)={0x0, 0x7, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xfffff801, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"}) r2 = socket(0x1f, 0x3, 0x2) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x8) setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8) r3 = open(&(0x7f0000000000)='./file0\x00', 0x222c0, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty18\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5457, r3) 7.46370281s ago: executing program 1 (id=1120): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getgroups$auto(0x7fd, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000040)=0x5) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0) r3 = ioctl$auto_NS_GET_TGID_IN_PIDNS(r0, 0x8004b709, &(0x7f00000000c0)=0x4) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000580)={{@inferred=r3, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e00", @raw=0x7ff}, 0x4, 0x966, 0x3, @raw=0x404, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r2, 0xc008551c, 0x0) socket$nl_generic(0x10, 0x3, 0x10) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x4, 0x6, 0x2}, 0x8000, 0x0, 0x6) futex$auto(&(0x7f0000000080)=0x1, 0x9, 0x1, 0x0, 0x0, 0xfffffffa) futex$auto(&(0x7f0000000080)=0x2, 0xa, 0xf3b, 0x0, 0x0, 0x440a48ce) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x22a02, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000080), 0xc0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) 6.880331843s ago: executing program 4 (id=1121): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) set_mempolicy$auto(0x1, &(0x7f0000000000)=0x4, 0x21) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x200, 0x4020007, 0x9, 0x100000000001ff, 0xffffffffffffffff, 0x8000) getresgid$auto(&(0x7f00000001c0)=0xffff, &(0x7f00000000c0)=0x6, 0x0) write$auto(0x3, 0x0, 0x100082) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x3fff}, 0x54) mmap$auto(0x0, 0x8, 0x2, 0x9b75, 0x5, 0x0) socketpair$auto(0x4000001e, 0x2d2c, 0xb30, 0x0) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(r1, 0x806c4120, &(0x7f0000000100)={0x0, 0x7, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xfffff801, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"}) r2 = socket(0x1f, 0x3, 0x2) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x8) setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2000000008000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty18\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5457, 0xffffffffffffffff) 6.363380471s ago: executing program 0 (id=1122): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/i8042/serio0/bind_mode\x00', 0xe3102, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x68140, 0x0) timer_settime$auto(0x4, 0x5, &(0x7f00000000c0)={{0x8, 0x10004}, {0x809, 0x11}}, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0) ioctl$auto_TCFLSH2(r1, 0x80045439, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 5.872650167s ago: executing program 0 (id=1123): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) getrlimit$auto(0x3, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) lseek$auto(0x3, 0xffffffffff800002, 0x10) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto(r4, 0x40044620, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0) getsockopt$auto_SO_MAX_PACING_RATE(r4, 0x87, 0x2f, &(0x7f0000000040)='&-\x00', &(0x7f0000000080)=0x1c) 4.980710675s ago: executing program 0 (id=1125): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80f) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1c, 0x1, 0x6, 0xee00, 0x3ff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0x90001, 0x0) fdatasync$auto(r2) r3 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)=ANY=[@ANYBLOB="fdff0700", @ANYRES16=r3, @ANYBLOB="010031bd7000fddbdf250c000000"], 0x14}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x103003, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2003f0, 0x17) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) ioctl$auto_SNDCTL_DSP_GETODELAY(r4, 0x80045017, 0x0) ioctl$auto_SNDCTL_DSP_GETOSPACE(r4, 0x8010500c, &(0x7f0000000480)) 4.979392417s ago: executing program 4 (id=1133): mmap$auto(0x200000003, 0x6b7, 0x20000001000009, 0x17, 0xffffffffffffffff, 0x304000000000) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) getsockopt$auto(r0, 0x0, 0xd0, 0x0, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SCHED_CORE_GET(0x476, 0x0, 0x0, 0x5, 0x7) socket(0xa, 0x1, 0x84) socket(0xf, 0x2, 0x6) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0xf, &(0x7f0000000100)=@bpf_attr_11={0xb2, 0x7, 0xfffffffe, 0x3264, 0xb, 0x4b, 0x3}, 0xa3) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x2, 0x400008, 0xdf, 0x49b72, 0xffffffffffffffff, 0x6) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100001, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x111800, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) 4.969286559s ago: executing program 3 (id=1134): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2c, 0x1, 0x0) listen$auto(0x3, 0x81) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f00, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) fsopen$auto(0x0, 0x1) prctl$auto(0x1000000003b, 0x1, 0x4, 0xd73, 0x7) madvise$auto(0xfffffffffffffffa, 0x9, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r1) mmap$auto(0x7, 0xfffffffffffffffb, 0x4000000000de, 0x78, r1, 0x300000000004) r3 = socket(0x1d, 0x3, 0x1) getsockopt$auto(r3, 0x65, 0x6, 0xffffffffffffffff, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) fadvise64$auto_POSIX_FADV_NORMAL(r1, 0x1, 0xb, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xb, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x3624239c, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) 2.929513465s ago: executing program 0 (id=1126): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) ioctl$auto(0x3, 0x8905, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) madvise$auto(0x0, 0x240007, 0x19) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) close_range$auto(0x2, 0x8, 0x0) userfaultfd$auto(0x1) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) 2.928752829s ago: executing program 1 (id=1127): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x15, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x100, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = socket(0x23, 0x80805, 0x0) bind$auto(r1, &(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x22100, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x37, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x7, 0x3, 0x800, 0x80000023, 0x200000000000007, 0x6d42, 0xc, 0x2495dae0, 0x6]}, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x2, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0) getsockopt$auto_SO_TXREHASH(r2, 0xffffff00, 0x4a, &(0x7f00000001c0)='\x00', 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) madvise$auto(0x2000, 0x20499d, 0x9) 2.909860499s ago: executing program 4 (id=1128): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) set_mempolicy$auto(0x1, &(0x7f0000000000)=0x4, 0x21) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x200, 0x4020007, 0x9, 0x100000000001ff, 0xffffffffffffffff, 0x8000) getresgid$auto(&(0x7f00000001c0)=0xffff, &(0x7f00000000c0)=0x6, 0x0) write$auto(0x3, 0x0, 0x100082) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x3fff}, 0x54) mmap$auto(0x0, 0x8, 0x2, 0x9b75, 0x5, 0x0) socketpair$auto(0x4000001e, 0x2d2c, 0xb30, 0x0) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(r1, 0x806c4120, &(0x7f0000000100)={0x0, 0x7, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xfffff801, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"}) socket(0x1f, 0x3, 0x2) setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2000000008000) r2 = open(&(0x7f0000000000)='./file0\x00', 0x222c0, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty18\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5457, r2) 1.778782448s ago: executing program 4 (id=1129): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) set_mempolicy$auto(0x1, &(0x7f0000000000)=0x4, 0x21) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x200, 0x4020007, 0x9, 0x100000000001ff, 0xffffffffffffffff, 0x8000) getresgid$auto(&(0x7f00000001c0)=0xffff, &(0x7f00000000c0)=0x6, 0x0) write$auto(0x3, 0x0, 0x100082) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x3fff}, 0x54) mmap$auto(0x0, 0x8, 0x2, 0x9b75, 0x5, 0x0) socketpair$auto(0x4000001e, 0x2d2c, 0xb30, 0x0) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(r1, 0x806c4120, &(0x7f0000000100)={0x0, 0x7, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xfffff801, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"}) r2 = socket(0x1f, 0x3, 0x2) setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2000000008000) r3 = open(&(0x7f0000000000)='./file0\x00', 0x222c0, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x20, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty18\x00', 0x40001, 0x0) ioctl$auto(0x3, 0x5457, r3) 1.598473949s ago: executing program 1 (id=1130): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) getrlimit$auto(0x3, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) lseek$auto(0x3, 0xffffffffff800002, 0x10) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto(r4, 0x40044620, 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0) sendfile$auto(r5, r5, 0x0, 0x5) 1.510962373s ago: executing program 3 (id=1131): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x20, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) mmap$auto(0x0, 0x2020005, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0xe8) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x8001, 0x7ffffff8, 0x5, 0x7, 0x5, 0x61, 0x103}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) futex$auto(0x0, 0x5, 0xfffff05e, 0x0, 0x0, 0x80000001) gettid() 311.092159ms ago: executing program 4 (id=1132): mmap$auto(0x800000, 0x202000b, 0x4, 0x15, 0xfffffffffffffffa, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x3) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x1, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000) shmctl$auto_IPC_SET(0xc, 0x1, &(0x7f0000000300)={{0xffffffff, 0xffffffffffffffff, 0xee01, 0x1000, 0xae, 0x9, 0x6}, 0x1, 0x7, 0x2, 0x280, @raw, @raw=0x5, 0x3, 0x0, &(0x7f0000000140)="4666def67af41b4f051e39fd6511fd6cfab11faa93fdd757f3a42ab52c0db46c7c57737a54cb9ad1fccd9f47e3400debebecee8c4b3ab4b0ecd15cb89799d7a8a423d738e2914ff98f43b494873650cfa841ca9b379cdbceb067f222f9852e4e248e519e6e2d25bc83b3fb9ec16cbc5fe503b9662d19861c9bb377749418140efde7024c7215d323a6c79c5be94bc04ed0d9afbb9c9574ff829522a54b91ef7bcef85e226564639c87b944203a6814a00eea8134d42bc137511ab276827b7ee17d85c2722c34b6d9cd3c095bd1094df859fd44defb05f086d4", 0x0}) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) shutdown$auto(0x200000003, 0x2) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/251, 0xfb) close_range$auto(0x2, 0xffffffffffffffff, 0x6) socket(0x2, 0x80002, 0x73) openat$auto_hpet_fops_hpet(0xffffffffffffff9c, 0x0, 0x200, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f00000004c0)="e3188176b96f56170e647ad5b75e3e9d5b25824af2509ae55ed5ee191ee9257ac48ac1e8c7ca249fdb72092d4d6cb4b85c6e5e63af6e6386605a2acad0c973ffc78036fb03e7317159be64a299df97910013248ab5d114aa9179182bc486b00af747556837f9ef96271ce9d8c9987a0c8f56", 0x72) 197.670875ms ago: executing program 3 (id=1135): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) getrlimit$auto(0x3, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) lseek$auto(0x3, 0xffffffffff800002, 0x10) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto(r4, 0x40044620, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/lock_policy\x00', 0x82, 0x0) getsockopt$auto_SO_MAX_PACING_RATE(r4, 0x87, 0x2f, &(0x7f0000000040)='&-\x00', &(0x7f0000000080)=0x1c) 32.585228ms ago: executing program 0 (id=1136): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vidtv.0/i2c-0/dvb/dvb0.dvr0/uevent\x00', 0x183800, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x4, 0x200000ffff, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, &(0x7f0000000180)=""/178, 0xb2) io_uring_setup$auto(0x59, 0x0) ioctl$auto_RTC_UIE_ON(0xffffffffffffffff, 0x7003, 0x4) socket(0x15, 0x5, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) r2 = pidfd_open$auto(0x1, 0x5) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) r3 = socket(0xa, 0x5, 0x0) getsockopt$auto(r3, 0x84, 0x24, 0x0, 0x0) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), r3) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x80000, 0x0) ioctl$auto_USB_RAW_IOCTL_RUN(r2, 0x5501, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/nbd12\x00', 0x6600, 0x0) 0s ago: executing program 1 (id=1137): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x26, 0x5, 0x8c68) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x101e41, 0x0) ioperm$auto(0x84, 0x7, 0x4000008) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyr0\x00', 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x802, 0x8000009, 0x1, 0x19, 0xffffffffffffffff, 0x100000000000008) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2b, 0x0) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/security/tomoyo/audit\x00', 0x50ba82, 0x0) read$auto(r4, 0x0, 0xb4d3) unshare$auto(0x40000080) setsockopt$auto(r0, 0xd0, 0x800000e4, 0x0, 0x569) kernel console output (not intermixed with test programs): 7fa54cb9af79 [ 222.788312][ T7732] RDX: 000000000000fdf3 RSI: 0000000000000000 RDI: 0000000000000003 [ 222.788322][ T7732] RBP: 00007fa54cc316e0 R08: 0000000000000000 R09: 0000000000000000 [ 222.788332][ T7732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.788342][ T7732] R13: 00007fa54ce16038 R14: 00007fa54ce15fa0 R15: 00007ffd14225538 [ 222.788364][ T7732] [ 223.388155][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 223.404351][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 223.500237][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 223.546699][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 223.638001][ T5891] rtc rtc0: __rtc_set_alarm: err=-22 [ 233.160529][ T7881] rtc_cmos 00:00: Alarms can be up to one day in the future [ 233.388375][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 233.397075][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 233.405148][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 233.414321][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 233.422433][ T2084] rtc rtc0: __rtc_set_alarm: err=-22 [ 236.054327][ T7946] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 236.082203][ T7946] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 241.388732][ T8033] Invalid ELF header magic: != ELF [ 241.480723][ T7998] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 251.771124][ T8195] FAULT_INJECTION: forcing a failure. [ 251.771124][ T8195] name failslab, interval 1, probability 0, space 0, times 0 [ 251.827368][ T8195] CPU: 1 UID: 0 PID: 8195 Comm: syz.2.377 Not tainted syzkaller #0 PREEMPT(full) [ 251.827414][ T8195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 251.827433][ T8195] Call Trace: [ 251.827443][ T8195] [ 251.827456][ T8195] dump_stack_lvl+0x100/0x190 [ 251.827502][ T8195] should_fail_ex.cold+0x5/0xa [ 251.827555][ T8195] should_failslab+0xc2/0x120 [ 251.827598][ T8195] __kmalloc_node_track_caller_noprof+0xf9/0x9d0 [ 251.827640][ T8195] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 251.827671][ T8195] ? snd_pcm_hw_rule_add+0x3b3/0x510 [ 251.827718][ T8195] ? krealloc_node_align_noprof+0x2e6/0x3c0 [ 251.827752][ T8195] krealloc_node_align_noprof+0x2e6/0x3c0 [ 251.827787][ T8195] ? find_held_lock+0x2b/0x80 [ 251.827826][ T8195] snd_pcm_hw_rule_add+0x3b3/0x510 [ 251.827865][ T8195] ? __pfx_snd_pcm_hw_rule_format+0x10/0x10 [ 251.827910][ T8195] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 251.827954][ T8195] ? mutex_init_lockep+0x110/0x150 [ 251.828010][ T8195] ? snd_pcm_attach_substream+0x29b/0xd60 [ 251.828052][ T8195] snd_pcm_open_substream+0x54a/0x1850 [ 251.828089][ T8195] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 251.828134][ T8195] snd_pcm_oss_open+0x735/0x1390 [ 251.828196][ T8195] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 251.828241][ T8195] ? __lock_acquire+0x4a5/0x2630 [ 251.828305][ T8195] ? __pfx_default_wake_function+0x10/0x10 [ 251.828346][ T8195] ? __lock_acquire+0x4a5/0x2630 [ 251.828401][ T8195] ? do_raw_spin_lock+0x128/0x260 [ 251.828433][ T8195] ? soundcore_open+0x231/0x5a0 [ 251.828477][ T8195] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 251.828523][ T8195] soundcore_open+0x2e3/0x5a0 [ 251.828567][ T8195] ? __pfx_soundcore_open+0x10/0x10 [ 251.828606][ T8195] chrdev_open+0x234/0x6a0 [ 251.828642][ T8195] ? __pfx_apparmor_file_open+0x10/0x10 [ 251.828694][ T8195] ? __pfx_chrdev_open+0x10/0x10 [ 251.828731][ T8195] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 251.828778][ T8195] do_dentry_open+0x6d8/0x1660 [ 251.828814][ T8195] ? __pfx_chrdev_open+0x10/0x10 [ 251.828863][ T8195] vfs_open+0x82/0x3f0 [ 