last executing test programs: 5.526733462s ago: executing program 1 (id=1830): mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000140)={0x0, 0xc3}, 0x6, 0x0, 0x0, 0x504}, 0x1}, 0x2, 0x0) 5.245106629s ago: executing program 1 (id=1833): mmap$auto(0x0, 0x400008, 0x7fffffffffffffff, 0x10011, 0x2, 0x8000) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/conf/wg0/accept_dad\x00', 0xd00, 0x0) sendfile$auto(r0, r1, 0x0, 0x800048) ioctl$auto_FIFREEZE(r1, 0xc0045878, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', 0x0}) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x34b}]}, 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x4) openat$auto_ima_htable_violations_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000100), 0x107100, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x1) mq_open$auto(0x0, 0xdd1, 0x8, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) timer_create$auto(0xfffffffe, &(0x7f0000000000)={@sival_int=0x4, @raw=0x2, 0x4, @_tid}, &(0x7f0000000040)=0x9) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0xfffff958) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) 4.514580182s ago: executing program 1 (id=1840): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 4.035866988s ago: executing program 1 (id=1843): rseq$auto(&(0x7f00000002c0)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0xfffffff4, 0x0, 0x7) ioperm$auto(0x3, 0xe, 0x2000000000000149) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000380), 0x101100, 0x0) r0 = socket(0x11, 0x6, 0x8) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="5c780db5ae83a1501c", @ANYRES16=r1, @ANYBLOB="010027bd7000fddbdf250400000014000100fc000000000000000000000000000001"], 0x28}, 0x1, 0x0, 0x0, 0x20000088}, 0x20000000) mmap$auto(0x0, 0x200, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x2, 0x1000000000001) close_range$auto(0x0, 0xfffffffffffff000, 0x2) read$auto_regulator_summary_fops_(r2, &(0x7f0000000200)=""/166, 0xa6) bpf$auto(0x40000000, 0x0, 0x2000096) connect$auto(0x3, 0x0, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0) getpid() mincore$auto(0x1000, 0x20000000008005, 0x0) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r4, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0xffd8) semget$auto(0x0, 0x13c, 0x1ff) kcmp$auto(0x1, 0x100000001, 0x5, 0x8f0, 0x24000) unshare$auto(0x40000080) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b8289b7eac2deffda8a87d390e9c0c03cf97", @ANYRES16=r6, @ANYBLOB="e3b725bd7000fddbdf2519000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x48000) 4.034434545s ago: executing program 2 (id=1844): socket(0x2, 0x80002, 0x73) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event1\x00', 0x8000, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x9) close_range$auto(0x2, 0xa, 0x0) 3.781289837s ago: executing program 2 (id=1846): write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/pcrypt/pdecrypt/serial_cpumask\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x8100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x66) madvise$auto(0x0, 0x20000a, 0x4) rseq$auto(&(0x7f0000000200)={0xe, 0x402, 0xfb82, 0x3, 0xffffffff, 0xfffffffe}, 0x8000, 0x0, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) set_mempolicy$auto(0x3, 0x0, 0x9) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/state\x00', 0x2000, 0x0) lseek$auto(r3, 0x9, 0x0) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) sysfs$auto(0x2, 0x4, 0x8) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1) sendmsg$auto_NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB="000126bd7000fddbdf253500000004003c00"], 0x18}}, 0x40080c4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x8000, 0x5, 0x49f, 0x10, 0x2, 0x8000000000008000) open(&(0x7f0000000000)='./file0\x00', 0x26142, 0x4b) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80000000003) 3.141179208s ago: executing program 3 (id=1848): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000001440), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000001480)={0x14, r1, 0x949398432f28d783, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x4040) 3.008433064s ago: executing program 3 (id=1850): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000001440), 0xffffffffffffffff) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, 0x0, 0x42) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x204880, 0x0) fadvise64$auto_POSIX_FADV_WILLNEED(r1, 0xba, 0xc, 0x3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101200, 0x0) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto_SO_TIMESTAMPING_NEW(r0, 0x5, 0x41, &(0x7f0000000200)='\x00', 0x8) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/017/001\x00', 0x10fb82, 0x0) ioctl$auto_USBDEVFS_DROP_PRIVILEGES(r3, 0x4004551e, 0x0) sendfile$auto(r2, 0x3, 0x0, 0x400000000008) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff) sendmsg$auto_MACSEC_CMD_GET_TXSC(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, r5, 0x186f202170196f7b, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x200008d0}, 0x40080c4) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) rmdir$auto(&(0x7f0000000080)='./cgroup/../file0\x00') r6 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) pread64$auto(r6, 0x0, 0x101, 0x103) read$auto_mon_fops_text_t_mon_text(r6, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_GET(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES64=r0, @ANYBLOB="83d72dbd7000fbdbdf2504000000d9aaefa5ffc68e82ab899d8bad729e3e3517503fcf4975698133427950f4374c09000000f35aa3f4f17cb6fae4bd957ef9eee53aa7f2243b578a0dfeff7872d8e0be4c3e70f265e8af1ceaebc6b58dcf662e44441ebd564d9f1889aebe30c0e8f9dddc81d1e68887bd51dd51eee4506e9d55ae45e564fb6ad838f516fc77a9a5a234ec82d4117f328ee64328c16c7e4ca373e7a31c04b961240bbf3f76bca378e2b93d61d612bb61196c1e21f507172318eec8a1af019cffa67e213e09a49aac8c6597847764ce3543becf1a40d371df70"], 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x4040) 2.774910415s ago: executing program 2 (id=1851): socket(0x2, 0x80002, 0x73) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event1\x00', 0x8000, 0x0) mmap$auto(0xffffffffffffffff, 0x400005, 0xdf, 0x9b72, r0, 0x8000) io_uring_setup$auto(0x1, 0x0) r1 = dup$auto(0xffffffffffffffff) r2 = socket(0x3, 0x5, 0x0) setsockopt$auto(0x3, 0x114, 0x1d, 0xffffffffffffffff, 0x4) ioctl$auto_ECCGETLAYOUT(r1, 0x81484d11, 0x0) mmap$auto(0x84, 0xa, 0xe3, 0xffffffffffffffff, r2, 0x8002) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) unshare$auto(0x40000080) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4008ae48, 0x38) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) mmap$auto(0x400, 0x3, 0x2, 0x40eb2, 0x401, 0x300000000000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x800001, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0) write$auto(r4, &(0x7f0000000100)='0[.[\x00', 0xcd02) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) mmap$auto(0x10001, 0x2020009, 0x81, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x23b, 0x1, 0x0, 0x3, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xfffffffffffefffe, 0x15) adjtimex$auto(0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) 2.211714047s ago: executing program 0 (id=1852): r0 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/id\x00', 0x82001, 0x0) read$auto(r0, &(0x7f0000000180)='\x00', 0x3) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) r1 = prctl$auto_PR_SET_MM_START_STACK(0x5, 0x5, 0x0, 0x1ff, 0x2) write$auto(r1, 0x0, 0xff) r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f0000000080)={0xfffffff9, 0xa, 0x2, 0xffffff01, 0x6, "f871ca36287d45459fdb2e2134fe55f1a74dcb81bf3d608071e033d268c9421b9eb89966f2a9379dcf0088a499324ff46dfe3448d7fa72f4e692ccb2"}) 2.115019993s ago: executing program 3 (id=1853): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1a, 0x80000, 0xe) r2 = pidfd_getfd$auto(r1, r0, 0xfffffffe) read$auto_uprobe_events_ops_trace_uprobe(r2, &(0x7f0000000000)=""/27, 0x1b) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'wg1\x00'}) select$auto(0x5c, &(0x7f0000000080)={[0x10001, 0x1, 0x1, 0x46e3, 0x3, 0xa, 0xd41, 0x8, 0x9, 0x1, 0x7, 0x9, 0x9, 0x9, 0xcc5, 0x6]}, &(0x7f0000000100)={[0x2, 0x0, 0x8f71, 0x7b55, 0x8, 0xf91d, 0xffffffffffffffff, 0x9, 0x9, 0x7fffffff, 0x1, 0x6, 0x5, 0x3, 0x71263909, 0x4]}, &(0x7f0000000180)={[0xffffffffffffff93, 0x8001, 0xffffffffffffff5f, 0x9, 0x1, 0x80000000, 0x7ff, 0x0, 0xb77, 0x40, 0x0, 0xfffffffffffff559, 0x10000, 0x0, 0xf, 0x9]}, &(0x7f0000000200)={0x8, 0x2}) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r0, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xe1bd8c8a362f4caa}, 0xc, &(0x7f0000000440)={&(0x7f00000002c0)={0x15c, r3, 0x100, 0x2, 0x25dfdbff, {}, [@NL80211_ATTR_ADMITTED_TIME={0x6}, @NL80211_ATTR_COLOR_CHANGE_COUNT={0x5, 0x12f, 0x66}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_MESH_ID={0xa, 0x18, "768a41e78eec"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xe7, 0xbe, "2359df5e083a48df1e1fdfdd4aab98278a2dd2d773132f8d93201b12227694f9e1033933e299d71559456d9734d83a0bbfdf37e17ddda5f412c6653775cfb020f007d84ae4dc04e5a063c08e0b88b62e05cfa566f1fd9e5929688a3dddb13a75dd4cf572d04fa50052e3b02bf5129dbdd98f452f98e4114dbebe10be1ffb92f4d6916017cab99cbe97c8f08c338f9da7a5d094768c43a1555965da271bf2dc3f8d53cb60cc04936fab2e35aae2d64f10ee3c050c166b034a3915707f5fb5b71e0ec190523244c6ca3ba6e6ef7d81c09731ac30ce88a72e1e99cf79101529c510b4405c"}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x8460}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x5}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "99c7f29fb10f362621b02aae119811e031896dcd4408532edec6"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x4}]}, 0x15c}, 0x1, 0x0, 0x0, 0x800}, 0x8844) write$auto_tty_fops_tty_io(r2, &(0x7f00000004c0)="82233d21c66b8e5165436d0e035690401d98985ac502e265d822ecdc98713c2969e9eb48b4823f309ae2c5b50ef5223a394312161d59f088b620c0caddcc59a636bd5844156646d5c6fcf1fafe44", 0x4e) ioctl$auto_SNDCTL_DSP_GETOPTR(r2, 0x800c5012, &(0x7f0000000540)="5369bc9ca7a2caf0dde88d0e1c30e6fdf863eb61f75ab4cca9b62f9f86ff80ab4c3a3c2f4570cd6dd11386c806f070dd66ab691be0692858c4f024f3434b2bef671a1f0a1c1418ff59c2eb9906c61be3ad2064ae57b7039761355cc8a738f32ecb023b8b97a8bc95a3ee5f2acf4d0eda8b0377baeed35dd718f9bf9570938cb2ac8736efcd904785953b5b8778b2405f01638581090912e60ffad076d1bcce5d424955876ebe6f1ae0570c3ab75e8283823dbb861f8e2d606de9b9eef6bb243db6813d91e9b15b2f") syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000640), r0) r4 = epoll_create$auto(0x0) pselect6$auto(0x7fffffff, &(0x7f0000000680)={[0x2, 0x1, 0x5, 0x8000, 0xc2, 0x5, 0x3, 0x5, 0x3, 0x2, 0x200000, 0x1940, 0x8001, 0x89]}, &(0x7f0000000700)={[0x100, 0x1, 0x5, 0x3, 0x3, 0xff, 0xd82, 0x0, 0xd, 0x2, 0x8bd, 0x9, 0x9, 0x0, 0xffff, 0x27a8f2f0]}, &(0x7f0000000780)={[0x1, 0x3ff, 0x8001, 0x4d, 0xad, 0x9, 0x5, 0x0, 0x9, 0x3, 0x3, 0x8, 0x8, 0xb, 0x5, 0x8]}, &(0x7f0000000800)={0x4, 0x7}, &(0x7f0000000840)="5f5a2b2bf0d4e2ea6b7ee9b907ea268f00822d2adeb8b2081075cbe16e726473ad9e3d10efe0a5e68f4c8996d259e83bf0452a988bcb7f9cad5e640708be2fb831144ce65873") r5 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/debug/netdevsim/netdevsim2/psample/enable\x00', 0xa0002, 0x0) io_pgetevents$auto(0x3ff, 0x3, 0x9, &(0x7f0000000900)={0x0, 0x5, 0x800, 0x800}, &(0x7f0000000940)={0xfffffffffffffffb, 0x40}, &(0x7f00000009c0)={0x0}) r6 = ioctl$auto_TUNSETSTEERINGEBPF(r4, 0x800454e0, &(0x7f0000000a00)=0x7df) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000a80), r2) sendmsg$auto_NFC_CMD_DEV_DOWN(r6, &(0x7f0000000bc0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b80)={0x0}, 0x1, 0x0, 0x0, 0x4844}, 0x4) ioctl$auto_TUNSETSTEERINGEBPF(r6, 0x800454e0, &(0x7f0000000c00)) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x14, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, ["", "", ""]}, 0x14}}, 0x2) getsockopt$auto_SO_PEERPIDFD(r6, 0xb, 0x4d, &(0x7f0000000d40)='}-#-%)(@$,.+{]-$\x00', &(0x7f0000000d80)=0x6) msgctl$auto(0x0, 0x0, &(0x7f0000000e80)={{0x0, 0xee00, 0x0, 0x26, 0x3, 0xffffffff, 0x4e6c}, &(0x7f0000000e00)=0x1, &(0x7f0000000e40)=0xb, 0xffffffffffff2ab3, 0x6, 0x9, 0x8, 0x6, 0x7, 0x2, 0x7, @inferred=0xffffffffffffffff, @raw=0x7}) shmctl$auto(0x6, 0x1351c00, &(0x7f0000001080)={{0x8, 0x0, 0x0, 0x9, 0x8, 0xffff}, 0xffffffff, 0x9, 0x3a000000000, 0x8, @raw=0x7, @inferred=0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f00)="6f271e91c52dd5dbc8e8d02c98a38f33152056385e10392d7b5e8a6e076813680fae7e40a50d74f2d4f4f13c656b40280574cb48a5863c00ded14e9c21fc77747751406db2d2d1e80d00458ea99816cf1f1b38637e1c3e47a02b664b1576d11734db824da49b10e154eac9ef573bdbe908001f99aae4c772183fdc16a957ba75214d18a6c17c51e979bcef078603ba80f02c7745c57a2d23fdbc754bf3204910eedc37a8f6e47c7f6b0cff1d66", &(0x7f0000000fc0)="fb09c36024a3ace8d1bf10409246ba3e88e8c52b2d81c9ed4c2330e4fd32bd301972cb6717addda0bd2ae182ee067078335dc635b50b1525a7b0dcd46ca0ccc9c9427e2798b2070c3b6735bf767348b8da0b100eb087f48adc7734c6ea21104cad769c0e9e1f8dc41874503bd4019e5858a5d795a0578600724ca62f398fff3fe9f99e6b67237f232d82776c66bdc2bae6b8f0fcd4484ab72ab7c6cc9f960c04f7a12561fbaded6ee2"}) statx$auto(0xffffffffffffffff, &(0x7f0000000dc0)='./file0\x00', 0x6, 0x3, &(0x7f0000001100)={0x3072, 0x4, 0xe6e, 0x10001, r7, r8, 0x8000, 0x1, 0x3ff, 0x1, 0x9, 0x100000001, {0x1e8, 0x2}, {0xffffffffffff0000, 0x9}, {0x3a83, 0x5}, {0x7fffffffffffffff, 0x8}, 0x4, 0x40, 0x3000, 0x3ff, 0x6, 0x4, 0x81, 0xfff, 0xffff, 0xfffffffe, 0x9, 0x101, [0x8, 0x33, 0x3, 0x7, 0xf, 0xffffffffffffff00, 0x1, 0x100]}) r9 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000001240), r2) sendmsg$auto_IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000001300)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001280)={0x1c, r9, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}]}, 0x1c}}, 0x4004000) fcntl$auto_F_DUPFD_QUERY(r5, 0x403, r1) fcntl$auto_F_NOTIFY(r4, 0x402, 0xb5f) ioctl$auto_BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000001380)={@raw=0xfff, 0x2, 0x7fffffff, @unused, @name="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"}) 2.063864396s ago: executing program 0 (id=1854): socket(0x23, 0x80805, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x84, 0x71, 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto_tracing_stats_fops_trace(0xffffffffffffffff, &(0x7f0000000000)=""/43, 0xfedf) read$auto(r0, 0x0, 0x20) writev$auto(0xffffffffffffffff, 0x0, 0x3) r1 = open(0x0, 0x22240, 0x154) execveat$auto(r1, 0x0, 0x0, 0x0, 0x1000) 1.950434247s ago: executing program 3 (id=1855): close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x28, 0x805, 0x0) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, r1, 0x4, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0xf) open(0x0, 0x261c2, 0x84) socket(0x2, 0x1, 0x106) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) timer_create$auto(0x9, &(0x7f0000000100)={@sival_ptr=0x0, @inferred, 0x1, @_tid=0xffffffffffffffff}, &(0x7f0000000140)=0x6) timer_gettime$auto(0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2002, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xfdf3) (fail_nth: 2) 1.654025348s ago: executing program 0 (id=1856): mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00') sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000140)={0x0, 0xc3}, 0x6, 0x0, 0x0, 0x504}, 0x1}, 0x2, 0x0) 1.504846225s ago: executing program 2 (id=1857): close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x28, 0x805, 0x0) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sg0\x00', 0x0, 0x0) ioctl$auto_SCSI_IOCTL_GET_IDLUN2(r2, 0x5382, &(0x7f0000000100)) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, r1, 0x4, 0x1ff, r0, @relative_id=0x13, 0xe600}, 0xf) open(0x0, 0x261c2, 0x84) socket(0x2, 0x1, 0x106) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) timer_create$auto(0x9, &(0x7f0000000100)={@sival_ptr=0x0, @inferred, 0x1, @_tid=0xffffffffffffffff}, &(0x7f0000000140)=0x6) timer_gettime$auto(0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2002, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0xfdf3) 1.49069017s ago: executing program 0 (id=1858): socket(0x10, 0x2, 0x4) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x1) open(&(0x7f00000002c0)='./file0\x00', 0x127c84, 0x20) fcntl$auto(0x3, 0x401, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x108000, 0x800032, 0x4) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/neigh/veth0_vlan/retrans_time_ms\x00', 0x68001, 0x0) mmap$auto(0x3, 0x4, 0x80000000000002, 0xeb1, r0, 0x8000) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/syz_tun/regen_max_retry\x00', 0x408101, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x4, 0x0) landlock_add_rule$auto(r1, 0x3, &(0x7f0000000080)="748bef18ce5a7e316acbdfa2c74574cd0518013e5dae5db8ce38d136ed81e155b56e5f822f774abeec637c2dc6478364fbc06bd912da800c9f49619438829ff837a400c4511fecd1d44ddc409e8c0bed17727da904f44fbdee27e4b065bfe85c34d1fa", 0x70) socket(0x1d, 0x1, 0x7) mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x10, 0x2, 0x4) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket(0x28, 0x1, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_GET_MSRS(r3, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0xc0000103, 0x400, 0xffffffffffffffff}]}) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) ioctl$auto(r2, 0x4008af03, 0x0) ioctl$auto_VHOST_NET_SET_BACKEND(r2, 0x4008af30, 0x0) acct$auto(&(0x7f0000001c40)='/dev/iommu\x00') setsockopt$auto(0x3, 0x1, 0x4a, 0x0, 0x9) 1.021190661s ago: executing program 1 (id=1859): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 889.775219ms ago: executing program 0 (id=1860): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto_JFFS2_COMPR_MODE_NONE(r0, 0x1, &(0x7f0000000100)='l2tp\x00', &(0x7f0000000380), 0x0) ioctl$auto_PROCMAP_QUERY(r0, 0xc0686611, &(0x7f00000000c0)={0xe, 0xc, 0x28c91f52, 0x81, 0x6, 0x81, 0x8001, 0x4, 0x87e, 0x1, 0xc7a, 0x7, 0x9, 0x7, 0x2}) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) mmap$auto(0x0, 0x8001, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/force_tx_status\x00', 0x82, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x800, 0x8) setsockopt$auto(0x3, 0x6b, 0x3, 0x0, 0x28) write$auto(0x3, 0x0, 0xfffffdef) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x7) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r2 = memfd_create$auto(0x0, 0x9) fallocate$auto(r2, 0x3, 0x8000000000002, 0x3) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x9}, 0x3) syz_clone3(&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, &(0x7f0000000100)=[0x0], 0x1}, 0x58) prctl$auto(0xad6, 0x3ff, 0x0, 0x6d, 0x4) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x1a000}, 0x1f, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xe3a7) mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) set_mempolicy_home_node$auto(0x0, 0x2010001, 0x0, 0x0) 880.747339ms ago: executing program 1 (id=1861): symlink$auto(&(0x7f0000001500)='./file0/file0\x00', 0x0) r0 = io_uring_setup$auto(0x401, 0x0) prctl$auto_PR_SET_MM_BRK(0xfffffff7, 0x7, 0x0, 0x2, 0x2) socket(0x11, 0x800, 0x80002) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000003dc0)=ANY=[@ANYBLOB="50160000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="c3d9b7fd73f63d328449af34149ca153badf68691a19", @ANYBLOB="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", @ANYRES32, @ANYBLOB="0800a1007f00000004003b0108004200080000000600b300070000000800090004000000d20006008c741f49b8de7109ffb89399af202e88eb6e3d008a8cda8169867f1c3e1d299a923c2cadcd36bede1a549d9fc7df7dcfb688cc24c00cf85be4c939acdb51de3ec323df78a95e208e0048b6ba28a0213654aed9f2719ca9480032cefb2454a2840e3bdb413df1b7657e99f87cafd2402cb1cbf03415539d9977e742a8b3341850764dfc8ca0219040929dc0fb73e308e5d1671befbe26fdd5370587002c7458c882"], 