last executing test programs: 20.049176461s ago: executing program 0 (id=1375): pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x103040, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x80, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x101001, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x42082, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) memfd_create$auto(0x0, 0x5) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xc8202, 0x0) socket(0x18, 0x80000, 0x2) sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="1d000000", @ANYRES16=0x0, @ANYBLOB="0100f902ff09000000000000000008000b00ac141420080001"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x11, 0xa, 0x9) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x880, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x1e3903, 0x0) socket(0xa, 0x2, 0x0) r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r1, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082) write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) 19.520712886s ago: executing program 0 (id=1381): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/ip6_mr_cache\x00', 0x1900, 0x0) mmap$auto(0x2, 0xa000d, 0x9, 0x17, r0, 0xffffffffdffffffe) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x14}, 0x40000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x109802, 0x0) writev$auto(r1, &(0x7f00000002c0)={0x0, 0x4000000001}, 0x5) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0001, 0x7df2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0xfffffffe, 0x0) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) io_uring_setup$auto(0x10000001, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000200)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x0, 0x7f, 0x0, 0x6, 0xffffffffffffffed}, {0x100, 0x1, 0x52, 0x5, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0x100000000}}) io_uring_register$auto(0x2, 0x21, &(0x7f0000000240), 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x200}, 0xfffffffffffffffe) fsconfig$auto_XFS_DAX_NEVER(r1, 0xf, &(0x7f0000000080)='\x00', &(0x7f00000000c0)="f5571fe2377b1ee9a7e0fe7202a303d74b79fe3be00fbf", 0x2) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) setresuid$auto(0x8, 0x8, 0x0) mremap$auto(0x2c9, 0x8, 0x3, 0x8, 0xf) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r2, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5) keyctl$auto(0x9, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8) socket(0x29, 0x5, 0x0) 18.938377325s ago: executing program 0 (id=1382): r0 = pidfd_open$auto(0x1, 0x0) setns(r0, 0x60020000) umount2$auto(&(0x7f0000000080)='.\x00\x17\xe7\xcbK\x17\xa2\xa0\x9a\xf6\x81\xee\xbfB\x9d\x8cL\xc9 \f\xd5\x1f\xf5\xd0\xe2\xfb\x1bG[\x0e\v\xbcq\xa1(Gz\xd7\x02Viw@\x8c9 \xee\x8a\x04\xe7\xd6\xc5\xc6_\xb2\ndUsI\xd8o\x00\x00\x00\xff\xe4\xed^0\xed\xc5\tg\x91\x87\xb5\xa9\xcd\xde\xf2L\x10VL$\xb3\xd4\x89\x01Y@%v\xa2\a\x98G\xf1\x0eMg\xe1p5u\xb3E\xfc\x1c\xd2-\xe4\\;nQJ', 0x8) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) (async) r1 = socket(0x1d, 0x2, 0x6) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (async) socket(0x10, 0x2, 0x0) (async) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) 18.665072138s ago: executing program 0 (id=1383): mmap$auto(0x0, 0x202000e, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x244901, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x0, 0x10000) close_range$auto(0x2, 0x8, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) read$auto_percpu_stats_fops_(r0, &(0x7f0000000040)=""/104, 0x68) mmap$auto(0x0, 0x2020009, 0xfffffffffffffffd, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0x2, 0x3, 0x100) getsockopt$auto_SO_RXQ_OVFL(r1, 0xff, 0x28, 0x0, 0x0) capset$auto(0x0, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp1\x00', 0x20342, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop6\x00', 0x101202, 0x0) r2 = socket(0x2b, 0x1, 0x0) r3 = socket(0x10, 0x1, 0x44) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'xfrm0\x00'}) sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r2, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x200490c4) sendmsg$auto_ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x2000000, 0x28000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x2000c031) sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="0c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4000004}, 0x4830) write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0xd00, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyr0\x00', 0x6a500, 0x0) socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 18.344612044s ago: executing program 0 (id=1385): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/ip6_mr_cache\x00', 0x1900, 0x0) mmap$auto(0x2, 0xa000d, 0x9, 0x17, r0, 0xffffffffdffffffe) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x14}, 0x40000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x4) writev$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x4000000001}, 0x5) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0xfffffffffffffffd, 0xffffffffffff0001, 0x7df2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0xfffffffe, 0x0) mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000) io_uring_setup$auto(0x10000001, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000200)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x0, 0x7f, 0x0, 0x6, 0xffffffffffffffed}, {0x100, 0x1, 0x52, 0x5, 0x2, 0x1a7b870a, 0x76c2, 0x9, 0x100000000}}) io_uring_register$auto(0x2, 0x21, &(0x7f0000000240), 0x1) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x200}, 0xfffffffffffffffe) fsconfig$auto_XFS_DAX_NEVER(0xffffffffffffffff, 0xf, &(0x7f0000000080)='\x00', &(0x7f00000000c0)="f5571fe2377b1ee9a7e0fe7202a303d74b79fe3be00fbf", 0x2) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) setresuid$auto(0x8, 0x8, 0x0) mremap$auto(0x2c9, 0x8, 0x3, 0x8, 0xf) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r2, &(0x7f0000000180)='7\x00\\\xa0\x04|4\x00\x00\x03\x00\x00\x00\x10\x01\x00\x00\x00\x00\x00\x00\x00\x00rRVr\xc4O\xdc1\x9b%\x10Z\'\xb9\'\xa3stC=\x85\xc6\xf6\x13 \xeb\xff%\x11\x82\x05\xdfV\x02\xca&\xd8$<\xab&\xc8B-\xcc\x15\x04&\x13;\xfe\xbdQ\xaa\x16o\x1f\xc7\x94\xa3\xc9\x9a\xe1d\xf5\n\xe2\x88\x84\vT?\x98\xa2\x00'/206, 0x5) keyctl$auto(0x9, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x8) socket(0x29, 0x5, 0x0) 17.877936321s ago: executing program 0 (id=1386): r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r1 = socket(0x2, 0x1, 0x84) bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)=@batch={0x1, 0x101, 0x2, 0x0, 0x6, r1, 0x1, 0xbf80}, 0x6) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0) sysfs$auto(0x2, 0x10000000000002d, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r3, 0x7af, 0x0) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r3, 0x7af, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto_IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r3, 0x7b0, 0x0) msync$auto(0x200000, 0x2000000005, 0x6) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram12\x00', 0x1, 0x0) ioctl$auto_BLKTRACESETUP32(r4, 0xc0401273, &(0x7f0000000000)={"b8ba916947e37a41eda273897f913e9793e771f1c8a3c5aee0410bb1d2ac16b5", 0x2, 0x7, 0x10001, 0x7, 0xefd, 0xffffffffffffffff}) syz_open_procfs$namespace(r5, &(0x7f0000000080)='ns/pid\x00') openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/irq/default_smp_affinity\x00', 0x2, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) mmap$auto(0x0, 0x8, 0x8, 0xeb1, 0xffffffffffffffff, 0xa800000000000000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x6}, 0x8) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8914, 0x24) 7.77687788s ago: executing program 1 (id=1422): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000500), 0x1, 0x0) write$auto(r0, &(0x7f0000000540)='\x00', 0xbe) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x18b202, 0x0) pread64$auto(r2, &(0x7f0000000340)='/proc/Nes\x1f\x00'/22, 0x100000001, 0x100) pipe$auto(&(0x7f0000000080)=r1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x801, 0x106) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) socketpair$auto(0x3, 0x5, 0x7, 0x0) setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb) sendmsg$auto_NL80211_CMD_SET_CQM(r1, &(0x7f0000002c00)={0x0, 0x0, &(0x7f0000002bc0)={&(0x7f0000001300)=ANY=[@ANYRES16=0x0, @ANYBLOB="010026bd7000fbdbdf253f00000028000e00308ba5e870bed0a43dce27b2bbdde3385da8cb73934764dbb462b48c5ea875cdbaaee06f"], 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x48884) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x2e8604, 0x0) write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000003900)='\t', 0x1) ioctl$auto_UBI_IOCATT(0xffffffffffffffff, 0x40186f40, &(0x7f0000000000)={0x9, 0x0, 0x8000, 0x9, 0x9, 0x4}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/security/tomoyo/profile\x00', 0x40802, 0x0) 6.242043798s ago: executing program 1 (id=1426): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyr1\x00', 0x80200, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) close_range$auto(r0, 0x8, 0x0) r3 = socket(0x28, 0xa, 0x1) io_uring_setup$auto(0x6, 0x0) close_range$auto(r3, 0x8, 0x7) socket(0x2a, 0x2, 0x1) prctl$auto(0x21, 0x0, 0x2, 0x0, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5) r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r4, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9}) waitid$auto_P_ALL(0x0, 0x1, &(0x7f0000000300)={@_si_pad}, 0x20, &(0x7f0000000380)={{0x7fff, 0x4}, {0xfff, 0x7}, 0x39b10f36, 0x5, 0x5, 0xe02, 0x7fff, 0x6, 0x7, 0x6, 0xffffffffffffffc1, 0x4, 0x0, 0x8, 0x4f53, 0x6}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vivid.0/media4/model\x00', 0xa8000, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x594c, 0x9fffffffd) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000040)=""/194, 0xc2) openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) 5.92628606s ago: executing program 3 (id=1428): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/bond0/bonding/arp_all_targets\x00', 0x140b02, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_tracing_buffers_fops_trace(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)="023b8829afee0f9e18cde2ff58df8494cbbde0acb819dfe8") socket(0x10, 0x2, 0x4) socket(0x2, 0x3, 0x4) ioperm$auto(0x3, 0xe, 0x2000000000000149) clock_getres$auto(0x8, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000540)=""/150, 0x96) write$auto(r1, &(0x7f0000000380)=' U\x15\xa2t\xe0\x1b\xb0\xff\xe8\x91@\x88\n\x92\xf1rL\x9c\rg-\xcc]\x0e\x06\x03\a0k\x85&YS\xb0;\xfd\xd6\x0eH\xb3 \xc2`\xbc\xec\f\xd0\x97\x19\xa6Y\xb0\x15Z/\xe2\xc3\x8e\xc1\xa7v\xe3\xc3\xb0d\x86\x8f\x86\x14S\xdc\xe2G\xb5\x8dN%\x84\xa3\xb4\xb8!\xf9\x01=4T\xb2\xff\xb6\x9dx\x1e\x8dU\xbe*\xa5\xe4q\xd23\xdf\xcce\x17\xc1WX\x0e\xb5\x16\xe6>R\x1b\xf6', 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x80000, 0x0) statmount$auto(0x0, 0x0, 0x6, 0x7fffffff) openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x3d00, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) socket(0x11, 0x80003, 0x300) mmap$auto(0xfffffffffffffffb, 0x7f, 0x9, 0x1e, r1, 0x7) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000306b87000fedbdf250300000004000800040003800c0016"], 0x28}}, 0x4c810) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRESDEC, @ANYBLOB="e2"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYRES16=r2, @ANYBLOB="a0"], 0x1ac}, 0x1, 0x0, 0x0, 0x400}, 0x40000) socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x5d, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x8c48, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xfc, 0x1, 0x52, 0x8964, 0x1, 0x0, 0x401, 0x8, 0x100000000}}) socket(0x918ba089a7c5e5c9, 0x803, 0x401) socket$nl_generic(0x10, 0x3, 0x10) 5.433505767s ago: executing program 3 (id=1430): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyr1\x00', 0x80200, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) madvise$auto(0x0, 0xff7fffffffff0001, 0x15) close_range$auto(r0, 0x8, 0x0) r3 = socket(0x28, 0xa, 0x1) io_uring_setup$auto(0x6, 0x0) close_range$auto(r3, 0x8, 0x7) socket(0x2a, 0x2, 0x1) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1a9242, 0x0) sendfile$auto(r4, r4, 0x0, 0x5) r5 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40302, 0x0) ioctl$auto_PROCMAP_QUERY(r5, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9}) waitid$auto_P_ALL(0x0, 0x1, &(0x7f0000000300)={@_si_pad}, 0x20, &(0x7f0000000380)={{0x7fff, 0x4}, {0xfff, 0x7}, 0x39b10f36, 0x5, 0x5, 0xe02, 0x7fff, 0x6, 0x7, 0x6, 0xffffffffffffffc1, 0x4, 0x0, 0x8, 0x4f53, 0x6}) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vivid.0/media4/model\x00', 0xa8000, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x594c, 0x9fffffffd) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)=""/194, 0xc2) openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) 4.867868063s ago: executing program 2 (id=1431): openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 4.668413752s ago: executing program 1 (id=1432): r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) kexec_load$auto(0x200000000007, 0x1, 0x0, 0x4) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setresgid$auto(0x9, 0xffffffffffffffff, 0xffffffffffffffff) sysfs$auto(0x2, 0x100000000000031, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x20040080) mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(r0, 0x0, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0xaaf, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto_MADV_GUARD_REMOVE(0x0, 0x4, 0x67) setsockopt$auto_SO_DETACH_REUSEPORT_BPF(r0, 0x8, 0x44, &(0x7f0000000000)='\xbd\xea.\xf9K|#6%g8\xeb\xe1\xcc0y\x9d\x8c\xa8Mr\xc8\xb4\v4\xf1\x1f\x81K=C*&-\xef\xba\x92\xee\xe0=\xb5\xe0\x0fd\xcah\xa2\x85\xf1u\xa2\x92VNB6p', 0x40) 4.645523105s ago: executing program 2 (id=1433): r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000440), 0x20201, 0x0) writev$auto(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0x6}, 0x7) io_uring_setup$auto(0x1d48, 0x0) unshare$auto(0x40000080) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) r1 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x3, &(0x7f0000000080)={0x0, 0x7fff}, 0x5, 0x0, 0x2000000200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r1, 0x0, 0xffffff4b) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r3 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/tracing_on\x00', 0x4000, 0x0) close_range$auto(r0, r3, 0xff) lsm_get_self_attr$auto(0x64, &(0x7f0000000080)={0x0, 0x1, 0x7fffffffffffbfff}, 0x0, 0x0) r4 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_score_adj\x00', 0x60000, 0x0) sendmmsg$auto(r4, &(0x7f00000002c0)={{&(0x7f00000000c0)="56e8bc54d468b50401c37e791698dc976e9e258be13367e6492fa477798fd8bf63fbbfba59d4641010ffa7f2786923cabfdfeb6f7e53a8ab110d8dee352dcac1df7b0c780918f8b786f6c8dfa46cb1d65afe5f7ca96d9d86dd2d417f206d61a6a488cb20e58a7ce05ee7f32faa0f3ab6dc69fda1", 0xe, &(0x7f00000001c0)={&(0x7f0000000140)="138cd65c9739c77e94521c811c7deeb9f439045f1c48369d90c3844c43d72f5410c2258fc24ff4386c68d28c287418be6d98c59e99829df684254f41451174f6f4991f5584fe19313afd267a5916b5edbfddf7f9376593380a", 0x9}, 0x3, &(0x7f0000000200)="305e33ff15243886f4375dd0523e40d619e8b404099fd5cbd2513536b791579222cb6f161070d10c3d48ca7da75c23ef28e09818bdb14d2c090a02cab9c77c1ea528047697c8f4a8da7cc43cd3fccebcde45d429e486bdddeb175ad2792037962d6d9653caa935d44319ceab7a6223ab45f943575ecf58ba214f488f338537560ec74dbd547a937f2ab11dbb7e9a2ee6d0ebf15c30f12aefde61c913ee466b881be6ae2b60ea39798887f2f455e942f9b376b1", 0x5, 0x1}, 0x6}, 0x5cdf, 0x6) 3.463456482s ago: executing program 2 (id=1434): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x1, 0x9) mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000) exit$auto(0x41) semget$auto(0x0, 0x2e4a, 0x8000) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000200), r0) fanotify_init$auto(0x5, 0x2000000000002) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) mknod$auto(&(0x7f0000000000)='./file0\x00', 0x1, 0xa8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x82, 0x0) socket(0x2, 0x1, 0x0) socket(0x2, 0x5, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r1, 0x0) capset$auto(0x0, 0x0) epoll_ctl$auto(0x5, 0x3, r1, 0x0) epoll_wait$auto(0xffffffffffffffff, 0x0, 0xe007, 0x1) mq_notify$auto(0x4, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x4, 0x1}) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{0x0, 0x20000006, 0x0, 0xa7, &(0x7f0000000040)='~', 0x8000, 0x1}, 0x1}, 0x1, 0x9) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0xff, 0x0, 0x1, 0xf0}, 0xedf138c}, 0xb, 0x3) 3.172105431s ago: executing program 3 (id=1435): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x5, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) r3 = inotify_init1$auto(0x3000000000000) r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r0) sendmsg$auto_NFC_CMD_GET_DEVICE(r3, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0xd4, r4, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NFC_ATTR_SE_APDU={0xbe, 0x19, "c712b52350c170a7ee4db8a63c29605cc64ee52183b513e6729f896dec70c389445f51ecb68d382128dc1293072eb426e880d742d266cf924c0c84c2bfa1775b714ccb56c42853d572cb14f4cfe9003e7aad7b8762b2303ba5875bf64ae58f7dc88fad5cee026f87deb081f7fb6a05398552401e68e22cc7efc18b9b439bc9a803ea498ea81284c473c0156ebaaf99fbdc2058306e8117cdc958f5971a18099f1e0a068eeb326d048de148642d80d6b9f79c90114e5190258c1b"}]}, 0xd4}, 0x1, 0x0, 0x0, 0x30}, 0x8) inotify_rm_watch$auto(r3, 0x8) ioctl$auto_KVM_GET_MSRS(r1, 0x8040ae9f, &(0x7f0000000040)={0x2}) 2.736601242s ago: executing program 32 (id=1386): r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r1 = socket(0x2, 0x1, 0x84) bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)=@batch={0x1, 0x101, 0x2, 0x0, 0x6, r1, 0x1, 0xbf80}, 0x6) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0) sysfs$auto(0x2, 0x10000000000002d, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r3, 0x7af, 0x0) ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r3, 0x7af, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto_IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r3, 0x7b0, 0x0) msync$auto(0x200000, 0x2000000005, 0x6) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram12\x00', 0x1, 0x0) ioctl$auto_BLKTRACESETUP32(r4, 0xc0401273, &(0x7f0000000000)={"b8ba916947e37a41eda273897f913e9793e771f1c8a3c5aee0410bb1d2ac16b5", 0x2, 0x7, 0x10001, 0x7, 0xefd, 0xffffffffffffffff}) syz_open_procfs$namespace(r5, &(0x7f0000000080)='ns/pid\x00') openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/irq/default_smp_affinity\x00', 0x2, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) mmap$auto(0x0, 0x8, 0x8, 0xeb1, 0xffffffffffffffff, 0xa800000000000000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x6}, 0x8) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8914, 0x24) 2.723623262s ago: executing program 1 (id=1437): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) read$auto(r0, 0x0, 0x9) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, r0, 0x408010) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc) sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000000)={'tunl0\x00'}) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(r5, 0xc0045520, r3) socket(0x2b, 0x5, 0x0) setsockopt$auto_SO_BROADCAST(r4, 0x3, 0x6, &(0x7f00000002c0)='@\x00', 0xf) r6 = epoll_create$auto(0x8800001) epoll_ctl$auto(r6, 0x1, r1, 0x0) getrandom$auto(&(0x7f0000000380)='34\xdf\xb5\x9ap\xf1\xbdb\xf2l\x8b}\xadT\a+x(\xbd\x06\xc4hM\xa4\xb6>\xc9\xf1qy\xf4^H(2I\xc4\x17\xbd\xb8\x17\xb6\x13F\xba*\xae\x8d\x14\xfds\xb4W;\x9b\xe4\xcb\xc6SMUO@\xab\x15\x8a\xb1\xf3\xe5z\xef\x18 \xc5+\xf7\xcbA\xafz\xd4\xbc\x9d\x13\xe4\x9f\xe3}\x15\x1b\xf6wC\"I\x92\x96\xe0~P7\x15\x83\x1b\b\xfd\xa6\xbf:\xc8\x11Y\xf6\xb6\x10\xe6\xac\x14\xc7\xbc\xbc^oM\xf4J}\xb7?