last executing test programs: 6.543145187s ago: executing program 3 (id=1328): r0 = socket(0x11, 0x80003, 0x300) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4004) (async) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) (async) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) recvmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000280)="29e1aaa159073ab307bc28043c6c03d38eaf990935e2a7a291ee0c3a216e0f493104de31e9fcfe6fac37d57d60647a55da479cb431313185555a88c7b9b942822409274aa2ba3a6dcc15b9d61c041859296aa754ed480e2620fc5621f70768e5f5c82b3931da74c04c87b83c16c0fb62f609d59383a4b4bf851162d50cba40ea58183483cdd8d362f386811b79b529acaaabab6aaa3f1cc9e78e01ea0777394b72bcc4ee015c7a2c8f3b45943efa29a6ef03620e096d8b99649048ad9b858617e7f3dca6f41fc4879ff6b893c3bf10a6a080455093c92a3b2ccaa76b27024ab4", 0xa4000, &(0x7f00000000c0)={&(0x7f0000000040)="9e4e947c786b76d84a4b905f080cd594217946cc0b99ef5f923c75532ec1ea51e1ee48094a2c", 0x4a80}, 0x3, &(0x7f0000000380)="b1440caab9e3d66a826fccd75aa9fba706b227253b8cdafc152900d6a27021555f15690b56af436d4de406a0f462d06db92ed42248c55ea0e0086b0242e39ad15c2983971f1ef14e09f866739bc16e6776bd84952cc5bf48316489be5ac4508cc6e733747ae15f110de4959df958940e912db6146c2d7029d454d533f7b2db99bb1f5e38871ef40c", 0x8, 0x2}, 0x9}, 0x0, 0x8, &(0x7f0000000180)={0x8000000000000001, 0xb}) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r2 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r2, 0x0, 0x8fb5) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/ping_group_range\x00', 0x202, 0x0) sendfile$auto(r3, r3, 0x0, 0x2) (async, rerun: 32) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) (async, rerun: 32) close_range$auto(0x2, 0xa, 0x0) (async, rerun: 64) socket(0xa, 0x2, 0x0) (async, rerun: 64) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) 6.54204405s ago: executing program 0 (id=1329): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000040)={0x6, "03be47074e4c00f2734bd6832a39f499851551030cbb6dec0c11e3019b1fa087", @inferred=0xffffffffffffffff}) r1 = socket(0x2, 0x1, 0x0) setsockopt$auto_SO_INCOMING_CPU(r1, 0x6, 0x31, &(0x7f0000000040)='[\x00', 0xb22) ioctl$auto_SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000100)="7750d0370e974fce0444daeba036ca51186c9ab7a4b1ed7996d8ce684d0cd3ab1619ee5e9446ad98153b4a345781895999c48d8f86dae276f9e210b875feacd193c9129ba77b2c517416b7db4038af8d72cc281687e8c0ef63e7eb31984297f9a17e2e031b30c6be0f551ea82667a67887feb6e627bc6d60c8fe646671d0ec67e431634a6e947c72f60d0ca8") ioctl$auto(0x3, 0x400454ca, 0x38) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x80000, 0x0) socket(0x10, 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101840, 0x0) socketpair$auto(0x1e, 0x8, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0xfffffdf2) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r3, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x9, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4788, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908288a8"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) setsockopt$auto_SO_ATTACH_FILTER(r2, 0x2, 0x1a, &(0x7f0000000080)='/sys/devices/virtual/net/sit0/ifindex\x00', 0x7) 6.266829937s ago: executing program 1 (id=1330): syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r1, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9}) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x24000090}, 0x1) io_uring_setup$auto(0x6, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = semctl$auto_GETPID(0xb, 0x1, 0xb, 0x3) migrate_pages$auto(r2, 0x8000000000000001, &(0x7f00000001c0)=0x2, &(0x7f0000000200)=0x9) mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/make-it-fail\x00', 0x40002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xa800, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, 0x0, 0xd) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x800, 0x4) ioctl$auto_TCSBRK2(r4, 0x5409, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) open(&(0x7f0000000000)='./file0\x00', 0x1c3300, 0x96) 5.579572923s ago: executing program 0 (id=1331): keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0) keyctl$auto(0x8, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6) socket(0x11, 0x80003, 0x300) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4004) r0 = socket(0x11, 0x5, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) prctl$auto(0x5, 0x1, 0x0, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r1 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r1, 0x0, 0x8fb5) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) setuid$auto(0xe) keyctl$auto(0x7, 0xfffffffb, 0x2, 0x3e, 0x8) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0) r2 = fsmount$auto(0xffffffffffffffff, 0x8, 0x6) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r2) sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(r2, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB="0000a4ff0c3a35cc021f9f92d3ae6178f6cfa746f6c495b79c7c076fead5028e1b36f0e944e36fb5f869cc9ae7e1cf04229ac0fe794c460151721f4f41217d240190ad0aba918700e399b5e6ca4fb889dc3ce96810f1030b42978cf621bb62d5e6c0cd9bd164c9733032450f5ec25e2ade03f0b6ce40c5fcab9fc5", @ANYRES16=r3, @ANYBLOB="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"], 0x6e0}, 0x1, 0x0, 0x0, 0x10}, 0x800) 5.080656896s ago: executing program 3 (id=1332): openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x41180, 0x0) r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x20080, 0x0) mmap$auto(0x800000, 0x7, 0x1ac, 0x8000000008011, r0, 0x80000000) r1 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0) read$auto_l2cap_debugfs_fops_(0xffffffffffffffff, &(0x7f0000000180)=""/139, 0x8b) write$auto_dynamic_events_ops_trace_dynevent(r1, &(0x7f0000000040)='e:\ru', 0x4) r2 = landlock_create_ruleset$auto(&(0x7f0000000080)={0x0, 0x5, 0x7}, 0x1, 0x9) r3 = clone3$auto(&(0x7f0000000100)={0x7, 0x5, 0x8, 0x6, 0x10001, 0x2, 0x0, 0x1, 0x1, 0x7, 0x4}, 0x0) capget$auto(&(0x7f0000000240)={0x2, r3}, &(0x7f0000000280)={0x5, 0x6, 0x40}) ioctl$auto_TUNSETPERSIST(r2, 0x400454cb, &(0x7f00000000c0)=0x9) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) write$auto(0x3, 0x0, 0x800) 4.635156576s ago: executing program 1 (id=1333): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async) unshare$auto(0x40000080) (async) mmap$auto(0x0, 0x200, 0x4000000000df, 0x551e, 0xffffffffffffffff, 0xff) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(r0, 0xc0104d08, 0xffffffffffffffff) (async) mmap$auto(0x800, 0x400008, 0x1, 0x9b71, r0, 0x3) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) (async) ioctl$auto(0x3, 0x2284, 0x38) (async) write$auto(r1, &(0x7f00000001c0)='\x00\x00\x00\x00', 0x100000a3db) (async) mremap$auto(0x4, 0x4000007, 0x3fd7, 0x0, 0x7fffffffffffffff) process_vm_readv$auto(0x0, &(0x7f0000000280)={0x0, 0x7}, 0xda, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) lseek$auto(0x3, 0x8, 0x1) 4.388320805s ago: executing program 0 (id=1334): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0xe00, 0x0) sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_FLUSH(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001900)=ANY=[@ANYBLOB="042b0000", @ANYRES16, @ANYBLOB="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", @ANYRES32, @ANYBLOB="040011800800b20010000000040006800400c58000000028040580af00dc80040056004f51569fdf6032876a3785b1794ce570446bbc540979f9b302debc3d2de2c10c694d41eb5fb432e53daad8608cc6b32de50a266e340ea052675aaba2f1aa4fd70e9424813f9a900dd3da41422675d94abd65c57993bdad7647bc0f6652581bb568112a803ddf4899cdff7dce6050fe5949ee5b08001600", @ANYBLOB="0700f4002c280000040033800400978014004f0000000000000000000000ffff6401010108001800", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="04005280246b7a"], 0x2b04}, 0x1, 0x0, 0x0, 0x1051}, 0x44844) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x74140, 0x22) read$auto(r2, 0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) keyctl$auto_KEYCTL_GET_PERSISTENT(0x16, 0x0, 0x7fffffffffffffff, 0xffffffffffffe6d6, 0x2) sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000a00)=ANY=[@ANYBLOB="9c05", @ANYRES16=0x0, @ANYBLOB="000126bd7000ffdbdf254b0000001c00e70020351644513a7bd458eecf3c840963a2350f2330419c3c40a4009d008182b2cd99554eee70979c47af537a163f65a1a5cb0dc88f31513db86fd3a37f30698be457c216b4fda8d1986eeb32c4a53d14b7071a97be6bf915335d252f3574037f42a59949294dcb3117f7ae7159f7b33e69dc43f14e7a478ad496538bad7d729784d9f4a723dcfa63ac419991a0ae", @ANYRES32=0x0, @ANYBLOB="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"], 0x59c}, 0x1, 0x0, 0x0, 0x20040084}, 0x20000000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card1/pcm0p/sub0/xrun_injection\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x8, 0x7fff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x866d, 0x7fff, 0x9) madvise$auto(0x0, 0x20499d, 0x9) 3.875586982s ago: executing program 3 (id=1336): r0 = ioctl$auto_TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, &(0x7f0000000000)=0x2) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000240)="4c0c5800000000000004", 0x49}, 0x4, &(0x7f0000000180), 0x5, 0x11}, 0x5}, 0x80000002, 0x100) mmap$auto(0x6, 0x10000002020009, 0x3, 0xeb7, r0, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume_offset\x00', 0x828100, 0x0) socket(0xa, 0x2, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x33, 0x0, 0x20056b) read$auto(r2, 0x0, 0x20) madvise$auto(0x0, 0x240007, 0x19) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/phram/parameters/phram\x00', 0x4a481, 0x0) write$auto(r3, &(0x7f0000000040)='7\x02\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) sysfs$auto(0x2, 0x10000000000002a, 0x0) r4 = socket(0x2c, 0x4, 0xffffffff) getsockopt$auto(r4, 0x0, 0x484, 0x0, 0x0) madvise$auto(0x80000003, 0x6, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) 3.680585481s ago: executing program 2 (id=1337): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) r0 = io_uring_setup$auto(0x3ff, 0x0) acct$auto(&(0x7f0000000100)='/dev/snd/controlC1\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r1) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_PLCA_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x885}, 0x8008040) mmap$auto(0x0, 0x800400b, 0x2000000329, 0x2000000010012, r0, 0x8000) ioctl$auto_FS_IOC_SETFLAGS2(r0, 0x40086602, &(0x7f0000000000)=0xebf0) close_range$auto(0x2, 0x8, 0x0) mknod$auto(&(0x7f0000000140)='./cgroup.cpu/cpuset.cpus\x00', 0xcb, 0xfffffffa) fanotify_mark$auto(0xffffffffffffffff, 0xac, 0x5, 0xffffffffffffffff, 0x0) r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x2000, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r3, 0xc4c85512, &(0x7f00000006c0)={{@raw=0x1, 0x2, 0x2, 0x1, "162629e6b2259bee9878f8e7b039aa20b33e487d34917b4a9acce903cb72dd4cd8dde6d41c914d63af7a9de9", @raw}, 0x0, @integer=@value=[0x400000000006, 0x6, 0x179, 0xfffffffffffff8ad, 0x5, 0x7, 0x89, 0x8, 0x4, 0x7, 0x6, 0x7, 0x100000001, 0x3, 0x7, 0x8, 0x81, 0x9f, 0x8, 0xd, 0xb1, 0x0, 0x3, 0x8, 0x2, 0x10001, 0x1, 0x80100000, 0x8000, 0xffffffff8db4d983, 0x0, 0xee7c, 0xf, 0xfffffffffffffffe, 0x4, 0x1, 0x3, 0x9, 0x804, 0x7, 0x3, 0x4f3, 0xc, 0x4, 0xe02, 0x0, 0xe4, 0x9, 0x6, 0x81, 0x401, 0x3, 0xa, 0x0, 0x400000000000006, 0x800, 0x0, 0x7, 0x101, 0x82, 0xc9d, 0x401, 0x9, 0x5, 0x640c, 0x3, 0x1000, 0xff, 0x201, 0x0, 0xec31, 0x9, 0x1ff, 0x0, 0xfff0000000000000, 0x4, 0xbd2a, 0x903, 0x7, 0x7fffffffffffffff, 0x1, 0x1, 0xfffffffffffffffe, 0x0, 0x7eda8566, 0x7, 0x7fffffffffffffff, 0x7, 0x401, 0xfffffffffffffff7, 0x8, 0x14000000000000, 0x6, 0xfffffffffffffffe, 0x0, 0x9, 0x8000000000000001, 0x5, 0x5, 0x1, 0x40, 0x1, 0x7, 0x2, 0x3, 0x8, 0x1f, 0x8001, 0xc13, 0x800000000000006, 0xbf5, 0x2, 0xff, 0x7, 0xf, 0xe0, 0x3, 0x8, 0x3, 0x7fffffff, 0x6, 0x2, 0x2, 0xa, 0x5, 0x1, 0x100, 0xffff], "54a5f1d1dd2f17b169e8263c3a740d6611142f4b3c69d0f6e967c91125d235ac53e1b00d9fddc53d8f56969329274a57d5f4213fb46616a4faa700873d91426befc561500a5391d522c480bd37f8e7f0050cedfc627c6702978a8f018ad9a7b04711dc3a5c6a755e7a506645ea28e2baa4a6786ca43b3d5d976157eb07c3cdb8"}) r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), r1) sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, r4, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x7}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x0) r5 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) ftruncate$auto(r5, 0xe15) close_range$auto(r5, r5, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video52\x00', 0x6aa01, 0x0) ioctl$auto(r5, 0xc0585611, r5) 3.473919199s ago: executing program 2 (id=1338): close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x88880, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(r0, 0x0, 0x200) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/sound/seq/uevent\x00', 0x8500, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/4096, 0x1000) write$auto(0x3, 0x0, 0xffd8) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x1ffde, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_TIOCGICOUNT(0xffffffffffffffff, 0x545d, &(0x7f0000000080)="dfa8fd1fe5189b202c610230153ca3e96971004211d5fddd0f24926a01209ecfc2c73cec443cfa74752e75c905b5dc992d86cb603a04536c6519b516e48c02bffd6a36aee57b5982654e3911c7f983488f9edda4a1162092c1acbd166aa75694ec") bind$auto(0x3, &(0x7f0000000000)=@nl, 0x68) mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYRES64=r2], 0x1ac}}, 0x40000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(r3, 0x7a4, 0x0) r4 = setfsuid$auto(0xee00) setreuid$auto(r4, 0x0) r5 = getegid() r6 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f0000000280)={@siginfo_0_0={0x6a9, 0x0, 0x6a25, @_sigsys={0x0, 0x100, 0xfffffff8}}}, 0x23, &(0x7f0000000440)={{0xffff, 0x1ff}, {0x8, 0xc5e}, 0xffffffff80000000, 0x3, 0x8854, 0xf9, 0xffffffffffffffff, 0x5, 0x6274, 0x6, 0x0, 0xb, 0x35d, 0x439c, 0x9, 0x7}) shmctl$auto_SHM_STAT_ANY(0x0, 0xf, &(0x7f00000006c0)={{0x7, r4, r5, 0x4, 0x6, 0x81, 0x48d}, 0x1, 0x5, 0x8, 0x2, @inferred=r6, @raw=0x5, 0x5, 0x0, &(0x7f0000000500), 0x0}) fchown$auto(r3, 0x0, r5) fsconfig$auto(0xffffffffffffffff, 0x0, 0x0, 0x0, r5) ioctl$auto_EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000001100)={r5, 0x2, 0x6ddb, 0xffff, 0xc, 0x2}) r7 = socket(0x15, 0x3de52da5b87f29f, 0x5) sendmmsg$auto(r7, &(0x7f0000000200)={{0x0, 0xfc, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0x3}, 0x800}, 0x7, 0x4008) 3.441439575s ago: executing program 1 (id=1339): r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async, rerun: 32) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) (rerun: 32) getrlimit$auto(0x3, 0x0) (async) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram1\x00', 0x6281, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(0x3, 0x0, 0x1) mmap$auto(0x0, 0x5810, 0xffb, 0x8000000008011, 0x3, 0x0) (async, rerun: 64) ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0) (async, rerun: 64) close_range$auto(r0, r0, 0x0) (async) mmap$auto(0x0, 0x2, 0xe2, 0x9b72, r0, 0x28000) (async) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async, rerun: 64) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) (rerun: 64) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) (async) lseek$auto(0x3, 0xffffffffff800002, 0x10) (async) ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0) (async, rerun: 64) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8) (rerun: 64) unshare$auto(0x40000080) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1) (async, rerun: 64) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0) (rerun: 64) 3.093959173s ago: executing program 2 (id=1340): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:480/min_ratio_fine\x00', 0x2062, 0x0) r1 = socket(0xa, 0x801, 0x84) getsockopt$auto_SO_TIMESTAMPING_NEW(r1, 0x0, 0x41, 0x0, &(0x7f00000000c0)=0xffff) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r2, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/irq/default_smp_affinity\x00', 0x2, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xc642, 0x0) write$auto(0x3, 0x0, 0xfffffdef) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x0, 0x0) read$auto_tomoyo_operations_securityfs_if(r3, &(0x7f0000000040)=""/4099, 0xfd98) madvise$auto(0x0, 0x200007, 0x19) pread64$auto(r0, &(0x7f0000000500)='*#\x00', 0x7f, 0x437bd615) 3.081616523s ago: executing program 3 (id=1341): syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x2000, 0x0) ioctl$auto_EVIOCGMASK(r1, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9}) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x24000090}, 0x1) io_uring_setup$auto(0x6, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = semctl$auto_GETPID(0xb, 0x1, 0xb, 0x3) migrate_pages$auto(r2, 0x8000000000000001, &(0x7f00000001c0)=0x2, &(0x7f0000000200)=0x9) mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/make-it-fail\x00', 0x40002, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xa800, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, 0x0, 0xd) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x800, 0x4) ioctl$auto_TCSBRK2(r4, 0x5409, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) open(&(0x7f0000000000)='./file0\x00', 0x1c3300, 0x96) 2.500495573s ago: executing program 1 (id=1342): r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mem\x00', 0x0, 0x0) recvmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000040)="6597495f39f2980357e1716f33abcea0078b7d45627ad6e84cec7a", 0x7, &(0x7f0000000100)={&(0x7f0000000080)="d95ee932f7d6d7275d083f71c9d78277eb5bd6f26b2dbfff9c6081a921709fa234b0475f7c9e526b490d3fc288c54e655f65455b8c00863ed9d6efac8f838385cb90acbfff2f6f6edbf8e9fd50399d0119", 0x9}, 0x10000, &(0x7f0000000140)="ca7610a1ab6c0617ab328800a309b5a1a559bdb6350cabe3b31793ba074091c134ce8510b5ea3d9f2e51de567408b155ade0b5f88108d954636a9f171508f0443e29dfb3be4ed8e92380a08e3a7c5d608cc31c2c", 0x7, 0x6}, 0x3}, 0x7, 0x101, &(0x7f0000000200)={0x7, 0xf62}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop12\x00', 0x1, 0x0) r1 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x7, 0x3, 0x0, 0x7, 0x8000) fcntl$auto_F_DUPFD_CLOEXEC(r1, 0x406, r0) readlink$auto(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)=')F[\x00', 0x400) r2 = bpf$auto_BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000300)=@query={@target_fd=r0, 0xe0, 0x6, 0x2, 0x6, @count=0x1, 0x0, 0x7, 0x8, 0x9}, 0x6) r4 = seccomp$auto_SECCOMP_SET_MODE_FILTER(0x1, 0xffffffff, &(0x7f00000003c0)="f350c883b399d166eddfc6cd14ec02900f402037f8963c31cc0d8bae4901d234434e778205f7a2bea50165dc5c28e0153c1f549ebf7557ae3e9024e60cdfc187b1b61f05ce94306753b68901f4043537f337a5d77c6562ebda04d0d2011cea5c4129589249352eaf955d53b0edb279249a5984bfa27721aa42033cb923d53916b64063b5cb7d63dbcc1348a66d058e1754247017300de29345f0accd3394fc7c67d4d36841d0bea988f348feaf174334f859a1929a1ac5d5be3f01c2") r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000004c0), r1) sendmsg$auto_NL80211_CMD_DEL_PMK(r4, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x2c, r5, 0x600, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_SEQ={0xc, 0xa, "0732fd7281d0dccc"}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x3ff}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008005}, 0x400c840) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000600), r2) sendmsg$auto_SEG6_CMD_DUMPHMAC(r6, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000700)={&(0x7f0000000640)={0xac, r7, 0x20, 0xfe, 0x25dfdbfc, {}, [@SEG6_ATTR_SECRET={0x74, 0x4, "25043c6e4157922136fe6764613a88d59df9ec295c98b11c6e1b5741f00aa3cd54e3926bcc1051728520c4ddef3e48f1b8be485ff1a57c6fe96044db8a0ff564f05be87582ecb29c2b99b3a7f62a5b927d89e335843e90f74d738a0757312e93f07633b9b5175d87768686032342d543"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0xe}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_HMACINFO={0x4}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x6}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x9}]}, 0xac}}, 0x8000) mlock$auto(0x5, 0x1) r8 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f00000007c0), r6) sendmsg$auto_NLBL_MGMT_C_REMOVE(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x1c, r8, 0x4, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x0) r9 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000008c0)='/dev/snd/midiC2D1\x00', 0x240401, 0x0) r10 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000940), r3) sendmsg$auto_MAC802154_HWSIM_CMD_DEL_EDGE(r4, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x14, r10, 0x8, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x10) setsockopt$auto(r1, 0x5, 0x8, &(0x7f0000000a40)='/dev/snd/midiC2D1\x00', 0x714d) mmap$auto(0x3113, 0x0, 0x7ff, 0x7f, r3, 0x9) poll$auto(&(0x7f0000000a80)={r0, 0x4, 0xbdf8}, 0x0, 0x1) ioctl$auto_USBDEVFS_SUBMITURB(r11, 0x8038550a, &(0x7f0000000c40)={0xf2, 0x9, 0xd8, 0x2, &(0x7f0000000ac0)="b7610e1cb9b9c6efbbad81342f9f2c375654900d608eb536ca834af94d815d5a41f862c03dca41f8785a2076326c75eac3e1449b6768d61d39a37390add91b3503bf4e16100cf492dcda1eb7290f117853feaa4ba6a3", 0x3ff, 0xffff, 0x8, @stream_id=0x108f, 0x4, 