last executing test programs: 9.250117163s ago: executing program 1 (id=725): pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0x7000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000240)={{@raw=0x81, 0x6, 0x8001, 0x8, "b132ce14b9fa7a699c29a892e255dab2591457de9c4db5868db157e9cc1910aa07e336ede9b387eac3eae00a", @raw=0x8ef}, 0x2, 0x8, 0x1895, @raw=0x4, @integer={0x0, 0xf, 0x9}, "f82d0516c633863c5281ae962fd8c811792ad96298c95d5a9da1400adb4ee0bc170d51ef637d9927912407406936d9cbf46ddadb7820b40766245026a272cd3a"}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) memfd_secret$auto(0x5) close_range$auto(0x2, 0x8, 0x0) 8.115344742s ago: executing program 0 (id=728): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x80a00, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = fcntl$auto(0xffffffffffffffff, 0x400, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r3 = fsopen$auto(0x0, 0x8) r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCDET(r1, 0x40046f41, &(0x7f0000000540)=0x6) ioctl$auto_UBI_IOCATT(r4, 0x40186f40, &(0x7f0000000000)={0x1f, 0x0, 0x202, 0x9, 0x1}) flock$auto(r2, 0x8) ioctl$auto(r0, 0x800064b9, 0x1e6) r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0) syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r3) r6 = socket(0x18, 0x800, 0x1) connect$auto(r6, &(0x7f0000000000)=@in={0x2, 0x100, @rand_addr=0x4}, 0x3a) ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={"8478004171ed55479751a53bc3f192f248ff9d67e60890c7962528d94625a793", 0x7, 0x7fff, 0x3, 0x200, 0xfffffffffffffff7, 0xffffffffffffffff}) r7 = syz_clone(0x200, &(0x7f0000000000), 0x0, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100)="d223bd5eb44ac47e6e8675b3800550d85d73825e4c2c0615d0f7de57651a5502a2de") process_vm_readv$auto(r7, &(0x7f0000000000)={0x0, 0x1001}, 0x40000000000001, &(0x7f0000000280)={&(0x7f0000000080), 0x9}, 0x6, 0x0) ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x7, 0xbfb, 0x79, 0x30, 0x3, 0x2}) 7.608563855s ago: executing program 1 (id=732): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/fib_multipath_hash_fields\x00', 0x80001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x801, 0x84) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) sendfile$auto(r1, r1, 0x0, 0x2) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000140)=0x10) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000000)="1404000000000000") socket(0x8, 0x800, 0x2f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) close_range$auto(0x2, 0xa, 0x0) read$auto(0x3, 0x0, 0xfdef) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0x1c, 0x92f1, 0x4}, 0xa) 7.226885565s ago: executing program 3 (id=733): openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyeb\x00', 0xa0102, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/erspan0/queues/tx-0/xps_cpus\x00', 0x8382, 0x0) unshare$auto(0x40000080) r0 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/mouse0\x00', 0x42000, 0x0) ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x0, 0xe8, 0x0, 0x2, 0xe4, 0x2}) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) socket(0x1d, 0x3, 0x1) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x3, 0x7, 0x400b, r0, [], {0x6, 0x3, 0x8c48, 0x29a, 0x9, 0x81, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x8}}) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0) openat$auto_event_inject_fops_trace(0xffffffffffffff9c, 0x0, 0x40482, 0x0) r1 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) pread64$auto(r1, 0x0, 0x0, 0x9) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_SETVA(0xffffffffffffffff, 0x7a4, 0x0) read$auto_mon_fops_text_t_mon_text(r1, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8000, 0xd, 0x1, 0x200948d, 0x3, 0x10015f4da0a, 0xd, 0x7, 0x6, 0x8000001f, 0x8, 0x6d3e, 0xc, 0x2, 0x2]}, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108) 6.474618021s ago: executing program 2 (id=734): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/fib_multipath_hash_fields\x00', 0x80001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0xa, 0x801, 0x84) r2 = getsockopt$auto(r1, 0x84, 0x73, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) sendfile$auto(r3, r3, 0x0, 0x2) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f0000000140)=0x10) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000000)="1404000000000000") socket(0x8, 0x800, 0x2f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) close_range$auto(0x2, 0xa, 0x0) read$auto(0x3, 0x0, 0xfdef) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0x1c, 0x92f1, 0x4}, 0xa) 6.458498232s ago: executing program 1 (id=735): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x5522, 0xf15) ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0xfffe, 0xb1, 0x8, 0x0}) mmap$auto(0x2000000, 0x4, 0x4, 0xeb2, r0, 0x7fff) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) timer_settime$auto(0x0, 0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x19, 0x0, 0x9, 0x0, 0x1f, 0x3}, 0x4}, 0x7, 0x20020004) write$auto(0x3, 0x0, 0x7fffffff) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 6.295644161s ago: executing program 0 (id=736): pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0x7000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000240)={{@raw=0x81, 0x6, 0x8001, 0x8, "b132ce14b9fa7a699c29a892e255dab2591457de9c4db5868db157e9cc1910aa07e336ede9b387eac3eae00a", @raw=0x8ef}, 0x2, 0x8, 0x1895, @raw=0x4, @integer={0x0, 0xf, 0x9}, "f82d0516c633863c5281ae962fd8c811792ad96298c95d5a9da1400adb4ee0bc170d51ef637d9927912407406936d9cbf46ddadb7820b40766245026a272cd3a"}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) memfd_secret$auto(0x5) close_range$auto(0x2, 0x8, 0x0) 6.274900746s ago: executing program 1 (id=737): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/virt_wifi0/base_reachable_time_ms\x00', 0x104000, 0x0) mmap$auto(0x4, 0x2020009, 0x3, 0xeb1, r0, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto_MADV_GUARD_REMOVE(0x0, 0xffffffffffff0001, 0x67) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_SOUND_PCM_READ_CHANNELS(r1, 0x80045006, &(0x7f0000000240)) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz6\x00', 0x20002, 0x0) r2 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000080), 0x141501, 0x0) write$auto_split_huge_pages_fops_huge_memory(r2, &(0x7f00000000c0)='1', 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/null_blk/uevent\x00', 0xa901, 0x0) 6.064570167s ago: executing program 3 (id=738): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(0x0, r2) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x8001, 0x0) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) r3 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0) read$auto_proc_pid_smaps_operations_internal(r3, &(0x7f00000002c0)=""/190, 0xfffffe39) 5.301378368s ago: executing program 2 (id=739): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0xfffe, 0xb1, 0x8, 0x0}) mmap$auto(0x2000000, 0x4, 0x4, 0xeb2, r0, 0x7fff) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) timer_settime$auto(0x0, 0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x19, 0x0, 0x9, 0x0, 0x1f, 0x3}, 0x4}, 0x7, 0x20020004) write$auto(0x3, 0x0, 0x7fffffff) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 5.125466671s ago: executing program 2 (id=740): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) unshare$auto(0x40000080) setresuid$auto(0xffffffffffffffff, 0x0, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC0\x00', 0x80, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084) madvise$auto(0x0, 0x200007, 0x19) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000) sched_getattr$auto(0x0, &(0x7f0000000000)={0xcf86, 0x6, 0x6, 0x200, 0x7, 0xb, 0x6, 0xfffffffffffffff8, 0x8, 0x90}, 0x68, 0x0) madvise$auto(0x0, 0x8000000000000000, 0x15) brk$auto(0x40008000) brk$auto(0x8) 4.222842714s ago: executing program 0 (id=741): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r0, 0x0) r2 = socket(0x10, 0x2, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3) read$auto(r3, &(0x7f0000000000)='\x00', 0x91e2) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/fs/ocfs2/cluster_stack\x00', 0x88282, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk\x00', 0x100, 0x0) fanotify_init$auto(0x65, 0x2) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r2, &(0x7f0000000000)='-\xd3', 0xfdef) 3.517223509s ago: executing program 3 (id=742): r0 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/loginuid\x00', 0x109000, 0x0) write$auto_proc_loginuid_operations_base(r0, &(0x7f0000000040)="8cd1c097c5061c121d7b05843b04347151df6a5e909cb8bc22b6d683acf63d726adb2ea87511c6466af9c085d144fdbcc00abe6cb8ab285cd879d03633c3ec379d04dc8cebd4a0d4a3500b7bb0e3363aa4a23a3b0ed0b1c5c4b9dc3c6a015749ab88374a5b34272a474898df46cc921793b04b0a382f3f67614d0166b7de5fdfb3a805794be35c5c891f8fb48765222abd1555108c36a59c21542d206dc78ad4873d5786b6aad7aaf2f7b6e9fa1a27230cf8cc50690bbefc8b5b4e", 0xbb) sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc01) r1 = socket(0x2, 0x2, 0x1) connect$auto(r1, &(0x7f00000000c0)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x55) connect$auto(r1, &(0x7f0000000000)=@l2tp={0x2, 0x0, @multicast2, 0x1}, 0x7f) r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) read$auto(r2, &(0x7f00000002c0)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000001) write$auto(r2, &(0x7f00000000c0)='\xc4\x1dR\x00\x003\x1bO\xbb\x98)\x7fTa1\xa3\xd0\x89\x1e\\\xff', 0x8587) write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000003900)='\t', 0x1) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0xb, 0x0) keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3) socket(0x2, 0x3, 0x6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0) readv$auto(r2, 0x0, 0x1) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0) sendfile$auto(r3, r3, 0x0, 0x2400000) 3.294461504s ago: executing program 0 (id=743): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/fib_multipath_hash_fields\x00', 0x80001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0xa, 0x801, 0x84) r2 = getsockopt$auto(r1, 0x84, 0x73, 0x0, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f0000000140)=0x10) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000000)="1404000000000000") socket(0x8, 0x800, 0x2f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) close_range$auto(0x2, 0xa, 0x0) read$auto(0x3, 0x0, 0xfdef) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0x1c, 0x92f1, 0x4}, 0xa) 3.142097704s ago: executing program 2 (id=744): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/fib_multipath_hash_fields\x00', 0x80001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = getsockopt$auto(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) sendfile$auto(r2, r2, 0x0, 0x2) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCSCLOCKID(r1, 0x400445a0, &(0x7f0000000140)=0x10) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000000)="1404000000000000") socket(0x8, 0x800, 0x2f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) close_range$auto(0x2, 0xa, 0x0) read$auto(0x3, 0x0, 0xfdef) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0x1c, 0x92f1, 0x4}, 0xa) 2.762314744s ago: executing program 1 (id=745): socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setpgid$auto(0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, 0x0, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/snd_aloop.0/driver_override\x00', 0x101901, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_debug_messages\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, 0x0, 0x81) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) sendfile$auto(r3, r4, 0x0, 0x1000200) 2.713873294s ago: executing program 3 (id=746): pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0x7000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000240)={{@raw=0x81, 0x6, 0x8001, 0x8, "b132ce14b9fa7a699c29a892e255dab2591457de9c4db5868db157e9cc1910aa07e336ede9b387eac3eae00a", @raw=0x8ef}, 0x2, 0x8, 0x1895, @raw=0x4, @integer={0x0, 0xf, 0x9}, "f82d0516c633863c5281ae962fd8c811792ad96298c95d5a9da1400adb4ee0bc170d51ef637d9927912407406936d9cbf46ddadb7820b40766245026a272cd3a"}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) memfd_secret$auto(0x5) close_range$auto(0x2, 0x8, 0x0) 2.022613999s ago: executing program 0 (id=747): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) timer_create$auto(0x9, 0x0, &(0x7f0000000040)=0x200) timer_settime$auto(0x0, 0x5, &(0x7f00000000c0)={{0x8, 0x10007}, {0x8, 0x10}}, 0x0) timer_settime$auto(0x0, 0x8, &(0x7f0000000040)={{0x100, 0xd1}, {0x1000}}, &(0x7f0000000000)={{0xa04, 0x4}, {0x8ffc, 0x7ff}}) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0) io_uring_setup$auto(0x41, 0x0) socket(0xa, 0x1, 0x6) socket(0x11, 0x80003, 0x300) socket(0x2, 0x3, 0x2) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x1, 0x9, 0x3, 0xb, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x7, 0x6, 0x3, 0x5, 0x7}, 0x1fe, 0x81) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) epoll_create$auto(0x4) 1.962448138s ago: executing program 2 (id=748): r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/fib_multipath_hash_fields\x00', 0x80001, 0x0) write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0xa, 0x801, 0x84) r2 = getsockopt$auto(r1, 0x84, 0x73, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0) sendfile$auto(r3, r3, 0x0, 0x2) mmap$auto(0x1, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto_EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f0000000140)=0x10) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000000)="1404000000000000") socket(0x8, 0x800, 0x2f) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) close_range$auto(0x2, 0xa, 0x0) close_range$auto(0x2, 0xa, 0x0) read$auto(0x3, 0x0, 0xfdef) getrandom$auto(0x0, 0x6000000, 0x3) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0x1c, 0x92f1, 0x4}, 0xa) 1.541228354s ago: executing program 0 (id=749): pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91\vI\x1eRN8\x99\x88\xca\xd9\xec\x1epJ\"ds\x1cJr\xde:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x89\v\xea\x1b\x95\xaf\xee\xe69\x8d(<\xc7+\x83\xfcQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd3\x81Y\xa3Fp\v\xdc\xe2\xc3\xc3\xdbS\xdc', 0xfdef, 0x0) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) r0 = socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0x7000000) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000240)={{@raw=0x81, 0x6, 0x8001, 0x8, "b132ce14b9fa7a699c29a892e255dab2591457de9c4db5868db157e9cc1910aa07e336ede9b387eac3eae00a", @raw=0x8ef}, 0x2, 0x8, 0x1895, @raw=0x4, @integer={0x0, 0xf, 0x9}, "f82d0516c633863c5281ae962fd8c811792ad96298c95d5a9da1400adb4ee0bc170d51ef637d9927912407406936d9cbf46ddadb7820b40766245026a272cd3a"}) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0) memfd_secret$auto(0x5) close_range$auto(0x2, 0x8, 0x0) 1.388387437s ago: executing program 1 (id=750): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0xe7a, 0x34f, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1d, 0x2, 0x7) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) r3 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000002240)='/proc/thread-self/environ\x00', 0x8400, 0x0) read$auto_proc_environ_operations_base(r3, 0x0, 0x0) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) sendto$auto(r1, 0x0, 0x6fffff9, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r4, 0x3f}, 0x36) madvise$auto(0x0, 0xffffffffffff0005, 0x17) r5 = prctl$auto_PR_SCHED_CORE_GET(0x4, 0x0, r0, 0x7f, 0x4) read$auto_rng_chrdev_ops_core(r5, &(0x7f0000000000)=""/30, 0x1e) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pipe2$auto(0x0, 0x80) getsid$auto(0x0) 1.298261684s ago: executing program 3 (id=751): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mprotect$auto(0x0, 0x806121, 0x8) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) readahead$auto(0xffffffffffffffff, 0x10, 0xd8) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000000240)=ANY=[@ANYBLOB="080100", @ANYRES16=r0, @ANYBLOB="080027bd7000fddbdf2569000000060065000900000006004f01090000001700130013c366f9244357d432f6e44cc4bf4e5878fe5d00080002002f247b0005006000080000000500a3000200000045001f00ff8ddbe0dca3a0c40b31575a0fc89a"], 0x108}, 0x1, 0x0, 0x0, 0x91}, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001ec0)='/sys/power/mem_sleep\x00', 0x2402, 0x0) write$auto(r1, &(0x7f0000000cc0)='\x00\xad\xe8\xc7.\xf0\xb0f\xd2\x02\x00>\x00\xae\x1a\x13I_{\xe8\n\xd4n\x9f\xae\xed\xcd6\x9f\xf6\x01\x00s\xa6\x03y\x97\x0eR\xb8\xb7\xcc\x83\xb8O\xe5\b_\xd0\xd7\xc0+:\x17\x8d\xf4\t\x00\x00\x00`\xdb\x80E|X\xc3\xa4H\xb9\xd8\x03*\x9c\x00\x00\x00\x00\x00\x00\x00[\x1a\fX[\xb8\x91M\xdb\xe7\xdc6w\xb1\x8b9\x9a\x9a\xf9c\x95)b\xff\x80\xd5\xbb\xc9+Ed\xa16?\xab<\xee\x8b\x18\xe6\xf3a]1OZ\x9e\xa9\xb2;H\xbcn}n\xca\x0e\x0e\xd8\xce_2\xe2\xb1@\x8dy\v\xc3\xacH\x9a\t\x8e\xa1g\xa2?\x89\x01\xb9\xf1\xbb%[\xf1L<\xd8\x8c\xd9\x1f\x9e\xfe\xbf\xb2\x95\xb6Y\xba\xaf\'a\xe2\xc3\x9a$c\xad\x82\x13\x1e\xbc\xf3\x1f.