\xb9\x90#\xe5\xdf\x94g\x9c\xfd\x85@\xc8\x88\x8cl\xfcJ\xed{\xd3\xcf\x80\x80\xc6\xaa2p\x93\xd4y\xd7\xedD\xea\xba\x89C\xc7wX\x9c;x\x18\x18[\xfe', 0x0, 0xb03) syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r6) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x50) mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000300)=0xc9e, 0x400, 0x1) r7 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000100), 0x22001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_SET_MAC_ACL(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000680)=ANY=[@ANYBLOB="209047024688205e4e7b69384340051d2b8bcba99c775b9b7418f79cab1dd4f327a658255152574973c2b791c821d34593f3f78127e77ff54785db9005a08dc3f2", @ANYRESOCT=r7, @ANYBLOB="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"], 0xd8}, 0x1, 0x0, 0x0, 0x400c0}, 0x4000) io_uring_setup$auto(0x9, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$auto(0x3, 0x0, 0x100082) 2.681514893s ago: executing program 3 (id=1438): r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0) ioctl$auto(0x3, 0x80085617, 0x38) openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtd0ro\x00', 0x200, 0x0) mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000) prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0) brk$auto(0x7fffffffafff) brk$auto(0x7fffffffefff) setsockopt$auto_SO_SNDTIMEO_OLD(r0, 0x80000001, 0x15, &(0x7f0000000040)='/dev/v4l-subdev2\x00', 0x80000001) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto(0x3, 0x9, 0x0, 0x109, 0xfffffffffffff800) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_fops_x64_ro_(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy6/netdev:wlan1/stations/08:02:11:00:00:00/driver_buffered_tids\x00', 0x2000, 0x0) close_range$auto(r1, 0x8, 0xfffffffd) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/gro_flush_timeout\x00', 0x88a82, 0x0) r3 = socket(0x200000000000011, 0x2, 0x0) sendfile$auto(r3, r2, 0x0, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r4 = gettid() kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@buf=0x0, 0x8ab0, 0x6c0000c000, 0xc000}, 0x4) kill$auto(r4, 0x11) io_uring_setup$auto(0x59, &(0x7f0000001100)={0x7, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x110001, 0x1, 0x1, 0x40, 0x76c5, 0x8, 0x100000005}}) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000040)=0x5) read$auto(0x3, 0x0, 0x80) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x480, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e000000000100", @raw=0x3}, 0x4, 0x966, 0x3, @raw=0x404, @enumerated={0x8, 0x80000000, "033beddd1805dc0a0f9236c0095295603854aabf973f037f0896b19cbe04c0aa95c57dc0788556977828784abe1a8f695f19b28fd798a2fb818b216638fd3266", 0x48, 0x3}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) 2.457061712s ago: executing program 2 (id=1439): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000380)={0xa7, 0x9, 0x6, 0x3f9, &(0x7f00000001c0)="698e1b9ffaba995de0859ac2cf52b4784cb07181d416aa", 0xffffffff, 0x37b1, 0xd, @number_of_packets=0x3, 0x80000001, 0x7, &(0x7f00000002c0)="45cf5dd5337206daa6f8cdce7d4a203da8cc2e0420a872fcfd499d1d4f58889943deb3265a7a35899f5748eed17bf5b188647df7d2f877cd3b6b758d245bd3b77e5821024615b89c97281e7357187efaa78b96e34dca54032c0f32aa3c774afdfabeeb6322aa61b8f625a225a7eb4535620120569ca7029eb27b0c3abec0a95aa5bde43f790540072d85f90695b75893a5b6a65a7e467b6ae16de38d9de6", [{0x6, 0x5, 0x6}, {0x9, 0x3ff, 0xffffff5b}, {0x5ef7, 0x4, 0xc}, {0x3ff, 0x8, 0x4}]}) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x9001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') open(&(0x7f0000000100)='.\x00', 0x0, 0x0) mremap$auto(0x0, 0xffffffffffffffff, 0x3fda, 0x3, 0x7fffffffb000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x333c80, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000100)=""/184, 0xb8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f2, 0x15) madvise$auto(0x0, 0x200007, 0x19) pread64$auto(0xffffffffffffffff, 0x0, 0x100000002, 0x100000001) io_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) preadv2$auto(r2, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x29, 0x5, 0x0) write$auto(r3, &(0x7f0000000080)='/de$-audio1\x00', 0x100000a3dc) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) 2.113319938s ago: executing program 1 (id=1440): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd11\x00', 0x4ea02, 0x0) mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000) r0 = socket(0xa, 0x3, 0xfffff129) close$auto(r0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r1 = open(0x0, 0x0, 0x408) r2 = socketcall$auto_SYS_SOCKETPAIR(0x8, 0x0) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) ioctl$auto_TIOCGETD2(r2, 0x5424, &(0x7f00000000c0)="d4a922f9527adb91296b350d81ecdfb47013e5694596e86bb9c0bb7da0917bfc96089f6854e37ed1ae3d3f23db4bdb7a5e3f3f5e531ccb63187d1fae2221451bdc45f8b13bf9d33a0a7267fd9d3470b1732f5aae1fd2a1dc3955df05616ec65ffe0b64262dc223a5eba888c6e4b842c62d52fe0055e8e15543bfcbd82bb40ef1df886aee16a90f60376cb1a07f54d0d2b08bb4a7d2452f4a30101b37b1e93d55674a8495eb024e19a7c93f2f363089112eb02496b24f44d185880e1accfb4f00b7a0480d8a2b1144e839d5253c11cf946093ab36a38d7d65d5f121c800f2e0a108e8fc5508acc501b92f") unshare$auto(0x8000000) syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0) waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000001300)={@siginfo_0_0={0x6, 0x401, 0xa2, @_sigchld={0x0, 0x0, 0x2, 0x2d, 0x652c}}}, 0x5, &(0x7f0000000240)={{0xc4d, 0xffffffffffffff37}, {0x34, 0x5}, 0x5, 0x1, 0x9, 0xfffffffffffffffd, 0x4, 0x1, 0xf, 0x6, 0xd85, 0x7f, 0x6, 0x5e97, 0xd, 0x5}) migrate_pages$auto(0x0, 0x8, &(0x7f0000000000)=0x4, &(0x7f0000000040)=0x3) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/irq/3/smp_affinity_list\x00', 0x40, 0x0) read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000300)=""/4096, 0x1000) futex$auto(0x0, 0xa, 0xf, 0x0, 0x0, 0x8) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/pnp0/00:02/resources\x00', 0x63102, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd14/sched/write1_fifo_list\x00', 0x189e42, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) sendfile$auto(r2, r4, 0x0, 0x400000000006) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x80003, 0x304) r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r5, 0xaf01, 0x5) ioctl$auto(r5, 0x4008af03, 0x0) io_uring_setup$auto(0x1, 0x0) ioctl$auto_VHOST_NET_SET_BACKEND(r5, 0x4008af30, 0x0) close_range$auto(0x2, 0x8, 0x0) getdents$auto(r1, 0x0, 0x400018) 1.334580174s ago: executing program 1 (id=1441): r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r0, 0x64cb, 0xffffffffffffffff) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/platform/vivid.0/video4linux/vbi9/index\x00', 0x579b02, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mac80211_hwsim/hwsim0/ieee80211/phy0/name\x00', 0xac00, 0x0) ioctl$auto(0x4000000000000c8, 0x400454c8, 0x6f) mmap$auto(0x0, 0x7ff, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x1) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0xd, 0x80003, 0x3, 0x200000000001, 0xb4, 0x0, 0x8, 0x10007, 0x80, 0x4, 0x0, 0x10, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x1487, 0xfffffffe, 0xa9ba, 0x0, [0x0, 0x6, 0x100, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0xb, 0xfff, 0x0, 0xed8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x100]}, 0x1fe, 0xd) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x881) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x180, 0x0) read$auto_event_trigger_fops_trace(r2, &(0x7f0000000140)=""/196, 0xc4) sendfile$auto(r1, r1, 0x0, 0x3) fcntl$auto_F_SET_RW_HINT(r1, 0x40c, 0xc) mmap$auto(0x0, 0x40009, 0xdf, 0x8b72, 0x7, 0x28000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x14102, 0x0) r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="c80d1b5d399b39", 0xfffffe3e) r4 = socket(0xa, 0x5, 0x0) r5 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000000380), 0x181640, 0x0) read$auto_ptdump_fops_(r5, &(0x7f00000003c0)=""/201, 0xc9) getsockopt$auto(r4, 0x84, 0x4, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xaaf, 0x4000000000de, 0x7ff, 0xffffffffffffffff, 0x1008000) madvise$auto_MADV_GUARD_REMOVE(0x0, 0x4, 0x67) r6 = socket(0x29, 0x2, 0x0) setsockopt$auto(r6, 0x119, 0xfffffffe, 0x0, 0x8) syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000040), r4) 923.617897ms ago: executing program 2 (id=1442): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x18dd01, 0x0) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x902, 0x0) ioctl$auto(r1, 0x80004508, 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x200000008000) r2 = epoll_create$auto(0x0) epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0) write$auto(0x1, 0x0, 0x80000000) mprotect$auto(0x0, 0x8000000000000001, 0x8) recvmmsg$auto(0x3, 0x0, 0x10000, 0x4ff, 0x0) bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f0000000000)=@link_detach, 0x8) r3 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) write$auto(r3, 0x0, 0x7) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/i8042/serio1/protocol\x00', 0x181482, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/vm/dirty_background_bytes\x00', 0x202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/scsi/device_info\x00', 0x40100, 0x0) pread64$auto(r5, 0x0, 0x10001, 0x830) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) close_range$auto(r3, r6, 0xa00) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$auto(0x3, 0x4048aec9, r6) write$auto_ocfs2_control_fops_stack_user(r4, &(0x7f0000003900)='\t', 0x1) 801.490686ms ago: executing program 3 (id=1443): openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 583.771567ms ago: executing program 3 (id=1444): r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) lseek$auto(r0, 0x0, 0x2) unshare$auto(0x40000080) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) unshare$auto(0x6) r2 = openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000000240), 0x800, 0x0) read$auto_lowpan_control_fops_6lowpan(r2, &(0x7f0000000440)=""/4096, 0x1000) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r3 = socket(0x25, 0x1, 0x0) sendto$auto(r3, 0x0, 0x0, 0x0, 0x0, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000200)='/dev/usbmon37\x00', 0x640, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) setgid$auto(0x7ff) pkey_free$auto(0x6) read$auto_mon_fops_binary_mon_bin(r4, 0x0, 0x0) r5 = socket(0x2, 0x1, 0x0) pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06\x11\x00\x00\x00\x00?W\xff\xff\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/228, 0x8fdef, 0x4000000000000007) getsockopt$auto_SO_RXQ_OVFL(r5, 0x6, 0x28, 0x0, &(0x7f0000000040)=0x8) ioctl$auto_MON_IOCG_STATS(r4, 0x80089203, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r6 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r6, 0x0, 0x7, 0x4cbd5d) 0s ago: executing program 2 (id=1445): r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) kexec_load$auto(0x200000000007, 0x1, 0x0, 0x4) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setresgid$auto(0x9, 0xffffffffffffffff, 0xffffffffffffffff) sysfs$auto(0x2, 0x100000000000031, 0x0) r1 = fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x20040080) mmap$auto(0x0, 0x10008, 0x4000000000df, 0xeb1, 0x401, 0x8000) recvmmsg$auto(r0, 0x0, 0xfffffff9, 0x10, 0x0) mmap$auto(0x0, 0xaaf, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) madvise$auto_MADV_GUARD_REMOVE(0x0, 0x4, 0x67) setsockopt$auto_SO_DETACH_REUSEPORT_BPF(r0, 0x8, 0x44, &(0x7f0000000000)='\xbd\xea.\xf9K|#6%g8\xeb\xe1\xcc0y\x9d\x8c\xa8Mr\xc8\xb4\v4\xf1\x1f\x81K=C*&-\xef\xba\x92\xee\xe0=\xb5\xe0\x0fd\xcah\xa2\x85\xf1u\xa2\x92VNB6p', 0x40) kernel console output (not intermixed with test programs): ce: [ 298.330867][ T9742] [ 298.330879][ T9742] dump_stack_lvl+0x100/0x190 [ 298.330916][ T9742] should_fail_ex.cold+0x5/0xa [ 298.330954][ T9742] should_failslab+0xc2/0x120 [ 298.330989][ T9742] __kmalloc_node_track_caller_noprof+0xe3/0x850 [ 298.331021][ T9742] ? brnf_init_net+0x42/0x450 [ 298.331056][ T9742] ? __pfx_brnf_init_net+0x10/0x10 [ 298.331086][ T9742] kmemdup_noprof+0x29/0x60 [ 298.331120][ T9742] brnf_init_net+0x42/0x450 [ 298.331154][ T9742] ? __pfx_brnf_init_net+0x10/0x10 [ 298.331183][ T9742] ops_init+0x1e2/0x5f0 [ 298.331221][ T9742] setup_net+0x118/0x3a0 [ 298.331257][ T9742] ? __pfx_setup_net+0x10/0x10 [ 298.331291][ T9742] ? mutex_init_lockdep+0xf1/0x120 [ 298.331330][ T9742] copy_net_ns+0x46f/0x7c0 [ 298.331370][ T9742] create_new_namespaces+0x3ea/0xac0 [ 298.331424][ T9742] unshare_nsproxy_namespaces+0xf2/0x220 [ 298.331468][ T9742] ksys_unshare+0x438/0xab0 [ 298.331514][ T9742] ? __pfx_ksys_unshare+0x10/0x10 [ 298.331554][ T9742] ? xfd_validate_state+0x129/0x190 [ 298.331581][ T9742] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 298.331621][ T9742] __x64_sys_unshare+0x31/0x40 [ 298.331660][ T9742] do_syscall_64+0x10b/0xf80 [ 298.331698][ T9742] ? clear_bhb_loop+0x40/0x90 [ 298.331731][ T9742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.331758][ T9742] RIP: 0033:0x7f126999ce59 [ 298.331779][ T9742] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.331806][ T9742] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 298.331830][ T9742] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 298.331848][ T9742] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 298.331864][ T9742] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 298.331880][ T9742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.331896][ T9742] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 298.331931][ T9742] [ 298.677149][ T9743] FAULT_INJECTION: forcing a failure. [ 298.677149][ T9743] name failslab, interval 1, probability 0, space 0, times 0 [ 298.748762][ T9743] CPU: 0 UID: 8 PID: 9743 Comm: syz.1.924 Tainted: G L syzkaller #0 PREEMPT(full) [ 298.748809][ T9743] Tainted: [L]=SOFTLOCKUP [ 298.748820][ T9743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 298.748838][ T9743] Call Trace: [ 298.748847][ T9743] [ 298.748859][ T9743] dump_stack_lvl+0x100/0x190 [ 298.748905][ T9743] should_fail_ex.cold+0x5/0xa [ 298.748944][ T9743] should_failslab+0xc2/0x120 [ 298.748978][ T9743] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 298.749023][ T9743] ? security_inode_alloc+0x3b/0x2c0 [ 298.749051][ T9743] ? lockdep_init_map_type+0x5c/0x250 [ 298.749087][ T9743] security_inode_alloc+0x3b/0x2c0 [ 298.749117][ T9743] inode_init_always_gfp+0xcc0/0x1000 [ 298.749158][ T9743] alloc_inode+0x8e/0x250 [ 298.749201][ T9743] sock_alloc+0x44/0x280 [ 298.749234][ T9743] ? security_socket_create+0x7f/0x250 [ 298.749280][ T9743] __sock_create+0xc2/0x860 [ 298.749327][ T9743] __sys_socket+0x14d/0x260 [ 298.749369][ T9743] ? __pfx___sys_socket+0x10/0x10 [ 298.749421][ T9743] __x64_sys_socket+0x72/0xb0 [ 298.749461][ T9743] ? lockdep_hardirqs_on+0x78/0x100 [ 298.749503][ T9743] do_syscall_64+0x10b/0xf80 [ 298.749543][ T9743] ? clear_bhb_loop+0x40/0x90 [ 298.749574][ T9743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.749601][ T9743] RIP: 0033:0x7f126999ce59 [ 298.749622][ T9743] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 298.749649][ T9743] RSP: 002b:00007f126a826028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 298.749676][ T9743] RAX: ffffffffffffffda RBX: 00007f1269c16090 RCX: 00007f126999ce59 [ 298.749695][ T9743] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 298.749712][ T9743] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 298.749729][ T9743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.749746][ T9743] R13: 00007f1269c16128 R14: 00007f1269c16090 R15: 00007ffe298fe448 [ 298.749785][ T9743] [ 298.755262][ T9743] socket: no more sockets [ 299.167154][ T9746] netlink: zone id is out of range [ 299.196107][ T9746] netlink: zone id is out of range [ 299.208925][ T9746] netlink: zone id is out of range [ 299.228158][ T9746] netlink: zone id is out of range [ 299.249891][ T9746] netlink: zone id is out of range [ 299.252212][ T9742] Process accounting paused [ 299.255153][ T9746] netlink: zone id is out of range [ 299.276664][ T9746] netlink: zone id is out of range [ 299.291213][ T9746] netlink: zone id is out of range [ 299.304259][ T9746] netlink: zone id is out of range [ 300.049197][ T9769] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 300.216389][ T9772] netlink: 28 bytes leftover after parsing attributes in process `syz.0.931'. [ 300.330881][ T9774] netlink: 8 bytes leftover after parsing attributes in process `syz.3.932'. [ 301.210079][ T9792] FAULT_INJECTION: forcing a failure. [ 301.210079][ T9792] name failslab, interval 1, probability 0, space 0, times 0 [ 301.269467][ T9792] CPU: 0 UID: 0 PID: 9792 Comm: syz.1.935 Tainted: G L syzkaller #0 PREEMPT(full) [ 301.269516][ T9792] Tainted: [L]=SOFTLOCKUP [ 301.269527][ T9792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 301.269546][ T9792] Call Trace: [ 301.269555][ T9792] [ 301.269567][ T9792] dump_stack_lvl+0x100/0x190 [ 301.269606][ T9792] should_fail_ex.cold+0x5/0xa [ 301.269644][ T9792] ? __register_sysctl_table+0xbe4/0x1650 [ 301.269682][ T9792] should_failslab+0xc2/0x120 [ 301.269717][ T9792] __kmalloc_noprof+0xe0/0x850 [ 301.269753][ T9792] __register_sysctl_table+0xbe4/0x1650 [ 301.269800][ T9792] ? __pfx___register_sysctl_table+0x10/0x10 [ 301.269837][ T9792] ? is_module_address+0x69/0xf0 [ 301.269866][ T9792] ? register_net_sysctl_sz+0x222/0x430 [ 301.269902][ T9792] brnf_init_net+0x289/0x450 [ 301.269936][ T9792] ? __pfx_brnf_init_net+0x10/0x10 [ 301.269967][ T9792] ops_init+0x1e2/0x5f0 [ 301.270005][ T9792] setup_net+0x118/0x3a0 [ 301.270040][ T9792] ? __pfx_setup_net+0x10/0x10 [ 301.270074][ T9792] ? mutex_init_lockdep+0xf1/0x120 [ 301.270120][ T9792] copy_net_ns+0x46f/0x7c0 [ 301.270163][ T9792] create_new_namespaces+0x3ea/0xac0 [ 301.270211][ T9792] unshare_nsproxy_namespaces+0xf2/0x220 [ 301.270253][ T9792] ksys_unshare+0x438/0xab0 [ 301.270298][ T9792] ? __pfx_ksys_unshare+0x10/0x10 [ 301.270338][ T9792] ? xfd_validate_state+0x129/0x190 [ 301.270365][ T9792] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 301.270413][ T9792] __x64_sys_unshare+0x31/0x40 [ 301.270457][ T9792] do_syscall_64+0x10b/0xf80 [ 301.270500][ T9792] ? clear_bhb_loop+0x40/0x90 [ 301.270537][ T9792] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.270567][ T9792] RIP: 0033:0x7f126999ce59 [ 301.270591][ T9792] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.270620][ T9792] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 301.270649][ T9792] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 301.270670][ T9792] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 301.270688][ T9792] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 301.270705][ T9792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.270721][ T9792] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 301.270760][ T9792] [ 301.275909][ T9792] sysctl could not get directory: /net/bridge -12 [ 301.579835][ T9793] FAULT_INJECTION: forcing a failure. [ 301.579835][ T9793] name failslab, interval 1, probability 0, space 0, times 0 [ 301.612136][ T9793] CPU: 0 UID: 8 PID: 9793 Comm: syz.1.935 Tainted: G L syzkaller #0 PREEMPT(full) [ 301.612183][ T9793] Tainted: [L]=SOFTLOCKUP [ 301.612193][ T9793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 301.612210][ T9793] Call Trace: [ 301.612220][ T9793] [ 301.612231][ T9793] dump_stack_lvl+0x100/0x190 [ 301.612270][ T9793] should_fail_ex.cold+0x5/0xa [ 301.612306][ T9793] should_failslab+0xc2/0x120 [ 301.612340][ T9793] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 301.612384][ T9793] ? security_inode_alloc+0x3b/0x2c0 [ 301.612412][ T9793] ? lockdep_init_map_type+0x5c/0x250 [ 301.612447][ T9793] security_inode_alloc+0x3b/0x2c0 [ 301.612476][ T9793] inode_init_always_gfp+0xcc0/0x1000 [ 301.612518][ T9793] alloc_inode+0x8e/0x250 [ 301.612563][ T9793] sock_alloc+0x44/0x280 [ 301.612608][ T9793] ? security_socket_create+0x7f/0x250 [ 301.612655][ T9793] __sock_create+0xc2/0x860 [ 301.612702][ T9793] __sys_socket+0x14d/0x260 [ 301.612744][ T9793] ? __pfx___sys_socket+0x10/0x10 [ 301.612796][ T9793] __x64_sys_socket+0x72/0xb0 [ 301.612836][ T9793] ? lockdep_hardirqs_on+0x78/0x100 [ 301.612877][ T9793] do_syscall_64+0x10b/0xf80 [ 301.612922][ T9793] ? clear_bhb_loop+0x40/0x90 [ 301.612958][ T9793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.612988][ T9793] RIP: 0033:0x7f126999ce59 [ 301.613012][ T9793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 301.613041][ T9793] RSP: 002b:00007f126a826028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 301.613067][ T9793] RAX: ffffffffffffffda RBX: 00007f1269c16090 RCX: 00007f126999ce59 [ 301.613085][ T9793] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 301.613101][ T9793] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 301.613118][ T9793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.613132][ T9793] R13: 00007f1269c16128 R14: 00007f1269c16090 R15: 00007ffe298fe448 [ 301.613166][ T9793] [ 301.995024][ T9796] busy [ 303.783863][ T9810] Process accounting paused [ 304.509287][ T9837] FAULT_INJECTION: forcing a failure. [ 304.509287][ T9837] name failslab, interval 1, probability 0, space 0, times 0 [ 304.523819][ T9837] CPU: 1 UID: 0 PID: 9837 Comm: syz.2.946 Tainted: G L syzkaller #0 PREEMPT(full) [ 304.523862][ T9837] Tainted: [L]=SOFTLOCKUP [ 304.523872][ T9837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 304.523887][ T9837] Call Trace: [ 304.523897][ T9837] [ 304.523906][ T9837] dump_stack_lvl+0x100/0x190 [ 304.523942][ T9837] should_fail_ex.cold+0x5/0xa [ 304.523979][ T9837] ? __register_sysctl_table+0xbe4/0x1650 [ 304.524015][ T9837] should_failslab+0xc2/0x120 [ 304.524046][ T9837] __kmalloc_noprof+0xe0/0x850 [ 304.524077][ T9837] __register_sysctl_table+0xbe4/0x1650 [ 304.524119][ T9837] ? __pfx___register_sysctl_table+0x10/0x10 [ 304.524155][ T9837] ? is_module_address+0x69/0xf0 [ 304.524192][ T9837] ? register_net_sysctl_sz+0x222/0x430 [ 304.524230][ T9837] brnf_init_net+0x289/0x450 [ 304.524263][ T9837] ? __pfx_brnf_init_net+0x10/0x10 [ 304.524291][ T9837] ops_init+0x1e2/0x5f0 [ 304.524325][ T9837] setup_net+0x118/0x3a0 [ 304.524356][ T9837] ? __pfx_setup_net+0x10/0x10 [ 304.524388][ T9837] ? mutex_init_lockdep+0xf1/0x120 [ 304.524430][ T9837] copy_net_ns+0x46f/0x7c0 [ 304.524468][ T9837] create_new_namespaces+0x3ea/0xac0 [ 304.524514][ T9837] unshare_nsproxy_namespaces+0xf2/0x220 [ 304.524555][ T9837] ksys_unshare+0x438/0xab0 [ 304.524599][ T9837] ? __pfx_ksys_unshare+0x10/0x10 [ 304.524638][ T9837] ? xfd_validate_state+0x129/0x190 [ 304.524668][ T9837] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 304.524708][ T9837] __x64_sys_unshare+0x31/0x40 [ 304.524749][ T9837] do_syscall_64+0x10b/0xf80 [ 304.524789][ T9837] ? clear_bhb_loop+0x40/0x90 [ 304.524824][ T9837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.524853][ T9837] RIP: 0033:0x7f1b22f9ce59 [ 304.524876][ T9837] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 304.524904][ T9837] RSP: 002b:00007f1b23f1d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 304.524947][ T9837] RAX: ffffffffffffffda RBX: 00007f1b23215fa0 RCX: 00007f1b22f9ce59 [ 304.524967][ T9837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 304.524984][ T9837] RBP: 00007f1b23032d6f R08: 0000000000000000 R09: 0000000000000000 [ 304.525002][ T9837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.525020][ T9837] R13: 00007f1b23216038 R14: 00007f1b23215fa0 R15: 00007fffbd32d1e8 [ 304.525059][ T9837] [ 304.525071][ T9837] sysctl could not get directory: /net/bridge -12 [ 304.884768][ T9840] FAULT_INJECTION: forcing a failure. [ 304.884768][ T9840] name failslab, interval 1, probability 0, space 0, times 0 [ 304.933956][ T9840] CPU: 0 UID: 8 PID: 9840 Comm: syz.2.946 Tainted: G L syzkaller #0 PREEMPT(full) [ 304.934004][ T9840] Tainted: [L]=SOFTLOCKUP [ 304.934014][ T9840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 304.934031][ T9840] Call Trace: [ 304.934040][ T9840] [ 304.934050][ T9840] dump_stack_lvl+0x100/0x190 [ 304.934087][ T9840] should_fail_ex.cold+0x5/0xa [ 304.934123][ T9840] should_failslab+0xc2/0x120 [ 304.934157][ T9840] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 304.934201][ T9840] ? security_inode_alloc+0x3b/0x2c0 [ 304.934227][ T9840] ? lockdep_init_map_type+0x5c/0x250 [ 304.934262][ T9840] security_inode_alloc+0x3b/0x2c0 [ 304.934291][ T9840] inode_init_always_gfp+0xcc0/0x1000 [ 304.934332][ T9840] alloc_inode+0x8e/0x250 [ 304.934377][ T9840] sock_alloc+0x44/0x280 [ 304.934408][ T9840] ? security_socket_create+0x7f/0x250 [ 304.934455][ T9840] __sock_create+0xc2/0x860 [ 304.934502][ T9840] __sys_socket+0x14d/0x260 [ 304.934544][ T9840] ? __pfx___sys_socket+0x10/0x10 [ 304.934597][ T9840] __x64_sys_socket+0x72/0xb0 [ 304.934637][ T9840] ? lockdep_hardirqs_on+0x78/0x100 [ 304.934678][ T9840] do_syscall_64+0x10b/0xf80 [ 304.934726][ T9840] ? clear_bhb_loop+0x40/0x90 [ 304.934764][ T9840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.934794][ T9840] RIP: 0033:0x7f1b22f9ce59 [ 304.934818][ T9840] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 304.934844][ T9840] RSP: 002b:00007f1b23efc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 304.934872][ T9840] RAX: ffffffffffffffda RBX: 00007f1b23216090 RCX: 00007f1b22f9ce59 [ 304.934892][ T9840] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 304.934910][ T9840] RBP: 00007f1b23032d6f R08: 0000000000000000 R09: 0000000000000000 [ 304.934927][ T9840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.934943][ T9840] R13: 00007f1b23216128 R14: 00007f1b23216090 R15: 00007fffbd32d1e8 [ 304.934981][ T9840] [ 305.173566][ T9840] net_ratelimit: 109 callbacks suppressed [ 305.173588][ T9840] socket: no more sockets [ 307.895931][ T9891] FAULT_INJECTION: forcing a failure. [ 307.895931][ T9891] name failslab, interval 1, probability 0, space 0, times 0 [ 307.956744][ T9891] CPU: 0 UID: 0 PID: 9891 Comm: syz.3.956 Tainted: G L syzkaller #0 PREEMPT(full) [ 307.956772][ T9891] Tainted: [L]=SOFTLOCKUP [ 307.956777][ T9891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 307.956786][ T9891] Call Trace: [ 307.956792][ T9891] [ 307.956798][ T9891] dump_stack_lvl+0x100/0x190 [ 307.956819][ T9891] should_fail_ex.cold+0x5/0xa [ 307.956839][ T9891] ? __register_sysctl_table+0xac/0x1650 [ 307.956859][ T9891] should_failslab+0xc2/0x120 [ 307.956877][ T9891] __kmalloc_noprof+0xe0/0x850 [ 307.956895][ T9891] __register_sysctl_table+0xac/0x1650 [ 307.956914][ T9891] ? is_module_address+0x5f/0xf0 [ 307.956933][ T9891] ? __pfx___register_sysctl_table+0x10/0x10 [ 307.956951][ T9891] ? is_module_address+0x69/0xf0 [ 307.956973][ T9891] ? register_net_sysctl_sz+0x222/0x430 [ 307.956993][ T9891] brnf_init_net+0x289/0x450 [ 307.957012][ T9891] ? __pfx_brnf_init_net+0x10/0x10 [ 307.957028][ T9891] ops_init+0x1e2/0x5f0 [ 307.957048][ T9891] setup_net+0x118/0x3a0 [ 307.957065][ T9891] ? __pfx_setup_net+0x10/0x10 [ 307.957093][ T9891] ? mutex_init_lockdep+0xf1/0x120 [ 307.957122][ T9891] copy_net_ns+0x46f/0x7c0 [ 307.957145][ T9891] create_new_namespaces+0x3ea/0xac0 [ 307.957169][ T9891] unshare_nsproxy_namespaces+0xf2/0x220 [ 307.957190][ T9891] ksys_unshare+0x438/0xab0 [ 307.957212][ T9891] ? __pfx_ksys_unshare+0x10/0x10 [ 307.957232][ T9891] ? xfd_validate_state+0x129/0x190 [ 307.957247][ T9891] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 307.957268][ T9891] __x64_sys_unshare+0x31/0x40 [ 307.957289][ T9891] do_syscall_64+0x10b/0xf80 [ 307.957314][ T9891] ? clear_bhb_loop+0x40/0x90 [ 307.957346][ T9891] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.957373][ T9891] RIP: 0033:0x7f637d79ce59 [ 307.957388][ T9891] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 307.957402][ T9891] RSP: 002b:00007f637e5c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 307.957418][ T9891] RAX: ffffffffffffffda RBX: 00007f637da15fa0 RCX: 00007f637d79ce59 [ 307.957428][ T9891] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 307.957437][ T9891] RBP: 00007f637d832d6f R08: 0000000000000000 R09: 0000000000000000 [ 307.957446][ T9891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.957456][ T9891] R13: 00007f637da16038 R14: 00007f637da15fa0 R15: 00007ffdc0f2dbc8 [ 307.957478][ T9891] [ 308.488282][ T9892] FAULT_INJECTION: forcing a failure. [ 308.488282][ T9892] name failslab, interval 1, probability 0, space 0, times 0 [ 308.530404][ T9892] CPU: 1 UID: 8 PID: 9892 Comm: syz.3.956 Tainted: G L syzkaller #0 PREEMPT(full) [ 308.530431][ T9892] Tainted: [L]=SOFTLOCKUP [ 308.530437][ T9892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 308.530446][ T9892] Call Trace: [ 308.530452][ T9892] [ 308.530458][ T9892] dump_stack_lvl+0x100/0x190 [ 308.530479][ T9892] should_fail_ex.cold+0x5/0xa [ 308.530500][ T9892] should_failslab+0xc2/0x120 [ 308.530518][ T9892] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 308.530542][ T9892] ? sock_alloc_inode+0x26/0x290 [ 308.530563][ T9892] ? __pfx_sock_alloc_inode+0x10/0x10 [ 308.530583][ T9892] sock_alloc_inode+0x26/0x290 [ 308.530601][ T9892] ? __pfx_sock_alloc_inode+0x10/0x10 [ 308.530619][ T9892] alloc_inode+0x68/0x250 [ 308.530642][ T9892] sock_alloc+0x44/0x280 [ 308.530658][ T9892] ? security_socket_create+0x7f/0x250 [ 308.530681][ T9892] __sock_create+0xc2/0x860 [ 308.530705][ T9892] __sys_socket+0x14d/0x260 [ 308.530726][ T9892] ? __pfx___sys_socket+0x10/0x10 [ 308.530755][ T9892] __x64_sys_socket+0x72/0xb0 [ 308.530775][ T9892] ? lockdep_hardirqs_on+0x78/0x100 [ 308.530800][ T9892] do_syscall_64+0x10b/0xf80 [ 308.530821][ T9892] ? clear_bhb_loop+0x40/0x90 [ 308.530838][ T9892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.530853][ T9892] RIP: 0033:0x7f637d79ce59 [ 308.530868][ T9892] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 308.530894][ T9892] RSP: 002b:00007f637e59f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 308.530922][ T9892] RAX: ffffffffffffffda RBX: 00007f637da16090 RCX: 00007f637d79ce59 [ 308.530933][ T9892] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 308.530942][ T9892] RBP: 00007f637d832d6f R08: 0000000000000000 R09: 0000000000000000 [ 308.530950][ T9892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.530959][ T9892] R13: 00007f637da16128 R14: 00007f637da16090 R15: 00007ffdc0f2dbc8 [ 308.530978][ T9892] [ 308.530995][ T9892] socket: no more sockets [ 309.100586][ T9903] random: crng reseeded on system resumption [ 309.369735][ T9907] futex_wake_op: syz.3.960 tries to shift op by -2048; fix this program [ 309.404265][ T9907] futex_wake_op: syz.3.960 tries to shift op by -2048; fix this program [ 309.431087][ T9907] 0x000000000001-0x000000020000 : "" [ 309.456658][ T9914] netlink: 8 bytes leftover after parsing attributes in process `syz.1.962'. [ 309.485838][ T9907] ftl_cs: FTL header corrupt! [ 312.558870][ T9958] ima: policy update failed [ 312.579107][ T30] audit: type=1802 audit(1778800101.476:11): pid=9958 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.973" res=0 errno=0 [ 312.826156][ T9969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.975'. [ 312.918357][ T9970] random: crng reseeded on system resumption [ 313.287948][ T9973] netlink: 8 bytes leftover after parsing attributes in process `syz.0.976'. [ 313.679220][ T9968] Process accounting paused [ 314.284288][ T9999] netlink: 8 bytes leftover after parsing attributes in process `syz.1.981'. [ 315.393480][T10013] netlink: 8 bytes leftover after parsing attributes in process `syz.2.984'. [ 315.696499][T10016] cougar: G6 mapped to space [ 316.622759][T10022] sysfs_service_op_store: Client not running :-5: [ 316.660446][T10022] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 316.715758][ T30] audit: type=1800 audit(1778800105.616:12): pid=10024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.986" name="dbroot" dev="configfs" ino=28193 res=0 errno=0 [ 316.716236][T10022] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 317.153437][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.161078][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.493977][T10029] netlink: 28 bytes leftover after parsing attributes in process `syz.3.988'. [ 318.984772][T10053] pci 0000:00:01.3: enabling device (0000 -> 0001) [ 319.188393][T10053] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off [ 319.261729][T10053] pci 0000:00:01.3: PCI INT A: no GSI [ 319.499145][T10060] FAULT_INJECTION: forcing a failure. [ 319.499145][T10060] name failslab, interval 1, probability 0, space 0, times 0 [ 319.519821][T10060] CPU: 1 UID: 0 PID: 10060 Comm: syz.1.995 Tainted: G L syzkaller #0 PREEMPT(full) [ 319.519864][T10060] Tainted: [L]=SOFTLOCKUP [ 319.519874][T10060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 319.519890][T10060] Call Trace: [ 319.519899][T10060] [ 319.519910][T10060] dump_stack_lvl+0x100/0x190 [ 319.519949][T10060] should_fail_ex.cold+0x5/0xa [ 319.519984][T10060] should_failslab+0xc2/0x120 [ 319.520019][T10060] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 319.520065][T10060] ? __proc_create+0x2cb/0x8c0 [ 319.520109][T10060] __proc_create+0x2cb/0x8c0 [ 319.520147][T10060] ? __pfx___proc_create+0x10/0x10 [ 319.520189][T10060] ? _raw_write_unlock+0x28/0x50 [ 319.520228][T10060] ? proc_register+0x559/0x8a0 [ 319.520266][T10060] proc_create_reg+0x75/0x170 [ 319.520315][T10060] ? __pfx_can_rcvlist_proc_show+0x10/0x10 [ 319.520357][T10060] proc_create_net_single+0x86/0x180 [ 319.520394][T10060] ? __pfx_proc_create_net_single+0x10/0x10 [ 319.520434][T10060] ? round_jiffies+0x10a/0x160 [ 319.520482][T10060] can_init_proc+0x2b3/0x4b0 [ 319.520522][T10060] can_pernet_init+0x1e4/0x370 [ 319.520560][T10060] ? __pfx_can_pernet_init+0x10/0x10 [ 319.520594][T10060] ops_init+0x1e2/0x5f0 [ 319.520628][T10060] setup_net+0x118/0x3a0 [ 319.520660][T10060] ? __pfx_setup_net+0x10/0x10 [ 319.520691][T10060] ? mutex_init_lockdep+0xf1/0x120 [ 319.520725][T10060] copy_net_ns+0x46f/0x7c0 [ 319.520763][T10060] create_new_namespaces+0x3ea/0xac0 [ 319.520806][T10060] unshare_nsproxy_namespaces+0xf2/0x220 [ 319.520843][T10060] ksys_unshare+0x438/0xab0 [ 319.520884][T10060] ? __pfx_ksys_unshare+0x10/0x10 [ 319.520921][T10060] ? xfd_validate_state+0x129/0x190 [ 319.520947][T10060] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 319.520984][T10060] __x64_sys_unshare+0x31/0x40 [ 319.521022][T10060] do_syscall_64+0x10b/0xf80 [ 319.521059][T10060] ? clear_bhb_loop+0x40/0x90 [ 319.521091][T10060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.521117][T10060] RIP: 0033:0x7f126999ce59 [ 319.521139][T10060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 319.521163][T10060] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 319.521188][T10060] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 319.521205][T10060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 319.521222][T10060] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 319.521238][T10060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.521253][T10060] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 319.521288][T10060] [ 319.960495][T10062] FAULT_INJECTION: forcing a failure. [ 319.960495][T10062] name fail_futex, interval 1, probability 0, space 0, times 0 [ 320.073778][T10062] CPU: 0 UID: 8 PID: 10062 Comm: syz.1.995 Tainted: G L syzkaller #0 PREEMPT(full) [ 320.073825][T10062] Tainted: [L]=SOFTLOCKUP [ 320.073835][T10062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 320.073853][T10062] Call Trace: [ 320.073862][T10062] [ 320.073873][T10062] dump_stack_lvl+0x100/0x190 [ 320.073911][T10062] should_fail_ex.cold+0x5/0xa [ 320.073947][T10062] get_futex_key+0x1d2/0x1510 [ 320.073982][T10062] ? __pfx_get_futex_key+0x10/0x10 [ 320.074009][T10062] ? assoc_array_delete+0x2d8/0xd10 [ 320.074050][T10062] ? kasan_save_stack+0x3f/0x50 [ 320.074078][T10062] ? kasan_save_stack+0x30/0x50 [ 320.074104][T10062] ? kasan_save_track+0x14/0x30 [ 320.074131][T10062] ? kasan_save_free_info+0x3b/0x70 [ 320.074180][T10062] ? __kasan_slab_free+0x5f/0x80 [ 320.074210][T10062] ? kfree+0x223/0x6c0 [ 320.074248][T10062] ? assoc_array_delete+0x2d8/0xd10 [ 320.074295][T10062] ? key_unlink+0xbc/0x310 [ 320.074330][T10062] ? keyctl_keyring_unlink+0xdc/0x1b0 [ 320.074379][T10062] futex_wait_setup+0x83/0x510 [ 320.074428][T10062] __futex_wait+0x19f/0x300 [ 320.074469][T10062] ? __pfx___futex_wait+0x10/0x10 [ 320.074513][T10062] ? __pfx_futex_wake_mark+0x10/0x10 [ 320.074557][T10062] ? futex_hash+0x2ad/0x370 [ 320.074587][T10062] ? futex_hash+0x141/0x370 [ 320.074625][T10062] futex_wait+0xe6/0x370 [ 320.074662][T10062] ? __pfx_futex_wait+0x10/0x10 [ 320.074710][T10062] ? __pfx_assoc_array_delete+0x10/0x10 [ 320.074760][T10062] do_futex+0x1ef/0x350 [ 320.074791][T10062] ? __pfx_do_futex+0x10/0x10 [ 320.074825][T10062] ? up_write+0x28c/0x4f0 [ 320.074861][T10062] __x64_sys_futex+0x34f/0x4d0 [ 320.074897][T10062] ? __pfx___x64_sys_futex+0x10/0x10 [ 320.074930][T10062] ? key_put+0x62/0x2e0 [ 320.074962][T10062] ? rcu_is_watching+0x12/0xc0 [ 320.075001][T10062] do_syscall_64+0x10b/0xf80 [ 320.075042][T10062] ? clear_bhb_loop+0x40/0x90 [ 320.075114][T10062] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.075144][T10062] RIP: 0033:0x7f126999ce59 [ 320.075169][T10062] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 320.075197][T10062] RSP: 002b:00007f126a8050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 320.075225][T10062] RAX: ffffffffffffffda RBX: 00007f1269c16188 RCX: 00007f126999ce59 [ 320.075260][T10062] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1269c16188 [ 320.075278][T10062] RBP: 00007f1269c16180 R08: 0000000000000000 R09: 0000000000000000 [ 320.075320][T10062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.075338][T10062] R13: 00007f1269c16218 R14: 00007ffe298fe360 R15: 00007ffe298fe448 [ 320.075376][T10062] [ 320.652407][T10076] bonding: no command found in bonding_masters - use +ifname or -ifname [ 321.835677][T10111] FAULT_INJECTION: forcing a failure. [ 321.835677][T10111] name failslab, interval 1, probability 0, space 0, times 0 [ 321.892280][T10111] CPU: 0 UID: 0 PID: 10111 Comm: syz.1.1005 Tainted: G L syzkaller #0 PREEMPT(full) [ 321.892308][T10111] Tainted: [L]=SOFTLOCKUP [ 321.892313][T10111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 321.892323][T10111] Call Trace: [ 321.892328][T10111] [ 321.892335][T10111] dump_stack_lvl+0x100/0x190 [ 321.892357][T10111] should_fail_ex.cold+0x5/0xa [ 321.892377][T10111] should_failslab+0xc2/0x120 [ 321.892396][T10111] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 321.892419][T10111] ? vm_area_alloc+0x1f/0x160 [ 321.892439][T10111] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 321.892464][T10111] vm_area_alloc+0x1f/0x160 [ 321.892484][T10111] __mmap_region+0x104d/0x2da0 [ 321.892510][T10111] ? __pfx___mmap_region+0x10/0x10 [ 321.892547][T10111] ? __lock_acquire+0x4a5/0x2630 [ 321.892562][T10111] ? do_raw_spin_unlock+0x145/0x1e0 [ 321.892580][T10111] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 321.892610][T10111] ? rcu_is_watching+0x12/0xc0 [ 321.892637][T10111] ? rcu_is_watching+0x12/0xc0 [ 321.892665][T10111] ? finish_task_switch.isra.0+0x2cb/0x1010 [ 321.892685][T10111] ? lockdep_hardirqs_on+0x78/0x100 [ 321.892737][T10111] mmap_region+0x35d/0x620 [ 321.892753][T10111] ? rcu_is_watching+0x12/0xc0 [ 321.892771][T10111] ? __pfx_mmap_region+0x10/0x10 [ 321.892788][T10111] ? cap_mmap_addr+0x4b/0x120 [ 321.892809][T10111] ? bpf_lsm_mmap_addr+0x9/0x30 [ 321.892824][T10111] ? security_mmap_addr+0x71/0x1e0 [ 321.892841][T10111] ? __get_unmapped_area+0x255/0x3e0 [ 321.892863][T10111] do_mmap+0xc63/0x12f0 [ 321.892885][T10111] ? __pfx_do_mmap+0x10/0x10 [ 321.892902][T10111] ? __pfx_down_write_killable+0x10/0x10 [ 