last executing test programs: 13.260092733s ago: executing program 3 (id=2908): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x4604, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r1, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0x4040aea0, 0x0) 12.017730943s ago: executing program 3 (id=2911): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0) io_uring_setup$auto(0x1, 0x0) r0 = socket(0x21, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x80184947, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x7, 0x3, 0x10001, 0x3, 0x5e, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948e, 0xffffffffffffffff, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) 11.178906338s ago: executing program 3 (id=2915): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f00000009c0)="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", 0xe67) 10.410224849s ago: executing program 3 (id=2918): mmap$auto(0x0, 0x7, 0xdf, 0x9b72, 0x7, 0x28000) socket(0xa, 0x1, 0x84) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video47\x00', 0xc0480, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5) fchdir$auto(0xffffffffffffffff) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x94) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fsconfig$auto_JFFS2_COMPR_MODE_NONE(r0, 0x9, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x7, 0x3, 0x10001, 0x3, 0x5e, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948e, 0xffffffffffffffff, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x6, 0x2, 0x6]}, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nullb0/queue/scheduler\x00', 0xca002, 0x0) sendfile$auto(r3, r3, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/environ\x00', 0x640, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0xc4) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x6, 0x4, 0x105, 0x5) pidfd_open$auto(0x1, 0x0) r4 = socket(0xa, 0x5, 0x0) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x2, 0x1, 0x84) r6 = socket(0x28, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', 0x0}) syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000240), r2) bpf$auto_BPF_MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)=@bpf_attr_3={0x0, 0xc0000000, 0x8, 0x2, 0x0, 0x2, 0x1ff, 0x40, 0x4, "abf26136418caaa5ef8d88fc2ca9078b", r7, 0x1fffc000, r5, 0xb1, 0x0, 0x3, 0x4, 0x3, 0x7fffffff, 0x4e74, @attach_btf_obj_fd=r4, 0xfff, 0x8, 0x6, 0xf00, 0x800, r1, r4}, 0x0) getsockopt$auto_SO_PASSSEC(r6, 0x1, 0x22, 0x0, &(0x7f0000000080)=0x101) 7.689677123s ago: executing program 3 (id=2928): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x400, 0x0) epoll_create$auto(0x20003f) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0x80b02, 0x0) sendfile$auto(r1, r1, 0x0, 0x1) 6.889279918s ago: executing program 3 (id=2932): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/vhci_hcd.0/usb10/10-0:1.0/usb10-port1/quirks\x00', 0x50b942, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2ea140, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000100), 0xffffffffffffffff) process_vm_writev$auto(0x0, 0x0, 0x200000000017, 0x0, 0x7, 0x0) r0 = open(0x0, 0x480000, 0x64) fchdir$auto(r0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7ffffffffffffffb, 0x3) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) mmap$auto(0x0, 0x8, 0x3, 0x40eb1, 0x602, 0xf8a) r2 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x642d80, 0x0) pread64$auto(r2, 0x0, 0x1ffffffffc, 0x385) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x800, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) close_range$auto(r1, 0xa, 0x0) r3 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) pipe$auto(0x0) dup2$auto(0x5, 0x4) write$auto(0x6, 0x0, 0x100000001) socket(0x2, 0xa, 0xa) writev$auto(0xffffffffffffffff, &(0x7f00000028c0)={&(0x7f0000000000), 0x205}, 0x6) vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4) r4 = openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000080), 0x2003, 0x0) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x20500, 0x0) ioctl$auto(r4, 0x6f2d, r4) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000300)={{@raw=0x23, 0x801, 0x9, 0x6, "ffffe85e0a000000529f895cf5e8e1aa000000000000000000000000f4ffffff00"}, 0x6, 0x5, 0x7fffffff, @inferred, @integer={0xbb5a, 0x6, 0x8000}, "a4699ddc920b153e9b1675451d7da94b4123f970c4dd34e0f6ab606c27e852295e00af4948de6e76803400000000000000eab0ac7b00"}) 6.444005371s ago: executing program 1 (id=2934): mmap$auto(0x0, 0x3ff, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x82, 0x0) socket(0x2, 0x1, 0x0) epoll_create$auto(0x7) socket$nl_generic(0x10, 0x3, 0x10) capset$auto(0x0, 0x0) r0 = socket(0x1d, 0x1, 0x7fff) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x800000001, 0xfffffffffffffff7) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1) sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto(0x3, 0x89e2, 0x91) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, 0x0, 0x810) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/loginuid\x00', 0x109000, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity_list\x00', 0x129542, 0x0) read$auto(r2, 0x0, 0xf36) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0xffd, 0x5, 0x0, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0x5, 0xfffffffffffffffe, 0x7, 0x2, 0x7f, 0x5, 0x4, 0xa, 0x22000, 0x203, 0x4, 0x84, 0xfffffffffffffffc, 0x3, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x0, 0x800000000000000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xfff, 0x800000000000400, 0x0, 0x1, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa8, 0x1, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000000]}, 0x6, 0x7fffffff) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x40080, 0x0) r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x3d00, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd03, &(0x7f00000001c0)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x2000000000000005, 0x3) syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000400), r0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getpriority$auto_PRIO_USER(0x2, 0x0) setfsuid$auto(0xee00) 4.822752321s ago: executing program 2 (id=2938): mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb5, 0x401, 0x1) r0 = io_uring_setup$auto(0x5, 0x0) mmap$auto(0x62eae97c, 0x402000b, 0x6, 0xeb7, r0, 0x1001) close_range$auto(0x2, 0xa, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x808a0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x240082, 0x0) close_range$auto(0x2, 0x8, 0x0) renameat2$auto(0xffffffffffffffff, 0x0, r0, &(0x7f00000001c0)='./file2\x00', 0x3a0000) socket(0x18, 0x5, 0x0) get_robust_list$auto(0x1, 0x0, 0x0) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) ioctl$auto_PPPIOCSFLAGS(r2, 0x40047459, 0x0) read$auto(r1, 0x0, 0x8020) 4.42555938s ago: executing program 1 (id=2939): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40000, 0x0) (async) socket(0xa, 0x1, 0x84) openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0xa7758d7d77df4de9, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async) close_range$auto(0x2, 0x8, 0x0) 4.408910569s ago: executing program 2 (id=2940): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/au0828/version\x00', 0x200, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000640), 0x401, 0x0) write$auto(r1, 0x0, 0xff) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x80, 0x3ff, 0x2, 0x6, 0x48, 0x4909b6f8, 0x5, 0x7, 0x200003, 0x2, 0xd27, 0x3, 0x20005, 0x4, 0xb4, 0x800a, 0xa, 0x10001, 0x2, 0x100000000, 0x800000, 0x7, 0x7, 0x200, 0xfffffffd, 0x84, 0x4, 0x6, 0x2, 0x0, 0x0, [0x0, 0x0, 0x1, 0x2bc, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000, 0x4000000, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x5, 0x20000000000, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffdf26, 0x0, 0x0, 0x2, 0x0, 0x0, 0xec4e, 0x0, 0x3ff, 0x0, 0x0, 0x7, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x400c800}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) ioctl$auto_TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000df, 0x20000000040eb1, 0x401, 0x300000000000) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r3) sendmsg$auto_NL80211_CMD_DEL_PMK(r2, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200025bd7000ffdbdf257c00000008006b00010000000800690001000001000000697389bda47318bbcf4cc2e8d624bdf45140ffe0ef12d5c1d46ddae16f3f1aecc13ecd64debbd853ddc725aac42242910c5d"], 0x34}, 0x1, 0x0, 0x0, 0x8840}, 0x80) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x8000, 0x0) connect$auto(0xffffffffffffffff, 0x0, 0x3a) sysfs$auto(0x2, 0x9, 0x0) r5 = set_tid_address$auto(&(0x7f0000000680)=0x101) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000006c0)={&(0x7f0000000ac0)={0x14b0, 0x0, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x1}, @WGDEVICE_A_FWMARK={0x8}, @WGDEVICE_A_PEERS={0x13b9, 0x8, 0x0, 0x1, [@typed={0x8, 0xe2, 0x0, 0x0, @pid}, @generic="d966a2c488c2c8ab434f8614d1a3755b4087ab3f781e53d6d1e32ae6b0ad1d632bd8a5da5971caeb7f6359144665bfbabe5deb024d4c2e1a9b6fa55d519474fb78eefbbee23e8dd87cab0ac00f9cbf7f2295d05e8694199cc54e81fac724aa82df8027ddcb4b748b369c9805980694e9638181c49d6270c3d397bd36f2d6bef944e10e441c28466790a580baf5278a7d354247d5aa0556ca48a4d89cd9532726c8427dc7e2670a0e441f", @nested={0x111e, 0x140, 0x0, 0x1, [@generic="5ed66d573eccd48513d71da702f806448165add86b9788a14ebfdeeb96d2", @typed={0x8, 0x8c, 0x0, 0x0, @uid}, @generic="01b2ab2657d215c0fa7bcd8f18037550bd3723329b4a80685918eb0712e535e2eeb671ef93d7c3c331b1d248a113f2ecdd8e0b15a688f40220813d51604c52412f8fa5529532676a3b2c518c54be07db25fd8f7a8090991816a27702b29d7655f7182d7ec0888c9dde6457607f5983955fa2cab67b730b881212398cabdd2b49d29d75605df0f95f02664fd47bc37840f2326bc43b972aa34eb9e7a1da63bdf04d8f1f3ad9c226d31838e208cbd50aee9a246816e694e5f8fa39e45fc11a1b98ed802ffa4033274723c23a83b0c13c7ac454d983cc54eba2b9a74d6aecf0a7b407d86e64", @typed={0x4, 0x10}, @nested={0x4, 0x108}, @generic="58cbc773f226ade073a59691baf9e7233ea38e8e0e384adebedf26f971d6e1d4041deb6baffd49d5000bbb60fda773649ebc4ccf6c75e3f88871cec2d88374361fcc676298c75d98b4f89a6545c869b86f19e9a63d3ba68adaa2d48e3cbb5148e3a50663552fda72cdfe9be87b4ec50296b91125382f1ae68fc93c2853c10d90c7672c090caa3a33200a3bbcbe003398d2bf61b6bcd18b0eeb97e4d62bcf5af11ef8c028fd04a69ee88f9f59cd70b8284ef586fc9076016e8c8612edf291b8a1b5444209a7574c7e4cdb333502536488b0384e1caf15f0f98f895120c50c39f22e7ebeb15c5822ac5aa7d5d9128bff8c9d7c2a68418292f46ae68a65f84705a3ed08a21e39f06a1b35a7822047284cf89ae4b23d5d522c6a1289899c50ccd45c79a03e4ec8488d4fdd3189801f1fcf2c941c944ca8c6a6492c5c9abda9fd746d17e434592f28dc4ee43d5b961d6bcdc4e9aa68c3fbfb8863758239e4fc29ca1c639671bcbcfe3621576abad8038c79886c164051e4bd88f25dd411801d5d3d7b73854de9e8fb60cbb9d76b501a3f9e9c9bdc0db5fe0ecbbc71716a880eff30c23d2455931d270db76078eba3dd07f55780987951c1161a4816ea413cd02367d155cdb60e882e5466c5ed066c7187f15b6c6cbfb5152f6a5eb7d88611614b2502fd10953f160f1757486304159806ff6c5df2b955dcffa7db93fb81399602d88eabd856ec8e159bcbd772b25f70e7e2290b04ee370332eaa40095699c3ce016cc289424e565a475efa4953a4ad9ca912936fc6d93396a01349d481d7927d426a79bf871c65c6558e025d144dbc6b9eb4cb6a8ad73bd6acb59da662c58638c8b258fb01d5aeaa8dbfc090b14f4dee44d08bff1257ff407dcf5007e642caee4617da65881f04e2e9389fe19350f2891c2dc38c055b95eccf4e93c879943d38f76be69023ea67c5ba67fb50bd7b05078b7a0dc27cb93cfc4b1e75a3406275f2f4fd9fd86fcce809b88e847b2d3bc8b9525fd8b66f2ee3ea315e3300215592d7f17b8c29975cc6050638a69f295451194e3f7c15ec65211a11e03ee2d3930e5f3f71d651e1ab75a829e8f6b33554faa4f2a268431d4e76390832752ea60a4f12889976d4e0e968e50b0377f34ca6bf0a168c60576b1d4fb569e0578f5b6ff5613bcbfa7f4aec9eb5c175cdc73212f042761c423c560b349ef5ac2c7b0373c23cc5cd95459c6e764278601015c877481af84250941ee7bad1712ed8692a864c0b241c7a9fd3fedc88257b92689ff844b7e10f59a3aa42ab7f577c0e698d6de0c9dfed9c06d1984e23a1ad927981eb7afa1535f68d1c639a105bf1c02eef0d3da1a941b374de3879105e50952140c09b4d8b8bcf03dd8e08c098ee6bc5932f119c8119983d84fdbea9f6ecebb9b523099cb1cb394d04e74da2b0cd4fcd47ba3444257201c17f2e4791e597e7bdad11737db4a77b6de6fdbce75cbb57aac70257211207ff33b3f5d15b8f748145856d12ce383f5032d0424c5f8af671006452cb715a366d69bb5c7e312aee7687d0b4f06557f19b1614a8bc99338ab585dacb832ddb60c9c7ab2efc8e4ba31357a10a72405f668de4391ca194fcc87966af9c454977cacba2e2753202206b683c0dd822e51dc77c316917958cab7f401440326587225abed0c01018f10d59c922b749d97f8e9b4826de1d7efae93f53f54f081433ac7e30f862cb0e27d01c92816e3ceb82823540c5ccdd88f6efbe587b640bbed15565e14722e260e20938cfff2685b82dba44959d892aea7df88ab5655de26bf0f8a85b5d376cbd081abc1e0d384cb1bfce23348e7aac1a82a06b3b28101304686b548feb2adf077575d13674d69fbba980eabe6e62a7d002b9c274a2ab18350449b468f79f964742983185aa54b57c09a0d65c49dedc76801169d14a2adf042fe73e538cc19a40e6823a3deadac56075c043b3e7161167f4b0c0c1b951f01cfad9d64b6ecd91f1bca864bbb61d6e965bd5d82236b0222aabf287fac3ac03395ea11846b72e07cd66f2693672374084eba3749714ebf4af0ead39d4cc968976af4d13d0e495445ff76af9451c7c87231c85fd124fe02d9c7f56b885bd07aa481f9efcc524c4a955ae627216f863a8c39fe0af099b99ce51c86e07a24d6d075f880b564b7735d74e8c2b8b043740c8ec7136ff2567c0d18d0909eaeb0d0a75fe6b01719812b6f3cc78d3358c8bf8ab509fe43a585d79339fa063d1a6c9a3e83c3cb31928336c1151d6ef957c29c5a4a4f6cf72f16deeed49081fd7fecd548909918bb2a7db78167e5c2809177e6b9e4cc8d7629c4a8a8e719d91d9d504ed21f6828dcf7767ece77ce7694216472674ce453a2a191ba109f18cb319652008d8dff0923341dd932e63559a690fcb889c7891504c2e5b6fdaa100e1a7ef014dba6e505c6d4c3243d872fab1b08175d708c9c605caf819f146e95cbfd45ff4b8b1d09ae751aff4c5222fcceacee483853a9f65d70b3e2e3c6a25f11da296673ad93ff5eaaf8fd9bbb2cf5f22373a59874686de13537d2984a4d227cb7f80434f54fc88ff67f78832cef95d259c6c5949e5f87090524764e04feaac273bb0f097b78cb605d5717b4fea1598d923c0cd4f5c05e68158b6b16e568f4a5194faca1c21a5ad9f2ad028da9be563b43dd5371a1648d7c4c031127782a91eb7632137916ff6b81d575db71981f3e77ec84ebb94a8db777d3c3dea1fccea26b9ede4b16f6b890809a321a8b1f85c89ce38c3c9e574e270d6fe7d20ba09be84bf6bb32a9a8cbc5fcfa3d8ffe5b0c1233b2f92c9d6be303ea400445243abdd33bb7379e365f40393ac4129c5bbf2f381b17b8a7d534f1da67309885026efce1244d5928096ce89407e1dc25c3609c1286a4424dda7bfc4d36a81c46bce6ab16c98f703c0d30de5c3f1f438127dd49c3d21009bfcda6271828601b7d7b5cf4e5005bb5974038205976d55771c1e45ee4d2e4e3424a96b477d550f611b39a1a283a07b712dd49ed4114ccccfec98bcd2aad555cc3b92f8a2dcacc49290fa57a4ef4e9f3aefad08715a596cd2f806440b8c5443ef29e2f20feae265b4c6eaa92257b91591e293d0d58e80957fa9fb6193d9bc2607ba561462588afb010095fb006c61cd062852ff066e337ec9f5472855d68dd6ea1eb8e74583b25bfe537e675e530d00348febcd30be0e2b783149c0933675d1caa05824394dcdb56cdadfad8fa6ab269b8346234fbfd9c4e72b7e9a45588b44911b2d0f6fd99cac793236d70ab2d05955629806101140b6b408344155632d1a7cdac9acc3eb8efa1e295957215c01810544bebb0d58d426067cf9d59c291efa3edeae92e7dca29b83b37644470bffc4a56efdd951321cd4d92cce0900c4badac508645b7cf764c9e644816ad4ae2a65a90b909f81a234945cc56ff3a4da8bbaf884d5a57911ac90d1c337f0f022b8154486d16fa805c063d0f4a10041fb8b89d2d14ea9b756e74746edf08aabe56eb6f023ebfbb1f1736b23ebac8b5ec49a46f4203e9bc6db2e64914187e0471d39bf1e7b8ebf9f62eb001307e5624ecd2b4bcbd928c744adfa3c0587fe33e74d246a832a0bd13c42e0ef6e1ed32c374def7ee0810828a416ae56e591252d1f04c43e7f3b97d95f2f8d659c6ee2f7fa45e263133c10c844b421951907b4117510e6a6fdd2cecd30603cb8bfca1c5ce8e2c79bfe5893cc5180625c863d6cc7f7d0fea18ad5ad27d355fa64f7b9bd476ca14014924d2eb2bccbb3d140a7878f7599cbbeaba8065a2f6eebacdc54292da805beb662837e121217b3fc6c0294ae43ba85d52efc06db4ce67723bce009264e1e60fc39ede228ed0d15317f1aa65383f276fcb7a77012bb0423b723df9ad335814b3af2931c9ed85ec6060c2e33516aad53d526a128bff61038015c9785836cab6128d8f17d8eaa81c89fd70db107ca07d2bd3e5faa0e45d54379e5f0e9820d93732c24e93e6e39c74df1fff409d398990af59733700e86d795685c2cb98b03acdbae4d3812ed6d118b7bb90ac6315b074616e30f09518642df99c662c85757fae2a1475607081b0e2599939f779bf38419631f348bd37c3b454977f4c7a22073259fbca7d50d016ff263972e80c7fa4d0aa5873a534ed3fd8277e984e8dcf292a438896554da45be58f9c625bb5a79a986b40b113e7b7ae63dba6965e820d752a4c4b3dd8eeea7ef71fad7232440223de3065b37c7436af9e1fe5e4d13a7284edd4bf51c02fd1a2fce19fbb54a7f715fe6f4469322ae310cf312db6c21d82be6585c59fc56a1d192b109c4948875a624b0a5bfba6115846af5a994780e03034591a59e7d0961653d1c8a57e67b95777c5a734000e4f06fad2261ddac7f689822efff15d5df46e9b54c26a9d41cf0a83d6bea29cbf7b25058119e839e7d14fe864301e00bc64e0f808ed521b496afa47c6565db4327434afbfd83a866bbaee9e2f2f9e4176d3ffa2a923adaad21e6a6e4b1a4cb5481343c9ed58ec28a268b0ddca02de1a80297f2f5929b8fad966dfdd949a21b4832854a726718c3e282944d4135751c9eed900bdd42b3f7c62deff1d6042f9a50f56244a25469b4847a90f17252855389ea841f2edb2295d5cc9940e3fd78f40b76225bf5cc9a6e24e2e27530165977c4a534b5e4f95f25601a6582a1cb774850c7938848b66de9ddbac6940710ea93a1e34e12999c74b43acb91f57a42495d1e9fc46588e43069e2b9a116b2a75d066cafbd5f25b32e9000fdea05fc0806a04e95c55711b6a8ce3f57799c096634eba74a923418e7f89c34a6372cd13381619a1a1c1342fa74d61b36944327988a5f09a1510a88eded77b24a5447e4d89a3d6425f4178f82ee67943825938292fedcee41fe45b81a8e9998cb718253f3933ceaf988ead29f58fe47f4ee68d08a80f822404d93600c0aa83b8e762856a454b9986269cb5126bab8cf684e532775b0d77f6e06c23705fb98455c64ddfc17d9bfa6c8ce719196c4a78ea2bf2bf52c86ee48d5bbe0b4ff92c0297f5c9bfbe4116aa640101af3af62c50d80e1c837767f44c74f7f830a438d911e1ddd04771d7c125ae54e47f487eab1d7d1e3d0d2c64765500ba9f42392eff5a4523b010da6fde0391ad0ca42488e9ab1e919d06e486202f6e06768182b8b3d56a4fdae5cbf15ff4cbcdefd29c27c60aa37a98cbe86d20e7afb7f593fcd425b51a0be00ad9ae89b340a010e3cfabb89e71ad27727e3ee601cab0fa953a63cb27494d062ff7ccccac490924667569e2d06adb9f7d565e3aef338f90979b7c10d94f7a95ade4655d42f659b4980e3b46163ea68692b50987c16d86c845d8c0167eab61f3314cc410558a39aa597c5d875bed05a418e1a0981b24ecbc4043d26624dfca098759747df10de102e47cdb37542cdccadc160f0a058364bfd5db79728e2ed82c7cc5700c04a298411d76408120bbf1f4f66fc60f60cdf046d23272db08e6122d7de4bba42db8267afb0be0104d886c76b17572eb2856dc0c5c3a16deea5177bcb9be580b2da9a78a02e761558e81d4904cf3742b7d29adf68899e86a73c4c3d23def7d3f09e4f50f83d6037351502c760b7faa1453ae15936b15b8acc87d120de8f3e842cf5d20221600c647c09fe30e9c93458641556d4ab2e5fe2d2c34dca9b3b66d77db91f5c3c03ee9ddc44294ac0f358956f85806014276e6b66abb8325d31b59dfca20aefec074be39590004991c603992f4756e952b0266f61312062ae351146e47b4b399e636d3b7", @nested={0x4, 0x123}, @nested={0x4, 0x20}]}, @typed={0x8, 0x128, 0x0, 0x0, @pid}, @generic="4de9f8432989c72062e563a84104770cc51e817f83368e74b15b153d4cc5072815eb3f2ad1b83a2e457e4550c4c0396ba8d0e736328ed943d55ea4290ac0475f54ff6281faecb555ce31328a892945101c6a78a218ecd9d11b16259456004457e104149b568f09b1e7eea8e101d1c14fd885ead3006c6c31adef4f89f386e4672864eabbfa3129d56ca19f3d0f259961a1afb65f0b27fc7827ed56ada4a0ed3b42e3a81b90558eb338bb775dcac67b0d23fd0a9229de70b28da24aee347abb75a26f5e9dac0115951172dbb58399ad1c12298cb8dffc22bbc5de50f4f28a3cb340c1f2edfe3f30", @nested={0x8, 0x1f, 0x0, 0x1, [@nested={0x4, 0x10e}]}, @nested={0xe4, 0x3, 0x0, 0x1, [@typed={0xdd, 0x9b, 0x0, 0x0, @binary="51e65af8ea22c7d525be4470a2aba6fd6e2e005711ce6a439517422d0ab697ca60847fec212e62d4e8b90b177ef1ccccf0c099c3f0b5aa93aef024a974f7b94850e8060ae25b231c6df3ae4e3be5c8d627e09a799e36f284fd2f5edb823ab436c92b5e6a008fe4a3d08cbf71267cca5489081cea3465e7cf5b20991cfb1b15a013395d36b8900c63fdc41c08f2b5dbb83bc3221235a54e42618b57dc6251e4c46e23186c490f60ec3e2ce78f1624886e34c21463488b8c804db191824731d24eab873345232dce7af980c123ea9c8d5267ad08276e4de85982"}]}, @typed={0x8, 0xfa, 0x0, 0x0, @pid=r5}]}, @WGDEVICE_A_PRIVATE_KEY={0xae, 0x3, "49fcb3d94f050c7e926d69a7750d31a59925a0ec3951949fb639264d9eb3e5b31958780fd2b7d079143577619a15fe940a17588267272aa77d84abece35488ce069f85382cd8ea36e9a6478f19078ba5c4a4673feb05335298da3ac1ec75197bbd2ada61ce60975b74776cfcce3ec843b3b71ea8f5942f26f0a4fbf0abfd31298deed0a75bed4c35b3f5f1134026ffdb6b7cd3d229def5afed3e791becfbe93ec463b5d70f9bb8e9ab80"}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'vlan1\x00'}, @WGDEVICE_A_PUBLIC_KEY={0x9, 0x4, "7a61288406"}]}, 0x14b0}, 0x1, 0x0, 0x0, 0x80}, 0x10) fsconfig$auto(0xffffffffffffffff, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)='+', 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x24, 0x4008) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000640)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="020029bd7000fbdbdf250600000028000e009fae1882e4518b53f5cc80b64a1bfbafdf917911e9a6db9989c08b63eb3ce58a010e5d6f"], 0x3c}}, 0x4040800) bpf$auto(0xfc6b, &(0x7f0000000440)=@bpf_attr_3={0x0, 0xfffffff8, 0x1, 0x4, 0x0, 0x3, 0x1e6, 0x80000001, 0x6, "514df63a4de2d4b5347a734ee2f10362", r6, 0x4a1b, r0, 0x8, 0xdf, 0x6, 0x52c2, 0x1, 0x7e5, 0x6e3, @attach_prog_fd, 0x8, 0xc60, 0x2000000000, 0x7f0, 0x2ba8, r0}, 0xff) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000000), r2) 4.212945724s ago: executing program 1 (id=2941): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/netfilter/nf_log/6\x00', 0xa0202, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x1, 0x0, 0x80000000) openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x201, 0x0) mmap$auto(0x0, 0xb8, 0x8df, 0xeb1, 0xffffffffffffffff, 0x80000000008000) io_uring_setup$auto(0x6, 0x0) io_uring_setup$auto(0x4, 0x0) mmap$auto(0x0, 0x276, 0xdf, 0xeb1, 0x401, 0x8000) futex$auto(&(0x7f0000000000)=0x6, 0x0, 0x6, &(0x7f0000000080)={0xffff}, 0x0, 0xd75b) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/ksm/merge_across_nodes\x00', 0x80202, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3b) socket(0x2, 0x2, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 4.167285702s ago: executing program 0 (id=2942): mmap$auto(0x0, 0x2020009, 0x3, 0xb8, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40880, 0x0) r1 = socket(0x18, 0x80000, 0x0) connect$auto(r1, &(0x7f0000000180)=@in={0x2, 0x4e22, @empty}, 0x1e) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)=""/124, 0x7c) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x410001, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x80003, 0x300) socket(0x1d, 0x2, 0x7) socket(0x2, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2a, 0x2, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sda\x00', 0x48001, 0x0) socket(0xb, 0x2, 0x0) io_uring_setup$auto(0xa, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0) socket(0xa, 0x5, 0x0) r2 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r2], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c804}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0x4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x4, 0x6) 4.166975083s ago: executing program 2 (id=2943): mmap$auto(0x0, 0x0, 0x10000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x5, 0x1ff, 0x9b73, 0x8000000000000003, 0x1) r0 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000001100), 0x82081, 0x0) setgroups$auto(0x0, 0x0) write$auto_uhid_fops_uhid(r0, 0x0, 0xfccd) r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffff7effffd04, &(0x7f00000001c0)) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/mac80211_hwsim/hwsim1/net/wlan1/statistics/rx_crc_errors\x00', 0x4c0442, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000100)=""/4096, 0x1000) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) timer_create$auto_CLOCK_TAI(0xb, 0x0, &(0x7f0000000200)=0xfb) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x2, 0x1d2c, 0x3, 0x4, 0x15f4da0e, 0x6, 0x9, 0x100000000000000c, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) write$auto_force_suspend_fops_hci_vhci(0xffffffffffffffff, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0) mmap$auto(0x5b16, 0x100000000202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x1) prctl$auto(0x400, 0x7fff, 0x0, 0x10000, 0x100000000000007) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder0\x00', 0x400, 0x0) ioperm$auto(0x7, 0x6, 0x80) syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) 3.657896277s ago: executing program 0 (id=2944): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/numa/demotion_enabled\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000020c0)=""/4123, 0x8f8) write$auto(r0, &(0x7f0000000040)='.