last executing test programs: 13.861359858s ago: executing program 0 (id=3687): r0 = seccomp$auto(0x8, 0x9, 0x0) fcntl$getown(r0, 0x9) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$auto_LOOP_CTL_ADD(r1, 0x4c80, 0xfffffffffffffffd) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20008, 0x4000000000df, 0x2000eb1, 0xffffffffffffffff, 0x3) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) socket(0x1d, 0x1, 0x7fff) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x4, 0x0, 0x4) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) semget$auto(0x7eb, 0xc7, 0xfffffffd) readlinkat$auto(0x1, 0x0, 0x0, 0x16a) mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket(0xa, 0x2, 0x3a) 13.74589309s ago: executing program 3 (id=3689): unshare$auto(0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x20342, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) prctl$auto_PR_SCHED_CORE_GET(0x476, 0x0, 0x0, 0x5, 0x7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) shmctl$auto_SHM_STAT(0x5, 0xd, &(0x7f0000000140)={{0x10001, 0xffffffffffffffff, 0x0, 0x2, 0x3, 0x3, 0x6}, 0x5, 0x9, 0x1, 0x9, @inferred, @inferred, 0x0, 0x0, &(0x7f0000000000)="a92cc5b95cbadeeec0c80a78f129b552aff38f501076b376c850e3181d7ab078b9c2a74d949545259b5a23079c5ddb423ec48eaac2ce48768e1ea76aa84b74416a50", &(0x7f0000000100)="899f6eff00"}) msgctl$auto_IPC_SET(0x7f7, 0x1, &(0x7f0000000240)={{0xffc, 0xee00, 0xee01, 0x8, 0x40, 0x81, 0x786}, &(0x7f00000001c0)=0x54, &(0x7f0000000200)=0x53, 0x100, 0x5, 0xd48b, 0x4053, 0x3, 0xffff, 0xc, 0xff, @raw=0x4}) setregid$auto(r5, r6) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) 10.502365169s ago: executing program 3 (id=3694): syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x7) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) madvise$auto(0x110c230000, 0x1, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) getrandom$auto(0x0, 0x3, 0x80000001) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000001c0)) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x9, 0x7, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa) clone$auto(0x1, 0x40000000003e, 0x0, 0x0, 0x40000009) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x2) getdents64$auto(r1, &(0x7f0000000f40)={0x309, 0x7, 0xffff, 0x7}, 0x200c8) msync$auto(0x110c230000, 0x200001, 0x6) 10.472755288s ago: executing program 0 (id=3695): r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/bus/usb/002/001\x00', 0x4000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) futex$auto(&(0x7f00000033c0)=0x4, 0x8b, 0x4, &(0x7f0000003400)={0x0, 0x2}, 0x0, 0x8) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r1) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000011c0)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r3 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r2, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_NETNS_FD={0x8, 0xdb, r3}, @NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x1000}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto(r4, 0x80004507, 0x10000000000402) madvise$auto(0x8000, 0x87fff, 0xc) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2a, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r5 = socket(0x2a, 0x2, 0x1) connect$auto(r5, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x55) syz_clone3(&(0x7f0000000300)={0x153326100, 0x0, 0x0, 0x0, {0x23}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0xa7) 8.44192649s ago: executing program 3 (id=3698): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0x9, 0x8, 0x5, 0x1001, 0x1ff, 0xf, 0x1000, 0xb, 0x2, 0xced80000000001, 0x9, 0x3, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0) mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0) r0 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x28400, 0x0) readv$auto(r0, &(0x7f0000000040)={&(0x7f0000000200)="2f36287139474c0a12000000000000", 0xfff}, 0x8) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x40000b, 0xdf, 0x9b72, 0x2, 0x108000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r1 = socket(0xa, 0x3, 0xff) connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) madvise$auto(0x1ffff000, 0x7, 0x100000000) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) 7.995864025s ago: executing program 0 (id=3700): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0x20000000000e31, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x103080, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0x40000010, 0x400, 0x718c1257}]}) r2 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x406a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto_EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, &(0x7f0000000000)=0xfffffff9) setuid$auto(0xe) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0x8) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0006, 0x17) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) mmap$auto(0x1, 0x8d4, 0x6, 0x6f52, 0xffffffffffffffff, 0x8000) lstat$auto(0x0, 0x0) 7.964696149s ago: executing program 1 (id=3701): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x2, 0x88) setsockopt$auto(r0, 0x11, 0xb, 0x0, 0x8) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x1, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) wait4$auto(0x0, &(0x7f0000000000)=0x9, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x106) socket(0x2, 0x801, 0x6) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1) read$auto(0x3, 0x0, 0x80) mmap$auto(0x100, 0x2, 0x4, 0x200009b71, 0x2, 0x9) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x20020000) write$auto(0x3, 0x0, 0x100000000) 7.05221384s ago: executing program 3 (id=3711): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000004400), r1) sendmsg$auto_NFSD_CMD_VERSION_SET(r1, &(0x7f0000004580)={0x0, 0x0, &(0x7f0000004540)={0x0, 0xa4}, 0x1, 0x0, 0x0, 0x8850}, 0x0) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) r2 = epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x401, 0x0) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x694, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffc01, 0x7fffffff, 0xfffffffffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x400, 0x96, 0x4000000000009, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) writev$auto(r2, &(0x7f0000000100)={&(0x7f00000000c0), 0x80000000}, 0x9) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x480001, 0x0) write$auto(r4, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) timerfd_gettime$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd03, &(0x7f00000001c0)) 6.900569362s ago: executing program 1 (id=3704): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/i8042/serio0/bind_mode\x00', 0xe3102, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x68140, 0x0) timer_settime$auto(0x4, 0x5, &(0x7f00000000c0)={{0x8, 0x10004}, {0x809, 0x11}}, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 5.560512841s ago: executing program 2 (id=3705): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4) setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) socket(0x7, 0x3, 0x2) set_mempolicy$auto(0x6, 0x0, 0x21) unshare$auto(0x40000080) chdir$auto(&(0x7f0000000340)='./file1\x00') r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1}) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x24080, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe}) 5.136849681s ago: executing program 1 (id=3706): r0 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3) r1 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) syz_genetlink_get_family_id$auto_nl80211(0x0, r1) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) write$auto(0x3, 0x0, 0xfffffdef) connect$auto(0x3, 0x0, 0x55) ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093) process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000), 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000) 5.125583616s ago: executing program 0 (id=3707): syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x7) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) madvise$auto(0x110c230000, 0x1, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0) getrandom$auto(0x0, 0x3, 0x80000001) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0xfffffffffffffffe, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x800000000000b, 0xbc) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffff7effffd0c, &(0x7f00000001c0)) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) madvise$auto(0x9, 0x7, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa) clone$auto(0x1, 0x40000000003e, 0x0, 0x0, 0x40000009) r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x2) getdents64$auto(r1, &(0x7f0000000f40)={0x309, 0x7, 0xffff, 0x7}, 0x200c8) msync$auto(0x110c230000, 0x200001, 0x6) 4.586830653s ago: executing program 3 (id=3708): select$auto(0x4, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1000000000000004, 0x15f4da0a, 0x39, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x2480, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0) syz_clone(0x4000, &(0x7f00000002c0)="f03f0b0be4f2597d8b11ed14dfa636bad65cae9c0d21", 0x16, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cpu.max\x00', 0x20b02, 0x0) io_uring_register$auto_IORING_UNREGISTER_FILES(r0, 0x3, &(0x7f0000000080)="193f32b995f0ecb4ddf8cd83baeda5c352a745214ad880cc4c561670de2d13131c656d339507302cd18f379f551569932d17bb17195ecfc677eb23ac801128003ef54e78817f1a", 0x3) sendfile$auto(r0, r0, &(0x7f0000000000)=0x3, 0xad6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r4 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r4}, 0x6f4) read$auto(r3, 0x0, 0x20) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x48043, 0x0) write$auto(r5, 0x0, 0x6) unshare$auto(0x40000080) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000000)="b2", 0x1) r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) sendfile$auto(r1, r7, 0x0, 0x1) 4.387071071s ago: executing program 1 (id=3709): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4) setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) socket(0x7, 0x3, 0x2) read$auto(0xffffffffffffffff, 0x0, 0x20) set_mempolicy$auto(0x6, 0x0, 0x21) unshare$auto(0x40000080) chdir$auto(&(0x7f0000000340)='./file1\x00') prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1}) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000040)=0x5) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe}) 3.639410869s ago: executing program 2 (id=3710): mmap$auto(0x0, 0x0, 0x1000, 0x9b72, 0x2, 0x100002000) close_range$auto(0x2, 0x8, 0x0) r0 = userfaultfd$auto(0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x200000000000, 0x1, 0x0, 0x6d8e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xaea, 0x0, 0xfc0c, 0x0, 0x0, 0x9, 0x2]}, 0x1fe, 0xd) io_uring_register$auto(0xffffffffffffffff, 0x1f, &(0x7f0000000180), 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x25, 0x1, 0x3) socket(0x28, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) eventfd$auto(0x3) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x7c3142, 0x0) socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) ioctl$auto(r2, 0x5411, r1) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) r3 = socket(0xa, 0x1, 0x84) getsockopt$auto(r3, 0x84, 0x1, 0x0, 0x0) openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x403, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) 2.729792677s ago: executing program 1 (id=3712): r0 = prctl$auto_PR_SCHED_CORE_SHARE_TO(0x7, 0x2, 0xffffffffffffffff, 0x6, 0x3) r1 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x2, 0x1, 0x106) setsockopt$auto(r2, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4) bind$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x3, @multicast1}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3dc) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x8000) bind$auto(0x3, 0x0, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) syz_genetlink_get_family_id$auto_nl80211(0x0, r1) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) write$auto(0x3, 0x0, 0xfffffdef) connect$auto(0x3, 0x0, 0x55) ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8ac81, 0x0) prctl$auto_PR_SET_THP_DISABLE(0x29, 0x10, 0xf3, 0x24c, 0x4093) process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000000)="87ff3dadcb0775780ba3f83cd6dcf68d7f9480323d9633fe", 0x9ac}, 0xfce, &(0x7f0000000100)={&(0x7f00000000c0)="c47c2a", 0x6}, 0x3, 0x1000) 2.635775595s ago: executing program 2 (id=3713): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0x9, 0x8, 0x5, 0x1001, 0x1ff, 0xf, 0x1000, 0xb, 0x2, 0xced80000000001, 0x9, 0x3, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0) mmap$auto(0x0, 0x3, 0x1000000000001, 0x8000000008011, 0x3, 0x0) r0 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x28400, 0x0) readv$auto(r0, &(0x7f0000000040)={&(0x7f0000000200)="2f36287139474c0a12000000000000", 0xfff}, 0x8) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0) openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) 2.319838189s ago: executing program 3 (id=3714): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2b, 0x1, 0x0) listen$auto(0x3, 0x81) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x14, r1, 0x1, 0x70bd31, 0x25dfdbfd}, 0x14}}, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x103003, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0) pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0) msgctl$auto_MSG_INFO(0x4b, 0xc, &(0x7f00000000c0)={{0x1, 0xee01, 0xee00, 0x80, 0xc, 0x7, 0x38}, 0x0, 0x0, 0x40, 0x56, 0x5, 0xf8, 0x8, 0x1, 0x0, 0x5, @inferred=0x0}) prctl$auto(0x1, 0x8, r5, 0x3a, 0x1) 2.300779638s ago: executing program 2 (id=3722): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4) setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) set_mempolicy$auto(0x6, 0x0, 0x21) unshare$auto(0x40000080) chdir$auto(&(0x7f0000000340)='./file1\x00') r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1}) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000040)=0x5) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x24080, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0x100, 0x1ff, 0xfffffffc, 0xfffffffe}) 2.053511649s ago: executing program 0 (id=3715): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0x1d, 0x1, 0x7fff) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) r3 = socket(0x18, 0x5, 0x1) syz_genetlink_get_family_id$auto_smbd_genl(0x0, r0) sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r3, 0x0, 0x30004850) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r4, 0x4b47, 0x1) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev_snmp6/netdevsim2\x00', 0x1c9802, 0x0) pread64$auto(r5, &(0x7f00000005c0)='/pr\xa2Cv&P\x11\xf7\x01\xa4\xdcXd\x1dvices\x00F%\xf7\x175)x\xd6\fR\x117\t\x00F\xe6\x8bG$\xdaP\xf1\x1e\xe9Z\xc6K\xe44\xdc\x8f\x94\x86\n\x95\xb3I<\xd2~\xe5\xad\n\x0f\xbf\x97\xcf\xcd\x9b\x8f\x8dh\xb8\xffz_\x84Y\x1bt\xf3\xf19\xc0\x9d\xad\xb3\xd9\x89\x15|\x96\xb6\x7f^\x00\x00\x00\x00\xa5n\'(\xa2\x95*\xda\xfcVCf\xd7\x88h[\xd2\xd9\xba\xc5\xc53\x15\x11^Q\x80\xf8\xa77\xa0\xbd\n*\xe0\xcduw\x96f\x95\xcc\xcbP\xd1\xbe\xe21$=\xb6\xe3lP-\xcbs\xe0\f\xce=\xe9 \xe8\n)\xf2b*\xea\"\x94\x96\xcc\xc8S\xd3]Y\xca\xd3\x13\xe3\xd8\x82\x9c\xa5\x06\x01\xafR\x16r\xa3)9t\xae<(V2\xc7\x98A\xc7<&\x89\x98\x7f\x8a\xb1\x8a\xfc\x05T\x8d\xa3\xc2\xdf\xb0\x0f\xad\x85P\xed\x9ct\xf7M\f-\xd3\xe9\xfe\x15o\xab5\xb23\xd2\xef\x9c\xc2;\x91\x05\xd8^I\x8e\x18p\xfb\x8d\x06\xb8J1\xce\x00', 0x100000001, 0x100) r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/bus/usb/037/001\x00', 0x40001, 0x0) close_range$auto(r0, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x802, 0x1) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000089c0)='/dev/mtd0\x00', 0x80000, 0x0) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x68) ioctl$auto_USBDEVFS_CONTROL(r6, 0xc0185500, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x4c440, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) 490.433618ms ago: executing program 2 (id=3716): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/i8042/serio0/bind_mode\x00', 0xe3102, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x68140, 0x0) timer_settime$auto(0x4, 0x5, &(0x7f00000000c0)={{0x8, 0x10004}, {0x809, 0x11}}, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) socketpair$auto(0x1f, 0x5, 0x8000000000000000, 0x0) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r2, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 489.80026ms ago: executing program 1 (id=3725): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r1 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r1, 0x29, 0x43, &(0x7f0000000040)='\xa1\x00', 0x4) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r2, 0x400454a4, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x9f, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram0\x00', 0x67f00, 0x0) preadv2$auto(r3, &(0x7f0000000080)={0x0, 0x80000003}, 0x6, 0xffffffffffffffff, 0x400, 0x2f) mmap$auto(0x0, 0x4120008, 0x46, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0xa40, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) pread64$auto(r0, &(0x7f0000000240)='/3Cocw\x00\x03\x00\x00\x00\x17\x00\x00\x00ipt3\x00\xc3\xa9[/\xd4>p\xaeL@N&-\x1d\xb7\x86\xdc\xa8_3.