\xef\x1es\xb0\xf2I$\x02\x0e\xc8\xf0\x8b\xc7\xd8\x9c\x04\xa6[\xe2Q\xd6\x13\xa8[\xbcP,\xadS\x7f}/>\x13\xbe\\\x8cq(\x06\xdb4', 0x4) sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0xc800}, 0x40000) sendmsg$auto_NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={0x0, 0x8c}, 0x1, 0x0, 0x0, 0x48046}, 0x4000080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) 821.725771ms ago: executing program 2 (id=752): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0xc0501, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r0 = io_uring_setup$auto(0x5, 0x0) close_range$auto(0x2, r0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x69) listen$auto(0x3, 0x81) r1 = accept$auto(0x3, 0x0, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000180)={{@raw=0x8, 0x7, 0x200, 0x481, "3baada912063aa08326de39b458c42c58e5697ae8758eb056ddc4a43c73a8cea18d4b45a80a1f49cedbb00f9", @raw=0x5}, 0x1, @iec958={"453c9e5773573d5a10ca31c4b0deec94b37e3ac12d8d3ee9", "a922ff7a0a491cb4d363dfd32f93c6be915f366dfb5d12993d074ca7f6e4e6060c7715b15719c67748abeb11aff0a9ddde9e6e75827c59dee29d81be296f3ad608a6488eaf1bab8dc5ead1821aacec961c7255a26382d30c73ff5c933f892c863cb840c659bf05a61e7c0397cb515a6daeadda67ce497aa9cb5444c69f6552d49168c6476c3637005321d3d36388af82d66120", 0x0, "9dcfc6e9"}, "a054e9c01cb2c8af6dc4bf831fc4b59231961a4479ad0964856da03461b2acee3c2802d94a3a45389079f564370b881309f1adae03c8ff7b3e98d461173da57cb08cc0e2021395f18adb1b333d8bc7c46c5075780ec2cc971726d532efc3f3f4daaaf56770b9cdcc5c86dc4de9ff00fcddb26b10d68199c9506e3d6ee4f38a62"}) r2 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x6, 0x0, 0x7, 0x1}, 0x3}, 0x4, 0x20000000) 0s ago: executing program 3 (id=753): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x10001) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x2) r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r2, 0x5522, 0xf15) ioctl$auto_USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0xfffe, 0xb1, 0x8, 0x0}) mmap$auto(0x2000000, 0x4, 0x4, 0xeb2, r0, 0x7fff) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) timer_settime$auto(0x0, 0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x19, 0x0, 0x9, 0x0, 0x1f, 0x3}, 0x4}, 0x7, 0x20020004) write$auto(0x3, 0x0, 0x7fffffff) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) kernel console output (not intermixed with test programs): 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 146.482257][ T6903] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 146.510896][ T6903] 62074 total pagecache pages [ 146.519626][ T6903] 3 pages in swap cache [ 146.527908][ T6903] Free swap = 124796kB [ 146.537354][ T6903] Total swap = 124996kB [ 146.546303][ T6903] 2097051 pages RAM [ 146.555813][ T6903] 0 pages HighMem/MovableOnly [ 146.566404][ T6903] 431275 pages reserved [ 146.573134][ T6903] 0 pages cma reserved [ 146.581541][ T6903] tty tty27: ldisc open failed (-12), clearing slot 26 [ 147.776659][ T6918] kexec: Could not allocate control_code_buffer [ 147.923345][ T6945] hub 1-0:1.0: USB hub found [ 147.934046][ T6945] hub 1-0:1.0: 1 port detected [ 148.406989][ T6958] netlink: 28 bytes leftover after parsing attributes in process `syz.0.214'. [ 148.641748][ T6967] random: crng reseeded on system resumption [ 148.699131][ T6967] hub 1-0:1.0: USB hub found [ 148.707976][ T6967] hub 1-0:1.0: 1 port detected [ 149.912594][ T6983] random: crng reseeded on system resumption [ 150.002712][ T6983] hub 1-0:1.0: USB hub found [ 150.022452][ T6983] hub 1-0:1.0: 1 port detected [ 150.955312][ T7003] FAULT_INJECTION: forcing a failure. [ 150.955312][ T7003] name fail_futex, interval 1, probability 0, space 0, times 0 [ 151.002755][ T7003] CPU: 0 UID: 0 PID: 7003 Comm: syz.0.226 Not tainted syzkaller #0 PREEMPT(full) [ 151.002795][ T7003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 151.002811][ T7003] Call Trace: [ 151.002820][ T7003] [ 151.002831][ T7003] dump_stack_lvl+0x100/0x190 [ 151.002866][ T7003] should_fail_ex.cold+0x5/0xa [ 151.002900][ T7003] get_futex_key+0x1d2/0x1510 [ 151.002956][ T7003] ? __pfx_get_futex_key+0x10/0x10 [ 151.002998][ T7003] ? __lock_acquire+0x4a5/0x2630 [ 151.003052][ T7003] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 151.003100][ T7003] futex_wake+0xea/0x530 [ 151.003139][ T7003] ? release_sock+0x21/0x280 [ 151.003173][ T7003] ? __pfx_futex_wake+0x10/0x10 [ 151.003207][ T7003] ? find_held_lock+0x2b/0x80 [ 151.003241][ T7003] ? rcu_is_watching+0x12/0xc0 [ 151.003267][ T7003] ? inet_stream_connect+0x79/0xa0 [ 151.003307][ T7003] ? __local_bh_enable_ip+0x9e/0x120 [ 151.003342][ T7003] ? lockdep_hardirqs_on+0x78/0x100 [ 151.003375][ T7003] do_futex+0x32b/0x350 [ 151.003403][ T7003] ? __pfx_do_futex+0x10/0x10 [ 151.003429][ T7003] ? __sys_connect+0xe4/0x170 [ 151.003459][ T7003] __x64_sys_futex+0x34f/0x4d0 [ 151.003488][ T7003] ? __pfx___x64_sys_futex+0x10/0x10 [ 151.003524][ T7003] ? rcu_is_watching+0x12/0xc0 [ 151.003560][ T7003] do_syscall_64+0x10b/0xf80 [ 151.003588][ T7003] ? clear_bhb_loop+0x40/0x90 [ 151.003631][ T7003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.003660][ T7003] RIP: 0033:0x7f5f46f9c819 [ 151.003685][ T7003] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 151.003713][ T7003] RSP: 002b:00007f5f451f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 151.003739][ T7003] RAX: ffffffffffffffda RBX: 00007f5f47215fa8 RCX: 00007f5f46f9c819 [ 151.003756][ T7003] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5f47215fac [ 151.003772][ T7003] RBP: 00007f5f47215fa0 R08: 0000000000000001 R09: 0000000000000000 [ 151.003789][ T7003] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 151.003805][ T7003] R13: 00007f5f47216038 R14: 00007fff4f571e20 R15: 00007fff4f571f08 [ 151.003842][ T7003] [ 151.351808][ T7010] random: crng reseeded on system resumption [ 151.416085][ T7010] hub 1-0:1.0: USB hub found [ 151.439767][ T7010] hub 1-0:1.0: 1 port detected [ 152.868517][ T7032] random: crng reseeded on system resumption [ 153.086933][ T7032] hub 1-0:1.0: USB hub found [ 153.105443][ T7042] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 153.115958][ T7032] hub 1-0:1.0: 1 port detected [ 154.267816][ T7061] random: crng reseeded on system resumption [ 154.364635][ T7061] hub 1-0:1.0: USB hub found [ 154.402033][ T7061] hub 1-0:1.0: 1 port detected [ 156.325248][ T7090] FAULT_INJECTION: forcing a failure. [ 156.325248][ T7090] name failslab, interval 1, probability 0, space 0, times 0 [ 156.368348][ T7090] CPU: 1 UID: 0 PID: 7090 Comm: syz.3.249 Not tainted syzkaller #0 PREEMPT(full) [ 156.368396][ T7090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 156.368412][ T7090] Call Trace: [ 156.368420][ T7090] [ 156.368429][ T7090] dump_stack_lvl+0x100/0x190 [ 156.368464][ T7090] should_fail_ex.cold+0x5/0xa [ 156.368499][ T7090] ? sk_prot_alloc+0x10b/0x2a0 [ 156.368539][ T7090] should_failslab+0xc2/0x120 [ 156.368569][ T7090] __kmalloc_noprof+0xe0/0x850 [ 156.368617][ T7090] sk_prot_alloc+0x10b/0x2a0 [ 156.368660][ T7090] sk_alloc+0x36/0xe80 [ 156.368693][ T7090] __netlink_create+0x5e/0x2c0 [ 156.368726][ T7090] ? __wake_up+0x3f/0x60 [ 156.368766][ T7090] netlink_create+0x298/0x610 [ 156.368799][ T7090] ? __pfx_genl_bind+0x10/0x10 [ 156.368836][ T7090] ? __pfx_genl_unbind+0x10/0x10 [ 156.368875][ T7090] ? __pfx_genl_release+0x10/0x10 [ 156.368902][ T7090] __sock_create+0x339/0x860 [ 156.368947][ T7090] __sys_socket+0x14d/0x260 [ 156.368971][ T7090] ? exc_page_fault+0x6f/0xd0 [ 156.368999][ T7090] ? __pfx___sys_socket+0x10/0x10 [ 156.369034][ T7090] __x64_sys_socket+0x72/0xb0 [ 156.369057][ T7090] ? lockdep_hardirqs_on+0x78/0x100 [ 156.369083][ T7090] do_syscall_64+0x10b/0xf80 [ 156.369108][ T7090] ? clear_bhb_loop+0x40/0x90 [ 156.369140][ T7090] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 156.369167][ T7090] RIP: 0033:0x7f0b82b9e087 [ 156.369189][ T7090] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 156.369214][ T7090] RSP: 002b:00007f0b83acff98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 156.369240][ T7090] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9e087 [ 156.369257][ T7090] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 156.369273][ T7090] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 156.369290][ T7090] R10: 0000200000000040 R11: 0000000000000286 R12: 0000000000000000 [ 156.369307][ T7090] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 156.369344][ T7090] [ 158.547632][ T7126] FAULT_INJECTION: forcing a failure. [ 158.547632][ T7126] name failslab, interval 1, probability 0, space 0, times 0 [ 158.639048][ T7126] CPU: 0 UID: 0 PID: 7126 Comm: syz.0.262 Not tainted syzkaller #0 PREEMPT(full) [ 158.639088][ T7126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 158.639105][ T7126] Call Trace: [ 158.639115][ T7126] [ 158.639126][ T7126] dump_stack_lvl+0x100/0x190 [ 158.639160][ T7126] should_fail_ex.cold+0x5/0xa [ 158.639197][ T7126] should_failslab+0xc2/0x120 [ 158.639236][ T7126] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 158.639279][ T7126] ? ima_inode_get+0x11f/0x580 [ 158.639319][ T7126] ima_inode_get+0x11f/0x580 [ 158.639359][ T7126] process_measurement+0x575/0x2350 [ 158.639406][ T7126] ? __pfx_process_measurement+0x10/0x10 [ 158.639501][ T7126] ima_bprm_check+0x116/0x180 [ 158.639535][ T7126] ? tomoyo_bprm_check_security+0x167/0x1d0 [ 158.639569][ T7126] ? __pfx_ima_bprm_check+0x10/0x10 [ 158.639613][ T7126] security_bprm_check+0xd7/0x1e0 [ 158.639644][ T7126] bprm_execve+0x845/0x1650 [ 158.639677][ T7126] ? __pfx_bprm_execve+0x10/0x10 [ 158.639699][ T7126] ? copy_strings.isra.0+0x491/0x790 [ 158.639733][ T7126] do_execveat_common.isra.0+0x4a5/0x580 [ 158.639764][ T7126] __x64_sys_execve+0x93/0xd0 [ 158.639791][ T7126] do_syscall_64+0x10b/0xf80 [ 158.639816][ T7126] ? clear_bhb_loop+0x40/0x90 [ 158.639849][ T7126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.639873][ T7126] RIP: 0033:0x7f5f46f9c819 [ 158.639894][ T7126] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 158.639925][ T7126] RSP: 002b:00007f5f451f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 158.639951][ T7126] RAX: ffffffffffffffda RBX: 00007f5f47215fa0 RCX: 00007f5f46f9c819 [ 158.639969][ T7126] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000200000000040 [ 158.639988][ T7126] RBP: 00007f5f47032c91 R08: 0000000000000000 R09: 0000000000000000 [ 158.640005][ T7126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 158.640022][ T7126] R13: 00007f5f47216038 R14: 00007f5f47215fa0 R15: 00007fff4f571f08 [ 158.640060][ T7126] [ 159.422365][ T7118] kexec: Could not allocate control_code_buffer [ 160.097372][ T7145] FAULT_INJECTION: forcing a failure. [ 160.097372][ T7145] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 160.113173][ T7145] CPU: 1 UID: 0 PID: 7145 Comm: syz.3.258 Not tainted syzkaller #0 PREEMPT(full) [ 160.113213][ T7145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 160.113229][ T7145] Call Trace: [ 160.113236][ T7145] [ 160.113246][ T7145] dump_stack_lvl+0x100/0x190 [ 160.113280][ T7145] should_fail_ex.cold+0x5/0xa [ 160.113306][ T7145] ? prepare_alloc_pages+0x16d/0x5f0 [ 160.113341][ T7145] should_fail_alloc_page+0xeb/0x140 [ 160.113372][ T7145] prepare_alloc_pages+0x1f0/0x5f0 [ 160.113411][ T7145] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 160.113461][ T7145] ? rcu_is_watching+0x12/0xc0 [ 160.113493][ T7145] ? trace_hrtimer_start+0x79/0x230 [ 160.113525][ T7145] ? hrtimer_start_range_ns+0x860/0x1a50 [ 160.113557][ T7145] ? find_held_lock+0x2b/0x80 [ 160.113591][ T7145] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 160.113644][ T7145] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 160.113690][ T7145] ? mark_held_locks+0x40/0x70 [ 160.113744][ T7145] ? lockdep_hardirqs_on+0x78/0x100 [ 160.113776][ T7145] ? finish_task_switch.isra.0+0x2cb/0x1010 [ 160.113821][ T7145] ? __lock_acquire+0x4a5/0x2630 [ 160.113868][ T7145] ? __lock_acquire+0x4a5/0x2630 [ 160.113912][ T7145] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 160.113955][ T7145] ? policy_nodemask+0xed/0x4f0 [ 160.113990][ T7145] alloc_pages_mpol+0x1fb/0x540 [ 160.114023][ T7145] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 160.114059][ T7145] ? do_raw_spin_lock+0x128/0x260 [ 160.114094][ T7145] alloc_pages_noprof+0x1a/0x160 [ 160.114132][ T7145] pte_alloc_one+0x1c/0x3d0 [ 160.114180][ T7145] __pte_alloc+0x6d/0x3e0 [ 160.114211][ T7145] ? __pfx___pte_alloc+0x10/0x10 [ 160.114239][ T7145] ? __pfx___might_resched+0x10/0x10 [ 160.114268][ T7145] ? copy_page_range+0x1c2d/0x5b00 [ 160.114313][ T7145] copy_page_range+0x3dbb/0x5b00 [ 160.114394][ T7145] ? mas_wr_store_entry+0xa1/0x1e80 [ 160.114427][ T7145] ? __pfx_copy_page_range+0x10/0x10 [ 160.114481][ T7145] ? __pfx___might_resched+0x10/0x10 [ 160.114526][ T7145] ? up_write+0x28c/0x4f0 [ 160.114560][ T7145] dup_mmap+0xd25/0x2180 [ 160.114611][ T7145] ? __pfx_dup_mmap+0x10/0x10 [ 160.114644][ T7145] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 160.114698][ T7145] ? __lock_acquire+0x4a5/0x2630 [ 160.114751][ T7145] ? find_held_lock+0x2b/0x80 [ 160.114786][ T7145] ? __percpu_counter_init_many+0x2bc/0x3b0 [ 160.114856][ T7145] copy_process+0x7b37/0x7fa0 [ 160.114917][ T7145] ? __pfx_copy_process+0x10/0x10 [ 160.114956][ T7145] ? find_held_lock+0x2b/0x80 [ 160.115001][ T7145] kernel_clone+0x12e/0x9c0 [ 160.115038][ T7145] ? __pfx_futex_wait+0x10/0x10 [ 160.115077][ T7145] ? __pfx_kernel_clone+0x10/0x10 [ 160.115135][ T7145] __do_sys_clone+0xd9/0x120 [ 160.115175][ T7145] ? __pfx___do_sys_clone+0x10/0x10 [ 160.115212][ T7145] ? __fget_files+0x21f/0x3d0 [ 160.115265][ T7145] ? rcu_is_watching+0x12/0xc0 [ 160.115303][ T7145] do_syscall_64+0x10b/0xf80 [ 160.115332][ T7145] ? clear_bhb_loop+0x40/0x90 [ 160.115369][ T7145] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.115399][ T7145] RIP: 0033:0x7f0b82b9c819 [ 160.115424][ T7145] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 160.115452][ T7145] RSP: 002b:00007f0b83ad0fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 160.115479][ T7145] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 160.115498][ T7145] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 160.115515][ T7145] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 160.115533][ T7145] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 160.115550][ T7145] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 160.115589][ T7145] [ 160.659670][ T7151] mmap: syz.0.270 (7151) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 160.953499][ T7160] random: crng reseeded on system resumption [ 161.001702][ T7160] hub 1-0:1.0: USB hub found [ 161.013334][ T7160] hub 1-0:1.0: 1 port detected [ 161.838351][ T7167] FAULT_INJECTION: forcing a failure. [ 161.838351][ T7167] name failslab, interval 1, probability 0, space 0, times 0 [ 161.851864][ T7167] CPU: 0 UID: 0 PID: 7167 Comm: syz.3.268 Not tainted syzkaller #0 PREEMPT(full) [ 161.851896][ T7167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 161.851909][ T7167] Call Trace: [ 161.851925][ T7167] [ 161.851935][ T7167] dump_stack_lvl+0x100/0x190 [ 161.851967][ T7167] should_fail_ex.cold+0x5/0xa [ 161.851999][ T7167] ? __alloc_empty_sheaf+0x35/0x50 [ 161.852032][ T7167] should_failslab+0xc2/0x120 [ 161.852061][ T7167] __kmalloc_noprof+0xe0/0x850 [ 161.852099][ T7167] ? __pcs_replace_empty_main+0x13a/0x650 [ 161.852138][ T7167] ? __pcs_replace_empty_main+0x13a/0x650 [ 161.852182][ T7167] __alloc_empty_sheaf+0x35/0x50 [ 161.852218][ T7167] __pcs_replace_empty_main+0x3e8/0x650 [ 161.852265][ T7167] kmem_cache_alloc_noprof+0x480/0x6e0 [ 161.852303][ T7167] ? taskstats_exit+0x67b/0xc10 [ 161.852349][ T7167] taskstats_exit+0x67b/0xc10 [ 161.852387][ T7167] ? __pfx_taskstats_exit+0x10/0x10 [ 161.852448][ T7167] do_exit+0x65c/0x2a60 [ 161.852491][ T7167] ? __pfx_do_exit+0x10/0x10 [ 161.852528][ T7167] ? do_raw_spin_lock+0x128/0x260 [ 161.852556][ T7167] ? find_held_lock+0x2b/0x80 [ 161.852588][ T7167] ? get_signal+0x7e0/0x21e0 [ 161.852625][ T7167] do_group_exit+0xd5/0x2a0 [ 161.852667][ T7167] get_signal+0x1ec7/0x21e0 [ 161.852708][ T7167] ? inet_stream_connect+0x79/0xa0 [ 161.852753][ T7167] ? __pfx_get_signal+0x10/0x10 [ 161.852787][ T7167] ? do_futex+0x192/0x350 [ 161.852819][ T7167] arch_do_signal_or_restart+0x91/0x770 [ 161.852857][ T7167] ? __sys_connect+0xe4/0x170 [ 161.852886][ T7167] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 161.852941][ T7167] ? __pfx___x64_sys_futex+0x10/0x10 [ 161.852970][ T7167] ? rcu_is_watching+0x12/0xc0 [ 161.853005][ T7167] exit_to_user_mode_loop+0x86/0x4a0 [ 161.853045][ T7167] ? do_syscall_64+0x519/0xf80 [ 161.853076][ T7167] do_syscall_64+0x6f2/0xf80 [ 161.853102][ T7167] ? clear_bhb_loop+0x40/0x90 [ 161.853135][ T7167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.853163][ T7167] RIP: 0033:0x7f0b82b9c819 [ 161.853186][ T7167] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 161.853211][ T7167] RSP: 002b:00007f0b83ad10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 161.853237][ T7167] RAX: 0000000000000001 RBX: 00007f0b82e15fa8 RCX: 00007f0b82b9c819 [ 161.853254][ T7167] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0b82e15fac [ 161.853271][ T7167] RBP: 00007f0b82e15fa0 R08: 0000000000000001 R09: 0000000000000000 [ 161.853287][ T7167] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 161.853304][ T7167] R13: 00007f0b82e16038 R14: 00007ffc7a8031f0 R15: 00007ffc7a8032d8 [ 161.853340][ T7167] [ 162.289068][ T7170] FAULT_INJECTION: forcing a failure. [ 162.289068][ T7170] name failslab, interval 1, probability 0, space 0, times 0 [ 162.312116][ T7170] CPU: 0 UID: 0 PID: 7170 Comm: syz.1.278 Not tainted syzkaller #0 PREEMPT(full) [ 162.312152][ T7170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 162.312165][ T7170] Call Trace: [ 162.312173][ T7170] [ 162.312183][ T7170] dump_stack_lvl+0x100/0x190 [ 162.312219][ T7170] should_fail_ex.cold+0x5/0xa [ 162.312257][ T7170] should_failslab+0xc2/0x120 [ 162.312290][ T7170] __kmalloc_cache_noprof+0x7a/0x6f0 [ 162.312330][ T7170] ? ima_d_path+0xc9/0x260 [ 162.312365][ T7170] ? xattr_resolve_name+0x27d/0x3f0 [ 162.312422][ T7170] ima_d_path+0xc9/0x260 [ 162.312461][ T7170] ? __pfx_ima_d_path+0x10/0x10 [ 162.312505][ T7170] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 162.312546][ T7170] process_measurement+0x1b25/0x2350 [ 162.312588][ T7170] ? __pfx_process_measurement+0x10/0x10 [ 162.312687][ T7170] ima_bprm_check+0x116/0x180 [ 162.312722][ T7170] ? tomoyo_bprm_check_security+0x167/0x1d0 [ 162.312758][ T7170] ? __pfx_ima_bprm_check+0x10/0x10 [ 162.312809][ T7170] security_bprm_check+0xd7/0x1e0 [ 162.312852][ T7170] bprm_execve+0x845/0x1650 [ 162.312888][ T7170] ? __pfx_bprm_execve+0x10/0x10 [ 162.312912][ T7170] ? copy_strings.isra.0+0x491/0x790 [ 162.312950][ T7170] do_execveat_common.isra.0+0x4a5/0x580 [ 162.312988][ T7170] __x64_sys_execve+0x93/0xd0 [ 162.313019][ T7170] do_syscall_64+0x10b/0xf80 [ 162.313047][ T7170] ? clear_bhb_loop+0x40/0x90 [ 162.313083][ T7170] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.313111][ T7170] RIP: 0033:0x7f8533b9c819 [ 162.313135][ T7170] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 162.313161][ T7170] RSP: 002b:00007f8534a0e028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 162.313189][ T7170] RAX: ffffffffffffffda RBX: 00007f8533e15fa0 RCX: 00007f8533b9c819 [ 162.313208][ T7170] RDX: 0000200000000200 RSI: 00002000000000c0 RDI: 0000200000000040 [ 162.313226][ T7170] RBP: 00007f8533c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 162.313243][ T7170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.313260][ T7170] R13: 00007f8533e16038 R14: 00007f8533e15fa0 R15: 00007ffd912bccd8 [ 162.313298][ T7170] [ 162.683247][ T7179] random: crng reseeded on system resumption [ 162.755211][ T7179] hub 1-0:1.0: USB hub found [ 162.801042][ T7179] hub 1-0:1.0: 1 port detected [ 163.272682][ T7185] FAULT_INJECTION: forcing a failure. [ 163.272682][ T7185] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 163.308007][ T7185] CPU: 1 UID: 0 PID: 7185 Comm: syz.1.273 Not tainted syzkaller #0 PREEMPT(full) [ 163.308046][ T7185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 163.308062][ T7185] Call Trace: [ 163.308070][ T7185] [ 163.308080][ T7185] dump_stack_lvl+0x100/0x190 [ 163.308112][ T7185] should_fail_ex.cold+0x5/0xa [ 163.308146][ T7185] _copy_from_iter+0x1f4/0x1690 [ 163.308189][ T7185] ? __asan_memset+0x23/0x50 [ 163.308228][ T7185] ? __pfx__copy_from_iter+0x10/0x10 [ 163.308262][ T7185] ? alloc_pages_noprof+0xf9/0x160 [ 163.308297][ T7185] ? __sk_mem_schedule+0xd0/0x100 [ 163.308337][ T7185] tcp_sendmsg_locked+0xcab/0x4500 [ 163.308383][ T7185] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 163.308413][ T7185] ? do_raw_spin_lock+0x128/0x260 [ 163.308445][ T7185] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 163.308484][ T7185] ? __local_bh_enable_ip+0x9e/0x120 [ 163.308533][ T7185] tcp_sendmsg+0x2e/0x50 [ 163.308558][ T7185] ? __pfx_tcp_sendmsg+0x10/0x10 [ 163.308585][ T7185] inet_sendmsg+0xb9/0x140 [ 163.308614][ T7185] sock_write_iter+0x4ea/0x5a0 [ 163.308651][ T7185] ? __pfx_inet_sendmsg+0x10/0x10 [ 163.308675][ T7185] ? __pfx_sock_write_iter+0x10/0x10 [ 163.308728][ T7185] ? bpf_lsm_file_permission+0x9/0x10 [ 163.308770][ T7185] ? security_file_permission+0x76/0x210 [ 163.308814][ T7185] ? rw_verify_area+0xce/0x6d0 [ 163.308861][ T7185] vfs_write+0x6ac/0x1070 [ 163.308891][ T7185] ? __pfx_sock_write_iter+0x10/0x10 [ 163.308937][ T7185] ? __pfx_vfs_write+0x10/0x10 [ 163.308964][ T7185] ? find_held_lock+0x2b/0x80 [ 163.309021][ T7185] ksys_write+0x1f8/0x250 [ 163.309051][ T7185] ? __pfx_ksys_write+0x10/0x10 [ 163.309084][ T7185] ? rcu_is_watching+0x12/0xc0 [ 163.309121][ T7185] do_syscall_64+0x10b/0xf80 [ 163.309150][ T7185] ? clear_bhb_loop+0x40/0x90 [ 163.309186][ T7185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.309215][ T7185] RIP: 0033:0x7f8533b9c819 [ 163.309239][ T7185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 163.309266][ T7185] RSP: 002b:00007f8534a0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 163.309292][ T7185] RAX: ffffffffffffffda RBX: 00007f8533e15fa0 RCX: 00007f8533b9c819 [ 163.309311][ T7185] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 163.309327][ T7185] RBP: 00007f8533c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 163.309345][ T7185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.309361][ T7185] R13: 00007f8533e16038 R14: 00007f8533e15fa0 R15: 00007ffd912bccd8 [ 163.309398][ T7185] [ 164.207058][ T7204] random: crng reseeded on system resumption [ 164.244206][ T7204] hub 1-0:1.0: USB hub found [ 164.250132][ T7204] hub 1-0:1.0: 1 port detected [ 164.495532][ T7206] FAULT_INJECTION: forcing a failure. [ 164.495532][ T7206] name fail_futex, interval 1, probability 0, space 0, times 0 [ 164.509267][ T7206] CPU: 0 UID: 0 PID: 7206 Comm: syz.0.280 Not tainted syzkaller #0 PREEMPT(full) [ 164.509307][ T7206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 164.509324][ T7206] Call Trace: [ 164.509333][ T7206] [ 164.509343][ T7206] dump_stack_lvl+0x100/0x190 [ 164.509388][ T7206] should_fail_ex.cold+0x5/0xa [ 164.509420][ T7206] ? rcu_is_watching+0x12/0xc0 [ 164.509456][ T7206] get_futex_key+0x1d2/0x1510 [ 164.509507][ T7206] ? __pfx_get_futex_key+0x10/0x10 [ 164.509565][ T7206] futex_wait_setup+0x83/0x510 [ 164.509610][ T7206] __futex_wait+0x19f/0x300 [ 164.509645][ T7206] ? __pfx___futex_wait+0x10/0x10 [ 164.509684][ T7206] ? __pfx_futex_wake_mark+0x10/0x10 [ 164.509718][ T7206] ? find_held_lock+0x2b/0x80 [ 164.509746][ T7206] ? futex_wake+0x456/0x530 [ 164.509783][ T7206] futex_wait+0xe6/0x370 [ 164.509820][ T7206] ? __pfx_futex_wait+0x10/0x10 [ 164.509863][ T7206] ? rcu_is_watching+0x12/0xc0 [ 164.509894][ T7206] ? inet_stream_connect+0x79/0xa0 [ 164.509935][ T7206] ? __local_bh_enable_ip+0x9e/0x120 [ 164.509967][ T7206] ? lockdep_hardirqs_on+0x78/0x100 [ 164.510012][ T7206] do_futex+0x1ef/0x350 [ 164.510042][ T7206] ? __pfx_do_futex+0x10/0x10 [ 164.510073][ T7206] ? __sys_connect+0xe4/0x170 [ 164.510106][ T7206] __x64_sys_futex+0x34f/0x4d0 [ 164.510139][ T7206] ? __pfx___x64_sys_futex+0x10/0x10 [ 164.510171][ T7206] ? rcu_is_watching+0x12/0xc0 [ 164.510202][ T7206] do_syscall_64+0x10b/0xf80 [ 164.510226][ T7206] ? clear_bhb_loop+0x40/0x90 [ 164.510262][ T7206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.510291][ T7206] RIP: 0033:0x7f5f46f9c819 [ 164.510316][ T7206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 164.510342][ T7206] RSP: 002b:00007f5f451f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 164.510377][ T7206] RAX: ffffffffffffffda RBX: 00007f5f47215fa8 RCX: 00007f5f46f9c819 [ 164.510396][ T7206] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5f47215fa8 [ 164.510414][ T7206] RBP: 00007f5f47215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 164.510431][ T7206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.510448][ T7206] R13: 00007f5f47216038 R14: 00007fff4f571e20 R15: 00007fff4f571f08 [ 164.510486][ T7206] [ 165.997160][ T7227] random: crng reseeded on system resumption [ 166.083631][ T7227] hub 1-0:1.0: USB hub found [ 166.109429][ T7227] hub 1-0:1.0: 1 port detected [ 167.388514][ T7256] netlink: 326 bytes leftover after parsing attributes in process `syz.3.294'. [ 167.444126][ T7256] FAULT_INJECTION: forcing a failure. [ 167.444126][ T7256] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.504161][ T7256] CPU: 1 UID: 0 PID: 7256 Comm: syz.3.294 Not tainted syzkaller #0 PREEMPT(full) [ 167.504200][ T7256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 167.504215][ T7256] Call Trace: [ 167.504223][ T7256] [ 167.504234][ T7256] dump_stack_lvl+0x100/0x190 [ 167.504292][ T7256] should_fail_ex.cold+0x5/0xa [ 167.504329][ T7256] _copy_to_user+0x32/0xd0 [ 167.504367][ T7256] poll_select_finish+0x32f/0x670 [ 167.504399][ T7256] ? __pfx_poll_select_finish+0x10/0x10 [ 167.504434][ T7256] ? ktime_get_ts64+0x306/0x420 [ 167.504475][ T7256] ? ktime_get_ts64+0x318/0x420 [ 167.504511][ T7256] ? ktime_get_ts64+0x257/0x420 [ 167.504554][ T7256] kern_select+0x21b/0x270 [ 167.504584][ T7256] ? __pfx_kern_select+0x10/0x10 [ 167.504616][ T7256] ? xfd_validate_state+0x129/0x190 [ 167.504652][ T7256] __x64_sys_select+0xbd/0x160 [ 167.504680][ T7256] ? do_syscall_64+0x90/0xf80 [ 167.504708][ T7256] ? lockdep_hardirqs_on+0x78/0x100 [ 167.504736][ T7256] do_syscall_64+0x10b/0xf80 [ 167.504764][ T7256] ? clear_bhb_loop+0x40/0x90 [ 167.504798][ T7256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.504827][ T7256] RIP: 0033:0x7f0b82b9c819 [ 167.504854][ T7256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.504880][ T7256] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 167.504907][ T7256] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 167.504925][ T7256] RDX: 00002000000000c0 RSI: 0000200000000040 RDI: 0000000000000001 [ 167.504941][ T7256] RBP: 00007f0b82c32c91 R08: 00002000000001c0 R09: 0000000000000000 [ 167.504957][ T7256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.504972][ T7256] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 167.505002][ T7256] [ 167.699237][ T7260] FAULT_INJECTION: forcing a failure. [ 167.699237][ T7260] name fail_futex, interval 1, probability 0, space 0, times 0 [ 167.699285][ T7260] CPU: 1 UID: 0 PID: 7260 Comm: syz.3.294 Not tainted syzkaller #0 PREEMPT(full) [ 167.699332][ T7260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 167.699349][ T7260] Call Trace: [ 167.699358][ T7260] [ 167.699369][ T7260] dump_stack_lvl+0x100/0x190 [ 167.699408][ T7260] should_fail_ex.cold+0x5/0xa [ 167.699470][ T7260] get_futex_key+0x1d2/0x1510 [ 167.699524][ T7260] ? __pfx_get_futex_key+0x10/0x10 [ 167.699573][ T7260] ? __lock_acquire+0x4a5/0x2630 [ 167.699620][ T7260] ? __x64_sys_fsopen+0xd5/0x220 [ 167.699663][ T7260] ? kasan_save_stack+0x3f/0x50 [ 167.699690][ T7260] ? kasan_save_stack+0x30/0x50 [ 167.699720][ T7260] futex_wake+0xea/0x530 [ 167.699762][ T7260] ? __pfx_futex_wake+0x10/0x10 [ 167.699812][ T7260] do_futex+0x32b/0x350 [ 167.699846][ T7260] ? __pfx_do_futex+0x10/0x10 [ 167.699884][ T7260] __x64_sys_futex+0x34f/0x4d0 [ 167.699922][ T7260] ? __pfx___x64_sys_futex+0x10/0x10 [ 167.699959][ T7260] ? rcu_is_watching+0x12/0xc0 [ 167.699999][ T7260] do_syscall_64+0x10b/0xf80 [ 167.700028][ T7260] ? clear_bhb_loop+0x40/0x90 [ 167.700064][ T7260] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.700093][ T7260] RIP: 0033:0x7f0b82b9c819 [ 167.700120][ T7260] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.700147][ T7260] RSP: 002b:00007f0b83ab00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 167.700175][ T7260] RAX: ffffffffffffffda RBX: 00007f0b82e16098 RCX: 00007f0b82b9c819 [ 167.700197][ T7260] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0b82e1609c [ 167.700215][ T7260] RBP: 00007f0b82e16090 R08: 0000000000000001 R09: 0000000000000000 [ 167.700231][ T7260] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 167.700253][ T7260] R13: 00007f0b82e16128 R14: 00007ffc7a8031f0 R15: 00007ffc7a8032d8 [ 167.700289][ T7260] [ 169.613457][ T7290] FAULT_INJECTION: forcing a failure. [ 169.613457][ T7290] name failslab, interval 1, probability 0, space 0, times 0 [ 169.652986][ T7290] CPU: 0 UID: 0 PID: 7290 Comm: syz.3.301 Not tainted syzkaller #0 PREEMPT(full) [ 169.653028][ T7290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 169.653045][ T7290] Call Trace: [ 169.653054][ T7290] [ 169.653069][ T7290] dump_stack_lvl+0x100/0x190 [ 169.653104][ T7290] should_fail_ex.cold+0x5/0xa [ 169.653140][ T7290] ? tomoyo_encode2+0xfb/0x3c0 [ 169.653164][ T7290] should_failslab+0xc2/0x120 [ 169.653195][ T7290] __kmalloc_noprof+0xe0/0x850 [ 169.653236][ T7290] ? d_absolute_path+0x136/0x1b0 [ 169.653285][ T7290] tomoyo_encode2+0xfb/0x3c0 [ 169.653316][ T7290] tomoyo_encode+0x29/0x50 [ 169.653341][ T7290] tomoyo_realpath_from_path+0x18c/0x690 [ 169.653377][ T7290] tomoyo_realpath_nofollow+0xe0/0x100 [ 169.653405][ T7290] ? __pfx_tomoyo_realpath_nofollow+0x10/0x10 [ 169.653434][ T7290] ? tomoyo_profile+0x47/0x60 [ 169.653464][ T7290] ? tomoyo_init_request_info+0x101/0x370 [ 169.653503][ T7290] tomoyo_find_next_domain+0x2a8/0x2010 [ 169.653541][ T7290] ? __pfx___kernel_read+0x10/0x10 [ 169.653569][ T7290] ? __pfx___might_resched+0x10/0x10 [ 169.653607][ T7290] ? __pfx_tomoyo_find_next_domain+0x10/0x10 [ 169.653657][ T7290] tomoyo_bprm_check_security+0x12d/0x1d0 [ 169.653688][ T7290] ? tomoyo_bprm_check_security+0x11f/0x1d0 [ 169.653720][ T7290] security_bprm_check+0x87/0x1e0 [ 169.653754][ T7290] bprm_execve+0x845/0x1650 [ 169.653790][ T7290] ? __pfx_bprm_execve+0x10/0x10 [ 169.653814][ T7290] ? copy_strings.isra.0+0x491/0x790 [ 169.653851][ T7290] do_execveat_common.isra.0+0x4a5/0x580 [ 169.653888][ T7290] __x64_sys_execve+0x93/0xd0 [ 169.653918][ T7290] do_syscall_64+0x10b/0xf80 [ 169.653946][ T7290] ? clear_bhb_loop+0x40/0x90 [ 169.653982][ T7290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.654011][ T7290] RIP: 0033:0x7f0b82b9c819 [ 169.654034][ T7290] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 169.654060][ T7290] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 169.654095][ T7290] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 169.654113][ T7290] RDX: 0000200000000200 RSI: 00002000000000c0 RDI: 0000200000000040 [ 169.654132][ T7290] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 169.654148][ T7290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 169.654166][ T7290] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 169.654204][ T7290] [ 169.657758][ T7290] ERROR: Out of memory at tomoyo_realpath_from_path. [ 169.859572][ T7282] FAULT_INJECTION: forcing a failure. [ 169.859572][ T7282] name failslab, interval 1, probability 0, space 0, times 0 [ 169.962244][ T7282] CPU: 1 UID: 0 PID: 7282 Comm: syz.1.300 Not tainted syzkaller #0 PREEMPT(full) [ 169.962280][ T7282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 169.962296][ T7282] Call Trace: [ 169.962305][ T7282] [ 169.962315][ T7282] dump_stack_lvl+0x100/0x190 [ 169.962347][ T7282] should_fail_ex.cold+0x5/0xa [ 169.962382][ T7282] should_failslab+0xc2/0x120 [ 169.962411][ T7282] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 169.962453][ T7282] ? __anon_vma_prepare+0x344/0x5e0 [ 169.962495][ T7282] __anon_vma_prepare+0x344/0x5e0 [ 169.962528][ T7282] ? __pfx___pte_alloc+0x10/0x10 [ 169.962561][ T7282] __vmf_anon_prepare+0x11f/0x250 [ 169.962597][ T7282] do_anonymous_page+0x536/0x2050 [ 169.962645][ T7282] __handle_mm_fault+0x1d2c/0x2a00 [ 169.962688][ T7282] ? mt_find+0x45e/0x8e0 [ 169.962723][ T7282] ? __pfx___handle_mm_fault+0x10/0x10 [ 169.962760][ T7282] ? __pfx_mt_find+0x10/0x10 [ 169.962823][ T7282] handle_mm_fault+0x36d/0xa20 [ 169.962871][ T7282] __get_user_pages+0x1178/0x32a0 [ 169.962915][ T7282] ? __pfx___get_user_pages+0x10/0x10 [ 169.962959][ T7282] populate_vma_page_range+0x267/0x3f0 [ 169.962996][ T7282] ? __pfx_populate_vma_page_range+0x10/0x10 [ 169.963027][ T7282] ? __pfx_find_vma_intersection+0x10/0x10 [ 169.963058][ T7282] ? do_mmap+0x93f/0x12f0 [ 169.963093][ T7282] __mm_populate+0x107/0x3a0 [ 169.963128][ T7282] ? __pfx___mm_populate+0x10/0x10 [ 169.963166][ T7282] ? up_write+0x28c/0x4f0 [ 169.963200][ T7282] vm_mmap_pgoff+0x37f/0x470 [ 169.963244][ T7282] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 169.963280][ T7282] ? do_futex+0x192/0x350 [ 169.963311][ T7282] ? __pfx_do_futex+0x10/0x10 [ 169.963346][ T7282] ksys_mmap_pgoff+0xe4/0x610 [ 169.963380][ T7282] ? __x64_sys_futex+0x358/0x4d0 [ 169.963410][ T7282] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 169.963441][ T7282] ? xfd_validate_state+0x129/0x190 [ 169.963477][ T7282] __x64_sys_mmap+0x125/0x190 [ 169.963511][ T7282] do_syscall_64+0x10b/0xf80 [ 169.963539][ T7282] ? clear_bhb_loop+0x40/0x90 [ 169.963574][ T7282] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.963601][ T7282] RIP: 0033:0x7f8533b9c819 [ 169.963624][ T7282] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 169.963651][ T7282] RSP: 002b:00007f85349ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 169.963677][ T7282] RAX: ffffffffffffffda RBX: 00007f8533e16090 RCX: 00007f8533b9c819 [ 169.963695][ T7282] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 169.963709][ T7282] RBP: 00007f8533c32c91 R08: 0000000000000002 R09: 0000000000008000 [ 169.963725][ T7282] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 169.963740][ T7282] R13: 00007f8533e16128 R14: 00007f8533e16090 R15: 00007ffd912bccd8 [ 169.963776][ T7282] [ 170.456962][ T7297] FAULT_INJECTION: forcing a failure. [ 170.456962][ T7297] name failslab, interval 1, probability 0, space 0, times 0 [ 170.470674][ T7297] CPU: 1 UID: 0 PID: 7297 Comm: syz.3.302 Not tainted syzkaller #0 PREEMPT(full) [ 170.470714][ T7297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 170.470740][ T7297] Call Trace: [ 170.470749][ T7297] [ 170.470760][ T7297] dump_stack_lvl+0x100/0x190 [ 170.470796][ T7297] should_fail_ex.cold+0x5/0xa [ 170.470832][ T7297] should_failslab+0xc2/0x120 [ 170.470863][ T7297] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 170.470905][ T7297] ? dst_alloc+0x99/0x1a0 [ 170.470940][ T7297] dst_alloc+0x99/0x1a0 [ 170.470972][ T7297] rt_dst_alloc+0x35/0x3a0 [ 170.471016][ T7297] ip_route_output_key_hash_rcu+0x87a/0x2870 [ 170.471060][ T7297] ip_route_output_key_hash+0x118/0x2b0 [ 170.471094][ T7297] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 170.471133][ T7297] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 170.471175][ T7297] ? lockdep_hardirqs_on+0x78/0x100 [ 170.471207][ T7297] ip_route_output_flow+0x27/0x150 [ 170.471241][ T7297] tcp_v4_connect+0x8e8/0x1b40 [ 170.471279][ T7297] ? __pfx_tcp_v4_connect+0x10/0x10 [ 170.471304][ T7297] ? __lock_acquire+0x4a5/0x2630 [ 170.471349][ T7297] ? __lock_acquire+0x4a5/0x2630 [ 170.471399][ T7297] __inet_stream_connect+0x208/0xfa0 [ 170.471453][ T7297] ? __pfx___inet_stream_connect+0x10/0x10 [ 170.471501][ T7297] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 170.471534][ T7297] ? __pfx_inet_stream_connect+0x10/0x10 [ 170.471581][ T7297] ? __local_bh_enable_ip+0x9e/0x120 [ 170.471638][ T7297] ? __pfx_inet_stream_connect+0x10/0x10 [ 170.471684][ T7297] inet_stream_connect+0x57/0xa0 [ 170.471741][ T7297] __sys_connect_file+0x141/0x1a0 [ 170.471777][ T7297] __sys_connect+0x141/0x170 [ 170.471811][ T7297] ? __pfx___sys_connect+0x10/0x10 [ 170.471869][ T7297] __x64_sys_connect+0x72/0xb0 [ 170.471898][ T7297] ? lockdep_hardirqs_on+0x78/0x100 [ 170.471929][ T7297] do_syscall_64+0x10b/0xf80 [ 170.471958][ T7297] ? clear_bhb_loop+0x40/0x90 [ 170.471992][ T7297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.472027][ T7297] RIP: 0033:0x7f0b82b9c819 [ 170.472051][ T7297] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 170.472082][ T7297] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 170.472109][ T7297] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 170.472127][ T7297] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 170.472149][ T7297] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 170.472166][ T7297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.472182][ T7297] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 170.472224][ T7297] [ 170.818274][ T7301] vivid-007: ================= START STATUS ================= [ 170.837786][ T7301] vivid-007: Generate PTS: true [ 170.845756][ T7301] vivid-007: Generate SCR: true [ 170.851166][ T7301] tpg source WxH: 320x240 (Y'CbCr) [ 170.856313][ T7301] tpg field: 1 [ 170.859769][ T7301] tpg crop: (0,0)/320x240 [ 170.864210][ T7301] tpg compose: (0,0)/320x240 [ 170.869426][ T7301] tpg colorspace: 8 [ 170.873260][ T7301] tpg transfer function: 0/0 [ 170.878323][ T7301] tpg Y'CbCr encoding: 0/0 [ 