251.828913][ T8195] path_openat+0x208c/0x31a0 [ 251.828975][ T8195] ? __pfx_path_openat+0x10/0x10 [ 251.829028][ T8195] do_filp_open+0x1f7/0x420 [ 251.829068][ T8195] ? __pfx_do_filp_open+0x10/0x10 [ 251.829136][ T8195] ? _raw_spin_unlock+0x28/0x50 [ 251.829174][ T8195] ? alloc_fd+0x476/0x790 [ 251.829223][ T8195] do_sys_openat2+0x12e/0x220 [ 251.829271][ T8195] ? __pfx_do_sys_openat2+0x10/0x10 [ 251.829320][ T8195] ? __do_sys_capset+0xfb/0x460 [ 251.829367][ T8195] __x64_sys_openat+0x12d/0x210 [ 251.829413][ T8195] ? __pfx___x64_sys_openat+0x10/0x10 [ 251.829452][ T8195] ? xfd_validate_state+0x129/0x190 [ 251.829497][ T8195] do_syscall_64+0xc9/0xf80 [ 251.829545][ T8195] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.829577][ T8195] RIP: 0033:0x7fa54cb9af79 [ 251.829603][ T8195] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 251.829632][ T8195] RSP: 002b:00007fa54db40028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 251.829664][ T8195] RAX: ffffffffffffffda RBX: 00007fa54ce15fa0 RCX: 00007fa54cb9af79 [ 251.829685][ T8195] RDX: 0000000000020342 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 251.829704][ T8195] RBP: 00007fa54cc316e0 R08: 0000000000000000 R09: 0000000000000000 [ 251.829721][ T8195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 251.829739][ T8195] R13: 00007fa54ce16038 R14: 00007fa54ce15fa0 R15: 00007ffd14225538 [ 251.829783][ T8195] [ 252.319955][ T8195] netlink: 186 bytes leftover after parsing attributes in process `syz.2.377'. [ 254.122857][ T8231] netlink: 28 bytes leftover after parsing attributes in process `syz.1.384'. [ 255.523434][ T8223] rtc_cmos 00:00: Alarms can be up to one day in the future [ 256.388076][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 256.404132][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 256.458062][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 256.488271][ T2084] rtc_cmos 00:00: Alarms can be up to one day in the future [ 256.495601][ T2084] rtc rtc0: __rtc_set_alarm: err=-22 [ 261.072516][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.079269][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 267.986002][ T8463] nvme_fabrics: unknown parameter or missing value '10' in ctrl creation request [ 270.603571][ T8510] netlink: 186 bytes leftover after parsing attributes in process `syz.1.430'. [ 270.653964][ T8510] netlink: 186 bytes leftover after parsing attributes in process `syz.1.430'. [ 270.840347][ T8521] hub 1-0:1.0: USB hub found [ 270.874252][ T8521] hub 1-0:1.0: 1 port detected [ 273.004363][ T8559] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 273.424779][ T8563] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 276.297108][ T8610] nvme_fabrics: unknown parameter or missing value '10' in ctrl creation request [ 286.727868][ T7657] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9 [ 286.864939][ T8787] netlink: zone id is out of range [ 286.904055][ T8787] netlink: zone id is out of range [ 286.983921][ T8784] netlink: set zone limit has 8 unknown bytes [ 287.053794][ T8787] netlink: zone id is out of range [ 287.118772][ T8787] netlink: zone id is out of range [ 287.129231][ T8787] netlink: zone id is out of range [ 287.134380][ T8787] netlink: zone id is out of range [ 287.267592][ T8787] netlink: zone id is out of range [ 287.312468][ T8787] netlink: zone id is out of range [ 287.344640][ T8787] netlink: zone id is out of range [ 290.070079][ T8844] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 290.617224][ T8850] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 290.780678][ T8854] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 291.851901][ T8874] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 291.955081][ T8875] block nbd8: Unsupported socket: should be TCP or UNIX. [ 292.426526][ T8880] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 292.432779][ T8880] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 292.455040][ T8880] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 292.471508][ T8880] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 294.516072][ T7657] Bluetooth: hci3: command 0x0c1a tx timeout [ 294.516210][ T7475] Bluetooth: hci2: command 0x0c1a tx timeout [ 294.528823][ T7657] Bluetooth: hci1: command 0x0c1a tx timeout [ 294.534928][ T7728] Bluetooth: hci0: command 0x0c1a tx timeout [ 298.487699][ T8969] netlink: 504 bytes leftover after parsing attributes in process `syz.0.510'. [ 298.619526][ T8973] netlink: 350 bytes leftover after parsing attributes in process `syz.0.510'. [ 302.171410][ T9024] FAULT_INJECTION: forcing a failure. [ 302.171410][ T9024] name failslab, interval 1, probability 0, space 0, times 0 [ 302.215296][ T9024] CPU: 0 UID: 0 PID: 9024 Comm: syz.0.523 Not tainted syzkaller #0 PREEMPT(full) [ 302.215339][ T9024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 302.215350][ T9024] Call Trace: [ 302.215357][ T9024] [ 302.215364][ T9024] dump_stack_lvl+0x100/0x190 [ 302.215391][ T9024] should_fail_ex.cold+0x5/0xa [ 302.215422][ T9024] should_failslab+0xc2/0x120 [ 302.215447][ T9024] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 302.215471][ T9024] ? find_held_lock+0x2b/0x80 [ 302.215490][ T9024] ? alloc_inode+0x183/0x250 [ 302.215517][ T9024] ? alloc_inode+0x183/0x250 [ 302.215548][ T9024] alloc_inode+0x183/0x250 [ 302.215574][ T9024] path_from_stashed+0x25b/0x750 [ 302.215600][ T9024] pidfs_alloc_file+0xf8/0x290 [ 302.215619][ T9024] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 302.215642][ T9024] pidfd_prepare+0x129/0x200 [ 302.215669][ T9024] __x64_sys_pidfd_open+0x105/0x1a0 [ 302.215709][ T9024] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 302.215755][ T9024] ? rcu_is_watching+0x12/0xc0 [ 302.215785][ T9024] do_syscall_64+0xc9/0xf80 [ 302.215828][ T9024] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.215857][ T9024] RIP: 0033:0x7f80b559af79 [ 302.215878][ T9024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 302.215895][ T9024] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 302.215913][ T9024] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 302.215924][ T9024] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 302.215934][ T9024] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 302.215944][ T9024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.215954][ T9024] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 302.215976][ T9024] [ 302.722648][ T9032] ======================================================= [ 302.722648][ T9032] WARNING: The mand mount option has been deprecated and [ 302.722648][ T9032] and is ignored by this kernel. Remove the mand [ 302.722648][ T9032] option from the mount to silence this warning. [ 302.722648][ T9032] ======================================================= [ 304.211968][ T9032] kexec: Could not allocate control_code_buffer [ 308.442648][ T9121] block nbd8: Unsupported socket: should be TCP or UNIX. [ 310.950701][ T9170] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input15 [ 311.448471][ T9174] nvme_fcloop: unknown parameter or missing value '7' [ 317.356511][ T9245] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 317.372037][ T9245] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 317.381429][ T9245] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 317.395608][ T9245] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 319.385851][ T8920] Bluetooth: hci1: command 0x0c1a tx timeout [ 319.392505][ T7728] Bluetooth: hci0: command 0x0c1a tx timeout [ 319.398874][ T7475] Bluetooth: hci2: command 0x0c1a tx timeout [ 319.475921][ T7475] Bluetooth: hci3: command 0x0c1a tx timeout [ 322.520156][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.536149][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.637380][ T9426] hub 1-0:1.0: USB hub found [ 328.642870][ T9426] hub 1-0:1.0: 1 port detected [ 330.866683][ T9466] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78c04 [ 330.876081][ T9466] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 330.884904][ T9466] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 330.893139][ T9466] page_type: f5(slab) [ 330.898207][ T9466] raw: 00fff00000000040 ffff88813fe30c80 ffffea0000d31e80 dead000000000004 [ 330.942054][ T9466] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 331.024497][ T9466] head: 00fff00000000040 ffff88813fe30c80 ffffea0000d31e80 dead000000000004 [ 331.044475][ T9466] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 331.229390][ T9466] head: 00fff00000000001 ffffea0001e30101 00000000ffffffff 00000000ffffffff [ 331.276056][ T9466] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 331.327367][ T9466] page dumped because: unmovable page [ 331.372347][ T9466] page_owner tracks the page as allocated [ 331.403379][ T9466] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5582, tgid 5582 (sshd), ts 84349546832, free_ts 80621404569 [ 331.512954][ T9466] post_alloc_hook+0x1e1/0x250 [ 331.535962][ T9466] get_page_from_freelist+0xe3d/0x2e10 [ 331.565967][ T9466] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 331.596829][ T9466] alloc_pages_mpol+0x1fb/0x550 [ 331.675829][ T9466] new_slab+0x2c4/0x440 [ 331.721489][ T9466] ___slab_alloc+0xda3/0x1ca0 [ 331.758477][ T9466] __kmem_cache_alloc_bulk+0x20f/0x700 [ 331.811821][ T9466] __pcs_replace_empty_main+0x347/0x4f0 [ 331.846142][ T9466] kmem_cache_alloc_noprof+0x602/0x780 [ 331.856905][ T9466] mas_alloc_nodes+0x280/0x390 [ 331.911575][ T9466] mas_preallocate+0x39c/0xf10 [ 331.952926][ T9466] commit_merge+0x3e3/0xbd0 [ 331.969344][ T9466] vma_modify+0xaa8/0x2330 [ 332.012558][ T9466] vma_modify_flags+0x257/0x3d0 [ 332.039351][ T9466] madvise_vma_behavior+0x664/0x2a40 [ 332.085869][ T9466] madvise_walk_vmas+0x2fe/0xa90 [ 332.125987][ T9466] page last free pid 5176 tgid 5176 stack trace: [ 332.185497][ T9466] __free_frozen_pages+0x822/0x1130 [ 332.200514][ T9466] pgd_free+0x3f4/0x560 [ 332.251280][ T9466] __mmdrop+0xe5/0x750 [ 332.278433][ T9466] finish_task_switch.isra.0+0x76e/0xb70 [ 332.284237][ T9466] __schedule+0xfee/0x5fa0 [ 332.296060][ T9466] schedule+0xdd/0x390 [ 332.300305][ T9466] schedule_timeout+0x1b2/0x280 [ 332.305209][ T9466] __skb_wait_for_more_packets+0x383/0x610 [ 332.391655][ T9466] __unix_dgram_recvmsg+0x22e/0xc30 [ 332.411635][ T9466] unix_dgram_recvmsg+0xd0/0x110 [ 332.436046][ T9466] sock_recvmsg+0x1f9/0x250 [ 332.440722][ T9466] sock_read_iter+0x2c6/0x3c0 [ 332.445416][ T9466] vfs_read+0x957/0xb30 [ 332.465870][ T9466] ksys_read+0x1f8/0x250 [ 332.470204][ T9466] do_syscall_64+0xc9/0xf80 [ 332.474754][ T9466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 335.218372][ T9521] hub 1-0:1.0: USB hub found [ 335.263181][ T9521] hub 1-0:1.0: 1 port detected [ 336.582643][ T9541] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078c04800 pfn:0x78c04 [ 336.658738][ T9541] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 336.742356][ T9541] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 336.781514][ T9541] page_type: f5(slab) [ 336.791624][ T9541] raw: 00fff00000000240 ffff88813fe30c80 ffffea0001f60f10 ffffea00007efc10 [ 336.812466][ T9541] raw: ffff888078c04800 0000000000100003 00000000f5000000 0000000000000000 [ 337.003798][ T9541] head: 00fff00000000240 ffff88813fe30c80 ffffea0001f60f10 ffffea00007efc10 [ 337.053241][ T9541] head: ffff888078c04800 0000000000100003 00000000f5000000 0000000000000000 [ 337.105858][ T9541] head: 00fff00000000001 ffffea0001e30101 00000000ffffffff 00000000ffffffff [ 337.136140][ T9541] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 337.219171][ T9541] page dumped because: unmovable page [ 337.276152][ T9541] page_owner tracks the page as allocated [ 337.388921][ T9541] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5582, tgid 5582 (sshd), ts 84349546832, free_ts 80621404569 [ 337.450444][ T9541] post_alloc_hook+0x1e1/0x250 [ 337.455301][ T9541] get_page_from_freelist+0xe3d/0x2e10 [ 337.463658][ T9541] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 337.470710][ T9541] alloc_pages_mpol+0x1fb/0x550 [ 337.891625][ T9541] new_slab+0x2c4/0x440 [ 337.905812][ T9541] ___slab_alloc+0xda3/0x1ca0 [ 337.945912][ T9541] __kmem_cache_alloc_bulk+0x20f/0x700 [ 337.984636][ T9541] __pcs_replace_empty_main+0x347/0x4f0 [ 338.028577][ T9541] kmem_cache_alloc_noprof+0x602/0x780 [ 338.034249][ T9541] mas_alloc_nodes+0x280/0x390 [ 338.047937][ T9541] mas_preallocate+0x39c/0xf10 [ 338.079021][ T9541] commit_merge+0x3e3/0xbd0 [ 338.099699][ T9541] vma_modify+0xaa8/0x2330 [ 338.121283][ T9541] vma_modify_flags+0x257/0x3d0 [ 338.149401][ T9541] madvise_vma_behavior+0x664/0x2a40 [ 338.155072][ T9541] madvise_walk_vmas+0x2fe/0xa90 [ 338.188442][ T9541] page last free pid 5176 tgid 5176 stack trace: [ 338.227233][ T9541] __free_frozen_pages+0x822/0x1130 [ 338.249137][ T9541] pgd_free+0x3f4/0x560 [ 338.267902][ T9541] __mmdrop+0xe5/0x750 [ 338.312846][ T9541] finish_task_switch.isra.0+0x76e/0xb70 [ 338.350224][ T9541] __schedule+0xfee/0x5fa0 [ 338.360475][ T9541] schedule+0xdd/0x390 [ 338.364725][ T9541] schedule_timeout+0x1b2/0x280 [ 338.465867][ T9541] __skb_wait_for_more_packets+0x383/0x610 [ 338.519451][ T9541] __unix_dgram_recvmsg+0x22e/0xc30 [ 338.524864][ T9541] unix_dgram_recvmsg+0xd0/0x110 [ 338.545897][ T9541] sock_recvmsg+0x1f9/0x250 [ 338.625912][ T9541] sock_read_iter+0x2c6/0x3c0 [ 338.630863][ T9541] vfs_read+0x957/0xb30 [ 338.740483][ T9541] ksys_read+0x1f8/0x250 [ 338.744883][ T9541] do_syscall_64+0xc9/0xf80 [ 338.792390][ T9541] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 354.092268][ T9827] netlink: 504 bytes leftover after parsing attributes in process `syz.1.648'. [ 354.120243][ T9827] netlink: 350 bytes leftover after parsing attributes in process `syz.1.648'. [ 357.627401][ T9883] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 357.679346][ T9883] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 357.690654][ T9883] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 357.703578][ T9883] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 359.705812][ T8920] Bluetooth: hci3: command 0x0c1a tx timeout [ 359.712071][ T7475] Bluetooth: hci2: command 0x0c1a tx timeout [ 359.718483][ T7728] Bluetooth: hci1: command 0x0c1a tx timeout [ 359.724628][ T7467] Bluetooth: hci0: command 0x0c1a tx timeout [ 365.256266][T10017] block nbd8: Unsupported socket: should be TCP or UNIX. [ 368.735303][T10029] rtc_cmos 00:00: Alarms can be up to one day in the future [ 369.387082][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 369.420276][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 369.465175][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 369.496624][ T5891] rtc_cmos 00:00: Alarms can be up to one day in the future [ 369.504276][ T5891] rtc rtc0: __rtc_set_alarm: err=-22 [ 371.597666][T10099] netlink: 8 bytes leftover after parsing attributes in process `syz.3.690'. [ 375.089049][T10159] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 375.102259][T10159] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 375.126445][T10159] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 375.133650][T10159] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 375.681335][T10176] FAULT_INJECTION: forcing a failure. [ 375.681335][T10176] name failslab, interval 1, probability 0, space 0, times 0 [ 375.718056][T10176] CPU: 0 UID: 0 PID: 10176 Comm: syz.1.699 Not tainted syzkaller #0 PREEMPT(full) [ 375.718095][T10176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 375.718106][T10176] Call Trace: [ 375.718112][T10176] [ 375.718120][T10176] dump_stack_lvl+0x100/0x190 [ 375.718149][T10176] should_fail_ex.cold+0x5/0xa [ 375.718180][T10176] should_failslab+0xc2/0x120 [ 375.718205][T10176] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 375.718229][T10176] ? find_held_lock+0x2b/0x80 [ 375.718247][T10176] ? alloc_inode+0x183/0x250 [ 375.718274][T10176] ? alloc_inode+0x183/0x250 [ 375.718298][T10176] alloc_inode+0x183/0x250 [ 375.718322][T10176] path_from_stashed+0x25b/0x750 [ 375.718348][T10176] pidfs_alloc_file+0xf8/0x290 [ 375.718366][T10176] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 375.718389][T10176] pidfd_prepare+0x129/0x200 [ 375.718415][T10176] __x64_sys_pidfd_open+0x105/0x1a0 [ 375.718442][T10176] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 375.718472][T10176] ? rcu_is_watching+0x12/0xc0 [ 375.718490][T10176] do_syscall_64+0xc9/0xf80 [ 375.718517][T10176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.718535][T10176] RIP: 0033:0x7fdd9239af79 [ 375.718549][T10176] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 375.718568][T10176] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 375.718586][T10176] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 375.718597][T10176] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 375.718608][T10176] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 375.718622][T10176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.718632][T10176] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 