\xa1\\\xee\xc7\xb4*8\xd6\xc04KDh\xc9\xce\xbe\x16\xca\xaaO\'\xfb\v\b\vM\x00e\xd6\xb9z\xdc\x12\x8f\x9d\x88\xad\xaav1\v\x06\xe79\xb9C\f\x875j\x00\x14\xa7\x7f\x1d\xf0\xf5\xc4\xe4nLc%\x80\xa95\xc3\xc2\xf0}\x05A\xa7\\\x9fC1\x9ci\x13\xbeq\xc8\'\xb8\x8amW\xf9\xe5\xf1\x1a\xe1\x8eTS\x97\xfbx\xb9#\xd9\x03\xcbz\x11\xb2\x04\\\xc0w\xeaS\xad8I$\xa0\x8c\xc4[\x04\xa4\x9a\x8b\xf5og\xee', 0x34b, 0xffff) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2a, 0x2, 0x1) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, 0x0, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0) 231.50881ms ago: executing program 0 (id=3717): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4) setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x8000000000002, 0x0, 0x10000000, 0x3) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2?', 0x80000000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) shmdt$auto(0x0) socket(0x7, 0x3, 0x2) read$auto(0xffffffffffffffff, 0x0, 0x20) set_mempolicy$auto(0x6, 0x0, 0x21) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x40001, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) waitid$auto_P_PID(0x1, 0x0, 0x0, 0xf, &(0x7f0000000440)={{0x7, 0x24}, {0x929a, 0x1ff}, 0x9, 0x3, 0x4032, 0xfffffffffffffff4, 0x4df, 0x0, 0x8, 0x8fb000, 0x0, 0x100, 0x4, 0x3, 0xd, 0x1}) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x5) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) 0s ago: executing program 2 (id=3718): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000004400), r1) sendmsg$auto_NFSD_CMD_VERSION_SET(r1, &(0x7f0000004580)={0x0, 0x0, &(0x7f0000004540)={0x0, 0xa4}, 0x1, 0x0, 0x0, 0x8850}, 0x0) preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) r2 = epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x401, 0x0) write$auto(0x3, 0x0, 0x5c8) statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x694, [0x2, 0x6, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffc01, 0x7fffffff, 0xfffffffffffffffb, 0x0, 0x9, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x0, 0x0, 0x20000000000000, 0x0, 0x1000000000000200, 0x0, 0x400, 0x96, 0x4000000000009, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) writev$auto(r2, &(0x7f0000000100)={&(0x7f00000000c0), 0x80000000}, 0x9) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x480001, 0x0) write$auto(r4, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) timerfd_gettime$auto(0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000) madvise$auto(0x0, 0x2003f0, 0x15) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd03, &(0x7f00000001c0)) kernel console output (not intermixed with test programs): 007f55de40eec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 539.558946][T13348] RAX: ffffffffffffffda RBX: 00007f55de40f6c0 RCX: 00007f55dd55ca0e [ 539.558962][T13348] RDX: 0000000000000002 RSI: 00007f55de40ef90 RDI: ffffffffffffff9c [ 539.558978][T13348] RBP: 00007f55dd6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 539.558994][T13348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 539.559009][T13348] R13: 00007f55dd816038 R14: 00007f55dd815fa0 R15: 00007ffed9fb5d48 [ 539.559042][T13348] [ 540.251626][T13363] random: crng reseeded on system resumption [ 543.073039][T13391] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 543.104568][T13391] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 543.137822][T13391] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 543.165042][T13391] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 543.396299][ T6267] Bluetooth: hci1: command 0x0c1a tx timeout [ 543.576880][T13425] random: crng reseeded on system resumption [ 545.166290][ T6267] Bluetooth: hci0: command 0x0c1a tx timeout [ 545.172327][ T6267] Bluetooth: hci2: command 0x0c1a tx timeout [ 545.236143][ T6267] Bluetooth: hci3: command 0x0c1a tx timeout [ 545.278984][T13433] hub 1-0:1.0: USB hub found [ 545.287713][T13433] hub 1-0:1.0: 1 port detected [ 546.146535][T13456] random: crng reseeded on system resumption [ 547.866040][T13493] binder: 13492:13493 ioctl c018620c 200000000040 returned -22 [ 548.555629][T13505] random: crng reseeded on system resumption [ 549.289470][T13517] random: crng reseeded on system resumption [ 549.793236][T13528] FAULT_INJECTION: forcing a failure. [ 549.793236][T13528] name failslab, interval 1, probability 0, space 0, times 0 [ 549.855838][T13528] CPU: 0 UID: 0 PID: 13528 Comm: syz.0.1489 Tainted: G L syzkaller #0 PREEMPT(full) [ 549.855866][T13528] Tainted: [L]=SOFTLOCKUP [ 549.855871][T13528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 549.855880][T13528] Call Trace: [ 549.855886][T13528] [ 549.855892][T13528] dump_stack_lvl+0x100/0x190 [ 549.855919][T13528] should_fail_ex.cold+0x5/0xa [ 549.855937][T13528] ? net_alloc_generic+0x1e/0x70 [ 549.855951][T13528] should_failslab+0xc2/0x120 [ 549.855974][T13528] __kmalloc_noprof+0xe0/0x850 [ 549.855996][T13528] net_alloc_generic+0x1e/0x70 [ 549.856010][T13528] copy_net_ns+0xc6/0x7c0 [ 549.856025][T13528] ? copy_cgroup_ns+0x71/0x970 [ 549.856042][T13528] create_new_namespaces+0x3ea/0xac0 [ 549.856061][T13528] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 549.856077][T13528] ksys_unshare+0x455/0xab0 [ 549.856096][T13528] ? __pfx_ksys_unshare+0x10/0x10 [ 549.856120][T13528] __x64_sys_unshare+0x31/0x40 [ 549.856137][T13528] do_syscall_64+0x106/0xf80 [ 549.856151][T13528] ? clear_bhb_loop+0x40/0x90 [ 549.856168][T13528] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 549.856184][T13528] RIP: 0033:0x7f84e919c139 [ 549.856197][T13528] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 549.856211][T13528] RSP: 002b:00007f84ea015028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 549.856226][T13528] RAX: ffffffffffffffda RBX: 00007f84e9415fa0 RCX: 00007f84e919c139 [ 549.856236][T13528] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 549.856245][T13528] RBP: 00007f84e92327e0 R08: 0000000000000000 R09: 0000000000000000 [ 549.856253][T13528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 549.856262][T13528] R13: 00007f84e9416038 R14: 00007f84e9415fa0 R15: 00007fff4602b9e8 [ 549.856281][T13528] [ 550.147414][T13533] blktrace: Concurrent blktraces are not allowed on loop2 [ 551.839857][T13543] Process accounting resumed [ 552.025397][T13565] random: crng reseeded on system resumption [ 552.333057][T13558] Process accounting resumed [ 552.540071][T13572] random: crng reseeded on system resumption [ 552.739306][ T6267] Bluetooth: hci3: SCO packet for unknown connection handle 2255 [ 554.864629][T13624] random: crng reseeded on system resumption [ 556.024779][T13645] random: crng reseeded on system resumption [ 556.979014][T13666] random: crng reseeded on system resumption [ 557.629929][T13681] random: crng reseeded on system resumption [ 560.283119][T13723] random: crng reseeded on system resumption [ 560.683596][T13728] random: crng reseeded on system resumption [ 561.043437][T13733] random: crng reseeded on system resumption [ 561.953524][T13755] random: crng reseeded on system resumption [ 562.936292][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.942599][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.140152][T13779] random: crng reseeded on system resumption [ 563.924369][T13795] random: crng reseeded on system resumption [ 564.503446][ T29] audit: type=1804 audit(2147483826.731:27): pid=13808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1543" name="/newroot/403/file0" dev="tmpfs" ino=2084 res=1 errno=0 [ 564.594963][ T29] audit: type=1804 audit(2147483826.781:28): pid=13808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1543" name="/newroot/403/file0" dev="tmpfs" ino=2084 res=1 errno=0 [ 564.986959][T13815] random: crng reseeded on system resumption [ 566.373867][T13848] random: crng reseeded on system resumption [ 566.710545][T13810] kexec: Could not allocate control_code_buffer [ 566.959323][T13858] random: crng reseeded on system resumption [ 567.721369][T13869] random: crng reseeded on system resumption [ 568.443439][T13879] random: crng reseeded on system resumption [ 569.439946][T13859] kexec: Could not allocate control_code_buffer [ 570.148110][T13902] random: crng reseeded on system resumption [ 571.297878][T13910] Process accounting resumed [ 571.537145][T13933] random: crng reseeded on system resumption [ 573.154443][T13953] random: crng reseeded on system resumption [ 576.536153][T13974] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 576.854802][T13977] kexec: Could not allocate control_code_buffer [ 577.389552][T14002] random: crng reseeded on system resumption [ 581.780548][T14083] random: crng reseeded on system resumption [ 582.379238][T14069] Process accounting paused [ 583.687731][T14098] Process accounting paused [ 583.717420][T14115] random: crng reseeded on system resumption [ 585.676935][T14147] random: crng reseeded on system resumption [ 586.872176][T14167] random: crng reseeded on system resumption [ 587.656645][T14184] random: crng reseeded on system resumption [ 587.942814][T14151] kexec: Could not allocate control_code_buffer [ 588.710704][T14205] random: crng reseeded on system resumption [ 589.368976][T14211] random: crng reseeded on system resumption [ 589.884370][T14222] input: jJǸ-9%vJ86 as /devices/virtual/input/input19 [ 590.390648][T14239] random: crng reseeded on system resumption [ 591.954979][T14263] random: crng reseeded on system resumption [ 592.500671][T14275] random: crng reseeded on system resumption [ 592.989659][T14283] random: crng reseeded on system resumption [ 593.867698][T14301] random: crng reseeded on system resumption [ 595.366790][T14336] input: jJǸ-9%vJ86 as /devices/virtual/input/input20 [ 596.473823][T14344] random: crng reseeded on system resumption [ 597.153993][T14355] random: crng reseeded on system resumption [ 598.056229][T14356] hub 1-0:1.0: USB hub found [ 598.065136][T14356] hub 1-0:1.0: 1 port detected [ 598.747933][T14375] random: crng reseeded on system resumption [ 599.617323][T14398] random: crng reseeded on system resumption [ 600.416608][T14419] random: crng reseeded on system resumption [ 600.710077][T14426] input: jJǸ-9%vJ86 as /devices/virtual/input/input21 [ 602.271060][T14437] hub 1-0:1.0: USB hub found [ 602.296744][ T5909] usb usb40-port2: attempt power cycle [ 602.312895][T14437] hub 1-0:1.0: 1 port detected [ 602.888501][ T5909] usb usb40-port2: unable to enumerate USB device [ 604.694005][T14429] Process accounting paused [ 605.838569][T14495] random: crng reseeded on system resumption [ 607.419793][T14517] random: crng reseeded on system resumption [ 609.834464][T14553] binder: 14552:14553 ioctl c018620c 0 returned -1 [ 613.038957][T14608] Process accounting resumed [ 613.123457][T14614] binder: 14613:14614 ioctl c018620c 0 returned -1 [ 613.809645][T14635] Process accounting resumed [ 615.078901][T14660] input: jJǸ-9%vJ86 as /devices/virtual/input/input22 [ 618.095648][T14695] forcing mempool usage for bio_alloc_bioset+0x392/0x850 [ 618.429096][T14696] binder: 14693:14696 ioctl c018620c 0 returned -1 [ 619.022447][T14725] FAULT_INJECTION: forcing a failure. [ 619.022447][T14725] name failslab, interval 1, probability 0, space 0, times 0 [ 619.035572][T14725] CPU: 1 UID: 0 PID: 14725 Comm: syz.1.1723 Tainted: G L syzkaller #0 PREEMPT(full) [ 619.035619][T14725] Tainted: [L]=SOFTLOCKUP [ 619.035629][T14725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 619.035645][T14725] Call Trace: [ 619.035654][T14725] [ 619.035663][T14725] dump_stack_lvl+0x100/0x190 [ 619.035708][T14725] should_fail_ex.cold+0x5/0xa [ 619.035740][T14725] should_failslab+0xc2/0x120 [ 619.035781][T14725] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 619.035818][T14725] ? fib_notifier_ops_register+0x32/0x270 [ 619.035843][T14725] ? __debug_object_init+0x2de/0x3d0 [ 619.035879][T14725] kmemdup_noprof+0x29/0x60 [ 619.035912][T14725] fib_notifier_ops_register+0x32/0x270 [ 619.035940][T14725] fib4_notifier_init+0x4f/0xd0 [ 619.035967][T14725] fib_net_init+0xbf/0x3f0 [ 619.035992][T14725] ? is_module_address+0x69/0xf0 [ 619.036023][T14725] ? __pfx_fib_net_init+0x10/0x10 [ 619.036052][T14725] ? timer_init_key+0x150/0x340 [ 619.036086][T14725] ? devinet_init_net+0x56c/0x8d0 [ 619.036121][T14725] ? __pfx_fib_net_init+0x10/0x10 [ 619.036147][T14725] ops_init+0x1e2/0x5f0 [ 619.036178][T14725] setup_net+0x118/0x3a0 [ 619.036207][T14725] ? __pfx_setup_net+0x10/0x10 [ 619.036231][T14725] ? lockdep_init_map_type+0x5c/0x250 [ 619.036266][T14725] ? mutex_init_lockep+0x110/0x150 [ 619.036306][T14725] copy_net_ns+0x46f/0x7c0 [ 619.036338][T14725] create_new_namespaces+0x3ea/0xac0 [ 619.036374][T14725] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 619.036413][T14725] ksys_unshare+0x455/0xab0 [ 619.036450][T14725] ? __pfx_ksys_unshare+0x10/0x10 [ 619.036503][T14725] __x64_sys_unshare+0x31/0x40 [ 619.036535][T14725] do_syscall_64+0x106/0xf80 [ 619.036562][T14725] ? clear_bhb_loop+0x40/0x90 [ 619.036596][T14725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 619.036623][T14725] RIP: 0033:0x7f847399c139 [ 619.036647][T14725] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 619.036673][T14725] RSP: 002b:00007f84747f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 619.036701][T14725] RAX: ffffffffffffffda RBX: 00007f8473c16090 RCX: 00007f847399c139 [ 619.036720][T14725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 619.036737][T14725] RBP: 00007f8473a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 619.036753][T14725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 619.036770][T14725] R13: 00007f8473c16128 R14: 00007f8473c16090 R15: 00007ffdb5278bd8 [ 619.036808][T14725] [ 619.915398][T14736] input: jJǸ-9%vJ86 as /devices/virtual/input/input23 [ 621.508070][T14757] random: crng reseeded on system resumption [ 623.981503][T14794] binder: 14793:14794 ioctl c018620c 0 returned -1 [ 624.373491][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.379880][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.217540][T14818] random: crng reseeded on system resumption [ 626.007965][T14838] random: crng reseeded on system resumption [ 626.516322][T14850] input: jJǸ-9%vJ86 as /devices/virtual/input/input24 [ 627.916619][ T10] usb usb40-port2: attempt power cycle [ 628.578516][ T10] usb usb40-port2: unable to enumerate USB device [ 629.457239][T14879] forcing mempool usage for bio_alloc_bioset+0x392/0x850 [ 631.067400][T14896] random: crng reseeded on system resumption [ 634.939479][T14939] Process accounting resumed [ 636.635517][T14977] random: crng reseeded on system resumption [ 644.767074][T15061] Process accounting paused [ 645.686378][T15112] random: crng reseeded on system resumption [ 646.139683][T15117] Process accounting paused [ 648.400335][T15174] input: jJǸ-9%vJ86 as /devices/virtual/input/input25 [ 648.943429][T15151] netlink: 'syz.1.1775': attribute type 23 has an invalid length. [ 651.145520][T15201] usb usb24: usbfs: process 15201 (syz.2.1785) did not claim interface 0 before use [ 651.178066][T15205] random: crng reseeded on system resumption [ 654.418153][T15253] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1793'. [ 656.339441][T15276] forcing mempool usage for bio_alloc_bioset+0x392/0x850 [ 659.679582][T15312] kexec: Could not allocate control_code_buffer [ 661.359442][T15356] random: crng reseeded on system resumption [ 665.031944][T15399] Process accounting paused [ 665.163136][T15388] kexec: Could not allocate control_code_buffer [ 668.884988][T15478] random: crng reseeded on system resumption [ 669.538353][T15476] forcing mempool usage for bio_alloc_bioset+0x392/0x850 [ 671.680656][T15504] kexec: Could not allocate control_code_buffer [ 672.905239][T15549] random: crng reseeded on system resumption [ 674.053238][T15538] kexec: Could not allocate control_code_buffer [ 674.126891][T15573] random: crng reseeded on system resumption [ 675.388277][T15585] Process accounting resumed [ 677.264477][T15619] kexec: Could not allocate control_code_buffer [ 677.623292][T15635] Process accounting resumed [ 677.918771][T15651] random: crng reseeded on system resumption [ 678.552829][T15647] kexec: Could not allocate control_code_buffer [ 681.537724][T15705] kexec: Could not allocate control_code_buffer [ 683.188364][T15732] kexec: Could not allocate control_code_buffer [ 684.763914][T15769] kexec: Could not allocate control_code_buffer [ 685.806231][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.812630][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.495458][T15801] kexec: Could not allocate control_code_buffer [ 688.287946][T15832] kexec: Could not allocate control_code_buffer [ 690.092873][T15875] kexec: Could not allocate control_code_buffer [ 691.511912][T15915] random: crng reseeded on system resumption [ 691.753305][T15908] kexec: Could not allocate control_code_buffer [ 693.471735][T15936] kexec: Could not allocate control_code_buffer [ 695.081277][T15985] random: crng reseeded on system resumption [ 695.219509][T15975] kexec: Could not allocate control_code_buffer [ 695.453177][T15984] Process accounting resumed [ 696.465569][T15994] kexec: Could not allocate control_code_buffer [ 698.273778][T16022] kexec: Could not allocate control_code_buffer [ 699.194647][T16048] kexec: Could not allocate control_code_buffer [ 702.004467][T16108] kexec: Could not allocate control_code_buffer [ 703.061257][T16126] kexec: Could not allocate control_code_buffer [ 705.129328][T16172] kexec: Could not allocate control_code_buffer [ 706.067293][T16187] kexec: Could not allocate control_code_buffer [ 706.254236][T16186] Process accounting paused [ 707.537292][T16212] kexec: Could not allocate control_code_buffer [ 707.544523][T16231] random: crng reseeded on system resumption [ 707.780904][T16222] Process accounting paused [ 709.394830][T16253] kexec: Could not allocate control_code_buffer [ 710.367457][T16283] random: crng reseeded on system resumption [ 710.733866][T16276] kexec: Could not allocate control_code_buffer [ 711.834034][T16295] kexec: Could not allocate control_code_buffer [ 713.210744][T16321] kexec: Could not allocate control_code_buffer [ 716.933305][T16402] kexec: Could not allocate control_code_buffer [ 720.603819][T16446] kexec: Could not allocate control_code_buffer [ 722.311034][T16473] kexec: Could not allocate control_code_buffer [ 724.043078][T16503] kexec: Could not allocate control_code_buffer [ 725.228455][T16529] kexec: Could not allocate control_code_buffer [ 726.487927][T16550] Process accounting paused [ 728.827391][T16571] kexec: Could not allocate control_code_buffer [ 731.987614][T16629] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 732.011831][T16629] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 732.028865][T16629] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 732.058431][T16629] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 732.111881][T16633] kexec: Could not allocate control_code_buffer [ 732.435608][ T6267] Bluetooth: hci1: command 0x0c1a tx timeout [ 732.538197][T16647] usb