last executing test programs: 16.858548596s ago: executing program 0 (id=431): r0 = socket(0xa, 0x2, 0x73) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_l2tp(0x0, r0) unshare$auto(0x20000080) unshare$auto(0x8) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0) preadv$auto(r1, &(0x7f00000002c0)={0x0, 0x8010000}, 0x5, 0xfb, 0x8100000001) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x408001, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x5, 0x0) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x880c2, 0x95) acct$auto(&(0x7f0000000280)='/sys/devices/virtual/mtd/mtd0/size\x00') socket(0x2, 0x3, 0x100) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), r2) sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2) r4 = socket(0x1e, 0x4, 0x0) setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14) close_range$auto(0x2, 0x8, 0x0) 8.275748787s ago: executing program 0 (id=442): socket$nl_generic(0x10, 0x3, 0x10) syz_clone3(&(0x7f0000000100)={0x2100000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x2) pidfd_open$auto(0x1, 0x0) socket(0x2000000000000021, 0x2, 0x10000000000002) mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/netdevsim/netdevsim1/ports/3/pp_hold\x00', 0x101001, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) ioctl$auto(r1, 0x3b90, r0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) sendmsg$auto_NL80211_CMD_SET_CQM(0xffffffffffffffff, 0x0, 0x8000) write$auto(r2, &(0x7f0000000000)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0) getpid() msync$auto(0x0, 0xe0, 0x6) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x2) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x4000000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x6, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x40020}, 0xc0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x6) r3 = socket(0x2, 0x1, 0x0) bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) 7.614559422s ago: executing program 3 (id=445): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x4, 0x27004000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x80806, 0x73) io_uring_setup$auto(0x6, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000080), 0x6b) close_range$auto(0x0, r0, 0x800002) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x8, 0x4, 0xffff0054, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000140), 0x8800, 0x0) r3 = socket(0x18, 0x5, 0x0) socket(0x2, 0x80002, 0x73) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) bind$auto(0x3, &(0x7f0000000080), 0x6b) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x18ac1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(r2, r3, 0x8) lseek$auto(r0, 0x2, 0x14000000) io_uring_setup$auto(0x4, 0x0) io_uring_register$auto(r1, 0x2, &(0x7f0000000000)="4b636080106037e8fc78d556", 0x8000) mmap$auto(0xfffffffffffffff8, 0x200, 0x3, 0xebf, 0xfffffffffffffffa, 0x2008000) syslog$auto(0x9, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mlockall$auto(0x5) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/pid_for_children\x00') getdents$auto(r4, 0x0, 0x3f1) getdents$auto(r4, 0x0, 0xa2b0) 6.031086434s ago: executing program 1 (id=447): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2001, 0x0) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, &(0x7f00000014c0)="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") close_range$auto(0x2, 0x8, 0x1) r0 = io_uring_setup$auto(0xb, 0x0) r1 = socket(0x22, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ioctl$auto_RTC_PARAM_GET(r0, 0x40187013, &(0x7f0000001480)={0x778344f3, @svalue=0x1000, 0xfff}) r2 = openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000004880)='/sys/kernel/tracing/tracing_thresh\x00', 0x40401, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/netfilter/nf_conntrack_sctp_timeout_shutdown_ack_sent\x00', 0x2000, 0x0) read$auto(r3, 0x0, 0x1ff) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) sendmmsg$auto(r1, &(0x7f0000000100)={{&(0x7f00000001c0)="81fa1d2558e78686559b5263f9bad5c51f47e7b87bbd7112160433ecb7be3bbc0bbade37c83206d39c75dd71cfb29a6a55654d26aad2b5a5c5c4b59096a3a2578af1baf0494508", 0x6, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0xffffffffffffffff, 0xb}, 0xfff}, 0x5, 0x311) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) kexec_load$auto(0x5, 0x2, 0x0, 0x4) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) sysfs$auto(0x2, 0x2000000000040, 0x0) r5 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0005, 0x19) fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb4, r2, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) setfsuid$auto(0xee00) 6.028347988s ago: executing program 3 (id=448): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2001, 0x0) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, &(0x7f00000014c0)="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") close_range$auto(0x2, 0x8, 0x1) r0 = io_uring_setup$auto(0xb, 0x0) r1 = socket(0x22, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ioctl$auto_RTC_PARAM_GET(r0, 0x40187013, &(0x7f0000001480)={0x778344f3, @svalue=0x1000, 0xfff}) r2 = openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000004880)='/sys/kernel/tracing/tracing_thresh\x00', 0x40401, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/netfilter/nf_conntrack_sctp_timeout_shutdown_ack_sent\x00', 0x2000, 0x0) read$auto(r3, 0x0, 0x1ff) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) sendmmsg$auto(r1, &(0x7f0000000100)={{&(0x7f00000001c0)="81fa1d2558e78686559b5263f9bad5c51f47e7b87bbd7112160433ecb7be3bbc0bbade37c83206d39c75dd71cfb29a6a55654d26aad2b5a5c5c4b59096a3a2578af1baf0494508a840", 0x6, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0xffffffffffffffff, 0xb}, 0xfff}, 0x5, 0x311) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) kexec_load$auto(0x5, 0x2, 0x0, 0x4) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) sysfs$auto(0x2, 0x2000000000040, 0x0) r5 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0005, 0x19) fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb4, r2, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) setfsuid$auto(0xee00) 5.141207724s ago: executing program 2 (id=450): r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) write$auto(r0, &(0x7f0000000680)='d\n\x1e\x9f\xd0\x92l\x98\x92!Fc\x9c?\xado^\x9b\xf4\x9c\xa8\xd2gn\x1a\xd7\x1c\xe8)\xefA\x7f\xc2x\xd0\x18gS\x1c\xca\xb9\x84\x1ec\xd4>\xc2\xfej\t\x89u\xcb(\x95_3\xdfo\xdc\xa5;t\x05q$zmM\xae\xdb\x1f\xeb\xffe\x91\xd5\xd2[\xa5_F\xc4X\xec\xdb\xdc\x01\xc2d\xa1\x8b\xed=\xb0\x88\xa8tl2\x0e\x13mjH,\xcda\xcab.\x03\xe7\xa4z\xcaA\xe2\x99\xd5n\xa0\x8a\x91K_\xf0~\b\v\xd1W\x97\xd9\x8c}\xff4\xff\tAK\xc4\x16\x13,9}-_\x00\x80\xd2\xfc\x98?\'\xaf\xccyRou\xa1\x12\x9fwZ\x1c\f\xcck\xdb-\xd7;\xbf\xbf\xbe\x04*L\x1e\x9c\x8fVb\xb8\xb4\xa2|\x88\x1e\bX\xba_O\x87f.\xc2\xfa\x01R\xefB\xe9\xf4Xc\x98\xe7', 0x5) 4.973226038s ago: executing program 2 (id=451): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/logsyscall\x00', 0x20a42, 0x0) r0 = socket(0x2, 0x8000b, 0x106) init_module$auto(0x0, 0xffff9, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x20009, 0x8000000000000001, 0xfffffffffffffffd, r0, 0x2) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000180), r0) r1 = socket(0x11, 0x3, 0x0) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x1882c2, 0x78e22799f4a46f1c) flock$auto(r2, 0x6) r3 = open(&(0x7f0000000000)='./file0\x00', 0x49040, 0x78e22799f4a46f88) flock$auto(r3, 0x1) r4 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e) flock$auto(r4, 0x2) r5 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff) sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) flock$auto(r4, 0x2) close_range$auto(r1, 0xffffffffffffffff, 0x0) setsockopt$auto(0xffffffffffffffff, 0x7fffffff, 0xd, 0x0, 0x8) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r6, 0x0, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r7 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) pidfd_send_signal$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x61, &(0x7f00000000c0)={@_si_pad}, 0xfff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) fadvise64$auto(r7, 0x2, 0x7, 0x2) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/system/cpu/isolated\x00', 0x0, 0x0) 4.484707118s ago: executing program 0 (id=452): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_show_traces_fops_trace(0xffffffffffffff9c, 0x0, 0x826c0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, 0x0, 0x24000000) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, 0x0, 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r3 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) pidfd_send_signal$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x4, &(0x7f0000000240)={@siginfo_0_0={0xffffd034, 0x4, 0x0, @_timer={r3, 0x0, @sival_int=0x7, 0xd5ba}}}, 0x3) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0) socketpair$auto(0x1, 0x5, 0x2a340, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x4000008000001f, 0x6, 0x6d3e, 0x8cfb7, 0x9, 0x6]}, 0x0) wait4$auto(r3, 0x0, 0x80000001, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0x10b142, 0x0) sendfile$auto(r4, r5, 0x0, 0x1000200) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x12, 0xd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1000000006, 0x7, 0x8, 0x5, 0x1000, 0x42, 0x8001, 0x1, 0x60, 0x40000102}) socket$nl_generic(0x10, 0x3, 0x10) 4.116811377s ago: executing program 1 (id=453): mmap$auto(0x3f, 0x6, 0x3, 0xeb1, 0xffffffffffffffff, 0x3) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptycb\x00', 0x80902, 0x0) ioctl$auto_TIOCGPTPEER(r0, 0x5441, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) pread64$auto(r1, 0x0, 0x8, 0x8) connect$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x4003, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) ioctl$auto_VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x5) mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) semctl$auto(0x1, 0xfffffffe, 0x3, 0x5) r2 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r2, 0x0, 0xc3) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r3, 0x0, 0x20) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r4, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000780)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010027bd7000fddbdf2560000000080003", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 4.111639125s ago: executing program 2 (id=454): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x6c840, 0x0) ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) ioctl$auto_BLKTRACETEARDOWN(r0, 0x1276, 0x0) 3.570481893s ago: executing program 2 (id=455): r0 = epoll_create$auto(0x2) epoll_pwait2$auto(r0, 0x0, 0x8, &(0x7f0000002780)={0x10000000000, 0x5}, 0x0, 0x8) r1 = epoll_create$auto(0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r2 = memfd_secret$auto(0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(r2, 0xa, 0x0) setresgid$auto(0x81, 0x800000a0, 0x8) setgroups$auto(0xc00000000, 0xfffffffffffffffc) keyctl$auto(0x5, 0xfffffffd, 0x101, 0x1, 0x4000000000b8c) keyctl$auto(0xb, 0xfffffffd, 0x7, 0xfffffffffff00003, 0x6) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f00000000c0)=':,\x00', 0x0, 0x0) bpf$auto(0x0, 0x0, 0x6f4) mmap$auto(0x0, 0x20009, 0xe2, 0xffffffffffffffff, 0x3fd, 0x7ffd) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001ec0)='/sys/power/mem_sleep\x00', 0x2402, 0x0) mkdir$auto(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) syz_clone3(&(0x7f0000000200)={0x40004200, 0x0, 0x0, 0x0, {0x2f}, 0x0, 0x0, 0x0, 0x0}, 0x58) io_uring_setup$auto(0x7, &(0x7f00000001c0)={0x5, 0x5, 0xffffffff, 0xfffffffd, 0x53, 0x2, 0xffffffffffffffff, [0x40009574, 0x7, 0x1], {0x9, 0x2, 0x201, 0x4, 0x3d, 0x8000001, 0x5530, 0x400, 0x100}, {0x3, 0x23, 0x5, 0x6, 0x400, 0x58, 0x5, 0x27, 0x40}}) sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800) pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r2) sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(r1, &(0x7f00000006c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x364, r5, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x6}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x8}, @NL80211_ATTR_FRAME={0x287, 0x33, "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"}, @NL80211_ATTR_WIPHY_NAME={0x19, 0x2, '/sys/power/mem_sleep\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY_NAME={0x5, 0x2, '\x00'}, @NL80211_ATTR_EMA_RNR_ELEMS={0x6d, 0x145, 0x0, 0x1, [@generic="e1251ded9fe0cb7934c601ca25efa9f220cd8da3b73eee92f1ac3dff17fb551bfcd4a4c435a60ba9b9349d4cd7cf80b747277090e6301cecec03a34e2feecab4e4498d827f84be6d94c0ac751c8cf59af5a039caee087b616a686ac1b88cdd6ff9319a4c4dfbb22366"]}, @NL80211_ATTR_FRAME_MATCH={0x20, 0x5b, "2405b706ce3e7b8aafbd3432d2b39ce22da71d708768fad6abf7a9b9"}]}, 0x364}, 0x1, 0x0, 0x0, 0x8000}, 0x10) ioctl$auto_SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000240)="ff1c77e3e0c75de3e4b5b406551a5767a5356c9bd9de5c773f2e75e6819101f051269dc09510f21d26b8a47ea44ff3011466be44ee87e992ae7b381f46f7e8880f1e4e52a3aa37892fbbcee374327f019f5d1866ce7ce150a42b0a07517071aa68e5997c2bc1062a9b033ba7bfba2572aaa306a2725c16886e383a0973673e3ea024667ff4d2d10e01fd145039fbc221dcd97c590000000000000000005b0d5646bec3cc3e72e128b447ddfe9f9109d94bbbeeb889959201af3ee76e59ecacbc6cd4db93f60abb9223cbd86cb4ea79e84ec9c9bc05390d61c270dd5ea2a3334fd5db6942929d02c50bc254ecb9989258c9e074a6917a36f0") openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, &(0x7f0000000000), 0x121200, 0x0) 2.673647433s ago: executing program 3 (id=456): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/nf_conntrack_amanda/parameters/ts_algo\x00', 0x240843, 0x0) r1 = timerfd_create$auto_CLOCK_BOOTTIME_ALARM(0x9, 0x80000001) r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000240), 0x28500, 0x0) ioctl$auto_TUNSETVNETBE(r2, 0x400454de, &(0x7f0000000280)) r3 = getpid() prctl$auto(0x7, 0x7, r3, 0x5, 0xff) setreuid$auto(0x8, 0x9d7) fsetxattr$auto(0x1, &(0x7f0000000000)='%\x175\xc0\x8d\xbb\x04\xb3\x97\xd8\xf4\xf6', 0x0, 0x0, 0x2) sendfile$auto(0xffffffffffffffff, r0, 0x0, 0x3) setsockopt$auto_SO_SELECT_ERR_QUEUE(r0, 0x80000000, 0x2d, &(0x7f00000000c0)='/dev/tap63\x00', 0x9) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, r4) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vivid.0/video4linux/radio13/dev\x00', 0xb42, 0x0) ioctl$auto_TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000100)=0xd50e) sendfile$auto(r5, r5, 0x0, 0x3) 2.536512245s ago: executing program 1 (id=457): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket(0xa, 0x3, 0x3a) r4 = socket(0x2, 0x1, 0x106) getsockopt$auto_SO_PASSSEC(r4, 0x1, 0x22, 0x0, &(0x7f0000000400)=0x7705) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) pread64$auto(r5, 0x0, 0x8000, 0x800000000002) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) ioctl$auto(0x3, 0xc0405668, 0x38) mmap$auto(0x0, 0x3, 0x4000000000de, 0x40eb1, r3, 0x1) r6 = waitid$auto(0x2, r3, &(0x7f0000000080)={@_si_pad}, 0x6, &(0x7f0000000140)={{0x474, 0x6}, {0xbe, 0x9}, 0x78, 0x0, 0x9, 0x0, 0x0, 0xf1b4, 0x8, 0x6c0, 0x9, 0x0, 0x2, 0x3cb8842e, 0x1, 0x10}) capset$auto(&(0x7f0000000200)={0x1, r6}, &(0x7f0000000240)={0x9, 0x100, 0x6}) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_PID={0x8, 0x1c, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x0) ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x5, 0x10, 0xff, 0x2, &(0x7f00000002c0)}) 2.451527464s ago: executing program 3 (id=458): write$auto(0x3, 0x0, 0x5c8) 2.284002091s ago: executing program 0 (id=459): openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x9, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptys5\x00', 0x2000, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000300)="db00") (fail_nth: 2) 2.224250621s ago: executing program 1 (id=460): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x400000000000003, 0x29, 0xd2, 0x0, 0x567) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) ioctl$auto_TCSBRKP2(r1, 0x5425, 0x0) io_uring_setup$auto(0x1, 0x0) close_range$auto(r1, 0xa, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r4, 0x5408, 0x0) write$auto_console_fops_tty_io(r0, &(0x7f00000001c0)="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", 0x342) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_CARD_INFO(r5, 0x81785501, &(0x7f0000000500)={0x0, 0x0, "a68a78cddb9af7ac4c80865002a0d2e3", "213ea76652ad28e8b96ec5ed5243aea3", "25222c3aac25ccff5de7b81eefde747e7674da7f6154e6bcf81ec7dadaa3b485", "12f251f2492bb43c598ef0237d522cb86954c0763131c2f67eaa6356799448a9576c948fc3fb995daec2f1fc9170a70b4b71b44f04809f3ca99cb9b4e9d3abb67d33f3d3fe57d0289938f4ce01d60bfd", "e9e7f824968ee78f73dc2749d12c7e05", "402beaf8e2dfaba5303a6efa74256963183267b80c0b5a1f17a2c919b4c43dc3817ea4719a3e48cdb8c3e9873ecfe260f627c94bc35f96d615979b05547405d7e633a060cdb0fc80f9562c947ed257fd", "5c84948d2c357792b0c4be9a3a15ecfee836d93ae475d2bc8193e8ac53c0494bf16e9a6d85fa65416177e39fac9de9d4869f6e9602c6f01a500ba2ba3d5fef158c908f502afdfe316cf3ac63f1f4842ec3c180d103084776592ff9e4a66125f8f285cabc67891f381c9bcc345f41ee4f2d7f4bffb05d58b0377a76a50de67bb8"}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/damon_reclaim/parameters/enabled\x00', 