0x1650}, 0x1, 0x0, 0x0, 0x40040}, 0x0) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x3, 0x0) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x108242, 0x78e22799f4a46f8e) flock$auto(r2, 0x6) r3 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e) flock$auto(r3, 0x1) r4 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e) flock$auto(r4, 0x2) flock$auto(r4, 0x2) close_range$auto(r1, 0xffffffffffffffff, 0x0) socket(0xa, 0x1, 0x84) 619.468699ms ago: executing program 3 (id=1862): mmap$auto(0x0, 0x400008, 0x7fffffffffffffff, 0x10011, 0x2, 0x8000) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/conf/wg0/accept_dad\x00', 0xd00, 0x0) sendfile$auto(r0, r1, 0x0, 0x800048) ioctl$auto_FIFREEZE(r1, 0xc0045878, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', 0x0}) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x34b}]}, 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x4) write$auto(0xffffffffffffffff, 0x0, 0x1) mq_open$auto(0x0, 0xdd1, 0x8, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) timer_create$auto(0xfffffffe, &(0x7f0000000000)={@sival_int=0x4, @raw=0x2, 0x4, @_tid}, &(0x7f0000000040)=0x9) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0xfffff958) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) 292.840864ms ago: executing program 2 (id=1863): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1a, 0x80000, 0xe) r2 = pidfd_getfd$auto(r1, r0, 0xfffffffe) read$auto_uprobe_events_ops_trace_uprobe(r2, &(0x7f0000000000)=""/27, 0x1b) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'wg1\x00'}) select$auto(0x5c, &(0x7f0000000080)={[0x10001, 0x1, 0x1, 0x46e3, 0x3, 0xa, 0xd41, 0x8, 0x9, 0x1, 0x7, 0x9, 0x9, 0x9, 0xcc5, 0x6]}, &(0x7f0000000100)={[0x2, 0x0, 0x8f71, 0x7b55, 0x8, 0xf91d, 0xffffffffffffffff, 0x9, 0x9, 0x7fffffff, 0x1, 0x6, 0x5, 0x3, 0x71263909, 0x4]}, &(0x7f0000000180)={[0xffffffffffffff93, 0x8001, 0xffffffffffffff5f, 0x9, 0x1, 0x80000000, 0x7ff, 0x0, 0xb77, 0x40, 0x0, 0xfffffffffffff559, 0x10000, 0x0, 0xf, 0x9]}, &(0x7f0000000200)={0x8, 0x2}) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0) sendmsg$auto_NL80211_CMD_ABORT_SCAN(r0, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xe1bd8c8a362f4caa}, 0xc, &(0x7f0000000440)={&(0x7f00000002c0)={0x15c, r3, 0x100, 0x2, 0x25dfdbff, {}, [@NL80211_ATTR_ADMITTED_TIME={0x6}, @NL80211_ATTR_COLOR_CHANGE_COUNT={0x5, 0x12f, 0x66}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_MESH_ID={0xa, 0x18, "768a41e78eec"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xe7, 0xbe, "2359df5e083a48df1e1fdfdd4aab98278a2dd2d773132f8d93201b12227694f9e1033933e299d71559456d9734d83a0bbfdf37e17ddda5f412c6653775cfb020f007d84ae4dc04e5a063c08e0b88b62e05cfa566f1fd9e5929688a3dddb13a75dd4cf572d04fa50052e3b02bf5129dbdd98f452f98e4114dbebe10be1ffb92f4d6916017cab99cbe97c8f08c338f9da7a5d094768c43a1555965da271bf2dc3f8d53cb60cc04936fab2e35aae2d64f10ee3c050c166b034a3915707f5fb5b71e0ec190523244c6ca3ba6e6ef7d81c09731ac30ce88a72e1e99cf79101529c510b4405c"}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x8460}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x5}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "99c7f29fb10f362621b02aae119811e031896dcd4408532edec6"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x4}]}, 0x15c}, 0x1, 0x0, 0x0, 0x800}, 0x8844) write$auto_tty_fops_tty_io(r2, &(0x7f00000004c0)="82233d21c66b8e5165436d0e035690401d98985ac502e265d822ecdc98713c2969e9eb48b4823f309ae2c5b50ef5223a394312161d59f088b620c0caddcc59a636bd5844156646d5c6fcf1fafe44", 0x4e) ioctl$auto_SNDCTL_DSP_GETOPTR(r2, 0x800c5012, &(0x7f0000000540)="5369bc9ca7a2caf0dde88d0e1c30e6fdf863eb61f75ab4cca9b62f9f86ff80ab4c3a3c2f4570cd6dd11386c806f070dd66ab691be0692858c4f024f3434b2bef671a1f0a1c1418ff59c2eb9906c61be3ad2064ae57b7039761355cc8a738f32ecb023b8b97a8bc95a3ee5f2acf4d0eda8b0377baeed35dd718f9bf9570938cb2ac8736efcd904785953b5b8778b2405f01638581090912e60ffad076d1bcce5d424955876ebe6f1ae0570c3ab75e8283823dbb861f8e2d606de9b9eef6bb243db6813d91e9b15b2f") syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000640), r0) r4 = epoll_create$auto(0x0) pselect6$auto(0x7fffffff, &(0x7f0000000680)={[0x2, 0x1, 0x5, 0x8000, 0xc2, 0x5, 0x3, 0x5, 0x3, 0x2, 0x200000, 0x1940, 0x8001, 0x89]}, &(0x7f0000000700)={[0x100, 0x1, 0x5, 0x3, 0x3, 0xff, 0xd82, 0x0, 0xd, 0x2, 0x8bd, 0x9, 0x9, 0x0, 0xffff, 0x27a8f2f0]}, &(0x7f0000000780)={[0x1, 0x3ff, 0x8001, 0x4d, 0xad, 0x9, 0x5, 0x0, 0x9, 0x3, 0x3, 0x8, 0x8, 0xb, 0x5, 0x8]}, &(0x7f0000000800)={0x4, 0x7}, &(0x7f0000000840)="5f5a2b2bf0d4e2ea6b7ee9b907ea268f00822d2adeb8b2081075cbe16e726473ad9e3d10efe0a5e68f4c8996d259e83bf0452a988bcb7f9cad5e640708be2fb831144ce65873") r5 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/debug/netdevsim/netdevsim2/psample/enable\x00', 0xa0002, 0x0) io_pgetevents$auto(0x3ff, 0x3, 0x9, &(0x7f0000000900)={0x0, 0x5, 0x800, 0x800}, &(0x7f0000000940)={0xfffffffffffffffb, 0x40}, &(0x7f00000009c0)={0x0}) r6 = ioctl$auto_TUNSETSTEERINGEBPF(r4, 0x800454e0, &(0x7f0000000a00)=0x7df) syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000a80), r2) sendmsg$auto_NFC_CMD_DEV_DOWN(r6, &(0x7f0000000bc0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b80)={0x0}, 0x1, 0x0, 0x0, 0x4844}, 0x4) ioctl$auto_TUNSETSTEERINGEBPF(r6, 0x800454e0, &(0x7f0000000c00)) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x14, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, ["", "", ""]}, 0x14}}, 0x2) getsockopt$auto_SO_PEERPIDFD(r6, 0xb, 0x4d, &(0x7f0000000d40)='}-#-%)(@$,.+{]-$\x00', &(0x7f0000000d80)=0x6) msgctl$auto(0x0, 0x0, &(0x7f0000000e80)={{0x0, 0xee00, 0x0, 0x26, 0x3, 0xffffffff, 0x4e6c}, &(0x7f0000000e00)=0x1, &(0x7f0000000e40)=0xb, 0xffffffffffff2ab3, 0x6, 0x9, 0x8, 0x6, 0x7, 0x2, 0x7, @inferred=0xffffffffffffffff, @raw=0x7}) shmctl$auto(0x6, 0x1351c00, &(0x7f0000001080)={{0x8, 0x0, 0x0, 0x9, 0x8, 0xffff}, 0xffffffff, 0x9, 0x3a000000000, 0x8, @raw=0x7, @inferred=0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f00)="6f271e91c52dd5dbc8e8d02c98a38f33152056385e10392d7b5e8a6e076813680fae7e40a50d74f2d4f4f13c656b40280574cb48a5863c00ded14e9c21fc77747751406db2d2d1e80d00458ea99816cf1f1b38637e1c3e47a02b664b1576d11734db824da49b10e154eac9ef573bdbe908001f99aae4c772183fdc16a957ba75214d18a6c17c51e979bcef078603ba80f02c7745c57a2d23fdbc754bf3204910eedc37a8f6e47c7f6b0cff1d66", &(0x7f0000000fc0)="fb09c36024a3ace8d1bf10409246ba3e88e8c52b2d81c9ed4c2330e4fd32bd301972cb6717addda0bd2ae182ee067078335dc635b50b1525a7b0dcd46ca0ccc9c9427e2798b2070c3b6735bf767348b8da0b100eb087f48adc7734c6ea21104cad769c0e9e1f8dc41874503bd4019e5858a5d795a0578600724ca62f398fff3fe9f99e6b67237f232d82776c66bdc2bae6b8f0fcd4484ab72ab7c6cc9f960c04f7a12561fbaded6ee2"}) statx$auto(0xffffffffffffffff, &(0x7f0000000dc0)='./file0\x00', 0x6, 0x3, &(0x7f0000001100)={0x3072, 0x4, 0xe6e, 0x10001, r7, r8, 0x8000, 0x1, 0x3ff, 0x1, 0x9, 0x100000001, {0x1e8, 0x2}, {0xffffffffffff0000, 0x9}, {0x3a83, 0x5}, {0x7fffffffffffffff, 0x8}, 0x4, 0x40, 0x3000, 0x3ff, 0x6, 0x4, 0x81, 0xfff, 0xffff, 0xfffffffe, 0x9, 0x101, [0x8, 0x33, 0x3, 0x7, 0xf, 0xffffffffffffff00, 0x1, 0x100]}) r9 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000001240), r2) sendmsg$auto_IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000001300)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001280)={0x1c, r9, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}]}, 0x1c}}, 0x4004000) fcntl$auto_F_DUPFD_QUERY(r5, 0x403, r1) fcntl$auto_F_NOTIFY(r4, 0x402, 0xb5f) ioctl$auto_BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000001380)={@raw=0xfff, 0x2, 0x7fffffff, @unused, @name="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"}) 92.381128ms ago: executing program 0 (id=1864): chdir$auto(&(0x7f0000000040)='./cgroup\x00') r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) r1 = eventfd2$auto(0x6, 0x4) mmap$auto(0x8008d1, 0x100000001, 0xdf, 0x7fff, r1, 0x8000) ioctl$auto_BCH_IOCTL_FS_USAGE(r1, 0xc040bc0b, &(0x7f0000000100)={0x0, 0x4, 0x0, '\x00', 0x7, 0x0, [{0x0, {0x6, 0x74, 0xa, "ed89701def650f4533c94d859792f8af3637d210bd0f52c4887252d2627c14c2ff99e1686aecabe2c1496d91246e902f2a385deca93fff47b8451befd37a569fd12c880d214609c22f882071020edcb519cb7a931e2c9fa09b2e04cf7956e7b654d7c09ed4ee8b0176650170ece825110b2f6d21"}}]}) select$auto(0x7, 0x0, 0x0, 0x0, &(0x7f0000001000)={0xffffffffffffffff, 0x3}) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)="e7696e5891a9bccbf2a814c2b1c2da6a4642e71e423e55bb3bdfb80fb3496c6bac2c476942", 0x25) mkdir$auto(&(0x7f0000000080)='./cgroup\x00', 0x0) 63.459914ms ago: executing program 3 (id=1865): r0 = socket(0x25, 0x1, 0x0) sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0) ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, 0x0) mmap$auto(0x0, 0x400008, 0x800000000df, 0x9b72, r0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fallocate$auto(r1, 0x1, 0x2, 0x6653) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x0, 0xce, 0x400000004) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(r3, &(0x7f0000001680)="a7", 0x80000) madvise$auto(0x0, 0x20200, 0x15) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x2, 0x0) msgctl$auto(0x7, 0xa3, &(0x7f0000000240)={{0x8, 0xee00, 0xee01, 0x5, 0xa, 0x0, 0xfe01}, 0x0, 0x0, 0x6, 0xd, 0x6, 0x31f4, 0x51c, 0x3, 0x1, 0x3, @inferred=0xffffffffffffffff, @raw=0x8}) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0x1002}, 0x1, &(0x7f0000000280)={0x0, 0x401}, 0x6, 0x0) 0s ago: executing program 2 (id=1866): mmap$auto(0x0, 0x400008, 0x7fffffffffffffff, 0x10011, 0x2, 0x8000) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/conf/wg0/accept_dad\x00', 0xd00, 0x0) sendfile$auto(r0, r1, 0x0, 0x800048) ioctl$auto_FIFREEZE(r1, 0xc0045878, 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001300)={'batadv_slave_0\x00', 0x0}) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_CHANNELS_SET(r2, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000000040)={0x28, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x34b}]}, 0x28}, 0x1, 0x100000000000000, 0x0, 0x9dfefc5e47f5c72f}, 0x4) r4 = openat$auto_ima_htable_violations_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000100), 0x107100, 0x0) r5 = bpf$auto_BPF_TOKEN_CREATE(0x24, &(0x7f0000000000)=@bpf_attr_3={0x0, 0x2, 0x0, 0x2, 0x1400, 0xfffffffe, 0xa, 0x2, 0x5, "e7dd1134ce7835f00867fb5ce04de149", r3, 0x5, r1, 0x0, 0xd, 0xb, 0x4, 0x80000001, 0x0, 0x0, @attach_btf_obj_fd=r0, 0x8, 0x9, 0x89, 0x0, 0x10000, r1, r4}, 0x3) write$auto(r5, 0x0, 0x1) mq_open$auto(0x0, 0xdd1, 0x8, 0x0) adjtimex$auto(&(0x7f00000005c0)={0xf332b6e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808}) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r6 = memfd_create$auto(0x0, 0xb) timer_create$auto(0xfffffffe, &(0x7f0000000000)={@sival_int=0x4, @raw=0x2, 0x4, @_tid}, &(0x7f0000000040)=0x9) recvmmsg$auto(r6, &(0x7f00000002c0)={{&(0x7f0000000080)="e3bf1713c855f7ae930a778d1296675fe77e4d", 0x5, &(0x7f0000000240)={&(0x7f0000000140), 0x1ff}, 0x401, &(0x7f0000000280), 0x2662, 0x3}}, 0x1, 0x4, &(0x7f0000000300)={0x0, 0x8}) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0xfffff958) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) r7 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80440, 0x40, 0xe}, 0x18) fremovexattr$auto(r7, &(0x7f0000000540)='syste\xdeZp$\x06iij\xe1\xb3p\f\xe4x_acl\x1fac\x02\x00\x00\x00\x80\xae\x8b\x02\x00\x00\x00\x00\x00\x00\x00\x97v\x04\x84I\xc8\xa7+\x13\xb6e\x13\x9eel\x0f\x1d{\xf2\xb8f\xc6\xbf\x85\x93\v\x05DC\xcd\x855\xe1\xee\xd5\xb8\x95\x00\xbdG\xdb\xe4\xacM\x12g|\xf4\xe4&5\x90\xdd`\\\xe8\xc7\xdcFo\x81\xc5S\xd2\xaf\xaa\x01\xd7\x04v\xcc\xe1\x8e\xf9\x05u\x84$\xf6\v\r\x14+Ww\x7f\t\x00\xdc\x95<\xe9\xc9N\xe5th\xff\v\xffG&\x9e\x97\xde\xd1\xa3\x974>_t\xdd\'\xd3]%\x9c\x96\x84\xed\xd7}_\x95okU\'\xca16X\xdd\xb1\x92#!\xc2O\f\xc0\xfdR\x1a\xd7\xa8\xe6\xc4\xe4~f\xc8\xaaed\x83\xf5\x93\xcf\x91\xad~\\c\x85\xa8X\x16\x18\x01)\xa70P\xd0\x11?\x15\xa7\x11\xfc\xf5\xc8j`\xff\xc6\xae\xcb\xbd\x05\x95\x9d/\xa7\x8c{p>8\x8aY\xaa&\xb9\xf1i\a\xea\x85a\xb6\xde\x93\x941\xcd\xdb\x0eA\xa7a\xeb\x8a\xa0\x9b\xfaA\x17\x19*2\xa7~Z\xe0`z\xdc(\xb3\b\xeb\xcef\x13|K\xef6\xe9\x80\x0e\x12\xf3a\xa6(#w\xa3Q(\x80x\x0fv\x88\xedg\xf2\xd1=\xc4l-F\xdb\xddU\b\xd6\x11\xa8\xeeOpao7\xd1\f*\xc6S\x14\x892\x191\xd0\x17\x15/\x12\xf9\xc0\xd7\xb7\xaf\x19p') truncate$auto(&(0x7f0000000040)='./file0\x00', 0xa5) kernel console output (not intermixed with test programs): ath+0xc2/0x6e0 [ 294.406708][T10306] tomoyo_realpath_from_path+0xc2/0x6e0 [ 294.406739][T10306] ? tomoyo_profile+0x47/0x60 [ 294.406772][T10306] tomoyo_path_number_perm+0x245/0x580 [ 294.406807][T10306] ? tomoyo_path_number_perm+0x237/0x580 [ 294.406845][T10306] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 294.406884][T10306] ? find_held_lock+0x2b/0x80 [ 294.406940][T10306] ? find_held_lock+0x2b/0x80 [ 294.406965][T10306] ? hook_file_ioctl_common+0x145/0x410 [ 294.406998][T10306] ? __fget_files+0x20e/0x3c0 [ 294.407029][T10306] security_file_ioctl+0x9b/0x240 [ 294.407055][T10306] __x64_sys_ioctl+0xb7/0x210 [ 294.407092][T10306] do_syscall_64+0xcd/0xfa0 [ 294.407121][T10306] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.407146][T10306] RIP: 0033:0x7f523ab8efc9 [ 294.407165][T10306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.407189][T10306] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 294.407212][T10306] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 294.407229][T10306] RDX: 0000000000000000 RSI: 000000000000542e RDI: 0000000000000003 [ 294.407244][T10306] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 294.407259][T10306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 294.407273][T10306] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 294.407309][T10306] [ 294.407681][T10306] ERROR: Out of memory at tomoyo_realpath_from_path. [ 294.834777][T10314] FAULT_INJECTION: forcing a failure. [ 294.834777][T10314] name failslab, interval 1, probability 0, space 0, times 0 [ 294.848644][T10314] CPU: 0 UID: 0 PID: 10314 Comm: syz.1.1347 Not tainted syzkaller #0 PREEMPT(full) [ 294.848680][T10314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 294.848697][T10314] Call Trace: [ 294.848706][T10314] [ 294.848716][T10314] dump_stack_lvl+0x16c/0x1f0 [ 294.848750][T10314] should_fail_ex+0x512/0x640 [ 294.848786][T10314] ? __kmalloc_cache_noprof+0x5f/0x780 [ 294.848831][T10314] should_failslab+0xc2/0x120 [ 294.848864][T10314] __kmalloc_cache_noprof+0x72/0x780 [ 294.848905][T10314] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 294.848940][T10314] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 294.848966][T10314] vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 294.848995][T10314] drm_atomic_get_crtc_state+0x171/0x450 [ 294.849032][T10314] drm_atomic_get_plane_state+0x436/0x590 [ 294.849068][T10314] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 294.849105][T10314] ? __pfx___might_resched+0x10/0x10 [ 294.849142][T10314] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 294.849179][T10314] ? __mutex_lock+0x1c5/0x1060 [ 294.849205][T10314] ? rcu_is_watching+0x12/0xc0 [ 294.849271][T10314] drm_client_modeset_commit_locked+0x14d/0x580 [ 294.849315][T10314] drm_client_modeset_commit+0x4f/0x80 [ 294.849350][T10314] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 294.849396][T10314] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 294.849428][T10314] drm_fbdev_client_restore+0x2c/0x40 [ 294.849456][T10314] drm_client_dev_restore+0x1f6/0x2a0 [ 294.849499][T10314] drm_release+0x2c4/0x360 [ 294.849534][T10314] ? __pfx_drm_release+0x10/0x10 [ 294.849565][T10314] __fput+0x402/0xb70 [ 294.849607][T10314] task_work_run+0x150/0x240 [ 294.849645][T10314] ? __pfx_task_work_run+0x10/0x10 [ 294.849682][T10314] ? __pfx___do_sys_close_range+0x10/0x10 [ 294.849719][T10314] exit_to_user_mode_loop+0xec/0x130 [ 294.849757][T10314] do_syscall_64+0x426/0xfa0 [ 294.849788][T10314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.849813][T10314] RIP: 0033:0x7f523ab8efc9 [ 294.849834][T10314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.849858][T10314] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 294.849883][T10314] RAX: 0000000000000000 RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 294.849899][T10314] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 294.849914][T10314] RBP: 00007f523ac11f91 R08: 0000000000000000 R09: 0000000000000000 [ 294.849930][T10314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.849946][T10314] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 294.849986][T10314] [ 295.504950][T10333] FAULT_INJECTION: forcing a failure. [ 295.504950][T10333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 295.527122][T10333] CPU: 0 UID: 0 PID: 10333 Comm: syz.3.1353 Not tainted syzkaller #0 PREEMPT(full) [ 295.527143][T10333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 295.527152][T10333] Call Trace: [ 295.527157][T10333] [ 295.527163][T10333] dump_stack_lvl+0x16c/0x1f0 [ 295.527183][T10333] should_fail_ex+0x512/0x640 [ 295.527208][T10333] _copy_from_user+0x2e/0xd0 [ 295.527230][T10333] io_uring_setup+0xb4/0x20e0 [ 295.527248][T10333] ? __pfx_io_uring_setup+0x10/0x10 [ 295.527263][T10333] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 295.527288][T10333] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 295.527307][T10333] ? __fget_files+0x20e/0x3c0 [ 295.527326][T10333] ? ksys_write+0x1ac/0x250 [ 295.527342][T10333] ? __pfx_ksys_write+0x10/0x10 [ 295.527360][T10333] __x64_sys_io_uring_setup+0xc2/0x170 [ 295.527377][T10333] do_syscall_64+0xcd/0xfa0 [ 295.527394][T10333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.527409][T10333] RIP: 0033:0x7f6433d8efc9 [ 295.527420][T10333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 295.527434][T10333] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 295.527448][T10333] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 295.527457][T10333] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059 [ 295.527466][T10333] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 295.527475][T10333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 295.527483][T10333] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 295.527501][T10333] [ 298.105569][T10399] FAULT_INJECTION: forcing a failure. [ 298.105569][T10399] name failslab, interval 1, probability 0, space 0, times 0 [ 298.121024][T10399] CPU: 0 UID: 0 PID: 10399 Comm: syz.0.1373 Not tainted syzkaller #0 PREEMPT(full) [ 298.121063][T10399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 298.121079][T10399] Call Trace: [ 298.121089][T10399] [ 298.121100][T10399] dump_stack_lvl+0x16c/0x1f0 [ 298.121136][T10399] should_fail_ex+0x512/0x640 [ 298.121172][T10399] ? __kmalloc_cache_noprof+0x5f/0x780 [ 298.121216][T10399] should_failslab+0xc2/0x120 [ 298.121250][T10399] __kmalloc_cache_noprof+0x72/0x780 [ 298.121297][T10399] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 298.121334][T10399] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 298.121361][T10399] vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 298.121390][T10399] drm_atomic_get_crtc_state+0x171/0x450 [ 298.121426][T10399] drm_atomic_get_plane_state+0x436/0x590 [ 298.121462][T10399] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 298.121498][T10399] ? __pfx___might_resched+0x10/0x10 [ 298.121537][T10399] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 298.121573][T10399] ? __mutex_lock+0x1c5/0x1060 [ 298.121601][T10399] ? rcu_is_watching+0x12/0xc0 [ 298.121667][T10399] drm_client_modeset_commit_locked+0x14d/0x580 [ 298.121718][T10399] drm_client_modeset_commit+0x4f/0x80 [ 298.121757][T10399] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 