0xffffffff, &(0x7f0000000b40)="c3abe253c744d68c4cd564f7d49fb6091f89894f87f7f6c790bdebdd66cf24c87a4beb883bdda4bf1e101e7043eb51e38d196f8612c3991711339c86fafd2366e8d1e094a42229716d88a71cb81716be7b0be94a1c6efcf6a6e9911527e08940831fc5928701d35b72d51b4ede2326fd1919e98cac1636863f8cd871ac6d0d267aec24c04976cbac31f07c88f969f9a072ba518d51044dcf39d010bdd3c5e777347d724a6bc862a4c6abfddb0c30ef422547b436dd1898f545eb0f3dba3c8a5e5f05a501b01ac503f4989bdb", [{0xf97, 0xff, 0x1}, {0x6, 0x7, 0x887}, {0x3746, 0x4, 0xd}, {0x7, 0xc1}, {0x30000000, 0x400}]}) ioctl$auto_TIOCCONS2(r11, 0x541d, &(0x7f0000000cc0)="5de9c0288ae2732264e6fe430af8222e33dd2d6dbd7cd3ab1b12cfb9aa6bcb72202ec22da7434326486b5dd464bff6f4e754baa2213067e145e2ae6bca883e06bfa4db54d3287193e7dbe3c10225ad73eedd6435c4a6569d745037") openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000d40), 0x10002, 0x0) r12 = fcntl$getown(r11, 0x9) r13 = waitid$auto_P_PGID(0x2, r12, &(0x7f0000000d80)={@_si_pad}, 0xd, &(0x7f0000000e00)={{0x6, 0x5}, {0x7ff, 0x4}, 0x8, 0x8826, 0xf, 0x7fffffffffffffff, 0xfffffffffffffffa, 0x2, 0x6, 0x81, 0x1, 0x1, 0x0, 0x2, 0x7f, 0xb72}) msgctl$auto(0x8, 0x6, &(0x7f0000000f40)={{0x2, 0xee01, 0xee01, 0x200, 0x6, 0x18, 0x7fff}, &(0x7f0000000ec0)=0x3, &(0x7f0000000f00)=0x7, 0x5, 0xfffffffffffffffe, 0x7, 0x7, 0x8001, 0x6, 0x3, 0xfff9, @inferred=r13, @inferred=r13}) rt_sigqueueinfo$auto(r12, 0xd, &(0x7f0000000fc0)={@siginfo_0_0={0x8, 0x6, 0x7fffffff, @_sigchld={r13, r14, 0x0, 0x91c, 0x3}}}) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000001040)=@task_fd_query={r12, r9, 0x6, 0x1ff, 0x8, 0x5, 0xffffffffffffffff, 0x8000000000000000, 0x8}, 0x400) 2.461823986s ago: executing program 0 (id=1343): bpf$auto(0x1, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0xffffffffffffffff, 0x80000001}, 0x350) mmap$auto(0xfffffffffffffffe, 0xa, 0x4000400002, 0x40eb1, r0, 0x300000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2, 0x5, 0x104) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) fanotify_init$auto(0x65, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x2aa82, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, 0x0, 0x14) pread64$auto(0xffffffffffffffff, 0x0, 0x682c3390, 0x1) r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r5, 0x4, 0x7) ptrace$auto_PTRACE_SETREGSET(0x4205, r5, 0x1, 0x9) close_range$auto(0x2, 0x8, 0x0) r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r6) ioctl$auto_KVM_CREATE_VM(r4, 0x4018aee3, 0x88) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(r2, 0x0, 0x9) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x1000, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x5, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) 2.225028717s ago: executing program 1 (id=1344): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/misc/hw_random/rng_quality\x00', 0xa001, 0x0) write$auto(r0, &(0x7f0000000000)='/sys/devices/virtual/sound/ctl-led/speaker/card2/detach\x00', 0x7fffffff) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) socket(0x29, 0x800, 0x2) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r3 = getpid() mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) write$auto(r4, &(0x7f0000000000)='//\xf2\x00', 0x80000000) prctl$auto(0x1, 0x6, r3, 0xb117, 0x9) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) read$auto_fragmentation_threshold_ops_(r2, &(0x7f00000000c0)=""/118, 0x76) msync$auto(0x0, 0xe0, 0x6) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x401, 0x15) pread64$auto(0xffffffffffffffff, &(0x7f0000000000)='\x00\x80_\x93gX\x90\x8cA;O0\x03\xcab\xa6\x8bU/t\xc5', 0xd56c, 0xa84) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) 1.400805189s ago: executing program 2 (id=1345): openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x41180, 0x0) r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x20080, 0x0) mmap$auto(0x800000, 0x7, 0x1ac, 0x8000000008011, r0, 0x80000000) r1 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0) read$auto_l2cap_debugfs_fops_(0xffffffffffffffff, &(0x7f0000000180)=""/139, 0x8b) write$auto_dynamic_events_ops_trace_dynevent(r1, &(0x7f0000000040)='e:\ru', 0x4) r2 = landlock_create_ruleset$auto(&(0x7f0000000080)={0x0, 0x5, 0x7}, 0x1, 0x9) r3 = clone3$auto(&(0x7f0000000100)={0x7, 0x5, 0x8, 0x6, 0x10001, 0x2, 0x0, 0x1, 0x1, 0x7, 0x4}, 0x0) capget$auto(&(0x7f0000000240)={0x2, r3}, &(0x7f0000000280)={0x5, 0x6, 0x40}) ioctl$auto_TUNSETPERSIST(r2, 0x400454cb, &(0x7f00000000c0)=0x9) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0) socket(0x10, 0x2, 0x6) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) write$auto(0x3, 0x0, 0x800) 1.10518639s ago: executing program 0 (id=1346): mmap$auto(0x401000000000, 0x40000004020009, 0x6, 0x14, 0x401, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x181400, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) (async) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') (async) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto(0x3, 0xc0086202, r1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x1e, 0x4, 0x0) r4 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) (async) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14) (async) setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x800000000000001, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) (async) r5 = prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) mmap$auto(0x0, 0xc, 0x5, 0x16, r5, 0x6) (async) mmap$auto(0x0, 0xc, 0x5, 0x16, r5, 0x6) bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000440)=@bpf_attr_0={0x9a, 0x4, 0x2, 0x3, 0x7eb, r2, 0x5, "e03f43000b26d5ea743998fb57339a75", 0x0, r3, 0x9, 0x3, 0x6, 0xfffffffffffffff3, r3, r3}, 0x7ff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r6) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) (async) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) 980.811092ms ago: executing program 3 (id=1347): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\x83\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\x8ev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)\x17\xbby\xe5\xc4w\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0Z>\xe1=\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x00'/192, 0x107, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r0, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x24, r1, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000014}, 0x400c810) symlink$auto(&(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000040)='}[,&*}\x00') r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) sendfile$auto(r2, r2, 0x0, 0x2) statfs$auto(&(0x7f0000000180)='}[,&*}\x00', &(0x7f00000001c0)={0x8, 0x2, 0x9, 0x3, 0x4, 0x7ff, 0x8000000000000001, {[0x6, 0x3]}, 0x9a, 0x7, 0x0, [0x8, 0x9, 0x6269, 0xfffffffffffffffa]}) 600.947481ms ago: executing program 3 (id=1348): mmap$auto(0x0, 0x6, 0xe0, 0x9b72, 0x2, 0x8002) r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid$auto(0x0, 0x594d0417, 0x0, 0x1000004, &(0x7f0000000080)={{0x20000009, 0x4}, {0x4, 0xfffffffffffffff9}, 0x3ff, 0x281, 0x8000000000000000, 0xffffffffffffffff, 0x7f, 0x9, 0x1, 0x0, 0x4, 0x8000, 0x2, 0x6, 0x8, 0x12}) mmap$auto(0x0, 0x400005, 0x40000000000df, 0x9b72, 0x2, 0x8000) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/ip6_tables_matches\x00', 0x20000, 0x0) r1 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000000000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) r2 = socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x4, 0x0, 0x29, 0x0, 0x0, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto_FS_IOC_UNRESVSP64(r1, 0x4030582b, 0x4) r3 = getpid() process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0x20000001002}, 0x1, &(0x7f0000000040)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0) rename$auto(0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x20, &(0x7f0000000080)={0x0, 0xfffc}, 0x4, 0x0, 0x5, 0x20b}, 0xfff}, 0x8, 0x311) ioctl$auto(r0, 0x541b, r0) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0) r5 = syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_MAC802154_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a8020000", @ANYRES16=r5, @ANYRES32=r4], 0x2a8}}, 0x40000) sendmsg$auto_NL80211_CMD_SET_CQM(r0, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000200)=ANY=[@ANYBLOB="00f20000000000000000040000000000", @ANYRES16=0x0, @ANYBLOB="100025bd7000fbdbdf253f0000000400870005007400020000000b001800f5d341ab3f91fc00"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000800) sendfile$auto(r4, r4, 0x0, 0x9) fanotify_mark$auto(0xffffffffffffffff, 0x72d, 0x800, 0xffffffffffffffff, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) 523.605432ms ago: executing program 0 (id=1349): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x3, 0x87) close_range$auto(0x2, 0xa, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2) mq_notify$auto(r1, &(0x7f00000000c0)={@sival_ptr=0x0, @inferred=r0, 0x2, @_sigev_thread={0x0, 0x0}}) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r4 = openat$auto_fake_panic_fops_(0xffffffffffffff9c, &(0x7f0000002bc0), 0x8000, 0x0) readv$auto(r4, &(0x7f0000002c80)={&(0x7f0000002c00), 0x1}, 0x6) getsockopt$auto_SO_ZEROCOPY(r3, 0x7, 0x3c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', &(0x7f0000000080)=0x8) openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000001c0), 0x709802, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) ioctl$auto(0x4000000000000c8, 0x400454cc, 0x6f) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/dummy0/ifalias\x00', 0x8041, 0x0) write$auto(r5, &(0x7f0000000500)='%[.[`T\n&\xc1\x1e\xae\xb8\xd7\x95\x17\xa3\x7f\xa3\xa7\xf2M\xd1(h\xa51T\x9fQG0\xe8\xd1\xd7m\xafF\x04\"h\xd8\x10\f)\x7f\x83\xcc\xb4\xa4:R\f\xe7\xe6\xb1I\x03\x9a\xca\x8f\x8c\xbb\xe1*\x9d\x11\x9a\x04F9\"\xe3\xc2\x0f\xc5\xcf\x0f\xb1,w\xfe\x06h\xff\x03\x00\x00E\x8b}\xa2\xb9g\xa3\xbe|l3\xda\x9bzl\x8c\x8b\xce\x12*=`\x11\xef2\xf3 \xec\xbe:h\x9e\xc8\xf1\x15\xfa\x90\x9d\xeec\xbf\xf9\xf2\xcc\xf5\xa3F\xc2', 0x6) open(&(0x7f0000000140)='./file0\x00', 0x1acc0, 0xc8) execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000080)) mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) 471.332154ms ago: executing program 2 (id=1350): arch_prctl$auto_ARCH_GET_GS(0x1004, 0x6) openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000) mq_timedsend$auto(0xffffffffffffffff, &(0x7f0000000040)='@*!:}\xc1-.!\\u\x95E\x97\',-\x00', 0x2, 0x4, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x0, 0x0) ioctl$auto(r0, 0x901064b2, 0x2) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1800"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x2020009, 0x7, 0xeb2, 0xfffffffffffffffa, 0x0) io_uring_setup$auto(0x7, 0x0) socket(0x2d, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/blkio.bfq.weight\x00', 0x321401, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) semctl$auto(0x1ff, 0x2, 0x13, 0x1) setsockopt$auto(0x3, 0x10000000084, 0x82, 0x0, 0x5) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socketpair$auto(0x409, 0x5, 0xffffffff, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0182, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xc048aeca, 0x0) 14.961528ms ago: executing program 1 (id=1351): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0xe00, 0x0) sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_FLUSH(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001900)=ANY=[@ANYBLOB="042b0000", @ANYRES16, @ANYBLOB="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", @ANYRES32, @ANYBLOB="040011800800b20010000000040006800400c58000000028040580af00dc80040056004f51569fdf6032876a3785b1794ce570446bbc540979f9b302debc3d2de2c10c694d41eb5fb432e53daad8608cc6b32de50a266e340ea052675aaba2f1aa4fd70e9424813f9a900dd3da41422675d94abd65c57993bdad7647bc0f6652581bb568112a803ddf4899cdff7dce6050fe5949ee5b08001600", @ANYBLOB="0700f4002c280000040033800400978014004f0000000000000000000000ffff6401010108001800", @ANYRES32, @ANYBLOB="00d400f280cc000e001f75e24af5f8cf0dc6c45b31c1cc0052e6d853f47cfe16f0c0a35256fb3cf1ae2a0c57cdcbf6640ca2de0a68c388d29f5f5a9db39e0104df66fdf1ed2edfdfd1a696651aac00f8df6826bbbf10e992c0ae6321024f699d7d9db1a277ec405c7e8ed8e061e4c7e9ce657d2827f3e5ff98b8f12c94fcfea0025ef80922e107b24b683a1c936123c04fa94baf952aa74ce9871171386a435f8d2fdaa5d91d9ce861cf98c205b58f73d3a896cf8329efc477f532ff75831f9f1d2feaa2b247c9234a3e82fc3ad71bfdaa040082800800380002000000080041800400c28037012880517f86a2385b23ae0213e6f24115c850255fc427b76455f48a7a80986ecc06464a0c1adbf3376f702c55b476921b7e8b8f5c1402ac9ab03d507a8a580fcbbbd75a37c45432882507ff45bb447dcbf3039d3d1e59d1f45a6cad95f47f11000400b3803600b0002f7379732f646576696365732f7669727475616c2f626c6f636b2f6c6f6f70312f696e746567726974792f666f726d61740000000400d18008005100040000000800e8", @ANYRES32, @ANYBLOB="04005280246b7a"], 0x2b04}, 0x1, 0x0, 0x0, 0x1051}, 0x44844) openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x74140, 0x22) read$auto(r2, 0x0, 0x4) close_range$auto(0x2, 0x8, 0x0) keyctl$auto_KEYCTL_GET_PERSISTENT(0x16, 0x0, 0x7fffffffffffffff, 0xffffffffffffe6d6, 0x2) sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000a00)=ANY=[@ANYBLOB="9c05", @ANYRES16=0x0, @ANYBLOB="000126bd7000ffdbdf254b0000001c00e70020351644513a7bd458eecf3c840963a2350f2330419c3c40a4009d008182b2cd99554eee70979c47af537a163f65a1a5cb0dc88f31513db86fd3a37f30698be457c216b4fda8d1986eeb32c4a53d14b7071a97be6bf915335d252f3574037f42a59949294dcb3117f7ae7159f7b33e69dc43f14e7a478ad496538bad7d729784d9f4a723dcfa63ac419991a0ae", @ANYRES32=0x0, @ANYBLOB="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"], 0x59c}, 0x1, 0x0, 0x0, 0x20040084}, 0x20000000) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card1/pcm0p/sub0/xrun_injection\x00', 0x0, 0x0) pread64$auto(r3, 0x0, 0x8, 0x7fff) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x866d, 0x7fff, 0x9) madvise$auto(0x0, 0x20499d, 0x9) 0s ago: executing program 2 (id=1352): ioctl$auto_XFS_IOC_READLINK_BY_HANDLE(0xffffffffffffffff, 0xc038586c, &(0x7f0000000280)={0xffffffffffffffff, &(0x7f0000000100)="36382843cbf647a308387752cf206143902799f714d3da792af73a2f51252c2924ba2758ab0a48d458fbe6a143f7d73b7035e954be54776dfb99d2e4055cbc993ef0467a8d1339bfea", 0xfd, 0x0, 0x1ff, 0x0, 0x0}) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(r1, r0, 0x9) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xbc}) (async) socket(0x10, 0x3, 0xb) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x2, 0x3, 0x100) (async, rerun: 32) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 32) sysfs$auto(0x5, 0x9, 0xfffffffffffffffc) (async, rerun: 64) close_range$auto(0x0, 0xfffffffffffff000, 0x0) (async, rerun: 64) r3 = pipe2$auto(0x0, 0x80) ioctl$auto(r3, 0x5761, r0) (async) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x60d02, 0x0) write$auto(0x3, 0x0, 0xfdef) mknod$auto(&(0x7f0000000900)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x4, 0x407) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async, rerun: 64) socket(0xa, 0xa, 0x84) (async, rerun: 64) getsockopt$auto(r0, 0x84, 0x81, 0x0, &(0x7f00000000c0)=0x3) lstat$auto(&(0x7f0000000540)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto(0x3, 0x5420, 0x38) (async) r5 = socket(0x29, 0x2, 0x0) setsockopt$auto(r5, 0x119, 0xfffffffe, 0x0, 0x8) read$auto(r4, 0x0, 0x73) (async) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) kernel console output (not intermixed with test programs): .011551][ T9027] ? kmem_cache_alloc_noprof+0x2a1/0x6e0 [ 307.011575][ T9027] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 307.011598][ T9027] ? acpi_ut_create_thread_state+0x6d/0x170 [ 307.011646][ T9027] acpi_ps_parse_aml+0x817/0x1170 [ 307.011692][ T9027] acpi_ps_execute_method+0x5c4/0xe90 [ 307.011725][ T9027] acpi_ns_evaluate+0x98c/0x16d0 [ 307.011758][ T9027] acpi_evaluate_object+0x4ca/0xdf0 [ 307.011800][ T9027] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 307.011836][ T9027] ? __mutex_trylock_common+0xe9/0x250 [ 307.011877][ T9027] acpi_evaluate_integer+0xdd/0x200 [ 307.011906][ T9027] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 307.011957][ T9027] ? __pfx_status_show+0x10/0x10 [ 307.011992][ T9027] status_show+0xa0/0x120 [ 307.012026][ T9027] ? __pfx_status_show+0x10/0x10 [ 307.012068][ T9027] dev_attr_show+0x56/0xe0 [ 307.012107][ T9027] ? __pfx_dev_attr_show+0x10/0x10 [ 307.012141][ T9027] sysfs_kf_seq_show+0x216/0x3e0 [ 307.012176][ T9027] seq_read_iter+0x50e/0x12d0 [ 307.012227][ T9027] kernfs_fop_read_iter+0x46c/0x610 [ 307.012251][ T9027] ? rw_verify_area+0xcf/0x6c0 [ 307.012277][ T9027] vfs_read+0x8bf/0xcf0 [ 307.012306][ T9027] ? __pfx___mutex_lock+0x10/0x10 [ 307.012339][ T9027] ? __pfx_vfs_read+0x10/0x10 [ 307.012385][ T9027] ksys_read+0x12a/0x250 [ 307.012410][ T9027] ? __pfx_ksys_read+0x10/0x10 [ 307.012445][ T9027] do_syscall_64+0xcd/0xfa0 [ 307.012476][ T9027] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.012503][ T9027] RIP: 0033:0x7f15fc98f749 [ 307.012528][ T9027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.012551][ T9027] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 307.012573][ T9027] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 307.012588][ T9027] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 307.012602][ T9027] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 307.012616][ T9027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.012629][ T9027] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 307.012662][ T9027] [ 307.012703][ T9027] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250807/psparse-529) [ 307.366260][ T9025] block nbd8: NBD_DISCONNECT [ 307.881017][ T9039] program syz.0.638 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 312.378233][ T9107] FAULT_INJECTION: forcing a failure. [ 312.378233][ T9107] name failslab, interval 1, probability 0, space 0, times 0 [ 312.407320][ T9107] CPU: 1 UID: 0 PID: 9107 Comm: syz.0.657 Not tainted syzkaller #0 PREEMPT(full) [ 312.407365][ T9107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 312.407385][ T9107] Call Trace: [ 312.407396][ T9107] [ 312.407409][ T9107] dump_stack_lvl+0x16c/0x1f0 [ 312.407465][ T9107] should_fail_ex+0x512/0x640 [ 312.407519][ T9107] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 312.407559][ T9107] should_failslab+0xc2/0x120 [ 312.407605][ T9107] kmem_cache_alloc_noprof+0x75/0x6e0 [ 312.407639][ T9107] ? ima_d_path+0xbd/0x2a0 [ 312.407677][ T9107] ? ima_d_path+0xbd/0x2a0 [ 312.407704][ T9107] ima_d_path+0xbd/0x2a0 [ 312.407732][ T9107] ? vfs_getxattr_alloc+0xec/0x350 [ 312.407766][ T9107] ? __pfx_ima_d_path+0x10/0x10 [ 312.407804][ T9107] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 312.407863][ T9107] process_measurement+0x1d86/0x23e0 [ 312.407925][ T9107] ? __mutex_trylock_common+0xe9/0x250 [ 312.407974][ T9107] ? __pfx_process_measurement+0x10/0x10 [ 312.408026][ T9107] ? __pfx___might_resched+0x10/0x10 [ 312.408062][ T9107] ? rcu_is_watching+0x12/0xc0 [ 312.408096][ T9107] ? trace_contention_end+0xdd/0x130 [ 312.408148][ T9107] ? tracing_open_file_tr+0x1c9/0x230 [ 312.408235][ T9107] ? inode_to_bdi+0x9e/0x160 [ 312.408281][ T9107] ima_file_check+0xc5/0x110 [ 312.408335][ T9107] ? __pfx_ima_file_check+0x10/0x10 [ 312.408396][ T9107] security_file_post_open+0x8e/0x210 [ 312.408432][ T9107] path_openat+0x1404/0x2cb0 [ 312.408492][ T9107] ? __pfx_path_openat+0x10/0x10 [ 312.408532][ T9107] ? __lock_acquire+0xb8a/0x1c90 [ 312.408582][ T9107] do_filp_open+0x20b/0x470 [ 312.408619][ T9107] ? __pfx_do_filp_open+0x10/0x10 [ 312.408688][ T9107] ? alloc_fd+0x471/0x7d0 [ 312.408732][ T9107] do_sys_openat2+0x11b/0x1d0 [ 312.408781][ T9107] ? __pfx_do_sys_openat2+0x10/0x10 [ 312.408849][ T9107] __x64_sys_openat+0x174/0x210 [ 312.408899][ T9107] ? __pfx___x64_sys_openat+0x10/0x10 [ 312.408968][ T9107] do_syscall_64+0xcd/0xfa0 [ 312.409013][ T9107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.409047][ T9107] RIP: 0033:0x7f15fc98f749 [ 312.409074][ T9107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 312.409106][ T9107] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 312.409138][ T9107] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 312.409158][ T9107] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 312.409178][ T9107] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 312.409197][ T9107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 312.409216][ T9107] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 312.409261][ T9107] [ 313.003038][ T9113] netlink: 8 bytes leftover after parsing attributes in process `syz.3.658'. [ 313.383222][ T9116] netlink: 'syz.0.659': attribute type 1 has an invalid length. [ 314.150131][ T9087] Process accounting paused [ 314.450235][ T9129] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 314.452562][ T9128] ima: policy update failed [ 314.479582][ T30] audit: type=1802 audit(1763816430.006:11): pid=9128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.663" res=0 errno=0 [ 314.905202][ T9150] device-mapper: ioctl: Invalid ioctl structure: name þÿÿÿÿÿÿÿ, dev 4 [ 315.597633][ T9158] program syz.2.660 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 316.796295][ T9181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.674'. [ 318.255262][ T9200] futex_wake_op: syz.2.678 tries to shift op by -2048; fix this program [ 318.264395][ T9200] futex_wake_op: syz.2.678 tries to shift op by -2048; fix this program [ 318.279874][ T9200] delete_channel: no stack [ 318.879781][ T9206] device-mapper: ioctl: Invalid ioctl structure: name þÿÿÿÿÿÿÿ, dev 4 [ 319.873799][ T9209] Invalid ELF header magic: != ELF [ 320.762126][ T9234] netlink: 8 bytes leftover after parsing attributes in process `syz.2.690'. [ 321.069934][ T9243] FAULT_INJECTION: forcing a failure. [ 321.069934][ T9243] name failslab, interval 1, probability 0, space 0, times 0 [ 321.107276][ T9243] CPU: 1 UID: 0 PID: 9243 Comm: syz.0.692 Not tainted syzkaller #0 PREEMPT(full) [ 321.107323][ T9243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 321.107345][ T9243] Call Trace: [ 321.107356][ T9243] [ 321.107369][ T9243] dump_stack_lvl+0x16c/0x1f0 [ 321.107418][ T9243] should_fail_ex+0x512/0x640 [ 321.107484][ T9243] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 321.107523][ T9243] should_failslab+0xc2/0x120 [ 321.107568][ T9243] kmem_cache_alloc_noprof+0x75/0x6e0 [ 321.107603][ T9243] ? ima_d_path+0xbd/0x2a0 [ 321.107641][ T9243] ? ima_d_path+0xbd/0x2a0 [ 321.107669][ T9243] ima_d_path+0xbd/0x2a0 [ 321.107697][ T9243] ? vfs_getxattr_alloc+0xec/0x350 [ 321.107732][ T9243] ? __pfx_ima_d_path+0x10/0x10 [ 321.107771][ T9243] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 321.107827][ T9243] process_measurement+0x1d86/0x23e0 [ 321.107887][ T9243] ? __mutex_trylock_common+0xe9/0x250 [ 321.107935][ T9243] ? __pfx_process_measurement+0x10/0x10 [ 321.107987][ T9243] ? __pfx___might_resched+0x10/0x10 [ 321.108024][ T9243] ? rcu_is_watching+0x12/0xc0 [ 321.108058][ T9243] ? trace_contention_end+0xdd/0x130 [ 321.108111][ T9243] ? tracing_open_file_tr+0x1c9/0x230 [ 321.108221][ T9243] ? inode_to_bdi+0x9e/0x160 [ 321.108270][ T9243] ima_file_check+0xc5/0x110 [ 321.108319][ T9243] ? __pfx_ima_file_check+0x10/0x10 [ 321.108380][ T9243] security_file_post_open+0x8e/0x210 [ 321.108416][ T9243] path_openat+0x1404/0x2cb0 [ 321.108476][ T9243] ? __pfx_path_openat+0x10/0x10 [ 321.108517][ T9243] ? __lock_acquire+0xb8a/0x1c90 [ 321.108567][ T9243] do_filp_open+0x20b/0x470 [ 321.108606][ T9243] ? __pfx_do_filp_open+0x10/0x10 [ 321.108675][ T9243] ? alloc_fd+0x471/0x7d0 [ 321.108721][ T9243] do_sys_openat2+0x11b/0x1d0 [ 321.108768][ T9243] ? __pfx_do_sys_openat2+0x10/0x10 [ 321.108835][ T9243] __x64_sys_openat+0x174/0x210 [ 321.108886][ T9243] ? __pfx___x64_sys_openat+0x10/0x10 [ 321.108954][ T9243] do_syscall_64+0xcd/0xfa0 [ 321.108996][ T9243] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.109026][ T9243] RIP: 0033:0x7f15fc98f749 [ 321.109054][ T9243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.109086][ T9243] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 321.109118][ T9243] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 321.109140][ T9243] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 321.109160][ T9243] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 321.109179][ T9243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.109199][ T9243] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 321.109245][ T9243] [ 322.688278][ T9257] device-mapper: ioctl: Invalid ioctl structure: name þÿÿÿÿÿÿÿ, dev 4 [ 323.308025][ T9276] netlink: 'syz.0.698': attribute type 1 has an invalid length. [ 323.762130][ T9291] tipc: Can't bind to reserved service type 0 [ 323.779658][ T9291] netlink: 330 bytes leftover after parsing attributes in process `syz.2.701'. [ 323.840328][ T9291] : renamed from vlan0 (while UP) [ 323.863530][ T9291] : entered allmulticast mode [ 323.891991][ T9291] veth0_vlan: entered allmulticast mode [ 324.718260][ T9302] delete_channel: no stack [ 325.062080][ T9325] Unable to find swap-space signature [ 325.099588][ T5149] Bluetooth: hci3: unexpected event 0x14 length: 16 > 6 [ 325.246012][ T9330] FAULT_INJECTION: forcing a failure. [ 325.246012][ T9330] name failslab, interval 1, probability 0, space 0, times 0 [ 325.278159][ T9330] CPU: 0 UID: 0 PID: 9330 Comm: syz.1.716 Not tainted syzkaller #0 PREEMPT(full) [ 325.278205][ T9330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 325.278224][ T9330] Call Trace: [ 325.278236][ T9330] [ 325.278247][ T9330] dump_stack_lvl+0x16c/0x1f0 [ 325.278296][ T9330] should_fail_ex+0x512/0x640 [ 325.278346][ T9330] ? __kmalloc_noprof+0xca/0x880 [ 325.278404][ T9330] should_failslab+0xc2/0x120 [ 325.278448][ T9330] __kmalloc_noprof+0xdd/0x880 [ 325.278501][ T9330] ? __asan_memcpy+0x3c/0x60 [ 325.278533][ T9330] ? handler_new_ref+0x1b0/0xc60 [ 325.278584][ T9330] ? handler_new_ref+0x1b0/0xc60 [ 325.278625][ T9330] handler_new_ref+0x1b0/0xc60 [ 325.278680][ T9330] v4l2_ctrl_new+0x196c/0x2190 [ 325.278742][ T9330] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 325.278786][ T9330] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 325.278842][ T9330] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 325.278903][ T9330] v4l2_ctrl_new_std+0x1be/0x290 [ 325.278963][ T9330] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 325.279008][ T9330] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 325.279058][ T9330] ? trace_kmalloc+0x2b/0xd0 [ 325.279115][ T9330] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 325.279168][ T9330] ? media_request_object_init+0x100/0x180 [ 325.279212][ T9330] vicodec_open+0x1d9/0xf70 [ 325.279247][ T9330] ? kobject_get_unless_zero+0x156/0x1e0 [ 325.279304][ T9330] v4l2_open+0x1d2/0x5e0 [ 325.279343][ T9330] ? __pfx_v4l2_open+0x10/0x10 [ 325.279380][ T9330] chrdev_open+0x234/0x6a0 [ 325.279419][ T9330] ? __pfx_apparmor_file_open+0x10/0x10 [ 325.279470][ T9330] ? __pfx_chrdev_open+0x10/0x10 [ 325.279514][ T9330] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 325.279562][ T9330] do_dentry_open+0x982/0x1530 [ 325.279602][ T9330] ? __pfx_chrdev_open+0x10/0x10 [ 325.279659][ T9330] vfs_open+0x82/0x3f0 [ 325.279713][ T9330] path_openat+0x1de4/0x2cb0 [ 325.279767][ T9330] ? __pfx_path_openat+0x10/0x10 [ 325.279808][ T9330] ? __lock_acquire+0xb8a/0x1c90 [ 325.279858][ T9330] do_filp_open+0x20b/0x470 [ 325.279896][ T9330] ? __pfx_do_filp_open+0x10/0x10 [ 325.279966][ T9330] ? alloc_fd+0x471/0x7d0 [ 325.280014][ T9330] do_sys_openat2+0x11b/0x1d0 [ 325.280070][ T9330] ? __pfx_do_sys_openat2+0x10/0x10 [ 325.280139][ T9330] __x64_sys_openat+0x174/0x210 [ 325.280191][ T9330] ? __pfx___x64_sys_openat+0x10/0x10 [ 325.280259][ T9330] do_syscall_64+0xcd/0xfa0 [ 325.280305][ T9330] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.280338][ T9330] RIP: 0033:0x7f42f638f749 [ 325.280364][ T9330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.280397][ T9330] RSP: 002b:00007f42f724c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 325.280428][ T9330] RAX: ffffffffffffffda RBX: 00007f42f65e5fa0 RCX: 00007f42f638f749 [ 325.280451][ T9330] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 325.280472][ T9330] RBP: 00007f42f6413f91 R08: 0000000000000000 R09: 0000000000000000 [ 325.280493][ T9330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.280513][ T9330] R13: 00007f42f65e6038 R14: 00007f42f65e5fa0 R15: 00007ffe69fdc7e8 [ 325.280559][ T9330] [ 328.098415][ T9369] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 328.140244][ T9371] vhci_hcd: invalid port number 16 [ 328.145452][ T9371] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 328.650383][ T9376] random: crng reseeded on system resumption [ 329.390148][ T9387] kfence: disabled [ 329.433681][ T9387] kfence: re-enabled [ 330.173791][ T9415] FAULT_INJECTION: forcing a failure. [ 330.173791][ T9415] name failslab, interval 1, probability 0, space 0, times 0 [ 330.297890][ T9415] CPU: 1 UID: 0 PID: 9415 Comm: syz.2.736 Not tainted syzkaller #0 PREEMPT(full) [ 330.297935][ T9415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 330.297956][ T9415] Call Trace: [ 330.297966][ T9415] [ 330.297979][ T9415] dump_stack_lvl+0x16c/0x1f0 [ 330.298026][ T9415] should_fail_ex+0x512/0x640 [ 330.298076][ T9415] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 330.298118][ T9415] should_failslab+0xc2/0x120 [ 330.298163][ T9415] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 330.298195][ T9415] ? do_raw_spin_unlock+0x172/0x230 [ 330.298229][ T9415] ? shmem_alloc_inode+0x25/0x50 [ 330.298275][ T9415] ? __pfx_shmem_alloc_inode+0x10/0x10 [ 330.298311][ T9415] ? shmem_alloc_inode+0x25/0x50 [ 330.298346][ T9415] shmem_alloc_inode+0x25/0x50 [ 330.298383][ T9415] alloc_inode+0x64/0x240 [ 330.298422][ T9415] new_inode+0x22/0x1c0 [ 330.298464][ T9415] shmem_get_inode+0x19a/0xfb0 [ 330.298511][ T9415] shmem_mknod+0x1a8/0x450 [ 330.298556][ T9415] vfs_mknod+0x5da/0x8e0 [ 330.298606][ T9415] do_mknodat+0x30f/0x5d0 [ 330.298640][ T9415] ? __pfx_do_mknodat+0x10/0x10 [ 330.298668][ T9415] ? getname_flags.part.0+0x1c5/0x550 [ 330.298718][ T9415] __x64_sys_mknod+0x87/0xb0 [ 330.298752][ T9415] do_syscall_64+0xcd/0xfa0 [ 330.298790][ T9415] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.298819][ T9415] RIP: 0033:0x7efe4b98f749 [ 330.298851][ T9415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.298884][ T9415] RSP: 002b:00007efe49bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 330.298911][ T9415] RAX: ffffffffffffffda RBX: 00007efe4bbe6090 RCX: 00007efe4b98f749 [ 330.298930][ T9415] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 330.298949][ T9415] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 330.298966][ T9415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 330.298983][ T9415] R13: 00007efe4bbe6128 R14: 00007efe4bbe6090 R15: 00007fff256d9e08 [ 330.299021][ T9415] [ 331.828869][ T9442] futex_wake_op: syz.2.743 tries to shift op by -2048; fix this program [ 332.126839][ T9453] FAULT_INJECTION: forcing a failure. [ 332.126839][ T9453] name failslab, interval 1, probability 0, space 0, times 0 [ 332.156733][ T9453] CPU: 1 UID: 0 PID: 9453 Comm: syz.2.747 Not tainted syzkaller #0 PREEMPT(full) [ 332.156776][ T9453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 332.156797][ T9453] Call Trace: [ 332.156808][ T9453] [ 332.156820][ T9453] dump_stack_lvl+0x16c/0x1f0 [ 332.156868][ T9453] should_fail_ex+0x512/0x640 [ 332.156917][ T9453] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 332.156957][ T9453] should_failslab+0xc2/0x120 [ 332.157000][ T9453] kmem_cache_alloc_noprof+0x75/0x6e0 [ 332.157047][ T9453] ? ima_d_path+0xbd/0x2a0 [ 332.157083][ T9453] ? ima_d_path+0xbd/0x2a0 [ 332.157111][ T9453] ima_d_path+0xbd/0x2a0 [ 332.157141][ T9453] ? vfs_getxattr_alloc+0xec/0x350 [ 332.157177][ T9453] ? __pfx_ima_d_path+0x10/0x10 [ 332.157214][ T9453] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 332.157272][ T9453] process_measurement+0x1d86/0x23e0 [ 332.157333][ T9453] ? __mutex_trylock_common+0xe9/0x250 [ 332.157378][ T9453] ? __pfx_process_measurement+0x10/0x10 [ 332.157429][ T9453] ? __pfx___might_resched+0x10/0x10 [ 332.157466][ T9453] ? rcu_is_watching+0x12/0xc0 [ 332.157502][ T9453] ? trace_contention_end+0xdd/0x130 [ 332.157552][ T9453] ? tracing_open_file_tr+0x1c9/0x230 [ 332.157638][ T9453] ? inode_to_bdi+0x9e/0x160 [ 332.157684][ T9453] ima_file_check+0xc5/0x110 [ 332.157731][ T9453] ? __pfx_ima_file_check+0x10/0x10 [ 332.157791][ T9453] security_file_post_open+0x8e/0x210 [ 332.157827][ T9453] path_openat+0x1404/0x2cb0 [ 332.157878][ T9453] ? __pfx_path_openat+0x10/0x10 [ 332.157917][ T9453] ? __lock_acquire+0xb8a/0x1c90 [ 332.157965][ T9453] do_filp_open+0x20b/0x470 [ 332.158001][ T9453] ? __pfx_do_filp_open+0x10/0x10 [ 332.158078][ T9453] ? alloc_fd+0x471/0x7d0 [ 332.158124][ T9453] do_sys_openat2+0x11b/0x1d0 [ 332.158173][ T9453] ? __pfx_do_sys_openat2+0x10/0x10 [ 332.158239][ T9453] __x64_sys_openat+0x174/0x210 [ 332.158289][ T9453] ? __pfx___x64_sys_openat+0x10/0x10 [ 332.158358][ T9453] do_syscall_64+0xcd/0xfa0 [ 332.158402][ T9453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.158437][ T9453] RIP: 0033:0x7efe4b98f749 [ 332.158464][ T9453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.158496][ T9453] RSP: 002b:00007efe4c758038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 332.158528][ T9453] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa0 RCX: 00007efe4b98f749 [ 332.158549][ T9453] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 332.158570][ T9453] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 332.158589][ T9453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.158608][ T9453] R13: 00007efe4bbe6038 R14: 00007efe4bbe5fa0 R15: 00007fff256d9e08 [ 332.158653][ T9453] [ 332.800837][ T9466] cifs: Unknown parameter '‰ƒ´' [ 333.485924][ T9491] cgroup: fork rejected by pids controller in /syz2 [ 335.593403][ T30] audit: type=1800 audit(1763816451.116:12): pid=9579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.772" name="secretmem" dev="secretmem" ino=30395 res=0 errno=0 [ 336.092229][ T5149] Bluetooth: hci0: unexpected event 0x18 length: 440 > 23 [ 336.272330][ T9609] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13 [ 336.623182][ T9611] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 337.348091][ T9611] random: crng reseeded on system resumption [ 337.687460][ T9632] random: crng reseeded on system resumption [ 338.056405][ T9636] FAULT_INJECTION: forcing a failure. [ 338.056405][ T9636] name failslab, interval 1, probability 0, space 0, times 0 [ 338.128051][ T9636] CPU: 0 UID: 0 PID: 9636 Comm: syz.0.793 Not tainted syzkaller #0 PREEMPT(full) [ 338.128097][ T9636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.128116][ T9636] Call Trace: [ 338.128127][ T9636] [ 338.128140][ T9636] dump_stack_lvl+0x16c/0x1f0 [ 338.128186][ T9636] should_fail_ex+0x512/0x640 [ 338.128243][ T9636] should_failslab+0xc2/0x120 [ 338.128290][ T9636] kmem_cache_alloc_node_noprof+0x78/0x770 [ 338.128327][ T9636] ? zswap_store+0x850/0x2830 [ 338.128365][ T9636] ? zswap_store+0x850/0x2830 [ 338.128394][ T9636] zswap_store+0x850/0x2830 [ 338.128443][ T9636] ? __pfx_zswap_store+0x10/0x10 [ 338.128475][ T9636] ? folio_free_swap+0x141/0x4b0 [ 338.128520][ T9636] ? do_raw_spin_unlock+0x172/0x230 [ 338.128552][ T9636] ? _raw_spin_unlock+0x28/0x50 [ 338.128595][ T9636] ? folio_free_swap+0x19d/0x4b0 [ 338.128637][ T9636] ? __pfx_try_to_unmap+0x10/0x10 [ 338.128674][ T9636] swap_writeout+0x3f4/0x1090 [ 338.128737][ T9636] shrink_folio_list+0x3e50/0x4800 [ 338.128805][ T9636] ? __pfx_shrink_folio_list+0x10/0x10 [ 338.128862][ T9636] ? debug_objects_fill_pool+0x4c0/0x520 [ 338.128912][ T9636] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 338.129020][ T9636] ? mark_held_locks+0x49/0x80 [ 338.129063][ T9636] ? finish_task_switch.isra.0+0x221/0xc10 [ 338.129102][ T9636] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 338.129142][ T9636] reclaim_folio_list+0xda/0x5d0 [ 338.129191][ T9636] ? __pfx_css_rstat_updated+0x10/0x10 [ 338.129236][ T9636] ? __pfx_reclaim_folio_list+0x10/0x10 [ 338.129306][ T9636] ? lru_gen_update_size+0x543/0xe10 [ 338.129368][ T9636] ? lru_gen_del_folio+0x32b/0x540 [ 338.129423][ T9636] reclaim_pages+0x3ec/0x570 [ 338.129459][ T9636] ? __pfx_reclaim_pages+0x10/0x10 [ 338.129487][ T9636] ? find_held_lock+0x2b/0x80 [ 338.129522][ T9636] ? madvise_cold_or_pageout_pte_range+0x73e/0x20d0 [ 338.129586][ T9636] madvise_cold_or_pageout_pte_range+0x14e5/0x20d0 [ 338.129656][ T9636] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 338.129718][ T9636] ? css_rstat_updated+0x1c2/0x510 [ 338.129758][ T9636] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 338.129807][ T9636] walk_pgd_range+0xc05/0x1f50 [ 338.129871][ T9636] ? __pfx_walk_pgd_range+0x10/0x10 [ 338.129921][ T9636] __walk_page_range+0x163/0x820 [ 338.129965][ T9636] ? __lock_acquire+0xb8a/0x1c90 [ 338.130020][ T9636] walk_page_range_vma+0x2c7/0xa20 [ 338.130063][ T9636] ? __pfx_walk_page_range_vma+0x10/0x10 [ 338.130101][ T9636] ? find_held_lock+0x2b/0x80 [ 338.130151][ T9636] madvise_pageout+0x257/0x540 [ 338.130199][ T9636] ? __pfx_madvise_pageout+0x10/0x10 [ 338.130266][ T9636] ? mas_next_slot+0x12d3/0x1cb0 [ 338.130318][ T9636] madvise_vma_behavior+0xb14/0x2d50 [ 338.130378][ T9636] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 338.130430][ T9636] ? __pfx_mt_find+0x10/0x10 [ 338.130482][ T9636] ? find_vma_prev+0xd3/0x150 [ 338.130537][ T9636] ? find_vma+0xbf/0x140 [ 338.130574][ T9636] ? __pfx_find_vma+0x10/0x10 [ 338.130620][ T9636] ? preempt_schedule_common+0x44/0xc0 [ 338.130668][ T9636] madvise_walk_vmas+0x31f/0x9c0 [ 338.130725][ T9636] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 338.130785][ T9636] madvise_do_behavior+0x1e2/0x530 [ 338.130831][ T9636] ? futex_private_hash_put+0xd5/0x190 [ 338.130876][ T9636] ? __pfx_madvise_do_behavior+0x10/0x10 [ 338.130926][ T9636] ? down_read+0x13d/0x480 [ 338.130995][ T9636] do_madvise+0x176/0x240 [ 338.131040][ T9636] ? __pfx_do_madvise+0x10/0x10 [ 338.131085][ T9636] ? do_futex+0x122/0x350 [ 338.131158][ T9636] ? xfd_validate_state+0x61/0x180 [ 338.131216][ T9636] __x64_sys_madvise+0xa9/0x110 [ 338.131263][ T9636] ? lockdep_hardirqs_on+0x7c/0x110 [ 338.131303][ T9636] do_syscall_64+0xcd/0xfa0 [ 338.131347][ T9636] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.131381][ T9636] RIP: 0033:0x7f15fc98f749 [ 338.131407][ T9636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.131440][ T9636] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 338.131472][ T9636] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 338.131493][ T9636] RDX: 0000000000000015 RSI: ffffffffffff0001 RDI: 0000000000000000 [ 338.131513][ T9636] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 338.131533][ T9636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.131553][ T9636] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 338.131605][ T9636] [ 338.918139][ T9638] netlink: 28 bytes leftover after parsing attributes in process `syz.3.785'. [ 339.792123][ T9661] FAULT_INJECTION: forcing a failure. [ 339.792123][ T9661] name failslab, interval 1, probability 0, space 0, times 0 [ 339.837325][ T9661] CPU: 0 UID: 0 PID: 9661 Comm: syz.1.792 Not tainted syzkaller #0 PREEMPT(full) [ 339.837358][ T9661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 339.837372][ T9661] Call Trace: [ 339.837380][ T9661] [ 339.837389][ T9661] dump_stack_lvl+0x16c/0x1f0 [ 339.837423][ T9661] should_fail_ex+0x512/0x640 [ 339.837461][ T9661] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 339.837489][ T9661] should_failslab+0xc2/0x120 [ 339.837522][ T9661] kmem_cache_alloc_noprof+0x75/0x6e0 [ 339.837547][ T9661] ? ima_d_path+0xbd/0x2a0 [ 339.837574][ T9661] ? ima_d_path+0xbd/0x2a0 [ 339.837594][ T9661] ima_d_path+0xbd/0x2a0 [ 339.837613][ T9661] ? vfs_getxattr_alloc+0xec/0x350 [ 339.837639][ T9661] ? __pfx_ima_d_path+0x10/0x10 [ 339.837666][ T9661] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 339.837707][ T9661] process_measurement+0x1d86/0x23e0 [ 339.837751][ T9661] ? __mutex_trylock_common+0xe9/0x250 [ 339.837795][ T9661] ? __pfx_process_measurement+0x10/0x10 [ 339.837834][ T9661] ? __pfx___might_resched+0x10/0x10 [ 339.837861][ T9661] ? rcu_is_watching+0x12/0xc0 [ 339.837887][ T9661] ? trace_contention_end+0xdd/0x130 [ 339.837925][ T9661] ? tracing_open_file_tr+0x1c9/0x230 [ 339.837987][ T9661] ? inode_to_bdi+0x9e/0x160 [ 339.838020][ T9661] ima_file_check+0xc5/0x110 [ 339.838054][ T9661] ? __pfx_ima_file_check+0x10/0x10 [ 339.838098][ T9661] security_file_post_open+0x8e/0x210 [ 339.838130][ T9661] path_openat+0x1404/0x2cb0 [ 339.838167][ T9661] ? __pfx_path_openat+0x10/0x10 [ 339.838197][ T9661] ? __lock_acquire+0xb8a/0x1c90 [ 339.838233][ T9661] do_filp_open+0x20b/0x470 [ 339.838260][ T9661] ? __pfx_do_filp_open+0x10/0x10 [ 339.838309][ T9661] ? alloc_fd+0x471/0x7d0 [ 339.838342][ T9661] do_sys_openat2+0x11b/0x1d0 [ 339.838378][ T9661] ? __pfx_do_sys_openat2+0x10/0x10 [ 339.838426][ T9661] __x64_sys_openat+0x174/0x210 [ 339.838463][ T9661] ? __pfx___x64_sys_openat+0x10/0x10 [ 339.838512][ T9661] do_syscall_64+0xcd/0xfa0 [ 339.838545][ T9661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.838569][ T9661] RIP: 0033:0x7f42f638f749 [ 339.838588][ T9661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.838612][ T9661] RSP: 002b:00007f42f724c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 339.838633][ T9661] RAX: ffffffffffffffda RBX: 00007f42f65e5fa0 RCX: 00007f42f638f749 [ 339.838649][ T9661] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 339.838663][ T9661] RBP: 00007f42f6413f91 R08: 0000000000000000 R09: 0000000000000000 [ 339.838677][ T9661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.838691][ T9661] R13: 00007f42f65e6038 R14: 00007f42f65e5fa0 R15: 00007ffe69fdc7e8 [ 339.838722][ T9661] [ 340.754214][ T5149] block nbd0: Receive control failed (result -107) [ 340.807328][ T9681] nbd0: detected capacity change from 0 to 120460947750912 [ 340.831978][ T5849] block nbd0: Dead connection, failed to find a fallback [ 340.867705][ T5849] block nbd0: shutting down sockets [ 340.874563][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 340.885697][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 340.894568][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 340.905370][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 