0x1eb842, 0x0) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0) write$auto_ocfs2_control_fops_stack_user(r7, &(0x7f0000000140)="fb5796eeeb933bc50230eb18aabb843f753d38e57dd6188303954cad18d628a34591a41010a4d6b9896a6a961c382bd5c4787005a597089d15c89c8b8c4e6b52b3a6b0a4756feac7176f8bffac3cb553d448a0be7def4564097da1ecf61b0e50a28538613c76", 0x66) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/workqueue/iscsi_conn_cleanup/per_cpu\x00', 0x40880, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r8, &(0x7f00000000c0)=""/244, 0xf4) 2.137660724s ago: executing program 3 (id=461): r0 = socket(0xa, 0x801, 0x84) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, r1, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_FILS_ERP_USERNAME={0x11, 0xf9, "174c8157700f46403d61e654b1"}, @NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000005}, 0x4000004) mmap$auto(0xfffffffffffffc76, 0x2020009, 0x9, 0xeb1, r0, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x3) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x11, 0xa, 0x300) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x7, 0x0) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x8640, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) preadv$auto(0x3, 0x0, 0x3, 0x3, 0x10) 1.891370028s ago: executing program 0 (id=462): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) openat$auto_show_traces_fops_trace(0xffffffffffffff9c, 0x0, 0x826c0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto(0x8000000, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, 0x0, 0x24000000) write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r2, 0x0, 0x98c7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r3 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) pidfd_send_signal$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x4, &(0x7f0000000240)={@siginfo_0_0={0xffffd034, 0x4, 0x0, @_timer={r3, 0x0, @sival_int=0x7, 0xd5ba}}}, 0x3) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0) socketpair$auto(0x1, 0x5, 0x2a340, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x4000008000001f, 0x6, 0x6d3e, 0x8cfb7, 0x9, 0x6]}, 0x0) wait4$auto(r3, 0x0, 0x80000001, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0x10b142, 0x0) sendfile$auto(r4, r5, 0x0, 0x1000200) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) lstat$auto(0x0, &(0x7f0000000180)={0x12, 0xd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1000000006, 0x7, 0x8, 0x5, 0x1000, 0x42, 0x8001, 0x1, 0x60, 0x40000102}) socket$nl_generic(0x10, 0x3, 0x10) 1.410609138s ago: executing program 2 (id=463): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_HDIO_GETGEO(r0, 0x301, &(0x7f0000000040)) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x6c840, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000003100), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_DEST(r2, &(0x7f0000003b40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYRESHEX=0x0, @ANYRES32=r3], 0x14}, 0x1, 0x0, 0x0, 0x20045800}, 0x20040000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x10, 0x2, 0xc) mmap$auto(0x10c, 0x40000a, 0xdf, 0x9b72, 0x2, 0x1) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) open(0x0, 0x22240, 0x155) io_uring_setup$auto(0x6, 0x0) socket(0x28, 0x5, 0x0) sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0xffffffff, 0x0, 0x1, 0x0, 0xa9, 0x9}, 0x7}, 0x3, 0x0) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/pagemap\x00', 0x181002, 0x0) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x100000001, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x8, 0x1}) ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0) 1.219101022s ago: executing program 1 (id=464): socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x9, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x3, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x40, 0x8, 0xfffffffe}}) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = openat$auto_ipsec_dbg_fops_ipsec(0xffffffffffffff9c, &(0x7f0000001240)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/ipsec\x00', 0x400, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r1) read$auto_ipsec_dbg_fops_ipsec(r0, 0x0, 0x0) clone$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x100) r3 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/debug/block/nbd1/sched/read2_fifo_list\x00', 0x169100, 0x0) pread64$auto(r3, 0x0, 0x1000f42d, 0x100) close_range$auto(0x2, 0x8, 0x0) r4 = open(0x0, 0x4040, 0x75) socket(0xa, 0x2, 0x3a) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000000), r4) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd4/queue/optimal_io_size\x00', 0x40000, 0x0) read$auto(r5, 0x0, 0x20) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) open_by_handle_at$auto(r6, &(0x7f0000001280)={0x1, 0x2, "02"}, 0x6) 1.115587993s ago: executing program 3 (id=465): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2001, 0x0) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, &(0x7f00000014c0)="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") close_range$auto(0x2, 0x8, 0x1) r0 = io_uring_setup$auto(0xb, 0x0) r1 = socket(0x22, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) ioctl$auto_RTC_PARAM_GET(r0, 0x40187013, &(0x7f0000001480)={0x778344f3, @svalue=0x1000, 0xfff}) r2 = openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000004880)='/sys/kernel/tracing/tracing_thresh\x00', 0x40401, 0x0) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/netfilter/nf_conntrack_sctp_timeout_shutdown_ack_sent\x00', 0x2000, 0x0) read$auto(r3, 0x0, 0x1ff) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) sendmmsg$auto(r1, &(0x7f0000000100)={{&(0x7f00000001c0)="81fa1d2558e78686559b5263f9bad5c51f47e7b87bbd7112160433ecb7be3bbc0bbade37c83206d39c75dd71cfb29a6a55654d26aad2b5a5c5c4b59096a3a2578af1baf0494508a840", 0x6, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0xffffffffffffffff, 0xb}, 0xfff}, 0x5, 0x311) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) kexec_load$auto(0x5, 0x2, 0x0, 0x4) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) sysfs$auto(0x2, 0x2000000000040, 0x0) r5 = fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0005, 0x19) fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb4, r2, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xfffffdcb, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x200040c4}, 0x440c5) setfsuid$auto(0xee00) 694.866898ms ago: executing program 1 (id=466): openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r0, 0x4018620d, 0x9) r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) ioctl$auto(r1, 0x4018620d, 0x9) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) write$auto(0x3, 0x0, 0x800) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) setrlimit$auto(0xb, 0x0) r2 = getpid() mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000040)="32e3eec48051c4cc1b23", 0xfff}, 0x3) r4 = gettid() rt_tgsigqueueinfo$auto(r2, r4, 0x21, 0x0) 426.927842ms ago: executing program 2 (id=467): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r4 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r4, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2c, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0) read$auto(r5, 0x0, 0xb4d3) r6 = pidfd_open$auto(0x1, 0x0) setns(r6, 0x60020000) mount$auto(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x24000, 0x0) unshare$auto(0x40000080) socket(0xa, 0x3, 0x3a) mmap$auto(0xffffffff00000000, 0x2020007, 0x0, 0x100000eb1, r1, 0x529) fsopen$auto(0x0, 0x1) socket(0xa, 0x3, 0x88) 0s ago: executing program 0 (id=468): r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) mmap$auto(0x0, 0x100, 0x2, 0x9b72, 0x7, 0x28000) (async, rerun: 32) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) (async) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) fsconfig$auto_JFFS2_COMPR_MODE_NONE(r0, 0x53, 0x0, 0x0, 0x0) (async) mmap$auto(0xfffffffffffffffc, 0x9, 0x4, 0x9000000eb1, 0xfffffffffffffffa, 0x7) (async, rerun: 64) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/cpu/cpu0/hotplug/state\x00', 0x0, 0x0) (rerun: 64) pread64$auto(r1, 0x0, 0x100000001, 0x9) (async) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r2, &(0x7f0000000280)='/\xff\xf2\x00\xc8\xe4\x85;\xe9\xd8\xff\x01S', 0x80000000) (async) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r4, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYRESHEX=r4], 0x34}}, 0x82) write$auto(r2, 0x0, 0x2) (async, rerun: 64) fdatasync$auto(0xffffffffffffffff) (async, rerun: 64) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) ioctl$auto_BLKZEROOUT(r5, 0x127f, 0x0) (async) r6 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x383101, 0x0) getsockopt$auto_SO_PEEK_OFF(r6, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6) (async, rerun: 32) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/controlC0\x00', 0x15d080, 0x0) (rerun: 32) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0xc3400, 0x0) (async) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3dc) (async) getcwd$auto(&(0x7f0000000540)='/sys/devices/\xde\xe7/xot\xfa\xec\x8f\xa4/}tate\x00X\xa0\xf7\xc7\x87\x92\xc9.2\x97R\xf4\xe6s\x00\xcf\x93\x1d\xe0K\xec\xacc$o\xf0\xa8\x93\x93\xe67U\xfb\xe1se\xfewZ\x03\x00\xaf\xc8$\x15\xc7\xd4\xcb\x92\x01\xecsP\x9aSM\xff\xf8\f\xcd3_oZ\x80\xdb\a\xbbY\xb7\xe9`\x1cV\xcdZ\xca\x89\x99# [ 109.498339][ T5920] dump_stack_lvl+0x16c/0x1f0 [ 109.498400][ T5920] should_fail_ex+0x512/0x640 [ 109.498443][ T5920] get_futex_key+0x1085/0x15f0 [ 109.498483][ T5920] ? __pfx_get_futex_key+0x10/0x10 [ 109.498526][ T5920] futex_wake+0xea/0x530 [ 109.498567][ T5920] ? __pfx_futex_wake+0x10/0x10 [ 109.498627][ T5920] do_futex+0x1e3/0x350 [ 109.498659][ T5920] ? __pfx_do_futex+0x10/0x10 [ 109.498687][ T5920] ? __might_fault+0xe3/0x190 [ 109.498728][ T5920] mm_release+0x24e/0x300 [ 109.498766][ T5920] do_exit+0x69e/0x2bd0 [ 109.498798][ T5920] ? __pfx_do_exit+0x10/0x10 [ 109.498823][ T5920] ? do_raw_spin_lock+0x12c/0x2b0 [ 109.498856][ T5920] ? find_held_lock+0x2b/0x80 [ 109.498897][ T5920] do_group_exit+0xd3/0x2a0 [ 109.498926][ T5920] get_signal+0x2671/0x26d0 [ 109.498977][ T5920] ? __pfx_get_signal+0x10/0x10 [ 109.499022][ T5920] ? do_futex+0x122/0x350 [ 109.499060][ T5920] arch_do_signal_or_restart+0x8f/0x7a0 [ 109.499102][ T5920] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 109.499150][ T5920] ? fput+0x70/0xf0 [ 109.499176][ T5920] ? __pfx___x64_sys_futex+0x10/0x10 [ 109.499218][ T5920] exit_to_user_mode_loop+0x8c/0x540 [ 109.499256][ T5920] do_syscall_64+0x4ee/0xf80 [ 109.499304][ T5920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.499332][ T5920] RIP: 0033:0x7f8ec418f7c9 [ 109.499362][ T5920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.499388][ T5920] RSP: 002b:00007f8ec4ff90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 109.499413][ T5920] RAX: fffffffffffffe00 RBX: 00007f8ec43e5fa8 RCX: 00007f8ec418f7c9 [ 109.499431][ T5920] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8ec43e5fa8 [ 109.499447][ T5920] RBP: 00007f8ec43e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 109.499464][ T5920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.499479][ T5920] R13: 00007f8ec43e6038 R14: 00007ffd559eae10 R15: 00007ffd559eaef8 [ 109.499514][ T5920] [ 110.030111][ T5941] netlink: 'syz.2.8': attribute type 11 has an invalid length. [ 110.237398][ T5951] netlink: 330 bytes leftover after parsing attributes in process `syz.0.10'. [ 110.315047][ T5951] mac80211_hwsim hwsim2 in: renamed from wlan0 (while UP) [ 110.433653][ T5839] Bluetooth: hci0: command tx timeout [ 110.673613][ T5839] Bluetooth: hci2: command tx timeout [ 110.683894][ T5839] Bluetooth: hci1: command tx timeout [ 110.764152][ T5839] Bluetooth: hci3: command tx timeout [ 110.798292][ T5960] netlink: 'syz.0.11': attribute type 11 has an invalid length. [ 110.839947][ T5948] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 110.900591][ T5963] random: crng reseeded on system resumption [ 110.947315][ T5940] FAULT_INJECTION: forcing a failure. [ 110.947315][ T5940] name fail_futex, interval 1, probability 0, space 0, times 0 [ 110.961670][ T5940] CPU: 0 UID: 0 PID: 5940 Comm: syz.1.9 Not tainted syzkaller #0 PREEMPT(full) [ 110.961710][ T5940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 110.961727][ T5940] Call Trace: [ 110.961737][ T5940] [ 110.961749][ T5940] dump_stack_lvl+0x16c/0x1f0 [ 110.961805][ T5940] should_fail_ex+0x512/0x640 [ 110.961846][ T5940] get_futex_key+0x1085/0x15f0 [ 110.961884][ T5940] ? __pfx_get_futex_key+0x10/0x10 [ 110.961930][ T5940] futex_wake+0xea/0x530 [ 110.961977][ T5940] ? __pfx_futex_wake+0x10/0x10 [ 110.962039][ T5940] do_futex+0x1e3/0x350 [ 110.962076][ T5940] ? __pfx_do_futex+0x10/0x10 [ 110.962108][ T5940] ? __might_fault+0xe3/0x190 [ 110.962156][ T5940] mm_release+0x24e/0x300 [ 110.962199][ T5940] do_exit+0x69e/0x2bd0 [ 110.962237][ T5940] ? __pfx_do_exit+0x10/0x10 [ 110.962267][ T5940] ? do_raw_spin_lock+0x12c/0x2b0 [ 110.962305][ T5940] ? find_held_lock+0x2b/0x80 [ 110.962352][ T5940] do_group_exit+0xd3/0x2a0 [ 110.962385][ T5940] get_signal+0x2671/0x26d0 [ 110.962445][ T5940] ? __pfx_get_signal+0x10/0x10 [ 110.962502][ T5940] ? do_futex+0x122/0x350 [ 110.962542][ T5940] arch_do_signal_or_restart+0x8f/0x7a0 [ 110.962589][ T5940] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 110.962639][ T5940] ? fput+0x70/0xf0 [ 110.962667][ T5940] ? __pfx___x64_sys_futex+0x10/0x10 [ 110.962708][ T5940] exit_to_user_mode_loop+0x8c/0x540 [ 110.962750][ T5940] do_syscall_64+0x4ee/0xf80 [ 110.962800][ T5940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.962829][ T5940] RIP: 0033:0x7f756e18f7c9 [ 110.962851][ T5940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 110.962880][ T5940] RSP: 002b:00007f756f02c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 110.962909][ T5940] RAX: fffffffffffffe00 RBX: 00007f756e3e5fa8 RCX: 00007f756e18f7c9 [ 110.962928][ T5940] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f756e3e5fa8 [ 110.962947][ T5940] RBP: 00007f756e3e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 110.962965][ T5940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 110.962984][ T5940] R13: 00007f756e3e6038 R14: 00007ffccd326cb0 R15: 00007ffccd326d98 [ 110.963027][ T5940] [ 111.248449][ T30] audit: type=1800 audit(1768048393.521:2): pid=5965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.13" name="members" dev="configfs" ino=8241 res=0 errno=0 [ 111.665266][ T5974] netlink: 'syz.3.15': attribute type 11 has an invalid length. [ 112.325028][ T5977] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16'. [ 112.397306][ T5977] FAULT_INJECTION: forcing a failure. [ 112.397306][ T5977] name fail_futex, interval 1, probability 0, space 0, times 0 [ 112.410569][ T5977] CPU: 1 UID: 0 PID: 5977 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT(full) [ 112.410599][ T5977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 112.410612][ T5977] Call Trace: [ 112.410620][ T5977] [ 112.410628][ T5977] dump_stack_lvl+0x16c/0x1f0 [ 112.410677][ T5977] should_fail_ex+0x512/0x640 [ 112.410707][ T5977] get_futex_key+0x1085/0x15f0 [ 112.410736][ T5977] ? __pfx_get_futex_key+0x10/0x10 [ 112.410776][ T5977] futex_wake+0xea/0x530 [ 112.410812][ T5977] ? __pfx_futex_wake+0x10/0x10 [ 112.410856][ T5977] do_futex+0x1e3/0x350 [ 112.410883][ T5977] ? __pfx_do_futex+0x10/0x10 [ 112.410907][ T5977] ? __might_fault+0xe3/0x190 [ 112.410942][ T5977] mm_release+0x24e/0x300 [ 112.410974][ T5977] do_exit+0x69e/0x2bd0 [ 112.411001][ T5977] ? __pfx_do_exit+0x10/0x10 [ 112.411022][ T5977] ? do_raw_spin_lock+0x12c/0x2b0 [ 112.411048][ T5977] ? find_held_lock+0x2b/0x80 [ 112.411083][ T5977] do_group_exit+0xd3/0x2a0 [ 112.411107][ T5977] get_signal+0x2671/0x26d0 [ 112.411149][ T5977] ? __pfx_get_signal+0x10/0x10 [ 112.411184][ T5977] ? do_futex+0x122/0x350 [ 112.411212][ T5977] arch_do_signal_or_restart+0x8f/0x7a0 [ 112.411247][ T5977] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 112.411287][ T5977] ? fput+0x70/0xf0 [ 112.411308][ T5977] ? __pfx___x64_sys_futex+0x10/0x10 [ 112.411349][ T5977] exit_to_user_mode_loop+0x8c/0x540 [ 112.411383][ T5977] do_syscall_64+0x4ee/0xf80 [ 112.411423][ T5977] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.411446][ T5977] RIP: 0033:0x7f8ec418f7c9 [ 112.411463][ T5977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.411484][ T5977] RSP: 002b:00007f8ec4ff90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 112.411504][ T5977] RAX: fffffffffffffe00 RBX: 00007f8ec43e5fa8 RCX: 00007f8ec418f7c9 [ 112.411519][ T5977] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8ec43e5fa8 [ 112.411532][ T5977] RBP: 00007f8ec43e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 112.411545][ T5977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.411558][ T5977] R13: 00007f8ec43e6038 R14: 00007ffd559eae10 R15: 00007ffd559eaef8 [ 112.411587][ T5977] [ 113.263914][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 113.393914][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 113.816724][ T6011] netlink: 330 bytes leftover after parsing attributes in process `syz.1.21'. [ 