last executing test programs: 11.115638737s ago: executing program 2 (id=2067): ioctl$auto_TUNGETIFF2(0xffffffffffffffff, 0x800454d2, &(0x7f0000000040)=0x8) waitid$auto(0x8, 0xffffffffffffffff, &(0x7f0000000100)={@siginfo_0_0={0xffff, 0x413, 0x0, @_sigsys={&(0x7f0000000080)="bbac2f12a3a001cb9c0970991c572b96ab85fec7c1348db5467c7451143485e06734dc591bad80db23", 0x0, 0x3ff}}}, 0x3, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0x1) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xa00, 0x0, 0xfffffffffffffffd) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) socket$nl_generic(0x10, 0x3, 0x10) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x801, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) pread64$auto(0xffffffffffffffff, 0x0, 0x200000000003, 0x2f4a3a23) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) 10.192682684s ago: executing program 2 (id=2068): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/system/cpu/cpuidle/available_governors\x00', 0x22100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/247, 0xf7) r1 = socket(0xa, 0x3, 0xff) r2 = socket(0xa, 0x3, 0xff) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/sys/net/ipv4/neigh/caif0/interval_probe_time_ms\x00', 0x42281, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0x10b142, 0x0) sendfile$auto(r3, r4, 0x0, 0x1000200) setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x24, 0x0, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_HOP_PENALTY={0x0, 0x35, 0x6}, @BATADV_ATTR_TT_CRC32={0x8, 0x13, 0x10001}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4008800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_SERVICE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, r6, 0x301, 0x70bd27, 0x25dfdc03}, 0x14}, 0x1, 0x0, 0x0, 0x2000001c}, 0x20000800) sendmsg$auto_IPVS_CMD_SET_DEST(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)={0x114, r6, 0x700, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0xf8, 0x3, 0x0, 0x1, [@typed={0x14, 0xd2, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @nested={0xdf, 0x12d, 0x0, 0x1, [@generic, @nested={0x4, 0x50}, @generic="317ff7ef6fff55506c499e67eee305b7c5aa9f48ee5492fe80aacb3f242b1e5f23df494b054462d822b560d709fd2e8e1abbc6a6a838fa6c6d40788e6f8b7abeeef15cae67dbdf9f0d65e23222fd23e1beb4a4736eaa9a5b44cbed733b47eec7e2fc9111718a1e9214851c7fc8b86a50b5d732079df8aca124994b4cb005977cbd0cd1fccc5d5ea137b1690f40e5f98586bc55525582543600e84b8f72db2f937d0656819e9f9770b96c9ac1fc5154664e794ea105a7e475ef90ff7a8c25b5701b6324417c76b5cae978019d02c5657e0d86d4", @nested={0x4, 0x37}]}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x40f4}]}, 0x114}, 0x1, 0x0, 0x0, 0x8005}, 0x24000000) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) r7 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0) read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r7, &(0x7f0000000340)=""/179, 0xb3) setsockopt$auto(r7, 0x1400, 0x10, &(0x7f0000000500)='!\x00', 0x74) r8 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r8, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r9 = socket(0x10, 0x2, 0x0) r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000580), r1) sendmsg$auto_NL80211_CMD_START_NAN(r2, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x18, r10, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x81}, 0x4000000) sendmmsg$auto(r9, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) 9.305338326s ago: executing program 1 (id=2069): setresuid$auto(0x8, 0x8, 0x0) r0 = setfsuid$auto(0xee00) setreuid$auto(r0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090027bd7000fbdbdf250300000008000800", @ANYRES32=r3, @ANYBLOB="890000"], 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0xc050) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x840, 0x0) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) msgsnd$auto(0x2, &(0x7f0000000300)={0x4, 0x9}, 0x65, 0xfffffffd) fsconfig$auto(r1, 0x2, &(0x7f0000000180)='\x00', &(0x7f0000000580)="10ab6b39a25e5d9c4947936e05c1ebf9895356b0a5fc915241b26bebe1bf3648ecb6260c4d40bcaaf9620450e0f236d9cf2e9bfa15663032904f14a0bfebeb6f41d8f77bd0bca982dfe6b49e308e606721133b53711ed21bb9e1e32f4be7a7c60b1e11a84523b8f0f030b169", 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) pipe2$auto(&(0x7f0000000140)=0x2, 0x800) read$auto(0x4, 0x0, 0x80) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r1) sendmsg$auto_TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4) mmap$auto(0xc, 0x20009, 0x5, 0x14, 0xffffffffffffffff, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf) bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@prog_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x3, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x96) 9.305087618s ago: executing program 2 (id=2070): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) mmap$auto(0x0, 0x7069, 0x8, 0x19, 0x401, 0x8ffd) readv$auto(0x3, 0x0, 0x1) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}}) io_uring_register$auto(0x2, 0x1d, 0x0, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) socket(0x2, 0x1, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) 7.874206135s ago: executing program 1 (id=2073): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop8\x00', 0x202881, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x109401, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) io_uring_register$auto(0x2, 0x11, 0x0, 0x83) madvise$auto(0x0, 0xffffffffffff0005, 0x17) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mmap$auto(0x9, 0x2000a, 0x800000000074, 0xebd, 0x40000000000a5, 0x4000008001) io_setup$auto(0x1, 0x0) r0 = socket(0x2c, 0x3, 0x0) getsockopt$auto(r0, 0x11b, 0x8, 0x0, 0x0) set_mempolicy_home_node$auto(0xb67, 0x7, 0x9, 0x7f) socket(0x2, 0x1, 0x0) setuid$auto(0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event0\x00', 0x3496c2, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x9000aea4, &(0x7f0000000040)={0x7}) 7.874104075s ago: executing program 2 (id=2074): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x3, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) open(0x0, 0x40202, 0x79) ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0) mmap$auto(0x0, 0x20005, 0xa, 0x200eb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x3, 0x10, 0xeb1, 0x403, 0x8000) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pkey_mprotect$auto(0x800000000000, 0xb, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'veth1_to_bridge\x00'}) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, 0x0, 0x7f35) close_range$auto(0x2, 0x8, 0x0) msgctl$auto_MSG_STAT_ANY(0x1, 0xd, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x4) 7.230771338s ago: executing program 3 (id=2076): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x2, 0x1) bind$auto(r0, 0x0, 0x6b) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x801, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x1, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x1, 0x2, 0x4000000000000d]}, 0x0) pwrite64$auto(0xc8, &(0x7f0000000140)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00,\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t,\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/242, 0xfdf0, 0x39) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) bind$auto(0xffffffffffffffff, &(0x7f0000000240)=@sco, 0xfffffffb) getsockopt$auto_SO_RCVMARK(r1, 0x0, 0x4b, &(0x7f0000000000)='}\'.^\x00', &(0x7f00000000c0)=0x7) mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) shutdown$auto(0x200000003, 0x2) mlockall$auto(0x7) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/neigh/bond_slave_1/anycast_delay\x00', 0x60c1, 0x0) pwrite64$auto(r2, 0x0, 0x0, 0x2000000000040007) ioctl$auto_FS_IOC_RESVSP64(r2, 0x4030582a, 0x200000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) tgkill$auto(0x0, 0x0, 0x11) readv$auto(0x3, 0x0, 0x7) 5.508487081s ago: executing program 3 (id=2078): mmap$auto(0x4, 0x8004, 0x4000000000df, 0x100040eb5, 0x401, 0x300000000000) r0 = socket(0xa, 0x3, 0x3b) mmap$auto(0x0, 0x200009, 0x2, 0x48eb1, 0xffffffffffffffff, 0x300000000000) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) madvise$auto(0x0, 0x6, 0x66) madvise$auto(0x4000000000002, 0x4, 0x19) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x4, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x3, 0x6, 0x40eb1, 0x401, 0xa) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/sg/def_reserved_size\x00', 0xc8000, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x1, 0x84) r1 = socket(0x28, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x82202, 0x0) io_uring_setup$auto(0x1, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) syz_genetlink_get_family_id$auto_ethtool(0x0, r0) write$auto(r1, &(0x7f0000000080)='/dev/ttyS2\x00', 0xe) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0x2, 0x3, 0xa) 5.507680493s ago: executing program 0 (id=2086): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = io_uring_setup$auto(0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/txpower\x00', 0x0, 0x0) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(r0, 0x10000000084, 0x7b, 0x0, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0) 5.506924147s ago: executing program 1 (id=2079): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x5}, 0xd21, 0x5, 0x8000000000000000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919e836e1a6e889b4881e233d3b51e066bb0a054c9e474be535fd29da", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64cc5fa98e25"}) fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, r1) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 4.909671688s ago: executing program 0 (id=2080): unshare$auto(0x40000080) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x2c, 0x3, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x101202, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) prctl$auto(0x41, 0x1, 0x0, 0x0, 0x0) prctl$auto(0x41, 0x1, 0x0, 0x0, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x10, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4048) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x149041, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x5}, 0xa) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x1c7) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x7, 0xd, 0x1, 0x948d, 0x1ff, 0x15f4da07, 0x3, 0x8003, 0x65, 0x8000001f, 0x1000, 0x100000000006d3e, 0x9, 0x1, 0x8]}, 0x0) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x0, 0x3, 0x4303, 0x1, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb}) listen$auto(0x3, 0x81) madvise$auto(0x110c230000, 0x8031ca, 0x9) io_destroy$auto(0x3) 4.504026671s ago: executing program 2 (id=2081): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = io_uring_setup$auto(0x1, 0x0) r1 = socket(0xa, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/txpower\x00', 0x0, 0x0) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(r0, 0x10000000084, 0x7b, 0x0, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) 4.171968916s ago: executing program 3 (id=2082): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x3, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) open(0x0, 0x40202, 0x79) ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0) mmap$auto(0x0, 0x20005, 0xa, 0x200eb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x3, 0x10, 0xeb1, 0x403, 0x8000) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pkey_mprotect$auto(0x800000000000, 0xb, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'veth1_to_bridge\x00'}) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, 0x0, 0x7f35) close_range$auto(0x2, 0x8, 0x0) msgctl$auto_MSG_STAT_ANY(0x1, 0xd, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x4) 3.61997415s ago: executing program 1 (id=2083): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) mmap$auto(0x0, 0x7069, 0x8, 0x19, 0x401, 0x8ffd) readv$auto(0x3, 0x0, 0x1) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}}) io_uring_register$auto(0x2, 0x1d, 0x0, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) socket(0x2, 0x1, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) 2.509021637s ago: executing program 0 (id=2084): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = io_uring_setup$auto(0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy7/netdev:wlan0/txpower\x00', 0x0, 0x0) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(r0, 0x10000000084, 0x7b, 0x0, 0xd) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, 0xffffffffffffffff) ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0) 2.448544536s ago: executing program 1 (id=2085): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x3, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) open(0x0, 0x40202, 0x79) ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0) mmap$auto(0x0, 0x20005, 0xa, 0x200eb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x3, 0x10, 0xeb1, 0x403, 0x8000) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pkey_mprotect$auto(0x800000000000, 0xb, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'veth1_to_bridge\x00'}) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, 0x0, 0x7f35) close_range$auto(0x2, 0x8, 0x0) msgctl$auto_MSG_STAT_ANY(0x1, 0xd, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x4) 1.832673584s ago: executing program 3 (id=2087): syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) mmap$auto(0x401000000000, 0x40000004020009, 0xc, 0x15, 0xffffffffffffffff, 0x7ffe) r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) close_range$auto(0x2, 0x8, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x1e, 0x4, 0x0) r4 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r4, 0x10f, 0x87, 0x0, 0x14) r5 = getuid() sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000002200)=ANY=[@ANYBLOB="901d0000", @ANYRES16, @ANYBLOB="080a26bd7000ffdbdf2516000000090309800c00e78008009200640101020602bf60393b8e8c11f6cd9517d218fb1332b73000bf0615509cbcfe065420c5a8267e38c3168162b01da5b94d7ecf0e134186aff62b953239185b0eaa5deac2d64935195b895c1a9410cd67f6b3e723b4eda49c1f83d8ad650ffaecdc3f8d2085c1f4a44f5c7f3110806bc714133668fc964068183d21c40bfd007b8014000900fe8000"/174, @ANYRES32=r2, @ANYBLOB="5707be7cd8848e7744de2fb3b8bd1dfbcab32ed5616e3e0b305ea367d9c1a760158c9e347046ff09af0a5f8bdb4724075cf1d6f3b30fceabe162bf7d38c2346cdc953da7703957c1acfd0b58c9848d992fd8d3d4ec080400098008003c00", @ANYRES32=r1, @ANYRES32=0x0, @ANYBLOB="04009b800800340000000000000000ab008680040003808352f74ae947fb23c79111bc17b6bf8c6c3d619fc962743d7d14007e000000000000000000000000000000000004001e8027a418ee81d8d4625e800957f968a786b97aee04fe05f579d40c5406fd0d5e", @ANYRES32=r0, @ANYBLOB="1800698014006600fe8000000000000000000000000000262000358004007d8008002f00", @ANYRES32=r1, @ANYBLOB="080017009507000006008d007b0000002000db8004001b8014007b00fc0100000000000000000000000000000400d0800400ca000400f380b1ac8cc2f2532445cf4f070f70d7db4240319ce22baa1cf45c6edb6123a7506113f7079cc5befdb7efcda99dac56274f77e6b4ca6b73f565baeef0b044e16f50868aedae53adacfda229944027b08ed35e913361503c477b8a27a558d116498ae75b105aef6daa44b7122d40822b426b7c575fbd2a8c94408c1d9b433df908c397a18891960715dcd2690800078004001a8000008305048074f21ce5a5e37b59bba86390d6a50f13a4e57d6930a27e61bdefaba25562857af34f54bbbf8dea09e7a686e70c823e96714d85668df3e2e9e7f9f4ca706ffd6459535b4d95db88cac6366775fe26b4bbabcdf79f129d7a62a73aa01b0ba3f0841be3c22f5235d97787ed04006700ec8e2fde77cc9bd71b33a7b512814872ac7413ad8314006600ff0100000000000000000000000000018500fa00c73c78455c0a7ca08f4b32c31a1d076653e2cf8b4c301619322c2ff6f53738535c3f71b2416c8b2b9c62fbea50ab0e7758015868ff1d31842799499e6d7cc3a5a4406b1c1686ca977cc478d2f25cc58157dc2f243c84004c1095aa042ddf3b1c22441999a56ee9bebe99594a2702bb9059b51571dfe10e6b159308cd4990becdf2000000147ef978ae28b1ef61321c766aa0a3016c8bc6596d6f3c6a9e9446250e8b86a258e6499b151e464b780fd59260cf4ce97e92aad0cb7a986f7e97491d9969dccae556fc5e507aee23f40c83991fe894a004094302893261344a2d78852392bf3585a819f96cfe3ed7a5fecb572454a7c0b2e676dab4d8d7b2357897fd1777ee5c816efdcd4444df833cc7978c7f54cde157e3cf7ccfa646c7235ab050abed6fd8677a46243793bbf5360b4b0d1a50eec2b37b1349afb4bb1e04dd13ef491943ffa0d4ae24374dc12a6fa2470c00ba006e6c38303231310004d47c0d9b4ad7f8f1ba5e1d4ce660da5746da27992b293af0b807528f50d0e6d2b0b41dda172fac34905fdf98d3a9c40763a69180fb674c8ba86a92a8d5c3ac005422a41b56f551334db5df652458ffba182a702b85d440044379ae1df187237977de397d8bfcf368bf761ceed204113d6ced259b58d060e305d661fba532a3f5e7a54f2194e6f22bfb7dfdd1a44892d2d87ee055110e72df2fd4743cfd5aba77251cf3b95e2c491d1454f3e35526fdb2e0daa740925be684ba711ccffeb3d031df3589a7eff265544c8d585cb4b2898ec8788846f49a21fb36b8db2da2ab1ef9a5025880c500f2008c2f10666443f1ac1a8cc60ad8ddc6a49e9e70c93aa8ecefcc6d50059327ce7606eee6f19670a825d18c98b36652368e2425406316cae751284ed1cee6a102b1784aa20c22843d1414e11dea7129fcc0e01e7d043014ffb1f2d13dd923f12beca055612cf1fb886971986086142fea1f2d8a2c46343e77a69c945859eda4921e04c1b15035eae070bd6fb6c8b83a1951480e0cb6c6c32ec2a90d958ba7bbad5a3f609a38e89b66ea6ea05d5e20383b5aa988fe761fec4bd3ec1b467105714c08fd0000000400a98036ffa99410db814df01973d68db033f4ee87aec2a3892d37ad2087ad0def0d948efa748f812c6d02424d38d8c88e1dd5049980f3ce2f4b66266222d08e96478ed174efeaa00b88389ae193eb30c196206d44b7915e039d40785ac0ddfaa1149b3d82a2e7cd7cf432ecdd877519ce49d7d4d9fc821ba8fb40726714cd8775b0d5af9863379226847e153d5a22ca94d7168c52c09d3e11e1b6c74d4b756dc823dd5ab47f79d75b62c0b872872040582510e6927fd5850e5d784d04002b8021164748b4a166dcf1799e5f9b86dac3fe303aa6feb1fe8e8d167a9e0cf465a586cbce8aa60d7b5fec02ac9310746e4c64fa7fef906e4071bd8ab49b95768cdcb0844158fd5df872be0d60a53a437f76359568956a73a35ef06c847f66eb1b00102b01ddbe1b62edc3626eb08ddce6e4285e41f236f4d73b6349f52cfe47010a6362ea7dcc494290bee854dbb918d06a3ada2227eb6dfb9d1346108d2b08f0e207d195c30fd1f65ecf89789aedc304f22e1d151e0b801572b23685b7e575e6743c184802e0e616fca6283f4011441f1638e96e337587558d698a2edd4e06cde17243e4cf12c44c4bf021fc2dee596bd8da56ce7c4a514aa94abdd637ab491b301736b54c14009300fc000000000000000000000000000001000000002300098008000900", @ANYRES32=r5, @ANYRES32=r0, @ANYBLOB="0c001c0006000000000000000800a6000a01010204007580000007020280fd00f980bd303502d572a153126393fcf955a7f3fc4b6effc2938fe89d05c24c13d274de030f62905fda4401fb967408b20b56ddfe2af28a54701b98c669538caf8ea9a9eaf01ab6307a64d7a290268db39ea238256f7e41647035a93ed2b9015bf9febc51c7", @ANYRES32=r3, @ANYBLOB="08001200", @ANYRES32=r1, @ANYBLOB="efaac42583e74436c25ab0b0f91b7d23ad8a318bd1d3aaf26f9dda28d46812e2264fc14f2b4eb8f61f2fb8b603da278bf19b9089193630b756d3e3c6182e240fd5fe1ce4c95d4f7ee6cafa631be1044301c4bb050f1bab91d2f4dc59253c370294736844c3daffee06dbfe9c5c0243f250b1c7a152", @ANYRES32, @ANYBLOB="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"], 0x1d90}, 0x1, 0x0, 0x0, 0x80}, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_NFC_CMD_GET_TARGET(r4, &(0x7f0000000500)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002dbd7000fcdbdf2508000000580019009ff882d45e23aa1282d04cf6f328c5effa48c0bbae3ae2f8be187c2bcd4d4af8939e3b33a3fca26ecdfb6cf658dd8575cf557946c440058348f497794ea082a387f37ea716eed5fa530009000000000000000000"], 0x6c}, 0x1, 0x0, 0x0, 0x4}, 0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) r6 = prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000300)=@bpf_attr_0={0x9a, 