321.892921][T10111] vm_mmap_pgoff+0x29e/0x470 [ 321.892944][T10111] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 321.892963][T10111] ? do_futex+0x192/0x350 [ 321.892981][T10111] ? __pfx_do_futex+0x10/0x10 [ 321.893000][T10111] ksys_mmap_pgoff+0xe4/0x610 [ 321.893019][T10111] ? __x64_sys_futex+0x358/0x4d0 [ 321.893050][T10111] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 321.893077][T10111] ? xfd_validate_state+0x129/0x190 [ 321.893093][T10111] ? ksys_write+0x1ac/0x250 [ 321.893113][T10111] __x64_sys_mmap+0x125/0x190 [ 321.893133][T10111] do_syscall_64+0x10b/0xf80 [ 321.893158][T10111] ? clear_bhb_loop+0x40/0x90 [ 321.893176][T10111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.893192][T10111] RIP: 0033:0x7f126999ce59 [ 321.893206][T10111] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 321.893221][T10111] RSP: 002b:00007f126a7e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 321.893237][T10111] RAX: ffffffffffffffda RBX: 00007f1269c16270 RCX: 00007f126999ce59 [ 321.893247][T10111] RDX: 00000000000000df RSI: 000000000000e983 RDI: 0000000000000000 [ 321.893257][T10111] RBP: 00007f1269a32d6f R08: ffffffffffffffff R09: 0000000000008000 [ 321.893266][T10111] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 321.893276][T10111] R13: 00007f1269c16308 R14: 00007f1269c16270 R15: 00007ffe298fe448 [ 321.893296][T10111] [ 323.490664][T10135] zswap: compressor not available [ 323.816917][T10149] vivid-008: ================= START STATUS ================= [ 323.854875][T10149] vivid-008: ================== END STATUS ================== [ 324.183377][T10160] busy [ 324.835976][T10173] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1017'. [ 327.026049][T10175] Process accounting resumed [ 327.272861][T10212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1026'. [ 327.319301][T10215] FAULT_INJECTION: forcing a failure. [ 327.319301][T10215] name failslab, interval 1, probability 0, space 0, times 0 [ 327.347970][T10215] CPU: 0 UID: 0 PID: 10215 Comm: syz.1.1025 Tainted: G L syzkaller #0 PREEMPT(full) [ 327.348014][T10215] Tainted: [L]=SOFTLOCKUP [ 327.348023][T10215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 327.348040][T10215] Call Trace: [ 327.348049][T10215] [ 327.348059][T10215] dump_stack_lvl+0x100/0x190 [ 327.348095][T10215] should_fail_ex.cold+0x5/0xa [ 327.348131][T10215] should_failslab+0xc2/0x120 [ 327.348163][T10215] __kmalloc_cache_noprof+0x7a/0x6f0 [ 327.348202][T10215] ? loop_add+0xb9/0xb60 [ 327.348247][T10215] loop_add+0xb9/0xb60 [ 327.348287][T10215] ? __pfx_loop_add+0x10/0x10 [ 327.348350][T10215] ? find_held_lock+0x2b/0x80 [ 327.348385][T10215] ? __fget_files+0x215/0x3d0 [ 327.348420][T10215] loop_control_ioctl+0xae/0x620 [ 327.348463][T10215] ? __pfx_loop_control_ioctl+0x10/0x10 [ 327.348512][T10215] ? __pfx_loop_control_ioctl+0x10/0x10 [ 327.348555][T10215] __x64_sys_ioctl+0x18e/0x210 [ 327.348587][T10215] do_syscall_64+0x10b/0xf80 [ 327.348625][T10215] ? clear_bhb_loop+0x40/0x90 [ 327.348659][T10215] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.348687][T10215] RIP: 0033:0x7f126999ce59 [ 327.348710][T10215] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 327.348737][T10215] RSP: 002b:00007f126a826028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 327.348763][T10215] RAX: ffffffffffffffda RBX: 00007f1269c16090 RCX: 00007f126999ce59 [ 327.348782][T10215] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 327.348799][T10215] RBP: 00007f126a826090 R08: 0000000000000000 R09: 0000000000000000 [ 327.348824][T10215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 327.348840][T10215] R13: 00007f1269c16128 R14: 00007f1269c16090 R15: 00007ffe298fe448 [ 327.348878][T10215] [ 327.726321][T10221] busy [ 328.515653][T10223] FAULT_INJECTION: forcing a failure. [ 328.515653][T10223] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 328.669921][T10223] CPU: 1 UID: 0 PID: 10223 Comm: syz.1.1028 Tainted: G L syzkaller #0 PREEMPT(full) [ 328.669946][T10223] Tainted: [L]=SOFTLOCKUP [ 328.669951][T10223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 328.669960][T10223] Call Trace: [ 328.669965][T10223] [ 328.669971][T10223] dump_stack_lvl+0x100/0x190 [ 328.669992][T10223] should_fail_ex.cold+0x5/0xa [ 328.670011][T10223] _copy_from_user+0x2e/0xd0 [ 328.670028][T10223] get_timespec64+0x8b/0x1b0 [ 328.670050][T10223] ? __pfx_get_timespec64+0x10/0x10 [ 328.670071][T10223] ? lockdep_hardirqs_on+0x78/0x100 [ 328.670097][T10223] __x64_sys_futex+0x21a/0x4d0 [ 328.670115][T10223] ? __pfx___x64_sys_futex+0x10/0x10 [ 328.670135][T10223] ? rcu_is_watching+0x12/0xc0 [ 328.670155][T10223] do_syscall_64+0x10b/0xf80 [ 328.670176][T10223] ? clear_bhb_loop+0x40/0x90 [ 328.670194][T10223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.670209][T10223] RIP: 0033:0x7f126999ce59 [ 328.670222][T10223] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 328.670236][T10223] RSP: 002b:00007ffe298fe5a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 328.670250][T10223] RAX: ffffffffffffffda RBX: 0000000000050328 RCX: 00007f126999ce59 [ 328.670260][T10223] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1269c15fac [ 328.670269][T10223] RBP: 0000000000000032 R08: 0000000000000001 R09: 0000000000000000 [ 328.670277][T10223] R10: 00007ffe298fe6b0 R11: 0000000000000246 R12: 00007ffe298fe6d0 [ 328.670286][T10223] R13: 00007f1269c15fac R14: 000000000005035a R15: 00007ffe298fe6b0 [ 328.670305][T10223] [ 329.117783][T10246] openvswitch: netlink: IP tunnel dst address not specified [ 330.144123][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.151392][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.163610][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.172071][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.183753][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.192353][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.200443][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.209148][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.216261][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.225815][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.233734][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.240763][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.248296][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.255283][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.262336][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.271355][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.280022][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.286984][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.296529][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.303599][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.310555][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.317952][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.324987][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.333448][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.340671][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.347616][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.354500][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.361517][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.370214][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.378703][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.387249][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.394435][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 330.401450][ T8851] Bluetooth: hci3: unexpected event for opcode 0x7c89 [ 331.722475][T10293] busy [ 332.160011][T10367] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1043'. [ 333.046302][T10374] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1044'. [ 333.440069][T10378] netlink: 'syz.1.1045': attribute type 8 has an invalid length. [ 333.589137][T10383] bond0: option lp_interval: invalid value () [ 333.614435][T10383] bond0: option lp_interval: allowed values 1 - 2147483647 [ 334.291363][T10396] smpboot: CPU 1 is now offline [ 334.816836][T10402] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1051'. [ 335.245421][ T6128] Bluetooth: hci0: unexpected subevent 0x03 length: 253 > 9 [ 335.347186][T10386] Process accounting resumed [ 336.908088][ T8851] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 337.247935][T10433] FAULT_INJECTION: forcing a failure. [ 337.247935][T10433] name failslab, interval 1, probability 0, space 0, times 0 [ 337.284928][T10433] CPU: 0 UID: 8 PID: 10433 Comm: syz.0.1060 Tainted: G L syzkaller #0 PREEMPT(full) [ 337.284956][T10433] Tainted: [L]=SOFTLOCKUP [ 337.284961][T10433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 337.284971][T10433] Call Trace: [ 337.284976][T10433] [ 337.284982][T10433] dump_stack_lvl+0x100/0x190 [ 337.285004][T10433] should_fail_ex.cold+0x5/0xa [ 337.285031][T10433] should_failslab+0xc2/0x120 [ 337.285049][T10433] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 337.285072][T10433] ? security_inode_alloc+0x3b/0x2c0 [ 337.285087][T10433] ? lockdep_init_map_type+0x5c/0x250 [ 337.285105][T10433] security_inode_alloc+0x3b/0x2c0 [ 337.285120][T10433] inode_init_always_gfp+0xcc0/0x1000 [ 337.285142][T10433] alloc_inode+0x8e/0x250 [ 337.285164][T10433] sock_alloc+0x44/0x280 [ 337.285180][T10433] ? security_socket_create+0x7f/0x250 [ 337.285203][T10433] __sock_create+0xc2/0x860 [ 337.285226][T10433] __sys_socket+0x14d/0x260 [ 337.285247][T10433] ? __pfx___sys_socket+0x10/0x10 [ 337.285273][T10433] __x64_sys_socket+0x72/0xb0 [ 337.285293][T10433] ? lockdep_hardirqs_on+0x78/0x100 [ 337.285317][T10433] do_syscall_64+0x10b/0xf80 [ 337.285337][T10433] ? clear_bhb_loop+0x40/0x90 [ 337.285356][T10433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.285371][T10433] RIP: 0033:0x7f9a0319ce59 [ 337.285385][T10433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 337.285399][T10433] RSP: 002b:00007f9a03ff8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 337.285413][T10433] RAX: ffffffffffffffda RBX: 00007f9a03415fa0 RCX: 00007f9a0319ce59 [ 337.285423][T10433] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 337.285431][T10433] RBP: 00007f9a03232d6f R08: 0000000000000000 R09: 0000000000000000 [ 337.285440][T10433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.285448][T10433] R13: 00007f9a03416038 R14: 00007f9a03415fa0 R15: 00007ffeaa8950f8 [ 337.285467][T10433] [ 337.285986][T10433] socket: no more sockets [ 337.809632][T10440] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1063'. [ 338.066973][T10447] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1064'. [ 338.579034][T10455] busy [ 339.167882][T10464] busy [ 339.603533][T10471] random: crng reseeded on system resumption [ 340.343704][T10482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1072'. [ 340.452724][T10484] FAULT_INJECTION: forcing a failure. [ 340.452724][T10484] name failslab, interval 1, probability 0, space 0, times 0 [ 340.493475][T10484] CPU: 0 UID: 8 PID: 10484 Comm: syz.0.1073 Tainted: G L syzkaller #0 PREEMPT(full) [ 340.493502][T10484] Tainted: [L]=SOFTLOCKUP [ 340.493508][T10484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 340.493517][T10484] Call Trace: [ 340.493523][T10484] [ 340.493529][T10484] dump_stack_lvl+0x100/0x190 [ 340.493551][T10484] should_fail_ex.cold+0x5/0xa [ 340.493571][T10484] should_failslab+0xc2/0x120 [ 340.493589][T10484] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 340.493612][T10484] ? security_inode_alloc+0x3b/0x2c0 [ 340.493627][T10484] ? lockdep_init_map_type+0x5c/0x250 [ 340.493645][T10484] security_inode_alloc+0x3b/0x2c0 [ 340.493660][T10484] inode_init_always_gfp+0xcc0/0x1000 [ 340.493682][T10484] alloc_inode+0x8e/0x250 [ 340.493704][T10484] sock_alloc+0x44/0x280 [ 340.493721][T10484] ? security_socket_create+0x7f/0x250 [ 340.493743][T10484] __sock_create+0xc2/0x860 [ 340.493766][T10484] __sys_socket+0x14d/0x260 [ 340.493787][T10484] ? __pfx___sys_socket+0x10/0x10 [ 340.493813][T10484] __x64_sys_socket+0x72/0xb0 [ 340.493833][T10484] ? lockdep_hardirqs_on+0x78/0x100 [ 340.493854][T10484] do_syscall_64+0x10b/0xf80 [ 340.493874][T10484] ? clear_bhb_loop+0x40/0x90 [ 340.493893][T10484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.493908][T10484] RIP: 0033:0x7f9a0319ce59 [ 340.493921][T10484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 340.493936][T10484] RSP: 002b:00007f9a03ff8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 340.493951][T10484] RAX: ffffffffffffffda RBX: 00007f9a03415fa0 RCX: 00007f9a0319ce59 [ 340.493961][T10484] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 340.493969][T10484] RBP: 00007f9a03232d6f R08: 0000000000000000 R09: 0000000000000000 [ 340.493978][T10484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.493987][T10484] R13: 00007f9a03416038 R14: 00007f9a03415fa0 R15: 00007ffeaa8950f8 [ 340.494005][T10484] [ 340.494025][T10484] socket: no more sockets [ 341.794608][ T8851] Bluetooth: hci1: Unexpected cc 0x7c89 with no status [ 342.247184][T10516] FAULT_INJECTION: forcing a failure. [ 342.247184][T10516] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 342.342015][T10516] CPU: 0 UID: 0 PID: 10516 Comm: syz.3.1080 Tainted: G L syzkaller #0 PREEMPT(full) [ 342.342042][T10516] Tainted: [L]=SOFTLOCKUP [ 342.342047][T10516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 342.342056][T10516] Call Trace: [ 342.342061][T10516] [ 342.342068][T10516] dump_stack_lvl+0x100/0x190 [ 342.342089][T10516] should_fail_ex.cold+0x5/0xa [ 342.342106][T10516] ? prepare_alloc_pages+0x16d/0x5f0 [ 342.342127][T10516] should_fail_alloc_page+0xeb/0x140 [ 342.342147][T10516] prepare_alloc_pages+0x1f0/0x5f0 [ 342.342165][T10516] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 342.342189][T10516] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 342.342214][T10516] ? unwind_get_return_address+0x59/0xa0 [ 342.342233][T10516] ? arch_stack_walk+0xa6/0xf0 [ 342.342260][T10516] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 342.342283][T10516] ? __pfx_stack_trace_save+0x10/0x10 [ 342.342302][T10516] ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0 [ 342.342332][T10516] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 342.342354][T10516] ? __pmd_alloc+0xbf/0x950 [ 342.342371][T10516] ? __handle_mm_fault+0xa9c/0x2a00 [ 342.342390][T10516] ? handle_mm_fault+0x36d/0xa20 [ 342.342410][T10516] ? __get_user_pages+0x1178/0x32a0 [ 342.342427][T10516] ? populate_vma_page_range+0x267/0x3f0 [ 342.342445][T10516] ? __mm_populate+0x107/0x3a0 [ 342.342461][T10516] ? vm_mmap_pgoff+0x37f/0x470 [ 342.342492][T10516] ? ksys_mmap_pgoff+0xe4/0x610 [ 342.342508][T10516] ? __x64_sys_mmap+0x125/0x190 [ 342.342525][T10516] ? do_syscall_64+0x10b/0xf80 [ 342.342546][T10516] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.342562][T10516] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 342.342584][T10516] ? policy_nodemask+0xed/0x4f0 [ 342.342602][T10516] alloc_pages_mpol+0x1fb/0x540 [ 342.342620][T10516] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 342.342640][T10516] ? __lock_acquire+0x4a5/0x2630 [ 342.342656][T10516] alloc_pages_noprof+0x1a/0x160 [ 342.342675][T10516] pte_alloc_one+0x1c/0x3d0 [ 342.342695][T10516] __pte_alloc+0x6d/0x3e0 [ 342.342712][T10516] ? __pfx___pte_alloc+0x10/0x10 [ 342.342728][T10516] ? do_raw_spin_lock+0x128/0x260 [ 342.342745][T10516] ? find_held_lock+0x2b/0x80 [ 342.342765][T10516] do_anonymous_page+0x13c6/0x2050 [ 342.342789][T10516] ? __pmd_alloc+0x3fb/0x950 [ 342.342809][T10516] __handle_mm_fault+0x1d2c/0x2a00 [ 342.342834][T10516] ? mt_find+0x45e/0x8e0 [ 342.342848][T10516] ? __pfx___handle_mm_fault+0x10/0x10 [ 342.342868][T10516] ? __pfx_mt_find+0x10/0x10 [ 342.342896][T10516] handle_mm_fault+0x36d/0xa20 [ 342.342921][T10516] __get_user_pages+0x1178/0x32a0 [ 342.342947][T10516] ? __pfx___get_user_pages+0x10/0x10 [ 342.342970][T10516] populate_vma_page_range+0x267/0x3f0 [ 342.342991][T10516] ? __pfx_populate_vma_page_range+0x10/0x10 [ 342.343009][T10516] ? __pfx_find_vma_intersection+0x10/0x10 [ 342.343028][T10516] ? do_mmap+0x93f/0x12f0 [ 342.343048][T10516] __mm_populate+0x107/0x3a0 [ 342.343067][T10516] ? __pfx___mm_populate+0x10/0x10 [ 342.343087][T10516] ? up_write+0x28c/0x4f0 [ 342.343106][T10516] vm_mmap_pgoff+0x37f/0x470 [ 342.343126][T10516] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 342.343146][T10516] ? do_futex+0x192/0x350 [ 342.343162][T10516] ? __pfx_do_futex+0x10/0x10 [ 342.343182][T10516] ksys_mmap_pgoff+0xe4/0x610 [ 342.343200][T10516] ? __x64_sys_futex+0x358/0x4d0 [ 342.343216][T10516] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 342.343233][T10516] ? xfd_validate_state+0x129/0x190 [ 342.343247][T10516] ? ksys_write+0x1ac/0x250 [ 342.343267][T10516] __x64_sys_mmap+0x125/0x190 [ 342.343285][T10516] do_syscall_64+0x10b/0xf80 [ 342.343305][T10516] ? clear_bhb_loop+0x40/0x90 [ 342.343323][T10516] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.343338][T10516] RIP: 0033:0x7f637d79ce59 [ 342.343351][T10516] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 342.343365][T10516] RSP: 002b:00007f637e59f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 342.343381][T10516] RAX: ffffffffffffffda RBX: 00007f637da16090 RCX: 00007f637d79ce59 [ 342.343391][T10516] RDX: 00000000000000df RSI: 0000000000400004 RDI: 0000000000000000 [ 342.343401][T10516] RBP: 00007f637d832d6f R08: ffffffffffffffff R09: 0000000000008000 [ 342.343411][T10516] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 342.343420][T10516] R13: 00007f637da16128 R14: 00007f637da16090 R15: 00007ffdc0f2dbc8 [ 342.343441][T10516] [ 343.999754][ T8851] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 343.999782][ T8851] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 344.014848][ T8851] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 344.014887][ T8851] Bluetooth: hci3: Unknown advertising packet type: 0x39 [ 344.024027][ T8851] Bluetooth: hci3: adv larger than maximum supported [ 344.037260][ T8851] Bluetooth: hci3: Malformed LE Event: 0x0d [ 344.531477][T10519] Process accounting resumed [ 345.171308][T10549] FAULT_INJECTION: forcing a failure. [ 345.171308][T10549] name failslab, interval 1, probability 0, space 0, times 0 [ 345.231573][T10549] CPU: 0 UID: 0 PID: 10549 Comm: syz.0.1088 Tainted: G L syzkaller #0 PREEMPT(full) [ 345.231598][T10549] Tainted: [L]=SOFTLOCKUP [ 345.231603][T10549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 345.231612][T10549] Call Trace: [ 345.231617][T10549] [ 345.231623][T10549] dump_stack_lvl+0x100/0x190 [ 345.231644][T10549] should_fail_ex.cold+0x5/0xa [ 345.231663][T10549] should_failslab+0xc2/0x120 [ 345.231681][T10549] __kvmalloc_node_noprof+0xfa/0xa00 [ 345.231695][T10549] ? seq_read_iter+0x819/0x1270 [ 345.231716][T10549] seq_read_iter+0x819/0x1270 [ 345.231740][T10549] copy_splice_read+0x4ba/0xb90 [ 345.231764][T10549] ? __pfx_copy_splice_read+0x10/0x10 [ 345.231789][T10549] ? __fget_files+0x215/0x3d0 [ 345.231809][T10549] ? __pfx_copy_splice_read+0x10/0x10 [ 345.231826][T10549] do_splice_read+0x285/0x370 [ 345.231847][T10549] splice_file_to_pipe+0x82/0x120 [ 345.231868][T10549] do_sendfile+0x366/0xe20 [ 345.231888][T10549] ? __pfx_do_sendfile+0x10/0x10 [ 345.231905][T10549] ? __fget_files+0x21f/0x3d0 [ 345.231926][T10549] __x64_sys_sendfile64+0x1d8/0x220 [ 345.231946][T10549] ? ksys_write+0x1ac/0x250 [ 345.231962][T10549] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 345.231983][T10549] ? rcu_is_watching+0x12/0xc0 [ 345.232005][T10549] do_syscall_64+0x10b/0xf80 [ 345.232026][T10549] ? clear_bhb_loop+0x40/0x90 [ 345.232044][T10549] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.232059][T10549] RIP: 0033:0x7f9a0319ce59 [ 345.232072][T10549] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 345.232086][T10549] RSP: 