113.915554][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 113.917456][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.023894][ T6011] mac80211_hwsim hwsim4 in: renamed from wlan0 (while UP) [ 114.034507][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 114.054068][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 114.062664][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 115.075735][ T6023] netlink: 'syz.3.24': attribute type 11 has an invalid length. [ 115.497361][ T6038] random: crng reseeded on system resumption [ 115.556700][ T6029] netlink: 20 bytes leftover after parsing attributes in process `syz.1.26'. [ 116.482661][ T6053] netlink: 'syz.1.30': attribute type 11 has an invalid length. [ 118.946734][ T6082] random: crng reseeded on system resumption [ 119.023768][ T6076] mmap: syz.0.33 (6076) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 120.081955][ T6092] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 120.523634][ T30] audit: type=1800 audit(1768048402.751:3): pid=6105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.39" name="members" dev="configfs" ino=8151 res=0 errno=0 [ 121.203920][ T6109] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 121.419405][ T6064] kexec: Could not allocate control_code_buffer [ 121.444790][ T30] audit: type=1800 audit(1768048403.731:4): pid=6122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.42" name="members" dev="configfs" ino=8189 res=0 errno=0 [ 121.453474][ T6123] netlink: 'syz.2.43': attribute type 11 has an invalid length. [ 121.913126][ T6131] netlink: 330 bytes leftover after parsing attributes in process `syz.2.45'. [ 122.460877][ T6141] netlink: 'syz.2.48': attribute type 11 has an invalid length. [ 123.284048][ T6151] ubi31: attaching mtd0 [ 123.320930][ T6151] ubi31: scanning is finished [ 123.343907][ T6151] ubi31: empty MTD device detected [ 123.649160][ T6151] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 123.736084][ T6151] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3518 bytes [ 123.863663][ T6151] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 123.871792][ T6160] netlink: 'syz.1.51': attribute type 11 has an invalid length. [ 124.119049][ T6151] ubi31: VID header offset: 514 (aligned 514), data offset: 578 [ 124.192772][ T6151] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 124.210040][ T6151] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 20 [ 124.294458][ T6151] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2223172825 [ 124.403651][ T6151] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 124.471443][ T6164] netlink: 'syz.0.52': attribute type 11 has an invalid length. [ 124.494575][ T6158] ubi31: background thread "ubi_bgt31d" started, PID 6158 [ 125.083068][ T6168] netlink: 'syz.1.53': attribute type 11 has an invalid length. [ 125.705330][ T6181] capability: warning: `syz.1.56' uses 32-bit capabilities (legacy support in use) [ 126.209390][ T6188] binder: BINDER_SET_CONTEXT_MGR already set [ 126.229936][ T6188] binder: 6183:6188 ioctl 4018620d 9 returned -16 [ 127.616996][ T6205] netlink: 330 bytes leftover after parsing attributes in process `syz.1.59'. [ 128.784714][ T6224] random: crng reseeded on system resumption [ 129.168373][ T6227] usbip-vudc usbip-vudc.0: gadget not bound [ 130.360998][ T6246] random: crng reseeded on system resumption [ 131.525132][ T6260] netlink: 'syz.3.72': attribute type 11 has an invalid length. [ 132.453099][ T6272] binder: BINDER_SET_CONTEXT_MGR already set [ 132.596193][ T6272] binder: 6268:6272 ioctl 4018620d 9 returned -16 [ 133.867199][ T6244] kexec: Could not allocate control_code_buffer [ 134.736994][ T6306] netlink: 'syz.2.80': attribute type 11 has an invalid length. [ 134.940636][ T6307] netlink: 'syz.1.81': attribute type 11 has an invalid length. [ 135.640738][ T6318] random: crng reseeded on system resumption [ 136.638701][ T6325] binder: BINDER_SET_CONTEXT_MGR already set [ 136.703602][ T6325] binder: 6324:6325 ioctl 4018620d 9 returned -16 [ 137.232544][ T6343] random: crng reseeded on system resumption [ 139.058750][ T6371] netlink: 330 bytes leftover after parsing attributes in process `syz.3.93'. [ 139.073651][ T6371] mac80211_hwsim hwsim8 in: renamed from wlan0 (while UP) [ 139.186132][ T6369] FAULT_INJECTION: forcing a failure. [ 139.186132][ T6369] name fail_futex, interval 1, probability 0, space 0, times 0 [ 139.200496][ T6369] CPU: 1 UID: 0 PID: 6369 Comm: syz.2.92 Not tainted syzkaller #0 PREEMPT(full) [ 139.200537][ T6369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 139.200556][ T6369] Call Trace: [ 139.200566][ T6369] [ 139.200578][ T6369] dump_stack_lvl+0x16c/0x1f0 [ 139.200665][ T6369] should_fail_ex+0x512/0x640 [ 139.200709][ T6369] get_futex_key+0x1085/0x15f0 [ 139.200749][ T6369] ? __pfx_get_futex_key+0x10/0x10 [ 139.200799][ T6369] futex_wake+0xea/0x530 [ 139.200847][ T6369] ? __pfx_futex_wake+0x10/0x10 [ 139.200910][ T6369] do_futex+0x1e3/0x350 [ 139.200948][ T6369] ? __pfx_do_futex+0x10/0x10 [ 139.200982][ T6369] ? __might_fault+0xe3/0x190 [ 139.201030][ T6369] mm_release+0x24e/0x300 [ 139.201087][ T6369] do_exit+0x69e/0x2bd0 [ 139.201125][ T6369] ? __pfx_do_exit+0x10/0x10 [ 139.201154][ T6369] ? do_raw_spin_lock+0x12c/0x2b0 [ 139.201190][ T6369] ? find_held_lock+0x2b/0x80 [ 139.201237][ T6369] do_group_exit+0xd3/0x2a0 [ 139.201270][ T6369] get_signal+0x2671/0x26d0 [ 139.201326][ T6369] ? __pfx_get_signal+0x10/0x10 [ 139.201373][ T6369] ? do_futex+0x122/0x350 [ 139.201412][ T6369] arch_do_signal_or_restart+0x8f/0x7a0 [ 139.201459][ T6369] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 139.201514][ T6369] ? fput+0x70/0xf0 [ 139.201543][ T6369] ? __pfx___x64_sys_futex+0x10/0x10 [ 139.201585][ T6369] exit_to_user_mode_loop+0x8c/0x540 [ 139.201628][ T6369] do_syscall_64+0x4ee/0xf80 [ 139.201688][ T6369] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.201720][ T6369] RIP: 0033:0x7fc4b818f7c9 [ 139.201767][ T6369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.201798][ T6369] RSP: 002b:00007fc4b63f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 139.201827][ T6369] RAX: fffffffffffffe00 RBX: 00007fc4b83e6098 RCX: 00007fc4b818f7c9 [ 139.201848][ T6369] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc4b83e6098 [ 139.201866][ T6369] RBP: 00007fc4b83e6090 R08: 0000000000000000 R09: 0000000000000000 [ 139.201895][ T6369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 139.201914][ T6369] R13: 00007fc4b83e6128 R14: 00007ffee67efac0 R15: 00007ffee67efba8 [ 139.201955][ T6369] [ 139.607079][ T6331] kexec: Could not allocate control_code_buffer [ 139.824262][ T6377] netlink: 'syz.2.94': attribute type 11 has an invalid length. [ 140.075610][ T6385] random: crng reseeded on system resumption [ 141.017025][ T6399] random: crng reseeded on system resumption [ 141.265136][ T30] audit: type=1800 audit(1768048423.551:5): pid=6402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.99" name="members" dev="configfs" ino=10465 res=0 errno=0 [ 141.607197][ T6411] netlink: 'syz.1.101': attribute type 11 has an invalid length. [ 142.351536][ T6423] netlink: 'syz.3.103': attribute type 11 has an invalid length. [ 142.696572][ T6425] binder: BINDER_SET_CONTEXT_MGR already set [ 142.702631][ T6425] binder: 6424:6425 ioctl 4018620d 9 returned -16 [ 143.248973][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.264359][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 143.891979][ T6449] netlink: 'syz.1.107': attribute type 11 has an invalid length. [ 144.838381][ T6405] kexec: Could not allocate control_code_buffer [ 145.108617][ T6468] process 'syz.3.110' launched './file0' with NULL argv: empty string added [ 145.219861][ T6470] binder: BINDER_SET_CONTEXT_MGR already set [ 145.342142][ T6481] random: crng reseeded on system resumption [ 145.358825][ T6470] binder: 6469:6470 ioctl 4018620d 9 returned -16 [ 146.265848][ T6488] binder: BINDER_SET_CONTEXT_MGR already set [ 146.338237][ T6488] binder: 6487:6488 ioctl 4018620d 9 returned -16 [ 147.138651][ T6513] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.273841][ T6523] binder: BINDER_SET_CONTEXT_MGR already set [ 147.281576][ T6523] binder: 6518:6523 ioctl 4018620d 9 returned -16 [ 147.453386][ T6520] FAULT_INJECTION: forcing a failure. [ 147.453386][ T6520] name failslab, interval 1, probability 0, space 0, times 0 [ 147.514025][ T6520] CPU: 0 UID: 0 PID: 6520 Comm: syz.2.119 Not tainted syzkaller #0 PREEMPT(full) [ 147.514066][ T6520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 147.514084][ T6520] Call Trace: [ 147.514094][ T6520] [ 147.514105][ T6520] dump_stack_lvl+0x16c/0x1f0 [ 147.514159][ T6520] should_fail_ex+0x512/0x640 [ 147.514194][ T6520] ? nf_hook+0x3aa/0x680 [ 147.514245][ T6520] should_failslab+0xc2/0x120 [ 147.514294][ T6520] kmem_cache_alloc_noprof+0x83/0x770 [ 147.514333][ T6520] ? skb_clone+0x190/0x3f0 [ 147.514378][ T6520] ? skb_clone+0x190/0x3f0 [ 147.514414][ T6520] skb_clone+0x190/0x3f0 [ 147.514453][ T6520] ip_mc_output+0x585/0xc40 [ 147.514485][ T6520] ip_push_pending_frames+0x419/0x5d0 [ 147.514519][ T6520] raw_sendmsg+0x1473/0x34f0 [ 147.514564][ T6520] ? __pfx_raw_sendmsg+0x10/0x10 [ 147.514603][ T6520] ? __lock_acquire+0x436/0x2890 [ 147.514677][ T6520] ? __pfx_raw_sendmsg+0x10/0x10 [ 147.514714][ T6520] inet_sendmsg+0x11c/0x140 [ 147.514750][ T6520] sock_write_iter+0x509/0x610 [ 147.514778][ T6520] ? __pfx_sock_write_iter+0x10/0x10 [ 147.514816][ T6520] ? bpf_lsm_file_permission+0x9/0x10 [ 147.514849][ T6520] ? security_file_permission+0x71/0x210 [ 147.514888][ T6520] ? rw_verify_area+0xcf/0x6c0 [ 147.514927][ T6520] vfs_write+0x7d3/0x11d0 [ 147.514967][ T6520] ? __pfx_sock_write_iter+0x10/0x10 [ 147.514997][ T6520] ? __pfx_vfs_write+0x10/0x10 [ 147.515041][ T6520] ? find_held_lock+0x2b/0x80 [ 147.515097][ T6520] ksys_write+0x1f8/0x250 [ 147.515136][ T6520] ? __pfx_ksys_write+0x10/0x10 [ 147.515186][ T6520] do_syscall_64+0xcd/0xf80 [ 147.515233][ T6520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.515261][ T6520] RIP: 0033:0x7fc4b818f7c9 [ 147.515282][ T6520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.515308][ T6520] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 147.515333][ T6520] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 147.515351][ T6520] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000003 [ 147.515366][ T6520] RBP: 00007fc4b8f59090 R08: 0000000000000000 R09: 0000000000000000 [ 147.515382][ T6520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 147.515398][ T6520] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 147.515433][ T6520] [ 148.337864][ T6546] binder: BINDER_SET_CONTEXT_MGR already set [ 148.384419][ T6546] binder: 6545:6546 ioctl 4018620d 9 returned -16 [ 148.579845][ T6552] FAULT_INJECTION: forcing a failure. [ 148.579845][ T6552] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 148.601674][ T6552] CPU: 0 UID: 0 PID: 6552 Comm: syz.2.122 Not tainted syzkaller #0 PREEMPT(full) [ 148.601715][ T6552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 148.601728][ T6552] Call Trace: [ 148.601736][ T6552] [ 148.601744][ T6552] dump_stack_lvl+0x16c/0x1f0 [ 148.601785][ T6552] should_fail_ex+0x512/0x640 [ 148.601816][ T6552] should_fail_alloc_page+0xe7/0x130 [ 148.601854][ T6552] prepare_alloc_pages+0x401/0x670 [ 148.601892][ T6552] ? rcu_is_watching+0x12/0xc0 [ 148.601927][ T6552] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 148.601967][ T6552] ? mas_next_slot+0x12d3/0x1cb0 [ 148.601998][ T6552] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 148.602031][ T6552] ? mas_find+0x156/0x6d0 [ 148.602058][ T6552] ? __lock_acquire+0x436/0x2890 [ 148.602083][ T6552] ? __lock_acquire+0x436/0x2890 [ 148.602104][ T6552] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 148.602142][ T6552] ? policy_nodemask+0xea/0x4e0 [ 148.602181][ T6552] alloc_pages_mpol+0x1fb/0x550 [ 148.602219][ T6552] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 148.602266][ T6552] folio_alloc_mpol_noprof+0x36/0x2f0 [ 148.602298][ T6552] vma_alloc_folio_noprof+0xed/0x1e0 [ 148.602323][ T6552] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 148.602361][ T6552] do_anonymous_page+0xc81/0x2190 [ 148.602409][ T6552] __handle_mm_fault+0x1ecf/0x2bb0 [ 148.602439][ T6552] ? __pfx___handle_mm_fault+0x10/0x10 [ 148.602464][ T6552] ? __pte_offset_map_lock+0x174/0x310 [ 148.602496][ T6552] ? find_held_lock+0x2b/0x80 [ 148.602532][ T6552] ? follow_page_pte+0x5cf/0x1390 [ 148.602571][ T6552] handle_mm_fault+0x3fe/0xad0 [ 148.602598][ T6552] __get_user_pages+0x54e/0x3590 [ 148.602642][ T6552] ? __pfx___get_user_pages+0x10/0x10 [ 148.602683][ T6552] populate_vma_page_range+0x267/0x3f0 [ 148.602727][ T6552] ? __pfx_populate_vma_page_range+0x10/0x10 [ 148.602763][ T6552] ? __pfx_find_vma_intersection+0x10/0x10 [ 148.602804][ T6552] __mm_populate+0x1d8/0x380 [ 148.602842][ T6552] ? __pfx___mm_populate+0x10/0x10 [ 148.602880][ T6552] ? up_write+0x282/0x4e0 [ 148.602907][ T6552] vm_mmap_pgoff+0x37f/0x470 [ 148.602963][ T6552] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 148.602999][ T6552] ? __fget_files+0x20e/0x3c0 [ 148.603040][ T6552] ksys_mmap_pgoff+0x7d/0x5c0 [ 148.603073][ T6552] ? __pfx_ksys_write+0x10/0x10 [ 148.603110][ T6552] __x64_sys_mmap+0x125/0x190 [ 148.603137][ T6552] do_syscall_64+0xcd/0xf80 [ 148.603176][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.603199][ T6552] RIP: 0033:0x7fc4b818f7c9 [ 148.603217][ T6552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.603238][ T6552] RSP: 002b:00007fc4b63f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 148.603259][ T6552] RAX: ffffffffffffffda RBX: 00007fc4b83e6090 RCX: 00007fc4b818f7c9 [ 148.603273][ T6552] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 148.603286][ T6552] RBP: 00007fc4b63f6090 R08: 0000000000000007 R09: 0000000000028000 [ 148.603300][ T6552] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 148.603313][ T6552] R13: 00007fc4b83e6128 R14: 00007fc4b83e6090 R15: 00007ffee67efba8 [ 148.603342][ T6552] [ 149.187829][ T6555] netlink: 330 bytes leftover after parsing attributes in process `syz.0.123'. [ 149.886649][ T6572] netlink: 330 bytes leftover after parsing attributes in process `syz.0.127'. [ 151.125098][ T6606] random: crng reseeded on system resumption [ 151.361511][ T6581] NFSD: Failed to start, no listeners configured. [ 152.569056][ T6621] binder: BINDER_SET_CONTEXT_MGR already set [ 152.619120][ T6621] binder: 6620:6621 ioctl 4018620d 9 returned -16 [ 153.592752][ T6638] netlink: 'syz.2.133': attribute type 33 has an invalid length. [ 153.614406][ T6638] netlink: 322 bytes leftover after parsing attributes in process `syz.2.133'. [ 154.441389][ T6642] kexec: Could not allocate control_code_buffer [ 154.814511][ T6674] random: crng reseeded on system resumption [ 155.310479][ T6679] binder: 6678:6679 ioctl 2000000 5 returned -22 [ 155.846548][ T6695] netlink: 330 bytes leftover after parsing attributes in process `syz.0.145'. [ 158.140665][ T6708] kexec: Could not allocate control_code_buffer [ 158.469883][ T6739] hub 1-0:1.0: USB hub found [ 158.486895][ T6739] hub 1-0:1.0: 1 port detected [ 159.503210][ T6752] netlink: 28 bytes leftover after parsing attributes in process `syz.1.157'. [ 161.753670][ T6777] binder: BINDER_SET_CONTEXT_MGR already set [ 161.763602][ T6777] binder: 6776:6777 ioctl 4018620d 9 returned -16 [ 162.134383][ T30] audit: type=1326 audit(1768048444.411:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6786 comm="syz.1.164" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f756e18f7c9 code=0x0 [ 163.741126][ T6813] syz.3.171 uses obsolete (PF_INET,SOCK_PACKET) [ 164.417423][ T6813] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 164.448790][ T6813] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 164.499533][ T6813] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 164.521645][ T6813] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 164.539876][ T6813] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 164.618754][ T6831] netlink: 330 bytes leftover after parsing attributes in process `syz.0.173'. [ 164.631479][ T6813] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 164.651673][ T6813] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 164.668368][ T6813] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 164.695872][ T6813] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 164.724431][ T6813] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 164.737850][ T6813] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 164.757367][ T6813] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 164.835398][ T6833] input: jJǸ-9%vJ86 as /devices/virtual/input/input6 [ 164.904668][ T6835] FAULT_INJECTION: forcing a failure. [ 164.904668][ T6835] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 164.983917][ T6835] CPU: 1 UID: 0 PID: 6835 Comm: syz.2.175 Not tainted syzkaller #0 PREEMPT(full) [ 164.983951][ T6835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 164.983965][ T6835] Call Trace: [ 164.983973][ T6835] [ 164.983982][ T6835] dump_stack_lvl+0x16c/0x1f0 [ 