298.121797][T10399] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 298.121828][T10399] drm_fbdev_client_restore+0x2c/0x40 [ 298.121858][T10399] drm_client_dev_restore+0x1f6/0x2a0 [ 298.121900][T10399] drm_release+0x2c4/0x360 [ 298.121936][T10399] ? __pfx_drm_release+0x10/0x10 [ 298.121967][T10399] __fput+0x402/0xb70 [ 298.122009][T10399] task_work_run+0x150/0x240 [ 298.122048][T10399] ? __pfx_task_work_run+0x10/0x10 [ 298.122085][T10399] ? __pfx___do_sys_close_range+0x10/0x10 [ 298.122123][T10399] exit_to_user_mode_loop+0xec/0x130 [ 298.122162][T10399] do_syscall_64+0x426/0xfa0 [ 298.122193][T10399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.122220][T10399] RIP: 0033:0x7fb213d8efc9 [ 298.122242][T10399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 298.122273][T10399] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 298.122300][T10399] RAX: 0000000000000000 RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 298.122317][T10399] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 298.122333][T10399] RBP: 00007fb213e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 298.122350][T10399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.122366][T10399] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 298.122407][T10399] [ 298.572840][T10405] random: crng reseeded on system resumption [ 298.755257][ T30] audit: type=1800 audit(4294967322.140:3): pid=10412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1375" name="discovery_nqn" dev="configfs" ino=26871 res=0 errno=0 [ 299.035284][T10412] phram: not enough arguments [ 299.589167][T10432] FAULT_INJECTION: forcing a failure. [ 299.589167][T10432] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 299.613871][T10432] CPU: 0 UID: 0 PID: 10432 Comm: syz.0.1384 Not tainted syzkaller #0 PREEMPT(full) [ 299.613904][T10432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 299.613918][T10432] Call Trace: [ 299.613926][T10432] [ 299.613936][T10432] dump_stack_lvl+0x16c/0x1f0 [ 299.613966][T10432] should_fail_ex+0x512/0x640 [ 299.614004][T10432] _copy_to_user+0x32/0xd0 [ 299.614043][T10432] tomoyo_flush+0x161/0x520 [ 299.614077][T10432] tomoyo_read_control+0x123/0x540 [ 299.614106][T10432] ? tomoyo_read_control+0x115/0x540 [ 299.614146][T10432] ? __pfx_tomoyo_read+0x10/0x10 [ 299.614174][T10432] vfs_read+0x1e4/0xcf0 [ 299.614208][T10432] ? __pfx_vfs_read+0x10/0x10 [ 299.614230][T10432] ? find_held_lock+0x2b/0x80 [ 299.614255][T10432] ? __fget_files+0x204/0x3c0 [ 299.614284][T10432] ? __fget_files+0x20e/0x3c0 [ 299.614305][T10432] ? __fget_files+0x130/0x3c0 [ 299.614337][T10432] __x64_sys_pread64+0x1eb/0x250 [ 299.614365][T10432] ? __pfx___x64_sys_pread64+0x10/0x10 [ 299.614403][T10432] do_syscall_64+0xcd/0xfa0 [ 299.614432][T10432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.614457][T10432] RIP: 0033:0x7fb213d8efc9 [ 299.614476][T10432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.614499][T10432] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 299.614522][T10432] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 299.614538][T10432] RDX: 000000010000000d RSI: 00002000000000c0 RDI: 0000000000000003 [ 299.614553][T10432] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 299.614568][T10432] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 299.614583][T10432] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 299.614620][T10432] [ 299.860161][T10435] FAULT_INJECTION: forcing a failure. [ 299.860161][T10435] name failslab, interval 1, probability 0, space 0, times 0 [ 299.933582][T10435] CPU: 0 UID: 0 PID: 10435 Comm: syz.1.1385 Not tainted syzkaller #0 PREEMPT(full) [ 299.933621][T10435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 299.933635][T10435] Call Trace: [ 299.933643][T10435] [ 299.933654][T10435] dump_stack_lvl+0x16c/0x1f0 [ 299.933685][T10435] should_fail_ex+0x512/0x640 [ 299.933720][T10435] ? __kmalloc_cache_noprof+0x5f/0x780 [ 299.933763][T10435] should_failslab+0xc2/0x120 [ 299.933796][T10435] __kmalloc_cache_noprof+0x72/0x780 [ 299.933842][T10435] ? vkms_plane_duplicate_state+0x87/0x130 [ 299.933884][T10435] ? vkms_plane_duplicate_state+0x87/0x130 [ 299.933919][T10435] vkms_plane_duplicate_state+0x87/0x130 [ 299.933955][T10435] drm_atomic_get_plane_state+0x20e/0x590 [ 299.933995][T10435] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 299.934032][T10435] ? __pfx___might_resched+0x10/0x10 [ 299.934072][T10435] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 299.934108][T10435] ? __mutex_lock+0x1c5/0x1060 [ 299.934135][T10435] ? rcu_is_watching+0x12/0xc0 [ 299.934197][T10435] drm_client_modeset_commit_locked+0x14d/0x580 [ 299.934240][T10435] drm_client_modeset_commit+0x4f/0x80 [ 299.934277][T10435] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 299.934314][T10435] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 299.934345][T10435] drm_fbdev_client_restore+0x2c/0x40 [ 299.934374][T10435] drm_client_dev_restore+0x1f6/0x2a0 [ 299.934414][T10435] drm_release+0x2c4/0x360 [ 299.934446][T10435] ? __pfx_drm_release+0x10/0x10 [ 299.934477][T10435] __fput+0x402/0xb70 [ 299.934519][T10435] task_work_run+0x150/0x240 [ 299.934558][T10435] ? __pfx_task_work_run+0x10/0x10 [ 299.934596][T10435] ? __pfx___do_sys_close_range+0x10/0x10 [ 299.934633][T10435] exit_to_user_mode_loop+0xec/0x130 [ 299.934671][T10435] do_syscall_64+0x426/0xfa0 [ 299.934700][T10435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.934724][T10435] RIP: 0033:0x7f523ab8efc9 [ 299.934744][T10435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.934769][T10435] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 299.934794][T10435] RAX: 0000000000000000 RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 299.934810][T10435] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 299.934830][T10435] RBP: 00007f523ac11f91 R08: 0000000000000000 R09: 0000000000000000 [ 299.934846][T10435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 299.934862][T10435] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 299.934900][T10435] [ 301.863022][T10493] FAULT_INJECTION: forcing a failure. [ 301.863022][T10493] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 301.947813][T10493] CPU: 0 UID: 0 PID: 10493 Comm: syz.0.1407 Not tainted syzkaller #0 PREEMPT(full) [ 301.947835][T10493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 301.947843][T10493] Call Trace: [ 301.947848][T10493] [ 301.947854][T10493] dump_stack_lvl+0x16c/0x1f0 [ 301.947875][T10493] should_fail_ex+0x512/0x640 [ 301.947905][T10493] _copy_from_user+0x2e/0xd0 [ 301.947928][T10493] get_itimerspec64+0x15b/0x2d0 [ 301.947948][T10493] ? __pfx_get_itimerspec64+0x10/0x10 [ 301.947967][T10493] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 301.947987][T10493] __x64_sys_timer_settime+0x17d/0x2c0 [ 301.948011][T10493] ? __pfx___x64_sys_timer_settime+0x10/0x10 [ 301.948036][T10493] ? ksys_write+0x1ac/0x250 [ 301.948057][T10493] do_syscall_64+0xcd/0xfa0 [ 301.948074][T10493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.948088][T10493] RIP: 0033:0x7fb213d8efc9 [ 301.948100][T10493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.948114][T10493] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000df [ 301.948128][T10493] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 301.948137][T10493] RDX: 0000200000000040 RSI: 00000000000003b4 RDI: 0000000000000000 [ 301.948146][T10493] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 301.948154][T10493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 301.948162][T10493] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 301.948181][T10493] [ 302.110682][ C0] vkms_vblank_simulate: vblank timer overrun [ 302.424176][T10499] FAULT_INJECTION: forcing a failure. [ 302.424176][T10499] name failslab, interval 1, probability 0, space 0, times 0 [ 302.486197][T10499] CPU: 0 UID: 0 PID: 10499 Comm: syz.0.1410 Not tainted syzkaller #0 PREEMPT(full) [ 302.486229][T10499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 302.486243][T10499] Call Trace: [ 302.486251][T10499] [ 302.486259][T10499] dump_stack_lvl+0x16c/0x1f0 [ 302.486289][T10499] should_fail_ex+0x512/0x640 [ 302.486323][T10499] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 302.486352][T10499] should_failslab+0xc2/0x120 [ 302.486382][T10499] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 302.486406][T10499] ? __pfx___might_resched+0x10/0x10 [ 302.486433][T10499] ? sock_alloc_inode+0x25/0x1c0 [ 302.486466][T10499] ? __pfx_sock_alloc_inode+0x10/0x10 [ 302.486491][T10499] ? sock_alloc_inode+0x25/0x1c0 [ 302.486516][T10499] sock_alloc_inode+0x25/0x1c0 [ 302.486540][T10499] alloc_inode+0x64/0x240 [ 302.486571][T10499] sock_alloc+0x40/0x280 [ 302.486596][T10499] __sock_create+0xc1/0x8d0 [ 302.486630][T10499] __sys_socket+0x14d/0x260 [ 302.486660][T10499] ? __pfx___sys_socket+0x10/0x10 [ 302.486687][T10499] ? ksys_write+0x1ac/0x250 [ 302.486710][T10499] ? __pfx_ksys_write+0x10/0x10 [ 302.486741][T10499] __x64_sys_socket+0x72/0xb0 [ 302.486769][T10499] ? lockdep_hardirqs_on+0x7c/0x110 [ 302.486794][T10499] do_syscall_64+0xcd/0xfa0 [ 302.486822][T10499] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.486853][T10499] RIP: 0033:0x7fb213d8efc9 [ 302.486872][T10499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.486894][T10499] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 302.486918][T10499] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 302.486933][T10499] RDX: 0000000000000007 RSI: 0000000000000001 RDI: 000000000000000a [ 302.486947][T10499] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 302.486961][T10499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 302.486976][T10499] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 302.487011][T10499] [ 302.487309][T10499] socket: no more sockets [ 302.698717][T10502] FAULT_INJECTION: forcing a failure. [ 302.698717][T10502] name fail_futex, interval 1, probability 0, space 0, times 0 [ 302.743987][T10502] CPU: 0 UID: 0 PID: 10502 Comm: syz.2.1411 Not tainted syzkaller #0 PREEMPT(full) [ 302.744022][T10502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 302.744037][T10502] Call Trace: [ 302.744046][T10502] [ 302.744057][T10502] dump_stack_lvl+0x16c/0x1f0 [ 302.744090][T10502] should_fail_ex+0x512/0x640 [ 302.744132][T10502] get_futex_key+0x1d0/0x1560 [ 302.744168][T10502] ? __pfx_get_futex_key+0x10/0x10 [ 302.744199][T10502] ? stack_trace_save+0x8e/0xc0 [ 302.744226][T10502] ? __pfx_stack_trace_save+0x10/0x10 [ 302.744253][T10502] ? stack_depot_save_flags+0x29/0x9c0 [ 302.744289][T10502] futex_wait_setup+0x9d/0x550 [ 302.744336][T10502] __futex_wait+0x193/0x2f0 [ 302.744375][T10502] ? __pfx___futex_wait+0x10/0x10 [ 302.744419][T10502] ? __pfx_futex_wake_mark+0x10/0x10 [ 302.744462][T10502] ? futex_private_hash_put+0x176/0x300 [ 302.744498][T10502] ? futex_private_hash_put+0x18a/0x300 [ 302.744532][T10502] futex_wait+0xe8/0x380 [ 302.744554][T10502] ? __pfx_futex_wait+0x10/0x10 [ 302.744599][T10502] ? kmem_cache_free+0x2d4/0x6c0 [ 302.744625][T10502] ? putname+0x154/0x1a0 [ 302.744663][T10502] do_futex+0x229/0x350 [ 302.744697][T10502] ? __pfx_do_futex+0x10/0x10 [ 302.744728][T10502] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 302.744770][T10502] __x64_sys_futex+0x1e0/0x4c0 [ 302.744813][T10502] ? __x64_sys_openat+0x174/0x210 [ 302.744850][T10502] ? __pfx___x64_sys_futex+0x10/0x10 [ 302.744885][T10502] ? xfd_validate_state+0x61/0x180 [ 302.744931][T10502] do_syscall_64+0xcd/0xfa0 [ 302.744963][T10502] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.744988][T10502] RIP: 0033:0x7f4f0fb8efc9 [ 302.745011][T10502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.745035][T10502] RSP: 002b:00007f4f109dc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 302.745061][T10502] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa8 RCX: 00007f4f0fb8efc9 [ 302.745079][T10502] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4f0fde5fa8 [ 302.745096][T10502] RBP: 00007f4f0fde5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 302.745112][T10502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.745127][T10502] R13: 00007f4f0fde6038 R14: 00007ffecd3cf820 R15: 00007ffecd3cf908 [ 302.745163][T10502] [ 303.380151][T10518] FAULT_INJECTION: forcing a failure. [ 303.380151][T10518] name failslab, interval 1, probability 0, space 0, times 0 [ 303.415444][T10518] CPU: 0 UID: 0 PID: 10518 Comm: syz.0.1419 Not tainted syzkaller #0 PREEMPT(full) [ 303.415477][T10518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 303.415491][T10518] Call Trace: [ 303.415498][T10518] [ 303.415507][T10518] dump_stack_lvl+0x16c/0x1f0 [ 303.415544][T10518] should_fail_ex+0x512/0x640 [ 303.415577][T10518] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 303.415606][T10518] should_failslab+0xc2/0x120 [ 303.415637][T10518] kmem_cache_alloc_noprof+0x75/0x6e0 [ 303.415661][T10518] ? prepare_creds+0x2c/0x7d0 [ 303.415701][T10518] ? prepare_creds+0x2c/0x7d0 [ 303.415732][T10518] prepare_creds+0x2c/0x7d0 [ 303.415768][T10518] copy_creds+0xa7/0xa50 [ 303.415807][T10518] copy_process+0xffc/0x76a0 [ 303.415848][T10518] ? __pfx_copy_process+0x10/0x10 [ 303.415893][T10518] kernel_clone+0xfc/0x930 [ 303.415923][T10518] ? __pfx_kernel_clone+0x10/0x10 [ 303.415964][T10518] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 303.415997][T10518] __do_sys_clone+0xce/0x120 [ 303.416024][T10518] ? __pfx___do_sys_clone+0x10/0x10 [ 303.416068][T10518] ? ksys_write+0x1ac/0x250 [ 303.416093][T10518] ? __pfx_ksys_write+0x10/0x10 [ 303.416128][T10518] do_syscall_64+0xcd/0xfa0 [ 303.416157][T10518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.416181][T10518] RIP: 0033:0x7fb213d8efc9 [ 303.416200][T10518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.416223][T10518] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 303.416247][T10518] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 303.416263][T10518] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46 [ 303.416277][T10518] RBP: 00007fb214bb1090 R08: 0000000000000002 R09: 0000000000000000 [ 303.416292][T10518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 303.416306][T10518] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 303.416342][T10518] [ 303.621246][ C0] vkms_vblank_simulate: vblank timer overrun [ 303.879586][T10517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1418'. [ 305.159056][T10558] FAULT_INJECTION: forcing a failure. [ 305.159056][T10558] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 305.254183][T10558] CPU: 0 UID: 0 PID: 10558 Comm: syz.1.1431 Not tainted syzkaller #0 PREEMPT(full) [ 305.254218][T10558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 305.254232][T10558] Call Trace: [ 305.254240][T10558] [ 305.254249][T10558] dump_stack_lvl+0x16c/0x1f0 [ 305.254280][T10558] should_fail_ex+0x512/0x640 [ 305.254329][T10558] should_fail_alloc_page+0xe7/0x130 [ 305.254363][T10558] prepare_alloc_pages+0x3c2/0x610 [ 305.254393][T10558] ? rcu_is_watching+0x12/0xc0 [ 305.254421][T10558] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 305.254447][T10558] ? finish_task_switch.isra.0+0x221/0xc10 [ 305.254476][T10558] ? rcu_is_watching+0x12/0xc0 [ 305.254499][T10558] ? trace_sched_exit_tp+0xd1/0x120 [ 305.254533][T10558] ? __schedule+0x11a3/0x5de0 [ 305.254554][T10558] ? rcu_is_watching+0x12/0xc0 [ 305.254584][T10558] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 305.254622][T10558] ? __pfx___schedule+0x10/0x10 [ 305.254649][T10558] ? __pfx___schedule+0x10/0x10 [ 305.254672][T10558] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 305.254713][T10558] ? policy_nodemask+0xea/0x4e0 [ 305.254747][T10558] alloc_pages_mpol+0x1fb/0x550 [ 305.254779][T10558] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 305.254820][T10558] alloc_pages_noprof+0x131/0x390 [ 305.254852][T10558] kimage_alloc_pages+0x74/0x350 [ 305.254880][T10558] kimage_alloc_control_pages+0x153/0xa00 [ 305.254915][T10558] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 305.254952][T10558] do_kexec_load+0x478/0x8a0 [ 305.254980][T10558] ? __pfx_do_kexec_load+0x10/0x10 [ 305.255010][T10558] ? _copy_from_user+0x59/0xd0 [ 305.255048][T10558] __x64_sys_kexec_load+0x1bf/0x230 [ 305.255078][T10558] do_syscall_64+0xcd/0xfa0 [ 305.255106][T10558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.255131][T10558] RIP: 0033:0x7f523ab8efc9 [ 305.255152][T10558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 305.255174][T10558] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 305.255197][T10558] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 305.255215][T10558] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005 [ 305.255229][T10558] RBP: 00007f523ac11f91 R08: 0000000000000000 R09: 0000000000000000 [ 305.255244][T10558] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 305.255258][T10558] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 305.255294][T10558] [ 305.508420][ C0] vkms_vblank_simulate: vblank timer overrun [ 305.587945][T10558] kexec: Could not allocate control_code_buffer [ 307.185882][T10595] FAULT_INJECTION: forcing a failure. [ 307.185882][T10595] name failslab, interval 1, probability 0, space 0, times 0 [ 307.215986][T10595] CPU: 1 UID: 0 PID: 10595 Comm: syz.2.1444 Not tainted syzkaller #0 PREEMPT(full) [ 307.216022][T10595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 307.216037][T10595] Call Trace: [ 307.216045][T10595] [ 307.216054][T10595] dump_stack_lvl+0x16c/0x1f0 [ 307.216093][T10595] should_fail_ex+0x512/0x640 [ 307.216126][T10595] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 307.216155][T10595] should_failslab+0xc2/0x120 [ 307.216186][T10595] kmem_cache_alloc_noprof+0x75/0x6e0 [ 307.216211][T10595] ? prepare_creds+0x2c/0x7d0 [ 307.216250][T10595] ? prepare_creds+0x2c/0x7d0 [ 307.216280][T10595] prepare_creds+0x2c/0x7d0 [ 307.216316][T10595] copy_creds+0xa7/0xa50 [ 307.216353][T10595] copy_process+0xffc/0x76a0 [ 307.216397][T10595] ? __pfx_copy_process+0x10/0x10 [ 307.216442][T10595] kernel_clone+0xfc/0x930 [ 307.216473][T10595] ? __pfx_kernel_clone+0x10/0x10 [ 307.216515][T10595] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 307.216547][T10595] __do_sys_clone+0xce/0x120 [ 307.216575][T10595] ? __pfx___do_sys_clone+0x10/0x10 [ 307.216618][T10595] ? ksys_write+0x1ac/0x250 [ 307.216643][T10595] ? __pfx_ksys_write+0x10/0x10 [ 307.216679][T10595] do_syscall_64+0xcd/0xfa0 [ 307.216704][T10595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.216728][T10595] RIP: 0033:0x7f4f0fb8efc9 [ 307.216747][T10595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.216769][T10595] RSP: 002b:00007f4f109dbfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 307.216792][T10595] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 307.216808][T10595] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 307.216821][T10595] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 307.216834][T10595] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001 [ 307.216848][T10595] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 307.216880][T10595] [ 308.252198][T10607] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1445'. [ 308.291566][T10622] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1450'. [ 308.367953][T10620] FAULT_INJECTION: forcing a failure. [ 308.367953][T10620] name failslab, interval 1, probability 0, space 0, times 0 [ 308.368032][T10620] CPU: 1 UID: 0 PID: 10620 Comm: syz.1.1453 Not tainted syzkaller #0 PREEMPT(full) [ 308.368050][T10620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 308.368058][T10620] Call Trace: [ 308.368063][T10620] [ 