0x2, 0x5, 0xc, 0x7eb, r2, 0x5, "e03f43200a26d5ea743998fb7500", 0x0, r6, 0x9, 0x1, 0x4, 0x7, r3, r3}, 0x7ff) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r7) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) io_uring_setup$auto(0x4e8c, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) 1.624099585s ago: executing program 0 (id=2088): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/watchdog_cpumask\x00', 0x141241, 0x0) write$auto(0x3, 0x0, 0xfdef) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_ADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x20, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ILA_ATTR_LOCATOR_MATCH={0xc, 0x3, 0x24000000000}]}, 0x20}, 0x1, 0x0, 0x0, 0x4010}, 0x0) write$auto(0x1, 0x0, 0x80000000) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) modify_ldt$auto(0xd, 0x0, 0x4) semget$auto(0x6, 0x100001, 0xcb51) socketpair$auto(0x7, 0xf, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r3, 0x0, 0x800) socket(0x5, 0xa, 0x25) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r4, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef) r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) ioctl$auto_TIOCVHANGUP(r5, 0x5437, 0x0) ioctl$auto_TIOCVHANGUP(r5, 0x5437, 0x0) epoll_create$auto(0x2) sendmsg$auto_ILA_CMD_FLUSH(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="440000007d962069710200000034fe134e26384dfbceaf21521ae150fd4a01bf7ada44ed784af51a86decdbc308e937600b5dad41731976ad74ff701e7d38eab8c592873946a7ffd189439771e719796a2bf3189b3583bb0511d62655909e5d6f12cd19e9eff5ba1c5f875a722f28f80eb6be819d5cefa290dc3ace88e45d63fc03c230a845b3e9cd997141438ad3a767c7d03953a81e9cc8727c2b91c5696b2dc50efa361790123b395583bc7934f6c4036ab3f5061683faef0f4598f8400e4d0f81eeefb022b7bd7631171b381", @ANYRES16=r2, @ANYBLOB="01002cbd7000fddbdf25040000000500070003000000"], 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x40008c4) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000440), 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 619.901894ms ago: executing program 3 (id=2089): socket(0x2, 0x801, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6d) listen$auto(0x3, 0x81) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x5c, r1, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x80}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @ipv4={'\x00', '\xff\xff', @local}}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @ipv4={'\x00', '\xff\xff', @local}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004) mmap$auto(0x0, 0x2020209, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socket(0x2b, 0x1, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/printk_devkmsg\x00', 0x202, 0x0) sendfile$auto(r3, r3, 0x0, 0x7fffe000) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x4, 0x0, 0x2, 0x4}, 0x8}, 0x5, 0x20000000) process_madvise$auto_MADV_DOFORK(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000180)="d12f0d938748f240b54568a715559dbef1c5980730faff511d56fb546fba62b504786b2630f46473a8d41e2bb35c92d294db1b059f75cbed0b28ed71003481987d85576a712b11d8c9ff7e2b439f4bee709dd04b21f22670a828fdbaafb4e041f5ae5060dc9840387505f4ef8a2dc2c6214036350a0850f4ccb30bf97a89f94b7c07520013399cca40587e41c29fb14212aa115779f720985a6b463bbcfee487b5816d024233c0507eee2b0923e98087070301dc30355732801930f855b5b06fc5fd606ccee9bbf5bc72951a090f96ac8ccbf62772c8ad1afdd45aca9d1acf2f4248a7870038714b7a93", 0xffffffffffffffff}, 0x917, 0xb, 0xfff) ioctl$NS_GET_PARENT(0xffffffffffffffff, 0x40305828, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/ksm/pages_volatile\x00', 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r5 = getpid() process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0x1}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) r6 = socket(0x11, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r6, 0x8953, 0x0) lsetxattr$auto(0x0, 0x0, &(0x7f0000000280)="2f657d0f5e2b34acaef7b9e3efec478b4132455e398eab5eb0815a778a36b36904873f01ba17860256309863e2640761e8371ac3dd1b02308bbe5041a4aa100f50c1cf", 0x80000000, 0x7f000) r7 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r7, 0x1, &(0x7f00000002c0)) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000100)=""/16, 0x10) close_range$auto(0x2, 0x8, 0x0) 466.49249ms ago: executing program 0 (id=2090): r0 = ioctl$auto_TUNSETVNETBE2(0xffffffffffffffff, 0x400454de, 0x0) ioctl$auto_TIOCGPGRP(r0, 0x540f, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r0, 0x28000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0x10, r1, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0x163041, 0x0) write$auto(0x3, 0x0, 0xfdef) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) kill$auto(r2, 0x6) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptydc\x00', 0x800, 0x0) ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0) mmap$auto(0xfffffffffffff, 0xfffffffffffffffd, 0x4400000000e3, 0x40eb1, 0x401, 0x2fffffffffff) write$auto(0x3, 0x0, 0xffd8) mkdir$auto(&(0x7f00000000c0)='./file0\x00', 0x9) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) futex$auto(&(0x7f00000003c0)=0x58, 0x5, 0x3, 0x0, &(0x7f0000000080)=0x3, 0xfffffffb) r4 = openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000100), 0x344902, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000003c0)=""/231, 0xe7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) read$auto_check_wx_fops_(0xffffffffffffffff, &(0x7f0000000140)=""/239, 0xef) socketpair$auto(0x9, 0x2, 0xb, 0x0) r6 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000006380), 0x101101, 0x0) writev$auto(r6, &(0x7f0000007240)={0x0, 0x9dc}, 0x1ff) read$auto_proc_coredump_filter_operations_base(r4, 0xfffffffffffffffd, 0x0) 434.246585ms ago: executing program 2 (id=2091): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = io_uring_setup$auto(0x3, 0x0) close_range$auto(0x2, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) open(0x0, 0x40202, 0x79) ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0) mmap$auto(0x0, 0x20005, 0xa, 0x200eb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x3, 0x10, 0xeb1, 0x403, 0x8000) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pkey_mprotect$auto(0x800000000000, 0xb, 0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'veth1_to_bridge\x00'}) socket$nl_generic(0x10, 0x3, 0x10) bind$auto(0x3, 0x0, 0x7f35) close_range$auto(0x2, 0x8, 0x0) msgctl$auto_MSG_STAT_ANY(0x1, 0xd, 0x0) sendmsg$auto_IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x4) 163.464623ms ago: executing program 3 (id=2092): r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a9402, 0x0) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800) timer_create$auto(0x9, 0x0, 0x0) read$auto(0x3, 0x0, 0x8080) socket(0xa, 0x1, 0x100) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) shmctl$auto_IPC_SET(0x4, 0x1, &(0x7f0000000280)={{0x80, 0xee00, 0xee00, 0xca6d, 0x8, 0x4bd6, 0x5}, 0xd21, 0x5, 0x8000000000000000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x9, 0x0, &(0x7f0000000140)="4f0d6995e943b6bc1919e836e1a6e889b4881e233d3b51e066bb0a054c9e474be535fd29da", &(0x7f0000000200)="e3ac9b01ee8d985b677531eeeee5cb5bf774d2df4d9ae6dccbc98def20b72c7c2826a585ba3a8d67815abade214708a4ade77c6faa2f2889ca3e7989f32645dd597a3ae1b46e8d8c7e03ae6b8aaa49f6bf64cc5fa98e25"}) fsconfig$auto(r0, 0x800, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_abort_count\x00', 0x0, r1) process_mrelease$auto(0xffffffffffffffff, 0xa) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mount$auto(0x0, 0xfffffffffffffffe, 0x0, 0x80, 0xfffffffffffffffe) write$auto(r2, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mkdir$auto(&(0x7f0000000100)='./file0\x00', 0xff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) socket(0x2, 0x1, 0x106) mmap$auto(0x1000000000, 0x100000400008, 0x1000000000000df, 0x4000009b73, r3, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x40080, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x7, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfffffffffffffffb, 0x1, 0x4, 0x3, 0x3, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 83.090725ms ago: executing program 1 (id=2093): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) socket(0x6, 0x3, 0x37) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x26, 0x5, 0x8c68) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x101e41, 0x0) ioperm$auto(0x84, 0x7, 0x4000008) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyr0\x00', 0x74c40, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x802, 0x8000009, 0x1, 0x19, 0xffffffffffffffff, 0x100000000000008) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2b, 0x0) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/security/tomoyo/audit\x00', 0x50ba82, 0x0) read$auto(r4, 0x0, 0xb4d3) unshare$auto(0x40000080) setsockopt$auto(r0, 0xd0, 0x800000e4, 0x0, 0x569) 0s ago: executing program 0 (id=2094): mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) write$auto(r0, 0x0, 0x2) getrlimit$auto(0x3, 0x0) fdatasync$auto(r0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0) write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xc8d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\xc6\x00\x89\te\x8d\a\xfb\\n\x89C:\x84D\x10u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x810, r2, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r3, 0xffffffffffdffe00, &(0x7f0000000140)=';') pselect6$auto(0x9, &(0x7f0000000300)={[0x9, 0x4, 0x9, 0x6, 0x8001, 0x4000000000002bc8, 0xffd, 0x9, 0x3, 0xffffffff, 0x8000000000000001, 0x0, 0x2f, 0x2, 0x8, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) kernel console output (not intermixed with test programs): 284.419639][ T9186] Call Trace: [ 284.419645][ T9186] [ 284.419650][ T9186] dump_stack_lvl+0x100/0x190 [ 284.419674][ T9186] should_fail_ex.cold+0x5/0xa [ 284.419696][ T9186] ? prepare_alloc_pages+0x16d/0x5f0 [ 284.419719][ T9186] should_fail_alloc_page+0xeb/0x140 [ 284.419741][ T9186] prepare_alloc_pages+0x1f0/0x5f0 [ 284.419767][ T9186] __alloc_frozen_pages_noprof+0x193/0x2410 [ 284.419787][ T9186] ? __lock_acquire+0x4a5/0x2630 [ 284.419812][ T9186] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 284.419829][ T9186] ? __lock_acquire+0x4a5/0x2630 [ 284.419857][ T9186] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 284.419874][ T9186] ? policy_nodemask+0xed/0x4f0 [ 284.419903][ T9186] alloc_pages_mpol+0x1fb/0x550 [ 284.419925][ T9186] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 284.419952][ T9186] alloc_pages_noprof+0x131/0x390 [ 284.419974][ T9186] pte_alloc_one+0x1e/0x3e0 [ 284.419994][ T9186] do_huge_pmd_anonymous_page+0x836/0x1c00 [ 284.420015][ T9186] __handle_mm_fault+0x1e96/0x2b50 [ 284.420034][ T9186] ? mt_find+0x45e/0x8e0 [ 284.420054][ T9186] ? __pfx___handle_mm_fault+0x10/0x10 [ 284.420068][ T9186] ? __pfx_mt_find+0x10/0x10 [ 284.420101][ T9186] handle_mm_fault+0x36d/0xa20 [ 284.420120][ T9186] __get_user_pages+0xf9c/0x34d0 [ 284.420151][ T9186] ? down_read_killable+0x30e/0x4c0 [ 284.420170][ T9186] ? __lock_acquire+0x4a5/0x2630 [ 284.420188][ T9186] ? __pfx___get_user_pages+0x10/0x10 [ 284.420214][ T9186] __gup_longterm_locked+0x87d/0x16f0 [ 284.420241][ T9186] ? __pfx___gup_longterm_locked+0x10/0x10 [ 284.420265][ T9186] ? try_get_folio+0x262/0x750 [ 284.420283][ T9186] ? pmd_write+0xd3/0x150 [ 284.420301][ T9186] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 284.420325][ T9186] gup_fast_fallback+0x18c6/0x2460 [ 284.420360][ T9186] ? __pfx_gup_fast_fallback+0x10/0x10 [ 284.420381][ T9186] ? ksys_write+0x12a/0x250 [ 284.420396][ T9186] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.420419][ T9186] pin_user_pages_fast+0xa7/0xf0 [ 284.420440][ T9186] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 284.420467][ T9186] iov_iter_extract_pages+0xa0d/0x1ef0 [ 284.420494][ T9186] ? pfn_valid+0x98/0x4e0 [ 284.420513][ T9186] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 284.420534][ T9186] ? bvec_try_merge_page+0x1cd/0x290 [ 284.420559][ T9186] ? bio_add_page+0x162/0x760 [ 284.420578][ T9186] ? iov_iter_revert+0x252/0x5b0 [ 284.420601][ T9186] bio_iov_iter_get_pages+0x35e/0x12c0 [ 284.420635][ T9186] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 284.420658][ T9186] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 284.420680][ T9186] ? rcu_is_watching+0x12/0xc0 [ 284.420694][ T9186] ? irqentry_exit+0x180/0x670 [ 284.420710][ T9186] ? lockdep_hardirqs_on+0x78/0x100 [ 284.420725][ T9186] ? iov_iter_npages+0xf8/0x500 [ 284.420748][ T9186] blkdev_direct_IO+0x1302/0x1fb0 [ 284.420775][ T9186] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 284.420795][ T9186] ? filemap_check_errors+0xa9/0x150 [ 284.420822][ T9186] blkdev_write_iter+0x703/0xd70 [ 284.420844][ T9186] vfs_write+0x6ac/0x1070 [ 284.420861][ T9186] ? __pfx_blkdev_write_iter+0x10/0x10 [ 284.420880][ T9186] ? __pfx_vfs_write+0x10/0x10 [ 284.420899][ T9186] ? find_held_lock+0x2b/0x80 [ 284.420927][ T9186] ksys_write+0x12a/0x250 [ 284.420944][ T9186] ? __pfx_ksys_write+0x10/0x10 [ 284.420967][ T9186] do_syscall_64+0xc9/0xf80 [ 284.420987][ T9186] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.421002][ T9186] RIP: 0033:0x7fbb2cf9aeb9 [ 284.421015][ T9186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 284.421029][ T9186] RSP: 002b:00007fbb2debc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 284.421044][ T9186] RAX: ffffffffffffffda RBX: 00007fbb2d215fa0 RCX: 00007fbb2cf9aeb9 [ 284.421054][ T9186] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000004 [ 284.421063][ T9186] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 284.421072][ T9186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.421080][ T9186] R13: 00007fbb2d216038 R14: 00007fbb2d215fa0 R15: 00007ffd4f0848c8 [ 284.421100][ T9186] [ 285.134817][ T9208] random: crng reseeded on system resumption [ 286.627653][ T9239] random: crng reseeded on system resumption [ 287.876019][ T9256] random: crng reseeded on system resumption [ 289.894048][ T9291] random: crng reseeded on system resumption [ 291.872790][ T9333] random: crng reseeded on system resumption [ 292.734899][ T9353] FAULT_INJECTION: forcing a failure. [ 292.734899][ T9353] name failslab, interval 1, probability 0, space 0, times 0 [ 292.822718][ T9353] CPU: 0 UID: 0 PID: 9353 Comm: syz.0.598 Tainted: G U syzkaller #0 PREEMPT(full) [ 292.822763][ T9353] Tainted: [U]=USER [ 292.822772][ T9353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 292.822788][ T9353] Call Trace: [ 292.822804][ T9353] [ 292.822814][ T9353] dump_stack_lvl+0x100/0x190 [ 292.822855][ T9353] should_fail_ex.cold+0x5/0xa [ 292.822914][ T9353] should_failslab+0xc2/0x120 [ 292.823013][ T9353] kmem_cache_alloc_noprof+0x83/0x780 [ 292.823053][ T9353] ? skb_clone+0x190/0x400 [ 292.823100][ T9353] ? skb_clone+0x190/0x400 [ 292.823138][ T9353] skb_clone+0x190/0x400 [ 292.823180][ T9353] genlmsg_multicast_allns+0x1a0/0x590 [ 292.823218][ T9353] l2tp_tunnel_notify.constprop.0+0xfc/0x150 [ 292.823261][ T9353] l2tp_nl_cmd_tunnel_create+0x47d/0x990 [ 292.823300][ T9353] ? rcu_is_watching+0x12/0xc0 [ 292.823326][ T9353] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290 [ 292.823396][ T9353] ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10 [ 292.823447][ T9353] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 292.823489][ T9353] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 292.823529][ T9353] genl_family_rcv_msg_doit+0x214/0x300 [ 292.823560][ T9353] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 292.823586][ T9353] ? genl_get_cmd+0x3ef/0x720 [ 292.823618][ T9353] ? bpf_lsm_capable+0x9/0x10 [ 292.823638][ T9353] ? security_capable+0x80/0x260 [ 292.823672][ T9353] ? ns_capable+0xd2/0xf0 [ 292.823704][ T9353] genl_rcv_msg+0x560/0x800 [ 292.823742][ T9353] ? __pfx_genl_rcv_msg+0x10/0x10 [ 292.823773][ T9353] ? __pfx_l2tp_nl_cmd_tunnel_create+0x10/0x10 [ 292.823824][ T9353] netlink_rcv_skb+0x159/0x420 [ 292.823851][ T9353] ? __pfx_genl_rcv_msg+0x10/0x10 [ 292.823882][ T9353] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 292.823923][ T9353] ? netlink_deliver_tap+0x1ae/0xcc0 [ 292.823971][ T9353] genl_rcv+0x28/0x40 [ 292.823997][ T9353] netlink_unicast+0x5aa/0x870 [ 292.824046][ T9353] ? __pfx_netlink_unicast+0x10/0x10 [ 292.824107][ T9353] netlink_sendmsg+0x8b0/0xda0 [ 292.824155][ T9353] ? __pfx_netlink_sendmsg+0x10/0x10 [ 292.824196][ T9353] ? __import_iovec+0x1d2/0x640 [ 292.824243][ T9353] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 292.824286][ T9353] ____sys_sendmsg+0xa54/0xc30 [ 292.824321][ T9353] ? __pfx_____sys_sendmsg+0x10/0x10 [ 292.824367][ T9353] ? try_to_wake_up+0x644/0x1a60 [ 292.824408][ T9353] ___sys_sendmsg+0x190/0x1e0 [ 292.824445][ T9353] ? __pfx____sys_sendmsg+0x10/0x10 [ 292.824477][ T9353] ? futex_private_hash_put+0x107/0x1c0 [ 292.824531][ T9353] ? find_held_lock+0x2b/0x80 [ 292.824584][ T9353] __sys_sendmsg+0x170/0x220 [ 292.824625][ T9353] ? __pfx___sys_sendmsg+0x10/0x10 [ 292.824666][ T9353] ? __x64_sys_futex+0x34f/0x4d0 [ 292.824728][ T9353] do_syscall_64+0xc9/0xf80 [ 292.824766][ T9353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.824795][ T9353] RIP: 0033:0x7f132e59aeb9 [ 292.824817][ T9353] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 292.824844][ T9353] RSP: 002b:00007f132f4d0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 292.824870][ T9353] RAX: ffffffffffffffda RBX: 00007f132e816090 RCX: 00007f132e59aeb9 [ 292.824890][ T9353] RDX: 0000000004000000 RSI: 0000200000000140 RDI: 000000000000000d [ 292.824907][ T9353] RBP: 00007f132e608c1f R08: 0000000000000000 R09: 0000000000000000 [ 292.824925][ T9353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.824942][ T9353] R13: 00007f132e816128 R14: 00007f132e816090 R15: 00007fff822f2aa8 [ 292.824981][ T9353] [ 294.174889][ T9355] Process accounting resumed [ 294.562860][ T9386] random: crng reseeded on system resumption [ 298.402208][ T9452] random: crng reseeded on system resumption [ 302.582099][ T9522] random: crng reseeded on system resumption [ 302.670341][ T9523] program syz.3.620 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 304.001874][ T9546] random: crng reseeded on system resumption [ 305.672085][ T9571] random: crng reseeded on system resumption [ 307.754493][ T9598] random: crng reseeded on system resumption [ 308.363933][ T9601] FAULT_INJECTION: forcing a failure. [ 308.363933][ T9601] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 308.450255][ T9601] CPU: 0 UID: 0 PID: 9601 Comm: syz.2.640 Tainted: G U syzkaller #0 PREEMPT(full) [ 308.450285][ T9601] Tainted: [U]=USER [ 308.450291][ T9601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 308.450300][ T9601] Call Trace: [ 308.450306][ T9601] [ 308.450312][ T9601] dump_stack_lvl+0x100/0x190 [ 308.450335][ T9601] should_fail_ex.cold+0x5/0xa [ 308.450357][ T9601] ? prepare_alloc_pages+0x16d/0x5f0 [ 308.450382][ T9601] should_fail_alloc_page+0xeb/0x140 [ 308.450403][ T9601] prepare_alloc_pages+0x1f0/0x5f0 [ 308.450425][ T9601] ? stack_trace_save+0x8e/0xc0 [ 308.450444][ T9601] __alloc_frozen_pages_noprof+0x193/0x2410 [ 308.450465][ T9601] ? __lock_acquire+0x4a5/0x2630 [ 308.450489][ T9601] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 