002b:00007f9a03ff8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 345.232100][T10549] RAX: ffffffffffffffda RBX: 00007f9a03415fa0 RCX: 00007f9a0319ce59 [ 345.232110][T10549] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000002 [ 345.232118][T10549] RBP: 00007f9a03ff8090 R08: 0000000000000000 R09: 0000000000000000 [ 345.232127][T10549] R10: 000000000000c3e0 R11: 0000000000000246 R12: 0000000000000001 [ 345.232135][T10549] R13: 00007f9a03416038 R14: 00007f9a03415fa0 R15: 00007ffeaa8950f8 [ 345.232155][T10549] [ 346.125493][T10561] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1092'. [ 346.166144][T10562] random: crng reseeded on system resumption [ 348.530985][T10603] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1101'. [ 350.650604][T10655] netlink: 'syz.0.1113': attribute type 1 has an invalid length. [ 350.692886][T10655] FAULT_INJECTION: forcing a failure. [ 350.692886][T10655] name failslab, interval 1, probability 0, space 0, times 0 [ 350.735935][T10655] CPU: 0 UID: 0 PID: 10655 Comm: syz.0.1113 Tainted: G L syzkaller #0 PREEMPT(full) [ 350.735961][T10655] Tainted: [L]=SOFTLOCKUP [ 350.735966][T10655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 350.735976][T10655] Call Trace: [ 350.736006][T10655] [ 350.736012][T10655] dump_stack_lvl+0x100/0x190 [ 350.736075][T10655] should_fail_ex.cold+0x5/0xa [ 350.736107][T10655] should_failslab+0xc2/0x120 [ 350.736141][T10655] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 350.736170][T10655] ? skb_clone+0x190/0x400 [ 350.736242][T10655] skb_clone+0x190/0x400 [ 350.736259][T10655] netlink_deliver_tap+0xaed/0xcc0 [ 350.736318][T10655] netlink_unicast+0x6a5/0x850 [ 350.736341][T10655] ? __pfx_netlink_unicast+0x10/0x10 [ 350.736361][T10655] ? genl_rcv_msg+0x4be/0x800 [ 350.736388][T10655] netlink_ack+0x655/0xb80 [ 350.736414][T10655] netlink_rcv_skb+0x333/0x420 [ 350.736434][T10655] ? __pfx_genl_rcv_msg+0x10/0x10 [ 350.736457][T10655] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 350.736485][T10655] ? netlink_deliver_tap+0x1ae/0xcc0 [ 350.736507][T10655] genl_rcv+0x28/0x40 [ 350.736528][T10655] netlink_unicast+0x585/0x850 [ 350.736551][T10655] ? __pfx_netlink_unicast+0x10/0x10 [ 350.736577][T10655] netlink_sendmsg+0x8b0/0xda0 [ 350.736601][T10655] ? __pfx_netlink_sendmsg+0x10/0x10 [ 350.736627][T10655] ? __import_iovec+0x1d2/0x640 [ 350.736691][T10655] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 350.736844][T10655] ____sys_sendmsg+0x9e1/0xb70 [ 350.736908][T10655] ? __pfx_netlink_sendmsg+0x10/0x10 [ 350.736931][T10655] ? __pfx_____sys_sendmsg+0x10/0x10 [ 350.736959][T10655] ___sys_sendmsg+0x190/0x1e0 [ 350.736982][T10655] ? __pfx____sys_sendmsg+0x10/0x10 [ 350.737026][T10655] __sys_sendmsg+0x170/0x220 [ 350.737064][T10655] ? __pfx___sys_sendmsg+0x10/0x10 [ 350.737088][T10655] ? rcu_is_watching+0x12/0xc0 [ 350.737122][T10655] do_syscall_64+0x10b/0xf80 [ 350.737211][T10655] ? clear_bhb_loop+0x40/0x90 [ 350.737236][T10655] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.737252][T10655] RIP: 0033:0x7f9a0319ce59 [ 350.737265][T10655] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 350.737280][T10655] RSP: 002b:00007f9a03ff8028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 350.737295][T10655] RAX: ffffffffffffffda RBX: 00007f9a03415fa0 RCX: 00007f9a0319ce59 [ 350.737304][T10655] RDX: 0000000004000000 RSI: 0000200000002ac0 RDI: 0000000000000008 [ 350.737313][T10655] RBP: 00007f9a03ff8090 R08: 0000000000000000 R09: 0000000000000000 [ 350.737321][T10655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 350.737330][T10655] R13: 00007f9a03416038 R14: 00007f9a03415fa0 R15: 00007ffeaa8950f8 [ 350.737349][T10655] [ 351.012669][T10659] random: crng reseeded on system resumption [ 352.603509][ T30] audit: type=1800 audit(1778800141.506:13): pid=10688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1122" name="dbroot" dev="configfs" ino=33050 res=0 errno=0 [ 353.880631][T10700] capability: warning: `syz.0.1124' uses 32-bit capabilities (legacy support in use) [ 354.596847][T10704] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1126'. [ 355.067029][T10711] FAULT_INJECTION: forcing a failure. [ 355.067029][T10711] name failslab, interval 1, probability 0, space 0, times 0 [ 355.112098][T10711] CPU: 0 UID: 0 PID: 10711 Comm: syz.1.1125 Tainted: G L syzkaller #0 PREEMPT(full) [ 355.112126][T10711] Tainted: [L]=SOFTLOCKUP [ 355.112131][T10711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 355.112141][T10711] Call Trace: [ 355.112146][T10711] [ 355.112153][T10711] dump_stack_lvl+0x100/0x190 [ 355.112175][T10711] should_fail_ex.cold+0x5/0xa [ 355.112195][T10711] should_failslab+0xc2/0x120 [ 355.112220][T10711] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 355.112244][T10711] ? __proc_create+0x2cb/0x8c0 [ 355.112296][T10711] __proc_create+0x2cb/0x8c0 [ 355.112316][T10711] ? __pfx___proc_create+0x10/0x10 [ 355.112338][T10711] ? _raw_write_unlock+0x28/0x50 [ 355.112432][T10711] ? proc_register+0x559/0x8a0 [ 355.112454][T10711] proc_create_reg+0x75/0x170 [ 355.112475][T10711] ? __pfx_can_rcvlist_proc_show+0x10/0x10 [ 355.112536][T10711] proc_create_net_single+0x86/0x180 [ 355.112557][T10711] ? __pfx_proc_create_net_single+0x10/0x10 [ 355.112579][T10711] ? round_jiffies+0x10a/0x160 [ 355.112614][T10711] can_init_proc+0x2b3/0x4b0 [ 355.112636][T10711] can_pernet_init+0x1e4/0x370 [ 355.112657][T10711] ? __pfx_can_pernet_init+0x10/0x10 [ 355.112676][T10711] ops_init+0x1e2/0x5f0 [ 355.112723][T10711] setup_net+0x118/0x3a0 [ 355.112741][T10711] ? __pfx_setup_net+0x10/0x10 [ 355.112758][T10711] ? mutex_init_lockdep+0xf1/0x120 [ 355.112783][T10711] copy_net_ns+0x46f/0x7c0 [ 355.112804][T10711] create_new_namespaces+0x3ea/0xac0 [ 355.112835][T10711] unshare_nsproxy_namespaces+0xf2/0x220 [ 355.112855][T10711] ksys_unshare+0x438/0xab0 [ 355.112881][T10711] ? __pfx_ksys_unshare+0x10/0x10 [ 355.112902][T10711] ? xfd_validate_state+0x129/0x190 [ 355.112933][T10711] __x64_sys_unshare+0x31/0x40 [ 355.112954][T10711] do_syscall_64+0x10b/0xf80 [ 355.112975][T10711] ? clear_bhb_loop+0x40/0x90 [ 355.112993][T10711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.113008][T10711] RIP: 0033:0x7f126999ce59 [ 355.113022][T10711] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 355.113037][T10711] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 355.113052][T10711] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 355.113062][T10711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 355.113071][T10711] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 355.113081][T10711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.113090][T10711] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 355.113109][T10711] [ 355.541413][T10714] FAULT_INJECTION: forcing a failure. [ 355.541413][T10714] name fail_futex, interval 1, probability 0, space 0, times 0 [ 355.554713][T10714] CPU: 0 UID: 8 PID: 10714 Comm: syz.1.1125 Tainted: G L syzkaller #0 PREEMPT(full) [ 355.554739][T10714] Tainted: [L]=SOFTLOCKUP [ 355.554744][T10714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 355.554753][T10714] Call Trace: [ 355.554759][T10714] [ 355.554764][T10714] dump_stack_lvl+0x100/0x190 [ 355.554786][T10714] should_fail_ex.cold+0x5/0xa [ 355.554806][T10714] get_futex_key+0x1d2/0x1510 [ 355.554846][T10714] ? __pfx_get_futex_key+0x10/0x10 [ 355.554860][T10714] ? pick_eevdf+0x4d3/0x860 [ 355.554886][T10714] ? update_se+0x94/0x770 [ 355.554914][T10714] futex_wait_setup+0x83/0x510 [ 355.554939][T10714] __futex_wait+0x19f/0x300 [ 355.554959][T10714] ? __pfx___futex_wait+0x10/0x10 [ 355.554977][T10714] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 355.555001][T10714] ? __pfx_futex_wake_mark+0x10/0x10 [ 355.555023][T10714] ? find_held_lock+0x2b/0x80 [ 355.555041][T10714] ? futex_wake+0x456/0x530 [ 355.555064][T10714] futex_wait+0xe6/0x370 [ 355.555082][T10714] ? __pfx_futex_wait+0x10/0x10 [ 355.555106][T10714] ? __pfx_assoc_array_delete+0x10/0x10 [ 355.555207][T10714] do_futex+0x1ef/0x350 [ 355.555224][T10714] ? __pfx_do_futex+0x10/0x10 [ 355.555242][T10714] ? up_write+0x28c/0x4f0 [ 355.555262][T10714] __x64_sys_futex+0x34f/0x4d0 [ 355.555288][T10714] ? __pfx___x64_sys_futex+0x10/0x10 [ 355.555306][T10714] ? key_put+0x62/0x2e0 [ 355.555349][T10714] ? rcu_is_watching+0x12/0xc0 [ 355.555369][T10714] do_syscall_64+0x10b/0xf80 [ 355.555391][T10714] ? clear_bhb_loop+0x40/0x90 [ 355.555409][T10714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.555424][T10714] RIP: 0033:0x7f126999ce59 [ 355.555439][T10714] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 355.555454][T10714] RSP: 002b:00007f126a8050e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 355.555469][T10714] RAX: ffffffffffffffda RBX: 00007f1269c16188 RCX: 00007f126999ce59 [ 355.555480][T10714] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1269c16188 [ 355.555490][T10714] RBP: 00007f1269c16180 R08: 0000000000000000 R09: 0000000000000000 [ 355.555499][T10714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.555508][T10714] R13: 00007f1269c16218 R14: 00007ffe298fe360 R15: 00007ffe298fe448 [ 355.555527][T10714] [ 356.143018][T10718] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1130'. [ 356.328814][T10722] random: crng reseeded on system resumption [ 356.732274][T10730] busy [ 357.094327][T10736] netlink: zone id is out of range [ 357.122211][T10736] netlink: zone id is out of range [ 357.150829][T10736] netlink: zone id is out of range [ 357.209222][T10736] netlink: zone id is out of range [ 357.261105][T10736] netlink: zone id is out of range [ 357.328344][T10736] netlink: zone id is out of range [ 357.381375][T10736] netlink: zone id is out of range [ 357.441729][T10736] netlink: zone id is out of range [ 357.489578][T10736] netlink: zone id is out of range [ 357.520187][T10736] netlink: zone id is out of range [ 357.529828][T10750] FAULT_INJECTION: forcing a failure. [ 357.529828][T10750] name failslab, interval 1, probability 0, space 0, times 0 [ 357.595160][T10750] CPU: 0 UID: 0 PID: 10750 Comm: syz.3.1137 Tainted: G L syzkaller #0 PREEMPT(full) [ 357.595189][T10750] Tainted: [L]=SOFTLOCKUP [ 357.595195][T10750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 357.595204][T10750] Call Trace: [ 357.595210][T10750] [ 357.595216][T10750] dump_stack_lvl+0x100/0x190 [ 357.595237][T10750] should_fail_ex.cold+0x5/0xa [ 357.595257][T10750] should_failslab+0xc2/0x120 [ 357.595276][T10750] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 357.595299][T10750] ? __proc_create+0x2cb/0x8c0 [ 357.595324][T10750] __proc_create+0x2cb/0x8c0 [ 357.595343][T10750] ? __pfx___proc_create+0x10/0x10 [ 357.595363][T10750] ? _raw_write_unlock+0x28/0x50 [ 357.595383][T10750] ? proc_register+0x559/0x8a0 [ 357.595404][T10750] proc_create_reg+0x75/0x170 [ 357.595425][T10750] ? __pfx_can_reset_stats_proc_show+0x10/0x10 [ 357.595448][T10750] proc_create_net_single+0x86/0x180 [ 357.595469][T10750] ? __pfx_proc_create_net_single+0x10/0x10 [ 357.595490][T10750] ? round_jiffies+0x10a/0x160 [ 357.595516][T10750] can_init_proc+0x112/0x4b0 [ 357.595538][T10750] can_pernet_init+0x1e4/0x370 [ 357.595559][T10750] ? __pfx_can_pernet_init+0x10/0x10 [ 357.595578][T10750] ops_init+0x1e2/0x5f0 [ 357.595599][T10750] setup_net+0x118/0x3a0 [ 357.595616][T10750] ? __pfx_setup_net+0x10/0x10 [ 357.595633][T10750] ? mutex_init_lockdep+0xf1/0x120 [ 357.595652][T10750] copy_net_ns+0x46f/0x7c0 [ 357.595674][T10750] create_new_namespaces+0x3ea/0xac0 [ 357.595698][T10750] unshare_nsproxy_namespaces+0xf2/0x220 [ 357.595719][T10750] ksys_unshare+0x438/0xab0 [ 357.595742][T10750] ? __pfx_ksys_unshare+0x10/0x10 [ 357.595762][T10750] ? xfd_validate_state+0x129/0x190 [ 357.595777][T10750] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 357.595798][T10750] __x64_sys_unshare+0x31/0x40 [ 357.595819][T10750] do_syscall_64+0x10b/0xf80 [ 357.595839][T10750] ? clear_bhb_loop+0x40/0x90 [ 357.595857][T10750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 357.595872][T10750] RIP: 0033:0x7f637d79ce59 [ 357.595885][T10750] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 357.595900][T10750] RSP: 002b:00007f637e5c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 357.595914][T10750] RAX: ffffffffffffffda RBX: 00007f637da15fa0 RCX: 00007f637d79ce59 [ 357.595925][T10750] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 357.595934][T10750] RBP: 00007f637d832d6f R08: 0000000000000000 R09: 0000000000000000 [ 357.595943][T10750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 357.595952][T10750] R13: 00007f637da16038 R14: 00007f637da15fa0 R15: 00007ffdc0f2dbc8 [ 357.595972][T10750] [ 358.027133][T10753] FAULT_INJECTION: forcing a failure. [ 358.027133][T10753] name fail_futex, interval 1, probability 0, space 0, times 0 [ 358.040005][T10753] CPU: 0 UID: 8 PID: 10753 Comm: syz.3.1137 Tainted: G L syzkaller #0 PREEMPT(full) [ 358.040031][T10753] Tainted: [L]=SOFTLOCKUP [ 358.040037][T10753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 358.040047][T10753] Call Trace: [ 358.040053][T10753] [ 358.040059][T10753] dump_stack_lvl+0x100/0x190 [ 358.040081][T10753] should_fail_ex.cold+0x5/0xa [ 358.040101][T10753] get_futex_key+0x1d2/0x1510 [ 358.040119][T10753] ? __pfx_get_futex_key+0x10/0x10 [ 358.040133][T10753] ? pick_eevdf+0x4d3/0x860 [ 358.040154][T10753] ? update_se+0x94/0x770 [ 358.040181][T10753] futex_wait_setup+0x83/0x510 [ 358.040206][T10753] __futex_wait+0x19f/0x300 [ 358.040226][T10753] ? __pfx___futex_wait+0x10/0x10 [ 358.040244][T10753] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 358.040268][T10753] ? __pfx_futex_wake_mark+0x10/0x10 [ 358.040290][T10753] ? find_held_lock+0x2b/0x80 [ 358.040309][T10753] ? futex_wake+0x456/0x530 [ 358.040332][T10753] futex_wait+0xe6/0x370 [ 358.040351][T10753] ? __pfx_futex_wait+0x10/0x10 [ 358.040375][T10753] ? __pfx_assoc_array_delete+0x10/0x10 [ 358.040400][T10753] do_futex+0x1ef/0x350 [ 358.040417][T10753] ? __pfx_do_futex+0x10/0x10 [ 358.040434][T10753] ? up_write+0x28c/0x4f0 [ 358.040452][T10753] __x64_sys_futex+0x34f/0x4d0 [ 358.040470][T10753] ? __pfx___x64_sys_futex+0x10/0x10 [ 358.040487][T10753] ? key_put+0x62/0x2e0 [ 358.040504][T10753] ? rcu_is_watching+0x12/0xc0 [ 358.040523][T10753] do_syscall_64+0x10b/0xf80 [ 358.040544][T10753] ? clear_bhb_loop+0x40/0x90 [ 358.040562][T10753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.040577][T10753] RIP: 0033:0x7f637d79ce59 [ 358.040591][T10753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 358.040605][T10753] RSP: 002b:00007f637e57e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 358.040619][T10753] RAX: ffffffffffffffda RBX: 00007f637da16188 RCX: 00007f637d79ce59 [ 358.040629][T10753] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f637da16188 [ 358.040638][T10753] RBP: 00007f637da16180 R08: 0000000000000000 R09: 0000000000000000 [ 358.040647][T10753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.040656][T10753] R13: 00007f637da16218 R14: 00007ffdc0f2dae0 R15: 00007ffdc0f2dbc8 [ 358.040676][T10753] [ 358.548402][T10761] busy [ 358.904535][T10765] random: crng reseeded on system resumption [ 359.005583][T10770] FAULT_INJECTION: forcing a failure. [ 359.005583][T10770] name failslab, interval 1, probability 0, space 0, times 0 [ 359.085166][T10770] CPU: 0 UID: 0 PID: 10770 Comm: syz.3.1142 Tainted: G L syzkaller #0 PREEMPT(full) [ 359.085194][T10770] Tainted: [L]=SOFTLOCKUP [ 359.085199][T10770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 359.085208][T10770] Call Trace: [ 359.085214][T10770] [ 359.085220][T10770] dump_stack_lvl+0x100/0x190 [ 359.085242][T10770] should_fail_ex.cold+0x5/0xa [ 359.085262][T10770] should_failslab+0xc2/0x120 [ 359.085281][T10770] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 359.085304][T10770] ? __proc_create+0x2cb/0x8c0 [ 359.085327][T10770] __proc_create+0x2cb/0x8c0 [ 359.085347][T10770] ? __pfx___proc_create+0x10/0x10 [ 359.085368][T10770] ? _raw_write_unlock+0x28/0x50 [ 359.085388][T10770] ? proc_register+0x559/0x8a0 [ 359.085409][T10770] proc_create_reg+0x75/0x170 [ 359.085428][T10770] ? __pfx_can_rcvlist_sff_proc_show+0x10/0x10 [ 359.085452][T10770] proc_create_net_single+0x86/0x180 [ 359.085472][T10770] ? __pfx_proc_create_net_single+0x10/0x10 [ 359.085493][T10770] ? round_jiffies+0x10a/0x160 [ 359.085519][T10770] can_init_proc+0x37b/0x4b0 [ 359.085541][T10770] can_pernet_init+0x1e4/0x370 [ 359.085562][T10770] ? __pfx_can_pernet_init+0x10/0x10 [ 359.085581][T10770] ops_init+0x1e2/0x5f0 [ 359.085601][T10770] setup_net+0x118/0x3a0 [ 359.085619][T10770] ? __pfx_setup_net+0x10/0x10 [ 359.085636][T10770] ? mutex_init_lockdep+0xf1/0x120 [ 359.085657][T10770] copy_net_ns+0x46f/0x7c0 [ 359.085678][T10770] create_new_namespaces+0x3ea/0xac0 [ 359.085702][T10770] unshare_nsproxy_namespaces+0xf2/0x220 [ 359.085723][T10770] ksys_unshare+0x438/0xab0 [ 359.085746][T10770] ? __pfx_ksys_unshare+0x10/0x10 [ 359.085766][T10770] ? xfd_validate_state+0x129/0x190 [ 359.085795][T10770] __x64_sys_unshare+0x31/0x40 [ 359.085817][T10770] do_syscall_64+0x10b/0xf80 [ 359.085839][T10770] ? clear_bhb_loop+0x40/0x90 [ 359.085857][T10770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.085872][T10770] RIP: 0033:0x7f637d79ce59 [ 359.085885][T10770] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 359.085900][T10770] RSP: 002b:00007f637e5c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 359.085915][T10770] RAX: ffffffffffffffda RBX: 00007f637da15fa0 RCX: 00007f637d79ce59 [ 359.085926][T10770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 359.085942][T10770] RBP: 00007f637d832d6f R08: 0000000000000000 R09: 0000000000000000 [ 359.085952][T10770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.085961][T10770] R13: 00007f637da16038 R14: 00007f637da15fa0 R15: 00007ffdc0f2dbc8 [ 359.085980][T10770] [ 359.407551][T10740] Process accounting paused [ 359.530253][T10775] FAULT_INJECTION: forcing a failure. [ 359.530253][T10775] name fail_futex, interval 1, probability 0, space 0, times 0 [ 359.543178][T10775] CPU: 0 UID: 8 PID: 10775 Comm: syz.3.1142 Tainted: G L syzkaller #0 PREEMPT(full) [ 359.543203][T10775] Tainted: [L]=SOFTLOCKUP [ 359.543208][T10775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 359.543218][T10775] Call Trace: [ 359.543223][T10775] [ 359.543229][T10775] dump_stack_lvl+0x100/0x190 [ 359.543251][T10775] should_fail_ex.cold+0x5/0xa [ 359.543270][T10775] get_futex_key+0x1d2/0x1510 [ 359.543288][T10775] ? __pfx_get_futex_key+0x10/0x10 [ 359.543302][T10775] ? pick_eevdf+0x4d3/0x860 [ 359.543323][T10775] ? update_se+0x94/0x770 [ 359.543349][T10775] futex_wait_setup+0x83/0x510 [ 359.543375][T10775] __futex_wait+0x19f/0x300 [ 359.543395][T10775] ? __pfx___futex_wait+0x10/0x10 [ 359.543413][T10775] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 359.543437][T10775] ? __pfx_futex_wake_mark+0x10/0x10 [ 359.543460][T10775] ? find_held_lock+0x2b/0x80 [ 359.543478][T10775] ? futex_wake+0x456/0x530 [ 359.543501][T10775] futex_wait+0xe6/0x370 [ 359.543521][T10775] ? __pfx_futex_wait+0x10/0x10 [ 359.543545][T10775] ? __pfx_assoc_array_delete+0x10/0x10 [ 359.543571][T10775] do_futex+0x1ef/0x350 [ 359.543587][T10775] ? __pfx_do_futex+0x10/0x10 [ 359.543604][T10775] ? up_write+0x28c/0x4f0 [ 359.543622][T10775] __x64_sys_futex+0x34f/0x4d0 [ 359.543640][T10775] ? __pfx___x64_sys_futex+0x10/0x10 [ 359.543657][T10775] ? key_put+0x62/0x2e0 [ 359.543675][T10775] ? rcu_is_watching+0x12/0xc0 [ 359.543694][T10775] do_syscall_64+0x10b/0xf80 [ 359.543714][T10775] ? clear_bhb_loop+0x40/0x90 [ 359.543732][T10775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.543747][T10775] RIP: 0033:0x7f637d79ce59 [ 359.543760][T10775] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 359.543775][T10775] RSP: 