last executing test programs: 4.743994457s ago: executing program 3 (id=3095): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) madvise$auto(0x4, 0x7, 0x2) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0x10001}, 0x5, 0x20000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0x80000000df, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_RTC_IRQP_READ(0xffffffffffffffff, 0x8008700b, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) 4.062836653s ago: executing program 1 (id=3098): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f00000002c0), 0x20001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) writev$auto(r1, &(0x7f0000001c80)={0x0, 0x1}, 0x6) read$auto(r0, 0x0, 0x7) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x9}, 0x3) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000080)={0x220000, 0x0, 0x10}, 0x18) socket(0x1e, 0x1, 0x0) keyctl$auto(0x1e, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1) 3.863891992s ago: executing program 1 (id=3100): mmap$auto(0xfffffffffffffffd, 0x40000a, 0xdf, 0x9b74, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0xa, 0x3, 0x3b) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc8201, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x810) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x8d, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) 3.814340321s ago: executing program 0 (id=3101): r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29202, 0x0) mmap$auto(0x6, 0x80008, 0xb, 0x8000000008011, r0, 0x0) mincore$auto(0x1000, 0x8001, 0x0) mmap$auto(0x8000000000000000, 0x80000000, 0x7, 0xeb2, 0xfffffffffffffffa, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0xffffffffffffffff, 0x4004af07, 0xffffffffffffffff) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x60020000) sched_get_priority_min$auto(0x6) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0) pivot_root$auto(&(0x7f0000000100)='..\x00', &(0x7f0000000340)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce') 3.131722226s ago: executing program 0 (id=3105): mmap$auto(0x1000, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) migrate_pages$auto(0x0, 0x4, 0x0, 0x0) r0 = getpid() openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xaa102, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) madvise$auto(0x0, 0x2003f0, 0x11) process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={0x0, 0x40000000001243}, 0xa, 0x0) 3.006014572s ago: executing program 3 (id=3106): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, 0x0, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x18}}, 0x54) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x200009, 0x2, 0x40eb1, 0x602, 0x300000000000) madvise$auto(0x2000, 0x20499d, 0x9) 2.420192686s ago: executing program 2 (id=3107): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r1, 0x0, 0x20) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) ftruncate$auto(0xffffffffffffffff, 0x764) 2.419345343s ago: executing program 1 (id=3115): sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x4) r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) close_range$auto(0x0, 0xfffff004, 0x2) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r1 = socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0xf, r2, @relative_fd, 0xe600}, 0xf) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r5, 0x0, 0x4}, 0x103) 2.103104329s ago: executing program 3 (id=3108): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/workqueue/nvme_tcp_wq/max_active\x00', 0x182b02, 0x0) setsockopt$auto_SO_NOFCS(r0, 0xf1c, 0x2b, 0x0, 0x2) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) write$auto(0xca, 0x0, 0x2d9) close_range$auto(0x2, 0xa, 0x0) getpgrp(0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x40800) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mbind$auto(0x0, 0x2091d1, 0x1, 0x0, 0x6, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0x7bdb, 0x19) madvise$auto(0x0, 0x2003f2, 0x15) mmap$auto(0x800000000000000, 0x40000e, 0x5, 0x1c, 0x2, 0x8000) madvise$auto(0x108000, 0x800032, 0x4) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x10, &(0x7f0000000140)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x3, 0x0) r2 = socket(0x29, 0x2, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r2, 0x89f1, 0x24) madvise$auto(0x0, 0x200007, 0x19) 2.094714194s ago: executing program 1 (id=3109): r0 = socket(0x1d, 0x2, 0x6) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_allowed_congestion_control\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80480, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r2, 0x0, 0xfffffff9, 0x10, 0x0) ioctl$auto_PPPIOCSMAXCID(r1, 0x40047451, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/acpi/parameters/ec_event_clearing\x00', 0x129882, 0x0) sendfile$auto(r3, r3, 0x0, 0x8) r4 = socket(0x29, 0x2, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r4) sendfile$auto(r4, 0x3, 0x0, 0x40) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) userfaultfd$auto(0x1) ioctl$auto(0x3, 0x80000541b, 0x38) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x80302, 0x0) r6 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0) write$auto_nsim_psample_enable_fops_psample(r6, &(0x7f0000000100)='O', 0x1) sendfile$auto(r5, r5, 0x0, 0x7ffff000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r7, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40) 1.565873567s ago: executing program 0 (id=3110): prctl$auto(0x4d, 0x1, 0x0, 0x0, 0x0) timer_create$auto(0x9, 0x0, 0x0) mmap$auto(0x20000000, 0x20009, 0x4800000000df, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) socket(0x10, 0x2, 0x6) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x1fa, 0xe983, 0xdf, 0x40eb1, 0x401, 0x6) fsconfig$auto_SHMEM_HUGE_NEVER(0xffffffffffffffff, 0x3, 0x0, 0x0, 0x0) msgsnd$auto(0x0, 0x0, 0x400, 0x2) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x28, 0x1, 0x0) set_mempolicy_home_node$auto(0x5, 0x2, 0x7e6a, 0x1031f) socket(0x2, 0x5, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x7) r0 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$auto(0x5, 0x1, r0, 0x0) keyctl$auto(0xe, 0x2, 0x76f, 0x9, 0xf13) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 1.11157107s ago: executing program 2 (id=3111): r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) pidfd_open$auto(0x1, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d8010000", @ANYRES16, @ANYBLOB="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"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x8000) r1 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto(r0, 0x560f, 0x7) 1.106935956s ago: executing program 3 (id=3112): mmap$auto(0x80000000, 0xfffffffffffffffc, 0x1c, 0x40eb1, 0xffffffffffffffff, 0x300000000000) socket(0xa, 0x3, 0x3b) prctl$auto(0x3e, 0x1, 0x0, 0x400000000001, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/smaps_rollup\x00', 0x2000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020007, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x9, 0x7) clock_gettime$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) preadv2$auto(r0, &(0x7f00000002c0)={0x0, 0x8}, 0x8000000000000001, 0x7fffffffffffffff, 0x2, 0x858b) membarrier$auto(0x2, 0x0, 0x9) 1.077778659s ago: executing program 1 (id=3113): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) socket(0x8, 0x4, 0x0) unshare$auto(0x40000080) sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, 0x0, 0x14) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x2000e1d) writev$auto(r0, &(0x7f0000000200)={0x0, 0xb}, 0x3) set_tid_address$auto(0x0) ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, 0x0) keyctl$auto(0x16, 0xfffffffffffffffc, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x1) 946.850047ms ago: executing program 2 (id=3114): socket(0x1e, 0x4, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0xa, 0x2, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x88) socketpair$auto(0x1, 0x2, 0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x1f, 0x0) 945.7008ms ago: executing program 3 (id=3116): r0 = socket(0x1d, 0x2, 0x6) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_allowed_congestion_control\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80480, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r2, 0x0, 0xfffffff9, 0x10, 0x0) ioctl$auto_PPPIOCSMAXCID(r1, 0x40047451, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/acpi/parameters/ec_event_clearing\x00', 0x129882, 0x0) sendfile$auto(r3, r3, 0x0, 0x8) r4 = socket(0x29, 0x2, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r4) sendfile$auto(r4, 0x3, 0x0, 0x40) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) userfaultfd$auto(0x1) ioctl$auto(0x3, 0x80000541b, 0x38) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x80302, 0x0) r6 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0) write$auto_nsim_psample_enable_fops_psample(r6, &(0x7f0000000100)='O', 0x1) sendfile$auto(r5, r5, 0x0, 0x7ffff000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r7, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40) 881.116649ms ago: executing program 0 (id=3117): prctl$auto(0x4d, 0x1, 0x0, 0x0, 0x0) timer_create$auto(0x9, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x6) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) set_mempolicy_home_node$auto(0x5, 0x2, 0x7e6a, 0x1031f) epoll_ctl$auto(0x5, 0x1, 0xffffffffffffffff, 0x0) keyctl$auto(0xe, 0x2, 0x76f, 0x9, 0xf13) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000180)='\x05\x00\x00\x00', 0x80000005) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 637.145245ms ago: executing program 2 (id=3118): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80002, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(0xffffffffffffffff, 0x0, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0xc) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, 0x0, 0x0) sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r2, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050) write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) 529.877775ms ago: executing program 1 (id=3119): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x25, 0x1, 0x0) r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000180), 0x8002, 0x0) io_uring_register$auto_IORING_UNREGISTER_FILES(r0, 0x3, &(0x7f0000000340)="a7a22ba9517e3e78ab2368cccc1b87e43b5db46416cabfb523c40a306777f88ea620726183aa9d04be80742c64ffcddc89385416065dcf7ff46f3c9dedfbcc4e6855fb96a2d4211d933c785ecfecc809aebd704206956c8191501a00981835078750365c3e4952561b363bb745493392d4ee0ed5477ef45004d7952b0b4daeedf8f149", 0x7) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r2, 0x107, 0xe, 0x0, 0x8) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f00000013c0), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(r3, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000240)={0x30, r4, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NETDEV_A_DMABUF_FD={0x8, 0x3, r3}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r6}, @NETDEV_A_DMABUF_QUEUES={0xc, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x2}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x10) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0e, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x3, 0x6]}, 0x0) shmctl$auto_IPC_INFO(0xcaeb, 0x3, &(0x7f0000000480)={{0x2, 0xee00, 0xee00, 0x1, 0x6, 0x1, 0xff}, 0x1, 0x2, 0x5, 0xffffffff, @raw=0x6b, @raw=0x10000, 0x4, 0x0, &(0x7f0000000040)="a2ab2d4edfe5404e7e1a618bd20dc754af695a0e", &(0x7f0000000400)="8a1d5e41fb1b7b6ad1365b57dbdb7162ab3591b84d163ccc623bb092663979c6d0ee4238998fe4a998619a76f96b525e1cf111680b627d0768c4d5ac70a32772d1f8708a255f4a68ff5c16a3f54b887fe3faffcd"}) r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r8, 0x4, 0x7ff) ptrace$auto_PTRACE_GET_SYSCALL_INFO(0x420e, r8, 0x400, 0x1) msgctl$auto_MSG_INFO(0x4, 0xc, &(0x7f0000000500)={{0xfffffff0, r7, 0xffffffffffffffff, 0x85, 0xca3a, 0x0, 0x2}, &(0x7f0000000080)=0xac, &(0x7f0000000200)=0x2, 0x1, 0x8, 0x10001, 0xfffffffffffffff7, 0x400, 0x0, 0x2, 0x1, @raw=0xffff, @inferred=r8}) r9 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x2, 0x0) fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r9, 0x4, &(0x7f0000000240)='/dev/snd/midiC2D0\x00', &(0x7f00000001c0)="6a6a08d54f7a000000", 0x1) r10 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0) timerfd_create$auto_CLOCK_MONOTONIC(0x1, 0x6) write$auto(r10, 0x0, 0x0) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) 434.421394ms ago: executing program 0 (id=3120): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0xffffffffffffffff, 0x0) open(0x0, 0x261c2, 0x84) socket(0x18, 0x3, 0x2) r0 = socket(0x18, 0x2, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x18, 0x5, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_FLUSH_UEID(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000800)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20008041}, 0x80) 260.338054ms ago: executing program 2 (id=3121): mmap$auto(0x0, 0xec6, 0x5, 0xeb2, 0x8, 0x1008000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x11, 0x3, 0x9) r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5) ioctl$auto(r0, 0x4008af03, 0x0) socket(0xf, 0x3, 0x2) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) bind$auto(0x3, 0x0, 0x6a) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x80101, 0x0) membarrier$auto(0x4, 0x8000000000000000, 0xffffffff) ioctl$auto_VHOST_NET_SET_BACKEND(r0, 0x4008af30, 0x0) 105.093185ms ago: executing program 0 (id=3122): r0 = socket(0x1d, 0x2, 0x6) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_allowed_congestion_control\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80480, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r2, 0x0, 0xfffffff9, 0x10, 0x0) ioctl$auto_PPPIOCSMAXCID(r1, 0x40047451, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/acpi/parameters/ec_event_clearing\x00', 0x129882, 0x0) sendfile$auto(r3, r3, 0x0, 0x8) r4 = socket(0x29, 0x2, 0x0) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r4) sendfile$auto(r4, 0x3, 0x0, 0x40) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) userfaultfd$auto(0x1) ioctl$auto(0x3, 0x80000541b, 0x38) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/pcrypt/pencrypt/parallel_cpumask\x00', 0x80302, 0x0) r6 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0) write$auto_nsim_psample_enable_fops_psample(r6, &(0x7f0000000100)='O', 0x1) sendfile$auto(r5, r5, 0x0, 0x7ffff000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r7, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40) 99.162599ms ago: executing program 2 (id=3123): mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000) ustat$auto(0x801, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) r0 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x801, 0x106) socket(0x2b, 0x1, 0x0) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) listen$auto(0x3, 0x81) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) close_range$auto(0x2, 0x8, 0x0) 0s ago: executing program 3 (id=3124): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r0, r1, 0x2) open_by_handle_at$auto(r1, &(0x7f00000004c0)={0x1, 0x0, "ed"}, 0xffffffff) connect$auto(0xffffffffffffffff, 0x0, 0x54) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setfsuid$auto(0xee00) statmount$auto(0x0, &(0x7f0000000180)={0x315, 0xfffffffd, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x6, 0x3, 0x2, 0x9, 0x2, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): 0 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.647960][ T7727] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 241.647986][ T7727] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 241.648002][ T7727] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000009 [ 241.648015][ T7727] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 241.648029][ T7727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.648043][ T7727] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 241.648073][ T7727] [ 241.648162][ T7727] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input9 [ 244.099085][ T7757] FAULT_INJECTION: forcing a failure. [ 244.099085][ T7757] name failslab, interval 1, probability 0, space 0, times 0 [ 244.167620][ T7757] CPU: 0 UID: 0 PID: 7757 Comm: syz.2.318 Not tainted syzkaller #0 PREEMPT(full) [ 244.167663][ T7757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 244.167682][ T7757] Call Trace: [ 244.167694][ T7757] [ 244.167706][ T7757] dump_stack_lvl+0x16c/0x1f0 [ 244.167748][ T7757] should_fail_ex+0x512/0x640 [ 244.167804][ T7757] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 244.167840][ T7757] should_failslab+0xc2/0x120 [ 244.167884][ T7757] kmem_cache_alloc_noprof+0x75/0x6e0 [ 244.167918][ T7757] ? mempool_init_node+0x2f7/0x6e0 [ 244.167965][ T7757] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 244.168004][ T7757] ? mempool_init_node+0x2f7/0x6e0 [ 244.168046][ T7757] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 244.168084][ T7757] mempool_init_node+0x2f7/0x6e0 [ 244.168133][ T7757] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 244.168171][ T7757] ? __pfx_mempool_free_slab+0x10/0x10 [ 244.168211][ T7757] mempool_init_noprof+0x3a/0x50 [ 244.168255][ T7757] bioset_init+0x388/0x8a0 [ 244.168300][ T7757] ? __pfx_bioset_init+0x10/0x10 [ 244.168362][ T7757] __alloc_disk_node+0x83/0x640 [ 244.168410][ T7757] __blk_mq_alloc_disk+0x89/0x120 [ 244.168451][ T7757] loop_add+0x490/0xb70 [ 244.168486][ T7757] ? __pfx_loop_add+0x10/0x10 [ 244.168547][ T7757] ? find_held_lock+0x2b/0x80 [ 244.168586][ T7757] loop_control_ioctl+0x13e/0x630 [ 244.168621][ T7757] ? __pfx_loop_control_ioctl+0x10/0x10 [ 244.168660][ T7757] ? __pfx_loop_control_ioctl+0x10/0x10 [ 244.168696][ T7757] __x64_sys_ioctl+0x18e/0x210 [ 244.168746][ T7757] do_syscall_64+0xcd/0xfa0 [ 244.168793][ T7757] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.168824][ T7757] RIP: 0033:0x7f095d18efc9 [ 244.168849][ T7757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.168879][ T7757] RSP: 002b:00007f095dfb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 244.168908][ T7757] RAX: ffffffffffffffda RBX: 00007f095d3e5fa0 RCX: 00007f095d18efc9 [ 244.168928][ T7757] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 244.168947][ T7757] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 244.168965][ T7757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.168983][ T7757] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 244.169028][ T7757] [ 244.400683][ C0] vkms_vblank_simulate: vblank timer overrun [ 245.153220][ T7768] netlink: 342 bytes leftover after parsing attributes in process `syz.1.319'. [ 246.192679][ T7779] FAULT_INJECTION: forcing a failure. [ 246.192679][ T7779] name failslab, interval 1, probability 0, space 0, times 0 [ 246.209215][ T7779] CPU: 1 UID: 0 PID: 7779 Comm: syz.1.323 Not tainted syzkaller #0 PREEMPT(full) [ 246.209257][ T7779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 246.209274][ T7779] Call Trace: [ 246.209283][ T7779] [ 246.209294][ T7779] dump_stack_lvl+0x16c/0x1f0 [ 246.209332][ T7779] should_fail_ex+0x512/0x640 [ 246.209372][ T7779] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 246.209398][ T7779] should_failslab+0xc2/0x120 [ 246.209428][ T7779] kmem_cache_alloc_noprof+0x75/0x6e0 [ 246.209450][ T7779] ? mempool_init_node+0x2f7/0x6e0 [ 246.209482][ T7779] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 246.209508][ T7779] ? mempool_init_node+0x2f7/0x6e0 [ 246.209534][ T7779] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 246.209560][ T7779] mempool_init_node+0x2f7/0x6e0 [ 246.209592][ T7779] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 246.209617][ T7779] ? __pfx_mempool_free_slab+0x10/0x10 [ 246.209643][ T7779] mempool_init_noprof+0x3a/0x50 [ 246.209674][ T7779] bioset_init+0x388/0x8a0 [ 246.209705][ T7779] ? __pfx_bioset_init+0x10/0x10 [ 246.209746][ T7779] __alloc_disk_node+0x83/0x640 [ 246.209779][ T7779] __blk_mq_alloc_disk+0x89/0x120 [ 246.209814][ T7779] loop_add+0x490/0xb70 [ 246.209838][ T7779] ? __pfx_loop_add+0x10/0x10 [ 246.209878][ T7779] ? find_held_lock+0x2b/0x80 [ 246.209904][ T7779] loop_control_ioctl+0x13e/0x630 [ 246.209928][ T7779] ? __pfx_loop_control_ioctl+0x10/0x10 [ 246.209954][ T7779] ? __pfx_loop_control_ioctl+0x10/0x10 [ 246.209979][ T7779] __x64_sys_ioctl+0x18e/0x210 [ 246.210014][ T7779] do_syscall_64+0xcd/0xfa0 [ 246.210039][ T7779] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.210061][ T7779] RIP: 0033:0x7fea2e58efc9 [ 246.210078][ T7779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.210099][ T7779] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 246.210118][ T7779] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 246.210133][ T7779] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 246.210147][ T7779] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 246.210160][ T7779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.210172][ T7779] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 246.210200][ T7779] [ 248.468156][ T7800] FAULT_INJECTION: forcing a failure. [ 248.468156][ T7800] name failslab, interval 1, probability 0, space 0, times 0 [ 248.534640][ T7800] CPU: 1 UID: 0 PID: 7800 Comm: syz.0.334 Not tainted syzkaller #0 PREEMPT(full) [ 248.534679][ T7800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 248.534696][ T7800] Call Trace: [ 248.534706][ T7800] [ 248.534717][ T7800] dump_stack_lvl+0x16c/0x1f0 [ 248.534756][ T7800] should_fail_ex+0x512/0x640 [ 248.534801][ T7800] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 248.534840][ T7800] should_failslab+0xc2/0x120 [ 248.534879][ T7800] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 248.534914][ T7800] ? bdi_alloc+0x44/0x170 [ 248.534956][ T7800] ? bdi_alloc+0x44/0x170 [ 248.534990][ T7800] bdi_alloc+0x44/0x170 [ 248.535023][ T7800] __alloc_disk_node+0xac/0x640 [ 248.535068][ T7800] __blk_mq_alloc_disk+0x89/0x120 [ 248.535106][ T7800] loop_add+0x490/0xb70 [ 248.535137][ T7800] ? __pfx_loop_add+0x10/0x10 [ 248.535190][ T7800] ? find_held_lock+0x2b/0x80 [ 248.535223][ T7800] loop_control_ioctl+0x13e/0x630 [ 248.535255][ T7800] ? __pfx_loop_control_ioctl+0x10/0x10 [ 248.535289][ T7800] ? __pfx_loop_control_ioctl+0x10/0x10 [ 248.535331][ T7800] __x64_sys_ioctl+0x18e/0x210 [ 248.535376][ T7800] do_syscall_64+0xcd/0xfa0 [ 248.535410][ T7800] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.535439][ T7800] RIP: 0033:0x7fbb7b38efc9 [ 248.535460][ T7800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.535488][ T7800] RSP: 002b:00007fbb7c2a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 248.535515][ T7800] RAX: ffffffffffffffda RBX: 00007fbb7b5e5fa0 RCX: 00007fbb7b38efc9 [ 248.535533][ T7800] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 248.535549][ T7800] RBP: 00007fbb7b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 248.535565][ T7800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 248.535582][ T7800] R13: 00007fbb7b5e6038 R14: 00007fbb7b5e5fa0 R15: 00007ffcf333e328 [ 248.535639][ T7800] [ 248.827288][ T30] audit: type=1804 audit(45175.064:7): pid=7805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.334" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=1057 res=1 errno=0 [ 249.832566][ T7815] FAULT_INJECTION: forcing a failure. [ 249.832566][ T7815] name failslab, interval 1, probability 0, space 0, times 0 [ 249.871468][ T7815] CPU: 1 UID: 0 PID: 7815 Comm: syz.2.327 Not tainted syzkaller #0 PREEMPT(full) [ 249.871504][ T7815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 249.871530][ T7815] Call Trace: [ 249.871537][ T7815] [ 249.871546][ T7815] dump_stack_lvl+0x16c/0x1f0 [ 249.871574][ T7815] should_fail_ex+0x512/0x640 [ 249.871608][ T7815] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 249.871633][ T7815] should_failslab+0xc2/0x120 [ 249.871662][ T7815] kmem_cache_alloc_noprof+0x75/0x6e0 [ 249.871684][ T7815] ? mempool_init_node+0x2f7/0x6e0 [ 249.871716][ T7815] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 249.871742][ T7815] ? mempool_init_node+0x2f7/0x6e0 [ 249.871785][ T7815] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 249.871813][ T7815] mempool_init_node+0x2f7/0x6e0 [ 249.871848][ T7815] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 249.871876][ T7815] ? __pfx_mempool_free_slab+0x10/0x10 [ 249.871904][ T7815] mempool_init_noprof+0x3a/0x50 [ 249.871936][ T7815] bioset_init+0x388/0x8a0 [ 249.871969][ T7815] ? __pfx_bioset_init+0x10/0x10 [ 249.872014][ T7815] __alloc_disk_node+0x83/0x640 [ 249.872048][ T7815] __blk_mq_alloc_disk+0x89/0x120 [ 249.872079][ T7815] loop_add+0x490/0xb70 [ 249.872104][ T7815] ? __pfx_loop_add+0x10/0x10 [ 249.872145][ T7815] ? find_held_lock+0x2b/0x80 [ 249.872172][ T7815] loop_control_ioctl+0x13e/0x630 [ 249.872216][ T7815] ? __pfx_loop_control_ioctl+0x10/0x10 [ 249.872264][ T7815] ? __pfx_loop_control_ioctl+0x10/0x10 [ 249.872291][ T7815] __x64_sys_ioctl+0x18e/0x210 [ 249.872331][ T7815] do_syscall_64+0xcd/0xfa0 [ 249.872360][ T7815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 249.872384][ T7815] RIP: 0033:0x7f095d18efc9 [ 249.872403][ T7815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 249.872426][ T7815] RSP: 002b:00007f095dfb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 249.872452][ T7815] RAX: ffffffffffffffda RBX: 00007f095d3e5fa0 RCX: 00007f095d18efc9 [ 249.872468][ T7815] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 249.872483][ T7815] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 249.872497][ T7815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 249.872510][ T7815] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 249.872540][ T7815] [ 250.405362][ T7820] zswap: compressor not available [ 250.436484][ T7824] Setting dangerous option i915.mitigations - tainting kernel [ 251.248881][ T7831] FAULT_INJECTION: forcing a failure. [ 251.248881][ T7831] name failslab, interval 1, probability 0, space 0, times 0 [ 251.274291][ T7831] CPU: 0 UID: 0 PID: 7831 Comm: syz.0.329 Tainted: G U syzkaller #0 PREEMPT(full) [ 251.274349][ T7831] Tainted: [U]=USER [ 251.274359][ T7831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 251.274376][ T7831] Call Trace: [ 251.274386][ T7831] [ 251.274397][ T7831] dump_stack_lvl+0x16c/0x1f0 [ 251.274438][ T7831] should_fail_ex+0x512/0x640 [ 251.274486][ T7831] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 251.274524][ T7831] should_failslab+0xc2/0x120 [ 251.274566][ T7831] kmem_cache_alloc_noprof+0x75/0x6e0 [ 251.274596][ T7831] ? rcu_is_watching+0x12/0xc0 [ 251.274628][ T7831] ? create_new_namespaces+0x30/0xa90 [ 251.274671][ T7831] ? create_new_namespaces+0x30/0xa90 [ 251.274702][ T7831] create_new_namespaces+0x30/0xa90 [ 251.274736][ T7831] ? bpf_lsm_capable+0x9/0x10 [ 251.274775][ T7831] ? security_capable+0x7e/0x260 [ 251.274817][ T7831] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 251.274855][ T7831] ksys_unshare+0x45b/0xa40 [ 251.274896][ T7831] ? __pfx_ksys_unshare+0x10/0x10 [ 251.274939][ T7831] ? xfd_validate_state+0x61/0x180 [ 251.274982][ T7831] __x64_sys_unshare+0x31/0x40 [ 251.275013][ T7831] do_syscall_64+0xcd/0xfa0 [ 251.275041][ T7831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.275064][ T7831] RIP: 0033:0x7fbb7b38efc9 [ 251.275082][ T7831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.275104][ T7831] RSP: 002b:00007fbb7c2a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 251.275125][ T7831] RAX: ffffffffffffffda RBX: 00007fbb7b5e5fa0 RCX: 00007fbb7b38efc9 [ 251.275141][ T7831] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 251.275155][ T7831] RBP: 00007fbb7b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 251.275169][ T7831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 251.275183][ T7831] R13: 00007fbb7b5e6038 R14: 00007fbb7b5e5fa0 R15: 00007ffcf333e328 [ 251.275212][ T7831] [ 252.189458][ T7837] netlink: 342 bytes leftover after parsing attributes in process `syz.3.333'. [ 252.417441][ T7844] FAULT_INJECTION: forcing a failure. [ 252.417441][ T7844] name failslab, interval 1, probability 0, space 0, times 0 [ 252.471290][ T7844] CPU: 1 UID: 0 PID: 7844 Comm: syz.1.335 Tainted: G U syzkaller #0 PREEMPT(full) [ 252.471342][ T7844] Tainted: [U]=USER [ 252.471353][ T7844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 252.471372][ T7844] Call Trace: [ 252.471382][ T7844] [ 252.471394][ T7844] dump_stack_lvl+0x16c/0x1f0 [ 252.471434][ T7844] should_fail_ex+0x512/0x640 [ 252.471482][ T7844] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 252.471525][ T7844] should_failslab+0xc2/0x120 [ 252.471567][ T7844] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 252.471604][ T7844] ? __alloc_disk_node+0x5a/0x640 [ 252.471654][ T7844] ? __alloc_disk_node+0x5a/0x640 [ 252.471694][ T7844] __alloc_disk_node+0x5a/0x640 [ 252.471741][ T7844] __blk_mq_alloc_disk+0x89/0x120 [ 252.471783][ T7844] loop_add+0x490/0xb70 [ 252.471817][ T7844] ? __pfx_loop_add+0x10/0x10 [ 252.471875][ T7844] ? find_held_lock+0x2b/0x80 [ 252.471912][ T7844] loop_control_ioctl+0x13e/0x630 [ 252.471944][ T7844] ? __pfx_loop_control_ioctl+0x10/0x10 [ 252.472024][ T7844] ? __pfx_loop_control_ioctl+0x10/0x10 [ 252.472061][ T7844] __x64_sys_ioctl+0x18e/0x210 [ 252.472113][ T7844] do_syscall_64+0xcd/0xfa0 [ 252.472167][ T7844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.472198][ T7844] RIP: 0033:0x7fea2e58efc9 [ 252.472223][ T7844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.472254][ T7844] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 252.472283][ T7844] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 252.472303][ T7844] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 252.472323][ T7844] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 252.472343][ T7844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 252.472362][ T7844] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 252.472406][ T7844] [ 252.744991][ T7839] zswap: compressor not available [ 252.750652][ T7846] Setting dangerous option i915.mitigations - tainting kernel [ 253.104469][ T7865] FAULT_INJECTION: forcing a failure. [ 253.104469][ T7865] name failslab, interval 1, probability 0, space 0, times 0 [ 253.118981][ T7865] CPU: 1 UID: 0 PID: 7865 Comm: syz.3.336 Tainted: G U syzkaller #0 PREEMPT(full) [ 253.119029][ T7865] Tainted: [U]=USER [ 253.119040][ T7865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 253.119070][ T7865] Call Trace: [ 253.119079][ T7865] [ 253.119090][ T7865] dump_stack_lvl+0x16c/0x1f0 [ 253.119128][ T7865] should_fail_ex+0x512/0x640 [ 253.119173][ T7865] ? fs_reclaim_acquire+0xae/0x150 [ 253.119215][ T7865] should_failslab+0xc2/0x120 [ 253.119256][ T7865] __kmalloc_noprof+0xdd/0x880 [ 253.119299][ T7865] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.119330][ T7865] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 253.119369][ T7865] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 253.119402][ T7865] tomoyo_realpath_from_path+0xc2/0x6e0 [ 253.119436][ T7865] ? tomoyo_profile+0x47/0x60 [ 253.119475][ T7865] tomoyo_path_perm+0x274/0x460 [ 253.119517][ T7865] ? tomoyo_path_perm+0x260/0x460 [ 253.119558][ T7865] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 253.119621][ T7865] ? __pfx_ima_file_check+0x10/0x10 [ 253.119651][ T7865] ? hook_file_truncate+0xc7/0x250 [ 253.119680][ T7865] security_file_truncate+0x84/0x1e0 [ 253.119704][ T7865] path_openat+0xc10/0x2cb0 [ 253.119737][ T7865] ? __pfx_path_openat+0x10/0x10 [ 253.119762][ T7865] ? __lock_acquire+0xb8a/0x1c90 [ 253.119796][ T7865] do_filp_open+0x20b/0x470 [ 253.119820][ T7865] ? __pfx_do_filp_open+0x10/0x10 [ 253.119863][ T7865] ? alloc_fd+0x471/0x7d0 [ 253.119891][ T7865] do_sys_openat2+0x11b/0x1d0 [ 253.119931][ T7865] ? __pfx_do_sys_openat2+0x10/0x10 [ 253.119974][ T7865] __x64_sys_openat+0x174/0x210 [ 253.120007][ T7865] ? __pfx___x64_sys_openat+0x10/0x10 [ 253.120052][ T7865] do_syscall_64+0xcd/0xfa0 [ 253.120078][ T7865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.120100][ T7865] RIP: 0033:0x7fd2d678efc9 [ 253.120116][ T7865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.120137][ T7865] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 253.120157][ T7865] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 253.120171][ T7865] RDX: 0000000000002202 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 253.120185][ T7865] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 253.120198][ T7865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 253.120210][ T7865] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 253.120239][ T7865] [ 253.120679][ T7865] ERROR: Out of memory at tomoyo_realpath_from_path. [ 255.444922][ T7896] random: crng reseeded on system resumption [ 255.628268][ T7894] FAULT_INJECTION: forcing a failure. [ 255.628268][ T7894] name failslab, interval 1, probability 0, space 0, times 0 [ 255.686428][ T7894] CPU: 1 UID: 0 PID: 7894 Comm: syz.1.342 Tainted: G U syzkaller #0 PREEMPT(full) [ 255.686480][ T7894] Tainted: [U]=USER [ 255.686491][ T7894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 255.686508][ T7894] Call Trace: [ 255.686519][ T7894] [ 255.686530][ T7894] dump_stack_lvl+0x16c/0x1f0 [ 255.686566][ T7894] should_fail_ex+0x512/0x640 [ 255.686602][ T7894] ? __kmalloc_node_noprof+0xcd/0x8a0 [ 255.686634][ T7894] should_failslab+0xc2/0x120 [ 255.686667][ T7894] __kmalloc_node_noprof+0xe0/0x8a0 [ 255.686702][ T7894] ? mempool_init_node+0x11b/0x6e0 [ 255.686735][ T7894] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 255.686765][ T7894] ? __pfx_mempool_free_slab+0x10/0x10 [ 255.686793][ T7894] ? mempool_init_node+0x11b/0x6e0 [ 255.686823][ T7894] mempool_init_node+0x11b/0x6e0 [ 255.686863][ T7894] ? __pfx_xa_load+0x10/0x10 [ 255.686895][ T7894] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 255.686923][ T7894] ? __pfx_mempool_free_slab+0x10/0x10 [ 255.686952][ T7894] mempool_init_noprof+0x3a/0x50 [ 255.686984][ T7894] bioset_init+0x388/0x8a0 [ 255.687018][ T7894] ? __pfx_bioset_init+0x10/0x10 [ 255.687062][ T7894] __alloc_disk_node+0x83/0x640 [ 255.687097][ T7894] __blk_mq_alloc_disk+0x89/0x120 [ 255.687128][ T7894] loop_add+0x490/0xb70 [ 255.687153][ T7894] ? __pfx_loop_add+0x10/0x10 [ 255.687194][ T7894] ? find_held_lock+0x2b/0x80 [ 255.687222][ T7894] loop_control_ioctl+0x13e/0x630 [ 255.687247][ T7894] ? __pfx_loop_control_ioctl+0x10/0x10 [ 255.687275][ T7894] ? __pfx_loop_control_ioctl+0x10/0x10 [ 255.687305][ T7894] __x64_sys_ioctl+0x18e/0x210 [ 255.687365][ T7894] do_syscall_64+0xcd/0xfa0 [ 255.687421][ T7894] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.687449][ T7894] RIP: 0033:0x7fea2e58efc9 [ 255.687466][ T7894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.687488][ T7894] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 255.687509][ T7894] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 255.687524][ T7894] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 255.687539][ T7894] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 255.687553][ T7894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.687566][ T7894] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 255.687596][ T7894] [ 255.999064][ T7897] delete_channel: no stack [ 257.609463][ T7916] FAULT_INJECTION: forcing a failure. [ 257.609463][ T7916] name failslab, interval 1, probability 0, space 0, times 0 [ 257.643366][ T7916] CPU: 0 UID: 0 PID: 7916 Comm: syz.0.347 Tainted: G U syzkaller #0 PREEMPT(full) [ 257.643418][ T7916] Tainted: [U]=USER [ 257.643429][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 257.643447][ T7916] Call Trace: [ 257.643457][ T7916] [ 257.643469][ T7916] dump_stack_lvl+0x16c/0x1f0 [ 257.643521][ T7916] should_fail_ex+0x512/0x640 [ 257.643569][ T7916] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 257.643609][ T7916] should_failslab+0xc2/0x120 [ 257.643650][ T7916] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 257.643686][ T7916] ? __alloc_disk_node+0x5a/0x640 [ 257.643735][ T7916] ? __alloc_disk_node+0x5a/0x640 [ 257.643776][ T7916] __alloc_disk_node+0x5a/0x640 [ 257.643823][ T7916] __blk_mq_alloc_disk+0x89/0x120 [ 257.643876][ T7916] loop_add+0x490/0xb70 [ 257.643909][ T7916] ? __pfx_loop_add+0x10/0x10 [ 257.643969][ T7916] ? find_held_lock+0x2b/0x80 [ 257.644009][ T7916] loop_control_ioctl+0x13e/0x630 [ 257.644043][ T7916] ? __pfx_loop_control_ioctl+0x10/0x10 [ 257.644081][ T7916] ? __pfx_loop_control_ioctl+0x10/0x10 [ 257.644118][ T7916] __x64_sys_ioctl+0x18e/0x210 [ 257.644168][ T7916] do_syscall_64+0xcd/0xfa0 [ 257.644207][ T7916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.644238][ T7916] RIP: 0033:0x7fbb7b38efc9 [ 257.644262][ T7916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.644293][ T7916] RSP: 002b:00007fbb7c2a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.644323][ T7916] RAX: ffffffffffffffda RBX: 00007fbb7b5e5fa0 RCX: 00007fbb7b38efc9 [ 257.644344][ T7916] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 257.644363][ T7916] RBP: 00007fbb7b411f91 R08: 0000000000000000 R09: 0000000000000000 [ 257.644382][ T7916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.644400][ T7916] R13: 00007fbb7b5e6038 R14: 00007fbb7b5e5fa0 R15: 00007ffcf333e328 [ 257.644440][ T7916] [ 257.977072][ T7924] netlink: 334 bytes leftover after parsing attributes in process `syz.2.348'. [ 260.252690][ T7953] FAULT_INJECTION: forcing a failure. [ 260.252690][ T7953] name failslab, interval 1, probability 0, space 0, times 0 [ 260.292588][ T7953] CPU: 1 UID: 0 PID: 7953 Comm: syz.3.352 Tainted: G U syzkaller #0 PREEMPT(full) [ 260.292654][ T7953] Tainted: [U]=USER [ 260.292665][ T7953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 260.292684][ T7953] Call Trace: [ 260.292694][ T7953] [ 260.292706][ T7953] dump_stack_lvl+0x16c/0x1f0 [ 260.292747][ T7953] should_fail_ex+0x512/0x640 [ 260.292795][ T7953] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 260.292838][ T7953] should_failslab+0xc2/0x120 [ 260.292883][ T7953] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 260.292921][ T7953] ? bdi_alloc+0x44/0x170 [ 260.292969][ T7953] ? bdi_alloc+0x44/0x170 [ 260.293005][ T7953] bdi_alloc+0x44/0x170 [ 260.293042][ T7953] __alloc_disk_node+0xac/0x640 [ 260.293092][ T7953] __blk_mq_alloc_disk+0x89/0x120 [ 260.293134][ T7953] loop_add+0x490/0xb70 [ 260.293167][ T7953] ? __pfx_loop_add+0x10/0x10 [ 260.293223][ T7953] ? find_held_lock+0x2b/0x80 [ 260.293263][ T7953] loop_control_ioctl+0x13e/0x630 [ 260.293307][ T7953] ? __pfx_loop_control_ioctl+0x10/0x10 [ 260.293344][ T7953] ? __pfx_loop_control_ioctl+0x10/0x10 [ 260.293379][ T7953] __x64_sys_ioctl+0x18e/0x210 [ 260.293428][ T7953] do_syscall_64+0xcd/0xfa0 [ 260.293467][ T7953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.293498][ T7953] RIP: 0033:0x7fd2d678efc9 [ 260.293522][ T7953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.293554][ T7953] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 260.293584][ T7953] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 260.293605][ T7953] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 260.293625][ T7953] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 260.293644][ T7953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.293662][ T7953] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 260.293702][ T7953] [ 260.875426][ T7950] size and base must be multiples of 4 kiB [ 260.885721][ T7950] CPU: 0 UID: 0 PID: 7950 Comm: syz.2.351 Tainted: G U syzkaller #0 PREEMPT(full) [ 260.885771][ T7950] Tainted: [U]=USER [ 260.885783][ T7950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 260.885803][ T7950] Call Trace: [ 260.885814][ T7950] [ 260.885826][ T7950] dump_stack_lvl+0x16c/0x1f0 [ 260.885870][ T7950] mtrr_del+0xd1/0x110 [ 260.885915][ T7950] mtrr_ioctl+0x922/0xcf0 [ 260.885961][ T7950] ? __pfx_mtrr_ioctl+0x10/0x10 [ 260.886015][ T7950] ? find_held_lock+0x2b/0x80 [ 260.886060][ T7950] ? __fget_files+0x20e/0x3c0 [ 260.886095][ T7950] ? __pfx_mtrr_ioctl+0x10/0x10 [ 260.886142][ T7950] proc_reg_unlocked_ioctl+0x229/0x320 [ 260.886188][ T7950] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 260.886239][ T7950] __x64_sys_ioctl+0x18e/0x210 [ 260.886292][ T7950] do_syscall_64+0xcd/0xfa0 [ 260.886331][ T7950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.886369][ T7950] RIP: 0033:0x7f095d18efc9 [ 260.886394][ T7950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.886425][ T7950] RSP: 002b:00007f095df77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 260.886463][ T7950] RAX: ffffffffffffffda RBX: 00007f095d3e6180 RCX: 00007f095d18efc9 [ 260.886485][ T7950] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003 [ 260.886504][ T7950] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 260.886523][ T7950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.886542][ T7950] R13: 00007f095d3e6218 R14: 00007f095d3e6180 R15: 00007fff71eca4a8 [ 260.886585][ T7950] [ 261.052764][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.059253][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 262.263515][ T7975] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 263.741519][ T7998] netlink: 342 bytes leftover after parsing attributes in process `syz.3.361'. [ 263.861357][ T7985] can: request_module (can-proto-5) failed. [ 264.278597][ T8008] netlink: 342 bytes leftover after parsing attributes in process `syz.2.362'. [ 265.341506][ T8018] netlink: 8 bytes leftover after parsing attributes in process `syz.2.364'. [ 266.076166][ T8018] random: crng reseeded on system resumption [ 266.615346][ T8040] net_ratelimit: 360 callbacks suppressed [ 266.615363][ T8040] netlink: zone id is out of range [ 266.642963][ T8040] netlink: zone id is out of range [ 266.707413][ T8040] netlink: zone id is out of range [ 266.746157][ T8040] netlink: zone id is out of range [ 266.763917][ T8040] netlink: zone id is out of range [ 266.763950][ T8040] netlink: zone id is out of range [ 266.763962][ T8040] netlink: zone id is out of range [ 266.763980][ T8040] netlink: zone id is out of range [ 266.763992][ T8040] netlink: zone id is out of range [ 266.764004][ T8040] netlink: zone id is out of range [ 268.642207][ T8071] netlink: 342 bytes leftover after parsing attributes in process `syz.1.372'. [ 272.053433][ T8108] netlink: 4 bytes leftover after parsing attributes in process `syz.0.382'. [ 272.056745][ T8099] delete_channel: no stack [ 272.071908][ T8101] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 272.087604][ T8108] netlink: 4 bytes leftover after parsing attributes in process `syz.0.382'. [ 272.101709][ T8101] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 272.119156][ T8101] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 272.133504][ T8101] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 272.145476][ T8111] netlink: 342 bytes leftover after parsing attributes in process `syz.3.385'. [ 272.166052][ T8112] netlink: 342 bytes leftover after parsing attributes in process `syz.1.384'. [ 273.307135][ T8135] FAULT_INJECTION: forcing a failure. [ 273.307135][ T8135] name failslab, interval 1, probability 0, space 0, times 0 [ 273.376894][ T8135] CPU: 0 UID: 0 PID: 8135 Comm: syz.3.390 Tainted: G U syzkaller #0 PREEMPT(full) [ 273.376949][ T8135] Tainted: [U]=USER [ 273.376960][ T8135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 273.376978][ T8135] Call Trace: [ 273.376987][ T8135] [ 273.376998][ T8135] dump_stack_lvl+0x16c/0x1f0 [ 273.377038][ T8135] should_fail_ex+0x512/0x640 [ 273.377103][ T8135] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 273.377158][ T8135] should_failslab+0xc2/0x120 [ 273.377203][ T8135] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 273.377236][ T8135] ? blkg_alloc+0xb7/0xb60 [ 273.377286][ T8135] ? blkg_alloc+0xb7/0xb60 [ 273.377328][ T8135] blkg_alloc+0xb7/0xb60 [ 273.377371][ T8135] ? find_held_lock+0x2b/0x80 [ 273.377406][ T8135] blkcg_init_disk+0x51/0x160 [ 273.377436][ T8135] __alloc_disk_node+0x299/0x640 [ 273.377478][ T8135] __blk_mq_alloc_disk+0x89/0x120 [ 273.377514][ T8135] loop_add+0x490/0xb70 [ 273.377544][ T8135] ? __pfx_loop_add+0x10/0x10 [ 273.377593][ T8135] ? find_held_lock+0x2b/0x80 [ 273.377625][ T8135] loop_control_ioctl+0x13e/0x630 [ 273.377655][ T8135] ? __pfx_loop_control_ioctl+0x10/0x10 [ 273.377688][ T8135] ? __pfx_loop_control_ioctl+0x10/0x10 [ 273.377718][ T8135] __x64_sys_ioctl+0x18e/0x210 [ 273.377763][ T8135] do_syscall_64+0xcd/0xfa0 [ 273.377800][ T8135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 273.377827][ T8135] RIP: 0033:0x7fd2d678efc9 [ 273.377848][ T8135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.377874][ T8135] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 273.377899][ T8135] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 273.377916][ T8135] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 273.377933][ T8135] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 273.377948][ T8135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 273.377964][ T8135] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 273.377999][ T8135] [ 273.977870][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout [ 274.130906][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout [ 274.130957][ T5149] Bluetooth: hci1: command 0x0c1a tx timeout [ 274.138722][ T8141] FAULT_INJECTION: forcing a failure. [ 274.138722][ T8141] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 274.172174][ T8141] CPU: 1 UID: 0 PID: 8141 Comm: syz.1.391 Tainted: G U syzkaller #0 PREEMPT(full) [ 274.172223][ T8141] Tainted: [U]=USER [ 274.172233][ T8141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 274.172258][ T8141] Call Trace: [ 274.172269][ T8141] [ 274.172280][ T8141] dump_stack_lvl+0x16c/0x1f0 [ 274.172312][ T8141] should_fail_ex+0x512/0x640 [ 274.172350][ T8141] should_fail_alloc_page+0xe7/0x130 [ 274.172382][ T8141] prepare_alloc_pages+0x3c2/0x610 [ 274.172415][ T8141] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 274.172441][ T8141] ? __pfx_stack_trace_save+0x10/0x10 [ 274.172468][ T8141] ? stack_depot_save_flags+0x29/0x9c0 [ 274.172507][ T8141] ? kasan_save_stack+0x42/0x60 [ 274.172531][ T8141] ? kasan_save_stack+0x33/0x60 [ 274.172556][ T8141] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 274.172579][ T8141] ? create_new_namespaces+0x48a/0xa90 [ 274.172603][ T8141] ? ksys_unshare+0x45b/0xa40 [ 274.172630][ T8141] ? do_syscall_64+0xcd/0xfa0 [ 274.172653][ T8141] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.172688][ T8141] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 274.172727][ T8141] ? policy_nodemask+0xea/0x4e0 [ 274.172768][ T8141] alloc_pages_mpol+0x1fb/0x550 [ 274.172797][ T8141] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 274.172832][ T8141] alloc_pages_noprof+0x131/0x390 [ 274.172860][ T8141] copy_time_ns+0x113/0x510 [ 274.172881][ T8141] ? copy_net_ns+0x31f/0x690 [ 274.172903][ T8141] ? copy_cgroup_ns+0x71/0x6b0 [ 274.172929][ T8141] create_new_namespaces+0x48a/0xa90 [ 274.172975][ T8141] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 274.173007][ T8141] ksys_unshare+0x45b/0xa40 [ 274.173050][ T8141] ? __pfx_ksys_unshare+0x10/0x10 [ 274.173091][ T8141] ? xfd_validate_state+0x61/0x180 [ 274.173145][ T8141] __x64_sys_unshare+0x31/0x40 [ 274.173184][ T8141] do_syscall_64+0xcd/0xfa0 [ 274.173219][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.173247][ T8141] RIP: 0033:0x7fea2e58efc9 [ 274.173276][ T8141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.173305][ T8141] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 274.173332][ T8141] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 274.173351][ T8141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 274.173368][ T8141] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 274.173385][ T8141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.173402][ T8141] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 274.173441][ T8141] [ 274.731723][ T5830] Bluetooth: hci3: command 0x0c1a tx timeout [ 276.486597][ T8173] netlink: 342 bytes leftover after parsing attributes in process `syz.1.397'. [ 277.971964][ T8188] ptrace attach of "./syz-executor exec"[5826] was attempted by "ȷBC]!p3fM%\x5c\x5crd jȂؿC.ۻ be^[^[5ML:cq+hg{ n>4\x1b'2l̵rHI|\x09\x0d=ڠ\x09(b)wp,\x22\x0dO!ȑȒĊ8at>!vƳBy.##JD$pz]\x0a8^\x0bҮ.ڕٲ܈#ƃsp T] %G$:fof\x0dㆠ!MQ{?[2aNߘK!U\x0c&S7\x09}}î0~3aBA(Z_\x0dtU-9Gz0\x0dL\x5cR7h\x1b'>%dqd~&gJj ^\x0ak[RVZMf\x0aA83 \x07QrUKs{|}S8&|K?:ߚovDw\x0a<Ύŧ={P3\x0cMiF}mEuS)J,5ViD [ 279.149990][ T8208] FAULT_INJECTION: forcing a failure. [ 279.149990][ T8208] name failslab, interval 1, probability 0, space 0, times 0 [ 279.327294][ T8208] CPU: 1 UID: 0 PID: 8208 Comm: syz.3.403 Tainted: G U syzkaller #0 PREEMPT(full) [ 279.327341][ T8208] Tainted: [U]=USER [ 279.327351][ T8208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 279.327368][ T8208] Call Trace: [ 279.327376][ T8208] [ 279.327387][ T8208] dump_stack_lvl+0x16c/0x1f0 [ 279.327425][ T8208] should_fail_ex+0x512/0x640 [ 279.327467][ T8208] ? __kmalloc_cache_noprof+0x5f/0x780 [ 279.327515][ T8208] should_failslab+0xc2/0x120 [ 279.327553][ T8208] __kmalloc_cache_noprof+0x72/0x780 [ 279.327595][ T8208] ? __pfx_inc_ucount+0x10/0x10 [ 279.327630][ T8208] ? copy_time_ns+0xf6/0x510 [ 279.327664][ T8208] ? copy_time_ns+0xf6/0x510 [ 279.327691][ T8208] copy_time_ns+0xf6/0x510 [ 279.327718][ T8208] ? copy_net_ns+0x31f/0x690 [ 279.327747][ T8208] ? copy_cgroup_ns+0x71/0x6b0 [ 279.327790][ T8208] create_new_namespaces+0x48a/0xa90 [ 279.327830][ T8208] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 279.327865][ T8208] ksys_unshare+0x45b/0xa40 [ 279.327902][ T8208] ? __pfx_ksys_unshare+0x10/0x10 [ 279.327939][ T8208] ? xfd_validate_state+0x61/0x180 [ 279.327986][ T8208] __x64_sys_unshare+0x31/0x40 [ 279.328021][ T8208] do_syscall_64+0xcd/0xfa0 [ 279.328053][ T8208] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.328080][ T8208] RIP: 0033:0x7fd2d678efc9 [ 279.328102][ T8208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.328128][ T8208] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 279.328154][ T8208] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 279.328173][ T8208] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 279.328190][ T8208] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 279.328207][ T8208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.328224][ T8208] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 279.328260][ T8208] [ 279.672886][ T8211] FAULT_INJECTION: forcing a failure. [ 279.672886][ T8211] name failslab, interval 1, probability 0, space 0, times 0 [ 279.708097][ T8211] CPU: 0 UID: 0 PID: 8211 Comm: syz.2.405 Tainted: G U syzkaller #0 PREEMPT(full) [ 279.708136][ T8211] Tainted: [U]=USER [ 279.708144][ T8211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 279.708158][ T8211] Call Trace: [ 279.708165][ T8211] [ 279.708173][ T8211] dump_stack_lvl+0x16c/0x1f0 [ 279.708203][ T8211] should_fail_ex+0x512/0x640 [ 279.708239][ T8211] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 279.708266][ T8211] should_failslab+0xc2/0x120 [ 279.708300][ T8211] kmem_cache_alloc_noprof+0x75/0x6e0 [ 279.708323][ T8211] ? mempool_init_node+0x2f7/0x6e0 [ 279.708358][ T8211] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 279.708385][ T8211] ? mempool_init_node+0x2f7/0x6e0 [ 279.708413][ T8211] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 279.708440][ T8211] mempool_init_node+0x2f7/0x6e0 [ 279.708475][ T8211] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 279.708503][ T8211] ? __pfx_mempool_free_slab+0x10/0x10 [ 279.708531][ T8211] mempool_init_noprof+0x3a/0x50 [ 279.708563][ T8211] bioset_init+0x388/0x8a0 [ 279.708596][ T8211] ? __pfx_bioset_init+0x10/0x10 [ 279.708641][ T8211] __alloc_disk_node+0x83/0x640 [ 279.708676][ T8211] __blk_mq_alloc_disk+0x89/0x120 [ 279.708706][ T8211] loop_add+0x490/0xb70 [ 279.708732][ T8211] ? __pfx_loop_add+0x10/0x10 [ 279.708782][ T8211] ? find_held_lock+0x2b/0x80 [ 279.708811][ T8211] loop_control_ioctl+0x13e/0x630 [ 279.708836][ T8211] ? __pfx_loop_control_ioctl+0x10/0x10 [ 279.708865][ T8211] ? __pfx_loop_control_ioctl+0x10/0x10 [ 279.708891][ T8211] __x64_sys_ioctl+0x18e/0x210 [ 279.708928][ T8211] do_syscall_64+0xcd/0xfa0 [ 279.708957][ T8211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 279.708980][ T8211] RIP: 0033:0x7f095d18efc9 [ 279.708998][ T8211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 279.709021][ T8211] RSP: 002b:00007f095dfb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 279.709042][ T8211] RAX: ffffffffffffffda RBX: 00007f095d3e5fa0 RCX: 00007f095d18efc9 [ 279.709057][ T8211] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 279.709072][ T8211] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 279.709086][ T8211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 279.709100][ T8211] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 279.709130][ T8211] [ 280.370026][ T8219] FAULT_INJECTION: forcing a failure. [ 280.370026][ T8219] name failslab, interval 1, probability 0, space 0, times 0 [ 280.385512][ T8219] CPU: 0 UID: 0 PID: 8219 Comm: syz.3.406 Tainted: G U syzkaller #0 PREEMPT(full) [ 280.385547][ T8219] Tainted: [U]=USER [ 280.385554][ T8219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 280.385567][ T8219] Call Trace: [ 280.385574][ T8219] [ 280.385582][ T8219] dump_stack_lvl+0x16c/0x1f0 [ 280.385614][ T8219] should_fail_ex+0x512/0x640 [ 280.385667][ T8219] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 280.385701][ T8219] should_failslab+0xc2/0x120 [ 280.385734][ T8219] kmem_cache_alloc_noprof+0x75/0x6e0 [ 280.385759][ T8219] ? mempool_init_node+0x2f7/0x6e0 [ 280.385794][ T8219] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 280.385823][ T8219] ? mempool_init_node+0x2f7/0x6e0 [ 280.385852][ T8219] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 280.385880][ T8219] mempool_init_node+0x2f7/0x6e0 [ 280.385917][ T8219] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 280.385945][ T8219] ? __pfx_mempool_free_slab+0x10/0x10 [ 280.385974][ T8219] mempool_init_noprof+0x3a/0x50 [ 280.386007][ T8219] bioset_init+0x388/0x8a0 [ 280.386042][ T8219] ? __pfx_bioset_init+0x10/0x10 [ 280.386089][ T8219] __alloc_disk_node+0x83/0x640 [ 280.386141][ T8219] __blk_mq_alloc_disk+0x89/0x120 [ 280.386184][ T8219] loop_add+0x490/0xb70 [ 280.386216][ T8219] ? __pfx_loop_add+0x10/0x10 [ 280.386260][ T8219] ? find_held_lock+0x2b/0x80 [ 280.386290][ T8219] loop_control_ioctl+0x13e/0x630 [ 280.386316][ T8219] ? __pfx_loop_control_ioctl+0x10/0x10 [ 280.386346][ T8219] ? __pfx_loop_control_ioctl+0x10/0x10 [ 280.386373][ T8219] __x64_sys_ioctl+0x18e/0x210 [ 280.386412][ T8219] do_syscall_64+0xcd/0xfa0 [ 280.386442][ T8219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.386466][ T8219] RIP: 0033:0x7fd2d678efc9 [ 280.386486][ T8219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.386509][ T8219] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 280.386531][ T8219] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 280.386548][ T8219] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 280.386563][ T8219] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 280.386578][ T8219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.386593][ T8219] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 280.386624][ T8219] [ 281.356276][ T8238] netlink: 342 bytes leftover after parsing attributes in process `syz.2.408'. [ 283.440914][ T8269] 0x000200000001-0xa29656a63616329 : "" [ 283.454267][ T8269] mtd: partition "" is out of reach -- disabled [ 283.534522][ T8269] ftl_cs: FTL header not found. [ 283.649317][ T8275] netlink: 342 bytes leftover after parsing attributes in process `syz.3.416'. [ 285.053704][ T8299] netlink: 342 bytes leftover after parsing attributes in process `syz.2.421'. [ 286.554191][ T8325] random: crng reseeded on system resumption [ 289.461096][ T8356] FAULT_INJECTION: forcing a failure. [ 289.461096][ T8356] name failslab, interval 1, probability 0, space 0, times 0 [ 289.473990][ T8356] CPU: 0 UID: 0 PID: 8356 Comm: syz.2.431 Tainted: G U syzkaller #0 PREEMPT(full) [ 289.474028][ T8356] Tainted: [U]=USER [ 289.474036][ T8356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 289.474050][ T8356] Call Trace: [ 289.474059][ T8356] [ 289.474069][ T8356] dump_stack_lvl+0x16c/0x1f0 [ 289.474100][ T8356] should_fail_ex+0x512/0x640 [ 289.474136][ T8356] ? __kmalloc_noprof+0xca/0x880 [ 289.474179][ T8356] should_failslab+0xc2/0x120 [ 289.474211][ T8356] __kmalloc_noprof+0xdd/0x880 [ 289.474250][ T8356] ? lsm_blob_alloc+0x68/0x90 [ 289.474285][ T8356] ? lsm_blob_alloc+0x68/0x90 [ 289.474312][ T8356] lsm_blob_alloc+0x68/0x90 [ 289.474342][ T8356] security_prepare_creds+0x30/0x270 [ 289.474372][ T8356] prepare_creds+0x56f/0x7d0 [ 289.474412][ T8356] copy_creds+0xa7/0xa50 [ 289.474453][ T8356] copy_process+0xffc/0x76a0 [ 289.474495][ T8356] ? __pfx_copy_process+0x10/0x10 [ 289.474532][ T8356] ? _copy_from_user+0x59/0xd0 [ 289.474575][ T8356] kernel_clone+0xfc/0x930 [ 289.474613][ T8356] ? __pfx_kernel_clone+0x10/0x10 [ 289.474642][ T8356] ? futex_private_hash_put+0x18a/0x300 [ 289.474682][ T8356] ? __pfx_futex_wake+0x10/0x10 [ 289.474724][ T8356] __do_sys_clone3+0x212/0x290 [ 289.474755][ T8356] ? __pfx___do_sys_clone3+0x10/0x10 [ 289.474799][ T8356] ? __pfx___might_resched+0x10/0x10 [ 289.474847][ T8356] do_syscall_64+0xcd/0xfa0 [ 289.474878][ T8356] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.474903][ T8356] RIP: 0033:0x7f095d18efc9 [ 289.474921][ T8356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.474945][ T8356] RSP: 002b:00007f095dfb8f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 289.474967][ T8356] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f095d18efc9 [ 289.474983][ T8356] RDX: 00007f095dfb8f20 RSI: 0000000000000058 RDI: 00007f095dfb8f20 [ 289.474998][ T8356] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000058 [ 289.475013][ T8356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.475028][ T8356] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 289.475059][ T8356] [ 289.906811][ T8358] FAULT_INJECTION: forcing a failure. [ 289.906811][ T8358] name failslab, interval 1, probability 0, space 0, times 0 [ 289.930981][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.2.433 Tainted: G U syzkaller #0 PREEMPT(full) [ 289.931030][ T8358] Tainted: [U]=USER [ 289.931040][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 289.931058][ T8358] Call Trace: [ 289.931068][ T8358] [ 289.931081][ T8358] dump_stack_lvl+0x16c/0x1f0 [ 289.931121][ T8358] should_fail_ex+0x512/0x640 [ 289.931169][ T8358] ? __kmalloc_cache_noprof+0x5f/0x780 [ 289.931224][ T8358] should_failslab+0xc2/0x120 [ 289.931268][ T8358] __kmalloc_cache_noprof+0x72/0x780 [ 289.931319][ T8358] ? __pfx_inc_ucount+0x10/0x10 [ 289.931361][ T8358] ? copy_time_ns+0xf6/0x510 [ 289.931402][ T8358] ? copy_time_ns+0xf6/0x510 [ 289.931436][ T8358] copy_time_ns+0xf6/0x510 [ 289.931467][ T8358] ? copy_net_ns+0x31f/0x690 [ 289.931502][ T8358] ? copy_cgroup_ns+0x71/0x6b0 [ 289.931543][ T8358] create_new_namespaces+0x48a/0xa90 [ 289.931589][ T8358] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 289.931629][ T8358] ksys_unshare+0x45b/0xa40 [ 289.931673][ T8358] ? __pfx_ksys_unshare+0x10/0x10 [ 289.931716][ T8358] ? xfd_validate_state+0x61/0x180 [ 289.931773][ T8358] __x64_sys_unshare+0x31/0x40 [ 289.931826][ T8358] do_syscall_64+0xcd/0xfa0 [ 289.931865][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.931897][ T8358] RIP: 0033:0x7f095d18efc9 [ 289.931922][ T8358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.931954][ T8358] RSP: 002b:00007f095dfb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 289.931983][ T8358] RAX: ffffffffffffffda RBX: 00007f095d3e5fa0 RCX: 00007f095d18efc9 [ 289.932004][ T8358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 289.932023][ T8358] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 289.932042][ T8358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.932061][ T8358] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 289.932106][ T8358] [ 291.864716][ T8378] FAULT_INJECTION: forcing a failure. [ 291.864716][ T8378] name failslab, interval 1, probability 0, space 0, times 0 [ 291.895626][ T8378] CPU: 1 UID: 0 PID: 8378 Comm: syz.1.437 Tainted: G U syzkaller #0 PREEMPT(full) [ 291.895699][ T8378] Tainted: [U]=USER [ 291.895707][ T8378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 291.895721][ T8378] Call Trace: [ 291.895729][ T8378] [ 291.895738][ T8378] dump_stack_lvl+0x16c/0x1f0 [ 291.895769][ T8378] should_fail_ex+0x512/0x640 [ 291.895805][ T8378] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 291.895838][ T8378] should_failslab+0xc2/0x120 [ 291.895870][ T8378] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 291.895900][ T8378] ? bdi_alloc+0x44/0x170 [ 291.895934][ T8378] ? bdi_alloc+0x44/0x170 [ 291.895963][ T8378] bdi_alloc+0x44/0x170 [ 291.895991][ T8378] __alloc_disk_node+0xac/0x640 [ 291.896027][ T8378] __blk_mq_alloc_disk+0x89/0x120 [ 291.896059][ T8378] loop_add+0x490/0xb70 [ 291.896085][ T8378] ? __pfx_loop_add+0x10/0x10 [ 291.896129][ T8378] ? find_held_lock+0x2b/0x80 [ 291.896158][ T8378] loop_control_ioctl+0x13e/0x630 [ 291.896183][ T8378] ? __pfx_loop_control_ioctl+0x10/0x10 [ 291.896214][ T8378] ? __pfx_loop_control_ioctl+0x10/0x10 [ 291.896241][ T8378] __x64_sys_ioctl+0x18e/0x210 [ 291.896279][ T8378] do_syscall_64+0xcd/0xfa0 [ 291.896308][ T8378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.896332][ T8378] RIP: 0033:0x7fea2e58efc9 [ 291.896351][ T8378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.896375][ T8378] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 291.896397][ T8378] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 291.896420][ T8378] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 291.896435][ T8378] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 291.896450][ T8378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.896465][ T8378] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 291.896496][ T8378] [ 293.150013][ T8396] FAULT_INJECTION: forcing a failure. [ 293.150013][ T8396] name failslab, interval 1, probability 0, space 0, times 0 [ 293.208846][ T8396] CPU: 1 UID: 0 PID: 8396 Comm: syz.1.439 Tainted: G U syzkaller #0 PREEMPT(full) [ 293.208892][ T8396] Tainted: [U]=USER [ 293.208900][ T8396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 293.208914][ T8396] Call Trace: [ 293.208921][ T8396] [ 293.208930][ T8396] dump_stack_lvl+0x16c/0x1f0 [ 293.208959][ T8396] should_fail_ex+0x512/0x640 [ 293.208995][ T8396] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 293.209023][ T8396] should_failslab+0xc2/0x120 [ 293.209054][ T8396] kmem_cache_alloc_noprof+0x75/0x6e0 [ 293.209078][ T8396] ? mempool_init_node+0x2f7/0x6e0 [ 293.209112][ T8396] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 293.209140][ T8396] ? mempool_init_node+0x2f7/0x6e0 [ 293.209173][ T8396] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 293.209201][ T8396] mempool_init_node+0x2f7/0x6e0 [ 293.209236][ T8396] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 293.209270][ T8396] ? __pfx_mempool_free_slab+0x10/0x10 [ 293.209299][ T8396] mempool_init_noprof+0x3a/0x50 [ 293.209332][ T8396] bioset_init+0x388/0x8a0 [ 293.209367][ T8396] ? __pfx_bioset_init+0x10/0x10 [ 293.209412][ T8396] __alloc_disk_node+0x83/0x640 [ 293.209448][ T8396] __blk_mq_alloc_disk+0x89/0x120 [ 293.209491][ T8396] loop_add+0x490/0xb70 [ 293.209514][ T8396] ? __pfx_loop_add+0x10/0x10 [ 293.209553][ T8396] ? find_held_lock+0x2b/0x80 [ 293.209580][ T8396] loop_control_ioctl+0x13e/0x630 [ 293.209603][ T8396] ? __pfx_loop_control_ioctl+0x10/0x10 [ 293.209631][ T8396] ? __pfx_loop_control_ioctl+0x10/0x10 [ 293.209655][ T8396] __x64_sys_ioctl+0x18e/0x210 [ 293.209690][ T8396] do_syscall_64+0xcd/0xfa0 [ 293.209716][ T8396] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.209739][ T8396] RIP: 0033:0x7fea2e58efc9 [ 293.209755][ T8396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.209776][ T8396] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.209797][ T8396] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 293.209812][ T8396] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 293.209825][ T8396] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 293.209838][ T8396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 293.209851][ T8396] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 293.209880][ T8396] [ 294.300198][ T8412] FAULT_INJECTION: forcing a failure. [ 294.300198][ T8412] name failslab, interval 1, probability 0, space 0, times 0 [ 294.343200][ T8412] CPU: 0 UID: 0 PID: 8412 Comm: syz.1.441 Tainted: G U syzkaller #0 PREEMPT(full) [ 294.343247][ T8412] Tainted: [U]=USER [ 294.343257][ T8412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 294.343274][ T8412] Call Trace: [ 294.343284][ T8412] [ 294.343295][ T8412] dump_stack_lvl+0x16c/0x1f0 [ 294.343334][ T8412] should_fail_ex+0x512/0x640 [ 294.343375][ T8412] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 294.343405][ T8412] should_failslab+0xc2/0x120 [ 294.343435][ T8412] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 294.343461][ T8412] ? __alloc_disk_node+0x5a/0x640 [ 294.343496][ T8412] ? __alloc_disk_node+0x5a/0x640 [ 294.343524][ T8412] __alloc_disk_node+0x5a/0x640 [ 294.343557][ T8412] __blk_mq_alloc_disk+0x89/0x120 [ 294.343585][ T8412] loop_add+0x490/0xb70 [ 294.343609][ T8412] ? __pfx_loop_add+0x10/0x10 [ 294.343648][ T8412] ? find_held_lock+0x2b/0x80 [ 294.343674][ T8412] loop_control_ioctl+0x13e/0x630 [ 294.343697][ T8412] ? __pfx_loop_control_ioctl+0x10/0x10 [ 294.343724][ T8412] ? __pfx_loop_control_ioctl+0x10/0x10 [ 294.343749][ T8412] __x64_sys_ioctl+0x18e/0x210 [ 294.343783][ T8412] do_syscall_64+0xcd/0xfa0 [ 294.343809][ T8412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.343832][ T8412] RIP: 0033:0x7fea2e58efc9 [ 294.343848][ T8412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.343870][ T8412] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 294.343890][ T8412] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 294.343904][ T8412] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 294.343918][ T8412] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 294.343931][ T8412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.343944][ T8412] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 294.343972][ T8412] [ 296.386368][ T8439] FAULT_INJECTION: forcing a failure. [ 296.386368][ T8439] name failslab, interval 1, probability 0, space 0, times 0 [ 296.424360][ T8439] CPU: 1 UID: 0 PID: 8439 Comm: syz.3.447 Tainted: G U syzkaller #0 PREEMPT(full) [ 296.424401][ T8439] Tainted: [U]=USER [ 296.424407][ T8439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 296.424420][ T8439] Call Trace: [ 296.424427][ T8439] [ 296.424435][ T8439] dump_stack_lvl+0x16c/0x1f0 [ 296.424463][ T8439] should_fail_ex+0x512/0x640 [ 296.424495][ T8439] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 296.424521][ T8439] should_failslab+0xc2/0x120 [ 296.424550][ T8439] kmem_cache_alloc_noprof+0x75/0x6e0 [ 296.424572][ T8439] ? mempool_init_node+0x2f7/0x6e0 [ 296.424605][ T8439] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 296.424631][ T8439] ? mempool_init_node+0x2f7/0x6e0 [ 296.424657][ T8439] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 296.424683][ T8439] mempool_init_node+0x2f7/0x6e0 [ 296.424715][ T8439] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 296.424741][ T8439] ? __pfx_mempool_free_slab+0x10/0x10 [ 296.424768][ T8439] mempool_init_noprof+0x3a/0x50 [ 296.424798][ T8439] bioset_init+0x388/0x8a0 [ 296.424829][ T8439] ? __pfx_bioset_init+0x10/0x10 [ 296.424871][ T8439] __alloc_disk_node+0x83/0x640 [ 296.424904][ T8439] __blk_mq_alloc_disk+0x89/0x120 [ 296.424933][ T8439] loop_add+0x490/0xb70 [ 296.424956][ T8439] ? __pfx_loop_add+0x10/0x10 [ 296.425003][ T8439] ? find_held_lock+0x2b/0x80 [ 296.425030][ T8439] loop_control_ioctl+0x13e/0x630 [ 296.425054][ T8439] ? __pfx_loop_control_ioctl+0x10/0x10 [ 296.425081][ T8439] ? __pfx_loop_control_ioctl+0x10/0x10 [ 296.425106][ T8439] __x64_sys_ioctl+0x18e/0x210 [ 296.425141][ T8439] do_syscall_64+0xcd/0xfa0 [ 296.425167][ T8439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.425189][ T8439] RIP: 0033:0x7fd2d678efc9 [ 296.425206][ T8439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.425229][ T8439] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.425250][ T8439] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 296.425265][ T8439] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 296.425278][ T8439] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 296.425291][ T8439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.425305][ T8439] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 296.425333][ T8439] [ 298.054036][ T8462] FAULT_INJECTION: forcing a failure. [ 298.054036][ T8462] name failslab, interval 1, probability 0, space 0, times 0 [ 298.087632][ T8462] CPU: 1 UID: 0 PID: 8462 Comm: syz.1.453 Tainted: G U syzkaller #0 PREEMPT(full) [ 298.087670][ T8462] Tainted: [U]=USER [ 298.087678][ T8462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 298.087692][ T8462] Call Trace: [ 298.087700][ T8462] [ 298.087708][ T8462] dump_stack_lvl+0x16c/0x1f0 [ 298.087738][ T8462] should_fail_ex+0x512/0x640 [ 298.087774][ T8462] ? fs_reclaim_acquire+0xae/0x150 [ 298.087807][ T8462] should_failslab+0xc2/0x120 [ 298.087849][ T8462] kmem_cache_alloc_noprof+0x75/0x6e0 [ 298.087892][ T8462] ? __pfx_map_id_range_down+0x10/0x10 [ 298.087931][ T8462] ? security_inode_alloc+0x3b/0x2b0 [ 298.087974][ T8462] ? security_inode_alloc+0x3b/0x2b0 [ 298.088009][ T8462] security_inode_alloc+0x3b/0x2b0 [ 298.088047][ T8462] inode_init_always_gfp+0xce4/0x1030 [ 298.088077][ T8462] alloc_inode+0x86/0x240 [ 298.088115][ T8462] new_inode+0x22/0x1c0 [ 298.088150][ T8462] bdev_alloc+0x2b/0x420 [ 298.088176][ T8462] __alloc_disk_node+0x116/0x640 [ 298.088212][ T8462] __blk_mq_alloc_disk+0x89/0x120 [ 298.088244][ T8462] loop_add+0x490/0xb70 [ 298.088270][ T8462] ? __pfx_loop_add+0x10/0x10 [ 298.088314][ T8462] ? find_held_lock+0x2b/0x80 [ 298.088342][ T8462] loop_control_ioctl+0x13e/0x630 [ 298.088368][ T8462] ? __pfx_loop_control_ioctl+0x10/0x10 [ 298.088398][ T8462] ? __pfx_loop_control_ioctl+0x10/0x10 [ 298.088425][ T8462] __x64_sys_ioctl+0x18e/0x210 [ 298.088464][ T8462] do_syscall_64+0xcd/0xfa0 [ 298.088493][ T8462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.088518][ T8462] RIP: 0033:0x7fea2e58efc9 [ 298.088536][ T8462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 298.088560][ T8462] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 298.088582][ T8462] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 298.088598][ T8462] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 298.088613][ T8462] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 298.088628][ T8462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 298.088642][ T8462] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 298.088674][ T8462] [ 299.784553][ T8470] net_ratelimit: 35 callbacks suppressed [ 299.784570][ T8470] netlink: zone id is out of range [ 299.806987][ T8470] netlink: zone id is out of range [ 299.812149][ T8470] netlink: zone id is out of range [ 299.830797][ T8470] netlink: zone id is out of range [ 299.856013][ T8470] netlink: zone id is out of range [ 299.875280][ T8470] netlink: zone id is out of range [ 299.909441][ T8470] netlink: zone id is out of range [ 299.920761][ T8470] netlink: zone id is out of range [ 299.967421][ T8470] netlink: zone id is out of range [ 299.972954][ T8470] netlink: zone id is out of range [ 302.450202][ T8496] netlink: 342 bytes leftover after parsing attributes in process `syz.3.458'. [ 305.549875][ T8526] netlink: 268 bytes leftover after parsing attributes in process `syz.0.468'. [ 307.875140][ T8565] FAULT_INJECTION: forcing a failure. [ 307.875140][ T8565] name failslab, interval 1, probability 0, space 0, times 0 [ 307.910047][ T8565] CPU: 0 UID: 0 PID: 8565 Comm: syz.3.476 Tainted: G U syzkaller #0 PREEMPT(full) [ 307.910086][ T8565] Tainted: [U]=USER [ 307.910093][ T8565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 307.910107][ T8565] Call Trace: [ 307.910114][ T8565] [ 307.910123][ T8565] dump_stack_lvl+0x16c/0x1f0 [ 307.910154][ T8565] should_fail_ex+0x512/0x640 [ 307.910195][ T8565] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 307.910228][ T8565] should_failslab+0xc2/0x120 [ 307.910259][ T8565] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 307.910287][ T8565] ? bdi_alloc+0x44/0x170 [ 307.910321][ T8565] ? bdi_alloc+0x44/0x170 [ 307.910348][ T8565] bdi_alloc+0x44/0x170 [ 307.910375][ T8565] __alloc_disk_node+0xac/0x640 [ 307.910410][ T8565] __blk_mq_alloc_disk+0x89/0x120 [ 307.910441][ T8565] loop_add+0x490/0xb70 [ 307.910466][ T8565] ? __pfx_loop_add+0x10/0x10 [ 307.910508][ T8565] ? find_held_lock+0x2b/0x80 [ 307.910536][ T8565] loop_control_ioctl+0x13e/0x630 [ 307.910561][ T8565] ? __pfx_loop_control_ioctl+0x10/0x10 [ 307.910589][ T8565] ? __pfx_loop_control_ioctl+0x10/0x10 [ 307.910615][ T8565] __x64_sys_ioctl+0x18e/0x210 [ 307.910652][ T8565] do_syscall_64+0xcd/0xfa0 [ 307.910681][ T8565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.910705][ T8565] RIP: 0033:0x7fd2d678efc9 [ 307.910723][ T8565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.910746][ T8565] RSP: 002b:00007fd2d757f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 307.910768][ T8565] RAX: ffffffffffffffda RBX: 00007fd2d69e5fa0 RCX: 00007fd2d678efc9 [ 307.910783][ T8565] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 307.910798][ T8565] RBP: 00007fd2d6811f91 R08: 0000000000000000 R09: 0000000000000000 [ 307.910812][ T8565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.910826][ T8565] R13: 00007fd2d69e6038 R14: 00007fd2d69e5fa0 R15: 00007ffe342637c8 [ 307.910856][ T8565] [ 311.622581][ T8608] netlink: 342 bytes leftover after parsing attributes in process `syz.3.486'. [ 314.704854][ T8651] netlink: 342 bytes leftover after parsing attributes in process `syz.0.499'. [ 315.575695][ T8666] netlink: 342 bytes leftover after parsing attributes in process `syz.0.503'. [ 317.130852][ T8687] netlink: 342 bytes leftover after parsing attributes in process `syz.1.507'. [ 318.075369][ T8701] ptrace attach of "./syz-executor exec"[8702] was attempted by "./syz-executor exec"[8701] [ 318.501851][ T8706] netlink: 8 bytes leftover after parsing attributes in process `syz.3.511'. [ 319.530143][ T8721] netlink: 342 bytes leftover after parsing attributes in process `syz.2.514'. [ 319.620552][ T8710] random: crng reseeded on system resumption [ 320.611119][ T8744] netlink: 342 bytes leftover after parsing attributes in process `syz.0.520'. [ 320.872489][ T8746] net_ratelimit: 35 callbacks suppressed [ 320.872509][ T8746] netlink: zone id is out of range [ 320.884979][ T8746] netlink: zone id is out of range [ 320.903712][ T8746] netlink: zone id is out of range [ 320.951879][ T8746] netlink: zone id is out of range [ 320.958172][ T8746] netlink: zone id is out of range [ 320.963466][ T8746] netlink: zone id is out of range [ 320.969404][ T8746] netlink: zone id is out of range [ 320.974712][ T8746] netlink: del zone limit has 4 unknown bytes [ 321.288967][ T8749] FAULT_INJECTION: forcing a failure. [ 321.288967][ T8749] name failslab, interval 1, probability 0, space 0, times 0 [ 321.326772][ T8749] CPU: 1 UID: 0 PID: 8749 Comm: syz.1.521 Tainted: G U syzkaller #0 PREEMPT(full) [ 321.326822][ T8749] Tainted: [U]=USER [ 321.326833][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 321.326853][ T8749] Call Trace: [ 321.326864][ T8749] [ 321.326876][ T8749] dump_stack_lvl+0x16c/0x1f0 [ 321.326927][ T8749] should_fail_ex+0x512/0x640 [ 321.326979][ T8749] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 321.327017][ T8749] should_failslab+0xc2/0x120 [ 321.327061][ T8749] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 321.327094][ T8749] ? bdi_alloc+0x44/0x170 [ 321.327135][ T8749] ? bdi_alloc+0x44/0x170 [ 321.327166][ T8749] bdi_alloc+0x44/0x170 [ 321.327190][ T8749] __alloc_disk_node+0xac/0x640 [ 321.327222][ T8749] __blk_mq_alloc_disk+0x89/0x120 [ 321.327249][ T8749] loop_add+0x490/0xb70 [ 321.327275][ T8749] ? __pfx_loop_add+0x10/0x10 [ 321.327311][ T8749] ? find_held_lock+0x2b/0x80 [ 321.327336][ T8749] loop_control_ioctl+0x13e/0x630 [ 321.327358][ T8749] ? __pfx_loop_control_ioctl+0x10/0x10 [ 321.327383][ T8749] ? __pfx_loop_control_ioctl+0x10/0x10 [ 321.327406][ T8749] __x64_sys_ioctl+0x18e/0x210 [ 321.327443][ T8749] do_syscall_64+0xcd/0xfa0 [ 321.327468][ T8749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 321.327488][ T8749] RIP: 0033:0x7fea2e58efc9 [ 321.327504][ T8749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 321.327524][ T8749] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 321.327543][ T8749] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 321.327556][ T8749] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 321.327569][ T8749] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 321.327581][ T8749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.327593][ T8749] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 321.327620][ T8749] [ 322.391720][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.398178][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.904793][ T8775] FAULT_INJECTION: forcing a failure. [ 322.904793][ T8775] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 322.947632][ T8775] CPU: 1 UID: 0 PID: 8775 Comm: syz.1.527 Tainted: G U syzkaller #0 PREEMPT(full) [ 322.947692][ T8775] Tainted: [U]=USER [ 322.947699][ T8775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 322.947712][ T8775] Call Trace: [ 322.947719][ T8775] [ 322.947727][ T8775] dump_stack_lvl+0x16c/0x1f0 [ 322.947755][ T8775] should_fail_ex+0x512/0x640 [ 322.947793][ T8775] should_fail_alloc_page+0xe7/0x130 [ 322.947826][ T8775] prepare_alloc_pages+0x3c2/0x610 [ 322.947859][ T8775] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 322.947883][ T8775] ? __lock_acquire+0x622/0x1c90 [ 322.947926][ T8775] ? __lock_acquire+0x622/0x1c90 [ 322.947960][ T8775] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 322.947995][ T8775] ? is_bpf_text_address+0x8a/0x1a0 [ 322.948026][ T8775] ? bpf_ksym_find+0x124/0x1c0 [ 322.948050][ T8775] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 322.948078][ T8775] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 322.948117][ T8775] ? policy_nodemask+0xea/0x4e0 [ 322.948149][ T8775] alloc_pages_mpol+0x1fb/0x550 [ 322.948180][ T8775] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 322.948217][ T8775] alloc_pages_noprof+0x131/0x390 [ 322.948248][ T8775] __pud_alloc+0x3b/0x6b0 [ 322.948280][ T8775] copy_page_range+0x4650/0x6930 [ 322.948315][ T8775] ? __lock_acquire+0x622/0x1c90 [ 322.948372][ T8775] ? __pfx_copy_page_range+0x10/0x10 [ 322.948409][ T8775] ? mas_store+0x860/0x1030 [ 322.948435][ T8775] ? __pfx___might_resched+0x10/0x10 [ 322.948459][ T8775] ? find_held_lock+0x2b/0x80 [ 322.948482][ T8775] ? __pfx_mas_store+0x10/0x10 [ 322.948508][ T8775] ? __vma_enter_locked+0x163/0x3f0 [ 322.948556][ T8775] dup_mmap+0xe80/0x2280 [ 322.948596][ T8775] ? __pfx_dup_mmap+0x10/0x10 [ 322.948644][ T8775] copy_process+0x3f0c/0x76a0 [ 322.948685][ T8775] ? __pfx_copy_process+0x10/0x10 [ 322.948719][ T8775] ? _copy_from_user+0x59/0xd0 [ 322.948759][ T8775] kernel_clone+0xfc/0x930 [ 322.948787][ T8775] ? __pfx_kernel_clone+0x10/0x10 [ 322.948813][ T8775] ? futex_private_hash_put+0x18a/0x300 [ 322.948846][ T8775] ? __pfx_futex_wait+0x10/0x10 [ 322.948888][ T8775] __do_sys_clone3+0x212/0x290 [ 322.948922][ T8775] ? __pfx___do_sys_clone3+0x10/0x10 [ 322.948963][ T8775] ? find_held_lock+0x2b/0x80 [ 322.949006][ T8775] do_syscall_64+0xcd/0xfa0 [ 322.949033][ T8775] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.949056][ T8775] RIP: 0033:0x7fea2e58efc9 [ 322.949073][ T8775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.949103][ T8775] RSP: 002b:00007fea2f443f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 322.949129][ T8775] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fea2e58efc9 [ 322.949148][ T8775] RDX: 00007fea2f443f20 RSI: 0000000000000058 RDI: 00007fea2f443f20 [ 322.949167][ T8775] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000058 [ 322.949183][ T8775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.949198][ T8775] R13: 00007fea2e7e6128 R14: 00007fea2e7e6090 R15: 00007fff697c21f8 [ 322.949236][ T8775] [ 323.940379][ T8792] netlink: 342 bytes leftover after parsing attributes in process `syz.1.531'. [ 324.015813][ T8782] netlink: 8 bytes leftover after parsing attributes in process `syz.0.528'. [ 325.691301][ T8820] netlink: 268 bytes leftover after parsing attributes in process `syz.2.536'. [ 326.281228][ T8833] RDS: rds_bind could not find a transport for ::ffff:172.20.20.253, load rds_tcp or rds_rdma? [ 328.665577][ T8876] netlink: 342 bytes leftover after parsing attributes in process `syz.2.547'. [ 329.507093][ T8885] netlink: 342 bytes leftover after parsing attributes in process `syz.3.549'. [ 330.298230][ T8896] FAULT_INJECTION: forcing a failure. [ 330.298230][ T8896] name failslab, interval 1, probability 0, space 0, times 0 [ 330.311331][ T8896] CPU: 0 UID: 0 PID: 8896 Comm: syz.1.551 Tainted: G U syzkaller #0 PREEMPT(full) [ 330.311368][ T8896] Tainted: [U]=USER [ 330.311376][ T8896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 330.311390][ T8896] Call Trace: [ 330.311398][ T8896] [ 330.311411][ T8896] dump_stack_lvl+0x16c/0x1f0 [ 330.311451][ T8896] should_fail_ex+0x512/0x640 [ 330.311496][ T8896] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 330.311529][ T8896] should_failslab+0xc2/0x120 [ 330.311561][ T8896] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 330.311589][ T8896] ? bdi_alloc+0x44/0x170 [ 330.311622][ T8896] ? bdi_alloc+0x44/0x170 [ 330.311650][ T8896] bdi_alloc+0x44/0x170 [ 330.311677][ T8896] __alloc_disk_node+0xac/0x640 [ 330.311713][ T8896] __blk_mq_alloc_disk+0x89/0x120 [ 330.311743][ T8896] loop_add+0x490/0xb70 [ 330.311768][ T8896] ? __pfx_loop_add+0x10/0x10 [ 330.311810][ T8896] ? find_held_lock+0x2b/0x80 [ 330.311838][ T8896] loop_control_ioctl+0x13e/0x630 [ 330.311863][ T8896] ? __pfx_loop_control_ioctl+0x10/0x10 [ 330.311892][ T8896] ? __pfx_loop_control_ioctl+0x10/0x10 [ 330.311925][ T8896] __x64_sys_ioctl+0x18e/0x210 [ 330.311963][ T8896] do_syscall_64+0xcd/0xfa0 [ 330.311991][ T8896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.312015][ T8896] RIP: 0033:0x7fea2e58efc9 [ 330.312033][ T8896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.312056][ T8896] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 330.312078][ T8896] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 330.312093][ T8896] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 330.312108][ T8896] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 330.312122][ T8896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 330.312137][ T8896] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 330.312167][ T8896] [ 334.602622][ T8975] netlink: 342 bytes leftover after parsing attributes in process `syz.0.571'. [ 335.117307][ T8978] netlink: 4 bytes leftover after parsing attributes in process `syz.3.572'. [ 339.580079][ T9047] FAULT_INJECTION: forcing a failure. [ 339.580079][ T9047] name failslab, interval 1, probability 0, space 0, times 0 [ 339.624887][ T9047] CPU: 1 UID: 0 PID: 9047 Comm: syz.1.589 Tainted: G U syzkaller #0 PREEMPT(full) [ 339.624936][ T9047] Tainted: [U]=USER [ 339.624944][ T9047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 339.624958][ T9047] Call Trace: [ 339.624966][ T9047] [ 339.624974][ T9047] dump_stack_lvl+0x16c/0x1f0 [ 339.625005][ T9047] should_fail_ex+0x512/0x640 [ 339.625041][ T9047] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 339.625071][ T9047] should_failslab+0xc2/0x120 [ 339.625104][ T9047] kmem_cache_alloc_noprof+0x75/0x6e0 [ 339.625128][ T9047] ? mempool_init_node+0x2f7/0x6e0 [ 339.625164][ T9047] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 339.625194][ T9047] ? mempool_init_node+0x2f7/0x6e0 [ 339.625234][ T9047] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 339.625261][ T9047] mempool_init_node+0x2f7/0x6e0 [ 339.625306][ T9047] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 339.625338][ T9047] ? __pfx_mempool_free_slab+0x10/0x10 [ 339.625364][ T9047] mempool_init_noprof+0x3a/0x50 [ 339.625395][ T9047] bioset_init+0x388/0x8a0 [ 339.625426][ T9047] ? __pfx_bioset_init+0x10/0x10 [ 339.625468][ T9047] __alloc_disk_node+0x83/0x640 [ 339.625501][ T9047] __blk_mq_alloc_disk+0x89/0x120 [ 339.625530][ T9047] loop_add+0x490/0xb70 [ 339.625553][ T9047] ? __pfx_loop_add+0x10/0x10 [ 339.625592][ T9047] ? find_held_lock+0x2b/0x80 [ 339.625618][ T9047] loop_control_ioctl+0x13e/0x630 [ 339.625641][ T9047] ? __pfx_loop_control_ioctl+0x10/0x10 [ 339.625668][ T9047] ? __pfx_loop_control_ioctl+0x10/0x10 [ 339.625727][ T9047] __x64_sys_ioctl+0x18e/0x210 [ 339.625778][ T9047] do_syscall_64+0xcd/0xfa0 [ 339.625811][ T9047] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.625836][ T9047] RIP: 0033:0x7fea2e58efc9 [ 339.625855][ T9047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.625879][ T9047] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.625901][ T9047] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 339.625917][ T9047] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008 [ 339.625932][ T9047] RBP: 00007fea2e611f91 R08: 0000000000000000 R09: 0000000000000000 [ 339.625947][ T9047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.625961][ T9047] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 339.625992][ T9047] [ 340.779836][ T9059] FAULT_INJECTION: forcing a failure. [ 340.779836][ T9059] name fail_futex, interval 1, probability 0, space 0, times 0 [ 340.793080][ T9059] CPU: 0 UID: 0 PID: 9059 Comm: syz.1.593 Tainted: G U syzkaller #0 PREEMPT(full) [ 340.793117][ T9059] Tainted: [U]=USER [ 340.793124][ T9059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 340.793138][ T9059] Call Trace: [ 340.793145][ T9059] [ 340.793153][ T9059] dump_stack_lvl+0x16c/0x1f0 [ 340.793182][ T9059] should_fail_ex+0x512/0x640 [ 340.793235][ T9059] get_futex_key+0x1d0/0x1560 [ 340.793268][ T9059] ? __lock_acquire+0xb8a/0x1c90 [ 340.793300][ T9059] ? __pfx_get_futex_key+0x10/0x10 [ 340.793330][ T9059] ? ida_alloc_range+0x5cb/0x830 [ 340.793362][ T9059] futex_wake+0xea/0x530 [ 340.793401][ T9059] ? __pfx_futex_wake+0x10/0x10 [ 340.793441][ T9059] ? __pfx_perf_event_namespaces+0x10/0x10 [ 340.793477][ T9059] do_futex+0x1e3/0x350 [ 340.793509][ T9059] ? __pfx_do_futex+0x10/0x10 [ 340.793543][ T9059] ? ksys_unshare+0x687/0xa40 [ 340.793578][ T9059] __x64_sys_futex+0x1e0/0x4c0 [ 340.793614][ T9059] ? __pfx___x64_sys_futex+0x10/0x10 [ 340.793647][ T9059] ? xfd_validate_state+0x61/0x180 [ 340.793689][ T9059] do_syscall_64+0xcd/0xfa0 [ 340.793718][ T9059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 340.793742][ T9059] RIP: 0033:0x7fea2e58efc9 [ 340.793759][ T9059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 340.793782][ T9059] RSP: 002b:00007fea2f4650e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 340.793804][ T9059] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa8 RCX: 00007fea2e58efc9 [ 340.793819][ T9059] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fea2e7e5fac [ 340.793834][ T9059] RBP: 00007fea2e7e5fa0 R08: 00007fea2f466000 R09: 0000000000000000 [ 340.793848][ T9059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.793862][ T9059] R13: 00007fea2e7e6038 R14: 00007fff697c2110 R15: 00007fff697c21f8 [ 340.793891][ T9059] [ 342.176676][ T9085] netlink: 342 bytes leftover after parsing attributes in process `syz.0.600'. [ 342.421263][ T9076] netlink: 5 bytes leftover after parsing attributes in process `syz.3.598'. [ 343.758564][ T9097] netlink: 60 bytes leftover after parsing attributes in process `syz.0.604'. [ 344.043225][ T9103] netlink: zone id is out of range [ 344.063298][ T9103] netlink: zone id is out of range [ 344.085893][ T9103] netlink: zone id is out of range [ 344.108352][ T9103] netlink: zone id is out of range [ 344.130520][ T9103] netlink: zone id is out of range [ 344.136050][ T9103] netlink: zone id is out of range [ 344.158700][ T9103] netlink: zone id is out of range [ 344.178402][ T9103] netlink: zone id is out of range [ 344.219287][ T9103] netlink: zone id is out of range [ 344.228174][ T9103] netlink: zone id is out of range [ 346.159145][ T9144] netlink: 5 bytes leftover after parsing attributes in process `syz.2.614'. [ 347.677804][ T9168] netlink: 342 bytes leftover after parsing attributes in process `syz.0.621'. [ 349.586385][ T9201] netlink: 342 bytes leftover after parsing attributes in process `syz.2.628'. [ 349.879539][ T9206] net_ratelimit: 43 callbacks suppressed [ 349.879684][ T9206] netlink: zone id is out of range [ 349.893805][ T9206] netlink: zone id is out of range [ 349.899074][ T9206] netlink: zone id is out of range [ 349.906770][ T9206] netlink: zone id is out of range [ 349.923631][ T9206] netlink: zone id is out of range [ 349.976400][ T9206] netlink: zone id is out of range [ 349.983442][ T9206] netlink: zone id is out of range [ 349.989052][ T9206] netlink: del zone limit has 4 unknown bytes [ 350.074201][ T9210] netlink: 342 bytes leftover after parsing attributes in process `syz.2.632'. [ 350.670971][ T9224] netlink: 342 bytes leftover after parsing attributes in process `syz.1.638'. [ 352.222089][ T9251] netlink: 342 bytes leftover after parsing attributes in process `syz.1.643'. [ 353.873399][ T9284] netlink: 342 bytes leftover after parsing attributes in process `syz.3.654'. [ 353.888372][ T9286] netlink: 342 bytes leftover after parsing attributes in process `syz.2.652'. [ 354.321488][ T9298] netlink: 342 bytes leftover after parsing attributes in process `syz.3.657'. [ 355.695560][ T9322] netlink: 342 bytes leftover after parsing attributes in process `syz.3.664'. [ 357.589158][ T9350] netlink: 60 bytes leftover after parsing attributes in process `syz.2.671'. [ 359.809423][ T9376] netlink: 330 bytes leftover after parsing attributes in process `syz.3.676'. [ 361.598891][ T9405] netlink: 268 bytes leftover after parsing attributes in process `syz.0.684'. [ 367.146720][ T9511] netlink: 342 bytes leftover after parsing attributes in process `syz.0.709'. [ 367.690442][ T9522] netlink: 342 bytes leftover after parsing attributes in process `syz.0.710'. [ 371.664124][ T9578] netlink: zone id is out of range [ 371.669506][ T9578] netlink: zone id is out of range [ 371.675888][ T9578] netlink: zone id is out of range [ 371.681322][ T9578] netlink: zone id is out of range [ 371.699141][ T9578] netlink: zone id is out of range [ 371.732269][ T9578] netlink: zone id is out of range [ 371.743400][ T9578] netlink: zone id is out of range [ 371.809224][ T9578] netlink: zone id is out of range [ 371.855184][ T9578] netlink: zone id is out of range [ 371.885080][ T9578] netlink: zone id is out of range [ 378.699444][ T9695] netlink: 342 bytes leftover after parsing attributes in process `syz.2.754'. [ 379.024430][ T9693] HfR: entered promiscuous mode [ 380.285830][ T9725] Invalid ELF header magic: != ELF [ 380.839382][ T9737] can: request_module (can-proto-3) failed. [ 383.865108][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.871578][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.043601][ T9785] netlink: 342 bytes leftover after parsing attributes in process `syz.1.775'. [ 392.378288][ T9926] netlink: 268 bytes leftover after parsing attributes in process `syz.3.809'. [ 394.591264][ T9984] netlink: 28 bytes leftover after parsing attributes in process `syz.2.826'. [ 398.839210][T10066] netlink: 'syz.2.842': attribute type 1 has an invalid length. [ 402.050365][T10100] netlink: 8 bytes leftover after parsing attributes in process `syz.3.850'. [ 404.201480][T10118] net_ratelimit: 37 callbacks suppressed [ 404.201498][T10118] netlink: zone id is out of range [ 404.279254][T10118] netlink: del zone limit has 4 unknown bytes [ 407.334862][T10195] futex_wake_op: syz.1.875 tries to shift op by -2048; fix this program [ 408.720564][T10220] tipc: Started in network mode [ 408.728116][T10220] tipc: Node identity ee00, cluster identity 4711 [ 408.740722][T10220] tipc: Node number set to 60928 [ 413.137230][T10306] netlink: 5 bytes leftover after parsing attributes in process `syz.2.904'. [ 415.531778][T10348] futex_wake_op: syz.0.916 tries to shift op by -2048; fix this program [ 421.184086][T10449] netlink: 342 bytes leftover after parsing attributes in process `syz.2.941'. [ 421.388544][T10440] netlink: 'syz.0.937': attribute type 1 has an invalid length. [ 421.704283][T10459] netlink: 8 bytes leftover after parsing attributes in process `syz.2.943'. [ 426.658767][T10539] netlink: 'syz.1.966': attribute type 1 has an invalid length. [ 428.537022][T10581] netlink: 28 bytes leftover after parsing attributes in process `syz.1.976'. [ 428.980615][T10587] openvswitch: netlink: nsh attr 36 is out of range max 3 [ 430.011613][T10603] netlink: 'syz.3.980': attribute type 1 has an invalid length. [ 431.941202][T10635] netlink: 28 bytes leftover after parsing attributes in process `syz.0.991'. [ 432.189623][T10631] netlink: 'syz.2.989': attribute type 1 has an invalid length. [ 434.019106][ T5830] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14 [ 439.760595][T10783] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1026'. [ 442.640854][T10822] kAFS: No cell specified [ 445.335228][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.341795][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 448.280543][T10939] netlink: 'syz.0.1063': attribute type 1 has an invalid length. [ 449.218926][T10950] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1066'. [ 454.541859][ T5830] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14 [ 462.887249][T11217] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1131'. [ 468.415615][ T5830] Bluetooth: hci2: unexpected event 0x3d length: 726 > 14 [ 471.201933][T11398] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1185'. [ 480.412413][ T5830] Bluetooth: hci1: unexpected event 0x3d length: 726 > 14 [ 480.864001][T11608] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1239'. [ 481.088734][T11608] veth0_vlan: entered allmulticast mode [ 482.750400][T11638] can: request_module (can-proto-5) failed. [ 484.055703][ T5830] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14 [ 485.540031][ T30] audit: type=1326 audit(4294967334.250:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11692 comm="syz.1.1259" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fea2e58efc9 code=0x0 [ 488.090093][T11744] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1272'. [ 488.313626][T11748] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1273'. [ 491.421982][T11805] netlink: zone id is out of range [ 491.427323][T11805] netlink: zone id is out of range [ 491.443208][T11805] netlink: zone id is out of range [ 491.453411][T11805] netlink: zone id is out of range [ 491.459866][T11805] netlink: zone id is out of range [ 491.471868][T11805] netlink: zone id is out of range [ 491.477169][T11805] netlink: zone id is out of range [ 491.532014][T11805] netlink: zone id is out of range [ 491.578373][T11805] netlink: zone id is out of range [ 491.585641][T11805] netlink: zone id is out of range [ 491.603134][T11810] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1285'. [ 495.109127][T11886] futex_wake_op: syz.1.1306 tries to shift op by -2048; fix this program [ 495.118167][T11886] futex_wake_op: syz.1.1306 tries to shift op by -2048; fix this program [ 495.220860][T11889] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1308'. [ 496.016803][T11911] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1313'. [ 496.730864][T11927] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1317'. [ 502.387495][T12018] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1341'. [ 505.290491][T12069] futex_wake_op: syz.1.1356 tries to shift op by -2048; fix this program [ 505.635355][T12072] syz.1.1356(12072): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 506.774369][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.780990][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.952934][T12089] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1361'. [ 507.536422][T12101] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1365'. [ 507.854155][ T30] audit: type=1800 audit(4294967356.560:9): pid=12106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1364" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 510.059924][T12149] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1381'. [ 511.661734][T12183] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1392'. [ 512.364830][T12192] overlayfs: missing 'lowerdir' [ 512.973461][T12205] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1397'. [ 514.682311][T12226] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1402'. [ 517.345541][T12272] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1412'. [ 517.767788][T12280] netlink: 'syz.1.1414': attribute type 1 has an invalid length. [ 518.753176][T12296] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1421'. [ 518.898250][T12299] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1420'. [ 519.989272][T12299] syz.1.1420: vmalloc error: size 268435456, failed to allocated page array size 524288, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 520.078708][T12299] CPU: 1 UID: 0 PID: 12299 Comm: syz.1.1420 Tainted: G U syzkaller #0 PREEMPT(full) [ 520.078742][T12299] Tainted: [U]=USER [ 520.078749][T12299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 520.078761][T12299] Call Trace: [ 520.078767][T12299] [ 520.078775][T12299] dump_stack_lvl+0x16c/0x1f0 [ 520.078804][T12299] warn_alloc+0x248/0x3a0 [ 520.078826][T12299] ? __pfx_warn_alloc+0x10/0x10 [ 520.078856][T12299] ? packet_set_ring+0xb4c/0x17e0 [ 520.078886][T12299] ? __vmalloc_node_noprof+0xad/0xf0 [ 520.078921][T12299] __vmalloc_node_range_noprof+0xfe2/0x1480 [ 520.078960][T12299] ? packet_set_ring+0xb4c/0x17e0 [ 520.078996][T12299] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 520.079027][T12299] ? alloc_pages_mpol+0x25a/0x550 [ 520.079056][T12299] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 520.079083][T12299] ? rcu_is_watching+0x12/0xc0 [ 520.079108][T12299] ? packet_set_ring+0xb4c/0x17e0 [ 520.079137][T12299] __vmalloc_node_noprof+0xad/0xf0 [ 520.079166][T12299] ? packet_set_ring+0xb4c/0x17e0 [ 520.079199][T12299] packet_set_ring+0xb4c/0x17e0 [ 520.079240][T12299] packet_setsockopt+0x121b/0x33c0 [ 520.079259][T12299] ? __pfx___might_resched+0x10/0x10 [ 520.079280][T12299] ? __lock_acquire+0x622/0x1c90 [ 520.079310][T12299] ? __pfx_packet_setsockopt+0x10/0x10 [ 520.079332][T12299] ? aa_sk_perm+0x2f4/0xb10 [ 520.079352][T12299] ? file_init_path+0x4fe/0x760 [ 520.079382][T12299] ? __pfx_aa_sk_perm+0x10/0x10 [ 520.079404][T12299] ? find_held_lock+0x2b/0x80 [ 520.079429][T12299] ? aa_sock_opt_perm+0xfd/0x1c0 [ 520.079458][T12299] ? __pfx_packet_setsockopt+0x10/0x10 [ 520.079479][T12299] do_sock_setsockopt+0xf3/0x1d0 [ 520.079507][T12299] __sys_setsockopt+0x120/0x1a0 [ 520.079544][T12299] __x64_sys_setsockopt+0xbd/0x160 [ 520.079575][T12299] ? do_syscall_64+0x91/0xfa0 [ 520.079597][T12299] ? lockdep_hardirqs_on+0x7c/0x110 [ 520.079619][T12299] do_syscall_64+0xcd/0xfa0 [ 520.079643][T12299] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.079664][T12299] RIP: 0033:0x7fea2e58efc9 [ 520.079680][T12299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 520.079705][T12299] RSP: 002b:00007fea2f465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 520.079724][T12299] RAX: ffffffffffffffda RBX: 00007fea2e7e5fa0 RCX: 00007fea2e58efc9 [ 520.079738][T12299] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000005 [ 520.079750][T12299] RBP: 00007fea2e611f91 R08: 000000000000ce24 R09: 0000000000000000 [ 520.079762][T12299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 520.079775][T12299] R13: 00007fea2e7e6038 R14: 00007fea2e7e5fa0 R15: 00007fff697c21f8 [ 520.079802][T12299] [ 520.079808][T12299] Mem-Info: [ 520.398157][T12299] active_anon:59109 inactive_anon:1112 isolated_anon:0 [ 520.398157][T12299] active_file:12491 inactive_file:46604 isolated_file:0 [ 520.398157][T12299] unevictable:768 dirty:741 writeback:0 [ 520.398157][T12299] slab_reclaimable:11791 slab_unreclaimable:96109 [ 520.398157][T12299] mapped:30007 shmem:39555 pagetables:1438 [ 520.398157][T12299] sec_pagetables:0 bounce:0 [ 520.398157][T12299] kernel_misc_reclaimable:0 [ 520.398157][T12299] free:1247968 free_pcp:25775 free_cma:0 [ 520.526515][T12299] Node 0 active_anon:229136kB inactive_anon:4448kB active_file:49964kB inactive_file:186180kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120016kB dirty:2964kB writeback:0kB shmem:153184kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11436kB pagetables:5608kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 520.598134][T12299] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:236kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 520.655397][T12299] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 520.755756][T12299] lowmem_reserve[]: 0 2485 2487 2487 2487 [ 520.771242][T12299] Node 0 DMA32 free:1075420kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:230608kB inactive_anon:4448kB active_file:49964kB inactive_file:186180kB unevictable:1536kB