170.882912][ T7301] tpg quantization: 0/0 [ 170.887081][ T7301] tpg RGB range: 0/2 [ 170.891462][ T7301] vivid-007: ================== END STATUS ================== [ 171.186909][ T7309] [U] " [ 171.190267][ T7309] [U] [ 171.192955][ T7309] [U] [ 171.195641][ T7309] [U] [ 171.265749][ T7309] [U] [ 171.268508][ T7309] [U] [ 171.271219][ T7309] [U] [ 171.273899][ T7309] [U] [ 171.361776][ T7309] [U] [ 171.364545][ T7309] [U] [ 171.367271][ T7309] [U] [ 171.369994][ T7309] [U] [ 171.389821][ T7309] [U] [ 171.392607][ T7309] [U] [ 171.395331][ T7309] [U] [ 171.398070][ T7309] [U] [ 171.458044][ T7309] [U] [ 171.460823][ T7309] [U] [ 171.463558][ T7309] [U] [ 171.466297][ T7309] [U] [ 171.552459][ T7309] [U] [ 171.555240][ T7309] [U] [ 171.557973][ T7309] [U] [ 171.560735][ T7309] [U] [ 171.635952][ T7309] [U] [ 171.638910][ T7309] [U] [ 171.641639][ T7309] [U] [ 171.644361][ T7309] [U] [ 171.713965][ T7309] [U] [ 171.716735][ T7309] [U] [ 171.719469][ T7309] [U] [ 171.722211][ T7309] [U] [ 171.738493][ T7309] [U] [ 171.741266][ T7309] [U] [ 171.743992][ T7309] [U] [ 171.746714][ T7309] [U] [ 171.777085][ T7309] [U] [ 171.779859][ T7309] [U] [ 171.782585][ T7309] [U] [ 171.785381][ T7309] [U] [ 171.805067][ T7309] [U] [ 171.807831][ T7309] [U] [ 171.810566][ T7309] [U] [ 171.813295][ T7309] [U] [ 171.842888][ T7309] [U] [ 171.845677][ T7309] [U] [ 171.848408][ T7309] [U] [ 171.851125][ T7309] [U] [ 171.858965][ T7309] [U] [ 171.861717][ T7309] [U] [ 171.864441][ T7309] [U] [ 171.867160][ T7309] [U] [ 171.921187][ T7309] [U] [ 173.985191][ T7353] random: crng reseeded on system resumption [ 174.051339][ T7353] hub 1-0:1.0: USB hub found [ 174.059196][ T7353] hub 1-0:1.0: 1 port detected [ 174.933997][ T7358] random: crng reseeded on system resumption [ 174.995112][ T7358] hub 1-0:1.0: USB hub found [ 175.029957][ T7358] hub 1-0:1.0: 1 port detected [ 176.606277][ T7366] kexec: Could not allocate control_code_buffer [ 178.479778][ T7417] random: crng reseeded on system resumption [ 178.586131][ T7417] hub 1-0:1.0: USB hub found [ 178.625603][ T7417] hub 1-0:1.0: 1 port detected [ 178.819217][ T7421] lo: entered allmulticast mode [ 178.825424][ T7421] lo: left allmulticast mode [ 179.750794][ T7440] random: crng reseeded on system resumption [ 179.787966][ T7440] hub 1-0:1.0: USB hub found [ 179.804373][ T7440] hub 1-0:1.0: 1 port detected [ 180.176669][ T7446] random: crng reseeded on system resumption [ 180.258285][ T7446] hub 1-0:1.0: USB hub found [ 180.268763][ T7446] hub 1-0:1.0: 1 port detected [ 180.681520][ T7451] FAULT_INJECTION: forcing a failure. [ 180.681520][ T7451] name failslab, interval 1, probability 0, space 0, times 0 [ 180.711352][ T7451] CPU: 0 UID: 0 PID: 7451 Comm: syz.2.338 Not tainted syzkaller #0 PREEMPT(full) [ 180.711389][ T7451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 180.711404][ T7451] Call Trace: [ 180.711413][ T7451] [ 180.711424][ T7451] dump_stack_lvl+0x100/0x190 [ 180.711459][ T7451] should_fail_ex.cold+0x5/0xa [ 180.711496][ T7451] should_failslab+0xc2/0x120 [ 180.711528][ T7451] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 180.711572][ T7451] ? __alloc_skb+0x140/0x710 [ 180.711609][ T7451] __alloc_skb+0x140/0x710 [ 180.711642][ T7451] ? __pfx___alloc_skb+0x10/0x10 [ 180.711684][ T7451] tcp_stream_alloc_skb+0x34/0x660 [ 180.711715][ T7451] tcp_connect+0xefd/0x5510 [ 180.711766][ T7451] ? find_held_lock+0x2b/0x80 [ 180.711806][ T7451] ? __pfx_tcp_connect+0x10/0x10 [ 180.711838][ T7451] ? __pfx_tcp_fastopen_defer_connect+0x10/0x10 [ 180.711898][ T7451] tcp_v4_connect+0x15fe/0x1b40 [ 180.711937][ T7451] ? __pfx_tcp_v4_connect+0x10/0x10 [ 180.711965][ T7451] ? __lock_acquire+0x4a5/0x2630 [ 180.712005][ T7451] ? __lock_acquire+0x4a5/0x2630 [ 180.712052][ T7451] __inet_stream_connect+0x208/0xfa0 [ 180.712105][ T7451] ? __pfx___inet_stream_connect+0x10/0x10 [ 180.712156][ T7451] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 180.712188][ T7451] ? __pfx_inet_stream_connect+0x10/0x10 [ 180.712227][ T7451] ? __local_bh_enable_ip+0x9e/0x120 [ 180.712259][ T7451] ? __pfx_inet_stream_connect+0x10/0x10 [ 180.712297][ T7451] inet_stream_connect+0x57/0xa0 [ 180.712346][ T7451] __sys_connect_file+0x141/0x1a0 [ 180.712389][ T7451] __sys_connect+0x141/0x170 [ 180.712417][ T7451] ? __pfx___sys_connect+0x10/0x10 [ 180.712466][ T7451] __x64_sys_connect+0x72/0xb0 [ 180.712491][ T7451] ? lockdep_hardirqs_on+0x78/0x100 [ 180.712521][ T7451] do_syscall_64+0x10b/0xf80 [ 180.712549][ T7451] ? clear_bhb_loop+0x40/0x90 [ 180.712579][ T7451] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.712609][ T7451] RIP: 0033:0x7f5e1939c819 [ 180.712632][ T7451] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 180.712658][ T7451] RSP: 002b:00007f5e1a1fb028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 180.712685][ T7451] RAX: ffffffffffffffda RBX: 00007f5e19615fa0 RCX: 00007f5e1939c819 [ 180.712703][ T7451] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 180.712718][ T7451] RBP: 00007f5e19432c91 R08: 0000000000000000 R09: 0000000000000000 [ 180.712733][ T7451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 180.712748][ T7451] R13: 00007f5e19616038 R14: 00007f5e19615fa0 R15: 00007ffca84f3ff8 [ 180.712800][ T7451] [ 181.148679][ T7458] vivid-007: ================= START STATUS ================= [ 181.157876][ T7458] vivid-007: Generate PTS: true [ 181.164236][ T7458] vivid-007: Generate SCR: true [ 181.169755][ T7458] tpg source WxH: 320x240 (Y'CbCr) [ 181.188427][ T7458] tpg field: 1 [ 181.192093][ T7458] tpg crop: (0,0)/320x240 [ 181.202431][ T7458] tpg compose: (0,0)/320x240 [ 181.208553][ T7458] tpg colorspace: 8 [ 181.218422][ T7458] tpg transfer function: 0/0 [ 181.225851][ T7458] tpg Y'CbCr encoding: 0/0 [ 181.245983][ T7458] tpg quantization: 0/0 [ 181.252054][ T7462] random: crng reseeded on system resumption [ 181.266236][ T7458] tpg RGB range: 0/2 [ 181.283620][ T7458] vivid-007: ================== END STATUS ================== [ 181.295557][ T7462] hub 1-0:1.0: USB hub found [ 181.305764][ T7462] hub 1-0:1.0: 1 port detected [ 181.552844][ T7467] random: crng reseeded on system resumption [ 181.646689][ T7467] hub 1-0:1.0: USB hub found [ 181.687505][ T7467] hub 1-0:1.0: 1 port detected [ 182.560495][ T7491] random: crng reseeded on system resumption [ 182.648645][ T7491] hub 1-0:1.0: USB hub found [ 182.661671][ T7491] hub 1-0:1.0: 1 port detected [ 185.477410][ T7542] random: crng reseeded on system resumption [ 185.518153][ T7542] hub 1-0:1.0: USB hub found [ 185.527787][ T7542] hub 1-0:1.0: 1 port detected [ 187.031704][ T7579] FAULT_INJECTION: forcing a failure. [ 187.031704][ T7579] name failslab, interval 1, probability 0, space 0, times 0 [ 187.045376][ T7579] CPU: 1 UID: 0 PID: 7579 Comm: syz.0.361 Not tainted syzkaller #0 PREEMPT(full) [ 187.045397][ T7579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 187.045410][ T7579] Call Trace: [ 187.045417][ T7579] [ 187.045423][ T7579] dump_stack_lvl+0x100/0x190 [ 187.045445][ T7579] should_fail_ex.cold+0x5/0xa [ 187.045464][ T7579] should_failslab+0xc2/0x120 [ 187.045481][ T7579] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 187.045502][ T7579] ? __inet_hash_connect+0x6da/0x2000 [ 187.045519][ T7579] ? __inet_hash_connect+0x602/0x2000 [ 187.045539][ T7579] __inet_hash_connect+0x6da/0x2000 [ 187.045563][ T7579] ? __pfx___inet_check_established+0x10/0x10 [ 187.045581][ T7579] ? __pfx___inet_hash_connect+0x10/0x10 [ 187.045602][ T7579] ? inet_init_ehash_secret+0xd/0x60 [ 187.045617][ T7579] ? inet_hash_connect+0x9f/0x340 [ 187.045637][ T7579] tcp_v4_connect+0xeb3/0x1b40 [ 187.045658][ T7579] ? __pfx_tcp_v4_connect+0x10/0x10 [ 187.045673][ T7579] ? __lock_acquire+0x4a5/0x2630 [ 187.045694][ T7579] ? __lock_acquire+0x4a5/0x2630 [ 187.045718][ T7579] __inet_stream_connect+0x208/0xfa0 [ 187.045745][ T7579] ? __pfx___inet_stream_connect+0x10/0x10 [ 187.045767][ T7579] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 187.045785][ T7579] ? __pfx_inet_stream_connect+0x10/0x10 [ 187.045808][ T7579] ? __local_bh_enable_ip+0x9e/0x120 [ 187.045827][ T7579] ? __pfx_inet_stream_connect+0x10/0x10 [ 187.045848][ T7579] inet_stream_connect+0x57/0xa0 [ 187.045872][ T7579] __sys_connect_file+0x141/0x1a0 [ 187.045890][ T7579] __sys_connect+0x141/0x170 [ 187.045904][ T7579] ? __pfx___sys_connect+0x10/0x10 [ 187.045931][ T7579] __x64_sys_connect+0x72/0xb0 [ 187.045946][ T7579] ? lockdep_hardirqs_on+0x78/0x100 [ 187.045961][ T7579] do_syscall_64+0x10b/0xf80 [ 187.045975][ T7579] ? clear_bhb_loop+0x40/0x90 [ 187.045993][ T7579] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 187.046009][ T7579] RIP: 0033:0x7f5f46f9c819 [ 187.046022][ T7579] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 187.046036][ T7579] RSP: 002b:00007f5f451f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 187.046051][ T7579] RAX: ffffffffffffffda RBX: 00007f5f47215fa0 RCX: 00007f5f46f9c819 [ 187.046064][ T7579] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 187.046074][ T7579] RBP: 00007f5f47032c91 R08: 0000000000000000 R09: 0000000000000000 [ 187.046082][ T7579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 187.046091][ T7579] R13: 00007f5f47216038 R14: 00007f5f47215fa0 R15: 00007fff4f571f08 [ 187.046109][ T7579] [ 187.919116][ T7551] kexec: Could not allocate control_code_buffer [ 190.318473][ T7641] random: crng reseeded on system resumption [ 190.417820][ T7641] hub 1-0:1.0: USB hub found [ 190.436107][ T7641] hub 1-0:1.0: 1 port detected [ 191.243181][ T7652] random: crng reseeded on system resumption [ 191.345836][ T7652] hub 1-0:1.0: USB hub found [ 191.373080][ T7652] hub 1-0:1.0: 1 port detected [ 191.838816][ T7661] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 191.872566][ T7661] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 192.313757][ T7661] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 192.454559][ T7661] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 192.558164][ T7661] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 192.583002][ T7661] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 192.658807][ T7661] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 192.681410][ T7661] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 192.696007][ T7661] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 192.730255][ T7661] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 192.791962][ T7661] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 192.811716][ T7661] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 192.854377][ T7661] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 192.902303][ T7661] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 193.728319][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 194.339334][ T7707] random: crng reseeded on system resumption [ 194.386914][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.395100][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.430860][ T7711] hub 1-0:1.0: USB hub found [ 194.443841][ T7711] hub 1-0:1.0: 1 port detected [ 194.571333][ T7707] hub 1-0:1.0: USB hub found [ 194.577785][ T7707] hub 1-0:1.0: 1 port detected [ 194.624678][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 194.688989][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 194.848288][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 195.808295][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 196.688381][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 196.768595][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 196.928414][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 197.888290][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 197.948070][ T7765] random: crng reseeded on system resumption [ 198.037020][ T7765] hub 1-0:1.0: USB hub found [ 198.064031][ T7765] hub 1-0:1.0: 1 port detected [ 198.769773][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 198.849116][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 199.008456][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 199.330901][ T7779] random: crng reseeded on system resumption [ 199.378159][ T7779] hub 1-0:1.0: USB hub found [ 199.395461][ T7779] hub 1-0:1.0: 1 port detected [ 199.968292][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 200.721189][ T7803] random: crng reseeded on system resumption [ 200.768901][ T7803] hub 1-0:1.0: USB hub found [ 200.781949][ T7803] hub 1-0:1.0: 1 port detected [ 201.088329][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 202.527296][ T7829] FAULT_INJECTION: forcing a failure. [ 202.527296][ T7829] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 202.590755][ T7829] CPU: 0 UID: 0 PID: 7829 Comm: syz.2.418 Not tainted syzkaller #0 PREEMPT(full) [ 202.590777][ T7829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 202.590787][ T7829] Call Trace: [ 202.590792][ T7829] [ 202.590798][ T7829] dump_stack_lvl+0x100/0x190 [ 202.590820][ T7829] should_fail_ex.cold+0x5/0xa [ 202.590838][ T7829] ? prepare_alloc_pages+0x16d/0x5f0 [ 202.590858][ T7829] should_fail_alloc_page+0xeb/0x140 [ 202.590876][ T7829] prepare_alloc_pages+0x1f0/0x5f0 [ 202.590900][ T7829] ? rcu_read_unlock+0x17/0x60 [ 202.590920][ T7829] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 202.590945][ T7829] ? lru_gen_add_folio+0x20f/0x13d0 [ 202.590971][ T7829] ? folios_put_refs+0x716/0xa90 [ 202.590996][ T7829] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 202.591021][ T7829] ? __lock_acquire+0x4a5/0x2630 [ 202.591051][ T7829] ? lock_acquire+0x1b1/0x370 [ 202.591072][ T7829] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.591093][ T7829] ? policy_nodemask+0xed/0x4f0 [ 202.591111][ T7829] alloc_pages_mpol+0x1fb/0x540 [ 202.591128][ T7829] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 202.591145][ T7829] ? __lock_acquire+0x4a5/0x2630 [ 202.591169][ T7829] folio_alloc_mpol_noprof+0x36/0x260 [ 202.591188][ T7829] vma_alloc_folio_noprof+0xed/0x1d0 [ 202.591207][ T7829] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 202.591230][ T7829] do_anonymous_page+0xb46/0x2050 [ 202.591251][ T7829] ? rcu_read_unlock+0x2d/0xb0 [ 202.591276][ T7829] __handle_mm_fault+0x1d2c/0x2a00 [ 202.591299][ T7829] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 202.591317][ T7829] ? __pfx___handle_mm_fault+0x10/0x10 [ 202.591338][ T7829] ? pte_offset_map_lock+0x174/0x320 [ 202.591354][ T7829] ? find_held_lock+0x2b/0x80 [ 202.591377][ T7829] ? follow_page_pte+0x4d0/0x13f0 [ 202.591397][ T7829] handle_mm_fault+0x36d/0xa20 [ 202.591421][ T7829] __get_user_pages+0x1178/0x32a0 [ 202.591445][ T7829] ? __pfx___get_user_pages+0x10/0x10 [ 202.591467][ T7829] populate_vma_page_range+0x267/0x3f0 [ 202.591486][ T7829] ? __pfx_populate_vma_page_range+0x10/0x10 [ 202.591504][ T7829] ? __pfx_find_vma_intersection+0x10/0x10 [ 202.591526][ T7829] __mm_populate+0x107/0x3a0 [ 202.591544][ T7829] ? __pfx___mm_populate+0x10/0x10 [ 202.591563][ T7829] ? up_write+0x3fd/0x4f0 [ 202.591580][ T7829] vm_mmap_pgoff+0x37f/0x470 [ 202.591599][ T7829] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 202.591618][ T7829] ? do_futex+0x192/0x350 [ 202.591633][ T7829] ? __pfx_do_futex+0x10/0x10 [ 202.591654][ T7829] ksys_mmap_pgoff+0xe4/0x610 [ 202.591671][ T7829] ? __x64_sys_futex+0x358/0x4d0 [ 202.591686][ T7829] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 202.591702][ T7829] ? xfd_validate_state+0x129/0x190 [ 202.591721][ T7829] __x64_sys_mmap+0x125/0x190 [ 202.591738][ T7829] do_syscall_64+0x10b/0xf80 [ 202.591753][ T7829] ? clear_bhb_loop+0x40/0x90 [ 202.591772][ T7829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.591787][ T7829] RIP: 0033:0x7f5e1939c819 [ 202.591801][ T7829] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 202.591821][ T7829] RSP: 002b:00007f5e1a1b9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 202.591840][ T7829] RAX: ffffffffffffffda RBX: 00007f5e19616180 RCX: 00007f5e1939c819 [ 202.591850][ T7829] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 202.591859][ T7829] RBP: 00007f5e19432c91 R08: 0000000000000002 R09: 0000000000008000 [ 202.591868][ T7829] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 202.591877][ T7829] R13: 00007f5e19616218 R14: 00007f5e19616180 R15: 00007ffca84f3ff8 [ 202.591905][ T7829] [ 203.710246][ T7842] block2mtd: illegal erase size [ 204.663767][ T7856] random: crng reseeded on system resumption [ 204.768058][ T7856] hub 1-0:1.0: USB hub found [ 204.779756][ T7856] hub 1-0:1.0: 1 port detected [ 205.091091][ T7859] random: crng reseeded on system resumption [ 205.194665][ T7859] hub 1-0:1.0: USB hub found [ 205.224381][ T7859] hub 1-0:1.0: 1 port detected [ 205.294671][ T7861] netlink: 'syz.2.428': attribute type 1 has an invalid length. [ 205.332591][ T7861] netlink: 9 bytes leftover after parsing attributes in process `syz.2.428'. [ 205.704758][ T7866] random: crng reseeded on system resumption [ 205.745996][ T7866] hub 1-0:1.0: USB hub found [ 205.757669][ T7866] hub 1-0:1.0: 1 port detected [ 206.117775][ T7874] random: crng reseeded on system resumption [ 206.171924][ T7874] hub 1-0:1.0: USB hub found [ 206.188122][ T7874] hub 1-0:1.0: 1 port detected [ 207.417785][ T7902] random: crng reseeded on system resumption [ 207.588116][ T7905] hub 1-0:1.0: USB hub found [ 207.621133][ T7905] hub 1-0:1.0: 1 port detected [ 208.519722][ T7917] random: crng reseeded on system resumption [ 208.602646][ T7917] hub 1-0:1.0: USB hub found [ 208.627127][ T7917] hub 1-0:1.0: 1 port detected [ 208.796240][ T7922] random: crng reseeded on system resumption [ 208.876885][ T7925] hub 1-0:1.0: USB hub found [ 208.917829][ T7925] hub 1-0:1.0: 1 port detected [ 209.806517][ T7934] random: crng reseeded on system resumption [ 209.893317][ T7934] hub 1-0:1.0: USB hub found [ 209.910896][ T7934] hub 1-0:1.0: 1 port detected [ 211.473813][ T7969] random: crng reseeded on system resumption [ 211.568549][ T7969] hub 1-0:1.0: USB hub found [ 211.584630][ T7969] hub 1-0:1.0: 1 port detected [ 211.615961][ T7973] random: crng reseeded on system resumption [ 211.752505][ T7973] hub 1-0:1.0: USB hub found [ 211.795924][ T7973] hub 1-0:1.0: 1 port detected [ 213.097273][ T8006] vivid-007: ================= START STATUS ================= [ 