002b:00007f637e57e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 359.543790][T10775] RAX: ffffffffffffffda RBX: 00007f637da16188 RCX: 00007f637d79ce59 [ 359.543800][T10775] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f637da16188 [ 359.543809][T10775] RBP: 00007f637da16180 R08: 0000000000000000 R09: 0000000000000000 [ 359.543818][T10775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.543827][T10775] R13: 00007f637da16218 R14: 00007ffdc0f2dae0 R15: 00007ffdc0f2dbc8 [ 359.543847][T10775] [ 359.788802][T10776] FAULT_INJECTION: forcing a failure. [ 359.788802][T10776] name failslab, interval 1, probability 0, space 0, times 0 [ 359.801887][T10776] CPU: 0 UID: 0 PID: 10776 Comm: syz.1.1143 Tainted: G L syzkaller #0 PREEMPT(full) [ 359.801913][T10776] Tainted: [L]=SOFTLOCKUP [ 359.801918][T10776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 359.801927][T10776] Call Trace: [ 359.801933][T10776] [ 359.801939][T10776] dump_stack_lvl+0x100/0x190 [ 359.801962][T10776] should_fail_ex.cold+0x5/0xa [ 359.801981][T10776] should_failslab+0xc2/0x120 [ 359.801999][T10776] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 359.802022][T10776] ? security_inode_alloc+0x3b/0x2c0 [ 359.802123][T10776] ? lockdep_init_map_type+0x5c/0x250 [ 359.802142][T10776] security_inode_alloc+0x3b/0x2c0 [ 359.802158][T10776] inode_init_always_gfp+0xcc0/0x1000 [ 359.802191][T10776] alloc_inode+0x8e/0x250 [ 359.802215][T10776] new_inode+0x22/0x1c0 [ 359.802236][T10776] ? dput.part.0+0xdd/0x570 [ 359.802259][T10776] simple_fill_super+0x2d9/0x680 [ 359.802284][T10776] ? __pfx_nfsd_fill_super+0x10/0x10 [ 359.802323][T10776] nfsd_fill_super+0x98/0x560 [ 359.802344][T10776] ? __pfx_set_anon_super_fc+0x10/0x10 [ 359.802364][T10776] ? __pfx_nfsd_fill_super+0x10/0x10 [ 359.802388][T10776] get_tree_keyed+0x10e/0x1d0 [ 359.802405][T10776] vfs_get_tree+0x92/0x320 [ 359.802420][T10776] path_mount+0x7d0/0x23d0 [ 359.802443][T10776] ? __pfx_path_mount+0x10/0x10 [ 359.802462][T10776] ? lockdep_hardirqs_on+0x78/0x100 [ 359.802492][T10776] ? putname+0xb1/0x110 [ 359.802511][T10776] ? kmem_cache_free+0x127/0x6c0 [ 359.802539][T10776] ? __x64_sys_mount+0x293/0x310 [ 359.802559][T10776] __x64_sys_mount+0x293/0x310 [ 359.802581][T10776] ? __pfx___x64_sys_mount+0x10/0x10 [ 359.802603][T10776] ? rcu_is_watching+0x12/0xc0 [ 359.802623][T10776] do_syscall_64+0x10b/0xf80 [ 359.802645][T10776] ? clear_bhb_loop+0x40/0x90 [ 359.802663][T10776] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.802678][T10776] RIP: 0033:0x7f126999ce59 [ 359.802692][T10776] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 359.802707][T10776] RSP: 002b:00007f126a826028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 359.802722][T10776] RAX: ffffffffffffffda RBX: 00007f1269c16090 RCX: 00007f126999ce59 [ 359.802740][T10776] RDX: 0000200000000100 RSI: 0000200000000200 RDI: 0000000000000000 [ 359.802750][T10776] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 359.802759][T10776] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 359.802768][T10776] R13: 00007f1269c16128 R14: 00007f1269c16090 R15: 00007ffe298fe448 [ 359.802788][T10776] [ 361.037535][ T6128] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 361.037563][ T6128] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15 [ 361.052544][ T6128] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 361.366889][T10808] random: crng reseeded on system resumption [ 362.145945][T10834] binder: 10829:10834 ioctl c018620c 200000000140 returned -22 [ 362.642702][T10853] netlink: 'syz.2.1167': attribute type 1 has an invalid length. [ 363.423551][T10865] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1169'. [ 363.515227][T10868] random: crng reseeded on system resumption [ 364.066117][T10872] net_ratelimit: 157 callbacks suppressed [ 364.066132][T10872] netlink: zone id is out of range [ 364.126720][T10872] netlink: zone id is out of range [ 364.199573][T10872] netlink: zone id is out of range [ 364.253473][T10872] netlink: zone id is out of range [ 364.302834][T10872] netlink: zone id is out of range [ 364.345630][T10872] netlink: zone id is out of range [ 364.403934][T10872] netlink: zone id is out of range [ 364.436290][T10872] netlink: zone id is out of range [ 364.462975][T10872] netlink: zone id is out of range [ 364.484806][T10872] netlink: zone id is out of range [ 364.736086][T10889] FAULT_INJECTION: forcing a failure. [ 364.736086][T10889] name failslab, interval 1, probability 0, space 0, times 0 [ 364.796863][T10889] CPU: 0 UID: 0 PID: 10889 Comm: syz.3.1174 Tainted: G L syzkaller #0 PREEMPT(full) [ 364.796889][T10889] Tainted: [L]=SOFTLOCKUP [ 364.796894][T10889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 364.796903][T10889] Call Trace: [ 364.796908][T10889] [ 364.796914][T10889] dump_stack_lvl+0x100/0x190 [ 364.796937][T10889] should_fail_ex.cold+0x5/0xa [ 364.796956][T10889] ? tomoyo_encode2+0xfb/0x3c0 [ 364.797042][T10889] should_failslab+0xc2/0x120 [ 364.797060][T10889] __kmalloc_noprof+0xe0/0x850 [ 364.797074][T10889] ? d_absolute_path+0x136/0x1b0 [ 364.797092][T10889] tomoyo_encode2+0xfb/0x3c0 [ 364.797113][T10889] tomoyo_encode+0x29/0x50 [ 364.797130][T10889] tomoyo_realpath_from_path+0x18c/0x690 [ 364.797156][T10889] tomoyo_path_number_perm+0x23c/0x580 [ 364.797171][T10889] ? tomoyo_path_number_perm+0x22e/0x580 [ 364.797187][T10889] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 364.797222][T10889] ? find_held_lock+0x2b/0x80 [ 364.797241][T10889] ? __fget_files+0x215/0x3d0 [ 364.797257][T10889] ? hook_file_ioctl_common+0x149/0x410 [ 364.797302][T10889] ? __fget_files+0x215/0x3d0 [ 364.797322][T10889] ? __fget_files+0x21f/0x3d0 [ 364.797341][T10889] security_file_ioctl+0xd3/0x230 [ 364.797380][T10889] __x64_sys_ioctl+0xb7/0x210 [ 364.797397][T10889] do_syscall_64+0x10b/0xf80 [ 364.797420][T10889] ? clear_bhb_loop+0x40/0x90 [ 364.797438][T10889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.797460][T10889] RIP: 0033:0x7f637d79ce59 [ 364.797473][T10889] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 364.797488][T10889] RSP: 002b:00007f637e5c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 364.797503][T10889] RAX: ffffffffffffffda RBX: 00007f637da15fa0 RCX: 00007f637d79ce59 [ 364.797513][T10889] RDX: 0000200000000080 RSI: 0000000000004601 RDI: 0000000000000003 [ 364.797522][T10889] RBP: 00007f637e5c0090 R08: 0000000000000000 R09: 0000000000000000 [ 364.797531][T10889] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 364.797539][T10889] R13: 00007f637da16038 R14: 00007f637da15fa0 R15: 00007ffdc0f2dbc8 [ 364.797559][T10889] [ 365.481813][T10893] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1175'. [ 365.798113][T10896] netlink: 'syz.2.1176': attribute type 11 has an invalid length. [ 365.970699][T10889] ERROR: Out of memory at tomoyo_realpath_from_path. [ 366.064152][T10889] Process accounting paused [ 366.363741][T10914] random: crng reseeded on system resumption [ 367.404787][T10928] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input8 [ 368.765006][T10949] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1189'. [ 369.148222][T10966] random: crng reseeded on system resumption [ 369.816001][T10984] busy [ 370.546306][T11006] random: crng reseeded on system resumption [ 370.951412][ T6128] Bluetooth: hci1: Malformed LE Event: 0x0b [ 371.823065][T11036] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1212'. [ 372.217023][T11044] random: crng reseeded on system resumption [ 372.851170][T11054] net_ratelimit: 45 callbacks suppressed [ 372.851186][T11054] netlink: zone id is out of range [ 372.916115][T11054] netlink: zone id is out of range [ 372.969563][T11054] netlink: zone id is out of range [ 373.007140][T11054] netlink: zone id is out of range [ 373.043833][T11054] netlink: zone id is out of range [ 373.082010][T11054] netlink: zone id is out of range [ 373.126746][T11054] netlink: zone id is out of range [ 373.149839][T11054] netlink: zone id is out of range [ 373.167440][T11054] netlink: zone id is out of range [ 373.191859][T11054] netlink: zone id is out of range [ 373.478207][T11072] Format for adding new device is "id port_count num_queues" (uint uint uint). [ 373.684863][T11073] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1220'. [ 374.248012][T11084] FAULT_INJECTION: forcing a failure. [ 374.248012][T11084] name failslab, interval 1, probability 0, space 0, times 0 [ 374.296843][T11084] CPU: 0 UID: 0 PID: 11084 Comm: syz.2.1223 Tainted: G L syzkaller #0 PREEMPT(full) [ 374.296871][T11084] Tainted: [L]=SOFTLOCKUP [ 374.296876][T11084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 374.296886][T11084] Call Trace: [ 374.296891][T11084] [ 374.296897][T11084] dump_stack_lvl+0x100/0x190 [ 374.296920][T11084] should_fail_ex.cold+0x5/0xa [ 374.296940][T11084] ? cache_create_net+0xa2/0x1f0 [ 374.297059][T11084] should_failslab+0xc2/0x120 [ 374.297079][T11084] __kmalloc_noprof+0xe0/0x850 [ 374.297097][T11084] cache_create_net+0xa2/0x1f0 [ 374.297120][T11084] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 374.297185][T11084] gss_svc_init_net+0x69/0x640 [ 374.297230][T11084] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 374.297272][T11084] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 374.297294][T11084] ops_init+0x1e2/0x5f0 [ 374.297315][T11084] setup_net+0x118/0x3a0 [ 374.297333][T11084] ? __pfx_setup_net+0x10/0x10 [ 374.297349][T11084] ? mutex_init_lockdep+0xf1/0x120 [ 374.297370][T11084] copy_net_ns+0x46f/0x7c0 [ 374.297391][T11084] create_new_namespaces+0x3ea/0xac0 [ 374.297415][T11084] unshare_nsproxy_namespaces+0xf2/0x220 [ 374.297436][T11084] ksys_unshare+0x438/0xab0 [ 374.297459][T11084] ? __pfx_ksys_unshare+0x10/0x10 [ 374.297479][T11084] ? xfd_validate_state+0x129/0x190 [ 374.297501][T11084] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 374.297522][T11084] __x64_sys_unshare+0x31/0x40 [ 374.297544][T11084] do_syscall_64+0x10b/0xf80 [ 374.297566][T11084] ? clear_bhb_loop+0x40/0x90 [ 374.297584][T11084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.297599][T11084] RIP: 0033:0x7f1b22f9ce59 [ 374.297613][T11084] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 374.297628][T11084] RSP: 002b:00007f1b23f1d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 374.297643][T11084] RAX: ffffffffffffffda RBX: 00007f1b23215fa0 RCX: 00007f1b22f9ce59 [ 374.297653][T11084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 374.297662][T11084] RBP: 00007f1b23032d6f R08: 0000000000000000 R09: 0000000000000000 [ 374.297671][T11084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.297680][T11084] R13: 00007f1b23216038 R14: 00007f1b23215fa0 R15: 00007fffbd32d1e8 [ 374.297700][T11084] [ 375.266901][T11091] FAULT_INJECTION: forcing a failure. [ 375.266901][T11091] name failslab, interval 1, probability 0, space 0, times 0 [ 375.340464][T11091] CPU: 0 UID: 8 PID: 11091 Comm: syz.2.1223 Tainted: G L syzkaller #0 PREEMPT(full) [ 375.340492][T11091] Tainted: [L]=SOFTLOCKUP [ 375.340498][T11091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 375.340507][T11091] Call Trace: [ 375.340512][T11091] [ 375.340518][T11091] dump_stack_lvl+0x100/0x190 [ 375.340541][T11091] should_fail_ex.cold+0x5/0xa [ 375.340561][T11091] should_failslab+0xc2/0x120 [ 375.340579][T11091] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 375.340602][T11091] ? security_inode_alloc+0x3b/0x2c0 [ 375.340617][T11091] ? lockdep_init_map_type+0x5c/0x250 [ 375.340635][T11091] security_inode_alloc+0x3b/0x2c0 [ 375.340650][T11091] inode_init_always_gfp+0xcc0/0x1000 [ 375.340672][T11091] alloc_inode+0x8e/0x250 [ 375.340694][T11091] sock_alloc+0x44/0x280 [ 375.340711][T11091] ? security_socket_create+0x7f/0x250 [ 375.340802][T11091] __sock_create+0xc2/0x860 [ 375.340827][T11091] __sys_socket+0x14d/0x260 [ 375.340848][T11091] ? __pfx___sys_socket+0x10/0x10 [ 375.340875][T11091] __x64_sys_socket+0x72/0xb0 [ 375.340895][T11091] ? lockdep_hardirqs_on+0x78/0x100 [ 375.340917][T11091] do_syscall_64+0x10b/0xf80 [ 375.340937][T11091] ? clear_bhb_loop+0x40/0x90 [ 375.340955][T11091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.340971][T11091] RIP: 0033:0x7f1b22f9ce59 [ 375.340984][T11091] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 375.340998][T11091] RSP: 002b:00007f1b23efc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 375.341012][T11091] RAX: ffffffffffffffda RBX: 00007f1b23216090 RCX: 00007f1b22f9ce59 [ 375.341022][T11091] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 375.341030][T11091] RBP: 00007f1b23032d6f R08: 0000000000000000 R09: 0000000000000000 [ 375.341040][T11091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.341049][T11091] R13: 00007f1b23216128 R14: 00007f1b23216090 R15: 00007fffbd32d1e8 [ 375.341068][T11091] [ 375.921091][T11096] FAULT_INJECTION: forcing a failure. [ 375.921091][T11096] name fail_futex, interval 1, probability 0, space 0, times 0 [ 375.980531][T11084] Process accounting paused [ 376.018601][T11096] CPU: 0 UID: 0 PID: 11096 Comm: syz.0.1227 Tainted: G L syzkaller #0 PREEMPT(full) [ 376.018626][T11096] Tainted: [L]=SOFTLOCKUP [ 376.018632][T11096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 376.018640][T11096] Call Trace: [ 376.018645][T11096] [ 376.018651][T11096] dump_stack_lvl+0x100/0x190 [ 376.018673][T11096] should_fail_ex.cold+0x5/0xa [ 376.018694][T11096] get_futex_key+0x1d2/0x1510 [ 376.018712][T11096] ? __pfx_get_futex_key+0x10/0x10 [ 376.018727][T11096] ? lock_acquire+0x1b1/0x370 [ 376.018747][T11096] futex_wake+0xea/0x530 [ 376.018767][T11096] ? __pfx_futex_wake+0x10/0x10 [ 376.018790][T11096] ? exit_mm_release+0x19/0x30 [ 376.018821][T11096] do_futex+0x32b/0x350 [ 376.018838][T11096] ? __pfx_do_futex+0x10/0x10 [ 376.018853][T11096] ? __might_fault+0xc5/0x140 [ 376.018880][T11096] mm_release+0x24a/0x2f0 [ 376.018899][T11096] do_exit+0x707/0x2af0 [ 376.018924][T11096] ? __pfx_do_exit+0x10/0x10 [ 376.018945][T11096] ? do_raw_spin_lock+0x128/0x260 [ 376.018962][T11096] ? find_held_lock+0x2b/0x80 [ 376.018980][T11096] ? get_signal+0x7e5/0x2210 [ 376.019000][T11096] do_group_exit+0xd5/0x2a0 [ 376.019015][T11096] get_signal+0x20ff/0x2210 [ 376.019040][T11096] ? __pfx_get_signal+0x10/0x10 [ 376.019060][T11096] ? do_futex+0x192/0x350 [ 376.019077][T11096] arch_do_signal_or_restart+0x91/0x7a0 [ 376.019128][T11096] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 376.019157][T11096] ? rcu_is_watching+0x12/0xc0 [ 376.019177][T11096] exit_to_user_mode_loop+0x8b/0x4f0 [ 376.019191][T11096] ? rcu_is_watching+0x12/0xc0 [ 376.019210][T11096] do_syscall_64+0x6f2/0xf80 [ 376.019232][T11096] ? clear_bhb_loop+0x40/0x90 [ 376.019250][T11096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.019268][T11096] RIP: 0033:0x7f9a0319ce59 [ 376.019281][T11096] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 376.019295][T11096] RSP: 002b:00007f9a03ff80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 376.019310][T11096] RAX: fffffffffffffe00 RBX: 00007f9a03415fa8 RCX: 00007f9a0319ce59 [ 376.019319][T11096] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9a03415fa8 [ 376.019328][T11096] RBP: 00007f9a03415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 376.019337][T11096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 376.019345][T11096] R13: 00007f9a03416038 R14: 00007ffeaa895010 R15: 00007ffeaa8950f8 [ 376.019363][T11096] [ 376.371783][T11105] busy [ 377.212111][T11133] FAULT_INJECTION: forcing a failure. [ 377.212111][T11133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 377.308854][T11133] CPU: 0 UID: 0 PID: 11133 Comm: syz.2.1233 Tainted: G L syzkaller #0 PREEMPT(full) [ 377.308880][T11133] Tainted: [L]=SOFTLOCKUP [ 377.308885][T11133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 377.308897][T11133] Call Trace: [ 377.308902][T11133] [ 377.308908][T11133] dump_stack_lvl+0x100/0x190 [ 377.308933][T11133] should_fail_ex.cold+0x5/0xa [ 377.308952][T11133] _copy_to_user+0x32/0xd0 [ 377.309037][T11133] simple_read_from_buffer+0xcb/0x170 [ 377.309056][T11133] proc_fail_nth_read+0x1af/0x230 [ 377.309080][T11133] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 377.309104][T11133] ? rw_verify_area+0xce/0x6d0 [ 377.309119][T11133] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 377.309142][T11133] vfs_read+0x1e4/0xb30 [ 377.309161][T11133] ? __pfx_vfs_read+0x10/0x10 [ 377.309177][T11133] ? __fget_files+0x215/0x3d0 [ 377.309198][T11133] ? __fget_files+0x21f/0x3d0 [ 377.309220][T11133] ksys_read+0x12a/0x250 [ 377.309236][T11133] ? __pfx_ksys_read+0x10/0x10 [ 377.309254][T11133] ? rcu_is_watching+0x12/0xc0 [ 377.309275][T11133] do_syscall_64+0x10b/0xf80 [ 377.309297][T11133] ? clear_bhb_loop+0x40/0x90 [ 377.309315][T11133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.309331][T11133] RIP: 0033:0x7f1b22f5d68e [ 377.309343][T11133] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 377.309358][T11133] RSP: 002b:00007f1b23f1cfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 377.309373][T11133] RAX: ffffffffffffffda RBX: 00007f1b23f1d6c0 RCX: 00007f1b22f5d68e [ 377.309382][T11133] RDX: 000000000000000f RSI: 00007f1b23f1d0a0 RDI: 0000000000000004 [ 377.309392][T11133] RBP: 00007f1b23f1d090 R08: 0000000000000000 R09: 0000000000000000 [ 377.309400][T11133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 377.309409][T11133] R13: 00007f1b23216038 R14: 00007f1b23215fa0 R15: 00007fffbd32d1e8 [ 377.309428][T11133] [ 377.678023][T11141] FAULT_INJECTION: forcing a failure. [ 377.678023][T11141] name failslab, interval 1, probability 0, space 0, times 0 [ 377.692084][T11141] CPU: 0 UID: 0 PID: 11141 Comm: syz.1.1236 Tainted: G L syzkaller #0 PREEMPT(full) [ 377.692111][T11141] Tainted: [L]=SOFTLOCKUP [ 377.692117][T11141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 377.692126][T11141] Call Trace: [ 377.692131][T11141] [ 377.692137][T11141] dump_stack_lvl+0x100/0x190 [ 377.692160][T11141] should_fail_ex.cold+0x5/0xa [ 377.692180][T11141] ? cache_create_net+0xa2/0x1f0 [ 377.692202][T11141] should_failslab+0xc2/0x120 [ 377.692219][T11141] __kmalloc_noprof+0xe0/0x850 [ 377.692238][T11141] cache_create_net+0xa2/0x1f0 [ 377.692260][T11141] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 377.692283][T11141] gss_svc_init_net+0x69/0x640 [ 377.692303][T11141] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 377.692320][T11141] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 377.692342][T11141] ops_init+0x1e2/0x5f0 [ 377.692362][T11141] setup_net+0x118/0x3a0 [ 377.692379][T11141] ? __pfx_setup_net+0x10/0x10 [ 377.692396][T11141] ? mutex_init_lockdep+0xf1/0x120 [ 377.692416][T11141] copy_net_ns+0x46f/0x7c0 [ 377.692437][T11141] create_new_namespaces+0x3ea/0xac0 [ 377.692461][T11141] unshare_nsproxy_namespaces+0xf2/0x220 [ 377.692482][T11141] ksys_unshare+0x438/0xab0 [ 377.692504][T11141] ? __pfx_ksys_unshare+0x10/0x10 [ 377.692524][T11141] ? xfd_validate_state+0x129/0x190 [ 377.692538][T11141] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 377.692559][T11141] __x64_sys_unshare+0x31/0x40 [ 377.692580][T11141] do_syscall_64+0x10b/0xf80 [ 377.692601][T11141] ? clear_bhb_loop+0x40/0x90 [ 377.692618][T11141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.692633][T11141] RIP: 0033:0x7f126999ce59 [ 377.692648][T11141] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 377.692662][T11141] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 377.692678][T11141] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 377.692688][T11141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 377.692696][T11141] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 377.692705][T11141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.692715][T11141] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 377.692735][T11141] [ 378.173421][T11145] FAULT_INJECTION: forcing a failure. [ 378.173421][T11145] name failslab, interval 1, probability 0, space 0, times 0 [ 378.215027][ T30] audit: type=1800 audit(1778818511.096:14): pid=11146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1237" name="dbroot" dev="configfs" ino=35588 res=0 errno=0 [ 378.239889][T11145] CPU: 0 UID: 8 PID: 11145 Comm: syz.1.1236 Tainted: G L syzkaller #0 PREEMPT(full) [ 378.239917][T11145] Tainted: [L]=SOFTLOCKUP [ 378.239922][T11145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 378.239932][T11145] Call Trace: [ 378.239937][T11145] [ 378.239943][T11145] dump_stack_lvl+0x100/0x190 [ 378.239971][T11145] should_fail_ex.cold+0x5/0xa [ 378.239991][T11145] should_failslab+0xc2/0x120 [ 378.240010][T11145] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 378.240033][T11145] ? security_inode_alloc+0x3b/0x2c0 [ 378.240048][T11145] ? lockdep_init_map_type+0x5c/0x250 [ 378.240066][T11145] security_inode_alloc+0x3b/0x2c0 [ 378.240081][T11145] inode_init_always_gfp+0xcc0/0x1000 [ 378.240103][T11145] alloc_inode+0x8e/0x250 [ 378.240125][T11145] sock_alloc+0x44/0x280 [ 378.240141][T11145] ? security_socket_create+0x7f/0x250 [ 378.240164][T11145] __sock_create+0xc2/0x860 [ 378.240188][T11145] __sys_socket+0x14d/0x260 [ 378.240210][T11145] ? __pfx___sys_socket+0x10/0x10 [ 378.240237][T11145] __x64_sys_socket+0x72/0xb0 [ 378.240257][T11145] ? lockdep_hardirqs_on+0x78/0x100 [ 378.240279][T11145] do_syscall_64+0x10b/0xf80 [ 378.240299][T11145] ? clear_bhb_loop+0x40/0x90 [ 378.240316][T11145] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 378.240331][T11145] RIP: 0033:0x7f126999ce59 [ 378.240344][T11145] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 378.240359][T11145] RSP: 002b:00007f126a805028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 378.240373][T11145] RAX: ffffffffffffffda RBX: 00007f1269c16180 RCX: 00007f126999ce59 [ 378.240383][T11145] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 378.240392][T11145] RBP: 00007f1269a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 378.240401][T11145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 378.240409][T11145] R13: 00007f1269c16218 R14: 00007f1269c16180 R15: 00007ffe298fe448 [ 378.240429][T11145] [ 378.240449][T11145] net_ratelimit: 107 callbacks suppressed [ 378.240458][T11145] socket: no more sockets [ 378.683131][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.704808][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.346512][T11168] random: crng reseeded on system resumption [ 380.177931][T11177] ubi: mtd0 is already attached to ubi0 [ 380.205276][T11177] ubi0: detaching mtd0 [ 380.239237][T11177] ubi0: mtd0 is detached [ 380.642861][T11192] FAULT_INJECTION: forcing a failure. [ 380.642861][T11192] name failslab, interval 1, probability 0, space 0, times 0 [ 380.704912][T11192] CPU: 0 UID: 0 PID: 11192 Comm: syz.2.1249 Tainted: G L syzkaller #0 PREEMPT(full) [ 380.704940][T11192] Tainted: [L]=SOFTLOCKUP [ 380.704945][T11192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 380.704955][T11192] Call Trace: [ 380.704961][T11192] [ 380.704968][T11192] dump_stack_lvl+0x100/0x190 [ 380.704991][T11192] should_fail_ex.cold+0x5/0xa [ 380.705011][T11192] should_failslab+0xc2/0x120 [ 380.705029][T11192] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 380.705051][T11192] ? __proc_create+0x2cb/0x8c0 [ 380.705074][T11192] __proc_create+0x2cb/0x8c0 [ 380.705094][T11192] ? __pfx___proc_create+0x10/0x10 [ 380.705115][T11192] ? _raw_write_unlock+0x28/0x50 [ 380.705136][T11192] ? proc_register+0x559/0x8a0 [ 380.705157][T11192] proc_create_reg+0x75/0x170 [ 380.705177][T11192] ? __pfx_can_rcvlist_proc_show+0x10/0x10 [ 380.705199][T11192] proc_create_net_single+0x86/0x180 [ 380.705219][T11192] ? __pfx_proc_create_net_single+0x10/0x10 [ 380.705240][T11192] ? round_jiffies+0x10a/0x160 [ 380.705266][T11192] can_init_proc+0x1e1/0x4b0 [ 380.705288][T11192] can_pernet_init+0x1e4/0x370 [ 380.705309][T11192] ? __pfx_can_pernet_init+0x10/0x10 [ 380.705328][T11192] ops_init+0x1e2/0x5f0 [ 380.705349][T11192] setup_net+0x118/0x3a0 [ 380.705367][T11192] ? __pfx_setup_net+0x10/0x10 [ 380.705384][T11192] ? mutex_init_lockdep+0xf1/0x120 [ 380.705404][T11192] copy_net_ns+0x46f/0x7c0 [ 380.705425][T11192] create_new_namespaces+0x3ea/0xac0 [ 380.705450][T11192] unshare_nsproxy_namespaces+0xf2/0x220 [ 380.705470][T11192] ksys_unshare+0x438/0xab0 [ 380.705493][T11192] ? __pfx_ksys_unshare+0x10/0x10 [ 380.705513][T11192] ? xfd_validate_state+0x129/0x190 [ 380.705528][T11192] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 380.705550][T11192] __x64_sys_unshare+0x31/0x40 [ 380.705571][T11192] do_syscall_64+0x10b/0xf80 [ 380.705592][T11192] ? clear_bhb_loop+0x40/0x90 [ 380.705610][T11192] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.705625][T11192] RIP: 0033:0x7f1b22f9ce59 [ 380.705638][T11192] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 380.705652][T11192] RSP: 002b:00007f1b23f1d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 380.705666][T11192] RAX: ffffffffffffffda RBX: 00007f1b23215fa0 RCX: 00007f1b22f9ce59 [ 380.705676][T11192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 380.705692][T11192] RBP: 00007f1b23032d6f R08: 0000000000000000 R09: 0000000000000000 [ 380.705702][T11192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.705711][T11192] R13: 00007f1b23216038 R14: 00007f1b23215fa0 R15: 00007fffbd32d1e8 [ 380.705731][T11192] [ 381.049643][T11196] FAULT_INJECTION: forcing a failure. [ 381.049643][T11196] name failslab, interval 1, probability 0, space 0, times 0 [ 381.062564][T11196] CPU: 0 UID: 8 PID: 11196 Comm: syz.2.1249 Tainted: G L syzkaller #0 PREEMPT(full) [ 381.062591][T11196] Tainted: [L]=SOFTLOCKUP [ 381.062597][T11196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 381.062606][T11196] Call Trace: [ 381.062612][T11196] [ 381.062617][T11196] dump_stack_lvl+0x100/0x190 [ 381.062639][T11196] should_fail_ex.cold+0x5/0xa [ 381.062659][T11196] should_failslab+0xc2/0x120 [ 381.062677][T11196] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 381.062701][T11196] ? security_inode_alloc+0x3b/0x2c0 [ 381.062716][T11196] ? lockdep_init_map_type+0x5c/0x250 [ 381.062734][T11196] security_inode_alloc+0x3b/0x2c0 [ 381.062749][T11196] inode_init_always_gfp+0xcc0/0x1000 [ 381.062770][T11196] alloc_inode+0x8e/0x250 [ 381.062792][T11196] sock_alloc+0x44/0x280 [ 381.062814][T11196] ? security_socket_create+0x7f/0x250 [ 381.062838][T11196] __sock_create+0xc2/0x860 [ 381.062863][T11196] __sys_socket+0x14d/0x260 [ 381.062885][T11196] ? __pfx___sys_socket+0x10/0x10 [ 381.062913][T11196] __x64_sys_socket+0x72/0xb0 [ 381.062935][T11196] ? lockdep_hardirqs_on+0x78/0x100 [ 381.062957][T11196] do_syscall_64+0x10b/0xf80 [ 381.062977][T11196] ? clear_bhb_loop+0x40/0x90 [ 381.062995][T11196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 381.063011][T11196] RIP: 0033:0x7f1b22f9ce59 [ 381.063024][T11196] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 381.063038][T11196] RSP: 002b:00007f1b23efc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 381.063053][T11196] RAX: ffffffffffffffda RBX: 00007f1b23216090 RCX: 00007f1b22f9ce59 [ 381.063063][T11196] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 381.063071][T11196] RBP: 00007f1b23032d6f R08: 0000000000000000 R09: 0000000000000000 [ 381.063079][T11196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 381.063088][T11196] R13: 00007f1b23216128 R14: 00007f1b23216090 R15: 00007fffbd32d1e8 [ 381.063106][T11196] [ 381.063128][T11196] socket: no more sockets [ 381.492042][T11201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1250'. [ 381.595392][T11203] random: crng reseeded on system resumption [ 382.575960][T11214] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1254'. [ 384.004667][T11230] FAULT_INJECTION: forcing a failure. [ 384.004667][T11230] name failslab, interval 1, probability 0, space 0, times 0 [ 384.087935][T11230] CPU: 0 UID: 0 PID: 11230 Comm: syz.3.1259 Tainted: G L syzkaller #0 PREEMPT(full) [ 384.087962][T11230] Tainted: [L]=SOFTLOCKUP [ 384.087968][T11230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 384.087977][T11230] Call Trace: [ 384.087983][T11230] [ 384.087989][T11230] dump_stack_lvl+0x100/0x190 [ 384.088010][T11230] should_fail_ex.cold+0x5/0xa [ 384.088030][T11230] should_failslab+0xc2/0x120 [ 384.088048][T11230] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 384.088071][T11230] ? __proc_create+0x2cb/0x8c0 [ 384.088094][T11230] __proc_create+0x2cb/0x8c0 [ 384.088113][T11230] ? __pfx___proc_create+0x10/0x10 [ 384.088139][T11230] proc_mkdir+0x81/0x170 [ 384.088157][T11230] ? __pfx_proc_mkdir+0x10/0x10 [ 384.088175][T11230] ? cache_register_net+0x137/0x5e0 [ 384.088190][T11230] ? cache_register_net+0x137/0x5e0 [ 384.088208][T11230] cache_register_net+0x18f/0x5e0 [ 384.088225][T11230] gss_svc_init_net+0x14e/0x640 [ 384.088246][T11230] ? __pfx_canbcm_pernet_init+0x10/0x10 [ 384.088261][T11230] ? __pfx_rpcsec_gss_init_net+0x10/0x10 [ 384.088283][T11230] ops_init+0x1e2/0x5f0 [ 384.088304][T11230] setup_net+0x118/0x3a0 [ 384.088321][T11230] ? __pfx_setup_net+0x10/0x10 [ 384.088338][T11230] ? mutex_init_lockdep+0xf1/0x120 [ 384.088357][T11230] copy_net_ns+0x46f/0x7c0 [ 384.088386][T11230] create_new_namespaces+0x3ea/0xac0 [ 384.088411][T11230] unshare_nsproxy_namespaces+0xf2/0x220 [ 384.088432][T11230] ksys_unshare+0x438/0xab0 [ 384.088456][T11230] ? __pfx_ksys_unshare+0x10/0x10 [ 384.088477][T11230] ? xfd_validate_state+0x129/0x190 [ 384.088492][T11230] ? exit_to_user_mode_loop+0xe2/0x4f0 [ 384.088512][T11230] __x64_sys_unshare+0x31/0x40 [ 384.088533][T11230] do_syscall_64+0x10b/0xf80 [ 384.088553][T11230] ? clear_bhb_loop+0x40/0x90 [ 384.088571][T11230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.088586][T11230] RIP: 0033:0x7f637d79ce59 [ 384.088599][T11230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.088614][T11230] RSP: 002b:00007f637e5c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 384.088628][T11230] RAX: ffffffffffffffda RBX: 00007f637da15fa0 RCX: 00007f637d79ce59 [ 384.088638][T11230] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 384.088647][T11230] RBP: 00007f637d832d6f R08: 0000000000000000 R09: 0000000000000000 [ 384.088656][T11230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.088664][T11230] R13: 00007f637da16038 R14: 00007f637da15fa0 R15: 00007ffdc0f2dbc8 [ 384.088684][T11230] [ 384.418895][T11240] FAULT_INJECTION: forcing a failure. [ 384.418895][T11240] name fail_futex, interval 1, probability 0, space 0, times 0 [ 384.432140][T11240] CPU: 0 UID: 8 PID: 11240 Comm: syz.3.1259 Tainted: G L syzkaller #0 PREEMPT(full) [ 384.432165][T11240] Tainted: [L]=SOFTLOCKUP [ 384.432171][T11240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 384.432181][T11240] Call Trace: [ 384.432186][T11240] [ 384.432192][T11240] dump_stack_lvl+0x100/0x190 [ 384.432213][T11240] should_fail_ex.cold+0x5/0xa [ 384.432233][T11240] get_futex_key+0x1d2/0x1510 [ 384.432251][T11240] ? __pfx_get_futex_key+0x10/0x10 [ 384.432265][T11240] ? pick_eevdf+0x4d3/0x860 [ 384.432286][T11240] ? update_se+0x94/0x770 [ 384.432312][T11240] futex_wait_setup+0x83/0x510 [ 384.432343][T11240] __futex_wait+0x19f/0x300 [ 384.432364][T11240] ? __pfx___futex_wait+0x10/0x10 [ 384.432383][T11240] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 384.432407][T11240] ? __pfx_futex_wake_mark+0x10/0x10 [ 384.432430][T11240] ? find_held_lock+0x2b/0x80 [ 384.432448][T11240] ? futex_wake+0x456/0x530 [ 384.432470][T11240] futex_wait+0xe6/0x370 [ 384.432489][T11240] ? __pfx_futex_wait+0x10/0x10 [ 384.432514][T11240] ? __pfx_assoc_array_delete+0x10/0x10 [ 384.432540][T11240] do_futex+0x1ef/0x350 [ 384.432555][T11240] ? __pfx_do_futex+0x10/0x10 [ 384.432573][T11240] ? up_write+0x28c/0x4f0 [ 384.432590][T11240] __x64_sys_futex+0x34f/0x4d0 [ 384.432609][T11240] ? __pfx___x64_sys_futex+0x10/0x10 [ 384.432626][T11240] ? key_put+0x62/0x2e0 [ 384.432644][T11240] ? rcu_is_watching+0x12/0xc0 [ 384.432663][T11240] do_syscall_64+0x10b/0xf80 [ 384.432684][T11240] ? clear_bhb_loop+0x40/0x90 [ 384.432701][T11240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.432717][T11240] RIP: 0033:0x7f637d79ce59 [ 384.432730][T11240] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 384.432744][T11240] RSP: 002b:00007f637e57e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 384.432759][T11240] RAX: ffffffffffffffda RBX: 00007f637da16188 RCX: 00007f637d79ce59 [ 384.432769][T11240] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f637da16188 [ 384.432779][T11240] RBP: 00007f637da16180 R08: 0000000000000000 R09: 0000000000000000 [ 384.432788][T11240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.432797][T11240] R13: 00007f637da16218 R14: 00007ffdc0f2dae0 R15: 00007ffdc0f2dbc8 [ 384.432816][T11240] [ 385.020960][T11251] Zero length message leads to an empty skb [ 386.836832][T11287] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1276'. [ 388.193234][T11328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1283'. [ 389.444218][T11346] netlink: zone id is out of range [ 389.485972][T11346] netlink: zone id is out of range [ 389.513975][T11346] netlink: zone id is out of range [ 389.563365][T11346] netlink: zone id is out of range [ 389.632381][T11346] netlink: zone id is out of range [ 389.684419][T11346] netlink: zone id is out of range [ 389.703856][T11355] Process accounting resumed [ 389.756179][T11346] netlink: zone id is out of range [ 389.843575][T11346] netlink: zone id is out of range [ 389.907571][T11346] netlink: zone id is out of range [ 389.965178][T11346] netlink: zone id is out of range [ 389.980384][T11377] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1289'. [ 390.204725][T11377] .^: entered promiscuous mode [ 391.693464][T11396] ima: policy update failed [ 391.731916][ T30] audit: type=1802 audit(1778818524.636:15): pid=11396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1294" res=0 errno=0 [ 391.816750][T11408] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1296'. [ 391.922676][T11408] mac80211_hwsim hwsim5 : renamed from wlan0 (while UP) [ 392.530172][T11427] busy [ 392.729820][T11429] netlink: 'syz.2.1301': attribute type 3 has an invalid length. [ 393.300655][T11446] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1304'. [ 393.575565][T11452] sysfs_service_op_store: Client not running :-5: [ 393.639728][T11452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 393.676436][T11455] random: crng reseeded on system resumption [ 393.687427][T11452] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 393.700479][ T30] audit: type=1800 audit(1778818526.596:16): pid=11456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1305" name="dbroot" dev="configfs" ino=37693 res=0 errno=0 [ 394.014992][T11463] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1308'. [ 395.294939][T11475] zswap: compressor not available [ 396.044041][T11498] random: crng reseeded on system resumption [ 396.246096][T11497] Process accounting resumed [ 396.439433][T11504] random: crng reseeded on system resumption [ 397.797657][T11525] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 397.808775][T11525] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 397.822949][T11525] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 397.834945][T11525] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 397.860539][T11525] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 397.908835][T11525] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 398.091408][T11540] busy [ 399.651223][T11571] busy [ 399.867658][ T8851] Bluetooth: hci2: command 0x0c1a tx timeout [ 399.874039][ T8851] Bluetooth: hci1: command 0x0c1a tx timeout [ 399.880210][ T6128] Bluetooth: hci0: command 0x0c1a tx timeout [ 399.909966][T11577] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1336'. [ 399.947455][T11578] Bluetooth: hci3: command 0x0c1a tx timeout [ 400.486625][T11568] Process accounting resumed [ 400.944636][T11593] vivid-008: ================= START STATUS ================= [ 400.972413][T11593] vivid-008: ================== END STATUS ================== [ 401.032921][T11602] random: crng reseeded on system resumption [ 401.947975][T11578] Bluetooth: hci1: command 0x0c1a tx timeout [ 401.954257][ T6118] Bluetooth: hci2: command 0x0c1a tx timeout [ 402.676971][T11623] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1347'. [ 404.326903][T11646] random: crng reseeded on system resumption [ 407.967073][T11707] busy [ 408.074972][T11709] busy [ 408.152287][T11712] FAULT_INJECTION: forcing a failure. [ 408.152287][T11712] name failslab, interval 1, probability 0, space 0, times 0 [ 408.197355][T11712] CPU: 0 UID: 0 PID: 11712 Comm: syz.1.1369 Tainted: G L syzkaller #0 PREEMPT(full) [ 408.197381][T11712] Tainted: [L]=SOFTLOCKUP [ 408.197386][T11712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 408.197396][T11712] Call Trace: [ 408.197402][T11712] [ 408.197408][T11712] dump_stack_lvl+0x100/0x190 [ 408.197430][T11712] should_fail_ex.cold+0x5/0xa [ 408.197450][T11712] should_failslab+0xc2/0x120 [ 408.197476][T11712] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 408.197499][T11712] ? __pmd_alloc+0xbf/0x950 [ 408.197522][T11712] __pmd_alloc+0xbf/0x950 [ 408.197543][T11712] __handle_mm_fault+0xa9c/0x2a00 [ 408.197568][T11712] ? mt_find+0x45e/0x8e0 [ 408.197650][T11712] ? __pfx___handle_mm_fault+0x10/0x10 [ 408.197671][T11712] ? __pfx_mt_find+0x10/0x10 [ 408.197695][T11712] ? find_vma+0xbf/0x140 [ 408.197711][T11712] ? __pfx_find_vma+0x10/0x10 [ 408.197729][T11712] handle_mm_fault+0x36d/0xa20 [ 408.197755][T11712] do_user_addr_fault+0x74c/0x12f0 [ 408.197777][T11712] ? trace_page_fault_kernel+0x7a/0x200 [ 408.197796][T11712] exc_page_fault+0x6f/0xd0 [ 408.197819][T11712] asm_exc_page_fault+0x26/0x30 [ 408.197834][T11712] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 408.197853][T11712] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 9b 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 408.197868][T11712] RSP: 0018:ffffc900057e7d70 EFLAGS: 00050246 [ 408.197880][T11712] RAX: 0000000000000001 RBX: 0000000000000038 RCX: 0000000000000008 [ 408.197890][T11712] RDX: 0000000000000001 RSI: 0000000000000038 RDI: ffffc900057e7e18 [ 408.197899][T11712] RBP: 0000000000000008 R08: 0000000000000001 R09: fffff52000afcfc3 [ 408.197908][T11712] R10: ffffc900057e7e1f R11: 0000000000000000 R12: 0000000000000000 [ 408.197916][T11712] R13: ffffc900057e7e18 R14: 0000000000000038 R15: ffffc900057e7e18 [ 408.197935][T11712] _copy_from_user+0x98/0xd0 [ 408.197953][T11712] dma_buf_ioctl+0x181/0x8a0 [ 408.198023][T11712] ? __pfx_dma_buf_ioctl+0x10/0x10 [ 408.198039][T11712] ? find_held_lock+0x2b/0x80 [ 408.198058][T11712] ? __fget_files+0x215/0x3d0 [ 408.198075][T11712] ? hook_file_ioctl_common+0x149/0x410 [ 408.198096][T11712] ? __fget_files+0x21f/0x3d0 [ 408.198116][T11712] ? __pfx_dma_buf_ioctl+0x10/0x10 [ 408.198134][T11712] __x64_sys_ioctl+0x18e/0x210 [ 408.198151][T11712] do_syscall_64+0x10b/0xf80 [ 408.198172][T11712] ? clear_bhb_loop+0x40/0x90 [ 408.198190][T11712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.198205][T11712] RIP: 0033:0x7f126999ce59 [ 408.198218][T11712] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 408.198232][T11712] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 408.198247][T11712] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 408.198256][T11712] RDX: 0000000000000038 RSI: 00000000c0086202 RDI: 0000000000000003 [ 408.198266][T11712] RBP: 00007f126a847090 R08: 0000000000000000 R09: 0000000000000000 [ 408.198275][T11712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 408.198284][T11712] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 408.198303][T11712] [ 