308.450516][ T9601] ? find_held_lock+0x2b/0x80 [ 308.450529][ T9601] ? is_bpf_text_address+0x8a/0x1a0 [ 308.450542][ T9601] ? is_bpf_text_address+0x8a/0x1a0 [ 308.450563][ T9601] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 308.450581][ T9601] ? policy_nodemask+0xed/0x4f0 [ 308.450604][ T9601] alloc_pages_mpol+0x1fb/0x550 [ 308.450626][ T9601] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 308.450652][ T9601] folio_alloc_mpol_noprof+0x36/0x340 [ 308.450676][ T9601] shmem_alloc_folio+0x135/0x160 [ 308.450692][ T9601] shmem_alloc_and_add_folio+0x371/0xd40 [ 308.450715][ T9601] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 308.450734][ T9601] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 308.450759][ T9601] shmem_get_folio_gfp+0x6ab/0x1900 [ 308.450854][ T9601] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 308.450877][ T9601] ? filemap_map_pages+0x9e0/0x2110 [ 308.450900][ T9601] shmem_fault+0x1f9/0xa20 [ 308.450918][ T9601] ? __lock_acquire+0x4a5/0x2630 [ 308.450938][ T9601] ? __pfx_shmem_fault+0x10/0x10 [ 308.450962][ T9601] ? __pfx_filemap_map_pages+0x10/0x10 [ 308.450989][ T9601] __do_fault+0x10d/0x550 [ 308.451011][ T9601] do_fault+0xaf9/0x1990 [ 308.451031][ T9601] ? __pmd_alloc+0x6aa/0x9c0 [ 308.451054][ T9601] __handle_mm_fault+0x1807/0x2b50 [ 308.451074][ T9601] ? mt_find+0x45e/0x8e0 [ 308.451094][ T9601] ? __pfx___handle_mm_fault+0x10/0x10 [ 308.451109][ T9601] ? __pfx_mt_find+0x10/0x10 [ 308.451137][ T9601] ? find_vma+0xbf/0x140 [ 308.451156][ T9601] ? __pfx_find_vma+0x10/0x10 [ 308.451177][ T9601] handle_mm_fault+0x36d/0xa20 [ 308.451197][ T9601] do_user_addr_fault+0x74c/0x12f0 [ 308.451220][ T9601] exc_page_fault+0x6f/0xd0 [ 308.451237][ T9601] asm_exc_page_fault+0x26/0x30 [ 308.451251][ T9601] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 308.451277][ T9601] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 308.451291][ T9601] RSP: 0018:ffffc900048b7d98 EFLAGS: 00050216 [ 308.451307][ T9601] RAX: 0000000000000001 RBX: 0000000000001298 RCX: 0000000000000020 [ 308.451317][ T9601] RDX: 0000000000000001 RSI: 0000000000001298 RDI: ffffc900048b7e38 [ 308.451325][ T9601] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff52000916fca [ 308.451334][ T9601] R10: ffffc900048b7e57 R11: 0000000000000000 R12: 0000000000000000 [ 308.451343][ T9601] R13: ffffc900048b7e38 R14: ffffc900048b7e38 R15: dffffc0000000000 [ 308.451363][ T9601] _copy_from_user+0x98/0xd0 [ 308.451386][ T9601] do_fcntl+0xf0c/0x1670 [ 308.451409][ T9601] ? __pfx_do_fcntl+0x10/0x10 [ 308.451429][ T9601] ? __fget_files+0x215/0x3d0 [ 308.451451][ T9601] ? tomoyo_file_fcntl+0x6c/0xc0 [ 308.451472][ T9601] __x64_sys_fcntl+0x163/0x200 [ 308.451495][ T9601] do_syscall_64+0xc9/0xf80 [ 308.451515][ T9601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.451538][ T9601] RIP: 0033:0x7f69c799aeb9 [ 308.451553][ T9601] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 308.451568][ T9601] RSP: 002b:00007f69c8850028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 308.451582][ T9601] RAX: ffffffffffffffda RBX: 00007f69c7c15fa0 RCX: 00007f69c799aeb9 [ 308.451591][ T9601] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 000000000000000b [ 308.451600][ T9601] RBP: 00007f69c7a08c1f R08: 0000000000000000 R09: 0000000000000000 [ 308.451610][ T9601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 308.451618][ T9601] R13: 00007f69c7c16038 R14: 00007f69c7c15fa0 R15: 00007ffd2f13f788 [ 308.451639][ T9601] [ 310.109155][ T9631] random: crng reseeded on system resumption [ 311.182479][ T5834] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 311.344474][ T9652] random: crng reseeded on system resumption [ 314.431910][ T9709] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078404000 pfn:0x78404 [ 314.522525][ T9709] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 314.529926][ T9709] page_type: f2(table) [ 314.594347][ T9709] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 314.692993][ T9709] raw: ffff888078404000 ffff888078b4f660 00000001f2000000 0000000000000000 [ 314.759983][ T9709] page dumped because: unmovable page [ 314.773806][ T9709] page_owner tracks the page as allocated [ 314.796333][ T9709] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5486, tgid 5486 (dhcpcd), ts 56839923993, free_ts 56733408285 [ 314.880700][ T9709] post_alloc_hook+0x1e1/0x250 [ 314.991213][ T9709] get_page_from_freelist+0xe3d/0x2e10 [ 315.012496][ T9709] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 315.045369][ T9709] alloc_pages_mpol+0x1fb/0x550 [ 315.320152][ T9709] alloc_pages_noprof+0x131/0x390 [ 315.345077][ T9709] pte_alloc_one+0x1e/0x3e0 [ 315.349664][ T9709] __pte_alloc+0x6d/0x3f0 [ 315.420084][ T9709] copy_page_range+0x3f17/0x6ba0 [ 315.532678][ T9709] dup_mmap+0xbea/0x1e20 [ 315.536988][ T9709] copy_process+0x7451/0x7890 [ 315.591173][ T9709] kernel_clone+0xfc/0x930 [ 315.596210][ T9709] __do_sys_clone+0xd9/0x120 [ 315.600934][ T9709] do_syscall_64+0xc9/0xf80 [ 315.617651][ T9709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.626614][ T9709] page last free pid 23 tgid 23 stack trace: [ 315.652779][ T9709] __free_frozen_pages+0x822/0x1130 [ 315.673231][ T9709] tlb_remove_table_rcu+0x2b2/0x390 [ 315.678478][ T9709] rcu_core+0x7c0/0x15c0 [ 315.714873][ T9709] handle_softirqs+0x1ea/0x910 [ 315.740461][ T9709] run_ksoftirqd+0x38/0x60 [ 315.755337][ T9709] smpboot_thread_fn+0x3d3/0xaa0 [ 315.773205][ T9709] kthread+0x3b3/0x730 [ 315.786536][ T9709] ret_from_fork+0x754/0xaf0 [ 315.802722][ T9709] ret_from_fork_asm+0x1a/0x30 [ 315.956109][ T9727] random: crng reseeded on system resumption [ 316.971151][ T9740] random: crng reseeded on system resumption [ 318.677415][ T9770] random: crng reseeded on system resumption [ 319.773093][ T9794] random: crng reseeded on system resumption [ 321.096414][ T9816] random: crng reseeded on system resumption [ 322.708399][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.714973][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.613430][ T9859] random: crng reseeded on system resumption [ 324.495654][ T9849] Process accounting paused [ 325.540597][ T9898] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078404000 pfn:0x78404 [ 325.587227][ T9898] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 325.610144][ T9900] random: crng reseeded on system resumption [ 325.614220][ T9898] page_type: f2(table) [ 325.628926][ T9898] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 325.652447][ T9898] raw: ffff888078404000 ffff888078b4f660 00000001f2000000 0000000000000000 [ 325.731959][ T9898] page dumped because: unmovable page [ 325.788455][ T9898] page_owner tracks the page as allocated [ 325.823707][ T9898] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5486, tgid 5486 (dhcpcd), ts 56839923993, free_ts 56733408285 [ 325.880910][ T9898] post_alloc_hook+0x1e1/0x250 [ 325.886209][ T9898] get_page_from_freelist+0xe3d/0x2e10 [ 325.891733][ T9898] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 325.898219][ T9898] alloc_pages_mpol+0x1fb/0x550 [ 325.906422][ T9898] alloc_pages_noprof+0x131/0x390 [ 325.912155][ T9898] pte_alloc_one+0x1e/0x3e0 [ 325.921301][ T9898] __pte_alloc+0x6d/0x3f0 [ 325.937920][ T9898] copy_page_range+0x3f17/0x6ba0 [ 325.951865][ T9898] dup_mmap+0xbea/0x1e20 [ 325.959848][ T9898] copy_process+0x7451/0x7890 [ 325.972005][ T9898] kernel_clone+0xfc/0x930 [ 326.000145][ T9898] __do_sys_clone+0xd9/0x120 [ 326.029216][ T9898] do_syscall_64+0xc9/0xf80 [ 326.047126][ T9898] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.065835][ T9898] page last free pid 23 tgid 23 stack trace: [ 326.106996][ T9898] __free_frozen_pages+0x822/0x1130 [ 326.126510][ T9898] tlb_remove_table_rcu+0x2b2/0x390 [ 326.150109][ T9898] rcu_core+0x7c0/0x15c0 [ 326.201374][ T9898] handle_softirqs+0x1ea/0x910 [ 326.220199][ T9898] run_ksoftirqd+0x38/0x60 [ 326.257969][ T9898] smpboot_thread_fn+0x3d3/0xaa0 [ 326.297702][ T9898] kthread+0x3b3/0x730 [ 326.326016][ T9898] ret_from_fork+0x754/0xaf0 [ 326.361230][ T9898] ret_from_fork_asm+0x1a/0x30 [ 327.313437][ T9927] random: crng reseeded on system resumption [ 327.628718][ T9934] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14 [ 327.759542][ T9937] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15 [ 328.091007][ T9938] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16 [ 328.551873][ T5834] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 328.819023][ T9955] random: crng reseeded on system resumption [ 330.623048][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout [ 330.817216][ T30] audit: type=1800 audit(1770488696.860:6): pid=9989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.717" name="lu_gp_id" dev="configfs" ino=28454 res=0 errno=0 [ 330.834157][ T9989] kstrtoul() returned -22 for lu_gp_id [ 330.907219][ T9991] zswap: compressor not available [ 331.530835][T10012] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input17 [ 332.704063][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout [ 332.899760][T10035] random: crng reseeded on system resumption [ 335.028687][ T5825] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9 [ 335.119000][T10079] netlink: zone id is out of range [ 335.162029][T10079] netlink: zone id is out of range [ 335.174865][T10079] netlink: zone id is out of range [ 335.218530][T10079] netlink: zone id is out of range [ 335.286836][T10079] netlink: zone id is out of range [ 335.300160][T10079] netlink: zone id is out of range [ 335.336910][T10079] netlink: zone id is out of range [ 335.355243][T10077] netlink: set zone limit has 8 unknown bytes [ 335.380425][T10079] netlink: zone id is out of range [ 335.427914][T10079] netlink: zone id is out of range [ 335.732249][T10093] random: crng reseeded on system resumption [ 336.000860][T10101] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078404000 pfn:0x78404 [ 336.114418][T10101] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 336.156018][T10101] page_type: f2(table) [ 336.182523][T10101] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 336.242918][T10101] raw: ffff888078404000 ffff888078b4f660 00000001f2000000 0000000000000000 [ 336.262849][T10101] page dumped because: unmovable page [ 336.280671][T10101] page_owner tracks the page as allocated [ 336.300201][T10101] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5486, tgid 5486 (dhcpcd), ts 56839923993, free_ts 56733408285 [ 336.374889][T10101] post_alloc_hook+0x1e1/0x250 [ 336.406868][T10101] get_page_from_freelist+0xe3d/0x2e10 [ 336.445143][T10101] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 336.453213][T10101] alloc_pages_mpol+0x1fb/0x550 [ 336.475949][T10101] alloc_pages_noprof+0x131/0x390 [ 336.501964][T10101] pte_alloc_one+0x1e/0x3e0 [ 336.519807][T10101] __pte_alloc+0x6d/0x3f0 [ 336.538852][T10101] copy_page_range+0x3f17/0x6ba0 [ 336.563908][T10101] dup_mmap+0xbea/0x1e20 [ 336.611604][T10101] copy_process+0x7451/0x7890 [ 336.635677][T10101] kernel_clone+0xfc/0x930 [ 336.681910][T10101] __do_sys_clone+0xd9/0x120 [ 336.777680][T10101] do_syscall_64+0xc9/0xf80 [ 336.782308][T10101] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 336.892431][T10101] page last free pid 23 tgid 23 stack trace: [ 336.898461][T10101] __free_frozen_pages+0x822/0x1130 [ 336.991935][T10101] tlb_remove_table_rcu+0x2b2/0x390 [ 337.072574][T10101] rcu_core+0x7c0/0x15c0 [ 337.077091][T10101] handle_softirqs+0x1ea/0x910 [ 337.081989][T10101] run_ksoftirqd+0x38/0x60 [ 337.134203][T10101] smpboot_thread_fn+0x3d3/0xaa0 [ 337.212551][T10101] kthread+0x3b3/0x730 [ 337.216943][T10101] ret_from_fork+0x754/0xaf0 [ 337.221731][T10101] ret_from_fork_asm+0x1a/0x30 [ 337.493764][T10118] random: crng reseeded on system resumption [ 338.828769][T10107] rtc_cmos 00:00: Alarms can be up to one day in the future [ 338.865198][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 338.892963][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 338.932736][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 338.944174][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 338.951524][ T5927] rtc rtc0: __rtc_set_alarm: err=-22 [ 340.573440][T10163] random: crng reseeded on system resumption [ 342.458388][T10194] random: crng reseeded on system resumption [ 343.472077][T10211] random: crng reseeded on system resumption [ 346.576053][T10261] hub 1-0:1.0: USB hub found [ 346.611986][T10261] hub 1-0:1.0: 1 port detected [ 346.835307][T10264] random: crng reseeded on system resumption [ 348.118579][T10279] random: crng reseeded on system resumption [ 349.524363][T10301] random: crng reseeded on system resumption [ 349.700142][T10305] netlink: 504 bytes leftover after parsing attributes in process `syz.2.772'. [ 349.786861][T10305] netlink: 350 bytes leftover after parsing attributes in process `syz.2.772'. [ 350.824507][T10322] random: crng reseeded on system resumption [ 353.267699][T10347] FAULT_INJECTION: forcing a failure. [ 353.267699][T10347] name failslab, interval 1, probability 0, space 0, times 0 [ 353.456146][T10347] CPU: 1 UID: 0 PID: 10347 Comm: syz.0.779 Tainted: G U syzkaller #0 PREEMPT(full) [ 353.456190][T10347] Tainted: [U]=USER [ 353.456198][T10347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 353.456214][T10347] Call Trace: [ 353.456222][T10347] [ 353.456233][T10347] dump_stack_lvl+0x100/0x190 [ 353.456271][T10347] should_fail_ex.cold+0x5/0xa [ 353.456312][T10347] should_failslab+0xc2/0x120 [ 353.456348][T10347] ? tomoyo_realpath_from_path+0xb6/0x690 [ 353.456379][T10347] __kmalloc_noprof+0xf6/0x9c0 [ 353.456417][T10347] ? tomoyo_realpath_from_path+0xb6/0x690 [ 353.456443][T10347] tomoyo_realpath_from_path+0xb6/0x690 [ 353.456493][T10347] tomoyo_path_number_perm+0x23c/0x580 [ 353.456526][T10347] ? tomoyo_path_number_perm+0x22e/0x580 [ 353.456561][T10347] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 353.456594][T10347] ? futex_wait+0x125/0x380 [ 353.456645][T10347] ? find_held_lock+0x2b/0x80 [ 353.456667][T10347] ? hook_file_ioctl_common+0x146/0x410 [ 353.456701][T10347] ? __fget_files+0x215/0x3d0 [ 353.456732][T10347] ? __fget_files+0x21f/0x3d0 [ 353.456762][T10347] security_file_ioctl+0xd3/0x230 [ 353.456797][T10347] __x64_sys_ioctl+0xb7/0x210 [ 353.456836][T10347] do_syscall_64+0xc9/0xf80 [ 353.456869][T10347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 353.456892][T10347] RIP: 0033:0x7f132e59aeb9 [ 353.456913][T10347] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 353.456936][T10347] RSP: 002b:00007f132f4f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 353.456960][T10347] RAX: ffffffffffffffda RBX: 00007f132e815fa0 RCX: 00007f132e59aeb9 [ 353.456976][T10347] RDX: 0000200000002e00 RSI: 0000000080044df9 RDI: 0000000000000003 [ 353.456992][T10347] RBP: 00007f132e608c1f R08: 0000000000000000 R09: 0000000000000000 [ 353.457007][T10347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 353.457021][T10347] R13: 00007f132e816038 R14: 00007f132e815fa0 R15: 00007fff822f2aa8 [ 353.457053][T10347] [ 353.457070][T10347] ERROR: Out of memory at tomoyo_realpath_from_path. [ 353.701104][T10361] random: crng reseeded on system resumption [ 354.655982][T10364] Process accounting resumed [ 355.733180][T10403] random: crng reseeded on system resumption [ 356.898094][T10421] random: crng reseeded on system resumption [ 357.721118][T10439] hub 1-0:1.0: USB hub found [ 357.743154][T10439] hub 1-0:1.0: 1 port detected [ 358.148275][T10449] random: crng reseeded on system resumption [ 360.399135][T10492] random: crng reseeded on system resumption [ 360.918498][T10355] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 361.633046][T10512] random: crng reseeded on system resumption [ 362.948026][T10355] Bluetooth: hci2: command 0x0c1a tx timeout [ 364.273011][T10561] random: crng reseeded on system resumption [ 364.504676][T10564] program syz.0.812 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 365.022542][T10501] Bluetooth: hci2: command 0x0c1a tx timeout [ 366.267319][T10580] random: crng reseeded on system resumption [ 366.644833][T10586] syz.1.820(10586): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 367.054439][T10593] random: crng reseeded on system resumption [ 368.674495][T10621] random: crng reseeded on system resumption [ 370.191519][T10649] random: crng reseeded on system resumption [ 371.370000][T10673] random: crng reseeded on system resumption [ 372.808168][T10700] netlink: 186 bytes leftover after parsing attributes in process `syz.2.841'. [ 372.820151][T10700] netlink: 186 bytes leftover after parsing attributes in process `syz.2.841'. [ 373.091887][T10706] random: crng reseeded on system resumption [ 374.117647][T10731] random: crng reseeded on system resumption [ 375.201530][T10749] random: crng reseeded on system resumption [ 376.945886][T10775] random: crng reseeded on system resumption [ 378.014108][T10794] random: crng reseeded on system resumption [ 379.313011][T10817] random: crng reseeded on system resumption [ 380.921850][T10846] random: crng reseeded on system resumption [ 382.424276][T10872] nvme_fcloop: unknown parameter or missing value '7' [ 382.552723][T10876] random: crng reseeded on system resumption [ 384.149338][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.156142][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.469193][T10907] netlink: 186 bytes leftover after parsing attributes in process `syz.1.876'. [ 384.489097][T10907] netlink: 186 bytes leftover after parsing attributes in process `syz.1.876'. [ 384.879136][T10914] Process accounting paused [ 385.268050][T10923] random: crng reseeded on system resumption [ 387.053716][T10954] random: crng reseeded on system resumption [ 388.982123][T10987] random: crng reseeded on system resumption [ 389.176321][T10984] Invalid ELF header magic: != ELF [ 389.811279][T10997] random: crng reseeded on system resumption [ 392.432064][T11041] random: crng reseeded on system resumption [ 394.439608][T11072] nvme_fcloop: unknown parameter or missing value '7' [ 395.697761][T11094] hub 1-0:1.0: USB hub found [ 395.724534][T11094] hub 1-0:1.0: 1 port detected [ 395.955651][T11092] hub 1-0:1.0: USB hub found [ 395.968902][T11092] hub 1-0:1.0: 1 port detected [ 397.091383][T11122] random: crng reseeded on system resumption [ 398.142914][T11136] random: crng reseeded on system resumption [ 400.396630][T11168] random: crng reseeded on system resumption [ 401.316515][T11181] random: crng reseeded on system resumption [ 402.464507][T11197] random: crng reseeded on system resumption [ 403.509848][T11215] random: crng reseeded on system resumption [ 404.858668][T11237] random: crng reseeded on system resumption [ 406.100394][T11255] random: crng reseeded on system resumption [ 408.303768][T11286] random: crng reseeded on system resumption [ 409.050978][T11298] random: crng reseeded on system resumption [ 409.563106][T11304] nvme_fcloop: unknown parameter or missing value '7' [ 411.241740][T11334] random: crng reseeded on system resumption [ 412.766287][T11356] random: crng reseeded on system resumption [ 415.159736][T11386] random: crng reseeded on system