usb24: usbfs: process 16647 (syz.1.2053) did not claim interface 0 before use [ 733.924625][T16654] kexec: Could not allocate control_code_buffer [ 734.051882][ T6267] Bluetooth: hci3: command 0x0c1a tx timeout [ 734.058051][T10448] Bluetooth: hci0: command 0x0c1a tx timeout [ 734.064032][T10448] Bluetooth: hci2: command 0x0c1a tx timeout [ 736.450614][T16711] kexec: Could not allocate control_code_buffer [ 736.841734][T16717] usb usb24: usbfs: process 16717 (syz.0.2066) did not claim interface 0 before use [ 737.168560][T16714] Process accounting resumed [ 737.806971][T16724] kexec: Could not allocate control_code_buffer [ 738.210498][T16731] Process accounting resumed [ 740.392831][T16783] netlink: 186 bytes leftover after parsing attributes in process `syz.2.2076'. [ 741.838839][T16794] usb usb24: usbfs: process 16794 (syz.3.2078) did not claim interface 0 before use [ 744.138692][T16820] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 744.165870][T16820] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 744.189112][T16820] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 744.220178][T16820] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 745.235339][T16692] Bluetooth: hci1: command 0x0c1a tx timeout [ 745.618366][T16865] Invalid ELF header magic: != ELF [ 746.198364][T16692] Bluetooth: hci0: command 0x0c1a tx timeout [ 746.204613][ T6304] Bluetooth: hci2: command 0x0c1a tx timeout [ 746.275317][T16692] Bluetooth: hci3: command 0x0c1a tx timeout [ 746.520912][T16880] kexec: Could not allocate control_code_buffer [ 747.258758][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.265054][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 748.853446][T16923] kexec: Could not allocate control_code_buffer [ 750.524378][T16960] kexec: Could not allocate control_code_buffer [ 751.226512][T16985] Invalid ELF header magic: != ELF [ 753.500909][T17020] kexec: Could not allocate control_code_buffer [ 754.452842][T17030] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 754.459184][T17030] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 754.465610][T17030] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 754.472222][T17030] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 755.635317][T16692] Bluetooth: hci1: command 0x0c1a tx timeout [ 756.067015][T17052] kexec: Could not allocate control_code_buffer [ 756.476607][T17077] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 756.488311][T17077] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 756.520615][T16692] Bluetooth: hci3: command 0x0c1a tx timeout [ 756.526811][ T6304] Bluetooth: hci0: command 0x0c1a tx timeout [ 756.569669][T17077] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 756.586190][T17077] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 758.394025][T17086] Process accounting resumed [ 758.515236][ T6304] Bluetooth: hci2: command 0x0c1a tx timeout [ 758.596456][T16692] Bluetooth: hci0: command 0x0c1a tx timeout [ 758.602549][ T6304] Bluetooth: hci3: command 0x0c1a tx timeout [ 760.031123][T17107] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 760.055780][T17107] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 760.067793][T17107] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 760.085474][T17107] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 760.355133][ T6304] Bluetooth: hci1: command 0x0c1a tx timeout [ 761.551059][T17135] kexec: Could not allocate control_code_buffer [ 762.116943][ T6304] Bluetooth: hci3: command 0x0c1a tx timeout [ 762.122994][ T6304] Bluetooth: hci0: command 0x0c1a tx timeout [ 762.131176][T16692] Bluetooth: hci2: command 0x0c1a tx timeout [ 762.574089][T17149] kexec: Could not allocate control_code_buffer [ 767.796362][T17238] Process accounting paused [ 768.193158][T17247] NFSD: Failed to start, no listeners configured. [ 769.144213][T17243] Process accounting paused [ 769.898946][T17263] kexec: Could not allocate control_code_buffer [ 773.396501][T17329] kexec: Could not allocate control_code_buffer [ 775.088145][T17355] kexec: Could not allocate control_code_buffer [ 776.241302][T17395] blktrace: Concurrent blktraces are not allowed on loop2 [ 779.891523][T17450] Invalid ELF header magic: != ELF [ 783.901595][T17504] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 783.935499][T17504] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 783.968813][T17504] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 784.032804][T17504] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 785.965644][ T6304] Bluetooth: hci2: command 0x0c1a tx timeout [ 785.971744][T16692] Bluetooth: hci1: command 0x0c1a tx timeout [ 786.035697][ T6304] Bluetooth: hci3: command 0x0c1a tx timeout [ 786.044560][T16692] Bluetooth: hci0: command 0x0c1a tx timeout [ 786.283268][T17521] kexec: Could not allocate control_code_buffer [ 787.381571][T17546] NFSD: Failed to start, no listeners configured. [ 788.252122][T17557] kexec: Could not allocate control_code_buffer [ 790.330514][T17575] Process accounting paused [ 791.709189][T17592] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 791.727467][T17592] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 791.763694][T17592] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 791.781793][T17592] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 792.054956][T16692] Bluetooth: hci1: command 0x0c1a tx timeout [ 792.138613][T17600] kexec: Could not allocate control_code_buffer [ 793.415643][T17634] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 793.432372][T17634] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 793.442793][T17634] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 793.453752][T17634] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 795.480806][T16692] Bluetooth: hci3: command 0x0c1a tx timeout [ 795.488930][ T6304] Bluetooth: hci0: command 0x0c1a tx timeout [ 795.495023][T10448] Bluetooth: hci2: command 0x0c1a tx timeout [ 795.501420][T10448] Bluetooth: hci1: command 0x0c1a tx timeout [ 797.409591][T17667] kexec: Could not allocate control_code_buffer [ 798.702824][T17700] Process accounting resumed [ 799.961641][T17717] Process accounting resumed [ 801.917744][T17745] Invalid ELF header magic: != ELF [ 802.397507][T17752] kexec: Could not allocate control_code_buffer [ 805.763169][T17806] NFSD: Failed to start, no listeners configured. [ 806.230862][T17822] blktrace: Concurrent blktraces are not allowed on loop2 [ 808.045003][T17845] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 808.062914][T17845] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 808.069137][T17845] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 808.075284][T17845] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 808.444720][T17828] kexec: Could not allocate control_code_buffer [ 808.679948][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.695033][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.990571][T17856] kexec: Could not allocate control_code_buffer [ 810.118727][T17659] Bluetooth: hci3: command 0x0c1a tx timeout [ 810.124793][T16692] Bluetooth: hci0: command 0x0c1a tx timeout [ 810.130794][T17659] Bluetooth: hci2: command 0x0c1a tx timeout [ 810.141263][T10448] Bluetooth: hci1: command 0x0c1a tx timeout [ 812.606356][T17924] blktrace: Concurrent blktraces are not allowed on loop2 [ 813.306949][T17915] kexec: Could not allocate control_code_buffer [ 816.149673][T17973] kexec: Could not allocate control_code_buffer [ 816.745268][T17999] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 816.846617][T17999] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 816.853416][T17999] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 816.864138][T17999] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 817.361242][T17990] kexec: Could not allocate control_code_buffer [ 818.768963][T10448] Bluetooth: hci1: command 0x0c1a tx timeout [ 818.916867][T10448] Bluetooth: hci3: command 0x0c1a tx timeout [ 818.922953][T17659] Bluetooth: hci0: command 0x0c1a tx timeout [ 818.929417][T16692] Bluetooth: hci2: command 0x0c1a tx timeout [ 820.402459][T18053] Process accounting resumed [ 820.717164][T18073] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 820.729967][T18073] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 820.825304][T18073] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 820.857855][T18073] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 820.989801][T18063] kexec: Could not allocate control_code_buffer [ 822.758454][T10448] Bluetooth: hci1: command 0x0c1a tx timeout [ 822.845894][T10448] Bluetooth: hci0: command 0x0c1a tx timeout [ 822.851911][T10448] Bluetooth: hci2: command 0x0c1a tx timeout [ 822.910686][T18092] kexec: Could not allocate control_code_buffer [ 822.929724][T10448] Bluetooth: hci3: command 0x0c1a tx timeout [ 824.863884][T18130] kexec: Could not allocate control_code_buffer [ 827.469404][T18167] kexec: Could not allocate control_code_buffer [ 827.504996][T18188] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 827.511499][T18188] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 827.607266][T18188] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 827.653863][T18188] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 829.567412][T17659] Bluetooth: hci2: command 0x0c1a tx timeout [ 829.573448][T10448] Bluetooth: hci1: command 0x0c1a tx timeout [ 829.641872][T10448] Bluetooth: hci0: command 0x0c1a tx timeout [ 829.724749][T10448] Bluetooth: hci3: command 0x0c1a tx timeout [ 829.822151][T18226] NFSD: Failed to start, no listeners configured. [ 830.191191][T18209] kexec: Could not allocate control_code_buffer [ 830.235762][T18220] Process accounting paused [ 830.421024][T18209] Process accounting paused [ 830.821749][T18239] blktrace: Concurrent blktraces are not allowed on loop2 [ 834.377850][T18283] kexec: Could not allocate control_code_buffer [ 836.256327][T18310] kexec: Could not allocate control_code_buffer [ 838.973806][T18354] kexec: Could not allocate control_code_buffer [ 841.805657][T18398] kexec: Could not allocate control_code_buffer [ 845.953415][T18487] NFSD: Failed to start, no listeners configured. [ 846.242199][T18484] kexec: Could not allocate control_code_buffer [ 847.076226][T18516] misc userio: Invalid payload size [ 848.110226][T18513] kexec: Could not allocate control_code_buffer [ 850.043595][T18549] kexec: Could not allocate control_code_buffer [ 851.602670][T18587] Process accounting paused [ 852.177352][T18588] kexec: Could not allocate control_code_buffer [ 854.248847][T18629] kexec: Could not allocate control_code_buffer [ 856.608117][T18673] kexec: Could not allocate control_code_buffer [ 858.502561][T18702] kexec: Could not allocate control_code_buffer [ 860.632366][T18732] Process accounting resumed [ 861.121015][T18747] zswap: compressor not available [ 861.173554][T18737] Process accounting resumed [ 865.488553][T18827] zswap: compressor not available [ 865.755113][ T29] audit: type=1800 audit(2147484127.992:29): pid=18840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2441" name="dbroot" dev="configfs" ino=85834 res=0 errno=0 [ 865.809717][T18840] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2441'. [ 865.822753][T18840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2441'. [ 866.768384][T18846] kexec: Could not allocate control_code_buffer [ 870.118740][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.125081][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 870.511489][T18912] kexec: Could not allocate control_code_buffer [ 873.136714][T18956] kexec: Could not allocate control_code_buffer [ 874.327341][T18990] zswap: compressor not available [ 875.117188][T18987] kexec: Could not allocate control_code_buffer [ 877.335779][T19034] kexec: Could not allocate control_code_buffer [ 878.839821][T19069] zswap: compressor not available [ 879.927547][T19078] kexec: Could not allocate control_code_buffer [ 882.097318][T19115] kexec: Could not allocate control_code_buffer [ 883.416062][T19113] Process accounting resumed [ 884.159415][T19171] zswap: compressor not available [ 884.784703][T19167] kexec: Could not allocate control_code_buffer [ 886.315396][T19195] kexec: Could not allocate control_code_buffer [ 888.004186][T19232] misc userio: Invalid payload size [ 888.639606][T19238] kexec: Could not allocate control_code_buffer [ 890.720103][T19261] kexec: Could not allocate control_code_buffer [ 890.939775][T19277] Process accounting paused [ 891.768691][T19284] Process accounting paused [ 892.256865][T19305] misc userio: Invalid payload size [ 893.090790][T19312] kexec: Could not allocate control_code_buffer [ 894.308116][T19330] kexec: Could not allocate control_code_buffer [ 894.676777][T19347] zswap: compressor not available [ 896.159528][T19361] kexec: Could not allocate control_code_buffer [ 898.298792][T19388] kexec: Could not allocate control_code_buffer [ 900.130369][T19434] kexec: Could not allocate control_code_buffer [ 903.241044][T19514] mkiss: ax0: crc mode is auto. [ 905.271192][ T29] audit: type=1326 audit(2147484167.462:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19548 comm="syz.2.2572" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f55dd59c139 code=0x0 [ 905.561392][T19550] kexec: Could not allocate control_code_buffer [ 906.770351][T19558] kexec: Could not allocate control_code_buffer [ 908.591340][T19589] kexec: Could not allocate control_code_buffer [ 910.085445][T19608] kexec: Could not allocate control_code_buffer [ 913.054683][T19663] kexec: Could not allocate control_code_buffer [ 914.448594][T19696] Process accounting paused [ 914.660558][T19689] kexec: Could not allocate control_code_buffer [ 915.945162][T19738] mkiss: ax0: crc mode is auto. [ 917.517692][T19749] kexec: Could not allocate control_code_buffer [ 921.477768][T19829] Process accounting resumed [ 921.998259][T19826] kexec: Could not allocate control_code_buffer [ 922.522601][T19851] Process accounting resumed [ 925.758304][T19900] kexec: Could not allocate control_code_buffer [ 925.978178][T19929] mkiss: ax0: crc mode is auto. [ 929.443422][ T29] audit: type=1326 audit(2147484191.672:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.3.2652" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff8def9c139 code=0x0 [ 931.264849][T20008] kexec: Could not allocate control_code_buffer [ 931.557882][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.564261][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 933.423614][T20050] kexec: Could not allocate control_code_buffer [ 933.864409][T20082] bond0: invalid ARP target specified [ 933.879248][T20082] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2672'. [ 933.968327][T20084] FAULT_INJECTION: forcing a failure. [ 933.968327][T20084] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 933.997011][T20084] CPU: 1 UID: 0 PID: 20084 Comm: syz.2.2672 Tainted: G L syzkaller #0 PREEMPT(full) [ 933.997055][T20084] Tainted: [L]=SOFTLOCKUP [ 933.997065][T20084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 933.997083][T20084] Call Trace: [ 933.997092][T20084] [ 933.997103][T20084] dump_stack_lvl+0x100/0x190 [ 933.997150][T20084] should_fail_ex.cold+0x5/0xa [ 933.997179][T20084] ? prepare_alloc_pages+0x16d/0x5f0 [ 933.997226][T20084] should_fail_alloc_page+0xeb/0x140 [ 933.997273][T20084] prepare_alloc_pages+0x1f0/0x5f0 [ 933.997322][T20084] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 933.997368][T20084] ? __lock_acquire+0x4a5/0x2630 [ 933.997421][T20084] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 933.997462][T20084] ? do_raw_spin_lock+0x128/0x260 [ 933.997502][T20084] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 933.997542][T20084] ? find_held_lock+0x2b/0x80 [ 933.997595][T20084] ? __lock_acquire+0x4a5/0x2630 [ 933.997628][T20084] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 933.997672][T20084] ? policy_nodemask+0xed/0x4f0 [ 933.997716][T20084] alloc_pages_mpol+0x1fb/0x550 [ 933.997760][T20084] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 933.997801][T20084] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 933.997839][T20084] ? __folio_batch_add_and_move+0x5e5/0xc60 [ 933.997884][T20084] folio_alloc_mpol_noprof+0x36/0x340 [ 933.997916][T20084] shmem_alloc_folio+0x135/0x160 [ 933.997949][T20084] shmem_alloc_and_add_folio+0x371/0xd40 [ 933.997995][T20084] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 933.998036][T20084] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 933.998082][T20084] shmem_get_folio_gfp+0x6ab/0x1900 [ 933.998127][T20084] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 933.998166][T20084] ? filemap_map_pages+0x9e0/0x2170 [ 933.998209][T20084] shmem_fault+0x1f9/0xa20 [ 933.998244][T20084] ? __lock_acquire+0x4a5/0x2630 [ 933.998278][T20084] ? __pfx_shmem_fault+0x10/0x10 [ 933.998321][T20084] ? __pfx_filemap_map_pages+0x10/0x10 [ 933.998367][T20084] __do_fault+0x10d/0x550 [ 933.998419][T20084] do_fault+0xaf9/0x1a00 [ 933.998453][T20084] __handle_mm_fault+0x180f/0x2b60 [ 933.998491][T20084] ? mt_find+0x45e/0x8e0 [ 933.998524][T20084] ? __pfx___handle_mm_fault+0x10/0x10 [ 933.998554][T20084] ? __pfx_mt_find+0x10/0x10 [ 933.998604][T20084] ? find_vma+0xbf/0x140 [ 933.998643][T20084] ? __pfx_find_vma+0x10/0x10 [ 933.998685][T20084] handle_mm_fault+0x36d/0xa20 [ 933.998725][T20084] do_user_addr_fault+0x74c/0x12f0 [ 933.998779][T20084] exc_page_fault+0x6f/0xd0 [ 933.998824][T20084] asm_exc_page_fault+0x26/0x30 [ 933.998851][T20084] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 933.998888][T20084] Code: 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 93 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 933.998917][T20084] RSP: 0018:ffffc90004a6fd30 EFLAGS: 00050206 [ 933.998940][T20084] RAX: 0000000000000001 RBX: 0000000000001fe4 RCX: 0000000000004b84 [ 933.998958][T20084] RDX: 0000000000000001 RSI: 0000000000005000 RDI: ffffc90004a4b07c [ 933.998975][T20084] RBP: 0000000000007ba0 R08: 0000000000000001 R09: fffff52000949f7f [ 933.998993][T20084] R10: ffffc90004a4fbff