writepending:2988kB zspages:1160kB present:3129332kB managed:2545104kB mlocked:0kB bounce:0kB free_pcp:100388kB local_pcp:51884kB free_cma:0kB [ 520.925635][T12299] lowmem_reserve[]: 0 0 1 1 1 [ 520.941354][T12299] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 520.978187][T12299] lowmem_reserve[]: 0 0 0 0 0 [ 520.983070][T12299] Node 1 Normal free:3903596kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:236kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:8004kB local_pcp:4836kB free_cma:0kB [ 521.025865][T12299] lowmem_reserve[]: 0 0 0 0 0 [ 521.045002][T12299] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 521.079451][T12299] Node 0 DMA32: 7204*4kB (UME) 39*8kB (UME) 30*16kB (UME) 672*32kB (UME) 353*64kB (UME) 54*128kB (UME) 12*256kB (UM) 4*512kB (M) 3*1024kB (UM) 3*2048kB (UME) 243*4096kB (M) = 1090280kB [ 521.126222][T12299] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 521.146543][T12299] Node 1 Normal: 123*4kB (UME) 56*8kB (UME) 56*16kB (UME) 248*32kB (UME) 103*64kB (UME) 15*128kB (UME) 1*256kB (M) 4*512kB (UM) 0*1024kB 2*2048kB (UE) 947*4096kB (M) = 3903596kB [ 521.228281][T12299] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 521.265887][T12299] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 521.295348][T12299] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 521.305467][T12299] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 521.325797][T12299] 92904 total pagecache pages [ 521.336229][T12299] 40 pages in swap cache [ 521.346358][T12299] Free swap = 124236kB [ 521.356512][T12299] Total swap = 124996kB [ 521.365176][T12299] 2097051 pages RAM [ 521.378279][T12299] 0 pages HighMem/MovableOnly [ 521.387129][T12299] 428685 pages reserved [ 521.394816][T12299] 0 pages cma reserved [ 524.490861][T12360] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1433'. [ 525.934317][T12396] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1445'. [ 527.030629][T12416] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1450'. [ 527.679101][T12430] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1454'. [ 530.982178][T12481] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1465'. [ 531.487606][T12490] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1467'. [ 534.165536][T12539] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1480'. [ 537.742565][ T5830] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14 [ 538.848222][T12613] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1498'. [ 542.927723][T12682] netlink: 'syz.3.1517': attribute type 1 has an invalid length. [ 546.592023][ T5830] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14 [ 547.129694][T12750] cifs: Unknown parameter 'T.żc[$⁍)UÑnE-ʙl- -_5Z omfwYh*/xDlݩgkǐA79Xa/f_ARxM vp$^;q3n-6+ek>uh*C<+ ' [ 556.636488][T12931] bridge0: port 3(veth1_macvtap) entered blocking state [ 556.648888][T12931] bridge0: port 3(veth1_macvtap) entered disabled state [ 556.656535][T12931] veth1_macvtap: entered allmulticast mode [ 556.679631][T12931] veth1_macvtap: left allmulticast mode [ 557.328477][T12950] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1584'. [ 559.311206][T12994] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1597'. [ 561.511666][T13030] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1604'. [ 562.304377][T13043] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1609'. [ 562.577687][T13051] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1610'. [ 563.524504][T13068] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1614'. [ 565.041648][T13092] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1620'. [ 565.956933][T13112] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1626'. [ 567.462533][T13141] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1633'. [ 568.213166][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.219590][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.627086][T13239] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1659'. [ 575.153899][T13282] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1670'. [ 577.478346][T13330] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1680'. [ 583.623297][T13439] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1703'. [ 587.132977][T13487] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1716'. [ 587.179718][T13487] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1716'. [ 592.493053][T13573] delete_channel: no stack [ 600.955301][ T30] audit: type=1804 audit(4294969374.885:10): pid=13703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1771" name="file0" dev="tmpfs" ino=2326 res=1 errno=0 [ 600.994809][ T30] audit: type=1804 audit(4294969374.925:11): pid=13706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1771" name="file0" dev="tmpfs" ino=2326 res=1 errno=0 [ 601.017630][ T30] audit: type=1800 audit(4294969374.946:12): pid=13703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1771" name="file0" dev="tmpfs" ino=2326 res=0 errno=0 [ 603.221236][T13759] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1782'. [ 604.294944][T13777] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1786'. [ 609.812641][ T30] audit: type=1804 audit(4294969383.791:13): pid=13869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1804" name="file0" dev="tmpfs" ino=2443 res=1 errno=0 [ 609.896075][ T30] audit: type=1804 audit(4294969383.791:14): pid=13871 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1804" name="file0" dev="tmpfs" ino=2443 res=1 errno=0 [ 610.172981][T13881] netlink: 93 bytes leftover after parsing attributes in process `syz.3.1806'. [ 610.835979][T13899] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1811'. [ 612.102266][T13925] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1817'. [ 614.303568][T13964] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1824'. [ 617.076489][ T5830] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 617.084065][ T5830] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff [ 620.063058][T14058] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12 [ 620.126958][T14058] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12 [ 620.163851][T14058] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 621.284759][T14073] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1847'. [ 622.799033][T14021] Bluetooth: hci1: unexpected event 0x3e length: 728 > 260 [ 622.799077][T14021] Bluetooth: hci1: unexpected subevent 0x0c length: 727 > 5 [ 625.170177][T14131] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1862'. [ 629.449011][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.455580][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 632.311613][T14242] netlink: 93 bytes leftover after parsing attributes in process `syz.0.1885'. [ 633.116258][T14255] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1890'. [ 633.749904][T14255] team0 (unregistering): Port device team_slave_0 removed [ 633.778751][T14255] team0 (unregistering): Port device team_slave_1 removed [ 633.804023][T14256] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1890'. [ 633.946297][T14270] nbd: socks must be embedded in a SOCK_ITEM attr [ 634.912789][T14288] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1898'. [ 638.927644][T14359] net_ratelimit: 8 callbacks suppressed [ 638.927665][T14359] openvswitch: netlink: Key type 280 is out of range max 32 [ 640.440084][T14392] futex_wake_op: syz.1.1920 tries to shift op by -2048; fix this program [ 640.603775][T14392] futex_wake_op: syz.1.1920 tries to shift op by -2048; fix this program [ 645.852791][T14021] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 645.862302][T14021] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff [ 648.510370][T14544] nbd: socks must be embedded in a SOCK_ITEM attr [ 651.008733][T14589] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1963'. [ 651.785793][T14597] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1965'. [ 652.211620][T14597] team0 (unregistering): Port device team_slave_0 removed [ 652.241877][T14597] team0 (unregistering): Port device team_slave_1 removed [ 652.389505][T14607] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1965'. [ 657.427844][T14704] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 657.547809][T14694] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1987'. [ 657.662741][T14694] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 659.058093][T14740] openvswitch: netlink: Key type 280 is out of range max 32 [ 660.337558][T14757] could not allocate digest TFM handle [ 661.470665][T14787] netlink: 268 bytes leftover after parsing attributes in process `syz.2.2004'. [ 661.573194][T14791] tipc: Started in network mode [ 661.578417][T14791] tipc: Node identity ffffffff, cluster identity 4711 [ 661.588371][T14791] tipc: Node number set to 4294967295 [ 661.850469][T14789] Process accounting resumed [ 662.349998][T14801] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2008'. [ 664.911180][T14852] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE r҄y*"l-y–L̓]' [ 664.934334][T14852] CPU: 0 UID: 0 PID: 14852 Comm: syz.2.2019 Tainted: G U syzkaller #0 PREEMPT(full) [ 664.934383][T14852] Tainted: [U]=USER [ 664.934393][T14852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 664.934410][T14852] Call Trace: [ 664.934421][T14852] [ 664.934433][T14852] dump_stack_lvl+0x16c/0x1f0 [ 664.934475][T14852] sysfs_warn_dup+0x7f/0xa0 [ 664.934516][T14852] sysfs_do_create_link_sd+0x124/0x140 [ 664.934583][T14852] sysfs_create_link+0x61/0xc0 [ 664.934641][T14852] device_add+0x62c/0x1aa0 [ 664.934699][T14852] ? __pfx_device_add+0x10/0x10 [ 664.934747][T14852] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 664.934813][T14852] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 664.934861][T14852] wiphy_register+0x1eb0/0x2b20 [ 664.934906][T14852] ? netdev_run_todo+0x864/0x1320 [ 664.934953][T14852] ? __pfx_wiphy_register+0x10/0x10 [ 664.935021][T14852] ieee80211_register_hw+0x253d/0x4120 [ 664.935082][T14852] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 664.935125][T14852] ? __pfx___debug_object_init+0x10/0x10 [ 664.935185][T14852] ? find_held_lock+0x2b/0x80 [ 664.935219][T14852] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 664.935272][T14852] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 664.935314][T14852] ? __hrtimer_setup+0x176/0x280 [ 664.935368][T14852] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 664.935447][T14852] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 664.935484][T14852] ? __asan_memcpy+0x3c/0x60 [ 664.935524][T14852] hwsim_new_radio_nl+0xba2/0x1330 [ 664.935564][T14852] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 664.935613][T14852] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 664.935658][T14852] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 664.935711][T14852] genl_family_rcv_msg_doit+0x209/0x2f0 [ 664.935757][T14852] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 664.935837][T14852] ? bpf_lsm_capable+0x9/0x10 [ 664.935899][T14852] ? security_capable+0x7e/0x260 [ 664.935946][T14852] ? ns_capable+0xd7/0x110 [ 664.935985][T14852] genl_rcv_msg+0x55c/0x800 [ 664.936030][T14852] ? __pfx_genl_rcv_msg+0x10/0x10 [ 664.936072][T14852] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 664.936123][T14852] netlink_rcv_skb+0x158/0x420 [ 664.936159][T14852] ? __pfx_genl_rcv_msg+0x10/0x10 [ 664.936201][T14852] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 664.936256][T14852] ? netlink_deliver_tap+0x1ae/0xd30 [ 664.936296][T14852] genl_rcv+0x28/0x40 [ 664.936331][T14852] netlink_unicast+0x5aa/0x870 [ 664.936372][T14852] ? __pfx_netlink_unicast+0x10/0x10 [ 664.936407][T14852] ? __pfx___might_resched+0x10/0x10 [ 664.936456][T14852] netlink_sendmsg+0x8c8/0xdd0 [ 664.936499][T14852] ? __pfx_netlink_sendmsg+0x10/0x10 [ 664.936541][T14852] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 664.936598][T14852] ____sys_sendmsg+0xa98/0xc70 [ 664.936642][T14852] ? copy_msghdr_from_user+0x10a/0x160 [ 664.936673][T14852] ? __pfx_____sys_sendmsg+0x10/0x10 [ 664.936724][T14852] ? __pfx_futex_wake_mark+0x10/0x10 [ 664.936781][T14852] ___sys_sendmsg+0x134/0x1d0 [ 664.936816][T14852] ? futex_private_hash_put+0x176/0x300 [ 664.936859][T14852] ? __pfx____sys_sendmsg+0x10/0x10 [ 664.936889][T14852] ? __lock_acquire+0x622/0x1c90 [ 664.936987][T14852] __sys_sendmsg+0x16d/0x220 [ 664.937020][T14852] ? __pfx___sys_sendmsg+0x10/0x10 [ 664.937063][T14852] ? __x64_sys_futex+0x1e0/0x4c0 [ 664.937132][T14852] do_syscall_64+0xcd/0xfa0 [ 664.937173][T14852] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 664.937206][T14852] RIP: 0033:0x7f095d18efc9 [ 664.937231][T14852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 664.937261][T14852] RSP: 002b:00007f095dfb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 664.937291][T14852] RAX: ffffffffffffffda RBX: 00007f095d3e5fa0 RCX: 00007f095d18efc9 [ 664.937312][T14852] RDX: 0000000030000810 RSI: 00002000000000c0 RDI: 0000000000000003 [ 664.937331][T14852] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 664.937350][T14852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 664.937368][T14852] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 664.937412][T14852] [ 667.512574][T14896] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2026'. [ 668.680218][T14915] ======================================================= [ 668.680218][T14915] WARNING: The mand mount option has been deprecated and [ 668.680218][T14915] and is ignored by this kernel. Remove the mand [ 668.680218][T14915] option from the mount to silence this warning. [ 668.680218][T14915] ======================================================= [ 669.161941][T14913] netlink: 93 bytes leftover after parsing attributes in process `syz.3.2033'. [ 675.812366][T15033] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2056'. [ 676.152899][T15040] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2058'. [ 676.278566][T15040] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 676.310475][T15040] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 676.338937][T15040] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 676.389088][T15040] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 676.783836][T15050] netlink: 'syz.1.2060': attribute type 1 has an invalid length. [ 680.676525][T15134] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2080'. [ 683.880167][ T5149] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 684.902285][T15201] ptrace attach of "./syz-executor exec"[5833] was attempted by "kcsYV**^N!P$Pv{$}8a?KDxC\x07EsY}-2in\x5cyӟ$r\x0957J@\x07~0z+]Z&p豆/x6@\x09#&)@,5z\x0clҚ8j|`Y.Vp_It:a,cg19g~t$ rw?+0NcܯWCɝYFX\x22\x073tx5!=:3Eo{6|rr˔vѿ謜CS@vg+QIkȡTUкT4-ʞbG~:)gZT1@+ ʆ\x0cIc[(1mA$S*z7ضiu] }c\x5cbI]@(Aԕ(sX18io9bw0[܃m>\x07.!),D8͏7&aC|Km3(:3/pEnAa+zMY7*#ݴǬf=Y.)