164.984034][ T6835] should_fail_ex+0x512/0x640 [ 164.984073][ T6835] _copy_from_user+0x2e/0xd0 [ 164.984121][ T6835] vhost_net_ioctl+0x2ef/0x1850 [ 164.984167][ T6835] ? do_vfs_ioctl+0x128/0x14f0 [ 164.984205][ T6835] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 164.984244][ T6835] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 164.984285][ T6835] ? find_held_lock+0x2b/0x80 [ 164.984322][ T6835] ? hook_file_ioctl_common+0x144/0x410 [ 164.984365][ T6835] ? __fget_files+0x20e/0x3c0 [ 164.984410][ T6835] ? __pfx_vhost_net_ioctl+0x10/0x10 [ 164.984446][ T6835] __x64_sys_ioctl+0x18e/0x210 [ 164.984482][ T6835] do_syscall_64+0xcd/0xf80 [ 164.984531][ T6835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.984562][ T6835] RIP: 0033:0x7fc4b818f7c9 [ 164.984586][ T6835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.984615][ T6835] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 164.984644][ T6835] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 164.984664][ T6835] RDX: 0000200000000080 RSI: 000000004008af25 RDI: 000000000000000a [ 164.984683][ T6835] RBP: 00007fc4b8f59090 R08: 0000000000000000 R09: 0000000000000000 [ 164.984702][ T6835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 164.984720][ T6835] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 164.984769][ T6835] [ 165.744483][ T6853] FAULT_INJECTION: forcing a failure. [ 165.744483][ T6853] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 165.773874][ T6853] CPU: 0 UID: 0 PID: 6853 Comm: syz.1.179 Not tainted syzkaller #0 PREEMPT(full) [ 165.773909][ T6853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 165.773925][ T6853] Call Trace: [ 165.773934][ T6853] [ 165.773943][ T6853] dump_stack_lvl+0x16c/0x1f0 [ 165.773991][ T6853] should_fail_ex+0x512/0x640 [ 165.774026][ T6853] _copy_from_user+0x2e/0xd0 [ 165.774057][ T6853] blkpg_do_ioctl+0xe1/0x430 [ 165.774091][ T6853] ? __pfx_blkpg_do_ioctl+0x10/0x10 [ 165.774122][ T6853] ? rcu_is_watching+0x12/0xc0 [ 165.774172][ T6853] ? __might_fault+0xe3/0x190 [ 165.774222][ T6853] ? __might_fault+0xe3/0x190 [ 165.774251][ T6853] ? __might_fault+0x13b/0x190 [ 165.774295][ T6853] blkdev_ioctl+0x182/0x6e0 [ 165.774330][ T6853] ? __pfx_blkdev_ioctl+0x10/0x10 [ 165.774371][ T6853] ? __pfx_blkdev_ioctl+0x10/0x10 [ 165.774421][ T6853] __x64_sys_ioctl+0x18e/0x210 [ 165.774464][ T6853] do_syscall_64+0xcd/0xf80 [ 165.774519][ T6853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.774553][ T6853] RIP: 0033:0x7f756e18f7c9 [ 165.774578][ T6853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.774608][ T6853] RSP: 002b:00007f756f02c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 165.774637][ T6853] RAX: ffffffffffffffda RBX: 00007f756e3e5fa0 RCX: 00007f756e18f7c9 [ 165.774656][ T6853] RDX: 0000000000000300 RSI: 0000000000001269 RDI: 0000000000000003 [ 165.774673][ T6853] RBP: 00007f756f02c090 R08: 0000000000000000 R09: 0000000000000000 [ 165.774691][ T6853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 165.774707][ T6853] R13: 00007f756e3e6038 R14: 00007f756e3e5fa0 R15: 00007ffccd326d98 [ 165.774744][ T6853] [ 165.893654][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 166.315877][ T6862] netlink: 330 bytes leftover after parsing attributes in process `syz.0.183'. [ 166.603763][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 166.611808][ T6866] netlink: 330 bytes leftover after parsing attributes in process `syz.0.184'. [ 166.673809][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 166.754673][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 166.846131][ T6845] tipc: Started in network mode [ 166.868951][ T6845] tipc: Node identity ee00, cluster identity 4711 [ 166.913277][ T6845] tipc: Node number set to 60928 [ 167.146802][ T6877] tipc: Started in network mode [ 167.151775][ T6877] tipc: Node identity ee00, cluster identity 4711 [ 167.210946][ T6877] tipc: Node number set to 60928 [ 167.365306][ T6885] FAULT_INJECTION: forcing a failure. [ 167.365306][ T6885] name failslab, interval 1, probability 0, space 0, times 0 [ 167.378135][ T6885] CPU: 0 UID: 0 PID: 6885 Comm: syz.2.187 Not tainted syzkaller #0 PREEMPT(full) [ 167.378180][ T6885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 167.378199][ T6885] Call Trace: [ 167.378211][ T6885] [ 167.378224][ T6885] dump_stack_lvl+0x16c/0x1f0 [ 167.378289][ T6885] should_fail_ex+0x512/0x640 [ 167.378327][ T6885] ? __kmalloc_noprof+0xca/0x910 [ 167.378366][ T6885] should_failslab+0xc2/0x120 [ 167.378416][ T6885] __kmalloc_noprof+0xeb/0x910 [ 167.378453][ T6885] ? do_handle_open+0x554/0xd10 [ 167.378509][ T6885] ? do_handle_open+0x554/0xd10 [ 167.378576][ T6885] do_handle_open+0x554/0xd10 [ 167.378632][ T6885] ? __pfx_do_handle_open+0x10/0x10 [ 167.378683][ T6885] ? __x64_sys_futex+0x1e0/0x4c0 [ 167.378731][ T6885] ? xfd_validate_state+0x61/0x180 [ 167.378776][ T6885] ? do_syscall_64+0xcd/0xf80 [ 167.378827][ T6885] do_syscall_64+0xcd/0xf80 [ 167.378884][ T6885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.378918][ T6885] RIP: 0033:0x7fc4b818f7c9 [ 167.378944][ T6885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.378977][ T6885] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 167.379008][ T6885] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 167.379030][ T6885] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000005 [ 167.379050][ T6885] RBP: 00007fc4b8213f91 R08: 0000000000000000 R09: 0000000000000000 [ 167.379070][ T6885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.379090][ T6885] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 167.379135][ T6885] [ 168.033819][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 168.553770][ T36] tipc: Left network mode [ 168.683544][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 168.753658][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 168.849393][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 170.118366][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 170.541912][ T6911] syz.1.191 (6911) used obsolete PPPIOCDETACH ioctl [ 170.764117][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 170.833595][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 170.864662][ T6918] netlink: 330 bytes leftover after parsing attributes in process `syz.3.192'. [ 170.913682][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 171.666243][ T6928] FAULT_INJECTION: forcing a failure. [ 171.666243][ T6928] name failslab, interval 1, probability 0, space 0, times 0 [ 171.686655][ T6928] CPU: 0 UID: 0 PID: 6928 Comm: syz.3.196 Not tainted syzkaller #0 PREEMPT(full) [ 171.686699][ T6928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 171.686716][ T6928] Call Trace: [ 171.686725][ T6928] [ 171.686735][ T6928] dump_stack_lvl+0x16c/0x1f0 [ 171.686787][ T6928] should_fail_ex+0x512/0x640 [ 171.686819][ T6928] ? kmem_cache_alloc_noprof+0x62/0x770 [ 171.686857][ T6928] should_failslab+0xc2/0x120 [ 171.686902][ T6928] kmem_cache_alloc_noprof+0x83/0x770 [ 171.686936][ T6928] ? security_file_alloc+0x34/0x2b0 [ 171.686980][ T6928] ? security_file_alloc+0x34/0x2b0 [ 171.687015][ T6928] security_file_alloc+0x34/0x2b0 [ 171.687061][ T6928] init_file+0x93/0x4c0 [ 171.687090][ T6928] alloc_empty_file+0x73/0x1e0 [ 171.687121][ T6928] alloc_file_pseudo+0x13a/0x230 [ 171.687154][ T6928] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 171.687186][ T6928] ? alloc_fd+0x471/0x7d0 [ 171.687234][ T6928] sock_alloc_file+0x50/0x210 [ 171.687277][ T6928] __sys_socket+0x1c0/0x260 [ 171.687307][ T6928] ? __pfx___sys_socket+0x10/0x10 [ 171.687335][ T6928] ? xfd_validate_state+0x61/0x180 [ 171.687359][ T6928] ? __pfx_do_writev+0x10/0x10 [ 171.687403][ T6928] __x64_sys_socket+0x72/0xb0 [ 171.687430][ T6928] ? lockdep_hardirqs_on+0x7c/0x110 [ 171.687475][ T6928] do_syscall_64+0xcd/0xf80 [ 171.687522][ T6928] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.687551][ T6928] RIP: 0033:0x7fdf97d8f7c9 [ 171.687573][ T6928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.687599][ T6928] RSP: 002b:00007fdf95ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 171.687626][ T6928] RAX: ffffffffffffffda RBX: 00007fdf97fe5fa0 RCX: 00007fdf97d8f7c9 [ 171.687644][ T6928] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 171.687661][ T6928] RBP: 00007fdf97e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 171.687678][ T6928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 171.687695][ T6928] R13: 00007fdf97fe6038 R14: 00007fdf97fe5fa0 R15: 00007ffc63bd5c38 [ 171.687731][ T6928] [ 172.011595][ T6935] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 173.757098][ T6967] FAULT_INJECTION: forcing a failure. [ 173.757098][ T6967] name failslab, interval 1, probability 0, space 0, times 0 [ 173.826590][ T6967] CPU: 0 UID: 0 PID: 6967 Comm: syz.1.204 Not tainted syzkaller #0 PREEMPT(full) [ 173.826633][ T6967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 173.826652][ T6967] Call Trace: [ 173.826662][ T6967] [ 173.826674][ T6967] dump_stack_lvl+0x16c/0x1f0 [ 173.826730][ T6967] should_fail_ex+0x512/0x640 [ 173.826765][ T6967] ? __kvmalloc_node_noprof+0x129/0xa40 [ 173.826811][ T6967] should_failslab+0xc2/0x120 [ 173.826866][ T6967] __kvmalloc_node_noprof+0x14a/0xa40 [ 173.826909][ T6967] ? security_capable+0x7e/0x260 [ 173.826962][ T6967] ? proc_sys_call_handler+0x2d6/0x5b0 [ 173.827004][ T6967] ? ns_capable_noaudit+0xda/0x110 [ 173.827056][ T6967] ? proc_sys_call_handler+0x2d6/0x5b0 [ 173.827099][ T6967] proc_sys_call_handler+0x2d6/0x5b0 [ 173.827147][ T6967] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 173.827192][ T6967] ? copy_splice_read+0x1a8/0xc20 [ 173.827248][ T6967] copy_splice_read+0x618/0xc20 [ 173.827305][ T6967] ? __pfx_copy_splice_read+0x10/0x10 [ 173.827365][ T6967] ? look_up_lock_class+0x59/0x130 [ 173.827425][ T6967] ? lockdep_init_map_type+0x5c/0x270 [ 173.827461][ T6967] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 173.827512][ T6967] ? __pfx_copy_splice_read+0x10/0x10 [ 173.827560][ T6967] do_splice_read+0x285/0x370 [ 173.827617][ T6967] splice_direct_to_actor+0x2a1/0xa30 [ 173.827670][ T6967] ? __pfx_direct_splice_actor+0x10/0x10 [ 173.827729][ T6967] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 173.827777][ T6967] ? get_pid_task+0xfc/0x250 [ 173.827818][ T6967] do_splice_direct+0x174/0x240 [ 173.827876][ T6967] ? __pfx_do_splice_direct+0x10/0x10 [ 173.827931][ T6967] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 173.827987][ T6967] ? rw_verify_area+0xcf/0x6c0 [ 173.828033][ T6967] do_sendfile+0xb06/0xe50 [ 173.828085][ T6967] ? __pfx_do_sendfile+0x10/0x10 [ 173.828132][ T6967] ? __fget_files+0x20e/0x3c0 [ 173.828190][ T6967] __x64_sys_sendfile64+0x1d8/0x220 [ 173.828221][ T6967] ? ksys_write+0x1ac/0x250 [ 173.828267][ T6967] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 173.828318][ T6967] do_syscall_64+0xcd/0xf80 [ 173.828373][ T6967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 173.828407][ T6967] RIP: 0033:0x7f756e18f7c9 [ 173.828446][ T6967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 173.828476][ T6967] RSP: 002b:00007f756f02c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 173.828506][ T6967] RAX: ffffffffffffffda RBX: 00007f756e3e5fa0 RCX: 00007f756e18f7c9 [ 173.828527][ T6967] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 173.828546][ T6967] RBP: 00007f756f02c090 R08: 0000000000000000 R09: 0000000000000000 [ 173.828564][ T6967] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 173.828583][ T6967] R13: 00007f756e3e6038 R14: 00007f756e3e5fa0 R15: 00007ffccd326d98 [ 173.828626][ T6967] [ 174.615569][ T6976] FAULT_INJECTION: forcing a failure. [ 174.615569][ T6976] name failslab, interval 1, probability 0, space 0, times 0 [ 174.629862][ T6976] CPU: 1 UID: 0 PID: 6976 Comm: syz.1.207 Not tainted syzkaller #0 PREEMPT(full) [ 174.629903][ T6976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 174.629921][ T6976] Call Trace: [ 174.629931][ T6976] [ 174.629943][ T6976] dump_stack_lvl+0x16c/0x1f0 [ 174.629998][ T6976] should_fail_ex+0x512/0x640 [ 174.630033][ T6976] ? kmem_cache_alloc_noprof+0x62/0x770 [ 174.630087][ T6976] should_failslab+0xc2/0x120 [ 174.630135][ T6976] kmem_cache_alloc_noprof+0x83/0x770 [ 174.630174][ T6976] ? vm_area_alloc+0x1f/0x160 [ 174.630213][ T6976] ? vm_area_alloc+0x1f/0x160 [ 174.630242][ T6976] vm_area_alloc+0x1f/0x160 [ 174.630273][ T6976] __mmap_region+0x107a/0x2a00 [ 174.630314][ T6976] ? __lock_acquire+0x436/0x2890 [ 174.630343][ T6976] ? __pfx___mmap_region+0x10/0x10 [ 174.630378][ T6976] ? rcu_is_watching+0x12/0xc0 [ 174.630434][ T6976] ? lock_acquire+0x179/0x330 [ 174.630479][ T6976] ? finish_task_switch.isra.0+0x207/0xbd0 [ 174.630600][ T6976] ? rcu_is_watching+0x12/0xc0 [ 174.630654][ T6976] mmap_region+0x1ab/0x3f0 [ 174.630692][ T6976] ? __get_unmapped_area+0x267/0x3f0 [ 174.630744][ T6976] do_mmap+0xa3e/0x1210 [ 174.630821][ T6976] ? __pfx_do_mmap+0x10/0x10 [ 174.630869][ T6976] ? __pfx_down_write_killable+0x10/0x10 [ 174.630914][ T6976] vm_mmap_pgoff+0x29e/0x470 [ 174.630980][ T6976] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 174.631052][ T6976] ? __x64_sys_futex+0x1e0/0x4c0 [ 174.631087][ T6976] ? __x64_sys_futex+0x1e9/0x4c0 [ 174.631129][ T6976] ksys_mmap_pgoff+0x7d/0x5c0 [ 174.631185][ T6976] ? xfd_validate_state+0x61/0x180 [ 174.631212][ T6976] ? __pfx_do_writev+0x10/0x10 [ 174.631260][ T6976] __x64_sys_mmap+0x125/0x190 [ 174.631315][ T6976] do_syscall_64+0xcd/0xf80 [ 174.631370][ T6976] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.631404][ T6976] RIP: 0033:0x7f756e18f7c9 [ 174.631428][ T6976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.631457][ T6976] RSP: 002b:00007f756f00b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 174.631485][ T6976] RAX: ffffffffffffffda RBX: 00007f756e3e6090 RCX: 00007f756e18f7c9 [ 174.631505][ T6976] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 174.631523][ T6976] RBP: 00007f756e213f91 R08: 0000000000000401 R09: 0000000000008000 [ 174.631543][ T6976] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 174.631562][ T6976] R13: 00007f756e3e6128 R14: 00007f756e3e6090 R15: 00007ffccd326d98 [ 174.631605][ T6976] [ 175.271969][ T6996] FAULT_INJECTION: forcing a failure. [ 175.271969][ T6996] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 175.287558][ T6996] CPU: 1 UID: 0 PID: 6996 Comm: syz.2.213 Not tainted syzkaller #0 PREEMPT(full) [ 175.287598][ T6996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 175.287617][ T6996] Call Trace: [ 175.287627][ T6996] [ 175.287639][ T6996] dump_stack_lvl+0x16c/0x1f0 [ 175.287704][ T6996] should_fail_ex+0x512/0x640 [ 175.287747][ T6996] should_fail_alloc_page+0xe7/0x130 [ 175.287800][ T6996] prepare_alloc_pages+0x401/0x670 [ 175.287859][ T6996] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 175.287903][ T6996] ? stack_trace_save+0x8e/0xc0 [ 175.287955][ T6996] ? __pfx_stack_trace_save+0x10/0x10 [ 175.288008][ T6996] ? stack_depot_save_flags+0x29/0x9b0 [ 175.288045][ T6996] ? trace_mm_page_alloc+0x11b/0x180 [ 175.288100][ T6996] ? kasan_save_stack+0x42/0x60 [ 175.288143][ T6996] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 175.288181][ T6996] ? kmem_cache_alloc_noprof+0x25e/0x770 [ 175.288220][ T6996] ? __handle_mm_fault+0xbeb/0x2bb0 [ 175.288252][ T6996] ? do_user_addr_fault+0x7a6/0x1370 [ 175.288289][ T6996] ? exc_page_fault+0x64/0xc0 [ 175.288333][ T6996] ? asm_exc_page_fault+0x26/0x30 [ 175.288363][ T6996] ? rep_movs_alternative+0x4a/0x90 [ 175.288399][ T6996] ? _copy_to_user+0xbb/0xd0 [ 175.288431][ T6996] ? drm_ioctl+0x5eb/0xc30 [ 175.288460][ T6996] ? __x64_sys_ioctl+0x18e/0x210 [ 175.288514][ T6996] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 175.288566][ T6996] ? policy_nodemask+0xea/0x4e0 [ 175.288619][ T6996] alloc_pages_mpol+0x1fb/0x550 [ 175.288671][ T6996] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 175.288755][ T6996] alloc_pages_noprof+0x131/0x390 [ 175.288807][ T6996] pte_alloc_one+0x1e/0x3d0 [ 175.288852][ T6996] __do_fault+0x320/0x490 [ 175.288894][ T6996] do_fault+0x302/0x1ad0 [ 175.288941][ T6996] ? __pfx_filemap_map_pages+0x10/0x10 [ 175.288978][ T6996] ? __pmd_alloc+0x6aa/0x9c0 [ 175.289033][ T6996] __handle_mm_fault+0x1919/0x2bb0 [ 175.289079][ T6996] ? __pfx___handle_mm_fault+0x10/0x10 [ 175.289138][ T6996] ? find_vma+0xbf/0x140 [ 175.289181][ T6996] ? __pfx_find_vma+0x10/0x10 [ 175.289231][ T6996] handle_mm_fault+0x3fe/0xad0 [ 175.289273][ T6996] do_user_addr_fault+0x7a6/0x1370 [ 175.289316][ T6996] ? rcu_is_watching+0x12/0xc0 [ 175.289367][ T6996] exc_page_fault+0x64/0xc0 [ 175.289416][ T6996] asm_exc_page_fault+0x26/0x30 [ 175.289446][ T6996] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 175.289486][ T6996] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 175.289514][ T6996] RSP: 0018:ffffc900045bfd08 EFLAGS: 00050206 [ 175.289539][ T6996] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000 [ 175.289558][ T6996] RDX: 0000000000000000 RSI: ffff888030fa0000 RDI: 0000000000000c35 [ 175.289579][ T6996] RBP: 0000000000000c35 R08: 0000000000000000 R09: ffffed10061f41ff [ 175.289598][ T6996] R10: ffff888030fa0fff R11: 0000000000000000 R12: ffff888030fa0000 [ 175.289619][ T6996] R13: 0000000000001c35 R14: 00007ffffffff000 R15: 0000000000000000 [ 175.289661][ T6996] _copy_to_user+0xbb/0xd0 [ 175.289709][ T6996] drm_ioctl+0x5eb/0xc30 [ 175.289749][ T6996] ? __pfx_drm_wait_vblank_ioctl+0x10/0x10 [ 175.289785][ T6996] ? __pfx_drm_ioctl+0x10/0x10 [ 175.289824][ T6996] ? find_held_lock+0x2b/0x80 [ 175.289888][ T6996] ? __pfx_drm_ioctl+0x10/0x10 [ 175.289922][ T6996] __x64_sys_ioctl+0x18e/0x210 [ 175.289966][ T6996] do_syscall_64+0xcd/0xf80 [ 175.290021][ T6996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.290057][ T6996] RIP: 0033:0x7fc4b818f7c9 [ 175.290081][ T6996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.290107][ T6996] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 175.290132][ T6996] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 175.290149][ T6996] RDX: 0000000000000c35 RSI: 000000009000643a RDI: 0000000000000003 [ 175.290165][ T6996] RBP: 00007fc4b8f59090 R08: 0000000000000000 R09: 0000000000000000 [ 175.290181][ T6996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 175.290197][ T6996] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 175.290232][ T6996] [ 176.002649][ T7003] FAULT_INJECTION: forcing a failure. [ 176.002649][ T7003] name failslab, interval 1, probability 0, space 0, times 0 [ 176.073079][ T7003] CPU: 0 UID: 0 PID: 7003 Comm: syz.2.215 Not tainted syzkaller #0 PREEMPT(full) [ 176.073111][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 176.073124][ T7003] Call Trace: [ 176.073131][ T7003] [ 176.073139][ T7003] dump_stack_lvl+0x16c/0x1f0 [ 176.073181][ T7003] should_fail_ex+0x512/0x640 [ 176.073207][ T7003] ? kmem_cache_alloc_noprof+0x62/0x770 [ 176.073237][ T7003] should_failslab+0xc2/0x120 [ 176.073273][ T7003] kmem_cache_alloc_noprof+0x83/0x770 [ 176.073300][ T7003] ? ptlock_alloc+0x1f/0x70 [ 176.073328][ T7003] ? ptlock_alloc+0x1f/0x70 [ 176.073349][ T7003] ptlock_alloc+0x1f/0x70 [ 176.073371][ T7003] pte_alloc_one+0x84/0x3d0 [ 176.073403][ T7003] do_fault+0x8b8/0x1ad0 [ 176.073436][ T7003] ? __pfx_filemap_map_pages+0x10/0x10 [ 176.073462][ T7003] ? __pmd_alloc+0x6aa/0x9c0 [ 176.073538][ T7003] __handle_mm_fault+0x1919/0x2bb0 [ 176.073582][ T7003] ? __pfx___handle_mm_fault+0x10/0x10 [ 176.073643][ T7003] ? find_vma+0xbf/0x140 [ 176.073676][ T7003] ? __pfx_find_vma+0x10/0x10 [ 176.073713][ T7003] handle_mm_fault+0x3fe/0xad0 [ 176.073742][ T7003] do_user_addr_fault+0x7a6/0x1370 [ 176.073774][ T7003] ? rcu_is_watching+0x12/0xc0 [ 176.073810][ T7003] exc_page_fault+0x64/0xc0 [ 176.073847][ T7003] asm_exc_page_fault+0x26/0x30 [ 176.073870][ T7003] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 176.073900][ T7003] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 176.073921][ T7003] RSP: 0018:ffffc900048dfcf0 EFLAGS: 00050202 [ 176.073945][ T7003] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000078 [ 176.073959][ T7003] RDX: fffff5200091bfc7 RSI: 0000000000000000 RDI: ffffc900048dfdc0 [ 176.073975][ T7003] RBP: 0000000000000078 R08: 0000000000000001 R09: fffff5200091bfc6 [ 176.073989][ T7003] R10: ffffc900048dfe37 R11: ffff8880327229b0 R12: 0000000000000000 [ 176.074004][ T7003] R13: ffffc900048dfdc0 R14: 0000000000000000 R15: 0000000000000000 [ 176.074032][ T7003] _copy_from_user+0x98/0xd0 [ 176.074059][ T7003] io_uring_setup+0xc1/0x1f80 [ 176.074094][ T7003] ? __pfx_io_uring_setup+0x10/0x10 [ 176.074127][ T7003] ? __mutex_unlock_slowpath+0x161/0x790 [ 176.074152][ T7003] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 176.074186][ T7003] ? fput+0x70/0xf0 [ 176.074207][ T7003] ? ksys_write+0x1ac/0x250 [ 176.074239][ T7003] ? __pfx_ksys_write+0x10/0x10 [ 176.074277][ T7003] __x64_sys_io_uring_setup+0xc2/0x170 [ 176.074310][ T7003] do_syscall_64+0xcd/0xf80 [ 176.074348][ T7003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.074370][ T7003] RIP: 0033:0x7fc4b818f7c9 [ 176.074387][ T7003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.074407][ T7003] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 176.074427][ T7003] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 176.074441][ T7003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 176.074453][ T7003] RBP: 00007fc4b8f59090 R08: 0000000000000000 R09: 0000000000000000 [ 176.074466][ T7003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 176.074479][ T7003] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 176.074508][ T7003] [ 177.038939][ T7016] netlink: 8 bytes leftover after parsing attributes in process `syz.3.220'. [ 178.970737][ T7045] netlink: 342 bytes leftover after parsing attributes in process `syz.1.228'. [ 178.985408][ T7045] futex_wake_op: syz.1.228 tries to shift op by -1; fix this program [ 179.841590][ T7057] nfsd: Unknown parameter '^B-' [ 179.841589][ T7059] nfsd: Unknown parameter '^B-' [ 179.985695][ T7025] kexec: Could not allocate control_code_buffer [ 180.116862][ T7068] netlink: 330 bytes leftover after parsing attributes in process `syz.0.236'. [ 180.479403][ T7075] Setting dangerous option i915.mitigations - tainting kernel [ 181.358791][ T7082] FAULT_INJECTION: forcing a failure. [ 181.358791][ T7082] name failslab, interval 1, probability 0, space 0, times 0 [ 181.423312][ T7082] CPU: 1 UID: 0 PID: 7082 Comm: syz.3.241 Tainted: G U syzkaller #0 PREEMPT(full) [ 181.423362][ T7082] Tainted: [U]=USER [ 181.423372][ T7082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 181.423389][ T7082] Call Trace: [ 181.423400][ T7082] [ 181.423423][ T7082] dump_stack_lvl+0x16c/0x1f0 [ 181.423481][ T7082] should_fail_ex+0x512/0x640 [ 181.423523][ T7082] ? fs_reclaim_acquire+0xae/0x150 [ 181.423575][ T7082] should_failslab+0xc2/0x120 [ 181.423621][ T7082] __kmalloc_noprof+0xeb/0x910 [ 181.423656][ T7082] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 181.423710][ T7082] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 181.423754][ T7082] tomoyo_realpath_from_path+0xc2/0x6e0 [ 181.423803][ T7082] ? tomoyo_profile+0x47/0x60 [ 181.423855][ T7082] tomoyo_path_number_perm+0x245/0x580 [ 181.423891][ T7082] ? tomoyo_path_number_perm+0x237/0x580 [ 181.423933][ T7082] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 181.423973][ T7082] ? find_held_lock+0x2b/0x80 [ 181.424049][ T7082] ? find_held_lock+0x2b/0x80 [ 181.424087][ T7082] ? hook_file_ioctl_common+0x144/0x410 [ 181.424133][ T7082] ? __fget_files+0x20e/0x3c0 [ 181.424183][ T7082] security_file_ioctl+0x9b/0x240 [ 181.424223][ T7082] __x64_sys_ioctl+0xb7/0x210 [ 181.424263][ T7082] do_syscall_64+0xcd/0xf80 [ 181.424317][ T7082] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.424348][ T7082] RIP: 0033:0x7fdf97d8f7c9 [ 181.424372][ T7082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.424402][ T7082] RSP: 002b:00007fdf95ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.424431][ T7082] RAX: ffffffffffffffda RBX: 00007fdf97fe5fa0 RCX: 00007fdf97d8f7c9 [ 181.424451][ T7082] RDX: 0000000000000001 RSI: 0000000000004b67 RDI: 0000000000000002 [ 181.424468][ T7082] RBP: 00007fdf95ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 181.424487][ T7082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.424511][ T7082] R13: 00007fdf97fe6038 R14: 00007fdf97fe5fa0 R15: 00007ffc63bd5c38 [ 181.424553][ T7082] [ 181.708359][ T7082] ERROR: Out of memory at tomoyo_realpath_from_path. [ 181.979675][ T7096] FAULT_INJECTION: forcing a failure. [ 181.979675][ T7096] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.053714][ T7096] CPU: 0 UID: 0 PID: 7096 Comm: syz.3.245 Tainted: G U syzkaller #0 PREEMPT(full) [ 182.053762][ T7096] Tainted: [U]=USER [ 182.053771][ T7096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 182.053788][ T7096] Call Trace: [ 182.053798][ T7096] [ 182.053809][ T7096] dump_stack_lvl+0x16c/0x1f0 [ 182.053862][ T7096] should_fail_ex+0x512/0x640 [ 182.053904][ T7096] _copy_to_user+0x32/0xd0 [ 182.053942][ T7096] simple_read_from_buffer+0xcb/0x170 [ 182.053989][ T7096] proc_fail_nth_read+0x197/0x240 [ 182.054043][ T7096] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.054099][ T7096] ? rw_verify_area+0xcf/0x6c0 [ 182.054138][ T7096] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.054191][ T7096] vfs_read+0x1e4/0xcf0 [ 182.054237][ T7096] ? __pfx___mutex_lock+0x10/0x10 [ 182.054270][ T7096] ? __pfx_vfs_read+0x10/0x10 [ 182.054325][ T7096] ? __fget_files+0x20e/0x3c0 [ 182.054382][ T7096] ksys_read+0x12a/0x250 [ 182.054426][ T7096] ? __pfx_ksys_read+0x10/0x10 [ 182.054482][ T7096] do_syscall_64+0xcd/0xf80 [ 182.054534][ T7096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.054575][ T7096] RIP: 0033:0x7fdf97d8e1dc [ 182.054600][ T7096] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 182.054647][ T7096] RSP: 002b:00007fdf95ff6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 182.054676][ T7096] RAX: ffffffffffffffda RBX: 00007fdf97fe5fa0 RCX: 00007fdf97d8e1dc [ 182.054702][ T7096] RDX: 000000000000000f RSI: 00007fdf95ff60a0 RDI: 0000000000000003 [ 182.054721][ T7096] RBP: 00007fdf95ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 182.054741][ T7096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 182.054760][ T7096] R13: 00007fdf97fe6038 R14: 00007fdf97fe5fa0 R15: 00007ffc63bd5c38 [ 182.054804][ T7096] [ 182.863342][ T7107] FAULT_INJECTION: forcing a failure. [ 182.863342][ T7107] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.879442][ T7107] CPU: 1 UID: 0 PID: 7107 Comm: syz.1.248 Tainted: G U syzkaller #0 PREEMPT(full) [ 182.879493][ T7107] Tainted: [U]=USER [ 182.879513][ T7107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 182.879526][ T7107] Call Trace: [ 182.879533][ T7107] [ 182.879541][ T7107] dump_stack_lvl+0x16c/0x1f0 [ 182.879581][ T7107] should_fail_ex+0x512/0x640 [ 182.879611][ T7107] _copy_to_user+0x32/0xd0 [ 182.879637][ T7107] simple_read_from_buffer+0xcb/0x170 [ 182.879671][ T7107] proc_fail_nth_read+0x197/0x240 [ 182.879709][ T7107] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.879747][ T7107] ? rw_verify_area+0xcf/0x6c0 [ 182.879775][ T7107] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.879811][ T7107] vfs_read+0x1e4/0xcf0 [ 182.879842][ T7107] ? __pfx___mutex_lock+0x10/0x10 [ 182.879866][ T7107] ? __pfx_vfs_read+0x10/0x10 [ 182.879904][ T7107] ? __fget_files+0x20e/0x3c0 [ 182.879942][ T7107] ksys_read+0x12a/0x250 [ 182.879972][ T7107] ? __pfx_ksys_read+0x10/0x10 [ 182.880011][ T7107] do_syscall_64+0xcd/0xf80 [ 182.880047][ T7107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.880069][ T7107] RIP: 0033:0x7f756e18e1dc [ 182.880087][ T7107] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 182.880108][ T7107] RSP: 002b:00007f756f00b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 182.880128][ T7107] RAX: ffffffffffffffda RBX: 00007f756e3e6090 RCX: 00007f756e18e1dc [ 182.880142][ T7107] RDX: 000000000000000f RSI: 00007f756f00b0a0 RDI: 0000000000000004 [ 182.880155][ T7107] RBP: 00007f756f00b090 R08: 0000000000000000 R09: 0000000000000000 [ 182.880174][ T7107] R10: 000000000000e000 R11: 0000000000000246 R12: 0000000000000001 [ 182.880188][ T7107] R13: 00007f756e3e6128 R14: 00007f756e3e6090 R15: 00007ffccd326d98 [ 182.880217][ T7107] [ 183.561632][ T5838] smpboot: CPU 1 is now offline [ 184.004698][ T7116] FAULT_INJECTION: forcing a failure. [ 184.004698][ T7116] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.050087][ T7116] CPU: 0 UID: 0 PID: 7116 Comm: syz.2.252 Tainted: G U syzkaller #0 PREEMPT(full) [ 184.050124][ T7116] Tainted: [U]=USER [ 184.050132][ T7116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 184.050145][ T7116] Call Trace: [ 184.050152][ T7116] [ 184.050160][ T7116] dump_stack_lvl+0x16c/0x1f0 [ 184.050202][ T7116] should_fail_ex+0x512/0x640 [ 184.050234][ T7116] _copy_to_user+0x32/0xd0 [ 184.050262][ T7116] simple_read_from_buffer+0xcb/0x170 [ 184.050297][ T7116] proc_fail_nth_read+0x197/0x240 [ 184.050341][ T7116] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 184.050382][ T7116] ? rw_verify_area+0xcf/0x6c0 [ 184.050412][ T7116] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 184.050452][ T7116] vfs_read+0x1e4/0xcf0 [ 184.050485][ T7116] ? __pfx___mutex_lock+0x10/0x10 [ 184.050509][ T7116] ? __pfx_vfs_read+0x10/0x10 [ 184.050553][ T7116] ? __fget_files+0x20e/0x3c0 [ 184.050595][ T7116] ksys_read+0x12a/0x250 [ 184.050627][ T7116] ? __pfx_ksys_read+0x10/0x10 [ 184.050661][ T7116] ? getname_flags.part.0+0x1c5/0x550 [ 184.050692][ T7116] do_syscall_64+0xcd/0xf80 [ 184.050731][ T7116] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.050754][ T7116] RIP: 0033:0x7fc4b818e1dc [ 184.050772][ T7116] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 184.050794][ T7116] RSP: 002b:00007fc4b8f59030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 184.050815][ T7116] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818e1dc [ 184.050830][ T7116] RDX: 000000000000000f RSI: 00007fc4b8f590a0 RDI: 0000000000000003 [ 184.050843][ T7116] RBP: 00007fc4b8f59090 R08: 0000000000000000 R09: 0000000000000000 [ 184.050857][ T7116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 184.050870][ T7116] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 184.050905][ T7116] [ 184.439452][ T7122] netlink: 330 bytes leftover after parsing attributes in process `syz.3.253'. [ 184.821564][ T7134] netlink: 330 bytes leftover after parsing attributes in process `syz.2.254'. [ 185.339685][ T30] audit: type=1800 audit(1768048467.621:7): pid=7149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.258" name="dbroot" dev="configfs" ino=13997 res=0 errno=0 [ 189.555279][ T7169] random: crng reseeded on system resumption [ 189.605040][ T7169] FAULT_INJECTION: forcing a failure. [ 189.605040][ T7169] name failslab, interval 1, probability 0, space 0, times 0 [ 189.689611][ T7169] CPU: 0 UID: 0 PID: 7169 Comm: syz.1.263 Tainted: G U syzkaller #0 PREEMPT(full) [ 189.689648][ T7169] Tainted: [U]=USER [ 189.689655][ T7169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 189.689672][ T7169] Call Trace: [ 189.689680][ T7169] [ 189.689688][ T7169] dump_stack_lvl+0x16c/0x1f0 [ 189.689729][ T7169] should_fail_ex+0x512/0x640 [ 189.689754][ T7169] ? __kmalloc_cache_noprof+0x5f/0x800 [ 189.689782][ T7169] should_failslab+0xc2/0x120 [ 189.689816][ T7169] __kmalloc_cache_noprof+0x80/0x800 [ 189.689842][ T7169] ? resv_map_alloc+0x7e/0x400 [ 189.689876][ T7169] ? resv_map_alloc+0x7e/0x400 [ 189.689905][ T7169] resv_map_alloc+0x7e/0x400 [ 189.689937][ T7169] hugetlbfs_get_inode+0x33f/0x700 [ 189.689957][ T7169] ? __fget_files+0x20e/0x3c0 [ 189.689993][ T7169] hugetlb_file_setup+0x15b/0x620 [ 189.690019][ T7169] ksys_mmap_pgoff+0x189/0x5c0 [ 189.690056][ T7169] __x64_sys_mmap+0x125/0x190 [ 189.690082][ T7169] do_syscall_64+0xcd/0xf80 [ 189.690120][ T7169] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 189.690142][ T7169] RIP: 0033:0x7f756e18f7c9 [ 189.690159][ T7169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 189.690199][ T7169] RSP: 002b:00007f756f02c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 189.690219][ T7169] RAX: ffffffffffffffda RBX: 00007f756e3e5fa0 RCX: 00007f756e18f7c9 [ 189.690240][ T7169] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 189.690254][ T7169] RBP: 00007f756f02c090 R08: 0000000000000004 R09: 0000300000000000 [ 189.690268][ T7169] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000001 [ 189.690281][ T7169] R13: 00007f756e3e6038 R14: 00007f756e3e5fa0 R15: 00007ffccd326d98 [ 189.690311][ T7169] [ 191.127154][ T7177] random: crng reseeded on system resumption [ 191.695281][ T7185] random: crng reseeded on system resumption [ 193.336049][ T7216] netlink: 330 bytes leftover after parsing attributes in process `syz.3.272'. [ 194.030603][ T7229] netlink: 16 bytes leftover after parsing attributes in process `syz.0.279'. [ 194.060722][ T7189] FAULT_INJECTION: forcing a failure. [ 194.060722][ T7189] name failslab, interval 1, probability 0, space 0, times 0 [ 194.094215][ T7229] netlink: 16 bytes leftover after parsing attributes in process `syz.0.279'. [ 194.188500][ T7189] CPU: 0 UID: 0 PID: 7189 Comm: syz.1.268 Tainted: G U syzkaller #0 PREEMPT(full) [ 194.188560][ T7189] Tainted: [U]=USER [ 194.188567][ T7189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 194.188580][ T7189] Call Trace: [ 194.188589][ T7189] [ 194.188608][ T7189] dump_stack_lvl+0x16c/0x1f0 [ 194.188651][ T7189] should_fail_ex+0x512/0x640 [ 194.188679][ T7189] ? __kvmalloc_node_noprof+0x129/0xa40 [ 194.188716][ T7189] should_failslab+0xc2/0x120 [ 194.188754][ T7189] __kvmalloc_node_noprof+0x14a/0xa40 [ 194.188790][ T7189] ? io_alloc_cache_init+0x38/0x170 [ 194.188818][ T7189] ? io_alloc_cache_init+0x38/0x170 [ 194.188838][ T7189] ? __init_waitqueue_head+0xca/0x150 [ 194.188865][ T7189] io_alloc_cache_init+0x38/0x170 [ 194.188889][ T7189] io_uring_setup+0x578/0x1f80 [ 194.188924][ T7189] ? __pfx_io_uring_setup+0x10/0x10 [ 194.188958][ T7189] ? do_futex+0x122/0x350 [ 194.188986][ T7189] ? __pfx_do_futex+0x10/0x10 [ 194.189039][ T7189] ? xfd_validate_state+0x61/0x180 [ 194.189068][ T7189] __x64_sys_io_uring_setup+0xc2/0x170 [ 194.189104][ T7189] do_syscall_64+0xcd/0xf80 [ 194.189145][ T7189] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.189169][ T7189] RIP: 0033:0x7f756e18f7c9 [ 194.189188][ T7189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.189211][ T7189] RSP: 002b:00007f756f02c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 194.189232][ T7189] RAX: ffffffffffffffda RBX: 00007f756e3e5fa0 RCX: 00007f756e18f7c9 [ 194.189248][ T7189] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 194.189262][ T7189] RBP: 00007f756e213f91 R08: 0000000000000000 R09: 0000000000000000 [ 194.189276][ T7189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 194.189290][ T7189] R13: 00007f756e3e6038 R14: 00007f756e3e5fa0 R15: 00007ffccd326d98 [ 194.189319][ T7189] [ 195.438694][ T7253] FAULT_INJECTION: forcing a failure. [ 195.438694][ T7253] name failslab, interval 1, probability 0, space 0, times 0 [ 195.513625][ T7253] CPU: 0 UID: 0 PID: 7253 Comm: syz.3.284 Tainted: G U syzkaller #0 PREEMPT(full) [ 195.513665][ T7253] Tainted: [U]=USER [ 195.513672][ T7253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 195.513686][ T7253] Call Trace: [ 195.513693][ T7253] [ 195.513703][ T7253] dump_stack_lvl+0x16c/0x1f0 [ 195.513746][ T7253] should_fail_ex+0x512/0x640 [ 195.513773][ T7253] ? __kmalloc_cache_noprof+0x5f/0x800 [ 195.513804][ T7253] should_failslab+0xc2/0x120 [ 195.513843][ T7253] __kmalloc_cache_noprof+0x80/0x800 [ 195.513870][ T7253] ? _raw_read_unlock_irqrestore+0x3b/0x80 [ 195.513908][ T7253] ? snd_pcm_attach_substream+0x441/0xd60 [ 195.513947][ T7253] ? snd_pcm_attach_substream+0x441/0xd60 [ 195.513980][ T7253] snd_pcm_attach_substream+0x441/0xd60 [ 195.514019][ T7253] snd_pcm_open_substream+0x8d/0x1820 [ 195.514053][ T7253] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 195.514094][ T7253] snd_pcm_oss_open+0x735/0x1400 [ 195.514129][ T7253] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 195.514153][ T7253] ? __lock_acquire+0x436/0x2890 [ 195.514177][ T7253] ? __pfx_default_wake_function+0x10/0x10 [ 195.514213][ T7253] ? __lock_acquire+0x436/0x2890 [ 195.514250][ T7253] ? do_raw_spin_lock+0x12c/0x2b0 [ 195.514280][ T7253] ? soundcore_open+0x35a/0x580 [ 195.514319][ T7253] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 195.514345][ T7253] soundcore_open+0x40c/0x580 [ 195.514385][ T7253] ? __pfx_soundcore_open+0x10/0x10 [ 195.514424][ T7253] chrdev_open+0x234/0x6a0 [ 195.514461][ T7253] ? __pfx_apparmor_file_open+0x10/0x10 [ 195.514487][ T7253] ? __pfx_chrdev_open+0x10/0x10 [ 195.514527][ T7253] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 195.514572][ T7253] do_dentry_open+0x748/0x1590 [ 195.514608][ T7253] ? __pfx_chrdev_open+0x10/0x10 [ 195.514653][ T7253] vfs_open+0x82/0x3f0 [ 195.514682][ T7253] path_openat+0x2078/0x3140 [ 195.514728][ T7253] ? __pfx_path_openat+0x10/0x10 [ 195.514776][ T7253] do_filp_open+0x20b/0x470 [ 195.514814][ T7253] ? __pfx_do_filp_open+0x10/0x10 [ 195.514872][ T7253] ? alloc_fd+0x471/0x7d0 [ 195.514916][ T7253] do_sys_openat2+0x121/0x290 [ 195.514942][ T7253] ? __pfx_do_sys_openat2+0x10/0x10 [ 195.514981][ T7253] __x64_sys_openat+0x174/0x210 [ 195.515009][ T7253] ? __pfx___x64_sys_openat+0x10/0x10 [ 195.515049][ T7253] do_syscall_64+0xcd/0xf80 [ 195.515090][ T7253] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.515118][ T7253] RIP: 0033:0x7fdf97d8f7c9 [ 195.515137][ T7253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.515160][ T7253] RSP: 002b:00007fdf95ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 195.515182][ T7253] RAX: ffffffffffffffda RBX: 00007fdf97fe5fa0 RCX: 00007fdf97d8f7c9 [ 195.515198][ T7253] RDX: 0000000000020342 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 195.515213][ T7253] RBP: 00007fdf97e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 195.515227][ T7253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 195.515247][ T7253] R13: 00007fdf97fe6038 R14: 00007fdf97fe5fa0 R15: 00007ffc63bd5c38 [ 195.515277][ T7253] [ 195.816480][ T7265] FAULT_INJECTION: forcing a failure. [ 195.816480][ T7265] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 195.816531][ T7265] CPU: 0 UID: 0 PID: 7265 Comm: syz.2.287 Tainted: G U syzkaller #0 PREEMPT(full) [ 195.816562][ T7265] Tainted: [U]=USER [ 195.816569][ T7265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 195.816585][ T7265] Call Trace: [ 195.816592][ T7265] [ 195.816600][ T7265] dump_stack_lvl+0x16c/0x1f0 [ 195.816640][ T7265] should_fail_ex+0x512/0x640 [ 195.816670][ T7265] _copy_to_user+0x32/0xd0 [ 195.816697][ T7265] simple_read_from_buffer+0xcb/0x170 [ 195.816732][ T7265] proc_fail_nth_read+0x197/0x240 [ 195.816770][ T7265] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 195.816829][ T7265] ? rw_verify_area+0xcf/0x6c0 [ 195.816858][ T7265] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 195.816895][ T7265] vfs_read+0x1e4/0xcf0 [ 195.816941][ T7265] ? __pfx___mutex_lock+0x10/0x10 [ 195.816964][ T7265] ? __pfx_vfs_read+0x10/0x10 [ 195.817002][ T7265] ? __fget_files+0x20e/0x3c0 [ 195.817041][ T7265] ksys_read+0x12a/0x250 [ 195.817071][ T7265] ? __pfx_ksys_read+0x10/0x10 [ 195.817110][ T7265] do_syscall_64+0xcd/0xf80 [ 195.817146][ T7265] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.817168][ T7265] RIP: 0033:0x7fc4b818e1dc [ 195.817203][ T7265] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 195.817251][ T7265] RSP: 002b:00007fc4b63f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 195.817272][ T7265] RAX: ffffffffffffffda RBX: 00007fc4b83e6090 RCX: 00007fc4b818e1dc [ 195.817287][ T7265] RDX: 000000000000000f RSI: 00007fc4b63f60a0 RDI: 0000000000000004 [ 195.817301][ T7265] RBP: 00007fc4b63f6090 R08: 0000000000000000 R09: 0000000000000000 [ 195.817314][ T7265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 195.817328][ T7265] R13: 00007fc4b83e6128 R14: 00007fc4b83e6090 R15: 00007ffee67efba8 [ 195.817358][ T7265] [ 196.169528][ T7260] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 197.182314][ T7276] zswap: compressor 00 not available [ 197.211842][ T7284] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078004a00 pfn:0x78004 [ 197.211910][ T7284] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 197.211950][ T7284] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 197.211973][ T7284] raw: ffff888078004a00 0000000000000000 00000001ffffffff 0000000000000000 [ 197.211988][ T7284] page dumped because: unmovable page [ 197.212003][ T7284] page_owner tracks the page as allocated [ 197.212039][ T7284] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 7092, tgid 7091 (syz.1.244), ts 181679722749, free_ts 181664294526 [ 197.212075][ T7284] post_alloc_hook+0x1af/0x220 [ 197.212103][ T7284] get_page_from_freelist+0xd0b/0x31a0 [ 197.212132][ T7284] __alloc_frozen_pages_noprof+0x25f/0x2430 [ 197.212172][ T7284] alloc_pages_bulk_noprof+0x77a/0x1410 [ 197.212203][ T7284] __kasan_populate_vmalloc+0xfb/0x220 [ 197.212235][ T7284] alloc_vmap_area+0x98d/0x2a50 [ 197.212269][ T7284] __get_vm_area_node+0x1ca/0x330 [ 197.212305][ T7284] __vmalloc_node_range_noprof+0x247/0x16b0 [ 197.212335][ T7284] __vmalloc_node_noprof+0xad/0xf0 [ 197.212356][ T7284] __snd_dma_alloc_pages+0x53/0x90 [ 197.212387][ T7284] snd_dma_alloc_dir_pages+0x151/0x240 [ 197.212418][ T7284] do_alloc_pages+0x136/0x2d0 [ 197.212446][ T7284] snd_pcm_lib_malloc_pages+0x3df/0x9a0 [ 197.212478][ T7284] snd_pcm_hw_params+0x1656/0x1ba0 [ 197.212508][ T7284] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 197.212539][ T7284] snd_pcm_oss_change_params_locked+0x15ab/0x3ab0 [ 197.212565][ T7284] page last free pid 0 tgid 0 stack trace: [ 197.212579][ T7284] __free_frozen_pages+0x7df/0x1170 [ 197.212602][ T7284] tlb_remove_table_rcu+0x2b2/0x390 [ 197.212624][ T7284] rcu_core+0x79c/0x15f0 [ 197.212653][ T7284] handle_softirqs+0x219/0x950 [ 197.212686][ T7284] __irq_exit_rcu+0x109/0x170 [ 197.212719][ T7284] irq_exit_rcu+0x9/0x30 [ 197.212751][ T7284] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 197.212789][ T7284] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 200.538108][ T7336] binder: BINDER_SET_CONTEXT_MGR already set [ 200.563045][ T7336] binder: 7326:7336 ioctl 4018620d 9 returned -16 [ 200.598226][ T7328] FAULT_INJECTION: forcing a failure. [ 200.598226][ T7328] name failslab, interval 1, probability 0, space 0, times 0 [ 200.661010][ T7328] CPU: 0 UID: 0 PID: 7328 Comm: syz.3.302 Tainted: G U L syzkaller #0 PREEMPT(full) [ 200.661050][ T7328] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 200.661058][ T7328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 200.661072][ T7328] Call Trace: [ 200.661078][ T7328] [ 200.661087][ T7328] dump_stack_lvl+0x16c/0x1f0 [ 200.661131][ T7328] should_fail_ex+0x512/0x640 [ 200.661162][ T7328] should_failslab+0xc2/0x120 [ 200.661198][ T7328] kmem_cache_alloc_node_noprof+0x86/0x800 [ 200.661228][ T7328] ? __alloc_skb+0x156/0x410 [ 200.661260][ T7328] ? __alloc_skb+0x156/0x410 [ 200.661285][ T7328] __alloc_skb+0x156/0x410 [ 200.661312][ T7328] ? __pfx___alloc_skb+0x10/0x10 [ 200.661345][ T7328] ? find_held_lock+0x2b/0x80 [ 200.661377][ T7328] ? net_generic+0xea/0x2a0 [ 200.661413][ T7328] tipc_buf_acquire+0x26/0xe0 [ 200.661443][ T7328] tipc_msg_create+0x39/0x1d0 [ 200.661477][ T7328] __tipc_shutdown+0xb9d/0xee0 [ 200.661512][ T7328] ? __pfx___tipc_shutdown+0x10/0x10 [ 200.661539][ T7328] ? do_raw_spin_lock+0x12c/0x2b0 [ 200.661567][ T7328] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 200.661595][ T7328] ? __pfx_woken_wake_function+0x10/0x10 [ 200.661628][ T7328] ? tipc_sk_filtering+0x420/0x520 [ 200.661658][ T7328] tipc_release+0xe2/0x1650 [ 200.661684][ T7328] ? down_write+0x14d/0x200 [ 200.661708][ T7328] ? __pfx_down_write+0x10/0x10 [ 200.661734][ T7328] ? __pfx_locks_remove_file+0x10/0x10 [ 200.661775][ T7328] __sock_release+0xb3/0x270 [ 200.661822][ T7328] ? __pfx_sock_close+0x10/0x10 [ 200.661853][ T7328] sock_close+0x1c/0x30 [ 200.661885][ T7328] __fput+0x402/0xb70 [ 200.661915][ T7328] task_work_run+0x150/0x240 [ 200.661941][ T7328] ? __pfx_task_work_run+0x10/0x10 [ 200.661965][ T7328] ? __do_sys_close_range+0x278/0x730 [ 200.662011][ T7328] exit_to_user_mode_loop+0xfb/0x540 [ 200.662044][ T7328] do_syscall_64+0x4ee/0xf80 [ 200.662084][ T7328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.662107][ T7328] RIP: 0033:0x7fdf97d8f7c9 [ 200.662124][ T7328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.662145][ T7328] RSP: 002b:00007fdf95ff6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 200.662166][ T7328] RAX: 0000000000000000 RBX: 00007fdf97fe5fa0 RCX: 00007fdf97d8f7c9 [ 200.662180][ T7328] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 200.662192][ T7328] RBP: 00007fdf95ff6090 R08: 0000000000000000 R09: 0000000000000000 [ 200.662205][ T7328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 200.662218][ T7328] R13: 00007fdf97fe6038 R14: 00007fdf97fe5fa0 R15: 00007ffc63bd5c38 [ 200.662247][ T7328] [ 201.960752][ T7343] FAULT_INJECTION: forcing a failure. [ 201.960752][ T7343] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.062592][ T7343] CPU: 0 UID: 0 PID: 7343 Comm: syz.0.303 Tainted: G U L syzkaller #0 PREEMPT(full) [ 202.062632][ T7343] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 202.062641][ T7343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 202.062653][ T7343] Call Trace: [ 202.062661][ T7343] [ 202.062669][ T7343] dump_stack_lvl+0x16c/0x1f0 [ 202.062711][ T7343] should_fail_ex+0x512/0x640 [ 202.062750][ T7343] strncpy_from_user+0x3b/0x2e0 [ 202.062777][ T7343] getname_flags.part.0+0x8f/0x550 [ 202.062808][ T7343] getname_flags+0x93/0xf0 [ 202.062842][ T7343] do_sys_openat2+0xb9/0x290 [ 202.062868][ T7343] ? __pfx_do_sys_openat2+0x10/0x10 [ 202.062905][ T7343] __x64_sys_openat+0x174/0x210 [ 202.062932][ T7343] ? __pfx___x64_sys_openat+0x10/0x10 [ 202.062971][ T7343] do_syscall_64+0xcd/0xf80 [ 202.063010][ T7343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.063034][ T7343] RIP: 0033:0x7f8ec418f7c9 [ 202.063052][ T7343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.063074][ T7343] RSP: 002b:00007f8ec4ff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 202.063095][ T7343] RAX: ffffffffffffffda RBX: 00007f8ec43e5fa0 RCX: 00007f8ec418f7c9 [ 202.063110][ T7343] RDX: 0000000000003d00 RSI: 00002000000003c0 RDI: ffffffffffffff9c [ 202.063124][ T7343] RBP: 00007f8ec4213f91 R08: 0000000000000000 R09: 0000000000000000 [ 202.063138][ T7343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.063152][ T7343] R13: 00007f8ec43e6038 R14: 00007f8ec43e5fa0 R15: 00007ffd559eaef8 [ 202.063181][ T7343] [ 202.789918][ T7359] random: crng reseeded on system resumption [ 204.224689][ T7391] FAULT_INJECTION: forcing a failure. [ 204.224689][ T7391] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 204.305993][ T7391] CPU: 0 UID: 0 PID: 7391 Comm: syz.0.317 Tainted: G U L syzkaller #0 PREEMPT(full) [ 204.306038][ T7391] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 204.306047][ T7391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 204.306060][ T7391] Call Trace: [ 204.306067][ T7391] [ 204.306076][ T7391] dump_stack_lvl+0x16c/0x1f0 [ 204.306119][ T7391] should_fail_ex+0x512/0x640 [ 204.306149][ T7391] _copy_to_user+0x32/0xd0 [ 204.306176][ T7391] simple_read_from_buffer+0xcb/0x170 [ 204.306209][ T7391] proc_fail_nth_read+0x197/0x240 [ 204.306248][ T7391] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 204.306288][ T7391] ? rw_verify_area+0xcf/0x6c0 [ 204.306317][ T7391] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 204.306355][ T7391] vfs_read+0x1e4/0xcf0 [ 204.306388][ T7391] ? __pfx___mutex_lock+0x10/0x10 [ 204.306418][ T7391] ? __pfx_vfs_read+0x10/0x10 [ 204.306459][ T7391] ? __fget_files+0x20e/0x3c0 [ 204.306501][ T7391] ksys_read+0x12a/0x250 [ 204.306557][ T7391] ? __pfx_ksys_read+0x10/0x10 [ 204.306599][ T7391] do_syscall_64+0xcd/0xf80 [ 204.306638][ T7391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.306661][ T7391] RIP: 0033:0x7f8ec418e1dc [ 204.306679][ T7391] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 204.306700][ T7391] RSP: 002b:00007f8ec4ff9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 204.306721][ T7391] RAX: ffffffffffffffda RBX: 00007f8ec43e5fa0 RCX: 00007f8ec418e1dc [ 204.306736][ T7391] RDX: 000000000000000f RSI: 00007f8ec4ff90a0 RDI: 0000000000000004 [ 204.306750][ T7391] RBP: 00007f8ec4ff9090 R08: 0000000000000000 R09: 0000000000000000 [ 204.306763][ T7391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 204.306777][ T7391] R13: 00007f8ec43e6038 R14: 00007f8ec43e5fa0 R15: 00007ffd559eaef8 [ 204.306806][ T7391] [ 204.732803][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.739205][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.407288][ T7403] FAULT_INJECTION: forcing a failure. [ 205.407288][ T7403] name failslab, interval 1, probability 0, space 0, times 0 [ 205.432544][ T7403] CPU: 0 UID: 0 PID: 7403 Comm: syz.0.323 Tainted: G U L syzkaller #0 PREEMPT(full) [ 205.432584][ T7403] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 205.432593][ T7403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 205.432607][ T7403] Call Trace: [ 205.432614][ T7403] [ 205.432623][ T7403] dump_stack_lvl+0x16c/0x1f0 [ 205.432667][ T7403] should_fail_ex+0x512/0x640 [ 205.432694][ T7403] ? kmem_cache_alloc_noprof+0x62/0x770 [ 205.432736][ T7403] should_failslab+0xc2/0x120 [ 205.432773][ T7403] kmem_cache_alloc_noprof+0x83/0x770 [ 205.432801][ T7403] ? arch_stack_walk+0xa6/0x100 [ 205.432830][ T7403] ? alloc_empty_file+0x55/0x1e0 [ 205.432860][ T7403] ? alloc_empty_file+0x55/0x1e0 [ 205.432884][ T7403] alloc_empty_file+0x55/0x1e0 [ 205.432910][ T7403] path_openat+0xde/0x3140 [ 205.432945][ T7403] ? __pfx_stack_trace_save+0x10/0x10 [ 205.432985][ T7403] ? stack_depot_save_flags+0x29/0x9b0 [ 205.433017][ T7403] ? __pfx_path_openat+0x10/0x10 [ 205.433051][ T7403] ? kasan_save_stack+0x42/0x60 [ 205.433082][ T7403] ? kasan_save_stack+0x33/0x60 [ 205.433113][ T7403] ? kasan_save_track+0x14/0x30 [ 205.433144][ T7403] ? __kasan_slab_alloc+0x89/0x90 [ 205.433177][ T7403] ? kmem_cache_alloc_noprof+0x25e/0x770 [ 205.433205][ T7403] ? getname_flags.part.0+0x4c/0x550 [ 205.433230][ T7403] ? getname_flags+0x93/0xf0 [ 205.433271][ T7403] ? acct_on+0x82/0xa00 [ 205.433300][ T7403] ? __x64_sys_acct+0x81/0x1e0 [ 205.433330][ T7403] ? do_syscall_64+0xcd/0xf80 [ 205.433366][ T7403] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.433394][ T7403] do_filp_open+0x20b/0x470 [ 205.433448][ T7403] ? __pfx_do_filp_open+0x10/0x10 [ 205.433513][ T7403] ? find_held_lock+0x2b/0x80 [ 205.433544][ T7403] ? __might_fault+0xe3/0x190 [ 205.433571][ T7403] ? __might_fault+0xe3/0x190 [ 205.433597][ T7403] ? __might_fault+0x13b/0x190 [ 205.433629][ T7403] file_open_name+0x2a3/0x450 [ 205.433659][ T7403] ? __pfx_file_open_name+0x10/0x10 [ 205.433689][ T7403] ? getname_flags.part.0+0x1c5/0x550 [ 205.433727][ T7403] acct_on+0xc7/0xa00 [ 205.433760][ T7403] ? __pfx_acct_on+0x10/0x10 [ 205.433793][ T7403] ? bpf_lsm_capable+0x9/0x10 [ 205.433831][ T7403] __x64_sys_acct+0x81/0x1e0 [ 205.433862][ T7403] ? lockdep_hardirqs_on+0x7c/0x110 [ 205.433900][ T7403] do_syscall_64+0xcd/0xf80 [ 205.433940][ T7403] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.433964][ T7403] RIP: 0033:0x7f8ec418f7c9 [ 205.433983][ T7403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.434005][ T7403] RSP: 002b:00007f8ec4ff9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 205.434027][ T7403] RAX: ffffffffffffffda RBX: 00007f8ec43e5fa0 RCX: 00007f8ec418f7c9 [ 205.434042][ T7403] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000 [ 205.434056][ T7403] RBP: 00007f8ec4213f91 R08: 0000000000000000 R09: 0000000000000000 [ 205.434070][ T7403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.434083][ T7403] R13: 00007f8ec43e6038 R14: 00007f8ec43e5fa0 R15: 00007ffd559eaef8 [ 205.434113][ T7403] [ 206.852312][ T7411] FAULT_INJECTION: forcing a failure. [ 206.852312][ T7411] name failslab, interval 1, probability 0, space 0, times 0 [ 206.883871][ T7411] CPU: 0 UID: 0 PID: 7411 Comm: syz.0.325 Tainted: G U L syzkaller #0 PREEMPT(full) [ 206.883910][ T7411] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 206.883918][ T7411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 206.883931][ T7411] Call Trace: [ 206.883937][ T7411] [ 206.883945][ T7411] dump_stack_lvl+0x16c/0x1f0 [ 206.883986][ T7411] should_fail_ex+0x512/0x640 [ 206.884011][ T7411] ? __kmalloc_noprof+0xca/0x910 [ 206.884037][ T7411] should_failslab+0xc2/0x120 [ 206.884072][ T7411] __kmalloc_noprof+0xeb/0x910 [ 206.884094][ T7411] ? find_held_lock+0x2b/0x80 [ 206.884122][ T7411] ? rds_message_alloc+0x42/0x230 [ 206.884161][ T7411] ? rds_message_alloc+0x42/0x230 [ 206.884193][ T7411] rds_message_alloc+0x42/0x230 [ 206.884227][ T7411] rds_sendmsg+0xb54/0x31f0 [ 206.884262][ T7411] ? __pfx_rds_sendmsg+0x10/0x10 [ 206.884284][ T7411] ? aa_sk_perm+0x2f2/0xae0 [ 206.884313][ T7411] ? __pfx_aa_sk_perm+0x10/0x10 [ 206.884352][ T7411] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 206.884395][ T7411] ? ____sys_sendmsg+0xa5d/0xc30 [ 206.884415][ T7411] ____sys_sendmsg+0xa5d/0xc30 [ 206.884438][ T7411] ? __pfx_____sys_sendmsg+0x10/0x10 [ 206.884472][ T7411] ___sys_sendmsg+0x134/0x1d0 [ 206.884504][ T7411] ? __pfx____sys_sendmsg+0x10/0x10 [ 206.884566][ T7411] __sys_sendmsg+0x16d/0x220 [ 206.884597][ T7411] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.884644][ T7411] do_syscall_64+0xcd/0xf80 [ 206.884681][ T7411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.884704][ T7411] RIP: 0033:0x7f8ec418f7c9 [ 206.884722][ T7411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.884742][ T7411] RSP: 002b:00007f8ec4ff9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 206.884762][ T7411] RAX: ffffffffffffffda RBX: 00007f8ec43e5fa0 RCX: 00007f8ec418f7c9 [ 206.884777][ T7411] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000007 [ 206.884790][ T7411] RBP: 00007f8ec4ff9090 R08: 0000000000000000 R09: 0000000000000000 [ 206.884804][ T7411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.884816][ T7411] R13: 00007f8ec43e6038 R14: 00007f8ec43e5fa0 R15: 00007ffd559eaef8 [ 206.884845][ T7411] [ 207.437818][ T7415] FAULT_INJECTION: forcing a failure. [ 207.437818][ T7415] name failslab, interval 1, probability 0, space 0, times 0 [ 207.498355][ T7415] CPU: 0 UID: 0 PID: 7415 Comm: syz.2.327 Tainted: G U L syzkaller #0 PREEMPT(full) [ 207.498394][ T7415] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 207.498403][ T7415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 207.498416][ T7415] Call Trace: [ 207.498423][ T7415] [ 207.498432][ T7415] dump_stack_lvl+0x16c/0x1f0 [ 207.498474][ T7415] should_fail_ex+0x512/0x640 [ 207.498499][ T7415] ? __kmalloc_noprof+0xca/0x910 [ 207.498526][ T7415] should_failslab+0xc2/0x120 [ 207.498561][ T7415] __kmalloc_noprof+0xeb/0x910 [ 207.498584][ T7415] ? find_held_lock+0x2b/0x80 [ 207.498612][ T7415] ? __rds_conn_create+0x791/0x2340 [ 207.498645][ T7415] ? __rds_conn_create+0x7bf/0x2340 [ 207.498682][ T7415] ? __rds_conn_create+0x7bf/0x2340 [ 207.498714][ T7415] __rds_conn_create+0x7bf/0x2340 [ 207.498757][ T7415] ? __pfx___rds_conn_create+0x10/0x10 [ 207.498792][ T7415] ? rcu_is_watching+0x12/0xc0 [ 207.498823][ T7415] ? lockdep_init_map_type+0x5c/0x270 [ 207.498850][ T7415] rds_conn_create_outgoing+0x44/0x60 [ 207.498888][ T7415] rds_sendmsg+0xe2e/0x31f0 [ 207.498925][ T7415] ? __pfx_rds_sendmsg+0x10/0x10 [ 207.498948][ T7415] ? aa_sk_perm+0x2f2/0xae0 [ 207.498979][ T7415] ? __pfx_aa_sk_perm+0x10/0x10 [ 207.499004][ T7415] ? import_ubuf+0x1b6/0x220 [ 207.499033][ T7415] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 207.499075][ T7415] ? ____sys_sendmsg+0xa5d/0xc30 [ 207.499096][ T7415] ____sys_sendmsg+0xa5d/0xc30 [ 207.499118][ T7415] ? copy_msghdr_from_user+0x10a/0x160 [ 207.499148][ T7415] ? __pfx_____sys_sendmsg+0x10/0x10 [ 207.499182][ T7415] ___sys_sendmsg+0x134/0x1d0 [ 207.499214][ T7415] ? __pfx____sys_sendmsg+0x10/0x10 [ 207.499284][ T7415] __sys_sendmsg+0x16d/0x220 [ 207.499322][ T7415] ? __pfx___sys_sendmsg+0x10/0x10 [ 207.499372][ T7415] do_syscall_64+0xcd/0xf80 [ 207.499411][ T7415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.499434][ T7415] RIP: 0033:0x7fc4b818f7c9 [ 207.499452][ T7415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.499472][ T7415] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 207.499493][ T7415] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 207.499508][ T7415] RDX: 0000000000100000 RSI: 0000200000000d80 RDI: 0000000000000003 [ 207.499522][ T7415] RBP: 00007fc4b8f59090 R08: 0000000000000000 R09: 0000000000000000 [ 207.499536][ T7415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 207.499549][ T7415] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 207.499578][ T7415] [ 207.711574][ T7425] netlink: 252 bytes leftover after parsing attributes in process `syz.2.329'. [ 207.724829][ T7425] netlink: 252 bytes leftover after parsing attributes in process `syz.2.329'. [ 207.997068][ T7428] random: crng reseeded on system resumption [ 208.313868][ T5160] Trying to write to read-only block-device sda1 [ 208.464133][ T7435] netlink: 20 bytes leftover after parsing attributes in process `syz.1.332'. [ 208.464813][ T7435] random: crng reseeded on system resumption [ 208.714211][ T7441] netlink: 8 bytes leftover after parsing attributes in process `syz.2.333'. [ 209.406828][ T7453] netlink: 4 bytes leftover after parsing attributes in process `syz.3.335'. [ 209.579664][ T7456] netlink: 32 bytes leftover after parsing attributes in process `syz.3.335'. [ 209.664222][ T7447] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0 [ 209.684493][ T7453] HfR: entered promiscuous mode [ 211.116613][ T7477] random: crng reseeded on system resumption [ 211.719142][ T7480] binder: BINDER_SET_CONTEXT_MGR already set [ 211.748691][ T7480] binder: 7479:7480 ioctl 4018620d 9 returned -16 [ 212.536332][ T7500] netlink: 186 bytes leftover after parsing attributes in process `syz.1.345'. [ 212.671720][ T7501] binder: BINDER_SET_CONTEXT_MGR already set [ 212.738579][ T7501] binder: 7498:7501 ioctl 4018620d 9 returned -16 [ 212.912799][ T7507] FAULT_INJECTION: forcing a failure. [ 212.912799][ T7507] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 213.080353][ T7507] CPU: 0 UID: 0 PID: 7507 Comm: syz.3.347 Tainted: G U L syzkaller #0 PREEMPT(full) [ 213.080392][ T7507] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 213.080400][ T7507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 213.080412][ T7507] Call Trace: [ 213.080419][ T7507] [ 213.080427][ T7507] dump_stack_lvl+0x16c/0x1f0 [ 213.080467][ T7507] should_fail_ex+0x512/0x640 [ 213.080498][ T7507] should_fail_alloc_page+0xe7/0x130 [ 213.080536][ T7507] prepare_alloc_pages+0x401/0x670 [ 213.080571][ T7507] ? rcu_is_watching+0x12/0xc0 [ 213.080606][ T7507] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 213.080640][ T7507] ? mas_next_slot+0x12d3/0x1cb0 [ 213.080669][ T7507] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 213.080701][ T7507] ? mas_find+0x156/0x6d0 [ 213.080726][ T7507] ? __lock_acquire+0x436/0x2890 [ 213.080750][ T7507] ? __lock_acquire+0x436/0x2890 [ 213.080770][ T7507] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 213.080806][ T7507] ? policy_nodemask+0xea/0x4e0 [ 213.080842][ T7507] alloc_pages_mpol+0x1fb/0x550 [ 213.080878][ T7507] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 213.080953][ T7507] folio_alloc_mpol_noprof+0x36/0x2f0 [ 213.080978][ T7507] vma_alloc_folio_noprof+0xed/0x1e0 [ 213.081001][ T7507] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 213.081032][ T7507] do_anonymous_page+0xc81/0x2190 [ 213.081066][ T7507] __handle_mm_fault+0x1ecf/0x2bb0 [ 213.081097][ T7507] ? __pfx___handle_mm_fault+0x10/0x10 [ 213.081122][ T7507] ? __pte_offset_map_lock+0x174/0x310 [ 213.081155][ T7507] ? find_held_lock+0x2b/0x80 [ 213.081192][ T7507] ? follow_page_pte+0x5cf/0x1390 [ 213.081231][ T7507] handle_mm_fault+0x3fe/0xad0 [ 213.081260][ T7507] __get_user_pages+0x54e/0x3590 [ 213.081304][ T7507] ? __pfx___get_user_pages+0x10/0x10 [ 213.081347][ T7507] populate_vma_page_range+0x267/0x3f0 [ 213.081384][ T7507] ? __pfx_populate_vma_page_range+0x10/0x10 [ 213.081420][ T7507] ? __pfx_find_vma_intersection+0x10/0x10 [ 213.081455][ T7507] ? do_mmap+0x69c/0x1210 [ 213.081491][ T7507] __mm_populate+0x1d8/0x380 [ 213.081527][ T7507] ? __pfx___mm_populate+0x10/0x10 [ 213.081565][ T7507] ? up_write+0x282/0x4e0 [ 213.081591][ T7507] vm_mmap_pgoff+0x37f/0x470 [ 213.081627][ T7507] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 213.081661][ T7507] ? __fget_files+0x20e/0x3c0 [ 213.081701][ T7507] ksys_mmap_pgoff+0x7d/0x5c0 [ 213.081751][ T7507] ? __pfx_ksys_write+0x10/0x10 [ 213.081787][ T7507] __x64_sys_mmap+0x125/0x190 [ 213.081815][ T7507] do_syscall_64+0xcd/0xf80 [ 213.081855][ T7507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.081878][ T7507] RIP: 0033:0x7fdf97d8f7c9 [ 213.081899][ T7507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.081922][ T7507] RSP: 002b:00007fdf95fb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 213.081943][ T7507] RAX: ffffffffffffffda RBX: 00007fdf97fe6180 RCX: 00007fdf97d8f7c9 [ 213.081958][ T7507] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000 [ 213.081972][ T7507] RBP: 00007fdf95fb4090 R08: 0000000000000007 R09: 0000000000028000 [ 213.081986][ T7507] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 213.082000][ T7507] R13: 00007fdf97fe6218 R14: 00007fdf97fe6180 R15: 00007ffc63bd5c38 [ 213.082030][ T7507] [ 214.805075][ T7534] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 215.096862][ T7539] random: crng reseeded on system resumption [ 215.524062][ T7545] random: crng reseeded on system resumption [ 216.028833][ T7549] random: crng reseeded on system resumption [ 216.784369][ T7560] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 217.018749][ T7565] random: crng reseeded on system resumption [ 217.724988][ T7574] binder: BINDER_SET_CONTEXT_MGR already set [ 217.750143][ T7574] binder: 7573:7574 ioctl 4018620d 9 returned -16 [ 218.741857][ T7594] binder: BINDER_SET_CONTEXT_MGR already set [ 218.779674][ T7594] binder: 7589:7594 ioctl 4018620d 9 returned -16 [ 219.563879][ T7597] binder: BINDER_SET_CONTEXT_MGR already set [ 219.657051][ T7597] binder: 7596:7597 ioctl 4018620d 9 returned -16 [ 221.160878][ T7572] kexec: Could not allocate control_code_buffer [ 221.558643][ T7637] netlink: 4 bytes leftover after parsing attributes in process `syz.1.376'. [ 221.690527][ T7638] netlink: 32 bytes leftover after parsing attributes in process `syz.1.376'. [ 221.741951][ T7637] HfR: entered promiscuous mode [ 222.443996][ T7646] netlink: 4 bytes leftover after parsing attributes in process `syz.2.378'. [ 222.494830][ T7647] netlink: 330 bytes leftover after parsing attributes in process `syz.0.377'. [ 222.532043][ T7646] HfR: entered promiscuous mode [ 222.589033][ T7649] netlink: 32 bytes leftover after parsing attributes in process `syz.2.378'. [ 222.670017][ T7647] : renamed from ip6tnl0 (while UP) [ 223.864485][ T30] audit: type=1800 audit(1768048506.151:8): pid=7656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.380" name="members" dev="configfs" ino=16048 res=0 errno=0 [ 227.304557][ T7703] tipc: Started in network mode [ 227.390257][ T7703] tipc: Node identity ee00, cluster identity 4711 [ 227.513664][ T7703] tipc: Node number set to 60928 [ 228.449329][ T7715] FAULT_INJECTION: forcing a failure. [ 228.449329][ T7715] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 228.525561][ T7715] CPU: 0 UID: 0 PID: 7715 Comm: syz.1.395 Tainted: G U L syzkaller #0 PREEMPT(full) [ 228.525602][ T7715] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 228.525610][ T7715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 228.525624][ T7715] Call Trace: [ 228.525631][ T7715] [ 228.525639][ T7715] dump_stack_lvl+0x16c/0x1f0 [ 228.525681][ T7715] should_fail_ex+0x512/0x640 [ 228.525712][ T7715] should_fail_alloc_page+0xe7/0x130 [ 228.525750][ T7715] prepare_alloc_pages+0x401/0x670 [ 228.525800][ T7715] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 228.525846][ T7715] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 228.525892][ T7715] ? __lock_acquire+0x436/0x2890 [ 228.525914][ T7715] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 228.525953][ T7715] ? policy_nodemask+0xea/0x4e0 [ 228.525992][ T7715] alloc_pages_mpol+0x1fb/0x550 [ 228.526031][ T7715] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 228.526068][ T7715] ? find_held_lock+0x2b/0x80 [ 228.526100][ T7715] ? is_bpf_text_address+0x8a/0x1a0 [ 228.526135][ T7715] folio_alloc_mpol_noprof+0x36/0x2f0 [ 228.526160][ T7715] shmem_alloc_folio+0x135/0x160 [ 228.526199][ T7715] shmem_alloc_and_add_folio+0x494/0xc20 [ 228.526232][ T7715] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 228.526261][ T7715] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 228.526306][ T7715] shmem_get_folio_gfp+0x67f/0x1610 [ 228.526338][ T7715] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 228.526372][ T7715] shmem_fault+0x1fe/0xa00 [ 228.526397][ T7715] ? __lock_acquire+0x436/0x2890 [ 228.526417][ T7715] ? __pfx_shmem_fault+0x10/0x10 [ 228.526442][ T7715] ? __page_table_check_zero+0x2f2/0x4a0 [ 228.526490][ T7715] __do_fault+0x10d/0x490 [ 228.526520][ T7715] do_fault+0x302/0x1ad0 [ 228.526553][ T7715] ? __pfx_filemap_map_pages+0x10/0x10 [ 228.526584][ T7715] __handle_mm_fault+0x1919/0x2bb0 [ 228.526629][ T7715] ? __pfx___handle_mm_fault+0x10/0x10 [ 228.526667][ T7715] ? find_vma+0xbf/0x140 [ 228.526695][ T7715] ? __pfx_find_vma+0x10/0x10 [ 228.526727][ T7715] handle_mm_fault+0x3fe/0xad0 [ 228.526753][ T7715] do_user_addr_fault+0x7a6/0x1370 [ 228.526786][ T7715] ? rcu_is_watching+0x12/0xc0 [ 228.526838][ T7715] exc_page_fault+0x64/0xc0 [ 228.526874][ T7715] asm_exc_page_fault+0x26/0x30 [ 228.526895][ T7715] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 228.526923][ T7715] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 228.526944][ T7715] RSP: 0018:ffffc90004bc7638 EFLAGS: 00050202 [ 228.526961][ T7715] RAX: 0000000000000001 RBX: 0000000000002c2c RCX: 0000000000001da1 [ 228.526975][ T7715] RDX: ffffed100b4dd585 RSI: ffff88805a6e8e8b RDI: 0000000000001000 [ 228.526989][ T7715] RBP: 0000000000002c2c R08: 0000000000000000 R09: ffffed100b4dd585 [ 228.527002][ T7715] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000175 [ 228.527015][ T7715] R13: ffffc90004bc7d60 R14: ffff88805a6e8000 R15: 0000000000000175 [ 228.527045][ T7715] _copy_to_iter+0x4eb/0x1710 [ 228.527077][ T7715] ? __pfx__copy_to_iter+0x10/0x10 [ 228.527102][ T7715] ? rcu_is_watching+0x12/0xc0 [ 228.527134][ T7715] ? trace_kmalloc+0x2b/0xb0 [ 228.527168][ T7715] ? __asan_memcpy+0x3c/0x60 [ 228.527195][ T7715] ? append_kcore_note+0x17c/0x220 [ 228.527235][ T7715] read_kcore_iter+0x152c/0x1990 [ 228.527279][ T7715] ? __pfx_read_kcore_iter+0x10/0x10 [ 228.527337][ T7715] ? kernel_text_address+0x8d/0x100 [ 228.527364][ T7715] ? __kernel_text_address+0xd/0x40 [ 228.527419][ T7715] ? __pfx_aa_file_perm+0x10/0x10 [ 228.527453][ T7715] ? find_held_lock+0x2b/0x80 [ 228.527487][ T7715] ? proc_reg_read_iter+0x11b/0x310 [ 228.527514][ T7715] proc_reg_read_iter+0x11b/0x310 [ 228.527544][ T7715] do_iter_readv_writev+0x743/0x9e0 [ 228.527578][ T7715] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 228.527617][ T7715] ? rw_verify_area+0xcf/0x6c0 [ 228.527649][ T7715] vfs_readv+0x4cb/0x8b0 [ 228.527685][ T7715] ? __pfx_vfs_readv+0x10/0x10 [ 228.527716][ T7715] ? find_held_lock+0x2b/0x80 [ 228.527762][ T7715] ? __fget_files+0x20e/0x3c0 [ 228.527807][ T7715] ? do_preadv+0x1a6/0x270 [ 228.527836][ T7715] do_preadv+0x1a6/0x270 [ 228.527867][ T7715] ? __pfx_do_preadv+0x10/0x10 [ 228.527905][ T7715] do_syscall_64+0xcd/0xf80 [ 228.527943][ T7715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.527964][ T7715] RIP: 0033:0x7f756e18f7c9 [ 228.527981][ T7715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.528002][ T7715] RSP: 002b:00007f756efea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 228.528021][ T7715] RAX: ffffffffffffffda RBX: 00007f756e3e6180 RCX: 