375.718654][T10176] [ 376.719169][T10173] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 376.846064][T10173] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 376.857886][T10173] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 376.896815][T10173] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 377.898644][T10183] kexec: Could not allocate control_code_buffer [ 378.747866][ T7728] Bluetooth: hci0: command 0x0c1a tx timeout [ 378.905779][ T7728] Bluetooth: hci3: command 0x0c1a tx timeout [ 378.912023][ T7475] Bluetooth: hci2: command 0x0c1a tx timeout [ 378.918993][ T8920] Bluetooth: hci1: command 0x0c1a tx timeout [ 381.225933][T10243] block nbd8: Unsupported socket: should be TCP or UNIX. [ 381.270251][ T7475] Bluetooth: hci2: Malformed LE Event: 0x0b [ 382.713089][T10265] block nbd8: Unsupported socket: should be TCP or UNIX. [ 383.951265][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.957832][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 385.349974][T10315] hub 1-0:1.0: USB hub found [ 385.365319][T10315] hub 1-0:1.0: 1 port detected [ 386.952644][T10342] FAULT_INJECTION: forcing a failure. [ 386.952644][T10342] name failslab, interval 1, probability 0, space 0, times 0 [ 386.968271][T10342] CPU: 0 UID: 0 PID: 10342 Comm: syz.2.730 Not tainted syzkaller #0 PREEMPT(full) [ 386.968299][T10342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 386.968310][T10342] Call Trace: [ 386.968316][T10342] [ 386.968324][T10342] dump_stack_lvl+0x100/0x190 [ 386.968352][T10342] should_fail_ex.cold+0x5/0xa [ 386.968382][T10342] should_failslab+0xc2/0x120 [ 386.968407][T10342] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 386.968438][T10342] ? find_held_lock+0x2b/0x80 [ 386.968456][T10342] ? alloc_inode+0x183/0x250 [ 386.968484][T10342] ? alloc_inode+0x183/0x250 [ 386.968508][T10342] alloc_inode+0x183/0x250 [ 386.968534][T10342] path_from_stashed+0x25b/0x750 [ 386.968560][T10342] pidfs_alloc_file+0xf8/0x290 [ 386.968579][T10342] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 386.968603][T10342] pidfd_prepare+0x129/0x200 [ 386.968630][T10342] __x64_sys_pidfd_open+0x105/0x1a0 [ 386.968657][T10342] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 386.968687][T10342] ? rcu_is_watching+0x12/0xc0 [ 386.968705][T10342] do_syscall_64+0xc9/0xf80 [ 386.968731][T10342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.968749][T10342] RIP: 0033:0x7fa54cb9af79 [ 386.968764][T10342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 386.968781][T10342] RSP: 002b:00007fa54db40028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 386.968798][T10342] RAX: ffffffffffffffda RBX: 00007fa54ce15fa0 RCX: 00007fa54cb9af79 [ 386.968810][T10342] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 386.968820][T10342] RBP: 00007fa54cc316e0 R08: 0000000000000000 R09: 0000000000000000 [ 386.968830][T10342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.968840][T10342] R13: 00007fa54ce16038 R14: 00007fa54ce15fa0 R15: 00007ffd14225538 [ 386.968861][T10342] [ 389.287680][T10347] kexec: Could not allocate control_code_buffer [ 391.114992][T10397] vhci_hcd vhci_hcd.2: invalid port number 16 [ 391.122403][T10397] vhci_hcd vhci_hcd.2: invalid port number 16 [ 396.596264][T10500] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 397.120886][T10508] nbd: failed to add new device [ 400.638750][T10555] ERROR: Out of memory at tomoyo_memory_ok. [ 403.262823][T10597] FAULT_INJECTION: forcing a failure. [ 403.262823][T10597] name failslab, interval 1, probability 0, space 0, times 0 [ 403.302908][T10597] CPU: 0 UID: 0 PID: 10597 Comm: syz.2.778 Not tainted syzkaller #0 PREEMPT(full) [ 403.302935][T10597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 403.302946][T10597] Call Trace: [ 403.302953][T10597] [ 403.302959][T10597] dump_stack_lvl+0x100/0x190 [ 403.302987][T10597] should_fail_ex.cold+0x5/0xa [ 403.303017][T10597] should_failslab+0xc2/0x120 [ 403.303040][T10597] ? net_alloc_generic+0x1e/0x70 [ 403.303058][T10597] __kmalloc_noprof+0xf6/0x9c0 [ 403.303076][T10597] ? __pfx_inc_ucount+0x10/0x10 [ 403.303105][T10597] ? net_alloc_generic+0x1e/0x70 [ 403.303123][T10597] net_alloc_generic+0x1e/0x70 [ 403.303142][T10597] copy_net_ns+0xc6/0x7c0 [ 403.303161][T10597] ? copy_cgroup_ns+0x71/0x970 [ 403.303184][T10597] create_new_namespaces+0x3ea/0xac0 [ 403.303210][T10597] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 403.303234][T10597] ksys_unshare+0x455/0xab0 [ 403.303264][T10597] ? __pfx_ksys_unshare+0x10/0x10 [ 403.303289][T10597] ? xfd_validate_state+0x129/0x190 [ 403.303312][T10597] __x64_sys_unshare+0x31/0x40 [ 403.303337][T10597] do_syscall_64+0xc9/0xf80 [ 403.303364][T10597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.303382][T10597] RIP: 0033:0x7fa54cb9af79 [ 403.303396][T10597] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 403.303412][T10597] RSP: 002b:00007fa54db40028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 403.303430][T10597] RAX: ffffffffffffffda RBX: 00007fa54ce15fa0 RCX: 00007fa54cb9af79 [ 403.303441][T10597] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 403.303452][T10597] RBP: 00007fa54cc316e0 R08: 0000000000000000 R09: 0000000000000000 [ 403.303462][T10597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 403.303472][T10597] R13: 00007fa54ce16038 R14: 00007fa54ce15fa0 R15: 00007ffd14225538 [ 403.303501][T10597] [ 404.050121][T10604] vivid-009: ================= START STATUS ================= [ 404.058194][T10604] vivid-009: Radio HW Seek Mode: Bounded [ 404.064255][T10604] vivid-009: Radio Programmable HW Seek: false [ 404.091134][T10604] vivid-009: RDS Rx I/O Mode: Block I/O [ 404.154918][T10604] vivid-009: Generate RBDS Instead of RDS: false [ 404.195783][T10604] vivid-009: RDS Reception: true [ 404.209051][T10604] vivid-009: RDS Program Type: 0 inactive [ 404.254998][T10604] vivid-009: RDS PS Name: inactive [ 404.266138][T10604] vivid-009: RDS Radio Text: inactive [ 404.272885][T10604] vivid-009: RDS Traffic Announcement: false inactive [ 404.281555][T10604] vivid-009: RDS Traffic Program: false inactive [ 404.291451][T10604] vivid-009: RDS Music: false inactive [ 404.306311][T10604] vivid-009: ================== END STATUS ================== [ 404.749633][T10610] FAULT_INJECTION: forcing a failure. [ 404.749633][T10610] name failslab, interval 1, probability 0, space 0, times 0 [ 404.801259][T10610] CPU: 0 UID: 0 PID: 10610 Comm: syz.3.780 Not tainted syzkaller #0 PREEMPT(full) [ 404.801309][T10610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 404.801327][T10610] Call Trace: [ 404.801338][T10610] [ 404.801350][T10610] dump_stack_lvl+0x100/0x190 [ 404.801394][T10610] should_fail_ex.cold+0x5/0xa [ 404.801442][T10610] should_failslab+0xc2/0x120 [ 404.801479][T10610] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 404.801521][T10610] ? find_held_lock+0x2b/0x80 [ 404.801549][T10610] ? alloc_inode+0x183/0x250 [ 404.801593][T10610] ? alloc_inode+0x183/0x250 [ 404.801630][T10610] alloc_inode+0x183/0x250 [ 404.801667][T10610] path_from_stashed+0x25b/0x750 [ 404.801708][T10610] pidfs_alloc_file+0xf8/0x290 [ 404.801737][T10610] ? __pfx_pidfs_alloc_file+0x10/0x10 [ 404.801778][T10610] pidfd_prepare+0x129/0x200 [ 404.801821][T10610] __x64_sys_pidfd_open+0x105/0x1a0 [ 404.801863][T10610] ? __pfx___x64_sys_pidfd_open+0x10/0x10 [ 404.801909][T10610] ? fdget+0x18b/0x210 [ 404.801940][T10610] ? rcu_is_watching+0x12/0xc0 [ 404.801971][T10610] do_syscall_64+0xc9/0xf80 [ 404.802013][T10610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.802044][T10610] RIP: 0033:0x7f560939af79 [ 404.802069][T10610] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 404.802097][T10610] RSP: 002b:00007f560a33c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2 [ 404.802127][T10610] RAX: ffffffffffffffda RBX: 00007f5609615fa0 RCX: 00007f560939af79 [ 404.802147][T10610] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 404.802163][T10610] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 404.802180][T10610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.802197][T10610] R13: 00007f5609616038 R14: 00007f5609615fa0 R15: 00007fffec0d4dc8 [ 404.802237][T10610] [ 406.634255][T10621] kexec: Could not allocate control_code_buffer [ 409.831141][T10681] FAULT_INJECTION: forcing a failure. [ 409.831141][T10681] name failslab, interval 1, probability 0, space 0, times 0 [ 409.974357][T10681] CPU: 1 UID: 0 PID: 10681 Comm: syz.1.793 Not tainted syzkaller #0 PREEMPT(full) [ 409.974398][T10681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 409.974415][T10681] Call Trace: [ 409.974425][T10681] [ 409.974437][T10681] dump_stack_lvl+0x100/0x190 [ 409.974478][T10681] should_fail_ex.cold+0x5/0xa [ 409.974521][T10681] should_failslab+0xc2/0x120 [ 409.974560][T10681] __kmalloc_cache_node_noprof+0x83/0x840 [ 409.974599][T10681] ? __alloc_disk_node+0x5a/0x6b0 [ 409.974634][T10681] ? __alloc_disk_node+0x5a/0x6b0 [ 409.974659][T10681] __alloc_disk_node+0x5a/0x6b0 [ 409.974690][T10681] __blk_mq_alloc_disk+0x89/0x120 [ 409.974738][T10681] nbd_dev_add+0x492/0xb10 [ 409.974779][T10681] ? find_held_lock+0x2b/0x80 [ 409.974813][T10681] ? __pfx_nbd_dev_add+0x10/0x10 [ 409.974848][T10681] ? nbd_genl_connect+0x131a/0x1a40 [ 409.974913][T10681] ? bpf_lsm_capable+0x9/0x10 [ 409.974958][T10681] ? __radix_tree_lookup+0x217/0x2b0 [ 409.975001][T10681] nbd_genl_connect+0xb8d/0x1a40 [ 409.975042][T10681] ? rcu_is_watching+0x12/0xc0 [ 409.975067][T10681] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290 [ 409.975113][T10681] ? __pfx_nbd_genl_connect+0x10/0x10 [ 409.975157][T10681] ? __nla_parse+0x40/0x60 [ 409.975199][T10681] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 409.975237][T10681] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 409.975299][T10681] genl_family_rcv_msg_doit+0x214/0x300 [ 409.975342][T10681] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 409.975380][T10681] ? genl_get_cmd+0x3ef/0x720 [ 409.975424][T10681] ? __dev_queue_xmit+0x7fd/0x46f0 [ 409.975462][T10681] ? __radix_tree_lookup+0x217/0x2b0 [ 409.975502][T10681] genl_rcv_msg+0x560/0x800 [ 409.975543][T10681] ? __pfx_genl_rcv_msg+0x10/0x10 [ 409.975580][T10681] ? __pfx_nbd_genl_connect+0x10/0x10 [ 409.975639][T10681] netlink_rcv_skb+0x159/0x420 [ 409.975670][T10681] ? __pfx_genl_rcv_msg+0x10/0x10 [ 409.975708][T10681] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 409.975757][T10681] ? netlink_deliver_tap+0x1ae/0xcc0 [ 409.975792][T10681] genl_rcv+0x28/0x40 [ 409.975823][T10681] netlink_unicast+0x5aa/0x870 [ 409.975860][T10681] ? __pfx_netlink_unicast+0x10/0x10 [ 409.975907][T10681] netlink_sendmsg+0x8b0/0xda0 [ 409.975945][T10681] ? __pfx_netlink_sendmsg+0x10/0x10 [ 409.975974][T10681] ? __import_iovec+0x1d2/0x640 [ 409.976009][T10681] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 409.976061][T10681] ____sys_sendmsg+0xa54/0xc30 [ 409.976103][T10681] ? __pfx_____sys_sendmsg+0x10/0x10 [ 409.976138][T10681] ? __pfx___futex_wait+0x10/0x10 [ 409.976190][T10681] ? __pfx_futex_wake_mark+0x10/0x10 [ 409.976242][T10681] ___sys_sendmsg+0x190/0x1e0 [ 409.976292][T10681] ? __pfx____sys_sendmsg+0x10/0x10 [ 409.976348][T10681] ? find_held_lock+0x2b/0x80 [ 409.976405][T10681] __sys_sendmsg+0x170/0x220 [ 409.976435][T10681] ? __pfx___sys_sendmsg+0x10/0x10 [ 409.976463][T10681] ? __x64_sys_futex+0x34f/0x4d0 [ 409.976525][T10681] do_syscall_64+0xc9/0xf80 [ 409.976565][T10681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 409.976594][T10681] RIP: 0033:0x7fdd9239af79 [ 409.976617][T10681] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 409.976643][T10681] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 409.976671][T10681] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 409.976690][T10681] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000002 [ 409.976707][T10681] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 409.976724][T10681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 409.976741][T10681] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 409.976780][T10681] [ 410.509080][T10685] FAULT_INJECTION: forcing a failure. [ 410.509080][T10685] name failslab, interval 1, probability 0, space 0, times 0 [ 410.567789][T10685] CPU: 0 UID: 0 PID: 10685 Comm: syz.2.794 Not tainted syzkaller #0 PREEMPT(full) [ 410.567830][T10685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 410.567847][T10685] Call Trace: [ 410.567857][T10685] [ 410.567869][T10685] dump_stack_lvl+0x100/0x190 [ 410.567913][T10685] should_fail_ex.cold+0x5/0xa [ 410.567963][T10685] should_failslab+0xc2/0x120 [ 410.568005][T10685] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 410.568048][T10685] ? sock_alloc_inode+0x25/0x1c0 [ 410.568091][T10685] ? __pfx_sock_alloc_inode+0x10/0x10 [ 410.568126][T10685] ? sock_alloc_inode+0x25/0x1c0 [ 410.568169][T10685] ? apparmor_socket_create+0x59/0x310 [ 410.568198][T10685] sock_alloc_inode+0x25/0x1c0 [ 410.568234][T10685] alloc_inode+0x68/0x250 [ 410.568279][T10685] sock_alloc+0x44/0x280 [ 410.568321][T10685] ? security_socket_create+0x7f/0x250 [ 410.568372][T10685] __sock_create+0xc2/0x860 [ 410.568420][T10685] inet_ctl_sock_create+0x94/0x230 [ 410.568460][T10685] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 410.568499][T10685] ? timer_init_key+0x14c/0x2c0 [ 410.568541][T10685] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 410.568586][T10685] sctp_ctrlsock_init+0x40/0xd0 [ 410.568630][T10685] ops_init+0x1e2/0x5f0 [ 410.568667][T10685] setup_net+0x118/0x3a0 [ 410.568700][T10685] ? __pfx_setup_net+0x10/0x10 [ 410.568729][T10685] ? lockdep_init_map_type+0x5c/0x250 [ 410.568779][T10685] ? mutex_init_lockep+0x110/0x150 [ 410.568830][T10685] copy_net_ns+0x46f/0x7c0 [ 410.568866][T10685] create_new_namespaces+0x3ea/0xac0 [ 410.568908][T10685] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 410.568948][T10685] ksys_unshare+0x455/0xab0 [ 410.568995][T10685] ? __pfx_ksys_unshare+0x10/0x10 [ 410.569039][T10685] ? xfd_validate_state+0x129/0x190 [ 410.569225][T10685] __x64_sys_unshare+0x31/0x40 [ 410.569279][T10685] do_syscall_64+0xc9/0xf80 [ 410.569324][T10685] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.569354][T10685] RIP: 0033:0x7fa54cb9af79 [ 410.569379][T10685] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 410.569407][T10685] RSP: 002b:00007fa54db40028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 410.569435][T10685] RAX: ffffffffffffffda RBX: 00007fa54ce15fa0 RCX: 00007fa54cb9af79 [ 410.569455][T10685] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 410.569483][T10685] RBP: 00007fa54cc316e0 R08: 0000000000000000 R09: 0000000000000000 [ 410.569500][T10685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.569518][T10685] R13: 00007fa54ce16038 R14: 00007fa54ce15fa0 R15: 00007ffd14225538 [ 410.569560][T10685] [ 410.569576][T10685] net_ratelimit: 5 callbacks suppressed [ 410.569592][T10685] socket: no more sockets [ 411.005947][T10681] nbd: failed to add new device [ 414.197578][T10736] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 415.133179][T10750] FAULT_INJECTION: forcing a failure. [ 415.133179][T10750] name failslab, interval 1, probability 0, space 0, times 0 [ 415.214648][T10750] CPU: 0 UID: 0 PID: 10750 Comm: syz.1.807 Not tainted syzkaller #0 PREEMPT(full) [ 415.214677][T10750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 415.214697][T10750] Call Trace: [ 415.214704][T10750] [ 415.214711][T10750] dump_stack_lvl+0x100/0x190 [ 415.214740][T10750] should_fail_ex.cold+0x5/0xa [ 415.214780][T10750] should_failslab+0xc2/0x120 [ 415.214809][T10750] kmem_cache_alloc_noprof+0x83/0x780 [ 415.214836][T10750] ? __proc_create+0xc2/0x8c0 [ 415.214866][T10750] ? __proc_create+0x2cb/0x8c0 [ 415.214918][T10750] ? __proc_create+0x2cb/0x8c0 [ 415.214947][T10750] __proc_create+0x2cb/0x8c0 [ 415.214981][T10750] ? __pfx___proc_create+0x10/0x10 [ 415.215013][T10750] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 415.215038][T10750] ? pcpu_chunk_relocate+0x134/0x1a0 [ 415.215063][T10750] ? find_held_lock+0x2b/0x80 [ 415.215096][T10750] proc_create_reg+0x75/0x170 [ 415.215117][T10750] ? __pfx_tls_statistics_seq_show+0x10/0x10 [ 415.215144][T10750] proc_create_net_single+0x86/0x180 [ 415.215187][T10750] ? __pfx_proc_create_net_single+0x10/0x10 [ 415.215223][T10750] ? __pfx_tls_init_net+0x10/0x10 [ 415.215248][T10750] tls_proc_init+0x4d/0x70 [ 415.215267][T10750] tls_init_net+0x65/0xf0 [ 415.215297][T10750] ops_init+0x1e2/0x5f0 [ 415.215319][T10750] setup_net+0x118/0x3a0 [ 415.215339][T10750] ? __pfx_setup_net+0x10/0x10 [ 415.215356][T10750] ? lockdep_init_map_type+0x5c/0x250 [ 415.215381][T10750] ? mutex_init_lockep+0x110/0x150 [ 415.215410][T10750] copy_net_ns+0x46f/0x7c0 [ 415.215434][T10750] create_new_namespaces+0x3ea/0xac0 [ 415.215466][T10750] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 415.215490][T10750] ksys_unshare+0x455/0xab0 [ 415.215518][T10750] ? __pfx_ksys_unshare+0x10/0x10 [ 415.215543][T10750] ? xfd_validate_state+0x129/0x190 [ 415.215567][T10750] __x64_sys_unshare+0x31/0x40 [ 415.215593][T10750] do_syscall_64+0xc9/0xf80 [ 415.215627][T10750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.215654][T10750] RIP: 0033:0x7fdd9239af79 [ 415.215677][T10750] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 415.215702][T10750] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 415.215732][T10750] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 415.215752][T10750] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 415.215769][T10750] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 415.215786][T10750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.215803][T10750] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 415.215844][T10750] [ 415.581853][T10755] FAULT_INJECTION: forcing a failure. [ 415.581853][T10755] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 415.595923][T10755] CPU: 0 UID: 0 PID: 10755 Comm: syz.0.809 Not tainted syzkaller #0 PREEMPT(full) [ 415.595965][T10755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 415.595984][T10755] Call Trace: [ 415.595994][T10755] [ 415.596007][T10755] dump_stack_lvl+0x100/0x190 [ 415.596056][T10755] should_fail_ex.cold+0x5/0xa [ 415.596101][T10755] ? prepare_alloc_pages+0x16d/0x5f0 [ 415.596159][T10755] should_fail_alloc_page+0xeb/0x140 [ 415.596204][T10755] prepare_alloc_pages+0x1f0/0x5f0 [ 415.596251][T10755] __alloc_frozen_pages_noprof+0x193/0x2410 [ 415.596296][T10755] ? __lock_acquire+0x4a5/0x2630 [ 415.596333][T10755] ? css_rstat_updated+0x1ce/0x5a0 [ 415.596369][T10755] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 415.596419][T10755] ? __lock_acquire+0x4a5/0x2630 [ 415.596462][T10755] ? find_held_lock+0x2b/0x80 [ 415.596493][T10755] ? local_lock_release+0x99/0x130 [ 415.596537][T10755] ? local_lock_release+0x99/0x130 [ 415.596581][T10755] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 415.596616][T10755] ? policy_nodemask+0xed/0x4f0 [ 415.596661][T10755] alloc_pages_mpol+0x1fb/0x550 [ 415.596705][T10755] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 415.596759][T10755] alloc_pages_noprof+0x131/0x390 [ 415.596805][T10755] pgd_alloc+0x4d/0x640 [ 415.596844][T10755] ? mutex_init_lockep+0x110/0x150 [ 415.596895][T10755] mm_init+0x6da/0x10d0 [ 415.596939][T10755] mm_alloc+0x97/0xd0 [ 415.596977][T10755] alloc_bprm+0x2af/0x710 [ 415.597011][T10755] do_execveat_common.isra.0+0x1d0/0x5b0 [ 415.597051][T10755] __x64_sys_execve+0x8e/0xb0 [ 415.597084][T10755] do_syscall_64+0xc9/0xf80 [ 415.597131][T10755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.597170][T10755] RIP: 0033:0x7f80b559af79 [ 415.597194][T10755] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 415.597222][T10755] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 415.597252][T10755] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 415.597273][T10755] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 415.597292][T10755] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 415.597310][T10755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.597328][T10755] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 415.597370][T10755] [ 423.552912][T10870] ubi0: attaching mtd0 [ 423.563521][T10870] ubi0: scanning is finished [ 423.569627][T10870] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 423.885342][T10870] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 425.156822][T10902] block nbd8: shutting down sockets [ 428.212103][T10936] netlink: 186 bytes leftover after parsing attributes in process `syz.2.841'. [ 428.231928][T10936] netlink: 186 bytes leftover after parsing attributes in process `syz.2.841'. [ 430.129151][T10959] Invalid ELF header magic: != ELF [ 431.756467][T10988] bridge0: port 3(gretap0) entered blocking state [ 431.819661][T10988] FAULT_INJECTION: forcing a failure. [ 431.819661][T10988] name failslab, interval 1, probability 0, space 0, times 0 [ 431.931964][T10988] CPU: 0 UID: 0 PID: 10988 Comm: syz.2.850 Not tainted syzkaller #0 PREEMPT(full) [ 431.932014][T10988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 431.932033][T10988] Call Trace: [ 431.932042][T10988] [ 431.932054][T10988] dump_stack_lvl+0x100/0x190 [ 431.932100][T10988] should_fail_ex.cold+0x5/0xa [ 431.932150][T10988] should_failslab+0xc2/0x120 [ 431.932190][T10988] ? switchdev_deferred_enqueue+0x3e/0x2d0 [ 431.932226][T10988] ? switchdev_deferred_enqueue+0x3e/0x2d0 [ 431.932255][T10988] __kmalloc_noprof+0xf6/0x9c0 [ 431.932282][T10988] ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10 [ 431.932335][T10988] ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10 [ 431.932379][T10988] ? switchdev_deferred_enqueue+0x3e/0x2d0 [ 431.932418][T10988] switchdev_deferred_enqueue+0x3e/0x2d0 [ 431.932463][T10988] switchdev_port_attr_set+0xb5/0x100 [ 431.932508][T10988] br_set_state+0x235/0x610 [ 431.932539][T10988] ? __pfx_br_set_state+0x10/0x10 [ 431.932587][T10988] br_add_if+0x5ae/0x1b40 [ 431.932636][T10988] ? security_capable+0x80/0x260 [ 431.932688][T10988] add_del_if+0x114/0x160 [ 431.932737][T10988] br_dev_siocdevprivate+0x8ac/0x1650 [ 431.932770][T10988] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 431.932815][T10988] ? lock_acquire+0x17c/0x330 [ 431.932861][T10988] ? __pfx___might_resched+0x10/0x10 [ 431.932898][T10988] ? netdev_name_node_lookup+0x107/0x150 [ 431.932944][T10988] ? __mutex_lock+0x26a/0x1b90 [ 431.933006][T10988] dev_ifsioc+0xc15/0x1eb0 [ 431.933038][T10988] ? __pfx_dev_ifsioc+0x10/0x10 [ 431.933064][T10988] ? __pfx___mutex_lock+0x10/0x10 [ 431.933123][T10988] ? dev_load+0x8e/0x240 [ 431.933167][T10988] ? dev_load+0x8e/0x240 [ 431.933223][T10988] dev_ioctl+0x70e/0x1070 [ 431.933254][T10988] sock_ioctl+0x494/0x6b0 [ 431.933298][T10988] ? __pfx_sock_ioctl+0x10/0x10 [ 431.933357][T10988] ? __pfx_sock_ioctl+0x10/0x10 [ 431.933401][T10988] __x64_sys_ioctl+0x18e/0x210 [ 431.933453][T10988] do_syscall_64+0xc9/0xf80 [ 431.933500][T10988] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.933531][T10988] RIP: 0033:0x7fa54cb9af79 [ 431.933557][T10988] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 431.933586][T10988] RSP: 002b:00007fa54dafe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 431.933616][T10988] RAX: ffffffffffffffda RBX: 00007fa54ce16180 RCX: 00007fa54cb9af79 [ 431.933636][T10988] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 431.933654][T10988] RBP: 00007fa54cc316e0 R08: 0000000000000000 R09: 0000000000000000 [ 431.933672][T10988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 431.933689][T10988] R13: 00007fa54ce16218 R14: 00007fa54ce16180 R15: 00007ffd14225538 [ 431.933730][T10988] [ 432.016242][T10988] bridge0: error setting offload STP state on port 3(gretap0) [ 432.345984][T10988] gretap0: entered allmulticast mode [ 432.398103][T10988] gretap0: entered promiscuous mode [ 432.404224][T10988] bridge0: port 3(gretap0) entered blocking state [ 432.411163][T10988] bridge0: port 3(gretap0) entered forwarding state [ 437.275734][ T29] audit: type=1804 audit(2147483715.581:6): pid=11039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.856" name="/newroot/216/file0" dev="tmpfs" ino=1112 res=1 errno=0 [ 440.803431][T11079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.865'. [ 440.814295][T11079] netlink: 'syz.1.865': attribute type 1 has an invalid length. [ 440.822556][T11079] netlink: 13 bytes leftover after parsing attributes in process `syz.1.865'. [ 441.579510][T11082] FAULT_INJECTION: forcing a failure. [ 441.579510][T11082] name failslab, interval 1, probability 0, space 0, times 0 [ 441.635977][T11082] CPU: 0 UID: 0 PID: 11082 Comm: syz.0.867 Not tainted syzkaller #0 PREEMPT(full) [ 441.636022][T11082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 441.636038][T11082] Call Trace: [ 441.636048][T11082] [ 441.636060][T11082] dump_stack_lvl+0x100/0x190 [ 441.636105][T11082] should_fail_ex.cold+0x5/0xa [ 441.636155][T11082] should_failslab+0xc2/0x120 [ 441.636206][T11082] kmem_cache_alloc_noprof+0x83/0x780 [ 441.636245][T11082] ? mempool_init_node+0x2f7/0x6e0 [ 441.636297][T11082] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 441.636339][T11082] ? mempool_init_node+0x2f7/0x6e0 [ 441.636380][T11082] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 441.636421][T11082] mempool_init_node+0x2f7/0x6e0 [ 441.636475][T11082] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 441.636518][T11082] ? __pfx_mempool_free_slab+0x10/0x10 [ 441.636561][T11082] mempool_init_noprof+0x3a/0x50 [ 441.636610][T11082] bioset_init+0x37e/0x8a0 [ 441.636644][T11082] ? __pfx_bioset_init+0x10/0x10 [ 441.636692][T11082] __alloc_disk_node+0x83/0x6b0 [ 441.636731][T11082] __blk_mq_alloc_disk+0x89/0x120 [ 441.636780][T11082] nbd_dev_add+0x492/0xb10 [ 441.636823][T11082] ? find_held_lock+0x2b/0x80 [ 441.636856][T11082] ? __pfx_nbd_dev_add+0x10/0x10 [ 441.636895][T11082] ? nbd_genl_connect+0x131a/0x1a40 [ 441.636962][T11082] ? bpf_lsm_capable+0x9/0x10 [ 441.637013][T11082] ? __radix_tree_lookup+0x217/0x2b0 [ 441.637058][T11082] nbd_genl_connect+0xb8d/0x1a40 [ 441.637100][T11082] ? rcu_is_watching+0x12/0xc0 [ 441.637127][T11082] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290 [ 441.637168][T11082] ? __pfx_nbd_genl_connect+0x10/0x10 [ 441.637222][T11082] ? __nla_parse+0x40/0x60 [ 441.637267][T11082] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 441.637308][T11082] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 441.637356][T11082] genl_family_rcv_msg_doit+0x214/0x300 [ 441.637398][T11082] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 441.637437][T11082] ? genl_get_cmd+0x3ef/0x720 [ 441.637486][T11082] ? __dev_queue_xmit+0x7fd/0x46f0 [ 441.637527][T11082] ? __radix_tree_lookup+0x217/0x2b0 [ 441.637571][T11082] genl_rcv_msg+0x560/0x800 [ 441.637615][T11082] ? __pfx_genl_rcv_msg+0x10/0x10 [ 441.637656][T11082] ? __pfx_nbd_genl_connect+0x10/0x10 [ 441.637717][T11082] netlink_rcv_skb+0x159/0x420 [ 441.637750][T11082] ? __pfx_genl_rcv_msg+0x10/0x10 [ 441.637790][T11082] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 441.637841][T11082] ? netlink_deliver_tap+0x1ae/0xcc0 [ 441.637878][T11082] genl_rcv+0x28/0x40 [ 441.637911][T11082] netlink_unicast+0x5aa/0x870 [ 441.637950][T11082] ? __pfx_netlink_unicast+0x10/0x10 [ 441.638000][T11082] netlink_sendmsg+0x8b0/0xda0 [ 441.638042][T11082] ? __pfx_netlink_sendmsg+0x10/0x10 [ 441.638072][T11082] ? __import_iovec+0x1d2/0x640 [ 441.638108][T11082] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 441.638162][T11082] ____sys_sendmsg+0xa54/0xc30 [ 441.638214][T11082] ? __pfx_____sys_sendmsg+0x10/0x10 [ 441.638249][T11082] ? __pfx___futex_wait+0x10/0x10 [ 441.638303][T11082] ? __pfx_futex_wake_mark+0x10/0x10 [ 441.638359][T11082] ___sys_sendmsg+0x190/0x1e0 [ 441.638404][T11082] ? __pfx____sys_sendmsg+0x10/0x10 [ 441.638466][T11082] ? find_held_lock+0x2b/0x80 [ 441.638525][T11082] __sys_sendmsg+0x170/0x220 [ 441.638558][T11082] ? __pfx___sys_sendmsg+0x10/0x10 [ 441.638588][T11082] ? __x64_sys_futex+0x34f/0x4d0 [ 441.638652][T11082] do_syscall_64+0xc9/0xf80 [ 441.638699][T11082] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.638731][T11082] RIP: 0033:0x7f80b559af79 [ 441.638756][T11082] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 441.638784][T11082] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 441.638814][T11082] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 441.638834][T11082] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000002 [ 441.638852][T11082] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 441.638870][T11082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.638887][T11082] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 441.638929][T11082] [ 442.711824][T11082] nbd: failed to add new device [ 445.396755][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.396858][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 448.386268][ T8920] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 448.395768][ T8920] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 448.410098][ T8920] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 448.422548][ T8920] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 448.433212][ T8920] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 449.235211][T11154] chnl_net:caif_netlink_parms(): no params data found [ 449.882899][T11154] bridge0: port 1(bridge_slave_0) entered blocking state [ 449.890703][T11154] bridge0: port 1(bridge_slave_0) entered disabled state [ 449.900222][T11154] bridge_slave_0: entered allmulticast mode [ 449.914685][T11154] bridge_slave_0: entered promiscuous mode [ 449.989547][T11154] bridge0: port 2(bridge_slave_1) entered blocking state [ 449.996994][T11154] bridge0: port 2(bridge_slave_1) entered disabled state [ 450.007294][T11154] bridge_slave_1: entered allmulticast mode [ 450.016838][T11154] bridge_slave_1: entered promiscuous mode [ 450.135205][T11154] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 450.191030][T11154] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 450.300100][T11154] team0: Port device team_slave_0 added [ 450.330853][T11154] team0: Port device team_slave_1 added [ 450.525691][ T8920] Bluetooth: hci4: command tx timeout [ 450.661858][T11154] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 450.672020][T11154] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 450.751302][T11154] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 450.873753][T11154] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 450.887491][T11154] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 450.918859][T11154] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 451.437623][T11154] hsr_slave_0: entered promiscuous mode [ 451.448229][T11154] hsr_slave_1: entered promiscuous mode [ 451.471258][T11154] debugfs: 'hsr0' already exists in 'hsr' [ 451.490667][T11154] Cannot create hsr debugfs directory [ 452.585781][ T8920] Bluetooth: hci4: command tx timeout [ 453.700924][T11154] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 453.767696][T11154] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 453.806283][T11154] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 453.866578][T11154] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 454.582209][T11154] 8021q: adding VLAN 0 to HW filter on device bond0 [ 454.666060][ T8920] Bluetooth: hci4: command tx timeout [ 454.688116][T11154] 8021q: adding VLAN 0 to HW filter on device team0 [ 454.730075][ T7466] bridge0: port 1(bridge_slave_0) entered blocking state [ 454.737494][ T7466] bridge0: port 1(bridge_slave_0) entered forwarding state [ 454.779362][ T7499] bridge0: port 2(bridge_slave_1) entered blocking state [ 454.787004][ T7499] bridge0: port 2(bridge_slave_1) entered forwarding state [ 455.505128][T11154] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 456.342934][T11154] veth0_vlan: entered promiscuous mode [ 456.415521][T11154] veth1_vlan: entered promiscuous mode [ 456.764288][ T8920] Bluetooth: hci4: command tx timeout [ 456.826495][T11267] block nbd8: shutting down sockets [ 456.841085][T11154] veth0_macvtap: entered promiscuous mode [ 457.002178][T11154] veth1_macvtap: entered promiscuous mode [ 457.153001][T11154] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 457.217866][T11154] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 457.267196][ T7477] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 457.306043][ T7477] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 457.329969][ T7477] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 457.376343][ T7477] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 457.441289][T11271] FAULT_INJECTION: forcing a failure. [ 457.441289][T11271] name failslab, interval 1, probability 0, space 0, times 0 [ 457.487353][T11271] CPU: 0 UID: 0 PID: 11271 Comm: syz.1.897 Not tainted syzkaller #0 PREEMPT(full) [ 457.487380][T11271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 457.487391][T11271] Call Trace: [ 457.487397][T11271] [ 457.487404][T11271] dump_stack_lvl+0x100/0x190 [ 457.487431][T11271] should_fail_ex.cold+0x5/0xa [ 457.487461][T11271] should_failslab+0xc2/0x120 [ 457.487486][T11271] kmem_cache_alloc_noprof+0x83/0x780 [ 457.487508][T11271] ? __proc_create+0xc2/0x8c0 [ 457.487533][T11271] ? __proc_create+0x2cb/0x8c0 [ 457.487563][T11271] ? __proc_create+0x2cb/0x8c0 [ 457.487589][T11271] __proc_create+0x2cb/0x8c0 [ 457.487616][T11271] ? __pfx___proc_create+0x10/0x10 [ 457.487645][T11271] ? _raw_write_unlock+0x28/0x50 [ 457.487668][T11271] ? proc_register+0x559/0x8a0 [ 457.487697][T11271] proc_create_reg+0x75/0x170 [ 457.487715][T11271] proc_create_net_data+0x8e/0x1c0 [ 457.487743][T11271] ? __pfx_proc_create_net_data+0x10/0x10 [ 457.487775][T11271] ? __pfx_kcm_proc_init_net+0x10/0x10 [ 457.487801][T11271] kcm_proc_init_net+0xa3/0x120 [ 457.487826][T11271] ops_init+0x1e2/0x5f0 [ 457.487848][T11271] setup_net+0x118/0x3a0 [ 