340.914223][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 340.924655][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 340.952367][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.003237][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.019879][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.038836][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.046897][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.060516][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.069438][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.078873][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.086819][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.103665][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.138754][ T5849] ldm_validate_partition_table(): Disk read failed. [ 341.145957][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.156632][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.167300][ T5849] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 341.186426][ T5849] Buffer I/O error on dev nbd0, logical block 0, async page read [ 341.195610][ T5849] Dev nbd0: unable to read RDB block 0 [ 341.239025][ T5849] nbd0: unable to read partition table [ 341.304763][ T5849] ldm_validate_partition_table(): Disk read failed. [ 341.326066][ T5849] Dev nbd0: unable to read RDB block 0 [ 341.356432][ T5849] nbd0: unable to read partition table [ 341.676053][ T9696] netlink: 28 bytes leftover after parsing attributes in process `syz.2.798'. [ 342.303159][ T9716] FAULT_INJECTION: forcing a failure. [ 342.303159][ T9716] name fail_futex, interval 1, probability 0, space 0, times 0 [ 342.367882][ T9716] CPU: 1 UID: 0 PID: 9716 Comm: syz.1.801 Not tainted syzkaller #0 PREEMPT(full) [ 342.367927][ T9716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 342.367946][ T9716] Call Trace: [ 342.367956][ T9716] [ 342.367968][ T9716] dump_stack_lvl+0x16c/0x1f0 [ 342.368014][ T9716] should_fail_ex+0x512/0x640 [ 342.368072][ T9716] get_futex_key+0x1d0/0x1560 [ 342.368121][ T9716] ? __pfx_get_futex_key+0x10/0x10 [ 342.368167][ T9716] ? __pfx_shmem_get_unmapped_area+0x10/0x10 [ 342.368228][ T9716] ? __get_unmapped_area+0x267/0x440 [ 342.368278][ T9716] futex_wake+0xea/0x530 [ 342.368342][ T9716] ? __pfx_futex_wake+0x10/0x10 [ 342.368405][ T9716] ? up_write+0x1b2/0x520 [ 342.368463][ T9716] do_futex+0x1e3/0x350 [ 342.368519][ T9716] ? __pfx_do_futex+0x10/0x10 [ 342.368564][ T9716] ? fput+0x9b/0xd0 [ 342.368617][ T9716] __x64_sys_futex+0x1e0/0x4c0 [ 342.368669][ T9716] ? __pfx___x64_sys_futex+0x10/0x10 [ 342.368711][ T9716] ? ksys_mmap_pgoff+0x85/0x5c0 [ 342.368751][ T9716] ? xfd_validate_state+0x61/0x180 [ 342.368814][ T9716] do_syscall_64+0xcd/0xfa0 [ 342.368856][ T9716] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.368890][ T9716] RIP: 0033:0x7f42f638f749 [ 342.368916][ T9716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 342.368948][ T9716] RSP: 002b:00007f42f724c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 342.368978][ T9716] RAX: ffffffffffffffda RBX: 00007f42f65e5fa8 RCX: 00007f42f638f749 [ 342.368999][ T9716] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f42f65e5fac [ 342.369019][ T9716] RBP: 00007f42f65e5fa0 R08: 00007f42f724d000 R09: 0000000000000000 [ 342.369039][ T9716] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 342.369059][ T9716] R13: 00007f42f65e6038 R14: 00007ffe69fdc700 R15: 00007ffe69fdc7e8 [ 342.369104][ T9716] [ 343.716793][ T9729] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 344.351912][ T9749] mmap: syz.3.811 (9749): VmData 37728256 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 344.470220][ T9732] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 345.005346][ T9742] Process accounting resumed [ 346.405211][ T9767] blktrace: Concurrent blktraces are not allowed on loop5 [ 346.861773][ T9787] FAULT_INJECTION: forcing a failure. [ 346.861773][ T9787] name failslab, interval 1, probability 0, space 0, times 0 [ 346.888325][ T9787] CPU: 0 UID: 0 PID: 9787 Comm: syz.2.822 Not tainted syzkaller #0 PREEMPT(full) [ 346.888369][ T9787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 346.888387][ T9787] Call Trace: [ 346.888397][ T9787] [ 346.888416][ T9787] dump_stack_lvl+0x16c/0x1f0 [ 346.888450][ T9787] should_fail_ex+0x512/0x640 [ 346.888487][ T9787] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 346.888515][ T9787] should_failslab+0xc2/0x120 [ 346.888548][ T9787] kmem_cache_alloc_noprof+0x75/0x6e0 [ 346.888580][ T9787] ? ima_d_path+0xbd/0x2a0 [ 346.888608][ T9787] ? ima_d_path+0xbd/0x2a0 [ 346.888627][ T9787] ima_d_path+0xbd/0x2a0 [ 346.888647][ T9787] ? vfs_getxattr_alloc+0xec/0x350 [ 346.888672][ T9787] ? __pfx_ima_d_path+0x10/0x10 [ 346.888699][ T9787] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 346.888740][ T9787] process_measurement+0x1d86/0x23e0 [ 346.888783][ T9787] ? __mutex_trylock_common+0xe9/0x250 [ 346.888818][ T9787] ? __pfx_process_measurement+0x10/0x10 [ 346.888855][ T9787] ? __pfx___might_resched+0x10/0x10 [ 346.888882][ T9787] ? rcu_is_watching+0x12/0xc0 [ 346.888907][ T9787] ? trace_contention_end+0xdd/0x130 [ 346.888944][ T9787] ? tracing_open_file_tr+0x1c9/0x230 [ 346.889006][ T9787] ? inode_to_bdi+0x9e/0x160 [ 346.889038][ T9787] ima_file_check+0xc5/0x110 [ 346.889073][ T9787] ? __pfx_ima_file_check+0x10/0x10 [ 346.889116][ T9787] security_file_post_open+0x8e/0x210 [ 346.889142][ T9787] path_openat+0x1404/0x2cb0 [ 346.889178][ T9787] ? __pfx_path_openat+0x10/0x10 [ 346.889207][ T9787] ? __lock_acquire+0xb8a/0x1c90 [ 346.889248][ T9787] do_filp_open+0x20b/0x470 [ 346.889285][ T9787] ? __pfx_do_filp_open+0x10/0x10 [ 346.889355][ T9787] ? alloc_fd+0x471/0x7d0 [ 346.889390][ T9787] do_sys_openat2+0x11b/0x1d0 [ 346.889426][ T9787] ? __pfx_do_sys_openat2+0x10/0x10 [ 346.889474][ T9787] __x64_sys_openat+0x174/0x210 [ 346.889510][ T9787] ? __pfx___x64_sys_openat+0x10/0x10 [ 346.889559][ T9787] do_syscall_64+0xcd/0xfa0 [ 346.889598][ T9787] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.889622][ T9787] RIP: 0033:0x7efe4b98f749 [ 346.889640][ T9787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 346.889663][ T9787] RSP: 002b:00007efe4c758038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 346.889686][ T9787] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa0 RCX: 00007efe4b98f749 [ 346.889700][ T9787] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 346.889714][ T9787] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 346.889728][ T9787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.889741][ T9787] R13: 00007efe4bbe6038 R14: 00007efe4bbe5fa0 R15: 00007fff256d9e08 [ 346.889773][ T9787] [ 347.167277][ C0] vkms_vblank_simulate: vblank timer overrun [ 347.231355][ T9792] FAULT_INJECTION: forcing a failure. [ 347.231355][ T9792] name fail_futex, interval 1, probability 0, space 0, times 0 [ 347.244260][ T9792] CPU: 0 UID: 0 PID: 9792 Comm: syz.0.823 Not tainted syzkaller #0 PREEMPT(full) [ 347.244291][ T9792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 347.244305][ T9792] Call Trace: [ 347.244314][ T9792] [ 347.244328][ T9792] dump_stack_lvl+0x16c/0x1f0 [ 347.244362][ T9792] should_fail_ex+0x512/0x640 [ 347.244404][ T9792] get_futex_key+0x1d0/0x1560 [ 347.244439][ T9792] ? __pfx_get_futex_key+0x10/0x10 [ 347.244472][ T9792] ? __pfx_shmem_get_unmapped_area+0x10/0x10 [ 347.244512][ T9792] ? __get_unmapped_area+0x267/0x440 [ 347.244548][ T9792] futex_wake+0xea/0x530 [ 347.244589][ T9792] ? __pfx_futex_wake+0x10/0x10 [ 347.244632][ T9792] ? up_write+0x1b2/0x520 [ 347.244673][ T9792] do_futex+0x1e3/0x350 [ 347.244706][ T9792] ? __pfx_do_futex+0x10/0x10 [ 347.244738][ T9792] ? fput+0x9b/0xd0 [ 347.244776][ T9792] __x64_sys_futex+0x1e0/0x4c0 [ 347.244814][ T9792] ? __pfx___x64_sys_futex+0x10/0x10 [ 347.244847][ T9792] ? ksys_mmap_pgoff+0x85/0x5c0 [ 347.244875][ T9792] ? xfd_validate_state+0x61/0x180 [ 347.244920][ T9792] do_syscall_64+0xcd/0xfa0 [ 347.244952][ T9792] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.244977][ T9792] RIP: 0033:0x7f15fc98f749 [ 347.244996][ T9792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 347.245019][ T9792] RSP: 002b:00007f15fd82c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 347.245041][ T9792] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa8 RCX: 00007f15fc98f749 [ 347.245057][ T9792] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f15fcbe5fac [ 347.245071][ T9792] RBP: 00007f15fcbe5fa0 R08: 00007f15fd82d000 R09: 0000000000000000 [ 347.245086][ T9792] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 347.245100][ T9792] R13: 00007f15fcbe6038 R14: 00007ffeab82de40 R15: 00007ffeab82df28 [ 347.245132][ T9792] [ 347.434717][ C0] vkms_vblank_simulate: vblank timer overrun [ 349.379678][ T9823] blktrace: Concurrent blktraces are not allowed on loop5 [ 349.674544][ T9836] FAULT_INJECTION: forcing a failure. [ 349.674544][ T9836] name fail_futex, interval 1, probability 0, space 0, times 0 [ 349.717526][ T9836] CPU: 0 UID: 0 PID: 9836 Comm: syz.2.836 Not tainted syzkaller #0 PREEMPT(full) [ 349.717569][ T9836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 349.717589][ T9836] Call Trace: [ 349.717600][ T9836] [ 349.717612][ T9836] dump_stack_lvl+0x16c/0x1f0 [ 349.717657][ T9836] should_fail_ex+0x512/0x640 [ 349.717715][ T9836] get_futex_key+0x1d0/0x1560 [ 349.717766][ T9836] ? __pfx_get_futex_key+0x10/0x10 [ 349.717816][ T9836] ? __pfx_copy_clone_args_from_user+0x10/0x10 [ 349.717861][ T9836] futex_wake+0xea/0x530 [ 349.717917][ T9836] ? __pfx_futex_wake+0x10/0x10 [ 349.717978][ T9836] ? __do_sys_clone3+0xd7/0x290 [ 349.718019][ T9836] ? __pfx___do_sys_clone3+0x10/0x10 [ 349.718069][ T9836] do_futex+0x1e3/0x350 [ 349.718116][ T9836] ? __pfx_do_futex+0x10/0x10 [ 349.718173][ T9836] __x64_sys_futex+0x1e0/0x4c0 [ 349.718225][ T9836] ? __pfx___x64_sys_futex+0x10/0x10 [ 349.718290][ T9836] do_syscall_64+0xcd/0xfa0 [ 349.718334][ T9836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.718367][ T9836] RIP: 0033:0x7efe4b98f749 [ 349.718394][ T9836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.718426][ T9836] RSP: 002b:00007efe4c7580e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 349.718459][ T9836] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa8 RCX: 00007efe4b98f749 [ 349.718481][ T9836] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efe4bbe5fac [ 349.718510][ T9836] RBP: 00007efe4bbe5fa0 R08: 00007efe4c759000 R09: 0000000000000000 [ 349.718532][ T9836] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 349.718553][ T9836] R13: 00007efe4bbe6038 R14: 00007fff256d9d20 R15: 00007fff256d9e08 [ 349.718599][ T9836] [ 349.901715][ C0] vkms_vblank_simulate: vblank timer overrun [ 350.064985][ T9840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.837'. [ 351.947849][ T9847] mkiss: ax0: crc mode is auto. [ 352.355322][ T9865] netlink: 8 bytes leftover after parsing attributes in process `syz.2.843'. [ 352.648596][ T9869] zswap: compressor not available [ 352.841510][ T9878] bridge0: port 3(batadv0) entered blocking state [ 352.848551][ T9878] bridge0: port 3(batadv0) entered disabled state [ 352.855442][ T9878] batadv0: entered allmulticast mode [ 352.881848][ T9878] batadv0: entered promiscuous mode [ 352.903888][ T9878] bridge0: port 3(batadv0) entered blocking state [ 352.910630][ T9878] bridge0: port 3(batadv0) entered forwarding state [ 353.145780][ T37] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 353.155575][ T37] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 353.967875][ T9885] random: crng reseeded on system resumption [ 355.530762][ T9920] bridge0: port 3(batadv0) entered blocking state [ 355.540577][ T9920] bridge0: port 3(batadv0) entered disabled state [ 355.557616][ T9920] batadv0: entered allmulticast mode [ 355.565235][ T9920] batadv0: entered promiscuous mode [ 355.572157][ T9920] bridge0: port 3(batadv0) entered blocking state [ 355.578870][ T9920] bridge0: port 3(batadv0) entered forwarding state [ 355.728729][ T7776] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 355.738175][ T7776] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 356.054965][ T9929] netlink: 8 bytes leftover after parsing attributes in process `syz.3.859'. [ 356.573423][ T9937] ima: policy update failed [ 356.582764][ T30] audit: type=1802 audit(4294967318.800:13): pid=9937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.862" res=0 errno=0 [ 358.082448][ T9952] random: crng reseeded on system resumption [ 360.179718][ T9995] blktrace: Concurrent blktraces are not allowed on loop5 [ 360.475065][T10017] FAULT_INJECTION: forcing a failure. [ 360.475065][T10017] name failslab, interval 1, probability 0, space 0, times 0 [ 360.490312][T10017] CPU: 1 UID: 0 PID: 10017 Comm: syz.2.879 Not tainted syzkaller #0 PREEMPT(full) [ 360.490360][T10017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 360.490381][T10017] Call Trace: [ 360.490393][T10017] [ 360.490406][T10017] dump_stack_lvl+0x16c/0x1f0 [ 360.490453][T10017] should_fail_ex+0x512/0x640 [ 360.490502][T10017] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 360.490541][T10017] should_failslab+0xc2/0x120 [ 360.490587][T10017] kmem_cache_alloc_noprof+0x75/0x6e0 [ 360.490622][T10017] ? ima_d_path+0xbd/0x2a0 [ 360.490660][T10017] ? ima_d_path+0xbd/0x2a0 [ 360.490689][T10017] ima_d_path+0xbd/0x2a0 [ 360.490716][T10017] ? vfs_getxattr_alloc+0xec/0x350 [ 360.490752][T10017] ? __pfx_ima_d_path+0x10/0x10 [ 360.490790][T10017] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 360.490849][T10017] process_measurement+0x1d86/0x23e0 [ 360.490911][T10017] ? __mutex_trylock_common+0xe9/0x250 [ 360.490960][T10017] ? __pfx_process_measurement+0x10/0x10 [ 360.491015][T10017] ? __pfx___might_resched+0x10/0x10 [ 360.491051][T10017] ? rcu_is_watching+0x12/0xc0 [ 360.491086][T10017] ? trace_contention_end+0xdd/0x130 [ 360.491145][T10017] ? tracing_open_file_tr+0x1c9/0x230 [ 360.491227][T10017] ? inode_to_bdi+0x9e/0x160 [ 360.491274][T10017] ima_file_check+0xc5/0x110 [ 360.491324][T10017] ? __pfx_ima_file_check+0x10/0x10 [ 360.491386][T10017] security_file_post_open+0x8e/0x210 [ 360.491424][T10017] path_openat+0x1404/0x2cb0 [ 360.491476][T10017] ? __pfx_path_openat+0x10/0x10 [ 360.491516][T10017] ? __lock_acquire+0xb8a/0x1c90 [ 360.491567][T10017] do_filp_open+0x20b/0x470 [ 360.491606][T10017] ? __pfx_do_filp_open+0x10/0x10 [ 360.491675][T10017] ? alloc_fd+0x471/0x7d0 [ 360.491722][T10017] do_sys_openat2+0x11b/0x1d0 [ 360.491772][T10017] ? __pfx_do_sys_openat2+0x10/0x10 [ 360.491837][T10017] __x64_sys_openat+0x174/0x210 [ 360.491889][T10017] ? __pfx___x64_sys_openat+0x10/0x10 [ 360.491956][T10017] do_syscall_64+0xcd/0xfa0 [ 360.492003][T10017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.492038][T10017] RIP: 0033:0x7efe4b98f749 [ 360.492067][T10017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.492101][T10017] RSP: 002b:00007efe4c758038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 360.492144][T10017] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa0 RCX: 00007efe4b98f749 [ 360.492166][T10017] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 360.492187][T10017] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 360.492207][T10017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.492228][T10017] R13: 00007efe4bbe6038 R14: 00007efe4bbe5fa0 R15: 00007fff256d9e08 [ 360.492274][T10017] [ 361.073986][T10025] random: crng reseeded on system resumption [ 362.239418][T10035] random: crng reseeded on system resumption [ 363.391162][T10059] usb usb36: usbfs: process 10059 (syz.2.888) did not claim interface 0 before use [ 363.999374][T10066] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 364.044059][T10073] FAULT_INJECTION: forcing a failure. [ 364.044059][T10073] name failslab, interval 1, probability 0, space 0, times 0 [ 364.090463][T10073] CPU: 1 UID: 0 PID: 10073 Comm: syz.1.893 Not tainted syzkaller #0 PREEMPT(full) [ 364.090508][T10073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 364.090528][T10073] Call Trace: [ 364.090538][T10073] [ 364.090550][T10073] dump_stack_lvl+0x16c/0x1f0 [ 364.090597][T10073] should_fail_ex+0x512/0x640 [ 364.090646][T10073] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 364.090686][T10073] should_failslab+0xc2/0x120 [ 364.090727][T10077] ima: policy update failed [ 364.090731][T10073] kmem_cache_alloc_node_noprof+0x78/0x770 [ 364.090778][T10073] ? find_held_lock+0x2b/0x80 [ 364.090809][T10073] ? __alloc_skb+0x2b2/0x380 [ 364.090879][T10073] ? __alloc_skb+0x2b2/0x380 [ 364.090937][T10073] __alloc_skb+0x2b2/0x380 [ 364.090997][T10073] ? __pfx___alloc_skb+0x10/0x10 [ 364.091064][T10073] ? __pfx___register_sysctl_table+0x10/0x10 [ 364.091122][T10073] ? is_module_address+0x69/0xf0 [ 364.091183][T10073] inet_netconf_notify_devconf+0x8b/0x1f0 [ 364.091241][T10073] __devinet_sysctl_register+0x227/0x360 [ 364.091295][T10073] ? rcu_is_watching+0x12/0xc0 [ 364.091337][T10073] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 364.091390][T10073] ? __kmalloc_node_track_caller_noprof+0x362/0x8a0 [ 364.091449][T10073] ? __asan_memcpy+0x3c/0x60 [ 364.091492][T10073] devinet_init_net+0x347/0x910 [ 364.091545][T10073] ? __pfx_devinet_init_net+0x10/0x10 [ 364.091597][T10073] ops_init+0x1e2/0x5f0 [ 364.091641][T10073] setup_net+0x100/0x390 [ 364.091682][T10073] ? __pfx_setup_net+0x10/0x10 [ 364.091724][T10073] ? debug_mutex_init+0x37/0x70 [ 364.091776][T10073] copy_net_ns+0x2f8/0x690 [ 364.091827][T10073] create_new_namespaces+0x3ea/0xa90 [ 364.091882][T10073] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 364.091932][T10073] ksys_unshare+0x45b/0xa40 [ 364.091982][T10073] ? __pfx_ksys_unshare+0x10/0x10 [ 364.092034][T10073] ? xfd_validate_state+0x61/0x180 [ 364.092104][T10073] __x64_sys_unshare+0x31/0x40 [ 364.092153][T10073] do_syscall_64+0xcd/0xfa0 [ 364.092204][T10073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.092243][T10073] RIP: 0033:0x7f42f638f749 [ 364.092275][T10073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.092314][T10073] RSP: 002b:00007f42f722b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 364.092350][T10073] RAX: ffffffffffffffda RBX: 00007f42f65e6090 RCX: 00007f42f638f749 [ 364.092378][T10073] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 364.092401][T10073] RBP: 00007f42f6413f91 R08: 0000000000000000 R09: 0000000000000000 [ 364.092424][T10073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 364.092446][T10073] R13: 00007f42f65e6128 R14: 00007f42f65e6090 R15: 00007ffe69fdc7e8 [ 364.092495][T10073] [ 364.455422][ T30] audit: type=1802 audit(4294967326.670:14): pid=10077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.890" res=0 errno=0 [ 364.714871][T10081] zswap: compressor not available [ 364.738634][T10091] device-mapper: ioctl: Invalid ioctl structure: name þÿÿÿÿÿÿÿ, dev 4 [ 364.766424][T10087] netlink: 346 bytes leftover after parsing attributes in process `syz.0.896'. [ 365.599733][T10107] __vm_enough_memory: pid: 10107, comm: syz.0.899, bytes: 8589938688 not enough memory for the allocation [ 365.954062][T10113] random: crng reseeded on system resumption [ 367.558444][T10140] FAULT_INJECTION: forcing a failure. [ 367.558444][T10140] name failslab, interval 1, probability 0, space 0, times 0 [ 367.571688][T10140] CPU: 0 UID: 0 PID: 10140 Comm: syz.0.907 Not tainted syzkaller #0 PREEMPT(full) [ 367.571727][T10140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 367.571742][T10140] Call Trace: [ 367.571749][T10140] [ 367.571758][T10140] dump_stack_lvl+0x16c/0x1f0 [ 367.571793][T10140] should_fail_ex+0x512/0x640 [ 367.571829][T10140] ? fs_reclaim_acquire+0xae/0x150 [ 367.571865][T10140] should_failslab+0xc2/0x120 [ 367.571898][T10140] __kmalloc_noprof+0xdd/0x880 [ 367.571935][T10140] ? __pfx_prepend_path+0x10/0x10 [ 367.571968][T10140] ? ima_alloc_init_template+0xb5/0x720 [ 367.571996][T10140] ? ima_alloc_init_template+0xb5/0x720 [ 367.572020][T10140] ima_alloc_init_template+0xb5/0x720 [ 367.572044][T10140] ? __pfx_d_absolute_path+0x10/0x10 [ 367.572080][T10140] ima_store_measurement+0x1eb/0x5c0 [ 367.572106][T10140] ? __pfx_ima_store_measurement+0x10/0x10 [ 367.572131][T10140] ? vfs_getxattr_alloc+0xec/0x350 [ 367.572163][T10140] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 367.572202][T10140] process_measurement+0x1ddb/0x23e0 [ 367.572248][T10140] ? __mutex_trylock_common+0xe9/0x250 [ 367.572282][T10140] ? __pfx_process_measurement+0x10/0x10 [ 367.572320][T10140] ? __pfx___might_resched+0x10/0x10 [ 367.572346][T10140] ? rcu_is_watching+0x12/0xc0 [ 367.572372][T10140] ? trace_contention_end+0xdd/0x130 [ 367.572409][T10140] ? tracing_open_file_tr+0x1c9/0x230 [ 367.572470][T10140] ? inode_to_bdi+0x9e/0x160 [ 367.572503][T10140] ima_file_check+0xc5/0x110 [ 367.572537][T10140] ? __pfx_ima_file_check+0x10/0x10 [ 367.572583][T10140] security_file_post_open+0x8e/0x210 [ 367.572608][T10140] path_openat+0x1404/0x2cb0 [ 367.572645][T10140] ? __pfx_path_openat+0x10/0x10 [ 367.572673][T10140] ? __lock_acquire+0xb8a/0x1c90 [ 367.572709][T10140] do_filp_open+0x20b/0x470 [ 367.572742][T10140] ? __pfx_do_filp_open+0x10/0x10 [ 367.572791][T10140] ? alloc_fd+0x471/0x7d0 [ 367.572824][T10140] do_sys_openat2+0x11b/0x1d0 [ 367.572860][T10140] ? __pfx_do_sys_openat2+0x10/0x10 [ 367.572908][T10140] __x64_sys_openat+0x174/0x210 [ 367.572944][T10140] ? __pfx___x64_sys_openat+0x10/0x10 [ 367.572993][T10140] do_syscall_64+0xcd/0xfa0 [ 367.573025][T10140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 367.573049][T10140] RIP: 0033:0x7f15fc98f749 [ 367.573067][T10140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 367.573090][T10140] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 367.573112][T10140] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 367.573127][T10140] RDX: 0000000000000002 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 367.573141][T10140] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 367.573155][T10140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 367.573168][T10140] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 367.573200][T10140] [ 367.573439][ T30] audit: type=1804 audit(4294967329.790:15): pid=10140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.907" name="/newroot/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/filter" dev="tracefs" ino=19680823 res=0 errno=0 [ 368.218065][T10136] ima: policy update failed [ 368.230468][ T30] audit: type=1802 audit(4294967330.450:16): pid=10136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.906" res=0 errno=0 [ 369.174918][T10167] FAULT_INJECTION: forcing a failure. [ 369.174918][T10167] name fail_futex, interval 1, probability 0, space 0, times 0 [ 369.196163][T10167] CPU: 0 UID: 0 PID: 10167 Comm: syz.1.914 Not tainted syzkaller #0 PREEMPT(full) [ 369.196209][T10167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 369.196229][T10167] Call Trace: [ 369.196239][T10167] [ 369.196253][T10167] dump_stack_lvl+0x16c/0x1f0 [ 369.196299][T10167] should_fail_ex+0x512/0x640 [ 369.196349][T10167] ? aa_get_newest_label+0xd2/0x250 [ 369.196404][T10167] get_futex_key+0x1d0/0x1560 [ 369.196452][T10167] ? __pfx_get_futex_key+0x10/0x10 [ 369.196491][T10167] ? ns_capable+0xd7/0x110 [ 369.196531][T10167] ? __sys_bpf+0x175/0x4980 [ 369.196581][T10167] futex_wake+0xea/0x530 [ 369.196643][T10167] ? __pfx___sys_bpf+0x10/0x10 [ 369.196677][T10167] ? __pfx_futex_wait+0x10/0x10 [ 369.196707][T10167] ? __pfx_futex_wake+0x10/0x10 [ 369.196777][T10167] do_futex+0x1e3/0x350 [ 369.196822][T10167] ? __pfx_do_futex+0x10/0x10 [ 369.196876][T10167] __x64_sys_futex+0x1e0/0x4c0 [ 369.196921][T10167] ? fput+0x9b/0xd0 [ 369.196962][T10167] ? __pfx___x64_sys_futex+0x10/0x10 [ 369.197008][T10167] ? xfd_validate_state+0x61/0x180 [ 369.197053][T10167] ? __pfx_ksys_write+0x10/0x10 [ 369.197099][T10167] do_syscall_64+0xcd/0xfa0 [ 369.197140][T10167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.197171][T10167] RIP: 0033:0x7f42f638f749 [ 369.197193][T10167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 369.197224][T10167] RSP: 002b:00007f42f724c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 369.197252][T10167] RAX: ffffffffffffffda RBX: 00007f42f65e5fa8 RCX: 00007f42f638f749 [ 369.197272][T10167] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f42f65e5fac [ 369.197291][T10167] RBP: 00007f42f65e5fa0 R08: 00007f42f724d000 R09: 0000000000000000 [ 369.197309][T10167] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 369.197328][T10167] R13: 00007f42f65e6038 R14: 00007ffe69fdc700 R15: 00007ffe69fdc7e8 [ 369.197370][T10167] [ 369.668680][T10173] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 370.263075][T10182] netlink: 4 bytes leftover after parsing attributes in process `syz.3.916'. [ 370.308239][T10182] netlink: 28 bytes leftover after parsing attributes in process `syz.3.916'. [ 370.452821][T10182] batadv0: left allmulticast mode [ 370.458598][T10182] batadv0: left promiscuous mode [ 370.474944][T10182] bridge0: port 3(batadv0) entered disabled state [ 370.488118][T10182] bridge_slave_1: left allmulticast mode [ 370.493960][T10182] bridge_slave_1: left promiscuous mode [ 370.507480][T10182] bridge0: port 2(bridge_slave_1) entered disabled state [ 370.604436][T10182] bridge_slave_0: left allmulticast mode [ 370.611220][T10182] bridge_slave_0: left promiscuous mode [ 370.627890][T10182] bridge0: port 1(bridge_slave_0) entered disabled state [ 371.080382][T10201] netlink: 'syz.0.919': attribute type 3 has an invalid length. [ 371.270895][T10211] kernel read not supported for file /\*)A (pid: 10211 comm: syz.3.922) [ 371.402241][ T30] audit: type=1800 audit(4294967333.580:17): pid=10211 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.922" name="\*)A" dev="mqueue" ino=33409 res=0 errno=0 [ 371.466205][ T30] audit: type=1800 audit(4294967333.590:18): pid=10221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.923" name="trace_pipe" dev="tracefs" ino=141 res=0 errno=0 [ 371.663978][T10229] FAULT_INJECTION: forcing a failure. [ 371.663978][T10229] name failslab, interval 1, probability 0, space 0, times 0 [ 371.681633][T10229] CPU: 0 UID: 0 PID: 10229 Comm: syz.3.924 Not tainted syzkaller #0 PREEMPT(full) [ 371.681677][T10229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 371.681696][T10229] Call Trace: [ 371.681707][T10229] [ 371.681720][T10229] dump_stack_lvl+0x16c/0x1f0 [ 371.681767][T10229] should_fail_ex+0x512/0x640 [ 371.681814][T10229] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 371.681852][T10229] should_failslab+0xc2/0x120 [ 371.681895][T10229] kmem_cache_alloc_noprof+0x75/0x6e0 [ 371.681927][T10229] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 371.681959][T10229] ? acpi_ut_create_generic_state+0x61/0xc0 [ 371.682016][T10229] ? acpi_ut_create_generic_state+0x61/0xc0 [ 371.682064][T10229] acpi_ut_create_generic_state+0x61/0xc0 [ 371.682111][T10229] acpi_ps_push_scope+0x42/0x280 [ 371.682144][T10229] acpi_ps_parse_loop+0x334/0x2470 [ 371.682206][T10229] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 371.682252][T10229] ? kmem_cache_alloc_noprof+0x2a1/0x6e0 [ 371.682282][T10229] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 371.682312][T10229] ? acpi_ut_create_thread_state+0x6d/0x170 [ 371.682373][T10229] acpi_ps_parse_aml+0x817/0x1170 [ 371.682431][T10229] acpi_ps_execute_method+0x5c4/0xe90 [ 371.682473][T10229] acpi_ns_evaluate+0x98c/0x16d0 [ 371.682529][T10229] acpi_evaluate_object+0x4ca/0xdf0 [ 371.682586][T10229] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 371.682634][T10229] ? __mutex_trylock_common+0xe9/0x250 [ 371.682689][T10229] acpi_evaluate_integer+0xdd/0x200 [ 371.682729][T10229] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 371.682788][T10229] ? __pfx_status_show+0x10/0x10 [ 371.682829][T10229] status_show+0xa0/0x120 [ 371.682873][T10229] ? __pfx_status_show+0x10/0x10 [ 371.682928][T10229] dev_attr_show+0x56/0xe0 [ 371.682980][T10229] ? __pfx_dev_attr_show+0x10/0x10 [ 371.683025][T10229] sysfs_kf_seq_show+0x216/0x3e0 [ 371.683069][T10229] seq_read_iter+0x50e/0x12d0 [ 371.683137][T10229] kernfs_fop_read_iter+0x46c/0x610 [ 371.683170][T10229] ? rw_verify_area+0xcf/0x6c0 [ 371.683204][T10229] vfs_read+0x8bf/0xcf0 [ 371.683245][T10229] ? __pfx___mutex_lock+0x10/0x10 [ 371.683288][T10229] ? __pfx_vfs_read+0x10/0x10 [ 371.683349][T10229] ksys_read+0x12a/0x250 [ 371.683382][T10229] ? __pfx_ksys_read+0x10/0x10 [ 371.683428][T10229] do_syscall_64+0xcd/0xfa0 [ 371.683472][T10229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 371.683514][T10229] RIP: 0033:0x7f6fc7f8f749 [ 371.683541][T10229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 371.683573][T10229] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 371.683603][T10229] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 371.683625][T10229] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 371.683644][T10229] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 371.683663][T10229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 371.683682][T10229] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 371.683726][T10229] [ 371.683796][T10229] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250807/psparse-529) [ 372.711153][T10244] netlink: 4 bytes leftover after parsing attributes in process `syz.1.930'. [ 372.753915][T10244] netlink: 28 bytes leftover after parsing attributes in process `syz.1.930'. [ 372.886579][T10244] bridge_slave_1: left allmulticast mode [ 372.899274][T10244] bridge_slave_1: left promiscuous mode [ 372.929183][T10244] bridge0: port 2(bridge_slave_1) entered disabled state [ 373.138771][T10244] bridge_slave_0: left allmulticast mode [ 373.144498][T10244] bridge_slave_0: left promiscuous mode [ 373.179672][T10244] bridge0: port 1(bridge_slave_0) entered disabled state [ 373.531237][T10251] FAULT_INJECTION: forcing a failure. [ 373.531237][T10251] name failslab, interval 1, probability 0, space 0, times 0 [ 373.583387][T10251] CPU: 1 UID: 0 PID: 10251 Comm: syz.3.931 Not tainted syzkaller #0 PREEMPT(full) [ 373.583439][T10251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 373.583456][T10251] Call Trace: [ 373.583465][T10251] [ 373.583475][T10251] dump_stack_lvl+0x16c/0x1f0 [ 373.583515][T10251] should_fail_ex+0x512/0x640 [ 373.583557][T10251] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 373.583589][T10251] should_failslab+0xc2/0x120 [ 373.583627][T10251] kmem_cache_alloc_noprof+0x75/0x6e0 [ 373.583655][T10251] ? getname_flags.part.0+0x4c/0x550 [ 373.583704][T10251] ? getname_flags.part.0+0x4c/0x550 [ 373.583742][T10251] getname_flags.part.0+0x4c/0x550 [ 373.583787][T10251] getname_flags+0x93/0xf0 [ 373.583815][T10251] do_sys_openat2+0xb8/0x1d0 [ 373.583856][T10251] ? __pfx_do_sys_openat2+0x10/0x10 [ 373.583910][T10251] __x64_sys_openat+0x174/0x210 [ 373.583953][T10251] ? __pfx___x64_sys_openat+0x10/0x10 [ 373.584009][T10251] do_syscall_64+0xcd/0xfa0 [ 373.584045][T10251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.584073][T10251] RIP: 0033:0x7f6fc7f8f749 [ 373.584094][T10251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.584120][T10251] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 373.584146][T10251] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 373.584164][T10251] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 373.584181][T10251] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 373.584198][T10251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 373.584214][T10251] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 373.584250][T10251] [ 374.555871][T10267] FAULT_INJECTION: forcing a failure. [ 374.555871][T10267] name failslab, interval 1, probability 0, space 0, times 0 [ 374.568873][T10267] CPU: 0 UID: 0 PID: 10267 Comm: syz.3.936 Not tainted syzkaller #0 PREEMPT(full) [ 374.568919][T10267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 374.568940][T10267] Call Trace: [ 374.568952][T10267] [ 374.568966][T10267] dump_stack_lvl+0x16c/0x1f0 [ 374.569016][T10267] should_fail_ex+0x512/0x640 [ 374.569068][T10267] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 374.569108][T10267] should_failslab+0xc2/0x120 [ 374.569154][T10267] kmem_cache_alloc_noprof+0x75/0x6e0 [ 374.569188][T10267] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 374.569222][T10267] ? acpi_ut_create_thread_state+0x6d/0x170 [ 374.569282][T10267] ? acpi_ut_create_thread_state+0x6d/0x170 [ 374.569332][T10267] acpi_ut_create_thread_state+0x6d/0x170 [ 374.569385][T10267] acpi_ps_parse_aml+0x12e/0x1170 [ 374.569438][T10267] ? acpi_ut_ptr_exit+0xfe/0x180 [ 374.569478][T10267] acpi_ps_execute_method+0x5c4/0xe90 [ 374.569523][T10267] acpi_ns_evaluate+0x98c/0x16d0 [ 374.569571][T10267] acpi_evaluate_object+0x4ca/0xdf0 [ 374.569631][T10267] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 374.569689][T10267] ? __mutex_trylock_common+0xe9/0x250 [ 374.569748][T10267] acpi_evaluate_integer+0xdd/0x200 [ 374.569790][T10267] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 374.569850][T10267] ? __pfx_status_show+0x10/0x10 [ 374.569899][T10267] status_show+0xa0/0x120 [ 374.569946][T10267] ? __pfx_status_show+0x10/0x10 [ 374.570005][T10267] dev_attr_show+0x56/0xe0 [ 374.570057][T10267] ? __pfx_dev_attr_show+0x10/0x10 [ 374.570106][T10267] sysfs_kf_seq_show+0x216/0x3e0 [ 374.570153][T10267] seq_read_iter+0x50e/0x12d0 [ 374.570224][T10267] kernfs_fop_read_iter+0x46c/0x610 [ 374.570259][T10267] ? rw_verify_area+0xcf/0x6c0 [ 374.570295][T10267] vfs_read+0x8bf/0xcf0 [ 374.570336][T10267] ? __pfx___mutex_lock+0x10/0x10 [ 374.570380][T10267] ? __pfx_vfs_read+0x10/0x10 [ 374.570446][T10267] ksys_read+0x12a/0x250 [ 374.570482][T10267] ? __pfx_ksys_read+0x10/0x10 [ 374.570533][T10267] do_syscall_64+0xcd/0xfa0 [ 374.570579][T10267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.570614][T10267] RIP: 0033:0x7f6fc7f8f749 [ 374.570640][T10267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.570680][T10267] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 374.570713][T10267] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 374.570734][T10267] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 374.570754][T10267] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 374.570774][T10267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.570792][T10267] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 374.570838][T10267] [ 374.570941][T10267] ACPI Error: ffff888056567000 walk still has a scope list (20250807/dswstate-694) [ 374.928647][ T30] audit: type=1800 audit(4294967337.150:19): pid=10270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.935" name="trace_pipe" dev="tracefs" ino=141 res=0 errno=0 [ 375.670561][T10235] Process accounting paused [ 375.879308][T10281] FAULT_INJECTION: forcing a failure. [ 375.879308][T10281] name failslab, interval 1, probability 0, space 0, times 0 [ 375.933044][T10281] CPU: 1 UID: 0 PID: 10281 Comm: syz.0.947 Not tainted syzkaller #0 PREEMPT(full) [ 375.933085][T10281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 375.933102][T10281] Call Trace: [ 375.933112][T10281] [ 375.933123][T10281] dump_stack_lvl+0x16c/0x1f0 [ 375.933165][T10281] should_fail_ex+0x512/0x640 [ 375.933208][T10281] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 375.933242][T10281] should_failslab+0xc2/0x120 [ 375.933282][T10281] kmem_cache_alloc_noprof+0x75/0x6e0 [ 375.933310][T10281] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 375.933341][T10281] ? acpi_ut_create_thread_state+0x6d/0x170 [ 375.933392][T10281] ? acpi_ut_create_thread_state+0x6d/0x170 [ 375.933435][T10281] acpi_ut_create_thread_state+0x6d/0x170 [ 375.933482][T10281] acpi_ps_parse_aml+0x12e/0x1170 [ 375.933526][T10281] ? acpi_ut_ptr_exit+0xfe/0x180 [ 375.933559][T10281] acpi_ps_execute_method+0x5c4/0xe90 [ 375.933597][T10281] acpi_ns_evaluate+0x98c/0x16d0 [ 375.933636][T10281] acpi_evaluate_object+0x4ca/0xdf0 [ 375.933685][T10281] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 375.933737][T10281] ? __mutex_trylock_common+0xe9/0x250 [ 375.933787][T10281] acpi_evaluate_integer+0xdd/0x200 [ 375.933827][T10281] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 375.933877][T10281] ? __pfx_status_show+0x10/0x10 [ 375.933916][T10281] status_show+0xa0/0x120 [ 375.933956][T10281] ? __pfx_status_show+0x10/0x10 [ 375.934006][T10281] dev_attr_show+0x56/0xe0 [ 375.934054][T10281] ? __pfx_dev_attr_show+0x10/0x10 [ 375.934095][T10281] sysfs_kf_seq_show+0x216/0x3e0 [ 375.934135][T10281] seq_read_iter+0x50e/0x12d0 [ 375.934195][T10281] kernfs_fop_read_iter+0x46c/0x610 [ 375.934223][T10281] ? rw_verify_area+0xcf/0x6c0 [ 375.934253][T10281] vfs_read+0x8bf/0xcf0 [ 375.934287][T10281] ? __pfx___mutex_lock+0x10/0x10 [ 375.934326][T10281] ? __pfx_vfs_read+0x10/0x10 [ 375.934378][T10281] ksys_read+0x12a/0x250 [ 375.934407][T10281] ? __pfx_ksys_read+0x10/0x10 [ 375.934448][T10281] do_syscall_64+0xcd/0xfa0 [ 375.934486][T10281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.934514][T10281] RIP: 0033:0x7f15fc98f749 [ 375.934536][T10281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.934564][T10281] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 375.934591][T10281] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 375.934609][T10281] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 375.934626][T10281] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 375.934642][T10281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.934659][T10281] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 375.934704][T10281] [ 376.219401][T10281] ACPI Error: ffff88807c028000 walk still has a scope list (20250807/dswstate-694) [ 377.211066][T10297] netlink: 338 bytes leftover after parsing attributes in process `syz.3.943'. [ 377.220154][T10297] bridge_slave_0: entered allmulticast mode [ 377.239766][ T5149] Bluetooth: hci0: unexpected event 0x1d length: 6 > 5 [ 377.267831][T10299] netlink: 338 bytes leftover after parsing attributes in process `syz.3.943'. [ 378.533801][T10321] futex_wake_op: syz.2.945 tries to shift op by -9; fix this program [ 378.714240][T10325] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 378.754333][T10325] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 378.996399][T10333] FAULT_INJECTION: forcing a failure. [ 378.996399][T10333] name failslab, interval 1, probability 0, space 0, times 0 [ 379.046135][T10333] CPU: 1 UID: 0 PID: 10333 Comm: syz.2.952 Not tainted syzkaller #0 PREEMPT(full) [ 379.046182][T10333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 379.046204][T10333] Call Trace: [ 379.046216][T10333] [ 379.046229][T10333] dump_stack_lvl+0x16c/0x1f0 [ 379.046278][T10333] should_fail_ex+0x512/0x640 [ 379.046336][T10333] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 379.046377][T10333] should_failslab+0xc2/0x120 [ 379.046424][T10333] kmem_cache_alloc_noprof+0x75/0x6e0 [ 379.046458][T10333] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 379.046492][T10333] ? acpi_ut_create_thread_state+0x6d/0x170 [ 379.046553][T10333] ? acpi_ut_create_thread_state+0x6d/0x170 [ 379.046602][T10333] acpi_ut_create_thread_state+0x6d/0x170 [ 379.046657][T10333] acpi_ps_parse_aml+0x12e/0x1170 [ 379.046708][T10333] ? acpi_ut_ptr_exit+0xfe/0x180 [ 379.046748][T10333] acpi_ps_execute_method+0x5c4/0xe90 [ 379.046794][T10333] acpi_ns_evaluate+0x98c/0x16d0 [ 379.046843][T10333] acpi_evaluate_object+0x4ca/0xdf0 [ 379.046902][T10333] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 379.046952][T10333] ? __mutex_trylock_common+0xe9/0x250 [ 379.047017][T10333] acpi_evaluate_integer+0xdd/0x200 [ 379.047056][T10333] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 379.047112][T10333] ? __pfx_status_show+0x10/0x10 [ 379.047155][T10333] status_show+0xa0/0x120 [ 379.047199][T10333] ? __pfx_status_show+0x10/0x10 [ 379.047251][T10333] dev_attr_show+0x56/0xe0 [ 379.047297][T10333] ? __pfx_dev_attr_show+0x10/0x10 [ 379.047351][T10333] sysfs_kf_seq_show+0x216/0x3e0 [ 379.047394][T10333] seq_read_iter+0x50e/0x12d0 [ 379.047457][T10333] kernfs_fop_read_iter+0x46c/0x610 [ 379.047488][T10333] ? rw_verify_area+0xcf/0x6c0 [ 379.047519][T10333] vfs_read+0x8bf/0xcf0 [ 379.047556][T10333] ? __pfx___mutex_lock+0x10/0x10 [ 379.047597][T10333] ? __pfx_vfs_read+0x10/0x10 [ 379.047654][T10333] ksys_read+0x12a/0x250 [ 379.047686][T10333] ? __pfx_ksys_read+0x10/0x10 [ 379.047734][T10333] do_syscall_64+0xcd/0xfa0 [ 379.047777][T10333] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.047811][T10333] RIP: 0033:0x7efe4b98f749 [ 379.047840][T10333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 379.047874][T10333] RSP: 002b:00007efe4c758038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 379.047908][T10333] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa0 RCX: 00007efe4b98f749 [ 379.047930][T10333] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 379.047950][T10333] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 379.047970][T10333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 379.047990][T10333] R13: 00007efe4bbe6038 R14: 00007efe4bbe5fa0 R15: 00007fff256d9e08 [ 379.048036][T10333] [ 379.605528][T10333] ACPI Error: ffff888024b7a000 walk still has a scope list (20250807/dswstate-694) [ 380.300214][T10341] random: crng reseeded on system resumption [ 380.350989][ T5149] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260 [ 380.351031][ T5149] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15 [ 380.366908][ T5149] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 380.751480][T10355] FAULT_INJECTION: forcing a failure. [ 380.751480][T10355] name failslab, interval 1, probability 0, space 0, times 0 [ 380.777498][T10355] CPU: 1 UID: 0 PID: 10355 Comm: syz.2.958 Not tainted syzkaller #0 PREEMPT(full) [ 380.777542][T10355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 380.777563][T10355] Call Trace: [ 380.777574][T10355] [ 380.777587][T10355] dump_stack_lvl+0x16c/0x1f0 [ 380.777633][T10355] should_fail_ex+0x512/0x640 [ 380.777685][T10355] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 380.777726][T10355] should_failslab+0xc2/0x120 [ 380.777773][T10355] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 