213.111066][ T8007] program syz.1.460 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 213.134618][ T8007] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 213.207368][ T8006] vivid-007: Generate PTS: true [ 213.252717][ T8006] vivid-007: Generate SCR: true [ 213.434781][ T8006] tpg source WxH: 320x240 (Y'CbCr) [ 213.434812][ T8006] tpg field: 1 [ 213.434819][ T8006] tpg crop: (0,0)/320x240 [ 213.434835][ T8006] tpg compose: (0,0)/320x240 [ 213.434846][ T8006] tpg colorspace: 8 [ 213.434851][ T8006] tpg transfer function: 0/0 [ 213.434859][ T8006] tpg Y'CbCr encoding: 0/0 [ 213.434866][ T8006] tpg quantization: 0/0 [ 213.434873][ T8006] tpg RGB range: 0/2 [ 213.434881][ T8006] vivid-007: ================== END STATUS ================== [ 215.331117][ T8051] random: crng reseeded on system resumption [ 215.397396][ T8051] hub 1-0:1.0: USB hub found [ 215.420275][ T8051] hub 1-0:1.0: 1 port detected [ 217.045850][ T8083] netlink: 4 bytes leftover after parsing attributes in process `syz.1.473'. [ 217.082828][ T8083] netlink: 354 bytes leftover after parsing attributes in process `syz.1.473'. [ 217.233681][ T8085] random: crng reseeded on system resumption [ 217.284722][ T8085] hub 1-0:1.0: USB hub found [ 217.294565][ T8085] hub 1-0:1.0: 1 port detected [ 218.295633][ T8109] random: crng reseeded on system resumption [ 218.380976][ T8111] hub 1-0:1.0: USB hub found [ 218.402407][ T8111] hub 1-0:1.0: 1 port detected [ 218.763368][ T8109] hub 1-0:1.0: USB hub found [ 218.816998][ T8109] hub 1-0:1.0: 1 port detected [ 219.950019][ T8136] FAULT_INJECTION: forcing a failure. [ 219.950019][ T8136] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 220.022373][ T8136] CPU: 1 UID: 0 PID: 8136 Comm: syz.0.496 Not tainted syzkaller #0 PREEMPT(full) [ 220.022411][ T8136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 220.022428][ T8136] Call Trace: [ 220.022438][ T8136] [ 220.022448][ T8136] dump_stack_lvl+0x100/0x190 [ 220.022484][ T8136] should_fail_ex.cold+0x5/0xa [ 220.022514][ T8136] ? prepare_alloc_pages+0x16d/0x5f0 [ 220.022552][ T8136] should_fail_alloc_page+0xeb/0x140 [ 220.022584][ T8136] prepare_alloc_pages+0x1f0/0x5f0 [ 220.022633][ T8136] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 220.022679][ T8136] ? __dev_queue_xmit+0xa10/0x4950 [ 220.022713][ T8136] ? __lock_acquire+0x4a5/0x2630 [ 220.022766][ T8136] ? __pfx___dev_queue_xmit+0x10/0x10 [ 220.022813][ T8136] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 220.022864][ T8136] ? __local_bh_enable_ip+0x9e/0x120 [ 220.022914][ T8136] ? __lock_acquire+0x4a5/0x2630 [ 220.022969][ T8136] ? __lock_acquire+0x4a5/0x2630 [ 220.023014][ T8136] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 220.023057][ T8136] ? policy_nodemask+0xed/0x4f0 [ 220.023092][ T8136] alloc_pages_mpol+0x1fb/0x540 [ 220.023123][ T8136] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 220.023170][ T8136] folio_alloc_mpol_noprof+0x36/0x260 [ 220.023314][ T8136] shmem_alloc_folio+0x135/0x160 [ 220.023361][ T8136] shmem_alloc_and_add_folio+0x371/0xd40 [ 220.023419][ T8136] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 220.023464][ T8136] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 220.023516][ T8136] shmem_get_folio_gfp+0x6ab/0x1900 [ 220.023569][ T8136] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 220.023615][ T8136] ? filemap_map_pages+0x9c1/0x2140 [ 220.023666][ T8136] shmem_fault+0x1f9/0xa20 [ 220.023716][ T8136] ? __pfx_shmem_fault+0x10/0x10 [ 220.023776][ T8136] ? __pfx_filemap_map_pages+0x10/0x10 [ 220.023822][ T8136] ? find_held_lock+0x2b/0x80 [ 220.023862][ T8136] __do_fault+0x10b/0x440 [ 220.023893][ T8136] do_fault+0xa99/0x1750 [ 220.023933][ T8136] __handle_mm_fault+0x187d/0x2a00 [ 220.023979][ T8136] ? mt_find+0x45e/0x8e0 [ 220.024012][ T8136] ? __pfx___handle_mm_fault+0x10/0x10 [ 220.024050][ T8136] ? __pfx_mt_find+0x10/0x10 [ 220.024102][ T8136] ? find_vma+0xbf/0x140 [ 220.024130][ T8136] ? __pfx_find_vma+0x10/0x10 [ 220.024164][ T8136] handle_mm_fault+0x36d/0xa20 [ 220.024211][ T8136] do_user_addr_fault+0x74c/0x12f0 [ 220.024260][ T8136] ? trace_page_fault_kernel+0x7a/0x200 [ 220.024297][ T8136] exc_page_fault+0x6f/0xd0 [ 220.024328][ T8136] asm_exc_page_fault+0x26/0x30 [ 220.024356][ T8136] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 220.024397][ T8136] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 220.024423][ T8136] RSP: 0018:ffffc900051ef888 EFLAGS: 00050206 [ 220.024444][ T8136] RAX: 0000000000000001 RBX: ffff88804a608000 RCX: 0000000000007000 [ 220.024465][ T8136] RDX: 0000000000000001 RSI: 0000000000001000 RDI: ffff88804a609000 [ 220.024484][ T8136] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10094c1fff [ 220.024502][ T8136] R10: ffff88804a60ffff R11: 0000000000000000 R12: ffffc900051efc40 [ 220.024520][ T8136] R13: 0000000000000000 R14: 0000000000008000 R15: 0000000000000000 [ 220.024551][ T8136] _copy_from_iter+0x355/0x1690 [ 220.024592][ T8136] ? __asan_memset+0x23/0x50 [ 220.024644][ T8136] ? __pfx__copy_from_iter+0x10/0x10 [ 220.024775][ T8136] ? alloc_pages_noprof+0xf9/0x160 [ 220.024802][ T8136] ? __sk_mem_schedule+0xd0/0x100 [ 220.024826][ T8136] tcp_sendmsg_locked+0xcab/0x4500 [ 220.024862][ T8136] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 220.024880][ T8136] ? do_raw_spin_lock+0x128/0x260 [ 220.024898][ T8136] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 220.024920][ T8136] ? __local_bh_enable_ip+0x9e/0x120 [ 220.024941][ T8136] tcp_sendmsg+0x2e/0x50 [ 220.024955][ T8136] ? __pfx_tcp_sendmsg+0x10/0x10 [ 220.024969][ T8136] inet_sendmsg+0xb9/0x140 [ 220.025012][ T8136] sock_write_iter+0x4ea/0x5a0 [ 220.025034][ T8136] ? __pfx_inet_sendmsg+0x10/0x10 [ 220.025048][ T8136] ? __pfx_sock_write_iter+0x10/0x10 [ 220.025077][ T8136] ? bpf_lsm_file_permission+0x9/0x10 [ 220.025100][ T8136] ? security_file_permission+0x76/0x210 [ 220.025134][ T8136] ? rw_verify_area+0xce/0x6d0 [ 220.025180][ T8136] vfs_write+0x6ac/0x1070 [ 220.025206][ T8136] ? __pfx_sock_write_iter+0x10/0x10 [ 220.025232][ T8136] ? __pfx_vfs_write+0x10/0x10 [ 220.025247][ T8136] ? find_held_lock+0x2b/0x80 [ 220.025277][ T8136] ksys_write+0x1f8/0x250 [ 220.025293][ T8136] ? __pfx_ksys_write+0x10/0x10 [ 220.025310][ T8136] ? rcu_is_watching+0x12/0xc0 [ 220.025330][ T8136] do_syscall_64+0x10b/0xf80 [ 220.025346][ T8136] ? clear_bhb_loop+0x40/0x90 [ 220.025364][ T8136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.025379][ T8136] RIP: 0033:0x7f5f46f9c819 [ 220.025394][ T8136] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.025410][ T8136] RSP: 002b:00007f5f451f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 220.025425][ T8136] RAX: ffffffffffffffda RBX: 00007f5f47215fa0 RCX: 00007f5f46f9c819 [ 220.025435][ T8136] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 220.025444][ T8136] RBP: 00007f5f47032c91 R08: 0000000000000000 R09: 0000000000000000 [ 220.025453][ T8136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.025462][ T8136] R13: 00007f5f47216038 R14: 00007f5f47215fa0 R15: 00007fff4f571f08 [ 220.025482][ T8136] [ 220.766441][ T8145] FAULT_INJECTION: forcing a failure. [ 220.766441][ T8145] name failslab, interval 1, probability 0, space 0, times 0 [ 220.780565][ T8145] CPU: 1 UID: 0 PID: 8145 Comm: syz.0.490 Not tainted syzkaller #0 PREEMPT(full) [ 220.780607][ T8145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 220.780626][ T8145] Call Trace: [ 220.780637][ T8145] [ 220.780649][ T8145] dump_stack_lvl+0x100/0x190 [ 220.780686][ T8145] should_fail_ex.cold+0x5/0xa [ 220.780723][ T8145] should_failslab+0xc2/0x120 [ 220.780757][ T8145] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 220.780801][ T8145] ? inet_bind2_bucket_create+0x36/0x5f0 [ 220.780832][ T8145] ? do_raw_spin_lock+0x128/0x260 [ 220.780872][ T8145] inet_bind2_bucket_create+0x36/0x5f0 [ 220.780909][ T8145] __inet_hash_connect+0x1527/0x2000 [ 220.780949][ T8145] ? __pfx___inet_check_established+0x10/0x10 [ 220.780988][ T8145] ? __pfx___inet_hash_connect+0x10/0x10 [ 220.781023][ T8145] ? inet_init_ehash_secret+0xd/0x60 [ 220.781047][ T8145] ? inet_hash_connect+0x9f/0x340 [ 220.781079][ T8145] tcp_v4_connect+0xeb3/0x1b40 [ 220.781118][ T8145] ? __pfx_tcp_v4_connect+0x10/0x10 [ 220.781147][ T8145] ? __lock_acquire+0x4a5/0x2630 [ 220.781190][ T8145] ? __lock_acquire+0x4a5/0x2630 [ 220.781237][ T8145] __inet_stream_connect+0x208/0xfa0 [ 220.781298][ T8145] ? __pfx___inet_stream_connect+0x10/0x10 [ 220.781344][ T8145] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 220.781380][ T8145] ? __pfx_inet_stream_connect+0x10/0x10 [ 220.781426][ T8145] ? __local_bh_enable_ip+0x9e/0x120 [ 220.781466][ T8145] ? __pfx_inet_stream_connect+0x10/0x10 [ 220.781509][ T8145] inet_stream_connect+0x57/0xa0 [ 220.781556][ T8145] __sys_connect_file+0x141/0x1a0 [ 220.781591][ T8145] __sys_connect+0x141/0x170 [ 220.781621][ T8145] ? __pfx___sys_connect+0x10/0x10 [ 220.781676][ T8145] __x64_sys_connect+0x72/0xb0 [ 220.781705][ T8145] ? lockdep_hardirqs_on+0x78/0x100 [ 220.781735][ T8145] do_syscall_64+0x10b/0xf80 [ 220.781763][ T8145] ? clear_bhb_loop+0x40/0x90 [ 220.781798][ T8145] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.781829][ T8145] RIP: 0033:0x7f5f46f9c819 [ 220.781853][ T8145] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.781881][ T8145] RSP: 002b:00007f5f451f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 220.781908][ T8145] RAX: ffffffffffffffda RBX: 00007f5f47215fa0 RCX: 00007f5f46f9c819 [ 220.781927][ T8145] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 220.781945][ T8145] RBP: 00007f5f47032c91 R08: 0000000000000000 R09: 0000000000000000 [ 220.781971][ T8145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.781988][ T8145] R13: 00007f5f47216038 R14: 00007f5f47215fa0 R15: 00007fff4f571f08 [ 220.782026][ T8145] [ 221.922090][ T8162] random: crng reseeded on system resumption [ 221.990101][ T8162] hub 1-0:1.0: USB hub found [ 222.007930][ T8162] hub 1-0:1.0: 1 port detected [ 222.256757][ T8167] FAULT_INJECTION: forcing a failure. [ 222.256757][ T8167] name failslab, interval 1, probability 0, space 0, times 0 [ 222.269545][ T8167] CPU: 0 UID: 0 PID: 8167 Comm: syz.1.498 Not tainted syzkaller #0 PREEMPT(full) [ 222.269567][ T8167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 222.269577][ T8167] Call Trace: [ 222.269584][ T8167] [ 222.269591][ T8167] dump_stack_lvl+0x100/0x190 [ 222.269612][ T8167] should_fail_ex.cold+0x5/0xa [ 222.269633][ T8167] should_failslab+0xc2/0x120 [ 222.269651][ T8167] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 222.269673][ T8167] ? inet_bind2_bucket_create+0x36/0x5f0 [ 222.269689][ T8167] ? do_raw_spin_lock+0x128/0x260 [ 222.269710][ T8167] inet_bind2_bucket_create+0x36/0x5f0 [ 222.269762][ T8167] __inet_hash_connect+0x1527/0x2000 [ 222.269788][ T8167] ? __pfx___inet_check_established+0x10/0x10 [ 222.269808][ T8167] ? __pfx___inet_hash_connect+0x10/0x10 [ 222.269830][ T8167] ? inet_init_ehash_secret+0xd/0x60 [ 222.269845][ T8167] ? inet_hash_connect+0x9f/0x340 [ 222.269865][ T8167] tcp_v4_connect+0xeb3/0x1b40 [ 222.269887][ T8167] ? __pfx_tcp_v4_connect+0x10/0x10 [ 222.269902][ T8167] ? __lock_acquire+0x4a5/0x2630 [ 222.269924][ T8167] ? __lock_acquire+0x4a5/0x2630 [ 222.269948][ T8167] __inet_stream_connect+0x208/0xfa0 [ 222.269979][ T8167] ? __pfx___inet_stream_connect+0x10/0x10 [ 222.270006][ T8167] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 222.270024][ T8167] ? __pfx_inet_stream_connect+0x10/0x10 [ 222.270047][ T8167] ? __local_bh_enable_ip+0x9e/0x120 [ 222.270067][ T8167] ? __pfx_inet_stream_connect+0x10/0x10 [ 222.270088][ T8167] inet_stream_connect+0x57/0xa0 [ 222.270113][ T8167] __sys_connect_file+0x141/0x1a0 [ 222.270131][ T8167] __sys_connect+0x141/0x170 [ 222.270146][ T8167] ? __pfx___sys_connect+0x10/0x10 [ 222.270173][ T8167] __x64_sys_connect+0x72/0xb0 [ 222.270188][ T8167] ? lockdep_hardirqs_on+0x78/0x100 [ 222.270203][ T8167] do_syscall_64+0x10b/0xf80 [ 222.270218][ T8167] ? clear_bhb_loop+0x40/0x90 [ 222.270237][ T8167] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.270252][ T8167] RIP: 0033:0x7f8533b9c819 [ 222.270267][ T8167] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 222.270282][ T8167] RSP: 002b:00007f8534a0e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 222.270297][ T8167] RAX: ffffffffffffffda RBX: 00007f8533e15fa0 RCX: 00007f8533b9c819 [ 222.270307][ T8167] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 222.270317][ T8167] RBP: 00007f8533c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 222.270326][ T8167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.270335][ T8167] R13: 00007f8533e16038 R14: 00007f8533e15fa0 R15: 00007ffd912bccd8 [ 222.270354][ T8167] [ 222.998489][ T8175] FAULT_INJECTION: forcing a failure. [ 222.998489][ T8175] name failslab, interval 1, probability 0, space 0, times 0 [ 223.011193][ T8175] CPU: 1 UID: 0 PID: 8175 Comm: syz.2.500 Not tainted syzkaller #0 PREEMPT(full) [ 223.011222][ T8175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 223.011233][ T8175] Call Trace: [ 223.011238][ T8175] [ 223.011245][ T8175] dump_stack_lvl+0x100/0x190 [ 223.011266][ T8175] should_fail_ex.cold+0x5/0xa [ 223.011286][ T8175] should_failslab+0xc2/0x120 [ 223.011303][ T8175] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 223.011325][ T8175] ? inet_bind2_bucket_create+0x36/0x5f0 [ 223.011341][ T8175] ? do_raw_spin_lock+0x128/0x260 [ 223.011361][ T8175] inet_bind2_bucket_create+0x36/0x5f0 [ 223.011381][ T8175] __inet_hash_connect+0x1527/0x2000 [ 223.011405][ T8175] ? __pfx___inet_check_established+0x10/0x10 [ 223.011423][ T8175] ? __pfx___inet_hash_connect+0x10/0x10 [ 223.011444][ T8175] ? inet_init_ehash_secret+0xd/0x60 [ 223.011458][ T8175] ? inet_hash_connect+0x9f/0x340 [ 223.011477][ T8175] tcp_v4_connect+0xeb3/0x1b40 [ 223.011498][ T8175] ? __pfx_tcp_v4_connect+0x10/0x10 [ 223.011513][ T8175] ? __lock_acquire+0x4a5/0x2630 [ 223.011534][ T8175] ? __lock_acquire+0x4a5/0x2630 [ 223.011558][ T8175] __inet_stream_connect+0x208/0xfa0 [ 223.011585][ T8175] ? __pfx___inet_stream_connect+0x10/0x10 [ 223.011608][ T8175] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 223.011626][ T8175] ? __pfx_inet_stream_connect+0x10/0x10 [ 223.011649][ T8175] ? __local_bh_enable_ip+0x9e/0x120 [ 223.011711][ T8175] ? __pfx_inet_stream_connect+0x10/0x10 [ 223.011734][ T8175] inet_stream_connect+0x57/0xa0 [ 223.011758][ T8175] __sys_connect_file+0x141/0x1a0 [ 223.011783][ T8175] __sys_connect+0x141/0x170 [ 223.011798][ T8175] ? __pfx___sys_connect+0x10/0x10 [ 223.011827][ T8175] __x64_sys_connect+0x72/0xb0 [ 223.011842][ T8175] ? lockdep_hardirqs_on+0x78/0x100 [ 223.011857][ T8175] do_syscall_64+0x10b/0xf80 [ 223.011871][ T8175] ? clear_bhb_loop+0x40/0x90 [ 223.011890][ T8175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 223.011906][ T8175] RIP: 0033:0x7f5e1939c819 [ 223.011920][ T8175] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 223.011935][ T8175] RSP: 002b:00007f5e1a1fb028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 223.011950][ T8175] RAX: ffffffffffffffda RBX: 00007f5e19615fa0 RCX: 00007f5e1939c819 [ 223.011960][ T8175] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 223.011971][ T8175] RBP: 00007f5e19432c91 R08: 0000000000000000 R09: 0000000000000000 [ 223.011980][ T8175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.011989][ T8175] R13: 00007f5e19616038 R14: 00007f5e19615fa0 R15: 00007ffca84f3ff8 [ 223.012008][ T8175] [ 224.845558][ T8204] random: crng reseeded on system resumption [ 225.287429][ T8213] random: crng reseeded on system resumption [ 225.360251][ T8213] hub 1-0:1.0: USB hub found [ 225.385192][ T8213] hub 1-0:1.0: 1 port detected [ 226.713439][ T8237] random: crng reseeded on system resumption [ 226.936553][ T8241] hub 1-0:1.0: USB hub found [ 226.972388][ T8241] hub 1-0:1.0: 1 port detected [ 227.751969][ T8247] can0: slcan on ptm0. [ 228.029711][ T8246] can0 (unregistered): slcan off ptm0. [ 228.550172][ T5844] Bluetooth: hci1: unexpected event for opcode 0x7c89 [ 228.811183][ T8277] random: crng reseeded on system resumption [ 230.928312][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 231.047442][ T8314] netlink: 4 bytes leftover after parsing attributes in process `syz.0.525'. [ 231.198546][ T8314] netlink: 354 bytes leftover after parsing attributes in process `syz.0.525'. [ 231.560914][ T8329] random: crng reseeded on system resumption [ 231.612356][ T8330] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 231.625298][ T8329] hub 1-0:1.0: USB hub found [ 231.640517][ T8329] hub 1-0:1.0: 1 port detected [ 233.765353][ T8364] GUP no longer grows the stack in syz.2.540 (8364): 6000-401000 (0) [ 233.773963][ T8364] CPU: 0 UID: 0 PID: 8364 Comm: syz.2.540 Not tainted syzkaller #0 PREEMPT(full) [ 233.774001][ T8364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 233.774018][ T8364] Call Trace: [ 233.774027][ T8364] [ 233.774038][ T8364] dump_stack_lvl+0x100/0x190 [ 233.774073][ T8364] gup_vma_lookup.cold+0x83/0x96 [ 233.774116][ T8364] __get_user_pages+0x241/0x32a0 [ 233.774161][ T8364] ? down_read_killable+0x307/0x4b0 [ 233.774199][ T8364] ? __pfx___get_user_pages+0x10/0x10 [ 233.774244][ T8364] __gup_longterm_locked+0x87d/0x16f0 [ 233.774278][ T8364] ? __lock_acquire+0x4a5/0x2630 [ 233.774329][ T8364] ? __pfx___gup_longterm_locked+0x10/0x10 [ 233.774369][ T8364] ? find_held_lock+0x2b/0x80 [ 233.774413][ T8364] ? gup_fast_fallback+0x7e8/0x2790 [ 233.774448][ T8364] ? rcu_is_watching+0x12/0xc0 [ 233.774486][ T8364] gup_fast_fallback+0x16dc/0x2790 [ 233.774523][ T8364] ? do_raw_spin_lock+0x128/0x260 [ 233.774577][ T8364] ? __pfx_gup_fast_fallback+0x10/0x10 [ 233.774610][ T8364] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 233.774654][ T8364] ? lockdep_hardirqs_on+0x78/0x100 [ 233.774766][ T8364] ? finish_task_switch.isra.0+0x2cb/0x1010 [ 233.774814][ T8364] get_user_pages_fast+0xa7/0xf0 [ 233.774851][ T8364] ? __pfx_get_user_pages_fast+0x10/0x10 [ 233.774897][ T8364] get_futex_key+0x2c8/0x1510 [ 233.774979][ T8364] ? __pfx_get_futex_key+0x10/0x10 [ 233.775030][ T8364] ? find_held_lock+0x2b/0x80 [ 233.775071][ T8364] futex_wait_requeue_pi+0x1f5/0x870 [ 233.775111][ T8364] ? __pfx_futex_wait_requeue_pi+0x10/0x10 [ 233.775148][ T8364] ? __futex_wait+0x256/0x300 [ 233.775187][ T8364] ? __pfx___futex_wait+0x10/0x10 [ 233.775223][ T8364] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 233.775302][ T8364] ? __pfx_futex_wake_mark+0x10/0x10 [ 233.775351][ T8364] ? __fget_files+0x21f/0x3d0 [ 233.775390][ T8364] do_futex+0x24f/0x350 [ 233.775422][ T8364] ? __pfx_do_futex+0x10/0x10 [ 233.775463][ T8364] __x64_sys_futex+0x34f/0x4d0 [ 233.775501][ T8364] ? __pfx___x64_sys_futex+0x10/0x10 [ 233.775531][ T8364] ? ksys_write+0x1ac/0x250 [ 233.775566][ T8364] ? rcu_is_watching+0x12/0xc0 [ 233.775605][ T8364] do_syscall_64+0x10b/0xf80 [ 233.775630][ T8364] ? clear_bhb_loop+0x40/0x90 [ 233.775669][ T8364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 233.775698][ T8364] RIP: 0033:0x7f5e1939c819 [ 233.775721][ T8364] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 233.775746][ T8364] RSP: 002b:00007f5e1a1fb028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 233.775773][ T8364] RAX: ffffffffffffffda RBX: 00007f5e19615fa0 RCX: 00007f5e1939c819 [ 233.775791][ T8364] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000080 [ 233.775807][ T8364] RBP: 00007f5e19432c91 R08: 0000000000000000 R09: 00000000fffffffa [ 233.775824][ T8364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 233.775838][ T8364] R13: 00007f5e19616038 R14: 00007f5e19615fa0 R15: 00007ffca84f3ff8 [ 233.775875][ T8364] [ 234.098442][ T8364] FAULT_INJECTION: forcing a failure. [ 234.098442][ T8364] name fail_futex, interval 1, probability 0, space 0, times 0 [ 234.168109][ T8364] CPU: 1 UID: 0 PID: 8364 Comm: syz.2.540 Not tainted syzkaller #0 PREEMPT(full) [ 234.168136][ T8364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 234.168146][ T8364] Call Trace: [ 234.168153][ T8364] [ 234.168160][ T8364] dump_stack_lvl+0x100/0x190 [ 234.168194][ T8364] should_fail_ex.cold+0x5/0xa [ 234.168229][ T8364] get_futex_key+0x1d2/0x1510 [ 234.168258][ T8364] ? __pfx_get_futex_key+0x10/0x10 [ 234.168287][ T8364] futex_wake+0xea/0x530 [ 234.168307][ T8364] ? __pfx_futex_wake+0x10/0x10 [ 234.168327][ T8364] ? __fget_files+0x21f/0x3d0 [ 234.168347][ T8364] do_futex+0x32b/0x350 [ 234.168362][ T8364] ? __pfx_do_futex+0x10/0x10 [ 234.168382][ T8364] __x64_sys_futex+0x34f/0x4d0 [ 234.168400][ T8364] ? __pfx___x64_sys_futex+0x10/0x10 [ 234.168414][ T8364] ? ksys_write+0x1ac/0x250 [ 234.168433][ T8364] ? rcu_is_watching+0x12/0xc0 [ 234.168452][ T8364] do_syscall_64+0x10b/0xf80 [ 234.168467][ T8364] ? clear_bhb_loop+0x40/0x90 [ 234.168485][ T8364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.168501][ T8364] RIP: 0033:0x7f5e1939c819 [ 234.168515][ T8364] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 234.168529][ T8364] RSP: 002b:00007f5e1a1fb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 234.168544][ T8364] RAX: ffffffffffffffda RBX: 00007f5e19615fa8 RCX: 00007f5e1939c819 [ 234.168554][ T8364] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5e19615fac [ 234.168563][ T8364] RBP: 00007f5e19615fa0 R08: 0000000000000001 R09: 0000000000000000 [ 234.168579][ T8364] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 234.168589][ T8364] R13: 00007f5e19616038 R14: 00007ffca84f3f10 R15: 00007ffca84f3ff8 [ 234.168609][ T8364] [ 234.404129][ T8371] random: crng reseeded on system resumption [ 234.428688][ T8371] hub 1-0:1.0: USB hub found [ 234.434261][ T8371] hub 1-0:1.0: 1 port detected [ 234.516816][ T8373] random: crng reseeded on system resumption [ 234.548915][ T8373] hub 1-0:1.0: USB hub found [ 234.589138][ T8373] hub 1-0:1.0: 1 port detected [ 236.308631][ T8408] futex_wake_op: syz.0.553 tries to shift op by -2048; fix this program [ 236.326902][ T8400] FAULT_INJECTION: forcing a failure. [ 236.326902][ T8400] name failslab, interval 1, probability 0, space 0, times 0 [ 236.341121][ T8400] CPU: 0 UID: 0 PID: 8400 Comm: syz.3.550 Not tainted syzkaller #0 PREEMPT(full) [ 236.341162][ T8400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 236.341178][ T8400] Call Trace: [ 236.341188][ T8400] [ 236.341198][ T8400] dump_stack_lvl+0x100/0x190 [ 236.341232][ T8400] should_fail_ex.cold+0x5/0xa [ 236.341267][ T8400] should_failslab+0xc2/0x120 [ 236.341299][ T8400] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 236.341340][ T8400] ? acpi_ps_alloc_op+0x29d/0x360 [ 236.341399][ T8400] acpi_ps_alloc_op+0x29d/0x360 [ 236.341442][ T8400] ? acpi_ut_status_exit+0x111/0x1c0 [ 236.341487][ T8400] acpi_ps_create_op+0x4b3/0xd10 [ 236.341530][ T8400] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 236.341570][ T8400] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 236.341608][ T8400] acpi_ps_parse_loop+0xa65/0x24a0 [ 236.341656][ T8400] ? rcu_is_watching+0x12/0xc0 [ 236.341687][ T8400] ? acpi_ut_trace+0x1d7/0x2a0 [ 236.341729][ T8400] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 236.341766][ T8400] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 236.341805][ T8400] ? acpi_ut_create_thread_state+0x6d/0x170 [ 236.341854][ T8400] acpi_ps_parse_aml+0x81e/0x1120 [ 236.341903][ T8400] acpi_ps_execute_method+0x5c4/0xe90 [ 236.341939][ T8400] acpi_ns_evaluate+0x640/0x1670 [ 236.341978][ T8400] acpi_evaluate_object+0x420/0xe00 [ 236.342015][ T8400] ? kasan_save_stack+0x30/0x50 [ 236.342038][ T8400] ? kasan_save_track+0x14/0x30 [ 236.342062][ T8400] ? __kasan_kmalloc+0xaa/0xb0 [ 236.342101][ T8400] ? __kvmalloc_node_noprof+0x360/0xa00 [ 236.342147][ T8400] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 236.342181][ T8400] ? lock_acquire+0x1b1/0x370 [ 236.342229][ T8400] acpi_evaluate_integer+0xdf/0x220 [ 236.342263][ T8400] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 236.342310][ T8400] ? __pfx_status_show+0x10/0x10 [ 236.342346][ T8400] status_show+0xa0/0x120 [ 236.342377][ T8400] ? __pfx_status_show+0x10/0x10 [ 236.342431][ T8400] dev_attr_show+0x52/0xa0 [ 236.342457][ T8400] ? __pfx_dev_attr_show+0x10/0x10 [ 236.342481][ T8400] sysfs_kf_seq_show+0x217/0x3a0 [ 236.342526][ T8400] seq_read_iter+0x32f/0x1270 [ 236.342552][ T8400] ? lock_acquire+0x1b1/0x370 [ 236.342605][ T8400] kernfs_fop_read_iter+0x46c/0x610 [ 236.342639][ T8400] ? rw_verify_area+0xce/0x6d0 [ 236.342674][ T8400] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 236.342706][ T8400] vfs_read+0x825/0xb30 [ 236.342732][ T8400] ? __pfx_vfs_read+0x10/0x10 [ 236.342772][ T8400] ksys_read+0x12a/0x250 [ 236.342796][ T8400] ? __pfx_ksys_read+0x10/0x10 [ 236.342821][ T8400] ? rcu_is_watching+0x12/0xc0 [ 236.342849][ T8400] do_syscall_64+0x10b/0xf80 [ 236.342871][ T8400] ? clear_bhb_loop+0x40/0x90 [ 236.342901][ T8400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.342925][ T8400] RIP: 0033:0x7f0b82b9c819 [ 236.342945][ T8400] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 236.342969][ T8400] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 236.342994][ T8400] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 236.343009][ T8400] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000005 [ 236.343023][ T8400] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 236.343038][ T8400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 236.343052][ T8400] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 236.343086][ T8400] [ 236.343753][ T8400] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 237.243570][ T8421] random: crng reseeded on system resumption [ 239.776068][ T8453] netlink: 28 bytes leftover after parsing attributes in process `syz.2.565'. [ 240.209870][ T8460] random: crng reseeded on system resumption [ 240.242732][ T8456] netlink: 12 bytes leftover after parsing attributes in process `syz.3.566'. [ 240.523919][ T8469] FAULT_INJECTION: forcing a failure. [ 240.523919][ T8469] name fail_futex, interval 1, probability 0, space 0, times 0 [ 240.552440][ T8469] CPU: 0 UID: 0 PID: 8469 Comm: syz.2.571 Not tainted syzkaller #0 PREEMPT(full) [ 240.552479][ T8469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 240.552496][ T8469] Call Trace: [ 240.552505][ T8469] [ 240.552516][ T8469] dump_stack_lvl+0x100/0x190 [ 240.552548][ T8469] should_fail_ex.cold+0x5/0xa [ 240.552583][ T8469] get_futex_key+0x1d2/0x1510 [ 240.552636][ T8469] ? __pfx_get_futex_key+0x10/0x10 [ 240.552681][ T8469] ? __lock_acquire+0x4a5/0x2630 [ 240.552721][ T8469] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 240.552780][ T8469] futex_wake+0xea/0x530 [ 240.552813][ T8469] ? release_sock+0x21/0x280 [ 240.552852][ T8469] ? __pfx_futex_wake+0x10/0x10 [ 240.552890][ T8469] ? find_held_lock+0x2b/0x80 [ 240.552926][ T8469] ? rcu_is_watching+0x12/0xc0 [ 240.552959][ T8469] ? inet_stream_connect+0x79/0xa0 [ 240.553009][ T8469] ? __local_bh_enable_ip+0x9e/0x120 [ 240.553065][ T8469] ? lockdep_hardirqs_on+0x78/0x100 [ 240.553103][ T8469] do_futex+0x32b/0x350 [ 240.553137][ T8469] ? __pfx_do_futex+0x10/0x10 [ 240.553170][ T8469] ? __sys_connect+0xe4/0x170 [ 240.553204][ T8469] __x64_sys_futex+0x34f/0x4d0 [ 240.553236][ T8469] ? __pfx___x64_sys_futex+0x10/0x10 [ 240.553281][ T8469] ? rcu_is_watching+0x12/0xc0 [ 240.553317][ T8469] do_syscall_64+0x10b/0xf80 [ 240.553340][ T8469] ? clear_bhb_loop+0x40/0x90 [ 240.553372][ T8469] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.553400][ T8469] RIP: 0033:0x7f5e1939c819 [ 240.553422][ T8469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 240.553446][ T8469] RSP: 002b:00007f5e1a1fb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 240.553473][ T8469] RAX: ffffffffffffffda RBX: 00007f5e19615fa8 RCX: 00007f5e1939c819 [ 240.553491][ T8469] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5e19615fac [ 240.553508][ T8469] RBP: 00007f5e19615fa0 R08: 0000000000000001 R09: 0000000000000000 [ 240.553522][ T8469] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 240.553541][ T8469] R13: 00007f5e19616038 R14: 00007ffca84f3f10 R15: 00007ffca84f3ff8 [ 240.553576][ T8469] [ 240.557617][ T8461] HfR: entered promiscuous mode [ 241.106847][ T8476] netlink: 4 bytes leftover after parsing attributes in process `syz.2.572'. [ 241.231254][ T8456] i: entered promiscuous mode [ 243.400117][ T8513] random: crng reseeded on system resumption [ 243.445912][ T8513] hub 1-0:1.0: USB hub found [ 243.461156][ T8513] hub 1-0:1.0: 1 port detected [ 244.258477][ T8523] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12) [ 245.100824][ T8538] random: crng reseeded on system resumption [ 246.929518][ T5844] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 247.431717][ T8554] netlink: 'syz.2.590': attribute type 1 has an invalid length. [ 247.459287][ T8554] netlink: 9 bytes leftover after parsing attributes in process `syz.2.590'. [ 248.688314][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 248.688725][ T8547] Bluetooth: hci3: Opcode 0x0c1a failed: -110 [ 249.308482][ T8547] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 249.328027][ T8547] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 249.354877][ T8547] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 249.734474][ T8573] FAULT_INJECTION: forcing a failure. [ 249.734474][ T8573] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 249.787748][ T8573] CPU: 1 UID: 0 PID: 8573 Comm: syz.3.594 Not tainted syzkaller #0 PREEMPT(full) [ 249.787790][ T8573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 249.787812][ T8573] Call Trace: [ 249.787822][ T8573] [ 249.787832][ T8573] dump_stack_lvl+0x100/0x190 [ 249.787866][ T8573] should_fail_ex.cold+0x5/0xa [ 249.787900][ T8573] _copy_from_iter+0x1f4/0x1690 [ 249.787940][ T8573] ? __pfx_tcp_leave_memory_pressure+0x10/0x10 [ 249.787987][ T8573] ? sk_leave_memory_pressure+0x81/0x140 [ 249.788035][ T8573] ? __pfx__copy_from_iter+0x10/0x10 [ 249.788075][ T8573] ? alloc_pages_noprof+0xf9/0x160 [ 249.788121][ T8573] ? __sk_mem_schedule+0xd0/0x100 [ 249.788165][ T8573] tcp_sendmsg_locked+0xcab/0x4500 [ 249.788213][ T8573] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 249.788248][ T8573] ? do_raw_spin_lock+0x128/0x260 [ 249.788280][ T8573] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 249.788315][ T8573] ? __local_bh_enable_ip+0x9e/0x120 [ 249.788361][ T8573] tcp_sendmsg+0x2e/0x50 [ 249.788388][ T8573] ? __pfx_tcp_sendmsg+0x10/0x10 [ 249.788414][ T8573] inet_sendmsg+0xb9/0x140 [ 249.788444][ T8573] sock_write_iter+0x4ea/0x5a0 [ 249.788486][ T8573] ? __pfx_inet_sendmsg+0x10/0x10 [ 249.788513][ T8573] ? __pfx_sock_write_iter+0x10/0x10 [ 249.788554][ T8573] ? futex_hash+0x141/0x370 [ 249.788610][ T8573] ? bpf_lsm_file_permission+0x9/0x10 [ 249.788654][ T8573] ? security_file_permission+0x76/0x210 [ 249.788699][ T8573] ? rw_verify_area+0xce/0x6d0 [ 249.788745][ T8573] vfs_write+0x6ac/0x1070 [ 249.788773][ T8573] ? __pfx_sock_write_iter+0x10/0x10 [ 249.788809][ T8573] ? __pfx_vfs_write+0x10/0x10 [ 249.788837][ T8573] ? find_held_lock+0x2b/0x80 [ 249.788885][ T8573] ksys_write+0x1f8/0x250 [ 249.788911][ T8573] ? __pfx_ksys_write+0x10/0x10 [ 249.788939][ T8573] ? rcu_is_watching+0x12/0xc0 [ 249.788971][ T8573] do_syscall_64+0x10b/0xf80 [ 249.788996][ T8573] ? clear_bhb_loop+0x40/0x90 [ 249.789027][ T8573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.789053][ T8573] RIP: 0033:0x7f0b82b9c819 [ 249.789075][ T8573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 249.789099][ T8573] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 249.789135][ T8573] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 249.789151][ T8573] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 249.789166][ T8573] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 249.789182][ T8573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 249.789196][ T8573] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 249.789225][ T8573] [ 250.577287][ T8587] random: crng reseeded on system resumption [ 250.660713][ T8587] hub 1-0:1.0: USB hub found [ 250.723586][ T8587] hub 1-0:1.0: 1 port detected [ 250.768300][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 251.328337][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout [ 251.409038][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 251.861177][ T8609] FAULT_INJECTION: forcing a failure. [ 251.861177][ T8609] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 251.861285][ T8609] CPU: 1 UID: 0 PID: 8609 Comm: syz.1.604 Not tainted syzkaller #0 PREEMPT(full) [ 251.861321][ T8609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 251.861338][ T8609] Call Trace: [ 251.861348][ T8609] [ 251.861359][ T8609] dump_stack_lvl+0x100/0x190 [ 251.861395][ T8609] should_fail_ex.cold+0x5/0xa [ 251.861427][ T8609] ? prepare_alloc_pages+0x16d/0x5f0 [ 251.861468][ T8609] should_fail_alloc_page+0xeb/0x140 [ 251.861503][ T8609] prepare_alloc_pages+0x1f0/0x5f0 [ 251.861548][ T8609] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 251.861603][ T8609] ? __lock_acquire+0x4a5/0x2630 [ 251.861652][ T8609] ? __lock_acquire+0x4a5/0x2630 [ 251.861704][ T8609] ? css_rstat_updated+0x1ce/0x5a0 [ 251.861750][ T8609] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 251.861801][ T8609] ? do_raw_spin_lock+0x128/0x260 [ 251.861834][ T8609] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 251.861866][ T8609] ? find_held_lock+0x2b/0x80 [ 251.861919][ T8609] ? __lock_acquire+0x4a5/0x2630 [ 251.861966][ T8609] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 251.862008][ T8609] ? policy_nodemask+0xed/0x4f0 [ 251.862051][ T8609] alloc_pages_mpol+0x1fb/0x540 [ 251.862086][ T8609] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 251.862129][ T8609] folio_alloc_mpol_noprof+0x36/0x260 [ 251.862170][ T8609] shmem_alloc_folio+0x135/0x160 [ 251.862210][ T8609] shmem_alloc_and_add_folio+0x371/0xd40 [ 251.862265][ T8609] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 251.862313][ T8609] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 251.862368][ T8609] shmem_get_folio_gfp+0x6ab/0x1900 [ 251.862423][ T8609] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 251.862468][ T8609] ? filemap_map_pages+0x9c1/0x2140 [ 251.862519][ T8609] shmem_fault+0x1f9/0xa20 [ 251.862567][ T8609] ? __pfx_shmem_fault+0x10/0x10 [ 251.862613][ T8609] ? __pfx_filemap_map_pages+0x10/0x10 [ 251.862655][ T8609] ? find_held_lock+0x2b/0x80 [ 251.862691][ T8609] __do_fault+0x10b/0x440 [ 251.862718][ T8609] do_fault+0xa99/0x1750 [ 251.862753][ T8609] __handle_mm_fault+0x187d/0x2a00 [ 251.862796][ T8609] ? mt_find+0x45e/0x8e0 [ 251.862827][ T8609] ? __pfx___handle_mm_fault+0x10/0x10 [ 251.862864][ T8609] ? __pfx_mt_find+0x10/0x10 [ 251.862921][ T8609] ? find_vma+0xbf/0x140 [ 251.862949][ T8609] ? __pfx_find_vma+0x10/0x10 [ 251.862983][ T8609] handle_mm_fault+0x36d/0xa20 [ 251.863039][ T8609] do_user_addr_fault+0x74c/0x12f0 [ 251.863082][ T8609] ? trace_page_fault_kernel+0x7a/0x200 [ 251.863114][ T8609] exc_page_fault+0x6f/0xd0 [ 251.863140][ T8609] asm_exc_page_fault+0x26/0x30 [ 251.863207][ T8609] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 251.863257][ T8609] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 251.863283][ T8609] RSP: 0018:ffffc90003447888 EFLAGS: 00050206 [ 251.863304][ T8609] RAX: 0000000000000001 RBX: ffff88807ae40000 RCX: 0000000000005000 [ 251.863320][ T8609] RDX: 0000000000000001 RSI: 0000000000003000 RDI: ffff88807ae43000 [ 251.863337][ T8609] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100f5c8fff [ 251.863355][ T8609] R10: ffff88807ae47fff R11: 0000000000000000 R12: ffffc90003447c40 [ 251.863371][ T8609] R13: 0000000000000000 R14: 0000000000008000 R15: 0000000000000000 [ 251.863408][ T8609] _copy_from_iter+0x355/0x1690 [ 251.863454][ T8609] ? __asan_memset+0x23/0x50 [ 251.863499][ T8609] ? __pfx__copy_from_iter+0x10/0x10 [ 251.863539][ T8609] ? alloc_pages_noprof+0xf9/0x160 [ 251.863580][ T8609] ? __sk_mem_schedule+0xd0/0x100 [ 251.863626][ T8609] tcp_sendmsg_locked+0xcab/0x4500 [ 251.863679][ T8609] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 251.863723][ T8609] ? do_raw_spin_lock+0x128/0x260 [ 251.863770][ T8609] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 251.863811][ T8609] ? __local_bh_enable_ip+0x9e/0x120 [ 251.863857][ T8609] tcp_sendmsg+0x2e/0x50 [ 251.863883][ T8609] ? __pfx_tcp_sendmsg+0x10/0x10 [ 251.863956][ T8609] inet_sendmsg+0xb9/0x140 [ 251.863984][ T8609] sock_write_iter+0x4ea/0x5a0 [ 251.864027][ T8609] ? __pfx_inet_sendmsg+0x10/0x10 [ 251.864054][ T8609] ? __pfx_sock_write_iter+0x10/0x10 [ 251.864111][ T8609] ? bpf_lsm_file_permission+0x9/0x10 [ 251.864152][ T8609] ? security_file_permission+0x76/0x210 [ 251.864198][ T8609] ? rw_verify_area+0xce/0x6d0 [ 251.864247][ T8609] vfs_write+0x6ac/0x1070 [ 251.864280][ T8609] ? __pfx_sock_write_iter+0x10/0x10 [ 251.864328][ T8609] ? __pfx_vfs_write+0x10/0x10 [ 251.864356][ T8609] ? find_held_lock+0x2b/0x80 [ 251.864416][ T8609] ksys_write+0x1f8/0x250 [ 251.864447][ T8609] ? __pfx_ksys_write+0x10/0x10 [ 251.864481][ T8609] ? rcu_is_watching+0x12/0xc0 [ 251.864530][ T8609] do_syscall_64+0x10b/0xf80 [ 251.864577][ T8609] ? clear_bhb_loop+0x40/0x90 [ 251.864614][ T8609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.864644][ T8609] RIP: 0033:0x7f8533b9c819 [ 251.864669][ T8609] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 251.864697][ T8609] RSP: 002b:00007f8534a0e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 251.864725][ T8609] RAX: ffffffffffffffda RBX: 00007f8533e15fa0 RCX: 00007f8533b9c819 [ 251.864745][ T8609] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 251.864763][ T8609] RBP: 00007f8533c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 251.864781][ T8609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 251.864799][ T8609] R13: 00007f8533e16038 R14: 00007f8533e15fa0 R15: 00007ffd912bccd8 [ 251.864835][ T8609] [ 252.115292][ T8615] FAULT_INJECTION: forcing a failure. [ 252.115292][ T8615] name fail_futex, interval 1, probability 0, space 0, times 0 [ 252.115322][ T8615] CPU: 0 UID: 0 PID: 8615 Comm: syz.3.605 Not tainted syzkaller #0 PREEMPT(full) [ 252.115340][ T8615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 252.115349][ T8615] Call Trace: [ 252.115354][ T8615] [ 252.115359][ T8615] dump_stack_lvl+0x100/0x190 [ 252.115378][ T8615] should_fail_ex.cold+0x5/0xa [ 252.115397][ T8615] get_futex_key+0xf78/0x1510 [ 252.115430][ T8615] ? __pfx_get_futex_key+0x10/0x10 [ 252.115472][ T8615] ? lock_acquire+0x1b1/0x370 [ 252.115509][ T8615] futex_wake+0xea/0x530 [ 252.115529][ T8615] ? __pfx_futex_wake+0x10/0x10 [ 252.115547][ T8615] ? exit_mm_release+0x19/0x30 [ 252.115573][ T8615] do_futex+0x32b/0x350 [ 252.115589][ T8615] ? __pfx_do_futex+0x10/0x10 [ 252.115602][ T8615] ? __might_fault+0xc5/0x140 [ 252.115629][ T8615] mm_release+0x24a/0x2f0 [ 252.115646][ T8615] do_exit+0x707/0x2a60 [ 252.115671][ T8615] ? __pfx_do_exit+0x10/0x10 [ 252.115691][ T8615] ? do_raw_spin_lock+0x128/0x260 [ 252.115707][ T8615] ? find_held_lock+0x2b/0x80 [ 252.115724][ T8615] ? get_signal+0x7e0/0x21e0 [ 252.115743][ T8615] do_group_exit+0xd5/0x2a0 [ 252.115766][ T8615] get_signal+0x1ec7/0x21e0 [ 252.115788][ T8615] ? inet_stream_connect+0x79/0xa0 [ 252.115812][ T8615] ? __pfx_get_signal+0x10/0x10 [ 252.115831][ T8615] ? do_futex+0x192/0x350 [ 252.115847][ T8615] arch_do_signal_or_restart+0x91/0x770 [ 252.115868][ T8615] ? __sys_connect+0xe4/0x170 [ 252.115884][ T8615] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 252.115910][ T8615] ? __pfx___x64_sys_futex+0x10/0x10 [ 252.115929][ T8615] ? rcu_is_watching+0x12/0xc0 [ 252.115947][ T8615] exit_to_user_mode_loop+0x86/0x4a0 [ 252.115970][ T8615] ? do_syscall_64+0x519/0xf80 [ 252.115987][ T8615] do_syscall_64+0x6f2/0xf80 [ 252.116001][ T8615] ? clear_bhb_loop+0x40/0x90 [ 252.116019][ T8615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.116033][ T8615] RIP: 0033:0x7f0b82b9c819 [ 252.116046][ T8615] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 252.116060][ T8615] RSP: 002b:00007f0b83ad10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 252.116075][ T8615] RAX: fffffffffffffe00 RBX: 00007f0b82e15fa8 RCX: 00007f0b82b9c819 [ 252.116084][ T8615] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0b82e15fa8 [ 252.116096][ T8615] RBP: 00007f0b82e15fa0 R08: 0000000000000000 R09: 0000000000000000 [ 252.116111][ T8615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 252.116125][ T8615] R13: 00007f0b82e16038 R14: 00007ffc7a8031f0 R15: 00007ffc7a8032d8 [ 252.116157][ T8615] [ 252.691268][ T8619] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17 [ 253.642877][ T8633] bonding: unable to delete non-existent ) [ 253.646365][ T8633] bonding: no command found in bonding_masters - use +ifname or -ifname [ 253.976247][ T8644] netlink: 4 bytes leftover after parsing attributes in process `syz.2.614'. [ 253.989143][ T8643] random: crng reseeded on system resumption [ 254.046130][ T8643] hub 1-0:1.0: USB hub found [ 254.469679][ T8643] hub 1-0:1.0: 1 port detected [ 254.599231][ T8652] random: crng reseeded on system resumption [ 254.865038][ T8659] FAULT_INJECTION: forcing a failure. [ 254.865038][ T8659] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 254.911541][ T8659] CPU: 0 UID: 0 PID: 8659 Comm: syz.2.617 Not tainted syzkaller #0 PREEMPT(full) [ 254.911581][ T8659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 254.911599][ T8659] Call Trace: [ 254.911609][ T8659] [ 254.911619][ T8659] dump_stack_lvl+0x100/0x190 [ 254.911654][ T8659] should_fail_ex.cold+0x5/0xa [ 254.911685][ T8659] ? prepare_alloc_pages+0x16d/0x5f0 [ 254.911724][ T8659] should_fail_alloc_page+0xeb/0x140 [ 254.911759][ T8659] prepare_alloc_pages+0x1f0/0x5f0 [ 254.911800][ T8659] __alloc_frozen_pages_noprof+0x19a/0x2bc0 [ 254.911847][ T8659] ? rcu_is_watching+0x12/0xc0 [ 254.911893][ T8659] ? __lock_acquire+0x4a5/0x2630 [ 254.911940][ T8659] ? __lock_acquire+0x4a5/0x2630 [ 254.911981][ T8659] ? css_rstat_updated+0x1ce/0x5a0 [ 254.912024][ T8659] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 254.912078][ T8659] ? do_raw_spin_lock+0x128/0x260 [ 254.912108][ T8659] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 254.912138][ T8659] ? find_held_lock+0x2b/0x80 [ 254.912183][ T8659] ? __lock_acquire+0x4a5/0x2630 [ 254.912227][ T8659] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 254.912277][ T8659] ? policy_nodemask+0xed/0x4f0 [ 254.912308][ T8659] alloc_pages_mpol+0x1fb/0x540 [ 254.912341][ T8659] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 254.912382][ T8659] folio_alloc_mpol_noprof+0x36/0x260 [ 254.912420][ T8659] shmem_alloc_folio+0x135/0x160 [ 254.912459][ T8659] shmem_alloc_and_add_folio+0x371/0xd40 [ 254.912512][ T8659] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 254.912560][ T8659] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 254.912615][ T8659] shmem_get_folio_gfp+0x6ab/0x1900 [ 254.912666][ T8659] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 254.912710][ T8659] ? filemap_map_pages+0x9c1/0x2140 [ 254.912758][ T8659] shmem_fault+0x1f9/0xa20 [ 254.912805][ T8659] ? __pfx_shmem_fault+0x10/0x10 [ 254.912843][ T8659] ? __pfx_filemap_map_pages+0x10/0x10 [ 254.912874][ T8659] ? find_held_lock+0x2b/0x80 [ 254.912896][ T8659] __do_fault+0x10b/0x440 [ 254.912913][ T8659] do_fault+0xa99/0x1750 [ 254.912934][ T8659] __handle_mm_fault+0x187d/0x2a00 [ 254.912958][ T8659] ? mt_find+0x45e/0x8e0 [ 254.912976][ T8659] ? __pfx___handle_mm_fault+0x10/0x10 [ 254.912995][ T8659] ? __pfx_mt_find+0x10/0x10 [ 254.913021][ T8659] ? find_vma+0xbf/0x140 [ 254.913036][ T8659] ? __pfx_find_vma+0x10/0x10 [ 254.913053][ T8659] handle_mm_fault+0x36d/0xa20 [ 254.913078][ T8659] do_user_addr_fault+0x74c/0x12f0 [ 254.913098][ T8659] ? trace_page_fault_kernel+0x7a/0x200 [ 254.913116][ T8659] exc_page_fault+0x6f/0xd0 [ 254.913132][ T8659] asm_exc_page_fault+0x26/0x30 [ 254.913146][ T8659] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 254.913167][ T8659] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 254.913182][ T8659] RSP: 0018:ffffc90003757888 EFLAGS: 00050206 [ 254.913195][ T8659] RAX: 0000000000000001 RBX: ffff88807e358000 RCX: 0000000000003000 [ 254.913205][ T8659] RDX: 0000000000000001 RSI: 0000000000005000 RDI: ffff88807e35d000 [ 254.913214][ T8659] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100fc6bfff [ 254.913222][ T8659] R10: ffff88807e35ffff R11: 0000000000000000 R12: ffffc90003757c40 [ 254.913232][ T8659] R13: 0000000000000000 R14: 0000000000008000 R15: 0000000000000000 [ 254.913250][ T8659] _copy_from_iter+0x355/0x1690 [ 254.913271][ T8659] ? __asan_memset+0x23/0x50 [ 254.913294][ T8659] ? __pfx__copy_from_iter+0x10/0x10 [ 254.913315][ T8659] ? alloc_pages_noprof+0xf9/0x160 [ 254.913335][ T8659] ? __sk_mem_schedule+0xd0/0x100 [ 254.913357][ T8659] tcp_sendmsg_locked+0xcab/0x4500 [ 254.913385][ T8659] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 254.913402][ T8659] ? do_raw_spin_lock+0x128/0x260 [ 254.913418][ T8659] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 254.913438][ T8659] ? __local_bh_enable_ip+0x9e/0x120 [ 254.913458][ T8659] tcp_sendmsg+0x2e/0x50 [ 254.913471][ T8659] ? __pfx_tcp_sendmsg+0x10/0x10 [ 254.913485][ T8659] inet_sendmsg+0xb9/0x140 [ 254.913500][ T8659] sock_write_iter+0x4ea/0x5a0 [ 254.913521][ T8659] ? __pfx_inet_sendmsg+0x10/0x10 [ 254.913534][ T8659] ? __pfx_sock_write_iter+0x10/0x10 [ 254.913554][ T8659] ? futex_hash+0x141/0x370 [ 254.913583][ T8659] ? bpf_lsm_file_permission+0x9/0x10 [ 254.913605][ T8659] ? security_file_permission+0x76/0x210 [ 254.913627][ T8659] ? rw_verify_area+0xce/0x6d0 [ 254.913651][ T8659] vfs_write+0x6ac/0x1070 [ 254.913668][ T8659] ? __pfx_sock_write_iter+0x10/0x10 [ 254.913690][ T8659] ? __pfx_vfs_write+0x10/0x10 [ 254.913704][ T8659] ? find_held_lock+0x2b/0x80 [ 254.913734][ T8659] ksys_write+0x1f8/0x250 [ 254.913750][ T8659] ? __pfx_ksys_write+0x10/0x10 [ 254.913767][ T8659] ? rcu_is_watching+0x12/0xc0 [ 254.913787][ T8659] do_syscall_64+0x10b/0xf80 [ 254.913801][ T8659] ? clear_bhb_loop+0x40/0x90 [ 254.913819][ T8659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 254.913834][ T8659] RIP: 0033:0x7f5e1939c819 [ 254.913847][ T8659] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 254.913861][ T8659] RSP: 002b:00007f5e1a1fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 254.913881][ T8659] RAX: ffffffffffffffda RBX: 00007f5e19615fa0 RCX: 00007f5e1939c819 [ 254.913891][ T8659] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 254.913900][ T8659] RBP: 00007f5e19432c91 R08: 0000000000000000 R09: 0000000000000000 [ 254.913910][ T8659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 254.913918][ T8659] R13: 00007f5e19616038 R14: 00007f5e19615fa0 R15: 00007ffca84f3ff8 [ 254.913939][ T8659] [ 255.824832][ T1314] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.831405][ T1314] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.429182][ T8677] binder: 8670:8677 ioctl c0306201 200000001100 returned -14 [ 256.586057][ T8694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.625'. [ 256.633984][ T8694] netlink: 'syz.2.625': attribute type 1 has an invalid length. [ 256.667829][ T8694] netlink: 51465 bytes leftover after parsing attributes in process `syz.2.625'. [ 257.067996][ T8706] random: crng reseeded on system resumption [ 257.086492][ T8706] hub 1-0:1.0: USB hub found [ 257.098252][ T8706] hub 1-0:1.0: 1 port detected [ 257.235301][ T8710] netlink: 186 bytes leftover after parsing attributes in process `syz.0.627'. [ 257.642428][ T8717] FAULT_INJECTION: forcing a failure. [ 257.642428][ T8717] name failslab, interval 1, probability 0, space 0, times 0 [ 257.655392][ T8717] CPU: 0 UID: 0 PID: 8717 Comm: syz.1.629 Not tainted syzkaller #0 PREEMPT(full) [ 257.655429][ T8717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 257.655446][ T8717] Call Trace: [ 257.655455][ T8717] [ 257.655465][ T8717] dump_stack_lvl+0x100/0x190 [ 257.655501][ T8717] should_fail_ex.cold+0x5/0xa [ 257.655538][ T8717] should_failslab+0xc2/0x120 [ 257.655570][ T8717] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 257.655616][ T8717] ? __alloc_skb+0x140/0x710 [ 257.655656][ T8717] __alloc_skb+0x140/0x710 [ 257.655689][ T8717] ? __pfx___alloc_skb+0x10/0x10 [ 257.655732][ T8717] tcp_stream_alloc_skb+0x34/0x660 [ 257.655764][ T8717] tcp_connect+0xefd/0x5510 [ 257.655807][ T8717] ? find_held_lock+0x2b/0x80 [ 257.655848][ T8717] ? __pfx_tcp_connect+0x10/0x10 [ 257.655880][ T8717] ? __pfx_tcp_fastopen_defer_connect+0x10/0x10 [ 257.655942][ T8717] tcp_v4_connect+0x15fe/0x1b40 [ 257.655983][ T8717] ? __pfx_tcp_v4_connect+0x10/0x10 [ 257.656012][ T8717] ? __lock_acquire+0x4a5/0x2630 [ 257.656056][ T8717] ? __lock_acquire+0x4a5/0x2630 [ 257.656104][ T8717] __inet_stream_connect+0x208/0xfa0 [ 257.656158][ T8717] ? __pfx___inet_stream_connect+0x10/0x10 [ 257.656203][ T8717] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 257.656239][ T8717] ? __pfx_inet_stream_connect+0x10/0x10 [ 257.656285][ T8717] ? __local_bh_enable_ip+0x9e/0x120 [ 257.656333][ T8717] ? __pfx_inet_stream_connect+0x10/0x10 [ 257.656376][ T8717] inet_stream_connect+0x57/0xa0 [ 257.656425][ T8717] __sys_connect_file+0x141/0x1a0 [ 257.656461][ T8717] __sys_connect+0x141/0x170 [ 257.656495][ T8717] ? __pfx___sys_connect+0x10/0x10 [ 257.656549][ T8717] __x64_sys_connect+0x72/0xb0 [ 257.656578][ T8717] ? lockdep_hardirqs_on+0x78/0x100 [ 257.656621][ T8717] do_syscall_64+0x10b/0xf80 [ 257.656649][ T8717] ? clear_bhb_loop+0x40/0x90 [ 257.656685][ T8717] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.656718][ T8717] RIP: 0033:0x7f8533b9c819 [ 257.656743][ T8717] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 257.656770][ T8717] RSP: 002b:00007f8534a0e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 257.656797][ T8717] RAX: ffffffffffffffda RBX: 00007f8533e15fa0 RCX: 00007f8533b9c819 [ 257.656814][ T8717] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 257.656829][ T8717] RBP: 00007f8533c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 257.656844][ T8717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.656866][ T8717] R13: 00007f8533e16038 R14: 00007f8533e15fa0 R15: 00007ffd912bccd8 [ 257.656900][ T8717] [ 258.241952][ T8731] random: crng reseeded on system resumption [ 258.511564][ T8737] hub 1-0:1.0: USB hub found [ 258.539420][ T8737] hub 1-0:1.0: 1 port detected [ 259.792503][ T8770] random: crng reseeded on system resumption [ 259.902237][ T8770] hub 1-0:1.0: USB hub found [ 259.917397][ T8770] hub 1-0:1.0: 1 port detected [ 260.823547][ T8795] random: crng reseeded on system resumption [ 260.858918][ T8795] hub 1-0:1.0: USB hub found [ 260.873227][ T8795] hub 1-0:1.0: 1 port detected [ 260.904761][ T8796] hub 1-0:1.0: USB hub found [ 260.922657][ T8796] hub 1-0:1.0: 1 port detected [ 262.011659][ T8816] random: crng reseeded on system resumption [ 262.062991][ T8816] hub 1-0:1.0: USB hub found [ 262.080010][ T8816] hub 1-0:1.0: 1 port detected [ 262.112704][ T8819] FAULT_INJECTION: forcing a failure. [ 262.112704][ T8819] name fail_futex, interval 1, probability 0, space 0, times 0 [ 262.141821][ T8819] CPU: 1 UID: 0 PID: 8819 Comm: syz.0.653 Not tainted syzkaller #0 PREEMPT(full) [ 262.141845][ T8819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 262.141855][ T8819] Call Trace: [ 262.141861][ T8819] [ 262.141868][ T8819] dump_stack_lvl+0x100/0x190 [ 262.141888][ T8819] should_fail_ex.cold+0x5/0xa [ 262.141905][ T8819] ? tcp_sendmsg+0x38/0x50 [ 262.141922][ T8819] get_futex_key+0x1d2/0x1510 [ 262.141949][ T8819] ? __pfx_get_futex_key+0x10/0x10 [ 262.142001][ T8819] ? sock_write_iter+0x339/0x5a0 [ 262.142025][ T8819] ? __pfx_inet_sendmsg+0x10/0x10 [ 262.142040][ T8819] ? __pfx_sock_write_iter+0x10/0x10 [ 262.142065][ T8819] futex_wake+0xea/0x530 [ 262.142085][ T8819] ? __pfx_futex_wake+0x10/0x10 [ 262.142105][ T8819] ? vfs_write+0x15d/0x1070 [ 262.142121][ T8819] ? __pfx_sock_write_iter+0x10/0x10 [ 262.142145][ T8819] do_futex+0x32b/0x350 [ 262.142160][ T8819] ? __pfx_do_futex+0x10/0x10 [ 262.142179][ T8819] __x64_sys_futex+0x34f/0x4d0 [ 262.142196][ T8819] ? fput+0x79/0x100 [ 262.142216][ T8819] ? __pfx___x64_sys_futex+0x10/0x10 [ 262.142230][ T8819] ? ksys_write+0x1ac/0x250 [ 262.142245][ T8819] ? __pfx_ksys_write+0x10/0x10 [ 262.142262][ T8819] ? rcu_is_watching+0x12/0xc0 [ 262.142281][ T8819] do_syscall_64+0x10b/0xf80 [ 262.142297][ T8819] ? clear_bhb_loop+0x40/0x90 [ 262.142315][ T8819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.142331][ T8819] RIP: 0033:0x7f5f46f9c819 [ 262.142345][ T8819] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.142359][ T8819] RSP: 002b:00007f5f451f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 262.142375][ T8819] RAX: ffffffffffffffda RBX: 00007f5f47215fa8 RCX: 00007f5f46f9c819 [ 262.142386][ T8819] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5f47215fac [ 262.142395][ T8819] RBP: 00007f5f47215fa0 R08: 0000000000000001 R09: 0000000000000000 [ 262.142405][ T8819] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 262.142414][ T8819] R13: 00007f5f47216038 R14: 00007fff4f571e20 R15: 00007fff4f571f08 [ 262.142434][ T8819] [ 262.725657][ T8829] FAULT_INJECTION: forcing a failure. [ 262.725657][ T8829] name failslab, interval 1, probability 0, space 0, times 0 [ 262.776189][ T8829] CPU: 1 UID: 0 PID: 8829 Comm: syz.1.656 Not tainted syzkaller #0 PREEMPT(full) [ 262.776227][ T8829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 262.776244][ T8829] Call Trace: [ 262.776253][ T8829] [ 262.776263][ T8829] dump_stack_lvl+0x100/0x190 [ 262.776301][ T8829] should_fail_ex.cold+0x5/0xa [ 262.776337][ T8829] should_failslab+0xc2/0x120 [ 262.776368][ T8829] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 262.776409][ T8829] ? dst_alloc+0x99/0x1a0 [ 262.776444][ T8829] dst_alloc+0x99/0x1a0 [ 262.776473][ T8829] rt_dst_alloc+0x35/0x3a0 [ 262.776514][ T8829] ip_route_output_key_hash_rcu+0x87a/0x2870 [ 262.776556][ T8829] ip_route_output_key_hash+0x118/0x2b0 [ 262.776588][ T8829] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 262.776624][ T8829] ? __call_rcu_common.constprop.0+0x3f0/0x9b0 [ 262.776666][ T8829] ? lockdep_hardirqs_on+0x78/0x100 [ 262.776703][ T8829] ip_route_output_flow+0x27/0x150 [ 262.776737][ T8829] tcp_v4_connect+0x14b4/0x1b40 [ 262.776782][ T8829] ? __pfx_tcp_v4_connect+0x10/0x10 [ 262.776809][ T8829] ? __lock_acquire+0x4a5/0x2630 [ 262.776850][ T8829] ? __lock_acquire+0x4a5/0x2630 [ 262.776895][ T8829] __inet_stream_connect+0x208/0xfa0 [ 262.776949][ T8829] ? __pfx___inet_stream_connect+0x10/0x10 [ 262.776993][ T8829] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 