\x00', 0xa) r1 = open_by_handle_at$auto(r0, &(0x7f0000000140)={0x9b, 0x5, "d2a8168d99b74fdf89e57a34373d105f9ac16ee6831c94a30e139cb03cab2c6eba9dad16c8e81509e20b07e06a99abf67955e71bbb3e6ea759afc46599065e3d8a3b6a579d5db1b5c59dde2438f956c5f88c67c21901007e2baec99f1ec99af7b06d1d02de5ddc4456b32a1108518157016fce6ef99fd6911d115ae8f9c95af0437a6ab1b059955a36db2b1eebe1436ac605607bcfbabf1888273b"}, 0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_GET(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, r3, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@OVS_METER_ATTR_ID={0x0, 0x1, 0x5}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x6}]}, 0xffffffffffffff88}, 0x1, 0x0, 0x0, 0x1}, 0x800) sendmsg$auto_OVS_METER_CMD_GET(r1, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x28, r3, 0x0, 0x70bd29, 0x25dfdbfe, {}, [@OVS_METER_ATTR_STATS={0x14, 0x3, {0x1, 0x2}}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4008025) r4 = socket(0xa, 0x801, 0x84) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, r4, 0x8000) bind$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xffd8) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mtd/mtd0/mtdblock0/queue/iosched/fifo_batch\x00', 0x80302, 0x0) sendfile$auto(r5, r5, 0x0, 0x7) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x24, r8, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x10, 0x3, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x2}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x24008040) sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYBLOB="040006"], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x800) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r6) r9 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000005c0), r6) sendmsg$auto_MACSEC_CMD_ADD_RXSC(r6, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000400)={0x1c, r9, 0x8ff972b65c311bf5, 0x70bd26, 0x25dfdbfe, {}, [@MACSEC_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x4000) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system/machinecheck/machinecheck0/ignore_ce\x00', 0x121042, 0x0) write$auto(r10, 0x0, 0x2) 3.033241002s ago: executing program 2 (id=2945): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rxrpc/stats\x00', 0xaa102, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'dummy0\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd70007ddbdf090c000000040003800c00018008000100b1f06801891aa9f31e79aba99709a7ac860cb3ef9365ffc8c618ba57d3fd24d1f342f991ec5079abe8eb9e3912cee6941e4fb92b55a0b38f1f3b15b0b0857dd4b9ec5c", @ANYRES32=r2, @ANYBLOB], 0x24}}, 0x0) r3 = socket(0xa, 0x2, 0x88) r4 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, r4, 0x4, 0x1ff, r3, @relative_id=0x13, 0xe602}, 0xf) sendmsg$auto_ETHTOOL_MSG_MODULE_SET(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x20008040}, 0x24040881) mremap$auto(0xb6a3, 0x4, 0xfffffffffffffffe, 0x3, 0x100000000) timer_settime$auto(0xeffffe00, 0x100, &(0x7f0000000200)={{0x20000003, 0x10007}, {0x5, 0x32}}, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x800400b, 0x2000000329, 0x2000000010012, 0xffffffffffffffff, 0x8000) sendmsg$auto_NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1400", @ANYRES16], 0x14}, 0x1, 0x0, 0x0, 0x20000895}, 0x20008890) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r5 = socket(0xa, 0x3, 0x3a) semctl$auto_IPC_INFO(0x1000, 0x9, 0x3, 0xb) ioctl$auto(r5, 0x8916, 0x1) r6 = socket(0x2, 0x5, 0x0) sendmmsg$auto(r6, &(0x7f0000000100)={{0x0, 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) r7 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r7, 0xc004743e, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/au0828/version\x00', 0x200, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) setresuid$auto(0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000) waitid$auto(0x5, 0xffffffffffffffff, &(0x7f00000001c0)={@siginfo_0_0={0x3ff, 0x2, 0x8, @_timer={0x0, 0x4, @sival_int, 0x4e}}}, 0x1a, &(0x7f00000002c0)={{0xf2fb, 0x1}, {0x7, 0x12}, 0x3, 0xe, 0x8000000000000000, 0x20000a2, 0x1, 0x5, 0x7, 0x400, 0x1, 0x2, 0x4, 0x3, 0x3, 0x22}) 3.021193872s ago: executing program 1 (id=2953): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x1, 0x84) socket(0x15, 0x5, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3) r1 = socket(0xa, 0x2, 0x88) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r2, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5?\xaa\x8fTi\xd6\x88Q\xda\xca', 0x20000000003f, 0x8) bpf$auto(0x0, &(0x7f00000002c0)=@link_update={r1, @new_prog_fd=0x4, 0xfffffffd, @old_prog_fd=r0}, 0xa3) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) 2.7785024s ago: executing program 1 (id=2946): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socketcall$auto_SYS_SOCKETPAIR(0x8, &(0x7f0000000000)=0x1000) ioctl$auto_RTC_AIE_ON(r0, 0x7001, 0x0) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x7d, 0x0, 0x8) 2.736596747s ago: executing program 2 (id=2947): r0 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) write$auto_cachefiles_daemon_fops_internal(r0, &(0x7f0000000300)="a04f", 0x2) unshare$auto(0x40000080) r1 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000040)=0x5) unshare$auto(0x40000080) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/set_event\x00', 0x101901, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r4 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) ioctl$auto(0xffffffffffffffff, 0x541b, 0x24) recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0) process_vm_readv$auto(r1, &(0x7f0000000100)={&(0x7f0000000080)="f855c8d9176cb2485ddb4476ce43284bb7972322440c326f8191693f75e78cddb42429185a8849ea625b789293bf515245df8258b76c79171861dc2ee1f17e812e60244bb71a3b0ca6b41a00d0589a4e92206b8f", 0x7ff}, 0x7, &(0x7f0000000240)={&(0x7f0000000140)="59f8acd951dc1b45ba87cde4ee6df06fc5ac38560e15dc4aa49b4563a3c00909a75e19f1c121d7925d1ffa1b6ac60d70d9a85e82e154c9062c9c9e513351f62ab9989111bfb4e70b43db972505295c69b5c48db09ef5d810c568ce621db94376f871150d5a0797ff183ce902cfced8f23ae576c7bfd017232dc329109e0ef957348a780e2c1fb53de30acdb7ef4d83599feec93e23bf0f708eff57190c83840eefcc205c76e9faea9764e92d8f675a60c99cd3f0da86fb1d69dd9eb5aec81f16262e352671dce1581e9651a5a6d088dc566660e876826c6ca03afa7d1086453d93ae08a4c53a", 0x1}, 0x7e4, 0x2) 2.352962462s ago: executing program 0 (id=2948): mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'ipvlan1\x00'}) mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb5, 0x401, 0x1) r0 = io_uring_setup$auto(0x5, 0x0) mmap$auto(0x62eae97c, 0x402000b, 0x6, 0xeb7, r0, 0x1001) close_range$auto(0x2, 0xa, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x808a0, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x240082, 0x0) close_range$auto(0x2, 0x8, 0x0) renameat2$auto(0xffffffffffffffff, 0x0, r0, &(0x7f00000001c0)='./file2\x00', 0x3a0000) socket(0x18, 0x5, 0x0) get_robust_list$auto(0x1, 0x0, 0x0) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) ioctl$auto_PPPIOCSFLAGS(r2, 0x40047459, 0x0) read$auto(r1, 0x0, 0x8020) 2.320102187s ago: executing program 1 (id=2949): r0 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) write$auto_cachefiles_daemon_fops_internal(r0, &(0x7f0000000300)="a04f", 0x2) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) prctl$auto_PR_SET_SHADOW_STACK_STATUS(0x4b, 0x3, 0x6, 0x9, 0xfffffffffffffffc) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, 0x0) unshare$auto(0x40000080) r2 = ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000040)=0x5) unshare$auto(0x40000080) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/set_event\x00', 0x101901, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) keyctl$auto(0x1f, 0x4, 0x7fffffffefff, 0x400, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r5 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a) sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) ioctl$auto(0xffffffffffffffff, 0x541b, 0x24) recvmmsg$auto(0x3, 0x0, 0xfffe, 0x6, 0x0) process_vm_readv$auto(r2, &(0x7f0000000100)={&(0x7f0000000080)="f855c8d9176cb2485ddb4476ce43284bb7972322440c326f8191693f75e78cddb42429185a8849ea625b789293bf515245df8258b76c79171861dc2ee1f17e812e60244bb71a3b0ca6b41a00d0589a4e92206b8f", 0x7ff}, 0x7, &(0x7f0000000240)={&(0x7f0000000140)="59f8acd951dc1b45ba87cde4ee6df06fc5ac38560e15dc4aa49b4563a3c00909a75e19f1c121d7925d1ffa1b6ac60d70d9a85e82e154c9062c9c9e513351f62ab9989111bfb4e70b43db972505295c69b5c48db09ef5d810c568ce621db94376f871150d5a0797ff183ce902cfced8f23ae576c7bfd017232dc329109e0ef957348a780e2c1fb53de30acdb7ef4d83599feec93e23bf0f708eff57190c83840eefcc205c76e9faea9764e92d8f675a60c99cd3f0da86fb1d69dd9eb5aec81f16262e352671dce1581e9651a5a6d088dc566660e876826c6ca03afa7d1086453d93ae08a4c53a", 0x1}, 0x7e4, 0x2) 1.491100086s ago: executing program 0 (id=2950): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/au0828/version\x00', 0x200, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000640), 0x401, 0x0) write$auto(r1, 0x0, 0xff) r2 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x80, 0x3ff, 0x2, 0x6, 0x48, 0x4909b6f8, 0x5, 0x7, 0x200003, 0x2, 0xd27, 0x3, 0x20005, 0x4, 0xb4, 0x800a, 0xa, 0x10001, 0x2, 0x100000000, 0x800000, 0x7, 0x7, 0x200, 0xfffffffd, 0x84, 0x4, 0x6, 0x2, 0x0, 0x0, [0x0, 0x0, 0x1, 0x2bc, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000, 0x4000000, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x5, 0x20000000000, 0x2, 0x0, 0x0, 0x0, 0xffffffffffffdf26, 0x0, 0x0, 0x2, 0x0, 0x0, 0xec4e, 0x0, 0x3ff, 0x0, 0x0, 0x7, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fe, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x400c800}, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) ioctl$auto_TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x0) mmap$auto(0x0, 0x10000, 0x4000000000df, 0x20000000040eb1, 0x401, 0x300000000000) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r3) sendmsg$auto_NL80211_CMD_DEL_PMK(r2, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200025bd7000ffdbdf257c00000008006b00010000000800690001000001000000697389bda47318bbcf4cc2e8d624bdf45140ffe0ef12d5c1d46ddae16f3f1aecc13ecd64debbd853ddc725aac42242910c5d"], 0x34}, 0x1, 0x0, 0x0, 0x8840}, 0x80) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x8000, 0x0) connect$auto(0xffffffffffffffff, 0x0, 0x3a) sysfs$auto(0x2, 0x9, 0x0) r5 = set_tid_address$auto(&(0x7f0000000680)=0x101) sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000006c0)={&(0x7f0000000ac0)={0x14b0, 0x0, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x1}, @WGDEVICE_A_FWMARK={0x8}, @WGDEVICE_A_PEERS={0x13b9, 0x8, 0x0, 0x1, [@typed={0x8, 0xe2, 0x0, 0x0, @pid}, @generic="d966a2c488c2c8ab434f8614d1a3755b4087ab3f781e53d6d1e32ae6b0ad1d632bd8a5da5971caeb7f6359144665bfbabe5deb024d4c2e1a9b6fa55d519474fb78eefbbee23e8dd87cab0ac00f9cbf7f2295d05e8694199cc54e81fac724aa82df8027ddcb4b748b369c9805980694e9638181c49d6270c3d397bd36f2d6bef944e10e441c28466790a580baf5278a7d354247d5aa0556ca48a4d89cd9532726c8427dc7e2670a0e441f", @nested={0x111e, 0x140, 0x0, 0x1, [@generic="5ed66d573eccd48513d71da702f806448165add86b9788a14ebfdeeb96d2", @typed={0x8, 0x8c, 0x0, 0x0, @uid}, @generic="01b2ab2657d215c0fa7bcd8f18037550bd3723329b4a80685918eb0712e535e2eeb671ef93d7c3c331b1d248a113f2ecdd8e0b15a688f40220813d51604c52412f8fa5529532676a3b2c518c54be07db25fd8f7a8090991816a27702b29d7655f7182d7ec0888c9dde6457607f5983955fa2cab67b730b881212398cabdd2b49d29d75605df0f95f02664fd47bc37840f2326bc43b972aa34eb9e7a1da63bdf04d8f1f3ad9c226d31838e208cbd50aee9a246816e694e5f8fa39e45fc11a1b98ed802ffa4033274723c23a83b0c13c7ac454d983cc54eba2b9a74d6aecf0a7b407d86e64", @typed={0x4, 0x10}, @nested={0x4, 0x108}, @generic="58cbc773f226ade073a59691baf9e7233ea38e8e0e384adebedf26f971d6e1d4041deb6baffd49d5000bbb60fda773649ebc4ccf6c75e3f88871cec2d88374361fcc676298c75d98b4f89a6545c869b86f19e9a63d3ba68adaa2d48e3cbb5148e3a50663552fda72cdfe9be87b4ec50296b91125382f1ae68fc93c2853c10d90c7672c090caa3a33200a3bbcbe003398d2bf61b6bcd18b0eeb97e4d62bcf5af11ef8c028fd04a69ee88f9f59cd70b8284ef586fc9076016e8c8612edf291b8a1b5444209a7574c7e4cdb333502536488b0384e1caf15f0f98f895120c50c39f22e7ebeb15c5822ac5aa7d5d9128bff8c9d7c2a68418292f46ae68a65f84705a3ed08a21e39f06a1b35a7822047284cf89ae4b23d5d522c6a1289899c50ccd45c79a03e4ec8488d4fdd3189801f1fcf2c941c944ca8c6a6492c5c9abda9fd746d17e434592f28dc4ee43d5b961d6bcdc4e9aa68c3fbfb8863758239e4fc29ca1c639671bcbcfe3621576abad8038c79886c164051e4bd88f25dd411801d5d3d7b73854de9e8fb60cbb9d76b501a3f9e9c9bdc0db5fe0ecbbc71716a880eff30c23d2455931d270db76078eba3dd07f55780987951c1161a4816ea413cd02367d155cdb60e882e5466c5ed066c7187f15b6c6cbfb5152f6a5eb7d88611614b2502fd10953f160f1757486304159806ff6c5df2b955dcffa7db93fb81399602d88eabd856ec8e159bcbd772b25f70e7e2290b04ee370332eaa40095699c3ce016cc289424e565a475efa4953a4ad9ca912936fc6d93396a01349d481d7927d426a79bf871c65c6558e025d144dbc6b9eb4cb6a8ad73bd6acb59da662c58638c8b258fb01d5aeaa8dbfc090b14f4dee44d08bff1257ff407dcf5007e642caee4617da65881f04e2e9389fe19350f2891c2dc38c055b95eccf4e93c879943d38f76be69023ea67c5ba67fb50bd7b05078b7a0dc27cb93cfc4b1e75a3406275f2f4fd9fd86fcce809b88e847b2d3bc8b9525fd8b66f2ee3ea315e3300215592d7f17b8c29975cc6050638a69f295451194e3f7c15ec65211a11e03ee2d3930e5f3f71d651e1ab75a829e8f6b33554faa4f2a268431d4e76390832752ea60a4f12889976d4e0e968e50b0377f34ca6bf0a168c60576b1d4fb569e0578f5b6ff5613bcbfa7f4aec9eb5c175cdc73212f042761c423c560b349ef5ac2c7b0373c23cc5cd95459c6e764278601015c877481af84250941ee7bad1712ed8692a864c0b241c7a9fd3fedc88257b92689ff844b7e10f59a3aa42ab7f577c0e698d6de0c9dfed9c06d1984e23a1ad927981eb7afa1535f68d1c639a105bf1c02eef0d3da1a941b374de3879105e50952140c09b4d8b8bcf03dd8e08c098ee6bc5932f119c8119983d84fdbea9f6ecebb9b523099cb1cb394d04e74da2b0cd4fcd47ba3444257201c17f2e4791e597e7bdad11737db4a77b6de6fdbce75cbb57aac70257211207ff33b3f5d15b8f748145856d12ce383f5032d0424c5f8af671006452cb715a366d69bb5c7e312aee7687d0b4f06557f19b1614a8bc99338ab585dacb832ddb60c9c7ab2efc8e4ba31357a10a72405f668de4391ca194fcc87966af9c454977cacba2e2753202206b683c0dd822e51dc77c316917958cab7f401440326587225abed0c01018f10d59c922b749d97f8e9b4826de1d7efae93f53f54f081433ac7e30f862cb0e27d01c92816e3ceb82823540c5ccdd88f6efbe587b640bbed15565e14722e260e20938cfff2685b82dba44959d892aea7df88ab5655de26bf0f8a85b5d376cbd081abc1e0d384cb1bfce23348e7aac1a82a06b3b28101304686b548feb2adf077575d13674d69fbba980eabe6e62a7d002b9c274a2ab18350449b468f79f964742983185aa54b57c09a0d65c49dedc76801169d14a2adf042fe73e538cc19a40e6823a3deadac56075c043b3e7161167f4b0c0c1b951f01cfad9d64b6ecd91f1bca864bbb61d6e965bd5d82236b0222aabf287fac3ac03395ea11846b72e07cd66f2693672374084eba3749714ebf4af0ead39d4cc968976af4d13d0e495445ff76af9451c7c87231c85fd124fe02d9c7f56b885bd07aa481f9efcc524c4a955ae627216f863a8c39fe0af099b99ce51c86e07a24d6d075f880b564b7735d74e8c2b8b043740c8ec7136ff2567c0d18d0909eaeb0d0a75fe6b01719812b6f3cc78d3358c8bf8ab509fe43a585d79339fa063d1a6c9a3e83c3cb31928336c1151d6ef957c29c5a4a4f6cf72f16deeed49081fd7fecd548909918bb2a7db78167e5c2809177e6b9e4cc8d7629c4a8a8e719d91d9d504ed21f6828dcf7767ece77ce7694216472674ce453a2a191ba109f18cb319652008d8dff0923341dd932e63559a690fcb889c7891504c2e5b6fdaa100e1a7ef014dba6e505c6d4c3243d872fab1b08175d708c9c605caf819f146e95cbfd45ff4b8b1d09ae751aff4c5222fcceacee483853a9f65d70b3e2e3c6a25f11da296673ad93ff5eaaf8fd9bbb2cf5f22373a59874686de13537d2984a4d227cb7f80434f54fc88ff67f78832cef95d259c6c5949e5f87090524764e04feaac273bb0f097b78cb605d5717b4fea1598d923c0cd4f5c05e68158b6b16e568f4a5194faca1c21a5ad9f2ad028da9be563b43dd5371a1648d7c4c031127782a91eb7632137916ff6b81d575db71981f3e77ec84ebb94a8db777d3c3dea1fccea26b9ede4b16f6b890809a321a8b1f85c89ce38c3c9e574e270d6fe7d20ba09be84bf6bb32a9a8cbc5fcfa3d8ffe5b0c1233b2f92c9d6be303ea400445243abdd33bb7379e365f40393ac4129c5bbf2f381b17b8a7d534f1da67309885026efce1244d5928096ce89407e1dc25c3609c1286a4424dda7bfc4d36a81c46bce6ab16c98f703c0d30de5c3f1f438127dd49c3d21009bfcda6271828601b7d7b5cf4e5005bb5974038205976d55771c1e45ee4d2e4e3424a96b477d550f611b39a1a283a07b712dd49ed4114ccccfec98bcd2aad555cc3b92f8a2dcacc49290fa57a4ef4e9f3aefad08715a596cd2f806440b8c5443ef29e2f20feae265b4c6eaa92257b91591e293d0d58e80957fa9fb6193d9bc2607ba561462588afb010095fb006c61cd062852ff066e337ec9f5472855d68dd6ea1eb8e74583b25bfe537e675e530d00348febcd30be0e2b783149c0933675d1caa05824394dcdb56cdadfad8fa6ab269b8346234fbfd9c4e72b7e9a45588b44911b2d0f6fd99cac793236d70ab2d05955629806101140b6b408344155632d1a7cdac9acc3eb8efa1e295957215c01810544bebb0d58d426067cf9d59c291efa3edeae92e7dca29b83b37644470bffc4a56efdd951321cd4d92cce0900c4badac508645b7cf764c9e644816ad4ae2a65a90b909f81a234945cc56ff3a4da8bbaf884d5a57911ac90d1c337f0f022b8154486d16fa805c063d0f4a10041fb8b89d2d14ea9b756e74746edf08aabe56eb6f023ebfbb1f1736b23ebac8b5ec49a46f4203e9bc6db2e64914187e0471d39bf1e7b8ebf9f62eb001307e5624ecd2b4bcbd928c744adfa3c0587fe33e74d246a832a0bd13c42e0ef6e1ed32c374def7ee0810828a416ae56e591252d1f04c43e7f3b97d95f2f8d659c6ee2f7fa45e263133c10c844b421951907b4117510e6a6fdd2cecd30603cb8bfca1c5ce8e2c79bfe5893cc5180625c863d6cc7f7d0fea18ad5ad27d355fa64f7b9bd476ca14014924d2eb2bccbb3d140a7878f7599cbbeaba8065a2f6eebacdc54292da805beb662837e121217b3fc6c0294ae43ba85d52efc06db4ce67723bce009264e1e60fc39ede228ed0d15317f1aa65383f276fcb7a77012bb0423b723df9ad335814b3af2931c9ed85ec6060c2e33516aad53d526a128bff61038015c9785836cab6128d8f17d8eaa81c89fd70db107ca07d2bd3e5faa0e45d54379e5f0e9820d93732c24e93e6e39c74df1fff409d398990af59733700e86d795685c2cb98b03acdbae4d3812ed6d118b7bb90ac6315b074616e30f09518642df99c662c85757fae2a1475607081b0e2599939f779bf38419631f348bd37c3b454977f4c7a22073259fbca7d50d016ff263972e80c7fa4d0aa5873a534ed3fd8277e984e8dcf292a438896554da45be58f9c625bb5a79a986b40b113e7b7ae63dba6965e820d752a4c4b3dd8eeea7ef71fad7232440223de3065b37c7436af9e1fe5e4d13a7284edd4bf51c02fd1a2fce19fbb54a7f715fe6f4469322ae310cf312db6c21d82be6585c59fc56a1d192b109c4948875a624b0a5bfba6115846af5a994780e03034591a59e7d0961653d1c8a57e67b95777c5a734000e4f06fad2261ddac7f689822efff15d5df46e9b54c26a9d41cf0a83d6bea29cbf7b25058119e839e7d14fe864301e00bc64e0f808ed521b496afa47c6565db4327434afbfd83a866bbaee9e2f2f9e4176d3ffa2a923adaad21e6a6e4b1a4cb5481343c9ed58ec28a268b0ddca02de1a80297f2f5929b8fad966dfdd949a21b4832854a726718c3e282944d4135751c9eed900bdd42b3f7c62deff1d6042f9a50f56244a25469b4847a90f17252855389ea841f2edb2295d5cc9940e3fd78f40b76225bf5cc9a6e24e2e27530165977c4a534b5e4f95f25601a6582a1cb774850c7938848b66de9ddbac6940710ea93a1e34e12999c74b43acb91f57a42495d1e9fc46588e43069e2b9a116b2a75d066cafbd5f25b32e9000fdea05fc0806a04e95c55711b6a8ce3f57799c096634eba74a923418e7f89c34a6372cd13381619a1a1c1342fa74d61b36944327988a5f09a1510a88eded77b24a5447e4d89a3d6425f4178f82ee67943825938292fedcee41fe45b81a8e9998cb718253f3933ceaf988ead29f58fe47f4ee68d08a80f822404d93600c0aa83b8e762856a454b9986269cb5126bab8cf684e532775b0d77f6e06c23705fb98455c64ddfc17d9bfa6c8ce719196c4a78ea2bf2bf52c86ee48d5bbe0b4ff92c0297f5c9bfbe4116aa640101af3af62c50d80e1c837767f44c74f7f830a438d911e1ddd04771d7c125ae54e47f487eab1d7d1e3d0d2c64765500ba9f42392eff5a4523b010da6fde0391ad0ca42488e9ab1e919d06e486202f6e06768182b8b3d56a4fdae5cbf15ff4cbcdefd29c27c60aa37a98cbe86d20e7afb7f593fcd425b51a0be00ad9ae89b340a010e3cfabb89e71ad27727e3ee601cab0fa953a63cb27494d062ff7ccccac490924667569e2d06adb9f7d565e3aef338f90979b7c10d94f7a95ade4655d42f659b4980e3b46163ea68692b50987c16d86c845d8c0167eab61f3314cc410558a39aa597c5d875bed05a418e1a0981b24ecbc4043d26624dfca098759747df10de102e47cdb37542cdccadc160f0a058364bfd5db79728e2ed82c7cc5700c04a298411d76408120bbf1f4f66fc60f60cdf046d23272db08e6122d7de4bba42db8267afb0be0104d886c76b17572eb2856dc0c5c3a16deea5177bcb9be580b2da9a78a02e761558e81d4904cf3742b7d29adf68899e86a73c4c3d23def7d3f09e4f50f83d6037351502c760b7faa1453ae15936b15b8acc87d120de8f3e842cf5d20221600c647c09fe30e9c93458641556d4ab2e5fe2d2c34dca9b3b66d77db91f5c3c03ee9ddc44294ac0f358956f85806014276e6b66abb8325d31b59dfca20aefec074be39590004991c603992f4756e952b0266f61312062ae351146e47b4b399e636d3b7", @nested={0x4, 0x123}, @nested={0x4, 0x20}]}, @typed={0x8, 0x128, 0x0, 0x0, @pid}, @generic="4de9f8432989c72062e563a84104770cc51e817f83368e74b15b153d4cc5072815eb3f2ad1b83a2e457e4550c4c0396ba8d0e736328ed943d55ea4290ac0475f54ff6281faecb555ce31328a892945101c6a78a218ecd9d11b16259456004457e104149b568f09b1e7eea8e101d1c14fd885ead3006c6c31adef4f89f386e4672864eabbfa3129d56ca19f3d0f259961a1afb65f0b27fc7827ed56ada4a0ed3b42e3a81b90558eb338bb775dcac67b0d23fd0a9229de70b28da24aee347abb75a26f5e9dac0115951172dbb58399ad1c12298cb8dffc22bbc5de50f4f28a3cb340c1f2edfe3f30", @nested={0x8, 0x1f, 0x0, 0x1, [@nested={0x4, 0x10e}]}, @nested={0xe4, 0x3, 0x0, 0x1, [@typed={0xdd, 0x9b, 0x0, 0x0, @binary="51e65af8ea22c7d525be4470a2aba6fd6e2e005711ce6a439517422d0ab697ca60847fec212e62d4e8b90b177ef1ccccf0c099c3f0b5aa93aef024a974f7b94850e8060ae25b231c6df3ae4e3be5c8d627e09a799e36f284fd2f5edb823ab436c92b5e6a008fe4a3d08cbf71267cca5489081cea3465e7cf5b20991cfb1b15a013395d36b8900c63fdc41c08f2b5dbb83bc3221235a54e42618b57dc6251e4c46e23186c490f60ec3e2ce78f1624886e34c21463488b8c804db191824731d24eab873345232dce7af980c123ea9c8d5267ad08276e4de85982"}]}, @typed={0x8, 0xfa, 0x0, 0x0, @pid=r5}]}, @WGDEVICE_A_PRIVATE_KEY={0xae, 0x3, "49fcb3d94f050c7e926d69a7750d31a59925a0ec3951949fb639264d9eb3e5b31958780fd2b7d079143577619a15fe940a17588267272aa77d84abece35488ce069f85382cd8ea36e9a6478f19078ba5c4a4673feb05335298da3ac1ec75197bbd2ada61ce60975b74776cfcce3ec843b3b71ea8f5942f26f0a4fbf0abfd31298deed0a75bed4c35b3f5f1134026ffdb6b7cd3d229def5afed3e791becfbe93ec463b5d70f9bb8e9ab80"}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'vlan1\x00'}, @WGDEVICE_A_PUBLIC_KEY={0x9, 0x4, "7a61288406"}]}, 0x14b0}, 0x1, 0x0, 0x0, 0x80}, 0x10) fsconfig$auto(0xffffffffffffffff, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040)='+', 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x24, 0x4008) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000640)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="020029bd7000fbdbdf250600000028000e009fae1882e4518b53f5cc80b64a1bfbafdf917911e9a6db9989c08b63eb3ce58a010e5d6f"], 0x3c}}, 0x4040800) bpf$auto(0xfc6b, &(0x7f0000000440)=@bpf_attr_3={0x0, 0xfffffff8, 0x1, 0x4, 0x0, 0x3, 0x1e6, 0x80000001, 0x6, "514df63a4de2d4b5347a734ee2f10362", r6, 0x4a1b, r0, 0x8, 0xdf, 0x6, 0x52c2, 0x1, 0x7e5, 0x6e3, @attach_prog_fd, 0x8, 0xc60, 0x2000000000, 0x7f0, 0x2ba8, r0}, 0xff) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000000), r2) 939.57563ms ago: executing program 0 (id=2951): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, r0, 0x0) r2 = socket(0x10, 0x2, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3) read$auto(r3, &(0x7f0000000000)='\x00', 0x91e2) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) socket(0x22, 0x3, 0x0) pipe$auto(0x0) socket(0xa, 0x5, 0x0) clone$auto(0x7fff, 