resumption [ 416.318849][T11399] Process accounting resumed [ 416.497961][T11408] random: crng reseeded on system resumption [ 418.359251][T11442] random: crng reseeded on system resumption [ 418.703034][T11444] random: crng reseeded on system resumption [ 419.875257][T11460] random: crng reseeded on system resumption [ 421.579232][T11483] random: crng reseeded on system resumption [ 424.055657][T11521] random: crng reseeded on system resumption [ 426.087339][T11549] random: crng reseeded on system resumption [ 427.267242][T11535] rtc_cmos 00:00: Alarms can be up to one day in the future [ 427.853688][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 427.930011][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.008983][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.034166][ T5927] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.042181][ T5927] rtc rtc0: __rtc_set_alarm: err=-22 [ 428.204506][T11567] hub 1-0:1.0: USB hub found [ 428.244114][T11567] hub 1-0:1.0: 1 port detected [ 429.444195][T11605] random: crng reseeded on system resumption [ 431.257004][T11629] random: crng reseeded on system resumption [ 433.226017][T11659] Invalid ELF header magic: != ELF [ 433.300299][T11664] random: crng reseeded on system resumption [ 435.605622][T11688] random: crng reseeded on system resumption [ 440.609047][T11763] random: crng reseeded on system resumption [ 443.497175][T11798] binder: 11796:11798 ioctl c018620c 0 returned -1 [ 443.692293][T11804] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 444.450001][T11823] random: crng reseeded on system resumption [ 445.489830][T11838] random: crng reseeded on system resumption [ 445.595511][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.601803][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.603961][T11841] Process accounting paused [ 447.587653][T11869] random: crng reseeded on system resumption [ 448.984405][T11892] random: crng reseeded on system resumption [ 452.707580][T11942] random: crng reseeded on system resumption [ 454.357509][T11971] random: crng reseeded on system resumption [ 456.072625][T12001] hub 1-0:1.0: USB hub found [ 456.107619][T12001] hub 1-0:1.0: 1 port detected [ 458.798401][T12052] random: crng reseeded on system resumption [ 462.153017][T12101] Invalid ELF header magic: != ELF [ 462.546589][T12122] random: crng reseeded on system resumption [ 463.610822][T12136] hub 1-0:1.0: USB hub found [ 463.626782][T12136] hub 1-0:1.0: 1 port detected [ 463.900828][T12142] random: crng reseeded on system resumption [ 465.730802][T12167] random: crng reseeded on system resumption [ 467.188521][T12182] binder: 12177:12182 ioctl c018620c 0 returned -1 [ 470.134837][T12235] random: crng reseeded on system resumption [ 471.226920][T12259] random: crng reseeded on system resumption [ 473.338788][T12295] random: crng reseeded on system resumption [ 476.362399][T12350] random: crng reseeded on system resumption [ 477.262277][T12357] Process accounting resumed [ 478.636896][T12383] random: crng reseeded on system resumption [ 479.646368][T12396] random: crng reseeded on system resumption [ 480.707249][T12404] hub 1-0:1.0: USB hub found [ 480.712546][T12404] hub 1-0:1.0: 1 port detected [ 481.602695][T12428] random: crng reseeded on system resumption [ 482.680708][T12445] random: crng reseeded on system resumption [ 483.606145][T12449] hub 1-0:1.0: USB hub found [ 483.733597][T12449] hub 1-0:1.0: 1 port detected [ 484.828069][T12480] random: crng reseeded on system resumption [ 486.529512][T12508] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1154'. [ 486.582876][T12508] netlink: 'syz.2.1154': attribute type 1 has an invalid length. [ 486.622488][T12508] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1154'. [ 486.837809][T12515] random: crng reseeded on system resumption [ 490.000152][T12561] random: crng reseeded on system resumption [ 493.867543][T12633] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1176'. [ 493.915635][T12633] netlink: 'syz.1.1176': attribute type 1 has an invalid length. [ 494.032412][T12633] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1176'. [ 494.428711][T12639] random: crng reseeded on system resumption [ 495.881501][T12665] random: crng reseeded on system resumption [ 498.275770][T12683] FAULT_INJECTION: forcing a failure. [ 498.275770][T12683] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 498.357180][T12683] CPU: 1 UID: 0 PID: 12683 Comm: syz.0.1184 Tainted: G U L syzkaller #0 PREEMPT(full) [ 498.357228][T12683] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 498.357239][T12683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 498.357260][T12683] Call Trace: [ 498.357270][T12683] [ 498.357281][T12683] dump_stack_lvl+0x100/0x190 [ 498.357322][T12683] should_fail_ex.cold+0x5/0xa [ 498.357361][T12683] ? prepare_alloc_pages+0x16d/0x5f0 [ 498.357407][T12683] should_fail_alloc_page+0xeb/0x140 [ 498.357458][T12683] prepare_alloc_pages+0x1f0/0x5f0 [ 498.357502][T12683] ? stack_trace_save+0x8e/0xc0 [ 498.357539][T12683] __alloc_frozen_pages_noprof+0x193/0x2410 [ 498.357581][T12683] ? kasan_save_stack+0x3f/0x50 [ 498.357619][T12683] ? __lock_acquire+0x4a5/0x2630 [ 498.357655][T12683] ? __get_user_pages+0xf9c/0x34d0 [ 498.357698][T12683] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 498.357747][T12683] ? __lock_acquire+0x4a5/0x2630 [ 498.357785][T12683] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 498.357818][T12683] ? policy_nodemask+0xed/0x4f0 [ 498.357861][T12683] alloc_pages_mpol+0x1fb/0x550 [ 498.357901][T12683] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 498.357941][T12683] ? __anon_vma_prepare+0x2db/0x5e0 [ 498.357971][T12683] ? __anon_vma_prepare+0x2db/0x5e0 [ 498.358004][T12683] folio_alloc_mpol_noprof+0x36/0x340 [ 498.358058][T12683] vma_alloc_folio_noprof+0xed/0x1d0 [ 498.358100][T12683] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 498.358134][T12683] ? __anon_vma_prepare+0x2e2/0x5e0 [ 498.358158][T12683] do_anonymous_page+0xb10/0x1f40 [ 498.358181][T12683] __handle_mm_fault+0x1d3a/0x2b50 [ 498.358202][T12683] ? __pfx___handle_mm_fault+0x10/0x10 [ 498.358220][T12683] ? __pte_offset_map_lock+0x174/0x320 [ 498.358240][T12683] ? find_held_lock+0x2b/0x80 [ 498.358260][T12683] ? follow_page_pte+0x5b4/0x1410 [ 498.358285][T12683] handle_mm_fault+0x36d/0xa20 [ 498.358304][T12683] __get_user_pages+0xf9c/0x34d0 [ 498.358332][T12683] ? __pfx___get_user_pages+0x10/0x10 [ 498.358358][T12683] populate_vma_page_range+0x267/0x3f0 [ 498.358381][T12683] ? __pfx_populate_vma_page_range+0x10/0x10 [ 498.358403][T12683] ? __pfx_find_vma_intersection+0x10/0x10 [ 498.358424][T12683] ? do_mmap+0x93f/0x12f0 [ 498.358447][T12683] __mm_populate+0x107/0x3a0 [ 498.358461][T12683] ? __pfx___mm_populate+0x10/0x10 [ 498.358484][T12683] ? up_write+0x290/0x4f0 [ 498.358506][T12683] vm_mmap_pgoff+0x37f/0x470 [ 498.358530][T12683] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 498.358555][T12683] ? __x64_sys_futex+0x34f/0x4d0 [ 498.358574][T12683] ? __x64_sys_futex+0x358/0x4d0 [ 498.358595][T12683] ksys_mmap_pgoff+0x7d/0x5b0 [ 498.358628][T12683] __x64_sys_mmap+0x125/0x190 [ 498.358646][T12683] do_syscall_64+0xc9/0xf80 [ 498.358667][T12683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.358682][T12683] RIP: 0033:0x7f132e59aeb9 [ 498.358695][T12683] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 498.358710][T12683] RSP: 002b:00007f132f4d0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 498.358733][T12683] RAX: ffffffffffffffda RBX: 00007f132e816090 RCX: 00007f132e59aeb9 [ 498.358743][T12683] RDX: 00000000000000df RSI: 0000000000000005 RDI: 0000000000000000 [ 498.358753][T12683] RBP: 00007f132e608c1f R08: 0000000000000007 R09: 0000000000028000 [ 498.358762][T12683] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 498.358774][T12683] R13: 00007f132e816128 R14: 00007f132e816090 R15: 00007fff822f2aa8 [ 498.358794][T12683] [ 499.311099][T12716] random: crng reseeded on system resumption [ 500.336749][T12727] hub 1-0:1.0: USB hub found [ 500.352769][T12727] hub 1-0:1.0: 1 port detected [ 500.522878][T12744] random: crng reseeded on system resumption [ 501.722861][ T30] audit: type=1800 audit(1770488867.740:7): pid=12756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1199" name="dbroot" dev="configfs" ino=45061 res=0 errno=0 [ 504.717196][T12831] random: crng reseeded on system resumption [ 507.026402][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 507.033336][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 507.671570][T12867] Process accounting paused [ 509.173949][T12910] random: crng reseeded on system resumption [ 509.847699][T12927] random: crng reseeded on system resumption [ 511.266864][T12947] random: crng reseeded on system resumption [ 513.460483][T12999] random: crng reseeded on system resumption [ 513.835873][T12996] netlink: 4128 bytes leftover after parsing attributes in process `syz.3.1237'. [ 514.430690][T13007] random: crng reseeded on system resumption [ 514.833866][ T30] audit: type=1800 audit(1770488880.880:8): pid=13015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1240" name="dbroot" dev="configfs" ino=45016 res=0 errno=0 [ 516.826901][T13049] random: crng reseeded on system resumption [ 518.763086][T13080] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1252'. [ 518.809725][T13080] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1252'. [ 519.334204][T13091] random: crng reseeded on system resumption [ 521.244458][T13125] random: crng reseeded on system resumption [ 523.099950][T13160] random: crng reseeded on system resumption [ 524.267291][T13169] hub 1-0:1.0: USB hub found [ 524.302710][T13169] hub 1-0:1.0: 1 port detected [ 524.432885][T13188] random: crng reseeded on system resumption [ 525.679453][T13208] random: crng reseeded on system resumption [ 527.083006][T13230] random: crng reseeded on system resumption [ 527.926702][T13243] random: crng reseeded on system resumption [ 528.621940][T13255] random: crng reseeded on system resumption [ 529.873997][T13270] netlink: 4128 bytes leftover after parsing attributes in process `syz.0.1288'. [ 530.012845][T13278] random: crng reseeded on system resumption [ 531.981725][T13314] random: crng reseeded on system resumption [ 533.546723][T13339] random: crng reseeded on system resumption [ 535.955541][T13384] random: crng reseeded on system resumption [ 538.081829][T13409] Process accounting resumed [ 538.350062][T13426] random: crng reseeded on system resumption [ 540.444739][T13463] random: crng reseeded on system resumption [ 542.695470][T13504] random: crng reseeded on system resumption [ 547.582121][T13598] netlink: 4128 bytes leftover after parsing attributes in process `syz.2.1346'. [ 550.115383][T13658] random: crng reseeded on system resumption [ 551.323402][T13683] random: crng reseeded on system resumption [ 553.571114][T13718] random: crng reseeded on system resumption [ 554.239883][T13725] futex_wake_op: syz.3.1369 tries to shift op by -1; fix this program [ 554.283884][T13725] FAULT_INJECTION: forcing a failure. [ 554.283884][T13725] name failslab, interval 1, probability 0, space 0, times 0 [ 554.323842][T13725] CPU: 0 UID: 0 PID: 13725 Comm: syz.3.1369 Tainted: G U L syzkaller #0 PREEMPT(full) [ 554.323879][T13725] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 554.323885][T13725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 554.323894][T13725] Call Trace: [ 554.323900][T13725] [ 554.323907][T13725] dump_stack_lvl+0x100/0x190 [ 554.323930][T13725] should_fail_ex.cold+0x5/0xa [ 554.323954][T13725] should_failslab+0xc2/0x120 [ 554.323976][T13725] kmem_cache_alloc_noprof+0x83/0x780 [ 554.323994][T13725] ? fsnotify_add_mark_locked+0x2fd/0xfc0 [ 554.324013][T13725] ? fsnotify_add_mark_locked+0x30e/0xfc0 [ 554.324036][T13725] ? fsnotify_add_mark_locked+0x30e/0xfc0 [ 554.324055][T13725] fsnotify_add_mark_locked+0x30e/0xfc0 [ 554.324080][T13725] do_fanotify_mark+0x3033/0x4010 [ 554.324103][T13725] ? __pfx_do_fanotify_mark+0x10/0x10 [ 554.324119][T13725] ? __x64_sys_futex+0x358/0x4d0 [ 554.324141][T13725] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 554.324166][T13725] ? syscall_user_dispatch+0x76/0x130 [ 554.324190][T13725] __x64_sys_fanotify_mark+0xbd/0x160 [ 554.324205][T13725] ? do_syscall_64+0x94/0xf80 [ 554.324224][T13725] do_syscall_64+0xc9/0xf80 [ 554.324242][T13725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.324258][T13725] RIP: 0033:0x7fbb2cf9aeb9 [ 554.324271][T13725] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 554.324295][T13725] RSP: 002b:00007fbb2debc028 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 554.324310][T13725] RAX: ffffffffffffffda RBX: 00007fbb2d215fa0 RCX: 00007fbb2cf9aeb9 [ 554.324320][T13725] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 554.324330][T13725] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 554.324339][T13725] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 554.324348][T13725] R13: 00007fbb2d216038 R14: 00007fbb2d215fa0 R15: 00007ffd4f0848c8 [ 554.324369][T13725] [ 555.666381][T13749] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1374'. [ 555.714602][T13749] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1374'. [ 557.696251][T13785] random: crng reseeded on system resumption [ 560.228980][T13828] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1389'. [ 562.918020][T13870] random: crng reseeded on system resumption [ 564.046310][T13886] random: crng reseeded on system resumption [ 565.453939][T13905] random: crng reseeded on system resumption [ 568.472654][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.479246][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.698655][T13956] netlink: 4128 bytes leftover after parsing attributes in process `syz.1.1407'. [ 568.953902][T13953] Process accounting paused [ 570.284019][T14009] futex_wake_op: syz.1.1417 tries to shift op by -1; fix this program [ 570.359397][T14009] FAULT_INJECTION: forcing a failure. [ 570.359397][T14009] name failslab, interval 1, probability 0, space 0, times 0 [ 570.404936][T14009] CPU: 1 UID: 0 PID: 14009 Comm: syz.1.1417 Tainted: G U L syzkaller #0 PREEMPT(full) [ 570.404997][T14009] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 570.405008][T14009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 570.405024][T14009] Call Trace: [ 570.405033][T14009] [ 570.405044][T14009] dump_stack_lvl+0x100/0x190 [ 570.405084][T14009] should_fail_ex.cold+0x5/0xa [ 570.405131][T14009] should_failslab+0xc2/0x120 [ 570.405170][T14009] __kmalloc_node_noprof+0xfb/0x9e0 [ 570.405204][T14009] ? lockdep_init_map_type+0x5c/0x250 [ 570.405244][T14009] ? mempool_init_node+0x11b/0x6e0 [ 570.405288][T14009] ? __pfx_mempool_kmalloc+0x10/0x10 [ 570.405329][T14009] ? __pfx_mempool_kfree+0x10/0x10 [ 570.405364][T14009] ? mempool_init_node+0x11b/0x6e0 [ 570.405396][T14009] mempool_init_node+0x11b/0x6e0 [ 570.405422][T14009] ? __pfx_mempool_kmalloc+0x10/0x10 [ 570.405441][T14009] ? __pfx_mempool_kfree+0x10/0x10 [ 570.405461][T14009] mempool_init_noprof+0x3a/0x50 [ 570.405484][T14009] do_fanotify_mark+0x2ee4/0x4010 [ 570.405507][T14009] ? __pfx_do_fanotify_mark+0x10/0x10 [ 570.405527][T14009] ? __x64_sys_futex+0x358/0x4d0 [ 570.405549][T14009] ? arch_syscall_is_vdso_sigreturn+0xb6/0x200 [ 570.405572][T14009] ? syscall_user_dispatch+0x76/0x130 [ 570.405597][T14009] __x64_sys_fanotify_mark+0xbd/0x160 [ 570.405611][T14009] ? do_syscall_64+0x94/0xf80 [ 570.405630][T14009] do_syscall_64+0xc9/0xf80 [ 570.405648][T14009] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.405663][T14009] RIP: 0033:0x7ff49cd9aeb9 [ 570.405676][T14009] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 570.405691][T14009] RSP: 002b:00007ff49dcb9028 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 570.405708][T14009] RAX: ffffffffffffffda RBX: 00007ff49d015fa0 RCX: 00007ff49cd9aeb9 [ 570.405718][T14009] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 570.405727][T14009] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 570.405736][T14009] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 570.405744][T14009] R13: 00007ff49d016038 R14: 00007ff49d015fa0 R15: 00007fff5beb5928 [ 570.405763][T14009] [ 574.949804][T14100] random: crng reseeded on system resumption [ 576.309897][T14130] netlink: 'syz.2.1438': attribute type 1 has an invalid length. [ 577.550492][T14152] random: crng reseeded on system resumption [ 583.471070][T14245] FAULT_INJECTION: forcing a failure. [ 583.471070][T14245] name failslab, interval 1, probability 0, space 0, times 0 [ 583.526854][T14245] CPU: 0 UID: 0 PID: 14245 Comm: syz.3.1459 Tainted: G U L syzkaller #0 PREEMPT(full) [ 583.526883][T14245] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 583.526889][T14245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 583.526899][T14245] Call Trace: [ 583.526904][T14245] [ 583.526910][T14245] dump_stack_lvl+0x100/0x190 [ 583.526934][T14245] should_fail_ex.cold+0x5/0xa [ 583.526960][T14245] should_failslab+0xc2/0x120 [ 583.526981][T14245] __kmalloc_cache_noprof+0x80/0x810 [ 583.526998][T14245] ? percpu_ref_init+0xec/0x3f0 [ 583.527019][T14245] ? percpu_ref_init+0xec/0x3f0 [ 583.527035][T14245] ? __pfx_css_release+0x10/0x10 [ 583.527056][T14245] percpu_ref_init+0xec/0x3f0 [ 583.527076][T14245] cgroup_mkdir+0x2a0/0x12d0 [ 583.527094][T14245] ? __pfx_cgroup_mkdir+0x10/0x10 [ 583.527110][T14245] kernfs_iop_mkdir+0x111/0x190 [ 583.527130][T14245] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 583.527149][T14245] vfs_mkdir+0x729/0xb50 [ 583.527176][T14245] do_mkdirat+0x435/0x590 [ 583.527195][T14245] ? __pfx_do_mkdirat+0x10/0x10 [ 583.527212][T14245] ? strncpy_from_user+0x19d/0x2d0 [ 583.527235][T14245] ? getname_flags.part.0+0x1c5/0x540 [ 583.527258][T14245] __x64_sys_mkdir+0xef/0x140 [ 583.527277][T14245] do_syscall_64+0xc9/0xf80 [ 583.527296][T14245] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 583.527311][T14245] RIP: 0033:0x7fbb2cf9aeb9 [ 583.527323][T14245] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 583.527338][T14245] RSP: 002b:00007fbb2de9b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 583.527352][T14245] RAX: ffffffffffffffda RBX: 00007fbb2d216090 RCX: 00007fbb2cf9aeb9 [ 583.527362][T14245] RDX: 0000000000000000 RSI: 00000000000007ff RDI: 0000200000000000 [ 583.527371][T14245] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 583.527379][T14245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 583.527388][T14245] R13: 00007fbb2d216128 R14: 00007fbb2d216090 R15: 00007ffd4f0848c8 [ 583.527408][T14245] [ 584.161857][T14256] FAULT_INJECTION: forcing a failure. [ 584.161857][T14256] name failslab, interval 1, probability 0, space 0, times 0 [ 584.179250][T14256] CPU: 0 UID: 0 PID: 14256 Comm: syz.0.1462 Tainted: G U L syzkaller #0 PREEMPT(full) [ 584.179279][T14256] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 584.179285][T14256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 584.179294][T14256] Call Trace: [ 584.179299][T14256] [ 584.179305][T14256] dump_stack_lvl+0x100/0x190 [ 584.179328][T14256] should_fail_ex.cold+0x5/0xa [ 584.179353][T14256] should_failslab+0xc2/0x120 [ 584.179374][T14256] __kmalloc_cache_noprof+0x80/0x810 [ 584.179393][T14256] ? percpu_ref_init+0xec/0x3f0 [ 584.179414][T14256] ? percpu_ref_init+0xec/0x3f0 [ 584.179430][T14256] ? __pfx_css_release+0x10/0x10 [ 584.179450][T14256] percpu_ref_init+0xec/0x3f0 [ 584.179469][T14256] cgroup_mkdir+0x2a0/0x12d0 [ 584.179487][T14256] ? __pfx_cgroup_mkdir+0x10/0x10 [ 584.179503][T14256] kernfs_iop_mkdir+0x111/0x190 [ 584.179524][T14256] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 584.179543][T14256] vfs_mkdir+0x729/0xb50 [ 584.179569][T14256] do_mkdirat+0x435/0x590 [ 584.179588][T14256] ? __pfx_do_mkdirat+0x10/0x10 [ 584.179605][T14256] ? strncpy_from_user+0x19d/0x2d0 [ 584.179627][T14256] ? getname_flags.part.0+0x1c5/0x540 [ 584.179659][T14256] __x64_sys_mkdir+0xef/0x140 [ 584.179678][T14256] do_syscall_64+0xc9/0xf80 [ 584.179698][T14256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 584.179713][T14256] RIP: 0033:0x7f132e59aeb9 [ 584.179726][T14256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 584.179741][T14256] RSP: 002b:00007f132f4f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 584.179756][T14256] RAX: ffffffffffffffda RBX: 00007f132e815fa0 RCX: 00007f132e59aeb9 [ 584.179766][T14256] RDX: 0000000000000000 RSI: 00000000000007ff RDI: 0000200000000000 [ 584.179775][T14256] RBP: 00007f132e608c1f R08: 0000000000000000 R09: 0000000000000000 [ 584.179784][T14256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 584.179792][T14256] R13: 00007f132e816038 R14: 00007f132e815fa0 R15: 00007fff822f2aa8 [ 584.179812][T14256] [ 587.460521][T14321] random: crng reseeded on system resumption [ 589.478674][T14349] netlink: 'syz.1.1479': attribute type 23 has an invalid length. [ 593.255126][T14391] zswap: compressor not available [ 594.173079][T14415] netlink: 'syz.1.1493': attribute type 1 has an invalid length. [ 594.306849][T14417] random: crng reseeded on system resumption [ 596.355825][T14452] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1507'. [ 597.104274][T14462] random: crng reseeded on system resumption [ 599.387132][T14474] Process accounting resumed [ 600.097630][T14506] random: crng reseeded on system resumption [ 602.474157][T14548] random: crng reseeded on system resumption [ 603.936837][T14570] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1523'. [ 606.301742][T14621] random: crng reseeded on system resumption [ 607.884050][T14645] netlink: 'syz.0.1533': attribute type 1 has an invalid length. [ 611.828080][T14708] random: crng reseeded on system resumption [ 612.869364][T14718] random: crng reseeded on system resumption [ 614.768439][T14750] random: crng reseeded on system resumption [ 616.468826][T14773] ubi0: attaching mtd0 [ 616.486955][T14773] ubi0: scanning is finished [ 616.497850][T14773] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 616.805682][T14773] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 618.843941][T14817] zswap: compressor not available [ 623.995731][T14919] ubi0: attaching mtd0 [ 624.001880][T14919] ubi0: scanning is finished [ 624.003363][T14909] zswap: compressor not available [ 624.007247][T14919] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 624.349363][T14919] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 625.443167][ T5909] usb usb40-port2: attempt power cycle [ 626.053095][ T5909] usb usb40-port2: unable to enumerate USB device [ 628.108785][T14999] random: crng reseeded on system resumption [ 628.496458][T15010] netlink: 'syz.3.1596': attribute type 1 has an invalid length. [ 629.814562][T15035] random: crng reseeded on system resumption [ 629.905884][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.912695][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.771889][T15029] Process accounting paused [ 631.029971][T15063] netlink: 'syz.3.1607': attribute type 11 has an invalid length. [ 631.062457][T15063] netlink: 'syz.3.1607': attribute type 11 has an invalid length. [ 631.071522][T15063] netlink: 'syz.3.1607': attribute type 11 has an invalid length. [ 631.148445][T15063] netlink: 'syz.3.1607': attribute type 11 has an invalid length. [ 631.415448][T15071] random: crng reseeded on system resumption [ 633.193918][T15097] random: crng reseeded on system resumption [ 633.247450][T15093] zswap: compressor not available [ 634.298996][T15117] random: crng reseeded on system resumption [ 637.272904][T15174] random: crng reseeded on system resumption [ 638.339738][T15181] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 638.370312][T15181] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 639.779162][T15210] random: crng reseeded on system resumption [ 642.250100][T15249] random: crng reseeded on system resumption [ 642.955759][T15253] FAULT_INJECTION: forcing a failure. [ 642.955759][T15253] name failslab, interval 1, probability 0, space 0, times 0 [ 643.001779][T15253] CPU: 1 UID: 0 PID: 15253 Comm: syz.3.1637 Tainted: G U L syzkaller #0 PREEMPT(full) [ 643.001839][T15253] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 643.001849][T15253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 643.001866][T15253] Call Trace: [ 643.001876][T15253] [ 643.001887][T15253] dump_stack_lvl+0x100/0x190 [ 643.001926][T15253] should_fail_ex.cold+0x5/0xa [ 643.001972][T15253] should_failslab+0xc2/0x120 [ 643.002010][T15253] ? binder_open+0x168/0xe50 [ 643.002050][T15253] __kmalloc_noprof+0xf6/0x9c0 [ 643.002088][T15253] ? binder_open+0x168/0xe50 [ 643.002122][T15253] binder_open+0x168/0xe50 [ 643.002161][T15253] ? __pfx_apparmor_file_open+0x10/0x10 [ 643.002201][T15253] ? __pfx_binder_open+0x10/0x10 [ 643.002242][T15253] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 643.002282][T15253] do_dentry_open+0x73e/0x1570 [ 643.002314][T15253] ? __pfx_binder_open+0x10/0x10 [ 643.002354][T15253] ? security_inode_permission+0xbf/0x250 [ 643.002401][T15253] vfs_open+0x82/0x3f0 [ 643.002446][T15253] path_openat+0x21dc/0x3120 [ 643.002491][T15253] ? __pfx_path_openat+0x10/0x10 [ 643.002537][T15253] do_filp_open+0x1f7/0x420 [ 643.002572][T15253] ? __pfx_do_filp_open+0x10/0x10 [ 643.002630][T15253] ? _raw_spin_unlock+0x28/0x50 [ 643.002657][T15253] ? alloc_fd+0x476/0x790 [ 643.002699][T15253] do_sys_openat2+0x12e/0x220 [ 643.002741][T15253] ? __pfx_do_sys_openat2+0x10/0x10 [ 643.002796][T15253] __x64_sys_openat+0x12d/0x210 [ 643.002854][T15253] ? __pfx___x64_sys_openat+0x10/0x10 [ 643.002896][T15253] ? xfd_validate_state+0x129/0x190 [ 643.002952][T15253] do_syscall_64+0xc9/0xf80 [ 643.002989][T15253] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 643.003017][T15253] RIP: 0033:0x7fbb2cf9aeb9 [ 643.003040][T15253] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 643.003067][T15253] RSP: 002b:00007fbb2debc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 643.003095][T15253] RAX: ffffffffffffffda RBX: 00007fbb2d215fa0 RCX: 00007fbb2cf9aeb9 [ 643.003114][T15253] RDX: 0000000000181241 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 643.003133][T15253] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 643.003150][T15253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 643.003167][T15253] R13: 00007fbb2d216038 R14: 00007fbb2d215fa0 R15: 00007ffd4f0848c8 [ 643.003205][T15253] [ 643.889604][T15267] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1637'. [ 645.002464][T15294] random: crng reseeded on system resumption [ 645.615000][T15308] netlink: 'syz.2.1644': attribute type 1 has an invalid length. [ 647.480098][T15335] random: crng reseeded on system resumption [ 650.287017][T15389] random: crng reseeded on system resumption [ 652.018929][T15417] random: crng reseeded on system resumption [ 654.843534][T15468] random: crng reseeded on system resumption [ 656.714394][T15501] Console: switching to colour VGA+ 80x25 [ 659.101399][T15546] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1684'. [ 661.218850][T15584] Process accounting resumed [ 661.933877][T15610] random: crng reseeded on system resumption [ 663.286937][T15630] random: crng reseeded on system resumption [ 664.141231][T15648] FAULT_INJECTION: forcing a failure. [ 664.141231][T15648] name failslab, interval 1, probability 0, space 0, times 0 [ 664.214473][T15648] CPU: 1 UID: 0 PID: 15648 Comm: syz.2.1700 Tainted: G U L syzkaller #0 PREEMPT(full) [ 664.214501][T15648] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 664.214507][T15648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 664.214516][T15648] Call Trace: [ 664.214522][T15648] [ 664.214528][T15648] dump_stack_lvl+0x100/0x190 [ 664.214549][T15648] should_fail_ex.cold+0x5/0xa [ 664.214574][T15648] should_failslab+0xc2/0x120 [ 664.214595][T15648] kmem_cache_alloc_lru_noprof+0x8e/0x7d0 [ 664.214614][T15648] ? __d_lookup+0x25c/0x4a0 [ 664.214628][T15648] ? __d_alloc+0x34/0xa80 [ 664.214648][T15648] ? __d_alloc+0x34/0xa80 [ 664.214664][T15648] __d_alloc+0x34/0xa80 [ 664.214684][T15648] d_alloc+0x4a/0x1e0 [ 664.214709][T15648] lookup_one_qstr_excl+0x175/0x250 [ 664.214733][T15648] start_dirop+0x59/0xb0 [ 664.214749][T15648] simple_start_creating+0xf9/0x110 [ 664.214765][T15648] ? __pfx_simple_start_creating+0x10/0x10 [ 664.214782][T15648] ? mntput+0x70/0xa0 [ 664.214796][T15648] ? simple_pin_fs+0xa3/0x190 [ 664.214810][T15648] debugfs_start_creating.part.0+0x82/0x170 [ 664.214830][T15648] __debugfs_create_file+0xb3/0x4f0 [ 664.214850][T15648] debugfs_create_file_full+0x41/0x60 [ 664.214870][T15648] binder_open+0xa27/0xe50 [ 664.214893][T15648] ? __pfx_apparmor_file_open+0x10/0x10 [ 664.214912][T15648] ? __pfx_binder_open+0x10/0x10 [ 664.214936][T15648] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 664.214958][T15648] do_dentry_open+0x73e/0x1570 [ 664.214975][T15648] ? __pfx_binder_open+0x10/0x10 [ 664.214996][T15648] ? security_inode_permission+0xbf/0x250 [ 664.215021][T15648] vfs_open+0x82/0x3f0 [ 664.215043][T15648] path_openat+0x21dc/0x3120 [ 664.215067][T15648] ? __pfx_path_openat+0x10/0x10 [ 664.215090][T15648] do_filp_open+0x1f7/0x420 [ 664.215109][T15648] ? __pfx_do_filp_open+0x10/0x10 [ 664.215139][T15648] ? _raw_spin_unlock+0x28/0x50 [ 664.215154][T15648] ? alloc_fd+0x476/0x790 [ 664.215176][T15648] do_sys_openat2+0x12e/0x220 [ 664.215198][T15648] ? __pfx_do_sys_openat2+0x10/0x10 [ 664.215227][T15648] __x64_sys_openat+0x12d/0x210 [ 664.215250][T15648] ? __pfx___x64_sys_openat+0x10/0x10 [ 664.215271][T15648] ? xfd_validate_state+0x129/0x190 [ 664.215304][T15648] do_syscall_64+0xc9/0xf80 [ 664.215323][T15648] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 664.215338][T15648] RIP: 0033:0x7f69c799aeb9 [ 664.215351][T15648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 664.215365][T15648] RSP: 002b:00007f69c8850028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 664.215387][T15648] RAX: ffffffffffffffda RBX: 00007f69c7c15fa0 RCX: 00007f69c799aeb9 [ 664.215404][T15648] RDX: 0000000000181241 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 664.215421][T15648] RBP: 00007f69c7a08c1f R08: 0000000000000000 R09: 0000000000000000 [ 664.215438][T15648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 664.215451][T15648] R13: 00007f69c7c16038 R14: 00007f69c7c15fa0 R15: 00007ffd2f13f788 [ 664.215472][T15648] [ 664.961366][T15657] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1700'. [ 666.239752][T15675] Invalid ELF header magic: != ELF [ 670.175757][T15741] random: crng reseeded on system resumption [ 671.785956][T15777] random: crng reseeded on system resumption [ 673.319975][T15801] random: crng reseeded on system resumption [ 675.373621][T15834] random: crng reseeded on system resumption [ 676.819427][T15852] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 677.022687][T15858] netlink: 'syz.2.1735': attribute type 1 has an invalid length. [ 677.895085][T15872] zswap: compressor not available [ 678.940865][T15892] random: crng reseeded on system resumption [ 680.155869][T10355] Bluetooth: hci3: unexpected subevent 0x03 length: 253 > 9 [ 681.255520][T15928] random: crng reseeded on system resumption [ 682.940891][T15945] zswap: compressor not available [ 685.278325][T15988] random: crng reseeded on system resumption [ 687.161614][T16029] random: crng reseeded on system resumption [ 689.012028][T16044] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1769'. [ 689.022864][T16044] : renamed from ip6tnl0 (while UP) [ 689.953605][T16063] random: crng reseeded on system resumption [ 690.975108][T16078] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 690.981642][T16078] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 691.023773][T16078] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 691.042728][T16078] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 691.348577][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.355592][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 691.447372][T16083] Invalid ELF header magic: != ELF [ 692.131976][T16100] random: crng reseeded on system resumption [ 692.214416][T16097] netlink: 'syz.0.1778': attribute type 1 has an invalid length. [ 692.349286][T16083] Process accounting paused [ 693.032412][T10355] Bluetooth: hci0: command 0x0c1a tx timeout [ 693.042227][T10355] Bluetooth: hci3: command 0x0c1a tx timeout [ 693.106398][T16115] Bluetooth: hci2: command 0x0c1a tx timeout [ 693.114465][T10355] Bluetooth: hci1: command 0x0c1a tx timeout [ 694.257359][T16137] random: crng reseeded on system resumption [ 697.920303][T16186] random: crng reseeded on system resumption [ 701.750885][T16238] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1807'. [ 701.820664][T16238] : renamed from ip6tnl0 (while UP) [ 703.082557][T16254] random: crng reseeded on system resumption [ 707.164302][T16321] random: crng reseeded on system resumption [ 708.649651][T16342] FAULT_INJECTION: forcing a failure. [ 708.649651][T16342] name failslab, interval 1, probability 0, space 0, times 0 [ 708.747800][T16342] CPU: 1 UID: 0 PID: 16342 Comm: syz.3.1820 Tainted: G U L syzkaller #0 PREEMPT(full) [ 708.747850][T16342] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 708.747862][T16342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 708.747879][T16342] Call Trace: [ 708.747888][T16342] [ 708.747899][T16342] dump_stack_lvl+0x100/0x190 [ 708.747939][T16342] should_fail_ex.cold+0x5/0xa [ 708.747995][T16342] should_failslab+0xc2/0x120 [ 708.748035][T16342] kmem_cache_alloc_noprof+0x83/0x780 [ 708.748086][T16342] ? __proc_create+0xc2/0x8c0 [ 708.748129][T16342] ? __proc_create+0x2cb/0x8c0 [ 708.748173][T16342] ? __proc_create+0x2cb/0x8c0 [ 708.748213][T16342] __proc_create+0x2cb/0x8c0 [ 708.748259][T16342] ? __pfx___proc_create+0x10/0x10 [ 708.748307][T16342] ? _raw_write_unlock+0x28/0x50 [ 708.748338][T16342] ? proc_register+0x559/0x8a0 [ 708.748376][T16342] proc_create_reg+0x75/0x170 [ 708.748407][T16342] proc_create_net_data+0x8e/0x1c0 [ 708.748434][T16342] ? __pfx_proc_create_net_data+0x10/0x10 [ 708.748473][T16342] sctp_proc_init+0x14c/0x270 [ 708.748510][T16342] ? __pfx_sctp_defaults_init+0x10/0x10 [ 708.748547][T16342] sctp_defaults_init+0x758/0xd90 [ 708.748587][T16342] ? __pfx_sctp_defaults_init+0x10/0x10 [ 708.748626][T16342] ops_init+0x1e2/0x5f0 [ 708.748671][T16342] setup_net+0x118/0x3a0 [ 708.748697][T16342] ? __pfx_setup_net+0x10/0x10 [ 708.748719][T16342] ? lockdep_init_map_type+0x5c/0x250 [ 708.748758][T16342] ? mutex_init_lockep+0x110/0x150 [ 708.748802][T16342] copy_net_ns+0x46f/0x7c0 [ 708.748834][T16342] create_new_namespaces+0x3ea/0xab0 [ 708.748876][T16342] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 708.748910][T16342] ksys_unshare+0x455/0xab0 [ 708.748952][T16342] ? __pfx_ksys_unshare+0x10/0x10 [ 708.748991][T16342] ? xfd_validate_state+0x129/0x190 [ 708.749044][T16342] __x64_sys_unshare+0x31/0x40 [ 708.749082][T16342] do_syscall_64+0xc9/0xf80 [ 708.749118][T16342] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.749146][T16342] RIP: 0033:0x7fbb2cf9aeb9 [ 708.749169][T16342] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 708.749196][T16342] RSP: 002b:00007fbb2de9b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 708.749223][T16342] RAX: ffffffffffffffda RBX: 00007fbb2d216090 RCX: 00007fbb2cf9aeb9 [ 708.749243][T16342] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 708.749259][T16342] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 708.749277][T16342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 708.749294][T16342] R13: 00007fbb2d216128 R14: 00007fbb2d216090 R15: 00007ffd4f0848c8 [ 708.749332][T16342] [ 710.306840][T16369] random: crng reseeded on system resumption [ 711.409368][T16394] random: crng reseeded on system resumption [ 712.092062][T16403] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1830: iget: checksum invalid [ 712.126193][T16403] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 712.126383][T16403] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1830: iget: checksum invalid [ 712.126521][T16403] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 712.126640][T16403] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1830: iget: checksum invalid [ 712.126770][T16403] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 712.126876][T16403] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1830: iget: checksum invalid [ 712.127422][T16403] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 712.127451][T16403] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 712.127475][T16403] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 714.015387][T16445] FAULT_INJECTION: forcing a failure. [ 714.015387][T16445] name failslab, interval 1, probability 0, space 0, times 0 [ 714.153147][T16445] CPU: 1 UID: 0 PID: 16445 Comm: syz.1.1838 Tainted: G U L syzkaller #0 PREEMPT(full) [ 714.153196][T16445] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 714.153207][T16445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 714.153223][T16445] Call Trace: [ 714.153232][T16445] [ 714.153242][T16445] dump_stack_lvl+0x100/0x190 [ 714.153280][T16445] should_fail_ex.cold+0x5/0xa [ 714.153325][T16445] should_failslab+0xc2/0x120 [ 714.153363][T16445] ? lsm_blob_alloc+0x68/0x90 [ 714.153392][T16445] __kmalloc_noprof+0xf6/0x9c0 [ 714.153432][T16445] ? lsm_blob_alloc+0x68/0x90 [ 714.153459][T16445] lsm_blob_alloc+0x68/0x90 [ 714.153488][T16445] security_sk_alloc+0x2d/0x290 [ 714.153525][T16445] sk_prot_alloc+0x1d1/0x2a0 [ 714.153554][T16445] sk_alloc+0x36/0xe80 [ 714.153588][T16445] unix_create1+0xa6/0x700 [ 714.153618][T16445] unix_create+0x145/0x270 [ 714.153644][T16445] __sock_create+0x339/0x860 [ 714.153682][T16445] __sys_socketpair+0x261/0x5b0 [ 714.153717][T16445] ? __pfx___sys_socketpair+0x10/0x10 [ 714.153762][T16445] __x64_sys_socketpair+0x96/0x100 [ 714.153792][T16445] ? lockdep_hardirqs_on+0x78/0x100 [ 714.153824][T16445] do_syscall_64+0xc9/0xf80 [ 714.153870][T16445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 714.153896][T16445] RIP: 0033:0x7ff49cd9aeb9 [ 714.153917][T16445] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 714.153944][T16445] RSP: 002b:00007ff49dc98028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 