262.777028][ T8829] ? __pfx_inet_stream_connect+0x10/0x10 [ 262.777073][ T8829] ? __local_bh_enable_ip+0x9e/0x120 [ 262.777111][ T8829] ? __pfx_inet_stream_connect+0x10/0x10 [ 262.777162][ T8829] inet_stream_connect+0x57/0xa0 [ 262.777214][ T8829] __sys_connect_file+0x141/0x1a0 [ 262.777249][ T8829] __sys_connect+0x141/0x170 [ 262.777279][ T8829] ? __pfx___sys_connect+0x10/0x10 [ 262.777333][ T8829] __x64_sys_connect+0x72/0xb0 [ 262.777359][ T8829] ? lockdep_hardirqs_on+0x78/0x100 [ 262.777387][ T8829] do_syscall_64+0x10b/0xf80 [ 262.777416][ T8829] ? clear_bhb_loop+0x40/0x90 [ 262.777449][ T8829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.777478][ T8829] RIP: 0033:0x7f8533b9c819 [ 262.777501][ T8829] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 262.777528][ T8829] RSP: 002b:00007f8534a0e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 262.777556][ T8829] RAX: ffffffffffffffda RBX: 00007f8533e15fa0 RCX: 00007f8533b9c819 [ 262.777576][ T8829] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 262.777594][ T8829] RBP: 00007f8533c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 262.777612][ T8829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.777628][ T8829] R13: 00007f8533e16038 R14: 00007f8533e15fa0 R15: 00007ffd912bccd8 [ 262.777665][ T8829] [ 263.462354][ T8845] netlink: 28 bytes leftover after parsing attributes in process `syz.1.659'. [ 263.589790][ T8834] FAULT_INJECTION: forcing a failure. [ 263.589790][ T8834] name fail_futex, interval 1, probability 0, space 0, times 0 [ 263.684323][ T8834] CPU: 0 UID: 0 PID: 8834 Comm: syz.0.658 Not tainted syzkaller #0 PREEMPT(full) [ 263.684347][ T8834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 263.684356][ T8834] Call Trace: [ 263.684362][ T8834] [ 263.684368][ T8834] dump_stack_lvl+0x100/0x190 [ 263.684389][ T8834] should_fail_ex.cold+0x5/0xa [ 263.684409][ T8834] get_futex_key+0x1d2/0x1510 [ 263.684435][ T8834] ? __pfx_get_futex_key+0x10/0x10 [ 263.684459][ T8834] ? find_held_lock+0x2b/0x80 [ 263.684476][ T8834] ? is_bpf_text_address+0x8a/0x1a0 [ 263.684495][ T8834] ? is_bpf_text_address+0x8a/0x1a0 [ 263.684513][ T8834] ? bpf_ksym_find+0x124/0x1c0 [ 263.684529][ T8834] futex_wait_setup+0x83/0x510 [ 263.684552][ T8834] __futex_wait+0x19f/0x300 [ 263.684572][ T8834] ? __pfx___futex_wait+0x10/0x10 [ 263.684594][ T8834] ? __pfx_futex_wake_mark+0x10/0x10 [ 263.684618][ T8834] ? futex_hash+0x2ad/0x370 [ 263.684649][ T8834] ? futex_hash+0x141/0x370 [ 263.684703][ T8834] futex_wait+0xe6/0x370 [ 263.684723][ T8834] ? __pfx_futex_wait+0x10/0x10 [ 263.684754][ T8834] do_futex+0x1ef/0x350 [ 263.684770][ T8834] ? __pfx_do_futex+0x10/0x10 [ 263.684790][ T8834] __x64_sys_futex+0x34f/0x4d0 [ 263.684808][ T8834] ? __pfx___x64_sys_futex+0x10/0x10 [ 263.684826][ T8834] ? rcu_is_watching+0x12/0xc0 [ 263.684846][ T8834] do_syscall_64+0x10b/0xf80 [ 263.684861][ T8834] ? clear_bhb_loop+0x40/0x90 [ 263.684883][ T8834] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.684902][ T8834] RIP: 0033:0x7f5f46f9c819 [ 263.684916][ T8834] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 263.684931][ T8834] RSP: 002b:00007f5f451f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 263.684947][ T8834] RAX: ffffffffffffffda RBX: 00007f5f47215fa8 RCX: 00007f5f46f9c819 [ 263.684957][ T8834] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5f47215fa8 [ 263.684966][ T8834] RBP: 00007f5f47215fa0 R08: 0000000000000000 R09: 0000000000000000 [ 263.684976][ T8834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.684985][ T8834] R13: 00007f5f47216038 R14: 00007fff4f571e20 R15: 00007fff4f571f08 [ 263.685010][ T8834] [ 264.023983][ T8852] hub 1-0:1.0: USB hub found [ 264.047768][ T8852] hub 1-0:1.0: 1 port detected [ 264.594950][ T8862] random: crng reseeded on system resumption [ 265.945949][ T8887] FAULT_INJECTION: forcing a failure. [ 265.945949][ T8887] name failslab, interval 1, probability 0, space 0, times 0 [ 265.958631][ T8887] CPU: 0 UID: 0 PID: 8887 Comm: syz.3.671 Not tainted syzkaller #0 PREEMPT(full) [ 265.958653][ T8887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 265.958662][ T8887] Call Trace: [ 265.958668][ T8887] [ 265.958675][ T8887] dump_stack_lvl+0x100/0x190 [ 265.958696][ T8887] should_fail_ex.cold+0x5/0xa [ 265.958716][ T8887] should_failslab+0xc2/0x120 [ 265.958732][ T8887] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 265.958755][ T8887] ? inet_bind2_bucket_create+0x36/0x5f0 [ 265.958771][ T8887] ? do_raw_spin_lock+0x128/0x260 [ 265.958791][ T8887] inet_bind2_bucket_create+0x36/0x5f0 [ 265.958810][ T8887] __inet_hash_connect+0x1527/0x2000 [ 265.958835][ T8887] ? __pfx___inet_check_established+0x10/0x10 [ 265.958860][ T8887] ? __pfx___inet_hash_connect+0x10/0x10 [ 265.958881][ T8887] ? inet_init_ehash_secret+0xd/0x60 [ 265.958897][ T8887] ? inet_hash_connect+0x9f/0x340 [ 265.958917][ T8887] tcp_v4_connect+0xeb3/0x1b40 [ 265.958939][ T8887] ? __pfx_tcp_v4_connect+0x10/0x10 [ 265.958954][ T8887] ? __lock_acquire+0x4a5/0x2630 [ 265.958976][ T8887] ? __lock_acquire+0x4a5/0x2630 [ 265.959000][ T8887] __inet_stream_connect+0x208/0xfa0 [ 265.959027][ T8887] ? __pfx___inet_stream_connect+0x10/0x10 [ 265.959050][ T8887] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 265.959069][ T8887] ? __pfx_inet_stream_connect+0x10/0x10 [ 265.959092][ T8887] ? __local_bh_enable_ip+0x9e/0x120 [ 265.959112][ T8887] ? __pfx_inet_stream_connect+0x10/0x10 [ 265.959133][ T8887] inet_stream_connect+0x57/0xa0 [ 265.959156][ T8887] __sys_connect_file+0x141/0x1a0 [ 265.959175][ T8887] __sys_connect+0x141/0x170 [ 265.959190][ T8887] ? __pfx___sys_connect+0x10/0x10 [ 265.959217][ T8887] __x64_sys_connect+0x72/0xb0 [ 265.959231][ T8887] ? lockdep_hardirqs_on+0x78/0x100 [ 265.959247][ T8887] do_syscall_64+0x10b/0xf80 [ 265.959261][ T8887] ? clear_bhb_loop+0x40/0x90 [ 265.959279][ T8887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.959295][ T8887] RIP: 0033:0x7f0b82b9c819 [ 265.959309][ T8887] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 265.959323][ T8887] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 265.959338][ T8887] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 265.959348][ T8887] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 265.959357][ T8887] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 265.959365][ T8887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.959374][ T8887] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 265.959395][ T8887] [ 265.998266][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 266.238385][ T0] NOHZ tick-stop error: local softirq work is pending, handler #12!!! [ 266.757511][ T8892] hub 1-0:1.0: USB hub found [ 266.781995][ T8892] hub 1-0:1.0: 1 port detected [ 267.008036][ T8903] random: crng reseeded on system resumption [ 267.250023][ T8904] hub 1-0:1.0: USB hub found [ 267.293006][ T8904] hub 1-0:1.0: 1 port detected [ 267.658086][ T8912] random: crng reseeded on system resumption [ 268.180794][ T8923] FAULT_INJECTION: forcing a failure. [ 268.180794][ T8923] name failslab, interval 1, probability 0, space 0, times 0 [ 268.193566][ T8923] CPU: 1 UID: 0 PID: 8923 Comm: syz.3.681 Tainted: G L syzkaller #0 PREEMPT(full) [ 268.193593][ T8923] Tainted: [L]=SOFTLOCKUP [ 268.193598][ T8923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 268.193608][ T8923] Call Trace: [ 268.193615][ T8923] [ 268.193622][ T8923] dump_stack_lvl+0x100/0x190 [ 268.193643][ T8923] should_fail_ex.cold+0x5/0xa [ 268.193662][ T8923] should_failslab+0xc2/0x120 [ 268.193680][ T8923] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 268.193702][ T8923] ? __inet_hash_connect+0x6da/0x2000 [ 268.193719][ T8923] ? __inet_hash_connect+0x602/0x2000 [ 268.193739][ T8923] __inet_hash_connect+0x6da/0x2000 [ 268.193763][ T8923] ? __pfx___inet_check_established+0x10/0x10 [ 268.193782][ T8923] ? __pfx___inet_hash_connect+0x10/0x10 [ 268.193803][ T8923] ? inet_init_ehash_secret+0xd/0x60 [ 268.193818][ T8923] ? inet_hash_connect+0x9f/0x340 [ 268.193837][ T8923] tcp_v4_connect+0xeb3/0x1b40 [ 268.193858][ T8923] ? __pfx_tcp_v4_connect+0x10/0x10 [ 268.193872][ T8923] ? __lock_acquire+0x4a5/0x2630 [ 268.193894][ T8923] ? __lock_acquire+0x4a5/0x2630 [ 268.193918][ T8923] __inet_stream_connect+0x208/0xfa0 [ 268.193945][ T8923] ? __pfx___inet_stream_connect+0x10/0x10 [ 268.193967][ T8923] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 268.193985][ T8923] ? __pfx_inet_stream_connect+0x10/0x10 [ 268.194009][ T8923] ? __local_bh_enable_ip+0x9e/0x120 [ 268.194029][ T8923] ? __pfx_inet_stream_connect+0x10/0x10 [ 268.194050][ T8923] inet_stream_connect+0x57/0xa0 [ 268.194073][ T8923] __sys_connect_file+0x141/0x1a0 [ 268.194091][ T8923] __sys_connect+0x141/0x170 [ 268.194106][ T8923] ? __pfx___sys_connect+0x10/0x10 [ 268.194133][ T8923] __x64_sys_connect+0x72/0xb0 [ 268.194147][ T8923] ? lockdep_hardirqs_on+0x78/0x100 [ 268.194163][ T8923] do_syscall_64+0x10b/0xf80 [ 268.194177][ T8923] ? clear_bhb_loop+0x40/0x90 [ 268.194195][ T8923] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.194211][ T8923] RIP: 0033:0x7f0b82b9c819 [ 268.194225][ T8923] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 268.194239][ T8923] RSP: 002b:00007f0b83ad1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 268.194254][ T8923] RAX: ffffffffffffffda RBX: 00007f0b82e15fa0 RCX: 00007f0b82b9c819 [ 268.194263][ T8923] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 268.194272][ T8923] RBP: 00007f0b82c32c91 R08: 0000000000000000 R09: 0000000000000000 [ 268.194281][ T8923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.194290][ T8923] R13: 00007f0b82e16038 R14: 00007f0b82e15fa0 R15: 00007ffc7a8032d8 [ 268.194311][ T8923] [ 269.213709][ T8937] hub 1-0:1.0: USB hub found [ 269.240224][ T8937] hub 1-0:1.0: 1 port detected [ 270.183004][ T8950] random: crng reseeded on system resumption [ 270.240165][ T8950] hub 1-0:1.0: USB hub found [ 270.260123][ T8950] hub 1-0:1.0: 1 port detected [ 270.677385][ T8961] random: crng reseeded on system resumption [ 272.659546][ T8984] random: crng reseeded on system resumption [ 272.753467][ T8984] hub 1-0:1.0: USB hub found [ 272.786977][ T8984] hub 1-0:1.0: 1 port detected [ 273.021550][ T8996] random: crng reseeded on system resumption [ 273.132638][ T8998] hub 1-0:1.0: USB hub found [ 273.144950][ T8998] hub 1-0:1.0: 1 port detected [ 274.313181][ T9010] smpboot: CPU 1 is now offline [ 276.079390][ T9042] random: crng reseeded on system resumption [ 276.174860][ T9044] hub 1-0:1.0: USB hub found [ 276.204457][ T9044] hub 1-0:1.0: 1 port detected [ 279.237251][ T9084] ubi: mtd0 is already attached to ubi0 [ 279.272139][ T9088] netlink: 13 bytes leftover after parsing attributes in process `syz.3.729'. [ 279.491270][ T9092] random: crng reseeded on system resumption [ 279.551160][ T9094] hub 1-0:1.0: USB hub found [ 279.571591][ T9094] hub 1-0:1.0: 1 port detected [ 280.670250][ T9107] hub 1-0:1.0: USB hub found [ 280.690368][ T9107] hub 1-0:1.0: 1 port detected [ 283.361128][ T9140] netlink: 4 bytes leftover after parsing attributes in process `syz.0.741'. [ 283.428079][ T9141] netlink: 'syz.0.741': attribute type 1 has an invalid length. [ 283.507203][ T9141] netlink: 51465 bytes leftover after parsing attributes in process `syz.0.741'. [ 283.932781][ T9147] random: crng reseeded on system resumption [ 284.081056][ T9151] hub 1-0:1.0: USB hub found [ 284.107898][ T9151] hub 1-0:1.0: 1 port detected [ 285.210153][ T9166] hub 1-0:1.0: USB hub found [ 285.243338][ T9166] hub 1-0:1.0: 1 port detected [ 286.107580][ T9178] vcan0: tx drop: invalid da for name 0x000000000000003f [ 287.174090][ T9184] [ 287.176454][ T9184] ====================================================== [ 287.183462][ T9184] WARNING: possible circular locking dependency detected [ 287.190494][ T9184] syzkaller #0 Tainted: G L [ 287.196476][ T9184] ------------------------------------------------------ [ 287.203483][ T9184] syz.2.752/9184 is trying to acquire lock: [ 287.209355][ T9184] ffff888026ffa368 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0x4ca/0xcb0 [ 287.220821][ T9184] [ 287.220821][ T9184] but task is already holding lock: [ 287.228194][ T9184] ffff888026ffa7e0 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 287.237162][ T9184] [ 287.237162][ T9184] which lock already depends on the new lock. [ 287.237162][ T9184] [ 287.247552][ T9184] [ 287.247552][ T9184] the existing dependency chain (in reverse order) is: [ 287.256579][ T9184] [ 287.256579][ T9184] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 287.264316][ T9184] lock_sock_nested+0x41/0xf0 [ 287.269507][ T9184] smc_listen_out+0x1f5/0x4b0 [ 287.274698][ T9184] smc_listen_work+0x4c2/0x50e0 [ 287.280061][ T9184] process_one_work+0xa0e/0x1980 [ 287.285505][ T9184] worker_thread+0x5ef/0xe50 [ 287.290598][ T9184] kthread+0x370/0x450 [ 287.295180][ T9184] ret_from_fork+0x72b/0xd50 [ 287.300295][ T9184] ret_from_fork_asm+0x1a/0x30 [ 287.305582][ T9184] [ 287.305582][ T9184] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 287.315741][ T9184] __lock_acquire+0x14b8/0x2630 [ 287.321117][ T9184] lock_acquire+0x1b1/0x370 [ 287.326130][ T9184] __flush_work+0x4de/0xcb0 [ 287.331137][ T9184] cancel_work_sync+0xd1/0xf0 [ 287.336325][ T9184] smc_clcsock_release+0x5f/0xe0 [ 287.341778][ T9184] __smc_release+0x5c2/0x880 [ 287.346895][ T9184] smc_close_non_accepted+0xda/0x200 [ 287.352695][ T9184] smc_close_active+0x4ff/0x1070 [ 287.358150][ T9184] __smc_release+0x634/0x880 [ 287.363256][ T9184] smc_release+0x1fc/0x620 [ 287.368191][ T9184] __sock_release+0xb3/0x260 [ 287.373380][ T9184] sock_close+0x1c/0x30 [ 287.378147][ T9184] __fput+0x3ff/0xb50 [ 287.382649][ T9184] task_work_run+0x150/0x240 [ 287.387742][ T9184] get_signal+0x1bd/0x21e0 [ 287.392664][ T9184] arch_do_signal_or_restart+0x91/0x770 [ 287.398721][ T9184] exit_to_user_mode_loop+0x86/0x4a0 [ 287.404516][ T9184] do_syscall_64+0x6f2/0xf80 [ 287.409613][ T9184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.416020][ T9184] [ 287.416020][ T9184] other info that might help us debug this: [ 287.416020][ T9184] [ 287.426239][ T9184] Possible unsafe locking scenario: [ 287.426239][ T9184] [ 287.433668][ T9184] CPU0 CPU1 [ 287.439012][ T9184] ---- ---- [ 287.444360][ T9184] lock(sk_lock-AF_SMC/1); [ 287.448863][ T9184] lock((work_completion)(&new_smc->smc_listen_work)); [ 287.458311][ T9184] lock(sk_lock-AF_SMC/1); [ 287.465341][ T9184] lock((work_completion)(&new_smc->smc_listen_work)); [ 287.472280][ T9184] [ 287.472280][ T9184] *** DEADLOCK *** [ 287.472280][ T9184] [ 287.480444][ T9184] 3 locks held by syz.2.752/9184: [ 287.485651][ T9184] #0: ffff88805a076240 (&sb->s_type->i_mutex_key#13){+.+.}-{4:4}, at: __sock_release+0x86/0x260 [ 287.496288][ T9184] #1: ffff888026ffa7e0 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 287.505794][ T9184] #2: ffffffff8e7e5260 (rcu_read_lock){....}-{1:3}, at: __flush_work+0xfd/0xcb0 [ 287.514916][ T9184] [ 287.514916][ T9184] stack backtrace: [ 287.520804][ T9184] CPU: 0 UID: 0 PID: 9184 Comm: syz.2.752 Tainted: G L syzkaller #0 PREEMPT(full) [ 287.520829][ T9184] Tainted: [L]=SOFTLOCKUP [ 287.520834][ T9184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 287.520843][ T9184] Call Trace: [ 287.520851][ T9184] [ 287.520857][ T9184] dump_stack_lvl+0x100/0x190 [ 287.520876][ T9184] print_circular_bug.cold+0x178/0x1c7 [ 287.520901][ T9184] check_noncircular+0x146/0x160 [ 287.520924][ T9184] __lock_acquire+0x14b8/0x2630 [ 287.520949][ T9184] lock_acquire+0x1b1/0x370 [ 287.520970][ T9184] ? __flush_work+0x4ca/0xcb0 [ 287.520985][ T9184] ? mark_held_locks+0x40/0x70 [ 287.521006][ T9184] ? __flush_work+0x4ca/0xcb0 [ 287.521020][ T9184] __flush_work+0x4de/0xcb0 [ 287.521033][ T9184] ? __flush_work+0x4ca/0xcb0 [ 287.521048][ T9184] ? __pfx___flush_work+0x10/0x10 [ 287.521062][ T9184] ? __pfx_wq_barrier_func+0x10/0x10 [ 287.521083][ T9184] ? __pfx___might_resched+0x10/0x10 [ 287.521098][ T9184] ? __smc_release+0x5ba/0x880 [ 287.521119][ T9184] cancel_work_sync+0xd1/0xf0 [ 287.521136][ T9184] smc_clcsock_release+0x5f/0xe0 [ 287.521158][ T9184] __smc_release+0x5c2/0x880 [ 287.521178][ T9184] ? __pfx_sock_def_readable+0x10/0x10 [ 287.521194][ T9184] smc_close_non_accepted+0xda/0x200 [ 287.521216][ T9184] smc_close_active+0x4ff/0x1070 [ 287.521238][ T9184] __smc_release+0x634/0x880 [ 287.521258][ T9184] smc_release+0x1fc/0x620 [ 287.521278][ T9184] __sock_release+0xb3/0x260 [ 287.521295][ T9184] ? __pfx_sock_close+0x10/0x10 [ 287.521313][ T9184] sock_close+0x1c/0x30 [ 287.521329][ T9184] __fput+0x3ff/0xb50 [ 287.521348][ T9184] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.521371][ T9184] task_work_run+0x150/0x240 [ 287.521385][ T9184] ? __pfx_task_work_run+0x10/0x10 [ 287.521400][ T9184] get_signal+0x1bd/0x21e0 [ 287.521417][ T9184] ? task_work_add+0x201/0x3b0 [ 287.521431][ T9184] ? __pfx_task_work_add+0x10/0x10 [ 287.521445][ T9184] ? __pfx_get_signal+0x10/0x10 [ 287.521462][ T9184] ? __fput_deferred+0x217/0x4a0 [ 287.521481][ T9184] arch_do_signal_or_restart+0x91/0x770 [ 287.521507][ T9184] ? __sys_accept4+0x1cb/0x200 [ 287.521521][ T9184] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 287.521544][ T9184] ? __pfx___sys_accept4+0x10/0x10 [ 287.521558][ T9184] ? rcu_is_watching+0x12/0xc0 [ 287.521575][ T9184] exit_to_user_mode_loop+0x86/0x4a0 [ 287.521598][ T9184] ? do_syscall_64+0x519/0xf80 [ 287.521613][ T9184] do_syscall_64+0x6f2/0xf80 [ 287.521627][ T9184] ? clear_bhb_loop+0x40/0x90 [ 287.521643][ T9184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.521659][ T9184] RIP: 0033:0x7f5e1939c819 [ 287.521673][ T9184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 287.521688][ T9184] RSP: 002b:00007f5e1a1fb028 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 287.521702][ T9184] RAX: fffffffffffffe00 RBX: 00007f5e19615fa0 RCX: 00007f5e1939c819 [ 287.521712][ T9184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 287.521721][ T9184] RBP: 00007f5e19432c91 R08: 0000000000000000 R09: 0000000000000000 [ 287.521730][ T9184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.521739][ T9184] R13: 00007f5e19616038 R14: 00007f5e19615fa0 R15: 00007ffca84f3ff8 [ 287.521752][ T9184]