0xff, 0x0, 0x0, 0x7) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/conf/macvlan1/secure_redirects\x00', 0x80800, 0x0) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x17, 0x0, 0x14) 236.760478ms ago: executing program 2 (id=2952): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x8, 0xdc, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x66) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000080)=@enable_stats={0x3}, 0x8) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) write$auto(0x6, 0x0, 0x100000001) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x42, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/ext4/sda1/msg_count\x00', 0x80, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000000)=""/9, 0x9) ioctl$auto(r1, 0x9210640c, 0xffffffffffffffff) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x100, 0x0) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) read$auto(r3, &(0x7f0000000040)='(-{%\x00', 0x4b) close_range$auto(r0, 0xffffffffffffffff, 0x7) 0s ago: executing program 0 (id=2954): msgctl$auto_IPC_INFO(0x4, 0x3, &(0x7f0000000080)={{0x0, 0xee00, 0xffffffffffffffff, 0x4, 0x3, 0x0, 0xf8b6}, 0x0, 0x0, 0x4, 0x6dfe, 0x5, 0x8000000000000000, 0x2, 0x3ffe, 0x9, 0xa5ff, @inferred, @raw=0x6}) r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x7, 0x0) lsm_list_modules$auto(0x0, 0x0, 0x0) r3 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r3, 0x40146f2c, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2c, 0x0) r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0) read$auto(r4, 0x0, 0xb4d3) unshare$auto(0x40000080) mmap$auto(0x0, 0x2020009, 0x40000003, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x3, 0x3a) mmap$auto(0xffffffff00000000, 0x2020007, 0x0, 0x100000eb1, r0, 0x529) fsopen$auto(0x0, 0x1) r5 = socket(0xa, 0x3, 0x88) setsockopt$auto(r5, 0x11, 0xa, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/serial8250/driver_override\x00', 0x22b42, 0x0) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) unshare$auto(0x40000080) kernel console output (not intermixed with test programs): [ 677.579808][T15411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 677.579829][T15411] Call Trace: [ 677.579840][T15411] [ 677.579853][T15411] dump_stack_lvl+0x16c/0x1f0 [ 677.579934][T15411] should_fail_ex+0x512/0x640 [ 677.579973][T15411] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 677.580032][T15411] should_failslab+0xc2/0x120 [ 677.580084][T15411] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 677.580137][T15411] ? nvmf_parse_options+0x407/0x2270 [ 677.580184][T15411] ? kstrdup+0x53/0x100 [ 677.580223][T15411] kstrdup+0x53/0x100 [ 677.580266][T15411] nvmf_parse_options+0x407/0x2270 [ 677.580302][T15411] ? stack_trace_save+0x8e/0xc0 [ 677.580373][T15411] ? __pfx_nvmf_parse_options+0x10/0x10 [ 677.580408][T15411] ? __kasan_kmalloc+0xaa/0xb0 [ 677.580451][T15411] ? nvmf_dev_write+0x161/0xc70 [ 677.580485][T15411] ? vfs_write+0x2a0/0x11d0 [ 677.580533][T15411] ? do_syscall_64+0xcd/0xf80 [ 677.580626][T15411] ? kasan_save_track+0x14/0x30 [ 677.580663][T15411] nvmf_dev_write+0x186/0xc70 [ 677.580692][T15411] ? rw_verify_area+0xcf/0x6c0 [ 677.580725][T15411] ? __pfx_nvmf_dev_write+0x10/0x10 [ 677.580751][T15411] vfs_write+0x2a0/0x11d0 [ 677.580792][T15411] ? __pfx_vfs_write+0x10/0x10 [ 677.580826][T15411] ? find_held_lock+0x2b/0x80 [ 677.580859][T15411] ? __fget_files+0x204/0x3c0 [ 677.580904][T15411] ? __fget_files+0x20e/0x3c0 [ 677.580948][T15411] ksys_write+0x12a/0x250 [ 677.580983][T15411] ? __pfx_ksys_write+0x10/0x10 [ 677.581042][T15411] do_syscall_64+0xcd/0xf80 [ 677.581081][T15411] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 677.581105][T15411] RIP: 0033:0x7fb678d8f7c9 [ 677.581124][T15411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 677.581148][T15411] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 677.581173][T15411] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 677.581189][T15411] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 677.581204][T15411] RBP: 00007fb678e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 677.581220][T15411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 677.581235][T15411] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 677.581266][T15411] [ 678.631551][T15430] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2527'. [ 678.991416][T15433] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2528'. [ 679.146988][ T8010] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 679.704144][T15442] FAULT_INJECTION: forcing a failure. [ 679.704144][T15442] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 679.749960][T15442] CPU: 1 UID: 0 PID: 15442 Comm: syz.3.2531 Tainted: G L syzkaller #0 PREEMPT(full) [ 679.750019][T15442] Tainted: [L]=SOFTLOCKUP [ 679.750033][T15442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 679.750053][T15442] Call Trace: [ 679.750065][T15442] [ 679.750079][T15442] dump_stack_lvl+0x16c/0x1f0 [ 679.750136][T15442] should_fail_ex+0x512/0x640 [ 679.750181][T15442] should_fail_alloc_page+0xe7/0x130 [ 679.750240][T15442] prepare_alloc_pages+0x401/0x670 [ 679.750296][T15442] ? rcu_is_watching+0x12/0xc0 [ 679.750345][T15442] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 679.750388][T15442] ? should_fail_alloc_page+0xee/0x130 [ 679.750446][T15442] ? rcu_is_watching+0x12/0xc0 [ 679.750495][T15442] ? trace_mm_page_alloc+0x11b/0x180 [ 679.750548][T15442] ? __alloc_frozen_pages_noprof+0x292/0x2430 [ 679.750589][T15442] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 679.750641][T15442] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 679.750717][T15442] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 679.750770][T15442] ? kasan_save_stack+0x42/0x60 [ 679.750820][T15442] ? __get_vm_area_node+0x1ca/0x330 [ 679.750871][T15442] ? __kvmalloc_node_noprof+0x42c/0xa40 [ 679.750920][T15442] ? do_syscall_64+0xcd/0xf80 [ 679.750971][T15442] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 679.751025][T15442] alloc_pages_bulk_noprof+0x77a/0x1410 [ 679.751067][T15442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 679.751122][T15442] ? policy_nodemask+0xea/0x4e0 [ 679.751178][T15442] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 679.751223][T15442] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 679.751293][T15442] __kasan_populate_vmalloc+0xfb/0x220 [ 679.751348][T15442] alloc_vmap_area+0x98d/0x2a50 [ 679.751416][T15442] ? __pfx_alloc_vmap_area+0x10/0x10 [ 679.751478][T15442] __get_vm_area_node+0x1ca/0x330 [ 679.751539][T15442] __vmalloc_node_range_noprof+0x247/0x16b0 [ 679.751575][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 679.751625][T15442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 679.751679][T15442] ? policy_nodemask+0xea/0x4e0 [ 679.751736][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 679.751783][T15442] ? alloc_pages_mpol+0x25a/0x550 [ 679.751839][T15442] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 679.751904][T15442] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 679.751948][T15442] ? ___kmalloc_large_node+0x10c/0x150 [ 679.752029][T15442] __kvmalloc_node_noprof+0x42c/0xa40 [ 679.752093][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 679.752145][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 679.752190][T15442] ? _copy_from_user+0x59/0xd0 [ 679.752234][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 679.752280][T15442] __do_sys_listmount+0x27f/0xf40 [ 679.752339][T15442] ? __pfx___do_sys_listmount+0x10/0x10 [ 679.752392][T15442] ? fput+0x70/0xf0 [ 679.752444][T15442] do_syscall_64+0xcd/0xf80 [ 679.752499][T15442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 679.752534][T15442] RIP: 0033:0x7fb678d8f7c9 [ 679.752562][T15442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 679.752595][T15442] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 679.752628][T15442] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 679.752652][T15442] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 679.752674][T15442] RBP: 00007fb678e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 679.752704][T15442] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 679.752726][T15442] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 679.752819][T15442] [ 680.344522][T15442] syz.3.2531: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 680.424176][T15442] CPU: 0 UID: 0 PID: 15442 Comm: syz.3.2531 Tainted: G L syzkaller #0 PREEMPT(full) [ 680.424233][T15442] Tainted: [L]=SOFTLOCKUP [ 680.424246][T15442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 680.424267][T15442] Call Trace: [ 680.424280][T15442] [ 680.424293][T15442] dump_stack_lvl+0x16c/0x1f0 [ 680.424352][T15442] warn_alloc+0x248/0x3a0 [ 680.424398][T15442] ? __pfx_warn_alloc+0x10/0x10 [ 680.424447][T15442] ? __get_vm_area_node+0x2cd/0x330 [ 680.424509][T15442] ? __get_vm_area_node+0x2cd/0x330 [ 680.424564][T15442] ? __get_vm_area_node+0x208/0x330 [ 680.424628][T15442] __vmalloc_node_range_noprof+0xbe0/0x16b0 [ 680.424670][T15442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 680.424726][T15442] ? policy_nodemask+0xea/0x4e0 [ 680.424778][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 680.424827][T15442] ? alloc_pages_mpol+0x25a/0x550 [ 680.424888][T15442] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 680.424942][T15442] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 680.424989][T15442] ? ___kmalloc_large_node+0x10c/0x150 [ 680.425054][T15442] __kvmalloc_node_noprof+0x42c/0xa40 [ 680.425103][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 680.425152][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 680.425197][T15442] ? _copy_from_user+0x59/0xd0 [ 680.425241][T15442] ? __do_sys_listmount+0x27f/0xf40 [ 680.425286][T15442] __do_sys_listmount+0x27f/0xf40 [ 680.425345][T15442] ? __pfx___do_sys_listmount+0x10/0x10 [ 680.425398][T15442] ? fput+0x70/0xf0 [ 680.425450][T15442] do_syscall_64+0xcd/0xf80 [ 680.425505][T15442] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 680.425540][T15442] RIP: 0033:0x7fb678d8f7c9 [ 680.425567][T15442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 680.425602][T15442] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 680.425634][T15442] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 680.425658][T15442] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 680.425680][T15442] RBP: 00007fb678e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 680.425701][T15442] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 680.425723][T15442] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 680.425768][T15442] [ 680.687327][T15442] Mem-Info: [ 680.690657][T15442] active_anon:8984 inactive_anon:13844 isolated_anon:0 [ 680.690657][T15442] active_file:32772 inactive_file:38087 isolated_file:0 [ 680.690657][T15442] unevictable:768 dirty:801 writeback:0 [ 680.690657][T15442] slab_reclaimable:12736 slab_unreclaimable:94010 [ 680.690657][T15442] mapped:32752 shmem:11912 pagetables:1098 [ 680.690657][T15442] sec_pagetables:0 bounce:0 [ 680.690657][T15442] kernel_misc_reclaimable:0 [ 680.690657][T15442] free:1285154 free_pcp:11590 free_cma:0 [ 680.741148][T15442] Node 0 active_anon:35936kB inactive_anon:55376kB active_file:130956kB inactive_file:152344kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:131008kB dirty:3200kB writeback:0kB shmem:46112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12988kB pagetables:4260kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 680.803872][T15442] Node 1 active_anon:0kB inactive_anon:0kB active_file:132kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 680.859368][T15442] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 680.916976][T15442] lowmem_reserve[]: 0 2481 2483 2483 2483 [ 680.935081][T15442] Node 0 DMA32 free:1218712kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:35936kB inactive_anon:58076kB active_file:130956kB inactive_file:152344kB unevictable:1536kB writepending:3200kB zspages:0kB present:3129332kB managed:2541020kB mlocked:0kB bounce:0kB free_pcp:47168kB local_pcp:24824kB free_cma:0kB [ 681.015305][T15442] lowmem_reserve[]: 0 0 1 1 1 [ 681.034630][T15442] Node 0 Normal free:4kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 681.082217][T15442] lowmem_reserve[]: 0 0 0 0 0 [ 681.087367][T15442] Node 1 Normal free:3903052kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:132kB inactive_file:4kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 681.132423][T15442] lowmem_reserve[]: 0 0 0 0 0 [ 681.137347][T15442] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 681.150965][T15442] Node 0 DMA32: 796*4kB (UME) 1067*8kB (UME) 1374*16kB (UE) 1071*32kB (UME) 828*64kB (UME) 447*128kB (UME) 259*256kB (UME) 83*512kB (UM) 70*1024kB (UM) 19*2048kB (UME) 201*4096kB (UM) = 1220872kB [ 681.172713][T15442] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 681.198904][T15442] Node 1 Normal: 169*4kB (UME) 55*8kB (UME) 43*16kB (UME) 208*32kB (UME) 97*64kB (UME) 34*128kB (UME) 14*256kB (UME) 7*512kB (UM) 4*1024kB (UME) 5*2048kB (UME) 943*4096kB (M) = 3903052kB [ 681.203034][T15453] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes. [ 681.264547][T15442] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 681.278498][T15442] Node 0 hugepages_total=8 hugepages_free=8 hugepages_surp=0 hugepages_size=2048kB [ 681.316975][T15442] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 681.350188][T15442] Node 1 hugepages_total=8 hugepages_free=8 hugepages_surp=0 hugepages_size=2048kB [ 681.390363][T15442] 84343 total pagecache pages [ 681.395251][T15442] 0 pages in swap cache [ 681.399470][T15442] Free swap = 124996kB [ 681.424623][T15442] Total swap = 124996kB [ 681.428817][T15442] 2097051 pages RAM [ 681.443130][T15442] 0 pages HighMem/MovableOnly [ 681.467454][T15442] 429770 pages reserved [ 681.471665][T15442] 0 pages cma reserved [ 681.703676][T15463] Setting dangerous option i915.mitigations - tainting kernel [ 681.991512][T15469] vivid-009: ================= START STATUS ================= [ 682.011689][T15469] vivid-009: Radio HW Seek Mode: Bounded [ 682.045859][T15469] vivid-009: Radio Programmable HW Seek: false [ 682.052097][T15469] vivid-009: RDS Rx I/O Mode: Block I/O [ 682.074685][T15469] vivid-009: Generate RBDS Instead of RDS: false [ 682.081122][T15469] vivid-009: RDS Reception: true [ 682.121617][T15469] vivid-009: RDS Program Type: 0 inactive [ 682.153717][T15469] vivid-009: RDS PS Name: inactive [ 682.180307][T15469] vivid-009: RDS Radio Text: inactive [ 682.197637][T15469] vivid-009: RDS Traffic Announcement: false inactive [ 682.234510][T15469] vivid-009: RDS Traffic Program: false inactive [ 682.240945][T15469] vivid-009: RDS Music: false inactive [ 682.288426][T15469] vivid-009: ================== END STATUS ================== [ 682.373391][T15474] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2539'. [ 685.448718][T15530] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2555'. [ 685.699362][T15532] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2563'. [ 685.730152][T15535] FAULT_INJECTION: forcing a failure. [ 685.730152][T15535] name failslab, interval 1, probability 0, space 0, times 0 [ 685.823078][T15535] CPU: 1 UID: 0 PID: 15535 Comm: syz.0.2556 Tainted: G U L syzkaller #0 PREEMPT(full) [ 685.823133][T15535] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 685.823146][T15535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 685.823167][T15535] Call Trace: [ 685.823178][T15535] [ 685.823191][T15535] dump_stack_lvl+0x16c/0x1f0 [ 685.823246][T15535] should_fail_ex+0x512/0x640 [ 685.823281][T15535] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 685.823325][T15535] should_failslab+0xc2/0x120 [ 685.823375][T15535] kmem_cache_alloc_noprof+0x83/0x770 [ 685.823422][T15535] ? skb_clone+0x190/0x3f0 [ 685.823472][T15535] ? skb_clone+0x190/0x3f0 [ 685.823512][T15535] skb_clone+0x190/0x3f0 [ 685.823555][T15535] netlink_deliver_tap+0xabd/0xd30 [ 685.823610][T15535] netlink_unicast+0x64c/0x870 [ 685.823669][T15535] ? __pfx_netlink_unicast+0x10/0x10 [ 685.823715][T15535] ? __pfx___might_resched+0x10/0x10 [ 685.823760][T15535] ? __lock_acquire+0x436/0x2890 [ 685.823802][T15535] netlink_sendmsg+0x8c8/0xdd0 [ 685.823858][T15535] ? __pfx_netlink_sendmsg+0x10/0x10 [ 685.823912][T15535] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 685.823986][T15535] ____sys_sendmsg+0xa5d/0xc30 [ 685.824035][T15535] ? copy_msghdr_from_user+0x10a/0x160 [ 685.824078][T15535] ? __pfx_____sys_sendmsg+0x10/0x10 [ 685.824146][T15535] ___sys_sendmsg+0x134/0x1d0 [ 685.824191][T15535] ? __pfx____sys_sendmsg+0x10/0x10 [ 685.824282][T15535] __sys_sendmsg+0x16d/0x220 [ 685.824325][T15535] ? __pfx___sys_sendmsg+0x10/0x10 [ 685.824391][T15535] do_syscall_64+0xcd/0xf80 [ 685.824467][T15535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.824500][T15535] RIP: 0033:0x7f68f5f8f7c9 [ 685.824524][T15535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 685.824556][T15535] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 685.824588][T15535] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 685.824610][T15535] RDX: 0000000004000000 RSI: 00002000000002c0 RDI: 0000000000000003 [ 685.824631][T15535] RBP: 00007f68f6dc5090 R08: 0000000000000000 R09: 0000000000000000 [ 685.824651][T15535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 685.824671][T15535] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 685.824715][T15535] [ 686.327679][T15540] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 686.389087][T15540] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 688.062181][T15560] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2564'. [ 688.769075][T15571] netlink: 194 bytes leftover after parsing attributes in process `syz.0.2567'. [ 688.802581][T15572] netlink: 194 bytes leftover after parsing attributes in process `syz.0.2567'. [ 689.140984][T15568] FAULT_INJECTION: forcing a failure. [ 689.140984][T15568] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 689.219632][T15568] CPU: 0 UID: 0 PID: 15568 Comm: syz.2.2566 Tainted: G U L syzkaller #0 PREEMPT(full) [ 689.219689][T15568] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 689.219703][T15568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 689.219724][T15568] Call Trace: [ 689.219736][T15568] [ 689.219750][T15568] dump_stack_lvl+0x16c/0x1f0 [ 689.219808][T15568] should_fail_ex+0x512/0x640 [ 689.219845][T15568] ? __pfx_nvmf_dev_write+0x10/0x10 [ 689.219897][T15568] ? __pfx_nvmf_dev_write+0x10/0x10 [ 689.219933][T15568] _copy_from_user+0x2e/0xd0 [ 689.219971][T15568] memdup_user_nul+0x6c/0x120 [ 689.220018][T15568] nvmf_dev_write+0x78/0xc70 [ 689.220054][T15568] ? security_file_permission+0x71/0x210 [ 689.220099][T15568] ? rw_verify_area+0xcf/0x6c0 [ 689.220143][T15568] ? __pfx_nvmf_dev_write+0x10/0x10 [ 689.220179][T15568] vfs_write+0x2a0/0x11d0 [ 689.220236][T15568] ? __pfx_vfs_write+0x10/0x10 [ 689.220281][T15568] ? find_held_lock+0x2b/0x80 [ 689.220325][T15568] ? __fget_files+0x204/0x3c0 [ 689.220379][T15568] ? __fget_files+0x20e/0x3c0 [ 689.220437][T15568] ksys_write+0x12a/0x250 [ 689.220484][T15568] ? __pfx_ksys_write+0x10/0x10 [ 689.220543][T15568] do_syscall_64+0xcd/0xf80 [ 689.220597][T15568] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 689.220632][T15568] RIP: 0033:0x7f55f158f7c9 [ 689.220659][T15568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 689.220692][T15568] RSP: 002b:00007f55f2393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 689.220724][T15568] RAX: ffffffffffffffda RBX: 00007f55f17e6090 RCX: 00007f55f158f7c9 [ 689.220747][T15568] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 689.220768][T15568] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 689.220789][T15568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 689.220809][T15568] R13: 00007f55f17e6128 R14: 00007f55f17e6090 R15: 00007fffa8f700d8 [ 689.220853][T15568] [ 689.577385][T15563] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 689.645019][T15568] nvme_fabrics: missing parameter 'transport=%s' [ 689.652243][T15568] nvme_fabrics: missing parameter 'nqn=%s' [ 689.967389][T15579] vhci_hcd vhci_hcd.0: invalid port number 16 [ 690.186706][T15582] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2570'. [ 690.413948][T15595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 690.438462][T15595] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 691.062820][T15593] vivid-009: ================= START STATUS ================= [ 691.094469][T15593] vivid-009: Radio HW Seek Mode: Bounded [ 691.100650][T15593] vivid-009: Radio Programmable HW Seek: false [ 691.118396][T15593] vivid-009: RDS Rx I/O Mode: Block I/O [ 691.124047][T15593] vivid-009: Generate RBDS Instead of RDS: false [ 691.154563][T15593] vivid-009: RDS Reception: true [ 691.166767][T15593] vivid-009: RDS Program Type: 0 inactive [ 691.182469][T15593] vivid-009: RDS PS Name: inactive [ 691.203835][T15593] vivid-009: RDS Radio Text: inactive [ 691.238474][T15593] vivid-009: RDS Traffic Announcement: false inactive [ 691.254998][T15593] vivid-009: RDS Traffic Program: false inactive [ 691.264645][T15593] vivid-009: RDS Music: false inactive [ 691.284554][T15593] vivid-009: ================== END STATUS ================== [ 692.468759][T15622] FAULT_INJECTION: forcing a failure. [ 692.468759][T15622] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 692.561046][T15622] CPU: 1 UID: 0 PID: 15622 Comm: syz.0.2582 Tainted: G U L syzkaller #0 PREEMPT(full) [ 692.561099][T15622] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 692.561111][T15622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 692.561130][T15622] Call Trace: [ 692.561140][T15622] [ 692.561152][T15622] dump_stack_lvl+0x16c/0x1f0 [ 692.561205][T15622] should_fail_ex+0x512/0x640 [ 692.561246][T15622] _copy_to_user+0x32/0xd0 [ 692.561284][T15622] simple_read_from_buffer+0xcb/0x170 [ 692.561329][T15622] proc_fail_nth_read+0x197/0x240 [ 692.561384][T15622] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 692.561440][T15622] ? rw_verify_area+0xcf/0x6c0 [ 692.561480][T15622] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 692.561533][T15622] vfs_read+0x1e4/0xcf0 [ 692.561577][T15622] ? __pfx___mutex_lock+0x10/0x10 [ 692.561631][T15622] ? __pfx_vfs_read+0x10/0x10 [ 692.561686][T15622] ? __fget_files+0x20e/0x3c0 [ 692.561744][T15622] ksys_read+0x12a/0x250 [ 692.561797][T15622] ? __pfx_ksys_read+0x10/0x10 [ 692.561854][T15622] do_syscall_64+0xcd/0xf80 [ 692.561906][T15622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 692.561940][T15622] RIP: 0033:0x7f68f5f8e1dc [ 692.561966][T15622] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 692.561998][T15622] RSP: 002b:00007f68f6da4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 692.562028][T15622] RAX: ffffffffffffffda RBX: 00007f68f61e6090 RCX: 00007f68f5f8e1dc [ 692.562049][T15622] RDX: 000000000000000f RSI: 00007f68f6da40a0 RDI: 0000000000000005 [ 692.562069][T15622] RBP: 00007f68f6da4090 R08: 0000000000000000 R09: 0000000000000000 [ 692.562090][T15622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 692.562108][T15622] R13: 00007f68f61e6128 R14: 00007f68f61e6090 R15: 