308.368069][T10620] dump_stack_lvl+0x16c/0x1f0 [ 308.368089][T10620] should_fail_ex+0x512/0x640 [ 308.368114][T10620] should_failslab+0xc2/0x120 [ 308.368134][T10620] kmem_cache_alloc_node_noprof+0x78/0x770 [ 308.368149][T10620] ? zswap_store+0x850/0x2830 [ 308.368175][T10620] ? zswap_store+0x850/0x2830 [ 308.368195][T10620] zswap_store+0x850/0x2830 [ 308.368215][T10620] ? smp_call_function_many_cond+0x371/0x1600 [ 308.368242][T10620] ? __pfx_zswap_store+0x10/0x10 [ 308.368264][T10620] ? folio_free_swap+0x141/0x4b0 [ 308.368283][T10620] ? do_raw_spin_unlock+0x172/0x230 [ 308.368306][T10620] ? _raw_spin_unlock+0x28/0x50 [ 308.368319][T10620] ? folio_free_swap+0x19d/0x4b0 [ 308.368340][T10620] swap_writeout+0x3f4/0x1090 [ 308.368366][T10620] shrink_folio_list+0x3e50/0x4800 [ 308.368395][T10620] ? __pfx_shrink_folio_list+0x10/0x10 [ 308.368416][T10620] ? arch_stack_walk+0xa6/0x100 [ 308.368436][T10620] ? __lock_acquire+0x622/0x1c90 [ 308.368461][T10620] ? lock_acquire+0x179/0x350 [ 308.368496][T10620] ? mark_held_locks+0x49/0x80 [ 308.368514][T10620] ? smp_call_function_many_cond+0x1239/0x1600 [ 308.368529][T10620] ? lockdep_hardirqs_on+0x7c/0x110 [ 308.368544][T10620] ? __pfx_flush_tlb_func+0x10/0x10 [ 308.368566][T10620] reclaim_folio_list+0xda/0x5d0 [ 308.368586][T10620] ? __pfx_flush_tlb_func+0x10/0x10 [ 308.368608][T10620] ? __pfx_reclaim_folio_list+0x10/0x10 [ 308.368637][T10620] ? css_rstat_updated+0x1c2/0x510 [ 308.368657][T10620] ? do_raw_spin_lock+0x12c/0x2b0 [ 308.368678][T10620] ? lru_gen_del_folio+0x32b/0x540 [ 308.368700][T10620] reclaim_pages+0x3ec/0x570 [ 308.368714][T10620] ? __pfx_reclaim_pages+0x10/0x10 [ 308.368725][T10620] ? find_held_lock+0x2b/0x80 [ 308.368740][T10620] ? madvise_cold_or_pageout_pte_range+0x73e/0x20d0 [ 308.368764][T10620] madvise_cold_or_pageout_pte_range+0x14e5/0x20d0 [ 308.368792][T10620] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 308.368812][T10620] ? __page_table_check_zero+0x33c/0x5d0 [ 308.368832][T10620] ? lock_acquire+0x179/0x350 [ 308.368852][T10620] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 308.368874][T10620] walk_pgd_range+0xc05/0x1f50 [ 308.368902][T10620] ? __pfx_walk_pgd_range+0x10/0x10 [ 308.368923][T10620] __walk_page_range+0x163/0x820 [ 308.368940][T10620] ? __lock_acquire+0xb8a/0x1c90 [ 308.368963][T10620] walk_page_range_vma+0x2c7/0xa20 [ 308.368989][T10620] ? __pfx_walk_page_range_vma+0x10/0x10 [ 308.369013][T10620] ? find_held_lock+0x2b/0x80 [ 308.369044][T10620] madvise_pageout+0x257/0x540 [ 308.369063][T10620] ? __pfx_madvise_pageout+0x10/0x10 [ 308.369091][T10620] ? mtree_range_walk+0x718/0xc00 [ 308.369108][T10620] madvise_vma_behavior+0xb14/0x2d50 [ 308.369132][T10620] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 308.369153][T10620] ? __pfx_mt_find+0x10/0x10 [ 308.369174][T10620] ? find_vma_prev+0xd3/0x150 [ 308.369197][T10620] ? find_vma+0xbf/0x140 [ 308.369212][T10620] ? __pfx_find_vma+0x10/0x10 [ 308.369231][T10620] ? __lock_acquire+0x622/0x1c90 [ 308.369252][T10620] madvise_walk_vmas+0x31f/0x9c0 [ 308.369275][T10620] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 308.369300][T10620] madvise_do_behavior+0x1e2/0x530 [ 308.369322][T10620] ? __pfx_madvise_do_behavior+0x10/0x10 [ 308.369343][T10620] ? down_read+0x13d/0x480 [ 308.369369][T10620] do_madvise+0x176/0x240 [ 308.369388][T10620] ? __pfx_do_madvise+0x10/0x10 [ 308.369405][T10620] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 308.369427][T10620] ? __fget_files+0x20e/0x3c0 [ 308.369448][T10620] ? __pfx_ksys_write+0x10/0x10 [ 308.369467][T10620] __x64_sys_madvise+0xa9/0x110 [ 308.369486][T10620] ? lockdep_hardirqs_on+0x7c/0x110 [ 308.369500][T10620] do_syscall_64+0xcd/0xfa0 [ 308.369517][T10620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.369532][T10620] RIP: 0033:0x7f523ab8efc9 [ 308.369544][T10620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 308.369558][T10620] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 308.369572][T10620] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 308.369582][T10620] RDX: 0000000000000015 RSI: 8000000000000000 RDI: 0000000000000000 [ 308.369590][T10620] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 308.369598][T10620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 308.369607][T10620] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 308.369626][T10620] [ 308.608589][T10612] Process accounting resumed [ 308.907313][T10631] netlink: 50 bytes leftover after parsing attributes in process `syz.3.1456'. [ 308.911420][T10631] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 309.952515][T10663] syz.0.1467 uses obsolete (PF_INET,SOCK_PACKET) [ 311.029236][T10658] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 311.406053][T10706] FAULT_INJECTION: forcing a failure. [ 311.406053][T10706] name failslab, interval 1, probability 0, space 0, times 0 [ 311.451141][T10706] CPU: 1 UID: 0 PID: 10706 Comm: syz.3.1480 Not tainted syzkaller #0 PREEMPT(full) [ 311.451180][T10706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 311.451196][T10706] Call Trace: [ 311.451205][T10706] [ 311.451215][T10706] dump_stack_lvl+0x16c/0x1f0 [ 311.451249][T10706] should_fail_ex+0x512/0x640 [ 311.451286][T10706] ? __kmalloc_cache_noprof+0x5f/0x780 [ 311.451326][T10706] should_failslab+0xc2/0x120 [ 311.451354][T10706] __kmalloc_cache_noprof+0x72/0x780 [ 311.451385][T10706] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 311.451412][T10706] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 311.451433][T10706] vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 311.451454][T10706] drm_atomic_get_crtc_state+0x171/0x450 [ 311.451484][T10706] drm_atomic_get_plane_state+0x436/0x590 [ 311.451512][T10706] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 311.451540][T10706] ? __pfx___might_resched+0x10/0x10 [ 311.451569][T10706] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 311.451598][T10706] ? __mutex_lock+0x1c5/0x1060 [ 311.451618][T10706] ? rcu_is_watching+0x12/0xc0 [ 311.451668][T10706] drm_client_modeset_commit_locked+0x14d/0x580 [ 311.451701][T10706] drm_client_modeset_commit+0x4f/0x80 [ 311.451730][T10706] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 311.451760][T10706] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 311.451784][T10706] drm_fbdev_client_restore+0x2c/0x40 [ 311.451805][T10706] drm_client_dev_restore+0x1f6/0x2a0 [ 311.451838][T10706] drm_release+0x2c4/0x360 [ 311.451866][T10706] ? __pfx_drm_release+0x10/0x10 [ 311.451890][T10706] __fput+0x402/0xb70 [ 311.451930][T10706] task_work_run+0x150/0x240 [ 311.451964][T10706] ? __pfx_task_work_run+0x10/0x10 [ 311.451996][T10706] ? __pfx___do_sys_close_range+0x10/0x10 [ 311.452024][T10706] exit_to_user_mode_loop+0xec/0x130 [ 311.452055][T10706] do_syscall_64+0x426/0xfa0 [ 311.452078][T10706] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.452097][T10706] RIP: 0033:0x7f6433d8efc9 [ 311.452115][T10706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.452138][T10706] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 311.452160][T10706] RAX: 0000000000000000 RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 311.452172][T10706] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 311.452184][T10706] RBP: 00007f6433e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 311.452196][T10706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 311.452208][T10706] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 311.452238][T10706] [ 311.740916][T10709] Console: switching to colour VGA+ 80x25 [ 312.389092][T10693] Console: switching to colour frame buffer device 128x48 [ 312.489424][T10739] kvm: kvm [10737]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x2 [ 312.776102][T10746] FAULT_INJECTION: forcing a failure. [ 312.776102][T10746] name failslab, interval 1, probability 0, space 0, times 0 [ 312.809006][T10746] CPU: 0 UID: 0 PID: 10746 Comm: syz.0.1495 Not tainted syzkaller #0 PREEMPT(full) [ 312.809047][T10746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 312.809063][T10746] Call Trace: [ 312.809072][T10746] [ 312.809082][T10746] dump_stack_lvl+0x16c/0x1f0 [ 312.809116][T10746] should_fail_ex+0x512/0x640 [ 312.809153][T10746] ? __kmalloc_cache_noprof+0x5f/0x780 [ 312.809196][T10746] should_failslab+0xc2/0x120 [ 312.809230][T10746] __kmalloc_cache_noprof+0x72/0x780 [ 312.809269][T10746] ? lockdep_init_map_type+0x5c/0x280 [ 312.809303][T10746] ? nci_hci_allocate+0x45/0x330 [ 312.809330][T10746] ? debug_mutex_init+0x37/0x70 [ 312.809357][T10746] ? nci_hci_allocate+0x45/0x330 [ 312.809383][T10746] nci_hci_allocate+0x45/0x330 [ 312.809410][T10746] nci_allocate_device+0x26f/0x430 [ 312.809450][T10746] virtual_ncidev_open+0x6f/0x220 [ 312.809480][T10746] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 312.809507][T10746] misc_open+0x26d/0x450 [ 312.809543][T10746] ? __pfx_misc_open+0x10/0x10 [ 312.809578][T10746] chrdev_open+0x234/0x6a0 [ 312.809605][T10746] ? __pfx_apparmor_file_open+0x10/0x10 [ 312.809640][T10746] ? __pfx_chrdev_open+0x10/0x10 [ 312.809672][T10746] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 312.809707][T10746] do_dentry_open+0x982/0x1530 [ 312.809737][T10746] ? __pfx_chrdev_open+0x10/0x10 [ 312.809785][T10746] vfs_open+0x82/0x3f0 [ 312.809825][T10746] path_openat+0x1de4/0x2cb0 [ 312.809866][T10746] ? __pfx_path_openat+0x10/0x10 [ 312.809897][T10746] ? __lock_acquire+0xb8a/0x1c90 [ 312.809936][T10746] do_filp_open+0x20b/0x470 [ 312.809965][T10746] ? __pfx_do_filp_open+0x10/0x10 [ 312.810020][T10746] ? alloc_fd+0x471/0x7d0 [ 312.810058][T10746] do_sys_openat2+0x11b/0x1d0 [ 312.810094][T10746] ? __pfx_do_sys_openat2+0x10/0x10 [ 312.810145][T10746] __x64_sys_openat+0x174/0x210 [ 312.810183][T10746] ? __pfx___x64_sys_openat+0x10/0x10 [ 312.810233][T10746] do_syscall_64+0xcd/0xfa0 [ 312.810265][T10746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.810292][T10746] RIP: 0033:0x7fb213d8efc9 [ 312.810314][T10746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 312.810339][T10746] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 312.810366][T10746] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 312.810383][T10746] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 312.810399][T10746] RBP: 00007fb213e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 312.810413][T10746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 312.810428][T10746] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 312.810463][T10746] [ 313.081606][ C0] vkms_vblank_simulate: vblank timer overrun [ 313.690495][T10768] vivid-007: ================= START STATUS ================= [ 313.713068][T10768] vivid-007: Generate PTS: true [ 313.720195][T10768] vivid-007: Generate SCR: true [ 313.726852][T10768] tpg source WxH: 320x240 (Y'CbCr) [ 313.732120][T10768] tpg field: 1 [ 313.736040][T10768] tpg crop: (0,0)/320x240 [ 313.740471][T10768] tpg compose: (0,0)/320x240 [ 313.745707][T10768] tpg colorspace: 8 [ 313.749605][T10768] tpg transfer function: 0/0 [ 313.755486][T10768] tpg Y'CbCr encoding: 0/0 [ 313.760033][T10768] tpg quantization: 0/0 [ 313.764844][T10768] tpg RGB range: 0/2 [ 313.768805][T10768] vivid-007: ================== END STATUS ================== [ 314.025793][T10775] can: request_module (can-proto-3) failed. [ 316.121814][T10833] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1526'. [ 316.162105][T10835] FAULT_INJECTION: forcing a failure. [ 316.162105][T10835] name failslab, interval 1, probability 0, space 0, times 0 [ 316.175854][T10835] CPU: 0 UID: 0 PID: 10835 Comm: syz.3.1525 Not tainted syzkaller #0 PREEMPT(full) [ 316.175892][T10835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 316.175907][T10835] Call Trace: [ 316.175916][T10835] [ 316.175926][T10835] dump_stack_lvl+0x16c/0x1f0 [ 316.175961][T10835] should_fail_ex+0x512/0x640 [ 316.175999][T10835] ? __kmalloc_cache_noprof+0x5f/0x780 [ 316.176041][T10835] should_failslab+0xc2/0x120 [ 316.176073][T10835] __kmalloc_cache_noprof+0x72/0x780 [ 316.176113][T10835] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 316.176146][T10835] ? vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 316.176169][T10835] vkms_atomic_crtc_duplicate_state+0x78/0x1d0 [ 316.176195][T10835] drm_atomic_get_crtc_state+0x171/0x450 [ 316.176233][T10835] drm_atomic_get_plane_state+0x436/0x590 [ 316.176271][T10835] drm_client_modeset_commit_atomic+0x237/0x7e0 [ 316.176307][T10835] ? __pfx___might_resched+0x10/0x10 [ 316.176346][T10835] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 316.176382][T10835] ? __mutex_lock+0x1c5/0x1060 [ 316.176416][T10835] ? rcu_is_watching+0x12/0xc0 [ 316.176483][T10835] drm_client_modeset_commit_locked+0x14d/0x580 [ 316.176527][T10835] drm_client_modeset_commit+0x4f/0x80 [ 316.176566][T10835] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 316.176604][T10835] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 316.176635][T10835] drm_fbdev_client_restore+0x2c/0x40 [ 316.176664][T10835] drm_client_dev_restore+0x1f6/0x2a0 [ 316.176706][T10835] drm_release+0x2c4/0x360 [ 316.176743][T10835] ? __pfx_drm_release+0x10/0x10 [ 316.176773][T10835] __fput+0x402/0xb70 [ 316.176816][T10835] task_work_run+0x150/0x240 [ 316.176853][T10835] ? __pfx_task_work_run+0x10/0x10 [ 316.176891][T10835] ? __pfx___do_sys_close_range+0x10/0x10 [ 316.176927][T10835] exit_to_user_mode_loop+0xec/0x130 [ 316.176965][T10835] do_syscall_64+0x426/0xfa0 [ 316.176995][T10835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 316.177021][T10835] RIP: 0033:0x7f6433d8efc9 [ 316.177042][T10835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 316.177065][T10835] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 316.177091][T10835] RAX: 0000000000000000 RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 316.177109][T10835] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 316.177125][T10835] RBP: 00007f6433e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 316.177141][T10835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.177156][T10835] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 316.177195][T10835] [ 316.446727][ C0] vkms_vblank_simulate: vblank timer overrun [ 316.537601][T10837] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1527'. [ 317.103965][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.111158][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.497206][T10869] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1538'. [ 317.594982][T10871] FAULT_INJECTION: forcing a failure. [ 317.594982][T10871] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 317.643291][T10871] CPU: 0 UID: 0 PID: 10871 Comm: syz.0.1539 Not tainted syzkaller #0 PREEMPT(full) [ 317.643325][T10871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 317.643339][T10871] Call Trace: [ 317.643348][T10871] [ 317.643358][T10871] dump_stack_lvl+0x16c/0x1f0 [ 317.643389][T10871] should_fail_ex+0x512/0x640 [ 317.643427][T10871] should_fail_alloc_page+0xe7/0x130 [ 317.643460][T10871] prepare_alloc_pages+0x3c2/0x610 [ 317.643496][T10871] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 317.643533][T10871] ? find_held_lock+0x2b/0x80 [ 317.643558][T10871] ? is_bpf_text_address+0x8a/0x1a0 [ 317.643590][T10871] ? bpf_ksym_find+0x124/0x1c0 [ 317.643617][T10871] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 317.643638][T10871] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 317.643666][T10871] ? kernel_text_address+0x8d/0x100 [ 317.643700][T10871] ? __kernel_text_address+0xd/0x40 [ 317.643728][T10871] ? __lock_acquire+0x622/0x1c90 [ 317.643757][T10871] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 317.643795][T10871] ? policy_nodemask+0xea/0x4e0 [ 317.643828][T10871] alloc_pages_mpol+0x1fb/0x550 [ 317.643861][T10871] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 317.643901][T10871] folio_alloc_mpol_noprof+0x36/0x2f0 [ 317.643937][T10871] vma_alloc_folio_noprof+0xed/0x1e0 [ 317.643970][T10871] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 317.644015][T10871] do_pte_missing+0x2202/0x3ba0 [ 317.644059][T10871] ? find_held_lock+0x2b/0x80 [ 317.644091][T10871] __handle_mm_fault+0x1556/0x2aa0 [ 317.644136][T10871] ? __pfx___handle_mm_fault+0x10/0x10 [ 317.644174][T10871] ? lock_vma_under_rcu+0x176/0x530 [ 317.644218][T10871] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 317.644258][T10871] handle_mm_fault+0x589/0xd10 [ 317.644293][T10871] ? __pkru_allows_pkey+0x11/0xb0 [ 317.644330][T10871] do_user_addr_fault+0x60c/0x1370 [ 317.644356][T10871] ? rcu_is_watching+0x12/0xc0 [ 317.644385][T10871] exc_page_fault+0x64/0xc0 [ 317.644412][T10871] asm_exc_page_fault+0x26/0x30 [ 317.644436][T10871] RIP: 0033:0x7fb213c5a87b [ 317.644456][T10871] Code: 00 00 00 48 8d 3d bd 38 19 00 48 89 c1 31 c0 e8 db 39 ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d f1 38 19 00 48 89 34 24 48 8b 14 24 48 8b [ 317.644477][T10871] RSP: 002b:00007fb214baffb0 EFLAGS: 00010202 [ 317.644497][T10871] RAX: 0000000000000000 RBX: 00007fb213fe5fa0 RCX: 0000000000000000 [ 317.644511][T10871] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000080 [ 317.644526][T10871] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 317.644540][T10871] R10: 0000200000000080 R11: 0000000000000000 R12: 0000000000000001 [ 317.644554][T10871] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 317.644588][T10871] [ 317.916264][T10871] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 318.394611][T10892] FAULT_INJECTION: forcing a failure. [ 318.394611][T10892] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 318.448264][T10892] CPU: 0 UID: 0 PID: 10892 Comm: syz.2.1547 Not tainted syzkaller #0 PREEMPT(full) [ 318.448299][T10892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 318.448313][T10892] Call Trace: [ 318.448322][T10892] [ 318.448330][T10892] dump_stack_lvl+0x16c/0x1f0 [ 318.448361][T10892] should_fail_ex+0x512/0x640 [ 318.448400][T10892] strncpy_from_user+0x3b/0x2e0 [ 318.448437][T10892] getname_flags.part.0+0x8f/0x550 [ 318.448475][T10892] getname_flags+0x93/0xf0 [ 318.448499][T10892] do_readlinkat+0xb4/0x3a0 [ 318.448532][T10892] ? __pfx_do_readlinkat+0x10/0x10 [ 318.448559][T10892] ? ksys_write+0x1ac/0x250 [ 318.448584][T10892] ? __pfx_ksys_write+0x10/0x10 [ 318.448621][T10892] __x64_sys_readlink+0x78/0xc0 [ 318.448653][T10892] ? lockdep_hardirqs_on+0x7c/0x110 [ 318.448678][T10892] do_syscall_64+0xcd/0xfa0 [ 318.448707][T10892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.448732][T10892] RIP: 0033:0x7f4f0fb8efc9 [ 318.448752][T10892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 318.448774][T10892] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000059 [ 318.448799][T10892] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 318.448815][T10892] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000000 [ 318.448831][T10892] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 318.448845][T10892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 318.448860][T10892] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 318.448896][T10892] [ 318.617107][ C0] vkms_vblank_simulate: vblank timer overrun [ 319.014671][T10910] FAULT_INJECTION: forcing a failure. [ 319.014671][T10910] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 319.038506][T10910] CPU: 1 UID: 0 PID: 10910 Comm: syz.1.1555 Not tainted syzkaller #0 PREEMPT(full) [ 319.038539][T10910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 319.038553][T10910] Call Trace: [ 319.038561][T10910] [ 319.038571][T10910] dump_stack_lvl+0x16c/0x1f0 [ 319.038600][T10910] should_fail_ex+0x512/0x640 [ 319.038636][T10910] _copy_from_user+0x2e/0xd0 [ 319.038670][T10910] copy_msghdr_from_user+0x98/0x160 [ 319.038706][T10910] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 319.038746][T10910] ? __pfx__kstrtoull+0x10/0x10 [ 319.038778][T10910] ___sys_sendmsg+0xfe/0x1d0 [ 319.038802][T10910] ? __pfx____sys_sendmsg+0x10/0x10 [ 319.038855][T10910] ? find_held_lock+0x2b/0x80 [ 319.038909][T10910] __sys_sendmmsg+0x200/0x420 [ 319.038936][T10910] ? __pfx___sys_sendmmsg+0x10/0x10 [ 319.038969][T10910] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 319.039007][T10910] ? fput+0x9b/0xd0 [ 319.039036][T10910] ? ksys_write+0x1ac/0x250 [ 319.039059][T10910] ? __pfx_ksys_write+0x10/0x10 [ 319.039090][T10910] __x64_sys_sendmmsg+0x9c/0x100 [ 319.039111][T10910] ? lockdep_hardirqs_on+0x7c/0x110 [ 319.039135][T10910] do_syscall_64+0xcd/0xfa0 [ 319.039169][T10910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.039193][T10910] RIP: 0033:0x7f523ab8efc9 [ 319.039212][T10910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.039233][T10910] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 319.039257][T10910] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 319.039273][T10910] RDX: 0000000000000007 RSI: 0000200000000140 RDI: 0000000000000003 [ 319.039288][T10910] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 319.039302][T10910] R10: 0000000020020000 R11: 0000000000000246 R12: 0000000000000001 [ 319.039316][T10910] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 319.039351][T10910] [ 321.408975][T10969] Process accounting paused [ 321.520934][T10974] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1579'. [ 321.924148][T10983] FAULT_INJECTION: forcing a failure. [ 321.924148][T10983] name failslab, interval 1, probability 0, space 0, times 0 [ 321.986702][T10983] CPU: 0 UID: 0 PID: 10983 Comm: syz.0.1581 Not tainted syzkaller #0 PREEMPT(full) [ 321.986737][T10983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 321.986751][T10983] Call Trace: [ 321.986759][T10983] [ 321.986769][T10983] dump_stack_lvl+0x16c/0x1f0 [ 321.986803][T10983] should_fail_ex+0x512/0x640 [ 321.986845][T10983] ? __kmalloc_cache_noprof+0x5f/0x780 [ 321.986888][T10983] should_failslab+0xc2/0x120 [ 321.986921][T10983] __kmalloc_cache_noprof+0x72/0x780 [ 321.986959][T10983] ? trace_pid_list_alloc+0x27c/0x3f0 [ 321.986998][T10983] ? trace_pid_list_alloc+0x27c/0x3f0 [ 321.987030][T10983] trace_pid_list_alloc+0x27c/0x3f0 [ 321.987065][T10983] trace_pid_write+0x10c/0x4b0 [ 321.987092][T10983] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 321.987122][T10983] ? __pfx_trace_pid_write+0x10/0x10 [ 321.987144][T10983] ? __pfx___mutex_lock+0x10/0x10 [ 321.987169][T10983] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 321.987199][T10983] ? update_last_data+0xb3/0x510 [ 321.987247][T10983] event_pid_write.isra.0+0x3f7/0x7f0 [ 321.987285][T10983] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 321.987333][T10983] ? __pfx_ftrace_event_pid_write+0x10/0x10 [ 321.987367][T10983] vfs_writev+0x5df/0xde0 [ 321.987401][T10983] ? __pfx_vfs_writev+0x10/0x10 [ 321.987423][T10983] ? __mutex_lock+0x1c5/0x1060 [ 321.987459][T10983] ? __pfx___mutex_lock+0x10/0x10 [ 321.987501][T10983] ? __fget_files+0x20e/0x3c0 [ 321.987538][T10983] ? do_writev+0x132/0x340 [ 321.987559][T10983] do_writev+0x132/0x340 [ 321.987584][T10983] ? __pfx_do_writev+0x10/0x10 [ 321.987619][T10983] do_syscall_64+0xcd/0xfa0 [ 321.987648][T10983] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.987674][T10983] RIP: 0033:0x7fb213d8efc9 [ 321.987695][T10983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.987717][T10983] RSP: 002b:00007fb214b90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 321.987740][T10983] RAX: ffffffffffffffda RBX: 00007fb213fe6090 RCX: 00007fb213d8efc9 [ 321.987757][T10983] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 321.987771][T10983] RBP: 00007fb213e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 321.987786][T10983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.987801][T10983] R13: 00007fb213fe6128 R14: 00007fb213fe6090 R15: 00007ffeb8a01bd8 [ 321.987847][T10983] [ 322.225459][ C0] vkms_vblank_simulate: vblank timer overrun [ 322.935548][T11003] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1589'. [ 323.015963][T11006] FAULT_INJECTION: forcing a failure. [ 323.015963][T11006] name failslab, interval 1, probability 0, space 0, times 0 [ 323.028859][T11006] CPU: 1 UID: 0 PID: 11006 Comm: syz.2.1590 Not tainted syzkaller #0 PREEMPT(full) [ 323.028892][T11006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 323.028906][T11006] Call Trace: [ 323.028915][T11006] [ 323.028924][T11006] dump_stack_lvl+0x16c/0x1f0 [ 323.028955][T11006] should_fail_ex+0x512/0x640 [ 323.028990][T11006] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 323.029018][T11006] should_failslab+0xc2/0x120 [ 323.029050][T11006] kmem_cache_alloc_noprof+0x75/0x6e0 [ 323.029074][T11006] ? getname_flags.part.0+0x4c/0x550 [ 323.029113][T11006] ? getname_flags.part.0+0x4c/0x550 [ 323.029145][T11006] getname_flags.part.0+0x4c/0x550 [ 323.029177][T11006] ? __pfx_ksys_write+0x10/0x10 [ 323.029206][T11006] getname_flags+0x93/0xf0 [ 323.029231][T11006] __x64_sys_mknodat+0x9f/0xe0 [ 323.029259][T11006] do_syscall_64+0xcd/0xfa0 [ 323.029287][T11006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 323.029312][T11006] RIP: 0033:0x7f4f0fb8efc9 [ 323.029332][T11006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 323.029353][T11006] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000103 [ 323.029377][T11006] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 323.029394][T11006] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffffff [ 323.029410][T11006] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 323.029424][T11006] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001 [ 323.029439][T11006] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 323.029471][T11006] [ 323.940827][T11029] Invalid ELF header magic: != ELF [ 324.183533][T11038] Invalid ELF header magic: != ELF [ 324.225636][T11038] FAULT_INJECTION: forcing a failure. [ 324.225636][T11038] name failslab, interval 1, probability 0, space 0, times 0 [ 324.263806][T11038] CPU: 0 UID: 0 PID: 11038 Comm: syz.2.1601 Not tainted syzkaller #0 PREEMPT(full) [ 324.263840][T11038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 324.263853][T11038] Call Trace: [ 324.263861][T11038] [ 324.263870][T11038] dump_stack_lvl+0x16c/0x1f0 [ 324.263900][T11038] should_fail_ex+0x512/0x640 [ 324.263931][T11038] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 324.263960][T11038] should_failslab+0xc2/0x120 [ 324.263991][T11038] kmem_cache_alloc_noprof+0x75/0x6e0 [ 324.264015][T11038] ? vm_area_dup+0x27/0x8d0 [ 324.264055][T11038] ? vm_area_dup+0x27/0x8d0 [ 324.264086][T11038] vm_area_dup+0x27/0x8d0 [ 324.264123][T11038] __split_vma+0x18e/0x1070 [ 324.264162][T11038] ? __pfx___split_vma+0x10/0x10 [ 324.264194][T11038] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 324.264229][T11038] ? change_protection+0x4bd/0x3f60 [ 324.264274][T11038] vma_modify+0xee1/0x2030 [ 324.264323][T11038] ? __pfx_vma_modify+0x10/0x10 [ 324.264368][T11038] vma_modify_flags+0x212/0x2d0 [ 324.264392][T11038] ? __pfx_vma_modify_flags+0x10/0x10 [ 324.264430][T11038] ? may_expand_vm+0xe8/0x430 [ 324.264464][T11038] mprotect_fixup+0x1df/0xb40 [ 324.264505][T11038] ? __pfx_mprotect_fixup+0x10/0x10 [ 324.264550][T11038] do_mprotect_pkey+0x9bc/0xd40 [ 324.264596][T11038] ? __pfx_do_mprotect_pkey+0x10/0x10 [ 324.264632][T11038] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 324.264670][T11038] ? __fget_files+0x20e/0x3c0 [ 324.264707][T11038] ? __pfx_ksys_write+0x10/0x10 [ 324.264741][T11038] __x64_sys_mprotect+0x78/0xc0 [ 324.264774][T11038] ? lockdep_hardirqs_on+0x7c/0x110 [ 324.264800][T11038] do_syscall_64+0xcd/0xfa0 [ 324.264830][T11038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.264854][T11038] RIP: 0033:0x7f4f0fb8efc9 [ 324.264874][T11038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 324.264896][T11038] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a [ 324.264919][T11038] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 324.264934][T11038] RDX: 0000000000000006 RSI: 0000000000806121 RDI: 0000000000000000 [ 324.264949][T11038] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 324.264963][T11038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 324.264977][T11038] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 324.265014][T11038] [ 324.627871][T11040] random: crng reseeded on system resumption [ 325.245948][T11056] FAULT_INJECTION: forcing a failure. [ 325.245948][T11056] name failslab, interval 1, probability 0, space 0, times 0 [ 325.293782][T11056] CPU: 0 UID: 0 PID: 11056 Comm: syz.1.1606 Not tainted syzkaller #0 PREEMPT(full) [ 325.293821][T11056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 325.293835][T11056] Call Trace: [ 325.293843][T11056] [ 325.293853][T11056] dump_stack_lvl+0x16c/0x1f0 [ 325.293885][T11056] should_fail_ex+0x512/0x640 [ 325.293917][T11056] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 325.293946][T11056] should_failslab+0xc2/0x120 [ 325.293976][T11056] kmem_cache_alloc_noprof+0x75/0x6e0 [ 325.294001][T11056] ? __do_sys_getcwd+0xe0/0x930 [ 325.294037][T11056] ? __do_sys_getcwd+0xe0/0x930 [ 325.294065][T11056] __do_sys_getcwd+0xe0/0x930 [ 325.294104][T11056] ? __pfx___do_sys_getcwd+0x10/0x10 [ 325.294132][T11056] ? fput+0x9b/0xd0 [ 325.294165][T11056] ? __pfx_ksys_write+0x10/0x10 [ 325.294201][T11056] do_syscall_64+0xcd/0xfa0 [ 325.294230][T11056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.294255][T11056] RIP: 0033:0x7f523ab8efc9 [ 325.294282][T11056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.294305][T11056] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f [ 325.294328][T11056] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 325.294345][T11056] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000 [ 325.294360][T11056] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 325.294375][T11056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 325.294389][T11056] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 325.294425][T11056] [ 325.982306][T11073] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input20 [ 326.107809][T11078] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1614'. [ 326.147950][T11078] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 326.168517][T11078] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 326.223309][T11078] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 326.236864][T11078] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 326.252327][T11086] FAULT_INJECTION: forcing a failure. [ 326.252327][T11086] name failslab, interval 1, probability 0, space 0, times 0 [ 326.285927][T11084] Invalid ELF header magic: != ELF [ 326.296853][T11086] CPU: 1 UID: 0 PID: 11086 Comm: syz.1.1617 Not tainted syzkaller #0 PREEMPT(full) [ 326.296886][T11086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 326.296900][T11086] Call Trace: [ 326.296908][T11086] [ 326.296917][T11086] dump_stack_lvl+0x16c/0x1f0 [ 326.296949][T11086] should_fail_ex+0x512/0x640 [ 326.296983][T11086] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 326.297011][T11086] should_failslab+0xc2/0x120 [ 326.297037][T11086] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 326.297059][T11086] ? __pfx___might_resched+0x10/0x10 [ 326.297083][T11086] ? sock_alloc_inode+0x25/0x1c0 [ 326.297112][T11086] ? __pfx_sock_alloc_inode+0x10/0x10 [ 326.297137][T11086] ? sock_alloc_inode+0x25/0x1c0 [ 326.297161][T11086] sock_alloc_inode+0x25/0x1c0 [ 326.297186][T11086] alloc_inode+0x64/0x240 [ 326.297218][T11086] sock_alloc+0x40/0x280 [ 326.297243][T11086] __sock_create+0xc1/0x8d0 [ 326.297279][T11086] __sys_socket+0x14d/0x260 [ 326.297309][T11086] ? __pfx___sys_socket+0x10/0x10 [ 326.297340][T11086] ? do_user_addr_fault+0x843/0x1370 [ 326.297377][T11086] __x64_sys_socket+0x72/0xb0 [ 326.297406][T11086] ? lockdep_hardirqs_on+0x7c/0x110 [ 326.297433][T11086] do_syscall_64+0xcd/0xfa0 [ 326.297462][T11086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.297487][T11086] RIP: 0033:0x7f523ab90ee7 [ 326.297508][T11086] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.297531][T11086] RSP: 002b:00007f523b9bdfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 326.297553][T11086] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab90ee7 [ 326.297570][T11086] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 326.297584][T11086] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 326.297599][T11086] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000001 [ 326.297613][T11086] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 326.297648][T11086] [ 326.297665][T11086] socket: no more sockets [ 327.357416][T11117] FAULT_INJECTION: forcing a failure. [ 327.357416][T11117] name failslab, interval 1, probability 0, space 0, times 0 [ 327.393832][T11117] CPU: 1 UID: 0 PID: 11117 Comm: syz.1.1625 Not tainted syzkaller #0 PREEMPT(full) [ 327.393867][T11117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 327.393881][T11117] Call Trace: [ 327.393889][T11117] [ 327.393898][T11117] dump_stack_lvl+0x16c/0x1f0 [ 327.393930][T11117] should_fail_ex+0x512/0x640 [ 327.393972][T11117] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 327.394003][T11117] should_failslab+0xc2/0x120 [ 327.394034][T11117] __kvmalloc_node_noprof+0x141/0x9c0 [ 327.394059][T11117] ? traverse.part.0.constprop.0+0x397/0x650 [ 327.394102][T11117] ? traverse.part.0.constprop.0+0x397/0x650 [ 327.394135][T11117] traverse.part.0.constprop.0+0x397/0x650 [ 327.394182][T11117] seq_read_iter+0x93c/0x12d0 [ 327.394232][T11117] seq_read+0x3a3/0x570 [ 327.394266][T11117] ? __pfx_seq_read+0x10/0x10 [ 327.394314][T11117] ? get_pid_task+0xfc/0x250 [ 327.394360][T11117] ? __pfx_seq_read+0x10/0x10 [ 327.394393][T11117] proc_reg_read+0x240/0x330 [ 327.394425][T11117] ? __pfx_proc_reg_read+0x10/0x10 [ 327.394457][T11117] vfs_read+0x1e4/0xcf0 [ 327.394490][T11117] ? __pfx_vfs_read+0x10/0x10 [ 327.394513][T11117] ? find_held_lock+0x2b/0x80 [ 327.394538][T11117] ? __fget_files+0x204/0x3c0 [ 327.394567][T11117] ? __fget_files+0x20e/0x3c0 [ 327.394588][T11117] ? __fget_files+0x130/0x3c0 [ 327.394622][T11117] __x64_sys_pread64+0x1eb/0x250 [ 327.394650][T11117] ? __pfx___x64_sys_pread64+0x10/0x10 [ 327.394689][T11117] do_syscall_64+0xcd/0xfa0 [ 327.394718][T11117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 327.394742][T11117] RIP: 0033:0x7f523ab8efc9 [ 327.394762][T11117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 327.394784][T11117] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 327.394812][T11117] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 327.394829][T11117] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000003 [ 327.394843][T11117] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 327.394858][T11117] R10: 0000100000000007 R11: 0000000000000246 R12: 0000000000000001 [ 327.394873][T11117] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 327.394909][T11117] [ 327.627530][ C1] vkms_vblank_simulate: vblank timer overrun [ 328.505684][T11133] netlink: 206 bytes leftover after parsing attributes in process `syz.3.1630'. [ 328.903072][T11145] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1632'. [ 328.967478][T11144] FAULT_INJECTION: forcing a failure. [ 328.967478][T11144] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 329.043390][T11144] CPU: 0 UID: 0 PID: 11144 Comm: syz.1.1633 Not tainted syzkaller #0 PREEMPT(full) [ 329.043422][T11144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 329.043431][T11144] Call Trace: [ 329.043436][T11144] [ 329.043441][T11144] dump_stack_lvl+0x16c/0x1f0 [ 329.043462][T11144] should_fail_ex+0x512/0x640 [ 329.043486][T11144] _copy_from_user+0x2e/0xd0 [ 329.043509][T11144] copy_msghdr_from_user+0x98/0x160 [ 329.043532][T11144] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 329.043558][T11144] ? __pfx__kstrtoull+0x10/0x10 [ 329.043578][T11144] ___sys_sendmsg+0xfe/0x1d0 [ 329.043591][T11144] ? __pfx____sys_sendmsg+0x10/0x10 [ 329.043637][T11144] ? find_held_lock+0x2b/0x80 [ 329.043681][T11144] __sys_sendmmsg+0x200/0x420 [ 329.043706][T11144] ? __pfx___sys_sendmmsg+0x10/0x10 [ 329.043737][T11144] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 329.043776][T11144] ? fput+0x9b/0xd0 [ 329.043806][T11144] ? ksys_write+0x1ac/0x250 [ 329.043828][T11144] ? __pfx_ksys_write+0x10/0x10 [ 329.043865][T11144] __x64_sys_sendmmsg+0x9c/0x100 [ 329.043887][T11144] ? lockdep_hardirqs_on+0x7c/0x110 [ 329.043913][T11144] do_syscall_64+0xcd/0xfa0 [ 329.043940][T11144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.043964][T11144] RIP: 0033:0x7f523ab8efc9 [ 329.043983][T11144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 329.044005][T11144] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 329.044028][T11144] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 329.044045][T11144] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 329.044059][T11144] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 329.044074][T11144] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 329.044088][T11144] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 329.044122][T11144] [ 329.337487][T11157] Console: switching to colour VGA+ 80x25 [ 330.756498][ T5838] Bluetooth: hci2: unexpected subevent 0x03 length: 253 > 9 [ 331.057883][T11194] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1650'. [ 331.333953][T11201] FAULT_INJECTION: forcing a failure. [ 331.333953][T11201] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 331.422384][T11201] CPU: 1 UID: 0 PID: 11201 Comm: syz.2.1648 Not tainted syzkaller #0 PREEMPT(full) [ 331.422420][T11201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 331.422434][T11201] Call Trace: [ 331.422442][T11201] [ 331.422452][T11201] dump_stack_lvl+0x16c/0x1f0 [ 331.422483][T11201] should_fail_ex+0x512/0x640 [ 331.422525][T11201] _copy_to_user+0x32/0xd0 [ 331.422563][T11201] __do_sys_mincore+0x28e/0x620 [ 331.422611][T11201] do_syscall_64+0xcd/0xfa0 [ 331.422640][T11201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 331.422671][T11201] RIP: 0033:0x7f4f0fb8efc9 [ 331.422690][T11201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 331.422712][T11201] RSP: 002b:00007f4f109bb038 EFLAGS: 00000246 ORIG_RAX: 000000000000001b [ 331.422736][T11201] RAX: ffffffffffffffda RBX: 00007f4f0fde6090 RCX: 00007f4f0fb8efc9 [ 331.422753][T11201] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000000000001000 [ 331.422767][T11201] RBP: 00007f4f109bb090 R08: 0000000000000000 R09: 0000000000000000 [ 331.422782][T11201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 331.422797][T11201] R13: 00007f4f0fde6128 R14: 00007f4f0fde6090 R15: 00007ffecd3cf908 [ 331.422833][T11201] [ 331.858921][T11212] usb usb23: usbfs: interface 0 claimed by hub while 'syz.2.1657' sets config #0 [ 333.132984][T11247] FAULT_INJECTION: forcing a failure. [ 333.132984][T11247] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 333.158786][T11247] CPU: 0 UID: 0 PID: 11247 Comm: syz.3.1666 Not tainted syzkaller #0 PREEMPT(full) [ 333.158821][T11247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 333.158835][T11247] Call Trace: [ 333.158843][T11247] [ 333.158853][T11247] dump_stack_lvl+0x16c/0x1f0 [ 333.158884][T11247] should_fail_ex+0x512/0x640 [ 333.158923][T11247] _copy_from_user+0x2e/0xd0 [ 333.158958][T11247] copy_msghdr_from_user+0x98/0x160 [ 333.158995][T11247] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 