380.777806][T10355] ? d_lookup+0xe7/0x190 [ 380.777854][T10355] ? alloc_inode+0x64/0x240 [ 380.777905][T10355] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 380.777958][T10355] ? alloc_inode+0x64/0x240 [ 380.778000][T10355] alloc_inode+0x64/0x240 [ 380.778047][T10355] new_inode+0x22/0x1c0 [ 380.778096][T10355] __debugfs_create_file+0x11c/0x6b0 [ 380.778136][T10355] debugfs_create_file_full+0x41/0x60 [ 380.778177][T10355] drm_debugfs_clients_add+0xd9/0x200 [ 380.778225][T10355] drm_file_alloc+0x5c6/0xb40 [ 380.778280][T10355] drm_open_helper+0x204/0x550 [ 380.778334][T10355] drm_open+0x1a0/0x3e0 [ 380.778382][T10355] ? __pfx_drm_open+0x10/0x10 [ 380.778428][T10355] drm_stub_open+0x20f/0x380 [ 380.778491][T10355] ? __pfx_drm_stub_open+0x10/0x10 [ 380.778537][T10355] chrdev_open+0x234/0x6a0 [ 380.778577][T10355] ? __pfx_apparmor_file_open+0x10/0x10 [ 380.778627][T10355] ? __pfx_chrdev_open+0x10/0x10 [ 380.778669][T10355] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 380.778715][T10355] do_dentry_open+0x982/0x1530 [ 380.778754][T10355] ? __pfx_chrdev_open+0x10/0x10 [ 380.778805][T10355] vfs_open+0x82/0x3f0 [ 380.778859][T10355] path_openat+0x1de4/0x2cb0 [ 380.778910][T10355] ? __pfx_path_openat+0x10/0x10 [ 380.778948][T10355] ? __lock_acquire+0xb8a/0x1c90 [ 380.779000][T10355] do_filp_open+0x20b/0x470 [ 380.779038][T10355] ? __pfx_do_filp_open+0x10/0x10 [ 380.779108][T10355] ? alloc_fd+0x471/0x7d0 [ 380.779155][T10355] do_sys_openat2+0x11b/0x1d0 [ 380.779203][T10355] ? __pfx_do_sys_openat2+0x10/0x10 [ 380.779362][T10355] __x64_sys_openat+0x174/0x210 [ 380.779413][T10355] ? __pfx___x64_sys_openat+0x10/0x10 [ 380.779480][T10355] do_syscall_64+0xcd/0xfa0 [ 380.779523][T10355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 380.779556][T10355] RIP: 0033:0x7efe4b98f749 [ 380.779583][T10355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 380.779614][T10355] RSP: 002b:00007efe4c758038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 380.779645][T10355] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa0 RCX: 00007efe4b98f749 [ 380.779667][T10355] RDX: 0000000000020100 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 380.779687][T10355] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 380.779707][T10355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 380.779725][T10355] R13: 00007efe4bbe6038 R14: 00007efe4bbe5fa0 R15: 00007fff256d9e08 [ 380.779770][T10355] [ 380.779784][T10355] debugfs: out of free dentries, can not create file 'proc_info' [ 383.933158][T10403] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 383.942610][T10403] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 384.260023][T10409] blktrace: Concurrent blktraces are not allowed on loop2 [ 384.302589][ T30] audit: type=1800 audit(4294967346.520:20): pid=10414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.970" name="lu_gp_id" dev="configfs" ino=35853 res=0 errno=0 [ 384.706041][T10428] syz.3.972(10428): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 385.804381][T10446] tipc: Trying to set illegal importance in message [ 386.722379][T10465] netlink: 28 bytes leftover after parsing attributes in process `syz.0.987'. [ 386.762571][T10465] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 386.772024][T10465] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 386.786229][T10465] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 386.798130][T10465] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 387.353775][T10486] bond0: option lp_interval: invalid value () [ 387.361619][T10486] bond0: option lp_interval: allowed values 1 - 2147483647 [ 387.729586][T10503] netlink: 206 bytes leftover after parsing attributes in process `syz.0.986'. [ 388.999619][T10543] netlink: 24 bytes leftover after parsing attributes in process `syz.1.996'. [ 389.013205][T10543] nbd: must specify at least one socket [ 389.048504][T10539] can0: slcan on ttyS2. [ 389.162544][T10538] can0 (unregistered): slcan off ttyS2. [ 389.625380][T10552] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 389.657536][T10552] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 389.663899][T10552] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 389.688764][T10552] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 391.697344][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout [ 391.697797][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 391.703445][ T5149] Bluetooth: hci0: command 0x0c1a tx timeout [ 391.715539][ T5843] Bluetooth: hci3: command 0x0c1a tx timeout [ 392.207478][T10625] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 392.753005][T10643] netlink: 'syz.2.1019': attribute type 1 has an invalid length. [ 401.553067][T10787] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 406.379883][T10886] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.3.1071: bg 4: bad block bitmap checksum [ 406.407928][T10862] Process accounting resumed [ 406.420907][T10886] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 74 [ 406.453668][T10886] EXT4-fs (sda1): This should not happen!! Data will be lost [ 406.453668][T10886] [ 410.290168][T10960] FAULT_INJECTION: forcing a failure. [ 410.290168][T10960] name failslab, interval 1, probability 0, space 0, times 0 [ 410.314074][T10960] CPU: 1 UID: 0 PID: 10960 Comm: syz.3.1082 Not tainted syzkaller #0 PREEMPT(full) [ 410.314143][T10960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 410.314163][T10960] Call Trace: [ 410.314173][T10960] [ 410.314186][T10960] dump_stack_lvl+0x16c/0x1f0 [ 410.314231][T10960] should_fail_ex+0x512/0x640 [ 410.314280][T10960] ? __kmalloc_cache_noprof+0x5f/0x780 [ 410.314322][T10960] should_failslab+0xc2/0x120 [ 410.314368][T10960] __kmalloc_cache_noprof+0x72/0x780 [ 410.314399][T10960] ? fuse_dev_alloc_install+0x2b/0x40 [ 410.314443][T10960] ? cuse_channel_open+0x1de/0x7f0 [ 410.314487][T10960] ? cuse_channel_open+0x1de/0x7f0 [ 410.314524][T10960] cuse_channel_open+0x1de/0x7f0 [ 410.314564][T10960] ? __pfx_cuse_channel_open+0x10/0x10 [ 410.314607][T10960] misc_open+0x26d/0x450 [ 410.314657][T10960] ? __pfx_misc_open+0x10/0x10 [ 410.314705][T10960] chrdev_open+0x234/0x6a0 [ 410.314743][T10960] ? __pfx_apparmor_file_open+0x10/0x10 [ 410.314794][T10960] ? __pfx_chrdev_open+0x10/0x10 [ 410.314836][T10960] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 410.314882][T10960] do_dentry_open+0x982/0x1530 [ 410.314922][T10960] ? __pfx_chrdev_open+0x10/0x10 [ 410.314970][T10960] vfs_open+0x82/0x3f0 [ 410.315022][T10960] path_openat+0x1de4/0x2cb0 [ 410.315070][T10960] ? __pfx_path_openat+0x10/0x10 [ 410.315109][T10960] ? __lock_acquire+0xb8a/0x1c90 [ 410.315160][T10960] do_filp_open+0x20b/0x470 [ 410.315196][T10960] ? __pfx_do_filp_open+0x10/0x10 [ 410.315264][T10960] ? alloc_fd+0x471/0x7d0 [ 410.315320][T10960] do_sys_openat2+0x11b/0x1d0 [ 410.315371][T10960] ? __pfx_do_sys_openat2+0x10/0x10 [ 410.315437][T10960] __x64_sys_openat+0x174/0x210 [ 410.315487][T10960] ? __pfx___x64_sys_openat+0x10/0x10 [ 410.315554][T10960] do_syscall_64+0xcd/0xfa0 [ 410.315598][T10960] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.315632][T10960] RIP: 0033:0x7f6fc7f8f749 [ 410.315659][T10960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.315692][T10960] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 410.315723][T10960] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 410.315745][T10960] RDX: 0000000000000000 RSI: 0000200000000380 RDI: ffffffffffffff9c [ 410.315766][T10960] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 410.315785][T10960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.315805][T10960] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 410.315852][T10960] [ 411.241414][T10977] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1086'. [ 413.125910][T11015] FAULT_INJECTION: forcing a failure. [ 413.125910][T11015] name failslab, interval 1, probability 0, space 0, times 0 [ 413.158354][T11015] CPU: 1 UID: 0 PID: 11015 Comm: syz.0.1093 Not tainted syzkaller #0 PREEMPT(full) [ 413.158398][T11015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 413.158419][T11015] Call Trace: [ 413.158429][T11015] [ 413.158442][T11015] dump_stack_lvl+0x16c/0x1f0 [ 413.158489][T11015] should_fail_ex+0x512/0x640 [ 413.158539][T11015] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 413.158576][T11015] should_failslab+0xc2/0x120 [ 413.158620][T11015] kmem_cache_alloc_noprof+0x75/0x6e0 [ 413.158653][T11015] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 413.158685][T11015] ? acpi_ut_create_thread_state+0x6d/0x170 [ 413.158742][T11015] ? acpi_ut_create_thread_state+0x6d/0x170 [ 413.158790][T11015] acpi_ut_create_thread_state+0x6d/0x170 [ 413.158841][T11015] acpi_ps_parse_aml+0x12e/0x1170 [ 413.158891][T11015] ? acpi_ut_ptr_exit+0xfe/0x180 [ 413.158930][T11015] acpi_ps_execute_method+0x5c4/0xe90 [ 413.158974][T11015] acpi_ns_evaluate+0x98c/0x16d0 [ 413.159021][T11015] acpi_evaluate_object+0x4ca/0xdf0 [ 413.159078][T11015] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 413.159127][T11015] ? __mutex_trylock_common+0xe9/0x250 [ 413.159183][T11015] acpi_evaluate_integer+0xdd/0x200 [ 413.159222][T11015] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 413.159294][T11015] ? __pfx_status_show+0x10/0x10 [ 413.159340][T11015] status_show+0xa0/0x120 [ 413.159386][T11015] ? __pfx_status_show+0x10/0x10 [ 413.159445][T11015] dev_attr_show+0x56/0xe0 [ 413.159496][T11015] ? __pfx_dev_attr_show+0x10/0x10 [ 413.159545][T11015] sysfs_kf_seq_show+0x216/0x3e0 [ 413.159590][T11015] seq_read_iter+0x50e/0x12d0 [ 413.159660][T11015] kernfs_fop_read_iter+0x46c/0x610 [ 413.159693][T11015] ? rw_verify_area+0xcf/0x6c0 [ 413.159727][T11015] vfs_read+0x8bf/0xcf0 [ 413.159770][T11015] ? __pfx___mutex_lock+0x10/0x10 [ 413.159815][T11015] ? __pfx_vfs_read+0x10/0x10 [ 413.159882][T11015] ksys_read+0x12a/0x250 [ 413.159918][T11015] ? __pfx_ksys_read+0x10/0x10 [ 413.159967][T11015] do_syscall_64+0xcd/0xfa0 [ 413.160009][T11015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.160039][T11015] RIP: 0033:0x7f15fc98f749 [ 413.160062][T11015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.160098][T11015] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 413.160136][T11015] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 413.160162][T11015] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 413.160187][T11015] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 413.160209][T11015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.160233][T11015] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 413.160297][T11015] [ 413.182617][T11015] ACPI Error: ffff888143efd000 walk still has a scope list (20250807/dswstate-694) [ 414.098808][T11028] FAULT_INJECTION: forcing a failure. [ 414.098808][T11028] name failslab, interval 1, probability 0, space 0, times 0 [ 414.147732][T11028] CPU: 1 UID: 0 PID: 11028 Comm: syz.2.1102 Not tainted syzkaller #0 PREEMPT(full) [ 414.147776][T11028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 414.147798][T11028] Call Trace: [ 414.147806][T11028] [ 414.147818][T11028] dump_stack_lvl+0x16c/0x1f0 [ 414.147858][T11028] should_fail_ex+0x512/0x640 [ 414.147901][T11028] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 414.147934][T11028] should_failslab+0xc2/0x120 [ 414.147971][T11028] kmem_cache_alloc_noprof+0x75/0x6e0 [ 414.147998][T11028] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 414.148025][T11028] ? acpi_ut_create_thread_state+0x6d/0x170 [ 414.148074][T11028] ? acpi_ut_create_thread_state+0x6d/0x170 [ 414.148115][T11028] acpi_ut_create_thread_state+0x6d/0x170 [ 414.148173][T11028] acpi_ps_parse_aml+0x12e/0x1170 [ 414.148218][T11028] ? acpi_ut_ptr_exit+0xfe/0x180 [ 414.148250][T11028] acpi_ps_execute_method+0x5c4/0xe90 [ 414.148286][T11028] acpi_ns_evaluate+0x98c/0x16d0 [ 414.148324][T11028] acpi_evaluate_object+0x4ca/0xdf0 [ 414.148372][T11028] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 414.148414][T11028] ? __mutex_trylock_common+0xe9/0x250 [ 414.148460][T11028] acpi_evaluate_integer+0xdd/0x200 [ 414.148493][T11028] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 414.148541][T11028] ? __pfx_status_show+0x10/0x10 [ 414.148579][T11028] status_show+0xa0/0x120 [ 414.148617][T11028] ? __pfx_status_show+0x10/0x10 [ 414.148665][T11028] dev_attr_show+0x56/0xe0 [ 414.148708][T11028] ? __pfx_dev_attr_show+0x10/0x10 [ 414.148748][T11028] sysfs_kf_seq_show+0x216/0x3e0 [ 414.148786][T11028] seq_read_iter+0x50e/0x12d0 [ 414.148844][T11028] kernfs_fop_read_iter+0x46c/0x610 [ 414.148872][T11028] ? rw_verify_area+0xcf/0x6c0 [ 414.148901][T11028] vfs_read+0x8bf/0xcf0 [ 414.148934][T11028] ? __pfx___mutex_lock+0x10/0x10 [ 414.148971][T11028] ? __pfx_vfs_read+0x10/0x10 [ 414.149022][T11028] ksys_read+0x12a/0x250 [ 414.149052][T11028] ? __pfx_ksys_read+0x10/0x10 [ 414.149091][T11028] do_syscall_64+0xcd/0xfa0 [ 414.149134][T11028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.149163][T11028] RIP: 0033:0x7efe4b98f749 [ 414.149186][T11028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 414.149213][T11028] RSP: 002b:00007efe4c758038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 414.149238][T11028] RAX: ffffffffffffffda RBX: 00007efe4bbe5fa0 RCX: 00007efe4b98f749 [ 414.149257][T11028] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 414.149274][T11028] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 414.149289][T11028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 414.149306][T11028] R13: 00007efe4bbe6038 R14: 00007efe4bbe5fa0 R15: 00007fff256d9e08 [ 414.149341][T11028] [ 414.149432][T11028] ACPI Error: ffff88802480f000 walk still has a scope list (20250807/dswstate-694) [ 415.585078][T11059] FAULT_INJECTION: forcing a failure. [ 415.585078][T11059] name failslab, interval 1, probability 0, space 0, times 0 [ 415.605479][T11059] CPU: 0 UID: 0 PID: 11059 Comm: syz.0.1101 Not tainted syzkaller #0 PREEMPT(full) [ 415.605524][T11059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 415.605545][T11059] Call Trace: [ 415.605556][T11059] [ 415.605569][T11059] dump_stack_lvl+0x16c/0x1f0 [ 415.605615][T11059] should_fail_ex+0x512/0x640 [ 415.605664][T11059] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 415.605710][T11059] should_failslab+0xc2/0x120 [ 415.605755][T11059] __kvmalloc_node_noprof+0x141/0x9c0 [ 415.605795][T11059] ? trace_kmalloc+0x2b/0xd0 [ 415.605834][T11059] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 415.605872][T11059] ? io_alloc_cache_init+0x38/0x170 [ 415.605928][T11059] ? io_alloc_cache_init+0x38/0x170 [ 415.605975][T11059] io_alloc_cache_init+0x38/0x170 [ 415.606025][T11059] io_rsrc_cache_init+0x40/0x50 [ 415.606072][T11059] io_uring_setup+0x68e/0x20e0 [ 415.606117][T11059] ? __pfx_io_uring_setup+0x10/0x10 [ 415.606155][T11059] ? do_futex+0x122/0x350 [ 415.606201][T11059] ? __pfx_do_futex+0x10/0x10 [ 415.606269][T11059] ? xfd_validate_state+0x61/0x180 [ 415.606341][T11059] __x64_sys_io_uring_setup+0xc2/0x170 [ 415.606386][T11059] do_syscall_64+0xcd/0xfa0 [ 415.606430][T11059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.606463][T11059] RIP: 0033:0x7f15fc98f749 [ 415.606489][T11059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 415.606520][T11059] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 415.606552][T11059] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 415.606574][T11059] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 415.606592][T11059] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 415.606611][T11059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 415.606630][T11059] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 415.606674][T11059] [ 416.000448][T11066] FAULT_INJECTION: forcing a failure. [ 416.000448][T11066] name fail_futex, interval 1, probability 0, space 0, times 0 [ 416.015458][T11066] CPU: 0 UID: 0 PID: 11066 Comm: syz.0.1103 Not tainted syzkaller #0 PREEMPT(full) [ 416.015504][T11066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 416.015525][T11066] Call Trace: [ 416.015537][T11066] [ 416.015549][T11066] dump_stack_lvl+0x16c/0x1f0 [ 416.015598][T11066] should_fail_ex+0x512/0x640 [ 416.015656][T11066] get_futex_key+0x1d0/0x1560 [ 416.015705][T11066] ? __pfx_get_futex_key+0x10/0x10 [ 416.015752][T11066] ? __pick_eevdf+0x30a/0x670 [ 416.015800][T11066] futex_wait_setup+0x9d/0x550 [ 416.015844][T11066] __futex_wait+0x193/0x2f0 [ 416.015877][T11066] ? __pfx___futex_wait+0x10/0x10 [ 416.015904][T11066] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 416.015942][T11066] ? lockdep_hardirqs_on+0x7c/0x110 [ 416.015988][T11066] ? __pfx_futex_wake_mark+0x10/0x10 [ 416.016047][T11066] ? find_held_lock+0x2b/0x80 [ 416.016088][T11066] ? futex_private_hash_put+0xd5/0x190 [ 416.016134][T11066] futex_wait+0xe8/0x380 [ 416.016163][T11066] ? __pfx_futex_wait+0x10/0x10 [ 416.016213][T11066] do_futex+0x229/0x350 [ 416.016258][T11066] ? __pfx_do_futex+0x10/0x10 [ 416.016310][T11066] ? putname+0x154/0x1a0 [ 416.016363][T11066] __x64_sys_futex+0x1e0/0x4c0 [ 416.016417][T11066] ? __pfx___x64_sys_futex+0x10/0x10 [ 416.016463][T11066] ? __pfx___x64_sys_chdir+0x10/0x10 [ 416.016518][T11066] do_syscall_64+0xcd/0xfa0 [ 416.016559][T11066] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.016592][T11066] RIP: 0033:0x7f15fc98f749 [ 416.016618][T11066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.016649][T11066] RSP: 002b:00007f15fd82c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 416.016678][T11066] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa8 RCX: 00007f15fc98f749 [ 416.016700][T11066] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f15fcbe5fa8 [ 416.016719][T11066] RBP: 00007f15fcbe5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 416.016737][T11066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 416.016755][T11066] R13: 00007f15fcbe6038 R14: 00007ffeab82de40 R15: 00007ffeab82df28 [ 416.016798][T11066] [ 416.661719][T11075] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 417.775486][T11093] futex_wake_op: syz.0.1108 tries to shift op by -2048; fix this program [ 420.057250][T11133] FAULT_INJECTION: forcing a failure. [ 420.057250][T11133] name failslab, interval 1, probability 0, space 0, times 0 [ 420.089455][T11133] CPU: 1 UID: 0 PID: 11133 Comm: syz.3.1117 Not tainted syzkaller #0 PREEMPT(full) [ 420.089489][T11133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 420.089503][T11133] Call Trace: [ 420.089510][T11133] [ 420.089519][T11133] dump_stack_lvl+0x16c/0x1f0 [ 420.089552][T11133] should_fail_ex+0x512/0x640 [ 420.089589][T11133] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 420.089617][T11133] should_failslab+0xc2/0x120 [ 420.089649][T11133] kmem_cache_alloc_noprof+0x75/0x6e0 [ 420.089673][T11133] ? __proc_create+0x2ce/0x8e0 [ 420.089714][T11133] ? __proc_create+0x2ce/0x8e0 [ 420.089746][T11133] __proc_create+0x2ce/0x8e0 [ 420.089782][T11133] ? __pfx___proc_create+0x10/0x10 [ 420.089839][T11133] ? _raw_write_unlock+0x28/0x50 [ 420.089866][T11133] ? proc_register+0x559/0x8b0 [ 420.089906][T11133] proc_create_reg+0x7d/0x180 [ 420.089949][T11133] proc_create_data+0x86/0x110 [ 420.089986][T11133] ? __pfx_proc_create_data+0x10/0x10 [ 420.090025][T11133] ? cache_register_net+0x137/0x5e0 [ 420.090063][T11133] cache_register_net+0x2d6/0x5e0 [ 420.090097][T11133] nfsd_export_init+0xb6/0x250 [ 420.090140][T11133] ? __pfx_nfsd_net_init+0x10/0x10 [ 420.090182][T11133] nfsd_net_init+0x33/0x3d0 [ 420.090220][T11133] ? __pfx_nfsd_net_init+0x10/0x10 [ 420.090275][T11133] ops_init+0x1e2/0x5f0 [ 420.090314][T11133] setup_net+0x100/0x390 [ 420.090351][T11133] ? __pfx_setup_net+0x10/0x10 [ 420.090378][T11133] ? debug_mutex_init+0x37/0x70 [ 420.090407][T11133] copy_net_ns+0x2f8/0x690 [ 420.090438][T11133] create_new_namespaces+0x3ea/0xa90 [ 420.090473][T11133] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 420.090503][T11133] ksys_unshare+0x45b/0xa40 [ 420.090536][T11133] ? __pfx_ksys_unshare+0x10/0x10 [ 420.090569][T11133] ? xfd_validate_state+0x61/0x180 [ 420.090612][T11133] __x64_sys_unshare+0x31/0x40 [ 420.090643][T11133] do_syscall_64+0xcd/0xfa0 [ 420.090675][T11133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 420.090699][T11133] RIP: 0033:0x7f6fc7f8f749 [ 420.090717][T11133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 420.090741][T11133] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 420.090763][T11133] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 420.090778][T11133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 420.090792][T11133] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 420.090805][T11133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 420.090818][T11133] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 420.090850][T11133] [ 427.469663][T11266] capability: warning: `syz.1.1143' uses 32-bit capabilities (legacy support in use) [ 428.548150][T11284] FAULT_INJECTION: forcing a failure. [ 428.548150][T11284] name failslab, interval 1, probability 0, space 0, times 0 [ 428.560966][T11284] CPU: 0 UID: 0 PID: 11284 Comm: syz.2.1144 Not tainted