R11: 0000000000000000 R12: 0000000000000000 [ 933.999010][T20084] R13: ffffc90004a48060 R14: 0000000000007ba0 R15: ffffc90004a48060 [ 933.999046][T20084] _copy_from_user+0x98/0xd0 [ 933.999087][T20084] bpf_prog_create_from_user+0x109/0x2f0 [ 933.999119][T20084] ? __pfx_seccomp_check_filter+0x10/0x10 [ 933.999154][T20084] do_seccomp+0x7f7/0x2740 [ 933.999198][T20084] ? __pfx_do_seccomp+0x10/0x10 [ 933.999229][T20084] ? __x64_sys_openat+0x12d/0x210 [ 933.999262][T20084] ? xfd_validate_state+0x129/0x190 [ 933.999314][T20084] do_syscall_64+0x106/0xf80 [ 933.999339][T20084] ? clear_bhb_loop+0x40/0x90 [ 933.999373][T20084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 933.999408][T20084] RIP: 0033:0x7f55dd59c139 [ 933.999432][T20084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 933.999461][T20084] RSP: 002b:00007f55de3ee028 EFLAGS: 00000246 ORIG_RAX: 000000000000013d [ 933.999487][T20084] RAX: ffffffffffffffda RBX: 00007f55dd816090 RCX: 00007f55dd59c139 [ 933.999506][T20084] RDX: 0000200000000100 RSI: 0000000000000000 RDI: 0000000000000001 [ 933.999524][T20084] RBP: 00007f55dd6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 933.999541][T20084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 933.999558][T20084] R13: 00007f55dd816128 R14: 00007f55dd816090 R15: 00007ffed9fb5d48 [ 933.999596][T20084] [ 934.491904][T20082] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 934.499488][T20082] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 934.507976][T20082] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 934.515757][T20082] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 937.357303][T20120] kexec: Could not allocate control_code_buffer [ 941.330483][T20215] kexec: Could not allocate control_code_buffer [ 944.583415][T20263] kexec: Could not allocate control_code_buffer [ 945.182488][T20282] Process accounting resumed [ 946.611488][T20295] kexec: Could not allocate control_code_buffer [ 949.452118][T20352] kexec: Could not allocate control_code_buffer [ 952.477805][T20406] kexec: Could not allocate control_code_buffer [ 952.688942][T20406] Process accounting paused [ 953.653380][T20423] kexec: Could not allocate control_code_buffer [ 953.755737][T20423] Process accounting paused [ 955.835887][T20450] rtc_cmos 00:00: Alarms can be up to one day in the future [ 955.896543][ T5909] rtc_cmos 00:00: Alarms can be up to one day in the future [ 955.914155][ T5909] rtc_cmos 00:00: Alarms can be up to one day in the future [ 955.954287][ T5909] rtc_cmos 00:00: Alarms can be up to one day in the future [ 955.984258][ T5909] rtc_cmos 00:00: Alarms can be up to one day in the future [ 956.010044][ T5909] rtc rtc0: __rtc_set_alarm: err=-22 [ 956.761027][T20479] kexec: Could not allocate control_code_buffer [ 958.549104][T20510] kexec: Could not allocate control_code_buffer [ 959.930039][T20529] rtc_cmos 00:00: Alarms can be up to one day in the future [ 960.232212][T20545] kexec: Could not allocate control_code_buffer [ 960.896031][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 960.903528][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 960.912575][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 960.944707][ T24] rtc_cmos 00:00: Alarms can be up to one day in the future [ 960.986776][ T24] rtc rtc0: __rtc_set_alarm: err=-22 [ 962.911636][T20585] kexec: Could not allocate control_code_buffer [ 962.932593][T20616] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2773'. [ 962.983056][T20616] macvlan1: entered promiscuous mode [ 962.991062][T20616] macvlan1: entered allmulticast mode [ 963.024149][T20616] veth1_vlan: entered allmulticast mode [ 963.503231][T20622] blktrace: Concurrent blktraces are not allowed on loop2 [ 966.569624][T20681] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2788'. [ 967.387235][T20687] kexec: Could not allocate control_code_buffer [ 969.477754][T20711] kexec: Could not allocate control_code_buffer [ 969.726964][T20738] zswap: compressor not available [ 971.707542][T20763] kexec: Could not allocate control_code_buffer [ 973.670621][T20805] kexec: Could not allocate control_code_buffer [ 974.813617][T20825] kexec: Could not allocate control_code_buffer [ 976.200282][T20876] Process accounting paused [ 976.321118][T20858] kexec: Could not allocate control_code_buffer [ 978.858983][T20911] kexec: Could not allocate control_code_buffer [ 983.597528][T21019] kexec: Could not allocate control_code_buffer [ 983.828702][T21026] Process accounting resumed [ 984.460561][T21039] Process accounting resumed [ 986.945507][T21068] kexec: Could not allocate control_code_buffer [ 987.853507][T21097] kexec: Could not allocate control_code_buffer [ 989.028291][T21116] kexec: Could not allocate control_code_buffer [ 989.065669][T21133] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2895'. [ 991.941138][T21157] kexec: Could not allocate control_code_buffer [ 992.997786][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.004255][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 994.187273][T21198] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2908'. [ 995.151156][T21207] kexec: Could not allocate control_code_buffer [ 996.656582][T21238] kexec: Could not allocate control_code_buffer [ 1000.562360][T21304] kexec: Could not allocate control_code_buffer [ 1002.291958][T21344] kexec: Could not allocate control_code_buffer [ 1004.931684][T21385] kexec: Could not allocate control_code_buffer [ 1006.115099][T21405] kexec: Could not allocate control_code_buffer [ 1006.552198][T21420] Process accounting resumed [ 1008.167880][T21442] kexec: Could not allocate control_code_buffer [ 1009.481892][T21465] kexec: Could not allocate control_code_buffer [ 1010.545167][T21486] kexec: Could not allocate control_code_buffer [ 1012.178733][T21513] kexec: Could not allocate control_code_buffer [ 1014.394119][T21548] kexec: Could not allocate control_code_buffer [ 1014.471780][T21560] Process accounting paused [ 1015.418307][T21565] Process accounting paused [ 1016.475219][T21579] kexec: Could not allocate control_code_buffer [ 1018.952033][T21616] kexec: Could not allocate control_code_buffer [ 1021.410434][T21659] kexec: Could not allocate control_code_buffer [ 1025.320047][T21722] kexec: Could not allocate control_code_buffer [ 1027.766545][T21762] kexec: Could not allocate control_code_buffer [ 1029.456279][T21781] kexec: Could not allocate control_code_buffer [ 1031.062909][T21812] kexec: Could not allocate control_code_buffer [ 1036.899727][T21910] Process accounting paused [ 1038.234175][T21928] kexec: Could not allocate control_code_buffer [ 1040.554816][T21969] kexec: Could not allocate control_code_buffer [ 1042.169696][T21998] kexec: Could not allocate control_code_buffer [ 1044.738438][T22044] kexec: Could not allocate control_code_buffer [ 1044.845346][T22044] Process accounting resumed [ 1045.759462][T22067] Process accounting resumed [ 1046.067415][T22073] kexec: Could not allocate control_code_buffer [ 1047.662991][T22100] kexec: Could not allocate control_code_buffer [ 1049.141890][T22128] kexec: Could not allocate control_code_buffer [ 1051.556240][T22170] kexec: Could not allocate control_code_buffer [ 1053.498894][T22190] kexec: Could not allocate control_code_buffer [ 1054.437091][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.443416][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1054.556221][T22217] kexec: Could not allocate control_code_buffer [ 1056.435203][T22249] kexec: Could not allocate control_code_buffer [ 1059.380018][T22291] kexec: Could not allocate control_code_buffer [ 1062.263034][T22341] kexec: Could not allocate control_code_buffer [ 1063.386793][T22367] kexec: Could not allocate control_code_buffer [ 1065.094138][T22390] kexec: Could not allocate control_code_buffer [ 1068.529226][T22442] kexec: Could not allocate control_code_buffer [ 1068.626184][T22442] Process accounting resumed [ 1070.346223][T22470] kexec: Could not allocate control_code_buffer [ 1072.597394][T22517] kexec: Could not allocate control_code_buffer [ 1074.027284][T22559] blktrace: Concurrent blktraces are not allowed on loop2 [ 1075.664785][T22577] Process accounting paused [ 1078.980032][T22605] Process accounting paused [ 1081.550905][T22669] kexec: Could not allocate control_code_buffer [ 1082.507432][T22702] kexec: Could not allocate control_code_buffer [ 1083.760226][T22716] kexec: Could not allocate control_code_buffer [ 1084.970070][T22736] kexec: Could not allocate control_code_buffer [ 1085.983272][T22751] kexec: Could not allocate control_code_buffer [ 1087.271064][T22793] FAULT_INJECTION: forcing a failure. [ 1087.271064][T22793] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.304311][T22793] CPU: 0 UID: 0 PID: 22793 Comm: syz.3.3215 Tainted: G L syzkaller #0 PREEMPT(full) [ 1087.304346][T22793] Tainted: [L]=SOFTLOCKUP [ 1087.304352][T22793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1087.304362][T22793] Call Trace: [ 1087.304367][T22793] [ 1087.304373][T22793] dump_stack_lvl+0x100/0x190 [ 1087.304401][T22793] should_fail_ex.cold+0x5/0xa [ 1087.304419][T22793] should_failslab+0xc2/0x120 [ 1087.304440][T22793] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1087.304459][T22793] ? security_inode_alloc+0x3b/0x2c0 [ 1087.304480][T22793] ? lockdep_init_map_type+0x5c/0x250 [ 1087.304502][T22793] security_inode_alloc+0x3b/0x2c0 [ 1087.304521][T22793] inode_init_always_gfp+0xced/0x1040 [ 1087.304545][T22793] alloc_inode+0x8e/0x250 [ 1087.304561][T22793] path_from_stashed+0x25b/0x750 [ 1087.304582][T22793] ? do_raw_spin_unlock+0x145/0x1e0 [ 1087.304605][T22793] ns_get_path+0x60/0x80 [ 1087.304625][T22793] proc_ns_get_link+0x121/0x230 [ 1087.304643][T22793] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1087.304661][T22793] ? atime_needs_update+0x8b/0x6b0 [ 1087.304680][T22793] pick_link+0xd17/0x13c0 [ 1087.304697][T22793] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1087.304716][T22793] step_into_slowpath+0x9ba/0xf90 [ 1087.304738][T22793] ? __pfx_step_into_slowpath+0x10/0x10 [ 1087.304756][T22793] ? find_held_lock+0x2b/0x80 [ 1087.304783][T22793] path_openat+0xf95/0x31a0 [ 1087.304809][T22793] ? __pfx_path_openat+0x10/0x10 [ 1087.304837][T22793] do_file_open+0x20e/0x430 [ 1087.304858][T22793] ? __pfx_do_file_open+0x10/0x10 [ 1087.304892][T22793] ? alloc_fd+0x476/0x790 [ 1087.304914][T22793] ? do_getname+0x191/0x390 [ 1087.304930][T22793] do_sys_openat2+0x10d/0x1e0 [ 1087.304945][T22793] ? __pfx_do_sys_openat2+0x10/0x10 [ 1087.304962][T22793] ? __fget_files+0x21f/0x3d0 [ 1087.304985][T22793] __x64_sys_openat+0x12d/0x210 [ 1087.305002][T22793] ? __pfx___x64_sys_openat+0x10/0x10 [ 1087.305024][T22793] do_syscall_64+0x106/0xf80 [ 1087.305038][T22793] ? clear_bhb_loop+0x40/0x90 [ 1087.305056][T22793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1087.305071][T22793] RIP: 0033:0x7ff8def5ca0e [ 1087.305084][T22793] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1087.305099][T22793] RSP: 002b:00007ff8dfe3aec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1087.305113][T22793] RAX: ffffffffffffffda RBX: 00007ff8dfe3b6c0 RCX: 00007ff8def5ca0e [ 1087.305123][T22793] RDX: 0000000000000002 RSI: 00007ff8dfe3af90 RDI: ffffffffffffff9c [ 1087.305132][T22793] RBP: 00007ff8df0327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1087.305141][T22793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1087.305150][T22793] R13: 00007ff8df216038 R14: 00007ff8df215fa0 R15: 00007ffc8e8a9fc8 [ 1087.305169][T22793] [ 1089.252025][T22812] kexec: Could not allocate control_code_buffer [ 1091.316343][T22874] ima: policy update failed [ 1091.326555][T22874] serio: Serial port pty6 [ 1091.393751][ T29] audit: type=1802 audit(2147484353.553:32): pid=22874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3229" res=0 errno=0 [ 1092.372921][T22873] kexec: Could not allocate control_code_buffer [ 1094.640549][T22929] Console: switching to colour VGA+ 80x25 [ 1095.124986][T22915] kexec: Could not allocate control_code_buffer [ 1096.258865][T22956] FAULT_INJECTION: forcing a failure. [ 1096.258865][T22956] name failslab, interval 1, probability 0, space 0, times 0 [ 1096.296860][T22956] CPU: 1 UID: 0 PID: 22956 Comm: syz.1.3245 Tainted: G L syzkaller #0 PREEMPT(full) [ 1096.296887][T22956] Tainted: [L]=SOFTLOCKUP [ 1096.296893][T22956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1096.296903][T22956] Call Trace: [ 1096.296908][T22956] [ 1096.296914][T22956] dump_stack_lvl+0x100/0x190 [ 1096.296940][T22956] should_fail_ex.cold+0x5/0xa [ 1096.296958][T22956] should_failslab+0xc2/0x120 [ 1096.296979][T22956] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 1096.296998][T22956] ? __d_alloc+0x34/0xa80 [ 1096.297021][T22956] ? security_inode_alloc+0xcf/0x2c0 [ 1096.297041][T22956] __d_alloc+0x34/0xa80 [ 1096.297061][T22956] ? __ns_ref_active_get+0x9f/0x1b0 [ 1096.297081][T22956] path_from_stashed+0x427/0x750 [ 1096.297102][T22956] ? do_raw_spin_unlock+0x145/0x1e0 [ 1096.297127][T22956] ns_get_path+0x60/0x80 [ 1096.297148][T22956] proc_ns_get_link+0x121/0x230 [ 1096.297165][T22956] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1096.297184][T22956] ? atime_needs_update+0x8b/0x6b0 [ 1096.297203][T22956] pick_link+0xd17/0x13c0 [ 1096.297219][T22956] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1096.297238][T22956] step_into_slowpath+0x9ba/0xf90 [ 1096.297260][T22956] ? __pfx_step_into_slowpath+0x10/0x10 [ 1096.297278][T22956] ? find_held_lock+0x2b/0x80 [ 1096.297306][T22956] path_openat+0xf95/0x31a0 [ 1096.297332][T22956] ? __pfx_path_openat+0x10/0x10 [ 1096.297360][T22956] do_file_open+0x20e/0x430 [ 1096.297381][T22956] ? __pfx_do_file_open+0x10/0x10 [ 1096.297415][T22956] ? alloc_fd+0x476/0x790 [ 1096.297437][T22956] ? do_getname+0x191/0x390 [ 1096.297453][T22956] do_sys_openat2+0x10d/0x1e0 [ 1096.297473][T22956] ? __pfx_do_sys_openat2+0x10/0x10 [ 1096.297491][T22956] ? __fget_files+0x21f/0x3d0 [ 1096.297514][T22956] __x64_sys_openat+0x12d/0x210 [ 1096.297530][T22956] ? __pfx___x64_sys_openat+0x10/0x10 [ 1096.297554][T22956] do_syscall_64+0x106/0xf80 [ 1096.297567][T22956] ? clear_bhb_loop+0x40/0x90 [ 1096.297586][T22956] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1096.297601][T22956] RIP: 0033:0x7f847395ca0e [ 1096.297614][T22956] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1096.297629][T22956] RSP: 002b:00007f8474815ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1096.297644][T22956] RAX: ffffffffffffffda RBX: 00007f84748166c0 RCX: 00007f847395ca0e [ 1096.297654][T22956] RDX: 0000000000000002 RSI: 00007f8474815f90 RDI: ffffffffffffff9c [ 1096.297663][T22956] RBP: 00007f8473a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1096.297672][T22956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1096.297681][T22956] R13: 00007f8473c16038 R14: 00007f8473c15fa0 R15: 00007ffdb5278bd8 [ 1096.297700][T22956] [ 1097.079999][T22946] kexec: Could not allocate control_code_buffer [ 1098.373510][T22970] kexec: Could not allocate control_code_buffer [ 1099.004650][T22986] Process accounting paused [ 1099.837986][T22994] kexec: Could not allocate control_code_buffer [ 1101.801841][T23033] kexec: Could not allocate control_code_buffer [ 1102.044786][T23058] ima: policy update failed [ 1102.057046][T23058] serio: Serial port pty6 [ 1102.068132][ T29] audit: type=1807 audit(2147484364.273:33): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1102.205668][ T29] audit: type=1802 audit(2147484364.273:34): pid=23058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.3261" res=0 errno=0 [ 1102.320298][ T29] audit: type=1802 audit(2147484364.283:35): pid=23058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3261" res=0 errno=0 [ 1103.056879][T23055] kexec: Could not allocate control_code_buffer [ 1105.461166][T23092] kexec: Could not allocate control_code_buffer [ 1106.280544][T23105] Process accounting resumed [ 1106.947688][T23114] kexec: Could not allocate control_code_buffer [ 1108.563903][T23152] kexec: Could not allocate control_code_buffer [ 1109.082747][T23166] Process accounting resumed [ 1109.130537][T23173] FAULT_INJECTION: forcing a failure. [ 1109.130537][T23173] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.143962][T23173] CPU: 1 UID: 0 PID: 23173 Comm: syz.0.3293 Tainted: G L syzkaller #0 PREEMPT(full) [ 1109.144008][T23173] Tainted: [L]=SOFTLOCKUP [ 1109.144018][T23173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1109.144035][T23173] Call Trace: [ 1109.144044][T23173] [ 1109.144055][T23173] dump_stack_lvl+0x100/0x190 [ 1109.144102][T23173] should_fail_ex.cold+0x5/0xa [ 1109.144135][T23173] should_failslab+0xc2/0x120 [ 1109.144177][T23173] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 1109.144212][T23173] ? security_inode_alloc+0x3b/0x2c0 [ 1109.144247][T23173] ? lockdep_init_map_type+0x5c/0x250 [ 1109.144288][T23173] security_inode_alloc+0x3b/0x2c0 [ 1109.144324][T23173] inode_init_always_gfp+0xced/0x1040 [ 1109.144370][T23173] alloc_inode+0x8e/0x250 [ 1109.144408][T23173] path_from_stashed+0x25b/0x750 [ 1109.144450][T23173] ? do_raw_spin_unlock+0x145/0x1e0 [ 1109.144495][T23173] ns_get_path+0x60/0x80 [ 1109.144534][T23173] proc_ns_get_link+0x121/0x230 [ 1109.144568][T23173] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1109.144605][T23173] ? atime_needs_update+0x8b/0x6b0 [ 1109.144641][T23173] pick_link+0xd17/0x13c0 [ 1109.144675][T23173] ? __pfx_proc_ns_get_link+0x10/0x10 [ 1109.144712][T23173] step_into_slowpath+0x9ba/0xf90 [ 1109.144755][T23173] ? __pfx_step_into_slowpath+0x10/0x10 [ 1109.144791][T23173] ? find_held_lock+0x2b/0x80 [ 1109.144845][T23173] path_openat+0xf95/0x31a0 [ 1109.144898][T23173] ? __pfx_path_openat+0x10/0x10 [ 1109.144952][T23173] do_file_open+0x20e/0x430 [ 1109.144996][T23173] ? __pfx_do_file_open+0x10/0x10 [ 1109.145063][T23173] ? alloc_fd+0x476/0x790 [ 1109.145106][T23173] ? do_getname+0x191/0x390 [ 1109.145138][T23173] do_sys_openat2+0x10d/0x1e0 [ 1109.145170][T23173] ? __pfx_do_sys_openat2+0x10/0x10 [ 1109.145204][T23173] ? __fget_files+0x21f/0x3d0 [ 1109.145250][T23173] __x64_sys_openat+0x12d/0x210 [ 1109.145282][T23173] ? __pfx___x64_sys_openat+0x10/0x10 [ 1109.145328][T23173] do_syscall_64+0x106/0xf80 [ 1109.145355][T23173] ? clear_bhb_loop+0x40/0x90 [ 1109.145396][T23173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1109.145425][T23173] RIP: 0033:0x7f84e915ca0e [ 1109.145450][T23173] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1109.145477][T23173] RSP: 002b:00007f84ea014ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1109.145505][T23173] RAX: ffffffffffffffda RBX: 00007f84ea0156c0 RCX: 00007f84e915ca0e [ 1109.145524][T23173] RDX: 0000000000000002 RSI: 00007f84ea014f90 RDI: ffffffffffffff9c [ 1109.145542][T23173] RBP: 00007f84e92327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1109.145560][T23173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1109.145576][T23173] R13: 00007f84e9416038 R14: 00007f84e9415fa0 R15: 00007fff4602b9e8 [ 1109.145615][T23173] [ 1109.748815][T23184] ima: policy update failed [ 1109.755622][ T29] audit: type=1807 audit(2147484371.983:36): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1109.768066][ T29] audit: type=1802 audit(2147484371.983:37): pid=23184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.3286" res=0 errno=0 [ 1109.785840][ T29] audit: type=1802 audit(2147484371.993:38): pid=23184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3286" res=0 errno=0 [ 1109.808022][T23184] serio: Serial port pty6 [ 1110.806524][T23180] kexec: Could not allocate control_code_buffer [ 1113.662874][T23245] kexec: Could not allocate control_code_buffer [ 1115.008186][T23259] kexec: Could not allocate control_code_buffer [ 1115.910170][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1115.923016][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1117.418881][T23304] kexec: Could not allocate control_code_buffer [ 1119.130350][T23352] ima: policy update failed [ 1119.139888][T23352] serio: Serial port pty6 [ 1119.222227][ T29] audit: type=1807 audit(2147484381.363:39): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1119.273234][ T29] audit: type=1802 audit(2147484381.363:40): pid=23352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.3316" res=0 errno=0 [ 1119.372361][ T29] audit: type=1802 audit(2147484381.373:41): pid=23352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3316" res=0 errno=0 [ 1119.466774][T23325] kexec: Could not allocate control_code_buffer [ 1122.901948][T23392] kexec: Could not allocate control_code_buffer [ 1123.667556][ T29] audit: type=1807 audit(2147484385.903:42): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1123.680506][T23419] ima: policy update failed [ 1123.700877][ T29] audit: type=1802 audit(2147484385.923:43): pid=23419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.3329" res=0 errno=0 [ 1123.761532][T23422] serio: Serial port pty6 [ 1123.800860][ T29] audit: type=1802 audit(2147484386.023:44): pid=23419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3329" res=0 errno=0 [ 1124.370478][T23413] kexec: Could not allocate control_code_buffer [ 1125.985251][T23433] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1125.991607][T23433] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1125.998002][T23433] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1126.004282][T23433] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1126.613020][T10448] Bluetooth: hci1: command 0x0c1a tx timeout [ 1127.500948][T23462] kexec: Could not allocate control_code_buffer [ 1128.034884][T10448] Bluetooth: hci3: command 0x0c1a tx timeout [ 1128.053681][T10448] Bluetooth: hci0: command 0x0c1a tx timeout [ 1128.060162][T10448] Bluetooth: hci2: command 0x0c1a tx timeout [ 1129.527194][T23455] Process accounting resumed [ 1129.840225][T23486] kexec: Could not allocate control_code_buffer [ 1131.018859][T23524] tipc: Started in network mode [ 1131.033331][T23524] tipc: Node identity ffffffff, cluster identity 4711 [ 1131.040142][T23524] tipc: Node number set to 4294967295 [ 1131.151463][T23524] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 1133.944097][T23578] ima: policy update failed [ 1133.954317][T23578] serio: Serial port pty6 [ 1133.970676][ T29] audit: type=1807 audit(2147484396.183:45): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1134.052662][ T29] audit: type=1802 audit(2147484396.183:46): pid=23578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.3357" res=0 errno=0 [ 1134.137749][ T29] audit: type=1802 audit(2147484396.183:47): pid=23578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3357" res=0 errno=0 [ 1134.951998][T23481] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1134.964361][T23481] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff [ 1135.622588][T23598] [U]  [ 1135.625565][T23598] [U] [ 1135.628240][T23598] [U] [ 1135.630911][T23598] [U] [ 1135.685065][T23598] [U] [ 1135.687821][T23598] [U] [ 1135.690547][T23598] [U] [ 1135.693264][T23598] [U] [ 1135.699764][T23598] [U] [ 1135.702498][T23598] [U] [ 1135.705212][T23598] [U] [ 1135.707935][T23598] [U] [ 1135.728600][T23598] [U] [ 1135.731350][T23598] [U] [ 1135.734071][T23598] [U] [ 1135.736786][T23598] [U] [ 1135.810428][T23598] [U] [ 1135.813154][T23598] [U] [ 1135.815838][T23598] [U] [ 1135.818510][T23598] [U] [ 1135.821335][T23598] [U] [ 1135.824010][T23598] [U] [ 1135.826688][T23598] [U] [ 1135.829356][T23598] [U] [ 1135.857025][T23598] [U] [ 1135.859732][T23598] [U] [ 1135.862400][T23598] [U] [ 1135.865071][T23598] [U] [ 1135.883418][T23598] [U] [ 1135.886175][T23598] [U] [ 1135.888895][T23598] [U] [ 1135.891611][T23598] [U] [ 1135.924448][T23598] [U] [ 1135.927193][T23598] [U] [ 1135.929896][T23598] [U] [ 1135.932594][T23598] [U] [ 1136.182761][T23598] [U] [ 1136.182838][T23598] [U] [ 1136.182877][T23598] [U] [ 1136.182913][T23598] [U] [ 1136.183775][T23598] [U] [ 1136.183800][T23598] [U] [ 1136.183823][T23598] [U] [ 1136.183844][T23598] [U] [ 1136.183947][T23598] [U] [ 1136.183968][T23598] [U] [ 1136.183989][T23598] [U] [ 1136.184010][T23598] [U] [ 1136.184109][T23598] [U] [ 1136.184130][T23598] [U] [ 1136.184155][T23598] [U] [ 1136.184176][T23598] [U] [ 1136.184365][T23598] [U] [ 1136.184388][T23598] [U] [ 1136.184410][T23598] [U] [ 1136.184432][T23598] [U] [ 1136.184531][T23598] [U] [ 1136.184553][T23598] [U] [ 1136.184574][T23598] [U] [ 1136.184594][T23598] [U] [ 1136.184694][T23598] [U] [ 1136.184718][T23598] [U] [ 1136.184739][T23598] [U] [ 1136.184761][T23598] [U] [ 1136.189283][T23598] [U] [ 1136.189316][T23598] [U] [ 1136.189339][T23598] [U] [ 1136.189362][T23598] [U] [ 1136.189521][T23598] [U] [ 1136.189544][T23598] [U] [ 1136.189566][T23598] [U] [ 1136.189591][T23598] [U] [ 1136.189692][T23598] [U] [ 1136.189713][T23598] [U] [ 1136.189734][T23598] [U] [ 1136.189755][T23598] [U] [ 1136.189855][T23598] [U] [ 1136.189877][T23598] [U] [ 1136.189897][T23598] [U] [ 1136.189918][T23598] [U] [ 1136.190020][T23598] [U] [ 1136.190040][T23598] [U] [ 1136.190062][T23598] [U] [ 1136.190083][T23598] [U] [ 1136.190184][T23598] [U] [ 1136.190205][T23598] [U] [ 1136.190229][T23598] [U] [ 1136.190251][T23598] [U] [ 1136.191711][T23598] [U] [ 1136.191736][T23598] [U] [ 1136.191758][T23598] [U] [ 1136.191779][T23598] [U] [ 1136.192511][T23598] [U] [ 1136.192536][T23598] [U] [ 1136.192558][T23598] [U] [ 1136.192578][T23598] [U] [ 1136.192720][T23598] [U] [ 1136.192747][T23598] [U] [ 1136.192768][T23598] [U] [ 1136.192789][T23598] [U] [ 1136.203990][T23598] [U] [ 1136.204017][T23598] [U] [ 1136.204039][T23598] [U] [ 1136.204063][T23598] [U] [ 1136.204168][T23598] [U] [ 1136.204194][T23598] [U] [ 1136.204231][T23598] [U] [ 1136.204270][T23598] [U] [ 1136.207058][T23598] [U] [ 1136.207094][T23598] [U] [ 1136.207136][T23598] [U] [ 1136.207176][T23598] [U] [ 1136.207362][T23598] [U] [ 1136.207405][T23598] [U] [ 1136.207446][T23598] [U] [ 1136.207488][T23598] [U] [ 1136.207661][T23598] [U] [ 1136.207701][T23598] [U] [ 1136.207741][T23598] [U] [ 1136.207778][T23598] [U] [ 1136.207970][T23598] [U] [ 1136.208002][T23598] [U] [ 1136.208040][T23598] [U] [ 1136.208075][T23598] [U] [ 1136.208212][T23598] [U] [ 1136.208254][T23598] [U] [ 1136.208294][T23598] [U] [ 1136.208394][T23603] [U] [ 1136.208408][T23603] [U] ;J'Vݧ$d [ 1136.208462][T23603] [U] F츱Z|GP)\nC:DubΧtUwUU3.O"4Y8@Z5`mb4*mlD)}K>f&9- [ 1136.208488][T23603] [U] WwK E6?(I,k8D [ 1136.208569][T23603] [U] [ 1136.208591][T23603] [U] [ 1136.208706][T23603] [U] [ 1136.208735][T23603] [U] [ 1136.208777][T23603] [U] [ 1136.208805][T23603] [U] [ 1136.208827][T23603] [U] [ 1136.208990][T23603] [U] [ 1136.209013][T23603] [U] [ 1136.209035][T23603] [U] [ 1136.209062][T23603] [U] [ 1136.209179][T23603] [U] [ 1136.209201][T23603] [U] [ 1136.209223][T23603] [U] [ 1136.209245][T23603] [U] [ 1136.209347][T23603] [U] [ 1136.209368][T23603] [U] [ 1136.209389][T23603] [U] [ 1136.209410][T23603] [U] [ 1136.209517][T23603] [U] [ 1136.209538][T23603] [U] [ 1136.209560][T23603] [U] [ 1136.209580][T23603] [U] [ 1136.209708][T23603] [U] [ 1136.209744][T23603] [U] [ 1136.209777][T23603] [U] [ 1136.209799][T23603] [U] [ 1136.209918][T23603] [U] [ 1136.209943][T23603] [U] [ 1136.209965][T23603] [U] [ 1136.209986][T23603] [U] [ 1136.210145][T23603] [U] [ 1136.210168][T23603] [U] [ 1136.210189][T23603] [U] [ 1136.210211][T23603] [U] [ 1136.210323][T23603] [U] [ 1136.210345][T23603] [U] [ 1136.210366][T23603] [U] [ 1136.210387][T23603] [U] [ 1136.210486][T23603] [U] [ 1136.210522][T23603] [U] [ 1136.210560][T23603] [U] [ 1136.210581][T23603] [U] [ 1136.210696][T23603] [U] [ 1136.210718][T23603] [U] [ 1136.210740][T23603] [U] [ 1136.210761][T23603] [U] [ 1136.210861][T23603] [U] [ 1136.210882][T23603] [U] [ 1136.210902][T23603] [U] [ 1136.210923][T23603] [U] [ 1136.211029][T23603] [U] [ 1136.211051][T23603] [U] [ 1136.211082][T23603] [U] [ 1136.211105][T23603] [U] [ 1136.211258][T23603] [U] [ 1136.211281][T23603] [U] [ 1136.211304][T23603] [U] [ 1136.211327][T23603] [U] [ 1136.211436][T23603] [U] [ 1136.211458][T23603] [U] [ 1136.211480][T23603] [U] [ 1136.211502][T23603] [U] [ 1136.211605][T23603] [U] [ 1136.211626][T23603] [U] [ 1136.211648][T23603] [U] [ 1136.211669][T23603] [U] [ 1136.211775][T23603] [U] [ 1136.211797][T23603] [U] [ 1136.211817][T23603] [U] [ 1136.211838][T23603] [U] [ 1136.211937][T23603] [U] [ 1136.211959][T23603] [U] [ 1136.211979][T23603] [U] [ 1136.212000][T23603] [U] [ 1136.212114][T23603] [U] [ 1136.212136][T23603] [U] [ 1136.212158][T23603] [U] [ 1136.212184][T23603] [U] [ 1136.233870][T23603] [U] [ 1136.233916][T23603] [U] [ 1136.233951][T23603] [U] [ 1136.233993][T23603] [U] [ 1136.234415][T23603] [U] [ 1136.234476][T23603] [U] [ 1136.234515][T23603] [U] [ 1136.234560][T23603] [U] [ 1136.236765][T23603] [U] [ 1136.236814][T23603] [U] [ 1136.236859][T23603] [U] [ 1136.236904][T23603] [U] [ 1136.237107][T23603] [U] [ 1136.237152][T23603] [U] [ 1136.237197][T23603] [U] [ 1136.237240][T23603] [U] [ 1136.237437][T23603] [U] [ 1136.237482][T23603] [U] [ 1136.237527][T23603] [U] [ 1136.237574][T23603] [U] [ 1136.237781][T23603] [U] [ 1136.237827][T23603] [U] [ 1136.237872][T23603] [U] [ 1136.237916][T23603] [U] [ 1136.238110][T23603] [U] [ 1136.238154][T23603] [U] [ 1136.238199][T23603] [U] [ 1136.238242][T23603] [U] [ 1136.238454][T23603] [U] [ 1136.238500][T23603] [U] [ 1136.238544][T23603] [U] [ 1136.238588][T23603] [U] [ 1136.238780][T23603] [U] [ 1136.238825][T23603] [U] [ 1136.238870][T23603] [U] [ 1136.238915][T23603] [U] [ 1136.239117][T23603] [U] [ 1136.239161][T23603] [U] [ 1136.239207][T23603] [U] [ 1136.239252][T23603] [U] [ 1136.248437][T23604] Console: switching to colour frame buffer device 128x48 [ 1136.258666][T23603] [U] [ 1136.258712][T23603] [U] [ 1136.258756][T23603] [U] [ 1136.258802][T23603] [U] [ 1136.259015][T23603] [U] [ 1136.259058][T23603] [U] [ 1136.259103][T23603] [U] [ 1136.259147][T23603] [U] [ 1136.259345][T23603] [U] [ 1136.259390][T23603] [U] [ 1136.259436][T23603] [U] [ 1136.259480][T23603] [U] [ 1136.259731][T23603] [U] [ 1136.259777][T23603] [U] [ 1136.259819][T23603] [U] [ 1136.259864][T23603] [U] [ 1136.259910][T23603] [U] [ 1136.260100][T23603] [U] [ 1136.260144][T23603] [U] [ 1136.260187][T23603] [U] [ 1136.260231][T23603] [U] [ 1136.260438][T23603] [U] [ 1136.260484][T23603] [U] [ 1136.260529][T23603] [U] [ 1136.260575][T23603] [U] [ 1136.260756][T23603] [U] [ 1136.260793][T23603] [U] [ 1136.260832][T23603] [U] [ 1136.260858][T23603] [U] [ 1136.271293][T23603] [U] [ 1136.271351][T23603] [U] [ 1136.271388][T23603] [U] [ 1136.271427][T23603] [U] [ 1136.271602][T23603] [U] [ 1136.271644][T23603] [U] [ 1136.271685][T23603] [U] [ 1136.271724][T23603] [U] [ 1136.271913][T23603] [U] [ 1136.271952][T23603] [U] [ 1136.271991][T23603] [U] [ 1136.272029][T23603] [U] [ 1136.284597][T23603] [U] [ 1136.284625][T23603] [U] [ 1136.284645][T23603] [U] [ 1136.284666][T23603] [U] [ 1136.284781][T23603] [U] [ 1136.284802][T23603] [U] [ 1136.284823][T23603] [U] [ 1136.284844][T23603] [U] [ 1136.284946][T23603] [U] [ 1136.284968][T23603] [U] [ 1136.284989][T23603] [U] [ 1136.285010][T23603] [U] [ 1136.285118][T23603] [U] [ 1136.285140][T23603] [U] [ 1136.285160][T23603] [U] [ 1136.285182][T23603] [U] [ 1136.285283][T23603] [U] [ 1136.285310][T23603] [U] [ 1136.285331][T23603] [U] [ 1136.285351][T23603] [U] [ 1136.285459][T23603] [U] [ 1136.285480][T23603] [U] [ 1136.285503][T23603] [U] [ 1136.285523][T23603] [U] [ 1136.285629][T23603] [U] [ 1136.285651][T23603] [U] [ 1136.285675][T23603] [U] [ 1136.285697][T23603] [U] [ 1136.285804][T23603] [U] [ 1136.285826][T23603] [U] [ 1136.285846][T23603] [U] [ 1136.285867][T23603] [U] [ 1136.285968][T23603] [U] [ 1136.285990][T23603] [U] [ 1136.286011][T23603] [U] [ 1136.286032][T23603] [U] [ 1136.286140][T23603] [U] [ 1136.286162][T23603] [U] [ 1136.286183][T23603] [U] [ 1136.286204][T23603] [U] [ 1136.286310][T23603] [U] [ 1136.286331][T23603] [U] [ 1136.286351][T23603] [U] [ 1136.286372][T23603] [U] [ 1136.286480][T23603] [U] [ 1136.286502][T23603] [U] [ 1136.286522][T23603] [U] [ 1136.286543][T23603] [U] [ 1136.286646][T23603] [U] [ 1136.286666][T23603] [U] [ 1136.286687][T23603] [U] [ 1136.286708][T23603] [U] [ 1136.286816][T23603] [U] [ 1136.286838][T23603] [U] [ 1136.286859][T23603] [U] [ 1136.286879][T23603] [U] [ 1136.286980][T23603] [U] [ 1136.287013][T23603] [U] [ 1136.287034][T23603] [U] [ 1136.287056][T23603] [U] [ 1136.287165][T23603] [U] [ 1136.287186][T23603] [U] [ 1136.287206][T23603] [U] [ 1136.287227][T23603] [U] [ 1136.287332][T23603] [U] [ 1136.287354][T23603] [U] [ 1136.287375][T23603] [U] [ 1136.287396][T23603] [U] [ 1136.287503][T23603] [U] [ 1136.287524][T23603] [U] [ 1136.287545][T23603] [U] [ 1136.287567][T23603] [U] [ 1136.287668][T23603] [U] [ 1136.287689][T23603] [U] [ 1136.287710][T23603] [U] [ 1136.287731][T23603] [U] [ 1136.287839][T23603] [U] [ 1136.287860][T23603] [U] [ 1136.287881][T23603] [U] [ 1136.287903][T23603] [U] [ 1136.288008][T23603] [U] [ 1136.288036][T23603] [U] [ 1136.288058][T23603] [U] [ 1136.288078][T23603] [U] [ 1136.288188][T23603] [U] [ 1136.288210][T23603] [U] [ 1136.288231][T23603] [U] [ 1136.288252][T23603] [U] [ 1136.288356][T23603] [U] [ 1136.288377][T23603] [U] [ 1136.288398][T23603] [U] [ 1136.288418][T23603] [U] [ 1136.288527][T23603] [U] [ 1136.288548][T23603] [U] [ 1136.288568][T23603] [U] [ 1136.288589][T23603] [U] [ 1136.288690][T23603] [U] [ 1136.288711][T23603] [U] [ 1136.288732][T23603] [U] [ 1136.288756][T23603] [U] [ 1136.288777][T23603] [U] [ 1136.288884][T23603] [U] [ 1136.288905][T23603] [U] [ 1136.288926][T23603] [U] [ 1136.288947][T23603] [U] [ 1136.289048][T23603] [U] [ 1136.289069][T23603] [U] [ 1136.289091][T23603] [U] [ 1136.289111][T23603] [U] [ 1136.289219][T23603] [U] [ 1136.289241][T23603] [U] [ 1136.289261][T23603] [U] [ 1136.289282][T23603] [U] [ 1136.289388][T23603] [U] [ 1136.289408][T23603] [U] [ 1136.289429][T23603] [U] [ 1136.289449][T23603] [U] [ 1136.289557][T23603] [U] [ 1136.289578][T23603] [U] [ 1136.289602][T23603] [U] [ 1136.289623][T23603] [U] [ 1136.289724][T23603] [U] [ 1136.289744][T23603] [U] [ 1136.289765][T23603] [U] [ 1136.289786][T23603] [U] [ 1136.289894][T23603] [U] [ 1136.289915][T23603] [U] [ 1136.289935][T23603] [U] [ 1136.289956][T23603] [U] [ 1136.290058][T23603] [U] [ 1136.290079][T23603] [U] [ 1136.290100][T23603] [U] [ 1136.290120][T23603] [U] [ 1136.290228][T23603] [U] [ 1136.290250][T23603] [U] [ 1136.290270][T23603] [U] [ 1136.290294][T23603] [U] [ 1136.317246][T23603] [U] [ 1136.317289][T23603] [U] [ 1136.317330][T23603] [U] [ 1136.317369][T23603] [U] [ 1136.317603][T23603] [U] [ 1136.317645][T23603] [U] [ 1136.317687][T23603] [U] [ 1136.317728][T23603] [U] [ 1136.317895][T23603] [U] [ 1136.317937][T23603] [U] [ 1136.317977][T23603] [U] [ 1136.318018][T23603] [U] [ 1136.318209][T23603] [U] [ 1136.318251][T23603] [U] [ 1136.318295][T23603] [U] [ 1136.318342][T23603] [U] [ 1136.318525][T23603] [U] [ 1136.318567][T23603] [U] [ 1136.318609][T23603] [U] [ 1136.318651][T23603] [U] [ 1136.318840][T23603] [U] [ 1136.318882][T23603] [U] [ 1136.318924][T23603] [U] [ 1136.318966][T23603] [U] [ 1136.319144][T23603] [U] [ 1136.319184][T23603] [U] [ 1136.319226][T23603] [U] [ 1136.319266][T23603] [U] [ 1136.319459][T23603] [U] [ 1136.319498][T23603] [U] [ 1136.319536][T23603] [U] [ 1136.319577][T23603] [U] [ 1136.319755][T23603] [U] [ 1136.319797][T23603] [U] [ 1136.319840][T23603] [U] [ 1136.319883][T23603] [U] [ 1136.320074][T23603] [U] [ 1136.320115][T23603] [U] [ 1136.320159][T23603] [U] [ 1136.320200][T23603] [U] [ 1136.320383][T23603] [U] [ 1136.320425][T23603] [U] [ 1136.320466][T23603] [U] [ 1136.320508][T23603] [U] [ 1136.320703][T23603] [U] [ 1136.320746][T23603] [U] [ 1136.320789][T23603] [U] [ 1136.320836][T23603] [U] [ 1136.334428][T23603] [U] [ 1136.334477][T23603] [U] [ 1136.334517][T23603] [U] [ 1136.334556][T23603] [U] [ 1136.334732][T23603] [U] [ 1136.334773][T23603] [U] [ 1136.334815][T23603] [U] [ 1136.334860][T23603] [U] [ 1136.335045][T23603] [U] [ 1136.335084][T23603] [U] [ 1136.335127][T23603] [U] [ 1136.335169][T23603] [U] [ 