457.487867][T11271] ? __pfx_setup_net+0x10/0x10 [ 457.487904][T11271] ? lockdep_init_map_type+0x5c/0x250 [ 457.487945][T11271] ? mutex_init_lockep+0x110/0x150 [ 457.487974][T11271] copy_net_ns+0x46f/0x7c0 [ 457.488042][T11271] create_new_namespaces+0x3ea/0xac0 [ 457.488106][T11271] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 457.488141][T11271] ksys_unshare+0x455/0xab0 [ 457.488169][T11271] ? __pfx_ksys_unshare+0x10/0x10 [ 457.488195][T11271] ? xfd_validate_state+0x129/0x190 [ 457.488243][T11271] __x64_sys_unshare+0x31/0x40 [ 457.488269][T11271] do_syscall_64+0xc9/0xf80 [ 457.488302][T11271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.488321][T11271] RIP: 0033:0x7fdd9239af79 [ 457.488354][T11271] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 457.488376][T11271] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 457.488410][T11271] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 457.488429][T11271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 457.488439][T11271] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 457.488451][T11271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 457.488461][T11271] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 457.488498][T11271] [ 458.226163][ T9464] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 458.245884][ T9464] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 458.341475][ T9464] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 458.362933][ T9464] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 458.453376][T11281] binder: 11279:11281 ioctl 4018620d ffffffffffffffff returned -22 [ 459.054789][T11296] FAULT_INJECTION: forcing a failure. [ 459.054789][T11296] name failslab, interval 1, probability 0, space 0, times 0 [ 459.106271][T11296] CPU: 1 UID: 0 PID: 11296 Comm: syz.4.880 Not tainted syzkaller #0 PREEMPT(full) [ 459.106302][T11296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 459.106313][T11296] Call Trace: [ 459.106320][T11296] [ 459.106327][T11296] dump_stack_lvl+0x100/0x190 [ 459.106358][T11296] should_fail_ex.cold+0x5/0xa [ 459.106389][T11296] should_failslab+0xc2/0x120 [ 459.106415][T11296] kmem_cache_alloc_noprof+0x83/0x780 [ 459.106438][T11296] ? mempool_init_node+0x2f7/0x6e0 [ 459.106467][T11296] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 459.106491][T11296] ? mempool_init_node+0x2f7/0x6e0 [ 459.106516][T11296] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 459.106540][T11296] mempool_init_node+0x2f7/0x6e0 [ 459.106570][T11296] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 459.106595][T11296] ? __pfx_mempool_free_slab+0x10/0x10 [ 459.106623][T11296] mempool_init_noprof+0x3a/0x50 [ 459.106653][T11296] bioset_init+0x37e/0x8a0 [ 459.106675][T11296] ? __pfx_bioset_init+0x10/0x10 [ 459.106705][T11296] __alloc_disk_node+0x83/0x6b0 [ 459.106728][T11296] __blk_mq_alloc_disk+0x89/0x120 [ 459.106756][T11296] nbd_dev_add+0x492/0xb10 [ 459.106796][T11296] ? find_held_lock+0x2b/0x80 [ 459.106818][T11296] ? __pfx_nbd_dev_add+0x10/0x10 [ 459.106840][T11296] ? nbd_genl_connect+0x131a/0x1a40 [ 459.106880][T11296] ? bpf_lsm_capable+0x9/0x10 [ 459.106907][T11296] ? __radix_tree_lookup+0x217/0x2b0 [ 459.106934][T11296] nbd_genl_connect+0xb8d/0x1a40 [ 459.106959][T11296] ? rcu_is_watching+0x12/0xc0 [ 459.106974][T11296] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290 [ 459.107001][T11296] ? __pfx_nbd_genl_connect+0x10/0x10 [ 459.107030][T11296] ? __nla_parse+0x40/0x60 [ 459.107058][T11296] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 459.107080][T11296] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 459.107108][T11296] genl_family_rcv_msg_doit+0x214/0x300 [ 459.107132][T11296] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 459.107155][T11296] ? genl_get_cmd+0x3ef/0x720 [ 459.107183][T11296] ? __dev_queue_xmit+0x7fd/0x46f0 [ 459.107208][T11296] ? __radix_tree_lookup+0x217/0x2b0 [ 459.107245][T11296] genl_rcv_msg+0x560/0x800 [ 459.107269][T11296] ? __pfx_genl_rcv_msg+0x10/0x10 [ 459.107292][T11296] ? __pfx_nbd_genl_connect+0x10/0x10 [ 459.107326][T11296] netlink_rcv_skb+0x159/0x420 [ 459.107346][T11296] ? __pfx_genl_rcv_msg+0x10/0x10 [ 459.107369][T11296] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 459.107398][T11296] ? netlink_deliver_tap+0x1ae/0xcc0 [ 459.107428][T11296] genl_rcv+0x28/0x40 [ 459.107451][T11296] netlink_unicast+0x5aa/0x870 [ 459.107475][T11296] ? __pfx_netlink_unicast+0x10/0x10 [ 459.107504][T11296] netlink_sendmsg+0x8b0/0xda0 [ 459.107528][T11296] ? __pfx_netlink_sendmsg+0x10/0x10 [ 459.107546][T11296] ? __import_iovec+0x1d2/0x640 [ 459.107567][T11296] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 459.107600][T11296] ____sys_sendmsg+0xa54/0xc30 [ 459.107625][T11296] ? __pfx_____sys_sendmsg+0x10/0x10 [ 459.107648][T11296] ? __pfx___futex_wait+0x10/0x10 [ 459.107679][T11296] ? __pfx_futex_wake_mark+0x10/0x10 [ 459.107711][T11296] ___sys_sendmsg+0x190/0x1e0 [ 459.107739][T11296] ? __pfx____sys_sendmsg+0x10/0x10 [ 459.107783][T11296] ? find_held_lock+0x2b/0x80 [ 459.107818][T11296] __sys_sendmsg+0x170/0x220 [ 459.107836][T11296] ? __pfx___sys_sendmsg+0x10/0x10 [ 459.107854][T11296] ? __x64_sys_futex+0x34f/0x4d0 [ 459.107892][T11296] do_syscall_64+0xc9/0xf80 [ 459.107921][T11296] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.107941][T11296] RIP: 0033:0x7fd61d39af79 [ 459.107956][T11296] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 459.107972][T11296] RSP: 002b:00007fd61b5f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 459.107990][T11296] RAX: ffffffffffffffda RBX: 00007fd61d615fa0 RCX: 00007fd61d39af79 [ 459.108002][T11296] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000002 [ 459.108012][T11296] RBP: 00007fd61d4316e0 R08: 0000000000000000 R09: 0000000000000000 [ 459.108025][T11296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 459.108036][T11296] R13: 00007fd61d616038 R14: 00007fd61d615fa0 R15: 00007ffe128fa3a8 [ 459.108059][T11296] [ 459.730295][T11296] nbd: failed to add new device [ 460.078912][T11311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.907'. [ 461.039702][ T29] audit: type=1326 audit(2147483739.361:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11321 comm="syz.4.910" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd61d39af79 code=0x0 [ 461.306507][T11328] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 461.306507][T11328] The task syz.4.910 (11328) triggered the difference, watch for misbehavior. [ 461.674818][T11341] netlink: 4 bytes leftover after parsing attributes in process `syz.0.912'. [ 461.739974][T11341] netlink: 'syz.0.912': attribute type 1 has an invalid length. [ 461.882636][T11341] netlink: 13 bytes leftover after parsing attributes in process `syz.0.912'. [ 462.585112][T11351] program syz.0.917 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 462.616614][ T29] audit: type=1807 audit(2147483740.931:8): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 462.652314][T11354] FAULT_INJECTION: forcing a failure. [ 462.652314][T11354] name failslab, interval 1, probability 0, space 0, times 0 [ 462.665161][T11354] CPU: 1 UID: 0 PID: 11354 Comm: syz.3.916 Tainted: G L syzkaller #0 PREEMPT(full) [ 462.665193][T11354] Tainted: [L]=SOFTLOCKUP [ 462.665199][T11354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 462.665210][T11354] Call Trace: [ 462.665216][T11354] [ 462.665223][T11354] dump_stack_lvl+0x100/0x190 [ 462.665251][T11354] should_fail_ex.cold+0x5/0xa [ 462.665281][T11354] should_failslab+0xc2/0x120 [ 462.665305][T11354] kmem_cache_alloc_noprof+0x83/0x780 [ 462.665329][T11354] ? mempool_init_node+0x2f7/0x6e0 [ 462.665358][T11354] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 462.665383][T11354] ? mempool_init_node+0x2f7/0x6e0 [ 462.665407][T11354] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 462.665432][T11354] mempool_init_node+0x2f7/0x6e0 [ 462.665462][T11354] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 462.665487][T11354] ? __pfx_mempool_free_slab+0x10/0x10 [ 462.665512][T11354] mempool_init_noprof+0x3a/0x50 [ 462.665541][T11354] bioset_init+0x37e/0x8a0 [ 462.665560][T11354] ? __pfx_bioset_init+0x10/0x10 [ 462.665601][T11354] __alloc_disk_node+0x83/0x6b0 [ 462.665638][T11354] __blk_mq_alloc_disk+0x89/0x120 [ 462.665681][T11354] nbd_dev_add+0x492/0xb10 [ 462.665720][T11354] ? find_held_lock+0x2b/0x80 [ 462.665749][T11354] ? __pfx_nbd_dev_add+0x10/0x10 [ 462.665788][T11354] ? nbd_genl_connect+0x131a/0x1a40 [ 462.665854][T11354] ? bpf_lsm_capable+0x9/0x10 [ 462.665893][T11354] ? __radix_tree_lookup+0x217/0x2b0 [ 462.665934][T11354] nbd_genl_connect+0xb8d/0x1a40 [ 462.666002][T11354] ? rcu_is_watching+0x12/0xc0 [ 462.666029][T11354] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290 [ 462.666070][T11354] ? __pfx_nbd_genl_connect+0x10/0x10 [ 462.666117][T11354] ? __nla_parse+0x40/0x60 [ 462.666156][T11354] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 462.666190][T11354] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 462.666235][T11354] genl_family_rcv_msg_doit+0x214/0x300 [ 462.666265][T11354] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 462.666287][T11354] ? genl_get_cmd+0x3ef/0x720 [ 462.666314][T11354] ? __dev_queue_xmit+0x7fd/0x46f0 [ 462.666338][T11354] ? __radix_tree_lookup+0x217/0x2b0 [ 462.666363][T11354] genl_rcv_msg+0x560/0x800 [ 462.666387][T11354] ? __pfx_genl_rcv_msg+0x10/0x10 [ 462.666410][T11354] ? __pfx_nbd_genl_connect+0x10/0x10 [ 462.666444][T11354] netlink_rcv_skb+0x159/0x420 [ 462.666463][T11354] ? __pfx_genl_rcv_msg+0x10/0x10 [ 462.666486][T11354] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 462.666514][T11354] ? netlink_deliver_tap+0x1ae/0xcc0 [ 462.666536][T11354] genl_rcv+0x28/0x40 [ 462.666555][T11354] netlink_unicast+0x5aa/0x870 [ 462.666578][T11354] ? __pfx_netlink_unicast+0x10/0x10 [ 462.666605][T11354] netlink_sendmsg+0x8b0/0xda0 [ 462.666628][T11354] ? __pfx_netlink_sendmsg+0x10/0x10 [ 462.666646][T11354] ? __import_iovec+0x1d2/0x640 [ 462.666667][T11354] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 462.666724][T11354] ____sys_sendmsg+0xa54/0xc30 [ 462.666750][T11354] ? __pfx_____sys_sendmsg+0x10/0x10 [ 462.666771][T11354] ? __pfx___futex_wait+0x10/0x10 [ 462.666802][T11354] ? __pfx_futex_wake_mark+0x10/0x10 [ 462.666834][T11354] ___sys_sendmsg+0x190/0x1e0 [ 462.666861][T11354] ? __pfx____sys_sendmsg+0x10/0x10 [ 462.666897][T11354] ? find_held_lock+0x2b/0x80 [ 462.666959][T11354] __sys_sendmsg+0x170/0x220 [ 462.666989][T11354] ? __pfx___sys_sendmsg+0x10/0x10 [ 462.667018][T11354] ? __x64_sys_futex+0x34f/0x4d0 [ 462.667079][T11354] do_syscall_64+0xc9/0xf80 [ 462.667124][T11354] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 462.667153][T11354] RIP: 0033:0x7f560939af79 [ 462.667178][T11354] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 462.667205][T11354] RSP: 002b:00007f560a33c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 462.667233][T11354] RAX: ffffffffffffffda RBX: 00007f5609615fa0 RCX: 00007f560939af79 [ 462.667251][T11354] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000002 [ 462.667269][T11354] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 462.667286][T11354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 462.667303][T11354] R13: 00007f5609616038 R14: 00007f5609615fa0 R15: 00007fffec0d4dc8 [ 462.667345][T11354] [ 463.089949][ T29] audit: type=1802 audit(2147483740.931:9): pid=11351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.917" res=0 errno=0 [ 463.120354][T11350] ima: policy update failed [ 463.128360][ T29] audit: type=1802 audit(2147483741.441:10): pid=11350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.917" res=0 errno=0 [ 463.187326][T11354] nbd: failed to add new device [ 464.850616][T11401] Console: switching to colour VGA+ 80x25 [ 468.461539][T11444] zswap: compressor not available [ 468.827755][T11474] FAULT_INJECTION: forcing a failure. [ 468.827755][T11474] name failslab, interval 1, probability 0, space 0, times 0 [ 468.860590][T11474] CPU: 1 UID: 0 PID: 11474 Comm: syz.4.944 Tainted: G L syzkaller #0 PREEMPT(full) [ 468.860624][T11474] Tainted: [L]=SOFTLOCKUP [ 468.860631][T11474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 468.860641][T11474] Call Trace: [ 468.860647][T11474] [ 468.860654][T11474] dump_stack_lvl+0x100/0x190 [ 468.860681][T11474] should_fail_ex.cold+0x5/0xa [ 468.860712][T11474] should_failslab+0xc2/0x120 [ 468.860737][T11474] kmem_cache_alloc_noprof+0x83/0x780 [ 468.860758][T11474] ? __proc_create+0xc2/0x8c0 [ 468.860784][T11474] ? __proc_create+0x2cb/0x8c0 [ 468.860813][T11474] ? __proc_create+0x2cb/0x8c0 [ 468.860842][T11474] __proc_create+0x2cb/0x8c0 [ 468.860869][T11474] ? __pfx___proc_create+0x10/0x10 [ 468.860899][T11474] ? _raw_write_unlock+0x28/0x50 [ 468.860922][T11474] ? proc_register+0x559/0x8a0 [ 468.860950][T11474] proc_create_reg+0x75/0x170 [ 468.860968][T11474] proc_create_net_data+0x8e/0x1c0 [ 468.860996][T11474] ? __pfx_proc_create_net_data+0x10/0x10 [ 468.861029][T11474] ? __pfx_kcm_proc_init_net+0x10/0x10 [ 468.861055][T11474] kcm_proc_init_net+0xa3/0x120 [ 468.861080][T11474] ops_init+0x1e2/0x5f0 [ 468.861101][T11474] setup_net+0x118/0x3a0 [ 468.861120][T11474] ? __pfx_setup_net+0x10/0x10 [ 468.861138][T11474] ? lockdep_init_map_type+0x5c/0x250 [ 468.861163][T11474] ? mutex_init_lockep+0x110/0x150 [ 468.861191][T11474] copy_net_ns+0x46f/0x7c0 [ 468.861214][T11474] create_new_namespaces+0x3ea/0xac0 [ 468.861240][T11474] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 468.861264][T11474] ksys_unshare+0x455/0xab0 [ 468.861291][T11474] ? __pfx_ksys_unshare+0x10/0x10 [ 468.861317][T11474] ? xfd_validate_state+0x129/0x190 [ 468.861340][T11474] __x64_sys_unshare+0x31/0x40 [ 468.861365][T11474] do_syscall_64+0xc9/0xf80 [ 468.861390][T11474] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.861408][T11474] RIP: 0033:0x7fd61d39af79 [ 468.861423][T11474] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 468.861439][T11474] RSP: 002b:00007fd61b5f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 468.861457][T11474] RAX: ffffffffffffffda RBX: 00007fd61d615fa0 RCX: 00007fd61d39af79 [ 468.861468][T11474] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 468.861478][T11474] RBP: 00007fd61d4316e0 R08: 0000000000000000 R09: 0000000000000000 [ 468.861488][T11474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 468.861499][T11474] R13: 00007fd61d616038 R14: 00007fd61d615fa0 R15: 00007ffe128fa3a8 [ 468.861520][T11474] [ 471.157822][T11516] FAULT_INJECTION: forcing a failure. [ 471.157822][T11516] name failslab, interval 1, probability 0, space 0, times 0 [ 471.192384][T11516] CPU: 1 UID: 0 PID: 11516 Comm: syz.4.951 Tainted: G L syzkaller #0 PREEMPT(full) [ 471.192415][T11516] Tainted: [L]=SOFTLOCKUP [ 471.192422][T11516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 471.192437][T11516] Call Trace: [ 471.192445][T11516] [ 471.192456][T11516] dump_stack_lvl+0x100/0x190 [ 471.192501][T11516] should_fail_ex.cold+0x5/0xa [ 471.192549][T11516] should_failslab+0xc2/0x120 [ 471.192589][T11516] kmem_cache_alloc_noprof+0x83/0x780 [ 471.192616][T11516] ? __proc_create+0xc2/0x8c0 [ 471.192643][T11516] ? __proc_create+0x2cb/0x8c0 [ 471.192673][T11516] ? __proc_create+0x2cb/0x8c0 [ 471.192698][T11516] __proc_create+0x2cb/0x8c0 [ 471.192726][T11516] ? __pfx___proc_create+0x10/0x10 [ 471.192751][T11516] ? pcpu_chunk_relocate+0x134/0x1a0 [ 471.192782][T11516] _proc_mkdir+0xb9/0x210 [ 471.192809][T11516] ? __pfx__proc_mkdir+0x10/0x10 [ 471.192851][T11516] sctp_proc_init+0x59/0x270 [ 471.192880][T11516] ? __pfx_sctp_defaults_init+0x10/0x10 [ 471.192908][T11516] sctp_defaults_init+0x758/0xd90 [ 471.192937][T11516] ? __pfx_sctp_defaults_init+0x10/0x10 [ 471.192965][T11516] ops_init+0x1e2/0x5f0 [ 471.192987][T11516] setup_net+0x118/0x3a0 [ 471.193006][T11516] ? __pfx_setup_net+0x10/0x10 [ 471.193024][T11516] ? lockdep_init_map_type+0x5c/0x250 [ 471.193050][T11516] ? mutex_init_lockep+0x110/0x150 [ 471.193079][T11516] copy_net_ns+0x46f/0x7c0 [ 471.193102][T11516] create_new_namespaces+0x3ea/0xac0 [ 471.193128][T11516] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 471.193152][T11516] ksys_unshare+0x455/0xab0 [ 471.193179][T11516] ? __pfx_ksys_unshare+0x10/0x10 [ 471.193204][T11516] ? xfd_validate_state+0x129/0x190 [ 471.193228][T11516] __x64_sys_unshare+0x31/0x40 [ 471.193254][T11516] do_syscall_64+0xc9/0xf80 [ 471.193280][T11516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.193298][T11516] RIP: 0033:0x7fd61d39af79 [ 471.193313][T11516] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 471.193331][T11516] RSP: 002b:00007fd61b5f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 471.193348][T11516] RAX: ffffffffffffffda RBX: 00007fd61d615fa0 RCX: 00007fd61d39af79 [ 471.193359][T11516] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 471.193373][T11516] RBP: 00007fd61d4316e0 R08: 0000000000000000 R09: 0000000000000000 [ 471.193383][T11516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 