syzkaller #0 PREEMPT(full) [ 428.561010][T11284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 428.561031][T11284] Call Trace: [ 428.561040][T11284] [ 428.561052][T11284] dump_stack_lvl+0x16c/0x1f0 [ 428.561099][T11284] should_fail_ex+0x512/0x640 [ 428.561150][T11284] ? __kmalloc_cache_noprof+0x5f/0x780 [ 428.561185][T11284] ? __pfx_debugfs_u8_set+0x10/0x10 [ 428.561220][T11284] should_failslab+0xc2/0x120 [ 428.561264][T11284] ? __pfx_debugfs_u8_set+0x10/0x10 [ 428.561298][T11284] __kmalloc_cache_noprof+0x72/0x780 [ 428.561332][T11284] ? simple_attr_open+0x57/0x1c0 [ 428.561367][T11284] ? __pfx_debugfs_u8_set+0x10/0x10 [ 428.561400][T11284] ? __pfx_debugfs_u8_get+0x10/0x10 [ 428.561433][T11284] ? simple_attr_open+0x57/0x1c0 [ 428.561463][T11284] simple_attr_open+0x57/0x1c0 [ 428.561497][T11284] ? __pfx_fops_u8_open+0x10/0x10 [ 428.561533][T11284] open_proxy_open+0x21f/0x320 [ 428.561588][T11284] do_dentry_open+0x982/0x1530 [ 428.561629][T11284] ? __pfx_open_proxy_open+0x10/0x10 [ 428.561686][T11284] vfs_open+0x82/0x3f0 [ 428.561739][T11284] path_openat+0x1de4/0x2cb0 [ 428.561791][T11284] ? __pfx_path_openat+0x10/0x10 [ 428.561829][T11284] ? __lock_acquire+0xb8a/0x1c90 [ 428.561881][T11284] do_filp_open+0x20b/0x470 [ 428.561931][T11284] ? __pfx_do_filp_open+0x10/0x10 [ 428.562000][T11284] ? alloc_fd+0x471/0x7d0 [ 428.562048][T11284] do_sys_openat2+0x11b/0x1d0 [ 428.562099][T11284] ? __pfx_do_sys_openat2+0x10/0x10 [ 428.562166][T11284] __x64_sys_openat+0x174/0x210 [ 428.562217][T11284] ? __pfx___x64_sys_openat+0x10/0x10 [ 428.562270][T11284] ? syscall_user_dispatch+0x78/0x140 [ 428.562315][T11284] do_syscall_64+0xcd/0xfa0 [ 428.562361][T11284] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.562394][T11284] RIP: 0033:0x7efe4b98f749 [ 428.562421][T11284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 428.562453][T11284] RSP: 002b:00007efe49bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 428.562485][T11284] RAX: ffffffffffffffda RBX: 00007efe4bbe6180 RCX: 00007efe4b98f749 [ 428.562507][T11284] RDX: 0000000000020000 RSI: 00002000000014c0 RDI: ffffffffffffff9c [ 428.562528][T11284] RBP: 00007efe4ba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 428.562549][T11284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.562569][T11284] R13: 00007efe4bbe6218 R14: 00007efe4bbe6180 R15: 00007fff256d9e08 [ 428.562614][T11284] [ 430.978780][T11316] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1150'. [ 431.421634][ T30] audit: type=1806 audit(4294967393.640:21): xattr=01 res=-22 [ 431.453634][ T30] audit: type=1806 audit(4294967393.670:22): xattr="" res=-22 [ 431.688886][T11336] Format for adding new device is "id port_count num_queues" (uint uint unit). [ 432.016872][ T7787] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 432.045250][ T7787] EXT4-fs (sda1): This should not happen!! Data will be lost [ 432.045250][ T7787] [ 433.460614][ T5839] Bluetooth: hci2: unexpected event 0x01 length: 5 > 1 [ 434.022669][T11384] Format for adding new device is "id port_count num_queues" (uint uint unit). [ 434.339706][T11391] FAULT_INJECTION: forcing a failure. [ 434.339706][T11391] name failslab, interval 1, probability 0, space 0, times 0 [ 434.381708][T11391] CPU: 0 UID: 0 PID: 11391 Comm: syz.0.1171 Not tainted syzkaller #0 PREEMPT(full) [ 434.381750][T11391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 434.381770][T11391] Call Trace: [ 434.381780][T11391] [ 434.381791][T11391] dump_stack_lvl+0x16c/0x1f0 [ 434.381836][T11391] should_fail_ex+0x512/0x640 [ 434.381884][T11391] ? fs_reclaim_acquire+0xae/0x150 [ 434.381930][T11391] should_failslab+0xc2/0x120 [ 434.381973][T11391] __kmalloc_cache_noprof+0x72/0x780 [ 434.382005][T11391] ? do_proc_control+0x335/0x10a0 [ 434.382055][T11391] ? do_proc_control+0x335/0x10a0 [ 434.382095][T11391] do_proc_control+0x335/0x10a0 [ 434.382141][T11391] ? __might_fault+0x13b/0x190 [ 434.382175][T11391] ? __pfx_do_proc_control+0x10/0x10 [ 434.382229][T11391] usbdev_ioctl+0x22ff/0x4070 [ 434.382278][T11391] ? __pfx_usbdev_ioctl+0x10/0x10 [ 434.382330][T11391] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 434.382386][T11391] ? do_vfs_ioctl+0x128/0x14f0 [ 434.382486][T11391] ? find_held_lock+0x2b/0x80 [ 434.382520][T11391] ? hook_file_ioctl_common+0x145/0x410 [ 434.382565][T11391] ? __fget_files+0x20e/0x3c0 [ 434.382602][T11391] ? __pfx_usbdev_ioctl+0x10/0x10 [ 434.382649][T11391] __x64_sys_ioctl+0x18e/0x210 [ 434.382701][T11391] do_syscall_64+0xcd/0xfa0 [ 434.382749][T11391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.382783][T11391] RIP: 0033:0x7f15fc98f749 [ 434.382808][T11391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.382841][T11391] RSP: 002b:00007f15fd82c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 434.382870][T11391] RAX: ffffffffffffffda RBX: 00007f15fcbe5fa0 RCX: 00007f15fc98f749 [ 434.382891][T11391] RDX: 0000200000000040 RSI: 00000000c0185500 RDI: 0000000000000008 [ 434.382911][T11391] RBP: 00007f15fca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 434.382931][T11391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.382949][T11391] R13: 00007f15fcbe6038 R14: 00007f15fcbe5fa0 R15: 00007ffeab82df28 [ 434.382994][T11391] [ 434.981771][T11395] netlink: 196 bytes leftover after parsing attributes in process `syz.1.1170'. [ 435.415785][T11417] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1175'. [ 435.476333][T11418] netlink: 93 bytes leftover after parsing attributes in process `syz.3.1175'. [ 436.273251][ T5839] Bluetooth: hci1: unexpected event 0x01 length: 5 > 1 [ 436.514104][T11441] random: crng reseeded on system resumption [ 437.356088][T11430] Process accounting paused [ 438.618547][ T30] audit: type=1800 audit(4294967400.830:23): pid=11468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1185" name="features" dev="configfs" ino=39598 res=0 errno=0 [ 438.654881][T11468] netlink: 'syz.2.1185': attribute type 33 has an invalid length. [ 438.662930][T11468] netlink: 322 bytes leftover after parsing attributes in process `syz.2.1185'. [ 438.797462][T11466] FAULT_INJECTION: forcing a failure. [ 438.797462][T11466] name fail_futex, interval 1, probability 0, space 0, times 0 [ 438.887138][T11466] CPU: 0 UID: 0 PID: 11466 Comm: syz.3.1184 Not tainted syzkaller #0 PREEMPT(full) [ 438.887182][T11466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 438.887198][T11466] Call Trace: [ 438.887206][T11466] [ 438.887215][T11466] dump_stack_lvl+0x16c/0x1f0 [ 438.887250][T11466] should_fail_ex+0x512/0x640 [ 438.887292][T11466] get_futex_key+0x1d0/0x1560 [ 438.887328][T11466] ? __pfx_get_futex_key+0x10/0x10 [ 438.887359][T11466] ? stack_trace_save+0x8e/0xc0 [ 438.887387][T11466] ? __pfx_stack_trace_save+0x10/0x10 [ 438.887416][T11466] ? stack_depot_save_flags+0x29/0x9c0 [ 438.887458][T11466] futex_wait_setup+0x9d/0x550 [ 438.887489][T11466] __futex_wait+0x193/0x2f0 [ 438.887511][T11466] ? __pfx___futex_wait+0x10/0x10 [ 438.887538][T11466] ? __pfx_futex_wake_mark+0x10/0x10 [ 438.887580][T11466] ? futex_hash+0x2c5/0x380 [ 438.887613][T11466] ? futex_private_hash_put+0xd5/0x190 [ 438.887656][T11466] futex_wait+0xe8/0x380 [ 438.887677][T11466] ? __pfx_futex_wait+0x10/0x10 [ 438.887705][T11466] ? kmem_cache_free+0x2d4/0x6c0 [ 438.887730][T11466] ? putname+0x154/0x1a0 [ 438.887768][T11466] do_futex+0x229/0x350 [ 438.887801][T11466] ? __pfx_do_futex+0x10/0x10 [ 438.887833][T11466] ? map_id_range_up+0x2ce/0x3b0 [ 438.887862][T11466] __x64_sys_futex+0x1e0/0x4c0 [ 438.887897][T11466] ? __x64_sys_openat+0x174/0x210 [ 438.887933][T11466] ? __pfx___x64_sys_futex+0x10/0x10 [ 438.887977][T11466] do_syscall_64+0xcd/0xfa0 [ 438.888009][T11466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.888033][T11466] RIP: 0033:0x7f6fc7f8f749 [ 438.888052][T11466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.888075][T11466] RSP: 002b:00007f6fc8ddc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 438.888097][T11466] RAX: ffffffffffffffda RBX: 00007f6fc81e6098 RCX: 00007f6fc7f8f749 [ 438.888112][T11466] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6fc81e6098 [ 438.888126][T11466] RBP: 00007f6fc81e6090 R08: 0000000000000000 R09: 0000000000000000 [ 438.888140][T11466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 438.888154][T11466] R13: 00007f6fc81e6128 R14: 00007ffe5e8c42c0 R15: 00007ffe5e8c43a8 [ 438.888185][T11466] [ 440.772943][T11490] blktrace: Concurrent blktraces are not allowed on loop5 [ 441.373406][ T5839] Bluetooth: hci0: unexpected event 0x01 length: 5 > 1 [ 443.765741][T11561] FAULT_INJECTION: forcing a failure. [ 443.765741][T11561] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 443.844083][T11561] CPU: 0 UID: 0 PID: 11561 Comm: syz.0.1201 Not tainted syzkaller #0 PREEMPT(full) [ 443.844126][T11561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 443.844141][T11561] Call Trace: [ 443.844149][T11561] [ 443.844158][T11561] dump_stack_lvl+0x16c/0x1f0 [ 443.844199][T11561] should_fail_ex+0x512/0x640 [ 443.844241][T11561] should_fail_alloc_page+0xe7/0x130 [ 443.844277][T11561] prepare_alloc_pages+0x3c2/0x610 [ 443.844318][T11561] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 443.844363][T11561] ? mas_find+0x156/0x6d0 [ 443.844406][T11561] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 443.844449][T11561] ? validate_mm+0x403/0x560 [ 443.844503][T11561] ? __pfx_validate_mm+0x10/0x10 [ 443.844549][T11561] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 443.844589][T11561] ? vma_wants_writenotify+0x10b/0x390 [ 443.844615][T11561] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 443.844656][T11561] ? policy_nodemask+0xea/0x4e0 [ 443.844691][T11561] alloc_pages_mpol+0x1fb/0x550 [ 443.844725][T11561] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 443.844767][T11561] alloc_pages_noprof+0x131/0x390 [ 443.844800][T11561] __pmd_alloc+0x3b/0x8b0 [ 443.844831][T11561] ? find_held_lock+0x2b/0x80 [ 443.844858][T11561] __handle_mm_fault+0xada/0x2aa0 [ 443.844905][T11561] ? __pfx___handle_mm_fault+0x10/0x10 [ 443.844969][T11561] handle_mm_fault+0x589/0xd10 [ 443.845013][T11561] __get_user_pages+0x54e/0x3530 [ 443.845059][T11561] ? __pfx___get_user_pages+0x10/0x10 [ 443.845101][T11561] populate_vma_page_range+0x267/0x3f0 [ 443.845138][T11561] ? __pfx_populate_vma_page_range+0x10/0x10 [ 443.845172][T11561] ? __pfx_find_vma_intersection+0x10/0x10 [ 443.845208][T11561] ? do_mmap+0x69c/0x1210 [ 443.845242][T11561] __mm_populate+0x1d8/0x380 [ 443.845277][T11561] ? __pfx___mm_populate+0x10/0x10 [ 443.845314][T11561] ? up_write+0x1b2/0x520 [ 443.845353][T11561] vm_mmap_pgoff+0x37f/0x470 [ 443.845388][T11561] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 443.845426][T11561] ? __x64_sys_futex+0x1e0/0x4c0 [ 443.845466][T11561] ? __x64_sys_futex+0x1e9/0x4c0 [ 443.845502][T11561] ksys_mmap_pgoff+0x7d/0x5c0 [ 443.845531][T11561] ? xfd_validate_state+0x61/0x180 [ 443.845565][T11561] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 443.845598][T11561] __x64_sys_mmap+0x125/0x190 [ 443.845637][T11561] do_syscall_64+0xcd/0xfa0 [ 443.845669][T11561] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 443.845694][T11561] RIP: 0033:0x7f15fc98f749 [ 443.845713][T11561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.845736][T11561] RSP: 002b:00007f15fd80b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 443.845759][T11561] RAX: ffffffffffffffda RBX: 00007f15fcbe6090 RCX: 00007f15fc98f749 [ 443.845774][T11561] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 443.845788][T11561] RBP: 00007f15fca13f91 R08: 0000000000000002 R09: 0000000000008000 [ 443.845802][T11561] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 443.845816][T11561] R13: 00007f15fcbe6128 R14: 00007f15fcbe6090 R15: 00007ffeab82df28 [ 443.845848][T11561] [ 448.345866][T11615] FAULT_INJECTION: forcing a failure. [ 448.345866][T11615] name failslab, interval 1, probability 0, space 0, times 0 [ 448.444895][T11615] CPU: 1 UID: 0 PID: 11615 Comm: syz.3.1212 Not tainted syzkaller #0 PREEMPT(full) [ 448.444937][T11615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 448.444957][T11615] Call Trace: [ 448.444967][T11615] [ 448.444980][T11615] dump_stack_lvl+0x16c/0x1f0 [ 448.445026][T11615] should_fail_ex+0x512/0x640 [ 448.445076][T11615] ? __kmalloc_cache_noprof+0x5f/0x780 [ 448.445111][T11615] should_failslab+0xc2/0x120 [ 448.445155][T11615] __kmalloc_cache_noprof+0x72/0x780 [ 448.445187][T11615] ? allocate_file_region_entries+0x1a0/0x620 [ 448.445235][T11615] ? allocate_file_region_entries+0x1a0/0x620 [ 448.445270][T11615] ? _raw_spin_unlock+0x28/0x50 [ 448.445311][T11615] allocate_file_region_entries+0x1a0/0x620 [ 448.445360][T11615] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 448.445412][T11615] region_chg+0x85/0x140 [ 448.445455][T11615] __vma_reservation_common+0x43b/0x740 [ 448.445503][T11615] ? __pfx___vma_reservation_common+0x10/0x10 [ 448.445547][T11615] ? __pfx___might_resched+0x10/0x10 [ 448.445578][T11615] ? folio_zero_user+0x1db/0x7c0 [ 448.445633][T11615] hugetlb_fault+0x198e/0x2f40 [ 448.445672][T11615] ? __pfx_hugetlb_fault+0x10/0x10 [ 448.445721][T11615] ? find_vma+0xbf/0x140 [ 448.445758][T11615] ? __pfx_find_vma+0x10/0x10 [ 448.445798][T11615] handle_mm_fault+0xbfa/0xd10 [ 448.445848][T11615] ? __pkru_allows_pkey+0x21/0xb0 [ 448.445902][T11615] do_user_addr_fault+0x7a6/0x1370 [ 448.445936][T11615] ? rcu_is_watching+0x12/0xc0 [ 448.445976][T11615] exc_page_fault+0x64/0xc0 [ 448.446016][T11615] asm_exc_page_fault+0x26/0x30 [ 448.446047][T11615] RIP: 0010:__put_user_4+0xd/0x20 [ 448.446087][T11615] Code: 66 89 01 31 c9 0f 01 ca e9 c0 80 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca e9 97 80 03 00 0f 1f 80 00 00 00 00 90 90 90 [ 448.446118][T11615] RSP: 0018:ffffc90002f67e18 EFLAGS: 00050246 [ 448.446143][T11615] RAX: 0000000000000005 RBX: 0000000000000000 RCX: 0000000000000000 [ 448.446161][T11615] RDX: 0000000000080000 RSI: ffffffff8924ec14 RDI: ffffffff8bf078c0 [ 448.446181][T11615] RBP: 1ffff920005ecfc7 R08: 007da75da6d4f6ed R09: 0000000000000000 [ 448.446201][T11615] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000005 [ 448.446219][T11615] R13: 0000000000000006 R14: 0000000000000005 R15: dffffc0000000000 [ 448.446252][T11615] ? __sys_socketpair+0x114/0x5a0 [ 448.446312][T11615] __sys_socketpair+0x120/0x5a0 [ 448.446361][T11615] ? __pfx___sys_socketpair+0x10/0x10 [ 448.446402][T11615] ? fput+0x9b/0xd0 [ 448.446447][T11615] ? xfd_validate_state+0x61/0x180 [ 448.446490][T11615] ? __pfx_ksys_write+0x10/0x10 [ 448.446532][T11615] __x64_sys_socketpair+0x96/0x100 [ 448.446575][T11615] ? lockdep_hardirqs_on+0x7c/0x110 [ 448.446612][T11615] do_syscall_64+0xcd/0xfa0 [ 448.446653][T11615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 448.446683][T11615] RIP: 0033:0x7f6fc7f8f749 [ 448.446709][T11615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 448.446740][T11615] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 448.446770][T11615] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 448.446791][T11615] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 448.446810][T11615] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 448.446829][T11615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 448.446848][T11615] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 448.446893][T11615] [ 451.462331][T11672] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1224'. [ 451.526922][T11672] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1224'. [ 456.004915][T11752] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1238'. [ 460.532056][T11806] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1247'. [ 461.681204][T11828] random: crng reseeded on system resumption [ 462.577725][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 462.607192][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 462.607192][ T36] [ 463.161854][T11839] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1255'. [ 463.812267][T11860] FAULT_INJECTION: forcing a failure. [ 463.812267][T11860] name failslab, interval 1, probability 0, space 0, times 0 [ 463.825132][T11860] CPU: 0 UID: 0 PID: 11860 Comm: syz.3.1260 Not tainted syzkaller #0 PREEMPT(full) [ 463.825173][T11860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 463.825188][T11860] Call Trace: [ 463.825197][T11860] [ 463.825207][T11860] dump_stack_lvl+0x16c/0x1f0 [ 463.825242][T11860] should_fail_ex+0x512/0x640 [ 463.825279][T11860] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 463.825307][T11860] should_failslab+0xc2/0x120 [ 463.825340][T11860] kmem_cache_alloc_noprof+0x75/0x6e0 [ 463.825365][T11860] ? __pfx_acpi_ut_track_stack_ptr+0x10/0x10 [ 463.825388][T11860] ? acpi_ut_create_generic_state+0x61/0xc0 [ 463.825432][T11860] ? acpi_ut_create_generic_state+0x61/0xc0 [ 463.825468][T11860] acpi_ut_create_generic_state+0x61/0xc0 [ 463.825506][T11860] acpi_ds_scope_stack_push+0x70/0x790 [ 463.825548][T11860] acpi_ds_init_aml_walk+0x2d8/0x680 [ 463.825591][T11860] acpi_ps_execute_method+0x39d/0xe90 [ 463.825624][T11860] acpi_ns_evaluate+0x98c/0x16d0 [ 463.825657][T11860] acpi_evaluate_object+0x4ca/0xdf0 [ 463.825699][T11860] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 463.825735][T11860] ? __mutex_trylock_common+0xe9/0x250 [ 463.825775][T11860] acpi_evaluate_integer+0xdd/0x200 [ 463.825804][T11860] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 463.825856][T11860] ? __pfx_status_show+0x10/0x10 [ 463.825890][T11860] status_show+0xa0/0x120 [ 463.825924][T11860] ? __pfx_status_show+0x10/0x10 [ 463.825967][T11860] dev_attr_show+0x56/0xe0 [ 463.826006][T11860] ? __pfx_dev_attr_show+0x10/0x10 [ 463.826041][T11860] sysfs_kf_seq_show+0x216/0x3e0 [ 463.826074][T11860] seq_read_iter+0x50e/0x12d0 [ 463.826127][T11860] kernfs_fop_read_iter+0x46c/0x610 [ 463.826151][T11860] ? rw_verify_area+0xcf/0x6c0 [ 463.826177][T11860] vfs_read+0x8bf/0xcf0 [ 463.826206][T11860] ? __pfx___mutex_lock+0x10/0x10 [ 463.826238][T11860] ? __pfx_vfs_read+0x10/0x10 [ 463.826284][T11860] ksys_read+0x12a/0x250 [ 463.826310][T11860] ? __pfx_ksys_read+0x10/0x10 [ 463.826345][T11860] do_syscall_64+0xcd/0xfa0 [ 463.826376][T11860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 463.826401][T11860] RIP: 0033:0x7f6fc7f8f749 [ 463.826420][T11860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 463.826443][T11860] RSP: 002b:00007f6fc8dfd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 463.826466][T11860] RAX: ffffffffffffffda RBX: 00007f6fc81e5fa0 RCX: 00007f6fc7f8f749 [ 463.826481][T11860] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005 [ 463.826495][T11860] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 463.826509][T11860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 463.826522][T11860] R13: 00007f6fc81e6038 R14: 00007f6fc81e5fa0 R15: 00007ffe5e8c43a8 [ 463.826554][T11860] [ 463.826567][T11860] ACPI Error: ffff88807c93c000 walk still has a scope list (20250807/dswstate-694) [ 464.393795][T11862] zswap: compressor not available [ 466.658331][T11903] random: crng reseeded on system resumption [ 468.046821][T11912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1272'. [ 468.143716][T11885] Process accounting resumed [ 468.615366][T11921] FAULT_INJECTION: forcing a failure. [ 468.615366][T11921] name failslab, interval 1, probability 0, space 0, times 0 [ 468.680906][T11921] CPU: 1 UID: 0 PID: 11921 Comm: syz.3.1274 Not tainted syzkaller #0 PREEMPT(full) [ 468.680950][T11921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 468.680969][T11921] Call Trace: [ 468.680979][T11921] [ 468.680991][T11921] dump_stack_lvl+0x16c/0x1f0 [ 468.681036][T11921] should_fail_ex+0x512/0x640 [ 468.681084][T11921] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 468.681128][T11921] should_failslab+0xc2/0x120 [ 468.681173][T11921] __kvmalloc_node_noprof+0x141/0x9c0 [ 468.681216][T11921] ? traverse.part.0.constprop.0+0x397/0x650 [ 468.681278][T11921] ? traverse.part.0.constprop.0+0x397/0x650 [ 468.681330][T11921] traverse.part.0.constprop.0+0x397/0x650 [ 468.681396][T11921] seq_read_iter+0x93c/0x12d0 [ 468.681474][T11921] kernfs_fop_read_iter+0x46c/0x610 [ 468.681509][T11921] ? rw_verify_area+0xcf/0x6c0 [ 468.681545][T11921] vfs_read+0x8bf/0xcf0 [ 468.681589][T11921] ? __pfx_vfs_read+0x10/0x10 [ 468.681621][T11921] ? find_held_lock+0x2b/0x80 [ 468.681682][T11921] __x64_sys_pread64+0x1eb/0x250 [ 468.681722][T11921] ? __pfx___x64_sys_pread64+0x10/0x10 [ 468.681775][T11921] do_syscall_64+0xcd/0xfa0 [ 468.681820][T11921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 468.681852][T11921] RIP: 0033:0x7f6fc7f8f749 [ 468.681877][T11921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.681909][T11921] RSP: 002b:00007f6fc8dbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 468.681945][T11921] RAX: ffffffffffffffda RBX: 00007f6fc81e6180 RCX: 00007f6fc7f8f749 [ 468.681966][T11921] RDX: 000000000000007f RSI: 0000200000000500 RDI: 0000000000000003 [ 468.681987][T11921] RBP: 00007f6fc8dbb090 R08: 0000000000000000 R09: 0000000000000000 [ 468.682007][T11921] R10: 00000000437bd615 R11: 