00007ffcd7595478 [ 692.562152][T15622] [ 693.287225][T15633] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2585'. [ 693.510723][T15641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 693.547038][T15641] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 694.532859][T15631] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2584'. [ 695.595869][T15671] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 695.848630][T15696] sysfs_service_op_store: Client not running :-5: [ 695.942235][T15697] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2601'. [ 696.174634][T15699] input: ¶š9ã%v”ûJ,6Ö‘ as /devices/virtual/input/input19 [ 696.305658][T15708] FAULT_INJECTION: forcing a failure. [ 696.305658][T15708] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 696.334699][T15708] CPU: 0 UID: 0 PID: 15708 Comm: syz.1.2613 Tainted: G U L syzkaller #0 PREEMPT(full) [ 696.334758][T15708] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 696.334772][T15708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 696.334793][T15708] Call Trace: [ 696.334805][T15708] [ 696.334818][T15708] dump_stack_lvl+0x16c/0x1f0 [ 696.334876][T15708] should_fail_ex+0x512/0x640 [ 696.334935][T15708] _copy_from_iter+0x43b/0x16c0 [ 696.334984][T15708] ? __pfx__copy_from_iter+0x10/0x10 [ 696.335021][T15708] ? do_raw_spin_lock+0x12c/0x2b0 [ 696.335062][T15708] ? find_held_lock+0x2b/0x80 [ 696.335111][T15708] ? rcu_is_watching+0x12/0xc0 [ 696.335166][T15708] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 696.335221][T15708] write_pool_user+0xe8/0x2f0 [ 696.335257][T15708] ? __pfx_write_pool_user+0x10/0x10 [ 696.335298][T15708] ? preempt_schedule_common+0x44/0xc0 [ 696.335352][T15708] ? copy_iovec_from_user+0x131/0x170 [ 696.335393][T15708] do_iter_readv_writev+0x662/0x9e0 [ 696.335444][T15708] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 696.335490][T15708] ? common_file_perm+0x1b1/0x500 [ 696.335535][T15708] ? bpf_lsm_file_permission+0x9/0x10 [ 696.335576][T15708] ? security_file_permission+0x71/0x210 [ 696.335622][T15708] ? rw_verify_area+0xcf/0x6c0 [ 696.335670][T15708] vfs_writev+0x35f/0xde0 [ 696.335721][T15708] ? __lock_acquire+0x436/0x2890 [ 696.335755][T15708] ? __pfx_vfs_writev+0x10/0x10 [ 696.335804][T15708] ? putname+0xf5/0x1a0 [ 696.335857][T15708] ? __fget_files+0x20e/0x3c0 [ 696.335917][T15708] ? do_writev+0x132/0x340 [ 696.335959][T15708] do_writev+0x132/0x340 [ 696.336005][T15708] ? __pfx_do_writev+0x10/0x10 [ 696.336063][T15708] do_syscall_64+0xcd/0xf80 [ 696.336117][T15708] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 696.336159][T15708] RIP: 0033:0x7f20f338f7c9 [ 696.336187][T15708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 696.336224][T15708] RSP: 002b:00007f20f15d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 696.336257][T15708] RAX: ffffffffffffffda RBX: 00007f20f35e6090 RCX: 00007f20f338f7c9 [ 696.336280][T15708] RDX: 0000000000000003 RSI: 00002000000003c0 RDI: 0000000000000007 [ 696.336302][T15708] RBP: 00007f20f3413f91 R08: 0000000000000000 R09: 0000000000000000 [ 696.336324][T15708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 696.336345][T15708] R13: 00007f20f35e6128 R14: 00007f20f35e6090 R15: 00007ffe3b7ebd58 [ 696.336391][T15708] [ 699.341980][T15767] tipc: Can't bind to reserved service type 0 [ 699.418712][T15767] binder: 15766:15767 ioctl c018620c 0 returned -1 [ 699.618894][T15736] device-mapper: ioctl: Invalid data size in the ioctl structure: 0 [ 699.868000][T15781] FAULT_INJECTION: forcing a failure. [ 699.868000][T15781] name failslab, interval 1, probability 0, space 0, times 0 [ 699.934003][T15781] CPU: 0 UID: 0 PID: 15781 Comm: syz.3.2625 Tainted: G U L syzkaller #0 PREEMPT(full) [ 699.934060][T15781] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 699.934073][T15781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 699.934105][T15781] Call Trace: [ 699.934116][T15781] [ 699.934128][T15781] dump_stack_lvl+0x16c/0x1f0 [ 699.934182][T15781] should_fail_ex+0x512/0x640 [ 699.934218][T15781] ? __kmalloc_cache_noprof+0x5f/0x800 [ 699.934257][T15781] should_failslab+0xc2/0x120 [ 699.934306][T15781] __kmalloc_cache_noprof+0x80/0x800 [ 699.934342][T15781] ? j1939_session_new+0x7a/0x510 [ 699.934401][T15781] ? j1939_session_new+0x7a/0x510 [ 699.934456][T15781] j1939_session_new+0x7a/0x510 [ 699.934514][T15781] j1939_tp_send+0x1fd/0x860 [ 699.934552][T15781] j1939_sk_sendmsg+0xaf8/0x13d0 [ 699.934611][T15781] ? __might_fault+0xe3/0x190 [ 699.934656][T15781] ? __pfx_j1939_sk_sendmsg+0x10/0x10 [ 699.934705][T15781] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 699.934796][T15781] __sys_sendto+0x4a3/0x520 [ 699.934837][T15781] ? __pfx___sys_sendto+0x10/0x10 [ 699.934909][T15781] ? ksys_write+0x1ac/0x250 [ 699.934959][T15781] ? __pfx_ksys_write+0x10/0x10 [ 699.935012][T15781] __x64_sys_sendto+0xe0/0x1c0 [ 699.935050][T15781] ? do_syscall_64+0x91/0xf80 [ 699.935098][T15781] ? lockdep_hardirqs_on+0x7c/0x110 [ 699.935149][T15781] do_syscall_64+0xcd/0xf80 [ 699.935202][T15781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.935237][T15781] RIP: 0033:0x7fb678d8f7c9 [ 699.935263][T15781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 699.935295][T15781] RSP: 002b:00007fb679b47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 699.935328][T15781] RAX: ffffffffffffffda RBX: 00007fb678fe6090 RCX: 00007fb678d8f7c9 [ 699.935350][T15781] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000003 [ 699.935370][T15781] RBP: 00007fb679b47090 R08: 0000200000000440 R09: 0000000000000036 [ 699.935392][T15781] R10: 00000000fffffff8 R11: 0000000000000246 R12: 0000000000000001 [ 699.935413][T15781] R13: 00007fb678fe6128 R14: 00007fb678fe6090 R15: 00007ffc16ed3f98 [ 699.935456][T15781] [ 700.617191][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a9f8c00: rx timeout, send abort [ 700.991393][T15797] FAULT_INJECTION: forcing a failure. [ 700.991393][T15797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 701.044562][T15797] CPU: 1 UID: 0 PID: 15797 Comm: syz.3.2633 Tainted: G U L syzkaller #0 PREEMPT(full) [ 701.044615][T15797] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 701.044628][T15797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 701.044659][T15797] Call Trace: [ 701.044670][T15797] [ 701.044682][T15797] dump_stack_lvl+0x16c/0x1f0 [ 701.044747][T15797] should_fail_ex+0x512/0x640 [ 701.044788][T15797] _copy_to_user+0x32/0xd0 [ 701.044825][T15797] do_pagemap_scan+0xb80/0xcf0 [ 701.044865][T15797] ? __pfx_do_pagemap_scan+0x10/0x10 [ 701.044915][T15797] ? do_vfs_ioctl+0x128/0x14f0 [ 701.044987][T15797] ? __fget_files+0x20e/0x3c0 [ 701.045042][T15797] do_pagemap_cmd+0x58/0x80 [ 701.045074][T15797] ? __pfx_do_pagemap_cmd+0x10/0x10 [ 701.045108][T15797] __x64_sys_ioctl+0x18e/0x210 [ 701.045153][T15797] do_syscall_64+0xcd/0xf80 [ 701.045207][T15797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.045241][T15797] RIP: 0033:0x7fb678d8f7c9 [ 701.045266][T15797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 701.045300][T15797] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 701.045332][T15797] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 701.045354][T15797] RDX: 0000200000000100 RSI: 00000000c0606610 RDI: 0000000000000003 [ 701.045376][T15797] RBP: 00007fb679b68090 R08: 0000000000000000 R09: 0000000000000000 [ 701.045398][T15797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 701.045417][T15797] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 701.045468][T15797] [ 701.221408][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a9f8c00: abort rx timeout. Force session deactivation [ 701.295364][T15791] nvme_fabrics: missing parameter 'transport=%s' [ 701.323059][T15791] nvme_fabrics: missing parameter 'nqn=%s' [ 701.604903][T15808] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2636'. [ 701.705860][T15810] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2637'. [ 701.867552][T15807] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2635'. [ 701.884002][T15802] nvme_fabrics: missing parameter 'transport=%s' [ 701.939147][T15802] nvme_fabrics: missing parameter 'nqn=%s' [ 703.003275][T15837] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2648'. [ 703.145017][T15840] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2647'. [ 703.236712][T15840] mac80211_hwsim hwsim34 wlan1: entered allmulticast mode [ 703.561475][T15851] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2651'. [ 703.672732][T15856] FAULT_INJECTION: forcing a failure. [ 703.672732][T15856] name failslab, interval 1, probability 0, space 0, times 0 [ 703.714548][T15856] CPU: 1 UID: 0 PID: 15856 Comm: syz.1.2653 Tainted: G U L syzkaller #0 PREEMPT(full) [ 703.714598][T15856] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 703.714610][T15856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 703.714628][T15856] Call Trace: [ 703.714639][T15856] [ 703.714651][T15856] dump_stack_lvl+0x16c/0x1f0 [ 703.714703][T15856] should_fail_ex+0x512/0x640 [ 703.714736][T15856] ? __kmalloc_noprof+0xca/0x910 [ 703.714774][T15856] should_failslab+0xc2/0x120 [ 703.714823][T15856] __kmalloc_noprof+0xeb/0x910 [ 703.714858][T15856] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 703.714923][T15856] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 703.714977][T15856] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 703.715037][T15856] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 703.715093][T15856] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 703.715144][T15856] ? genl_get_cmd+0x194/0x580 [ 703.715200][T15856] ? bpf_lsm_capable+0x9/0x10 [ 703.715240][T15856] ? security_capable+0x7e/0x260 [ 703.715292][T15856] ? ns_capable+0xd7/0x110 [ 703.715337][T15856] genl_rcv_msg+0x55c/0x800 [ 703.715373][T15856] ? __pfx_genl_rcv_msg+0x10/0x10 [ 703.715403][T15856] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 703.715452][T15856] ? __pfx_nl80211_abort_scan+0x10/0x10 [ 703.715489][T15856] ? __pfx_nl80211_post_doit+0x10/0x10 [ 703.715547][T15856] netlink_rcv_skb+0x158/0x420 [ 703.715594][T15856] ? __pfx_genl_rcv_msg+0x10/0x10 [ 703.715627][T15856] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 703.715689][T15856] ? netlink_deliver_tap+0x1ae/0xd30 [ 703.715739][T15856] genl_rcv+0x28/0x40 [ 703.715787][T15856] netlink_unicast+0x5aa/0x870 [ 703.715840][T15856] ? __pfx_netlink_unicast+0x10/0x10 [ 703.715901][T15856] netlink_sendmsg+0x8c8/0xdd0 [ 703.715954][T15856] ? __pfx_netlink_sendmsg+0x10/0x10 [ 703.716003][T15856] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 703.716065][T15856] ____sys_sendmsg+0xa5d/0xc30 [ 703.716116][T15856] ? copy_msghdr_from_user+0x10a/0x160 [ 703.716156][T15856] ? __pfx_____sys_sendmsg+0x10/0x10 [ 703.716225][T15856] ___sys_sendmsg+0x134/0x1d0 [ 703.716268][T15856] ? __pfx____sys_sendmsg+0x10/0x10 [ 703.716358][T15856] __sys_sendmsg+0x16d/0x220 [ 703.716398][T15856] ? __pfx___sys_sendmsg+0x10/0x10 [ 703.716473][T15856] do_syscall_64+0xcd/0xf80 [ 703.716523][T15856] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 703.716556][T15856] RIP: 0033:0x7f20f338f7c9 [ 703.716581][T15856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 703.716611][T15856] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 703.716641][T15856] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 703.716663][T15856] RDX: 0000000000000080 RSI: 00002000000000c0 RDI: 0000000000000006 [ 703.716682][T15856] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 703.716702][T15856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 703.716721][T15856] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 703.716763][T15856] [ 704.233170][T15863] snd_aloop snd_aloop.0: Parsing timer source '/32' failed with -22 [ 704.602900][T15871] futex_wake_op: syz.3.2659 tries to shift op by -2048; fix this program [ 704.735980][T15875] zero sized request [ 704.857588][T15877] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2661'. [ 704.966546][T15881] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2663'. [ 705.048296][T15884] FAULT_INJECTION: forcing a failure. [ 705.048296][T15884] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 705.065197][T15884] CPU: 0 UID: 0 PID: 15884 Comm: syz.2.2664 Tainted: G U L syzkaller #0 PREEMPT(full) [ 705.065237][T15884] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 705.065246][T15884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 705.065261][T15884] Call Trace: [ 705.065272][T15884] [ 705.065283][T15884] dump_stack_lvl+0x16c/0x1f0 [ 705.065328][T15884] should_fail_ex+0x512/0x640 [ 705.065358][T15884] _copy_to_user+0x32/0xd0 [ 705.065386][T15884] simple_read_from_buffer+0xcb/0x170 [ 705.065421][T15884] proc_fail_nth_read+0x197/0x240 [ 705.065460][T15884] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 705.065501][T15884] ? rw_verify_area+0xcf/0x6c0 [ 705.065538][T15884] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 705.065577][T15884] vfs_read+0x1e4/0xcf0 [ 705.065612][T15884] ? __pfx___mutex_lock+0x10/0x10 [ 705.065654][T15884] ? __pfx_vfs_read+0x10/0x10 [ 705.065696][T15884] ? __fget_files+0x20e/0x3c0 [ 705.065739][T15884] ksys_read+0x12a/0x250 [ 705.065784][T15884] ? __pfx_ksys_read+0x10/0x10 [ 705.065844][T15884] do_syscall_64+0xcd/0xf80 [ 705.065883][T15884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.065908][T15884] RIP: 0033:0x7f55f158e1dc [ 705.065928][T15884] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 705.065952][T15884] RSP: 002b:00007f55f23b4030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 705.065975][T15884] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158e1dc [ 705.065991][T15884] RDX: 000000000000000f RSI: 00007f55f23b40a0 RDI: 0000000000000004 [ 705.066006][T15884] RBP: 00007f55f23b4090 R08: 0000000000000000 R09: 0000000000000000 [ 705.066021][T15884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 705.066035][T15884] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 705.066066][T15884] [ 706.160609][T15907] sysfs_service_op_store: Client not running :-5: [ 707.155812][T15924] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2678'. [ 707.274076][T15928] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2680'. [ 707.292317][T15928] mac80211_hwsim hwsim32 wlan1: entered allmulticast mode [ 707.909068][T15945] nfs: Unknown parameter 'nl802154' [ 708.110881][T15953] FAULT_INJECTION: forcing a failure. [ 708.110881][T15953] name failslab, interval 1, probability 0, space 0, times 0 [ 708.125292][T15953] CPU: 0 UID: 0 PID: 15953 Comm: syz.0.2690 Tainted: G U L syzkaller #0 PREEMPT(full) [ 708.125345][T15953] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 708.125358][T15953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 708.125379][T15953] Call Trace: [ 708.125390][T15953] [ 708.125403][T15953] dump_stack_lvl+0x16c/0x1f0 [ 708.125457][T15953] should_fail_ex+0x512/0x640 [ 708.125484][T15953] ? __kmalloc_cache_noprof+0x5f/0x800 [ 708.125514][T15953] should_failslab+0xc2/0x120 [ 708.125551][T15953] __kmalloc_cache_noprof+0x80/0x800 [ 708.125579][T15953] ? input_allocate_device+0xc5/0x350 [ 708.125615][T15953] ? input_allocate_device+0xc5/0x350 [ 708.125646][T15953] input_allocate_device+0xc5/0x350 [ 708.125677][T15953] uinput_ioctl_handler.isra.0+0x8bb/0x1df0 [ 708.125704][T15953] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 708.125733][T15953] ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10 [ 708.125765][T15953] ? find_held_lock+0x2b/0x80 [ 708.125810][T15953] ? __pfx_uinput_ioctl+0x10/0x10 [ 708.125835][T15953] __x64_sys_ioctl+0x18e/0x210 [ 708.125866][T15953] do_syscall_64+0xcd/0xf80 [ 708.125904][T15953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.125928][T15953] RIP: 0033:0x7f68f5f8f7c9 [ 708.125947][T15953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 708.125976][T15953] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 708.125998][T15953] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 708.126015][T15953] RDX: 0000000000000ea3 RSI: 0000000040025504 RDI: 0000000000000003 [ 708.126030][T15953] RBP: 00007f68f6dc5090 R08: 0000000000000000 R09: 0000000000000000 [ 708.126045][T15953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 708.126059][T15953] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 708.126091][T15953] [ 708.345018][T15954] futex_wake_op: syz.2.2687 tries to shift op by -2048; fix this program [ 708.353762][T15954] futex_wake_op: syz.2.2687 tries to shift op by -2048; fix this program [ 708.550185][T15961] nbd: must specify at least one socket [ 708.760802][T15966] FAULT_INJECTION: forcing a failure. [ 708.760802][T15966] name failslab, interval 1, probability 0, space 0, times 0 [ 708.794231][T15966] CPU: 1 UID: 0 PID: 15966 Comm: syz.1.2692 Tainted: G U L syzkaller #0 PREEMPT(full) [ 708.794293][T15966] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 708.794306][T15966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 708.794327][T15966] Call Trace: [ 708.794338][T15966] [ 708.794352][T15966] dump_stack_lvl+0x16c/0x1f0 [ 708.794414][T15966] should_fail_ex+0x512/0x640 [ 708.794452][T15966] ? __kmalloc_cache_noprof+0x5f/0x800 [ 708.794494][T15966] should_failslab+0xc2/0x120 [ 708.794546][T15966] __kmalloc_cache_noprof+0x80/0x800 [ 708.794583][T15966] ? __lock_acquire+0x436/0x2890 [ 708.794614][T15966] ? tty_open+0x13e/0xf90 [ 708.794672][T15966] ? tty_open+0x13e/0xf90 [ 708.794718][T15966] ? __pfx_tty_open+0x10/0x10 [ 708.794790][T15966] tty_open+0x13e/0xf90 [ 708.794872][T15966] ? __pfx_tty_open+0x10/0x10 [ 708.794930][T15966] ? chrdev_open+0x10b/0x6a0 [ 708.794987][T15966] ? __pfx_tty_open+0x10/0x10 [ 708.795039][T15966] chrdev_open+0x234/0x6a0 [ 708.795090][T15966] ? __pfx_apparmor_file_open+0x10/0x10 [ 708.795125][T15966] ? __pfx_chrdev_open+0x10/0x10 [ 708.795181][T15966] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 708.795245][T15966] do_dentry_open+0x748/0x1590 [ 708.795294][T15966] ? __pfx_chrdev_open+0x10/0x10 [ 708.795362][T15966] vfs_open+0x82/0x3f0 [ 708.795405][T15966] path_openat+0x2078/0x3140 [ 708.795472][T15966] ? __pfx_path_openat+0x10/0x10 [ 708.795541][T15966] do_filp_open+0x20b/0x470 [ 708.795596][T15966] ? __pfx_do_filp_open+0x10/0x10 [ 708.795677][T15966] ? alloc_fd+0x471/0x7d0 [ 708.795740][T15966] do_sys_openat2+0x121/0x290 [ 708.795780][T15966] ? __pfx_do_sys_openat2+0x10/0x10 [ 708.795821][T15966] ? count_memcg_events+0x122/0x290 [ 708.795884][T15966] __x64_sys_openat+0x174/0x210 [ 708.795935][T15966] ? __pfx___x64_sys_openat+0x10/0x10 [ 708.795994][T15966] do_syscall_64+0xcd/0xf80 [ 708.796052][T15966] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.796088][T15966] RIP: 0033:0x7f20f338f7c9 [ 708.796117][T15966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 708.796152][T15966] RSP: 002b:00007f20f15d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 708.796186][T15966] RAX: ffffffffffffffda RBX: 00007f20f35e6090 RCX: 00007f20f338f7c9 [ 708.796209][T15966] RDX: c7f16bff2a10ba01 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 708.796233][T15966] RBP: 00007f20f3413f91 R08: 0000000000000000 R09: 0000000000000000 [ 708.796256][T15966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 708.796277][T15966] R13: 00007f20f35e6128 R14: 00007f20f35e6090 R15: 00007ffe3b7ebd58 [ 708.796322][T15966] [ 709.455231][T15980] FAULT_INJECTION: forcing a failure. [ 709.455231][T15980] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 709.469385][T15980] CPU: 1 UID: 0 PID: 15980 Comm: syz.1.2698 Tainted: G U L syzkaller #0 PREEMPT(full) [ 709.469435][T15980] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 709.469448][T15980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 709.469467][T15980] Call Trace: [ 709.469478][T15980] [ 709.469490][T15980] dump_stack_lvl+0x16c/0x1f0 [ 709.469541][T15980] should_fail_ex+0x512/0x640 [ 709.469581][T15980] _copy_from_user+0x2e/0xd0 [ 709.469617][T15980] copy_msghdr_from_user+0x98/0x160 [ 709.469659][T15980] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 709.469708][T15980] ? __lock_acquire+0x436/0x2890 [ 709.469747][T15980] ___sys_recvmsg+0xdb/0x1a0 [ 709.469787][T15980] ? __pfx____sys_recvmsg+0x10/0x10 [ 709.469862][T15980] ? __pfx___might_resched+0x10/0x10 [ 709.469915][T15980] do_recvmmsg+0x2fe/0x750 [ 709.469960][T15980] ? __pfx_do_recvmmsg+0x10/0x10 [ 709.470011][T15980] ? __mutex_unlock_slowpath+0x161/0x790 [ 709.470074][T15980] ? __fget_files+0x20e/0x3c0 [ 709.470128][T15980] __x64_sys_recvmmsg+0x22a/0x280 [ 709.470172][T15980] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 709.470224][T15980] do_syscall_64+0xcd/0xf80 [ 709.470275][T15980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.470305][T15980] RIP: 0033:0x7f20f338f7c9 [ 709.470330][T15980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 709.470361][T15980] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 709.470392][T15980] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 709.470412][T15980] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 709.470430][T15980] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 709.470450][T15980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 709.470469][T15980] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 709.470512][T15980] [ 709.995962][T15990] FAULT_INJECTION: forcing a failure. [ 709.995962][T15990] name failslab, interval 1, probability 0, space 0, times 0 [ 710.039565][T15990] CPU: 0 UID: 0 PID: 15990 Comm: syz.2.2701 Tainted: G U L syzkaller #0 PREEMPT(full) [ 710.039619][T15990] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 710.039632][T15990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 710.039651][T15990] Call Trace: [ 710.039662][T15990] [ 710.039675][T15990] dump_stack_lvl+0x16c/0x1f0 [ 710.039730][T15990] should_fail_ex+0x512/0x640 [ 710.039768][T15990] ? __kmalloc_noprof+0xca/0x910 [ 710.039809][T15990] should_failslab+0xc2/0x120 [ 710.039871][T15990] __kmalloc_noprof+0xeb/0x910 [ 710.039909][T15990] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 710.039977][T15990] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 710.040038][T15990] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 710.040107][T15990] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 710.040165][T15990] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 710.040232][T15990] ? genl_get_cmd+0x194/0x580 [ 710.040289][T15990] ? bpf_lsm_capable+0x9/0x10 [ 710.040334][T15990] ? security_capable+0x7e/0x260 [ 710.040386][T15990] ? ns_capable+0xd7/0x110 [ 710.040430][T15990] genl_rcv_msg+0x55c/0x800 [ 710.040466][T15990] ? __pfx_genl_rcv_msg+0x10/0x10 [ 710.040499][T15990] ? __pfx_ethnl_default_set_doit+0x10/0x10 [ 710.040579][T15990] netlink_rcv_skb+0x158/0x420 [ 710.040626][T15990] ? __pfx_genl_rcv_msg+0x10/0x10 [ 710.040661][T15990] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 710.040729][T15990] ? netlink_deliver_tap+0x1ae/0xd30 [ 710.040781][T15990] genl_rcv+0x28/0x40 [ 710.040839][T15990] netlink_unicast+0x5aa/0x870 [ 710.040893][T15990] ? __pfx_netlink_unicast+0x10/0x10 [ 710.040959][T15990] netlink_sendmsg+0x8c8/0xdd0 [ 710.041016][T15990] ? __pfx_netlink_sendmsg+0x10/0x10 [ 710.041071][T15990] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 