409.234954][T11730] mmap: syz.1.1371 (11730) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 410.000643][T11742] netlink: 'syz.0.1375': attribute type 11 has an invalid length. [ 410.072310][T11742] netlink: 'syz.0.1375': attribute type 1 has an invalid length. [ 410.120768][T11742] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1375'. [ 410.444824][T11760] busy [ 410.498837][T11763] : Can't lookup blockdev [ 410.606292][T11766] FAULT_INJECTION: forcing a failure. [ 410.606292][T11766] name failslab, interval 1, probability 0, space 0, times 0 [ 410.606322][T11766] CPU: 0 UID: 8 PID: 11766 Comm: syz.0.1381 Tainted: G L syzkaller #0 PREEMPT(full) [ 410.606343][T11766] Tainted: [L]=SOFTLOCKUP [ 410.606349][T11766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 410.606358][T11766] Call Trace: [ 410.606363][T11766] [ 410.606369][T11766] dump_stack_lvl+0x100/0x190 [ 410.606390][T11766] should_fail_ex.cold+0x5/0xa [ 410.606410][T11766] should_failslab+0xc2/0x120 [ 410.606428][T11766] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 410.606452][T11766] ? security_inode_alloc+0x3b/0x2c0 [ 410.606467][T11766] ? lockdep_init_map_type+0x5c/0x250 [ 410.606486][T11766] security_inode_alloc+0x3b/0x2c0 [ 410.606502][T11766] inode_init_always_gfp+0xcc0/0x1000 [ 410.606524][T11766] alloc_inode+0x8e/0x250 [ 410.606547][T11766] sock_alloc+0x44/0x280 [ 410.606564][T11766] ? security_socket_create+0x7f/0x250 [ 410.606587][T11766] __sock_create+0xc2/0x860 [ 410.606611][T11766] __sys_socket+0x14d/0x260 [ 410.606632][T11766] ? __pfx___sys_socket+0x10/0x10 [ 410.606659][T11766] __x64_sys_socket+0x72/0xb0 [ 410.606680][T11766] ? lockdep_hardirqs_on+0x78/0x100 [ 410.606702][T11766] do_syscall_64+0x10b/0xf80 [ 410.606723][T11766] ? clear_bhb_loop+0x40/0x90 [ 410.606741][T11766] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.606756][T11766] RIP: 0033:0x7f9a0319ce59 [ 410.606770][T11766] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 410.606785][T11766] RSP: 002b:00007f9a03fd7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 410.606800][T11766] RAX: ffffffffffffffda RBX: 00007f9a03416090 RCX: 00007f9a0319ce59 [ 410.606810][T11766] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000029 [ 410.606819][T11766] RBP: 00007f9a03232d6f R08: 0000000000000000 R09: 0000000000000000 [ 410.606828][T11766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.606837][T11766] R13: 00007f9a03416128 R14: 00007f9a03416090 R15: 00007ffeaa8950f8 [ 410.606857][T11766] [ 410.606872][T11766] net_ratelimit: 49 callbacks suppressed [ 410.606881][T11766] socket: no more sockets [ 411.718775][T11785] FAULT_INJECTION: forcing a failure. [ 411.718775][T11785] name fail_futex, interval 1, probability 0, space 0, times 0 [ 411.718806][T11785] CPU: 0 UID: 8 PID: 11785 Comm: syz.0.1385 Tainted: G L syzkaller #0 PREEMPT(full) [ 411.718832][T11785] Tainted: [L]=SOFTLOCKUP [ 411.718837][T11785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 411.718847][T11785] Call Trace: [ 411.718853][T11785] [ 411.718859][T11785] dump_stack_lvl+0x100/0x190 [ 411.718880][T11785] should_fail_ex.cold+0x5/0xa [ 411.718900][T11785] get_futex_key+0x1d2/0x1510 [ 411.718919][T11785] ? __pfx_get_futex_key+0x10/0x10 [ 411.718933][T11785] ? assoc_array_delete+0x2d8/0xd10 [ 411.718956][T11785] ? kasan_save_stack+0x3f/0x50 [ 411.718970][T11785] ? kasan_save_stack+0x30/0x50 [ 411.718984][T11785] ? kasan_save_track+0x14/0x30 [ 411.718998][T11785] ? kasan_save_free_info+0x3b/0x70 [ 411.719017][T11785] ? __kasan_slab_free+0x5f/0x80 [ 411.719032][T11785] ? kfree+0x223/0x6c0 [ 411.719051][T11785] ? assoc_array_delete+0x2d8/0xd10 [ 411.719070][T11785] ? key_unlink+0xbc/0x310 [ 411.719151][T11785] ? keyctl_keyring_unlink+0xdc/0x1b0 [ 411.719176][T11785] futex_wait_setup+0x83/0x510 [ 411.719202][T11785] __futex_wait+0x19f/0x300 [ 411.719223][T11785] ? __pfx___futex_wait+0x10/0x10 [ 411.719247][T11785] ? __pfx_futex_wake_mark+0x10/0x10 [ 411.719269][T11785] ? futex_hash+0x2ad/0x370 [ 411.719284][T11785] ? futex_hash+0x141/0x370 [ 411.719301][T11785] futex_wait+0xe6/0x370 [ 411.719321][T11785] ? __pfx_futex_wait+0x10/0x10 [ 411.719345][T11785] ? __pfx_assoc_array_delete+0x10/0x10 [ 411.719370][T11785] do_futex+0x1ef/0x350 [ 411.719386][T11785] ? __pfx_do_futex+0x10/0x10 [ 411.719404][T11785] ? up_write+0x28c/0x4f0 [ 411.719425][T11785] __x64_sys_futex+0x34f/0x4d0 [ 411.719444][T11785] ? __pfx___x64_sys_futex+0x10/0x10 [ 411.719461][T11785] ? key_put+0x62/0x2e0 [ 411.719478][T11785] ? rcu_is_watching+0x12/0xc0 [ 411.719499][T11785] do_syscall_64+0x10b/0xf80 [ 411.719521][T11785] ? clear_bhb_loop+0x40/0x90 [ 411.719539][T11785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 411.719555][T11785] RIP: 0033:0x7f9a0319ce59 [ 411.719569][T11785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 411.719583][T11785] RSP: 002b:00007f9a03fd70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 411.719598][T11785] RAX: ffffffffffffffda RBX: 00007f9a03416098 RCX: 00007f9a0319ce59 [ 411.719609][T11785] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9a03416098 [ 411.719626][T11785] RBP: 00007f9a03416090 R08: 0000000000000000 R09: 0000000000000000 [ 411.719636][T11785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 411.719646][T11785] R13: 00007f9a03416128 R14: 00007ffeaa895010 R15: 00007ffeaa8950f8 [ 411.719666][T11785] [ 414.036765][T11803] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 414.060084][T11803] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 414.080761][T11803] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 414.101775][T11803] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 414.121873][T11803] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 414.294236][T11821] busy [ 414.480692][T11826] FAULT_INJECTION: forcing a failure. [ 414.480692][T11826] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 414.533677][T11826] CPU: 0 UID: 0 PID: 11826 Comm: syz.1.1394 Tainted: G L syzkaller #0 PREEMPT(full) [ 414.533705][T11826] Tainted: [L]=SOFTLOCKUP [ 414.533711][T11826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 414.533720][T11826] Call Trace: [ 414.533726][T11826] [ 414.533733][T11826] dump_stack_lvl+0x100/0x190 [ 414.533756][T11826] should_fail_ex.cold+0x5/0xa [ 414.533776][T11826] strncpy_from_user+0x3b/0x2d0 [ 414.533862][T11826] keyctl_restrict_keyring+0xeb/0x250 [ 414.533887][T11826] ? __pfx_keyctl_restrict_keyring+0x10/0x10 [ 414.533913][T11826] ? ksys_write+0x1ac/0x250 [ 414.533936][T11826] __do_sys_keyctl+0x2e8/0x5a0 [ 414.533951][T11826] do_syscall_64+0x10b/0xf80 [ 414.533973][T11826] ? clear_bhb_loop+0x40/0x90 [ 414.533991][T11826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.534009][T11826] RIP: 0033:0x7f126999ce59 [ 414.534024][T11826] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 414.534039][T11826] RSP: 002b:00007f126a847028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 414.534069][T11826] RAX: ffffffffffffffda RBX: 00007f1269c15fa0 RCX: 00007f126999ce59 [ 414.534080][T11826] RDX: 0000000000000002 RSI: fffffffffffffffd RDI: 000000000000001d [ 414.534090][T11826] RBP: 00007f1269a32d6f R08: fffffffffffffffd R09: 0000000000000000 [ 414.534101][T11826] R10: 0000000000000628 R11: 0000000000000246 R12: 0000000000000000 [ 414.534110][T11826] R13: 00007f1269c16038 R14: 00007f1269c15fa0 R15: 00007ffe298fe448 [ 414.534130][T11826] [ 415.043707][T11828] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1395'. [ 415.547480][ T6118] Bluetooth: hci1: command 0x0c1a tx timeout [ 415.963576][T11845] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1398'. [ 416.108320][ T6118] Bluetooth: hci0: command 0x0c1a tx timeout [ 416.114359][T11578] Bluetooth: hci2: command 0x0c1a tx timeout [ 416.187500][ T6118] Bluetooth: hci3: command 0x0c1a tx timeout [ 416.220769][T11852] busy [ 416.940739][T11860] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^' [ 418.187514][ T6118] Bluetooth: hci2: command 0x0c1a tx timeout [ 420.155185][T11915] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1416'. [ 420.224126][T11902] Process accounting paused [ 420.418843][T11919] random: crng reseeded on system resumption [ 421.101947][T11923] nvme_fabrics: missing parameter 'transport=%s' [ 421.205361][T11923] nvme_fabrics: missing parameter 'nqn=%s' [ 421.540008][T11934] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1421'. [ 422.893336][T11947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1423'. [ 423.758293][T11957] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1426'. [ 424.056056][T11960] random: crng reseeded on system resumption [ 424.624882][T11969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1430'. [ 426.463694][T11969] Process accounting paused [ 427.021654][T11981] kexec: Could not allocate control_code_buffer [ 427.260129][T11999] random: crng reseeded on system resumption [ 427.582888][T11578] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 427.597646][T11578] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 427.607436][T11578] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 427.620206][T11578] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 427.633088][T11578] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 428.968120][T12001] kexec: Could not allocate control_code_buffer [ 429.708909][T11578] Bluetooth: hci4: command tx timeout [ 430.461142][T12004] bridge0: port 1(bridge_slave_0) entered blocking state [ 430.499496][T12004] bridge0: port 1(bridge_slave_0) entered disabled state [ 430.543932][T12004] bridge_slave_0: entered allmulticast mode [ 430.581882][T12004] bridge_slave_0: entered promiscuous mode [ 430.639763][T12004] bridge0: port 2(bridge_slave_1) entered blocking state [ 430.676676][T12004] bridge0: port 2(bridge_slave_1) entered disabled state [ 430.714764][T12004] bridge_slave_1: entered allmulticast mode [ 430.752747][T12004] bridge_slave_1: entered promiscuous mode [ 430.824253][T11789] ------------[ cut here ]------------ [ 430.829988][T11789] ODEBUG: free active (active state 0) object: ffff88807b181438 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0 [ 430.843577][T11789] WARNING: lib/debugobjects.c:629 at debug_print_object+0x18e/0x2a0, CPU#0: syz.0.1386/11789 [ 430.854299][T11789] Modules linked in: [ 430.858277][T11789] CPU: 0 UID: 0 PID: 11789 Comm: syz.0.1386 Tainted: G L syzkaller #0 PREEMPT(full) [ 430.869296][T11789] Tainted: [L]=SOFTLOCKUP [ 430.873600][T11789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 430.883734][T11789] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 430.890218][T11789] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 12 af e2 0b 41 56 48 8b 14 dd c0 49 1c 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 2c 2b d8 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 430.910097][T11789] RSP: 0000:ffffc900054b76f8 EFLAGS: 00010246 [ 430.916149][T11789] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 430.924131][T11789] RDX: ffffffff8c1c4900 RSI: ffffffff8c1c4520 RDI: ffffffff90e2a1a0 [ 430.932113][T11789] RBP: 0000000000000001 R08: ffff88807b181438 R09: ffffffff8bb2c700 [ 430.941098][T11789] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1c4520 [ 430.949615][T11789] R13: ffffffff8bb2c740 R14: ffffffff8a92d280 R15: ffffc900054b77f8 [ 430.957622][T11789] FS: 0000000000000000(0000) GS:ffff888124377000(0000) knlGS:0000000000000000 [ 430.966579][T11789] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 430.973235][T11789] CR2: 0000001b349faff8 CR3: 00000000379fc000 CR4: 00000000003526f0 [ 430.981235][T11789] Call Trace: [ 430.984500][T11789] [ 430.987497][T11789] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 430.992947][T11789] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 430.998780][T11789] debug_check_no_obj_freed+0x4da/0x630 [ 431.004329][T11789] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 431.010411][T11789] ? __page_table_check_zero+0x333/0x410 [ 431.016031][T11789] ? __page_table_check_zero+0x333/0x410 [ 431.021720][T11789] ? __page_table_check_zero+0x338/0x410 [ 431.027380][T11789] __free_frozen_pages+0x3f5/0x1040 [ 431.032574][T11789] hci_release_dev+0x4ef/0x630 [ 431.038220][T11789] ? __pfx_hci_release_dev+0x10/0x10 [ 431.043987][T11789] ? device_release+0x97/0x270 [ 431.048884][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.053642][T11789] ? device_release+0x97/0x270 [ 431.058454][T11789] bt_host_release+0x6a/0xb0 [ 431.063117][T11789] ? __pfx_bt_host_release+0x10/0x10 [ 431.068654][T11789] device_release+0xd2/0x270 [ 431.073319][T11789] kobject_put+0x1f7/0x640 [ 431.077853][T11789] put_device+0x1f/0x30 [ 431.082006][T11789] vhci_release+0x185/0x230 [ 431.086588][T11789] ? __pfx_vhci_release+0x10/0x10 [ 431.091659][T11789] __fput+0x3ff/0xb50 [ 431.095659][T11789] task_work_run+0x150/0x240 [ 431.100272][T11789] ? __pfx_task_work_run+0x10/0x10 [ 431.105477][T11789] do_exit+0x951/0x2af0 [ 431.109698][T11789] ? __pfx___might_resched+0x10/0x10 [ 431.115010][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.119827][T11789] ? __pfx_do_exit+0x10/0x10 [ 431.124419][T11789] ? do_raw_spin_lock+0x128/0x260 [ 431.129468][T11789] ? find_held_lock+0x2b/0x80 [ 431.134161][T11789] ? get_signal+0x7e5/0x2210 [ 431.139572][T11789] do_group_exit+0xd5/0x2a0 [ 431.144623][T11789] get_signal+0x20ff/0x2210 [ 431.149339][T11789] ? __pfx_get_signal+0x10/0x10 [ 431.154186][T11789] ? kernel_move_pages+0xcfd/0x13f0 [ 431.159442][T11789] ? do_futex+0x192/0x350 [ 431.163788][T11789] arch_do_signal_or_restart+0x91/0x7a0 [ 431.169358][T11789] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 431.175515][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.180329][T11789] exit_to_user_mode_loop+0x8b/0x4f0 [ 431.185603][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.190400][T11789] do_syscall_64+0x6f2/0xf80 [ 431.195006][T11789] ? clear_bhb_loop+0x40/0x90 [ 431.199807][T11789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.205710][T11789] RIP: 0033:0x7f9a0319ce59 [ 431.210176][T11789] Code: Unable to access opcode bytes at 0x7f9a0319ce2f. [ 431.217201][T11789] RSP: 002b:00007f9a03fd7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 431.225645][T11789] RAX: fffffffffffffff2 RBX: 00007f9a03416090 RCX: 00007f9a0319ce59 [ 431.233636][T11789] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 431.242452][T11789] RBP: 00007f9a03232d6f R08: 0000000000000000 R09: 8000400000000000 [ 431.250919][T11789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 431.258951][T11789] R13: 00007f9a03416128 R14: 00007f9a03416090 R15: 00007ffeaa8950f8 [ 431.266939][T11789] [ 431.269983][T11789] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 431.277249][T11789] CPU: 0 UID: 0 PID: 11789 Comm: syz.0.1386 Tainted: G L syzkaller #0 PREEMPT(full) [ 431.288166][T11789] Tainted: [L]=SOFTLOCKUP [ 431.292472][T11789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 431.302527][T11789] Call Trace: [ 431.305811][T11789] [ 431.308729][T11789] dump_stack_lvl+0x100/0x190 [ 431.313396][T11789] vpanic+0x552/0x970 [ 431.317361][T11789] ? __pfx_vpanic+0x10/0x10 [ 431.321869][T11789] panic+0xd1/0xe0 [ 431.325577][T11789] ? __pfx_panic+0x10/0x10 [ 431.329999][T11789] ? check_panic_on_warn+0x1f/0x90 [ 431.335102][T11789] check_panic_on_warn.cold+0x19/0x34 [ 431.340459][T11789] ? debug_print_object+0x18e/0x2a0 [ 431.345670][T11789] __warn.cold+0x191/0x328 [ 431.350074][T11789] __report_bug+0x296/0x3d0 [ 431.354647][T11789] ? debug_print_object+0x18e/0x2a0 [ 431.359847][T11789] ? __pfx___report_bug+0x10/0x10 [ 431.365043][T11789] ? __lock_acquire+0x4a5/0x2630 [ 431.369964][T11789] ? unwind_next_frame+0x3c8/0x2090 [ 431.375153][T11789] report_bug_entry+0xe1/0x290 [ 431.379906][T11789] ? debug_print_object+0x19b/0x2a0 [ 431.385096][T11789] handle_bug+0x1cd/0x2a0 [ 431.389414][T11789] exc_invalid_op+0x17/0x50 [ 431.393902][T11789] asm_exc_invalid_op+0x1a/0x20 [ 431.398736][T11789] RIP: 0010:debug_print_object+0x19b/0x2a0 [ 431.404561][T11789] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 12 af e2 0b 41 56 48 8b 14 dd c0 49 1c 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 2c 2b d8 0b 01 48 83 c4 18 5b 5d 41 5c 41 [ 431.424154][T11789] RSP: 0000:ffffc900054b76f8 EFLAGS: 00010246 [ 431.430207][T11789] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 431.438161][T11789] RDX: ffffffff8c1c4900 RSI: ffffffff8c1c4520 RDI: ffffffff90e2a1a0 [ 431.446116][T11789] RBP: 0000000000000001 R08: ffff88807b181438 R09: ffffffff8bb2c700 [ 431.454069][T11789] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1c4520 [ 431.462022][T11789] R13: ffffffff8bb2c740 R14: ffffffff8a92d280 R15: ffffc900054b77f8 [ 431.469978][T11789] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 431.475438][T11789] ? __pfx_hci_devcd_timeout+0x10/0x10 [ 431.480885][T11789] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 431.486683][T11789] debug_check_no_obj_freed+0x4da/0x630 [ 431.492226][T11789] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 431.498284][T11789] ? __page_table_check_zero+0x333/0x410 [ 431.503911][T11789] ? __page_table_check_zero+0x333/0x410 [ 431.509536][T11789] ? __page_table_check_zero+0x338/0x410 [ 431.515161][T11789] __free_frozen_pages+0x3f5/0x1040 [ 431.520354][T11789] hci_release_dev+0x4ef/0x630 [ 431.525104][T11789] ? __pfx_hci_release_dev+0x10/0x10 [ 431.530373][T11789] ? device_release+0x97/0x270 [ 431.535128][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.539876][T11789] ? device_release+0x97/0x270 [ 431.544633][T11789] bt_host_release+0x6a/0xb0 [ 431.549215][T11789] ? __pfx_bt_host_release+0x10/0x10 [ 431.554491][T11789] device_release+0xd2/0x270 [ 431.559072][T11789] kobject_put+0x1f7/0x640 [ 431.563475][T11789] put_device+0x1f/0x30 [ 431.567621][T11789] vhci_release+0x185/0x230 [ 431.572121][T11789] ? __pfx_vhci_release+0x10/0x10 [ 431.577132][T11789] __fput+0x3ff/0xb50 [ 431.581108][T11789] task_work_run+0x150/0x240 [ 431.585690][T11789] ? __pfx_task_work_run+0x10/0x10 [ 431.590791][T11789] do_exit+0x951/0x2af0 [ 431.594937][T11789] ? __pfx___might_resched+0x10/0x10 [ 431.600209][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.604964][T11789] ? __pfx_do_exit+0x10/0x10 [ 431.609544][T11789] ? do_raw_spin_lock+0x128/0x260 [ 431.614566][T11789] ? find_held_lock+0x2b/0x80 [ 431.619233][T11789] ? get_signal+0x7e5/0x2210 [ 431.623815][T11789] do_group_exit+0xd5/0x2a0 [ 431.628306][T11789] get_signal+0x20ff/0x2210 [ 431.632803][T11789] ? __pfx_get_signal+0x10/0x10 [ 431.637664][T11789] ? kernel_move_pages+0xcfd/0x13f0 [ 431.642870][T11789] ? do_futex+0x192/0x350 [ 431.647186][T11789] arch_do_signal_or_restart+0x91/0x7a0 [ 431.652747][T11789] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 431.659002][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.663765][T11789] exit_to_user_mode_loop+0x8b/0x4f0 [ 431.669035][T11789] ? rcu_is_watching+0x12/0xc0 [ 431.673810][T11789] do_syscall_64+0x6f2/0xf80 [ 431.678391][T11789] ? clear_bhb_loop+0x40/0x90 [ 431.683059][T11789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.688937][T11789] RIP: 0033:0x7f9a0319ce59 [ 431.693339][T11789] Code: Unable to access opcode bytes at 0x7f9a0319ce2f. [ 431.700335][T11789] RSP: 002b:00007f9a03fd7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000117 [ 431.708733][T11789] RAX: fffffffffffffff2 RBX: 00007f9a03416090 RCX: 00007f9a0319ce59 [ 431.716689][T11789] RDX: 0000000000000000 RSI: 0002000000000003 RDI: 0000000000000001 [ 431.724646][T11789] RBP: 00007f9a03232d6f R08: 0000000000000000 R09: 8000400000000000 [ 431.732600][T11789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 431.740555][T11789] R13: 00007f9a03416128 R14: 00007f9a03416090 R15: 00007ffeaa8950f8 [ 431.748518][T11789] [ 431.751575][T11789] Kernel Offset: disabled [ 431.755912][T11789] Rebooting in 86400 seconds..