714.153971][T16445] RAX: ffffffffffffffda RBX: 00007ff49d016090 RCX: 00007ff49cd9aeb9 [ 714.153990][T16445] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 714.154007][T16445] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 714.154024][T16445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 714.154040][T16445] R13: 00007ff49d016128 R14: 00007ff49d016090 R15: 00007fff5beb5928 [ 714.154077][T16445] [ 715.493353][T16466] random: crng reseeded on system resumption [ 717.311637][T16494] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1847'. [ 717.412954][T16494] netlink: 'syz.0.1847': attribute type 1 has an invalid length. [ 717.715643][T16494] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1847'. [ 718.419253][T16509] random: crng reseeded on system resumption [ 720.410151][T16543] random: crng reseeded on system resumption [ 721.845250][T16566] binder: 16546:16566 ioctl c018620c 0 returned -1 [ 722.418054][T16570] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1860'. [ 722.766898][T16566] Process accounting resumed [ 723.877137][T16592] random: crng reseeded on system resumption [ 724.241555][T16598] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18 [ 724.836396][T16603] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1868'. [ 724.896629][T16603] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1868'. [ 725.385647][T16610] program syz.1.1871 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 725.452703][ T30] audit: type=1807 audit(4294967333.690:9): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 725.494401][T16609] ima: policy update failed [ 725.513649][ T30] audit: type=1802 audit(4294967333.690:10): pid=16610 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.1871" res=0 errno=0 [ 725.592298][ T30] audit: type=1802 audit(4294967333.740:11): pid=16609 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1871" res=0 errno=0 [ 725.928718][T16626] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 727.255179][T16619] kexec: Could not allocate control_code_buffer [ 727.389358][T16646] FAULT_INJECTION: forcing a failure. [ 727.389358][T16646] name failslab, interval 1, probability 0, space 0, times 0 [ 727.446345][T16646] CPU: 0 UID: 0 PID: 16646 Comm: syz.1.1878 Tainted: G U L syzkaller #0 PREEMPT(full) [ 727.446374][T16646] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 727.446380][T16646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 727.446390][T16646] Call Trace: [ 727.446396][T16646] [ 727.446404][T16646] dump_stack_lvl+0x100/0x190 [ 727.446427][T16646] should_fail_ex.cold+0x5/0xa [ 727.446452][T16646] should_failslab+0xc2/0x120 [ 727.446472][T16646] __kmalloc_cache_noprof+0x80/0x810 [ 727.446489][T16646] ? trace_pid_list_alloc+0x232/0x480 [ 727.446516][T16646] ? trace_pid_list_alloc+0x232/0x480 [ 727.446545][T16646] trace_pid_list_alloc+0x232/0x480 [ 727.446571][T16646] trace_pid_write+0x110/0x480 [ 727.446591][T16646] ? __pfx_trace_pid_write+0x10/0x10 [ 727.446611][T16646] ? update_last_data+0xaa/0x510 [ 727.446639][T16646] event_pid_write.isra.0+0x1e4/0x7f0 [ 727.446657][T16646] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 727.446678][T16646] vfs_write+0x2aa/0x1070 [ 727.446695][T16646] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 727.446713][T16646] ? __pfx_vfs_write+0x10/0x10 [ 727.446727][T16646] ? find_held_lock+0x2b/0x80 [ 727.446743][T16646] ? __fget_files+0x215/0x3d0 [ 727.446762][T16646] ? __fget_files+0x21f/0x3d0 [ 727.446783][T16646] ksys_write+0x12a/0x250 [ 727.446799][T16646] ? __pfx_ksys_write+0x10/0x10 [ 727.446821][T16646] do_syscall_64+0xc9/0xf80 [ 727.446841][T16646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.446856][T16646] RIP: 0033:0x7ff49cd9aeb9 [ 727.446869][T16646] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 727.446884][T16646] RSP: 002b:00007ff49dcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 727.446899][T16646] RAX: ffffffffffffffda RBX: 00007ff49d015fa0 RCX: 00007ff49cd9aeb9 [ 727.446909][T16646] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 727.446917][T16646] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 727.446926][T16646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 727.446934][T16646] R13: 00007ff49d016038 R14: 00007ff49d015fa0 R15: 00007fff5beb5928 [ 727.446954][T16646] [ 727.697886][T16645] FAULT_INJECTION: forcing a failure. [ 727.697886][T16645] name failslab, interval 1, probability 0, space 0, times 0 [ 727.710669][T16645] CPU: 0 UID: 0 PID: 16645 Comm: syz.0.1877 Tainted: G U L syzkaller #0 PREEMPT(full) [ 727.710697][T16645] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 727.710704][T16645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 727.710712][T16645] Call Trace: [ 727.710721][T16645] [ 727.710727][T16645] dump_stack_lvl+0x100/0x190 [ 727.710754][T16645] should_fail_ex.cold+0x5/0xa [ 727.710777][T16645] should_failslab+0xc2/0x120 [ 727.710798][T16645] ? lsm_blob_alloc+0x68/0x90 [ 727.710813][T16645] __kmalloc_noprof+0xf6/0x9c0 [ 727.710834][T16645] ? lsm_blob_alloc+0x68/0x90 [ 727.710848][T16645] lsm_blob_alloc+0x68/0x90 [ 727.710863][T16645] security_sk_alloc+0x2d/0x290 [ 727.710883][T16645] sk_prot_alloc+0x1d1/0x2a0 [ 727.710900][T16645] sk_alloc+0x36/0xe80 [ 727.710920][T16645] unix_create1+0xa6/0x700 [ 727.710937][T16645] unix_create+0x145/0x270 [ 727.710951][T16645] __sock_create+0x339/0x860 [ 727.710971][T16645] __sys_socketpair+0x261/0x5b0 [ 727.710991][T16645] ? __pfx___sys_socketpair+0x10/0x10 [ 727.711016][T16645] __x64_sys_socketpair+0x96/0x100 [ 727.711034][T16645] ? lockdep_hardirqs_on+0x78/0x100 [ 727.711051][T16645] do_syscall_64+0xc9/0xf80 [ 727.711070][T16645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 727.711084][T16645] RIP: 0033:0x7f132e59aeb9 [ 727.711098][T16645] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 727.711112][T16645] RSP: 002b:00007f132f4f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 727.711127][T16645] RAX: ffffffffffffffda RBX: 00007f132e815fa0 RCX: 00007f132e59aeb9 [ 727.711137][T16645] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 727.711146][T16645] RBP: 00007f132e608c1f R08: 0000000000000000 R09: 0000000000000000 [ 727.711155][T16645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 727.711164][T16645] R13: 00007f132e816038 R14: 00007f132e815fa0 R15: 00007fff822f2aa8 [ 727.711190][T16645] [ 728.894370][T16667] FAULT_INJECTION: forcing a failure. [ 728.894370][T16667] name failslab, interval 1, probability 0, space 0, times 0 [ 728.947078][T16667] CPU: 0 UID: 0 PID: 16667 Comm: syz.2.1884 Tainted: G U L syzkaller #0 PREEMPT(full) [ 728.947125][T16667] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 728.947137][T16667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 728.947162][T16667] Call Trace: [ 728.947172][T16667] [ 728.947182][T16667] dump_stack_lvl+0x100/0x190 [ 728.947223][T16667] should_fail_ex.cold+0x5/0xa [ 728.947269][T16667] should_failslab+0xc2/0x120 [ 728.947307][T16667] __kmalloc_cache_noprof+0x80/0x810 [ 728.947338][T16667] ? __pfx_sprintf+0x10/0x10 [ 728.947365][T16667] ? snd_seq_queue_alloc+0x56/0x590 [ 728.947410][T16667] ? snd_seq_queue_alloc+0x56/0x590 [ 728.947446][T16667] snd_seq_queue_alloc+0x56/0x590 [ 728.947489][T16667] snd_seq_ioctl_create_queue+0xa9/0x370 [ 728.947538][T16667] call_seq_client_ctl+0xa3/0x130 [ 728.947569][T16667] snd_seq_kernel_client_ctl+0x77/0xd0 [ 728.947600][T16667] alloc_seq_queue+0xdb/0x180 [ 728.947631][T16667] ? __pfx_alloc_seq_queue+0x10/0x10 [ 728.947681][T16667] ? mark_held_locks+0x40/0x70 [ 728.947717][T16667] ? _raw_spin_unlock_irq+0x23/0x50 [ 728.947746][T16667] ? lockdep_hardirqs_on+0x78/0x100 [ 728.947781][T16667] snd_seq_oss_open+0x2b2/0xa10 [ 728.947820][T16667] odev_open+0x79/0xc0 [ 728.947845][T16667] ? __pfx_odev_open+0x10/0x10 [ 728.947873][T16667] soundcore_open+0x2e3/0x5a0 [ 728.947907][T16667] ? __pfx_soundcore_open+0x10/0x10 [ 728.947937][T16667] chrdev_open+0x234/0x6a0 [ 728.947971][T16667] ? __pfx_apparmor_file_open+0x10/0x10 [ 728.948008][T16667] ? __pfx_chrdev_open+0x10/0x10 [ 728.948045][T16667] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 728.948087][T16667] do_dentry_open+0x73e/0x1570 [ 728.948120][T16667] ? __pfx_chrdev_open+0x10/0x10 [ 728.948164][T16667] ? security_inode_permission+0xbf/0x250 [ 728.948213][T16667] vfs_open+0x82/0x3f0 [ 728.948260][T16667] path_openat+0x21dc/0x3120 [ 728.948306][T16667] ? __pfx_path_openat+0x10/0x10 [ 728.948353][T16667] do_filp_open+0x1f7/0x420 [ 728.948390][T16667] ? __pfx_do_filp_open+0x10/0x10 [ 728.948446][T16667] ? _raw_spin_unlock+0x28/0x50 [ 728.948474][T16667] ? alloc_fd+0x476/0x790 [ 728.948517][T16667] do_sys_openat2+0x12e/0x220 [ 728.948559][T16667] ? __pfx_do_sys_openat2+0x10/0x10 [ 728.948603][T16667] ? blkcg_maybe_throttle_current+0x5df/0xeb0 [ 728.948648][T16667] __x64_sys_openat+0x12d/0x210 [ 728.948691][T16667] ? __pfx___x64_sys_openat+0x10/0x10 [ 728.948732][T16667] ? xfd_validate_state+0x129/0x190 [ 728.948789][T16667] do_syscall_64+0xc9/0xf80 [ 728.948826][T16667] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 728.948853][T16667] RIP: 0033:0x7f69c799aeb9 [ 728.948876][T16667] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 728.948904][T16667] RSP: 002b:00007f69c8850028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 728.948932][T16667] RAX: ffffffffffffffda RBX: 00007f69c7c15fa0 RCX: 00007f69c799aeb9 [ 728.948953][T16667] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 728.948972][T16667] RBP: 00007f69c7a08c1f R08: 0000000000000000 R09: 0000000000000000 [ 728.948989][T16667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 728.949005][T16667] R13: 00007f69c7c16038 R14: 00007f69c7c15fa0 R15: 00007ffd2f13f788 [ 728.949044][T16667] [ 729.353984][T16662] Invalid ELF header magic: != ELF [ 731.087982][T16700] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1893: iget: checksum invalid [ 731.156083][T16700] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 731.241280][T16700] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1893: iget: checksum invalid [ 731.439760][T16700] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 731.450371][ T30] audit: type=1800 audit(4294967339.680:12): pid=16717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1895" name="dbroot" dev="configfs" ino=68708 res=0 errno=0 [ 731.602482][T16700] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1893: iget: checksum invalid [ 731.708760][T16700] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 731.817027][T16700] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1893: iget: checksum invalid [ 731.932630][T16700] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 731.945670][T16700] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 731.955659][T16700] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 733.290248][T16749] random: crng reseeded on system resumption [ 733.753155][T16756] kernel profiling enabled (shift: 15) [ 734.626257][T16764] bridge0: port 3(gretap0) entered blocking state [ 734.647747][T16764] bridge0: port 3(gretap0) entered disabled state [ 734.737034][T16764] gretap0: entered allmulticast mode [ 734.759692][T16764] gretap0: entered promiscuous mode [ 734.826392][T16764] bridge0: port 3(gretap0) entered blocking state [ 734.833074][T16764] bridge0: port 3(gretap0) entered forwarding state [ 737.158224][T16809] program syz.2.1914 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 737.211787][ T30] audit: type=1807 audit(4294967345.450:13): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 737.234770][T16808] ima: policy update failed [ 737.271741][ T30] audit: type=1802 audit(4294967345.450:14): pid=16809 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.1914" res=0 errno=0 [ 737.345780][ T30] audit: type=1802 audit(4294967345.500:15): pid=16808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1914" res=0 errno=0 [ 737.430822][T16816] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1916'. [ 737.688506][T16822] FAULT_INJECTION: forcing a failure. [ 737.688506][T16822] name failslab, interval 1, probability 0, space 0, times 0 [ 737.703348][T16822] CPU: 1 UID: 0 PID: 16822 Comm: syz.2.1918 Tainted: G U L syzkaller #0 PREEMPT(full) [ 737.703390][T16822] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 737.703396][T16822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 737.703405][T16822] Call Trace: [ 737.703411][T16822] [ 737.703417][T16822] dump_stack_lvl+0x100/0x190 [ 737.703440][T16822] should_fail_ex.cold+0x5/0xa [ 737.703465][T16822] should_failslab+0xc2/0x120 [ 737.703486][T16822] __kmalloc_cache_noprof+0x80/0x810 [ 737.703505][T16822] ? trace_pid_list_alloc+0x232/0x480 [ 737.703534][T16822] ? trace_pid_list_alloc+0x232/0x480 [ 737.703556][T16822] trace_pid_list_alloc+0x232/0x480 [ 737.703583][T16822] trace_pid_write+0x110/0x480 [ 737.703606][T16822] ? __pfx_trace_pid_write+0x10/0x10 [ 737.703625][T16822] ? update_last_data+0xaa/0x510 [ 737.703652][T16822] event_pid_write.isra.0+0x1e4/0x7f0 [ 737.703670][T16822] ? __pfx_event_pid_write.isra.0+0x10/0x10 [ 737.703691][T16822] vfs_write+0x2aa/0x1070 [ 737.703708][T16822] ? __pfx_ftrace_event_npid_write+0x10/0x10 [ 737.703726][T16822] ? __pfx_vfs_write+0x10/0x10 [ 737.703740][T16822] ? find_held_lock+0x2b/0x80 [ 737.703756][T16822] ? __fget_files+0x215/0x3d0 [ 737.703775][T16822] ? __fget_files+0x21f/0x3d0 [ 737.703796][T16822] ksys_write+0x12a/0x250 [ 737.703811][T16822] ? __pfx_ksys_write+0x10/0x10 [ 737.703833][T16822] do_syscall_64+0xc9/0xf80 [ 737.703853][T16822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 737.703868][T16822] RIP: 0033:0x7f69c799aeb9 [ 737.703881][T16822] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 737.703895][T16822] RSP: 002b:00007f69c8850028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 737.703910][T16822] RAX: ffffffffffffffda RBX: 00007f69c7c15fa0 RCX: 00007f69c799aeb9 [ 737.703920][T16822] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 737.703928][T16822] RBP: 00007f69c7a08c1f R08: 0000000000000000 R09: 0000000000000000 [ 737.703937][T16822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 737.703945][T16822] R13: 00007f69c7c16038 R14: 00007f69c7c15fa0 R15: 00007ffd2f13f788 [ 737.703966][T16822] [ 739.400157][T16848] binder: 16847:16848 ioctl 4018620d ffffffffffffffff returned -22 [ 740.906504][T16879] vivid-009: ================= START STATUS ================= [ 740.923592][T16879] vivid-009: Radio HW Seek Mode: Bounded [ 740.949602][T16879] vivid-009: Radio Programmable HW Seek: false [ 740.981284][T16874] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1929'. [ 740.995108][T16879] vivid-009: RDS Rx I/O Mode: Block I/O [ 741.002005][T16879] vivid-009: Generate RBDS Instead of RDS: false [ 741.008902][T16879] vivid-009: RDS Reception: true [ 741.032434][T16874] netlink: 'syz.2.1929': attribute type 1 has an invalid length. [ 741.050760][T16874] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1929'. [ 741.092542][T16879] vivid-009: RDS Program Type: 0 inactive [ 741.133605][T16879] vivid-009: RDS PS Name: inactive [ 741.195429][T16879] vivid-009: RDS Radio Text: inactive [ 741.201835][T16879] vivid-009: RDS Traffic Announcement: false inactive [ 741.210546][T16879] vivid-009: RDS Traffic Program: false inactive [ 741.229484][T16879] vivid-009: RDS Music: false inactive [ 741.242779][T16879] vivid-009: ================== END STATUS ================== [ 743.785768][T16935] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1941'. [ 745.987137][T16965] program syz.3.1948 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 746.013610][T16963] ima: policy update failed [ 746.031715][ T30] audit: type=1807 audit(4294967354.260:16): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 746.071764][ T30] audit: type=1802 audit(4294967354.260:17): pid=16965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.1948" res=0 errno=0 [ 746.138339][ T30] audit: type=1802 audit(4294967354.290:18): pid=16963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1948" res=0 errno=0 [ 747.142783][T16982] bridge0: port 3(gretap0) entered blocking state [ 747.149682][T16982] FAULT_INJECTION: forcing a failure. [ 747.149682][T16982] name failslab, interval 1, probability 0, space 0, times 0 [ 747.214984][T16982] CPU: 0 UID: 0 PID: 16982 Comm: syz.1.1953 Tainted: G U L syzkaller #0 PREEMPT(full) [ 747.215036][T16982] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 747.215047][T16982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 747.215063][T16982] Call Trace: [ 747.215072][T16982] [ 747.215083][T16982] dump_stack_lvl+0x100/0x190 [ 747.215123][T16982] should_fail_ex.cold+0x5/0xa [ 747.215169][T16982] should_failslab+0xc2/0x120 [ 747.215207][T16982] ? switchdev_deferred_enqueue+0x3e/0x2d0 [ 747.215239][T16982] ? switchdev_deferred_enqueue+0x3e/0x2d0 [ 747.215268][T16982] __kmalloc_noprof+0xf6/0x9c0 [ 747.215296][T16982] ? queue_work_on+0x11b/0x1e0 [ 747.215345][T16982] ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10 [ 747.215381][T16982] ? switchdev_deferred_enqueue+0x3e/0x2d0 [ 747.215412][T16982] switchdev_deferred_enqueue+0x3e/0x2d0 [ 747.215448][T16982] switchdev_port_attr_set+0xb5/0x100 [ 747.215481][T16982] __set_ageing_time+0xc2/0x140 [ 747.215523][T16982] ? __pfx___set_ageing_time+0x10/0x10 [ 747.215578][T16982] br_init_port+0x18a/0x210 [ 747.215614][T16982] br_add_if+0x5a4/0x1b40 [ 747.215655][T16982] ? security_capable+0x80/0x260 [ 747.215696][T16982] add_del_if+0x114/0x160 [ 747.215737][T16982] br_dev_siocdevprivate+0x8ac/0x1650 [ 747.215780][T16982] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 747.215836][T16982] ? lock_acquire+0x17c/0x330 [ 747.215876][T16982] ? __pfx___might_resched+0x10/0x10 [ 747.215926][T16982] ? netdev_name_node_lookup+0x107/0x150 [ 747.215963][T16982] ? __mutex_lock+0x26a/0x1b90 [ 747.216005][T16982] dev_ifsioc+0xc15/0x1eb0 [ 747.216048][T16982] ? __pfx_dev_ifsioc+0x10/0x10 [ 747.216083][T16982] ? __pfx___mutex_lock+0x10/0x10 [ 747.216133][T16982] ? dev_load+0x8e/0x240 [ 747.216168][T16982] ? dev_load+0x8e/0x240 [ 747.216213][T16982] dev_ioctl+0x70e/0x1070 [ 747.216255][T16982] sock_ioctl+0x494/0x6b0 [ 747.216289][T16982] ? __pfx_sock_ioctl+0x10/0x10 [ 747.216338][T16982] ? __pfx_sock_ioctl+0x10/0x10 [ 747.216371][T16982] __x64_sys_ioctl+0x18e/0x210 [ 747.216418][T16982] do_syscall_64+0xc9/0xf80 [ 747.216456][T16982] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 747.216484][T16982] RIP: 0033:0x7ff49cd9aeb9 [ 747.216507][T16982] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 747.216535][T16982] RSP: 002b:00007ff49dc77028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 747.216562][T16982] RAX: ffffffffffffffda RBX: 00007ff49d016180 RCX: 00007ff49cd9aeb9 [ 747.216580][T16982] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 747.216606][T16982] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 747.216624][T16982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 747.216641][T16982] R13: 00007ff49d016218 R14: 00007ff49d016180 R15: 00007fff5beb5928 [ 747.216679][T16982] [ 747.217281][T16982] gretap0: failed to offload ageing time [ 747.522542][T16982] bridge0: port 3(gretap0) entered disabled state [ 747.529660][T16982] gretap0: entered allmulticast mode [ 747.537673][T16982] gretap0: entered promiscuous mode [ 747.544665][T16982] bridge0: port 3(gretap0) entered blocking state [ 747.551919][T16982] bridge0: port 3(gretap0) entered forwarding state [ 752.042999][T17052] ima: policy update failed [ 752.048036][ T30] audit: type=1807 audit(4294967360.280:19): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 752.162006][ T30] audit: type=1802 audit(4294967360.290:20): pid=17053 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.1970" res=0 errno=0 [ 752.214123][ T30] audit: type=1802 audit(4294967360.320:21): pid=17052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1970" res=0 errno=0 [ 752.786517][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.794283][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 754.273500][T17070] Process accounting paused [ 754.370566][T17104] NFSD: Failed to start, no listeners configured. [ 755.099117][ T30] audit: type=1807 audit(4294967363.340:22): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 755.112556][T17131] ima: policy update failed [ 755.162362][ T30] audit: type=1802 audit(4294967363.340:23): pid=17132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.1980" res=0 errno=0 [ 755.246026][ T30] audit: type=1802 audit(4294967363.380:24): pid=17131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1980" res=0 errno=0 [ 757.093322][T17159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1983'. [ 757.162438][T17162] netlink: 'syz.1.1983': attribute type 1 has an invalid length. [ 757.198217][T17162] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1983'. [ 758.875420][T17201] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1991'. [ 758.987053][T17201] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1991'. [ 759.182348][T17208] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1991: iget: checksum invalid [ 759.256628][T17208] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 759.307159][T17208] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1991: iget: checksum invalid [ 759.319232][T17208] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 759.341615][T17208] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1991: iget: checksum invalid [ 759.380602][T17208] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 759.425360][T17208] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1991: iget: checksum invalid [ 759.452691][T17208] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 759.479541][T17208] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 759.564131][T17208] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 760.096255][T17218] NFSD: Failed to start, no listeners configured. [ 760.788724][T17236] FAULT_INJECTION: forcing a failure. [ 760.788724][T17236] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 760.823291][T17236] CPU: 1 UID: 0 PID: 17236 Comm: syz.0.1994 Tainted: G U L syzkaller #0 PREEMPT(full) [ 760.823322][T17236] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 760.823327][T17236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 760.823337][T17236] Call Trace: [ 760.823343][T17236] [ 760.823350][T17236] dump_stack_lvl+0x100/0x190 [ 760.823372][T17236] should_fail_ex.cold+0x5/0xa [ 760.823395][T17236] ? prepare_alloc_pages+0x16d/0x5f0 [ 760.823418][T17236] should_fail_alloc_page+0xeb/0x140 [ 760.823439][T17236] prepare_alloc_pages+0x1f0/0x5f0 [ 760.823461][T17236] ? find_held_lock+0x2b/0x80 [ 760.823477][T17236] __alloc_frozen_pages_noprof+0x193/0x2410 [ 760.823495][T17236] ? rcu_is_watching+0x12/0xc0 [ 760.823509][T17236] ? finish_task_switch.isra.0+0x204/0xb70 [ 760.823526][T17236] ? lockdep_hardirqs_on+0x78/0x100 [ 760.823544][T17236] ? finish_task_switch.isra.0+0x204/0xb70 [ 760.823561][T17236] ? rcu_is_watching+0x12/0xc0 [ 760.823575][T17236] ? trace_sched_exit_tp+0xcd/0x100 [ 760.823591][T17236] ? __schedule+0xf65/0x5e10 [ 760.823606][T17236] ? __schedule+0xff6/0x5e10 [ 760.823620][T17236] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 760.823646][T17236] ? __lock_acquire+0x4a5/0x2630 [ 760.823666][T17236] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 760.823683][T17236] ? policy_nodemask+0xed/0x4f0 [ 760.823705][T17236] alloc_pages_mpol+0x1fb/0x550 [ 760.823726][T17236] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 760.823752][T17236] alloc_pages_noprof+0x131/0x390 [ 760.823772][T17236] pte_alloc_one+0x1e/0x3e0 [ 760.823792][T17236] do_huge_pmd_anonymous_page+0x836/0x1c00 [ 760.823814][T17236] __handle_mm_fault+0x1e96/0x2b50 [ 760.823833][T17236] ? mt_find+0x45e/0x8e0 [ 760.823852][T17236] ? __pfx___handle_mm_fault+0x10/0x10 [ 760.823867][T17236] ? __pfx_mt_find+0x10/0x10 [ 760.823900][T17236] handle_mm_fault+0x36d/0xa20 [ 760.823919][T17236] __get_user_pages+0xf9c/0x34d0 [ 760.823945][T17236] ? down_read_killable+0x30e/0x4c0 [ 760.823964][T17236] ? __lock_acquire+0x4a5/0x2630 [ 760.823982][T17236] ? __pfx___get_user_pages+0x10/0x10 [ 760.824061][T17236] __gup_longterm_locked+0x87d/0x16f0 [ 760.824091][T17236] ? __pfx___gup_longterm_locked+0x10/0x10 [ 760.824116][T17236] ? try_get_folio+0x262/0x750 [ 760.824135][T17236] ? pmd_write+0xd3/0x150 [ 760.824154][T17236] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 760.824179][T17236] gup_fast_fallback+0x18c6/0x2460 [ 760.824214][T17236] ? __pfx_gup_fast_fallback+0x10/0x10 [ 760.824234][T17236] ? ksys_write+0x12a/0x250 [ 760.824250][T17236] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 760.824277][T17236] pin_user_pages_fast+0xa7/0xf0 [ 760.824299][T17236] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 760.824326][T17236] iov_iter_extract_pages+0xa0d/0x1ef0 [ 760.824354][T17236] ? pfn_valid+0x98/0x4e0 [ 760.824373][T17236] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 760.824395][T17236] ? bvec_try_merge_page+0x1cd/0x290 [ 760.824417][T17236] ? bio_add_page+0x162/0x760 [ 760.824436][T17236] ? iov_iter_revert+0x252/0x5b0 [ 760.824459][T17236] bio_iov_iter_get_pages+0x35e/0x12c0 [ 760.824492][T17236] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 760.824515][T17236] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 760.824538][T17236] ? iov_iter_npages+0xf8/0x500 [ 760.824559][T17236] blkdev_direct_IO+0x1302/0x1fb0 [ 760.824585][T17236] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 760.824606][T17236] ? filemap_check_errors+0xa9/0x150 [ 760.824634][T17236] blkdev_write_iter+0x703/0xd70 [ 760.824655][T17236] vfs_write+0x6ac/0x1070 [ 760.824672][T17236] ? __pfx_blkdev_write_iter+0x10/0x10 [ 760.824691][T17236] ? __pfx_vfs_write+0x10/0x10 [ 760.824706][T17236] ? find_held_lock+0x2b/0x80 [ 760.824732][T17236] ksys_write+0x12a/0x250 [ 760.824748][T17236] ? __pfx_ksys_write+0x10/0x10 [ 760.824770][T17236] do_syscall_64+0xc9/0xf80 [ 760.824790][T17236] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 760.824805][T17236] RIP: 0033:0x7f132e59aeb9 [ 760.824818][T17236] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 760.824834][T17236] RSP: 002b:00007f132f4f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 760.824851][T17236] RAX: ffffffffffffffda RBX: 00007f132e815fa0 RCX: 00007f132e59aeb9 [ 760.824863][T17236] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000004 [ 760.824873][T17236] RBP: 00007f132e608c1f R08: 0000000000000000 R09: 0000000000000000 [ 760.824883][T17236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 760.824892][T17236] R13: 00007f132e816038 R14: 00007f132e815fa0 R15: 00007fff822f2aa8 [ 760.824914][T17236] [ 761.651650][T17250] program syz.3.1996 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 763.000378][T17273] netlink: 'syz.1.2000': attribute type 1 has an invalid length. [ 765.011421][T17302] program syz.0.2007 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 765.022844][T17301] ima: policy update failed [ 765.026730][ T30] audit: type=1807 audit(4294967373.270:25): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 765.093120][ T30] audit: type=1802 audit(4294967373.270:26): pid=17302 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.2007" res=0 errno=0 [ 765.142049][ T30] audit: type=1802 audit(4294967373.270:27): pid=17301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2007" res=0 errno=0 [ 765.483210][T17306] zswap: compressor û not available [ 767.995317][T17354] program syz.3.2017 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 768.008069][T17353] ima: policy update failed [ 768.057927][ T30] audit: type=1807 audit(4294967376.250:28): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 768.092146][ T30] audit: type=1802 audit(4294967376.250:29): pid=17354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.2017" res=0 errno=0 [ 768.130939][ T30] audit: type=1802 audit(4294967376.260:30): pid=17353 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2017" res=0 errno=0 [ 768.381091][T17359] program syz.3.2018 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 768.433018][ T30] audit: type=1807 audit(4294967376.680:31): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 768.433453][T17357] ima: policy update failed [ 768.473265][ T30] audit: type=1802 audit(4294967376.680:32): pid=17359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.2018" res=0 errno=0 [ 768.593351][ T30] audit: type=1802 audit(4294967376.790:33): pid=17357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2018" res=0 errno=0 [ 768.771849][T17351] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 768.869350][T17351] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 768.896194][T17351] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 768.928667][T17351] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 769.013613][T17363] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2021'. [ 769.071629][T17363] netlink: 186 bytes leftover after parsing attributes in process `syz.3.2021'. [ 769.252436][T17371] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.2021: iget: checksum invalid [ 769.270333][T17371] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74 [ 769.286187][T17371] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.2021: iget: checksum invalid [ 769.342720][T17371] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74 [ 769.398049][T17371] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.2021: iget: checksum invalid [ 769.456864][T17371] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74 [ 769.472674][T17371] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.2021: iget: checksum invalid [ 769.535876][T17371] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74 [ 769.610485][T17371] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74 [ 769.660608][T17371] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 770.223336][T10355] Bluetooth: hci3: command 0x0c1a tx timeout [ 770.862309][T10355] Bluetooth: hci0: command 0x0c1a tx timeout [ 771.015879][T10355] Bluetooth: hci2: command 0x0c1a tx timeout [ 771.027923][T16115] Bluetooth: hci1: command 0x0c1a tx timeout [ 772.421444][T17416] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 772.633274][T17427] FAULT_INJECTION: forcing a failure. [ 772.633274][T17427] name failslab, interval 1, probability 0, space 0, times 0 [ 772.674625][T17427] CPU: 0 UID: 0 PID: 17427 Comm: syz.3.2034 Tainted: G U L syzkaller #0 PREEMPT(full) [ 772.674671][T17427] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 772.674682][T17427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 772.674698][T17427] Call Trace: [ 772.674707][T17427] [ 772.674718][T17427] dump_stack_lvl+0x100/0x190 [ 772.674759][T17427] should_fail_ex.cold+0x5/0xa [ 772.674802][T17427] should_failslab+0xc2/0x120 [ 772.674849][T17427] __kmalloc_node_track_caller_noprof+0xf9/0x9d0 [ 772.674884][T17427] ? __pfx_vsnprintf+0x10/0x10 [ 772.674914][T17427] ? kasprintf+0xc7/0x100 [ 772.674942][T17427] ? kvasprintf+0xbc/0x150 [ 772.674963][T17427] kvasprintf+0xbc/0x150 [ 772.674985][T17427] ? __pfx_kvasprintf+0x10/0x10 [ 772.675024][T17427] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 772.675051][T17427] ? lockdep_hardirqs_on+0x78/0x100 [ 772.675078][T17427] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 772.675109][T17427] kasprintf+0xc7/0x100 [ 772.675131][T17427] ? __pfx_kasprintf+0x10/0x10 [ 772.675167][T17427] ieee80211_alloc_led_names+0x11b/0x420 [ 772.675211][T17427] ieee80211_alloc_hw_nm+0x1934/0x22a0 [ 772.675257][T17427] mac80211_hwsim_new_radio+0x1e1/0x57c0 [ 772.675316][T17427] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 772.675350][T17427] ? __nla_validate_parse+0x1e7/0x28b0 [ 772.675383][T17427] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 772.675433][T17427] hwsim_new_radio_nl+0xc1f/0x1340 [ 772.675465][T17427] ? genl_family_rcv_msg_attrs_parse.isra.0+0xc8/0x290 [ 772.675498][T17427] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 772.675542][T17427] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x290 [ 772.675568][T17427] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1b4/0x290 [ 772.675606][T17427] genl_family_rcv_msg_doit+0x214/0x300 [ 772.675635][T17427] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 772.675661][T17427] ? genl_get_cmd+0x3ef/0x720 [ 772.675694][T17427] ? bpf_lsm_capable+0x9/0x10 [ 772.675714][T17427] ? security_capable+0x80/0x260 [ 772.675745][T17427] ? ns_capable+0xd2/0xf0 [ 772.675774][T17427] genl_rcv_msg+0x560/0x800 [ 772.675803][T17427] ? __pfx_genl_rcv_msg+0x10/0x10 [ 772.675829][T17427] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 772.675883][T17427] netlink_rcv_skb+0x159/0x420 [ 772.675905][T17427] ? __pfx_genl_rcv_msg+0x10/0x10 [ 772.675933][T17427] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 772.675970][T17427] ? netlink_deliver_tap+0x1ae/0xcc0 [ 772.676011][T17427] genl_rcv+0x28/0x40 [ 772.676034][T17427] netlink_unicast+0x5aa/0x870 [ 772.676076][T17427] ? __pfx_netlink_unicast+0x10/0x10 [ 772.676125][T17427] netlink_sendmsg+0x8b0/0xda0 [ 772.676166][T17427] ? __pfx_netlink_sendmsg+0x10/0x10 [ 772.676201][T17427] ? __import_iovec+0x1d2/0x640 [ 772.676240][T17427] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 772.676275][T17427] ____sys_sendmsg+0xa54/0xc30 [ 772.676304][T17427] ? __pfx_____sys_sendmsg+0x10/0x10 [ 772.676335][T17427] ? try_to_wake_up+0x644/0x1a60 [ 772.676368][T17427] ___sys_sendmsg+0x190/0x1e0 [ 772.676398][T17427] ? __pfx____sys_sendmsg+0x10/0x10 [ 772.676425][T17427] ? futex_private_hash_put+0x107/0x1c0 [ 772.676468][T17427] ? find_held_lock+0x2b/0x80 [ 772.676512][T17427] __sys_sendmsg+0x170/0x220 [ 772.676548][T17427] ? __pfx___sys_sendmsg+0x10/0x10 [ 772.676582][T17427] ? __x64_sys_futex+0x34f/0x4d0 [ 772.676633][T17427] do_syscall_64+0xc9/0xf80 [ 772.676664][T17427] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 772.676688][T17427] RIP: 0033:0x7fbb2cf9aeb9 [ 772.676709][T17427] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 772.676733][T17427] RSP: 002b:00007fbb2debc028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 772.676758][T17427] RAX: ffffffffffffffda RBX: 00007fbb2d215fa0 RCX: 00007fbb2cf9aeb9 [ 772.676775][T17427] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000008 [ 772.676791][T17427] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 772.676806][T17427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 772.676821][T17427] R13: 00007fbb2d216038 R14: 00007fbb2d215fa0 R15: 00007ffd4f0848c8 [ 772.676859][T17427] [ 773.235384][T17429] bridge0: port 3(gretap0) entered blocking state [ 773.242236][T17429] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 773.251370][T17429] bridge0: port 3(gretap0) entered disabled state [ 773.259060][T17429] gretap0: entered allmulticast mode [ 773.269373][T17429] gretap0: entered promiscuous mode [ 773.275681][T17429] bridge0: port 3(gretap0) entered blocking state [ 773.282318][T17429] bridge0: port 3(gretap0) entered forwarding state [ 774.217429][T17433] FAULT_INJECTION: forcing a failure. [ 774.217429][T17433] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 774.232032][T17433] CPU: 1 UID: 0 PID: 17433 Comm: syz.1.2035 Tainted: G U L syzkaller #0 PREEMPT(full) [ 774.232082][T17433] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 774.232092][T17433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 774.232108][T17433] Call Trace: [ 774.232117][T17433] [ 774.232126][T17433] dump_stack_lvl+0x100/0x190 [ 774.232164][T17433] should_fail_ex.cold+0x5/0xa [ 774.232203][T17433] ? prepare_alloc_pages+0x16d/0x5f0 [ 774.232247][T17433] should_fail_alloc_page+0xeb/0x140 [ 774.232286][T17433] prepare_alloc_pages+0x1f0/0x5f0 [ 774.232333][T17433] __alloc_frozen_pages_noprof+0x193/0x2410 [ 774.232372][T17433] ? __lock_acquire+0x4a5/0x2630 [ 774.232419][T17433] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 774.232452][T17433] ? find_held_lock+0x2b/0x80 [ 774.232478][T17433] ? is_bpf_text_address+0x8a/0x1a0 [ 774.232498][T17433] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 774.232516][T17433] ? is_bpf_text_address+0x94/0x1a0 [ 774.232529][T17433] ? kernel_text_address+0x8d/0x100 [ 774.232552][T17433] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 774.232569][T17433] ? policy_nodemask+0xed/0x4f0 [ 774.232590][T17433] alloc_pages_mpol+0x1fb/0x550 [ 774.232611][T17433] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 774.232636][T17433] alloc_pages_noprof+0x131/0x390 [ 774.232657][T17433] pte_alloc_one+0x1e/0x3e0 [ 774.232676][T17433] do_huge_pmd_anonymous_page+0x836/0x1c00 [ 774.232706][T17433] __handle_mm_fault+0x1e96/0x2b50 [ 774.232726][T17433] ? mt_find+0x45e/0x8e0 [ 774.232747][T17433] ? __pfx___handle_mm_fault+0x10/0x10 [ 774.232761][T17433] ? __pfx_mt_find+0x10/0x10 [ 774.232795][T17433] handle_mm_fault+0x36d/0xa20 [ 774.232816][T17433] __get_user_pages+0xf9c/0x34d0 [ 774.232843][T17433] ? down_read_killable+0x30e/0x4c0 [ 774.232862][T17433] ? __lock_acquire+0x4a5/0x2630 [ 774.232881][T17433] ? __pfx___get_user_pages+0x10/0x10 [ 774.232907][T17433] __gup_longterm_locked+0x87d/0x16f0 [ 774.232934][T17433] ? __pfx___gup_longterm_locked+0x10/0x10 [ 774.232958][T17433] ? try_get_folio+0x262/0x750 [ 774.232976][T17433] ? pmd_write+0xd3/0x150 [ 774.232994][T17433] ? sanity_check_pinned_pages+0x5f6/0x1250 [ 774.233018][T17433] gup_fast_fallback+0x18c6/0x2460 [ 774.233053][T17433] ? __pfx_gup_fast_fallback+0x10/0x10 [ 774.233073][T17433] ? ksys_write+0x12a/0x250 [ 774.233089][T17433] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 774.233112][T17433] pin_user_pages_fast+0xa7/0xf0 [ 774.233134][T17433] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 774.233160][T17433] iov_iter_extract_pages+0xa0d/0x1ef0 [ 774.233189][T17433] ? pfn_valid+0x98/0x4e0 [ 774.233207][T17433] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 774.233228][T17433] ? bvec_try_merge_page+0x1cd/0x290 [ 774.233250][T17433] ? bio_add_page+0x162/0x760 [ 774.233269][T17433] ? iov_iter_revert+0x252/0x5b0 [ 774.233292][T17433] bio_iov_iter_get_pages+0x35e/0x12c0 [ 774.233325][T17433] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 