333.159038][T11247] ? __pfx__kstrtoull+0x10/0x10 [ 333.159073][T11247] ___sys_sendmsg+0xfe/0x1d0 [ 333.159097][T11247] ? __pfx____sys_sendmsg+0x10/0x10 [ 333.159150][T11247] ? find_held_lock+0x2b/0x80 [ 333.159197][T11247] __sys_sendmmsg+0x200/0x420 [ 333.159232][T11247] ? __pfx___sys_sendmmsg+0x10/0x10 [ 333.159271][T11247] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 333.159313][T11247] ? fput+0x9b/0xd0 [ 333.159344][T11247] ? ksys_write+0x1ac/0x250 [ 333.159368][T11247] ? __pfx_ksys_write+0x10/0x10 [ 333.159418][T11247] __x64_sys_sendmmsg+0x9c/0x100 [ 333.159449][T11247] ? lockdep_hardirqs_on+0x7c/0x110 [ 333.159475][T11247] do_syscall_64+0xcd/0xfa0 [ 333.159507][T11247] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.159532][T11247] RIP: 0033:0x7f6433d8efc9 [ 333.159551][T11247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.159573][T11247] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 333.159597][T11247] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 333.159613][T11247] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 333.159628][T11247] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 333.159643][T11247] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000001 [ 333.159664][T11247] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 333.159700][T11247] [ 334.221123][T11272] FAULT_INJECTION: forcing a failure. [ 334.221123][T11272] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 334.361689][T11272] CPU: 1 UID: 0 PID: 11272 Comm: syz.2.1673 Not tainted syzkaller #0 PREEMPT(full) [ 334.361724][T11272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 334.361738][T11272] Call Trace: [ 334.361747][T11272] [ 334.361757][T11272] dump_stack_lvl+0x16c/0x1f0 [ 334.361789][T11272] should_fail_ex+0x512/0x640 [ 334.361828][T11272] should_fail_alloc_page+0xe7/0x130 [ 334.361861][T11272] prepare_alloc_pages+0x3c2/0x610 [ 334.361899][T11272] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 334.361935][T11272] ? find_held_lock+0x2b/0x80 [ 334.361961][T11272] ? is_bpf_text_address+0x8a/0x1a0 [ 334.361994][T11272] ? bpf_ksym_find+0x124/0x1c0 [ 334.362018][T11272] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 334.362039][T11272] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 334.362068][T11272] ? kernel_text_address+0x8d/0x100 [ 334.362100][T11272] ? __kernel_text_address+0xd/0x40 [ 334.362129][T11272] ? __lock_acquire+0x622/0x1c90 [ 334.362158][T11272] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 334.362196][T11272] ? policy_nodemask+0xea/0x4e0 [ 334.362226][T11272] alloc_pages_mpol+0x1fb/0x550 [ 334.362255][T11272] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 334.362291][T11272] folio_alloc_mpol_noprof+0x36/0x2f0 [ 334.362326][T11272] vma_alloc_folio_noprof+0xed/0x1e0 [ 334.362360][T11272] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 334.362411][T11272] do_pte_missing+0x2202/0x3ba0 [ 334.362446][T11272] ? find_held_lock+0x2b/0x80 [ 334.362479][T11272] __handle_mm_fault+0x1556/0x2aa0 [ 334.362524][T11272] ? __pfx___handle_mm_fault+0x10/0x10 [ 334.362564][T11272] ? lock_vma_under_rcu+0x176/0x530 [ 334.362610][T11272] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 334.362655][T11272] handle_mm_fault+0x589/0xd10 [ 334.362691][T11272] ? __pkru_allows_pkey+0x11/0xb0 [ 334.362729][T11272] do_user_addr_fault+0x60c/0x1370 [ 334.362757][T11272] ? rcu_is_watching+0x12/0xc0 [ 334.362786][T11272] exc_page_fault+0x64/0xc0 [ 334.362814][T11272] asm_exc_page_fault+0x26/0x30 [ 334.362836][T11272] RIP: 0033:0x7f4f0fa5a87b [ 334.362856][T11272] Code: 00 00 00 48 8d 3d bd 38 19 00 48 89 c1 31 c0 e8 db 39 ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d f1 38 19 00 48 89 34 24 48 8b 14 24 48 8b [ 334.362878][T11272] RSP: 002b:00007f4f109dafb0 EFLAGS: 00010202 [ 334.362899][T11272] RAX: 0000000000000000 RBX: 00007f4f0fde5fa0 RCX: 0000000000000000 [ 334.362914][T11272] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 00002000000000c0 [ 334.362929][T11272] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 334.362944][T11272] R10: 00002000000000c0 R11: 0000000000000000 R12: 0000000000000001 [ 334.362959][T11272] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 334.362996][T11272] [ 334.363010][T11272] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 339.152258][T11362] Process accounting paused [ 339.864431][T11394] FAULT_INJECTION: forcing a failure. [ 339.864431][T11394] name failslab, interval 1, probability 0, space 0, times 0 [ 339.884594][T11394] CPU: 1 UID: 0 PID: 11394 Comm: syz.3.1706 Not tainted syzkaller #0 PREEMPT(full) [ 339.884634][T11394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 339.884647][T11394] Call Trace: [ 339.884655][T11394] [ 339.884715][T11394] dump_stack_lvl+0x16c/0x1f0 [ 339.884749][T11394] should_fail_ex+0x512/0x640 [ 339.884914][T11394] ? __pfx_ip_addr_string+0x10/0x10 [ 339.884942][T11394] should_failslab+0xc2/0x120 [ 339.884977][T11394] kmem_cache_alloc_noprof+0x75/0x6e0 [ 339.885001][T11394] ? dst_alloc+0x99/0x1a0 [ 339.885042][T11394] ? dst_alloc+0x99/0x1a0 [ 339.885067][T11394] dst_alloc+0x99/0x1a0 [ 339.885105][T11394] rt_dst_alloc+0x35/0x3a0 [ 339.885135][T11394] ip_route_output_key_hash_rcu+0x87a/0x28e0 [ 339.885180][T11394] ip_route_output_key_hash+0x10f/0x2b0 [ 339.885217][T11394] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 339.885254][T11394] ? is_bpf_text_address+0x94/0x1a0 [ 339.885311][T11394] tcp_v4_connect+0x821/0x1c10 [ 339.885357][T11394] ? __pfx_tcp_v4_connect+0x10/0x10 [ 339.885391][T11394] ? __lock_acquire+0xb8a/0x1c90 [ 339.885429][T11394] __inet_stream_connect+0x915/0xf50 [ 339.885475][T11394] ? __pfx___inet_stream_connect+0x10/0x10 [ 339.885507][T11394] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 339.885550][T11394] ? __local_bh_enable_ip+0xa4/0x120 [ 339.885586][T11394] inet_stream_connect+0x57/0xa0 [ 339.885620][T11394] kernel_connect+0x107/0x180 [ 339.885650][T11394] ? __pfx_kernel_connect+0x10/0x10 [ 339.885695][T11394] ? __local_bh_enable_ip+0xa4/0x120 [ 339.885767][T11394] smc_connect+0x4c7/0x760 [ 339.885795][T11394] ? __pfx_smc_connect+0x10/0x10 [ 339.885816][T11394] __sys_connect_file+0x141/0x1a0 [ 339.885852][T11394] __sys_connect+0x13b/0x160 [ 339.885883][T11394] ? __pfx___sys_connect+0x10/0x10 [ 339.885928][T11394] ? __pfx_ksys_write+0x10/0x10 [ 339.885963][T11394] __x64_sys_connect+0x72/0xb0 [ 339.885995][T11394] ? lockdep_hardirqs_on+0x7c/0x110 [ 339.886022][T11394] do_syscall_64+0xcd/0xfa0 [ 339.886051][T11394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.886078][T11394] RIP: 0033:0x7f6433d8efc9 [ 339.886100][T11394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.886124][T11394] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 339.886147][T11394] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 339.886164][T11394] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003 [ 339.886179][T11394] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 339.886194][T11394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 339.886208][T11394] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 339.886244][T11394] [ 341.954449][T11419] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1713'. [ 342.265618][T11427] phram: not enough arguments [ 342.574815][T11437] FAULT_INJECTION: forcing a failure. [ 342.574815][T11437] name failslab, interval 1, probability 0, space 0, times 0 [ 342.607205][T11437] CPU: 1 UID: 0 PID: 11437 Comm: syz.3.1719 Not tainted syzkaller #0 PREEMPT(full) [ 342.607237][T11437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 342.607252][T11437] Call Trace: [ 342.607260][T11437] [ 342.607270][T11437] dump_stack_lvl+0x16c/0x1f0 [ 342.607299][T11437] should_fail_ex+0x512/0x640 [ 342.607330][T11437] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 342.607356][T11437] should_failslab+0xc2/0x120 [ 342.607386][T11437] kmem_cache_alloc_noprof+0x75/0x6e0 [ 342.607410][T11437] ? __ksm_enter+0x3c/0x620 [ 342.607440][T11437] ? __ksm_enter+0x3c/0x620 [ 342.607474][T11437] ? is_bpf_text_address+0x8a/0x1a0 [ 342.607503][T11437] __ksm_enter+0x3c/0x620 [ 342.607525][T11437] ? bpf_ksym_find+0x124/0x1c0 [ 342.607554][T11437] ksm_madvise+0x2ea/0x380 [ 342.607582][T11437] madvise_vma_behavior+0x207/0x2d50 [ 342.607620][T11437] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 342.607645][T11437] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 342.607677][T11437] ? mas_prev+0x9b/0xf0 [ 342.607703][T11437] ? __pfx_mas_prev+0x10/0x10 [ 342.607738][T11437] ? find_vma_prev+0xd3/0x150 [ 342.607769][T11437] ? __pfx_find_vma_prev+0x10/0x10 [ 342.607811][T11437] ? __lock_acquire+0x622/0x1c90 [ 342.607846][T11437] madvise_walk_vmas+0x31f/0x9c0 [ 342.607889][T11437] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 342.607930][T11437] madvise_do_behavior+0x1e2/0x530 [ 342.607963][T11437] ? __pfx___might_resched+0x10/0x10 [ 342.607987][T11437] ? __pfx_madvise_do_behavior+0x10/0x10 [ 342.608031][T11437] ? find_held_lock+0x2b/0x80 [ 342.608054][T11437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 342.608096][T11437] do_madvise+0x176/0x240 [ 342.608128][T11437] ? __pfx_do_madvise+0x10/0x10 [ 342.608157][T11437] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 342.608198][T11437] ? __fget_files+0x20e/0x3c0 [ 342.608235][T11437] ? __pfx_ksys_write+0x10/0x10 [ 342.608267][T11437] __x64_sys_madvise+0xa9/0x110 [ 342.608298][T11437] ? lockdep_hardirqs_on+0x7c/0x110 [ 342.608323][T11437] do_syscall_64+0xcd/0xfa0 [ 342.608352][T11437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.608376][T11437] RIP: 0033:0x7f6433d8efc9 [ 342.608396][T11437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 342.608418][T11437] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 342.608442][T11437] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 342.608465][T11437] RDX: 000000000000000c RSI: 0000000000087fff RDI: 0000000000008000 [ 342.608480][T11437] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 342.608495][T11437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 342.608508][T11437] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 342.608545][T11437] [ 343.561828][T11455] FAULT_INJECTION: forcing a failure. [ 343.561828][T11455] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 343.575509][T11455] CPU: 1 UID: 0 PID: 11455 Comm: syz.2.1726 Not tainted syzkaller #0 PREEMPT(full) [ 343.575542][T11455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 343.575556][T11455] Call Trace: [ 343.575565][T11455] [ 343.575575][T11455] dump_stack_lvl+0x16c/0x1f0 [ 343.575606][T11455] should_fail_ex+0x512/0x640 [ 343.575645][T11455] should_fail_alloc_page+0xe7/0x130 [ 343.575686][T11455] prepare_alloc_pages+0x3c2/0x610 [ 343.575723][T11455] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 343.575752][T11455] ? up_write+0x1b2/0x520 [ 343.575791][T11455] ? process_measurement+0x1e6/0x23e0 [ 343.575830][T11455] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 343.575880][T11455] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 343.575920][T11455] ? policy_nodemask+0xea/0x4e0 [ 343.575955][T11455] alloc_pages_mpol+0x1fb/0x550 [ 343.575988][T11455] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 343.576029][T11455] alloc_pages_noprof+0x131/0x390 [ 343.576061][T11455] __pmd_alloc+0x3b/0x8b0 [ 343.576097][T11455] __handle_mm_fault+0xada/0x2aa0 [ 343.576137][T11455] ? mt_find+0x3e2/0xa20 [ 343.576166][T11455] ? __pfx___handle_mm_fault+0x10/0x10 [ 343.576198][T11455] ? __pfx_mt_find+0x10/0x10 [ 343.576246][T11455] ? find_vma+0xbf/0x140 [ 343.576272][T11455] ? __pfx_find_vma+0x10/0x10 [ 343.576303][T11455] handle_mm_fault+0x589/0xd10 [ 343.576341][T11455] ? __pkru_allows_pkey+0x11/0xb0 [ 343.576376][T11455] do_user_addr_fault+0x7a6/0x1370 [ 343.576401][T11455] ? rcu_is_watching+0x12/0xc0 [ 343.576429][T11455] exc_page_fault+0x64/0xc0 [ 343.576456][T11455] asm_exc_page_fault+0x26/0x30 [ 343.576483][T11455] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 343.576515][T11455] Code: 3c 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 343.576537][T11455] RSP: 0018:ffffc900185d7d70 EFLAGS: 00050202 [ 343.576557][T11455] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000078 [ 343.576572][T11455] RDX: fffff520030bafd3 RSI: 0000000000000000 RDI: ffffc900185d7e20 [ 343.576588][T11455] RBP: 0000000000000078 R08: 0000000000000001 R09: fffff520030bafd2 [ 343.576601][T11455] R10: ffffc900185d7e97 R11: 0000000000000001 R12: 0000000000000000 [ 343.576614][T11455] R13: ffffc900185d7e20 R14: ffff88807d18a000 R15: ffffc900185d7e20 [ 343.576645][T11455] _copy_from_user+0x98/0xd0 [ 343.576686][T11455] copy_msqid_from_user.constprop.0+0x1d/0x50 [ 343.576717][T11455] ksys_msgctl.constprop.0+0x1bb/0x330 [ 343.576743][T11455] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 343.576770][T11455] ? __pfx_ksys_msgctl.constprop.0+0x10/0x10 [ 343.576804][T11455] ? __fget_files+0x20e/0x3c0 [ 343.576849][T11455] do_syscall_64+0xcd/0xfa0 [ 343.576874][T11455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.576894][T11455] RIP: 0033:0x7f4f0fb8efc9 [ 343.576912][T11455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 343.576932][T11455] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000047 [ 343.576953][T11455] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 343.576968][T11455] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 343.576981][T11455] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 343.576994][T11455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 343.577007][T11455] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 343.577042][T11455] [ 344.615781][T11476] __vm_enough_memory: pid: 11476, comm: syz.2.1734, bytes: 4398046511104 not enough memory for the allocation [ 344.676903][T11478] FAULT_INJECTION: forcing a failure. [ 344.676903][T11478] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 344.691254][T11478] CPU: 0 UID: 0 PID: 11478 Comm: syz.3.1735 Not tainted syzkaller #0 PREEMPT(full) [ 344.691294][T11478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 344.691308][T11478] Call Trace: [ 344.691316][T11478] [ 344.691324][T11478] dump_stack_lvl+0x16c/0x1f0 [ 344.691354][T11478] should_fail_ex+0x512/0x640 [ 344.691394][T11478] _copy_from_user+0x2e/0xd0 [ 344.691428][T11478] __x64_sys_epoll_ctl+0x131/0x1e0 [ 344.691455][T11478] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 344.691492][T11478] do_syscall_64+0xcd/0xfa0 [ 344.691518][T11478] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 344.691542][T11478] RIP: 0033:0x7f6433d8efc9 [ 344.691561][T11478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 344.691581][T11478] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 344.691603][T11478] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 344.691619][T11478] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 344.691633][T11478] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 344.691647][T11478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 344.691660][T11478] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 344.691694][T11478] [ 345.965184][T11510] FAULT_INJECTION: forcing a failure. [ 345.965184][T11510] name failslab, interval 1, probability 0, space 0, times 0 [ 346.013772][T11510] CPU: 1 UID: 0 PID: 11510 Comm: syz.3.1741 Not tainted syzkaller #0 PREEMPT(full) [ 346.013803][T11510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 346.013816][T11510] Call Trace: [ 346.013823][T11510] [ 346.013832][T11510] dump_stack_lvl+0x16c/0x1f0 [ 346.013861][T11510] should_fail_ex+0x512/0x640 [ 346.013891][T11510] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 346.013917][T11510] should_failslab+0xc2/0x120 [ 346.013947][T11510] kmem_cache_alloc_noprof+0x75/0x6e0 [ 346.013970][T11510] ? getname_flags.part.0+0x4c/0x550 [ 346.014004][T11510] ? getname_flags.part.0+0x4c/0x550 [ 346.014032][T11510] getname_flags.part.0+0x4c/0x550 [ 346.014065][T11510] getname_flags+0x93/0xf0 [ 346.014089][T11510] do_sys_openat2+0xb8/0x1d0 [ 346.014123][T11510] ? __pfx_do_sys_openat2+0x10/0x10 [ 346.014153][T11510] ? fdget+0x187/0x210 [ 346.014187][T11510] ? __sys_connect+0xe0/0x160 [ 346.014228][T11510] __x64_sys_openat+0x174/0x210 [ 346.014262][T11510] ? __pfx___x64_sys_openat+0x10/0x10 [ 346.014309][T11510] do_syscall_64+0xcd/0xfa0 [ 346.014338][T11510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.014363][T11510] RIP: 0033:0x7f6433d8efc9 [ 346.014383][T11510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 346.014406][T11510] RSP: 002b:00007f6434c6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 346.014428][T11510] RAX: ffffffffffffffda RBX: 00007f6433fe6090 RCX: 00007f6433d8efc9 [ 346.014444][T11510] RDX: 0000000000109401 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 346.014459][T11510] RBP: 00007f6433e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 346.014474][T11510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.014488][T11510] R13: 00007f6433fe6128 R14: 00007f6433fe6090 R15: 00007ffce91ba328 [ 346.014529][T11510] [ 346.425286][T11525] FAULT_INJECTION: forcing a failure. [ 346.425286][T11525] name failslab, interval 1, probability 0, space 0, times 0 [ 346.458242][T11525] CPU: 0 UID: 0 PID: 11525 Comm: syz.1.1743 Not tainted syzkaller #0 PREEMPT(full) [ 346.458277][T11525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 346.458290][T11525] Call Trace: [ 346.458298][T11525] [ 346.458309][T11525] dump_stack_lvl+0x16c/0x1f0 [ 346.458339][T11525] should_fail_ex+0x512/0x640 [ 346.458372][T11525] ? __kmalloc_cache_noprof+0x5f/0x780 [ 346.458411][T11525] should_failslab+0xc2/0x120 [ 346.458442][T11525] __kmalloc_cache_noprof+0x72/0x780 [ 346.458475][T11525] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 346.458504][T11525] ? io_wq_create+0x6a/0x9a0 [ 346.458532][T11525] ? io_wq_create+0x6a/0x9a0 [ 346.458556][T11525] io_wq_create+0x6a/0x9a0 [ 346.458582][T11525] io_uring_alloc_task_context+0x1e1/0x650 [ 346.458620][T11525] ? __pfx_io_uring_alloc_task_context+0x10/0x10 [ 346.458666][T11525] __io_uring_add_tctx_node+0x2dd/0x500 [ 346.458701][T11525] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 346.458739][T11525] ? __fget_files+0x20e/0x3c0 [ 346.458767][T11525] __io_uring_add_tctx_node_from_submit+0x89/0x130 [ 346.458805][T11525] __do_sys_io_uring_enter+0x1239/0x1630 [ 346.458837][T11525] ? __fget_files+0x20e/0x3c0 [ 346.458862][T11525] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 346.458893][T11525] ? fput+0x9b/0xd0 [ 346.458922][T11525] ? ksys_write+0x1ac/0x250 [ 346.458947][T11525] ? __pfx_ksys_write+0x10/0x10 [ 346.458983][T11525] do_syscall_64+0xcd/0xfa0 [ 346.459010][T11525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.459034][T11525] RIP: 0033:0x7f523ab8efc9 [ 346.459059][T11525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 346.459078][T11525] RSP: 002b:00007f523b99e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 346.459100][T11525] RAX: ffffffffffffffda RBX: 00007f523ade6090 RCX: 00007f523ab8efc9 [ 346.459113][T11525] RDX: 0000000080000001 RSI: 0000000000000a84 RDI: 0000000000000003 [ 346.459126][T11525] RBP: 00007f523b99e090 R08: 0000000000000000 R09: 0000000000000046 [ 346.459141][T11525] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001 [ 346.459155][T11525] R13: 00007f523ade6128 R14: 00007f523ade6090 R15: 00007ffcf4605108 [ 346.459199][T11525] [ 348.144197][T11560] FAULT_INJECTION: forcing a failure. [ 348.144197][T11560] name failslab, interval 1, probability 0, space 0, times 0 [ 348.163523][T11560] CPU: 1 UID: 0 PID: 11560 Comm: syz.2.1753 Not tainted syzkaller #0 PREEMPT(full) [ 348.163555][T11560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 348.163569][T11560] Call Trace: [ 348.163577][T11560] [ 348.163587][T11560] dump_stack_lvl+0x16c/0x1f0 [ 348.163619][T11560] should_fail_ex+0x512/0x640 [ 348.163651][T11560] ? __kmalloc_noprof+0xca/0x880 [ 348.163688][T11560] should_failslab+0xc2/0x120 [ 348.163719][T11560] __kmalloc_noprof+0xdd/0x880 [ 348.163754][T11560] ? alloc_pipe_info+0x1ec/0x590 [ 348.163786][T11560] ? alloc_pipe_info+0x1ec/0x590 [ 348.163811][T11560] alloc_pipe_info+0x1ec/0x590 [ 348.163841][T11560] splice_direct_to_actor+0x77d/0xa30 [ 348.163868][T11560] ? __pfx_direct_splice_actor+0x10/0x10 [ 348.163924][T11560] ? __pfx_aa_file_perm+0x10/0x10 [ 348.163952][T11560] ? find_held_lock+0x2b/0x80 [ 348.163977][T11560] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 348.163999][T11560] ? get_pid_task+0xfc/0x250 [ 348.164040][T11560] do_splice_direct+0x174/0x240 [ 348.164064][T11560] ? __pfx_do_splice_direct+0x10/0x10 [ 348.164089][T11560] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 348.164131][T11560] ? rw_verify_area+0xcf/0x6c0 [ 348.164155][T11560] do_sendfile+0xb06/0xe50 [ 348.164185][T11560] ? __pfx_do_sendfile+0x10/0x10 [ 348.164210][T11560] ? __fget_files+0x20e/0x3c0 [ 348.164243][T11560] __x64_sys_sendfile64+0x1d8/0x220 [ 348.164276][T11560] ? ksys_write+0x1ac/0x250 [ 348.164304][T11560] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 348.164345][T11560] do_syscall_64+0xcd/0xfa0 [ 348.164373][T11560] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.164397][T11560] RIP: 0033:0x7f4f0fb8efc9 [ 348.164427][T11560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.164450][T11560] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 348.164473][T11560] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 348.164490][T11560] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 348.164505][T11560] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 348.164518][T11560] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001 [ 348.164531][T11560] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 348.164566][T11560] [ 350.081765][T11598] FAULT_INJECTION: forcing a failure. [ 350.081765][T11598] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 350.117848][T11598] CPU: 0 UID: 0 PID: 11598 Comm: syz.1.1761 Not tainted syzkaller #0 PREEMPT(full) [ 350.117878][T11598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 350.117890][T11598] Call Trace: [ 350.117898][T11598] [ 350.117907][T11598] dump_stack_lvl+0x16c/0x1f0 [ 350.117950][T11598] should_fail_ex+0x512/0x640 [ 350.117987][T11598] _copy_from_user+0x2e/0xd0 [ 350.118020][T11598] copy_msghdr_from_user+0x98/0x160 [ 350.118060][T11598] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 350.118109][T11598] ___sys_sendmsg+0xfe/0x1d0 [ 350.118133][T11598] ? __pfx____sys_sendmsg+0x10/0x10 [ 350.118166][T11598] ? __lock_acquire+0x622/0x1c90 [ 350.118238][T11598] __sys_sendmsg+0x16d/0x220 [ 350.118262][T11598] ? __pfx___sys_sendmsg+0x10/0x10 [ 350.118310][T11598] do_syscall_64+0xcd/0xfa0 [ 350.118337][T11598] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.118360][T11598] RIP: 0033:0x7f523ab8efc9 [ 350.118380][T11598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 350.118401][T11598] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 350.118424][T11598] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 350.118440][T11598] RDX: 0000000000000800 RSI: 0000200000000400 RDI: 0000000000000003 [ 350.118454][T11598] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 350.118468][T11598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 350.118482][T11598] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 350.118515][T11598] [ 350.578007][T11611] FAULT_INJECTION: forcing a failure. [ 350.578007][T11611] name failslab, interval 1, probability 0, space 0, times 0 [ 350.602551][T11611] CPU: 0 UID: 0 PID: 11611 Comm: syz.0.1765 Not tainted syzkaller #0 PREEMPT(full) [ 350.602586][T11611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 350.602606][T11611] Call Trace: [ 350.602614][T11611] [ 350.602625][T11611] dump_stack_lvl+0x16c/0x1f0 [ 350.602664][T11611] should_fail_ex+0x512/0x640 [ 350.602696][T11611] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 350.602723][T11611] should_failslab+0xc2/0x120 [ 350.602753][T11611] kmem_cache_alloc_noprof+0x75/0x6e0 [ 350.602777][T11611] ? getname_flags.part.0+0x4c/0x550 [ 350.602816][T11611] ? getname_flags.part.0+0x4c/0x550 [ 350.602847][T11611] getname_flags.part.0+0x4c/0x550 [ 350.602881][T11611] getname_flags+0x93/0xf0 [ 350.602905][T11611] do_sys_openat2+0xb8/0x1d0 [ 350.602937][T11611] ? __pfx_do_sys_openat2+0x10/0x10 [ 350.602972][T11611] ? __fget_files+0x20e/0x3c0 [ 350.603001][T11611] __x64_sys_openat+0x174/0x210 [ 350.603032][T11611] ? __pfx___x64_sys_openat+0x10/0x10 [ 350.603068][T11611] ? ksys_write+0x1ac/0x250 [ 350.603105][T11611] do_syscall_64+0xcd/0xfa0 [ 350.603134][T11611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 350.603159][T11611] RIP: 0033:0x7fb213d8efc9 [ 350.603179][T11611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 350.603203][T11611] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 350.603227][T11611] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 350.603244][T11611] RDX: 0000000000008800 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 350.603260][T11611] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 350.603275][T11611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 350.603289][T11611] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 350.603322][T11611] [ 350.998444][T11622] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1768'. [ 351.208194][T11625] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1769'. [ 351.533272][T11645] FAULT_INJECTION: forcing a failure. [ 351.533272][T11645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 351.547123][T11645] CPU: 1 UID: 0 PID: 11645 Comm: syz.1.1774 Not tainted syzkaller #0 PREEMPT(full) [ 351.547151][T11645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 351.547163][T11645] Call Trace: [ 351.547170][T11645] [ 351.547178][T11645] dump_stack_lvl+0x16c/0x1f0 [ 351.547204][T11645] should_fail_ex+0x512/0x640 [ 351.547234][T11645] _copy_from_user+0x2e/0xd0 [ 351.547263][T11645] __x64_sys_epoll_ctl+0x131/0x1e0 [ 351.547286][T11645] ? __pfx___x64_sys_epoll_ctl+0x10/0x10 [ 351.547318][T11645] do_syscall_64+0xcd/0xfa0 [ 351.547344][T11645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.547364][T11645] RIP: 0033:0x7f523ab8efc9 [ 351.547382][T11645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.547403][T11645] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 351.547424][T11645] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 351.547441][T11645] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 351.547451][T11645] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 351.547465][T11645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 351.547479][T11645] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 351.547513][T11645] [ 351.950639][T11653] FAULT_INJECTION: forcing a failure. [ 351.950639][T11653] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 351.973017][T11653] CPU: 0 UID: 0 PID: 11653 Comm: syz.3.1777 Not tainted syzkaller #0 PREEMPT(full) [ 351.973054][T11653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 351.973068][T11653] Call Trace: [ 351.973076][T11653] [ 351.973086][T11653] dump_stack_lvl+0x16c/0x1f0 [ 351.973119][T11653] should_fail_ex+0x512/0x640 [ 351.973157][T11653] strncpy_from_user+0x3b/0x2e0 [ 351.973192][T11653] getname_flags.part.0+0x8f/0x550 [ 351.973231][T11653] getname_flags+0x93/0xf0 [ 351.973255][T11653] do_sys_openat2+0xb8/0x1d0 [ 351.973289][T11653] ? __pfx_do_sys_openat2+0x10/0x10 [ 351.973325][T11653] ? __fget_files+0x20e/0x3c0 [ 351.973354][T11653] __x64_sys_openat+0x174/0x210 [ 351.973387][T11653] ? __pfx___x64_sys_openat+0x10/0x10 [ 351.973419][T11653] ? ksys_write+0x1ac/0x250 [ 351.973456][T11653] do_syscall_64+0xcd/0xfa0 [ 351.973484][T11653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 351.973509][T11653] RIP: 0033:0x7f6433d8efc9 [ 351.973536][T11653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 351.973558][T11653] RSP: 002b:00007f6434c8d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 351.973582][T11653] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8efc9 [ 351.973601][T11653] RDX: 0000000000000400 RSI: 0000200000000200 RDI: ffffffffffffff9c [ 351.973614][T11653] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 351.973626][T11653] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000001 [ 351.973639][T11653] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 351.973669][T11653] [ 352.360816][ T30] audit: type=1107 audit(4294967317.420:4): pid=11657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 352.708932][T11617] Process accounting resumed [ 353.479440][T11672] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 353.485663][T11672] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 353.493529][T11672] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 353.516767][T11672] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 353.702802][T11696] FAULT_INJECTION: forcing a failure. [ 353.702802][T11696] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 353.736468][T11696] CPU: 1 UID: 0 PID: 11696 Comm: syz.3.1787 Not tainted syzkaller #0 PREEMPT(full) [ 353.736501][T11696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 353.736515][T11696] Call Trace: [ 353.736522][T11696] [ 353.736531][T11696] dump_stack_lvl+0x16c/0x1f0 [ 353.736563][T11696] should_fail_ex+0x512/0x640 [ 353.736607][T11696] _copy_to_user+0x32/0xd0 [ 353.736646][T11696] simple_read_from_buffer+0xcb/0x170 [ 353.736685][T11696] proc_fail_nth_read+0x197/0x240 [ 353.736712][T11696] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 353.736741][T11696] ? rw_verify_area+0xcf/0x6c0 [ 353.736762][T11696] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 353.736788][T11696] vfs_read+0x1e4/0xcf0 [ 353.736818][T11696] ? __pfx___mutex_lock+0x10/0x10 [ 353.736851][T11696] ? __pfx_vfs_read+0x10/0x10 [ 353.736884][T11696] ? __fget_files+0x20e/0x3c0 [ 353.736906][T11696] ? __print_lock_name+0xc0/0xe0 [ 353.736941][T11696] ksys_read+0x12a/0x250 [ 353.736965][T11696] ? __pfx_ksys_read+0x10/0x10 [ 353.736990][T11696] ? __do_sys_ioprio_set+0x3dd/0xb50 [ 353.737028][T11696] do_syscall_64+0xcd/0xfa0 [ 353.737056][T11696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.737081][T11696] RIP: 0033:0x7f6433d8d9dc [ 353.737100][T11696] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 353.737123][T11696] RSP: 002b:00007f6434c8d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 353.737146][T11696] RAX: ffffffffffffffda RBX: 00007f6433fe5fa0 RCX: 00007f6433d8d9dc [ 353.737162][T11696] RDX: 000000000000000f RSI: 00007f6434c8d0a0 RDI: 0000000000000003 [ 353.737177][T11696] RBP: 00007f6434c8d090 R08: 0000000000000000 R09: 0000000000000000 [ 353.737192][T11696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 353.737206][T11696] R13: 00007f6433fe6038 R14: 00007f6433fe5fa0 R15: 00007ffce91ba328 [ 353.737242][T11696] [ 354.104819][T11708] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 354.774856][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout [ 355.410537][T11741] FAULT_INJECTION: forcing a failure. [ 355.410537][T11741] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 355.429046][T11741] CPU: 0 UID: 0 PID: 11741 Comm: syz.2.1800 Not tainted syzkaller #0 PREEMPT(full) [ 355.429078][T11741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 355.429092][T11741] Call Trace: [ 355.429099][T11741] [ 355.429107][T11741] dump_stack_lvl+0x16c/0x1f0 [ 355.429148][T11741] should_fail_ex+0x512/0x640 [ 355.429187][T11741] should_fail_alloc_page+0xe7/0x130 [ 355.429219][T11741] prepare_alloc_pages+0x3c2/0x610 [ 355.429255][T11741] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 355.429280][T11741] ? process_measurement+0x1e6/0x23e0 [ 355.429318][T11741] ? __lock_acquire+0x622/0x1c90 [ 355.429357][T11741] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 355.429399][T11741] ? find_held_lock+0x2b/0x80 [ 355.429425][T11741] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 355.429463][T11741] ? policy_nodemask+0xea/0x4e0 [ 355.429496][T11741] alloc_pages_mpol+0x1fb/0x550 [ 355.429526][T11741] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 355.429564][T11741] alloc_pages_noprof+0x131/0x390 [ 355.429595][T11741] __pmd_alloc+0x3b/0x8b0 [ 355.429630][T11741] __handle_mm_fault+0xada/0x2aa0 [ 355.429670][T11741] ? mt_find+0x3e2/0xa20 [ 355.429699][T11741] ? __pfx___handle_mm_fault+0x10/0x10 [ 355.429732][T11741] ? __pfx_mt_find+0x10/0x10 [ 355.429776][T11741] ? find_vma+0xbf/0x140 [ 355.429800][T11741] ? __pfx_find_vma+0x10/0x10 [ 355.429831][T11741] handle_mm_fault+0x589/0xd10 [ 355.429866][T11741] ? __pkru_allows_pkey+0x11/0xb0 [ 355.429904][T11741] do_user_addr_fault+0x7a6/0x1370 [ 355.429931][T11741] ? rcu_is_watching+0x12/0xc0 [ 355.429961][T11741] exc_page_fault+0x64/0xc0 [ 355.429988][T11741] asm_exc_page_fault+0x26/0x30 [ 355.430011][T11741] RIP: 0010:__get_user_4+0x14/0x20 [ 355.430043][T11741] Code: 00 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca e9 00 35 04 00 90 90 90 90 90 90 90 90 90 90 [ 355.430067][T11741] RSP: 0018:ffffc90018ed7dd0 EFLAGS: 00050283 [ 355.430088][T11741] RAX: 0000000000000008 RBX: ffff8880299fdac0 RCX: ffffc90018ed7d74 [ 355.430104][T11741] RDX: 00007ffffffff000 RSI: ffffffff82508ec2 RDI: ffffffff8bf07240 [ 355.430120][T11741] RBP: 0000000000000008 R08: edbc7214ceca522d R09: 0000000000000000 [ 355.430135][T11741] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000006 [ 355.430157][T11741] R13: ffff88807c8ca040 R14: 0000000000000000 R15: 7fffffffffffffff [ 355.430185][T11741] ? lookup_ioctx+0x52/0x820 [ 355.430214][T11741] lookup_ioctx+0x5a/0x820 [ 355.430241][T11741] do_io_getevents+0xb4/0x170 [ 355.430270][T11741] __x64_sys_io_pgetevents+0x25a/0x540 [ 355.430299][T11741] ? __pfx___x64_sys_io_pgetevents+0x10/0x10 [ 355.430323][T11741] ? ksys_write+0x1ac/0x250 [ 355.430348][T11741] ? __pfx_ksys_write+0x10/0x10 [ 355.430382][T11741] do_syscall_64+0xcd/0xfa0 [ 355.430409][T11741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 355.430431][T11741] RIP: 0033:0x7f4f0fb8efc9 [ 355.430450][T11741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 355.430472][T11741] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 000000000000014d [ 355.430494][T11741] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 355.430510][T11741] RDX: 0000000000000006 RSI: 000000000000325e RDI: 0000000000000008 [ 355.430524][T11741] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 355.430539][T11741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 355.430552][T11741] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 355.430587][T11741] [ 355.493903][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 355.501431][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout [ 355.573743][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 358.739062][T11788] FAULT_INJECTION: forcing a failure. [ 358.739062][T11788] name failslab, interval 1, probability 0, space 0, times 0 [ 358.766372][T11788] CPU: 0 UID: 0 PID: 11788 Comm: syz.0.1811 Not tainted syzkaller #0 PREEMPT(full) [ 358.766403][T11788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 358.766417][T11788] Call Trace: [ 358.766424][T11788] [ 358.766431][T11788] dump_stack_lvl+0x16c/0x1f0 [ 358.766457][T11788] should_fail_ex+0x512/0x640 [ 358.766484][T11788] ? fs_reclaim_acquire+0xae/0x150 [ 358.766512][T11788] should_failslab+0xc2/0x120 [ 358.766538][T11788] __kmalloc_noprof+0xdd/0x880 [ 358.766570][T11788] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 358.766602][T11788] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 358.766624][T11788] tomoyo_realpath_from_path+0xc2/0x6e0 [ 358.766650][T11788] ? tomoyo_profile+0x47/0x60 [ 358.766679][T11788] tomoyo_path_number_perm+0x245/0x580 [ 358.766715][T11788] ? tomoyo_path_number_perm+0x237/0x580 [ 358.766750][T11788] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 358.766795][T11788] ? find_held_lock+0x2b/0x80 [ 358.766846][T11788] ? find_held_lock+0x2b/0x80 [ 358.766867][T11788] ? hook_file_ioctl_common+0x145/0x410 [ 358.766896][T11788] ? __fget_files+0x20e/0x3c0 [ 358.766925][T11788] security_file_ioctl+0x9b/0x240 [ 358.766949][T11788] __x64_sys_ioctl+0xb7/0x210 [ 358.766984][T11788] do_syscall_64+0xcd/0xfa0 [ 358.767014][T11788] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.767037][T11788] RIP: 0033:0x7fb213d8efc9 [ 358.767057][T11788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 358.767078][T11788] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 358.767101][T11788] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 358.767116][T11788] RDX: 0000000000000000 RSI: 00000000401870c8 RDI: 0000000000000005 [ 358.767130][T11788] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 358.767145][T11788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 358.767159][T11788] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 358.767195][T11788] [ 358.768735][T11788] ERROR: Out of memory at tomoyo_realpath_from_path. [ 358.807351][T11790] random: crng reseeded on system resumption [ 358.994006][T11788] sd 0:0:1:0: PR command failed: 1026 [ 358.999537][T11788] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 359.009657][T11788] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 364.031971][T11819] sd 0:0:1:0: PR command failed: 1026 [ 364.044090][T11819] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 364.050860][T11819] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 364.080054][T11811] zswap: compressor not available [ 364.372931][T11828] FAULT_INJECTION: forcing a failure. [ 364.372931][T11828] name failslab, interval 1, probability 0, space 0, times 0 [ 364.399040][T11828] CPU: 1 UID: 0 PID: 11828 Comm: syz.2.1820 Not tainted syzkaller #0 PREEMPT(full) [ 364.399073][T11828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 364.399086][T11828] Call Trace: [ 364.399094][T11828] [ 364.399103][T11828] dump_stack_lvl+0x16c/0x1f0 [ 364.399136][T11828] should_fail_ex+0x512/0x640 [ 364.399175][T11828] should_failslab+0xc2/0x120 [ 364.399204][T11828] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 364.399229][T11828] ? xas_split_alloc+0x11c/0x490 [ 364.399261][T11828] ? xas_split_alloc+0x11c/0x490 [ 364.399276][T11828] xas_split_alloc+0x11c/0x490 [ 364.399296][T11828] __folio_split+0xd73/0x4d80 [ 364.399327][T11828] ? __pfx_try_to_unmap_one+0x10/0x10 [ 364.399354][T11828] ? __mem_cgroup_try_charge_swap+0x8c/0x400 [ 364.399377][T11828] ? __pfx___folio_split+0x10/0x10 [ 364.399405][T11828] ? folio_alloc_swap+0x8af/0xd00 [ 364.399426][T11828] split_folio_to_list+0x9b/0x180 [ 364.399448][T11828] shmem_writeout+0x42e/0x1140 [ 364.399480][T11828] ? __pfx_shmem_writeout+0x10/0x10 [ 364.399502][T11828] ? __pfx_try_to_unmap+0x10/0x10 [ 364.399523][T11828] ? find_held_lock+0x2b/0x80 [ 364.399538][T11828] ? inode_to_bdi+0x9e/0x160 [ 364.399554][T11828] ? folio_clear_dirty_for_io+0x112/0x790 [ 364.399575][T11828] shrink_folio_list+0x2f45/0x4800 [ 364.399609][T11828] ? __pfx_shrink_folio_list+0x10/0x10 [ 364.399629][T11828] ? __lock_acquire+0x622/0x1c90 [ 364.399657][T11828] ? find_held_lock+0x2b/0x80 [ 364.399672][T11828] ? is_bpf_text_address+0x8a/0x1a0 [ 364.399691][T11828] ? bpf_ksym_find+0x124/0x1c0 [ 364.399727][T11828] reclaim_folio_list+0xda/0x5d0 [ 364.399751][T11828] ? __pfx_reclaim_folio_list+0x10/0x10 [ 364.399780][T11828] ? __lock_acquire+0xb8a/0x1c90 [ 364.399797][T11828] ? css_rstat_updated+0x1c2/0x510 [ 364.399816][T11828] ? do_raw_spin_lock+0x12c/0x2b0 [ 364.399836][T11828] ? lru_gen_del_folio+0x32b/0x540 [ 364.399858][T11828] reclaim_pages+0x3ec/0x570 [ 364.399872][T11828] ? __pfx_reclaim_pages+0x10/0x10 [ 364.399885][T11828] ? madvise_cold_or_pageout_pte_range+0x1e2f/0x20d0 [ 364.399910][T11828] madvise_cold_or_pageout_pte_range+0x14d1/0x20d0 [ 364.399939][T11828] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 364.399960][T11828] ? __lock_acquire+0x622/0x1c90 [ 364.399980][T11828] ? __pfx_stack_trace_save+0x10/0x10 [ 364.399997][T11828] ? stack_depot_save_flags+0x29/0x9c0 [ 364.400019][T11828] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 364.400040][T11828] walk_pgd_range+0xc05/0x1f50 [ 364.400068][T11828] ? __pfx_walk_pgd_range+0x10/0x10 [ 364.400088][T11828] __walk_page_range+0x163/0x820 [ 364.400106][T11828] ? __lock_acquire+0xb8a/0x1c90 [ 364.400128][T11828] walk_page_range_vma+0x2c7/0xa20 [ 364.400146][T11828] ? __pfx_walk_page_range_vma+0x10/0x10 [ 364.400161][T11828] ? find_held_lock+0x2b/0x80 [ 364.400182][T11828] madvise_pageout+0x257/0x540 [ 364.400201][T11828] ? __pfx_madvise_pageout+0x10/0x10 [ 364.400234][T11828] madvise_vma_behavior+0xb14/0x2d50 [ 364.400261][T11828] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 364.400277][T11828] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 364.400297][T11828] ? mas_prev+0x9b/0xf0 [ 364.400312][T11828] ? __pfx_mas_prev+0x10/0x10 [ 364.400332][T11828] ? find_vma_prev+0xd3/0x150 [ 364.400351][T11828] ? __pfx_find_vma_prev+0x10/0x10 [ 364.400375][T11828] ? __lock_acquire+0x622/0x1c90 [ 364.400395][T11828] madvise_walk_vmas+0x31f/0x9c0 [ 364.400418][T11828] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 364.400444][T11828] madvise_do_behavior+0x1e2/0x530 [ 364.400465][T11828] ? __pfx_madvise_do_behavior+0x10/0x10 [ 364.400486][T11828] ? down_read+0x13d/0x480 [ 364.400513][T11828] do_madvise+0x176/0x240 [ 364.400532][T11828] ? __pfx_do_madvise+0x10/0x10 [ 364.400550][T11828] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 364.400572][T11828] ? __fget_files+0x20e/0x3c0 [ 364.400593][T11828] ? syscall_user_dispatch+0x78/0x140 [ 364.400618][T11828] __x64_sys_madvise+0xa9/0x110 [ 364.400638][T11828] do_syscall_64+0xcd/0xfa0 [ 364.400655][T11828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.400669][T11828] RIP: 0033:0x7f4f0fb8efc9 [ 364.400681][T11828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.400694][T11828] RSP: 002b:00007f4f109dc038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 364.400708][T11828] RAX: ffffffffffffffda RBX: 00007f4f0fde5fa0 RCX: 00007f4f0fb8efc9 [ 364.400717][T11828] RDX: 0000000000000015 RSI: 00000000002003f2 RDI: 0000000000000000 [ 364.400726][T11828] RBP: 00007f4f109dc090 R08: 0000000000000000 R09: 0000000000000000 [ 364.400734][T11828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 364.400742][T11828] R13: 00007f4f0fde6038 R14: 00007f4f0fde5fa0 R15: 00007ffecd3cf908 [ 364.400761][T11828] [ 366.031291][T11833] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 366.133421][T11833] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 366.179936][T11833] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 366.227891][T11833] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 366.406897][T11863] FAULT_INJECTION: forcing a failure. [ 366.406897][T11863] name failslab, interval 1, probability 0, space 0, times 0 [ 366.577304][T11863] CPU: 0 UID: 0 PID: 11863 Comm: syz.1.1828 Not tainted syzkaller #0 PREEMPT(full) [ 366.577326][T11863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 366.577345][T11863] Call Trace: [ 366.577350][T11863] [ 366.577356][T11863] dump_stack_lvl+0x16c/0x1f0 [ 366.577377][T11863] should_fail_ex+0x512/0x640 [ 366.577398][T11863] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 366.577416][T11863] should_failslab+0xc2/0x120 [ 366.577435][T11863] kmem_cache_alloc_node_noprof+0x78/0x770 [ 366.577449][T11863] ? __alloc_skb+0x2b2/0x380 [ 366.577474][T11863] ? __alloc_skb+0x2b2/0x380 [ 366.577493][T11863] ? __pfx_netlink_insert+0x10/0x10 [ 366.577506][T11863] __alloc_skb+0x2b2/0x380 [ 366.577526][T11863] ? __pfx___alloc_skb+0x10/0x10 [ 366.577547][T11863] ? netlink_autobind.isra.0+0x158/0x370 [ 366.577566][T11863] netlink_alloc_large_skb+0x69/0x140 [ 366.577582][T11863] netlink_sendmsg+0x698/0xdd0 [ 366.577599][T11863] ? __pfx_netlink_sendmsg+0x10/0x10 [ 366.577615][T11863] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 366.577639][T11863] ____sys_sendmsg+0xa98/0xc70 [ 366.577656][T11863] ? copy_msghdr_from_user+0x10a/0x160 [ 366.577678][T11863] ? __pfx_____sys_sendmsg+0x10/0x10 [ 366.577704][T11863] ___sys_sendmsg+0x134/0x1d0 [ 366.577718][T11863] ? __pfx____sys_sendmsg+0x10/0x10 [ 366.577738][T11863] ? __lock_acquire+0x622/0x1c90 [ 366.577780][T11863] __sys_sendmsg+0x16d/0x220 [ 366.577794][T11863] ? __pfx___sys_sendmsg+0x10/0x10 [ 366.577818][T11863] do_syscall_64+0xcd/0xfa0 [ 366.577835][T11863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 366.577853][T11863] RIP: 0033:0x7f523ab8efc9 [ 366.577865][T11863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 366.577880][T11863] RSP: 002b:00007f523b9bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 366.577894][T11863] RAX: ffffffffffffffda RBX: 00007f523ade5fa0 RCX: 00007f523ab8efc9 [ 366.577903][T11863] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000003 [ 366.577912][T11863] RBP: 00007f523b9bf090 R08: 0000000000000000 R09: 0000000000000000 [ 366.577920][T11863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 366.577928][T11863] R13: 00007f523ade6038 R14: 00007f523ade5fa0 R15: 00007ffcf4605108 [ 366.577947][T11863] [ 367.255215][ T5838] Bluetooth: hci0: command 0x0c1a tx timeout [ 367.316520][T11869] tipc: Started in network mode [ 367.322101][T11869] tipc: Node identity ee00, cluster identity 4711 [ 367.384504][T11869] tipc: Node number set to 60928 [ 367.447567][T11869] delete_channel: no stack [ 368.143477][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout [ 368.178996][T11894] zswap: compressor not available [ 368.216342][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout [ 368.296670][ T5838] Bluetooth: hci3: command 0x0c1a tx timeout [ 369.096088][T11931] FAULT_INJECTION: forcing a failure. [ 369.096088][T11931] name failslab, interval 1, probability 0, space 0, times 0 [ 369.158318][T11931] CPU: 0 UID: 0 PID: 11931 Comm: syz.0.1847 Not tainted syzkaller #0 PREEMPT(full) [ 369.158351][T11931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 369.158365][T11931] Call Trace: [ 369.158373][T11931] [ 369.158383][T11931] dump_stack_lvl+0x16c/0x1f0 [ 369.158422][T11931] should_fail_ex+0x512/0x640 [ 369.158455][T11931] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 369.158484][T11931] should_failslab+0xc2/0x120 [ 369.158515][T11931] kmem_cache_alloc_node_noprof+0x78/0x770 [ 369.158539][T11931] ? __alloc_skb+0x2b2/0x380 [ 369.158579][T11931] ? __alloc_skb+0x2b2/0x380 [ 369.158608][T11931] ? __pfx_netlink_insert+0x10/0x10 [ 369.158630][T11931] __alloc_skb+0x2b2/0x380 [ 369.158663][T11931] ? __pfx___alloc_skb+0x10/0x10 [ 369.158697][T11931] ? netlink_autobind.isra.0+0x158/0x370 [ 369.158731][T11931] netlink_alloc_large_skb+0x69/0x140 [ 369.158758][T11931] netlink_sendmsg+0x698/0xdd0 [ 369.158796][T11931] ? __pfx_netlink_sendmsg+0x10/0x10 [ 369.158825][T11931] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 369.158863][T11931] ____sys_sendmsg+0xa98/0xc70 [ 369.158893][T11931] ? copy_msghdr_from_user+0x10a/0x160 [ 369.158929][T11931] ? __pfx_____sys_sendmsg+0x10/0x10 [ 369.158973][T11931] ___sys_sendmsg+0x134/0x1d0 [ 369.158998][T11931] ? __pfx____sys_sendmsg+0x10/0x10 [ 369.159031][T11931] ? __lock_acquire+0x622/0x1c90 [ 369.159106][T11931] __sys_sendmsg+0x16d/0x220 [ 369.159130][T11931] ? __pfx___sys_sendmsg+0x10/0x10 [ 369.159176][T11931] do_syscall_64+0xcd/0xfa0 [ 369.159204][T11931] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.159228][T11931] RIP: 0033:0x7fb213d8efc9 [ 369.159248][T11931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 369.159271][T11931] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 369.159294][T11931] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 369.159311][T11931] RDX: 0000000000004040 RSI: 0000200000001600 RDI: 0000000000000003 [ 369.159326][T11931] RBP: 00007fb214bb1090 R08: 0000000000000000 R09: 0000000000000000 [ 369.159340][T11931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 369.159354][T11931] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 369.159386][T11931] [ 369.756426][T11924] Process accounting resumed [ 370.048729][T11949] page: refcount:6 mapcount:5 mapping:0000000000000000 index:0x7f0daebe2 pfn:0x78000 [ 370.075066][T11949] flags: 0xfff18000000210(dirty|workingset|node=0|zone=1|lastcpupid=0x7ff) [ 370.092875][T11949] raw: 00fff18000000210 0000000000000000 dead000000000122 0000000000000000 [ 370.119517][T11949] raw: 00000007f0daebe2 0000000000000000 0000000600000004 0000000000000000 [ 370.172282][T11949] page dumped because: unmovable page [ 370.375584][T11949] page_owner tracks the page as allocated [ 370.381505][T11949] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5824, tgid 5824 (syz-executor), ts 77500096982, free_ts 75908455093 [ 370.434973][T11949] post_alloc_hook+0x1c0/0x230 [ 370.473753][T11949] get_page_from_freelist+0x10a3/0x3a30 [ 370.479935][T11949] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 370.495705][T11949] alloc_pages_mpol+0x1fb/0x550 [ 370.500636][T11949] alloc_pages_noprof+0x131/0x390 [ 370.526332][T11949] __vmalloc_node_range_noprof+0x6f8/0x1480 [ 370.558422][T11949] vmalloc_user_noprof+0x9e/0xe0 [ 370.573757][T11949] kcov_ioctl+0x4c/0x730 [ 370.578235][T11949] __x64_sys_ioctl+0x18e/0x210 [ 370.583046][T11949] do_syscall_64+0xcd/0xfa0 [ 370.612978][T11949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.643449][T11949] page last free pid 5817 tgid 5817 stack trace: [ 370.655201][T11949] free_unref_folios+0xa31/0x1610 [ 370.673567][T11949] folios_put_refs+0x4be/0x750 [ 370.680275][T11949] free_pages_and_swap_cache+0x245/0x4a0 [ 370.703742][T11949] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 370.718159][T11949] tlb_finish_mmu+0x168/0x7c0 [ 370.727860][T11949] vms_clear_ptes+0x55e/0x770 [ 370.751232][T11949] vms_complete_munmap_vmas+0x1ca/0x970 [ 370.765630][T11949] do_vmi_align_munmap+0x446/0x7e0 [ 370.776164][T11949] do_vmi_munmap+0x204/0x3e0 [ 370.784301][T11949] __vm_munmap+0x196/0x380 [ 370.817044][T11949] __x64_sys_munmap+0x59/0x80 [ 370.842755][T11949] do_syscall_64+0xcd/0xfa0 [ 370.847829][T11949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.657273][T11995] [ 372.659653][T11995] ====================================================== [ 372.666674][T11995] WARNING: possible circular locking dependency detected [ 372.673789][T11995] syzkaller #0 Not tainted [ 372.678388][T11995] ------------------------------------------------------ [ 372.685422][T11995] syz.0.1864/11995 is trying to acquire lock: [ 372.691500][T11995] ffff88805d869528 (&type->i_mutex_dir_key#6){++++}-{4:4}, at: walk_component+0x345/0x5b0 [ 372.701566][T11995] [ 372.701566][T11995] but task is already holding lock: [ 372.708940][T11995] ffffffff8e281ae8 (param_lock){+.+.}-{4:4}, at: param_attr_store+0xec/0x300 [ 372.717786][T11995] [ 372.717786][T11995] which lock already depends on the new lock. [ 372.717786][T11995] [ 372.728234][T11995] [ 372.728234][T11995] the existing dependency chain (in reverse order) is: [ 372.737385][T11995] [ 372.737385][T11995] -> #3 (param_lock){+.+.}-{4:4}: [ 372.744611][T11995] __mutex_lock+0x193/0x1060 [ 372.749733][T11995] ieee80211_init_rate_ctrl_alg+0x18d/0x6b0 [ 372.756158][T11995] ieee80211_register_hw+0x21b5/0x4120 [ 372.762160][T11995] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 372.768411][T11995] init_mac80211_hwsim+0x44e/0x900 [ 372.774045][T11995] do_one_initcall+0x123/0x6e0 [ 372.779334][T11995] kernel_init_freeable+0x5c8/0x920 [ 372.785055][T11995] kernel_init+0x1c/0x2b0 [ 372.789905][T11995] ret_from_fork+0x675/0x7d0 [ 372.795017][T11995] ret_from_fork_asm+0x1a/0x30 [ 372.800389][T11995] [ 372.800389][T11995] -> #2 (rtnl_mutex){+.+.}-{4:4}: [ 372.807598][T11995] __mutex_lock+0x193/0x1060 [ 372.812706][T11995] cgrp_css_online+0xa2/0x1f0 [ 372.817906][T11995] online_css+0xb2/0x350 [ 372.822673][T11995] cgroup_apply_control_enable+0x702/0xbb0 [ 372.829004][T11995] cgroup_mkdir+0x5e0/0x1310 [ 372.834107][T11995] kernfs_iop_mkdir+0x111/0x190 [ 372.839475][T11995] vfs_mkdir+0x593/0x8c0 [ 372.844236][T11995] do_mkdirat+0x304/0x3e0 [ 372.849078][T11995] __x64_sys_mkdirat+0x83/0xb0 [ 372.854353][T11995] do_syscall_64+0xcd/0xfa0 [ 372.859379][T11995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.865785][T11995] [ 372.865785][T11995] -> #1 (cgroup_mutex){+.+.}-{4:4}: [ 372.873168][T11995] __mutex_lock+0x193/0x1060 [ 372.878280][T11995] cgroup_kn_lock_live+0x116/0x520 [ 372.884007][T11995] cgroup_rmdir+0x20/0x2b0 [ 372.888946][T11995] kernfs_iop_rmdir+0x106/0x170 [ 372.894334][T11995] vfs_rmdir+0x206/0x690 [ 372.899128][T11995] do_rmdir+0x2e8/0x3c0 [ 372.903812][T11995] __x64_sys_rmdir+0xc5/0x110 [ 372.909004][T11995] do_syscall_64+0xcd/0xfa0 [ 372.914023][T11995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.920436][T11995] [ 372.920436][T11995] -> #0 (&type->i_mutex_dir_key#6){++++}-{4:4}: [ 372.928871][T11995] __lock_acquire+0x126f/0x1c90 [ 372.934332][T11995] lock_acquire+0x179/0x350 [ 372.939359][T11995] down_read+0x9b/0x480 [ 372.944033][T11995] walk_component+0x345/0x5b0 [ 372.949222][T11995] path_lookupat+0x142/0x6d0 [ 372.954333][T11995] filename_lookup+0x224/0x5f0 [ 372.959628][T11995] kern_path+0x35/0x50 [ 372.964214][T11995] lookup_bdev+0xd8/0x280 [ 372.969158][T11995] bdev_file_open_by_path+0x82/0x330 [ 372.974956][T11995] block2mtd_setup2+0x317/0xe10 [ 372.980339][T11995] block2mtd_setup+0xbd/0x110 [ 372.985546][T11995] param_attr_store+0x199/0x300 [ 372.990911][T11995] module_attr_store+0x58/0x80 [ 372.996201][T11995] sysfs_kf_write+0xf2/0x150 [ 373.001323][T11995] kernfs_fop_write_iter+0x3af/0x570 [ 373.007130][T11995] vfs_write+0x7d3/0x11d0 [ 373.011972][T11995] ksys_write+0x12a/0x250 [ 373.016815][T11995] do_syscall_64+0xcd/0xfa0 [ 373.021836][T11995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.028246][T11995] [ 373.028246][T11995] other info that might help us debug this: [ 373.028246][T11995] [ 373.038461][T11995] Chain exists of: [ 373.038461][T11995] &type->i_mutex_dir_key#6 --> rtnl_mutex --> param_lock [ 373.038461][T11995] [ 373.051538][T11995] Possible unsafe locking scenario: [ 373.051538][T11995] [ 373.058998][T11995] CPU0 CPU1 [ 373.064369][T11995] ---- ---- [ 373.069730][T11995] lock(param_lock); [ 373.073709][T11995] lock(rtnl_mutex); [ 373.080202][T11995] lock(param_lock); [ 373.086716][T11995] rlock(&type->i_mutex_dir_key#6); [ 373.092019][T11995] [ 373.092019][T11995] *** DEADLOCK *** [ 373.092019][T11995] [ 373.100169][T11995] 5 locks held by syz.0.1864/11995: [ 373.105373][T11995] #0: ffff8880330af0b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 373.114431][T11995] #1: ffff8880350e2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 373.123411][T11995] #2: ffff88805eebec88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 373.133172][T11995] #3: ffff88814d2c5698 (kn->active#4){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 373.143120][T11995] #4: ffffffff8e281ae8 (param_lock){+.+.}-{4:4}, at: param_attr_store+0xec/0x300 [ 373.152359][T11995] [ 373.152359][T11995] stack backtrace: [ 373.158238][T11995] CPU: 0 UID: 0 PID: 11995 Comm: syz.0.1864 Not tainted syzkaller #0 PREEMPT(full) [ 373.158263][T11995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 373.158275][T11995] Call Trace: [ 373.158284][T11995] [ 373.158292][T11995] dump_stack_lvl+0x116/0x1f0 [ 373.158322][T11995] print_circular_bug+0x275/0x350 [ 373.158349][T11995] check_noncircular+0x14c/0x170 [ 373.158375][T11995] __lock_acquire+0x126f/0x1c90 [ 373.158404][T11995] lock_acquire+0x179/0x350 [ 373.158428][T11995] ? walk_component+0x345/0x5b0 [ 373.158447][T11995] ? __pfx___might_resched+0x10/0x10 [ 373.158467][T11995] ? __d_lookup+0x25c/0x4a0 [ 373.158495][T11995] down_read+0x9b/0x480 [ 373.158517][T11995] ? walk_component+0x345/0x5b0 [ 373.158533][T11995] ? __d_lookup+0x266/0x4a0 [ 373.158558][T11995] ? __pfx_down_read+0x10/0x10 [ 373.158582][T11995] ? lookup_fast+0x156/0x610 [ 373.158600][T11995] walk_component+0x345/0x5b0 [ 373.158617][T11995] path_lookupat+0x142/0x6d0 [ 373.158637][T11995] filename_lookup+0x224/0x5f0 [ 373.158656][T11995] ? __pfx_filename_lookup+0x10/0x10 [ 373.158684][T11995] ? getname_kernel+0x52/0x370 [ 373.158709][T11995] ? __asan_memcpy+0x3c/0x60 [ 373.158729][T11995] kern_path+0x35/0x50 [ 373.158747][T11995] lookup_bdev+0xd8/0x280 [ 373.158780][T11995] ? __pfx_lookup_bdev+0x10/0x10 [ 373.158810][T11995] bdev_file_open_by_path+0x82/0x330 [ 373.158829][T11995] ? __pfx_bdev_file_open_by_path+0x10/0x10 [ 373.158851][T11995] block2mtd_setup2+0x317/0xe10 [ 373.158880][T11995] ? __pfx_block2mtd_setup2+0x10/0x10 [ 373.158906][T11995] ? __pfx___mutex_trylock_common+0x10/0x10 [ 373.158934][T11995] ? trace_contention_end+0xdd/0x130 [ 373.158970][T11995] block2mtd_setup+0xbd/0x110 [ 373.158996][T11995] param_attr_store+0x199/0x300 [ 373.159017][T11995] ? __pfx_param_attr_store+0x10/0x10 [ 373.159037][T11995] module_attr_store+0x58/0x80 [ 373.159053][T11995] ? __pfx_module_attr_store+0x10/0x10 [ 373.159071][T11995] sysfs_kf_write+0xf2/0x150 [ 373.159092][T11995] kernfs_fop_write_iter+0x3af/0x570 [ 373.159121][T11995] ? __pfx_sysfs_kf_write+0x10/0x10 [ 373.159142][T11995] vfs_write+0x7d3/0x11d0 [ 373.159162][T11995] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 373.159192][T11995] ? __pfx___mutex_lock+0x10/0x10 [ 373.159213][T11995] ? __pfx_vfs_write+0x10/0x10 [ 373.159239][T11995] ksys_write+0x12a/0x250 [ 373.159259][T11995] ? __pfx_ksys_write+0x10/0x10 [ 373.159282][T11995] do_syscall_64+0xcd/0xfa0 [ 373.159303][T11995] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.159328][T11995] RIP: 0033:0x7fb213d8efc9 [ 373.159344][T11995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.159363][T11995] RSP: 002b:00007fb214bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 373.159382][T11995] RAX: ffffffffffffffda RBX: 00007fb213fe5fa0 RCX: 00007fb213d8efc9 [ 373.159396][T11995] RDX: 0000000000000025 RSI: 0000200000000000 RDI: 0000000000000003 [ 373.159408][T11995] RBP: 00007fb213e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 373.159420][T11995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.159432][T11995] R13: 00007fb213fe6038 R14: 00007fb213fe5fa0 R15: 00007ffeb8a01bd8 [ 373.159450][T11995] [ 373.200774][T11999] random: crng reseeded on system resumption [ 373.453504][T11995] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 373.460979][T11999] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 373.515419][T11999] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 373.556675][T11999] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 373.565102][T11999] PM: hibernation: Basic memory bitmaps created [ 373.790963][T12002] PM: hibernation: Basic memory bitmaps freed [ 373.798710][T12002] caif:caif_disconnect_client(): nothing to disconnect [ 378.535118][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.541426][ T1302] ieee802154 phy1 wpan1: encryption failed: -22