0000000000000246 R12: 0000000000000001 [ 468.682027][T11921] R13: 00007f6fc81e6218 R14: 00007f6fc81e6180 R15: 00007ffe5e8c43a8 [ 468.682072][T11921] [ 472.881444][ T5839] Bluetooth: hci0: Received unexpected HCI Event 0x00 [ 472.986121][T11968] FAULT_INJECTION: forcing a failure. [ 472.986121][T11968] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 473.067115][T11968] CPU: 1 UID: 0 PID: 11968 Comm: syz.2.1285 Not tainted syzkaller #0 PREEMPT(full) [ 473.067159][T11968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 473.067179][T11968] Call Trace: [ 473.067190][T11968] [ 473.067202][T11968] dump_stack_lvl+0x16c/0x1f0 [ 473.067249][T11968] should_fail_ex+0x512/0x640 [ 473.067306][T11968] _copy_to_user+0x32/0xd0 [ 473.067341][T11968] simple_read_from_buffer+0xcb/0x170 [ 473.067399][T11968] proc_fail_nth_read+0x197/0x240 [ 473.067437][T11968] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 473.067477][T11968] ? rw_verify_area+0xcf/0x6c0 [ 473.067517][T11968] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 473.067554][T11968] vfs_read+0x1e4/0xcf0 [ 473.067596][T11968] ? __pfx___mutex_lock+0x10/0x10 [ 473.067651][T11968] ? __pfx_vfs_read+0x10/0x10 [ 473.067699][T11968] ? __fget_files+0x20e/0x3c0 [ 473.067746][T11968] ksys_read+0x12a/0x250 [ 473.067781][T11968] ? __pfx_ksys_read+0x10/0x10 [ 473.067814][T11968] ? syscall_user_dispatch+0x78/0x140 [ 473.067858][T11968] do_syscall_64+0xcd/0xfa0 [ 473.067904][T11968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.067937][T11968] RIP: 0033:0x7efe4b98e15c [ 473.067963][T11968] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 473.067994][T11968] RSP: 002b:00007efe49bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 473.068022][T11968] RAX: ffffffffffffffda RBX: 00007efe4bbe6090 RCX: 00007efe4b98e15c [ 473.068044][T11968] RDX: 000000000000000f RSI: 00007efe49bf60a0 RDI: 0000000000000005 [ 473.068060][T11968] RBP: 00007efe49bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 473.068073][T11968] R10: 00000000437bd615 R11: 0000000000000246 R12: 0000000000000001 [ 473.068087][T11968] R13: 00007efe4bbe6128 R14: 00007efe4bbe6090 R15: 00007fff256d9e08 [ 473.068119][T11968] [ 473.701345][T11983] blk_print_req_error: 24 callbacks suppressed [ 473.701372][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 473.746972][T11983] buffer_io_error: 23 callbacks suppressed [ 473.765533][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 473.785911][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 473.820379][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 473.849746][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 473.860032][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 473.887442][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 473.918174][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 473.939568][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 473.960342][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 473.984443][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 474.026537][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 474.059987][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 474.087217][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 474.095285][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 474.147303][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 474.157447][T11983] ldm_validate_partition_table(): Disk read failed. [ 474.164355][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 474.257513][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 474.273226][T11983] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 474.339513][T11983] Buffer I/O error on dev nbd0, logical block 0, async page read [ 474.378253][T11983] Dev nbd0: unable to read RDB block 0 [ 474.384763][T11983] nbd0: unable to read partition table [ 474.439811][ T5199] ldm_validate_partition_table(): Disk read failed. [ 474.468700][ T5199] Dev nbd0: unable to read RDB block 0 [ 474.478249][ T5199] nbd0: unable to read partition table [ 474.520924][ T5199] ldm_validate_partition_table(): Disk read failed. [ 474.725111][ T5199] Dev nbd0: unable to read RDB block 0 [ 474.736342][ T5199] nbd0: unable to read partition table [ 474.817639][ T9617] ldm_validate_partition_table(): Disk read failed. [ 474.845367][ T9617] Dev nbd0: unable to read RDB block 0 [ 474.917315][ T9617] nbd0: unable to read partition table [ 475.049432][ T9617] ldm_validate_partition_table(): Disk read failed. [ 475.100528][ T9617] Dev nbd0: unable to read RDB block 0 [ 475.111663][ T9617] nbd0: unable to read partition table [ 480.432872][ T5839] Bluetooth: hci2: Received unexpected HCI Event 0x00 [ 482.198014][T12088] CIFS: VFS: Invalid SecurityFlags: 0 [ 483.156825][T12102] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1312'. [ 484.233209][T12114] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 485.510868][ T5839] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 486.287749][ T30] audit: type=1800 audit(4294967448.490:24): pid=12152 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1321" name="lu_gp_id" dev="configfs" ino=43581 res=0 errno=0 [ 490.822557][T12233] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1335'. [ 491.532559][T12241] phram: not enough arguments [ 493.138791][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117 [ 493.193663][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 493.193663][ T36] [ 493.895304][T12287] hub 1-0:1.0: USB hub found [ 493.928587][T12287] hub 1-0:1.0: 1 port detected [ 494.435370][T12295] Invalid ELF header magic: != ELF [ 495.421359][T12310] [ 495.423773][T12310] ====================================================== [ 495.430838][T12310] WARNING: possible circular locking dependency detected [ 495.437896][T12310] syzkaller #0 Not tainted [ 495.442352][T12310] ------------------------------------------------------ [ 495.449403][T12310] syz.3.1348/12310 is trying to acquire lock: [ 495.455509][T12310] ffff88801cef0220 (&root->kernfs_iattr_rwsem){++++}-{4:4}, at: kernfs_unlink_sibling+0xa3/0x320 [ 495.466145][T12310] [ 495.466145][T12310] but task is already holding lock: [ 495.473547][T12310] ffff88801cef0188 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_remove+0x2f/0x50 [ 495.482888][T12310] [ 495.482888][T12310] which lock already depends on the new lock. [ 495.482888][T12310] [ 495.493332][T12310] [ 495.493332][T12310] the existing dependency chain (in reverse order) is: [ 495.502385][T12310] [ 495.502385][T12310] -> #10 (&root->kernfs_rwsem){++++}-{4:4}: [ 495.510542][T12310] down_write+0x92/0x200 [ 495.515380][T12310] kernfs_add_one+0x38/0x840 [ 495.520556][T12310] kernfs_create_dir_ns+0xfc/0x1a0 [ 495.526262][T12310] internal_create_group+0x34d/0xf30 [ 495.532131][T12310] cpuhp_invoke_callback+0x3d5/0xa10 [ 495.537993][T12310] cpuhp_issue_call+0x1c0/0x980 [ 495.543424][T12310] __cpuhp_setup_state_cpuslocked+0x3a1/0x7b0 [ 495.550070][T12310] __cpuhp_setup_state+0xf4/0x300 [ 495.555673][T12310] do_one_initcall+0x123/0x6e0 [ 495.561022][T12310] kernel_init_freeable+0x5c8/0x920 [ 495.566815][T12310] kernel_init+0x1c/0x2b0 [ 495.571737][T12310] ret_from_fork+0x675/0x7d0 [ 495.576915][T12310] ret_from_fork_asm+0x1a/0x30 [ 495.582266][T12310] [ 495.582266][T12310] -> #9 (cpuhp_state_mutex){+.+.}-{4:4}: [ 495.590156][T12310] [ 495.590156][T12310] -> #8 (cpu_hotplug_lock){++++}-{0:0}: [ 495.597959][T12310] cpus_read_lock+0x42/0x160 [ 495.603130][T12310] static_key_slow_inc+0x12/0x30 [ 495.608652][T12310] setup_udp_tunnel_sock+0x39b/0x680 [ 495.614525][T12310] l2tp_tunnel_register+0x9c8/0xbe0 [ 495.620324][T12310] pppol2tp_tunnel_get.constprop.0+0x3f0/0x540 [ 495.627080][T12310] pppol2tp_connect+0xb1b/0x1ce0 [ 495.632606][T12310] __sys_connect_file+0x141/0x1a0 [ 495.638223][T12310] __sys_connect+0x13b/0x160 [ 495.643379][T12310] __x64_sys_connect+0x72/0xb0 [ 495.648752][T12310] do_syscall_64+0xcd/0xfa0 [ 495.653807][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.660241][T12310] [ 495.660241][T12310] -> #7 (sk_lock-AF_INET){+.+.}-{0:0}: [ 495.667912][T12310] lock_sock_nested+0x41/0xf0 [ 495.673135][T12310] inet_shutdown+0x67/0x440 [ 495.678201][T12310] nbd_mark_nsock_dead+0xae/0x5d0 [ 495.683773][T12310] recv_work+0x671/0xa80 [ 495.688563][T12310] process_one_work+0x9cf/0x1b70 [ 495.694061][T12310] worker_thread+0x6c8/0xf10 [ 495.699187][T12310] kthread+0x3c5/0x780 [ 495.703805][T12310] ret_from_fork+0x675/0x7d0 [ 495.708944][T12310] ret_from_fork_asm+0x1a/0x30 [ 495.714250][T12310] [ 495.714250][T12310] -> #6 (&nsock->tx_lock){+.+.}-{4:4}: [ 495.721914][T12310] __mutex_lock+0x193/0x1060 [ 495.727056][T12310] nbd_queue_rq+0x423/0x12d0 [ 495.732197][T12310] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 495.738301][T12310] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 495.745165][T12310] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 495.751692][T12310] blk_mq_run_hw_queue+0x239/0x670 [ 495.757344][T12310] blk_mq_dispatch_list+0x514/0x1310 [ 495.763165][T12310] blk_mq_flush_plug_list+0x130/0x600 [ 495.769075][T12310] __blk_flush_plug+0x2c4/0x4b0 [ 495.774492][T12310] __submit_bio+0x545/0x690 [ 495.779537][T12310] submit_bio_noacct_nocheck+0x53d/0xc10 [ 495.785710][T12310] submit_bio_noacct+0x5bd/0x1f60 [ 495.791275][T12310] block_read_full_folio+0x4db/0x850 [ 495.797124][T12310] filemap_read_folio+0xc8/0x2a0 [ 495.802606][T12310] do_read_cache_folio+0x263/0x5c0 [ 495.808268][T12310] read_part_sector+0xd4/0x370 [ 495.813608][T12310] adfspart_check_ICS+0x93/0x940 [ 495.819127][T12310] bdev_disk_changed+0x723/0x1520 [ 495.824742][T12310] blkdev_get_whole+0x187/0x290 [ 495.830130][T12310] bdev_open+0x2c7/0xe40 [ 495.834904][T12310] blkdev_open+0x34e/0x4f0 [ 495.839855][T12310] do_dentry_open+0x982/0x1530 [ 495.845164][T12310] vfs_open+0x82/0x3f0 [ 495.849773][T12310] path_openat+0x1de4/0x2cb0 [ 495.854899][T12310] do_filp_open+0x20b/0x470 [ 495.859942][T12310] do_sys_openat2+0x11b/0x1d0 [ 495.865168][T12310] __x64_sys_openat+0x174/0x210 [ 495.870561][T12310] do_syscall_64+0xcd/0xfa0 [ 495.875605][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.882032][T12310] [ 495.882032][T12310] -> #5 (&cmd->lock){+.+.}-{4:4}: [ 495.889265][T12310] __mutex_lock+0x193/0x1060 [ 495.894404][T12310] nbd_queue_rq+0xbd/0x12d0 [ 495.899472][T12310] blk_mq_dispatch_rq_list+0x416/0x1e20 [ 495.905566][T12310] __blk_mq_sched_dispatch_requests+0xcb7/0x15f0 [ 495.912438][T12310] blk_mq_sched_dispatch_requests+0xd8/0x1b0 [ 495.918973][T12310] blk_mq_run_hw_queue+0x239/0x670 [ 495.924619][T12310] blk_mq_dispatch_list+0x514/0x1310 [ 495.930438][T12310] blk_mq_flush_plug_list+0x130/0x600 [ 495.936356][T12310] __blk_flush_plug+0x2c4/0x4b0 [ 495.941740][T12310] __submit_bio+0x545/0x690 [ 495.946779][T12310] submit_bio_noacct_nocheck+0x53d/0xc10 [ 495.952948][T12310] submit_bio_noacct+0x5bd/0x1f60 [ 495.958509][T12310] block_read_full_folio+0x4db/0x850 [ 495.964339][T12310] filemap_read_folio+0xc8/0x2a0 [ 495.969808][T12310] do_read_cache_folio+0x263/0x5c0 [ 495.975467][T12310] read_part_sector+0xd4/0x370 [ 495.980793][T12310] adfspart_check_ICS+0x93/0x940 [ 495.986297][T12310] bdev_disk_changed+0x723/0x1520 [ 495.991881][T12310] blkdev_get_whole+0x187/0x290 [ 495.997276][T12310] bdev_open+0x2c7/0xe40 [ 496.002057][T12310] blkdev_open+0x34e/0x4f0 [ 496.007014][T12310] do_dentry_open+0x982/0x1530 [ 496.012333][T12310] vfs_open+0x82/0x3f0 [ 496.016940][T12310] path_openat+0x1de4/0x2cb0 [ 496.022078][T12310] do_filp_open+0x20b/0x470 [ 496.027124][T12310] do_sys_openat2+0x11b/0x1d0 [ 496.032372][T12310] __x64_sys_openat+0x174/0x210 [ 496.037768][T12310] do_syscall_64+0xcd/0xfa0 [ 496.042812][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.049246][T12310] [ 496.049246][T12310] -> #4 (set->srcu){.+.+}-{0:0}: [ 496.056416][T12310] __synchronize_srcu+0xa1/0x290 [ 496.061920][T12310] blk_mq_quiesce_queue+0x149/0x1b0 [ 496.067692][T12310] elevator_switch+0x17d/0x810 [ 496.073007][T12310] elevator_change+0x391/0x5d0 [ 496.078322][T12310] elevator_set_default+0x2e9/0x380 [ 496.084054][T12310] blk_register_queue+0x384/0x4e0 [ 496.089628][T12310] __add_disk+0x74a/0xf00 [ 496.094525][T12310] add_disk_fwnode+0x13f/0x5d0 [ 496.099829][T12310] nbd_dev_add+0x783/0xbb0 [ 496.104790][T12310] nbd_init+0x1a2/0x3c0 [ 496.109483][T12310] do_one_initcall+0x123/0x6e0 [ 496.114787][T12310] kernel_init_freeable+0x5c8/0x920 [ 496.120532][T12310] kernel_init+0x1c/0x2b0 [ 496.125412][T12310] ret_from_fork+0x675/0x7d0 [ 496.130556][T12310] ret_from_fork_asm+0x1a/0x30 [ 496.135863][T12310] [ 496.135863][T12310] -> #3 (&q->elevator_lock){+.+.}-{4:4}: [ 496.143701][T12310] __mutex_lock+0x193/0x1060 [ 496.148924][T12310] elevator_change+0x17d/0x5d0 [ 496.154249][T12310] elv_iosched_store+0x315/0x3c0 [ 496.159730][T12310] queue_attr_store+0x26b/0x310 [ 496.165127][T12310] sysfs_kf_write+0xf2/0x150 [ 496.170260][T12310] kernfs_fop_write_iter+0x3af/0x570 [ 496.176084][T12310] iter_file_splice_write+0xa24/0x12e0 [ 496.182097][T12310] direct_splice_actor+0x192/0x6c0 [ 496.187758][T12310] splice_direct_to_actor+0x345/0xa30 [ 496.193676][T12310] do_splice_direct+0x174/0x240 [ 496.199059][T12310] do_sendfile+0xb06/0xe50 [ 496.204009][T12310] __x64_sys_sendfile64+0x1d8/0x220 [ 496.209746][T12310] do_syscall_64+0xcd/0xfa0 [ 496.214792][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.221226][T12310] [ 496.221226][T12310] -> #2 (&q->q_usage_counter(io)#64){++++}-{0:0}: [ 496.229854][T12310] blk_alloc_queue+0x619/0x760 [ 496.235151][T12310] blk_mq_alloc_queue+0x172/0x280 [ 496.240715][T12310] __blk_mq_alloc_disk+0x29/0x120 [ 496.246290][T12310] nbd_dev_add+0x492/0xbb0 [ 496.251264][T12310] nbd_init+0x1a2/0x3c0 [ 496.255975][T12310] do_one_initcall+0x123/0x6e0 [ 496.261285][T12310] kernel_init_freeable+0x5c8/0x920 [ 496.267038][T12310] kernel_init+0x1c/0x2b0 [ 496.271929][T12310] ret_from_fork+0x675/0x7d0 [ 496.277071][T12310] ret_from_fork_asm+0x1a/0x30 [ 496.282404][T12310] [ 496.282404][T12310] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 496.289640][T12310] fs_reclaim_acquire+0x102/0x150 [ 496.295240][T12310] kmem_cache_alloc_noprof+0x5b/0x6e0 [ 496.301147][T12310] __kernfs_iattrs+0x124/0x3e0 [ 496.306453][T12310] __kernfs_setattr+0x4d/0x3c0 [ 496.311759][T12310] kernfs_iop_setattr+0xda/0x120 [ 496.317251][T12310] notify_change+0x6d2/0x12a0 [ 496.322475][T12310] do_truncate+0x1d7/0x230 [ 496.327433][T12310] path_openat+0x2678/0x2cb0 [ 496.332569][T12310] do_filp_open+0x20b/0x470 [ 496.337616][T12310] do_sys_openat2+0x11b/0x1d0 [ 496.342842][T12310] __x64_sys_openat+0x174/0x210 [ 496.348244][T12310] do_syscall_64+0xcd/0xfa0 [ 496.353308][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.359759][T12310] [ 496.359759][T12310] -> #0 (&root->kernfs_iattr_rwsem){++++}-{4:4}: [ 496.368302][T12310] __lock_acquire+0x126f/0x1c90 [ 496.373718][T12310] lock_acquire+0x179/0x350 [ 496.378774][T12310] down_write+0x92/0x200 [ 496.383567][T12310] kernfs_unlink_sibling+0xa3/0x320 [ 496.389345][T12310] __kernfs_remove+0x2c0/0x8a0 [ 496.394661][T12310] kernfs_remove+0x37/0x50 [ 496.399640][T12310] sysfs_remove_dir+0xc8/0x100 [ 496.404946][T12310] __kobject_del+0xe2/0x1f0 [ 496.409994][T12310] kobject_del+0x3f/0x60 [ 496.414780][T12310] elevator_change_done+0x56b/0x6a0 [ 496.420527][T12310] elevator_change+0x30b/0x5d0 [ 496.425838][T12310] elv_iosched_store+0x315/0x3c0 [ 496.431309][T12310] queue_attr_store+0x26b/0x310 [ 496.436720][T12310] sysfs_kf_write+0xf2/0x150 [ 496.441850][T12310] kernfs_fop_write_iter+0x3af/0x570 [ 496.447670][T12310] iter_file_splice_write+0xa24/0x12e0 [ 496.453669][T12310] direct_splice_actor+0x192/0x6c0 [ 496.459318][T12310] splice_direct_to_actor+0x345/0xa30 [ 496.465226][T12310] do_splice_direct+0x174/0x240 [ 496.470613][T12310] do_sendfile+0xb06/0xe50 [ 496.475567][T12310] __x64_sys_sendfile64+0x1d8/0x220 [ 496.481318][T12310] do_syscall_64+0xcd/0xfa0 [ 496.486365][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.492796][T12310] [ 496.492796][T12310] other info that might help us debug this: [ 496.492796][T12310] [ 496.503049][T12310] Chain exists of: [ 496.503049][T12310] &root->kernfs_iattr_rwsem --> cpuhp_state_mutex --> &root->kernfs_rwsem [ 496.503049][T12310] [ 496.517507][T12310] Possible unsafe locking scenario: [ 496.517507][T12310] [ 496.524963][T12310] CPU0 CPU1 [ 496.530331][T12310] ---- ---- [ 496.535711][T12310] lock(&root->kernfs_rwsem); [ 496.540515][T12310] lock(cpuhp_state_mutex); [ 496.547639][T12310] lock(&root->kernfs_rwsem); [ 496.554933][T12310] lock(&root->kernfs_iattr_rwsem); [ 496.560228][T12310] [ 496.560228][T12310] *** DEADLOCK *** [ 496.560228][T12310] [ 496.568389][T12310] 5 locks held by syz.3.1348/12310: [ 496.573591][T12310] #0: ffff88807b8f2420 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x345/0xa30 [ 496.583637][T12310] #1: ffff888064716088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 496.593415][T12310] #2: ffff8880257dbd28 (kn->active#232){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 496.603550][T12310] #3: ffff8880267739c8 (&set->update_nr_hwq_lock){++++}-{4:4}, at: elv_iosched_store+0x35f/0x3c0 [ 496.614207][T12310] #4: ffff88801cef0188 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_remove+0x2f/0x50 [ 496.623915][T12310] [ 496.623915][T12310] stack backtrace: [ 496.629809][T12310] CPU: 1 UID: 0 PID: 12310 Comm: syz.3.1348 Not tainted syzkaller #0 PREEMPT(full) [ 496.629839][T12310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 496.629854][T12310] Call Trace: [ 496.629862][T12310] [ 496.629871][T12310] dump_stack_lvl+0x116/0x1f0 [ 496.629904][T12310] print_circular_bug+0x275/0x350 [ 496.629937][T12310] check_noncircular+0x14c/0x170 [ 496.629972][T12310] __lock_acquire+0x126f/0x1c90 [ 496.630010][T12310] lock_acquire+0x179/0x350 [ 496.630041][T12310] ? kernfs_unlink_sibling+0xa3/0x320 [ 496.630075][T12310] ? __pfx___might_resched+0x10/0x10 [ 496.630103][T12310] down_write+0x92/0x200 [ 496.630134][T12310] ? kernfs_unlink_sibling+0xa3/0x320 [ 496.630166][T12310] ? __pfx_down_write+0x10/0x10 [ 496.630201][T12310] kernfs_unlink_sibling+0xa3/0x320 [ 496.630234][T12310] __kernfs_remove+0x2c0/0x8a0 [ 496.630269][T12310] kernfs_remove+0x37/0x50 [ 496.630303][T12310] sysfs_remove_dir+0xc8/0x100 [ 496.630332][T12310] __kobject_del+0xe2/0x1f0 [ 496.630364][T12310] kobject_del+0x3f/0x60 [ 496.630394][T12310] elevator_change_done+0x56b/0x6a0 [ 496.630433][T12310] elevator_change+0x30b/0x5d0 [ 496.630478][T12310] elv_iosched_store+0x315/0x3c0 [ 496.630501][T12310] ? __pfx_elv_iosched_store+0x10/0x10 [ 496.630529][T12310] ? __mutex_trylock_common+0xe9/0x250 [ 496.630564][T12310] ? __pfx_elv_iosched_store+0x10/0x10 [ 496.630586][T12310] queue_attr_store+0x26b/0x310 [ 496.630620][T12310] ? __pfx_queue_attr_store+0x10/0x10 [ 496.630651][T12310] ? __lock_acquire+0x622/0x1c90 [ 496.630689][T12310] ? find_held_lock+0x2b/0x80 [ 496.630713][T12310] ? sysfs_file_kobj+0xe4/0x290 [ 496.630740][T12310] ? __pfx_queue_attr_store+0x10/0x10 [ 496.630771][T12310] sysfs_kf_write+0xf2/0x150 [ 496.630797][T12310] kernfs_fop_write_iter+0x3af/0x570 [ 496.630819][T12310] ? __pfx_sysfs_kf_write+0x10/0x10 [ 496.630846][T12310] iter_file_splice_write+0xa24/0x12e0 [ 496.630881][T12310] ? __pfx_iter_file_splice_write+0x10/0x10 [ 496.630909][T12310] ? __pfx_copy_splice_read+0x10/0x10 [ 496.630939][T12310] ? __pfx_iter_file_splice_write+0x10/0x10 [ 496.630964][T12310] direct_splice_actor+0x192/0x6c0 [ 496.630990][T12310] splice_direct_to_actor+0x345/0xa30 [ 496.631014][T12310] ? __pfx_direct_splice_actor+0x10/0x10 [ 496.631041][T12310] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 496.631068][T12310] do_splice_direct+0x174/0x240 [ 496.631091][T12310] ? __pfx_do_splice_direct+0x10/0x10 [ 496.631114][T12310] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 496.631156][T12310] ? rw_verify_area+0xcf/0x6c0 [ 496.631179][T12310] do_sendfile+0xb06/0xe50 [ 496.631205][T12310] ? __pfx_do_sendfile+0x10/0x10 [ 496.631229][T12310] ? __sys_sendmsg+0x18c/0x220 [ 496.631254][T12310] ? __x64_sys_futex+0x1e0/0x4c0 [ 496.631286][T12310] ? __x64_sys_futex+0x1e9/0x4c0 [ 496.631341][T12310] __x64_sys_sendfile64+0x1d8/0x220 [ 496.631374][T12310] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 496.631410][T12310] do_syscall_64+0xcd/0xfa0 [ 496.631440][T12310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.631470][T12310] RIP: 0033:0x7f6fc7f8f749 [ 496.631489][T12310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.631513][T12310] RSP: 002b:00007f6fc8dbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 496.631535][T12310] RAX: ffffffffffffffda RBX: 00007f6fc81e6180 RCX: 00007f6fc7f8f749 [ 496.631552][T12310] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 496.631566][T12310] RBP: 00007f6fc8013f91 R08: 0000000000000000 R09: 0000000000000000 [ 496.631581][T12310] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000 [ 496.631595][T12310] R13: 00007f6fc81e6218 R14: 00007f6fc81e6180 R15: 00007ffe5e8c43a8 [ 496.631619][T12310] [ 496.996450][ C1] vkms_vblank_simulate: vblank timer overrun