1136.335367][T23603] [U] [ 1136.335409][T23603] [U] [ 1136.335450][T23603] [U] [ 1136.335492][T23603] [U] [ 1136.335675][T23603] [U] [ 1136.335719][T23603] [U] [ 1136.335759][T23603] [U] [ 1136.335801][T23603] [U] [ 1136.335989][T23603] [U] [ 1136.336031][T23603] [U] [ 1136.336070][T23603] [U] [ 1136.336112][T23603] [U] [ 1136.336289][T23603] [U] [ 1136.336339][T23603] [U] [ 1136.336383][T23603] [U] [ 1136.336426][T23603] [U] [ 1136.336618][T23603] [U] [ 1136.336660][T23603] [U] [ 1136.336703][T23603] [U] [ 1136.336744][T23603] [U] [ 1136.336929][T23603] [U] [ 1136.336972][T23603] [U] [ 1136.337014][T23603] [U] [ 1136.337057][T23603] [U] [ 1136.337244][T23603] [U] [ 1136.337285][T23603] [U] [ 1136.337333][T23603] [U] [ 1136.337377][T23603] [U] [ 1136.337559][T23603] [U] [ 1136.337602][T23603] [U] [ 1136.337644][T23603] [U] [ 1136.337686][T23603] [U] [ 1136.337732][T23603] [U] [ 1136.337928][T23603] [U] [ 1136.337969][T23603] [U] [ 1136.338010][T23603] [U] [ 1136.338050][T23603] [U] [ 1136.338232][T23603] [U] [ 1136.338273][T23603] [U] [ 1136.338322][T23603] [U] [ 1136.338365][T23603] [U] [ 1136.342526][T23603] [U] [ 1136.342566][T23603] [U] [ 1136.342603][T23603] [U] [ 1136.342640][T23603] [U] [ 1136.342817][T23603] [U] [ 1136.342856][T23603] [U] [ 1136.342895][T23603] [U] [ 1136.342936][T23603] [U] [ 1136.358730][T23603] [U] [ 1136.358779][T23603] [U] [ 1136.358815][T23603] [U] [ 1136.358849][T23603] [U] [ 1136.359019][T23603] [U] [ 1136.359060][T23603] [U] [ 1136.359100][T23603] [U] [ 1136.359140][T23603] [U] [ 1136.359334][T23603] [U] [ 1136.359379][T23603] [U] [ 1136.359420][T23603] [U] [ 1136.359462][T23603] [U] [ 1136.362742][T23603] [U] [ 1136.362782][T23603] [U] [ 1136.362820][T23603] [U] [ 1136.362859][T23603] [U] [ 1136.367561][T23603] [U] [ 1136.367587][T23603] [U] [ 1136.367608][T23603] [U] [ 1136.367629][T23603] [U] [ 1136.367732][T23603] [U] [ 1136.367753][T23603] [U] [ 1136.367774][T23603] [U] [ 1136.367795][T23603] [U] [ 1136.367905][T23603] [U] [ 1136.367926][T23603] [U] [ 1136.367946][T23603] [U] [ 1136.367967][T23603] [U] [ 1136.368068][T23603] [U] [ 1136.368089][T23603] [U] [ 1136.368110][T23603] [U] [ 1136.368131][T23603] [U] [ 1136.368239][T23603] [U] [ 1136.368260][T23603] [U] [ 1136.368280][T23603] [U] [ 1136.368305][T23603] [U] [ 1136.368407][T23603] [U] [ 1136.368428][T23603] [U] [ 1136.368448][T23603] [U] [ 1136.368469][T23603] [U] [ 1136.368577][T23603] [U] [ 1136.368598][T23603] [U] [ 1136.368619][T23603] [U] [ 1136.368640][T23603] [U] [ 1136.368741][T23603] [U] [ 1136.368762][T23603] [U] [ 1136.368783][T23603] [U] [ 1136.368803][T23603] [U] [ 1136.368911][T23603] [U] [ 1136.368933][T23603] [U] [ 1136.368954][T23603] [U] [ 1136.368975][T23603] [U] [ 1136.369077][T23603] [U] [ 1136.369097][T23603] [U] [ 1136.369118][T23603] [U] [ 1136.369138][T23603] [U] [ 1136.369246][T23603] [U] [ 1136.369268][T23603] [U] [ 1136.369288][T23603] [U] [ 1136.369314][T23603] [U] [ 1136.369415][T23603] [U] [ 1136.369436][T23603] [U] [ 1136.369456][T23603] [U] [ 1136.369477][T23603] [U] [ 1136.369585][T23603] [U] [ 1136.369608][T23603] [U] [ 1136.369629][T23603] [U] [ 1136.369650][T23603] [U] [ 1136.369751][T23603] [U] [ 1136.369772][T23603] [U] [ 1136.369793][T23603] [U] [ 1136.369814][T23603] [U] [ 1136.369921][T23603] [U] [ 1136.369942][T23603] [U] [ 1136.369962][T23603] [U] [ 1136.369983][T23603] [U] [ 1136.370085][T23603] [U] [ 1136.370106][T23603] [U] [ 1136.370127][T23603] [U] [ 1136.370148][T23603] [U] [ 1136.370255][T23603] [U] [ 1136.370277][T23603] [U] [ 1136.370302][T23603] [U] [ 1136.370323][T23603] [U] [ 1136.370423][T23603] [U] [ 1136.370444][T23603] [U] [ 1136.370465][T23603] [U] [ 1136.370486][T23603] [U] [ 1136.370593][T23603] [U] [ 1136.370614][T23603] [U] [ 1136.370635][T23603] [U] [ 1136.370656][T23603] [U] [ 1136.370758][T23603] [U] [ 1136.370779][T23603] [U] [ 1136.370800][T23603] [U] [ 1136.370820][T23603] [U] [ 1136.370927][T23603] [U] [ 1136.370949][T23603] [U] [ 1136.370969][T23603] [U] [ 1136.370990][T23603] [U] [ 1136.371091][T23603] [U] [ 1136.371112][T23603] [U] [ 1136.371133][T23603] [U] [ 1136.371153][T23603] [U] [ 1136.371261][T23603] [U] [ 1136.371285][T23603] [U] [ 1136.371309][T23603] [U] [ 1136.371330][T23603] [U] [ 1136.423839][T23603] [U] [ 1140.556456][T23591] Process accounting paused [ 1140.574345][T23603] Process accounting paused [ 1142.308253][T23653] kexec: Could not allocate control_code_buffer [ 1142.973533][T23682] ima: policy update failed [ 1142.982948][T23682] serio: Serial port pty6 [ 1142.997458][ T29] audit: type=1807 audit(2147484405.213:48): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1143.013223][ T29] audit: type=1802 audit(2147484405.213:49): pid=23682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.3376" res=0 errno=0 [ 1143.120487][ T29] audit: type=1802 audit(2147484405.213:50): pid=23682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3376" res=0 errno=0 [ 1144.966090][T23702] kexec: Could not allocate control_code_buffer [ 1151.581821][T23835] smpboot: CPU 1 is now offline [ 1153.201674][T23852] ima: policy update failed [ 1153.206464][ T29] audit: type=1807 audit(2147484415.433:51): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1153.261842][ T29] audit: type=1802 audit(2147484415.433:52): pid=23852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.3409" res=0 errno=0 [ 1153.340070][T23852] serio: Serial port pty6 [ 1153.371165][ T29] audit: type=1802 audit(2147484415.523:53): pid=23852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3409" res=0 errno=0 [ 1154.490751][T23870] input: jJǸ-9%vJ86 as /devices/virtual/input/input26 [ 1155.890172][T23894] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1156.563771][ T29] audit: type=1807 audit(2147484418.803:54): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1156.583311][T23909] ima: policy update failed [ 1156.610769][ T29] audit: type=1802 audit(2147484418.813:55): pid=23909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.3421" res=0 errno=0 [ 1156.644345][T23909] serio: Serial port pty6 [ 1156.679668][ T29] audit: type=1802 audit(2147484418.873:56): pid=23909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3421" res=0 errno=0 [ 1157.685057][T23923] random: crng reseeded on system resumption [ 1157.849103][T23928] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3425'. [ 1159.563037][T23963] ima: policy update failed [ 1159.571661][ T29] audit: type=1807 audit(2147484421.793:57): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1159.646001][ T29] audit: type=1802 audit(2147484421.793:58): pid=23963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.3432" res=0 errno=0 [ 1159.701389][T23962] serio: Serial port pty6 [ 1159.752888][ T29] audit: type=1802 audit(2147484421.803:59): pid=23963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.3432" res=0 errno=0 [ 1160.082204][T23965] Process accounting paused [ 1161.175159][T23977] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3435'. [ 1161.219253][T23977] : renamed from ip6tnl0 (while UP) [ 1166.483876][T23481] Bluetooth: hci3: Malformed Event: 0x02 [ 1167.936972][T24078] Invalid ELF header magic: != ELF [ 1168.630443][ T29] audit: type=1800 audit(4294967330.500:60): pid=24092 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3456" name="dbroot" dev="configfs" ino=135569 res=0 errno=0 [ 1171.487788][T24119] Process accounting resumed [ 1172.901742][T24125] Process accounting resumed [ 1173.993828][T24163] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1174.027224][T24163] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1174.063185][T24163] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1174.088531][T24163] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1175.313039][T23481] Bluetooth: hci1: command 0x0c1a tx timeout [ 1175.363860][T24187] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3472'. [ 1176.035295][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1176.041651][T23481] Bluetooth: hci2: command 0x0c1a tx timeout [ 1176.049133][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1176.114581][T17659] Bluetooth: hci0: command 0x0c1a tx timeout [ 1176.120669][T23481] Bluetooth: hci3: command 0x0c1a tx timeout [ 1180.921641][T24260] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1180.942422][T24260] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1180.949094][T24260] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1180.963473][T24260] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1181.281159][T24281] FAULT_INJECTION: forcing a failure. [ 1181.281159][T24281] name failslab, interval 1, probability 0, space 0, times 0 [ 1181.333321][T24281] CPU: 0 UID: 0 PID: 24281 Comm: syz.1.3489 Tainted: G L syzkaller #0 PREEMPT(full) [ 1181.333347][T24281] Tainted: [L]=SOFTLOCKUP [ 1181.333353][T24281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1181.333363][T24281] Call Trace: [ 1181.333369][T24281] [ 1181.333375][T24281] dump_stack_lvl+0x100/0x190 [ 1181.333401][T24281] should_fail_ex.cold+0x5/0xa [ 1181.333419][T24281] ? __register_sysctl_table+0xac/0x1650 [ 1181.333439][T24281] should_failslab+0xc2/0x120 [ 1181.333463][T24281] __kmalloc_noprof+0xe0/0x850 [ 1181.333485][T24281] __register_sysctl_table+0xac/0x1650 [ 1181.333505][T24281] ? is_module_address+0x5f/0xf0 [ 1181.333525][T24281] ? __pfx___register_sysctl_table+0x10/0x10 [ 1181.333544][T24281] ? is_module_address+0x69/0xf0 [ 1181.333561][T24281] ? register_net_sysctl_sz+0x222/0x430 [ 1181.333579][T24281] ? __asan_memcpy+0x3c/0x60 [ 1181.333598][T24281] __ip_vs_lblc_init+0x159/0x340 [ 1181.333621][T24281] ? __pfx___ip_vs_lblc_init+0x10/0x10 [ 1181.333645][T24281] ops_init+0x1e2/0x5f0 [ 1181.333663][T24281] setup_net+0x118/0x3a0 [ 1181.333677][T24281] ? __pfx_setup_net+0x10/0x10 [ 1181.333691][T24281] ? lockdep_init_map_type+0x5c/0x250 [ 1181.333710][T24281] ? mutex_init_lockep+0x110/0x150 [ 1181.333732][T24281] copy_net_ns+0x46f/0x7c0 [ 1181.333750][T24281] create_new_namespaces+0x3ea/0xac0 [ 1181.333769][T24281] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1181.333786][T24281] ksys_unshare+0x455/0xab0 [ 1181.333806][T24281] ? __pfx_ksys_unshare+0x10/0x10 [ 1181.333830][T24281] __x64_sys_unshare+0x31/0x40 [ 1181.333847][T24281] do_syscall_64+0x106/0xf80 [ 1181.333861][T24281] ? clear_bhb_loop+0x40/0x90 [ 1181.333879][T24281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1181.333894][T24281] RIP: 0033:0x7f847399c139 [ 1181.333907][T24281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1181.333922][T24281] RSP: 002b:00007f8474816028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1181.333938][T24281] RAX: ffffffffffffffda RBX: 00007f8473c15fa0 RCX: 00007f847399c139 [ 1181.333948][T24281] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1181.333956][T24281] RBP: 00007f8473a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1181.333965][T24281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1181.333974][T24281] R13: 00007f8473c16038 R14: 00007f8473c15fa0 R15: 00007ffdb5278bd8 [ 1181.333993][T24281] [ 1181.847082][T23481] Bluetooth: hci1: command 0x0c1a tx timeout [ 1182.211279][T24302] kvm: kvm [24301]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 1182.258713][T24285] forcing mempool usage for bio_alloc_bioset+0x392/0x850 [ 1182.391980][T24294] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3493: iget: checksum invalid [ 1182.517543][T24294] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1182.632206][T24294] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3493: iget: checksum invalid [ 1182.770042][T24294] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1182.824660][T24294] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3493: iget: checksum invalid [ 1182.989912][T24294] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1183.001231][T23481] Bluetooth: hci3: command 0x0c1a tx timeout [ 1183.007363][T17659] Bluetooth: hci0: command 0x0c1a tx timeout [ 1183.014852][T23481] Bluetooth: hci2: command 0x0c1a tx timeout [ 1183.057078][T24294] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3493: iget: checksum invalid [ 1183.144435][T24294] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1183.247261][T24294] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1183.331884][T24294] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1184.942180][T24349] FAULT_INJECTION: forcing a failure. [ 1184.942180][T24349] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1185.024205][T24349] CPU: 0 UID: 0 PID: 24349 Comm: syz.3.3503 Tainted: G L syzkaller #0 PREEMPT(full) [ 1185.024230][T24349] Tainted: [L]=SOFTLOCKUP [ 1185.024235][T24349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1185.024244][T24349] Call Trace: [ 1185.024249][T24349] [ 1185.024255][T24349] dump_stack_lvl+0x100/0x190 [ 1185.024281][T24349] should_fail_ex.cold+0x5/0xa [ 1185.024297][T24349] get_futex_key+0x1d2/0x1620 [ 1185.024315][T24349] ? __pfx_get_futex_key+0x10/0x10 [ 1185.024331][T24349] ? trace_pid_list_is_set+0x22c/0x390 [ 1185.024359][T24349] futex_wait_setup+0x81/0x500 [ 1185.024384][T24349] __futex_wait+0x19f/0x300 [ 1185.024404][T24349] ? __pfx___futex_wait+0x10/0x10 [ 1185.024426][T24349] ? __pfx_futex_wake_mark+0x10/0x10 [ 1185.024448][T24349] ? __hrtimer_setup+0x178/0x280 [ 1185.024467][T24349] ? ktime_add_safe+0x60/0x70 [ 1185.024486][T24349] futex_wait+0xed/0x380 [ 1185.024505][T24349] ? __pfx_futex_wait+0x10/0x10 [ 1185.024522][T24349] ? __lock_acquire+0x4a5/0x2630 [ 1185.024540][T24349] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 1185.024564][T24349] do_futex+0x1ef/0x350 [ 1185.024580][T24349] ? __pfx_do_futex+0x10/0x10 [ 1185.024596][T24349] ? ktime_get+0x200/0x300 [ 1185.024608][T24349] ? lockdep_hardirqs_on+0x78/0x100 [ 1185.024630][T24349] ? read_tsc+0x9/0x20 [ 1185.024648][T24349] __x64_sys_futex+0x34f/0x4d0 [ 1185.024667][T24349] ? __pfx___x64_sys_futex+0x10/0x10 [ 1185.024690][T24349] do_syscall_64+0x106/0xf80 [ 1185.024702][T24349] ? clear_bhb_loop+0x40/0x90 [ 1185.024719][T24349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1185.024733][T24349] RIP: 0033:0x7ff8def9c139 [ 1185.024745][T24349] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1185.024759][T24349] RSP: 002b:00007ffc8e8aa128 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1185.024773][T24349] RAX: ffffffffffffffda RBX: 000000000012148d RCX: 00007ff8def9c139 [ 1185.024782][T24349] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff8df215fac [ 1185.024791][T24349] RBP: 0000000000000032 R08: 0000000000000000 R09: 0000000000000000 [ 1185.024799][T24349] R10: 00007ffc8e8aa230 R11: 0000000000000246 R12: 00007ffc8e8aa250 [ 1185.024807][T24349] R13: 00007ff8df215fac R14: 00000000001214bf R15: 00007ffc8e8aa230 [ 1185.024825][T24349] [ 1185.536559][T24350] netlink: 93 bytes leftover after parsing attributes in process `syz.3.3503'. [ 1188.408206][T24405] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1188.643255][T24406] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1188.682631][T24406] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1189.353855][T24417] binder: 24412:24417 ioctl c018620c 0 returned -1 [ 1189.760953][T24428] random: crng reseeded on system resumption [ 1190.414223][T24439] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.2.3518: bg 4: bad block bitmap checksum [ 1190.652374][T24439] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74 [ 1190.739962][T24439] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1190.739962][T24439] [ 1191.341893][T24427] Process accounting resumed [ 1191.822628][T24459] program syz.1.3523 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1191.935715][ T29] audit: type=1807 audit(4294967353.810:61): UNKNOWN=0"]$|1j0B|dӉO+/xWӦ^gq%ḦrO res=0 [ 1191.971160][T24458] ima: policy update failed [ 1192.008367][ T29] audit: type=1802 audit(4294967353.810:62): pid=24459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.3523" res=0 errno=0 [ 1192.107471][ T29] audit: type=1802 audit(4294967353.860:63): pid=24458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3523" res=0 errno=0 [ 1193.789529][T24489] FAULT_INJECTION: forcing a failure. [ 1193.789529][T24489] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.875107][T24489] CPU: 0 UID: 0 PID: 24489 Comm: syz.0.3530 Tainted: G L syzkaller #0 PREEMPT(full) [ 1193.875134][T24489] Tainted: [L]=SOFTLOCKUP [ 1193.875140][T24489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1193.875149][T24489] Call Trace: [ 1193.875154][T24489] [ 1193.875160][T24489] dump_stack_lvl+0x100/0x190 [ 1193.875186][T24489] should_fail_ex.cold+0x5/0xa [ 1193.875204][T24489] should_failslab+0xc2/0x120 [ 1193.875226][T24489] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1193.875242][T24489] ? kvm_dev_ioctl+0xa8d/0x1a80 [ 1193.875261][T24489] kvm_dev_ioctl+0xa8d/0x1a80 [ 1193.875281][T24489] ? find_held_lock+0x2b/0x80 [ 1193.875302][T24489] ? __fget_files+0x215/0x3d0 [ 1193.875321][T24489] ? hook_file_ioctl_common+0x146/0x410 [ 1193.875341][T24489] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 1193.875359][T24489] ? __fget_files+0x21f/0x3d0 [ 1193.875381][T24489] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 1193.875398][T24489] __x64_sys_ioctl+0x18e/0x210 [ 1193.875417][T24489] do_syscall_64+0x106/0xf80 [ 1193.875431][T24489] ? clear_bhb_loop+0x40/0x90 [ 1193.875448][T24489] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1193.875463][T24489] RIP: 0033:0x7f84e919c139 [ 1193.875477][T24489] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1193.875491][T24489] RSP: 002b:00007f84ea015028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1193.875507][T24489] RAX: ffffffffffffffda RBX: 00007f84e9415fa0 RCX: 00007f84e919c139 [ 1193.875516][T24489] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 1193.875525][T24489] RBP: 00007f84e92327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.875534][T24489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1193.875547][T24489] R13: 00007f84e9416038 R14: 00007f84e9415fa0 R15: 00007fff4602b9e8 [ 1193.875566][T24489] [ 1195.387054][T24506] pim6reg: entered allmulticast mode [ 1199.136023][T24558] kvm: kvm [24557]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 1202.538047][T24607] Process accounting paused [ 1203.096472][ T6255] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 1203.141724][T24620] Process accounting paused [ 1203.162912][ T6255] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1203.162912][ T6255] [ 1203.215917][T24634] FAULT_INJECTION: forcing a failure. [ 1203.215917][T24634] name failslab, interval 1, probability 0, space 0, times 0 [ 1203.309531][T24634] CPU: 0 UID: 0 PID: 24634 Comm: syz.2.3559 Tainted: G L syzkaller #0 PREEMPT(full) [ 1203.309559][T24634] Tainted: [L]=SOFTLOCKUP [ 1203.309564][T24634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1203.309573][T24634] Call Trace: [ 1203.309579][T24634] [ 1203.309590][T24634] dump_stack_lvl+0x100/0x190 [ 1203.309618][T24634] should_fail_ex.cold+0x5/0xa [ 1203.309636][T24634] should_failslab+0xc2/0x120 [ 1203.309659][T24634] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1203.309675][T24634] ? trace_pid_list_alloc+0x232/0x480 [ 1203.309701][T24634] trace_pid_list_alloc+0x232/0x480 [ 1203.309723][T24634] trace_pid_write+0x110/0x460 [ 1203.309744][T24634] ? __pfx_trace_pid_write+0x10/0x10 [ 1203.309776][T24634] event_pid_write.isra.0+0x1e4/0x800 [ 1203.309799][T24634] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 1203.309826][T24634] vfs_write+0x2aa/0x1070 [ 1203.309847][T24634] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 1203.309870][T24634] ? __pfx_vfs_write+0x10/0x10 [ 1203.309889][T24634] ? __fget_files+0x215/0x3d0 [ 1203.309913][T24634] ? __fget_files+0x21f/0x3d0 [ 1203.309938][T24634] ksys_write+0x12a/0x250 [ 1203.309958][T24634] ? __pfx_ksys_write+0x10/0x10 [ 1203.309983][T24634] do_syscall_64+0x106/0xf80 [ 1203.309997][T24634] ? clear_bhb_loop+0x40/0x90 [ 1203.310015][T24634] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1203.310031][T24634] RIP: 0033:0x7f55dd59c139 [ 1203.310044][T24634] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1203.310059][T24634] RSP: 002b:00007f55de40f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1203.310075][T24634] RAX: ffffffffffffffda RBX: 00007f55dd815fa0 RCX: 00007f55dd59c139 [ 1203.310085][T24634] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 1203.310094][T24634] RBP: 00007f55dd6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1203.310102][T24634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1203.310111][T24634] R13: 00007f55dd816038 R14: 00007f55dd815fa0 R15: 00007ffed9fb5d48 [ 1203.310130][T24634] [ 1205.507328][T24661] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3565'. [ 1205.560628][T24661] netlink: 'syz.2.3565': attribute type 1 has an invalid length. [ 1205.628952][T24661] netlink: 13 bytes leftover after parsing attributes in process `syz.2.3565'. [ 1207.063703][T24703] kvm: kvm [24702]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 1209.851865][T24735] FAULT_INJECTION: forcing a failure. [ 1209.851865][T24735] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.921285][T24735] CPU: 0 UID: 0 PID: 24735 Comm: syz.0.3582 Tainted: G L syzkaller #0 PREEMPT(full) [ 1209.921312][T24735] Tainted: [L]=SOFTLOCKUP [ 1209.921318][T24735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1209.921326][T24735] Call Trace: [ 1209.921332][T24735] [ 1209.921338][T24735] dump_stack_lvl+0x100/0x190 [ 1209.921364][T24735] should_fail_ex.cold+0x5/0xa [ 1209.921382][T24735] should_failslab+0xc2/0x120 [ 1209.921404][T24735] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1209.921420][T24735] ? single_open+0x4d/0x1d0 [ 1209.921435][T24735] ? find_held_lock+0x2b/0x80 [ 1209.921458][T24735] ? __pfx_proc_setgroups_show+0x10/0x10 [ 1209.921483][T24735] single_open+0x4d/0x1d0 [ 1209.921500][T24735] proc_setgroups_open+0x35a/0x7e0 [ 1209.921518][T24735] do_dentry_open+0x6d8/0x1660 [ 1209.921538][T24735] ? __pfx_proc_setgroups_open+0x10/0x10 [ 1209.921559][T24735] vfs_open+0x82/0x3f0 [ 1209.921576][T24735] path_openat+0x208c/0x31a0 [ 1209.921607][T24735] ? __pfx_path_openat+0x10/0x10 [ 1209.921635][T24735] do_file_open+0x20e/0x430 [ 1209.921657][T24735] ? __pfx_do_file_open+0x10/0x10 [ 1209.921685][T24735] ? __pfx_kfree_link+0x10/0x10 [ 1209.921708][T24735] ? alloc_fd+0x476/0x790 [ 1209.921738][T24735] ? do_getname+0x191/0x390 [ 1209.921755][T24735] do_sys_openat2+0x10d/0x1e0 [ 1209.921772][T24735] ? __pfx_do_sys_openat2+0x10/0x10 [ 1209.921789][T24735] ? ksys_semctl.constprop.0+0x14e/0x2e0 [ 1209.921813][T24735] __x64_sys_openat+0x12d/0x210 [ 1209.921830][T24735] ? __pfx___x64_sys_openat+0x10/0x10 [ 1209.921854][T24735] do_syscall_64+0x106/0xf80 [ 1209.921868][T24735] ? clear_bhb_loop+0x40/0x90 [ 1209.921887][T24735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1209.921902][T24735] RIP: 0033:0x7f84e919c139 [ 1209.921916][T24735] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1209.921931][T24735] RSP: 002b:00007f84ea015028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1209.921946][T24735] RAX: ffffffffffffffda RBX: 00007f84e9415fa0 RCX: 00007f84e919c139 [ 1209.921956][T24735] RDX: 0000000000183200 RSI: 00002000000003c0 RDI: ffffffffffffff9c [ 1209.921965][T24735] RBP: 00007f84e92327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1209.921974][T24735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1209.921983][T24735] R13: 00007f84e9416038 R14: 00007f84e9415fa0 R15: 00007fff4602b9e8 [ 1209.922003][T24735] [ 1211.001378][T24317] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1213.090228][T24799] futex_wake_op: syz.2.3594 tries to shift op by -1; fix this program [ 1216.922931][T24847] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input27 [ 1217.381328][T24856] kvm: kvm [24855]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 1219.208839][T24882] EXT4-fs error (device sda1): ext4_discard_preallocations:5704: comm syz.1.3614: Error -117 reading block bitmap for 4 [ 1219.258901][T24886] sg_write: data in/out 220/90 bytes for SCSI command 0x0-- guessing data in; [ 1219.258901][T24886] program syz.0.3613 not setting count and/or reply_len properly [ 1220.226849][T24907] kvm: kvm [24906]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000085) [ 1221.561576][T24919] Process accounting paused [ 1222.755394][T24317] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1224.542623][T24950] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.3627: iget: checksum invalid [ 1224.633148][T24950] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1224.753862][T24950] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.3627: iget: checksum invalid [ 1224.824643][T24950] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1224.913554][T24950] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.3627: iget: checksum invalid [ 1225.013023][T24950] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1225.134067][T24950] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.3627: iget: checksum invalid [ 1225.230767][T24950] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1225.322394][T24950] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1225.386284][T24950] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1227.931692][T24976] syz.3.3631: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1228.307545][T24976] CPU: 0 UID: 0 PID: 24976 Comm: syz.3.3631 Tainted: G L syzkaller #0 PREEMPT(full) [ 1228.307573][T24976] Tainted: [L]=SOFTLOCKUP [ 1228.307579][T24976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1228.307588][T24976] Call Trace: [ 1228.307593][T24976] [ 1228.307599][T24976] dump_stack_lvl+0x100/0x190 [ 1228.307625][T24976] warn_alloc.cold+0x95/0x1c1 [ 1228.307651][T24976] ? __pfx_warn_alloc+0x10/0x10 [ 1228.307671][T24976] ? __lock_acquire+0x4a5/0x2630 [ 1228.307699][T24976] __vmalloc_node_range_noprof+0x1252/0x1530 [ 1228.307716][T24976] ? rcu_is_watching+0x12/0xc0 [ 1228.307738][T24976] ? trace_contention_end+0x140/0x180 [ 1228.307757][T24976] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 1228.307776][T24976] ? dvb_dvr_do_ioctl+0x7e/0x270 [ 1228.307791][T24976] ? tomoyo_path_number_perm+0x28f/0x580 [ 1228.307810][T24976] ? tomoyo_path_number_perm+0x28f/0x580 [ 1228.307830][T24976] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1228.307846][T24976] ? __pfx___mutex_lock+0x10/0x10 [ 1228.307865][T24976] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1228.307883][T24976] ? futex_wait+0x125/0x380 [ 1228.307905][T24976] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 1228.307922][T24976] __vmalloc_node_noprof+0xad/0xf0 [ 1228.307938][T24976] ? dvb_dvr_do_ioctl+0x15d/0x270 [ 1228.307957][T24976] dvb_dvr_do_ioctl+0x15d/0x270 [ 1228.307977][T24976] dvb_usercopy+0x167/0x340 [ 1228.307992][T24976] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 1228.308010][T24976] ? __pfx_dvb_usercopy+0x10/0x10 [ 1228.308033][T24976] ? __fget_files+0x21f/0x3d0 [ 1228.308057][T24976] dvb_dvr_ioctl+0x29/0x40 [ 1228.308072][T24976] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 1228.308088][T24976] __x64_sys_ioctl+0x18e/0x210 [ 1228.308107][T24976] do_syscall_64+0x106/0xf80 [ 1228.308121][T24976] ? clear_bhb_loop+0x40/0x90 [ 1228.308146][T24976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1228.308163][T24976] RIP: 0033:0x7ff8def9c139 [ 1228.308177][T24976] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1228.308192][T24976] RSP: 002b:00007ff8dfdd8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1228.308207][T24976] RAX: ffffffffffffffda RBX: 00007ff8df216270 RCX: 00007ff8def9c139 [ 1228.308217][T24976] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000009 [ 1228.308226][T24976] RBP: 00007ff8df0327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1228.308235][T24976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1228.308243][T24976] R13: 00007ff8df216308 R14: 00007ff8df216270 R15: 00007ffc8e8a9fc8 [ 1228.308262][T24976] [ 1228.308280][T24976] Mem-Info: [ 1228.863400][T25001] FAULT_INJECTION: forcing a failure. [ 1228.863400][T25001] name failslab, interval 1, probability 0, space 0, times 0 [ 1228.985852][T25001] CPU: 0 UID: 0 PID: 25001 Comm: syz.1.3636 Tainted: G L syzkaller #0 PREEMPT(full) [ 1228.985880][T25001] Tainted: [L]=SOFTLOCKUP [ 1228.985886][T25001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1228.985895][T25001] Call Trace: [ 1228.985900][T25001] [ 1228.985906][T25001] dump_stack_lvl+0x100/0x190 [ 1228.985933][T25001] should_fail_ex.cold+0x5/0xa [ 1228.985952][T25001] should_failslab+0xc2/0x120 [ 1228.985974][T25001] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1228.985991][T25001] ? ipv6_inetpeer_init+0x3f/0xb0 [ 1228.986012][T25001] ? __pfx_ndisc_net_init+0x10/0x10 [ 1228.986032][T25001] ? __pfx_ipv6_inetpeer_init+0x10/0x10 [ 1228.986053][T25001] ipv6_inetpeer_init+0x3f/0xb0 [ 1228.986075][T25001] ops_init+0x1e2/0x5f0 [ 1228.986099][T25001] setup_net+0x118/0x3a0 [ 1228.986115][T25001] ? __pfx_setup_net+0x10/0x10 [ 1228.986129][T25001] ? lockdep_init_map_type+0x5c/0x250 [ 1228.986148][T25001] ? mutex_init_lockep+0x110/0x150 [ 1228.986170][T25001] copy_net_ns+0x46f/0x7c0 [ 1228.986188][T25001] create_new_namespaces+0x3ea/0xac0 [ 1228.986207][T25001] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1228.986224][T25001] ksys_unshare+0x455/0xab0 [ 1228.986243][T25001] ? __pfx_ksys_unshare+0x10/0x10 [ 1228.986268][T25001] __x64_sys_unshare+0x31/0x40 [ 1228.986285][T25001] do_syscall_64+0x106/0xf80 [ 1228.986299][T25001] ? clear_bhb_loop+0x40/0x90 [ 1228.986317][T25001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1228.986332][T25001] RIP: 0033:0x7f847399c139 [ 1228.986345][T25001] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1228.986360][T25001] RSP: 002b:00007f84747f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1228.986374][T25001] RAX: ffffffffffffffda RBX: 00007f8473c16090 RCX: 00007f847399c139 [ 1228.986384][T25001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1228.986392][T25001] RBP: 00007f8473a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1228.986401][T25001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1228.986410][T25001] R13: 00007f8473c16128 R14: 00007f8473c16090 R15: 00007ffdb5278bd8 [ 1228.986430][T25001] [ 1229.719447][T24976] active_anon:78325 inactive_anon:41 isolated_anon:114 [ 1229.719447][T24976] active_file:10098 inactive_file:49476 isolated_file:0 [ 1229.719447][T24976] unevictable:768 dirty:4565 writeback:0 [ 1229.719447][T24976] slab_reclaimable:14919 slab_unreclaimable:113321 [ 1229.719447][T24976] mapped:29604 shmem:66603 pagetables:1420 [ 1229.719447][T24976] sec_pagetables:0 bounce:0 [ 1229.719447][T24976] kernel_misc_reclaimable:0 [ 1229.719447][T24976] free:1223455 free_pcp:7516 free_cma:0 [ 1229.889542][T24976] Node 0 active_anon:304608kB inactive_anon:164kB active_file:40392kB inactive_file:197772kB unevictable:1536kB isolated(anon):40kB isolated(file):0kB mapped:118416kB dirty:14208kB writeback:2048kB shmem:254528kB shmem_thp:2048kB shmem_pmdmapped:0kB anon_thp:26624kB kernel_stack:11360kB pagetables:5520kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1230.002820][T24976] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1230.104804][T24976] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1230.212825][T24976] lowmem_reserve[]: 0 2478 2479 2479 2479 [ 1230.230656][T24976] Node 0 DMA32 free:934712kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:275300kB inactive_anon:136kB active_file:40440kB inactive_file:197772kB unevictable:1536kB writepending:12172kB zspages:112kB present:3129332kB managed:2537504kB mlocked:0kB bounce:0kB free_pcp:68612kB local_pcp:68612kB free_cma:0kB [ 1230.345151][T24976] lowmem_reserve[]: 0 0 1 1 1 [ 1230.370278][T24976] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1064kB mlocked:0kB bounce:0kB free_pcp:24kB local_pcp:24kB free_cma:0kB [ 1230.468635][T24976] lowmem_reserve[]: 0 0 0 0 0 [ 1230.486160][T24976] Node 1 Normal free:3943716kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1230.604292][T24976] lowmem_reserve[]: 0 0 0 0 0 [ 1230.619204][T24976] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 1230.672816][T24976] Node 0 DMA32: 4156*4kB (UE) 2949*8kB (U) 2316*16kB (UME) 147*32kB (UE) 558*64kB (UE) 291*128kB (UME) 366*256kB (UM) 248*512kB (UME) 150*1024kB (UME) 2*2048kB (UM) 98*4096kB (UME) = 934712kB [ 1230.729377][T24976] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 1230.780803][T24976] Node 1 Normal: 3*4kB (UM) 7*8kB (UM) 20*16kB (UME) 11*32kB (UME) 9*64kB (UME) 4*128kB (UME) 4*256kB (UME) 5*512kB (UME) 2*1024kB (UM) 4*2048kB (UME) 959*4096kB (UM) = 3943716kB [ 1230.838837][T24976] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1230.867417][T24976] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 1230.887052][T24976] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1230.922792][T24976] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 1230.949327][T24976] 99031 total pagecache pages [ 1230.962836][T24976] 71 pages in swap cache [ 1230.975689][T24976] Free swap = 124648kB [ 1230.984621][T24976] Total swap = 124996kB [ 1230.993424][T24976] 2097051 pages RAM [ 1231.003022][T24976] 0 pages HighMem/MovableOnly [ 1231.012978][T24976] 430794 pages reserved [ 1231.022773][T24976] 0 pages cma reserved [ 1232.654056][T25030] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1232.850034][T25030] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1233.238438][T25034] block nbd8: shutting down sockets [ 1233.318382][T25031] Process accounting resumed [ 1233.413627][T25030] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1233.604443][T25030] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1233.612095][T25030] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1233.887805][T25018] Process accounting resumed [ 1234.673127][T24317] Bluetooth: hci1: command 0x0c1a tx timeout [ 1234.843535][T25062] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3647'. [ 1234.905339][T25062] netlink: 'syz.0.3647': attribute type 1 has an invalid length. [ 1234.913520][T24317] Bluetooth: hci2: command 0x0c1a tx timeout [ 1234.954336][T25062] netlink: 'syz.0.3647': attribute type 6 has an invalid length. [ 1235.633093][T24317] Bluetooth: hci3: command 0x0c1a tx timeout [ 1235.639296][T10448] Bluetooth: hci0: command 0x0c1a tx timeout [ 1236.175290][T24317] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 1236.182906][T24317] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff [ 1236.992866][T24317] Bluetooth: hci2: command 0x0c1a tx timeout [ 1238.756839][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 1238.763306][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 1238.808341][T25138] Invalid ELF header magic: != ELF [ 1238.917093][T25138] FAULT_INJECTION: forcing a failure. [ 1238.917093][T25138] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.014504][T25138] CPU: 0 UID: 0 PID: 25138 Comm: syz.2.3662 Tainted: G L syzkaller #0 PREEMPT(full) [ 1239.014532][T25138] Tainted: [L]=SOFTLOCKUP [ 1239.014537][T25138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1239.014547][T25138] Call Trace: [ 1239.014552][T25138] [ 1239.014558][T25138] dump_stack_lvl+0x100/0x190 [ 1239.014584][T25138] should_fail_ex.cold+0x5/0xa [ 1239.014603][T25138] should_failslab+0xc2/0x120 [ 1239.014625][T25138] __kvmalloc_node_noprof+0xfa/0xa00 [ 1239.014645][T25138] ? file_tty_write.isra.0+0x64e/0x890 [ 1239.014665][T25138] file_tty_write.isra.0+0x64e/0x890 [ 1239.014680][T25138] ? security_file_permission+0x76/0x210 [ 1239.014703][T25138] ? rw_verify_area+0xce/0x6d0 [ 1239.014723][T25138] vfs_write+0x6ac/0x1070 [ 1239.014744][T25138] ? __pfx_tty_write+0x10/0x10 [ 1239.014760][T25138] ? __pfx_vfs_write+0x10/0x10 [ 1239.014778][T25138] ? find_held_lock+0x2b/0x80 [ 1239.014812][T25138] ksys_write+0x12a/0x250 [ 1239.014832][T25138] ? __pfx_ksys_write+0x10/0x10 [ 1239.014857][T25138] do_syscall_64+0x106/0xf80 [ 1239.014871][T25138] ? clear_bhb_loop+0x40/0x90 [ 