00007f756e18f7c9 [ 228.528037][ T7715] RDX: 0000000000000005 RSI: 00002000000002c0 RDI: 0000000000000005 [ 228.528051][ T7715] RBP: 00007f756efea090 R08: 0000008100000001 R09: 0000000000000000 [ 228.528065][ T7715] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001 [ 228.528078][ T7715] R13: 00007f756e3e6218 R14: 00007f756e3e6180 R15: 00007ffccd326d98 [ 228.528107][ T7715] [ 233.549001][ T7730] kexec: Could not allocate control_code_buffer [ 234.221198][ T7751] netlink: 338 bytes leftover after parsing attributes in process `syz.0.402'. [ 234.313735][ T7751] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode [ 235.569393][ T7768] random: crng reseeded on system resumption [ 237.396008][ T7790] netlink: 8 bytes leftover after parsing attributes in process `syz.1.412'. [ 238.739172][ T7801] tipc: Started in network mode [ 238.781188][ T7801] tipc: Node identity ee00, cluster identity 4711 [ 238.847097][ T7801] tipc: Node number set to 60928 [ 239.470718][ T7783] kexec: Could not allocate control_code_buffer [ 242.216188][ T7827] sg_write: process 383 (syz.3.420) changed security contexts after opening file descriptor, this is not allowed. [ 242.629120][ T7848] netlink: 338 bytes leftover after parsing attributes in process `syz.1.422'. [ 242.721030][ T7852] netlink: 338 bytes leftover after parsing attributes in process `syz.3.423'. [ 244.528931][ T7878] netlink: 338 bytes leftover after parsing attributes in process `syz.1.430'. [ 245.776778][ T7893] tipc: Started in network mode [ 245.856995][ T7893] tipc: Node identity ee00, cluster identity 4711 [ 245.947627][ T7893] tipc: Node number set to 60928 [ 247.593394][ T7895] FAULT_INJECTION: forcing a failure. [ 247.593394][ T7895] name failslab, interval 1, probability 0, space 0, times 0 [ 247.647076][ T7895] CPU: 0 UID: 0 PID: 7895 Comm: syz.1.434 Tainted: G U L syzkaller #0 PREEMPT(full) [ 247.647119][ T7895] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 247.647127][ T7895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 247.647154][ T7895] Call Trace: [ 247.647162][ T7895] [ 247.647171][ T7895] dump_stack_lvl+0x16c/0x1f0 [ 247.647216][ T7895] should_fail_ex+0x512/0x640 [ 247.647243][ T7895] ? __kmalloc_cache_noprof+0x5f/0x800 [ 247.647273][ T7895] should_failslab+0xc2/0x120 [ 247.647312][ T7895] __kmalloc_cache_noprof+0x80/0x800 [ 247.647340][ T7895] ? percpu_ref_init+0xec/0x410 [ 247.647387][ T7895] ? percpu_ref_init+0xec/0x410 [ 247.647421][ T7895] ? __pfx_io_ring_ctx_ref_free+0x10/0x10 [ 247.647460][ T7895] percpu_ref_init+0xec/0x410 [ 247.647498][ T7895] io_uring_setup+0x3e9/0x1f80 [ 247.647534][ T7895] ? __pfx_io_uring_setup+0x10/0x10 [ 247.647569][ T7895] ? do_futex+0x122/0x350 [ 247.647596][ T7895] ? __pfx_do_futex+0x10/0x10 [ 247.647638][ T7895] ? xfd_validate_state+0x61/0x180 [ 247.647667][ T7895] __x64_sys_io_uring_setup+0xc2/0x170 [ 247.647702][ T7895] do_syscall_64+0xcd/0xf80 [ 247.647743][ T7895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.647767][ T7895] RIP: 0033:0x7f756e18f7c9 [ 247.647791][ T7895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 247.647815][ T7895] RSP: 002b:00007f756f02c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 247.647838][ T7895] RAX: ffffffffffffffda RBX: 00007f756e3e5fa0 RCX: 00007f756e18f7c9 [ 247.647854][ T7895] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 247.647868][ T7895] RBP: 00007f756e213f91 R08: 0000000000000000 R09: 0000000000000000 [ 247.647883][ T7895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 247.647898][ T7895] R13: 00007f756e3e6038 R14: 00007f756e3e5fa0 R15: 00007ffccd326d98 [ 247.647928][ T7895] [ 253.897906][ T7969] bridge0: port 3(macvlan0) entered blocking state [ 254.018161][ T7969] bridge0: port 3(macvlan0) entered disabled state [ 254.093754][ T7969] macvlan0: entered allmulticast mode [ 254.168659][ T7969] veth1_vlan: entered allmulticast mode [ 254.244889][ T7969] macvlan0: entered promiscuous mode [ 254.291707][ T7969] FAULT_INJECTION: forcing a failure. [ 254.291707][ T7969] name failslab, interval 1, probability 0, space 0, times 0 [ 254.380629][ T7969] CPU: 0 UID: 0 PID: 7969 Comm: syz.2.444 Tainted: G U L syzkaller #0 PREEMPT(full) [ 254.380670][ T7969] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 254.380679][ T7969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 254.380693][ T7969] Call Trace: [ 254.380701][ T7969] [ 254.380710][ T7969] dump_stack_lvl+0x16c/0x1f0 [ 254.380751][ T7969] should_fail_ex+0x512/0x640 [ 254.380779][ T7969] ? __kmalloc_cache_noprof+0x5f/0x800 [ 254.380809][ T7969] should_failslab+0xc2/0x120 [ 254.380847][ T7969] __kmalloc_cache_noprof+0x80/0x800 [ 254.380874][ T7969] ? __pfx_fdb_fill_info+0x10/0x10 [ 254.380904][ T7969] ? __pfx___alloc_skb+0x10/0x10 [ 254.380930][ T7969] ? nbp_vlan_init+0x163/0x500 [ 254.380968][ T7969] ? nbp_vlan_init+0x163/0x500 [ 254.381001][ T7969] nbp_vlan_init+0x163/0x500 [ 254.381035][ T7969] ? __pfx_nbp_vlan_init+0x10/0x10 [ 254.381073][ T7969] ? __local_bh_enable_ip+0xa4/0x120 [ 254.381107][ T7969] ? lockdep_hardirqs_on+0x7c/0x110 [ 254.381144][ T7969] ? br_fdb_add_local+0x43/0x60 [ 254.381171][ T7969] ? __local_bh_enable_ip+0xa4/0x120 [ 254.381209][ T7969] br_add_if+0xfa6/0x1b70 [ 254.381251][ T7969] add_del_if+0x114/0x160 [ 254.381288][ T7969] br_dev_siocdevprivate+0x908/0x1650 [ 254.381328][ T7969] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 254.381376][ T7969] ? lock_acquire+0x179/0x330 [ 254.381401][ T7969] ? __pfx___might_resched+0x10/0x10 [ 254.381440][ T7969] ? netdev_name_node_lookup+0x127/0x180 [ 254.381469][ T7969] ? __mutex_lock+0x27b/0x1ca0 [ 254.381493][ T7969] dev_ifsioc+0x8ee/0x1ee0 [ 254.381527][ T7969] ? __pfx_dev_ifsioc+0x10/0x10 [ 254.381556][ T7969] ? __pfx___mutex_lock+0x10/0x10 [ 254.381590][ T7969] ? dev_load+0x8e/0x240 [ 254.381625][ T7969] dev_ioctl+0x1b2/0x1060 [ 254.381662][ T7969] sock_ioctl+0x5b3/0x6b0 [ 254.381686][ T7969] ? __pfx_sock_ioctl+0x10/0x10 [ 254.381706][ T7969] ? hook_file_ioctl_common+0x144/0x410 [ 254.381741][ T7969] ? __fget_files+0x20e/0x3c0 [ 254.381778][ T7969] ? __pfx_sock_ioctl+0x10/0x10 [ 254.381803][ T7969] __x64_sys_ioctl+0x18e/0x210 [ 254.381833][ T7969] do_syscall_64+0xcd/0xf80 [ 254.381872][ T7969] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.381901][ T7969] RIP: 0033:0x7fc4b818f7c9 [ 254.381919][ T7969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 254.381942][ T7969] RSP: 002b:00007fc4b8f59038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 254.381963][ T7969] RAX: ffffffffffffffda RBX: 00007fc4b83e5fa0 RCX: 00007fc4b818f7c9 [ 254.381978][ T7969] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 000000000000000a [ 254.381992][ T7969] RBP: 00007fc4b8213f91 R08: 0000000000000000 R09: 0000000000000000 [ 254.382006][ T7969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.382019][ T7969] R13: 00007fc4b83e6038 R14: 00007fc4b83e5fa0 R15: 00007ffee67efba8 [ 254.382049][ T7969] [ 254.961539][ T7969] macvlan0: failed to initialize vlan filtering on this port [ 255.690636][ T7969] macvlan0: left allmulticast mode [ 255.743552][ T7969] veth1_vlan: left allmulticast mode [ 257.901924][ T8018] FAULT_INJECTION: forcing a failure. [ 257.901924][ T8018] name failslab, interval 1, probability 0, space 0, times 0 [ 257.988659][ T8018] CPU: 0 UID: 0 PID: 8018 Comm: syz.2.455 Tainted: G U L syzkaller #0 PREEMPT(full) [ 257.988701][ T8018] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 257.988710][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 257.988725][ T8018] Call Trace: [ 257.988732][ T8018] [ 257.988741][ T8018] dump_stack_lvl+0x16c/0x1f0 [ 257.988785][ T8018] should_fail_ex+0x512/0x640 [ 257.988813][ T8018] ? kmem_cache_alloc_noprof+0x62/0x770 [ 257.988845][ T8018] should_failslab+0xc2/0x120 [ 257.988883][ T8018] kmem_cache_alloc_noprof+0x83/0x770 [ 257.988912][ T8018] ? __kernfs_new_node+0xd2/0x9b0 [ 257.988946][ T8018] ? __kernfs_new_node+0xd2/0x9b0 [ 257.988972][ T8018] __kernfs_new_node+0xd2/0x9b0 [ 257.989004][ T8018] ? __pfx___kernfs_new_node+0x10/0x10 [ 257.989040][ T8018] ? find_held_lock+0x2b/0x80 [ 257.989072][ T8018] ? kernfs_root+0xee/0x2a0 [ 257.989106][ T8018] kernfs_new_node+0x13c/0x1e0 [ 257.989155][ T8018] __kernfs_create_file+0x53/0x350 [ 257.989196][ T8018] cgroup_addrm_files+0x546/0xc20 [ 257.989240][ T8018] ? __xa_store+0x1dc/0x2e0 [ 257.989263][ T8018] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 257.989297][ T8018] ? __pfx___xa_store+0x10/0x10 [ 257.989330][ T8018] ? do_raw_spin_unlock+0x172/0x230 [ 257.989363][ T8018] css_populate_dir+0x169/0x570 [ 257.989396][ T8018] cgroup_apply_control_enable+0x3f3/0xbb0 [ 257.989440][ T8018] cgroup_mkdir+0x5e0/0x12e0 [ 257.989478][ T8018] ? __pfx_cgroup_mkdir+0x10/0x10 [ 257.989519][ T8018] kernfs_iop_mkdir+0x111/0x190 [ 257.989549][ T8018] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 257.989575][ T8018] vfs_mkdir+0x731/0xb60 [ 257.989607][ T8018] do_mkdirat+0x442/0x5e0 [ 257.989650][ T8018] ? __pfx_do_mkdirat+0x10/0x10 [ 257.989687][ T8018] ? strncpy_from_user+0x203/0x2e0 [ 257.989715][ T8018] ? getname_flags.part.0+0x1c5/0x550 [ 257.989744][ T8018] __x64_sys_mkdir+0xef/0x140 [ 257.989783][ T8018] do_syscall_64+0xcd/0xf80 [ 257.989822][ T8018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.989846][ T8018] RIP: 0033:0x7fc4b818f7c9 [ 257.989864][ T8018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.989887][ T8018] RSP: 002b:00007fc4b63f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 257.989908][ T8018] RAX: ffffffffffffffda RBX: 00007fc4b83e6090 RCX: 00007fc4b818f7c9 [ 257.989924][ T8018] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 257.989938][ T8018] RBP: 00007fc4b8213f91 R08: 0000000000000000 R09: 0000000000000000 [ 257.989952][ T8018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.989966][ T8018] R13: 00007fc4b83e6128 R14: 00007fc4b83e6090 R15: 00007ffee67efba8 [ 257.989996][ T8018] [ 257.990047][ T8018] cgroup: cgroup_addrm_files: failed to add usage_in_bytes, err=-12 [ 258.368218][ T7985] kexec: Could not allocate control_code_buffer [ 259.161432][ T8030] sp0: Synchronizing with TNC [ 259.784843][ T8033] zswap: compressor W;0?u=8}L(Eֹjj8+xpȜNkRuoo [ 261.263641][ T8072] dump_stack_lvl+0x16c/0x1f0 [ 261.263686][ T8072] should_fail_ex+0x512/0x640 [ 261.263714][ T8072] ? __kmalloc_cache_noprof+0x5f/0x800 [ 261.263746][ T8072] should_failslab+0xc2/0x120 [ 261.263784][ T8072] __kmalloc_cache_noprof+0x80/0x800 [ 261.263813][ T8072] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 261.263856][ T8072] ? vidtv_psi_pmt_table_init+0x363/0x430 [ 261.263900][ T8072] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 261.263940][ T8072] vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 261.263983][ T8072] vidtv_channel_si_init+0x13d2/0x1a50 [ 261.264021][ T8072] vidtv_mux_init+0x526/0xbe0 [ 261.264052][ T8072] vidtv_start_feed+0x33e/0x4d0 [ 261.264088][ T8072] ? __pfx_vidtv_start_feed+0x10/0x10 [ 261.264124][ T8072] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 261.264167][ T8072] ? mark_held_locks+0x49/0x80 [ 261.264194][ T8072] ? __pfx_vidtv_start_feed+0x10/0x10 [ 261.264229][ T8072] dmx_ts_feed_start_filtering+0xf6/0x220 [ 261.264265][ T8072] dvb_dmxdev_start_feed+0x273/0x3f0 [ 261.264295][ T8072] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 261.264335][ T8072] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 261.264366][ T8072] dvb_demux_do_ioctl+0x9de/0x12f0 [ 261.264404][ T8072] dvb_usercopy+0x167/0x340 [ 261.264427][ T8072] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 261.264457][ T8072] ? __pfx_dvb_usercopy+0x10/0x10 [ 261.264491][ T8072] ? __fget_files+0x20e/0x3c0 [ 261.264533][ T8072] dvb_demux_ioctl+0x29/0x40 [ 261.264555][ T8072] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 261.264580][ T8072] __x64_sys_ioctl+0x18e/0x210 [ 261.264613][ T8072] do_syscall_64+0xcd/0xf80 [ 261.264655][ T8072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.264685][ T8072] RIP: 0033:0x7fc4b818f7c9 [ 261.264704][ T8072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.264729][ T8072] RSP: 002b:00007fc4b63f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 261.264752][ T8072] RAX: ffffffffffffffda RBX: 00007fc4b83e6090 RCX: 00007fc4b818f7c9 [ 261.264768][ T8072] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 261.264782][ T8072] RBP: 00007fc4b8213f91 R08: 0000000000000000 R09: 0000000000000000 [ 261.264797][ T8072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 261.264811][ T8072] R13: 00007fc4b83e6128 R14: 00007fc4b83e6090 R15: 00007ffee67efba8 [ 261.264843][ T8072] [ 261.264947][ T8072] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 261.264973][ T8072] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 261.264996][ T8072] CPU: 0 UID: 0 PID: 8072 Comm: syz.2.467 Tainted: G U L syzkaller #0 PREEMPT(full) [ 261.265032][ T8072] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 261.265041][ T8072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 261.265056][ T8072] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 261.265097][ T8072] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 3d 45 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 19 45 b9 f9 4d 85 e4 [ 261.265121][ T8072] RSP: 0018:ffffc90003867a20 EFLAGS: 00010247 [ 261.265140][ T8072] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: 0000000000000001 [ 261.265157][ T8072] RDX: 0000000000000000 RSI: ffffffff880525e3 RDI: 0000000000000005 [ 261.265172][ T8072] RBP: ffff88805d0c58a0 R08: 0000000000000000 R09: 4453534204050000 [ 261.265188][ T8072] R10: 0000000000000005 R11: 000000000004863c R12: 0000000000000000 [ 261.265203][ T8072] R13: ffff8880782cbb40 R14: ffff88801ebc0000 R15: ffff88802a75e680 [ 261.265220][ T8072] FS: 00007fc4b63f66c0(0000) GS:ffff8881248fa000(0000) knlGS:0000000000000000 [ 261.265247][ T8072] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 261.265264][ T8072] CR2: 00007f8ec4f156c0 CR3: 000000002553a000 CR4: 00000000003526f0 [ 261.265280][ T8072] Call Trace: [ 261.265287][ T8072] [ 261.265296][ T8072] vidtv_channel_si_init+0x1445/0x1a50 [ 261.265336][ T8072] vidtv_mux_init+0x526/0xbe0 [ 261.265366][ T8072] vidtv_start_feed+0x33e/0x4d0 [ 261.265401][ T8072] ? __pfx_vidtv_start_feed+0x10/0x10 [ 261.265437][ T8072] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 261.265477][ T8072] ? mark_held_locks+0x49/0x80 [ 261.265501][ T8072] ? __pfx_vidtv_start_feed+0x10/0x10 [ 261.265536][ T8072] dmx_ts_feed_start_filtering+0xf6/0x220 [ 261.265569][ T8072] dvb_dmxdev_start_feed+0x273/0x3f0 [ 261.265596][ T8072] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 261.265625][ T8072] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 261.265652][ T8072] dvb_demux_do_ioctl+0x9de/0x12f0 [ 261.265684][ T8072] dvb_usercopy+0x167/0x340 [ 261.265706][ T8072] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 261.265735][ T8072] ? __pfx_dvb_usercopy+0x10/0x10 [ 261.265763][ T8072] ? __fget_files+0x20e/0x3c0 [ 261.265800][ T8072] dvb_demux_ioctl+0x29/0x40 [ 261.265824][ T8072] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 261.265847][ T8072] __x64_sys_ioctl+0x18e/0x210 [ 261.265879][ T8072] do_syscall_64+0xcd/0xf80 [ 261.265918][ T8072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.265944][ T8072] RIP: 0033:0x7fc4b818f7c9 [ 261.265962][ T8072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 261.265987][ T8072] RSP: 002b:00007fc4b63f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 261.266010][ T8072] RAX: ffffffffffffffda RBX: 00007fc4b83e6090 RCX: 00007fc4b818f7c9 [ 261.266027][ T8072] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 261.266042][ T8072] RBP: 00007fc4b8213f91 R08: 0000000000000000 R09: 0000000000000000 [ 261.266057][ T8072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 261.266072][ T8072] R13: 00007fc4b83e6128 R14: 00007fc4b83e6090 R15: 00007ffee67efba8 [ 261.266096][ T8072] [ 261.266104][ T8072] Modules linked in: [ 261.266144][ T8072] ---[ end trace 0000000000000000 ]--- [ 261.282364][ T8072] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 261.282415][ T8072] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 3d 45 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 19 45 b9 f9 4d 85 e4 [ 261.282440][ T8072] RSP: 0018:ffffc90003867a20 EFLAGS: 00010247 [ 261.282459][ T8072] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: 0000000000000001 [ 261.282475][ T8072] RDX: 0000000000000000 RSI: ffffffff880525e3 RDI: 0000000000000005 [ 261.282490][ T8072] RBP: ffff88805d0c58a0 R08: 0000000000000000 R09: 4453534204050000 [ 261.282507][ T8072] R10: 0000000000000005 R11: 000000000004863c R12: 0000000000000000 [ 261.282522][ T8072] R13: ffff8880782cbb40 R14: ffff88801ebc0000 R15: ffff88802a75e680 [ 261.282539][ T8072] FS: 00007fc4b63f66c0(0000) GS:ffff8881248fa000(0000) knlGS:0000000000000000 [ 261.282562][ T8072] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 261.282579][ T8072] CR2: 0000001b31b89cc0 CR3: 000000002553a000 CR4: 00000000003526f0 [ 261.282597][ T8072] Kernel panic - not syncing: Fatal exception [ 261.282664][ T8072] Kernel Offset: disabled