471.193393][T11516] R13: 00007fd61d616038 R14: 00007fd61d615fa0 R15: 00007ffe128fa3a8 [ 471.193416][T11516] [ 472.668725][T11537] FAULT_INJECTION: forcing a failure. [ 472.668725][T11537] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 472.668781][T11537] CPU: 1 UID: 7 PID: 11537 Comm: syz.4.955 Tainted: G L syzkaller #0 PREEMPT(full) [ 472.668827][T11537] Tainted: [L]=SOFTLOCKUP [ 472.668838][T11537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 472.668856][T11537] Call Trace: [ 472.668866][T11537] [ 472.668887][T11537] dump_stack_lvl+0x100/0x190 [ 472.668935][T11537] should_fail_ex.cold+0x5/0xa [ 472.668989][T11537] _copy_from_user+0x2e/0xd0 [ 472.669025][T11537] do_handle_open+0xeb/0xce0 [ 472.669063][T11537] ? __pfx_do_handle_open+0x10/0x10 [ 472.669105][T11537] ? xfd_validate_state+0x129/0x190 [ 472.669150][T11537] ? do_syscall_64+0xc9/0xf80 [ 472.669194][T11537] do_syscall_64+0xc9/0xf80 [ 472.669241][T11537] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 472.669273][T11537] RIP: 0033:0x7fd61d39af79 [ 472.669298][T11537] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 472.669329][T11537] RSP: 002b:00007fd61b5d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 472.669362][T11537] RAX: ffffffffffffffda RBX: 00007fd61d616090 RCX: 00007fd61d39af79 [ 472.669384][T11537] RDX: 0000000000020401 RSI: 0000200000000040 RDI: 0000000000000009 [ 472.669403][T11537] RBP: 00007fd61d4316e0 R08: 0000000000000000 R09: 0000000000000000 [ 472.669424][T11537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 472.669442][T11537] R13: 00007fd61d616128 R14: 00007fd61d616090 R15: 00007ffe128fa3a8 [ 472.669484][T11537] [ 475.654099][T11570] FAULT_INJECTION: forcing a failure. [ 475.654099][T11570] name failslab, interval 1, probability 0, space 0, times 0 [ 475.719451][T11570] CPU: 0 UID: 0 PID: 11570 Comm: syz.0.961 Tainted: G L syzkaller #0 PREEMPT(full) [ 475.719513][T11570] Tainted: [L]=SOFTLOCKUP [ 475.719525][T11570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 475.719545][T11570] Call Trace: [ 475.719557][T11570] [ 475.719570][T11570] dump_stack_lvl+0x100/0x190 [ 475.719618][T11570] should_fail_ex.cold+0x5/0xa [ 475.719685][T11570] should_failslab+0xc2/0x120 [ 475.719729][T11570] __kmalloc_cache_noprof+0x80/0x810 [ 475.719761][T11570] ? find_held_lock+0x2b/0x80 [ 475.719795][T11570] ? pedit_init_net+0x135/0x500 [ 475.719837][T11570] ? pedit_init_net+0x135/0x500 [ 475.719868][T11570] pedit_init_net+0x135/0x500 [ 475.719901][T11570] ? __pfx_pedit_init_net+0x10/0x10 [ 475.719932][T11570] ops_init+0x1e2/0x5f0 [ 475.719970][T11570] setup_net+0x118/0x3a0 [ 475.720005][T11570] ? __pfx_setup_net+0x10/0x10 [ 475.720037][T11570] ? lockdep_init_map_type+0x5c/0x250 [ 475.720083][T11570] ? mutex_init_lockep+0x110/0x150 [ 475.720135][T11570] copy_net_ns+0x46f/0x7c0 [ 475.720178][T11570] create_new_namespaces+0x3ea/0xac0 [ 475.720228][T11570] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 475.720272][T11570] ksys_unshare+0x455/0xab0 [ 475.720321][T11570] ? __pfx_ksys_unshare+0x10/0x10 [ 475.720368][T11570] ? xfd_validate_state+0x129/0x190 [ 475.720413][T11570] __x64_sys_unshare+0x31/0x40 [ 475.720459][T11570] do_syscall_64+0xc9/0xf80 [ 475.720507][T11570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 475.720539][T11570] RIP: 0033:0x7f80b559af79 [ 475.720565][T11570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 475.720595][T11570] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 475.720626][T11570] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 475.720656][T11570] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 475.720676][T11570] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 475.720695][T11570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 475.720714][T11570] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 475.720758][T11570] [ 477.958894][T11599] netlink: 4 bytes leftover after parsing attributes in process `syz.4.971'. [ 478.010602][T11599] netlink: 25 bytes leftover after parsing attributes in process `syz.4.971'. [ 478.324360][T11613] FAULT_INJECTION: forcing a failure. [ 478.324360][T11613] name fail_futex, interval 1, probability 0, space 0, times 1 [ 478.396552][T11613] CPU: 0 UID: 0 PID: 11613 Comm: syz.3.973 Tainted: G L syzkaller #0 PREEMPT(full) [ 478.396604][T11613] Tainted: [L]=SOFTLOCKUP [ 478.396614][T11613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 478.396631][T11613] Call Trace: [ 478.396641][T11613] [ 478.396652][T11613] dump_stack_lvl+0x100/0x190 [ 478.396696][T11613] should_fail_ex.cold+0x5/0xa [ 478.396745][T11613] should_fail_futex+0x4c/0x60 [ 478.396782][T11613] __x64_sys_futex+0x1f0/0x4d0 [ 478.396835][T11613] ? __pfx___x64_sys_futex+0x10/0x10 [ 478.396891][T11613] do_syscall_64+0xc9/0xf80 [ 478.396935][T11613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.396965][T11613] RIP: 0033:0x7f560939af79 [ 478.396988][T11613] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 478.397016][T11613] RSP: 002b:00007fffec0d4f28 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 478.397046][T11613] RAX: ffffffffffffffda RBX: 0000000000074c50 RCX: 00007f560939af79 [ 478.397065][T11613] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5609615fac [ 478.397083][T11613] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 478.397100][T11613] R10: 00007fffec0d5030 R11: 0000000000000246 R12: 00007fffec0d5050 [ 478.397118][T11613] R13: 00007f5609615fac R14: 0000000000074c82 R15: 00007fffec0d5030 [ 478.397157][T11613] [ 478.598192][T11622] sd 0:0:1:0: PR command failed: 1026 [ 478.598278][T11622] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 478.598338][T11622] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 478.751234][T11618] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 482.944627][T11691] FAULT_INJECTION: forcing a failure. [ 482.944627][T11691] name failslab, interval 1, probability 0, space 0, times 0 [ 482.970364][T11691] CPU: 0 UID: 0 PID: 11691 Comm: syz.1.984 Tainted: G L syzkaller #0 PREEMPT(full) [ 482.970401][T11691] Tainted: [L]=SOFTLOCKUP [ 482.970408][T11691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 482.970419][T11691] Call Trace: [ 482.970425][T11691] [ 482.970433][T11691] dump_stack_lvl+0x100/0x190 [ 482.970463][T11691] should_fail_ex.cold+0x5/0xa [ 482.970495][T11691] should_failslab+0xc2/0x120 [ 482.970520][T11691] __kmalloc_node_track_caller_noprof+0xf9/0x9d0 [ 482.970545][T11691] ? sctp_sysctl_net_register+0x30/0x200 [ 482.970574][T11691] ? __pfx_sctp_defaults_init+0x10/0x10 [ 482.970603][T11691] ? kmemdup_noprof+0x29/0x60 [ 482.970624][T11691] kmemdup_noprof+0x29/0x60 [ 482.970646][T11691] sctp_sysctl_net_register+0x30/0x200 [ 482.970675][T11691] ? __pfx_sctp_defaults_init+0x10/0x10 [ 482.970702][T11691] sctp_defaults_init+0x6d2/0xd90 [ 482.970740][T11691] ? __pfx_sctp_defaults_init+0x10/0x10 [ 482.970769][T11691] ops_init+0x1e2/0x5f0 [ 482.970791][T11691] setup_net+0x118/0x3a0 [ 482.970812][T11691] ? __pfx_setup_net+0x10/0x10 [ 482.970830][T11691] ? lockdep_init_map_type+0x5c/0x250 [ 482.970856][T11691] ? mutex_init_lockep+0x110/0x150 [ 482.970885][T11691] copy_net_ns+0x46f/0x7c0 [ 482.970908][T11691] create_new_namespaces+0x3ea/0xac0 [ 482.970934][T11691] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 482.970957][T11691] ksys_unshare+0x455/0xab0 [ 482.970985][T11691] ? __pfx_ksys_unshare+0x10/0x10 [ 482.971011][T11691] ? xfd_validate_state+0x129/0x190 [ 482.971035][T11691] __x64_sys_unshare+0x31/0x40 [ 482.971060][T11691] do_syscall_64+0xc9/0xf80 [ 482.971087][T11691] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.971105][T11691] RIP: 0033:0x7fdd9239af79 [ 482.971120][T11691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 482.971138][T11691] RSP: 002b:00007fdd93225028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 482.971155][T11691] RAX: ffffffffffffffda RBX: 00007fdd92616090 RCX: 00007fdd9239af79 [ 482.971167][T11691] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 482.971177][T11691] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 482.971188][T11691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.971198][T11691] R13: 00007fdd92616128 R14: 00007fdd92616090 R15: 00007fffcda98ce8 [ 482.971221][T11691] [ 483.388733][T11698] netlink: 'syz.3.987': attribute type 11 has an invalid length. [ 483.525051][T11698] netlink: 'syz.3.987': attribute type 11 has an invalid length. [ 483.588916][T11698] netlink: 'syz.3.987': attribute type 11 has an invalid length. [ 483.683688][T11698] netlink: 'syz.3.987': attribute type 11 has an invalid length. [ 484.167106][T11713] random: crng reseeded on system resumption [ 486.578302][T11759] FAULT_INJECTION: forcing a failure. [ 486.578302][T11759] name failslab, interval 1, probability 0, space 0, times 0 [ 486.642104][T11759] CPU: 0 UID: 0 PID: 11759 Comm: syz.3.999 Tainted: G L syzkaller #0 PREEMPT(full) [ 486.642154][T11759] Tainted: [L]=SOFTLOCKUP [ 486.642166][T11759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 486.642181][T11759] Call Trace: [ 486.642191][T11759] [ 486.642202][T11759] dump_stack_lvl+0x100/0x190 [ 486.642243][T11759] should_fail_ex.cold+0x5/0xa [ 486.642298][T11759] should_failslab+0xc2/0x120 [ 486.642334][T11759] kmem_cache_alloc_noprof+0x83/0x780 [ 486.642369][T11759] ? __proc_create+0xc2/0x8c0 [ 486.642410][T11759] ? __proc_create+0x2cb/0x8c0 [ 486.642469][T11759] ? __proc_create+0x2cb/0x8c0 [ 486.642507][T11759] __proc_create+0x2cb/0x8c0 [ 486.642550][T11759] ? __pfx___proc_create+0x10/0x10 [ 486.642607][T11759] proc_create_reg+0x75/0x170 [ 486.642637][T11759] proc_create_net_data+0x8e/0x1c0 [ 486.642681][T11759] ? __pfx_proc_create_net_data+0x10/0x10 [ 486.642735][T11759] xt_proto_init+0x24e/0xb80 [ 486.642781][T11759] ? __pfx_xt_proto_init+0x10/0x10 [ 486.642817][T11759] ? kasan_save_track+0x14/0x30 [ 486.642851][T11759] ? __kasan_kmalloc+0xaa/0xb0 [ 486.642889][T11759] ? __pfx_arp_tables_net_init+0x10/0x10 [ 486.642932][T11759] ops_init+0x1e2/0x5f0 [ 486.642968][T11759] setup_net+0x118/0x3a0 [ 486.643001][T11759] ? __pfx_setup_net+0x10/0x10 [ 486.643030][T11759] ? lockdep_init_map_type+0x5c/0x250 [ 486.643072][T11759] ? mutex_init_lockep+0x110/0x150 [ 486.643116][T11759] copy_net_ns+0x46f/0x7c0 [ 486.643152][T11759] create_new_namespaces+0x3ea/0xac0 [ 486.643195][T11759] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 486.643232][T11759] ksys_unshare+0x455/0xab0 [ 486.643276][T11759] ? __pfx_ksys_unshare+0x10/0x10 [ 486.643317][T11759] ? xfd_validate_state+0x129/0x190 [ 486.643359][T11759] __x64_sys_unshare+0x31/0x40 [ 486.643396][T11759] do_syscall_64+0xc9/0xf80 [ 486.643439][T11759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 486.643474][T11759] RIP: 0033:0x7f560939af79 [ 486.643497][T11759] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 486.643523][T11759] RSP: 002b:00007f560a33c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 486.643552][T11759] RAX: ffffffffffffffda RBX: 00007f5609615fa0 RCX: 00007f560939af79 [ 486.643570][T11759] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 486.643588][T11759] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 486.643606][T11759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 486.643623][T11759] R13: 00007f5609616038 R14: 00007f5609615fa0 R15: 00007fffec0d4dc8 [ 486.643663][T11759] [ 487.199147][T11756] vhci_hcd vhci_hcd.3: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 488.156481][T11777] futex_wake_op: syz.1.1002 tries to shift op by -1; fix this program [ 488.382175][T11781] random: crng reseeded on system resumption [ 489.055525][T11802] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1007'. [ 489.255921][T11802] : renamed from ip6tnl0 (while UP) [ 493.367306][T11865] FAULT_INJECTION: forcing a failure. [ 493.367306][T11865] name failslab, interval 1, probability 0, space 0, times 0 [ 493.397369][T11865] CPU: 1 UID: 0 PID: 11865 Comm: syz.3.1019 Tainted: G L syzkaller #0 PREEMPT(full) [ 493.397401][T11865] Tainted: [L]=SOFTLOCKUP [ 493.397408][T11865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 493.397419][T11865] Call Trace: [ 493.397425][T11865] [ 493.397433][T11865] dump_stack_lvl+0x100/0x190 [ 493.397469][T11865] should_fail_ex.cold+0x5/0xa [ 493.397499][T11865] should_failslab+0xc2/0x120 [ 493.397524][T11865] kmem_cache_alloc_noprof+0x83/0x780 [ 493.397546][T11865] ? __proc_create+0xc2/0x8c0 [ 493.397572][T11865] ? __proc_create+0x2cb/0x8c0 [ 493.397602][T11865] ? __proc_create+0x2cb/0x8c0 [ 493.397627][T11865] __proc_create+0x2cb/0x8c0 [ 493.397654][T11865] ? __pfx___proc_create+0x10/0x10 [ 493.397684][T11865] ? _raw_write_unlock+0x28/0x50 [ 493.397708][T11865] ? proc_register+0x559/0x8a0 [ 493.397741][T11865] proc_create_reg+0x75/0x170 [ 493.397759][T11865] proc_create_net_data+0x8e/0x1c0 [ 493.397788][T11865] ? __pfx_proc_create_net_data+0x10/0x10 [ 493.397822][T11865] sctp_proc_init+0x199/0x270 [ 493.397849][T11865] ? __pfx_sctp_defaults_init+0x10/0x10 [ 493.397877][T11865] sctp_defaults_init+0x758/0xd90 [ 493.397905][T11865] ? __pfx_sctp_defaults_init+0x10/0x10 [ 493.397933][T11865] ops_init+0x1e2/0x5f0 [ 493.397955][T11865] setup_net+0x118/0x3a0 [ 493.397974][T11865] ? __pfx_setup_net+0x10/0x10 [ 493.397992][T11865] ? lockdep_init_map_type+0x5c/0x250 [ 493.398018][T11865] ? mutex_init_lockep+0x110/0x150 [ 493.398048][T11865] copy_net_ns+0x46f/0x7c0 [ 493.398071][T11865] create_new_namespaces+0x3ea/0xac0 [ 493.398098][T11865] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 493.398122][T11865] ksys_unshare+0x455/0xab0 [ 493.398150][T11865] ? __pfx_ksys_unshare+0x10/0x10 [ 493.398176][T11865] ? xfd_validate_state+0x129/0x190 [ 493.398199][T11865] __x64_sys_unshare+0x31/0x40 [ 493.398225][T11865] do_syscall_64+0xc9/0xf80 [ 493.398251][T11865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.398268][T11865] RIP: 0033:0x7f560939af79 [ 493.398283][T11865] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 493.398301][T11865] RSP: 002b:00007f560a33c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 493.398320][T11865] RAX: ffffffffffffffda RBX: 00007f5609615fa0 RCX: 00007f560939af79 [ 493.398331][T11865] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 493.398341][T11865] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 493.398352][T11865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 493.398363][T11865] R13: 00007f5609616038 R14: 00007f5609615fa0 R15: 00007fffec0d4dc8 [ 493.398385][T11865] [ 495.953731][T11899] binder: 11898:11899 ioctl c018620c 0 returned -1 [ 497.305383][T11930] FAULT_INJECTION: forcing a failure. [ 497.305383][T11930] name failslab, interval 1, probability 0, space 0, times 0 [ 497.390083][T11930] CPU: 1 UID: 0 PID: 11930 Comm: syz.0.1030 Tainted: G L syzkaller #0 PREEMPT(full) [ 497.390116][T11930] Tainted: [L]=SOFTLOCKUP [ 497.390122][T11930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 497.390133][T11930] Call Trace: [ 497.390139][T11930] [ 497.390146][T11930] dump_stack_lvl+0x100/0x190 [ 497.390174][T11930] should_fail_ex.cold+0x5/0xa [ 497.390205][T11930] should_failslab+0xc2/0x120 [ 497.390230][T11930] kmem_cache_alloc_noprof+0x83/0x780 [ 497.390252][T11930] ? __proc_create+0xc2/0x8c0 [ 497.390279][T11930] ? __proc_create+0x2cb/0x8c0 [ 497.390309][T11930] ? __proc_create+0x2cb/0x8c0 [ 497.390333][T11930] __proc_create+0x2cb/0x8c0 [ 497.390372][T11930] ? __pfx___proc_create+0x10/0x10 [ 497.390403][T11930] ? _raw_write_unlock+0x28/0x50 [ 497.390425][T11930] ? proc_register+0x559/0x8a0 [ 497.390455][T11930] proc_create_reg+0x75/0x170 [ 497.390474][T11930] proc_create_net_data+0x8e/0x1c0 [ 497.390503][T11930] ? __pfx_proc_create_net_data+0x10/0x10 [ 497.390538][T11930] sctp_proc_init+0x199/0x270 [ 497.390565][T11930] ? __pfx_sctp_defaults_init+0x10/0x10 [ 497.390593][T11930] sctp_defaults_init+0x758/0xd90 [ 497.390621][T11930] ? __pfx_sctp_defaults_init+0x10/0x10 [ 497.390648][T11930] ops_init+0x1e2/0x5f0 [ 497.390670][T11930] setup_net+0x118/0x3a0 [ 497.390689][T11930] ? __pfx_setup_net+0x10/0x10 [ 497.390714][T11930] ? lockdep_init_map_type+0x5c/0x250 [ 497.390740][T11930] ? mutex_init_lockep+0x110/0x150 [ 497.390769][T11930] copy_net_ns+0x46f/0x7c0 [ 497.390793][T11930] create_new_namespaces+0x3ea/0xac0 [ 497.390821][T11930] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 497.390846][T11930] ksys_unshare+0x455/0xab0 [ 497.390873][T11930] ? __pfx_ksys_unshare+0x10/0x10 [ 497.390900][T11930] ? xfd_validate_state+0x129/0x190 [ 497.390924][T11930] __x64_sys_unshare+0x31/0x40 [ 497.390950][T11930] do_syscall_64+0xc9/0xf80 [ 497.390976][T11930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.390994][T11930] RIP: 0033:0x7f80b559af79 [ 497.391010][T11930] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 497.391027][T11930] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 497.391052][T11930] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 497.391064][T11930] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 