710.041134][T15990] ____sys_sendmsg+0xa5d/0xc30 [ 710.041188][T15990] ? copy_msghdr_from_user+0x10a/0x160 [ 710.041231][T15990] ? __pfx_____sys_sendmsg+0x10/0x10 [ 710.041303][T15990] ___sys_sendmsg+0x134/0x1d0 [ 710.041349][T15990] ? __pfx____sys_sendmsg+0x10/0x10 [ 710.041445][T15990] __sys_sendmsg+0x16d/0x220 [ 710.041491][T15990] ? __pfx___sys_sendmsg+0x10/0x10 [ 710.041560][T15990] do_syscall_64+0xcd/0xf80 [ 710.041616][T15990] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.041651][T15990] RIP: 0033:0x7f55f158f7c9 [ 710.041678][T15990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.041711][T15990] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 710.041743][T15990] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 710.041765][T15990] RDX: 0000000000008820 RSI: 0000200000000cc0 RDI: 0000000000000003 [ 710.041787][T15990] RBP: 00007f55f23b4090 R08: 0000000000000000 R09: 0000000000000000 [ 710.041809][T15990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 710.041836][T15990] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 710.041881][T15990] [ 710.433418][T15992] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2702'. [ 711.026401][T16006] netlink: 'syz.3.2709': attribute type 1 has an invalid length. [ 711.044058][T16006] input input23: cannot allocate more than FF_MAX_EFFECTS effects [ 711.060341][T16009] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2710'. [ 711.312045][T16019] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2713'. [ 711.333733][T16017] FAULT_INJECTION: forcing a failure. [ 711.333733][T16017] name failslab, interval 1, probability 0, space 0, times 0 [ 711.333854][T16017] CPU: 1 UID: 0 PID: 16017 Comm: syz.2.2712 Tainted: G U L syzkaller #0 PREEMPT(full) [ 711.333908][T16017] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 711.333923][T16017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 711.333944][T16017] Call Trace: [ 711.333955][T16017] [ 711.333977][T16017] dump_stack_lvl+0x16c/0x1f0 [ 711.334038][T16017] should_fail_ex+0x512/0x640 [ 711.334077][T16017] ? __kmalloc_noprof+0xca/0x910 [ 711.334121][T16017] should_failslab+0xc2/0x120 [ 711.334174][T16017] __kmalloc_noprof+0xeb/0x910 [ 711.334212][T16017] ? drm_atomic_state_init+0xec/0x540 [ 711.334259][T16017] ? drm_atomic_state_init+0xec/0x540 [ 711.334295][T16017] drm_atomic_state_init+0xec/0x540 [ 711.334331][T16017] ? kasan_save_track+0x14/0x30 [ 711.334383][T16017] drm_atomic_state_alloc+0xd3/0x120 [ 711.334427][T16017] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 711.334474][T16017] ? trace_contention_end+0xdd/0x110 [ 711.334512][T16017] ? __mutex_lock+0x27b/0x1ca0 [ 711.334571][T16017] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 711.334616][T16017] ? pan_set+0x23/0x1d0 [ 711.334646][T16017] ? drm_master_internal_acquire+0x21/0x80 [ 711.334714][T16017] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 711.334786][T16017] drm_client_modeset_commit_locked+0x14d/0x580 [ 711.334839][T16017] drm_fb_helper_pan_display+0x32d/0xa40 [ 711.334907][T16017] fb_pan_display+0x47c/0x7d0 [ 711.334940][T16017] ? __pfx_drm_fb_helper_pan_display+0x10/0x10 [ 711.334991][T16017] bit_update_start+0x48/0x1f0 [ 711.335033][T16017] fbcon_modechanged+0x5d4/0x6f0 [ 711.335077][T16017] fbcon_set_all_vcs+0x1d6/0x450 [ 711.335119][T16017] fbcon_update_vcs+0x2c/0x50 [ 711.335155][T16017] do_fb_ioctl+0x787/0x7e0 [ 711.335201][T16017] ? __pfx_do_fb_ioctl+0x10/0x10 [ 711.335265][T16017] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 711.335355][T16017] ? __fget_files+0x20e/0x3c0 [ 711.335410][T16017] fb_ioctl+0xe5/0x150 [ 711.335452][T16017] ? __pfx_fb_ioctl+0x10/0x10 [ 711.335497][T16017] __x64_sys_ioctl+0x18e/0x210 [ 711.335543][T16017] do_syscall_64+0xcd/0xf80 [ 711.335595][T16017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.335629][T16017] RIP: 0033:0x7f55f158f7c9 [ 711.335656][T16017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 711.335690][T16017] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 711.335722][T16017] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 711.335744][T16017] RDX: 0000200000000140 RSI: 0000000000004601 RDI: 0000000000000005 [ 711.335765][T16017] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 711.335786][T16017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 711.335806][T16017] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 711.335853][T16017] [ 712.149790][T16033] nfs: Unknown parameter 'nl802154' [ 712.906363][T16056] FAULT_INJECTION: forcing a failure. [ 712.906363][T16056] name failslab, interval 1, probability 0, space 0, times 0 [ 712.929771][T16056] CPU: 0 UID: 0 PID: 16056 Comm: syz.2.2724 Tainted: G U L syzkaller #0 PREEMPT(full) [ 712.929829][T16056] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 712.929838][T16056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 712.929854][T16056] Call Trace: [ 712.929862][T16056] [ 712.929872][T16056] dump_stack_lvl+0x16c/0x1f0 [ 712.929914][T16056] should_fail_ex+0x512/0x640 [ 712.929941][T16056] ? __kmalloc_cache_noprof+0x5f/0x800 [ 712.929972][T16056] should_failslab+0xc2/0x120 [ 712.930011][T16056] __kmalloc_cache_noprof+0x80/0x800 [ 712.930037][T16056] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 712.930073][T16056] ? sctp_endpoint_new+0xfc/0xb20 [ 712.930116][T16056] ? sctp_endpoint_new+0xfc/0xb20 [ 712.930154][T16056] sctp_endpoint_new+0xfc/0xb20 [ 712.930195][T16056] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 712.930233][T16056] ? lockdep_init_map_type+0x5c/0x270 [ 712.930261][T16056] ? lockdep_init_map_type+0x5c/0x270 [ 712.930290][T16056] sctp_init_sock+0xe2b/0x1310 [ 712.930326][T16056] ? __pfx_sctp_init_sock+0x10/0x10 [ 712.930364][T16056] inet_create+0x939/0x1040 [ 712.930394][T16056] ? inet_create+0x93/0x1040 [ 712.930426][T16056] __sock_create+0x339/0x8a0 [ 712.930454][T16056] __sys_socket+0x14d/0x260 [ 712.930475][T16056] ? fput+0x70/0xf0 [ 712.930518][T16056] ? __pfx___sys_socket+0x10/0x10 [ 712.930541][T16056] ? xfd_validate_state+0x61/0x180 [ 712.930562][T16056] ? __pfx_ksys_write+0x10/0x10 [ 712.930601][T16056] __x64_sys_socket+0x72/0xb0 [ 712.930623][T16056] ? lockdep_hardirqs_on+0x7c/0x110 [ 712.930659][T16056] do_syscall_64+0xcd/0xf80 [ 712.930697][T16056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 712.930721][T16056] RIP: 0033:0x7f55f158f7c9 [ 712.930739][T16056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 712.930763][T16056] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 712.930785][T16056] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 712.930802][T16056] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002 [ 712.930816][T16056] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 712.930830][T16056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 712.930845][T16056] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 712.930875][T16056] [ 713.471019][T16065] FAULT_INJECTION: forcing a failure. [ 713.471019][T16065] name failslab, interval 1, probability 0, space 0, times 0 [ 713.492876][T16062] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2726'. [ 713.520671][T16065] CPU: 1 UID: 0 PID: 16065 Comm: syz.3.2727 Tainted: G U L syzkaller #0 PREEMPT(full) [ 713.520714][T16065] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 713.520723][T16065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 713.520737][T16065] Call Trace: [ 713.520745][T16065] [ 713.520754][T16065] dump_stack_lvl+0x16c/0x1f0 [ 713.520812][T16065] should_fail_ex+0x512/0x640 [ 713.520839][T16065] ? __kmalloc_noprof+0xca/0x910 [ 713.520868][T16065] should_failslab+0xc2/0x120 [ 713.520904][T16065] __kmalloc_noprof+0xeb/0x910 [ 713.520930][T16065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 713.520978][T16065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 713.521018][T16065] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 713.521064][T16065] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 713.521104][T16065] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 713.521143][T16065] ? genl_get_cmd+0x194/0x580 [ 713.521184][T16065] ? bpf_lsm_capable+0x9/0x10 [ 713.521215][T16065] ? security_capable+0x7e/0x260 [ 713.521254][T16065] ? ns_capable+0xd7/0x110 [ 713.521286][T16065] genl_rcv_msg+0x55c/0x800 [ 713.521311][T16065] ? __pfx_genl_rcv_msg+0x10/0x10 [ 713.521334][T16065] ? __pfx_ovs_flow_cmd_del+0x10/0x10 [ 713.521375][T16065] netlink_rcv_skb+0x158/0x420 [ 713.521409][T16065] ? __pfx_genl_rcv_msg+0x10/0x10 [ 713.521440][T16065] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 713.521487][T16065] ? netlink_deliver_tap+0x1ae/0xd30 [ 713.521525][T16065] genl_rcv+0x28/0x40 [ 713.521560][T16065] netlink_unicast+0x5aa/0x870 [ 713.521600][T16065] ? __pfx_netlink_unicast+0x10/0x10 [ 713.521646][T16065] netlink_sendmsg+0x8c8/0xdd0 [ 713.521687][T16065] ? __pfx_netlink_sendmsg+0x10/0x10 [ 713.521726][T16065] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 713.521773][T16065] ____sys_sendmsg+0xa5d/0xc30 [ 713.521813][T16065] ? copy_msghdr_from_user+0x10a/0x160 [ 713.521844][T16065] ? __pfx_____sys_sendmsg+0x10/0x10 [ 713.521897][T16065] ___sys_sendmsg+0x134/0x1d0 [ 713.521930][T16065] ? __pfx____sys_sendmsg+0x10/0x10 [ 713.521996][T16065] __sys_sendmsg+0x16d/0x220 [ 713.522027][T16065] ? __pfx___sys_sendmsg+0x10/0x10 [ 713.522090][T16065] do_syscall_64+0xcd/0xf80 [ 713.522127][T16065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 713.522151][T16065] RIP: 0033:0x7fb678d8f7c9 [ 713.522170][T16065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 713.522193][T16065] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 713.522214][T16065] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 713.522230][T16065] RDX: 0000000000000800 RSI: 0000200000000000 RDI: 0000000000000003 [ 713.522245][T16065] RBP: 00007fb679b68090 R08: 0000000000000000 R09: 0000000000000000 [ 713.522259][T16065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 713.522272][T16065] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 713.522302][T16065] [ 715.677732][T16093] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2736'. [ 716.131536][T16107] FAULT_INJECTION: forcing a failure. [ 716.131536][T16107] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 716.174937][T16107] CPU: 1 UID: 0 PID: 16107 Comm: syz.3.2740 Tainted: G U L syzkaller #0 PREEMPT(full) [ 716.174989][T16107] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 716.174998][T16107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 716.175013][T16107] Call Trace: [ 716.175022][T16107] [ 716.175031][T16107] dump_stack_lvl+0x16c/0x1f0 [ 716.175072][T16107] should_fail_ex+0x512/0x640 [ 716.175104][T16107] should_fail_alloc_page+0xe7/0x130 [ 716.175145][T16107] prepare_alloc_pages+0x401/0x670 [ 716.175197][T16107] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 716.175243][T16107] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 716.175276][T16107] ? __lock_acquire+0x436/0x2890 [ 716.175311][T16107] ? __lock_acquire+0x436/0x2890 [ 716.175332][T16107] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 716.175371][T16107] ? policy_nodemask+0xea/0x4e0 [ 716.175410][T16107] alloc_pages_mpol+0x1fb/0x550 [ 716.175447][T16107] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 716.175492][T16107] folio_alloc_mpol_noprof+0x36/0x2f0 [ 716.175531][T16107] shmem_alloc_folio+0x135/0x160 [ 716.175570][T16107] shmem_alloc_and_add_folio+0x494/0xc20 [ 716.175603][T16107] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 716.175632][T16107] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 716.175666][T16107] shmem_get_folio_gfp+0x67f/0x1610 [ 716.175698][T16107] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 716.175725][T16107] ? filemap_map_pages+0x12dd/0x1e00 [ 716.175752][T16107] ? register_lock_class+0x41/0x4b0 [ 716.175778][T16107] shmem_fault+0x1fe/0xa00 [ 716.175806][T16107] ? __pfx_shmem_fault+0x10/0x10 [ 716.175836][T16107] ? __pfx_filemap_map_pages+0x10/0x10 [ 716.175870][T16107] ? __pfx_filemap_map_pages+0x10/0x10 [ 716.175895][T16107] __do_fault+0x10d/0x490 [ 716.175925][T16107] ? __pfx_filemap_map_pages+0x10/0x10 [ 716.175950][T16107] do_fault+0xae4/0x1ad0 [ 716.175984][T16107] ? __pfx_filemap_map_pages+0x10/0x10 [ 716.176015][T16107] __handle_mm_fault+0x1919/0x2bb0 [ 716.176048][T16107] ? __pfx___handle_mm_fault+0x10/0x10 [ 716.176088][T16107] ? find_vma+0xbf/0x140 [ 716.176119][T16107] ? __pfx_find_vma+0x10/0x10 [ 716.176155][T16107] handle_mm_fault+0x3fe/0xad0 [ 716.176189][T16107] do_user_addr_fault+0x7a6/0x1370 [ 716.176220][T16107] ? rcu_is_watching+0x12/0xc0 [ 716.176257][T16107] exc_page_fault+0x64/0xc0 [ 716.176293][T16107] asm_exc_page_fault+0x26/0x30 [ 716.176316][T16107] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 716.176345][T16107] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 716.176368][T16107] RSP: 0018:ffffc9000d2a7a30 EFLAGS: 00050212 [ 716.176387][T16107] RAX: 0000000000000001 RBX: 0000000000100005 RCX: 0000000000000034 [ 716.176402][T16107] RDX: fffff52001a54f56 RSI: 0000000000100005 RDI: ffffc9000d2a7a80 [ 716.176417][T16107] RBP: 0000000000000034 R08: 0000000000000001 R09: fffff52001a54f56 [ 716.176432][T16107] R10: 0000000000000003 R11: ffff8880258666b0 R12: 0000000000000000 [ 716.176446][T16107] R13: ffffc9000d2a7a80 R14: 0000000000100005 R15: dffffc0000000000 [ 716.176475][T16107] _copy_from_user+0x98/0xd0 [ 716.176501][T16107] ip_tunnel_parm_from_user+0xa3/0x390 [ 716.176525][T16107] ? __pfx_ip_tunnel_parm_from_user+0x10/0x10 [ 716.176562][T16107] ip_tunnel_siocdevprivate+0x99/0x1b0 [ 716.176586][T16107] ? __pfx_ip_tunnel_siocdevprivate+0x10/0x10 [ 716.176614][T16107] ? full_name_hash+0xbc/0x110 [ 716.176637][T16107] ? netdev_name_node_lookup+0x127/0x180 [ 716.176670][T16107] dev_ifsioc+0x8ee/0x1ee0 [ 716.176702][T16107] ? __pfx_dev_ifsioc+0x10/0x10 [ 716.176729][T16107] ? __pfx___mutex_lock+0x10/0x10 [ 716.176778][T16107] ? dev_load+0x8e/0x240 [ 716.176810][T16107] dev_ioctl+0x1b2/0x1060 [ 716.176842][T16107] sock_ioctl+0x5b3/0x6b0 [ 716.176865][T16107] ? __pfx_sock_ioctl+0x10/0x10 [ 716.176884][T16107] ? hook_file_ioctl_common+0x144/0x410 [ 716.176919][T16107] ? __fget_files+0x20e/0x3c0 [ 716.176956][T16107] ? __pfx_sock_ioctl+0x10/0x10 [ 716.176979][T16107] __x64_sys_ioctl+0x18e/0x210 [ 716.177010][T16107] do_syscall_64+0xcd/0xf80 [ 716.177046][T16107] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 716.177069][T16107] RIP: 0033:0x7fb678d8f7c9 [ 716.177088][T16107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 716.177111][T16107] RSP: 002b:00007fb679b47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 716.177131][T16107] RAX: ffffffffffffffda RBX: 00007fb678fe6090 RCX: 00007fb678d8f7c9 [ 716.177147][T16107] RDX: 0000000000000024 RSI: 00000000000089f1 RDI: 0000000000000003 [ 716.177161][T16107] RBP: 00007fb679b47090 R08: 0000000000000000 R09: 0000000000000000 [ 716.177181][T16107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 716.177195][T16107] R13: 00007fb678fe6128 R14: 00007fb678fe6090 R15: 00007ffc16ed3f98 [ 716.177225][T16107] [ 717.736124][T16111] FAULT_INJECTION: forcing a failure. [ 717.736124][T16111] name fail_futex, interval 1, probability 0, space 0, times 0 [ 717.749880][T16111] CPU: 0 UID: 0 PID: 16111 Comm: syz.3.2742 Tainted: G U L syzkaller #0 PREEMPT(full) [ 717.749934][T16111] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 717.749948][T16111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 717.749968][T16111] Call Trace: [ 717.749979][T16111] [ 717.749992][T16111] dump_stack_lvl+0x16c/0x1f0 [ 717.750049][T16111] should_fail_ex+0x512/0x640 [ 717.750085][T16111] ? arch_stack_walk+0xa6/0x100 [ 717.750142][T16111] get_futex_key+0x1d0/0x15f0 [ 717.750184][T16111] ? __pfx_get_futex_key+0x10/0x10 [ 717.750218][T16111] ? stack_trace_save+0x8e/0xc0 [ 717.750270][T16111] ? __pfx_stack_trace_save+0x10/0x10 [ 717.750322][T16111] ? stack_depot_save_flags+0x29/0x9b0 [ 717.750367][T16111] futex_wait_setup+0x9d/0x570 [ 717.750426][T16111] __futex_wait+0x193/0x2f0 [ 717.750474][T16111] ? __pfx___futex_wait+0x10/0x10 [ 717.750527][T16111] ? __pfx_futex_wake_mark+0x10/0x10 [ 717.750578][T16111] ? futex_hash+0x2c5/0x380 [ 717.750618][T16111] ? futex_private_hash_put+0x160/0x1b0 [ 717.750657][T16111] futex_wait+0xe8/0x380 [ 717.750701][T16111] ? __pfx_futex_wait+0x10/0x10 [ 717.750756][T16111] ? putname+0xf5/0x1a0 [ 717.750797][T16111] do_futex+0x229/0x350 [ 717.750835][T16111] ? __pfx_do_futex+0x10/0x10 [ 717.750883][T16111] __x64_sys_futex+0x1e0/0x4c0 [ 717.750925][T16111] ? __x64_sys_openat+0x174/0x210 [ 717.750963][T16111] ? __pfx___x64_sys_futex+0x10/0x10 [ 717.751019][T16111] do_syscall_64+0xcd/0xf80 [ 717.751072][T16111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 717.751105][T16111] RIP: 0033:0x7fb678d8f7c9 [ 717.751139][T16111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 717.751174][T16111] RSP: 002b:00007fb679b680e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 717.751206][T16111] RAX: ffffffffffffffda RBX: 00007fb678fe5fa8 RCX: 00007fb678d8f7c9 [ 717.751230][T16111] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb678fe5fa8 [ 717.751251][T16111] RBP: 00007fb678fe5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 717.751273][T16111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 717.751293][T16111] R13: 00007fb678fe6038 R14: 00007ffc16ed3eb0 R15: 00007ffc16ed3f98 [ 717.751338][T16111] [ 718.245261][T16111] nvme_fabrics: missing parameter 'transport=%s' [ 718.251756][T16111] nvme_fabrics: missing parameter 'nqn=%s' [ 718.477844][T16122] openvswitch: netlink: IP tunnel TTL not specified. [ 719.088969][T16130] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2743'. [ 720.152827][T16158] FAULT_INJECTION: forcing a failure. [ 720.152827][T16158] name failslab, interval 1, probability 0, space 0, times 0 [ 720.223591][T16158] CPU: 1 UID: 0 PID: 16158 Comm: syz.0.2754 Tainted: G U L syzkaller #0 PREEMPT(full) [ 720.223642][T16158] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 720.223653][T16158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 720.223668][T16158] Call Trace: [ 720.223677][T16158] [ 720.223687][T16158] dump_stack_lvl+0x16c/0x1f0 [ 720.223727][T16158] should_fail_ex+0x512/0x640 [ 720.223755][T16158] ? __kmalloc_noprof+0xca/0x910 [ 720.223784][T16158] should_failslab+0xc2/0x120 [ 720.223830][T16158] __kmalloc_noprof+0xeb/0x910 [ 720.223857][T16158] ? lsm_blob_alloc+0x68/0x90 [ 720.223897][T16158] ? lsm_blob_alloc+0x68/0x90 [ 720.223931][T16158] lsm_blob_alloc+0x68/0x90 [ 720.223969][T16158] security_sk_alloc+0x2f/0x270 [ 720.223996][T16158] sk_prot_alloc+0x1c7/0x2a0 [ 720.224037][T16158] sk_alloc+0x36/0xe30 [ 720.224068][T16158] __netlink_create+0x5e/0x2c0 [ 720.224097][T16158] ? __wake_up+0x3f/0x60 [ 720.224134][T16158] netlink_create+0x39e/0x620 [ 720.224164][T16158] ? __pfx_genl_bind+0x10/0x10 [ 720.224201][T16158] ? __pfx_genl_unbind+0x10/0x10 [ 720.224240][T16158] ? __pfx_genl_release+0x10/0x10 [ 720.224265][T16158] __sock_create+0x339/0x8a0 [ 720.224293][T16158] __sys_socket+0x14d/0x260 [ 720.224317][T16158] ? __pfx___sys_socket+0x10/0x10 [ 720.224353][T16158] ? xfd_validate_state+0x61/0x180 [ 720.224374][T16158] ? __pfx_do_writev+0x10/0x10 [ 720.224439][T16158] __x64_sys_socket+0x72/0xb0 [ 720.224469][T16158] ? lockdep_hardirqs_on+0x7c/0x110 [ 720.224518][T16158] do_syscall_64+0xcd/0xf80 [ 720.224570][T16158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 720.224596][T16158] RIP: 0033:0x7f68f5f8f7c9 [ 720.224615][T16158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 720.224640][T16158] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 720.224662][T16158] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 720.224678][T16158] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 720.224693][T16158] RBP: 00007f68f6013f91 R08: 0000000000000000 R09: 0000000000000000 [ 720.224708][T16158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 720.224722][T16158] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 720.224753][T16158] [ 722.937983][T16191] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2764'. [ 723.636647][T16199] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2767'. [ 724.094296][T16207] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 724.135036][T16202] zswap: compressor not available [ 725.204238][T16232] snd_aloop snd_aloop.0: Parsing timer source '/32' failed with -22 [ 726.385663][T16239] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2778'. [ 726.655715][T16249] FAULT_INJECTION: forcing a failure. [ 726.655715][T16249] name failslab, interval 1, probability 0, space 0, times 0 [ 726.733719][T16249] CPU: 1 UID: 0 PID: 16249 Comm: syz.2.2781 Tainted: G U L syzkaller #0 PREEMPT(full) [ 726.733776][T16249] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 726.733790][T16249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 726.733812][T16249] Call Trace: [ 726.733824][T16249] [ 726.733837][T16249] dump_stack_lvl+0x16c/0x1f0 [ 726.733896][T16249] should_fail_ex+0x512/0x640 [ 726.733934][T16249] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 726.733989][T16249] should_failslab+0xc2/0x120 [ 726.734040][T16249] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 726.734091][T16249] ? nvmf_parse_options+0x407/0x2270 [ 726.734135][T16249] ? kstrdup+0x53/0x100 [ 726.734174][T16249] kstrdup+0x53/0x100 [ 726.734215][T16249] nvmf_parse_options+0x407/0x2270 [ 726.734250][T16249] ? stack_trace_save+0x8e/0xc0 [ 726.734334][T16249] ? __pfx_nvmf_parse_options+0x10/0x10 [ 726.734369][T16249] ? __kasan_kmalloc+0xaa/0xb0 [ 726.734421][T16249] ? nvmf_dev_write+0x161/0xc70 [ 726.734455][T16249] ? vfs_write+0x2a0/0x11d0 [ 726.734502][T16249] ? do_syscall_64+0xcd/0xf80 [ 726.734615][T16249] ? kasan_save_track+0x14/0x30 [ 726.734669][T16249] nvmf_dev_write+0x186/0xc70 [ 726.734708][T16249] ? rw_verify_area+0xcf/0x6c0 [ 726.734755][T16249] ? __pfx_nvmf_dev_write+0x10/0x10 [ 726.734791][T16249] vfs_write+0x2a0/0x11d0 [ 726.734856][T16249] ? __pfx_vfs_write+0x10/0x10 [ 726.734903][T16249] ? find_held_lock+0x2b/0x80 [ 726.734949][T16249] ? __fget_files+0x204/0x3c0 [ 726.735002][T16249] ? __fget_files+0x20e/0x3c0 [ 726.735062][T16249] ksys_write+0x12a/0x250 [ 726.735110][T16249] ? __pfx_ksys_write+0x10/0x10 [ 726.735177][T16249] do_syscall_64+0xcd/0xf80 [ 726.735233][T16249] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 726.735276][T16249] RIP: 0033:0x7f55f158f7c9 [ 726.735304][T16249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 726.735340][T16249] RSP: 002b:00007f55f2393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 726.735374][T16249] RAX: ffffffffffffffda RBX: 00007f55f17e6090 RCX: 00007f55f158f7c9 [ 726.735397][T16249] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 726.735418][T16249] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 726.735440][T16249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 726.735462][T16249] R13: 00007f55f17e6128 R14: 00007f55f17e6090 R15: 00007fffa8f700d8 [ 726.735507][T16249] [ 728.315505][T16277] ptrace attach of "./syz-executor exec"[14363] was attempted by "./syz-executor