774.233347][T17433] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 774.233370][T17433] ? iov_iter_npages+0xf8/0x500 [ 774.233391][T17433] blkdev_direct_IO+0x1302/0x1fb0 [ 774.233417][T17433] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 774.233438][T17433] ? filemap_check_errors+0xa9/0x150 [ 774.233464][T17433] blkdev_write_iter+0x703/0xd70 [ 774.233486][T17433] vfs_write+0x6ac/0x1070 [ 774.233502][T17433] ? __pfx_blkdev_write_iter+0x10/0x10 [ 774.233521][T17433] ? __pfx_vfs_write+0x10/0x10 [ 774.233536][T17433] ? find_held_lock+0x2b/0x80 [ 774.233562][T17433] ksys_write+0x12a/0x250 [ 774.233578][T17433] ? __pfx_ksys_write+0x10/0x10 [ 774.233599][T17433] do_syscall_64+0xc9/0xf80 [ 774.233618][T17433] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 774.233633][T17433] RIP: 0033:0x7ff49cd9aeb9 [ 774.233647][T17433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 774.233662][T17433] RSP: 002b:00007ff49dcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 774.233678][T17433] RAX: ffffffffffffffda RBX: 00007ff49d015fa0 RCX: 00007ff49cd9aeb9 [ 774.233694][T17433] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000004 [ 774.233703][T17433] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 774.233712][T17433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 774.233720][T17433] R13: 00007ff49d016038 R14: 00007ff49d015fa0 R15: 00007fff5beb5928 [ 774.233740][T17433] [ 775.160408][T17445] binder: 17444:17445 ioctl 4018620d ffffffffffffffff returned -22 [ 775.767553][T17461] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078404000 pfn:0x78404 [ 775.926878][T17461] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 775.942157][T17461] page_type: f2(table) [ 775.946384][T17461] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 775.955134][T17461] raw: ffff888078404000 ffff888078b4f660 00000001f2000000 0000000000000000 [ 775.989424][T17461] page dumped because: unmovable page [ 776.012233][T17461] page_owner tracks the page as allocated [ 776.041371][T17461] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x440dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_COMP), pid 5486, tgid 5486 (dhcpcd), ts 56839923993, free_ts 56733408285 [ 776.102531][T17461] post_alloc_hook+0x1e1/0x250 [ 776.132331][T17461] get_page_from_freelist+0xe3d/0x2e10 [ 776.165569][T17461] __alloc_frozen_pages_noprof+0x26c/0x2410 [ 776.206031][T17461] alloc_pages_mpol+0x1fb/0x550 [ 776.235391][T17461] alloc_pages_noprof+0x131/0x390 [ 776.275830][T17464] NFSD: Failed to start, no listeners configured. [ 776.301711][T17461] pte_alloc_one+0x1e/0x3e0 [ 776.316614][T17461] __pte_alloc+0x6d/0x3f0 [ 776.358318][T17461] copy_page_range+0x3f17/0x6ba0 [ 776.438909][T17461] dup_mmap+0xbea/0x1e20 [ 776.474954][T17461] copy_process+0x7451/0x7890 [ 776.494579][T17461] kernel_clone+0xfc/0x930 [ 776.517689][T17461] __do_sys_clone+0xd9/0x120 [ 776.535327][T17461] do_syscall_64+0xc9/0xf80 [ 776.552478][T17461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.575458][T17461] page last free pid 23 tgid 23 stack trace: [ 776.597589][T17461] __free_frozen_pages+0x822/0x1130 [ 776.628017][T17461] tlb_remove_table_rcu+0x2b2/0x390 [ 776.641085][T17461] rcu_core+0x7c0/0x15c0 [ 776.654431][T17461] handle_softirqs+0x1ea/0x910 [ 776.663110][T17461] run_ksoftirqd+0x38/0x60 [ 776.678024][T17461] smpboot_thread_fn+0x3d3/0xaa0 [ 776.688177][T17461] kthread+0x3b3/0x730 [ 776.692617][T17461] ret_from_fork+0x754/0xaf0 [ 776.700146][T17461] ret_from_fork_asm+0x1a/0x30 [ 776.714360][T17474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2042'. [ 778.261995][T17500] program syz.0.2049 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 778.352389][ T30] audit: type=1807 audit(4294967386.590:34): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0 [ 778.421247][T17499] ima: policy update failed [ 778.434670][ T30] audit: type=1802 audit(4294967386.590:35): pid=17500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.2049" res=0 errno=0 [ 778.514299][ T30] audit: type=1802 audit(4294967386.700:36): pid=17499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2049" res=0 errno=0 [ 778.733184][T17510] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19 [ 778.948261][T17515] binder: 17514:17515 ioctl 4018620d ffffffffffffffff returned -22 [ 780.820898][T17550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2056'. [ 781.858707][T17563] FAULT_INJECTION: forcing a failure. [ 781.858707][T17563] name failslab, interval 1, probability 0, space 0, times 0 [ 781.907515][T17563] CPU: 1 UID: 0 PID: 17563 Comm: syz.2.2058 Tainted: G U L syzkaller #0 PREEMPT(full) [ 781.907547][T17563] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 781.907554][T17563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 781.907564][T17563] Call Trace: [ 781.907570][T17563] [ 781.907576][T17563] dump_stack_lvl+0x100/0x190 [ 781.907599][T17563] should_fail_ex.cold+0x5/0xa [ 781.907625][T17563] should_failslab+0xc2/0x120 [ 781.907647][T17563] kmem_cache_alloc_noprof+0x83/0x780 [ 781.907665][T17563] ? __proc_create+0xc2/0x8c0 [ 781.907686][T17563] ? __proc_create+0x2cb/0x8c0 [ 781.907710][T17563] ? __proc_create+0x2cb/0x8c0 [ 781.907731][T17563] __proc_create+0x2cb/0x8c0 [ 781.907752][T17563] ? __pfx___proc_create+0x10/0x10 [ 781.907782][T17563] proc_create_reg+0x75/0x170 [ 781.907799][T17563] proc_create_net_data+0x8e/0x1c0 [ 781.907813][T17563] ? __pfx_proc_create_net_data+0x10/0x10 [ 781.907826][T17563] ? net_generic+0xea/0x2a0 [ 781.907849][T17563] ? __pfx_phonet_init_net+0x10/0x10 [ 781.907869][T17563] phonet_init_net+0x66/0x120 [ 781.907889][T17563] ops_init+0x1e2/0x5f0 [ 781.907914][T17563] setup_net+0x118/0x3a0 [ 781.907927][T17563] ? __pfx_setup_net+0x10/0x10 [ 781.907939][T17563] ? lockdep_init_map_type+0x5c/0x250 [ 781.907960][T17563] ? mutex_init_lockep+0x110/0x150 [ 781.907984][T17563] copy_net_ns+0x46f/0x7c0 [ 781.908004][T17563] create_new_namespaces+0x3ea/0xab0 [ 781.908026][T17563] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 781.908045][T17563] ksys_unshare+0x455/0xab0 [ 781.908068][T17563] ? __pfx_ksys_unshare+0x10/0x10 [ 781.908088][T17563] ? xfd_validate_state+0x129/0x190 [ 781.908116][T17563] __x64_sys_unshare+0x31/0x40 [ 781.908135][T17563] do_syscall_64+0xc9/0xf80 [ 781.908155][T17563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 781.908170][T17563] RIP: 0033:0x7f69c799aeb9 [ 781.908189][T17563] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 781.908204][T17563] RSP: 002b:00007f69c8850028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 781.908219][T17563] RAX: ffffffffffffffda RBX: 00007f69c7c15fa0 RCX: 00007f69c799aeb9 [ 781.908229][T17563] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 781.908238][T17563] RBP: 00007f69c7a08c1f R08: 0000000000000000 R09: 0000000000000000 [ 781.908247][T17563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 781.908256][T17563] R13: 00007f69c7c16038 R14: 00007f69c7c15fa0 R15: 00007ffd2f13f788 [ 781.908277][T17563] [ 782.212507][T17567] program syz.3.2059 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 782.225282][T17561] program syz.0.2057 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 782.332741][T17566] ima: policy update failed [ 782.342478][ T30] audit: type=1802 audit(4294967390.580:37): pid=17566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2059" res=0 errno=0 [ 782.588593][T17573] FAULT_INJECTION: forcing a failure. [ 782.588593][T17573] name failslab, interval 1, probability 0, space 0, times 0 [ 782.632762][T17573] CPU: 0 UID: 0 PID: 17573 Comm: syz.3.2062 Tainted: G U L syzkaller #0 PREEMPT(full) [ 782.632810][T17573] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 782.632820][T17573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 782.632834][T17573] Call Trace: [ 782.632842][T17573] [ 782.632852][T17573] dump_stack_lvl+0x100/0x190 [ 782.632892][T17573] should_fail_ex.cold+0x5/0xa [ 782.632937][T17573] should_failslab+0xc2/0x120 [ 782.632978][T17573] __kmalloc_cache_noprof+0x80/0x810 [ 782.633008][T17573] ? nfc_llcp_register_device+0x4b/0xa60 [ 782.633048][T17573] ? nfc_llcp_register_device+0x4b/0xa60 [ 782.633082][T17573] nfc_llcp_register_device+0x4b/0xa60 [ 782.633124][T17573] nfc_register_device+0x6d/0x3e0 [ 782.633162][T17573] nci_register_device+0x7f1/0xb80 [ 782.633194][T17573] ? __pfx_nci_register_device+0x10/0x10 [ 782.633228][T17573] ? lockdep_init_map_type+0x5c/0x250 [ 782.633272][T17573] virtual_ncidev_open+0x141/0x220 [ 782.633314][T17573] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 782.633354][T17573] misc_open+0x26d/0x450 [ 782.633386][T17573] ? __pfx_misc_open+0x10/0x10 [ 782.633419][T17573] chrdev_open+0x234/0x6a0 [ 782.633449][T17573] ? __pfx_apparmor_file_open+0x10/0x10 [ 782.633484][T17573] ? __pfx_chrdev_open+0x10/0x10 [ 782.633516][T17573] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 782.633556][T17573] do_dentry_open+0x73e/0x1570 [ 782.633589][T17573] ? __pfx_chrdev_open+0x10/0x10 [ 782.633624][T17573] ? security_inode_permission+0xbf/0x250 [ 782.633671][T17573] vfs_open+0x82/0x3f0 [ 782.633713][T17573] path_openat+0x21dc/0x3120 [ 782.633758][T17573] ? __pfx_path_openat+0x10/0x10 [ 782.633802][T17573] do_filp_open+0x1f7/0x420 [ 782.633836][T17573] ? __pfx_do_filp_open+0x10/0x10 [ 782.633890][T17573] ? _raw_spin_unlock+0x28/0x50 [ 782.633917][T17573] ? alloc_fd+0x476/0x790 [ 782.633959][T17573] do_sys_openat2+0x12e/0x220 [ 782.634002][T17573] ? __pfx_do_sys_openat2+0x10/0x10 [ 782.634047][T17573] ? find_held_lock+0x2b/0x80 [ 782.634084][T17573] __x64_sys_openat+0x12d/0x210 [ 782.634136][T17573] ? __pfx___x64_sys_openat+0x10/0x10 [ 782.634176][T17573] ? xfd_validate_state+0x129/0x190 [ 782.634232][T17573] do_syscall_64+0xc9/0xf80 [ 782.634268][T17573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 782.634297][T17573] RIP: 0033:0x7fbb2cf9aeb9 [ 782.634320][T17573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 782.634348][T17573] RSP: 002b:00007fbb2debc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 782.634375][T17573] RAX: ffffffffffffffda RBX: 00007fbb2d215fa0 RCX: 00007fbb2cf9aeb9 [ 782.634395][T17573] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 782.634414][T17573] RBP: 00007fbb2d008c1f R08: 0000000000000000 R09: 0000000000000000 [ 782.634431][T17573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 782.634448][T17573] R13: 00007fbb2d216038 R14: 00007fbb2d215fa0 R15: 00007ffd4f0848c8 [ 782.634485][T17573] [ 782.634508][T17573] nfc: nfc_register_device: Could not register llcp device [ 783.264259][T17570] llcp: nfc_llcp_remove_local: Shutting down device not found [ 785.223522][T17595] Process accounting resumed [ 785.693748][T17620] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2069'. [ 785.777292][T17616] binder: 17613:17616 ioctl 4018620d ffffffffffffffff returned -22 [ 787.433142][T17646] program syz.3.2075 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 791.086103][T17681] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.0.2080: bg 1: bad block bitmap checksum [ 791.163558][T17681] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6689: Filesystem failed CRC [ 794.549826][T17759] program syz.3.2089 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 794.599659][T17758] ima: policy update failed [ 794.604606][ T30] audit: type=1802 audit(4294967402.850:38): pid=17758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2089" res=0 errno=0 [ 794.714310][T17763] futex_wake_op: syz.0.2090 tries to shift op by -1; fix this program [ 795.045110][T17774] FAULT_INJECTION: forcing a failure. [ 795.045110][T17774] name failslab, interval 1, probability 0, space 0, times 0 [ 795.122175][T17774] CPU: 1 UID: 0 PID: 17774 Comm: syz.1.2093 Tainted: G U L syzkaller #0 PREEMPT(full) [ 795.122224][T17774] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 795.122239][T17774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 795.122253][T17774] Call Trace: [ 795.122262][T17774] [ 795.122273][T17774] dump_stack_lvl+0x100/0x190 [ 795.122309][T17774] should_fail_ex.cold+0x5/0xa [ 795.122354][T17774] should_failslab+0xc2/0x120 [ 795.122394][T17774] __kmalloc_cache_noprof+0x80/0x810 [ 795.122423][T17774] ? vidtv_psi_set_sec_len+0xa5/0x160 [ 795.122466][T17774] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 795.122503][T17774] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 795.122534][T17774] vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 795.122566][T17774] vidtv_channel_si_init+0x1289/0x18d0 [ 795.122613][T17774] vidtv_mux_init+0x526/0xbf0 [ 795.122661][T17774] vidtv_start_feed+0x33e/0x4c0 [ 795.122703][T17774] ? __pfx_vidtv_start_feed+0x10/0x10 [ 795.122742][T17774] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 795.122786][T17774] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 795.122835][T17774] ? mark_held_locks+0x40/0x70 [ 795.122877][T17774] ? __pfx_vidtv_start_feed+0x10/0x10 [ 795.122917][T17774] dmx_ts_feed_start_filtering+0xf6/0x220 [ 795.122966][T17774] dvb_dmxdev_start_feed+0x273/0x3f0 [ 795.123010][T17774] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 795.123054][T17774] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 795.123097][T17774] dvb_demux_do_ioctl+0xe64/0x1200 [ 795.123149][T17774] dvb_usercopy+0x167/0x340 [ 795.123184][T17774] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 795.123226][T17774] ? __pfx_dvb_usercopy+0x10/0x10 [ 795.123274][T17774] ? __fget_files+0x21f/0x3d0 [ 795.123314][T17774] dvb_demux_ioctl+0x29/0x40 [ 795.123349][T17774] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 795.123385][T17774] __x64_sys_ioctl+0x18e/0x210 [ 795.123432][T17774] do_syscall_64+0xc9/0xf80 [ 795.123471][T17774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 795.123499][T17774] RIP: 0033:0x7ff49cd9aeb9 [ 795.123522][T17774] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 795.123549][T17774] RSP: 002b:00007ff49dcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 795.123577][T17774] RAX: ffffffffffffffda RBX: 00007ff49d015fa0 RCX: 00007ff49cd9aeb9 [ 795.123596][T17774] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 795.123614][T17774] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 795.123638][T17774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 795.123655][T17774] R13: 00007ff49d016038 R14: 00007ff49d015fa0 R15: 00007fff5beb5928 [ 795.123696][T17774] [ 795.123810][T17774] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 795.413093][T17774] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 795.421695][T17774] CPU: 1 UID: 0 PID: 17774 Comm: syz.1.2093 Tainted: G U L syzkaller #0 PREEMPT(full) [ 795.433290][T17774] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 795.438552][T17774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 795.449186][T17774] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 795.455195][T17774] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 2d ab ed f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 4c 4c 8b 23 49 39 ec 74 36 e8 09 ab ed f9 4d 85 e4 [ 795.475607][T17774] RSP: 0018:ffffc9000bb07a18 EFLAGS: 00010247 [ 795.482133][T17774] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc90004e79000 [ 795.490508][T17774] RDX: 0000000000000000 RSI: ffffffff8818a373 RDI: 0000000000000005 [ 795.498771][T17774] RBP: ffff88804732de80 R08: 0000000000000000 R09: 4453534204050000 [ 795.506898][T17774] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 795.514894][T17774] R13: ffff88803357e5c0 R14: ffff888078f68de0 R15: ffff888028b4ce80 [ 795.523055][T17774] FS: 00007ff49dcb96c0(0000) GS:ffff8881246e2000(0000) knlGS:0000000000000000 [ 795.532003][T17774] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 795.538626][T17774] CR2: 0000000000000580 CR3: 000000005b3c8000 CR4: 00000000003526f0 [ 795.546622][T17774] Call Trace: [ 795.549912][T17774] [ 795.552859][T17774] vidtv_channel_si_init+0x12fc/0x18d0 [ 795.558362][T17774] vidtv_mux_init+0x526/0xbf0 [ 795.563082][T17774] vidtv_start_feed+0x33e/0x4c0 [ 795.568129][T17774] ? __pfx_vidtv_start_feed+0x10/0x10 [ 795.573514][T17774] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 795.579018][T17774] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 795.585633][T17774] ? mark_held_locks+0x40/0x70 [ 795.590859][T17774] ? __pfx_vidtv_start_feed+0x10/0x10 [ 795.596355][T17774] dmx_ts_feed_start_filtering+0xf6/0x220 [ 795.602105][T17774] dvb_dmxdev_start_feed+0x273/0x3f0 [ 795.607400][T17774] dvb_dmxdev_filter_start+0x1b6/0xdd0 [ 795.612966][T17774] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 795.618176][T17774] dvb_demux_do_ioctl+0xe64/0x1200 [ 795.623306][T17774] dvb_usercopy+0x167/0x340 [ 795.627903][T17774] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 795.633471][T17774] ? __pfx_dvb_usercopy+0x10/0x10 [ 795.638544][T17774] ? __fget_files+0x21f/0x3d0 [ 795.643224][T17774] dvb_demux_ioctl+0x29/0x40 [ 795.647821][T17774] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 795.653206][T17774] __x64_sys_ioctl+0x18e/0x210 [ 795.658081][T17774] do_syscall_64+0xc9/0xf80 [ 795.662675][T17774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 795.668566][T17774] RIP: 0033:0x7ff49cd9aeb9 [ 795.672989][T17774] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 795.692686][T17774] RSP: 002b:00007ff49dcb9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 795.701105][T17774] RAX: ffffffffffffffda RBX: 00007ff49d015fa0 RCX: 00007ff49cd9aeb9 [ 795.709418][T17774] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000002 [ 795.717397][T17774] RBP: 00007ff49ce08c1f R08: 0000000000000000 R09: 0000000000000000 [ 795.725374][T17774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 795.733671][T17774] R13: 00007ff49d016038 R14: 00007ff49d015fa0 R15: 00007fff5beb5928 [ 795.741743][T17774] [ 795.744763][T17774] Modules linked in: [ 795.749550][T17774] ---[ end trace 0000000000000000 ]--- [ 795.765779][T17774] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 795.784449][T17774] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 2d ab ed f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 4c 4c 8b 23 49 39 ec 74 36 e8 09 ab ed f9 4d 85 e4 [ 795.883885][T17774] RSP: 0018:ffffc9000bb07a18 EFLAGS: 00010247 [ 795.954383][T17781] Invalid ELF header magic: != ELF [ 796.034821][T17774] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc90004e79000 [ 796.212206][T17774] RDX: 0000000000000000 RSI: ffffffff8818a373 RDI: 0000000000000005 [ 796.285117][T17774] RBP: ffff88804732de80 R08: 0000000000000000 R09: 4453534204050000 [ 796.330989][T17774] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000000 [ 796.350091][T17774] R13: ffff88803357e5c0 R14: ffff888078f68de0 R15: ffff888028b4ce80 [ 796.391273][T17774] FS: 00007ff49dcb96c0(0000) GS:ffff8881246e2000(0000) knlGS:0000000000000000 [ 796.413618][T17774] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 796.424593][T17774] CR2: 00007f69c7be4198 CR3: 000000005b3c8000 CR4: 00000000003526f0 [ 796.433685][T17774] Kernel panic - not syncing: Fatal exception [ 796.441830][T17774] Kernel Offset: disabled [ 796.446555][T17774] Rebooting in 86400 seconds..