\x5c~)t0ANDI'*\x0c4>RʑQ{Q0Ūa{}62M\x5c\x07#n]ȋ!LIyNH@׸@_G=\x0a]BF(SB8*f\x22%%qL3+]JkH\x09o-bũNe'P)&qz,m3GQroAf)pDؔUL\x0d:%@,#R5*#a!w\x22Ǟ8duLP~5@mE# [ 688.381133][T15245] netlink: 5 bytes leftover after parsing attributes in process `syz.0.2105'. [ 690.093179][ T5149] Bluetooth: hci2: unexpected event 0x32 length: 727 > 9 [ 690.569867][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 690.583419][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.968932][T15290] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2115'. [ 691.034414][T15290] bridge_slave_1: left allmulticast mode [ 691.040224][T15290] bridge_slave_1: left promiscuous mode [ 691.062005][T15290] bridge0: port 2(bridge_slave_1) entered disabled state [ 691.124977][T15290] bridge_slave_0: left allmulticast mode [ 691.130757][T15290] bridge_slave_0: left promiscuous mode [ 691.158721][T15290] bridge0: port 1(bridge_slave_0) entered disabled state [ 694.712989][T15341] netlink: 93 bytes leftover after parsing attributes in process `syz.1.2127'. [ 698.153430][T15408] Process accounting resumed [ 700.255682][ T5149] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18 [ 700.595840][T15445] netlink: 334 bytes leftover after parsing attributes in process `syz.3.2153'. [ 701.114275][T15456] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2156'. [ 702.205027][T15126] syz.2.2077 (15126) used greatest stack depth: 18552 bytes left [ 702.289736][T14021] Bluetooth: hci2: command 0x0c1a tx timeout [ 704.407615][T15512] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2168'. [ 704.905756][T15520] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 704.905756][T15520] The task syz.0.2170 (15520) triggered the difference, watch for misbehavior. [ 708.725968][T15593] __vm_enough_memory: pid: 15593, comm: syz.2.2186, bytes: 4398046511104 not enough memory for the allocation [ 709.383094][T15614] could not allocate digest TFM handle [ 711.273762][T15661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2202'. [ 716.191945][T15755] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2222'. [ 716.233126][T15755] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 716.245863][T15755] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 716.276960][T15755] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 716.284790][T15755] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 719.535289][T15808] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2234'. [ 719.559558][T15808] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 719.567185][T15808] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 719.575536][T15808] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 719.583847][T15808] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 721.601355][T15837] __vm_enough_memory: pid: 15837, comm: syz.1.2242, bytes: 4398046511104 not enough memory for the allocation [ 724.673811][T15895] __vm_enough_memory: pid: 15895, comm: syz.2.2254, bytes: 4398046511104 not enough memory for the allocation [ 725.383188][T14021] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 725.383228][T14021] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 725.401452][T14021] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 727.875621][T15945] __vm_enough_memory: pid: 15945, comm: syz.0.2266, bytes: 4398046511104 not enough memory for the allocation [ 728.033970][T15953] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2268'. [ 728.444227][T15955] RDS: rds_bind could not find a transport for ::ffff:172.20.20.253, load rds_tcp or rds_rdma? [ 729.929448][T14021] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 729.937013][T14021] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff [ 733.754980][T16042] bridge0: port 3(gretap0) entered blocking state [ 733.790440][T16042] bridge0: port 3(gretap0) entered disabled state [ 733.800699][T16042] gretap0: entered allmulticast mode [ 733.826705][T16042] gretap0: entered promiscuous mode [ 733.851374][T16042] bridge0: port 3(gretap0) entered blocking state [ 733.857994][T16042] bridge0: port 3(gretap0) entered forwarding state [ 734.819115][T16067] __vm_enough_memory: pid: 16067, comm: syz.3.2292, bytes: 4398046511104 not enough memory for the allocation [ 736.449682][T16095] __vm_enough_memory: pid: 16095, comm: syz.3.2301, bytes: 4398046511104 not enough memory for the allocation [ 738.469566][T16125] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2306'. [ 738.521765][T16125] netlink: 'syz.0.2306': attribute type 1 has an invalid length. [ 741.102307][T16179] __vm_enough_memory: pid: 16179, comm: syz.1.2319, bytes: 4398046511104 not enough memory for the allocation [ 749.710797][T16344] __vm_enough_memory: pid: 16344, comm: syz.3.2366, bytes: 4398046511104 not enough memory for the allocation [ 751.690680][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 751.697781][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 753.175220][T16393] tipc: can't start tipc receive workqueue [ 753.193770][T16414] __vm_enough_memory: pid: 16414, comm: syz.2.2385, bytes: 4398046511104 not enough memory for the allocation [ 753.375703][T16419] __vm_enough_memory: pid: 16419, comm: syz.1.2386, bytes: 4398046511104 not enough memory for the allocation [ 753.939892][T16430] __vm_enough_memory: pid: 16430, comm: syz.0.2392, bytes: 4398046511104 not enough memory for the allocation [ 755.443540][T16465] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2401'. [ 757.037409][T16505] __vm_enough_memory: pid: 16505, comm: syz.2.2412, bytes: 4398046511104 not enough memory for the allocation [ 759.048486][ T30] audit: type=1326 audit(4294967388.613:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16565 comm="syz.2.2435" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f095d18efc9 code=0x0 [ 764.142796][ T30] audit: type=1326 audit(4294967393.740:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16676 comm="syz.0.2466" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbb7b38efc9 code=0x0 [ 765.492816][T16704] netlink: 'syz.3.2474': attribute type 1 has an invalid length. [ 768.330126][T16749] kexec: Could not allocate control_code_buffer [ 770.261605][T16813] netlink: 'syz.0.2509': attribute type 1 has an invalid length. [ 770.913525][T16832] __vm_enough_memory: pid: 16832, comm: syz.2.2515, bytes: 4398046511104 not enough memory for the allocation [ 772.112042][ T30] audit: type=1800 audit(4294967401.751:17): pid=16863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2526" name="file0" dev="tmpfs" ino=3352 res=0 errno=0 [ 772.161784][ T30] audit: type=1800 audit(4294967401.792:18): pid=16863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2526" name="file0" dev="tmpfs" ino=3352 res=0 errno=0 [ 776.897961][T16979] __vm_enough_memory: pid: 16979, comm: syz.1.2564, bytes: 4398046511104 not enough memory for the allocation [ 780.411879][T17065] Invalid ELF header magic: != ELF [ 783.159146][T17096] kexec: Could not allocate control_code_buffer [ 784.997824][T17171] __vm_enough_memory: pid: 17171, comm: syz.2.2625, bytes: 4398046511104 not enough memory for the allocation [ 785.839793][T17205] __vm_enough_memory: pid: 17205, comm: syz.1.2637, bytes: 4398046511104 not enough memory for the allocation [ 786.699762][T17231] __vm_enough_memory: pid: 17231, comm: syz.3.2649, bytes: 4398046511104 not enough memory for the allocation [ 787.513037][T17252] __vm_enough_memory: pid: 17252, comm: syz.0.2658, bytes: 4398046511104 not enough memory for the allocation [ 789.420773][T17291] __vm_enough_memory: pid: 17291, comm: syz.3.2672, bytes: 4398046511104 not enough memory for the allocation [ 790.741743][T17319] __vm_enough_memory: pid: 17319, comm: syz.3.2681, bytes: 4398046511104 not enough memory for the allocation [ 791.528467][T17340] __vm_enough_memory: pid: 17340, comm: syz.0.2690, bytes: 4398046511104 not enough memory for the allocation [ 796.968454][T17475] __vm_enough_memory: pid: 17475, comm: syz.1.2733, bytes: 4398046511104 not enough memory for the allocation [ 800.680110][T17568] ptrace attach of "./syz-executor exec"[5833] was attempted by ""[17568] [ 805.671878][ T5149] block nbd0: Receive control failed (result -107) [ 806.147583][T17712] __vm_enough_memory: pid: 17712, comm: syz.2.2822, bytes: 4398046511104 not enough memory for the allocation [ 806.572155][T17724] __vm_enough_memory: pid: 17724, comm: syz.3.2827, bytes: 4398046511104 not enough memory for the allocation [ 806.913312][T17732] netlink: 74 bytes leftover after parsing attributes in process `syz.2.2830'. [ 807.156167][T17744] __vm_enough_memory: pid: 17744, comm: syz.0.2834, bytes: 4398046511104 not enough memory for the allocation [ 808.785322][T17778] __vm_enough_memory: pid: 17778, comm: syz.3.2843, bytes: 4398046511104 not enough memory for the allocation [ 809.730194][T17803] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2851'. [ 809.742582][T17803] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2851'. [ 811.865767][T17849] futex_wake_op: syz.3.2867 tries to shift op by -2048; fix this program [ 812.812139][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 812.818604][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 813.407101][T17895] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2883'. [ 813.546029][T17899] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2886'. [ 815.121471][T17934] syz_tun: refused to change device tx_queue_len [ 817.434639][T17984] __vm_enough_memory: pid: 17984, comm: syz.0.2912, bytes: 4398046511104 not enough memory for the allocation [ 818.878080][T18027] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2928'. [ 819.419074][T18049] __vm_enough_memory: pid: 18049, comm: syz.3.2934, bytes: 4398046511104 not enough memory for the allocation [ 820.635500][T18093] __vm_enough_memory: pid: 18093, comm: syz.3.2948, bytes: 4398046511104 not enough memory for the allocation [ 821.758233][T18110] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2952'. [ 823.435259][T18148] __vm_enough_memory: pid: 18148, comm: syz.0.2965, bytes: 4398046511104 not enough memory for the allocation [ 825.902880][T18206] __vm_enough_memory: pid: 18206, comm: syz.3.2987, bytes: 4398046511104 not enough memory for the allocation [ 826.154044][T18216] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2991'. [ 826.176524][T18216] netlink: 274 bytes leftover after parsing attributes in process `syz.0.2991'. [ 826.410835][T18224] bridge0: port 4(bond0) entered blocking state [ 826.428206][T18224] bridge0: port 4(bond0) entered disabled state [ 826.452946][T18224] bond0: entered promiscuous mode [ 826.461376][T18224] bond_slave_0: entered promiscuous mode [ 826.491755][T18224] bond_slave_1: entered promiscuous mode [ 826.505284][T18224] bridge0: port 4(bond0) entered blocking state [ 826.511842][T18224] bridge0: port 4(bond0) entered forwarding state [ 828.141525][T18267] __vm_enough_memory: pid: 18267, comm: syz.2.3006, bytes: 4398046511104 not enough memory for the allocation [ 829.565063][T18297] __vm_enough_memory: pid: 18297, comm: syz.2.3017, bytes: 4398046511104 not enough memory for the allocation [ 830.013238][T18313] __vm_enough_memory: pid: 18313, comm: syz.0.3023, bytes: 4398046511104 not enough memory for the allocation [ 830.463492][ T5149] Bluetooth: hci3: unexpected event 0x07 length: 435 > 255 [ 831.148816][T18336] netlink: 940 bytes leftover after parsing attributes in process `syz.1.3031'. [ 831.561362][T18351] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3036'. [ 831.626239][T18351] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3036'. [ 831.680431][T18356] netlink: 134 bytes leftover after parsing attributes in process `syz.2.3036'. [ 833.059791][T18396] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3050'. [ 833.103593][T18396] netlink: 274 bytes leftover after parsing attributes in process `syz.3.3050'. [ 835.757551][T18470] openvswitch: netlink: IP tunnel dst address not specified [ 838.081413][T18522] netlink: 940 bytes leftover after parsing attributes in process `syz.3.3078'. [ 838.214436][T18523] netlink: 50 bytes leftover after parsing attributes in process `syz.1.3086'. [ 841.181547][T18590] __vm_enough_memory: pid: 18590, comm: syz.0.3097, bytes: 4398046511104 not enough memory for the allocation [ 844.070836][T18643] __vm_enough_memory: pid: 18643, comm: syz.0.3110, bytes: 4398046511104 not enough memory for the allocation [ 844.472294][T18652] Dead loop on virtual device ip6_vti0, fix it urgently! [ 844.496778][T18652] Dead loop on virtual device ip6_vti0, fix it urgently! [ 844.518740][T18652] Dead loop on virtual device ip6_vti0, fix it urgently! [ 844.541812][T18652] Dead loop on virtual device ip6_vti0, fix it urgently! [ 844.565497][T18652] Dead loop on virtual device ip6_vti0, fix it urgently! [ 844.583739][T18652] Dead loop on virtual device ip6_vti0, fix it urgently! [ 844.672877][T18658] __vm_enough_memory: pid: 18658, comm: syz.0.3117, bytes: 4398046511104 not enough memory for the allocation [ 845.383042][T18675] [ 845.385460][T18675] ====================================================== [ 845.392503][T18675] WARNING: possible circular locking dependency detected [ 845.399552][T18675] syzkaller #0 Tainted: G U [ 845.405561][T18675] ------------------------------------------------------ [ 845.412598][T18675] syz.2.3123/18675 is trying to acquire lock: [ 845.418697][T18675] ffff8880288e1688 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0x4d0/0xcc0 [ 845.430226][T18675] [ 845.430226][T18675] but task is already holding lock: [ 845.437602][T18675] ffff8880288e0260 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 845.446645][T18675] [ 845.446645][T18675] which lock already depends on the new lock. [ 845.446645][T18675] [ 845.457066][T18675] [ 845.457066][T18675] the existing dependency chain (in reverse order) is: [ 845.466087][T18675] [ 845.466087][T18675] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 845.473868][T18675] lock_sock_nested+0x41/0xf0 [ 845.479098][T18675] smc_listen_out+0x202/0x4a0 [ 845.484316][T18675] smc_listen_work+0x5a3/0x50b0 [ 845.489696][T18675] process_one_work+0x9cf/0x1b70 [ 845.495231][T18675] worker_thread+0x6c8/0xf10 [ 845.500385][T18675] kthread+0x3c5/0x780 [ 845.504998][T18675] ret_from_fork+0x675/0x7d0 [ 845.510148][T18675] ret_from_fork_asm+0x1a/0x30 [ 845.515450][T18675] [ 845.515450][T18675] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 845.525627][T18675] __lock_acquire+0x126f/0x1c90 [ 845.531012][T18675] lock_acquire+0x179/0x350 [ 845.536060][T18675] __flush_work+0x4e4/0xcc0 [ 845.541102][T18675] __cancel_work_sync+0x10c/0x130 [ 845.546664][T18675] smc_clcsock_release+0x5f/0xe0 [ 845.552141][T18675] __smc_release+0x5c2/0x880 [ 845.557279][T18675] smc_close_non_accepted+0xda/0x200 [ 845.563098][T18675] smc_close_active+0xc3c/0x1070 [ 845.568573][T18675] __smc_release+0x634/0x880 [ 845.573710][T18675] smc_release+0x1fc/0x620 [ 845.578676][T18675] __sock_release+0xb3/0x270 [ 845.583805][T18675] sock_close+0x1c/0x30 [ 845.588488][T18675] __fput+0x402/0xb70 [ 845.593020][T18675] task_work_run+0x150/0x240 [ 845.598175][T18675] exit_to_user_mode_loop+0xec/0x130 [ 845.604136][T18675] do_syscall_64+0x426/0xfa0 [ 845.609265][T18675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 845.615692][T18675] [ 845.615692][T18675] other info that might help us debug this: [ 845.615692][T18675] [ 845.625930][T18675] Possible unsafe locking scenario: [ 845.625930][T18675] [ 845.633386][T18675] CPU0 CPU1 [ 845.638755][T18675] ---- ---- [ 845.644121][T18675] lock(sk_lock-AF_SMC/1); [ 845.648640][T18675] lock((work_completion)(&new_smc->smc_listen_work)); [ 845.658111][T18675] lock(sk_lock-AF_SMC/1); [ 845.665175][T18675] lock((work_completion)(&new_smc->smc_listen_work)); [ 845.672116][T18675] [ 845.672116][T18675] *** DEADLOCK *** [ 845.672116][T18675] [ 845.680257][T18675] 3 locks held by syz.2.3123/18675: [ 845.685456][T18675] #0: ffff88805db5d848 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: __sock_release+0x86/0x270 [ 845.696049][T18675] #1: ffff8880288e0260 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 845.705512][T18675] #2: ffffffff8e3c44e0 (rcu_read_lock){....}-{1:3}, at: __flush_work+0xfb/0xcc0 [ 845.714668][T18675] [ 845.714668][T18675] stack backtrace: [ 845.720566][T18675] CPU: 0 UID: 0 PID: 18675 Comm: syz.2.3123 Tainted: G U syzkaller #0 PREEMPT(full) [ 845.720601][T18675] Tainted: [U]=USER [ 845.720609][T18675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 845.720624][T18675] Call Trace: [ 845.720632][T18675] [ 845.720640][T18675] dump_stack_lvl+0x116/0x1f0 [ 845.720669][T18675] print_circular_bug+0x275/0x350 [ 845.720702][T18675] check_noncircular+0x14c/0x170 [ 845.720738][T18675] __lock_acquire+0x126f/0x1c90 [ 845.720776][T18675] lock_acquire+0x179/0x350 [ 845.720808][T18675] ? __flush_work+0x4d0/0xcc0 [ 845.720833][T18675] ? mark_held_locks+0x49/0x80 [ 845.720865][T18675] ? __flush_work+0x4d0/0xcc0 [ 845.720887][T18675] __flush_work+0x4e4/0xcc0 [ 845.720909][T18675] ? __flush_work+0x4d0/0xcc0 [ 845.720934][T18675] ? __pfx___flush_work+0x10/0x10 [ 845.720959][T18675] ? __pfx_wq_barrier_func+0x10/0x10 [ 845.720993][T18675] ? do_raw_spin_lock+0x12c/0x2b0 [ 845.721050][T18675] ? __pfx___might_resched+0x10/0x10 [ 845.721080][T18675] __cancel_work_sync+0x10c/0x130 [ 845.721107][T18675] smc_clcsock_release+0x5f/0xe0 [ 845.721133][T18675] __smc_release+0x5c2/0x880 [ 845.721175][T18675] ? __pfx_sock_def_readable+0x10/0x10 [ 845.721215][T18675] smc_close_non_accepted+0xda/0x200 [ 845.721241][T18675] smc_close_active+0xc3c/0x1070 [ 845.721268][T18675] __smc_release+0x634/0x880 [ 845.721320][T18675] smc_release+0x1fc/0x620 [ 845.721359][T18675] __sock_release+0xb3/0x270 [ 845.721384][T18675] ? __pfx_sock_close+0x10/0x10 [ 845.721430][T18675] sock_close+0x1c/0x30 [ 845.721454][T18675] __fput+0x402/0xb70 [ 845.721504][T18675] task_work_run+0x150/0x240 [ 845.721542][T18675] ? __pfx_task_work_run+0x10/0x10 [ 845.721581][T18675] ? __pfx___do_sys_close_range+0x10/0x10 [ 845.721612][T18675] exit_to_user_mode_loop+0xec/0x130 [ 845.721651][T18675] do_syscall_64+0x426/0xfa0 [ 845.721679][T18675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 845.721704][T18675] RIP: 0033:0x7f095d18efc9 [ 845.721723][T18675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 845.721747][T18675] RSP: 002b:00007f095dfb9038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 845.721770][T18675] RAX: 0000000000000000 RBX: 00007f095d3e5fa0 RCX: 00007f095d18efc9 [ 845.721785][T18675] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 845.721800][T18675] RBP: 00007f095d211f91 R08: 0000000000000000 R09: 0000000000000000 [ 845.721814][T18675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 845.721829][T18675] R13: 00007f095d3e6038 R14: 00007f095d3e5fa0 R15: 00007fff71eca4a8 [ 845.721852][T18675] [ 846.007317][T18679] netlink: 338 bytes leftover after parsing attributes in process `syz.3.3124'. [ 846.080317][T18679] ipvlan1: entered allmulticast mode [ 846.088901][T18679] veth0_vlan: entered allmulticast mode