exec"[16277] [ 728.352315][T16279] ptrace attach of "./syz-executor exec"[14363] was attempted by "./syz-executor exec"[16279] [ 729.129204][T16295] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2792'. [ 729.626469][T16300] FAULT_INJECTION: forcing a failure. [ 729.626469][T16300] name failslab, interval 1, probability 0, space 0, times 0 [ 729.673261][T16300] CPU: 0 UID: 0 PID: 16300 Comm: syz.1.2794 Tainted: G U L syzkaller #0 PREEMPT(full) [ 729.673313][T16300] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 729.673326][T16300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 729.673345][T16300] Call Trace: [ 729.673356][T16300] [ 729.673370][T16300] dump_stack_lvl+0x16c/0x1f0 [ 729.673424][T16300] should_fail_ex+0x512/0x640 [ 729.673460][T16300] ? __kmalloc_cache_noprof+0x5f/0x800 [ 729.673503][T16300] should_failslab+0xc2/0x120 [ 729.673553][T16300] __kmalloc_cache_noprof+0x80/0x800 [ 729.673587][T16300] ? trace_kmalloc+0x2b/0xb0 [ 729.673631][T16300] ? __kmalloc_noprof+0x35d/0x910 [ 729.673664][T16300] ? apply_wqattrs_prepare+0x130/0xbd0 [ 729.673716][T16300] ? apply_wqattrs_prepare+0x130/0xbd0 [ 729.673758][T16300] apply_wqattrs_prepare+0x130/0xbd0 [ 729.673836][T16300] apply_workqueue_attrs_locked+0x64/0xe0 [ 729.673882][T16300] apply_workqueue_attrs+0x2a/0x50 [ 729.673930][T16300] padata_set_cpumask+0x237/0x510 [ 729.673993][T16300] store_cpumask+0x120/0x1a0 [ 729.674039][T16300] ? __pfx_store_cpumask+0x10/0x10 [ 729.674086][T16300] ? find_held_lock+0x2b/0x80 [ 729.674138][T16300] ? __pfx_store_cpumask+0x10/0x10 [ 729.674183][T16300] padata_sysfs_store+0x5c/0x90 [ 729.674231][T16300] ? __pfx_padata_sysfs_store+0x10/0x10 [ 729.674275][T16300] sysfs_kf_write+0xf2/0x150 [ 729.674313][T16300] kernfs_fop_write_iter+0x3af/0x570 [ 729.674363][T16300] ? __pfx_sysfs_kf_write+0x10/0x10 [ 729.674402][T16300] vfs_write+0x7d3/0x11d0 [ 729.674451][T16300] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 729.674507][T16300] ? __pfx_vfs_write+0x10/0x10 [ 729.674580][T16300] ksys_write+0x12a/0x250 [ 729.674628][T16300] ? __pfx_ksys_write+0x10/0x10 [ 729.674689][T16300] do_syscall_64+0xcd/0xf80 [ 729.674745][T16300] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 729.674779][T16300] RIP: 0033:0x7f20f338f7c9 [ 729.674806][T16300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 729.674839][T16300] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 729.674871][T16300] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 729.674894][T16300] RDX: 0000000000000003 RSI: 0000200000000040 RDI: 0000000000000003 [ 729.674915][T16300] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 729.674937][T16300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 729.674958][T16300] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 729.675012][T16300] [ 731.615674][T16337] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2804'. [ 731.700841][T16339] FAULT_INJECTION: forcing a failure. [ 731.700841][T16339] name failslab, interval 1, probability 0, space 0, times 0 [ 731.724391][T16339] CPU: 1 UID: 0 PID: 16339 Comm: syz.2.2805 Tainted: G U L syzkaller #0 PREEMPT(full) [ 731.724447][T16339] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 731.724461][T16339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 731.724480][T16339] Call Trace: [ 731.724492][T16339] [ 731.724505][T16339] dump_stack_lvl+0x16c/0x1f0 [ 731.724560][T16339] should_fail_ex+0x512/0x640 [ 731.724597][T16339] ? __kmalloc_cache_noprof+0x5f/0x800 [ 731.724640][T16339] should_failslab+0xc2/0x120 [ 731.724691][T16339] __kmalloc_cache_noprof+0x80/0x800 [ 731.724730][T16339] ? create_filter_start.constprop.0+0xa5/0x300 [ 731.724785][T16339] ? create_filter_start.constprop.0+0xa5/0x300 [ 731.724832][T16339] create_filter_start.constprop.0+0xa5/0x300 [ 731.724883][T16339] create_filter+0xb5/0x210 [ 731.724930][T16339] ? __pfx_create_filter+0x10/0x10 [ 731.725005][T16339] ? find_held_lock+0x2b/0x80 [ 731.725055][T16339] apply_event_filter+0x220/0x500 [ 731.725105][T16339] ? __pfx_apply_event_filter+0x10/0x10 [ 731.725164][T16339] ? __pfx_event_filter_write+0x10/0x10 [ 731.725196][T16339] event_filter_write+0x16d/0x290 [ 731.725232][T16339] vfs_writev+0x5df/0xde0 [ 731.725290][T16339] ? __pfx_vfs_writev+0x10/0x10 [ 731.725335][T16339] ? fdget_pos+0x2a2/0x370 [ 731.725414][T16339] ? __fget_files+0x20e/0x3c0 [ 731.725475][T16339] ? do_writev+0x132/0x340 [ 731.725517][T16339] do_writev+0x132/0x340 [ 731.725560][T16339] ? __pfx_do_writev+0x10/0x10 [ 731.725617][T16339] do_syscall_64+0xcd/0xf80 [ 731.725671][T16339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 731.725722][T16339] RIP: 0033:0x7f55f158f7c9 [ 731.725749][T16339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 731.725784][T16339] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 731.725816][T16339] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 731.725839][T16339] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 731.725859][T16339] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 731.725881][T16339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 731.725901][T16339] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 731.725953][T16339] [ 732.427105][T16349] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2807'. [ 733.408042][T16374] FAULT_INJECTION: forcing a failure. [ 733.408042][T16374] name failslab, interval 1, probability 0, space 0, times 0 [ 733.425928][T16374] CPU: 0 UID: 0 PID: 16374 Comm: syz.2.2816 Tainted: G U L syzkaller #0 PREEMPT(full) [ 733.425987][T16374] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 733.426001][T16374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 733.426021][T16374] Call Trace: [ 733.426033][T16374] [ 733.426047][T16374] dump_stack_lvl+0x16c/0x1f0 [ 733.426103][T16374] should_fail_ex+0x512/0x640 [ 733.426141][T16374] ? __kmalloc_cache_node_noprof+0x62/0x830 [ 733.426196][T16374] should_failslab+0xc2/0x120 [ 733.426250][T16374] __kmalloc_cache_node_noprof+0x83/0x830 [ 733.426301][T16374] ? __alloc_disk_node+0x5a/0x6b0 [ 733.426368][T16374] ? __alloc_disk_node+0x5a/0x6b0 [ 733.426421][T16374] __alloc_disk_node+0x5a/0x6b0 [ 733.426479][T16374] __blk_mq_alloc_disk+0x89/0x120 [ 733.426527][T16374] loop_add+0x490/0xb70 [ 733.426587][T16374] ? __pfx_loop_add+0x10/0x10 [ 733.426668][T16374] ? find_held_lock+0x2b/0x80 [ 733.426721][T16374] loop_control_ioctl+0x13e/0x640 [ 733.426785][T16374] ? __pfx_loop_control_ioctl+0x10/0x10 [ 733.426845][T16374] ? __pfx_loop_control_ioctl+0x10/0x10 [ 733.426898][T16374] __x64_sys_ioctl+0x18e/0x210 [ 733.426939][T16374] do_syscall_64+0xcd/0xf80 [ 733.426989][T16374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 733.427021][T16374] RIP: 0033:0x7f55f158f7c9 [ 733.427046][T16374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 733.427077][T16374] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 733.427108][T16374] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 733.427129][T16374] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005 [ 733.427149][T16374] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 733.427169][T16374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 733.427188][T16374] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 733.427227][T16374] [ 734.024255][T16387] netlink: 'syz.2.2820': attribute type 1 has an invalid length. [ 734.124288][T16388] netlink: 'syz.2.2820': attribute type 3 has an invalid length. [ 735.312214][T16419] FAULT_INJECTION: forcing a failure. [ 735.312214][T16419] name failslab, interval 1, probability 0, space 0, times 0 [ 735.340543][T16419] CPU: 0 UID: 0 PID: 16419 Comm: syz.1.2838 Tainted: G U L syzkaller #0 PREEMPT(full) [ 735.340597][T16419] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 735.340610][T16419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 735.340629][T16419] Call Trace: [ 735.340640][T16419] [ 735.340652][T16419] dump_stack_lvl+0x16c/0x1f0 [ 735.340727][T16419] should_fail_ex+0x512/0x640 [ 735.340764][T16419] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 735.340810][T16419] should_failslab+0xc2/0x120 [ 735.340862][T16419] kmem_cache_alloc_noprof+0x83/0x770 [ 735.340903][T16419] ? skb_clone+0x190/0x3f0 [ 735.340953][T16419] ? skb_clone+0x190/0x3f0 [ 735.340994][T16419] skb_clone+0x190/0x3f0 [ 735.341038][T16419] netlink_deliver_tap+0xabd/0xd30 [ 735.341091][T16419] netlink_unicast+0x64c/0x870 [ 735.341147][T16419] ? __pfx_netlink_unicast+0x10/0x10 [ 735.341194][T16419] ? __pfx___might_resched+0x10/0x10 [ 735.341240][T16419] ? __lock_acquire+0x436/0x2890 [ 735.341282][T16419] netlink_sendmsg+0x8c8/0xdd0 [ 735.341337][T16419] ? __pfx_netlink_sendmsg+0x10/0x10 [ 735.341400][T16419] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 735.341463][T16419] ____sys_sendmsg+0xa5d/0xc30 [ 735.341516][T16419] ? copy_msghdr_from_user+0x10a/0x160 [ 735.341560][T16419] ? __pfx_____sys_sendmsg+0x10/0x10 [ 735.341630][T16419] ___sys_sendmsg+0x134/0x1d0 [ 735.341676][T16419] ? __pfx____sys_sendmsg+0x10/0x10 [ 735.341770][T16419] __sys_sendmsg+0x16d/0x220 [ 735.341816][T16419] ? __pfx___sys_sendmsg+0x10/0x10 [ 735.341886][T16419] do_syscall_64+0xcd/0xf80 [ 735.341942][T16419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 735.341976][T16419] RIP: 0033:0x7f20f338f7c9 [ 735.342001][T16419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 735.342034][T16419] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 735.342066][T16419] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 735.342088][T16419] RDX: 0000000004000000 RSI: 00002000000002c0 RDI: 0000000000000003 [ 735.342110][T16419] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 735.342131][T16419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 735.342151][T16419] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 735.342196][T16419] [ 735.786620][T16424] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2831'. [ 736.843287][T16437] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2833'. [ 737.051259][T16441] netlink: 'syz.1.2835': attribute type 1 has an invalid length. [ 737.597232][T16441] netlink: 'syz.1.2835': attribute type 3 has an invalid length. [ 738.108017][T16462] FAULT_INJECTION: forcing a failure. [ 738.108017][T16462] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 738.135510][T16462] CPU: 0 UID: 0 PID: 16462 Comm: syz.2.2845 Tainted: G U L syzkaller #0 PREEMPT(full) [ 738.135563][T16462] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 738.135575][T16462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 738.135593][T16462] Call Trace: [ 738.135604][T16462] [ 738.135617][T16462] dump_stack_lvl+0x16c/0x1f0 [ 738.135670][T16462] should_fail_ex+0x512/0x640 [ 738.135711][T16462] should_fail_alloc_page+0xe7/0x130 [ 738.135763][T16462] prepare_alloc_pages+0x401/0x670 [ 738.135820][T16462] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 738.135863][T16462] ? __lock_acquire+0x436/0x2890 [ 738.135909][T16462] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 738.135950][T16462] ? do_raw_spin_lock+0x12c/0x2b0 [ 738.135987][T16462] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 738.136042][T16462] ? find_held_lock+0x2b/0x80 [ 738.136096][T16462] ? __lock_acquire+0x436/0x2890 [ 738.136126][T16462] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 738.136182][T16462] ? policy_nodemask+0xea/0x4e0 [ 738.136235][T16462] alloc_pages_mpol+0x1fb/0x550 [ 738.136286][T16462] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 738.136349][T16462] folio_alloc_mpol_noprof+0x36/0x2f0 [ 738.136385][T16462] shmem_alloc_folio+0x135/0x160 [ 738.136448][T16462] shmem_alloc_and_add_folio+0x494/0xc20 [ 738.136497][T16462] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 738.136537][T16462] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 738.136586][T16462] shmem_get_folio_gfp+0x67f/0x1610 [ 738.136634][T16462] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 738.136673][T16462] ? filemap_map_pages+0x12dd/0x1e00 [ 738.136720][T16462] shmem_fault+0x1fe/0xa00 [ 738.136760][T16462] ? __pfx_shmem_fault+0x10/0x10 [ 738.136805][T16462] ? __pfx_filemap_map_pages+0x10/0x10 [ 738.136853][T16462] ? __pfx_filemap_map_pages+0x10/0x10 [ 738.136887][T16462] __do_fault+0x10d/0x490 [ 738.136931][T16462] ? __pfx_filemap_map_pages+0x10/0x10 [ 738.136965][T16462] do_fault+0xae4/0x1ad0 [ 738.137012][T16462] ? __pfx_filemap_map_pages+0x10/0x10 [ 738.137057][T16462] __handle_mm_fault+0x1919/0x2bb0 [ 738.137104][T16462] ? __pfx___handle_mm_fault+0x10/0x10 [ 738.137164][T16462] ? find_vma+0xbf/0x140 [ 738.137207][T16462] ? __pfx_find_vma+0x10/0x10 [ 738.137256][T16462] handle_mm_fault+0x3fe/0xad0 [ 738.137300][T16462] do_user_addr_fault+0x7a6/0x1370 [ 738.137344][T16462] ? rcu_is_watching+0x12/0xc0 [ 738.137399][T16462] exc_page_fault+0x64/0xc0 [ 738.137448][T16462] asm_exc_page_fault+0x26/0x30 [ 738.137488][T16462] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 738.137526][T16462] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 738.137556][T16462] RSP: 0018:ffffc9000fb3fb28 EFLAGS: 00050206 [ 738.137581][T16462] RAX: 0000000000000001 RBX: 000000000000fdef RCX: 000000000000ddef [ 738.137601][T16462] RDX: ffffed100e8cdfbe RSI: 0000000000002000 RDI: ffff888074662000 [ 738.137624][T16462] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100e8cdfbd [ 738.137644][T16462] R10: ffff88807466fdee R11: 0000000000000000 R12: 0000000000000000 [ 738.137664][T16462] R13: 1ffff92001f67f90 R14: ffffc9000fb3fd90 R15: ffff888074660000 [ 738.137708][T16462] _copy_from_iter+0x355/0x16c0 [ 738.137747][T16462] ? rcu_is_watching+0x12/0xc0 [ 738.137794][T16462] ? __pfx__copy_from_iter+0x10/0x10 [ 738.137828][T16462] ? trace_kmalloc+0x2b/0xb0 [ 738.137871][T16462] ? __kvmalloc_node_noprof.cold+0x61/0x8e [ 738.137919][T16462] ? do_raw_spin_lock+0x12c/0x2b0 [ 738.137956][T16462] ? find_held_lock+0x2b/0x80 [ 738.137997][T16462] ? proc_sys_call_handler+0x2d6/0x5b0 [ 738.138041][T16462] ? proc_sys_call_handler+0x169/0x5b0 [ 738.138094][T16462] proc_sys_call_handler+0x401/0x5b0 [ 738.138143][T16462] ? __pfx_proc_sys_call_handler+0x10/0x10 [ 738.138201][T16462] vfs_write+0x7d3/0x11d0 [ 738.138250][T16462] ? __pfx_proc_sys_write+0x10/0x10 [ 738.138296][T16462] ? __pfx_vfs_write+0x10/0x10 [ 738.138369][T16462] ksys_write+0x12a/0x250 [ 738.138422][T16462] ? __pfx_ksys_write+0x10/0x10 [ 738.138482][T16462] do_syscall_64+0xcd/0xf80 [ 738.138534][T16462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 738.138568][T16462] RIP: 0033:0x7f55f158f7c9 [ 738.138593][T16462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 738.138625][T16462] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 738.138656][T16462] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 738.138678][T16462] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 738.138698][T16462] RBP: 00007f55f23b4090 R08: 0000000000000000 R09: 0000000000000000 [ 738.138719][T16462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 738.138739][T16462] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 738.138784][T16462] [ 738.745550][T16470] FAULT_INJECTION: forcing a failure. [ 738.745550][T16470] name failslab, interval 1, probability 0, space 0, times 0 [ 738.795916][T16471] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2847'. [ 738.810433][T16470] CPU: 1 UID: 0 PID: 16470 Comm: syz.2.2848 Tainted: G U L syzkaller #0 PREEMPT(full) [ 738.810487][T16470] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 738.810500][T16470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 738.810519][T16470] Call Trace: [ 738.810530][T16470] [ 738.810543][T16470] dump_stack_lvl+0x16c/0x1f0 [ 738.810596][T16470] should_fail_ex+0x512/0x640 [ 738.810634][T16470] ? kmem_cache_alloc_lru_noprof+0x66/0x770 [ 738.810680][T16470] should_failslab+0xc2/0x120 [ 738.810731][T16470] kmem_cache_alloc_lru_noprof+0x87/0x770 [ 738.810771][T16470] ? dquot_alloc_inode+0x51b/0xb90 [ 738.810811][T16470] ? __dquot_initialize+0x299/0xd50 [ 738.810845][T16470] ? __d_alloc+0x35/0xa80 [ 738.810882][T16470] ? __d_alloc+0x35/0xa80 [ 738.810910][T16470] __d_alloc+0x35/0xa80 [ 738.810944][T16470] d_alloc_pseudo+0x1c/0xc0 [ 738.810983][T16470] alloc_file_pseudo+0xcf/0x230 [ 738.811021][T16470] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 738.811073][T16470] __shmem_file_setup+0x1a8/0x350 [ 738.811136][T16470] shmem_zero_setup+0x93/0x1b0 [ 738.811180][T16470] __mmap_region+0x2271/0x2a00 [ 738.811225][T16470] ? __lock_acquire+0x436/0x2890 [ 738.811256][T16470] ? __pfx___mmap_region+0x10/0x10 [ 738.811327][T16470] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 738.811381][T16470] ? is_bpf_text_address+0x94/0x1a0 [ 738.811506][T16470] ? rcu_is_watching+0x12/0xc0 [ 738.811563][T16470] mmap_region+0x1ab/0x3f0 [ 738.811604][T16470] ? __get_unmapped_area+0x267/0x3f0 [ 738.811657][T16470] do_mmap+0xa3e/0x1210 [ 738.811713][T16470] ? __pfx_do_mmap+0x10/0x10 [ 738.811765][T16470] ? __pfx_down_write_killable+0x10/0x10 [ 738.811809][T16470] vm_mmap_pgoff+0x29e/0x470 [ 738.811865][T16470] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 738.811915][T16470] ? __fget_files+0x20e/0x3c0 [ 738.811976][T16470] ksys_mmap_pgoff+0x7d/0x5c0 [ 738.812026][T16470] ? __pfx_ksys_write+0x10/0x10 [ 738.812083][T16470] __x64_sys_mmap+0x125/0x190 [ 738.812122][T16470] do_syscall_64+0xcd/0xf80 [ 738.812176][T16470] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 738.812210][T16470] RIP: 0033:0x7f55f158f7c9 [ 738.812236][T16470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 738.812270][T16470] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 738.812302][T16470] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 738.812325][T16470] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 738.812346][T16470] RBP: 00007f55f23b4090 R08: fffffffffffffffa R09: 0000000000008000 [ 738.812368][T16470] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001 [ 738.812390][T16470] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 738.812436][T16470] [ 739.223337][ T8010] Bluetooth: hci4: command 0x0406 tx timeout [ 739.955804][T16485] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2854'. [ 740.236718][T16490] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 740.265503][T16490] ima: policy update failed [ 740.279324][ T30] audit: type=1802 audit(4294967566.300:35): pid=16490 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2855" res=0 errno=0 [ 740.875719][T16498] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2858'. [ 741.250873][T16513] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2865'. [ 741.532791][T16516] snd_aloop snd_aloop.0: Parsing timer source '/32' failed with -22 [ 742.019265][T16526] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2870'. [ 742.116520][T16531] FAULT_INJECTION: forcing a failure. [ 742.116520][T16531] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 742.158747][T16531] CPU: 1 UID: 0 PID: 16531 Comm: syz.3.2872 Tainted: G U L syzkaller #0 PREEMPT(full) [ 742.158801][T16531] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 742.158815][T16531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 742.158835][T16531] Call Trace: [ 742.158847][T16531] [ 742.158859][T16531] dump_stack_lvl+0x16c/0x1f0 [ 742.158914][T16531] should_fail_ex+0x512/0x640 [ 742.158957][T16531] should_fail_alloc_page+0xe7/0x130 [ 742.159018][T16531] prepare_alloc_pages+0x401/0x670 [ 742.159076][T16531] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 742.159117][T16531] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 742.159172][T16531] ? kernel_text_address+0x8d/0x100 [ 742.159210][T16531] ? __kernel_text_address+0xd/0x40 [ 742.159246][T16531] ? unwind_get_return_address+0x59/0xa0 [ 742.159287][T16531] ? arch_stack_walk+0xa6/0x100 [ 742.159333][T16531] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 742.159377][T16531] ? __lock_acquire+0x436/0x2890 [ 742.159408][T16531] ? stack_trace_save+0x8e/0xc0 [ 742.159468][T16531] ? look_up_lock_class+0x59/0x130 [ 742.159518][T16531] ? register_lock_class+0x41/0x4b0 [ 742.159547][T16531] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 742.159598][T16531] ? policy_nodemask+0xea/0x4e0 [ 742.159649][T16531] alloc_pages_mpol+0x1fb/0x550 [ 742.159700][T16531] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 742.159762][T16531] alloc_pages_noprof+0x131/0x390 [ 742.159815][T16531] __pmd_alloc+0x3b/0x9c0 [ 742.159868][T16531] __handle_mm_fault+0xbeb/0x2bb0 [ 742.159914][T16531] ? __pfx___handle_mm_fault+0x10/0x10 [ 742.159973][T16531] ? find_vma+0xbf/0x140 [ 742.160023][T16531] ? __pfx_find_vma+0x10/0x10 [ 742.160072][T16531] handle_mm_fault+0x3fe/0xad0 [ 742.160113][T16531] do_user_addr_fault+0x7a6/0x1370 [ 742.160156][T16531] ? rcu_is_watching+0x12/0xc0 [ 742.160207][T16531] exc_page_fault+0x64/0xc0 [ 742.160256][T16531] asm_exc_page_fault+0x26/0x30 [ 742.160289][T16531] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 742.160327][T16531] Code: c4 10 e9 14 81 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 [ 742.160361][T16531] RSP: 0018:ffffc9000f95f9c0 EFLAGS: 00050202 [ 742.160389][T16531] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000007 [ 742.160408][T16531] RDX: fffff52001f2bf4a RSI: 0000000000000000 RDI: ffffc9000f95fa48 [ 742.160431][T16531] RBP: 0000000000000007 R08: 0000000000000001 R09: fffff52001f2bf49 [ 742.160450][T16531] R10: ffffc9000f95fa4e R11: ffff88804cc3e6b0 R12: 0000000000000000 [ 742.160472][T16531] R13: ffffc9000f95fa48 R14: 1ffff92001f2bf43 R15: ffffc9000f95fd7c [ 742.160514][T16531] _copy_from_user+0x98/0xd0 [ 742.160552][T16531] ____sys_sendmsg+0x607/0xc30 [ 742.160610][T16531] ? __pfx_____sys_sendmsg+0x10/0x10 [ 742.160668][T16531] ? __pfx__kstrtoull+0x10/0x10 [ 742.160721][T16531] ___sys_sendmsg+0x134/0x1d0 [ 742.160767][T16531] ? __pfx____sys_sendmsg+0x10/0x10 [ 742.160827][T16531] ? find_held_lock+0x2b/0x80 [ 742.160893][T16531] __sys_sendmmsg+0x200/0x420 [ 742.160942][T16531] ? __pfx___sys_sendmmsg+0x10/0x10 [ 742.160997][T16531] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 742.161072][T16531] ? fput+0x70/0xf0 [ 742.161105][T16531] ? ksys_write+0x1ac/0x250 [ 742.161149][T16531] ? __pfx_ksys_write+0x10/0x10 [ 742.161202][T16531] __x64_sys_sendmmsg+0x9c/0x100 [ 742.161243][T16531] ? lockdep_hardirqs_on+0x7c/0x110 [ 742.161293][T16531] do_syscall_64+0xcd/0xf80 [ 742.161343][T16531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 742.161375][T16531] RIP: 0033:0x7fb678d8f7c9 [ 742.161400][T16531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 742.161432][T16531] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 742.161461][T16531] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 742.161483][T16531] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 742.161504][T16531] RBP: 00007fb679b68090 R08: 0000000000000000 R09: 0000000000000000 [ 742.161523][T16531] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 742.161542][T16531] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 742.161585][T16531] [ 742.698358][T16534] FAULT_INJECTION: forcing a failure. [ 742.698358][T16534] name failslab, interval 1, probability 0, space 0, times 0 [ 742.724091][T16532] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 