1239.014889][T25138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1239.014903][T25138] RIP: 0033:0x7f55dd59c139 [ 1239.014918][T25138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1239.014932][T25138] RSP: 002b:00007f55de3ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1239.014947][T25138] RAX: ffffffffffffffda RBX: 00007f55dd816090 RCX: 00007f55dd59c139 [ 1239.014956][T25138] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 1239.014965][T25138] RBP: 00007f55dd6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.014974][T25138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1239.014982][T25138] R13: 00007f55dd816128 R14: 00007f55dd816090 R15: 00007ffed9fb5d48 [ 1239.015002][T25138] [ 1241.227996][T25169] Console: switching to colour VGA+ 80x4 [ 1242.519742][T24317] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 1242.527364][T24317] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff [ 1243.720807][T25196] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3672: iget: checksum invalid [ 1243.833252][T25196] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1243.930882][T25196] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3672: iget: checksum invalid [ 1244.008578][T25196] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1244.091943][T25196] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3672: iget: checksum invalid [ 1244.143680][T25196] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1244.252385][T25196] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.3672: iget: checksum invalid [ 1244.293079][T25196] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1244.332974][T25196] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1244.386027][T25196] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1246.417321][T25244] FAULT_INJECTION: forcing a failure. [ 1246.417321][T25244] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1246.635354][T25244] CPU: 0 UID: 0 PID: 25244 Comm: syz.1.3681 Tainted: G L syzkaller #0 PREEMPT(full) [ 1246.635382][T25244] Tainted: [L]=SOFTLOCKUP [ 1246.635388][T25244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1246.635397][T25244] Call Trace: [ 1246.635402][T25244] [ 1246.635408][T25244] dump_stack_lvl+0x100/0x190 [ 1246.635434][T25244] should_fail_ex.cold+0x5/0xa [ 1246.635452][T25244] get_futex_key+0x1d2/0x1620 [ 1246.635470][T25244] ? __pfx_get_futex_key+0x10/0x10 [ 1246.635486][T25244] ? do_mremap+0xa96/0x2130 [ 1246.635510][T25244] futex_wake+0xea/0x530 [ 1246.635531][T25244] ? __pfx_futex_wake+0x10/0x10 [ 1246.635560][T25244] ? ksys_write+0x190/0x250 [ 1246.635586][T25244] do_futex+0x32b/0x350 [ 1246.635604][T25244] ? __pfx_do_futex+0x10/0x10 [ 1246.635620][T25244] ? __pfx___do_sys_mremap+0x10/0x10 [ 1246.635644][T25244] __x64_sys_futex+0x34f/0x4d0 [ 1246.635664][T25244] ? __pfx___x64_sys_futex+0x10/0x10 [ 1246.635683][T25244] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 1246.635702][T25244] ? syscall_user_dispatch+0x76/0x130 [ 1246.635724][T25244] do_syscall_64+0x106/0xf80 [ 1246.635737][T25244] ? clear_bhb_loop+0x40/0x90 [ 1246.635755][T25244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1246.635770][T25244] RIP: 0033:0x7f847399c139 [ 1246.635783][T25244] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1246.635798][T25244] RSP: 002b:00007f84747b30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1246.635812][T25244] RAX: ffffffffffffffda RBX: 00007f8473c16278 RCX: 00007f847399c139 [ 1246.635822][T25244] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8473c1627c [ 1246.635831][T25244] RBP: 00007f8473c16270 R08: 0000000000000000 R09: 0000000000000000 [ 1246.635840][T25244] R10: 0000000100000000 R11: 0000000000000246 R12: 0000000000000000 [ 1246.635849][T25244] R13: 00007f8473c16308 R14: 00007ffdb5278af0 R15: 00007ffdb5278bd8 [ 1246.635868][T25244] [ 1248.535324][T25277] FAULT_INJECTION: forcing a failure. [ 1248.535324][T25277] name failslab, interval 1, probability 0, space 0, times 0 [ 1248.605772][T25277] CPU: 0 UID: 0 PID: 25277 Comm: syz.3.3689 Tainted: G L syzkaller #0 PREEMPT(full) [ 1248.605800][T25277] Tainted: [L]=SOFTLOCKUP [ 1248.605805][T25277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1248.605815][T25277] Call Trace: [ 1248.605820][T25277] [ 1248.605826][T25277] dump_stack_lvl+0x100/0x190 [ 1248.605852][T25277] should_fail_ex.cold+0x5/0xa [ 1248.605870][T25277] should_failslab+0xc2/0x120 [ 1248.605892][T25277] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 1248.605913][T25277] ? cache_create_net+0x2b/0x220 [ 1248.605931][T25277] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 1248.605954][T25277] kmemdup_noprof+0x29/0x60 [ 1248.605974][T25277] cache_create_net+0x2b/0x220 [ 1248.605989][T25277] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 1248.606013][T25277] gss_svc_init_net+0x69/0x640 [ 1248.606034][T25277] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 1248.606054][T25277] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 1248.606076][T25277] ops_init+0x1e2/0x5f0 [ 1248.606094][T25277] setup_net+0x118/0x3a0 [ 1248.606109][T25277] ? __pfx_setup_net+0x10/0x10 [ 1248.606122][T25277] ? lockdep_init_map_type+0x5c/0x250 [ 1248.606142][T25277] ? mutex_init_lockep+0x110/0x150 [ 1248.606164][T25277] copy_net_ns+0x46f/0x7c0 [ 1248.606182][T25277] create_new_namespaces+0x3ea/0xac0 [ 1248.606201][T25277] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1248.606218][T25277] ksys_unshare+0x455/0xab0 [ 1248.606236][T25277] ? __pfx_ksys_unshare+0x10/0x10 [ 1248.606261][T25277] __x64_sys_unshare+0x31/0x40 [ 1248.606278][T25277] do_syscall_64+0x106/0xf80 [ 1248.606291][T25277] ? clear_bhb_loop+0x40/0x90 [ 1248.606309][T25277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1248.606324][T25277] RIP: 0033:0x7ff8def9c139 [ 1248.606337][T25277] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1248.606352][T25277] RSP: 002b:00007ff8dfe1a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1248.606367][T25277] RAX: ffffffffffffffda RBX: 00007ff8df216090 RCX: 00007ff8def9c139 [ 1248.606377][T25277] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1248.606386][T25277] RBP: 00007ff8df0327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1248.606395][T25277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1248.606403][T25277] R13: 00007ff8df216128 R14: 00007ff8df216090 R15: 00007ffc8e8a9fc8 [ 1248.606423][T25277] [ 1251.725010][T25301] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3695: iget: checksum invalid [ 1251.779575][T25301] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 1251.826400][T25301] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3695: iget: checksum invalid [ 1251.945583][T25301] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 1252.027027][T25301] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3695: iget: checksum invalid [ 1252.072490][T25301] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 1252.112334][T25301] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.3695: iget: checksum invalid [ 1252.127098][T25312] FAULT_INJECTION: forcing a failure. [ 1252.127098][T25312] name failslab, interval 1, probability 0, space 0, times 0 [ 1252.159145][T25301] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 1252.184030][T25312] CPU: 0 UID: 0 PID: 25312 Comm: syz.1.3697 Tainted: G L syzkaller #0 PREEMPT(full) [ 1252.184057][T25312] Tainted: [L]=SOFTLOCKUP [ 1252.184062][T25312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1252.184071][T25312] Call Trace: [ 1252.184077][T25312] [ 1252.184084][T25312] dump_stack_lvl+0x100/0x190 [ 1252.184110][T25312] should_fail_ex.cold+0x5/0xa [ 1252.184129][T25312] should_failslab+0xc2/0x120 [ 1252.184158][T25312] __kmalloc_cache_noprof+0x7a/0x6f0 [ 1252.184176][T25312] ? snd_seq_port_connect+0x61/0x560 [ 1252.184193][T25312] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 1252.184209][T25312] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 1252.184228][T25312] snd_seq_port_connect+0x61/0x560 [ 1252.184246][T25312] ? _raw_read_unlock+0x28/0x50 [ 1252.184268][T25312] ? check_subscription_permission.isra.0+0x146/0x240 [ 1252.184288][T25312] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 1252.184309][T25312] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 1252.184336][T25312] call_seq_client_ctl+0xa3/0x130 [ 1252.184354][T25312] snd_seq_kernel_client_ctl+0x77/0xd0 [ 1252.184371][T25312] snd_seq_oss_midi_open+0x48b/0x6b0 [ 1252.184393][T25312] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 1252.184414][T25312] ? find_held_lock+0x2b/0x80 [ 1252.184440][T25312] ? lockdep_hardirqs_on+0x78/0x100 [ 1252.184462][T25312] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1252.184483][T25312] ? get_mididev+0x115/0x160 [ 1252.184504][T25312] snd_seq_oss_synth_setup_midi+0x131/0x590 [ 1252.184530][T25312] snd_seq_oss_open+0x82e/0xa10 [ 1252.184551][T25312] odev_open+0x79/0xc0 [ 1252.184566][T25312] ? __pfx_odev_open+0x10/0x10 [ 1252.184581][T25312] soundcore_open+0x2e3/0x5a0 [ 1252.184599][T25312] ? __pfx_soundcore_open+0x10/0x10 [ 1252.184616][T25312] chrdev_open+0x234/0x6a0 [ 1252.184636][T25312] ? __pfx_apparmor_file_open+0x10/0x10 [ 1252.184654][T25312] ? __pfx_chrdev_open+0x10/0x10 [ 1252.184676][T25312] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 1252.184702][T25312] do_dentry_open+0x6d8/0x1660 [ 1252.184722][T25312] ? __pfx_chrdev_open+0x10/0x10 [ 1252.184748][T25312] vfs_open+0x82/0x3f0 [ 1252.184766][T25312] path_openat+0x208c/0x31a0 [ 1252.184793][T25312] ? __pfx_path_openat+0x10/0x10 [ 1252.184821][T25312] do_file_open+0x20e/0x430 [ 1252.184843][T25312] ? __pfx_do_file_open+0x10/0x10 [ 1252.184878][T25312] ? alloc_fd+0x476/0x790 [ 1252.184901][T25312] ? do_getname+0x191/0x390 [ 1252.184917][T25312] do_sys_openat2+0x10d/0x1e0 [ 1252.184933][T25312] ? __pfx_do_sys_openat2+0x10/0x10 [ 1252.184950][T25312] ? __x64_sys_close_range+0x2d9/0x5d0 [ 1252.184976][T25312] __x64_sys_openat+0x12d/0x210 [ 1252.184993][T25312] ? __pfx___x64_sys_openat+0x10/0x10 [ 1252.185017][T25312] do_syscall_64+0x106/0xf80 [ 1252.185030][T25312] ? clear_bhb_loop+0x40/0x90 [ 1252.185048][T25312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1252.185063][T25312] RIP: 0033:0x7f847399c139 [ 1252.185077][T25312] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1252.185092][T25312] RSP: 002b:00007f84747f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1252.185107][T25312] RAX: ffffffffffffffda RBX: 00007f8473c16090 RCX: 00007f847399c139 [ 1252.185117][T25312] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1252.185126][T25312] RBP: 00007f8473a327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1252.185135][T25312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1252.185150][T25312] R13: 00007f8473c16128 R14: 00007f8473c16090 R15: 00007ffdb5278bd8 [ 1252.185172][T25312] [ 1252.915500][T25301] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 1252.963914][T25301] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 1253.393282][T25298] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.3.3694: bg 5: bad block bitmap checksum [ 1253.442979][T25298] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74 [ 1253.512820][T25298] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1253.512820][T25298] [ 1253.771408][T25296] Process accounting resumed [ 1254.771012][T25338] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 1254.957349][T25338] EXT4-fs (sda1): This should not happen!! Data will be lost [ 1254.957349][T25338] [ 1255.239189][T25344] FAULT_INJECTION: forcing a failure. [ 1255.239189][T25344] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.292877][T25344] CPU: 0 UID: 0 PID: 25344 Comm: syz.2.3703 Tainted: G L syzkaller #0 PREEMPT(full) [ 1255.292904][T25344] Tainted: [L]=SOFTLOCKUP [ 1255.292910][T25344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1255.292919][T25344] Call Trace: [ 1255.292924][T25344] [ 1255.292930][T25344] dump_stack_lvl+0x100/0x190 [ 1255.292957][T25344] should_fail_ex.cold+0x5/0xa [ 1255.292975][T25344] ? __register_sysctl_table+0xac/0x1650 [ 1255.292996][T25344] should_failslab+0xc2/0x120 [ 1255.293019][T25344] __kmalloc_noprof+0xe0/0x850 [ 1255.293042][T25344] __register_sysctl_table+0xac/0x1650 [ 1255.293061][T25344] ? is_module_address+0x5f/0xf0 [ 1255.293082][T25344] ? __pfx___register_sysctl_table+0x10/0x10 [ 1255.293101][T25344] ? is_module_address+0x69/0xf0 [ 1255.293117][T25344] ? register_net_sysctl_sz+0x222/0x430 [ 1255.293135][T25344] ? __asan_memcpy+0x3c/0x60 [ 1255.293154][T25344] smc_sysctl_net_init+0xbb/0x450 [ 1255.293172][T25344] ? __pfx_smc_net_init+0x10/0x10 [ 1255.293191][T25344] smc_net_init+0x16/0x50 [ 1255.293209][T25344] ops_init+0x1e2/0x5f0 [ 1255.293227][T25344] setup_net+0x118/0x3a0 [ 1255.293242][T25344] ? __pfx_setup_net+0x10/0x10 [ 1255.293255][T25344] ? lockdep_init_map_type+0x5c/0x250 [ 1255.293274][T25344] ? mutex_init_lockep+0x110/0x150 [ 1255.293296][T25344] copy_net_ns+0x46f/0x7c0 [ 1255.293314][T25344] create_new_namespaces+0x3ea/0xac0 [ 1255.293333][T25344] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 1255.293350][T25344] ksys_unshare+0x455/0xab0 [ 1255.293369][T25344] ? __pfx_ksys_unshare+0x10/0x10 [ 1255.293394][T25344] __x64_sys_unshare+0x31/0x40 [ 1255.293411][T25344] do_syscall_64+0x106/0xf80 [ 1255.293424][T25344] ? clear_bhb_loop+0x40/0x90 [ 1255.293442][T25344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1255.293457][T25344] RIP: 0033:0x7f55dd59c139 [ 1255.293470][T25344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1255.293484][T25344] RSP: 002b:00007f55de3ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1255.293499][T25344] RAX: ffffffffffffffda RBX: 00007f55dd816090 RCX: 00007f55dd59c139 [ 1255.293509][T25344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1255.293518][T25344] RBP: 00007f55dd6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1255.293526][T25344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1255.293535][T25344] R13: 00007f55dd816128 R14: 00007f55dd816090 R15: 00007ffed9fb5d48 [ 1255.293554][T25344] [ 1257.057868][T25364] EXT4-fs error (device sda1): ext4_discard_preallocations:5704: comm syz.0.3707: Error -117 reading block bitmap for 5 [ 1258.672258][T25378] Console: switching to colour frame buffer device 128x48 [ 1262.407918][T25431] Oops: general protection fault, probably for non-canonical address 0xdffffc000000001e: 0000 [#1] SMP KASAN PTI [ 1262.419941][T25431] KASAN: null-ptr-deref in range [0x00000000000000f0-0x00000000000000f7] [ 1262.428344][T25431] CPU: 0 UID: 0 PID: 25431 Comm: syz.2.3718 Tainted: G L syzkaller #0 PREEMPT(full) [ 1262.439266][T25431] Tainted: [L]=SOFTLOCKUP [ 1262.443572][T25431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1262.453606][T25431] RIP: 0010:grab_requested_root+0xde/0x3c0 [ 1262.459399][T25431] Code: 02 00 00 49 39 5d 18 0f 84 cd 01 00 00 e8 5a d9 76 ff 48 8d bb 08 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 82 02 00 00 48 8b 83 08 01 00 00 48 85 c0 0f 84 [ 1262.478985][T25431] RSP: 0018:ffffc90003967d88 EFLAGS: 00010206 [ 1262.485035][T25431] RAX: dffffc0000000000 RBX: ffffffffffffffea RCX: ffffc9000f0b1000 [ 1262.492986][T25431] RDX: 000000000000001e RSI: ffffffff82911fc6 RDI: 00000000000000f2 [ 1262.500936][T25431] RBP: ffffc90003967db0 R08: 0000000000000005 R09: 0000000000000000 [ 1262.508884][T25431] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88807da65ac0 [ 1262.516832][T25431] R13: ffff8880609c7c30 R14: ffff8880594c8028 R15: ffff8880594c8010 [ 1262.524784][T25431] FS: 00007f55de3ee6c0(0000) GS:ffff888124354000(0000) knlGS:0000000000000000 [ 1262.533712][T25431] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1262.540277][T25431] CR2: 0000001b30af2ff8 CR3: 0000000051120000 CR4: 00000000003526f0 [ 1262.548230][T25431] Call Trace: [ 1262.551494][T25431] [ 1262.554404][T25431] __do_sys_statmount+0x359/0x2440 [ 1262.559508][T25431] ? __pfx___do_sys_statmount+0x10/0x10 [ 1262.565039][T25431] do_syscall_64+0x106/0xf80 [ 1262.569609][T25431] ? clear_bhb_loop+0x40/0x90 [ 1262.574269][T25431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1262.580139][T25431] RIP: 0033:0x7f55dd59c139 [ 1262.584534][T25431] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1262.604121][T25431] RSP: 002b:00007f55de3ee028 EFLAGS: 00000246 ORIG_RAX: 00000000000001c9 [ 1262.612514][T25431] RAX: ffffffffffffffda RBX: 00007f55dd816090 RCX: 00007f55dd59c139 [ 1262.620467][T25431] RDX: 00000000000001fe RSI: 0000200000000180 RDI: 0000000000000000 [ 1262.628419][T25431] RBP: 00007f55dd6327e0 R08: 0000000000000000 R09: 0000000000000000 [ 1262.636367][T25431] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 1262.644317][T25431] R13: 00007f55dd816128 R14: 00007f55dd816090 R15: 00007ffed9fb5d48 [ 1262.652273][T25431] [ 1262.655268][T25431] Modules linked in: [ 1262.660468][T25431] ---[ end trace 0000000000000000 ]--- [ 1263.322257][T25431] RIP: 0010:grab_requested_root+0xde/0x3c0 [ 1263.360979][T25431] Code: 02 00 00 49 39 5d 18 0f 84 cd 01 00 00 e8 5a d9 76 ff 48 8d bb 08 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 82 02 00 00 48 8b 83 08 01 00 00 48 85 c0 0f 84 [ 1263.520449][T25431] RSP: 0018:ffffc90003967d88 EFLAGS: 00010206 [ 1263.601008][T25431] RAX: dffffc0000000000 RBX: ffffffffffffffea RCX: ffffc9000f0b1000 [ 1263.673099][T25431] RDX: 000000000000001e RSI: ffffffff82911fc6 RDI: 00000000000000f2 [ 1263.728537][T25431] RBP: ffffc90003967db0 R08: 0000000000000005 R09: 0000000000000000 [ 1263.781845][T25431] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88807da65ac0 [ 1263.831604][T25431] R13: ffff8880609c7c30 R14: ffff8880594c8028 R15: ffff8880594c8010 [ 1263.880101][T25431] FS: 00007f55de3ee6c0(0000) GS:ffff888124354000(0000) knlGS:0000000000000000 [ 1263.919385][T25431] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1263.950051][T25431] CR2: 00007f55dd5e9880 CR3: 0000000051120000 CR4: 00000000003526f0 [ 1264.000968][T25431] Kernel panic - not syncing: Fatal exception [ 1264.007099][T25431] Kernel Offset: disabled [ 1264.011407][T25431] Rebooting in 86400 seconds..