497.391075][T11930] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 497.391086][T11930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.391096][T11930] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 497.391118][T11930] [ 500.040302][T11998] FAULT_INJECTION: forcing a failure. [ 500.040302][T11998] name failslab, interval 1, probability 0, space 0, times 0 [ 500.117277][T11998] CPU: 0 UID: 0 PID: 11998 Comm: syz.1.1037 Tainted: G L syzkaller #0 PREEMPT(full) [ 500.117330][T11998] Tainted: [L]=SOFTLOCKUP [ 500.117340][T11998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 500.117357][T11998] Call Trace: [ 500.117367][T11998] [ 500.117381][T11998] dump_stack_lvl+0x100/0x190 [ 500.117422][T11998] should_fail_ex.cold+0x5/0xa [ 500.117472][T11998] should_failslab+0xc2/0x120 [ 500.117511][T11998] __kmalloc_cache_noprof+0x80/0x810 [ 500.117542][T11998] ? trace_pid_list_alloc+0x232/0x480 [ 500.117594][T11998] ? trace_pid_list_alloc+0x232/0x480 [ 500.117637][T11998] trace_pid_list_alloc+0x232/0x480 [ 500.117696][T11998] trace_pid_write+0x110/0x480 [ 500.117736][T11998] ? __pfx_trace_pid_write+0x10/0x10 [ 500.117775][T11998] ? update_last_data+0xaa/0x510 [ 500.117835][T11998] event_pid_write.isra.0+0x1e4/0x7f0 [ 500.117870][T11998] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 500.117914][T11998] vfs_write+0x2aa/0x1070 [ 500.117949][T11998] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 500.117985][T11998] ? __pfx_vfs_write+0x10/0x10 [ 500.118015][T11998] ? find_held_lock+0x2b/0x80 [ 500.118049][T11998] ? __fget_files+0x215/0x3d0 [ 500.118090][T11998] ? __fget_files+0x21f/0x3d0 [ 500.118133][T11998] ksys_write+0x12a/0x250 [ 500.118165][T11998] ? __pfx_ksys_write+0x10/0x10 [ 500.118210][T11998] do_syscall_64+0xc9/0xf80 [ 500.118256][T11998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.118290][T11998] RIP: 0033:0x7fdd9239af79 [ 500.118313][T11998] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 500.118342][T11998] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 500.118372][T11998] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 500.118390][T11998] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 500.118406][T11998] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 500.118424][T11998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 500.118441][T11998] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 500.118482][T11998] [ 503.658729][T12069] sd 0:0:1:0: PR command failed: 1026 [ 503.664595][T12069] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 503.671694][T12069] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 506.840009][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.850899][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 507.792994][ T7469] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 508.402461][ T7469] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.149564][ T7469] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.471918][ T7469] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.758104][T12167] FAULT_INJECTION: forcing a failure. [ 509.758104][T12167] name failslab, interval 1, probability 0, space 0, times 0 [ 509.796654][T12167] CPU: 1 UID: 0 PID: 12167 Comm: syz.1.1067 Tainted: G L syzkaller #0 PREEMPT(full) [ 509.796706][T12167] Tainted: [L]=SOFTLOCKUP [ 509.796717][T12167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 509.796735][T12167] Call Trace: [ 509.796745][T12167] [ 509.796758][T12167] dump_stack_lvl+0x100/0x190 [ 509.796802][T12167] should_fail_ex.cold+0x5/0xa [ 509.796856][T12167] should_failslab+0xc2/0x120 [ 509.796899][T12167] __kmalloc_cache_noprof+0x80/0x810 [ 509.796931][T12167] ? fqdir_init+0x4f/0x1f0 [ 509.796964][T12167] ? net_generic+0xea/0x2a0 [ 509.797009][T12167] ? fqdir_init+0x4f/0x1f0 [ 509.797037][T12167] fqdir_init+0x4f/0x1f0 [ 509.797071][T12167] nf_ct_net_init+0x3d/0x370 [ 509.797112][T12167] ? __pfx_nf_ct_net_init+0x10/0x10 [ 509.797154][T12167] ops_init+0x1e2/0x5f0 [ 509.797190][T12167] setup_net+0x118/0x3a0 [ 509.797222][T12167] ? __pfx_setup_net+0x10/0x10 [ 509.797252][T12167] ? lockdep_init_map_type+0x5c/0x250 [ 509.797296][T12167] ? mutex_init_lockep+0x110/0x150 [ 509.797346][T12167] copy_net_ns+0x46f/0x7c0 [ 509.797387][T12167] create_new_namespaces+0x3ea/0xac0 [ 509.797435][T12167] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 509.797477][T12167] ksys_unshare+0x455/0xab0 [ 509.797525][T12167] ? __pfx_ksys_unshare+0x10/0x10 [ 509.797579][T12167] ? xfd_validate_state+0x129/0x190 [ 509.797622][T12167] __x64_sys_unshare+0x31/0x40 [ 509.797666][T12167] do_syscall_64+0xc9/0xf80 [ 509.797713][T12167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 509.797744][T12167] RIP: 0033:0x7fdd9239af79 [ 509.797770][T12167] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 509.797799][T12167] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 509.797830][T12167] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 509.797851][T12167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 509.797870][T12167] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 509.797887][T12167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 509.797904][T12167] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 509.797944][T12167] [ 511.307957][ T7469] gretap0: left allmulticast mode [ 511.313965][ T7469] gretap0: left promiscuous mode [ 511.336456][ T7469] bridge0: port 3(gretap0) entered disabled state [ 511.571532][ T7469] bridge_slave_1: left allmulticast mode [ 511.596506][ T7469] bridge_slave_1: left promiscuous mode [ 511.606104][ T7469] bridge0: port 2(bridge_slave_1) entered disabled state [ 511.738703][ T7469] bridge_slave_0: left allmulticast mode [ 511.783503][ T7469] bridge_slave_0: left promiscuous mode [ 511.818872][ T7469] bridge0: port 1(bridge_slave_0) entered disabled state [ 513.757933][ T7469] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 513.786405][ T7469] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 513.801886][ T7469] bond0 (unregistering): Released all slaves [ 515.266999][ T7469] hsr_slave_0: left promiscuous mode [ 515.292101][ T7469] hsr_slave_1: left promiscuous mode [ 515.305719][ T7469] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 515.316592][ T7469] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 515.334931][ T7469] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 515.357403][ T7469] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 515.443972][ T7469] veth1_macvtap: left promiscuous mode [ 515.458917][ T7469] veth0_macvtap: left promiscuous mode [ 515.474930][ T7469] veth1_vlan: left promiscuous mode [ 515.516870][ T7469] veth0_vlan: left promiscuous mode [ 517.681730][ T7469] team0 (unregistering): Port device team_slave_1 removed [ 517.735508][ T7469] team0 (unregistering): Port device team_slave_0 removed [ 518.224416][T12244] FAULT_INJECTION: forcing a failure. [ 518.224416][T12244] name failslab, interval 1, probability 0, space 0, times 0 [ 518.292129][T12244] CPU: 0 UID: 0 PID: 12244 Comm: syz.0.1083 Tainted: G L syzkaller #0 PREEMPT(full) [ 518.292162][T12244] Tainted: [L]=SOFTLOCKUP [ 518.292169][T12244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 518.292180][T12244] Call Trace: [ 518.292186][T12244] [ 518.292195][T12244] dump_stack_lvl+0x100/0x190 [ 518.292222][T12244] should_fail_ex.cold+0x5/0xa [ 518.292252][T12244] should_failslab+0xc2/0x120 [ 518.292277][T12244] ? ops_init+0x77/0x5f0 [ 518.292295][T12244] __kmalloc_noprof+0xf6/0x9c0 [ 518.292311][T12244] ? timer_init_key+0x14c/0x2c0 [ 518.292338][T12244] ? ops_init+0x77/0x5f0 [ 518.292353][T12244] ops_init+0x77/0x5f0 [ 518.292374][T12244] setup_net+0x118/0x3a0 [ 518.292400][T12244] ? __pfx_setup_net+0x10/0x10 [ 518.292418][T12244] ? lockdep_init_map_type+0x5c/0x250 [ 518.292444][T12244] ? mutex_init_lockep+0x110/0x150 [ 518.292473][T12244] copy_net_ns+0x46f/0x7c0 [ 518.292496][T12244] create_new_namespaces+0x3ea/0xac0 [ 518.292523][T12244] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 518.292546][T12244] ksys_unshare+0x455/0xab0 [ 518.292574][T12244] ? __pfx_ksys_unshare+0x10/0x10 [ 518.292600][T12244] ? xfd_validate_state+0x129/0x190 [ 518.292625][T12244] __x64_sys_unshare+0x31/0x40 [ 518.292651][T12244] do_syscall_64+0xc9/0xf80 [ 518.292677][T12244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.292695][T12244] RIP: 0033:0x7f80b559af79 [ 518.292711][T12244] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 518.292729][T12244] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 518.292747][T12244] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 518.292758][T12244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 518.292769][T12244] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 518.292780][T12244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.292793][T12244] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 518.292816][T12244] [ 518.310156][T12258] FAULT_INJECTION: forcing a failure. [ 518.310156][T12258] name failslab, interval 1, probability 0, space 0, times 0 [ 518.529519][T12258] CPU: 1 UID: 0 PID: 12258 Comm: syz.3.1077 Tainted: G L syzkaller #0 PREEMPT(full) [ 518.529568][T12258] Tainted: [L]=SOFTLOCKUP [ 518.529578][T12258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 518.529595][T12258] Call Trace: [ 518.529604][T12258] [ 518.529615][T12258] dump_stack_lvl+0x100/0x190 [ 518.529656][T12258] should_fail_ex.cold+0x5/0xa [ 518.529702][T12258] should_failslab+0xc2/0x120 [ 518.529739][T12258] __kmalloc_cache_noprof+0x80/0x810 [ 518.529768][T12258] ? sctp_auth_shkey_create+0x9e/0x210 [ 518.529818][T12258] ? sctp_auth_shkey_create+0x9e/0x210 [ 518.529857][T12258] sctp_auth_shkey_create+0x9e/0x210 [ 518.529898][T12258] sctp_endpoint_new+0x589/0xb20 [ 518.529928][T12258] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 518.529956][T12258] ? lockdep_init_map_type+0x5c/0x250 [ 518.529995][T12258] ? lockdep_init_map_type+0x5c/0x250 [ 518.530037][T12258] sctp_init_sock+0xe2b/0x1300 [ 518.530061][T12258] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 518.530087][T12258] sctp_v6_init_sock+0x16/0x70 [ 518.530110][T12258] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 518.530134][T12258] inet6_create+0xb2f/0x12c0 [ 518.530163][T12258] ? inet6_create+0x7f/0x12c0 [ 518.530194][T12258] __sock_create+0x339/0x860 [ 518.530236][T12258] inet_ctl_sock_create+0x94/0x230 [ 518.530275][T12258] ? __pfx_inet_ctl_sock_create+0x10/0x10 [ 518.530310][T12258] ? timer_init_key+0x14c/0x2c0 [ 518.530346][T12258] ? __pfx_sctp_ctrlsock_init+0x10/0x10 [ 518.530383][T12258] sctp_ctrlsock_init+0x40/0xd0 [ 518.530421][T12258] ops_init+0x1e2/0x5f0 [ 518.530507][T12258] setup_net+0x118/0x3a0 [ 518.530537][T12258] ? __pfx_setup_net+0x10/0x10 [ 518.530565][T12258] ? lockdep_init_map_type+0x5c/0x250 [ 518.530604][T12258] ? mutex_init_lockep+0x110/0x150 [ 518.530648][T12258] copy_net_ns+0x46f/0x7c0 [ 518.530682][T12258] create_new_namespaces+0x3ea/0xac0 [ 518.530725][T12258] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 518.530762][T12258] ksys_unshare+0x455/0xab0 [ 518.530803][T12258] ? __pfx_ksys_unshare+0x10/0x10 [ 518.530839][T12258] ? xfd_validate_state+0x129/0x190 [ 518.530877][T12258] __x64_sys_unshare+0x31/0x40 [ 518.530916][T12258] do_syscall_64+0xc9/0xf80 [ 518.530957][T12258] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.530987][T12258] RIP: 0033:0x7f560939af79 [ 518.531011][T12258] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 518.531040][T12258] RSP: 002b:00007f560a33c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 518.531069][T12258] RAX: ffffffffffffffda RBX: 00007f5609615fa0 RCX: 00007f560939af79 [ 518.531089][T12258] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 518.531107][T12258] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 518.531125][T12258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.531141][T12258] R13: 00007f5609616038 R14: 00007f5609615fa0 R15: 00007fffec0d4dc8 [ 518.531181][T12258] [ 519.112636][T12271] FAULT_INJECTION: forcing a failure. [ 519.112636][T12271] name failslab, interval 1, probability 0, space 0, times 0 [ 519.125646][T12271] CPU: 1 UID: 0 PID: 12271 Comm: syz.1.1078 Tainted: G L syzkaller #0 PREEMPT(full) [ 519.125693][T12271] Tainted: [L]=SOFTLOCKUP [ 519.125703][T12271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 519.125721][T12271] Call Trace: [ 519.125731][T12271] [ 519.125742][T12271] dump_stack_lvl+0x100/0x190 [ 519.125788][T12271] should_fail_ex.cold+0x5/0xa [ 519.125838][T12271] should_failslab+0xc2/0x120 [ 519.125879][T12271] kmem_cache_alloc_noprof+0x83/0x780 [ 519.125918][T12271] ? __proc_create+0xc2/0x8c0 [ 519.125964][T12271] ? __proc_create+0x2cb/0x8c0 [ 519.126018][T12271] ? __proc_create+0x2cb/0x8c0 [ 519.126062][T12271] __proc_create+0x2cb/0x8c0 [ 519.126111][T12271] ? __pfx___proc_create+0x10/0x10 [ 519.126164][T12271] ? _raw_write_unlock+0x28/0x50 [ 519.126201][T12271] ? proc_register+0x559/0x8a0 [ 519.126255][T12271] proc_create_reg+0x75/0x170 [ 519.126288][T12271] proc_create_net_data+0x8e/0x1c0 [ 519.126338][T12271] ? __pfx_proc_create_net_data+0x10/0x10 [ 519.126400][T12271] sctp_proc_init+0x14c/0x270 [ 519.126458][T12271] ? __pfx_sctp_defaults_init+0x10/0x10 [ 519.126505][T12271] sctp_defaults_init+0x758/0xd90 [ 519.126556][T12271] ? __pfx_sctp_defaults_init+0x10/0x10 [ 519.126606][T12271] ops_init+0x1e2/0x5f0 [ 519.126646][T12271] setup_net+0x118/0x3a0 [ 519.126681][T12271] ? __pfx_setup_net+0x10/0x10 [ 519.126712][T12271] ? lockdep_init_map_type+0x5c/0x250 [ 519.126759][T12271] ? mutex_init_lockep+0x110/0x150 [ 519.126812][T12271] copy_net_ns+0x46f/0x7c0 [ 519.126855][T12271] create_new_namespaces+0x3ea/0xac0 [ 519.126904][T12271] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 519.126945][T12271] ksys_unshare+0x455/0xab0 [ 519.126995][T12271] ? __pfx_ksys_unshare+0x10/0x10 [ 519.127042][T12271] ? xfd_validate_state+0x129/0x190 [ 519.127086][T12271] __x64_sys_unshare+0x31/0x40 [ 519.127131][T12271] do_syscall_64+0xc9/0xf80 [ 519.127177][T12271] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.127207][T12271] RIP: 0033:0x7fdd9239af79 [ 519.127233][T12271] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 519.127258][T12271] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 519.127282][T12271] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 519.127298][T12271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 519.127313][T12271] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 519.127326][T12271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 519.127341][T12271] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 519.127373][T12271] [ 520.676177][T12277] zswap: compressor not available [ 521.330818][T12303] zswap: compressor not available [ 521.598691][T12306] zswap: compressor not available [ 527.959145][T12427] FAULT_INJECTION: forcing a failure. [ 527.959145][T12427] name failslab, interval 1, probability 0, space 0, times 0 [ 528.011805][T12427] CPU: 1 UID: 0 PID: 12427 Comm: syz.3.1102 Tainted: G L syzkaller #0 PREEMPT(full) [ 528.011856][T12427] Tainted: [L]=SOFTLOCKUP [ 528.011867][T12427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 528.011885][T12427] Call Trace: [ 528.011895][T12427] [ 528.011905][T12427] dump_stack_lvl+0x100/0x190 [ 528.011950][T12427] should_fail_ex.cold+0x5/0xa [ 528.011999][T12427] should_failslab+0xc2/0x120 [ 528.012034][T12427] kmem_cache_alloc_noprof+0x83/0x780 [ 528.012057][T12427] ? __proc_create+0xc2/0x8c0 [ 528.012084][T12427] ? __proc_create+0x2cb/0x8c0 [ 528.012114][T12427] ? __proc_create+0x2cb/0x8c0 [ 528.012149][T12427] __proc_create+0x2cb/0x8c0 [ 528.012176][T12427] ? __pfx___proc_create+0x10/0x10 [ 528.012208][T12427] ? _raw_write_unlock+0x28/0x50 [ 528.012234][T12427] proc_create_reg+0x75/0x170 [ 528.012253][T12427] proc_create_data+0x86/0x110 [ 528.012269][T12427] ? __pfx_proc_create_data+0x10/0x10 [ 528.012286][T12427] ? cache_register_net+0x137/0x5e0 [ 528.012304][T12427] ? cache_register_net+0x137/0x5e0 [ 528.012325][T12427] cache_register_net+0x1e0/0x5e0 [ 528.012346][T12427] gss_svc_init_net+0x14e/0x640 [ 528.012371][T12427] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 528.012393][T12427] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 528.012420][T12427] ops_init+0x1e2/0x5f0 [ 528.012441][T12427] setup_net+0x118/0x3a0 [ 528.012460][T12427] ? __pfx_setup_net+0x10/0x10 [ 528.012478][T12427] ? lockdep_init_map_type+0x5c/0x250 [ 528.012504][T12427] ? mutex_init_lockep+0x110/0x150 [ 528.012533][T12427] copy_net_ns+0x46f/0x7c0 [ 528.012556][T12427] create_new_namespaces+0x3ea/0xac0 [ 528.012582][T12427] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 528.012606][T12427] ksys_unshare+0x455/0xab0 [ 528.012634][T12427] ? __pfx_ksys_unshare+0x10/0x10 [ 528.012660][T12427] ? xfd_validate_state+0x129/0x190 [ 528.012684][T12427] __x64_sys_unshare+0x31/0x40 [ 528.012709][T12427] do_syscall_64+0xc9/0xf80 [ 