742.765188][T16534] CPU: 0 UID: 0 PID: 16534 Comm: syz.1.2873 Tainted: G U L syzkaller #0 PREEMPT(full) [ 742.765244][T16534] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 742.765261][T16534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 742.765281][T16534] Call Trace: [ 742.765293][T16534] [ 742.765307][T16534] dump_stack_lvl+0x16c/0x1f0 [ 742.765364][T16534] should_fail_ex+0x512/0x640 [ 742.765399][T16534] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 742.765446][T16534] should_failslab+0xc2/0x120 [ 742.765499][T16534] kmem_cache_alloc_noprof+0x83/0x770 [ 742.765540][T16534] ? skb_clone+0x190/0x3f0 [ 742.765590][T16534] ? skb_clone+0x190/0x3f0 [ 742.765629][T16534] skb_clone+0x190/0x3f0 [ 742.765682][T16534] netlink_deliver_tap+0xabd/0xd30 [ 742.765741][T16534] netlink_unicast+0x64c/0x870 [ 742.765796][T16534] ? __pfx_netlink_unicast+0x10/0x10 [ 742.765854][T16534] ? __pfx___might_resched+0x10/0x10 [ 742.765900][T16534] ? __lock_acquire+0x436/0x2890 [ 742.765943][T16534] netlink_sendmsg+0x8c8/0xdd0 [ 742.765997][T16534] ? __pfx_netlink_sendmsg+0x10/0x10 [ 742.766050][T16534] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 742.766118][T16534] ____sys_sendmsg+0xa5d/0xc30 [ 742.766192][T16534] ? copy_msghdr_from_user+0x10a/0x160 [ 742.766236][T16534] ? __pfx_____sys_sendmsg+0x10/0x10 [ 742.766310][T16534] ___sys_sendmsg+0x134/0x1d0 [ 742.766357][T16534] ? __pfx____sys_sendmsg+0x10/0x10 [ 742.766453][T16534] __sys_sendmsg+0x16d/0x220 [ 742.766499][T16534] ? __pfx___sys_sendmsg+0x10/0x10 [ 742.766570][T16534] do_syscall_64+0xcd/0xf80 [ 742.766626][T16534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 742.766683][T16534] RIP: 0033:0x7f20f338f7c9 [ 742.766710][T16534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 742.766744][T16534] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 742.766777][T16534] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 742.766800][T16534] RDX: 0000000020000000 RSI: 0000200000002d40 RDI: 0000000000000003 [ 742.766821][T16534] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 742.766842][T16534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 742.766863][T16534] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 742.766913][T16534] [ 742.770780][T16532] ima: policy update failed [ 743.030096][ T30] audit: type=1802 audit(4294967569.050:36): pid=16532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2871" res=0 errno=0 [ 743.696355][T16552] FAULT_INJECTION: forcing a failure. [ 743.696355][T16552] name failslab, interval 1, probability 0, space 0, times 0 [ 743.717771][T16552] CPU: 1 UID: 0 PID: 16552 Comm: syz.3.2876 Tainted: G U L syzkaller #0 PREEMPT(full) [ 743.717829][T16552] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 743.717844][T16552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 743.717864][T16552] Call Trace: [ 743.717876][T16552] [ 743.717891][T16552] dump_stack_lvl+0x16c/0x1f0 [ 743.717952][T16552] should_fail_ex+0x512/0x640 [ 743.717991][T16552] ? __kmalloc_node_track_caller_noprof+0xcb/0x930 [ 743.718050][T16552] should_failslab+0xc2/0x120 [ 743.718103][T16552] __kmalloc_node_track_caller_noprof+0xec/0x930 [ 743.718157][T16552] ? create_filter_start.constprop.0+0x16a/0x300 [ 743.718214][T16552] ? kstrdup+0x53/0x100 [ 743.718252][T16552] kstrdup+0x53/0x100 [ 743.718295][T16552] create_filter_start.constprop.0+0x16a/0x300 [ 743.718348][T16552] create_filter+0xb5/0x210 [ 743.718395][T16552] ? __pfx_create_filter+0x10/0x10 [ 743.718445][T16552] ? find_held_lock+0x2b/0x80 [ 743.718494][T16552] apply_event_filter+0x220/0x500 [ 743.718542][T16552] ? __pfx_apply_event_filter+0x10/0x10 [ 743.718601][T16552] ? __pfx_event_filter_write+0x10/0x10 [ 743.718640][T16552] event_filter_write+0x16d/0x290 [ 743.718677][T16552] vfs_writev+0x5df/0xde0 [ 743.718748][T16552] ? __pfx_vfs_writev+0x10/0x10 [ 743.718791][T16552] ? fdget_pos+0x2a2/0x370 [ 743.718869][T16552] ? __fget_files+0x20e/0x3c0 [ 743.718924][T16552] ? do_writev+0x132/0x340 [ 743.718965][T16552] do_writev+0x132/0x340 [ 743.719009][T16552] ? __pfx_do_writev+0x10/0x10 [ 743.719064][T16552] do_syscall_64+0xcd/0xf80 [ 743.719118][T16552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 743.719153][T16552] RIP: 0033:0x7fb678d8f7c9 [ 743.719179][T16552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 743.719218][T16552] RSP: 002b:00007fb679b68038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 743.719261][T16552] RAX: ffffffffffffffda RBX: 00007fb678fe5fa0 RCX: 00007fb678d8f7c9 [ 743.719282][T16552] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 743.719302][T16552] RBP: 00007fb678e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 743.719321][T16552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 743.719341][T16552] R13: 00007fb678fe6038 R14: 00007fb678fe5fa0 R15: 00007ffc16ed3f98 [ 743.719384][T16552] [ 744.919571][T16573] bcache: register_bcache() error : Not a bcache superblock (bad offset) [ 745.776776][T16592] FAULT_INJECTION: forcing a failure. [ 745.776776][T16592] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 745.804506][T16592] CPU: 1 UID: 0 PID: 16592 Comm: syz.0.2890 Tainted: G U L syzkaller #0 PREEMPT(full) [ 745.804559][T16592] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 745.804572][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 745.804591][T16592] Call Trace: [ 745.804602][T16592] [ 745.804614][T16592] dump_stack_lvl+0x16c/0x1f0 [ 745.804676][T16592] should_fail_ex+0x512/0x640 [ 745.804718][T16592] _copy_from_iter+0x43b/0x16c0 [ 745.804767][T16592] ? __pfx__copy_from_iter+0x10/0x10 [ 745.804805][T16592] ? __asan_memset+0x23/0x50 [ 745.804845][T16592] ? __build_skb_around+0x278/0x390 [ 745.804880][T16592] ? is_vmalloc_addr+0x86/0xa0 [ 745.804924][T16592] netlink_sendmsg+0x820/0xdd0 [ 745.804979][T16592] ? __pfx_netlink_sendmsg+0x10/0x10 [ 745.805031][T16592] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 745.805092][T16592] ____sys_sendmsg+0xa5d/0xc30 [ 745.805148][T16592] ? __pfx_____sys_sendmsg+0x10/0x10 [ 745.805207][T16592] ? __pfx__kstrtoull+0x10/0x10 [ 745.805261][T16592] ___sys_sendmsg+0x134/0x1d0 [ 745.805307][T16592] ? __pfx____sys_sendmsg+0x10/0x10 [ 745.805369][T16592] ? find_held_lock+0x2b/0x80 [ 745.805437][T16592] __sys_sendmmsg+0x200/0x420 [ 745.805487][T16592] ? __pfx___sys_sendmmsg+0x10/0x10 [ 745.805544][T16592] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 745.805611][T16592] ? fput+0x70/0xf0 [ 745.805643][T16592] ? ksys_write+0x1ac/0x250 [ 745.805698][T16592] ? __pfx_ksys_write+0x10/0x10 [ 745.805753][T16592] __x64_sys_sendmmsg+0x9c/0x100 [ 745.805794][T16592] ? lockdep_hardirqs_on+0x7c/0x110 [ 745.805843][T16592] do_syscall_64+0xcd/0xf80 [ 745.805894][T16592] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 745.805927][T16592] RIP: 0033:0x7f68f5f8f7c9 [ 745.805953][T16592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 745.805985][T16592] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 745.806017][T16592] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 745.806039][T16592] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003 [ 745.806060][T16592] RBP: 00007f68f6dc5090 R08: 0000000000000000 R09: 0000000000000000 [ 745.806081][T16592] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 745.806101][T16592] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 745.806145][T16592] [ 748.513155][T16631] zram0: detected capacity change from 0 to 8 [ 748.582194][T16631] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2901'. [ 749.142965][T16644] netlink: 338 bytes leftover after parsing attributes in process `syz.1.2903'. [ 749.449126][T16647] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 749.875942][T16652] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2906'. [ 751.872091][T16685] snd_aloop snd_aloop.0: Parsing timer source '/32' failed with -22 [ 752.420353][T16694] FAULT_INJECTION: forcing a failure. [ 752.420353][T16694] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 752.504713][T16694] CPU: 0 UID: 0 PID: 16694 Comm: syz.1.2916 Tainted: G U L syzkaller #0 PREEMPT(full) [ 752.504767][T16694] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 752.504776][T16694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 752.504791][T16694] Call Trace: [ 752.504800][T16694] [ 752.504809][T16694] dump_stack_lvl+0x16c/0x1f0 [ 752.504850][T16694] should_fail_ex+0x512/0x640 [ 752.504881][T16694] should_fail_alloc_page+0xe7/0x130 [ 752.504919][T16694] prepare_alloc_pages+0x401/0x670 [ 752.504956][T16694] ? rcu_is_watching+0x12/0xc0 [ 752.504998][T16694] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 752.505038][T16694] ? __lock_acquire+0x436/0x2890 [ 752.505064][T16694] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 752.505096][T16694] ? css_rstat_updated+0x1d1/0x590 [ 752.505120][T16694] ? __pfx_css_rstat_updated+0x10/0x10 [ 752.505143][T16694] ? lru_gen_add_folio+0x1a4/0xef0 [ 752.505176][T16694] ? __lock_acquire+0x436/0x2890 [ 752.505201][T16694] ? __lock_acquire+0x436/0x2890 [ 752.505222][T16694] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 752.505261][T16694] ? policy_nodemask+0xea/0x4e0 [ 752.505300][T16694] alloc_pages_mpol+0x1fb/0x550 [ 752.505339][T16694] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 752.505385][T16694] folio_alloc_mpol_noprof+0x36/0x2f0 [ 752.505412][T16694] vma_alloc_folio_noprof+0xed/0x1e0 [ 752.505437][T16694] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 752.505471][T16694] do_anonymous_page+0xc81/0x2190 [ 752.505507][T16694] __handle_mm_fault+0x1ecf/0x2bb0 [ 752.505541][T16694] ? __pfx___handle_mm_fault+0x10/0x10 [ 752.505568][T16694] ? __pte_offset_map_lock+0x174/0x310 [ 752.505604][T16694] ? find_held_lock+0x2b/0x80 [ 752.505644][T16694] ? follow_page_pte+0x5cf/0x1390 [ 752.505686][T16694] handle_mm_fault+0x3fe/0xad0 [ 752.505716][T16694] __get_user_pages+0x54e/0x3590 [ 752.505766][T16694] ? __pfx___get_user_pages+0x10/0x10 [ 752.505810][T16694] populate_vma_page_range+0x267/0x3f0 [ 752.505850][T16694] ? __pfx_populate_vma_page_range+0x10/0x10 [ 752.505888][T16694] ? __pfx_find_vma_intersection+0x10/0x10 [ 752.505925][T16694] ? do_mmap+0x69c/0x1210 [ 752.505962][T16694] __mm_populate+0x1d8/0x380 [ 752.506007][T16694] ? __pfx___mm_populate+0x10/0x10 [ 752.506046][T16694] ? up_write+0x282/0x4e0 [ 752.506075][T16694] vm_mmap_pgoff+0x37f/0x470 [ 752.506112][T16694] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 752.506152][T16694] ? __x64_sys_futex+0x1e0/0x4c0 [ 752.506178][T16694] ? __x64_sys_futex+0x1e9/0x4c0 [ 752.506210][T16694] ksys_mmap_pgoff+0x7d/0x5c0 [ 752.506242][T16694] ? xfd_validate_state+0x61/0x180 [ 752.506263][T16694] ? __pfx___do_sys_close_range+0x10/0x10 [ 752.506305][T16694] __x64_sys_mmap+0x125/0x190 [ 752.506333][T16694] do_syscall_64+0xcd/0xf80 [ 752.506372][T16694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 752.506398][T16694] RIP: 0033:0x7f20f338f7c9 [ 752.506417][T16694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 752.506441][T16694] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 752.506464][T16694] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 752.506481][T16694] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 752.506496][T16694] RBP: 00007f20f3413f91 R08: ffffffffffffffff R09: 0000000000008000 [ 752.506512][T16694] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 752.506527][T16694] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 752.506558][T16694] [ 752.969178][T16702] netlink: 'syz.2.2917': attribute type 1 has an invalid length. [ 753.039455][T16704] UHID_CREATE from different security context by process 269 (syz.0.2927), this is not allowed. [ 753.101278][T16704] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 754.095097][T16725] FAULT_INJECTION: forcing a failure. [ 754.095097][T16725] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 754.134603][T16725] CPU: 1 UID: 0 PID: 16725 Comm: syz.1.2922 Tainted: G U L syzkaller #0 PREEMPT(full) [ 754.134656][T16725] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 754.134669][T16725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 754.134690][T16725] Call Trace: [ 754.134700][T16725] [ 754.134713][T16725] dump_stack_lvl+0x16c/0x1f0 [ 754.134766][T16725] should_fail_ex+0x512/0x640 [ 754.134810][T16725] should_fail_alloc_page+0xe7/0x130 [ 754.134863][T16725] prepare_alloc_pages+0x401/0x670 [ 754.134920][T16725] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 754.134965][T16725] ? stack_trace_save+0x8e/0xc0 [ 754.135016][T16725] ? __pfx_stack_trace_save+0x10/0x10 [ 754.135068][T16725] ? stack_depot_save_flags+0x29/0x9b0 [ 754.135105][T16725] ? bpf_ksym_find+0x124/0x1c0 [ 754.135144][T16725] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 754.135183][T16725] ? __kasan_kmalloc+0xaa/0xb0 [ 754.135225][T16725] ? copy_splice_read+0x1a8/0xc20 [ 754.135268][T16725] ? splice_direct_to_actor+0x2a1/0xa30 [ 754.135314][T16725] ? do_splice_direct+0x174/0x240 [ 754.135357][T16725] ? do_sendfile+0xb06/0xe50 [ 754.135397][T16725] ? __x64_sys_sendfile64+0x1d8/0x220 [ 754.135426][T16725] ? do_syscall_64+0xcd/0xf80 [ 754.135473][T16725] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 754.135535][T16725] alloc_pages_bulk_noprof+0x77a/0x1410 [ 754.135596][T16725] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 754.135650][T16725] ? copy_splice_read+0x1a8/0xc20 [ 754.135703][T16725] copy_splice_read+0x1e1/0xc20 [ 754.135760][T16725] ? __pfx_copy_splice_read+0x10/0x10 [ 754.135812][T16725] ? look_up_lock_class+0x59/0x130 [ 754.135887][T16725] ? lockdep_init_map_type+0x5c/0x270 [ 754.135923][T16725] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 754.135973][T16725] ? __pfx_copy_splice_read+0x10/0x10 [ 754.136021][T16725] do_splice_read+0x285/0x370 [ 754.136076][T16725] splice_direct_to_actor+0x2a1/0xa30 [ 754.136128][T16725] ? __pfx_direct_splice_actor+0x10/0x10 [ 754.136187][T16725] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 754.136234][T16725] ? get_pid_task+0xfc/0x250 [ 754.136274][T16725] do_splice_direct+0x174/0x240 [ 754.136324][T16725] ? __pfx_do_splice_direct+0x10/0x10 [ 754.136375][T16725] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 754.136429][T16725] ? rw_verify_area+0xcf/0x6c0 [ 754.136473][T16725] do_sendfile+0xb06/0xe50 [ 754.136525][T16725] ? __pfx_do_sendfile+0x10/0x10 [ 754.136578][T16725] ? __fget_files+0x20e/0x3c0 [ 754.136636][T16725] __x64_sys_sendfile64+0x1d8/0x220 [ 754.136667][T16725] ? ksys_write+0x1ac/0x250 [ 754.136714][T16725] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 754.136760][T16725] do_syscall_64+0xcd/0xf80 [ 754.136813][T16725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 754.136847][T16725] RIP: 0033:0x7f20f338f7c9 [ 754.136874][T16725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 754.136907][T16725] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 754.136939][T16725] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 754.136963][T16725] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 754.136982][T16725] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 754.137003][T16725] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001 [ 754.137023][T16725] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 754.137068][T16725] [ 754.904545][ T8492] Bluetooth: hci3: command 0x0406 tx timeout [ 755.576546][T16739] FAULT_INJECTION: forcing a failure. [ 755.576546][T16739] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 755.642835][T16739] CPU: 0 UID: 0 PID: 16739 Comm: syz.1.2926 Tainted: G U L syzkaller #0 PREEMPT(full) [ 755.642890][T16739] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 755.642903][T16739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 755.642923][T16739] Call Trace: [ 755.642935][T16739] [ 755.642948][T16739] dump_stack_lvl+0x16c/0x1f0 [ 755.643011][T16739] should_fail_ex+0x512/0x640 [ 755.643054][T16739] should_fail_alloc_page+0xe7/0x130 [ 755.643110][T16739] prepare_alloc_pages+0x401/0x670 [ 755.643169][T16739] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 755.643223][T16739] ? kasan_save_stack+0x42/0x60 [ 755.643267][T16739] ? kasan_save_stack+0x33/0x60 [ 755.643310][T16739] ? kasan_save_track+0x14/0x30 [ 755.643353][T16739] ? __kasan_slab_alloc+0x89/0x90 [ 755.643419][T16739] ? kmem_cache_alloc_noprof+0x25e/0x770 [ 755.643457][T16739] ? __pmd_alloc+0xbf/0x9c0 [ 755.643506][T16739] ? __handle_mm_fault+0xbeb/0x2bb0 [ 755.643538][T16739] ? handle_mm_fault+0x3fe/0xad0 [ 755.643569][T16739] ? do_user_addr_fault+0x7a6/0x1370 [ 755.643610][T16739] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 755.643650][T16739] ? snd_pcm_common_ioctl+0x117d/0x3bc0 [ 755.643701][T16739] ? __x64_sys_ioctl+0x18e/0x210 [ 755.643741][T16739] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 755.643798][T16739] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 755.643852][T16739] ? policy_nodemask+0xea/0x4e0 [ 755.643908][T16739] alloc_pages_mpol+0x1fb/0x550 [ 755.643960][T16739] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 755.644024][T16739] alloc_pages_noprof+0x131/0x390 [ 755.644077][T16739] pte_alloc_one+0x1e/0x3d0 [ 755.644125][T16739] do_fault+0x8b8/0x1ad0 [ 755.644174][T16739] ? __pfx_filemap_map_pages+0x10/0x10 [ 755.644213][T16739] ? __pmd_alloc+0x6aa/0x9c0 [ 755.644267][T16739] __handle_mm_fault+0x1919/0x2bb0 [ 755.644313][T16739] ? __pfx___handle_mm_fault+0x10/0x10 [ 755.644374][T16739] ? find_vma+0xbf/0x140 [ 755.644421][T16739] ? __pfx_find_vma+0x10/0x10 [ 755.644469][T16739] handle_mm_fault+0x3fe/0xad0 [ 755.644513][T16739] do_user_addr_fault+0x7a6/0x1370 [ 755.644556][T16739] ? rcu_is_watching+0x12/0xc0 [ 755.644608][T16739] exc_page_fault+0x64/0xc0 [ 755.644658][T16739] asm_exc_page_fault+0x26/0x30 [ 755.644696][T16739] RIP: 0010:__get_user_8+0x14/0x30 [ 755.644736][T16739] Code: ca e9 90 79 04 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 [ 755.644768][T16739] RSP: 0018:ffffc9000d0efd00 EFLAGS: 00050287 [ 755.644795][T16739] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9000d0efca4 [ 755.644816][T16739] RDX: 00007ffffffff000 RSI: ffffffff89065e73 RDI: ffffffff8bf2b600 [ 755.644840][T16739] RBP: ffffc9000d0efea0 R08: 00000000ffffffff R09: 00000000ffffffff [ 755.644861][T16739] R10: 0000000000000001 R11: ffff888068774830 R12: ffff88814cedd800 [ 755.644883][T16739] R13: ffff88807dc64540 R14: 0000000040084146 R15: 1ffff92001a1dfaf [ 755.644918][T16739] ? snd_pcm_common_ioctl+0x1173/0x3bc0 [ 755.644967][T16739] snd_pcm_common_ioctl+0x117d/0x3bc0 [ 755.645014][T16739] ? do_vfs_ioctl+0x128/0x14f0 [ 755.645056][T16739] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 755.645099][T16739] ? __pfx_snd_pcm_common_ioctl+0x10/0x10 [ 755.645149][T16739] ? find_held_lock+0x2b/0x80 [ 755.645193][T16739] ? hook_file_ioctl_common+0x144/0x410 [ 755.645243][T16739] ? __fget_files+0x20e/0x3c0 [ 755.645297][T16739] snd_pcm_ioctl+0x7e/0xb0 [ 755.645334][T16739] ? __pfx_snd_pcm_ioctl+0x10/0x10 [ 755.645376][T16739] __x64_sys_ioctl+0x18e/0x210 [ 755.645419][T16739] do_syscall_64+0xcd/0xf80 [ 755.645472][T16739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 755.645505][T16739] RIP: 0033:0x7f20f338f7c9 [ 755.645531][T16739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 755.645565][T16739] RSP: 002b:00007f20f15f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 755.645596][T16739] RAX: ffffffffffffffda RBX: 00007f20f35e5fa0 RCX: 00007f20f338f7c9 [ 755.645619][T16739] RDX: 0000000000000000 RSI: 0000000040084146 RDI: 0000000000000003 [ 755.645640][T16739] RBP: 00007f20f15f6090 R08: 0000000000000000 R09: 0000000000000000 [ 755.645660][T16739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 755.645680][T16739] R13: 00007f20f35e6038 R14: 00007f20f35e5fa0 R15: 00007ffe3b7ebd58 [ 755.645732][T16739] [ 756.265177][T16745] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2929'. [ 757.009474][T16736] FAULT_INJECTION: forcing a failure. [ 757.009474][T16736] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 757.105023][T16736] CPU: 1 UID: 0 PID: 16736 Comm: syz.2.2924 Tainted: G U L syzkaller #0 PREEMPT(full) [ 757.105081][T16736] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 757.105095][T16736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 757.105124][T16736] Call Trace: [ 757.105135][T16736] [ 757.105148][T16736] dump_stack_lvl+0x16c/0x1f0 [ 757.105206][T16736] should_fail_ex+0x512/0x640 [ 757.105243][T16736] ? __pfx_nvmf_dev_write+0x10/0x10 [ 757.105292][T16736] ? __pfx_nvmf_dev_write+0x10/0x10 [ 757.105328][T16736] _copy_from_user+0x2e/0xd0 [ 757.105372][T16736] memdup_user_nul+0x6c/0x120 [ 757.105424][T16736] nvmf_dev_write+0x78/0xc70 [ 757.105460][T16736] ? security_file_permission+0x71/0x210 [ 757.105508][T16736] ? rw_verify_area+0xcf/0x6c0 [ 757.105557][T16736] ? __pfx_nvmf_dev_write+0x10/0x10 [ 757.105589][T16736] vfs_write+0x2a0/0x11d0 [ 757.105638][T16736] ? __pfx_vfs_write+0x10/0x10 [ 757.105678][T16736] ? find_held_lock+0x2b/0x80 [ 757.105721][T16736] ? __fget_files+0x204/0x3c0 [ 757.105767][T16736] ? __fget_files+0x20e/0x3c0 [ 757.105817][T16736] ksys_write+0x12a/0x250 [ 757.105857][T16736] ? __pfx_ksys_write+0x10/0x10 [ 757.105909][T16736] do_syscall_64+0xcd/0xf80 [ 757.105956][T16736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 757.105985][T16736] RIP: 0033:0x7f55f158f7c9 [ 757.106008][T16736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 757.106037][T16736] RSP: 002b:00007f55f23b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 757.106064][T16736] RAX: ffffffffffffffda RBX: 00007f55f17e5fa0 RCX: 00007f55f158f7c9 [ 757.106084][T16736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 757.106101][T16736] RBP: 00007f55f1613f91 R08: 0000000000000000 R09: 0000000000000000 [ 757.106119][T16736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 757.106136][T16736] R13: 00007f55f17e6038 R14: 00007f55f17e5fa0 R15: 00007fffa8f700d8 [ 757.106173][T16736] [ 757.421877][T16736] nvme_fabrics: missing parameter 'transport=%s' [ 757.428520][T16736] nvme_fabrics: missing parameter 'nqn=%s' [ 757.987664][ T8010] Bluetooth: hci3: unexpected event 0x23 length: 127 > 13 [ 757.991642][T16763] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2935'. [ 759.112966][T16777] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2940'. [ 759.316020][T16781] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 759.400828][T16783] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2942'. [ 760.578285][T16793] netlink: 'syz.0.2944': attribute type 1 has an invalid length. [ 761.256519][T16811] snd_aloop snd_aloop.0: Parsing timer source '/32' failed with -22 [ 762.320476][T16822] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2950'. [ 762.841645][T16827] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2951'. [ 762.874099][T16827] netlink: 'syz.0.2951': attribute type 1 has an invalid length. [ 762.936638][T16827] netlink: 5 bytes leftover after parsing attributes in process `syz.0.2951'. [ 763.658489][T16835] FAULT_INJECTION: forcing a failure. [ 763.658489][T16835] name failslab, interval 1, probability 0, space 0, times 0 [ 763.765706][T16835] CPU: 1 UID: 0 PID: 16835 Comm: syz.0.2954 Tainted: G U L syzkaller #0 PREEMPT(full) [ 763.765768][T16835] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 763.765782][T16835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 763.765803][T16835] Call Trace: [ 763.765813][T16835] [ 763.765826][T16835] dump_stack_lvl+0x16c/0x1f0 [ 763.765878][T16835] should_fail_ex+0x512/0x640 [ 763.765912][T16835] ? __kmalloc_cache_noprof+0x5f/0x800 [ 763.765951][T16835] should_failslab+0xc2/0x120 [ 763.766005][T16835] __kmalloc_cache_noprof+0x80/0x800 [ 763.766045][T16835] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 763.766102][T16835] ? vidtv_psi_pmt_table_init+0x363/0x430 [ 763.766162][T16835] ? vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 763.766213][T16835] vidtv_psi_pmt_stream_init+0x4e/0x3e0 [ 763.766270][T16835] vidtv_channel_si_init+0x13d2/0x1a50 [ 763.766319][T16835] vidtv_mux_init+0x526/0xbe0 [ 763.766362][T16835] vidtv_start_feed+0x33e/0x4d0 [ 763.766407][T16835] ? __pfx_vidtv_start_feed+0x10/0x10 [ 763.766457][T16835] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 763.766512][T16835] ? mark_held_locks+0x49/0x80 [ 763.766553][T16835] ? __pfx_vidtv_start_feed+0x10/0x10 [ 763.766601][T16835] dmx_ts_feed_start_filtering+0xf6/0x220 [ 763.766650][T16835] dvb_dmxdev_start_feed+0x273/0x3f0 [ 763.766719][T16835] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 763.766758][T16835] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 763.766800][T16835] dvb_demux_do_ioctl+0x9de/0x12f0 [ 763.766852][T16835] dvb_usercopy+0x167/0x340 [ 763.766904][T16835] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 763.766944][T16835] ? __pfx_dvb_usercopy+0x10/0x10 [ 763.767016][T16835] ? __fget_files+0x20e/0x3c0 [ 763.767073][T16835] dvb_demux_ioctl+0x29/0x40 [ 763.767103][T16835] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 763.767137][T16835] __x64_sys_ioctl+0x18e/0x210 [ 763.767183][T16835] do_syscall_64+0xcd/0xf80 [ 763.767238][T16835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 763.767272][T16835] RIP: 0033:0x7f68f5f8f7c9 [ 763.767301][T16835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 763.767331][T16835] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 763.767361][T16835] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 763.767382][T16835] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 763.767401][T16835] RBP: 00007f68f6013f91 R08: 0000000000000000 R09: 0000000000000000 [ 763.767421][T16835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 763.767444][T16835] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 763.767497][T16835] [ 763.767581][T16835] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 764.043969][T16835] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 764.052416][T16835] CPU: 1 UID: 0 PID: 16835 Comm: syz.0.2954 Tainted: G U L syzkaller #0 PREEMPT(full) [ 764.063396][T16835] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 764.068621][T16835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 764.078729][T16835] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 764.084694][T16835] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 fd 68 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 d9 68 b9 f9 4d 85 e4 [ 764.104334][T16835] RSP: 0018:ffffc9000c8efa20 EFLAGS: 00010247 [ 764.110435][T16835] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000cb40000 [ 764.118435][T16835] RDX: 0000000000000000 RSI: ffffffff880501e3 RDI: 0000000000000005 [ 764.126440][T16835] RBP: ffff888034e809a0 R08: 0000000000000000 R09: 4453534204050000 [ 764.134446][T16835] R10: 0000000000000005 R11: ffff888022ec0b30 R12: 0000000000000000 [ 764.142468][T16835] R13: ffff8880342b2ac0 R14: ffff88802a9e9b20 R15: ffff888027f00dc0 [ 764.150471][T16835] FS: 00007f68f6dc56c0(0000) GS:ffff8881249fc000(0000) knlGS:0000000000000000 [ 764.159435][T16835] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 764.166049][T16835] CR2: 0000000000308000 CR3: 000000007a338000 CR4: 00000000003526f0 [ 764.174053][T16835] Call Trace: [ 764.177359][T16835] [ 764.180321][T16835] vidtv_channel_si_init+0x1445/0x1a50 [ 764.185832][T16835] vidtv_mux_init+0x526/0xbe0 [ 764.190551][T16835] vidtv_start_feed+0x33e/0x4d0 [ 764.195535][T16835] ? __pfx_vidtv_start_feed+0x10/0x10 [ 764.200954][T16835] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 764.207603][T16835] ? mark_held_locks+0x49/0x80 [ 764.212407][T16835] ? __pfx_vidtv_start_feed+0x10/0x10 [ 764.217823][T16835] dmx_ts_feed_start_filtering+0xf6/0x220 [ 764.223588][T16835] dvb_dmxdev_start_feed+0x273/0x3f0 [ 764.228931][T16835] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 764.234425][T16835] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 764.239692][T16835] dvb_demux_do_ioctl+0x9de/0x12f0 [ 764.244854][T16835] dvb_usercopy+0x167/0x340 [ 764.249519][T16835] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 764.255111][T16835] ? __pfx_dvb_usercopy+0x10/0x10 [ 764.260204][T16835] ? __fget_files+0x20e/0x3c0 [ 764.264941][T16835] dvb_demux_ioctl+0x29/0x40 [ 764.269574][T16835] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 764.274902][T16835] __x64_sys_ioctl+0x18e/0x210 [ 764.279714][T16835] do_syscall_64+0xcd/0xf80 [ 764.284265][T16835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.290199][T16835] RIP: 0033:0x7f68f5f8f7c9 [ 764.294644][T16835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 764.314315][T16835] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 764.322765][T16835] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 764.330765][T16835] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 764.338770][T16835] RBP: 00007f68f6013f91 R08: 0000000000000000 R09: 0000000000000000 [ 764.346806][T16835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 764.354814][T16835] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 764.362838][T16835] [ 764.365887][T16835] Modules linked in: [ 764.370331][T16835] ---[ end trace 0000000000000000 ]--- [ 764.544651][T16835] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 764.550819][T16835] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 fd 68 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 d9 68 b9 f9 4d 85 e4 [ 764.570869][T16835] RSP: 0018:ffffc9000c8efa20 EFLAGS: 00010247 [ 764.635094][T16835] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000cb40000 [ 764.643153][T16835] RDX: 0000000000000000 RSI: ffffffff880501e3 RDI: 0000000000000005 [ 764.694623][T16835] RBP: ffff888034e809a0 R08: 0000000000000000 R09: 4453534204050000 [ 764.749457][T16835] R10: 0000000000000005 R11: ffff888022ec0b30 R12: 0000000000000000 [ 764.787434][T16835] R13: ffff8880342b2ac0 R14: ffff88802a9e9b20 R15: ffff888027f00dc0 [ 764.814513][T16835] FS: 00007f68f6dc56c0(0000) GS:ffff8881248fc000(0000) knlGS:0000000000000000 [ 764.848226][T16835] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 764.880291][T16835] CR2: 00007f20f35b6ad8 CR3: 000000007a338000 CR4: 00000000003526f0 [ 764.903177][T16835] Kernel panic - not syncing: Fatal exception [ 764.909309][T16835] Sending NMI from CPU 0 to CPUs 1: [ 764.914581][ C1] NMI backtrace for cpu 1 [ 764.914604][ C1] CPU: 1 UID: 0 PID: 14840 Comm: syz-executor Tainted: G UD L syzkaller #0 PREEMPT(full) [ 764.914649][ C1] Tainted: [U]=USER, [D]=DIE, [L]=SOFTLOCKUP [ 764.914660][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 764.914677][ C1] RIP: 0010:mod_timer+0x0/0x20 [ 764.914711][ C1] Code: df ba 01 00 00 00 5b 5d e9 9d f2 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 55 48 89 f5 53 48 89 fb e8 8f 44 14 00 48 89 ee 48 89 [ 764.914738][ C1] RSP: 0018:ffffc90000a08c60 EFLAGS: 00000216 [ 764.914760][ C1] RAX: 1ffffffff1c02250 RBX: ffffc90000a08ca8 RCX: ffffffff89da0046 [ 764.914779][ C1] RDX: dffffc0000000000 RSI: 000000010000b4e4 RDI: ffffffff9b0a5300 [ 764.914797][ C1] RBP: ffffffff9b0a5300 R08: 0000000000000007 R09: 0000000000000000 [ 764.914814][ C1] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff9200014118f [ 764.914837][ C1] R13: ffffffff89da00f0 R14: 0000000000000100 R15: 0000000000000001 [ 764.914854][ C1] FS: 000055557064e500(0000) GS:ffff8881249fc000(0000) knlGS:0000000000000000 [ 764.914880][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 764.914898][ C1] CR2: 00000000003ff000 CR3: 000000002a5a2000 CR4: 00000000003526f0 [ 764.914916][ C1] Call Trace: [ 764.914926][ C1] [ 764.914934][ C1] call_timer_fn+0x19a/0x5a0 [ 764.914960][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 764.914987][ C1] ? __run_timers+0x73a/0xae0 [ 764.915011][ C1] ? rcu_is_watching+0x12/0xc0 [ 764.915049][ C1] ? __pfx_tcp_orphan_update+0x10/0x10 [ 764.915083][ C1] ? rcu_is_watching+0x12/0xc0 [ 764.915120][ C1] ? __pfx_tcp_orphan_update+0x10/0x10 [ 764.915154][ C1] __run_timers+0x74a/0xae0 [ 764.915184][ C1] ? __pfx___run_timers+0x10/0x10 [ 764.915210][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 764.915246][ C1] ? rcu_is_watching+0x12/0xc0 [ 764.915287][ C1] run_timer_base+0x114/0x190 [ 764.915313][ C1] ? __pfx_run_timer_base+0x10/0x10 [ 764.915340][ C1] ? rcu_is_watching+0x12/0xc0 [ 764.915378][ C1] run_timer_softirq+0x24/0x40 [ 764.915404][ C1] handle_softirqs+0x219/0x950 [ 764.915444][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 764.915486][ C1] __irq_exit_rcu+0x109/0x170 [ 764.915522][ C1] irq_exit_rcu+0x9/0x30 [ 764.915558][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 764.915601][ C1] [ 764.915610][ C1] [ 764.915620][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 764.915650][ C1] RIP: 0010:its_return_thunk+0x0/0x10 [ 764.915682][ C1] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 e9 4b fd b2 f5 cc [ 764.915708][ C1] RSP: 0018:ffffc90003fbf890 EFLAGS: 00000293 [ 764.915728][ C1] RAX: 0000000000000000 RBX: ffffc90003fbf968 RCX: ffffffff824c74d0 [ 764.915746][ C1] RDX: ffff88803094bd00 RSI: 0000000000000ff3 RDI: 0000000000000004 [ 764.915763][ C1] RBP: 0000000000000007 R08: 0000000000000004 R09: 0000000000000ff3 [ 764.915779][ C1] R10: 0000000000000007 R11: 0000000000000001 R12: 0000000000000ff3 [ 764.915796][ C1] R13: ffff888057445098 R14: ffff888028338ff3 R15: ffffc90003fbf970 [ 764.915819][ C1] ? prepend+0x80/0x130 [ 764.915856][ C1] prepend+0x80/0x130 [ 764.915886][ C1] prepend_path+0x4ef/0xfc0 [ 764.915921][ C1] ? __pfx_prepend_path+0x10/0x10 [ 764.915956][ C1] d_absolute_path+0xfe/0x1a0 [ 764.915987][ C1] ? __pfx_d_absolute_path+0x10/0x10 [ 764.916019][ C1] ? __kmalloc_noprof+0x35d/0x910 [ 764.916047][ C1] ? __pfx_make_vfsuid+0x10/0x10 [ 764.916079][ C1] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 764.916122][ C1] tomoyo_realpath_from_path+0x355/0x6e0 [ 764.916162][ C1] ? tomoyo_profile+0x47/0x60 [ 764.916204][ C1] tomoyo_path_perm+0x274/0x460 [ 764.916233][ C1] ? tomoyo_path_perm+0x260/0x460 [ 764.916264][ C1] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 764.916302][ C1] ? __filename_parentat+0x4ba/0x680 [ 764.916346][ C1] ? lock_release+0x201/0x2d0 [ 764.916374][ C1] tomoyo_path_unlink+0x91/0xe0 [ 764.916415][ C1] ? __pfx_tomoyo_path_unlink+0x10/0x10 [ 764.916457][ C1] ? lookup_dcache+0x66/0x170 [ 764.916487][ C1] security_path_unlink+0x145/0x2b0 [ 764.916518][ C1] do_unlinkat+0x318/0x660 [ 764.916561][ C1] ? lock_release+0x201/0x2d0 [ 764.916585][ C1] ? __pfx_do_unlinkat+0x10/0x10 [ 764.916634][ C1] ? getname_flags.part.0+0x1c5/0x550 [ 764.916666][ C1] __x64_sys_unlink+0xc5/0x110 [ 764.916689][ C1] do_syscall_64+0xcd/0xf80 [ 764.916731][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.916758][ C1] RIP: 0033:0x7fb678d8ed77 [ 764.916778][ C1] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 764.916804][ C1] RSP: 002b:00007ffc16ed3228 EFLAGS: 00000206 ORIG_RAX: 0000000000000057 [ 764.916833][ C1] RAX: ffffffffffffffda RBX: 0000000000001656 RCX: 00007fb678d8ed77 [ 764.916851][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffc16ed32e0 [ 764.916868][ C1] RBP: 00007ffc16ed32e0 R08: 0000000000000000 R09: 0000000000000000 [ 764.916885][ C1] R10: 0000000000000000 R11: 0000000000000206 R12: 00007ffc16ed4370 [ 764.916902][ C1] R13: 00007fb678e13d7d R14: 000055557064e4a8 R15: 0000000000000005 [ 764.916928][ C1] [ 765.440986][T16835] Kernel Offset: disabled [ 765.445325][T16835] Timer List Version: v0.10 [ 765.449912][T16835] HRTIMER_MAX_CLOCK_BASES: 8 [ 765.454517][T16835] now at 765400952530 nsecs [ 765.459033][T16835] [ 765.461355][T16835] cpu: 0 [ 765.464204][T16835] clock 0: [ 765.467311][T16835] .base: ffff8880b84284c0 [ 765.472338][T16835] .index: 0 [ 765.476055][T16835] .resolution: 1 nsecs [ 765.480296][T16835] .offset: 0 nsecs [ 765.484548][T16835] active timers: [ 765.488111][T16835] #0: , hrtimer_wakeup [ 765.488144][T16835] , S:01 [ 765.493856][T16835] [ 765.499053][T16835] # expires at 764859774699-764859824699 nsecs [in -541177831 to -541127831 nsecs] [ 765.508421][T16835] #1: , tick_nohz_handler [ 765.508462][T16835] , S:01 [ 765.514434][T16835] [ 765.519594][T16835] # expires at 764860000000-764860000000 nsecs [in -540952530 to -540952530 nsecs] [ 765.528961][T16835] #2: , hrtimer_wakeup [ 765.528992][T16835] , S:01 [ 765.534700][T16835] [ 765.539877][T16835] # expires at 764865675400-764865725400 nsecs [in -535277130 to -535227130 nsecs] [ 765.549264][T16835] #3: , dl_task_timer [ 765.549300][T16835] , S:01 [ 765.554922][T16835] [ 765.560080][T16835] # expires at 765794093164-765794093164 nsecs [in 393140634 to 393140634 nsecs] [ 765.569278][T16835] #4: , hrtimer_wakeup [ 765.569308][T16835] , S:01 [ 765.575021][T16835] [ 765.580176][T16835] # expires at 767827200795-767830200793 nsecs [in 2426248265 to 2429248263 nsecs] [ 765.589552][T16835] #5: , hrtimer_wakeup [ 765.589583][T16835] , S:01 [ 765.595294][T16835] [ 765.600453][T16835] # expires at 769438871789-769464060156 nsecs [in 4037919259 to 4063107626 nsecs] [ 765.609819][T16835] #6: , watchdog_timer_fn [ 765.609859][T16835] , S:01 [ 765.615830][T16835] [ 765.620985][T16835] # expires at 772702909425-772702909425 nsecs [in 7301956895 to 7301956895 nsecs] [ 765.630356][T16835] #7: , hrtimer_wakeup [ 765.630386][T16835] , S:01 [ 765.636096][T16835] [ 765.641260][T16835] # expires at 1114024262128-1114124262128 nsecs [in 348623309598 to 348723309598 nsecs] [ 765.651168][T16835] clock 1: [ 765.654277][T16835] .base: ffff8880b8428540 [ 765.659295][T16835] .index: 1 [ 765.663013][T16835] .resolution: 1 nsecs [ 765.667252][T16835] .offset: 4294966826077597969 nsecs [ 765.673054][T16835] active timers: [ 765.676592][T16835] clock 2: [ 765.679696][T16835] .base: ffff8880b84285c0 [ 765.684715][T16835] .index: 2 [ 765.688459][T16835] .resolution: 1 nsecs [ 765.692708][T16835] .offset: 0 nsecs [ 765.696958][T16835] active timers: [ 765.700503][T16835] clock 3: [ 765.703612][T16835] .base: ffff8880b8428640 [ 765.708633][T16835] .index: 3 [ 765.712352][T16835] .resolution: 1 nsecs [ 765.716593][T16835] .offset: 4294966826077597969 nsecs [ 765.722397][T16835] active timers: [ 765.725950][T16835] clock 4: [ 765.729058][T16835] .base: ffff8880b84286c0 [ 765.734077][T16835] .index: 4 [ 765.737879][T16835] .resolution: 1 nsecs [ 765.742118][T16835] .offset: 0 nsecs [ 765.746350][T16835] active timers: [ 765.749903][T16835] #0: , mac80211_hwsim_beacon [ 765.749945][T16835] , S:01 [ 765.756263][T16835] [ 765.761432][T16835] # expires at 764936803974-764936803974 nsecs [in -464148556 to -464148556 nsecs] [ 765.770940][T16835] #1: , mac80211_hwsim_beacon [ 765.770984][T16835] , S:01 [ 765.777310][T16835] [ 765.782478][T16835] # expires at 764936804059-764936804059 nsecs [in -464148471 to -464148471 nsecs] [ 765.791861][T16835] clock 5: [ 765.794977][T16835] .base: ffff8880b8428740 [ 765.800000][T16835] .index: 5 [ 765.803715][T16835] .resolution: 1 nsecs [ 765.807952][T16835] .offset: 4294966826077597969 nsecs [ 765.813753][T16835] active timers: [ 765.817296][T16835] clock 6: [ 765.820403][T16835] .base: ffff8880b84287c0 [ 765.825431][T16835] .index: 6 [ 765.829258][T16835] .resolution: 1 nsecs [ 765.833494][T16835] .offset: 0 nsecs [ 765.837735][T16835] active timers: [ 765.841273][T16835] clock 7: [ 765.844398][T16835] .base: ffff8880b8428840 [ 765.849429][T16835] .index: 7 [ 765.853146][T16835] .resolution: 1 nsecs [ 765.857384][T16835] .offset: 4294966826077597969 nsecs [ 765.863182][T16835] active timers: [ 765.866718][T16835] .expires_next : 764859824699 nsecs [ 765.872341][T16835] .hres_active : 1 [ 765.876491][T16835] .nr_events : 214004 [ 765.881078][T16835] .nr_retries : 489 [ 765.885406][T16835] .nr_hangs : 0 [ 765.889555][T16835] .max_hang_time : 0 [ 765.893705][T16835] .nohz : 1 [ 765.897946][T16835] .highres : 1 [ 765.902101][T16835] .last_tick : 764620000000 nsecs [ 765.907739][T16835] .tick_stopped : 0 [ 765.911904][T16835] .idle_jiffies : 4295013568 [ 765.916851][T16835] .idle_calls : 154581 [ 765.921490][T16835] .idle_sleeps : 9573 [ 765.925995][T16835] .idle_entrytime : 764734358957 nsecs [ 765.931631][T16835] .idle_waketime : 764619375720 nsecs [ 765.937262][T16835] .idle_exittime : 764619406883 nsecs [ 765.942896][T16835] .idle_sleeptime : 166914952907 nsecs [ 765.948529][T16835] .iowait_sleeptime: 2621163447 nsecs [ 765.954083][T16835] .last_jiffies : 4295013580 [ 765.959028][T16835] .next_timer : 764700000000 [ 765.964141][T16835] .idle_expires : 1243970000000 nsecs [ 765.969860][T16835] jiffies: 4295013646 [ 765.973854][T16835] [ 765.976202][T16835] Tick Device: mode: 1 [ 765.980625][T16835] Broadcast device [ 765.984351][T16835] Clock Event Device: [ 765.984362][T16835] pit [ 765.991038][T16835] max_delta_ns: 27461861 [ 765.995534][T16835] min_delta_ns: 12572 [ 765.999800][T16835] mult: 5124678 [ 766.004211][T16835] shift: 32 [ 766.008184][T16835] mode: 1 [ 766.012076][T16835] next_event: 9223372036854775807 nsecs [ 766.018052][T16835] set_next_event: pit_next_event [ 766.023083][T16835] shutdown: pit_shutdown [ 766.027934][T16835] periodic: pit_set_periodic [ 766.033135][T16835] oneshot: pit_set_oneshot [ 766.038250][T16835] event_handler: tick_handle_oneshot_broadcast [ 766.044597][T16835] [ 766.046952][T16835] retries: 0 [ 766.050844][T16835] [ 766.053171][T16835] tick_broadcast_mask: 0 [ 766.057414][T16835] tick_broadcast_oneshot_mask: 0 [ 766.062355][T16835] [ 766.064702][T16835] Tick Device: mode: 1 [ 766.069113][T16835] Per CPU device: 0 [ 766.072917][T16835] Clock Event Device: [ 766.072927][T16835] lapic [ 766.079742][T16835] max_delta_ns: 34356605070 [ 766.084499][T16835] min_delta_ns: 1000 [ 766.088650][T16835] mult: 268459937 [ 766.093251][T16835] shift: 32 [ 766.097226][T16835] mode: 3 [ 766.101113][T16835] next_event: 764859824699 nsecs [ 766.106480][T16835] set_next_event: lapic_next_event [ 766.111709][T16835] shutdown: lapic_timer_shutdown [ 766.117262][T16835] periodic: lapic_timer_set_periodic [ 766.123164][T16835] oneshot: lapic_timer_set_oneshot [ 766.128973][T16835] oneshot stopped: lapic_timer_shutdown [ 766.134608][T16835] event_handler: hrtimer_interrupt [ 766.139905][T16835] [ 766.142234][T16835] retries: 853 [ 766.146298][T16835] Wakeup Device: [ 766.150458][T16835] [ 766.152785][T16835] Dumping ftrace buffer: [ 766.157029][T16835] --------------------------------- [ 766.162271][T16835] <...>-14976 0..... 13533498us : purge_vmap_area_lazy: start=0x0 end=0x0 num_purged=0 [ 766.172529][T16835] <...>-14976 0..... 13533828us : purge_vmap_area_lazy: start=0x0 end=0x0 num_purged=0 [ 766.182764][T16835] --------------------------------- [ 766.187959][T16835] NMI backtrace for cpu 0 [ 766.187977][T16835] CPU: 0 UID: 0 PID: 16835 Comm: syz.0.2954 Tainted: G UD L syzkaller #0 PREEMPT(full) [ 766.188017][T16835] Tainted: [U]=USER, [D]=DIE, [L]=SOFTLOCKUP [ 766.188028][T16835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 766.188044][T16835] Call Trace: [ 766.188055][T16835] [ 766.188066][T16835] dump_stack_lvl+0x3d/0x1f0 [ 766.188105][T16835] nmi_cpu_backtrace+0x27b/0x390 [ 766.188132][T16835] ? tracer_tracing_enable+0x3e/0x60 [ 766.188173][T16835] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 766.188199][T16835] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 766.188230][T16835] sys_info+0x133/0x180 [ 766.188254][T16835] vpanic+0x234/0x6f0 [ 766.188278][T16835] panic+0xca/0xd0 [ 766.188301][T16835] ? __pfx_panic+0x10/0x10 [ 766.188326][T16835] ? __show_regs+0x4bf/0x750 [ 766.188358][T16835] ? oops_end+0x84/0x110 [ 766.188382][T16835] oops_end+0xac/0x110 [ 766.188404][T16835] exc_general_protection+0x12e/0x230 [ 766.188443][T16835] asm_exc_general_protection+0x26/0x30 [ 766.188469][T16835] RIP: 0010:vidtv_psi_desc_assign+0x24/0x90 [ 766.188510][T16835] Code: 90 90 90 90 90 90 0f 1f 40 d6 41 54 55 48 89 f5 53 48 89 fb e8 fd 68 b9 f9 48 89 da 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 75 47 4c 8b 23 49 39 ec 74 36 e8 d9 68 b9 f9 4d 85 e4 [ 766.188535][T16835] RSP: 0018:ffffc9000c8efa20 EFLAGS: 00010247 [ 766.188554][T16835] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: ffffc9000cb40000 [ 766.188570][T16835] RDX: 0000000000000000 RSI: ffffffff880501e3 RDI: 0000000000000005 [ 766.188585][T16835] RBP: ffff888034e809a0 R08: 0000000000000000 R09: 4453534204050000 [ 766.188601][T16835] R10: 0000000000000005 R11: ffff888022ec0b30 R12: 0000000000000000 [ 766.188617][T16835] R13: ffff8880342b2ac0 R14: ffff88802a9e9b20 R15: ffff888027f00dc0 [ 766.188638][T16835] ? vidtv_psi_desc_assign+0x13/0x90 [ 766.188676][T16835] vidtv_channel_si_init+0x1445/0x1a50 [ 766.188707][T16835] vidtv_mux_init+0x526/0xbe0 [ 766.188734][T16835] vidtv_start_feed+0x33e/0x4d0 [ 766.188767][T16835] ? __pfx_vidtv_start_feed+0x10/0x10 [ 766.188801][T16835] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10 [ 766.188840][T16835] ? mark_held_locks+0x49/0x80 [ 766.188864][T16835] ? __pfx_vidtv_start_feed+0x10/0x10 [ 766.188897][T16835] dmx_ts_feed_start_filtering+0xf6/0x220 [ 766.188930][T16835] dvb_dmxdev_start_feed+0x273/0x3f0 [ 766.188973][T16835] dvb_dmxdev_filter_start+0x1b6/0xe10 [ 766.189001][T16835] ? dvb_dmxdev_add_pid+0x2a1/0x380 [ 766.189028][T16835] dvb_demux_do_ioctl+0x9de/0x12f0 [ 766.189058][T16835] dvb_usercopy+0x167/0x340 [ 766.189096][T16835] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 766.189123][T16835] ? __pfx_dvb_usercopy+0x10/0x10 [ 766.189167][T16835] ? __fget_files+0x20e/0x3c0 [ 766.189205][T16835] dvb_demux_ioctl+0x29/0x40 [ 766.189227][T16835] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 766.189249][T16835] __x64_sys_ioctl+0x18e/0x210 [ 766.189281][T16835] do_syscall_64+0xcd/0xf80 [ 766.189319][T16835] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 766.189344][T16835] RIP: 0033:0x7f68f5f8f7c9 [ 766.189364][T16835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 766.189387][T16835] RSP: 002b:00007f68f6dc5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 766.189408][T16835] RAX: ffffffffffffffda RBX: 00007f68f61e5fa0 RCX: 00007f68f5f8f7c9 [ 766.189429][T16835] RDX: 0000000000000000 RSI: 0000000040146f2c RDI: 0000000000000003 [ 766.189444][T16835] RBP: 00007f68f6013f91 R08: 0000000000000000 R09: 0000000000000000 [ 766.189460][T16835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 766.189475][T16835] R13: 00007f68f61e6038 R14: 00007f68f61e5fa0 R15: 00007ffcd7595478 [ 766.189499][T16835] [ 766.554662][T16835] Rebooting in 86400 seconds..