528.012735][T12427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.012754][T12427] RIP: 0033:0x7f560939af79 [ 528.012769][T12427] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 528.012786][T12427] RSP: 002b:00007f560a33c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 528.012809][T12427] RAX: ffffffffffffffda RBX: 00007f5609615fa0 RCX: 00007f560939af79 [ 528.012821][T12427] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 528.012831][T12427] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 528.012842][T12427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 528.012852][T12427] R13: 00007f5609616038 R14: 00007f5609615fa0 R15: 00007fffec0d4dc8 [ 528.012874][T12427] [ 528.387124][T12418] mkiss: ax0: crc mode is auto. [ 531.774173][T12482] FAULT_INJECTION: forcing a failure. [ 531.774173][T12482] name failslab, interval 1, probability 0, space 0, times 0 [ 531.795804][T12482] CPU: 1 UID: 0 PID: 12482 Comm: syz.0.1113 Tainted: G L syzkaller #0 PREEMPT(full) [ 531.795854][T12482] Tainted: [L]=SOFTLOCKUP [ 531.795864][T12482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 531.795879][T12482] Call Trace: [ 531.795889][T12482] [ 531.795900][T12482] dump_stack_lvl+0x100/0x190 [ 531.795936][T12482] should_fail_ex.cold+0x5/0xa [ 531.795980][T12482] should_failslab+0xc2/0x120 [ 531.796018][T12482] kmem_cache_alloc_noprof+0x83/0x780 [ 531.796053][T12482] ? __proc_create+0xc2/0x8c0 [ 531.796083][T12482] ? __proc_create+0x2cb/0x8c0 [ 531.796112][T12482] ? __proc_create+0x2cb/0x8c0 [ 531.796138][T12482] __proc_create+0x2cb/0x8c0 [ 531.796166][T12482] ? __pfx___proc_create+0x10/0x10 [ 531.796198][T12482] ? _raw_write_unlock+0x28/0x50 [ 531.796224][T12482] proc_create_reg+0x75/0x170 [ 531.796242][T12482] proc_create_data+0x86/0x110 [ 531.796258][T12482] ? __pfx_proc_create_data+0x10/0x10 [ 531.796275][T12482] ? cache_register_net+0x137/0x5e0 [ 531.796293][T12482] ? cache_register_net+0x137/0x5e0 [ 531.796324][T12482] cache_register_net+0x1e0/0x5e0 [ 531.796350][T12482] gss_svc_init_net+0x14e/0x640 [ 531.796376][T12482] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 531.796396][T12482] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 531.796424][T12482] ops_init+0x1e2/0x5f0 [ 531.796446][T12482] setup_net+0x118/0x3a0 [ 531.796467][T12482] ? __pfx_setup_net+0x10/0x10 [ 531.796484][T12482] ? lockdep_init_map_type+0x5c/0x250 [ 531.796511][T12482] ? mutex_init_lockep+0x110/0x150 [ 531.796540][T12482] copy_net_ns+0x46f/0x7c0 [ 531.796563][T12482] create_new_namespaces+0x3ea/0xac0 [ 531.796595][T12482] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 531.796619][T12482] ksys_unshare+0x455/0xab0 [ 531.796660][T12482] ? __pfx_ksys_unshare+0x10/0x10 [ 531.796698][T12482] ? xfd_validate_state+0x129/0x190 [ 531.796723][T12482] __x64_sys_unshare+0x31/0x40 [ 531.796749][T12482] do_syscall_64+0xc9/0xf80 [ 531.796776][T12482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.796794][T12482] RIP: 0033:0x7f80b559af79 [ 531.796810][T12482] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 531.796827][T12482] RSP: 002b:00007f80b6532028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 531.796846][T12482] RAX: ffffffffffffffda RBX: 00007f80b5815fa0 RCX: 00007f80b559af79 [ 531.796857][T12482] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 531.796868][T12482] RBP: 00007f80b56316e0 R08: 0000000000000000 R09: 0000000000000000 [ 531.796878][T12482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 531.796889][T12482] R13: 00007f80b5816038 R14: 00007f80b5815fa0 R15: 00007fff8ef43298 [ 531.796913][T12482] [ 532.504597][T12489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 537.698060][T12593] FAULT_INJECTION: forcing a failure. [ 537.698060][T12593] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 537.785235][T12593] CPU: 1 UID: 0 PID: 12593 Comm: syz.4.1133 Tainted: G L syzkaller #0 PREEMPT(full) [ 537.785293][T12593] Tainted: [L]=SOFTLOCKUP [ 537.785304][T12593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 537.785321][T12593] Call Trace: [ 537.785332][T12593] [ 537.785343][T12593] dump_stack_lvl+0x100/0x190 [ 537.785387][T12593] should_fail_ex.cold+0x5/0xa [ 537.785436][T12593] _copy_from_iter+0x1f4/0x1690 [ 537.785479][T12593] ? __pfx__copy_from_iter+0x10/0x10 [ 537.785528][T12593] copy_page_from_iter+0xde/0x180 [ 537.785568][T12593] anon_pipe_write+0xae4/0x1d40 [ 537.785615][T12593] ? __pfx_anon_pipe_write+0x10/0x10 [ 537.785647][T12593] ? common_file_perm+0x1ab/0x4f0 [ 537.785685][T12593] ? __pfx_autoremove_wake_function+0x10/0x10 [ 537.785726][T12593] ? bpf_lsm_file_permission+0x9/0x10 [ 537.785765][T12593] ? security_file_permission+0x76/0x210 [ 537.785801][T12593] ? rw_verify_area+0xce/0x6d0 [ 537.785833][T12593] vfs_write+0x6ac/0x1070 [ 537.785866][T12593] ? __pfx_anon_pipe_write+0x10/0x10 [ 537.785903][T12593] ? __pfx_vfs_write+0x10/0x10 [ 537.785932][T12593] ? find_held_lock+0x2b/0x80 [ 537.785989][T12593] ksys_write+0x1f8/0x250 [ 537.786019][T12593] ? __pfx_ksys_write+0x10/0x10 [ 537.786060][T12593] do_syscall_64+0xc9/0xf80 [ 537.786101][T12593] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.786131][T12593] RIP: 0033:0x7fd61d39af79 [ 537.786154][T12593] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 537.786181][T12593] RSP: 002b:00007fd61b5f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 537.786210][T12593] RAX: ffffffffffffffda RBX: 00007fd61d615fa0 RCX: 00007fd61d39af79 [ 537.786228][T12593] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 537.786244][T12593] RBP: 00007fd61d4316e0 R08: 0000000000000000 R09: 0000000000000000 [ 537.786262][T12593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 537.786288][T12593] R13: 00007fd61d616038 R14: 00007fd61d615fa0 R15: 00007ffe128fa3a8 [ 537.786330][T12593] [ 541.298764][T12665] bridge0: port 3(gretap0) entered blocking state [ 541.310050][T12665] bridge0: port 3(gretap0) entered disabled state [ 541.340935][T12665] gretap0: entered allmulticast mode [ 541.409028][T12665] FAULT_INJECTION: forcing a failure. [ 541.409028][T12665] name failslab, interval 1, probability 0, space 0, times 0 [ 541.439958][T12665] CPU: 1 UID: 0 PID: 12665 Comm: syz.3.1131 Tainted: G L syzkaller #0 PREEMPT(full) [ 541.440009][T12665] Tainted: [L]=SOFTLOCKUP [ 541.440020][T12665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 541.440037][T12665] Call Trace: [ 541.440046][T12665] [ 541.440058][T12665] dump_stack_lvl+0x100/0x190 [ 541.440103][T12665] should_fail_ex.cold+0x5/0xa [ 541.440152][T12665] should_failslab+0xc2/0x120 [ 541.440192][T12665] kmem_cache_alloc_noprof+0x83/0x780 [ 541.440232][T12665] ? __kernfs_new_node+0xd2/0x960 [ 541.440281][T12665] ? __kernfs_new_node+0xd2/0x960 [ 541.440318][T12665] __kernfs_new_node+0xd2/0x960 [ 541.440364][T12665] ? __pfx___kernfs_new_node+0x10/0x10 [ 541.440417][T12665] ? find_held_lock+0x2b/0x80 [ 541.440450][T12665] ? kernfs_root+0xee/0x2a0 [ 541.440494][T12665] ? kernfs_root+0xee/0x2a0 [ 541.440545][T12665] kernfs_new_node+0x11b/0x1a0 [ 541.440598][T12665] kernfs_create_link+0xcc/0x240 [ 541.440635][T12665] sysfs_do_create_link_sd+0x90/0x140 [ 541.440679][T12665] sysfs_create_link+0x61/0xc0 [ 541.440721][T12665] __netdev_adjacent_dev_insert+0x43e/0xbf0 [ 541.440777][T12665] ? __pfx___netdev_adjacent_dev_insert+0x10/0x10 [ 541.440854][T12665] __netdev_upper_dev_link+0x3d8/0x7e0 [ 541.440903][T12665] ? __pfx___netdev_upper_dev_link+0x10/0x10 [ 541.440960][T12665] ? kernfs_add_one+0x214/0x850 [ 541.441018][T12665] netdev_master_upper_dev_link+0x9f/0xd0 [ 541.441061][T12665] ? __pfx_netdev_master_upper_dev_link+0x10/0x10 [ 541.441107][T12665] ? lockdep_rtnl_is_held+0x26/0x40 [ 541.441150][T12665] ? netdev_is_rx_handler_busy+0x83/0x140 [ 541.441190][T12665] br_add_if+0x9fd/0x1b40 [ 541.441241][T12665] ? security_capable+0x80/0x260 [ 541.441293][T12665] add_del_if+0x114/0x160 [ 541.441344][T12665] br_dev_siocdevprivate+0x8ac/0x1650 [ 541.441375][T12665] ? __lock_acquire+0x4a5/0x2630 [ 541.441417][T12665] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 541.441461][T12665] ? do_raw_spin_lock+0x128/0x260 [ 541.441497][T12665] ? mark_held_locks+0x40/0x70 [ 541.441545][T12665] ? netdev_name_node_lookup+0x107/0x150 [ 541.441589][T12665] ? __mutex_lock+0x26a/0x1b90 [ 541.441638][T12665] dev_ifsioc+0xc15/0x1eb0 [ 541.441671][T12665] ? __pfx_dev_ifsioc+0x10/0x10 [ 541.441696][T12665] ? __pfx___mutex_lock+0x10/0x10 [ 541.441754][T12665] ? dev_load+0x8e/0x240 [ 541.441799][T12665] ? dev_load+0x8e/0x240 [ 541.441855][T12665] dev_ioctl+0x70e/0x1070 [ 541.441886][T12665] sock_ioctl+0x494/0x6b0 [ 541.441926][T12665] ? __pfx_sock_ioctl+0x10/0x10 [ 541.441995][T12665] ? __pfx_sock_ioctl+0x10/0x10 [ 541.442039][T12665] __x64_sys_ioctl+0x18e/0x210 [ 541.442092][T12665] do_syscall_64+0xc9/0xf80 [ 541.442138][T12665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 541.442170][T12665] RIP: 0033:0x7f560939af79 [ 541.442196][T12665] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 541.442225][T12665] RSP: 002b:00007f560a2fa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 541.442256][T12665] RAX: ffffffffffffffda RBX: 00007f5609616180 RCX: 00007f560939af79 [ 541.442278][T12665] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 541.442296][T12665] RBP: 00007f56094316e0 R08: 0000000000000000 R09: 0000000000000000 [ 541.442313][T12665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 541.442331][T12665] R13: 00007f5609616218 R14: 00007f5609616180 R15: 00007fffec0d4dc8 [ 541.442373][T12665] [ 541.989505][T12665] gretap0: left allmulticast mode [ 542.409222][T12678] FAULT_INJECTION: forcing a failure. [ 542.409222][T12678] name failslab, interval 1, probability 0, space 0, times 0 [ 542.431399][T12678] CPU: 1 UID: 0 PID: 12678 Comm: syz.1.1137 Tainted: G L syzkaller #0 PREEMPT(full) [ 542.431447][T12678] Tainted: [L]=SOFTLOCKUP [ 542.431458][T12678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 542.431476][T12678] Call Trace: [ 542.431486][T12678] [ 542.431498][T12678] dump_stack_lvl+0x100/0x190 [ 542.431543][T12678] should_fail_ex.cold+0x5/0xa [ 542.431596][T12678] should_failslab+0xc2/0x120 [ 542.431639][T12678] __kmalloc_cache_noprof+0x80/0x810 [ 542.431667][T12678] ? vidtv_psi_set_sec_len+0xa5/0x160 [ 542.431700][T12678] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 542.431748][T12678] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 542.431785][T12678] vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 542.431827][T12678] vidtv_channel_si_init+0x1289/0x18d0 [ 542.431884][T12678] vidtv_mux_init+0x526/0xbf0 [ 542.431933][T12678] vidtv_start_feed+0x33e/0x4c0 [ 542.431965][T12678] ? __pfx_vidtv_start_feed+0x10/0x10 [ 542.431993][T12678] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 542.432024][T12678] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 542.432065][T12678] ? mark_held_locks+0x40/0x70 [ 542.432114][T12678] ? __pfx_vidtv_start_feed+0x10/0x10 [ 542.432144][T12678] dmx_ts_feed_start_filtering+0xf6/0x220 [ 542.432204][T12678] dvb_dmxdev_start_feed+0x273/0x3f0 [ 542.432268][T12678] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 542.432304][T12678] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 542.432339][T12678] dvb_demux_do_ioctl+0xe64/0x1200 [ 542.432384][T12678] dvb_usercopy+0x167/0x340 [ 542.432429][T12678] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 542.432461][T12678] ? __pfx_dvb_usercopy+0x10/0x10 [ 542.432524][T12678] ? __fget_files+0x21f/0x3d0 [ 542.432566][T12678] dvb_demux_ioctl+0x29/0x40 [ 542.432610][T12678] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 542.432657][T12678] __x64_sys_ioctl+0x18e/0x210 [ 542.432710][T12678] do_syscall_64+0xc9/0xf80 [ 542.432758][T12678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.432788][T12678] RIP: 0033:0x7fdd9239af79 [ 542.432820][T12678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 542.432850][T12678] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 542.432880][T12678] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 542.432900][T12678] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 542.432918][T12678] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 542.432937][T12678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 542.432955][T12678] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 542.432993][T12678] [ 542.433312][T12678] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 542.709750][T12678] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 542.718194][T12678] CPU: 1 UID: 0 PID: 12678 Comm: syz.1.1137 Tainted: G L syzkaller #0 PREEMPT(full) [ 542.729363][T12678] Tainted: [L]=SOFTLOCKUP [ 542.734928][T12678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 542.744995][T12678] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 542.751122][T12678] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 6d 50 ea f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 4c 4c 8b 23 49 39 ec 74 36 e8 49 50 ea f9 4d 85 e4 [ 542.770742][T12678] RSP: 0018:ffffc9000516fa18 EFLAGS: 00010247 [ 542.777150][T12678] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000c8ba000 [ 542.785404][T12678] RDX: 0000000000000000 RSI: ffffffff881bfff3 RDI: 0000000000000005 [ 542.793403][T12678] RBP: ffff888079f3c640 R08: 0000000000000000 R09: 4453534204050000 [ 542.801383][T12678] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 542.809367][T12678] R13: ffff888079794f00 R14: ffff88802ad66d40 R15: ffff888025e678c0 [ 542.817434][T12678] FS: 00007fdd932466c0(0000) GS:ffff8881246c4000(0000) knlGS:0000000000000000 [ 542.826380][T12678] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 542.833095][T12678] CR2: 0000001b2ddf8ff8 CR3: 0000000058732000 CR4: 00000000003526f0 [ 542.841193][T12678] Call Trace: [ 542.844564][T12678] [ 542.847504][T12678] vidtv_channel_si_init+0x12fc/0x18d0 [ 542.853088][T12678] vidtv_mux_init+0x526/0xbf0 [ 542.857797][T12678] vidtv_start_feed+0x33e/0x4c0 [ 542.862750][T12678] ? __pfx_vidtv_start_feed+0x10/0x10 [ 542.869181][T12678] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 542.874567][T12678] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 542.881260][T12678] ? mark_held_locks+0x40/0x70 [ 542.886222][T12678] ? __pfx_vidtv_start_feed+0x10/0x10 [ 542.891699][T12678] dmx_ts_feed_start_filtering+0xf6/0x220 [ 542.897536][T12678] dvb_dmxdev_start_feed+0x273/0x3f0 [ 542.902935][T12678] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 542.908537][T12678] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 542.913861][T12678] dvb_demux_do_ioctl+0xe64/0x1200 [ 542.919008][T12678] dvb_usercopy+0x167/0x340 [ 542.923625][T12678] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 542.929360][T12678] ? __pfx_dvb_usercopy+0x10/0x10 [ 542.934587][T12678] ? __fget_files+0x21f/0x3d0 [ 542.939456][T12678] dvb_demux_ioctl+0x29/0x40 [ 542.944070][T12678] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 542.949467][T12678] __x64_sys_ioctl+0x18e/0x210 [ 542.954449][T12678] do_syscall_64+0xc9/0xf80 [ 542.959166][T12678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 542.965163][T12678] RIP: 0033:0x7fdd9239af79 [ 542.969599][T12678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 542.989567][T12678] RSP: 002b:00007fdd93246028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 542.998083][T12678] RAX: ffffffffffffffda RBX: 00007fdd92615fa0 RCX: 00007fdd9239af79 [ 543.006082][T12678] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 543.014150][T12678] RBP: 00007fdd924316e0 R08: 0000000000000000 R09: 0000000000000000 [ 543.022127][T12678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 543.030284][T12678] R13: 00007fdd92616038 R14: 00007fdd92615fa0 R15: 00007fffcda98ce8 [ 543.038461][T12678] [ 543.041592][T12678] Modules linked in: [ 543.047023][T12678] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 543.177153][T12678] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 543.184936][T12678] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 6d 50 ea f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 4c 4c 8b 23 49 39 ec 74 36 e8 49 50 ea f9 4d 85 e4 [ 543.215656][T12678] RSP: 0018:ffffc9000516fa18 EFLAGS: 00010247 [ 543.221958][T12678] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000c8ba000 [ 543.335816][T12678] RDX: 0000000000000000 RSI: ffffffff881bfff3 RDI: 0000000000000005 [ 543.365651][T12678] RBP: ffff888079f3c640 R08: 0000000000000000 R09: 4453534204050000 [ 543.373791][T12678] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 543.386993][T12678] R13: ffff888079794f00 R14: ffff88802ad66d40 R15: ffff888025e678c0 [ 543.475624][T12678] FS: 00007fdd932466c0(0000) GS:ffff8881246c4000(0000) knlGS:0000000000000000 [ 543.484614][T12678] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 543.545806][T12678] CR2: 0000000000009000 CR3: 0000000058732000 CR4: 00000000003526f0 [ 543.597391][T12678] Kernel panic - not syncing: Fatal exception [ 543.603958][T12678] Kernel Offset: disabled [ 543.608283][T12678] Rebooting in 86400 seconds..